I just finished watching some pretty scary footage of airport security at Phoenix International from July 2007. ABC15 News did an expose of security issues at SkyHarbor . The information they reported was quite scary. They found the City of Phoenix used a private security firm (more intel on that as I get it) who provided security during non-flying hours. Does anybody remember the days before TSA? TSA can be scary but at least they're an improvement from where we were at before. The City of Phoenix had certainly forgotten this.
The results were disastrous almost. The news crew found bags were not searched adequately or not at all. Employee badges were checked by a guard who may or not have been following standard security procedures. Many times entire suitcases and huge newspaper dollies made their way in. At one point the news crew found a guard sleeping who readily admitted sleeping on the job for periods at a time. You don't have to be genius to figure out that some got fired (as they should have been).
Any time a news crew (no offense) can expose the flaws within your security you've got problems. Phoenix has made some improvements, but I would bet their weakest link is their people. Watch the video here. It speaks volumes.
Friday, February 29, 2008
And you thought you had fencing issues...
Ladies and gents, it appears the United States' "virtual fence" has run into some snags, according to Security Management. I won't even go into how a CCTV system is as only good as its operators and software/hardware platforms. Nor will I mention the same goes for IDS as well. I won't even go into how with all CCTV and IDS systems your biggest weakness lies in the money you're willing to spend to fix your problem (porous borders). I will, however, talk a bit about the virtual fence and what it means for us as a citizenry and as professionals in this field.
The Washington Post broke the story with its report that despite the Bush Administration's approval of the fence this past Friday, the construction and implementation of the fence will have to be delayed by at least three years.
It appears there we were technical problems from a prototype system as well as a test system located along a stretch of the border in Arizona. According to the report, the problems included:
1. According to the Washington Post, "Boeing's use of inappropriate commercial software, designed for use by police dispatchers, to integrate data related to illicit border-crossings. Boeing has already been paid $20.6 million for the pilot project, and in December, the DHS gave the firm another $65 million to replace the software with military-style, battle management software."
2. According to the Washington Post, "Technology originally central to the project, such as mobile radar/sensor towers, has been dropped, the article reports, in favor of "[m]ore traditional ground-based radar and airborne surveillance drones," according to Business Week."
This past Tuesday, Homeland Security Secretary Michael Chertoff asserted in his blog, "I’ve seen this system work with my own eyes, and I’ve talked with the Border Patrol Agents who are using it. They assure me that it adds value. That’s what matters to me, and it’s a fact that cannot be denied."
While the virtual fence is better than what we currently have, I'm having trepidations about a system that has so many setback and issues which are core to its very success. For more information click here for the Post's article on the virtual fence or here for the full article from Security Management.
Thursday, February 28, 2008
Bluetooth Hack
This video has been out for a while. I'm surprised this vulnerability hasn't gotten more "play". The basic premise of this hack is you can not only hack into a Bluetooth device and record what is said into the headset but you can also inject your own audio. This of course being that the password for the device is still "0000" which I'm it is like most of ours. Check out the video to watch the hack.
Subscribe to:
Posts (Atom)