Mis-Spelling

Posted: Fri 24 July, 2009 | Author: | Filed under: Cynicism, Security, Stupidity, Thoughts | 2 Comments »

Yesterday, I got three spam emails attempting to go phishing for my log-in details.

Now, as I’ve said before many times, I feel that anyone who responds through these phishing emails deserves everything they get for being a bell-end and clicking on links in random emails. (Particularly when they then go to some very odd URLs that have nothing to do with the bank in question – in this case www.mybank.alliance-leicesterXXX.com)

And if anyone responded to any of these particular three emails, then they’re even more deserving of getting ripped off. In fact I’d then go so far as to simply term it as an idiot tax.

Because the subject line for all of these email addresses was :

Secure Message from Alliance & Liecester

And if you don’t spot that in the email, and still click on the links, you damn well deserve to lose your information/money.

Think 25

Posted: Mon 6 July, 2009 | Author: | Filed under: Customer Services, Cynicism, Security, Stupidity | 2 Comments »

Over the weekend, I noticed that Sainsbury’s (and, I assume, the other supermarkets) are now operating a “Think 25” policy, where if you’re buying items that are prohibited under a certain age, you’ll get asked for ID first.

What items are we talking about? Well, to my knowledge – and this isn’t a comprehensive list, although I could probably find one if I tried – it consists of :

  • Cigarettes  (18 or over – it used to be 16, but changed in October 2007)
  • Alcohol (18 or over)
  • Blades – knives, razor-blades etc. (18 or over)

It used to be that if you looked under eighteen, you’d be asked for ID. Fair enough – 18 was the limit for most of the age-limited items.

Then the stores started getting paranoid about customers who just “looked” 18 getting through the system, so they invoked the “Check 21” policy, where even though you were legally allowed to buy said products, if you looked up to three years older than that, you would still get asked for ID – and not allowed to purchase the products if you didn’t have ID.

Now they appear to be even twitchier about it, and the “ask for ID” limit is 25 – and that’s if you look 25, not whether you are or not. So a whole seven years more of being asked for ID.

And the really stupid bit? The entire thing is voluntary – which means it’s perfectly legal for the only-just 18 till-person to sell the (for example) beer, but ask ID of someone who looks up to seven years older before they can sell it.

Totally barmy.

Airport “Security”

Posted: Thu 18 June, 2009 | Author: | Filed under: 1BEM, Cynicism, Security, Stupidity, Thoughts, Travel | 1 Comment »

I’ve always been fascinated by the entire “security theatre” thing since 11/9  (Sorry, 9/11)  and this article goes some way to showing some of why I find it so interesting.

What’s security theatre? It’s the farcical measures that’ve been thrown up – particularly in airports – since the 9/11 terrorist attacks. They’re not about security, they’re about making people think they’re secure – and it’s all pretty farcical when you think about it.

Bruce Schneier has been a critic of airport security and the security hype for a long time now – he’s a security and cryptography expert, who’s written some very cool stuff over the years, and knows what he’s talking/writing about. He’s quoted throughout the article, and makes far more sense than anything that the TSA and associated agencies can come up with.

All told, it’s a well-written piece, and well worth reading.

Inauguration

Posted: Tue 20 January, 2009 | Author: | Filed under: Cynicism, Security, Thoughts | 2 Comments »

So, today is the day when Barack Obama is inaugurated as President of the USA.

I just wonder how long it’ll be before there’s an undeniable assassination attempt now. By that I mean one that’s not just a redneck in a pickup heading towards Washington DC, but shots fired, Secret Service running around etc.

Because I’m an über-cynic, I suspect that it won’t be long…

Locked Down

Posted: Thu 4 December, 2008 | Author: | Filed under: Geeky, Security, Work-related | 8 Comments »

One of the things I’m kind of fascist about in the workplace is locking down workstations when people are away from them. In a big environment, it’s all too easy for someone else to use your computer to do something that they don’t want attributed to them (Such as sending a rude email to the CEO, for example) and if the workstation’s left unlocked then it’s even easier.

