This is default featured slide 1 title

Go to Blogger edit html and find these sentences.Now replace these sentences with your own descriptions.

This is default featured slide 2 title

Go to Blogger edit html and find these sentences.Now replace these sentences with your own descriptions.

This is default featured slide 3 title

Go to Blogger edit html and find these sentences.Now replace these sentences with your own descriptions.

This is default featured slide 4 title

Go to Blogger edit html and find these sentences.Now replace these sentences with your own descriptions.

This is default featured slide 5 title

Go to Blogger edit html and find these sentences.Now replace these sentences with your own descriptions.

Pages

Wednesday, March 6, 2013

Developer Sacked for Outsourcing




The truly lazy are often the most creative. Like this developer, who was caught outsourcing his entire job to China so that he could spend his time at work... not working.

The ruse—highlighted in a Verizon case study—was carried out by an employee called "Bob" who worked at an anonymous "critical infrastructure company". The trick was only spotted when someone noticed suspicious activity on the company's VPN log. The report explains:

"We received a request from a US-based company asking for our help in understanding some anomalous activity that they were witnessing in their VPN logs. Plainly stated, the VPN logs showed [Bob] logged in from China, yet the employee is right there, sitting at his desk, staring into his monitor."

While Bob apparently received glowing performance reviews, all of his development work was being carried out from China. In fact, he pulled off the same scam across multiple companies concurrently, earning "several hundred thousand dollars a year".

Further investigation revealed a typical day's work for Bob included: reading Reddit for two hours, shopping on eBay for an hour, browsing Facebook for two hours, and checking LinkedIn for a further two. Looks like he'll be spending more time on LinkedIn from now on.

outsourcing your own job




Can the story of the man who was caught outsourcing his own job to China be true?

Of course it can. Ever since “cheaper” overtook the word “better” as the favoured adjective for “product” in the West, most of us — including the paranoiacs, which is, again, most of us — have wondered if someone in Asia, or even Youngstown, Ohio, could do our job for less money and no benefits.

The employee investigated by the Verizon Risk Team got away with it for years because he was so boring, a mid-40s software developer with “relatively long tenure, family man, inoffensive and quiet. Someone you wouldn’t look at twice in an elevator.” So they called him “Bob.” They were hardly going to call him “Sebastian.”

Bob was betrayed by his own technology. As the risk people put it in a report in an admirable effort to make their jobs sound too difficult to outsource, “as illustrated within our DBR statistics, continual and pro-active log review (at the VPN concentrator) happens basically never.”

In the end, it wasn’t “zero-day malware initiating VPN connections via external proxy” — we’re thoroughly baffled now, guys, so let it go. Bob simply couriered his RSA token to China and let a Chinese firm do the work. Bob was paid hundreds of thousands of dollars for his excellent programming and his temps in China earned 50 grand.

To this point, the scam is pure Office Space, a Mike Judge movie I urge you to see if you hate your job.
What fascinated me about this story was how far outsourcing could be taken. Industrially speaking, some American states have degraded working conditions to such an extent that outsourced jobs are returning from foreign countries because wages are similar and you don’t have those Chinese transportation costs. This is known as “re-sourcing.”

More Jobs Overseas Than At Home


With the nation’s unemployment rate still above eight percent, millions of Americans are looking for work, and the country’s biggest corporations are hiring. According to a new report from the Wall Street Journal, however, many of those corporations are adding jobs overseas at a faster pace than they are at home. Even worse, others are cutting their domestic workforces while adding jobs in other countries at a rapid pace:

Those companies, which include Wal-Mart Stores Inc., WMT +2.70% International Paper Co., Honeywell International Inc. and United Parcel Service Inc., boosted their employment at home by 3.1%, or 113,000 jobs, between 2009 and 2011, the same rate of increase as the nation’s other employers. But they also added more than 333,000 jobs in their far-flung—and faster-growing— foreign operations.

The companies included in the analysis were the largest of those that disclose their U.S. and non-U.S. employment in annual securities filings. All of them have at least 50,000 employees. Collectively, they employed roughly 6.4 million workers world-wide last year, up 7.7% from two years earlier. Over the same period, the total number of U.S. jobs increased 3.1%, according to the Labor Department.

