Slashdot Mirror

← Back to Stories (view on slashdot.org)

HP CEO Allowed 'Sting' on CNet reporter

Posted by ryuzaki0 on from the ouch-that-stung dept.

Mark writes "The Washington Post, reporting on Hewlett-Packard's Chairman Patricia Dunn and alleged spying on other HP board members, has obtained e-mails that implicate the CEO, Mark Hurd, who approved an elaborate 'sting' operation on a CNet reporter." From the article: HP's leak investigation involved planting false documents, following HP board members and journalists, watching their homes, and obtaining calling records for hundreds of phone numbers belonging to HP directors, journalists and their spouses, according to a consultant's report and the e-mails."

16 of 145 comments (clear)

  1. Well Executed Plan by Black-Man · · Score: 4, Insightful

    Dunn was/is a lame duck on the board. She has cancer and had no intentions of remaining as the chairman next year. Therefore, she knew what had to be done to stiffle the critics, i.e. friends of the Hewlett family. She succeeded in getting both of them off the board and now all is left is damage control with her taking the "fall". Gotta give her credit.

  2. Re:WOW by Anonymous Coward · · Score: 1, Insightful

    They probably thought," Well, if our own government can do it and get away with it, then why the hell shouldn't we do the same?"

    Just following the example set by Bush and his cronies.

  3. Re:WOW by Anonymous Coward · · Score: 2, Insightful

    Well, she didn't get away with it, did they?
    We are reading about it. There are Congressional hearings (which may not be criminal presecution but is an effective way to bankrupt you with legal fees) and the CA GA is investigating for criminal charges. Yeah, scott free.

  4. Re:Don't put the blame on Hurd. by BrynM · · Score: 3, Insightful
    Just because he approved the action to sting the reporter, he didn't necessairily know what the means were.
    Where I come from, we call that Plausible Deniability. It keeps our best elitists from getting their hands all grubby with the details or criminal charges. After all, repercussions are for the riff-raff.
    --
    US Democracy:The best person for the job (among These pre-selected choices...)
  5. Absolutely put the blame on Hurd. by Anonymous Coward · · Score: 4, Insightful
    When you are a manager, particularly an officer of the company, and you approve something like an investigation, you know it's going to be sensitive and that if it's not done properly, it's going to hurt the company.


    If you don't inquire into the details of what you've approved, it's either because you are: a) foolish, or b) don't want to be accountable.


    If a CEO directs something sensitive to happen, it's their responsibility to be aware of what it is and how it happens.

  6. How could this happen!? by ChefAndCoder · · Score: 5, Insightful
    What kind of a country could we live in where this type of spying, duplicity, and invasion of privacy would be seen as acceptable by HP's executives!?

    Oh . . . wait . . .

  7. Nothing wrong with spying by Anonymous Coward · · Score: 3, Insightful

    This whole thing came about due to general bashing of the rights of individual, the concept of spying is trying to justify itself and integrate into the culture and psyche. The value of the individual is being eroded daily. The Soviet constution provided all the rights that Americans have. Except there was a clause that these rights can be suspended in some cases "for the good of the state". If you read the Declaration of Independence you will see that the founding fathers believed in the rights of the individual over some lofty pseduo utopian ideal of advancing the state. Governments are instituted for the protection of the rights of people (thats what it says in the consitution).

    The people you have running around today justifying spying .. these are the same folks that would have said the 4th amendment is useless. They would have argued strongly against the 6th amendment, and would have laughed at the concept of the 8th amendment. Yet these are the same people passing themselves off as patriots today.

    There are folks walking around waving the US flag, and yet they dont believe that all humans are created equal and have inalienable rights. The very concept that founded the country! The nation was formed under war. Redcoat spies and traitors everywhere yet even in those troubled times they instituted the Bill of Rights.

    If you listen to the fake patriots speech their philosophies imply that instituting the Bill of Rights back then in the nations infancy would have brought about the demise of the US. Yet the USA prevailed, liberty wins out in the end. They pass off some lie that torture can prevent an attack. But what about the innocent people you torture to prevent an attack?

    It may seem that I am offtopic here .. but I am not .. my point is that the general sentiment of folks seems to have twisted from rights of an individual towards the goal of advancing the state towards some utopia. And that is why you have people thinking it's OK to spy on possibly innocent people.

  8. Re:If the government can do it... by Epsillon · · Score: 3, Insightful

    Because big business hasn't even got the thin veil of legitimacy "the mandate of the people" gives goverments. IIRC, a company or PLC has the same rights and obligations under the law as any other individual/legal entity.

    Let the companies get away with it and it becomes a free-for-all privacy nightmare.

    --
    Resistance is futile. Reactance buggers it up.
  9. You're joking, right? by tkrotchko · · Score: 4, Insightful

    "I'm having some difficulty seeing precisely where it is illegal."

    Let me call up your cell phone company, claim I'm you (because I've managed to get your SSN), and then get all your call records.

    Then, I'll send you a trojan horse to your computer so I can record your keystrokes to see who and and what you're mailing.

    Are you okay with everything so far? Does that seem all legal and above-board?

    --
    You were mistaken. Which is odd, since memory shouldn't be a problem for you
    1. Re:You're joking, right? by Anonymous Coward · · Score: 1, Insightful

      "Then, I'll send you a trojan horse to your computer so I can record your keystrokes to see who and and what you're mailing."

      This is highly inaccurate, and indicitive of how badly this whole situation has been reported.

      There was no trojon horse, just an email formated in html which included weblinked images. Open the email, and your IP is logged.

      Sounds horrible. So go talk to ebay, yahoo, just about every other company out there. This is so common it's pitiful. And any decent email client (like thunderbird) will screen against this.

