LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   General (https://www.linuxquestions.org/questions/general-10/)
-   -   A new security scandal (https://www.linuxquestions.org/questions/general-10/a-new-security-scandal-4175616585/)

hazel 10-29-2017 08:14 AM

A new security scandal
 
You keep thinking it can't get any worse and then it does.

A homeless man found a memory stick on the streets of London. Curious to know what (if anything) was on it, he took it into a local library and plugged it into a computer there. It turned out to be security information for Heathrow Airport, including the route the Queen takes when she flies from there. And wait for it: it wasn't even encrypted!

What do these duffers think they're playing at???

orbea 10-29-2017 09:11 AM

Source?

hazel 10-29-2017 10:27 AM

Quote:

Originally Posted by orbea (Post 5774958)
Source?

http://www.bbc.co.uk/news/uk-41792995

The original source was the Sunday Mirror, which is a tabloid, but I heard it on the BBC, which means they are taking the story seriously.

sundialsvcs 10-29-2017 11:48 AM

"Taking it seriously" doesn't of course mean that it's true.

I daresay that the duffers who are tasked with protecting the Queen are not that "duffers!"

DavidMcCann 10-29-2017 12:14 PM

The security is the province of the Metropolitan Police. Are they computer-savvy? Well,
https://www.theregister.co.uk/2017/0...s_xp_machines/

In France, the Gendarmerie nationale have been using Linux for years:
http://www.profession-gendarme.com/l...passe-a-linux/

frankbell 10-29-2017 08:27 PM

The single biggest security risk in any OS is the user.

sundialsvcs 10-29-2017 10:19 PM

Quote:

Originally Posted by frankbell (Post 5775102)
The single biggest security risk in any OS is the user.

And if your appointed task is State Security, virtually every oddball requires Due Diligence.

hazel 10-30-2017 02:56 AM

Quote:

Originally Posted by sundialsvcs (Post 5775127)
And if your appointed task is State Security, virtually every oddball requires Due Diligence.

But the scandal here is not that some terrorist/oddball slipped through the surveillance net. It's that all the information a terrorist might need to cause a massacre at Heathrow was kindly made available by copying it onto a pen drive without encryption and leaving it on the street for any Tom, Dick or Harry to pick up. I ask again, what kind of brainless idiot would do that? And why are we employing such idiots in our security services?

sundialsvcs 10-30-2017 07:42 AM

I would consider it virtually impossible for the story to actually be true.

cwizardone 10-30-2017 10:26 AM

I stumbled across this while reading an aviation web site,

http://edition.cnn.com/2017/10/29/eu...ick/index.html

dave@burn-it.co.uk 10-30-2017 01:16 PM

The quickest way to find out if it is true or not is to find out who has recently been fired from the security team ;)

Arcane 10-30-2017 01:35 PM

I dunno about Queen but i noticed something else. You know that todays phones makes those automatic blank photos in pocket if you press by accident buttons on side? Well i fixed this by downloading from GooglePlay camera lock app and then some websites when you want to post something make your browser crash and it also displays same message when trying to launch camera when locked. Could it be that government secretely uses front photo camera on phone to make sure not a single post on those websites are anonymous and fake profiles? Is this legal?

ondoho 10-30-2017 02:52 PM

so the finder mutated from unemployed to homeless or vice versa... i wouldn't be surprised if s/he mutates to disgruntled employee at some point...

DavidMcCann 10-31-2017 12:42 PM

The CEO has told MPs "From the information that I have seen that was reported in the papers, there was nothing there that causes us any security concerns." In other words, the Mirror didn't actually show the item to the airport: they only know what was printed in the paper. He added "We immediately set up an internal investigation to find out what happened, and that is ongoing. We have involved the Metropolitan Police in that investigation. They would say that, wouldn't they?

Pastychomper 11-01-2017 05:48 AM

I work for a company that's ultimately funded by government, and there it's a fairly serious no-no to use any removable storage device other than one on a short list of approved, encrypted devices provided by the company. That wasn't always the case, so I think it's possible that someone, somewhere might quickly save hir information to any old memory stick if their office hasn't caught up.

I can also imagine some joker making up realistic-looking "security" information, saving it on a free memory stick, and "losing" it near the offices of some newspaper, just to see if they can get a reaction.


All times are GMT -5. The time now is 10:30 AM.