Many of the companies are adding jobs in the U.S. but adding even more overseas — reversing a trend from a decade ago in which they were outsourcing American jobs to other countries. But some companies, like Wal-Mart, have boosted overseas employment while maintaining flat job growth in the U.S., and others, like UPS, haveslashed jobs at home even while adding them in other countries:

Surf Reddit




At any given time, we have all probably wished that we could outsource our work to someone in China and spend our days browsing the Web.

One software developer, however, did just that - spending his days watching cat videos and perusing Reddit. But he failed to realize that daily VPN log-ins from Shenyang, China might arouse suspicion.
The employee's exploits were detailed in a Jan. 13 blog post from J. Andrew Valentine, a principal and team lead with the forensic and investigative response team within Verizon. The blog post appears to have been pulled offline, but a cached version is still available.

Valentine said his team uncovered the scam when a U.S.-based company asked Verizon "for our help in understanding some anomalous activity that they were witnessing in their VPN logs." The company had allowed more workers to telecommute in the last two years via a VPN, but after reading a 2012 data breach investigative report from Verizon, the firm decided to start monitoring its VPN connections.
"What they found startled and surprised them: an open and active VPN connection from Shenyang, China! As in, this connection was LIVE when they discovered it," Valentine wrote.

Given that the company in question handled critical infrastructure, the VPN required two-factor authentication, and the employee whose credentials were in use overseas was sitting at his desk, the log-in from China was troubling.
The team initially suspected malware, but an exhaustive investigation proved otherwise. "As it turns out, 'Bob' had simply outsourced his own job to a Chinese consulting firm," Valentine wrote. "Bob spent less that one fifth of his six-figure salary for a Chinese firm to do his job for him."

The worker "physically FedExed his RSA token to China so that the third-party contractor could log-in under his credentials during the workday."

When the team looked at Bob's Web history, the picture got a bit clearer. The worker - described as an "inoffensive and quiet" programmer in his mid-40s - spent much of his day on Reddit, eBay, Facebook, or watching cat videos.

"Evidence even suggested he had the same scam going across multiple companies in the area," Valentine concluded. "All told, it looked like he earned several hundred thousand dollars a year, and only had to pay the Chinese consulting firm about fifty grand annually."

It seems Bob chose his developers carefully. Performance reviews cited his clean, well-written code. "Quarter after quarter, his performance review noted him as the best developer in the building," Valentine said.

Valentine did not mention what became of "Bob," but one can assume that providing Chinese workers with sensitive data was frowned upon by upper management.

Take this job and ship it




THE hive mind behind the Modeled Behavior twitter feed has been trying to goad economic types into defending outsourcing, now the subject of intense political debate thanks to Mitt Romney's career at Bain Capital. The direct provocation of MB's ire is, I think, a series of posts from Paul Krugman. In one, he writes:

[R]ecently the Washington Post added a further piece of information: Bain invested in companies that specialized in helping other companies get rid of employees, either in the United States or overall, by outsourcing work to outside suppliers and offshoring work to other countries.The Romney camp went ballistic, accusing the Post of confusing outsourcing and offshoring, but this is a pretty pathetic defense. For one thing, there weren’t any actual errors in the article. For another, it’s simply not true, as the Romney people would have you believe, that domestic outsourcing is entirely innocuous. On the contrary, it’s often a way to replace well-paid employees who receive decent health and retirement benefits with low-wage, low-benefit employees at subcontracting firms. That is, it’s still about redistribution from middle-class Americans to a small minority at the top.
And later he adds:

And this means that Bain’s activities are part of the really big story about America these past three decades, which isn’t about jobs moving overseas, but about the rewriting of the social contract, with income shifted away from ordinary workers and toward the Masters of the Universe.
Those of us who learned our economics in the 1990s remember well when Mr Krugman instead wrote things like this:

