Comedian Lily Tomlin rose to fame on the 1960s comedy hit, Rowan & Martin’s Laugh-In, as Ernestine, the rude, sarcastic switchboard operator for Ma Bell.
She would tap into customers’ calls, interrupt them, make snide remarks about their personal lives. And her victims included celebrities as much as run-of-the-mill customers.
Lily Tomlin as Ernestine
She introduced herself as working for “the phone company, serving everyone from presidents and kings to the scum of the earth.”
But perhaps the line for which her character is best remembered was: “We don’t care. We don’t have to. We’re the phone company.”
Watching Ernestine on Laugh-In was a blast for millions of TV viewers. But facing such corporate arrogance in real-life is no laughing matter.
Clearly, too many companies take the same attitude as Ernestine: “We don’t care. We don’t have to.”
This is especially true for companies that are supposed to safeguard their customers’ most sensitive information–such as their credit card numbers, addresses, emails and phone numbers.
An October 22, 2014 “commentary” published in Forbes magazine raised the highly disturbing question: “Cybersecurity: Does Corporate America Really Care?”
And the answer is clearly: No.
Its author is John Hering, co-founder and executive director of Lookout, which bills itself as “the world leader in mobile security for consumers and enterprises alike.”
Click here: Cybersecurity: Does corporate America really care?
October, 2014 proved a bad month for credit card-using customers of Kmart, Staples and Dairy Queen.
All these corporations reported data breeches involving the theft of credit card numbers of countless numbers of customers.
Earlier breaches had hit Target, Home Depot and JPMorgan/Chase.
And on February 5, 2015, health insurance giant Anthem Inc. announced that hackers had breached its computer system and accessed the medical records of tens of millions of its customers and employees.
Anthem, the nation’s second-largest health insurer, said the infiltrated database held records on up to 80 million people.
Among the customers’ information accessed:
- Names
- Birthdates
- Social Security numbers
- Member ID numbers
- Addresses
- Phone numbers
- Email addresses and
- Employment information.
Some of the customer data may also include details on their income.
Click here: Anthem hack exposes data on 80 million; experts warn of identity theft – LA Times
Bad as that news was, worse was to come.
A February 5 story by the Wall Street Journal revealed that Anthem stored the Social Security numbers of 80 million customers without encrypting them.
The company believes that hackers used a stolen employee password to access the database
Anthem’s alleged reason for refusing to encrypt such sensitive data: Doing so would have made it harder for the company’s employees to track health care trends or share data with state and health providers.
Anthem spokeswoman Kristin Binns blamed the data breach on employers and government agencies who “require us to maintain a member’s Social Security number in our systems so that their systems can uniquely identify their members.”
She said that Anthem encrypts personal data when it moves in or out of its database–but not where it is stored.
This is a commonplace practice in the healthcare industry.
The FBI is now investigating the hack.
According to an anonymous source, the hackers used malware that has been used almost exclusively by Chinese cyberspies.
Naturally, China has denied any wrongdoing. With a completely straight face, Chinese Foreign Ministry spokesman Hong Lei said:
“We maintain a cooperative, open and secure cyberspace, and we hope that countries around the world will make concerted efforts to that end.”
He also said that the charge that the hackers were Chinese was “groundless.”
Click here: Health Insurer Anthem Didn’t Encrypt Stolen Data – WSJ
Meanwhile, John Herring’s complaints remain as valid today as they did last October.
“One thing is clear,” writes Hering. “CEOs need to put security on their strategic agendas alongside revenue growth and other issues given priority in boardrooms.”
Hering warns that “CEOs don’t seem to be making security a priority.” And he offers several reasons for this:
- The sheer number of data compromises;
- Relatively little consumer outcry;
- Almost no impact on the companies’ standing on Wall Street;
- Executives may consider such breaches part of the cost of doing business.
“There’s a short-term mindset and denial of convenience in board rooms,” writes Hering.
“Top executives don’t realize their systems are vulnerable and don’t understand the risks. Sales figures and new products are top of mind; shoring up IT systems aren’t.”
There are three ways corporations can be forced to start behaving responsibly on this issue.
- Smart attorneys need to start filing class-action lawsuits against companies that refuse to take steps to protect their customers’ private information. There is a name for such behavior: Criminal negligence. And there are laws carrying serious penalties for it.
- There must be Federal legislation to ensure that multi-million-dollar fines are levied against such companies–and especially their CEOs–when such data breaches occur.
- Congress should enact legislation allowing for the prosecution of CEOs whose companies’ negligence leads to such massive data breaches. They should be considered as accessories to crime, and, if convicted, sentenced to lengthy prison terms.
Only then will the CEO mindset of “We don’t care, we don’t have to” be replaced with: “We care, because our heads will roll if we don’t.”
