Slashdot Mirror
Stealing Silicon Valley
pacopico writes "A series of robberies in Silicon Valley have start-ups feeling nervous. According to this report in Businessweek, a couple of networking companies were burgled recently with attempts made to steal their source code. The fear is that virtual attacks have now turned physical and that espionage in the area is on the rise. As a result, companies are now doing more physical penetration testing, including one case in which a guy was mailed in a FedEx box in a bid to try and break into a start-up."
And when the staff opened the top, a 4'5" Asian man jumped out and said "Supplies!!"
Laughter is the Spackle of the Soul.
Unless you had a prior arrangement with FedEx ... worst job ever.
Lost at C:>. Found at C.
He just wanted to make sure they received his resume.
It goes from corporate espionage to some guy stealing credit card numbers as a 'hobby'.
I work at a major corporation that has security cards to get into the building and my computer is password protected with an encrypted hard drive & a physical lock on the computer. Are security guards with guns really necessary?
Some people die at 25 and aren't buried until 75. -Benjamin Franklin
If the government does it, then it should not be so wrong.
To the master, Weird Al.
"There is more worth loving than we have strength to love." - Brian Jay Stanley
Are doomed to repeat it. Espionage is nothing new and it's been around for centuries. The plans for the Atomic Bomb were stolen by people who were sympathetic to the Soviets.
Sometimes technology can be given away, stupidly, when somebody is trying to build better relations or is reverse engineered like the TU-4 bomber.
While we've been concerned with Cyber Espionage it's still nice to see that old fashioned bribery and cunning are still in use and that countries and competitors will still go to whatever lengths are necessary to steal technology. We've allowed billions in technological innovations to be stolen and given away and it will come back to haunt us.
Harrison's Postulate - "For every action there is an equal and opposite criticism"
Just insure your code. Most of what's being written in the Valley is better off being metaphorically "burned down" for the insurance money anyway. Followed by... they stole the code for FaceBook or Twitter? Most of the value is in the branding and the infrastructure that allows them to scale. The code that's running in a particular VM, by itself, is probably not worth much.
I heard forms of this joke back in the 1950's. I do like weird Al, but he deserves no credit here.
I'm an American. I love this country and the freedoms that we used to have.
This shouldn't really surprise someone. When you think about a data center or server rack is arguably about the most valuable square footage that you can have. Think of a comparison to a typical jewelry shop, it might have $250,000 to a $1,000,000 in a vault and it's not easy to liquidate for anything resembling it's retail value. Now think of a typical bank vault, it probably has a typical amount of money, and again liquidation is an issue (look up money laundering for the challenges drug dealers face plus serial numbers).
Now think of a single rack in a data-center where a low end server can easily cost $5000 and nobody blinks an eye at something costing $25,000. A single rack can easily be worth a million dollars or more depending on how it is loaded. You can also easily resell IT equipment or part it out and there is a much smaller chance of getting caught. Serial numbers are an issue of course, but if something gets sent overseas the cost of getting caught drops significanly while the value is pretty much retained.
If you were to look at the sheer value of the contents of a building the only buildings that could possibly compete with a data center would be the exceptional bank vault and factories such as where they build new jetliners.
Why bother with expensive, well paid hackers or going through the complexity of setting up a bot-net to break in to a competitor when you can sneak in the back door in the middle of the night, root through drawers until you find a sticky note with a password and get things the old fashioned way.
Just more proof that information wants to be free.
I'm an American. I love this country and the freedoms that we used to have.
I bet it's those Pirates of Silicon Valley. Damn pirates, always stealing everything.
Aren't these companies encrypting their extremely valuable data? All of my computers use full-disk encryption and I don't have anything more valuable than old tax returns and my carefully curated p0rn collection. I've got a lot of my company's source code, but most of it will end up open sourced anyway, so it's not that valuable to a thief.
C'mon, guys, if you'd have done your attack trees, you'd know that the guy who empties the waste basket can install a keylogger for a day for much less cost than it would take to break your 4096 bit PGP key.
I suppose this story does highlight some changing costs on the nodes, though - if physical penetration is becoming more prevalent, then either the cost of hiring somebody to do it is falling (due to massive unemployment, perhaps?) or the costs of other attacks are rising.
My God, it's Full of Source!
OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
I remember reading "War By Other Means" (http://www.amazon.com/War-Other-Means-Economic-Espionage/dp/0393318214/ref=sr_1_3?ie=UTF8&qid=1381510831&sr=8-3&keywords=war+by+other+means) more than 10 years ago.
The book starts off with how the USA, during it's early years, sent "spies" to European nations to gather their technology regarding weaving and agriculture, as well as the start of the industrial revolution, and how that enabled the USA to become a superpower, and now it's being turned around on us that other countries such as China are doing the same thing, except that they are doing it on a much larger scale.
