Shark Bait

Knowledge Centers

Operating Systems

Networking & Internet

Mobile & Wireless

Security

Storage

Business Intelligence

Servers & Data Center

Computerworld Reports

Industry

See your link here

C. J. Kelly

A Day in the Life of an Information Security Officer

More on the HP crime

5 comments

IT TOPICS:Security

As the New York Times reports the situation, it sounds like the crime HP may have committed is only around "pretexting". Pretexting is a method of social engineering where the caller pretends to be the owner of a phone number and seeks to obtain phone records from the phone company. I have no problem with investigating that type of crime because I believe that HP stepped over the line in investigating the personal records of employees and/or board members.

I do not have a problem with is a company conducting an internal security investigation when done through proper channels. It looks like the Chairwoman, Patricia C. Dunn, went through the proper channels by getting both the head of HP security and general counsel involved in the investigation. The thing people do not understand is that the company they work for owns the network, email, phones and voicemail. The employee to which these items have been assigned to for company use, do not own them or the records they create. The company does.

However, the company may not investigate an employee's personal records, that are not publicly available, without the employee's permission. Only law enforcement can do that and they need a search warrant.

I am sure we are going to hear a lot more on this. My only point in commenting on it is to again make sure that employees understand that there is no expectation of privacy at work. At home, you ought to be able to do whatever you want within the law. (That comment should start a chain of responses about the lack of privacy in general!)

Email this

Digg this

What People Are Saying

Add new comment

What HP did apparently went

Submitted by Anonymous on September 18, 2006 - 12:38 P.M.

What HP did apparently went far beyond monitoring use of company infrastructure. According to a new article today in the Times, the detectives hired by HP somehow obtained private phone records of one person. "On Saturday, the company identified one of two employees who it said had been a target of scrutiny in the internal operation. It said the private phone records of the employee, Michael Moeller, director of corporate media relations, were taken."

The article said that, "The detectives also tried to plant software in the computer of an unspecified CNET reporter that would communicate back to the detectives, people briefed on the company review said."

There may be criminal charges. "Federal and California prosecutors, as well as the Congressional subcommittee, are examining the chain of detectives for possible criminal wrongdoing in obtaining phone records. The California attorney general said last week that he had enough evidence to indict people inside and outside the company."

Report this comment

Having been around the block

Submitted by Horatio on September 18, 2006 - 11:49 A.M.

Having been around the block a few times, it amazes me as to the number of simpletons out there who think that their personal rights supercede those of the company they work for. It's not hard to miss the statement on the employment application that basically says the company owns the infrastructure, and, that if you sign the application then you agree to abide by company policy on its use. What part of "they pay for it, they own it" doesn't make sense. Think of it this way... would you lend your car out to anyone who asked to use it without some sort of condition on it's usage? Most would say NO. However if you think yes, then there is a demolotion derby coming up this weekend and it might be a hoot to enter, please leave the keys in the ashtray.

Report this comment

What amazes me about being

Submitted by Anonymous on September 18, 2006 - 12:17 P.M.

What amazes me about being simplistic is when people say "been around the block a few times" or "it's not hard to miss...". Talk about simplistic, let's start with a thing called the Boston Tea party. Oh, sorry. Wrong country?

If not (and I'll assume you actually know something about history, since you've been around the block more than once), then let's look at what it means to sign something that says "we own you". Oh, it doesn't say that? Right. You're right. It says something that means acknowledging the reality that's there - my company owns the phones, owns the email infrastructure, but (believe this or not), they don't own ME.

It's time for companies to get off our backs. I realize what the present working status of network infrastructure is, but it's wrong. The company doesn't have the right to monitor my phone calls and they need to have a harder time with my email. The days of Big Brother are about to come to an end.

Report this comment

One unfortunate thing about

Submitted by Tom on September 18, 2006 - 11:05 A.M.

One unfortunate thing about this affair is the spin that is used to label fraud as something less - in this case "pretexting". This is fraud and should be labeled as such. It is the equivalent of verbal forgery. (To Anonymous, there is no Bill of Rights. The current administration has done away with it. Knowing that Big Brother knows so much more about you, don't you feel more secure?)

Report this comment

While I understand the

Submitted by Anonymous on September 18, 2006 - 10:25 A.M.

While I understand the company owns the phones, the email, etc., what doesn't make real sense is how a company can usurp the rights of a United States citizen just because. Does the Bill of Rights change when I clock-in at work? Not hardly.

