Wow.

If you used that phrase 10 years ago people would’ve been very scared of the future.

Most likely it’s just laziness.

Seems to me that Garretson is just taking everything NextSentry feeds her and putting it out as a reported story that she’s investigating.

If you’re gonna steal data you don’t need 20Gigs of space, Information is typically text after you take it out of databases and it compresses down nicely.

In fact any good hacker will just connect out from the Corporate network through port 80 to his SSH server (That’s right putting up a service on a different port) it to his/her house or onto a server they own.

It’s not all that tricky, people just creating false claims to reduce sales is what this is all about.

Heck, anybody who wants just about any piece of data can find it. It’s just a matter of patience and good searching.

Sure security is a problem. Maybe if we put all those DRM guys to work on it, they could work on securing something useful. Not that my Bananarama collection isn’t vital, but national security could take precedence under extenuating circumstances.

But there exists a huge, real problem in companies with controlling their data and removable storage.

The problem isn’t so much an employee downloading data and selling it or taking it with them to new employers. While that’s a risk, in reality it very rarely happens and there isn’t anything a company can really do about if they want that data to be available to employees that need to work with it. A malicious employee doesn’t need to use an iPod when they have high-speed Internet access, a CD or DVD burner, or essentially any physical access to a computer with access to the data.

The problem is an employee putting this data on a removal storage device and then losing the device. “Now where did I leave that tiny, convenient, cheap, seemingly disposable device that can hold millions of dollars worth of internal data and customer information? Oh well, I’ll just buy another one for $10 at Target and download the info again tomorrow.”

There’s no good solution to this. Information that can be accessed by a human can be copied. The copy can be transfered — intentionally or not — to unauthorized parties.

Laptop hard drives can be encrypted. Desktop and server hard drives can be encrypted. Network communications can be encrypted. Removable storage can be encrypted or disallowed, but then employees can’t take data home and they can’t share data with legitimate third-parties (such as business partners or customers).

So, the problem is complex and there’s no panacea. That can and does make for interesting journalism, but not from a hack like Cara Garretson.

I did mean negate in terms of not having Zune retroactively apply DRM, yes. Although I suppose, if you are squirted a DRMed song, this allows you to make backup copies, so you can get your three plays over and over again. I don’t know how you could easily override the 3 days clause, however. Probably in mucking about with date settings.

Yes, it is roundabout and much more a hassle than a $10 memory stick, but it 1) can be done again and again with no expended hardware (IE, nothing given away) and 2) gets several panties in a bunch.

Anyway, where I work turning off USB ports would then disable Blackberry sync usage right? Thankfully we in a Mac only dept. and IT leaves us alone.