In the new place, people just don’t have the mindset to lock down their computers when they leave them. It’s something they should be doing, and it’s part of the IT policy, but they just don’t.

So since I started, I’ve been instigating a guerilla campaign to start making my colleagues lock their workstations down when they leave them. In short, if they don’t lock them down, I play…
(Note : I should point out, if I were to leave my workstation unlocked, I’d fully expect them to do the same to me in return.)

  • Stage One : I created emails to CEOs, colleagues etc., but didn’t send them, and just left them on the desktop.
  • Stage Two : Close down open applications
  • Stage Three : Change the Desktop images
  • Stage Four : Change the colour schemes
  • Stage Five : Change the password…

So far, we’re just on Stage Three. People are learning slowly but surely, but as they learn, the penalties for mistakes become far steeper…

Home Hub Security

Posted: Wed 28 May, 2008 | Author: | Filed under: Geeky, Security | Leave a comment »

Got a BT Home Hub? If so, you really need to read this on the Register, and then go off to BT’s site and follow their instructions for making it properly secure rather than leaving the security settings at their defaults.

Thankfully, we don’t have one of these abortive pieces of crap and instead have our own wireless router/firewall thingy.

But it’s scary to see just how insecure the BT Home Hub is by default…

eNannying

Posted: Fri 10 August, 2007 | Author: | Filed under: Customer Services, Cynicism, Geeky, Security | Leave a comment »

The story today about a report recommending better laws against ‘e-crime’, recommending that software producers etc. should be made to pay compensation to the victims of ‘e-crime’ left me frothing at the mouth.

Responsibility for protecting users also fell to “the IT industry and the software vendors, the banks and internet traders, and the internet service providers”, he said.

Now I’m sorry, but that is just utter shit. Well, up to a point, anyway.

Personally, I firmly believe that we’re responsible for our own security, whether that is the physical stuff (closing/locking doors and windows, locking the car, that kind of thing) or whether it’s computer security – anti-virus, firewall, security patches, keeping the OS up to date, all that guff. However, I also try to bear in mind that the world is full of fuckwits, so I would like to see PC manufacturers/sellers have some decent (and preferably free) security software pre-installed on all new machines. Mind you, I’d also like to see ISP CDs provide the same kind of thing. And I’m not talking about processor- and memory-intensive hogs like McAfee or Norton, either. And I do think that if you’re provided with a broadband router/modem, then it should be one with a built-in firewall, rather than just the cheapest box they can find. So on that score yes, I do feel that companies should be encouraged to do more to deal with the problem from the start – and to have these things installed and activated by default, without the need to go through shedloads of financial commitments and contracts (McAfee/Norton/Symantec, I’m referring to you) – just have it ready to run from Day One.

But when all’s said and done, that security is still a personal responsibility, not one that should be legislated by government. If you opt for being a fuckwit, not running AV, running an out-of-date or unpatched browser/OS, and then clicking on some dodgy email purporting to be from your bank rather than going direct to the bank website to check it out, you deserve to get stung. I tend to think of it as an idiot tax.

Antivirus-wise, AVG offers a completely free version of their fantastic anti-virus software, which I’d recommend to anyone. Personally, I use the paid-for licensed version, because I think that the software is so good it’s worth the £25 for two years for a single license. (I’ve actually got it licensed for 5 machines, I think – should keep me going)

But none of this internet security stuff is really difficult. You just have to have some kind of intelligence, and not just click on a link in an email, for example. It really isn’t rocket science.

And if you can’t be arsed to run AV, or do just click on that link that says it’ll go off to [xxx] bank so you can change your password, as it may have been hacked already? Then I’m afraid you should be liable for the results of your own idiocy. And I’d say the same thing even if I were to fall for something like that.

Idiot tax – pay it, and learn from the experience.

← Older Entries
Newer Entries →