lornamatic

You have to use IE, and there’s an Autodesk plugin. Sorry.

But you can search for individual trees!

This nice thing came in my email today. Now there is a fraud alert on my social security number!

December 12, 2006

Dear Friend,

UCLA computer administrators have discovered that a restricted campus database containing certain personal information has been illegally accessed by a sophisticated computer hacker. This database contains certain personal information about UCLA’s current and some former students, faculty and staff, some student applicants and some parents of students or applicants who applied for financial aid. The database also includes current and some former faculty and staff at the University of California, Merced, and current and some former employees of the University of California Office of the President, for which UCLA does administrative processing.

I regret having to inform you that your name is in the database. While we are uncertain whether your personal information was actually obtained, we know that the hacker sought and retrieved some Social Security numbers. Therefore, I want to bring this situation to your attention and urge you to take actions to minimize your potential risk of identity theft. I emphasize that we have no evidence that personal information has been misused.

The information stored on the affected database includes names and Social Security numbers, dates of birth, home addresses and contact information. It does not include driver’s license numbers or credit card or banking information.

Only designated users whose jobs require working with the restricted data are given passwords to access this database. However, an unauthorized person exploited a previously undetected software flaw and fraudulently accessed the database between October 2005 and November 2006. When UCLA discovered this activity on Nov. 21, 2006, computer security staff immediately blocked all access to Social Security numbers and began an emergency investigation. While UCLA currently utilizes sophisticated information security measures to protect this database, several measures that were already under way have been accelerated.

In addition, UCLA has notified the FBI, which is conducting its own investigation. We began notifying those individuals in the affected database as soon as possible after determining that personal data was accessed and after we retrieved individual contact information.

As a precaution, I recommend that you place a fraud alert on your consumer credit file. By doing so, you let creditors know to watch for unusual or suspicious activity, such as someone attempting to open a new credit card account in your name. You may also wish to consider placing a security freeze on your accounts by writing to the credit bureaus. A security freeze means that your credit history cannot be seen by potential creditors, insurance companies or employers doing background checks unless you give consent. For details on how to take these steps, please visit http://www.identityalert.ucla.edu/what_you_can_do.htm.

Extensive information on steps to protect against personal identity theft and fraud are on the Web site of the California Office of Privacy Protection, a division of the state Department of Consumer Affairs:
http://www.privacy.ca.gov.

Information also is available on a Web site we have established, http://www.identityalert.ucla.edu. The site includes additional information on this situation, further suggestions for monitoring your credit and links to state and federal resources. If you have questions about this incident and its implications, you may call our toll-free number, (877) 533-8082.

Please be aware that dishonest people falsely identifying themselves as UCLA representatives might contact you and offer assistance. I want to assure you that UCLA will not contact you by phone, e-mail or any other method to ask you for personal information. I strongly urge you not to release any personal information in response to inquiries of this nature.

We have a responsibility to safeguard personal information, an obligation that we take very seriously.

I deeply regret any concern or inconvenience this incident may cause you.

Sincerely,

Norman Abrams,
Acting Chancellor

Databases are databases, and security is security, and sometimes these things get broken into, but still.

EIGHT HUNDRED THOUSAND PEOPLE? Who on GOD’S GREEN EARTH stores 800,000 social security numbers in ONE DATABASE?

UCLA hasn’t had any good PR these days, and this sort of thing is not going to help their image. What is going on?

Menupix Los Angeles, courtesy LAObserved

So it started with a little anomaly in the stats.

Hundreds of referrals from Craigslist.

Hundreds.

Not just from one Craigslist. From Craigslists all over the place. And every link had been removed by the CL community, or sometimes by the staff.

WTF?

I dig around in the stats for a while. Ah-ha, there it is: vaio.jpg. Open up the photo.

OMG.

It’s a photo, of me, embracing a new vaio box with maybe a little too much love, but you know, cut me some slack. Things were bad for a while there, what with that Dell laptop that caught on fire, remember, in my lap. Then there was the replacement for that, which broke after a month or so, and then the replacement for that, which never caught on fire, but wasn’t so great either.

Anyway. I was glad to have that stupid little Vaio. It was the promise of Good Things To Come. At least, for a little while.

Ultimately that Vaio wouldn’t boot up unless you popped it in the freezer for 5 minutes or so. When I moved into an apartment with a side-by-side refrigerator/freezer, the 15″ screen didn’t fit anymore, and the machine hasn’t been turned on since.

But, I digress. Back to the mystery: Why were so many people from Craigslist hitting my server?

At last, the answer! Someone was using my picture to hawk some kind of laptop “giveaway.” Just go fill in your information at this website, and you’ll get your free vaio, just like I GOT MINE. (insert picture of unsuspecting internet idiot with vaio here)

So the thing is, I have access to this image. I can change it to whatever I want. Not feeling all that creative, here’s what I came up with. (My contribution is in green)

Anonymous Craigslist scamming dude still hasn’t figured it out. So here’s the LOL: while this is still up and running, do please offer up your best suggestions as to what else I should post instead of this image.

updated: Looks like our friend has moved on. Fun while it lasted!

All across the internet.