<!DOCTYPE html>
<html>
<head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<title>Re: Jussi - Does he work for Nokia? As a Chief of Security?</title>
<link rel="important stylesheet" href="">
<style>div.headerdisplayname {font-weight:bold;}
</style></head>
<body>
<table border=0 cellspacing=0 cellpadding=0 width="100%" class="moz-header-part1 moz-main-header"><tr><td><b>Subject: </b>Re: Jussi - Does he work for Nokia? As a Chief of Security?</td></tr><tr><td><b>From: </b>Barrett Brown &lt;barriticus@gmail.com&gt;</td></tr><tr><td><b>Date: </b>2/11/11, 05:33</td></tr></table><table border=0 cellspacing=0 cellpadding=0 width="100%" class="moz-header-part2 moz-main-header"><tr><td><b>To: </b>John &lt;bigleagues@gmail.com&gt;</td></tr></table><br>
Wonderful compilation here; I will view it in the morning, and in the meantime have forwarded to my colleagues for their examination. Will get back to you soon.<br><br><div class="gmail_quote">On Fri, Feb 11, 2011 at 4:29 AM, John <span dir="ltr">&lt;<a href="mailto:bigleagues@gmail.com">bigleagues@gmail.com</a>&gt;</span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Barrett,<br><br>This is getting juicy regarding jussi. I&#39;ve been obsessed with this all night . . .<br><br>I came across this article: <a href="http://www.tietoyhteiskuntaohjelma.fi/parhaatkaytannot/tietoliikenne_ja_digitv/fi_FI/1146729681443/" target="_blank">http://www.tietoyhteiskuntaohjelma.fi/parhaatkaytannot/tietoliikenne_ja_digitv/fi_FI/1146729681443/</a><br>


<br>At the top of the page is a familiar email: <a href="mailto:jussij@gmail.com" target="_blank">jussij@gmail.com</a> and it appears the article was published in 2006.<br><br>At the bottom of the page is a PDF link. I have attached the PDF. At the bottom of the PDF document, are references to Jussi and his co-author and what they do at Nokia. What&#39;ya know. Google Translate doesn&#39;t do well with Finnish to English, but there enough out there to make the case that <a href="mailto:jussij@gmail.com" target="_blank">jussij@gmail.com</a> aka<i> <strong></strong><em>jussi.jaakonaho<img src="http://archives.neohapsis.com/imgs/at.gif" align="middle" border="0"><a href="http://nokia.com" target="_blank">nokia.com</a> aka </em><em><a href="mailto:jussi@mataaratanga.com" target="_blank">jussi@mataaratanga.com</a></em></i> aka <a href="mailto:jussi.jaakonaho@sentor.se" target="_blank">jussi.jaakonaho@sentor.se</a> belong to the same guy. <br>


<br>Meaning the Chief Security Analyst (or Chief Advisor, Enterprise Risk &amp; Security) at NOKIA (and the &quot;Industry Keynote Speaker&quot; at the 2009 Forrester&#39;s Security Forum in London) . . . wait for it . . .  got socially engineered by a 16-year-old-girl.<br>


<br><a href="http://www.tietoyhteiskuntaohjelma.fi%20" target="_blank">www.tietoyhteiskuntaohjelma.fi </a>has an English version you can switch too, but then strangely no reference to our boy Jussi will come up in the site search.<br>
<br>

<b>Supporting Links</b><br><a href="http://www.spoke.com/info/p30H9Zc/JussiJaakonaho" target="_blank">http://www.spoke.com/info/p30H9Zc/JussiJaakonaho</a> (Nokia: Chief Security Analyst since 2006, Design Engineer 1999-2006)<div class="im">
<br><br><a href="http://www.forrester.com/Speaker_Bio/0,9010,2358,00.html?speakerID=1659&amp;speakerType=Outside" target="_blank">http://www.forrester.com/Speaker_Bio/0,9010,2358,00.html?speakerID=1659&amp;speakerType=Outside</a><br>


</div><b><br>And it gets funny (not really) when you realize that he is sitting on security advisory boards and speaking at conferences:</b><br><br><a href="http://www.mail-archive.com/darklab@lists.darklab.org/msg00142.html" target="_blank">http://www.mail-archive.com/darklab@lists.darklab.org/msg00142.html</a><br>


<br><a href="http://www.lesc.net/blog/intersecting-ideas-cross-disciplineshellipand-taking-boydrsquos-theories-beyond" target="_blank">http://www.lesc.net/blog/intersecting-ideas-cross-disciplineshellipand-taking-boydrsquos-theories-beyond</a><br>


<br><a href="http://zenpundit.com/?cat=340" target="_blank">http://zenpundit.com/?cat=340</a><br><i style="background-color:rgb(255, 255, 255);color:rgb(204, 153, 51)"><strong style="font-weight:normal">This quote should be attributed to Jussi: “companies won’t die 
because of their false actions. they die because of the continuing of 
the same actions for too long (which once were right).”</strong></i><br><br><br><b>And Jussi offers a lot of expertise . . . including the discovery of a Windows DDoS vulnerability back in 2003:</b><br><a href="http://www.windowsitpro.com/article/windows-2000/denial-of-service-in-microsoft-rpc-endpoint-mapper.aspx" target="_blank">http://www.windowsitpro.com/article/windows-2000/denial-of-service-in-microsoft-rpc-endpoint-mapper.aspx</a><br>


<br><a> http://www.securityfocus.com/archive/101/475022</a><br><span style="color:rgb(204, 153, 51)">&quot;pentests can tell client only like &quot;your security sucks or we are</span><br style="color:rgb(204, 153, 51)">


<span style="color:rgb(204, 153, 51)">
unsure&quot;</span><br><br><a href="http://archives.neohapsis.com/archives/nfr-wizards/1999-q3/0638.html" target="_blank">http://archives.neohapsis.com/archives/nfr-wizards/1999-q3/0638.html</a><br><font color="#888888"><br>
<br>- John</font><div><div></div><div class="h5"><br><br><br><br><div class="gmail_quote">

On Fri, Feb 11, 2011 at 12:37 AM, barri2009 <span dir="ltr">&lt;<a href="mailto:barriticus@gmail.com" target="_blank">barriticus@gmail.com</a>&gt;</span> wrote:<br><blockquote class="gmail_quote" style="margin:0pt 0pt 0pt 0.8ex;border-left:1px solid rgb(204, 204, 204);padding-left:1ex">


   Hmm. I hadn&#39;t heard of this. Will look at link when I get home in a bit.<p>Sent via BlackBerry by AT&amp;T</p><hr><div><b>From: </b> John &lt;<a href="mailto:bigleagues@gmail.com" target="_blank">bigleagues@gmail.com</a>&gt;
</div><div><b>Date: </b>Fri, 11 Feb 2011 01:40:43 -0500</div><div><b>To: </b>&lt;<a href="mailto:barriticus@gmail.com" target="_blank">barriticus@gmail.com</a>&gt;</div><div><b>Subject: </b>Jussi - Does he work for Nokia? As a Chief of Security?</div>


<div><div></div><div><div><br></div>Barrett,<br><br><br>Nothing you couldn&#39;t have found out already, but in reading up on everything I was curious who this Jussi dude is from <a href="http://rootkit.com" target="_blank">rootkit.com</a> - could this be the same jussi?:<br>




<br><a href="http://www.forrester.com/Speaker_Bio/0,9010,2358,00.html?speakerID=1659&amp;speakerType=Outside" target="_blank">http://www.forrester.com/Speaker_Bio/0,9010,2358,00.html?speakerID=1659&amp;speakerType=Outside</a><br>


<br>I mean how many jussi jaakonaho&#39;s can there be?<br>

<br>- John<br>

</div></div></blockquote></div><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>Regards,<br><br>Barrett Brown<br>512-560-2302<br>

</body>
</html>
</table></div>