« Not Lucky Enough | Main | Staying Power »

08 October 2006

I am <> a crook

My clients demand that our systems be "totally secure".  If something even hints of going wrong, I often get very angry and condescending phone calls.  I try to tell people that computers and the Internet are in their infancy.  There are many ways to compromise a computer system and the day that there is not is the day innovation stops.

So we have to assume a certain amount of risk tolerance  when we venture forth into the world of net based business.

This week, even vaunted Google was hacked.  The post was actually quite brilliant and has made its point.

What was also interesting is that we in the net community quickly picked up on and started blogging about the post, even though many expressed confusion about the poor grammar and misspellings.  So we started discussing information from a trusted source, even though we felt something was fishy.

Now, imagine if that hacker was a little smarter.  What if that hacker popped into a long blog post and removed a key zero in a figure or removed the word "Not" from a key sentence.  It may take days to figure out the error - by which time massive damage could be done.

This hacker had a key message to deliver and went for that.  But his message was deliberate and obvious.  It was easy to spot and remove.

What happens when it's not so apparent?  This stuff is neonatal.  We feel secure, but are we vigilant?


Technorati Tags: , , ,

powered by performancing firefox

Posted at 11:04 in Business Cooperation, Cooperation, Culture |

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d8341cdbc253ef00d834ba8ef553ef

Listed below are links to weblogs that reference I am <> a crook:

Comments

The hint in the comments log from Techcrunch that I forwarded to my blog was that this was an exploit of a hole in the Metaweblog API and RSS, not solely something in Google. I haven't yet been able to confirm that
allegation, but expect that this is just a single high profile instance of what might be more broad probing of Web 2.0 APIs often cobbled together with an eye to quick implementation and short shrift to security.

Posted by: Edward | 09 October 2006 at 10:42

I have the same fear. As APIs allow the introduction of information from secondary or tertiary sources, the opportunities for mal-includes are plentiful.

Posted by: Jim Benson | 09 October 2006 at 13:00

Verify your Comment

Previewing your Comment

Posted by:  | 

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Post a comment

Jim Benson

Subscribe to Evolving Web



Follow Jim on Twitter

    follow me on Twitter
    See Jim's Profile
    Jim Benson's Facebook profile
    Create Your Badge

    Categories

    Archives

    Categories

    My Photo

    About

    Retain Jim

    Jim Benson is a collaborative management consultant. He is CEO of Modus Cooperandi, a consultancy which combines Lean, Agile Management and Social Media principles to develop sustainable teams.

    Listen to Jim's Music

    James Benson

    Visit this Wish List at Amazon.com

    Gizmos

    • Amazon Link Updater
    • GVisit
    • MyBlogLog
    • Technorati
    • Google Analytics

    Jim Benson

    • Jimeatinghappilyinbeijing