US man confesses to part in $1.3M bank and payroll phishing scam

May 8th, 2012

By: Lisa Vaas
Filed under: Data loss, Law & order, Security, Uncategorized
Tagged with: ADP, Alphonsus Osuala, Bank of America, Branch Bank & Trust Co., Charles Umeh Chidi, Chase Bank, identity theft, Karlis Karklins, Lisa Vaas, Marvin Hill, Naked Security, Osarhieme Obayagbona, phishing, Shawn Conley, usaprince12k, Waya Nwaki, wire fraud

Posted May 8, 2012

A 31-year-old US man from Atlanta, Georgia, admitted last week that he and his gang stole more than $1.3 million USD by phishing confidential account information from e-commerce sites. Be careful, particularly if you do your banking at a large online bank, because those are now scammers’ favored phishing grounds. The Anti-Phishing Working Group’s latest survey shows that PayPal, after years of being phishers’ fav, is no longer No. 1 It’s ecommerce sites (and BANKS!) they’re after, since there’s more coinage to be had. Read it.

How to Give a Catastrophe-Free Presentation

April 27th, 2012

By: Lisa Vaas
Filed under: Malware, Security, Technology, Uncategorized
Tagged with: backup, catastrophe, conference, demo, demonstration, disaster, HP, HP I/O, HP Input/Output, Input/Output, Lisa Vaas, pornography, powerpoint, presentation, projector, slide set, slides, slideshow, streaming porn, thumb drives, usb, video, virus, whiteboard

Posted on 2012-04-10

To wit: How to prep your important presentation for blown bulbs, laptops left in taxis, projectors that get indigestion over your digital input, and viruses that spasmodically stream porn video. I share several horror stories because I know you love to point and laugh at others’ pain. But you’ll learn useful lessons, too, if you stop wasting your time on this pointless repository of clips and read the gosh-darn story.

How to (Kindly! Gently!) Tell Users That Their IT Problems Are Their Own Fault

April 27th, 2012

By: Lisa Vaas
Filed under: Career, Management, Technical Support, Uncategorized
Tagged with: blame, compassion, fault, HP, HP I/O, Input/Output, jerk, kindness, Lisa Vaas, management, respect, support, technical support

Posted on 2012-03-27

It’s not that you mind being called over when their monitors are unplugged. It’s that it’s happened multiple times — to the same users. Herein, I explain how to let users know they’re idiots without a) telling them they’re idiots and b) getting a reputation as a jerk.
Yes, it’s possible. Read the story.

Mobile phone carriers oppose law requiring warrants for location data

April 27th, 2012

By: Lisa Vaas
Filed under: Data loss, Geolocation, Law & order, Privacy, Uncategorized
Tagged with: bill, California Location Privacy Bill, CTIA, geolocation, GPS, legislation, Lisa Vaas, Naked Security, SB 1434, wireless

Posted on April 27, 2012

The proposed US bill doesn’t stop the carriers from handing over location data, but it does require that police get a warrant first. So what is CTIA’s problem with it? Read the article.

New US counter-terrorism guidelines can hold data on citizens for years

March 26th, 2012

By: Lisa Vaas
Filed under: Uncategorized
Tagged with: ACLU, counterterrorism, Naked Security, National Counterterrorism Center, NCTC, terrorism

Posted March 26, 2012

Last week, US counter-terrorism officials were granted permission to increase the period of time they can retain information about citizens, even if those citizens aren’t tied to terrorism. Here’s my writeup.

I can only repeat the headline for Wired’s cover story: Watch what you say. BTW, do read the Wired piece I reference in the above article, “The NSA Is Building the Country’s Biggest Spy Center (Watch What You Say)“. The NSA’s new data center and other programs are well on the way to cracking even AES encryption (!!!). and the storage facility has the “near-bottomless” capacity to hold “the complete contents of private emails, cell phone calls, and Google searches, as well as all sorts of personal data trails—parking receipts, travel itineraries, bookstore purchases, and other digital ‘pocket litter.’”

