Truth About Computer Security Hysteria

Nextel's virus soap opera v2.0

We got a big kick out of [the soap opera] because most of our handset 'direct connect' traffic is culinary based:

{bleep} "Uh, you had lunch yet?"
{bleep} "No. Want to do the salad bar?"
{bleep} "Forget salad. Marketing's treating us to Ruby Tuesdays. Can you give me a ride?"

Not too long after you published that link, we did have a real viral emergency: ILOVEYOU. Did the direct connect help us? No. You see, another important facet of network security is having admins that arrive for work before 11:00 am. Those of us with user privileges could only watch in horror and frustration as our servers ground to a halt and finally died. Of course AFTER the servers were back online we got the company-wide broadcast email from Information Services (they came in around 10:30 am) warning us not to open a certain email. ...The majority of people who opened [ILoveYou] at Nextel were in fact developers. Java dev, VB dev, Web dev, Unix dev. All of them opened it. So much for the stereotype of the dimwitted secretary bringing down the entire company with a single email attachment. No, the young, single, male code-jockeys saw "ILOVEYOU" and opened it up. Maybe if they had bothered to look at the sender (usually the guy sitting next to them) things wouldn't have crashed.