Read up on the latest ideas and technologies from companies that sell hardware, software and services. Solve Exchange Storage Problems Once and For All: A New Approach without Stubs or Links
Email Archiving Implementation: Five Costly Mistakes to Avoid
Best Practice in Building an Integrated Information Management Strategy
Solve Exchange Mailbox Storage Issues Once and for All
Wireless LANs: Is my enterprise at risk?
Vendor Influence Curves And How You Can Get The Best Value Out Of Your Network
Why Security SaaS Makes Sense Today
Mimosa™ NearPoint™ for Microsoft® Exchange Server: Email Archiving 101
Zones provide focussed content from Computerworld and leading technology partners.Newsletter Subscription
Russ Jones tells a tale of woe that isn't particularly dramatic -- or rare -- and yet it's exactly the kind of story that worries me enough to ignore my better judgment and buy identity-theft protection from my insurance provider.
Jones sent me an e-mail after reading a post about the theft of a laptop containing personal information -- including payroll and bonuses -- belonging to an untold number of AT&T employees. AT&T insists there is no reason to believe that the information has been used for nefarious purposes, but Jones is of the opinion that such assurances should be of little comfort to those victimized.
That's because he's been there.
Here's what Jones had to say:
I used to work for Boeing in Wichita. Boeing sold the Wichita division and all of the workers, including me, to another company. We still did the same work, but Boeing was just one customer of several.
Nearly a year after the sale, someone at Boeing lost a laptop that had the names, addresses and Social Security numbers of nearly all of the 12,000 Wichita ex-employees on it. They waited an unknown period of time before telling anyone, then another couple of weeks before they offered to pay for credit reporting subscriptions for us. They offered no compensation for people that had been actual identity-theft victims and they wouldn't pay for identity-theft insurance.
Almost immediately after the laptop went missing, someone used my SSN to apply for credit cards all over the country. The name they used was always close, but not exactly a match to my name/address. They used addresses of those private mail drop places.
Since I'd lived at my house for nearly 20 years at the time, all these bogus addresses made the credit card companies reject the applications, but those rejections showed up on my credit reports and lowered my rating.
The credit bureaus (I had to deal with all three of them separately) couldn't just remove those rejections; they said that the credit card companies that made the requests had to retract them. The bogus addresses also appeared on my credit report as alternate addresses for me, and I had to convince the credit agencies that I'd never lived in Minneapolis or Boca Raton or wherever.
I spent untold frustrating hours on the phone being transferred from one credit card company customer service representative to the next, listening to crappy on-hold music, often being disconnected, and having to tell my story over and over. It took several months to finally get everything cleared up, and I now have a fraud alert on my credit rating so nobody can request a report without my explicit permission.
That's really a double-edged sword. I recently tried to open a new bank account and when the bank found out that there was a fraud alert on my account, they assumed that I was a criminal. I eventually went to a different bank, one that didn't need a credit report to open a checking account. There have also been credit report requests in the last two or three years since the original laptop loss that didn't originate with anything I'd done. They were rejected, but there's someone out there that's still trying.
Like AT&T, Boeing wasn't particularly apologetic. They insisted that the information "probably hadn't been compromised," and they couldn't explain why someone was running around with the social security numbers of a bunch of people that didn't even work for Boeing.
You can read a news story about the Boeing incident here. You can read about similar incidents pretty much every day of the week, or so it seems.
Security guru Bruce Schneier had an interesting post recently that included the contention that identity theft isn't necessarily the financial drain or pain in the ass that worrywarts such as yours truly might fear. He wasn't saying it's a picnic, just not the catastrophe one might imagine ... and it's not worth paying any significant insurance premium to mitigate.
He's probably right, but as with so much surrounding the purchase of insurance, this isn't entirely a decision based on logic alone.
Here's my bottom line: Aside from the really serious worries in life -- health, kids, job security, etc. -- having to go through what Russ Jones went through is way up there on my list of fears. It would drive me absolutely bonkers to have to spend so much time -- time I don't have to spare -- undoing the damage to my financial reputation.
Especially since the exposure to that damage was someone else's fault.
Computerworld Member Login
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
NetStar Networks Calls Brisbane Home 2008-10-13 12:01:00+10
New Verizon Business Managed Service Makes Collaboration Easier 2008-10-13 10:06:00+10
F-Secure achieves excellent results in Internet security suite comparison 2008-10-10 14:37:00+10
M2M Connectivity announces the new Sierra Wireless MC8792V embedded module for 900 MHz 3G/HSPA networks 2008-10-10 08:51:00+10
Pitney Bowes MapInfo Launches New Version of AnySite 2008-10-10 05:58:00+10
Email Archiving 101—Customer Case Study
Join Lee Benjamin, a Microsoft Exchange MVP and Ryan Shipkowski, network administrator for Matthews, to discuss the process and ROI of implementing an email archiving solution, with emphasis on a case study from Matthews International.
