<html>
<body>
<font size=3>Well Adam, I'm basing the premise of "an inside
job" on both the specificity of the target: the drives, which can be
used on ANY similar computer, and can be easily concealed, (an employee
walking out could easily conceal them, and not attract much attention)
plus the type of information contained therein. <br>
It would be just as easy to use a server somewhere else in a secure
environ, than to store them locally as happened here. A person would need
to know they were on site.<br>
It's difficult to imagine someone risking a commercial burglary charge,
and data theft charges for hard drives worth at most a few hundred
dollars. The information would be worth more in the right hands, and to
know that information was where it was, one could easily make the
connection either the burglar worked there, or someone who did, tipped
someone else to the value of the drive's information. Even if it wasn't
data theft, but a desire to cripple the operations of the company, cause
panic, loose customer faith, etc. a former employee, or a competitor who
knew it was there would, IMHO, qualify as an "insider".<br>
Now, couple all that, with the claim of "taking extra ordinary"
measures to secure that data, including the $2800 "security"
software, and the alarm system which mysteriously was left off that
weekend, and I believe we have someone with the key to the encryption,
and the knowledge or ability to foil the alarm. The whole thing was just
too smooth IMHO. Also missing is whether the company was insured for the
theft. (Disruption of business insurance etc,)<br><br>
If I were a detective, this is the route I'd be taking most
certainly.<br><br>
<br><br>
At 08:04 3/3/2006, you wrote:<br>
<blockquote type=cite class=cite cite="">While I'm tempted to agree, I
don't think there's nearly enough<br>
information in the single media report to say "This has the smell
of<br>
an inside job ALL OVER it."<br><br>
On Fri, Mar 03, 2006 at 04:28:08AM -0500, blitz wrote:<br>
| Hard drives alone like that would make one think it was a well planned
job.<br>
| Someone wanted that specific information, and its a LOT easier to put a
couple<br>
| hard drives in your pocket than take the whole computer. Whole bunches
less<br>
| conspicious.<br>
| Whoever did this had a specific target and knew what they wanted...do
doubt<br>
| about it.<br>
| With hard drives approaching the price of breakfast cereal, no one but
a<br>
| determined, focused thief would take the trouble to dismount them.<br>
| This has the smell of an inside job ALL OVER it.<br>
| <br>
| <br>
| <br>
| At 18:38 3/2/2006, you wrote:<br>
| <br>
| Does anyone know anything? there's not quite
enough here for my stereotyped<br>
| blog headline...<br>
| <br>
|
<a href="http://www.pioneerlocal.com/cgi-bin/ppo-story/localnews/current/eb/" eudora="autourl">
http://www.pioneerlocal.com/cgi-bin/ppo-story/localnews/current/eb/</a>
<br>
| 03-02-06-846416.html<br>
| <br>
| > George Gilou arrived at his mortgage
office Feb. 6 and discovered<br>
| > the back door had been forced open. It
didn't take long before he<br>
| > realized the business he owns, Olympic
Funding Chicago, 6308<br>
| > N. Milwaukee Ave., had been
burglarized.<br>
| ><br>
| > According to police reports, three
computer hard drives were stolen,<br>
| > containing clients names, social security
numbers, addresses and<br>
| > phone numbers.<br>
| <br>
| In particular, was this actually just the hard
drives being stolen?<br>
| How many people were affected?<br>
| <br>
| Adam<br>
| <br>
| <br>
|
_______________________________________________<br>
| Dataloss Mailing List
(dataloss@attrition.org)<br>
|
<a href="http://attrition.org/errata/dataloss/" eudora="autourl">
http://attrition.org/errata/dataloss/</a><br>
| <br>
| <br>
| --<br>
| This message has been scanned for viruses
and<br>
| dangerous content by MailScanner, and is<br>
| believed to be clean.<br>
| <br>
| <br>
| --<br>
| This message has been scanned for viruses and<br>
| dangerous content by MailScanner, and is<br>
| believed to be clean.<br>
| --<br>
| This message has been scanned for viruses and<br>
| dangerous content by MailScanner, and is<br>
| believed to be clean.<br><br>
-- <br>
This message has been scanned for viruses and<br>
dangerous content by MailScanner, and is<br>
believed to be clean.</font></blockquote></body>
<br />--
<br />This message has been scanned for viruses and
<br />dangerous content by
<a href="http://www.mailscanner.info/"></b><b>MailScanner</a>, and is
<br />believed to be clean.
<br />--
<br />This message has been scanned for viruses and
<br />dangerous content by
<a href="http://www.mailscanner.info/"><b>MailScanner</b></a>, and is
<br />believed to be clean.
</html>