upvote

points

by nvr21913 hours ago |
comments
upvoteby steve_adams_8613 hours ago|
next
[-]
They've got a guy (who they're considering laying off)
reply
upvoteby jermaustin112 hours ago|
parent|
next
[-]
Don't worry the LLMs that are replacing him, are also replacing the hackers too. Pretty soon (if not already), it will just be LLMs fighting LLMs.
reply
upvoteby jpease10 hours ago|
parent|
[-]
Until both LLMs realize the only way to win is to team up against their oppressors.
reply
upvoteby sholladay7 hours ago|
parent|
next
[-]
The only winning move is not to play.
reply
upvoteby micromacrofoot12 hours ago|
parent|
prev|
next
[-]
in my experience they have a person who does it sometimes when they have time, at best
reply
upvoteby bigiain4 hours ago|
parent|
[-]
And their management keep blatantly dropping "client projects" and "billable hours" into discussions with them.
reply
upvoteby UqWBcuFx6NV4r12 hours ago|
parent|
prev|
[-]
no they don’t.
reply
upvoteby afdbcreid11 hours ago|
parent|
[-]
They don't consider laying him off?
reply
upvoteby saghm6 hours ago|
parent|
[-]
I think they're saying they already did
reply
upvoteby saagarjha3 hours ago|
prev|
next
[-]
Apple definitely does.
reply
upvoteby Veserv10 hours ago|
prev|
next
[-]
That is actually unfair. Most companys spend enormous amounts on security with vast armys of security employees. Not that it is effective, but it is not for lack of resources or trying.

I mean we are literally in a thread about how the 4 trillion dollar company, literally the 3rd most valuable company in the world, with a core competency in software has, yet again, released a core product riddled with security defects for the 50th year in a row.

Commercial IT security is a industry that is incapable to a fault and has, so far, faced basically zero consequences for it.

reply
upvoteby marysol519 minutes ago|
parent|
next
[-]
Hey now, when Apple products get a serious Kernel level vulnerability that is able to be executed just by browsing a website. It's a "jailbreak" not an "exploit".

Exploits are BAD!

reply
upvoteby gorbachev1 hours ago|
parent|
prev|
next
[-]
For every Apple, there are 100 mom-and-pop companies who have nothing.

Even more so in the future when a software company can be launched by a farm of AI Agents with a founder at helm with no clue about computing or security.

What's debateable is how many of those companies actually need irontight security, because they are never realistically going to be targets of criminals and/or they have nothing valuable to steal/corrupt in the first place (other than the owner's pride).

reply
upvoteby concinds3 hours ago|
parent|
prev|
next
[-]
> Most companys spend enormous amounts on security with vast armys of security employees

This is true in America in many industries now, but most of the rest of the world (even the rest of the OECD) is still far behind.

reply
upvoteby saagarjha3 hours ago|
parent|
prev|
next
[-]
Maybe they should've been as productive as the guys down in Santa Barbara.
reply
upvoteby 10 hours ago|
parent|
prev|
[-]
deleted
reply
upvoteby aiisjustanif9 hours ago|
prev|
[-]
While maybe true, it is better to back that up with data and the data I know of and read yearly is mostly not great. Between Splunk and SANS surveys of 2025 maybe ~2000 companies have a SOC. [1] [2]

Then you have the many companies in the UK, US, Canada, EU that have compliance and regulatory laws that require them to exist in some capacity in house. Though that is changing with MDR services, but someone still has to interface with the MDR.

[1]: https://www.elastic.co/pdf/sans-soc-survey-2025.pdf [2]: https://github.com/jacobdjwilson/awesome-annual-security-rep...

reply
upvoteby marysol517 minutes ago|
parent|
[-]
Does the report talk about how many are /actual/ "SOC"'s, rather than some outsourced SIEM service. Or one guy who gets a daily report...
reply