Main » 2011 » Март » 16 » An article in the RBC on the topic of information security
12:23
An article in the RBC on the topic of information security
I do not know about you, but to me since the fall of authority becomes a little scary. At such moments the compass of my preference begins to move, and I initially there is no certainty that it is moving in the right direction.

In early December, I bought the new issue of the RBC magazine and was impressed by the low level stuff that I found in one of the articles.

The article is called "Threat at Your Fingertips" (author - Maria Simon), and it it is not about how many germs can be found on unwashed keyboard, so stop your hand, reaching for the cotton swab with alcohol. Discussed in the article is that information security has become with the advent of the crisis as hot as never before.



No, I do believe that this department was. I am sure that in those days, computers were under the supervision of the KGB. But there is one 'but', which breaks to pieces that the author writes.

Borba viruses is only possible in an environment where there are multi-tasking, ie, when the computer can transfer CPU resources between two or more programs.

That's bad luck, but the first popular version of the widespread multi-tasking operating environment (Windows 3.11) was released in the light only in 1990! A very popular in those days, MS-DOS, unfortunately, single-tasking. You can certainly say more about Intel Macs at the time. But they too were very poorly distributed.

Update: friends, I beg your pardon, I really was not competent in this matter. Humbly apologize.

So, I think so, viruses have fought for students' Graduate School of the KGB in steps. That, of course, only added to the entertainment! :)



The bad translation agency article CNews; original here.

And the essence of it lies in the fact that Puerto Rican law, the child must provide originals or copies of certain documents that are stored in the school. Argued that the criminals broke into the 50 schools. What looks to be more believable.

And the school was not 7000, but only 12 thousand people, including students and teachers.



Source found here.

The amount of the $ 1 trillion has turned out like this - take the cost of the damage from one network (it is not clear that this implies) and then multiplied by the number of networks (again, it is unclear from where he took). Got a strange result, which is understandable published. But the figure is beautiful!



Artem Sychev, Head of Security Service of Russian Agricultural Bank, trying to brave the correlation between the fact that I did not know that my money from the account are gone and the damage to 500,000. And here is it? It is not clear. Given that the percentage of customers who only work through the system "Client-Bank" obscenely large. Also, despite the use of the "Client-Bank", I can always come to the bank and to require the issuance of paper statements.

In addition, it should be recalled that the big banks (Sberbank, for example) use the technical tools that make DDoS-attack is problematic. However, Artem Sychev, perhaps, such funds are not known.



Probably, from the outset we should say that if you have something posted to the network, a robots.txt file only protect from the crawler. A typical user of the existence of the file does not know, and certainly not upon him to pay attention.

Analogue to real life can be like this: I put the stack of documents on the lawn and hang a sign "do not walk on the lawn." Preservation of the documents out of danger, right? If you realize that the Internet was created precisely in order that the information is open, you have luck. The author of this article obviously does not understand.

Oh do not know what to do with enchanting delusions about offshore subsidiaries. Anyone who has ever registered offshore company knows that all documents are ready hired to do on-site company, which will continue to "empty" the affairs of this company in the country of registration. And from these instruments to take the printer in Russia?

In addition, the author does not understand the essence of raiding, which can not but sympathize. Raider seizure is always done for legitimate reasons, but these bases are created by using forged documents.

Example. Company A owns an office in central Moscow. Natural person "B" wants to get this office by the raider attacks. Then the individual "B", using a front person shall prepare and submit to the tax office certified dishonest notary public statement about the change of director. New director will face "B". Tax Inspectorate under the law does not verify the documents comply with the real thing, is responsible for this applicant and for this and the next lawyer. Becoming the new director, or "B" signs sales contract with a firm "F", which immediately applied for registration of property rights.

Once the registration is passed, the company "X" - bona fide purchaser, so it takes an assistant police and goes to evict the company "A" from the office. Grounds that - 100% legitimate. However, the fact that the director of "A" was assigned a forgery - an occasion of another trial. As long as it goes, the company "X" is selling real estate further up the chain and claim it back is almost impossible.
So a few hours before the seizure can be found only traces of careful preparation and registration of property, but not the names of the performers "somewhere on the Internet.

As for "take out" from the printer, documents, indeed, this feature was (in practice, never implemented, but hilarious), but is "pulling out" even demanded a terrible, almost impossible to match hardware and software, which today is no longer possible - manufacturers long ago it is corrected. Therefore, to meet this passage (also for the authorship of a board member), the normal person does not expect.



Of course, the price list is taken from Article Sponsor - company Symantec. The only problem is one that lead the table information (bank account) in Russia is not a particularly closed: from legal entities, it appeared in each bill or invoice (I'm not talking about the contract), it is usually more hidden from individuals.

However, what makes the possession of such information? Ability to lift other people's money? None. Opportunity to learn their presence? None.

Identity (under which the article appears nonexistent in Russia "a social insurance number) about which said the" price list "to find any particular problem was not, but here it is necessary to understand - what data?

"Cashing services - all complete nonsense. For a country that largely prefers cash (that is, for Russia) the service relates to "the obvious, but incredible."

If we're talking about "cashing" for legal entities, it is not primarily a transfer of money from the state of non-cash in cash and tax evasion. In this case, firm A pays firm B an amount which the company "B" manages to avoid paying taxes. Then the company "B" quite legitimately makes their non-cash money in cash, and tell me what illegal in such an operation?

It is clear that more money for less interest "in Morozhenko" is given to the company "A", but the price of such "cashing" varies widely. And not, as in the article, 8-50%, and then from 2-3% to 15%, with a further increase in taxes to pay a cent cheaper than both "available".
If we're talking about "cashing" for individuals, then there is no crime there. I had $ 100 of my money in a cashless form, I have made a $ 100 cash (net of commissions). What's criminal?

To discuss the remaining items, I suggest readers.

To summarize, we can say that the cost of advertising in the magazine "RBK" on the bands that would take a paper would cost about 2,5 million rubles. It was so worth it, for example, one-bedroom new apartment in my city. How much is the work of the author - not for me to decide.

And now - the curtain.

P.S. Original scans of the article: one, two, three, four, five.
Views: 2245 | Added by: w1zard | Rating: 0.0/0
Total comments: 0
Имя *:
Email *:
Код *: