My fridge is listening to me


hal9KIt seems oddly fitting that this week — a week scarred by the bizarre and violent mass murder in San Bernardino — that I received a LinkedIn invitation to connect with someone who listed this as their job description:

Install, maintain, and repair GPS, WiFi, and security camera systems on tour buses. In 2010, working with grant money from Homeland Security, I installed security systems on a fleet of tour buses and I have been maintaining those systems since then. In 2011, I helped install multi-language listening systems on tour buses and have been the lead maintenance technician. Currently, I am project manager for upgrading a fleet of 50 tour buses with […]

By |December 4th, 2015|2015, Big Data, cloud computing, law, Privacy and Security|77 Comments
Read More

Where the money is… or was

fedcheckToday was Tax Day in the United States, when we file our federal income tax returns. This has been an odd tax season in America for reasons that aren’t at all clear, but I am developing a theory that cybersecurity failures may shortly bring certain aspects of the U.S. economy to its knees.

I have been writing about data security and hacking and malware and identity theft since the late 1990s. It is a raft of problems that taken together amount to tens of billions of dollars each year in lost funds, defensive IT spending, and law enforcement expenditures. Now with a 2014 U.S. Gross Domestic Product of $17.42 trillion, a few […]

By |April 15th, 2015|2015, Banks, Economy, Finance, Government, Privacy and Security|112 Comments
Read More

To stop data theft, pull the plug

moneyBack in the 1980s, when I was the networking editor at InfoWorld, one of my jobs was to write profiles of corporate networks. One of those profiles was of the Adolph Coors Brewing Company of Golden, Colorado, now known as Molson Coors Brewing. I visited the company’s one brewery at the time, interviewed the head of IT and the top network guy, then asked for a copy of the very impressive network map they had on the wall.

“Sorry, we can’t give you that,” they said. “It’s private.”

“But we always print a map of the company network,” I explained.

“Fine, then make one up.”

And so I invented my own map for the Coors network.

There’s a lesson here, trust […]

By |October 9th, 2014|2014, Internet, Privacy and Security|98 Comments
Read More

InsecureID: No more secrets?

Update — Though I chose to keep secret the identity of the defense contractor to limit the damage it was subsequently revealed by Reuters to be Lockheed-Martin. There was one additional detail presented at the end of a story in Saturday’s New York Times.

Back in March I heard from an old friend whose job it is to protect his company’s network from attack. “Any word on just what was compromised at RSA?” he asked, referring to how the RSA Data Security division of EMC had been hacked. “I suspect it was no more than a serial number, a seed, and possibly the key generation time. The algorithm has been known for years but unless they can match a seed to […]

By |May 25th, 2011|2011|138 Comments
Read More

Sony may be clueless in PSN hack

Sony’s huge PlayStation Network (PSN) has been down for a week now following the theft of ID and credit card data on some or all of the gaming and video entertainment network’s 77 million customer accounts. Readers have been asking for comment but I stay out of these things unless I have something new to contribute. That something finally comes a week into the crisis as gamers begin to wonder why the network is still not back in operation and speculate on what this all means to Sony? It’s a huge loss of face, if course, but beyond that the damage to Sony is minimal. And the upside for PSN members, […]

By |April 28th, 2011|2011|59 Comments
Read More