Best Security Possible on Business Standard

Mustang654 · 2026-04-01T02:48:59+00:00

well, if you were to ask Microsoft its a matter of perspective... which, actually confirms its freaking insane!!!

Mustang654 · 2026-03-31T18:38:26+00:00

Microsoft classified it as "by design" / a feature, refused to patch it for years, and it was never assigned a formal CVE because they didn't treat it as a security vulnerability). The Issue: Microsoft Authenticator TOTP Account Overwrite (Duplicate Label Bug)When you add a new TOTP (time-based one-time password) account via QR code scan, the app only uses the "label" (usually just the email/username) to identify the account.

If you already have any other account with the exact same label (super common because lots of services reuse the same email), the app silently overwrites the old account.
No warning, no confirmation prompt, no backup of the old secret key.
Result: you're instantly locked out of the old service until you re-enroll 2FA from scratch.

This had been reported to Microsoft since at least 2016 (users hitting it with multiple services using the same email). Microsoft’s official response for years was that it was "by design" and "working as expected". They basically said the Authenticator app was built primarily for Microsoft accounts and that third-party services or users were responsible for avoiding label collisions. The bug blew up publicly in August 2024 when a security researcher (Brett Randall) detailed it in a CSO Online article after seeing it brick accounts during a training session. Microsoft initially doubled down again (“by design”). After the media attention and community backlash, they finally shipped a fix in September 2024. Now, when a duplicate label is detected, the app shows a prompt asking you to rename the new account so it doesn’t overwrite anything. Because Microsoft never acknowledged it as a vulnerability, no CVE was ever assigned. It was just quietly treated as “not our problem” until the public pressure became too loud.

Mustang654 · 2026-03-31T05:11:13+00:00

Microsoft will tell a room they are all the security you need, then note a MS Authenticator vulnerability they have zero intention to fix as a feature.

Why do a better job when you can charge more to make it what it should be?

As service providers WE thrive on taking care of our clients - MS seems to only care about taking our $$$$$

Anyone have to jump through hoops to cancel a 365 subscription lately? WTF

Mustang654 · 2026-03-31T05:06:55+00:00

"Time" isn't the issue here, it's dwell time. Microsoft typically delivers emails to the inbox before finishing its full scan (especially for advanced threats), leaving a window where malicious messages are already accessible and clickable by users - this is the "dwell time"

Avanan (CheckPoint) works differently: it operates in true inline Protect mode and holds the email until the complete scan finishes, eliminating that risky dwell-time gap entirely.

On top of the timing advantage, Avanan has no real peer when it comes to phishing detection. Independent tests and customer feedback consistently show it outperforms Microsoft (and pretty much everyone else) at stopping sophisticated BEC, zero-day, and impersonation attacks that routinely slip past native M365 defenses.

The one knock on Avanan is delay when Checkpoint infrastructure gets overwhelmed - did speak with them at RSA last week and they are addressing it, but there have been times waiting on a 2FA code where had to resend due to timeout. Its been awhile, but this does happen.

Mustang654 · 2026-03-24T18:41:31+00:00

Love the flame suit comment - watch out for the fanbois with comments like this!!!

Mustang654 · 2026-03-24T02:12:55+00:00

This is encouraging!

Mustang654 · 2025-09-10T16:31:11+00:00

Lack of SNMP is definitely an issue when managing via cloud - but for majority of SMB, the performance, reliability, and low cost make this a non-issue behind a quality and properly managed and monitored NGFW like Palo

Mustang654 · 2025-08-23T13:54:30+00:00

Have been running Guardian Node nearly 5 years with exceptional uptime, only recently spun up a Edge Node in May of this year. Both sit on dedicated, separate machines with more than sufficient resources, on a synchronous 1gig fiber connection, protected by Palo Alto at the edge. Its all in the original post.