[M]oral outrage is common among the opponents of globalization--of the transfer of technology and capital from high-wage to low-wage countries and the resulting growth of labor-intensive Third World exports. These critics take it as a given that anyone with a good word for this process is naive or corrupt and, in either case, a de facto agent of global capital in its oppression of workers here and abroad.But matters are not that simple, and the moral lines are not that clear. In fact, let me make a counter-accusation: The lofty moral tone of the opponents of globalization is possible only because they have chosen not to think their position through. While fat-cat capitalists might benefit from globalization, the biggest beneficiaries are, yes, Third World workers.
Now, it's possible to read Mr Krugman in a charitable way here. One could argue, as he once did, that globalisation was largely a story about how improved transportation and communication technologies allowed billions of very poor workers to join the global economy and greatly improve their living standards and global welfare in the process. One could say that, economically speaking, this was a good thing for rich economies. But one could add that one side effect of globalisation was a weakening of important countervailing political institutions in rich countries, which removed a check on the concentrated political power of owners of capital. And one could then say that owners of capital have used that political power to systematically chip away at instruments of redistribution. Globalisation represents a Kaldor-Hicks efficiency improvement, in other words, but it takes the machinery of the welfare state to make it Pareto improving. Rather than make sure that such machinery is protected, one could argue, the owners of capital who've gained from globalisation have simply allowed it to rust and decay. Indeed, you could even go so far as to say that by allowing such redistributive engines to fall apart, owners of capital have contributed to growing erosion in support for globalisation. Reckless outsourcers are actually the enemies of liberalisation!

Maybe. But if that's what Mr Krugman means, he should make the case forthrightly. As it is, the posts cited above read like a straightforward argument that outsourcing and offshoring are bad for labour, full stop. And that's wrong. If a job can be done more cheaply, then changing production methods to do the job more cheaply frees up resources that can then be used for other things. Unless there is a macroeconomic policy failure, those resources will be used for other things, ensuring that unemployment doesn't rise. Workers should earn their marginal productivity, and if we're not happy with those wages, we should support redistributive taxation, or identify productivity-enhancing public investments in education or infrastructure. We should not heedlessly create worker cartels that fight with firms over the right to capture rents.

Now I can't say for sure, but I suspect that Mr Krugman might respond to that argument by saying that it's hopelessly naive. I think he might own up to being radicalised by policy over the past decade or so and say that he's discovered that economic policymaking, as practiced in America, is much different than what textbooks suggest ought to occur. Political economy and bargaining power are everything, he might argue, and the inefficiencies associated with a class-conscious, organised labour force are a price worth paying for a check on the class-conscious wealthy who are all too willing to use the political system to protect their interests and gobble up rents. Just look at the enormous wealth and waste in finance, he would probably shout, and the appalling, intimate connections between Wall Street and Washington.

And honestly, I have some sympathy for that perspective. But here's where I differ from that imagined Paul Krugman. First, I think the process of globalisation, which has moved billions of people out of dire poverty, is worth defending loudly and proudly, even if it came along with a costly side order of dysfunctional American politics and policymaking. We have a moral responsibility to be very clear about what aspects of globalisation we think should change and why, because the cost of encouraging a broader backlash against the process of liberalisation, with all the great good it generates, is simply too high.

And second, it seems to me that an effort to restore the bargaining power of labour by having a showdown over outsourcing or by trying to reinvigorate the labour movement is destined for failure. The rise in worker bargaining power that occurred in the first half of the last century was a product of social movements, but those movements were enabled by the production technologies of the time, and it is the dissolution of those production technologies that has been most responsible for the weakening of labour's position. As Mr Krugman understands very well (his work on the topic helped earn him a Nobel Prize) the transportation technologies of the industrial revolution dictated in favour of large, industrial agglomerations. Geographic concentration enabled worker solidarity, and the benefits of the agglomeration meant that employers couldn't credibly threaten to move elsewhere. But the days of the large, urban industrial agglomeration are gone.

