The Glider

It has been a bizarre wild ride with the “security firm” Ligatt. Yes, I just gagged a little there. Well, Greg has filed suit…again. This time he’s going after Attrition.org and Ligatt Leaks for reporting on…information in the public domain.

Um, whut? Next thing you know Ligatt will sue the sun for shining. What does it take to make this nonsense go away?

From The Tech Herald:

The most recent complaint from Ligatt, as well as the Temporary Restraining Order (TRO) related to it, was filed on the same day the scorned security firm sent a letter to CBS Atlanta blasting them for a story on their company and CEO, Gregory Evans. The complaint is under seal and lists eight John Does, so The Tech Herald was unable to recover it fully from PACER, but based on other documents related to the case, it looks as if it centers on the data breach incident.

It will be interesting to see how this plays out on Monday. It would be wonderful if this numb nuts would just go away. Just saying.

Article Link

(Image used under CC from TheFlyingGerbil)

Oh my sweet merciful crap.

You know, Assange really is a pinheaded twerp. I’m amazed that he can walk with a set of brass balls that size. While having made a name for himself, and let’s be honest it seems to be all he is really concerned with, he has the audacity to threaten others for publishing leaks?

Really Julian? So, how does Assange feel about having his information leaked?

From The Register:

He disagreed. According to Vanity Fair he was “enraged that he had lost control… arguing that he owned the information and had a financial interest in how and when it was released”.

Assange was eventually calmed by the promise of a short delay to allow him to brief French and Spanish newspapers that the release was imminent, plus “a great deal of coffee followed by a great deal of wine”.

“Much to come on the Wikileaks story,” Brooke wrote on Twitter this morning. “Vanity Fair article is just the tip.”

Financial interest? Gaming the market perchance?

Oh, the press are here…strike a pose big boy.

Article Link

Image used under CC from Chris Blakeley

Asset tags are a necessary evil in an IT environment. Well, in one that has a clue. Imagine an organization that doesn’t have asset tags on their laptops. Now, imagine someone on staff selling those laptops on eBay. You might laugh. It happens far too often. As a result “most” organizations use some sort of asset tag. But, even then an organization can invariably figure out a way to mess up something that simple.

Case in point. I was riding the train home from work when I spotted someone from a company called Canadian Tire. The person in question had their laptop open and were working away madly none the wiser that I could see their access card on a lanyard.

There it was. Glistening in the sunlight. The asset tag with a GREAT BIG LOGO.

(Image used under CC from eltham_mob)

Now, if I were a ne’er do well I would now have a prime target to social or what have you. Long and the short being that this organization has put their employees in the crosshairs by shortening the distance between safe and boneheaded in one easy sticker. I almost wonder if this is akin to male cat wandering around its neighbourhood pissing on everything in sight. All the while thinking to himself, “that’s mine, that’s mine, oooh nice, that’s mine”.

Organizations need to take a little more time to consider what they’re doing when they slap their logo on every available surface. Many people work away on their laptops on the train, in coffee shops et cetera. Why would you want to draw attention to them by making it obvious as to where they worked? Why would you want to potentially put your employee in jeopardy?

It doesn’t make sense to have an asset tag that clearly identifies the company on a laptop lid or similar mobile asset. If there really is a need to do so something like a QR-Code could be used instead.

If you’re of a mind to have an asset tag (good idea) you should not skimp on the cost here. I have seen the absolutely moronic and ill conceived rollout of asset tags that, not only identified the company but, peeled of very easily leaving no trace.

Um, yeah, WTF?

Here’s an example of what an asset tag should leave behind if its removed.

Notice the residual pattern? An ordinary sticker just won’t cut it.

Asset tags are a necessary item to track your corporate resources but, for the love of all that’s good and holy, do it right.

If the idea of having Google auto sort your email wasn’t bad enough they apparently thought that adding some jazz music in the background was a good idea. As a result a large number of users thought that they had been infected with a piece of malicious software.

From V3.co.uk

Chrome users opening their inboxes heard a distinctive ragtime jazz tune playing in the background, causing a mixture of panic and anger, according to many complaints that deluged the Gmail help forum.

“It sure creep me out. I thought I got some virus. Closed down all the windows, music was gone,” wrote kasahmed.

Don’t get me wrong, I like jazz, but for the love of all that’s good and holy you should at least let the end user know what to expect. The music portion notwithstanding I think that having the Goog sort your email is a daft idea. From reports that I’ve already read it has a low success rate in picking important vs junk-esque email.

So, no on the virus. Yes on the bad idea.

Article Link

(Image used under CC from spbutterworth)

Or, a more appropriate title, “UK Government: How To Fail”.

So, the bullet point version is that a petition was circulated in an effort to get the UK government to drop the use of the Internet Explorer 6 browser. Well, they got the petition and responded roughly as follows…

From Ars Technica:

Complex software will always have vulnerabilities and motivated adversaries will always work to discover and take advantage of them. There is no evidence that upgrading away from the latest fully patched versions of Internet Explorer to other browsers will make users more secure. Regular software patching and updating will help defend against the latest threats. The Government continues to work with Microsoft and other internet browser suppliers to understand the security of the products used by HMG, including Internet Explorer and we welcome the work that Microsoft are continuing do on delivering security solutions which are deployed as quickly as possible to all Internet Explorer users.

I can see VXers tenting their fingers madly and doing their best Mr. Burns impressions as we speak.

Please, pull out the clawhammer…gently…OUCH!

Article Link

(Image used under CC from billypalooza)

Seriously? People are falling for a keygen ruse for Firefox 4? Holy hell. People need to start taking their coffee intravenously it would seem.

From Sunbelt Software

Why would you need a crack (program with its password broken) or a keygen (application that generates a password for a password-protected program) for something that is FREE?

Well, there’s a sucker born every minute and the folks at this warez (pirated software) site are betting there are a lot of them using Twitter.

Apparently this link bait is being passed around with scam accounts on Twitter.

Any unfortunate soul who sees fit to click on one of these links would run into a host of maladies such as:

FraudTool.Win32.FakeVimes
Trojan-Downloader.Win32.CodecPack.2GCash.Gen
Trojan.DNSChanger.Gen
Virus.Win32.Parite
TrojanDownloader-Win32/FakeRean

Take a moment to think before you click links like a mad fiend.

Article Link

(Image used under CC from schoschie)