12
Sep
12

Security holes

Today, Jeff Atwood posted about social engineering as the ur-vulnerability in computer systems.  The crackers he profiles, Kevin Mitnick and “Max”, aren’t emotionally-stunted keyboard jockeys but rather masterful (or at least highly effective) manipulators.  Atwood writes:

One of the most striking things about Ghost In The Wires is not how skilled a computer hacker Kevin Mitnick is (although he is undeniably great), but how devastatingly effective he is at tricking people into revealing critical information in casual conversations. Over and over again, in hundreds of subtle and clever ways. Whether it’s 1985 or 2005, the amount of military-grade security you have on your computer systems matters not at all when someone using those computers clicks on the dancing bunny. Social engineering is the most reliable and evergreen hacking technique ever devised. It will outlive us all.

(Emphasis in the original.)

——

Bruce Schneier has written about bomb threats as a social denial-of-service attack.  Sometimes this happens inadvertently, as with this “suspicious package” left on a bus in Victoria.  False threats and accusations are nothing new, of course: It costs very little to conjure up a threat, and the more extensive the response the more appealing the cost:benefit ratio.  Commenter Mark on the Schneier post points out that the IRA did this in Britain in 1997.

——

Yesterday, news that an American-Israeli real-estate magnate named Sam Bacile was filming a five million-dollar  “documentary” based mostly around the principle of insulting Mohammed (possibly in cahoots with noted American asshat and pain in the ass to civil libertarians everywhere Terry Jones) brought about attacks on the American embassy in Egypt and consulate in Benghazi.  People were killed, more people were hurt, shit was broken, and even otherwise-reasonable commentators were driven to bay for blood.

Now it turns out that “Sam Bacile” is at best a pseudonym and quite likely, along with the movie itself, a complete fabrication.  Care to wager on whether this was a false-flag operation?  Spend a few thousand dollars on a shitty movie trailer, do a shitty overdub to make it offensive to Muslims, release it on September 11th, and hope someone gets stupid.  At the very least you can expect to keep this particular culture war simmering right along, and there’s a nonzero chance that you can incite some serious violence and a major international incident.  No poker player in the world would fail to bet at those odds.

Advertisements

2 Responses to “Security holes”


  1. 1 Dave
    September 13, 2012 at 05:56

    Situations like this are inevitable as long as two cultures are in contact where one has freedom of expression and the other believes violence is the proper response to offense. The culture war will continue until one group or the other is destroyed or subjugated.

    And ‘Bacile’ may an asshole for trolling this latest flareup of barbarism, but if asshats aren’t free to offend then none of us truly have freedom of expression.

    • September 13, 2012 at 07:56

      The culture war will continue until one group or the other is destroyed or subjugated.

      Meh. Neither group has the capacity to destroy or subjugate the other, unless you count the possibility that the Enlightened West could simply carpet-nuke most of the rest of the world. I suspect that this conflict will stagger on into the future until globalism finally brings up standards of living in Egypt, Libya and the rest to the point where people are too busy tweeting each other about celebrities’ love lives to give enough of a shit.

      And ‘Bacile’ may an asshole for trolling this latest flareup of barbarism, but if asshats aren’t free to offend then none of us truly have freedom of expression.

      Yep, and that’s true whether Bacile is a shit-disturbing Coptic extremist, an Islamist agent-provocateur, or a massive troll fabricated by Anonymous.


Leave a reply; use raw HTML for markup. Please blockquote quotations from the post or other comments.

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


anarchocapitalist agitprop

Be advised

I say fuck a lot

Categories

Archives

Statistics FTW


%d bloggers like this: