Recently, I found the (legitimate) need to pick a computer case lock on a PC tower in a situation where the hard drive resided in a hot swap bay, but the key was not included. Computer keys are most commonly found as a short, tube-shape piece with a stubby handle and a small bump to put torque on the lock. Upon initial inspection, nothing looks to be unique about case lock keys. I actually tried two “homeless” keys, but with no avail. Shortly thereafter, I noticed that there were four small cuts in the outer edge of the key tube, sliced at different heights. Comparing one key to another, I found that they were indeed different, and were quite similar to the bumps on a household key. The locks work the same way, but the pins are simply in a circular arrangement instead of linear. With every pin exposed instead of hidden deeper and deeper into the lock, it should be far easier to pick than a household lock. I just had to try.

With a pair of thin needlenose pliers clamped on to apply tension to the lock’s center tumbler, I pressed a straightened paperclip — the most invaluable computer tool ever invented — into each pin location. After a few gentle presses, the pins’ shear line aligned with the tumbler’s, and the lock turned just slightly. The first set of pins was then picked. Without removing pressure with the pliers, I moved on to the next three sets of pins, doing the same procedure to each. Upon pressing in the fourth pin, the lock tumbler turned completely, and the drive was freed. I couldn’t have been happier unless I had done it with two paperclip halves alone.

BoingBoing has a great timeline of the Sony “rootkit” fiasco that’s recently made news around the world. I’ll leave the details up to them. For a great audio summary, download the related Security Now! podcast. The EFF has also posted an open letter, asking Sony to make good. Here’s hoping that Sony receives legal action as a result of their spyware-like tactics. Lastly, Wired magazine is calling for consumers to boycott Sony copy-protected CDs until they come clean and recall all the infected discs.

Here’s a scary article detailing the unsafe security practices of Comcast’s cable modem setup software. Definitely worth a read if you have or plan to set up cable internet through Comcast. I’m glad I’ve always insisted on just calling them up after receiving the cable modem and simply reading off the serial number and MAC address off the bottom of the modem.

Setting up an internet connection really shouldn’t require anything complicated, much less software that poses a significant security threat to your computer. If Macs do eventually end up with viruses and trojans and all that mess, it will be because of serious oversights like this on the part of other companies, not bugs within OS itself. That said, I’ve been quite happy with the speed of Comcast’s service, that’s for sure.

An interesting article describes how scientists are using a single beam of photons to create a “secure” data line, as opposed to lasers, which emit many streams. How having a single beam helps make it more secure, I’m not quite certain. I would guess that if you could intercept one beam of photons from a laser, it would be possible to intercept the single one as well.

The security of information depends on the properties of light that is used to transmit data. Laser beams which are used at the moment send billions of photons, making it easy for hackers to steal some of them and break the code, said Rabeau.

Despite their efforts, this won’t stop people from writing their passwords down beside the sending or receiving computer at either end. The weakest link of the chain is often the people involved, not the technology. That’s not to say it isn’t susceptible to attack, but unfortunately all the advanced technology in the world can’t stop the power of a Post-It. [via digg]