---------- Forwarded message ----------
From: John <bigleagues@gmail.com>
Date: Fri, Feb 11, 2011 at 4:29 AM
Subject: Re: Jussi - Does he work for Nokia? As a Chief of Security?
To: barriticus@gmail.com


Barrett,

This is getting juicy regarding jussi. I've been obsessed with this all night . . .

I came across this article: http://www.tietoyhteiskuntaohjelma.fi/parhaatkaytannot/tietoliikenne_ja_digitv/fi_FI/1146729681443/

At the top of the page is a familiar email: jussij@gmail.com and it appears the article was published in 2006.

At the bottom of the page is a PDF link. I have attached the PDF. At the bottom of the PDF document, are references to Jussi and his co-author and what they do at Nokia. What'ya know. Google Translate doesn't do well with Finnish to English, but there enough out there to make the case that jussij@gmail.com aka jussi.jaakonahonokia.com aka jussi@mataaratanga.com aka jussi.jaakonaho@sentor.se belong to the same guy.

Meaning the Chief Security Analyst (or Chief Advisor, Enterprise Risk & Security) at NOKIA (and the "Industry Keynote Speaker" at the 2009 Forrester's Security Forum in London) . . . wait for it . . .  got socially engineered by a 16-year-old-girl.

www.tietoyhteiskuntaohjelma.fi has an English version you can switch too, but then strangely no reference to our boy Jussi will come up in the site search.

Supporting Links
http://www.spoke.com/info/p30H9Zc/JussiJaakonaho (Nokia: Chief Security Analyst since 2006, Design Engineer 1999-2006)


http://www.forrester.com/Speaker_Bio/0,9010,2358,00.html?speakerID=1659&speakerType=Outside

And it gets funny (not really) when you realize that he is sitting on security advisory boards and speaking at conferences:

http://www.mail-archive.com/darklab@lists.darklab.org/msg00142.html

http://www.lesc.net/blog/intersecting-ideas-cross-disciplineshellipand-taking-boydrsquos-theories-beyond

http://zenpundit.com/?cat=340
This quote should be attributed to Jussi: companies wont die because of their false actions. they die because of the continuing of the same actions for too long (which once were right).


And Jussi offers a lot of expertise . . . including the discovery of a Windows DDoS vulnerability back in 2003:
http://www.windowsitpro.com/article/windows-2000/denial-of-service-in-microsoft-rpc-endpoint-mapper.aspx

http://www.securityfocus.com/archive/101/475022
"pentests can tell client only like "your security sucks or we are
unsure"

http://archives.neohapsis.com/archives/nfr-wizards/1999-q3/0638.html


- John




On Fri, Feb 11, 2011 at 12:37 AM, barri2009 <barriticus@gmail.com> wrote:
Hmm. I hadn't heard of this. Will look at link when I get home in a bit.

Sent via BlackBerry by AT&T

From: John <bigleagues@gmail.com>
Date: Fri, 11 Feb 2011 01:40:43 -0500
Subject: Jussi - Does he work for Nokia? As a Chief of Security?

Barrett,


Nothing you couldn't have found out already, but in reading up on everything I was curious who this Jussi dude is from rootkit.com - could this be the same jussi?:

http://www.forrester.com/Speaker_Bio/0,9010,2358,00.html?speakerID=1659&speakerType=Outside

I mean how many jussi jaakonaho's can there be?

- John




--
Regards,

Barrett Brown
512-560-2302