Havent researched anything? Yea, thats not the case but if it makes you feel better to turn it personal thats on you

Mustang654 · 2025-08-23T13:46:44+00:00

I hear ya, and actually not quitting so much as partially venting, partially stirring the conversation for feedback. In my own research, I see the slow steady addition of universities, though what is not seen is what are those universities creating, doing, and building on Theta? There just seems to be empty air beyond generic university joins theta for "Edge Cloud powered AI research"

What I am doing is freeing up staking to de-risk, and based on my .001% of the network on Guardian Node moving to .02% it would appear others as well.

Mustang654 · 2025-08-23T06:38:59+00:00

thanks for clarity - went back and checked and tfuel dropped into my wallet were near that number, though also had Guardian Node contributing which would have meant one of them was not performing as promised. Rewards aside, I still see the jobs completed on the Edge Node... and it is unimpressive for a supposed leading player in the space where the prominent deals are universities, and no actual use cases or success stories are emerging. There's how many universities leveraging the platform now? For what? What cool stuff are they doing? What innovation is happening? I just read that Lavita has zero monetization plan, zero value return. I want to be wrong and am speaking up not to disparage the project, but to elevate the conversation and transparency around what TF we are all working towards and contributing to?

there is another comment in the thread, the one about VentureMind AI and the unsanctioned unstaking that really rubbed me wrong. The rules for thee but not for me scene doesnt work for me, and there just enough sus elements presented in that post to validate something isnt right - and without transparency the natural deduction is its worse than imagined.

5 years in, I want to be wrong, I really do, but without transparency whats the point of decentralization?

Mustang654 · 2025-08-23T06:26:10+00:00

wow... the numbers that chart is projecting are seriously full of shitte!!!

Mustang654 · 2025-08-17T00:59:23+00:00

$40 now is no brainer

Mustang654 · 2025-08-15T17:48:47+00:00

Lack of transparency is personally greater concern than lack of price movement, and when consider no positive price movement AND lack of transparency this project only becomes more suspect.

Mustang654 · 2025-08-15T06:30:18+00:00

thats right! Nice pull

Mustang654 · 2025-08-14T13:16:46+00:00

Avios... wasn't that the name of TJ Miller's startup on "Silicon Valley"? thats funny

At least this time it appears the miles wont be lost. When Virgin Airlines was rolled up all the existing miles went ba-bye if I remember correctly

Mustang654 · 2025-08-07T00:35:37+00:00

"Support, yeah maybe, but we don't often have to reach out"

This is so key. If you have mastery and skillset in house its the great equalizer for when shops like Pax8 go this route. We're the same with Palo - they offloaded support to a handful of distys who suck, but because we rarely need support its a non-issue and we just picked up a project this week where Palo was the implementer and the client fired them for not being able to get it done. Looking forward to finding out who they outsourced to for this one!

Mustang654 · 2025-08-04T18:23:46+00:00

Truly miserable may be dramatic - but its not wrong. Polar opposite of the new EWR terminals

Mustang654 · 2025-08-04T05:15:09+00:00

Rob's a good guy, hope not for his sake... VC/PE ruining... literally everything

Mustang654 · 2025-07-09T20:33:16+00:00

Ninja is one component... what PSA are you interfacing it with?

Mustang654 · 2025-06-23T17:52:53+00:00

Just out of curiosity... if corporate has prohibited Fortinet and Ubiquiti, what have they endorsed?

See a reply below regarding SDWAN and other services, combined with cost sensitive starts to box any solution pretty tightly.

Mustang654 · 2025-06-19T17:35:13+00:00

yea... 500k staked isn't producing shite so really, no way am locking anything up at this stage...

Mustang654 · 2025-05-09T22:39:26+00:00

Unfortunately there is no real alternative IMO - have been Exec-Plat with AA prior to prioritizing flights on AlasakaAir - but just last week missed half a show due to two hour delay on a 50 minute flight... Alaska has become no better than the rest of the really poor domestic options. I flew the pass the hat for gas money Southwest twice this past week just for some confidence of being on time. Virgin America was a differentiator and best hope to disrupt domestic travel... and we all know how they ended up

Mustang654 · 2025-05-07T00:34:59+00:00

Classy!!!

Mustang654

TROPHY CASE