“man-in-the-cloud"
attack
This is a small blog
piece related to an article on “man-in-the-cloud"
attack.
The vulnerability
discussed in this article is real.
In my case, being an
open source man and Linux promoter, sharing what little I know is
automatic and almost mandatory.
I may kick the
budget of old age but I leave behind lot of digital footprint for to
be exploited ad hoc.
So the mobile you
use may be a big risk factor.
If you lose your
mobile or somebody steals it, all your emails and contacts are at
risk.
I cannot offer any
solutions.
But it is better to
use the non digital land phone for strictly private phone calls.
But even the
government can eavesdrop (Sri-Lanka Under MR, I do not know how it is
now and USA in particular).
Other option is to
have an android of cheapest (Rs.5000/=) price with limited capacity
and function for ordinary communications and emails and your value
added iphone or any android or commercial for mission critical work
and make it sure that it is kept under lock and key physically when
not in use for long periods and not to carry it when one is on a
shopping free or holidaying (hard thing to do).
We did not have all
these gadgets an we carried out confidential work without fear or
favour just 20 years ago.
Now we are
getting paranoid and young people who are starting their careers
should take a special not of the vulnerability of the mobile phone an
in particular if you have private data in the Cloud.
This was one reason
I was never too keen on for a mobile.
In my twilight
years, it is getting bit lazy and less mobile physically that is when
you become hooked to a gadget and the vulnerability of old age is
also exposed.
It is the
responsibility of the mobile carrier to safeguard your interests but
if you leave your door open, very little they can do.
