The TSA (which to its credit, has a blog) explains the MacBook Air fiasco from their perspective:

One thing is for sure though. This was just a case of diligent TSOs paying special attention to something that caught their eye. Exactly what they are trained to do.

Ok, here's my question: if it's your job to recognize potential security risks, isn't it also part of your job to recognize existing technology? If they can't recognize existing technology, then I rather suspect that they wouldn't recognize an actual security risk until it landed on them...

Technorati Tags: stupidity, mac

Oh boy - this is just too funny a story (unless you happen to be the one who gets delayed): The TSA stopped a guy with a MacBook Air because - without a hard drive - it must be some kind of faux device.

Insert some snorting here :/

Technorati Tags: travel, laptop, macbook air

I've been wondering about the veritable flood of Russian language spam; I guess this explains the volume:

Russia now occupies number one spot on this ranking with 27.4 percent of malware, slightly ahead of China on 27 percent. Both leave the U.S. trailing in third with 10.1 percent, Brazil on 6.6 percent, and the U.K. with 5.32 percent.

Of course, I have to wonder about the intelligence behind this. Sure, there are lots and lots of Chinese speakers around, both inside China and out. But Russian? Just how effective do they think that is?

Technorati Tags: spam, malware

About a week ago, we had some phishing files uploaded to the Wiki - which caused us a bit of grief. Today, I see that the Italian police have found the people behind the scam:

The Guardia di Finanza (Military Financial Police) cuffed 18 Italian citizens and eight Eastern Europeans as part of "Phish and Chip", an operation aimed at dismantling a gang targeting users of Poste Italiane's home banking services.

I'll have to keep monitoring the Wiki though - it's not like these are the only bad actors out there.

Technorati Tags: phishing

You have to love this - I'm in Dayton, waiting for Arden to arrive, and I decided to refresh my Facebook page. Here's what I got:

That's "Web Marshal", which has apparently classified Facebook at Porn. It also calls a bunch of blogs I read that way. All I can say is... lol.

Update: Click through for a larger image

Here's a security tale that will either make you laugh out loud, or pull your hair out (depending on whether you live in Europe and whether you care about Windows *cough* security *cough*). If you have Windows Vista installed in Europe, you can't lock out USB devices unless you install Windows Media Player. Why?

The ability to block read/write access to removable storage devices via Group Policy depends on the presence of the Portable Device Enumerator Service, which is not installed by default in the Vista Business N edition. We discovered this because we accidentally installed this version of the operating system on our test machines. Vista Business N is a Europe-only edition that complies with the EU mandate that Windows Media Player be decoupled from the operating system.

Unfortunately, the Portable Device Enumerator Service comes with Windows Media Player rather than with the base Vista operating system, so the N versions of Vista won't get the feature without installing the Windows Media Player or kludging together a different workaround.

Some people are going to sniff an evil plan from MS here, but I seriously doubt it. I'll echo something I heard Doc Searls say on last week's TwIT podcast - "Never ascribe to malice what can be explained by incompetence".

Technorati Tags: stupidity

I wrote about the silliness of the way Vista handles Installers awhile ago; they run with admin rights. Now, it turns out that it's even stupider than I thought:

"If Vista sees that you have created a Microsoft Visual C++ project with install in the project name, then that .exe will automatically require Admin Rights to run. Create exactly the same project, but call it, say, Fred, and the problem disappears," he explained. "Vista's security isn't just concerned with what an .exe is doing to your PC, but what it's actually called."

I think I'll call that security via stupidity.

Technorati Tags: windows

Chris Petrilli is unimpressed with Microsoft's ability to issue security updates in a timely fashion

Technorati Tags: Windows