According to Google CEO Eric Schmidt, "If you have something that you don't want anyone to know, maybe you shouldn't be doing it in the first place."

Yup. That's how the head of earth's largest information stock-piler feels about your privacy.

Schmidt made the comment in a recent interview with CNBC's Maria Bartiromo. In context, she had just asked the Google-boss if people should be treating his company like "their most trusted friend."

Schmidt also reminded viewers that his company is subject to the Patriot Act. That's a comforting thought, in light of the fact that the Patriot Act's information scooping powers have only been augmented by the Obama Administration.

In the above quote, Schmidt was referring specifically to the privacy of search results. His statement does, however, make one wonder if Google is really the place to store spreadsheets, medical records, credit card info and all the other stuff they'll be happy to keep track of for you.

When you jailbreak an iPhone, you free it to run 3rd party programs that you can't get at the AppStore. Among other neat tricks, it allows you to use your iPhone as a router or tether it to your computer for Internet access.

It's also the one sure way to contract an iPhone virus.

A recent f-secure blog post described a worm called "Ikee" that attacks jailbroken iPhones.

Fortunately, they also provide information for protecting your jailbroken device. If you've deployed iPhones in your business, you might want to set a jailbreaking policy in order to protect your network from infection.

James Bucki says that writing a DRP is like planning your own funeral. Inspiring, no?

The difference is, if you fail to write your plan, you may still be around to deal with the mess after the disaster hits.

So, to help you start and finish writing your plan, I've added James' excellent guide to writing a quick and dirty disaster recovery plan to my site. Follow his six steps, and you'll have that plan written and implemented in no time.

They are used on everything from department store merchandise to passports. And now Radio Frequency Identification Tags (RFID) may be getting an extra layer of security.

At present, it is possible to clone an RFID Tag by copying its unique information onto a new tag. But researchers at the University of Arkansas have discovered that each tag has a unique electronic "fingerprint" due to radio frequency and manufacturing differences in the device itself.

If adopted by industry, this added safeguard may address the security and privacy issues raised by the wide deployment of RFID tags.

Take a look at this Press Release to learn more about the University of Arkansas research.

Some years ago, I was introduced to the Wall Street Journal Rule for business email. Briefly stated; don't say anything in an email that you wouldn't want to see printed in the WSJ.

The guys at the UK's Hadley Climate Research Center didn't follow the rule and guess where their climate change research and internal emails are being discussed? In the Wall Street Journal, The New York Times and a gazillion blogs all around the web. In addtion, you can now download their body of work from Wikileaks and other sources.

The hacked files seem to document an attempt to fudge data and discredit dissenters. Things will get interesting as the story unfolds and the leaked info is analyzed.

Wherever you stand on global warming, Tony Bradley's advice in PC World is worth heeding:

Make sure you have security controls in place to prevent unauthorized access. Encrypt the data so that it can't be compromised even if the security controls fail. And, ultimately, don't write things in e-mails that you wouldn't want broadcast on the big screen in New York's Times Square.

For the second time in seven months, Somali pirates attacked the Maersk Alabama. Unlike the last skirmish, which resulted in a hostage standoff, security personnel quickly repelled this latest threat.

The attack took place roughly 600 miles of the coast of Somalia as the ship headed for the Kenyan port of Mombasa. A security team on board the Maersk Alabama responded to the attack with small arms fire. They also unleashed a Long Range Acoustical Device (LRAD). The LRAD fires a focused, 150 decibel beam of sound which is loud enough to cause permanent hearing damage, intense pain and temporary blindness.

Shipping companies, like many businesses, debate the pros and cons of using armed security. In this case, the security team responded effectively and protected the lives and cargo aboard their vessel.

According to a statement from the US Navy:

The security team embarked aboard Maersk-Alabama responded to the attack by using evasive maneuvers, Long-Range Acoustic Devices (LRADs) and small arms fire, causing the suspected pirates to break off their attack.

"Due to Maersk Alabama following maritime industry's best-practices such as embarking security teams, the ship was able to prevent being successfully attacked by pirates," said Vice Adm. Bill Gortney, commander, U.S. Naval Forces Central Command. "This is a great example of how merchant mariners can take pro-active action to prevent being attacked and why we recommend that ships follow industry best practices if they're in high-risk areas."

Further Reading:
Do You Need an Armed Guard?
Defeat Your Pirates

If you have a to comply with HIPAA, Sarbanes-Oxley, or protect trade secrets, you already know that a discarded hard drive can come back to bite you. So, not long ago, I wrote an article explaining how to erase a hard drive completely.

Apparently, there is one method I overlooked. The guys at Data Devastation will sanitize your hard drive with a .357 magnum. Or an AK-47 for that matter.

For about $60, these pros will take your drive to a range, unleash a fusillade that will wipe it to Department of Defense specs, and provide physical evidence that the data is gone.

You can even choose the caliber.

This is probably the last post I'll write concerning the Fort Hood shootings. From a business security aspect, the salient lesson has to do with workplace violence, a topic I touched on last Wednesday.

New facts continue to come to light, however, including recent reports that it may have been Sgt. Mark Todd and not Sgt. Kim Munley who actually took the shooter down. This doesn't make Sgt. Munley one iota less of a hero, it only highlights the difficulty of nailing down verifiable facts in the aftermath of a violent attack.

As I continue to watch the available information swirl and realign, I'm reminded of this sage advice from Sherlock Holmes:

It is a capital mistake to theorize before one has data. Insensibly one begins to twist facts to suit theories, instead of theories to suit facts.

Readers know that the purpose of this site is not to analyze national security/terrorism issues. Still, national security and business security are inextricably connected. And practitioners in the public and private sectors can and should learn from each other.

One of the questions swirling arond the Fort Hood shootings is, Were early warning signs missed? History suggestst that those who travel the tortuous path to rampage killing drop plenty of bread crumbs along the way.

Haig Neville in Dealing With Workplace Violence, notes:

A New York Times study of 100 rampage murders ... found that most of the killers 'spiraled down a long, slow slide, mentally and emotionally.' According to the study, most killers gave multiple signs that they were in trouble.

With this in mind, employers should be alert to some of the predictors of violent behavior. These include employees who: use intimidation, talk about weaponry, exhibit paranoid or anti-social behavior, feel they're not being heard by the company, express extreme desperation, have a history of violence, are loners who don't fit in with the group.

For further reading, take a look at Human Resources Guide Susan Heathfield's article, Workplace Violence: Violence Can Happen Here.

Authorities do not believe there is any evidence of friendly fire in the Fort Hood shootings.

According to a recent story in CNN Justice:

Army Criminal Investigation Command spokesman Chris Grey said authorities did not believe that any of those killed or wounded were shot by anyone other than the suspect, Maj. Nidal Malik Hasan. Furthermore, Grey reiterated that all evidence indicates that the suspect "acted alone." Grey said there was "no evidence to contradict that finding." He added that the investigation is continuing.