June 21, 2008

Privacy & Security Watch: TJX Fires Employee for Disclosing Security Problems

As readers of this newletter know, TJX, the parent company of T.J. Maxx, Marshalls, and Home Goods stores, had a serious security breach over a long period of time. (See http://www.TheKuperReport.com/2007/03/stolen-data-from-tjx-tj-maxx-marshalls.htmland subsequent articles on this subject). Well, it seems they still haven't learned from their mistakes. According to this article, a young employee in a Lawrence, KS T.J. Maxx store tried, but failed to convince management that running their server in administrator mode and giving everyone id's with blank passwords was a very bad and insecure thing to do. So he anonymously posted about this lack of security to an online forum. TJX found out it was him and they fired him. No word on whether they address this serious security breach.

Richard L. Kuper
The Kuper Report
http://TheKuperReport.com

Privacy & Security Watch: Diebold Summer Sale Offers Used Voting Machines

This also gets categorized under: "Who wants to steal the election?"

According to this article, Premier Election Solutions, formerly known as Diebold, makers of those easily hackable electronic voting machines, (just do an internet search on "hackable Diebold" if you doubt that statement), is "selling off everything from used touch-screen voting machines ($600/each) to ballot boxes ($1,000/each), voter and poll supervisor smart cards that are used to initiate voting on machines on election day ($2.00/each), and tamper-evident security seals ($0.15/each) that are supposed to protect machines from intruders."

Richard L. Kuper
The Kuper Report
http://TheKuperReport.com