[Dataloss] Olympic Funding Chicago?

blitz blitz at strikenet.kicks-ass.net
Fri Mar 3 23:32:14 EST 2006 

Well Adam, I'm basing the premise of "an inside job" on both the 
specificity of the target: the drives, which can be used on ANY 
similar computer, and can be easily concealed, (an employee walking 
out could easily conceal them, and not attract much attention) plus 
the type of information contained therein.
It would be just as easy to use a server somewhere else in a secure 
environ, than to store them locally as happened here. A person would 
need to know they were on site.
It's difficult to imagine someone risking a commercial burglary 
charge, and data theft charges for hard drives worth at most a few 
hundred dollars. The information would be worth more in the right 
hands, and to know that information was where it was, one could 
easily make the connection either the burglar worked there, or 
someone who did, tipped someone else to the value of the drive's 
information. Even if it wasn't data theft, but a desire to cripple 
the operations of the company, cause panic, loose customer faith, 
etc. a former employee, or a competitor who knew it was there would, 
IMHO, qualify as an "insider".
Now, couple all that, with the claim of "taking extra ordinary" 
measures to secure that data, including the $2800 "security" 
software, and the alarm system which mysteriously was left off that 
weekend, and I believe we have someone with the key to the 
encryption, and the knowledge or ability to foil the alarm. The whole 
thing was just too smooth IMHO. Also missing is whether the company 
was insured for the theft. (Disruption of business insurance etc,)

If I were a detective, this is the route I'd be taking most certainly.



At 08:04 3/3/2006, you wrote:
>While I'm tempted to agree, I don't think there's nearly enough
>information in the single media report to say "This has the smell of
>an inside job ALL OVER it."
>
>On Fri, Mar 03, 2006 at 04:28:08AM -0500, blitz wrote:
>| Hard drives alone like that would make one think it was a well planned job.
>| Someone wanted that specific information, and its a LOT easier to 
>put a couple
>| hard drives in your pocket than take the whole computer. Whole bunches less
>| conspicious.
>| Whoever did this had a specific target and knew what they wanted...do doubt
>| about it.
>| With hard drives approaching the price of breakfast cereal, no one but a
>| determined, focused thief would take the trouble to dismount them.
>| This has the smell of an inside job ALL OVER it.
>|
>|
>|
>| At 18:38 3/2/2006, you wrote:
>|
>|     Does anyone know anything? there's not quite enough here for 
>my stereotyped
>|     blog headline...
>|
>|     http://www.pioneerlocal.com/cgi-bin/ppo-story/localnews/current/eb/
>|     03-02-06-846416.html
>|
>|     > George Gilou arrived at his mortgage office Feb. 6 and discovered
>|     > the back door had been forced open. It didn't take long before he
>|     > realized the business he owns, Olympic Funding Chicago, 6308
>|     > N. Milwaukee Ave., had been burglarized.
>|     >
>|     > According to police reports, three computer hard drives were stolen,
>|     > containing clients names, social security numbers, addresses and
>|     > phone numbers.
>|
>|     In particular, was this actually just the hard drives being stolen?
>|     How many people were affected?
>|
>|     Adam
>|
>|
>|     _______________________________________________
>|     Dataloss Mailing List (dataloss at attrition.org)
>|     http://attrition.org/errata/dataloss/
>|
>|
>|     --
>|     This message has been scanned for viruses and
>|     dangerous content by MailScanner, and is
>|     believed to be clean.
>|
>|
>| --
>| This message has been scanned for viruses and
>| dangerous content by MailScanner, and is
>| believed to be clean.
>| --
>| This message has been scanned for viruses and
>| dangerous content by MailScanner, and is
>| believed to be clean.
>
>--
>This message has been scanned for viruses and
>dangerous content by MailScanner, and is
>believed to be clean.

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.


-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://attrition.org/pipermail/dataloss/attachments/20060303/125aad65/attachment.html

More information about the Dataloss mailing list