The economics of phishing

Posted on by

Conventional wisdom is that phishing represents easy money. In this paper we examine the economics that underly the phenomenon, and find a very different picture. Phishing is a classic example of tragedy of the commons, where there is open access to a resource that has limited ability to regenerate. Since each phisher independently seeks to maximize his return, the resource is over-grazed and yields far less than it is capable of. The situation stabilizes only when the average phisher is making only as much as he gives up in opportunity cost.

From “A Profitless Endeavor: Phishing as Tragedy of the Commons” by Cormac Herley and Dinei Florencio of Microsoft Research.

Power lunching

Posted on by

Dubya had a lunch party today at the White House. Guests were his Pa, President-elect Obama, Bill Clinton and Jimmy Carter. Apparently it was Obama’s idea. It was the first time since 1981 that all living presidents have been together at the White House.

Photo here.

Moore’s Law in pictures

Posted on by

Technology Review has an interesting photographic record of Moore’s Law. It opens with this image (from Texas Instruments).

The first working integrated circuit on germanium was demonstrated by Jack Kilby at Texas Instruments in 1958. This prototype has a transistor (small left dot) attached to two gold wires and a capacitor (middle black dot). The germanium itself, secured on a glass slide, is divided into three resistors by the tabs at the bottom. By showing that all three types of components could work in the same slice of germanium, Kilby offered a way to improve the performance and lower the cost of electronic devices.

How to solve the Jobs ‘health’ problem

Posted on by

Well, well.  This from the BBC Blog:

It seems the cat and mouse game between Apple boss Steve Jobs and the press and blogosphere has ended … for the moment.

This morning he sent out an email that said “I’ve decided to share something very personal with the Apple community”. As you may have read in our news story, Mr Jobs has admitted to being ill these past few months but not knowing the reason why until recently. He has now said it is due to “a hormone imbalance that has been ‘robbing’ me of the proteins my body needs to be healthy”.

I’m delighted he’s not at death’s door. But the fact remains that Apple is still perceived as a one-man band. The only way to address the problem in the long run is for Jobs to move towards a more collegial managerial style, so that in the end the stock market (and the blogosphere) begins to see that Apple isn’t totally dependent on its CEO’s health. They could perhaps take a leaf out of Microsoft’s book: remember how Billg’s departure was preceded by rule by a troika of Mundie, Ozzie and Ballmer?

Lucy Kellaway Twaddle Awards

Posted on by

Bullshit is still thriving.

And now for the most eagerly awaited part of the awards: the jargon section.

● The first award in this group is for Nouns Moonlighting As Verbs, which was so popular that the judges are giving out three gongs. The 2008 Olympics introduced the world to the verb “to medal”. This entry medals with a bronze. The Silver medal in this category goes to “to auspice”, while gold goes to the verb “to sunset”. AOL used the verb to great effect last summer in declaring that it was canning some products. “Bluestring, Xdrive and AOL Pictures will be sunset. [They] have not gained sufficient traction in the marketplace or the monetisation levels necessary.” In other words, they were flops.

● In recognition of the economic climate the judges are giving a special award this year for Best Term For Sacking People. An honorary mention goes to the new phrase “dynamic rightsizing”, which means regular sackings, only more exciting and souped-up. The winner, for its sheer disingenuity, goes to “upgrade”. A reader reports that when she was fired by her US company in mid-2008 she was told: “We are going to upgrade you with immediate effect. We are going to allow you to move on in order that you can you use your talents and skills more effectively and thus upgrade your career and opportunities.”

So what really happened?

Posted on by

Michael Lewis and David Einhorn have written a devastating analysis in the NYT of why the banking catastrophe happened. It’s a great read. Sample:

OUR financial catastrophe, like Bernard Madoff’s pyramid scheme, required all sorts of important, plugged-in people to sacrifice our collective long-term interests for short-term gain. The pressure to do this in today’s financial markets is immense. Obviously the greater the market pressure to excel in the short term, the greater the need for pressure from outside the market to consider the longer term. But that’s the problem: there is no longer any serious pressure from outside the market. The tyranny of the short term has extended itself with frightening ease into the entities that were meant to, one way or another, discipline Wall Street, and force it to consider its enlightened self-interest.

The credit-rating agencies, for instance.

Everyone now knows that Moody’s and Standard & Poor’s botched their analyses of bonds backed by home mortgages. But their most costly mistake — one that deserves a lot more attention than it has received — lies in their area of putative expertise: measuring corporate risk.

Over the last 20 years American financial institutions have taken on more and more risk, with the blessing of regulators, with hardly a word from the rating agencies, which, incidentally, are paid by the issuers of the bonds they rate. Seldom if ever did Moody’s or Standard & Poor’s say, “If you put one more risky asset on your balance sheet, you will face a serious downgrade.”

The American International Group, Fannie Mae, Freddie Mac, General Electric and the municipal bond guarantors Ambac Financial and MBIA all had triple-A ratings. (G.E. still does!) Large investment banks like Lehman and Merrill Lynch all had solid investment grade ratings. It’s almost as if the higher the rating of a financial institution, the more likely it was to contribute to financial catastrophe. But of course all these big financial companies fueled the creation of the credit products that in turn fueled the revenues of Moody’s and Standard & Poor’s.

These oligopolies, which are actually sanctioned by the S.E.C., didn’t merely do their jobs badly. They didn’t simply miss a few calls here and there. In pursuit of their own short-term earnings, they did exactly the opposite of what they were meant to do: rather than expose financial risk they systematically disguised it.

This is a subject that might be profitably explored in Washington. There are many questions an enterprising United States senator might want to ask the credit-rating agencies. Here is one: Why did you allow MBIA to keep its triple-A rating for so long? In 1990 MBIA was in the relatively simple business of insuring municipal bonds. It had $931 million in equity and only $200 million of debt — and a plausible triple-A rating.

By 2006 MBIA had plunged into the much riskier business of guaranteeing collateralized debt obligations, or C.D.O.’s. But by then it had $7.2 billion in equity against an astounding $26.2 billion in debt. That is, even as it insured ever-greater risks in its business, it also took greater risks on its balance sheet.

Yet the rating agencies didn’t so much as blink. On Wall Street the problem was hardly a secret: many people understood that MBIA didn’t deserve to be rated triple-A. As far back as 2002, a hedge fund called Gotham Partners published a persuasive report, widely circulated, entitled: “Is MBIA Triple A?” (The answer was obviously no.)

At the same time, almost everyone believed that the rating agencies would never downgrade MBIA, because doing so was not in their short-term financial interest. A downgrade of MBIA would force the rating agencies to go through the costly and cumbersome process of re-rating tens of thousands of credits that bore triple-A ratings simply by virtue of MBIA’s guarantee. It would stick a wrench in the machine that enriched them. (In June, finally, the rating agencies downgraded MBIA, after MBIA’s failure became such an open secret that nobody any longer cared about its formal credit rating.)

There’s lots more in that vein, including some pretty scarifying stuff about the SEC.

We will know how serious a president Obama will be when we find out what he proposes to do about regulation of the financial services industry. The current system is comprehensively broken. It’s incapable of doing what needs to be done if banking is to be kept prudent and honest. The political temptation will be to fiddle with it (as Gordon Brown will probably do). But it really needs to be re-engineered from the ground up — by people who understand systems as well as banking.

Whistling in the dark

Posted on by

Every year John Batelle makes some predictions about the year ahead and — to his credit — revisits them at the end of the year to see how he did. This year he’s clearly having difficulties. And he thinks the recession will end in the fourth quarter of the year. Sure it will. And pigs will fly in close formation.

A New Year message from Microsoft

Posted on by

Link.

Oh, and btw, there’s a class-action suit that claims that MS made $1.5 billion from licences for machines that weren’t capable of running Vista.

SALES OF low-end PCs that were labeled as ‘Vista Capable’ but couldn’t run the premium editions of Vista earned Microsoft more than $1.5 billion, according to a plaintiffs’ witness estimate in the ‘Vista Capable’ consumer class action lawsuit.

Consumers are suing the Vole because they claim it misled them into buying PCs that were capable of running only the Home Basic version of Windows Vista rather than the more full featured editions that included the eye-candy Aero grapical user interface.

The plaintiffs argue that Microsoft “unjustly enriched” itself by deceptively inflating demand for less powerful PCs, increasing their price. This court filing claims to put a price tag on that.

Expert witness Keith Leffler stated, “I have been asked by Plaintiffs’ counsel to estimate the amount of revenue earned by Microsoft from the licensing of Windows XP on Vista Capable but not Vista Premium Ready PCs sold to Plaintiffs.”

After reviewing the Vole’s [redacted] sales figures on Windows XP licences for PCs labeled as ‘Vista Capable’ during the period from April 2006 through January 2007, when Windows Vista became generally available, Leffler concluded: “From these figures, I have reached the opinion that Microsoft revenue from the Windows XP licensing on Vista Capable but not Vista Premium Ready PCs sold to Plaintiffs was $1.505 billion.”

Source.