If labour is to capture more of the producer surplus—or have more of a say in Washington, for that matter—it will be as a result of a social evolution that matches the production technologies of today. That's a much, much harder process to think about and talk about than a call for the return of the glory days of labour. It's certainly not the sort of thing that lends itself to deployment in the binary dialogue of a presidential campaign. The truth is that Bain didn't really do anything wrong by outsourcing. It could have not done it, but that would primarily have created a profit opportunity for someone else. It may say something about Mitt Romney that he was the man who opted to take the profits. But the nature and distribution of economic activity is about the interaction between technology and institutions, and not about whether an individual capitalist tries to be fair or not. It's not Mitt Romney's fault that the median worker hasn't gotten a real pay increase in over 30 years. And Mr Romney's Bain experience might cost him the election, but that's not going to bring real pay increases back, either.

Spent Hours Surfing The Web


Developer Outsourced Entire Job To China, Spent Hours Surfing The Web

A crafty developer reportedly figured how to get paid to sit and watch cat videos for a good chunk of the day.

It's a story almost too good to be true -- and one which has an almost uncanny resemblance to this fake news story run by The Onion. But according to Verizon's Security Blog, a U.S. developer actually did find a way to fool everyone at his company into thinking he was working, while in fact outsourcing his entire job to China.

Andrew Valentine wrote up the case study for Verizon, and the story apparently caused such a furor it temporarily crashed the Verizon servers.

Citing the study, the BBC notes the ingenious scam came to light after the employee's company asked for an audit to investigate "anomalous activity on its virtual private network (VPN) logs" that pointed to an active VPN connection between Shenyang, China, and the employee's workstation that appeared to be operational for months.

Valentine went so far as to profile the employee, who is not named in the report, and who was paying less than "one fifth of his six-figure salary" on the outsourcing:

Mid-40’s software developer versed in C, C++, perl, java, Ruby, php, python, etc. Relatively long tenure with the company, family man, inoffensive and quiet. Someone you wouldn’t look at twice in an elevator.
A check of the employee's web browsing history revealed an average schedule. According to the case study, the worker's day looked like this:

9:00 a.m. – Arrive and surf Reddit for a couple of hours. Watch cat videos
11:30 a.m. – Take lunch

1:00 p.m. – Ebay time.

2:00–ish p.m - Facebook updates – LinkedIn

4:30 p.m. – End of day update e-mail to management.

5:00 p.m. – Go home

According to The Register, the employee no longer works for the company that ordered the audit. (As Gizmodo's Jamie Condliffe quipped, "Looks like he'll be spending more time on LinkedIn from now on.")

Help Net Security reached out to Nick Cavalancia, a vice president at SpectorSoft, to gather information on how companies may work to prevent similar schemes.

"We have yet to see what impact this incident will have, but providing programming code used to run critical national infrastructure providers' systems to off-shore firms seems dangerous at best," Cavalancia said. "What many organizations fail to understand is that with proactive monitoring that can alert IT security teams when unacceptable online behaviors occur, this type activity can be thwarted before it becomes an incident."

Facebook's 'New Look'


Facebook's 'New Look' May Include Multiple News Feeds

Facebook is planning to make its first major change to the news feed since it launched in 2006, and according to reports, we could see multiple news feeds based on categories, such as Instagram photos and music your friends are listening to and artist updates.

Ahead of the big press event the social network is holding on Thursday, TechCrunch is reporting that, in addition to several news feeds, we'll be seeing larger photos and image-based ads.

Mashable reached out to Facebook for confirmation: "We don't comment on rumor and speculation," a spokesperson said.

If the TechCrunch report is true, the multiple feed feature will be located at the top near the search bar. Although the design is expected to include a photo feed — dedicated to only Facebook and Instagram pictures — as well as one for music, there could be other options dedicated just for news, videos and apps. This would also allow advertisers to target specific interests.

SEE ALSO

7 Photo Editing Apps to Use With Instagram
This would make it easier for users to sort through the heavy stream of information hitting news feeds, without hitting repeated content posted by friends. By giving members more categories to sift through, Facebook gives people a greater incentive to spend more time on the site.

Mashable recently reported that a new look for Timeline is already live in New Zealand, featuring a new toolbar at the top of the screen and an about widget below the profile picture. Timeline navigation is also re-positioned at the top right of the page, taking the place of current ads, and shared stories get a like button for that site below the post.

What do you think of the new multiple feeds and Timeline concept? Let us know in the comments.