We all heard about companies spending cash on security audits, following very strict security polices, hiring security specialists etc. And all that to feel safe and whats more important to look safe outside as this starts to be important vector in war for customers. Study shows that companies started to realize that remote workers are dangerous for them, so everything what can be done is being done to minimize this danger.
From deploying virtual private networks, implementing token authorization and training staff in matter of potential harm, that can be done by hackers, if they succeed, to takeover a single home machine that is used to “get work done”. IT department is often helpless to warn about what is getting to be installed (i.e. updates of operating systems or antivirus software) and who got access to those home desktops. People responsible for security in companies know that hacker who manages to steal login information using some sort of virus, could cause havoc in company’s network not even knowing where the building of company is located, so workers that demand remote access from their employers often gets “work-laptops”.
The unbelievable security failures of 9⁄11 exposed, among many other issues, the effects of more than two decades of cutting resources to the public sector and outsourcing government functions together with essential security services to profit-driven private corporations.
It clearly came out that, while everything seems fine and dandy when business is as usual, this way of managing security crumbles to pieces as soon as something goes wrong.
As an example, think of the North American air transit system, which was privatised, deregulated and downsized, with the vast majority of airport security jobs performed by underpaid, poorly trained, unmotivated, barely English speaking workers.
On September 10, when flying was as easy as taking a bus and airports looked like a mix between a mega shopping centre and a Luna Park, none of that seemed to matter: business was good, profits were as high as possible, and the perceived risk was close to zero.
But on September 12, putting 6-dollars-an-hour contract workers in charge of airport security seemed an unforgivable foolishness — which, in fact, it is.
Sophisticated equipment in small airplane is used to eavesdrop and monitor of suspected terrorists. In UK this plane is flew by RAF. But this is not only one technological measure against terrorists.
More such action will follow and not only against suspected terrorists. Last month European Commissioner responsible for Justice, Freedom and Security Franco Frattini spoke about connection between Internet and terrorists. The same he told on last meeting of European Home Department secretaries in Lisbon.
Really hard are these days in Burma — Myanmar. Every news channel reported about reaction of military junta, that supressed with force demonstrations lead by monks.
Official informations from Burmese junta says, that there has been few dead and injured. Army took over many cities to avoid any further demonstrations. What is surprising in this issue? Many people informed, that provided informations are wrong and numbers of deads and injured are much higher. Censorship?
It’s been few weeks since Mrs. Merkel on her visit in China complained about spyware and hackers attacking German institutions. And more weeks ago Strafgesetzbuch — German penal code was updated. Mrs. Merkel’s government wanted probably distract all German hackers and crackers and script kiddies from attacking their institutions. From professional point of view, this is the bad implication of maybe good idea.
So called anti-hacking law is part of German penal code — §202. It talks about inviolability of letters. But newly added parts speak about possessing and using hacking tools, querying systems to get informations… Let’s look, what is inside.