Report this comment

Your next stop ... the Password Zone

Latest threat vector: Our mobile devices

Obama Drupal-ing around; whitehouse.gov goes open source

Testing Microsoft Security Essentials and the Hosts file

LIVE Nov 10, 2009 12:00 PM ET

Architecting Business Intelligence Applications for Change: The Open Solution

LIVE Nov 12, 2009 02:00 PM ET

The State of PCI DSS Compliance at Organizations Today
Download this resource today!

Managing Secure File Transfer to Save Time, Money and IT Resources
Learn how companies are using innovative technology to overcome these challenges and improve user productivity by offloading e-mail attachments and replacing FTP with...

Can Heuristic Technology Help Your Company Fight Viruses?
What is Heuristic Technology and how can it help safeguard your business against viruses? Learn more.

Security Convergence Equals Network Security Cost Savings
Listen to IBM Internet Security Systems' take on network security convergence.

Why Email Must Operate 24/7 and How to Make This Happen
Learn how to avoid an email outage by implementing a hosted email continuity solution.

Lower the Cost and Complexity of a Mobile Workforce through Automation
Download This Resource Now!

All White Papers | All Webcasts

Computerworld Reports

8 Questions To Ask About Your Intrusion-Security Solution

Computerworld Technology Briefings IT Service Management

Computerworld Briefing - Analytics: The Art and Science of Better

All Computerworld Reports

Receive the latest technology news and information.

	Computerworld Daily News (First Look and Wrap-Up)
	Computerworld Blogs Newsletter
	The Weekly Top 10

View all newsletters

* E-mail Address:

* Industry:

* Job Title:

* Company Size:

* Country:

* State:

I would like to receive offers via e-mail from Computerworld partners.

C. J. Kelly's Archive

IT Topics

Sponsored Links

Play NetApp's New Data Defense Game.

How Do You Rank as an Innovation Leader? Download Recent Study.

Play NetApp's New Data Defense Game.

Extraordinary times demand Brocade Extraordinary Networks.

No Payments for Up to 6 Months on Orders over $500.

NetScaler VPX : Harness the Power of Virtualized Web App Delivery

64-page prescriptive guide to security, compliance, and IT operations.

Streamline IT Costs. Boost Performance with WAN Optimization

Enterprise Network & Server Monitoring Software. Cross over to Traverse...

Keep your IT expertise up to date. Join the Intel Premier IT Professionals.

Crystal Reports Server: More options. Not more money.

Parallelism is not just for HPC. Create rich apps from desktop to device. Get the eval.

Tolly Performance Report "Citrix NetScaler with nCore Outperforms F5 BIG-IP"

Save up to 61% plus Free Cheesecake

Find IT jobs in the Healthcare industry on Dice.com

With the NEW KODAK i700 Series Scanners get full speed at 300dpi!

Not All QSAs Are Created Equal: What You Should Know Before You Buy

The arrival of Serial Attached SCSI (SAS) marks a new era in storage scalability

The AMD Virtual Experience Virtual Trade Show

New DW Options and Price Points. View Teradata Platform Family Data Sheet.

See how AT&T can help protect your network.

3 Innovations. 3 Free Downloads. Free trials of Windows 7, Windows Server 2008 R2 and Exchange Server 2010.

Take the Netezza TwinFin TestDrive!

Citrix NetScaler with nCore Outperforms F5 BIG-IP - Learn More

New Analytical Platform Options. Download Data Sheet and More.

Get more enterprise mobility value for up to 25% less.

Unified Communications: Thoughts, Strategies and Predictions. Join the discussion.

NYUs M.S. in Management and Systems. Offered Online and On-site.

Increase UPS efficiency without sacrificing protection

Crystal Reports Server: Single server access to reports & dashboards

Create new opportunities. See business making progress now

ESET NOD32 with ThreatSense(R) - Get your free trial now!

Looking to add Unix/Linux functionality to Windows?

Join the conversation about the hottest IT trends with Computerworld on Twitter.

ITwhitepapers.com - Access thousands of white papers on 300+ technical topics.

Leverage Your Cisco infrastructure for Superior Application Performance

Learn about the AMD Virtual Experience

Introducing: Project Icebreaker

About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map

CIO

Computerworld

CSO

DEMO

GamePro

Games.net

IDC

IDG

IDG Connect

IDG Knowledge Hub

IDG TechNetwork

IDG Ventures

IDG.net

InfoWorld

ITwhitepapers

ITworld

JavaWorld

LinuxWorld

Macworld

Network World

PC World

The Industry Standard

Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.

More on the HP crime

What People Are Saying

What HP did apparently went

Having been around the block

What amazes me about being

One unfortunate thing about

While I understand the

Related Posts

Today's Top Stories

Hot Posts

Recent Comments

White Papers & Webcasts

Computerworld Reports

Newsletters

C. J. Kelly's Archive

IT Topics

Sponsored Links