Detecting phone scammers automatically through keyword and voice tone analysis

March 22nd, 2012

By: Lisa Vaas
Filed under: Law & order, Mobile, Privacy, Security, Uncategorized
Tagged with: frequency, Fujitsu, keywords, Nagoya University, Naked Security, phone scams, voice analysis

Posted March 22, 2012

Fujitsu says it has created a system that can recognise when somebody is being victimized by a phone scammer, by combining voice intonation analysis with keyword recognition. Read the full story on Naked Security.

Multi-word passphrases not all that secure, says Cambridge University

March 22nd, 2012

By: Lisa Vaas
Filed under: Privacy, Security, Uncategorized, Vulnerability
Tagged with: Cryptography, Naked Security, password security, passwords, research, University of Cambridge

Posted March 19, 2012

Think a passphrase of multiple, random dictionary words is as unguessable as long strings of gibberish, but easier to remember? Not necessarily, according to a recent study. Read the story on Naked Security.

US Army warns about the risks of geotagging

March 14th, 2012

By: Lisa Vaas
Filed under: Facebook, Facebook, Mobile, Privacy, Security, Social media, social networks, Uncategorized, Vulnerability
Tagged with: Facebook, Foursquare, geotagging, Lisa Vaas, military, Naked Security, smartphones, Timeline, US Army

Posted March 14, 2012

The security risk of geotagging is obvious for soldiers: Every time your smartphone uploads a photo to Facebook, it includes exact latitude and longitude. The same goes for anybody: Geotagging on Timeline, Foursquare et al. presents a Dummies Guide to Stalking. Here’s the story on Naked Security.

The Eminently Ignorable Document Retention Policy

March 8th, 2012

By: Lisa Vaas
Filed under: paper management, Security, Uncategorized
Tagged with: HPIO, infographic, policies, security, storage

Posted 03-02-12

Most businesses (93%!!!) have retention policies that dictate when and how to burn shit up. (Burn/delete/pulverize/whatever-ize.) Most businesses TOTALLY IGNORE THOSE POLICIES!! We made a nifty infographic to show how blasé we are about these matters. Check out the infographic on HPIO, then read the HPIO story about how to actually, you know, STOP IGNORING YOUR POLICIES!!!

How to Travel Unmolested by Warrantless Seizures and Creeping Malware

March 8th, 2012

By: Lisa Vaas
Filed under: Law & order, Malware, Mobile, Uncategorized, Vulnerability
Tagged with: cellphones, hack, hacking, HPIO, keylogger, laptops, malware, mobile phones, search, travel, warrantless seizure

Posted March 8, 2012

Travel to the US can be a nightmare; “Homeland Security” has free rein to take your laptop or mobile phone. Travel to China is a good way to bring spyware and malware back home. Here are some helpful tips to make air travel smooth and free of frustrating security snags. Read the story on HP Input/Output.

Purveyor of High-Quality Verbiage

technology, information security, careers, technology careers, science, bees, neuroanatomy, and many etceteras

Blog Archives

US man confesses to part in $1.3M bank and payroll phishing scam

Posted May 8, 2012

How to Give a Catastrophe-Free Presentation

Posted on 2012-04-10

How to (Kindly! Gently!) Tell Users That Their IT Problems Are Their Own Fault

Posted on 2012-03-27

Mobile phone carriers oppose law requiring warrants for location data

Posted on April 27, 2012

New US counter-terrorism guidelines can hold data on citizens for years

Posted March 26, 2012

Detecting phone scammers automatically through keyword and voice tone analysis

Posted March 22, 2012

Multi-word passphrases not all that secure, says Cambridge University

Posted March 19, 2012

The Eminently Ignorable Document Retention Policy

Posted 03-02-12

How to Travel Unmolested by Warrantless Seizures and Creeping Malware

Posted March 8, 2012