|
Ultrasaur Blog
Keeping track of exciting new threats to your digital records.
Archive for April, 2009
Thursday, April 30th, 2009
Would you sell sensitive company data if you’re offered the right incentive? Using the current economic situation, or pure greed as an excuse, 37% of employees surveyed at this year’s Infosecurity Europe event said that they are keeping their options open. via Zero Day, ZDNet.com.
I expect this is an undercount, but it’s a useful estimate of the percentage of people who would change data if they could make money doing it.
Tags: statistics, stub
Posted in record falsification | No Comments »
Monday, April 27th, 2009
The acquisition of Merrill Lynch by Bank of America was a deal worth many tens of billions of dollars, and yet the documents concerning the deal are still being disputed by both parties, Thain Fires Back at Bank of America - WSJ.com:
But Mr. Thain says that he and Bank of America Chief Executive Kenneth Lewis agreed in writing that the bonuses could be paid before Bank of America’s acquisition of Merrill closed…
Bank of America has painted a different picture than Mr. Thain’s
Tags: stub
Posted in legal | No Comments »
Sunday, April 26th, 2009
Revenue Canada refuses to pay for million-dollar mistake, where a business owner couldn’t produce records after:
“someone [at the Canadian tax agency] had put them on the pile that was to be shredded”
Tags: oops
Posted in misc | No Comments »
Friday, April 24th, 2009
Another reminder that authentication is expensive, difficult and rare.
Expensive: Review of grants costs more than the grants themselves
the $40,000 (Canadian) cost of preparation for a grant application and rejection by peer review in 2007 exceeded that of giving every qualified investigator a direct baseline discovery grant of $30,000 (average grant)
Difficult: Baseball Fights Fakery With an Army of Authenticators
“No one touch it until the authenticator gets there,” a Yankees official instructed.
Authenticators carry rolls of high-tech hologram stickers. A bullet-shaped one is placed on the object. Removing it leaves polka dots of the decal attached and renders the removed sticker unusable. A second sticker, with a matching number and a bar code, is scanned by a hand-held unit, instantly recording the item into M.L.B. computers. The authenticator types in details — who hit the ball and when, for example.
Rare: Ebay leads to more fake antiques:
Our greatest fear was that the Internet would democratize antiquities trafficking and lead to widespread looting… It appears that electronic buying and selling has actually hurt the antiquities trade.
risk of arrest–is also removed by eBay fakes, since you can’t be arrested for importing forgeries. Should you import what you think is an illegal antiquity but it turns out to be a fake, you run little risk of prosecution
those dealers that provide private sales are some of the forgers’ best customers, knowingly or otherwise. In fact, the workshops reserve their “finest” pieces for collectors using the same backdoor channels
Tags: authentication, news
Posted in Uncategorized, worldnews | No Comments »
Friday, April 10th, 2009
via Many Enterprises Still Don’t Recognize Insider Threat, Studies Say - Security trends/Security - DarkReading.
Despite recent headlines and instances of insider attacks, many companies still are not acting to protect themselves from insider threats, according to two new analyst reports.
Forrester Research earlier this week published a study called “Data Security Challenges and Technology Adoption in 2008,” which offers a detailed look at enterprises' attitudes about security and the deployment of next-generation security technologies.
Posted in links | No Comments »
Wednesday, April 8th, 2009
Graphic Designer:
“If I’d thought about this possibility then it would be a lot easier to build my case.”
The story so far: Stockart.com claims that Jon Engle owes them $18 000 for using its designs. Engle claims that the designs are his and were uploaded to Sotckart.com behind his back under the names of about a dozen different artists.
Public opinion generally backs Engle, the truth may be more complicated, but a clear trend is that it’s very hard to prove you built something before they did.
Side note: Our community edition solves this, are you interested in beta testing? email: info@ultrasaur.us
Tags: ownership dispute, shameless plugs
Posted in legal | No Comments »
Wednesday, April 8th, 2009
Wow:
A European Union directive, which Britain was instrumental in devising, comes into force which will require all internet service providers to retain information on email traffic, visits to web sites and telephone calls made over the internet, for 12 months.
Hundreds of public bodies … will also be able to access the data to investigate flytipping and other less serious crimes.
… a Home Office spokesman has confirmed it will be applied “across the board” to even the smallest company
Besides the opportunity for abuses, collecting these records and keeping them safe is a large new burden that will likely fall hardest on the smallest companies. Apparently “Sweden has decided to ignore the directive completely while there is a challenge going through the German courts at present.”
Thanks: The Agitator
Tags: eu, legal
Posted in legal | No Comments »
Tuesday, April 7th, 2009
Securely disposing of records is so hard that even the NSA has had trouble doing it.
The NSA had an incinerator in their old Arlington Hall facility that was designed to reduce top secret crypto materials and such to ash. Someone discovered that it wasn’t in fact working.
Although they buried the “palm sized” chunks so well that they couldn’t find most of them, still I love any story where:
for years the screen at the top of the stack had a habit of burning through and then it would spew partially burned classified COMSEC and SIGINT materials round and about the Post and surrounding neighborhood.
Tags: destruction, funny
Posted in misc | No Comments »
Tuesday, April 7th, 2009
One wouldn’t think that copying websites would be a large problem, after all the originals are just a click away. But much as stealing blog content for ad-clicks is a right of passage (even I’ve had it), complete website copies are common enough to spawn a community that tracks them down.
Recently there was a very active Rob Morris’ site. Often it’s easy to figure out which one is the copy… it’s the one where the the text hasn’t been 100% updated:
“private organizations in North America and Europe including [...] the Australian National University [...] and Sports Medicine Australia“
and where some of the links are broken. Since generally the copiers copy the best because they don’t have the skills themselves. However, there are cases where it isn’t clear.
Amusingly enough, there are examples of the original author being pursued by the derivative’s author. In one case on YouTube, a timelapse video of clouds was put into the public domain, then used in the background of another video — and the original author’s was taken down:
This is to notify you that your video “Timelapse Clouds Compilation” from your Google Video account has been disabled because it has been identified by our Content Identification tools as potentially lacking the necessary copyright authorization for use on the Google Video site. Content Identification is a program that analyzes similarities in audio or video between user videos and a library of reference content provided to us by copyright owners. When a video matches a reference file, that video is automatically disabled.
Tags: fraud, funny, originals
Posted in record falsification | No Comments »
Monday, April 6th, 2009
Here’s one I hadn’t thought of:
Although we have been married for four years now, the American Immigration services can’t find any paper trail for the two of us.
The comments hit on my thinking: “Let’s hope they acknowledge the validity of digital photos.” Despite being a lightweight “internet couple”, they must have hundreds of emails and digital photos.
We’re hoping to have a “Community edition” available this year that would address this problem. And then we’ll be in the position to “write to your national authorities” for you.
Tags: funny, government, misc, records
Posted in legal | No Comments »
|
|