Consider using Google.

Yeah I think millionaires should be able to do their shady business in private too, propagating this knowledge is nearly defamation, definitely gossip. Remembering these things and acting with your wallet based on your values and principles goes against everything capitalism stands for.

Why would shops implement this. It would detrimental to them if customers could easily find the cheapest option.

What government? Do you know anything about Haiti?

You've got to be a real low-life to collect all of that and put it in a database that is not air-gapped.

It's something akin to a service provider in SAML parlance, if we are to believe reporting. How can it be air-gapped?

And if we are to believe the hacked company, it is a development environment with test data in it. That remains to be seen, but is a risky thing to lie about. If there is production data in the leak, we will surely know about it.

At the high end you can use data diodes to isolate critical data.

The point of a system like this is specifically that it’s accessible and not air gapped.

Being able to validate that a citizen is a citizen and their ID is valid inherently requires the system be accessible

If you can't implement it securely then perhaps such an undertaking wasn't a good idea? In the vast majority of cases I don't see why PII ever needs to be available over the network for remote queries. For the purpose of verification isn't it sufficient to verify hashes or better yet to attest via smartcard?

You can, they didn't; big difference.

By "can't" I mean "not capable" or "not going to in practice".

If you need the data, you cannot have it air gapped. And if it is air gapped, it is still easy to make misstakes.

"misstakes", love it, almost peotic

> it is still easy to make misstakes.

That's not an excuse though, any system handling data like that should be continuously reviewed and pentested by professionals. Hopefully they can show that this has been done otherwise it's just negligence.

It was mainly an explanation, that "airgapping" does not magically provides better security, or is required (or possible) to use at all here.

And it's pretty clear to me that they were criticizing storage of sensitive data in a database that isn't properly secured and they simply misused the term "airgapped". The database in question was easily accessible from poorly maintained development infrastructure.

> Please respond to the strongest plausible interpretation of what someone says, not a weaker one that's easier to criticize

Imagine if the bank took such a cavalier attitude with the contents of my account.

No it wouldn't, the globe isn't a uniform flat land where we're all equally distributed.

You can overcome that with talent and intelligence. But since talent and intelligence are not evenly distributed, you have places with little natural resources that are rich and places rich in natural resources that are poor.

Yep, your comment is deranged.

I’m the wiz, I’m the wiz! And noooooobody beats me!!!

> As an example, I never see Japanese people on their speakerphones in public. Some other cultures seem more likely to view it as acceptable.

Demographics is everything. Import speakerphone users, get speakerphone usage.

Some cultural groups also seem more likely to make video calls, where they are walking and talking to someone on their phone screen.

Still not a reason not to use headphones as all but the cheapest come with a built-in microphone.

The blocking of cloudflare in Spain shows that citizens of “democratic” states have no agency either.

It is different. It’s just not a sensitive issue - you cannot win elections having fixing this as central part of your platform. In authoritarian states you cannot win elections, period.

It is always "different". Are you older than 18 years ? Are you "allowed" to use a computer ? Or is this "different" ?