--- Log opened Wed Feb 06 00:00:01 2019
00:36 -!- strages [uid11297@gateway/web/irccloud.com/x-ryyqfztzshnmlkab] has joined #se2600
06:16 <@Dolemite> mr0ning, be0tches and h0ez!
06:21  * aestetix hugs Dolemite 
07:29 <@Mirage> lol.  https://www.al.com/news/mobile/2019/02/firefighters-rescue-toddler-stuck-in-fairhope-toy-machine.html
07:29 < PigBot>  Firefighters rescue toddler stuck in Fairhope toy machine | al.com (at www.al.com) http://tinyurl.com/yac79lqc
08:08 -!- opticron [~opticron@75.76.209.103] has quit [Ping timeout: 268 seconds]
08:14 <@dasunt> My bathroom scale is annoying the geek in me.
08:15 <@dasunt> Digital scale, and the scale shows tenths of a pound.
08:15 <@dasunt> But the accuracy is something on the order of a little over a pound.  Something around 1.2 or 1.4.
08:16 <@dasunt> But it varies - it doesn't go 180, 181.2, 182.4, 183.6, etc.  But 180, 181.4, 182.2, 183.6, etc.
08:24 <@Corydon76> Part of the problem is that it's a scale and not a balance.
08:25 <@Corydon76> Your weight will vary with altitude and barometric pressure.
08:26 <@Corydon76> A balance counters your weight with known masses, so the effect of altitude and pressure has the same effect on both sides, so you get more accurate results.
09:22 <@dasunt> I know, but it still seems off.
09:22 <@dasunt> It only does even tenths of a pound.
09:23 <@dasunt> .0, .2, .4, .6, .8.  None of the odd numbers.
09:26 <@Corydon76> So if you drink a fifth...
09:37 <@dasunt> Weird though, it's not that accurate.
09:38 <@dasunt> Like if I'd hold a can of soda, it should go up by .6 or so, since a can is 12 fl oz.
10:26 <@Corydon76> 12 fl oz should be .75
10:26 <@Corydon76> 16 fl oz is a pint, or a pound of water
10:37 <@dasunt> Yep, but my point is that the resolution of the scale seems like it's a little over a pound.
10:37 -!- K`Tetch_ [~no@47.39.211.239] has quit [Changing host]
10:37 -!- K`Tetch_ [~no@unaffiliated/ktetch] has joined #se2600
10:46 -!- crashcartpro [uid29931@gateway/web/irccloud.com/x-cbhpsriylyogtaqg] has joined #se2600
11:03 <@Corydon76> Maybe the scale is measuring in KG, then converting to pounds for display.
11:10 < TheDukh> https://twitter.com/JordanHawker/status/1090933555067158529  Pure brilliance.
11:10 < PigBot> Jordan [Axle] on Twitter: "Introducing "Bohemian Git-sody" in full via @twitlonger: https://t.co/nHWaKddy0r Credits: @kerrizor @JordanHawker @omidaladini @mrtnvh @makingthematrix @scottohara @fat_belfegor Inspired by https://t.co/UQtR9FgkPe… https://t.co/nig2LXbPQc" (at twitter.com) http://tinyurl.com/y97qv85b
11:43 <@dasunt> Corydon76: Interesting theory.  I'll have to figure out a way to test it...
11:51 <@dasunt> Also I'm 21k from where I want to be.  That doesn't sound too bad.
11:51 <@dasunt> I could get used to this metric system.
15:09 <@dasunt> Just heard of a nice new social engineering scame.
15:09 <@dasunt> Er, scam.
15:09 <@dasunt> Call a victim's HR department, convince them thawt you are the victim and that you are changing the paycheck to be direct deposited to a different account.
15:10 <@Evilpig> surely nobody would fall for that
15:10 <@dasunt> Email victim then, and tell them that due to a billing error, they were overpaid and won't be receiving this week's paycheck.
15:11 <@dasunt> Hope the victim doesn't complain to HR.  ;)  Probably the scammer xfers the funds out of the new account ASAP, because this will be discovered soon.