      So where is the accountability for accurate reporting? There is a huge (legal) difference between a trojan horse and a webbug in an email. Our press is that gullible and ignorant that they cannot tell the two apart.

      Just like "pre-texting" has been a security hole for decades. And widely used in civil cases, etc.

      It's bad, but the consumer companies like ATT, cingular, Verizon, etc all enable it. Want to make it go away? Have those companies tighten up how they protect your private data.

      But no one seems to recognize that HP was legally obligated to find and address the source of the leak. Leaks of financial info governed by the SEC are illegal, and could have landed HP in far larger hot water than this. (Think insider trading, etc)

      And the press also had to know leaks of this nature were illegal. Where is their accountability?

      Not only are they mis-reporting the story, they are also the root cause of the problem by seeking out insider information restricted by the SEC.

      I see all the big brother whining as simple ignorance of how tightly regulated corporations are about their financial information. You'd have thought that with Martha folks would have learned that insider info is illegal, highly damaging to the market, consumers, and stockholders.

      We should focus on the real culprits in this case! (the people who allowed private data to be leaked)

      Alan

  10. Re:So what? by sizzzzlerz · · Score: 4, Insightful
    If I worked for HP and depended on their stock options for (a good portion of) my retirement, I wouldn't be the slight bit muffed by management doing whatever it takes to stop leaks that may end up hurting the company through the loss of valuable trade secrets, technology, etc. That's the board's job - to raise the stock.

    Ok, for the sake of argument, let's assume that you would stop short of approving the murder of the leaker(s). Just how far, short of that, would you still feel good about: knee-capping, breaking the bones in one's hand with a hammer, kidnapping a family member, burning down their house, torturing their cat, etc.?

    Remember, you are protecting trade secrets here and the value of your HP stock is at stake.

    I hope you think this is absurd but your comment is stupid. It is not the board's job to break the law and it is not within their purview to do anything necessary to protect the stock.

  11. Re:Reversal of watergate by random+coward · · Score: 2, Insightful

    If this happens, though, use of "gate" as a suffix is strictly forbidden, because that's just silly.


    The correct usage for -gate is only for a Republican(or sometimes conservative) scandal. HP is neither therefore -gate would not be correct.

    Incidently the suffix for a Democrat(or sometimes liberal) scandal is very arcane (due to media bias against reporting and spiking of those stories), but is -aquiddick.

  12. Re:What kind of strange ethics are those? by Anonymous Coward · · Score: 2, Insightful

    Several points people seem to be consistantly missing:

    1) HP's board had a legal obligation to find the leak of financial information from the board. If they did not, they could be heavily liable under SEC rules.

    2) HP engaged well known and respected investigative companies. This was not cousin Guido. These companies are legally in business and purportedly use legal methods

    3) The companies the investigator used for the requests we now know as "pre-texting" are legally in business, and have been for a while. They are widely used. They take advantage of the poor security your vendors (ATT, Cingular, Verizon, etc) provide for our private data.

    Given HP had a legal obligation to find and close the leak, exactly how else would you go about it? No one was volunteering to admit to being the leak, either within the board or the news agencies.

    The news agencies also knew that the sensitive financial info was illegally leaked due to SEC constraints. Why shouldn't they be targeted with a sting? They are enabling the illegal behavior at the board.

    The press has mis-reported this news item heavily. "HP wanted to plant spyware" was really "HP included a web link which would have reported an IP address if accessed". Just like ebay, yahoo, and every other company does.

    "HP considered planting spies in newsrooms". No reference of the sources other than: anonymous sources close to the company. That could be anyone! Even Michael Dell!

    Is "pre-texting" bad? Absolutely! Close that hole, AT&T, Cingular, Verizon!

    Did the board mis-handle the investigation? Maybe. They did refer to legal council, who is ultimately responsible.

    Was the board/Hurd aware of the intent to use pre-texting? No solid indication yet. If they were, and they were advised it was grey area of the law, then they were in bad judgement.

    If they were not, then the finger should point to the investigative firm.

    Again, HP *had to* find the leak, for both legal and financial reasons. If they did not, then they were vulnerable to a far worse legal situation.

    So how would you go about finding the leak other than employ respected and credible investigative firms?

    Given that most of the world outside of the security industry had no idea what "pre-texting" is, and how widely used it is, people need to think before they point the finger.

    Myself, I'd just have demanded the entire board present phone records and calendars. Anyone who chose not to would be assumed guilty. HP's standards of business conduct are very strict. Any regular employee would have been walked out the door if there was any question of this type of leak. The legal risk from the SEC it just to high!

    People should point the finger where it belongs: Your vendors and mine: AT&T, cingular, Verizon, and any other company who uses the last 4 digits of your SSN as it's secret ID.

    Alan

  13. Re:WOW by gstoddart · · Score: 3, Insightful
    I still can't belive this sort of thing happends and they got away with it. it boggles my mind in so many ways.

    What boggles my mind is that you're currently moderated as funny, not the +1 eerie we're all feeling about this.

    Companies illegally spying on people is something straight out of a cyberpunk novel or something. It scares the crap outta me, because if nobody gets into actual legal trouble over this, the next time a company does it, people will just start going "Oh, that old thing", and turn the channel.
    --
    Lost at C:>. Found at C.
  14. PARENT IS NOT A TROLL by mclaincausey · · Score: 1, Insightful

    Put your pathetic political position aside when you moderate. Parent makes a good point.

    --
    (%i1) factor(777353);
    (%o1) 777353
  15. Re:What kind of strange ethics are those? by hobbesmaster · · Score: 2, Insightful

    "Will no one rid me of this meddlesome priest?"