Sloppy security hygiene made Sony Pictures ripe for hacking

Sony Pictures Entertainment's (SPE) computer hygiene in the years leading up to last month's hack was breathtakingly sloppy, with the movie studio's CEO regularly being reminded of e-mail, banking, and travel passwords in plaintext e-mails, according to an Associated Press report published Thursday.

Headlined "Sony emails show a studio ripe for hacking," the article is based on a review of more than 32,000 stolen corporate e-mails released on the Internet by people connected to last month's hack of SPE. The e-mails show CEO Michael Lynton repeatedly receiving plaintext passwords in unencrypted e-mails for his and his family's e-mail, banking, travel, and shopping accounts. The unencrypted e-mails were frequently sent by executive assistant David Diamond. Other e-mails included images of passports, driver licenses, and banking statements.

While the catastrophic hack that hit SPE is generating intense scrutiny of the company's security practices, it's widely believed that many if not most corporations and smaller businesses are no better at securing their data. Executives assume that e-mails they send can't be read by anyone other than the intended recipient. Employees have little awareness how easy it is for the computers and smartphones they use to be compromised and for those hacks to then spread to corporate networks. The AP quoted security expert Kevin Mitnick as saying, "It's pretty ordinary for CEOs and executive assistants to share confidential information by e-mail. They feel their e-mail is secure and they have nothing to worry about."

Read 2 remaining paragraphs | Comments

Forget its hotels, Sochi’s tech has been up for the Olympic challenge

The scale and grandeur of the Winter Olympics in Sochi is estimated to have cost Russia an astronomical $46 billion. Two of its key telecom partners, Rostelecom and Megafon, pledged less than one percent: about $415 million total. But was that enough to turn a mountainous subtropical resort into a world-class connected site, with full LTE coverage for the first time in the Olympics' history? And perhaps more importantly, what behind-the-scenes technology keeps the Olympics running securely?

You've probably heard multiple accounts of everyday life horrors in Sochi, such as missing bulbs in hotel rooms, weird bathrooms, and dangerous manholes. But complaints about the cell coverage, Wi-Fi quality (even if it was provided that way), and overall connectivity have been nearly indiscernible in the Olympic buzz.

Digital surveillance fears, however, lingered across the board.

Read 28 remaining paragraphs | Comments

Mobile users afraid their data is not safe

Oracle released a survey today showing customers lack of confidence in the security of data on their smartphones. Mobile control can help, IT administrators must partner with their users to make mobile data usage safer.