On my Monday morning run I came across this:
So, by itself this is worth a few giggles and will get added to my collection of security gaffes found in the wild.
But what makes this one really good is the potential person who posted this - I decided to blur the number, but a little search of the internets tells me it's the COO of a financial institution in downtown San Francisco (there's plenty of them, big and small, I'm not exactly giving anything away here). Part of their online bio says they're responsible for managing investment systems and technology.
Now, I'm not sayin that drive has anything to do with that financial institution, but I do go to long lengths to not leave laptops/drives/etc around for the stealing on city streets. And you can be damned sure that when I do, it's encrypted, I've got a backup, and I'm ready to write off the $100 cost of the drive instead of expecting somebody to return it to me. In case I didn't, I *still* ain't going to post my desk number in public for people to heckle me or realize what the drive might contain.
Replacement cost of the drive, backups, encryption...wonder which one this person didn't have in place...