That this is happening on a small scale in the valley is no surprise, since the lead-time on new tech is now incredibly small. Look how Samsung introduced a "smartwatch" based on a RUMOR that Apple was doing that.
If telephones are outlawed, then only outlaws will have telephones.
That would be "Gallifrey", guy. And if you're going to sign a post, why not just log in?
- Anonymous Coward, esq.
Oh wait, this is not about the business taxes in CA.
-The wise argue that there are few absolutes, the fool argues that there are no probabilities.
It's not exactly racist. It's a reference to a scene in Weird Al's movie UHF. I suppose you could argue that making a joke about accents is racist, but seeing as it isn't really derogatory in any way, I'm not sure how it would be. (The height is a reference to the height of the actor in the movie.)
All accents are funny (unless it's your accent, then it's racist).
Sounds like the kindda stuff Kevin Mitnick was doing to The Phone Company decades ago. He once broke into a local Ma Bell office to steal manuals, as reported in his book "Ghost in the Wires: My Adventures as the World's Most Wanted Hacker".
The book is a pretty good read. In it, Mitnick repeatedly claims he never profited from any of his adventures - except by selling books and becoming a security consultant, of course. Heck, some of the reported robbers in Silicon Valley might be even more ethical.
Making fun of a person's accent isn't racist, Mr. Crabby McCrabberton.
It goes from corporate espionage to some guy stealing credit card numbers as a 'hobby'.
I work at a major corporation that has security cards to get into the building and my computer is password protected with an encrypted hard drive & a physical lock on the computer. Are security guards with guns really necessary?
Depends on the situation. If your property is that valuable, perhaps. Now, consider this: If people are willing to physically break into your facilities, that's passing the threshold that divides a cyber-violation to a physical violation. Statistically, breaking into someone's property usually correlates with a willingness to commit physical aggression. With that in mind, guns for security guards and LEO's are not simply to "shoot" the bad guys, but for them to protect themselves.
If I owned a property that has been broken into, or that is at risk of suffering a break-in, and if I had a need to protect valuables inside, I could not in good conscience put a security guard there with no legal means to defend himself if/when SHTF.
The corollary to that is nobody thinks they have an accent, just that everyone else does.
Lost at C:>. Found at C.
Canadians don't have an accent, eh?
Get free satoshi (Bitcoin) and Dogecoins
So, apparently shadowruns are a real thing now? I already knew William Gibson was just writing plain old fiction, but it still causes cognitive dissonance to realize I'm actually living in the dystopian future I read about back in the '80s.
I always enjoy that Canadian "aboot" instead of "about". Eh?
-The wise argue that there are few absolutes, the fool argues that there are no probabilities.
Hell, I get all of the secret information that I can ever use or sell just by filing freedom of information act req8uests with our friendly neighborhood NSA. It's a little redacted, but you still get plenty of information that the owners would like to keep private.
I'm an American. I love this country and the freedoms that we used to have.
All accents are funny (unless it's your accent, then it's racist).
How can a blonde haired blue eyed Bostonian be racist against a blonde haired blue eyed Texan? Making fun of accents has nothing to do with race. In fact, accents themselves have nothing to do with race and everything to do with growing up in a certain location. I know a man whose parents are both Japanese, he was adopted by a Chicago couple in infancy. Guess what? He speaks with a Chicago accent.
Free Martian Whores!
Actually, that's mostly true. Some regions of Canada use the most lightly-accented form of English.
I've been interviewed just for my voice to test my accent.
---
ECHELON is a government program to find words like bomb, jihad, plutonium, assassinate, and anarchy.
Just happened to be staying in the same hotel and I don't recall what started us off but some how we struck up a conversation and he wound up telling me some great stories.
The story about the guy in the FexEx box is even better than the article makes out. Since they couldn't actually ship a person via FedEx for many reasons, the box had to seem to come from the right location which would have meant putting it on a plane, and what not. So to make it all look right Steve got himself a real FedEx uniform and put FexEx stickers on the side of a van and even had one of those scanner guns the delivery people used and pretended to be a FedEx delivery person in order to drop off their "package". As I recall he even picked up all their out going FexEx packages and dropped them off at the local FedEx center to fully make the deception work.
It was one of my more interesting random conversations, at some point they should write a book about this stuff, he had lots more stories than just this one. But yeah basically if someone really wants to get inside your building and steal your stuff badly enough they will.
-jon
Silicon Valley startups' ideas are mostly worthless by themselves. It's the real estate, hipster glasses, and quirky offices that have value. Being inside the Silicon Valley circle jerk, where VCs freely blow loads of money on startups is what has value.
"When information is power, privacy is freedom" - Jah-Wren Ryel