&docid=9ui1_6eEdC2RvM&tbnid=7tZltVZLvyljAM%3A&w=535&h=395&ei=3YOzVMOUCdjUoASWqIDQBA&ved=0CAIQxiAwAA&iact=c)
Bureaucracybuster's Blog 
ABC NEWS, BUSINESS, CBS NEWS, CNN, COMPUTER ANTI-VIRUS SOFTWARE, COMPUTER SECURITY, CONSUMER PROTECTION, FACEBOOK, NBC NEWS, NICCOLO MACHIAVELLI, SELF-HELP, THE CHICAGO SUN-TIMES, THE CHICAGO TRIBUNE, THE LOS ANGELES TIMES, THE NEW YORK TIMES, THE WASHINGTON POST, TWITTER, USA TODAY, YELP!
FEAR WORKS: PART ONE (OF TWO)
In Bureaucracy, Business, Law, Self-Help, Social commentary on April 20, 2015 at 12:13 amSo you’ve just bought something online, with a credit card–and the item never arrives–or proves defective.
Even worse, the online company insists on charging your credit card for the item.
What to do?
Here’s what a friend of mine–Ralph–recently did when he faced just that problem.
One night, while surfing the Internet, he saw an ad for a new computer security product. For him, its biggest selling point was: “Make yourself invisible to the bad guys with just one click.”
An even stronger selling point for him: The product was being offered by SUX, the company whose anti-virus software he had subscribed to for the last three years.
And, so far, he had never had any trouble with the company.
SUX offered several options for subscription:
Ralph decided that one month was too short, and two years were too long. He chose a one-year subscription, intending to renew at the end of the year if he liked it.
He typed in his credit card number and clicked on “Download.”
Soon afterward, he received an Order Confirmation email from the company, outlining the product he had just purchased and the amount he had just paid for it.
He then got into the anti-virus security item on his desk. A few clicks later a new screen popped up–and the message: “Disconnected.”
Even worse, the screen warned: “Your license has expired. Renew now.”
The product he had just paid $60 to download hadn’t downloaded.
So Ralph called SUX–and explained to a technician what had happened.
And the tech responded: “We don’t offer phone support for that product.”
Nothing Ralph said could elicit the help he needed. Furious at the man’s arrogance, Ralph hung up.
To avoid accidentally reaching the same worthless technician, Ralph decided to wait several hours before again calling SUX.
When he did, he reached a technician who was willing to provide help. The tech said that he would like to run a remote scan on Ralph’s computer to try to find out what was causing the problem.
Ralph agreed.
For the next five minutes he could see his cursor moving around his screen, as the tech checked first one file, then another.
Finally, the tech said that Ralph needed to “clean out” his computer before the SUX product he bought would work properly.
“OK, how do I do that?” asked Ralph.
“You need to buy our BS2U product,” said the tech.
Now Ralph was really steamed.
He had just spent $60 on a product he couldn’t download. And the tech was telling him he had to spend even more money on a second product to make the first product work properly.
Ralph then said he wanted to contact someone in an executive positon at SUX. But the rep said he would have to call outside the United States to do this.
Ralph hung up, then got back onto his computer and onto the SUX website. He drafted a short but detailed message on the problems he was facing with one of the company’s products.
And it ended:
“Frankly:
(1) I am UNABLE to make use of the product I paid $60 for; and
(2) I am UNWILLING to pay MORE MONEY FOR ANOTHER PRODUCT in hopes that this will enable me to use the one I just purchased.
“Therefore, I am requesting that the credit card transaction I had with your company on —- be canceled. If it is not, I will dispute this via my credit card company when I receive my next statement.
“To enable you to quickly locate this transaction in your files, I am enclosing the Order Confirmation Number: #———-.
“I am making a copy of this email, so I can establish, if necessary, that I have notified your company that I am NOT receiving the product I paid for.
“I have already contacted my credit card company and informed them that I will contest this charge if your company does not make good on this refund.”
Six days later, Ralph called his credit card company, to see if SUX was still charging him for an item he hadn’t received.
It was.
Luckily for Ralph, he had been a longtime student of Niccolo Machiavelli, the father of political science.
Niccolo Mchiavelli
In The Prince, his treatise on how to gain and hold political power, Machiavelli raises the question: Is it better to be loved or feared?
And he answers as follows:
“The reply is, that one ought to be both feared and loved, but as it is difficult for the two to go together, it is much safer to be feared than loved….
“Men have less scruple in offending one who makes himself loved than one who makes himself feared.
“For love is held by a chain of obligations which, men being selfish, is broken whenever it serves their purpose; but fear is maintained by a dread of punishment which never fails.”
It was time to invoke the spirit of St. Niccolo.
Share this: