Hi Toofuzzy, Thanks for the compliment but I haven't been around all that long, I just am used to researching things and finding things in hidden corners as an information security analyst.
One day I was at work consulting for a medical company, and doing my usual analysis of networks I came across ALL the records for the employees of a well known men's store, wages, credit card numbers, birth dates, medical histories, and on and on, all in plain sight unencrypted. The head of the security section had no, I mean NO clue it was sitting where it could be read by anyone at the medical company and outsiders if they did a very minimal hack. I wrote up my report and gave it to him. Then, a couple of months later I was meeting with a Vice President and the division head to discuss a further project and I asked how it was going on my previous report, It turned out that the security head had not told them about the results of my testing. Anyway, my point is that I've always had a nose for finding things and then, when it was ethical, keeping copies for my own reference. I kept nothing from that medical company. I even obfuscated the critical parts of the images in my report.
Best,
Allen