15:12 <@dasunt> Evilpig: I'm guessing it usually fails, but even if it's one in ten people who shut up and don't complain...
15:13 <@Corydon76> Everybody will complain in such a scheme.  And the victim of such a scheme is the company, as it's illegal for the company to fail to pay the employee.
15:13 <@Corydon76> The true victim is the person in HR who makes the change.
15:14 <@Corydon76> The person whose paycheck was diverted may be inconvenienced, but they won't be out the paycheck.
15:15 <@Corydon76> The bigger attack vector would be a government benefits office, because everybody expects the government to be slow in correcting a problem.
15:16 <@dasunt> I may be misunderstanding the scam - reading some more, it looks like it's a hack, not a social engineering attack - they go after the payroll systems.
15:17 <@dasunt> I'm not understanding why they'd use an existing employee though.  The other ACH/payroll scams I'm seeing involves fake employees, and that seems to be safer.
15:17 <@Evilpig> I'm sure there is some HR drone that might fall for that but god I don't want it to be true
15:19 <@dasunt> Large company, changing direct deposit account?  I could see someone falling for that.
15:20 <@dasunt> I wonder if in the example I'm reading, it wasn't the payroll that was hacked, but the employee's account information was phished or something.
15:21 <@dasunt> e.g.  Get John's password for the online timesheet.  Go to John's page, put in 100 hrs of overtime, switch direct deposit accounts.  John gets paid, HR goes to John and say "hey, you got 100 hours of overtime, that can't be right", John denies it, HR concludes there's a glitch, and later the fraud is discovered.
15:21 <@dasunt> Hmmm:  https://www.computerworld.com/article/2475732/cybercrime-hacking/hacker-steals-teacher-s-direct-deposit-paycheck--university-says-too-bad-so-sad.html  <- Here's something similar.
15:21 < PigBot> Hacker steals teacher's direct deposit paycheck: University says too bad so sad | Computerworld (at www.computerworld.com) http://tinyurl.com/ydhydrfb
15:22 <@dasunt> I don't understand how the employer in that case isn't liable though.  Isn't it required to pay your employees for hours worked?
15:26 <@Corydon76> dasunt: in that case, it appears he was phished, so he is ultimately responsible.
15:27 <@Corydon76> If it was the university's mistake in changing it, that'd be one thing, but he compromised his own account.
15:28 <@dasunt> Does that matter for labor law?
15:28 <@Corydon76> I agree with the analysis that the university's detection and notification system is inadequate, but it still comes down to the actions of the teacher who screwed himself.
15:29 <@Corydon76> It comes down to who is responsible for the diversion
15:29 <@Corydon76> Otherwise, you'd have people diverting their own paychecks, claiming they got hacked, and geting paid twice.
15:30 <@Corydon76> But if the university itself got hacked, and they sent the money to the wrong place, then they're still responsible for paying the employee.
15:31 <@dasunt> I don't know if the law has caught up to that.
15:33 <@Corydon76> The other side of that is an employer could simply claim they got hacked, pay themselves the employees' paychecks, and then have no liability for paying the employees, even though them not getting paid was for no fault of their own.
15:33 <@Corydon76> So it comes down to 'who is responsible' for the diversion of funds.
15:36 <@dasunt> Well, committing fraud to get your company's money is a crime.
15:36 <@Corydon76> Avoiding paying your employees through fraud is also a crime.
15:36 <@dasunt> I know a company can't unilaterally dock your pay for mistakes being made - like if you fall for a scam and send a ton of money to someone else.  They can fire you, but they still have to pay you for the time you worked.
15:38 <@Corydon76> In most companies, it's also policy that you are responsible for anything which occurs with your password.  So when the teacher was phished, he gave up control of his password.  In effect, he allowed the bad guy to diviert his paycheck on his behalf
15:39 <@Corydon76> So from a civil liability perspective, the employee's actions caused the employee's paycheck to be diverted.
15:39 <@dasunt> Company policy can't override the law.
