IT Security – Page 31

December 29, 2008January 8, 2009

One step ahead towards the Italian National DNA Database

On Dec. 23 2008 the Italian Senate passed the law that allows the creation of an Italian National DNA Database (NDNAD.) When the Camera dei deputati (a sort of Lower Chamber) will grants its approval the law is approved. Technically speaking, there is room for amendments, but this is improbable and, even if amendments come, they wouldn’t change the foundation of this law.

The law is flawed by several weak points: a scientific and cultural lack of perspective (poor understanding of molecular biology and DNA forensics issues); an incredible exemptions for white-collar crimes, so corruption and other political and economic-related crimes ?never fall into the NDNAD; very light punishment for NDNAD abuse.

A more detailed ?analysis ?will follow soon.

November 8, 2008January 8, 2009

Barbarians at the gates and the world economic crisis

Barbarians at the Gate: The Fall of RJR Nabisco ?is a book that might have been written in present times instead – as it was – of the ’90s. The well documented (and very well written) account of the biggest leveraged buy out Wall Street had dreamed ever is a detailed explanation of how the financial system started ruining the “real economy” after 1987 black monday crisis. Although this book is slightly out-of-the-scope for this blog, I nevertheless suggest to give it a try. A lot of things that happens in the ICT world might all of a sudden make sense…

October 22, 2008

Does “Corporate Security” read “Espionage”?

After the investigation started by the Milan Public Prosecutor Office, another case of alleged rogue corporate security and law enforcement officer case hits mainstream media. Former Corporate security head of the Internationally known luxury firm Gucci, together with private investigators and law enforcement officers have been involved into a criminal investigation ran by Florence Public Prosecutor, with charges of computer illegal trespass.

October 21, 2008October 21, 2008

Cybercrime convention and Computer Forensics. A talk at DeepSec

On Nov. 14, 2008 I give a talk at DeepSec. The topic is the end of computer forensics, after the enforcement of the Cybercrime Convention.

October 16, 2008October 21, 2008

Italian banks are not “victim” of phishing money laundering-side

On Oct. 10,02008 the Criminal Court of Milan issued an Order related to the criminal trial Docket Number 24919/05 RGNR stating that a bank whose customers were “affected” by successful phishing attacks, can seek for damages only against the phisher itself, while no civil action can be started against those who laundered the monies coming from the theft.

The people accused of money launderers, said the Court, had no part into the phishing attack, since they play their role only after the monies are stolen.