15:40 <@Corydon76> But we're talking about two different parts of the law.  Fraud is criminal law.  Labor is civil law.
15:40 <@Corydon76> If the company's hands were clean, and the employee's actions were at fault, then the employee bears the responsibility.
15:41 <@dasunt> I'm still not sure it works that way.
15:42 <@Corydon76> I would suggest asking on Facebook.  Surely you have a lawyer friend who can give you his or her unpaid but professional opinion
15:42 <@Corydon76> Or Quora, for that matter.
15:42 <@dasunt> Well, there's a bunch of people here that do L&E.
15:42 <@dasunt> But I try not to ask the attorneys questions.
15:43 <@Corydon76> Use Quora.  I enjoy it for getting those questions answered.
15:43 <@Corydon76> Or, let me ask it.  They're paying me to ask questions, so I might as well.
15:43 <@dasunt> Cool.  I'd like to know the answer.
15:45 <@dasunt> David Duke has endorsed Tulsi Gabbard?  This timeline sucks.
15:56 <@rhia> so Bashar al-Assad and Steve Bannon like her, but she thinks David Duke is too risky and turned down his endorsement ... at least she has a line somewhere
15:58 <@Corydon76> Republican in blue clothing is what she is
15:58 <@rhia> pretty much, yeah
15:59 <@Corydon76> Rather like the Virginia governor, currently, as it turned out
15:59 <@rhia> but as a Hindu woman, more likely to get votes as a dem
15:59 <@rhia> well, it IS Virginia - and the early 80's were not nearly so "woke"
16:01 <@Corydon76> dasunt: question has been asked.  I'm sure I'll have some answers come tomorrow.
16:01 <@rhia> not excusing his actions, just putting them into some form of context -- which is glaringly missing from the media coverage of the whole VA mess
16:01 <@Corydon76> Took me longer than normal, because I got trapped in a conference call, but for $5k, I'll take it.
16:02 <@rhia> Gov, Lt Gov, AG... at this rate, "dog catcher" might wind up becoming Gov
16:04 <@Corydon76> dasunt: https://www.quora.com/If-an-employee-is-phished-and-his-paycheck-diverted-does-a-company-have-a-legal-responsibility-to-make-him-whole/answer/Dave-Crisp-2?__nsrc__=4&__snid3__=3886107619
16:04 < PigBot> Dave Crisp's answer to If an employee is phished and his paycheck diverted, does a company have a legal responsibility to make him whole? - Quora (at www.quora.com) http://tinyurl.com/y7soyuta
16:54 <@dasunt> interesting
18:19 <@Evilpig> anyone know anything about this place?  http://rocic.com
18:19 < PigBot>  ROCIC - A Proven Resource for Law Enforcement  (at rocic.com) http://tinyurl.com/ya74ferk
18:23 < K`Tetch_> 16:58:36 «@Corydon76» Republican in blue clothing <-- the term for that is "blue dog democrat"
18:23 -!- PigBot [~PigBot@wilpig.org] has quit [Remote host closed the connection]
18:23 -!- PigBot [~PigBot@wilpig.org] has joined #se2600
18:37 <@_NSAKEY> Also DINO, but nobody seems to use that one anymore
19:18 < K`Tetch_> I had Jim Marshal until 2010, who was a blue dog, before he was replaced with lead tea partier Austin Scott
19:18 < K`Tetch_> now I got dipshit Drew ferguson, who has not had a townhall, or open meeting of any kind in 4 years
19:19 < K`Tetch_> but he loves to boast aboutt hem taxcuts, like how he got AFLAC from paying 1.6B in taxes, to getting a 600M refund each year
19:19 < K`Tetch_> and now he's boasting that he's one of the whips
20:19 -!- strages [uid11297@gateway/web/irccloud.com/x-ryyqfztzshnmlkab] has quit [Quit: Connection closed for inactivity]
22:56 -!- crashcartpro [uid29931@gateway/web/irccloud.com/x-cbhpsriylyogtaqg] has quit [Quit: Connection closed for inactivity]
--- Log closed Thu Feb 07 00:00:02 2019