One Misconfigured Laptop, One Wrecked Life: Michael Fiola Q&A

State of Massachusetts dropped charges against Michael Fiola, who was accused of downloading child pornography, due to a lack of evidence against him.

By
Thu, June 19, 2008

IDG News Service (San Francisco Bureau) — When the Commonwealth of Massachusetts issued Michael Fiola a Dell Latitude in November 2006, it set off a chain of events that would cost him his job, his friends and about a year of his life, as he fought criminal charges that he had downloaded child pornography onto the laptop. Last week, prosecutors dropped their year-old case after a state investigation of his computer determined there was insufficient evidence to prove he had downloaded the files.

Related Articles
How to Lock Up Laptop Security
Lax Laptop Security Can Be Dangerous...and Expensive
Eight Great Ways to Protect Your Laptop

An initial state investigation had come to the opposite conclusion, and authorities took a second look at Fiola's case only after he hired a forensic investigator to look at his laptop. What she found was scary, given the gravity of the charges against him: The Microsoft SMS (Systems Management Server) software used to keep his laptop up to date was not functional. Neither was its antivirus protection. And the laptop was crawling with malicious programs that were most likely responsible for the files on his PC.

Fiola had been an investigator with the state's Department of Industrial Accidents, examining businesses to see whether they had worker's compensation plans. Over the past two days, however, he's become a spokesman for people who have had their lives ruined by malicious software. He now works as an insurance salesman in North Scituate, Rhode Island

Following is an edited transcript of a telephone interview he gave to the IDG News Service.

IDGNS: Why did you need a laptop at the Department of Industrial Accidents?

Michael Fiola: We had a laptop basically to do our reports instantaneously. If I went to a business and found that they were out of compliance, I would log on and type in a report so it could get back to the home office in Boston immediately. We also used it to research businesses.

IDGNS: Had you used a work laptop before?

Fiola: Yes, this was a second-generation laptop. My [first] computer was stolen out of my vehicle outside of work in Boston in November 2006.

IDGNS: How long had you been using a laptop before this one was stolen in November?

Fiola: About a year and a half.

IDGNS: Did you notice anything strange about this new laptop when you started using it?

Fiola: Not at all. I'm not that computer-savvy of a person. I'm more of a hunt-and-peck type of guy. I can get in, I can do my e-mail. You tell me to do this form, I can do this form, and that's about it. I typically don't search the Internet, I typically don't go out and browse. I don't play any games. I don't go to chat rooms; never have, never will. I was basically using it for my job.

Continue Reading

White Papers »
Identity Governance: The Business Imperatives
This white paper describes the business challenges and opportunities that are driving interest in Identity Governance while discussing considerations your organization should make to help achieve project success.
CA Technology Brief: CA Point of View: Content Aware Identity & Access Management
This paper explores the concept of content-aware IAM, describes the integrated architecture for this new approach, and highlights the benefits that this approach provides.
Aberdeen Analyst Insight: Does Your Enterprise Have a Dropbox Problem?
Without policies, awareness and supported alternatives for sharing files securely, end-users will often overlook security and compliance in favor of getting the job done. Read this whitepaper to determine if your enterprise has a "Dropbox Problem" and ways successful organizations address this problem.
Google: Security for Google Apps Messaging & Collaboration
Content provided by Google

Find out about how Google creates a security-based platform for Google Apps, covering topics like information security, physical security, and operational security.
Architecting the Security of the Next-Generation Data Center
This document is aimed at those looking at data center builds, upgrades, or consolidation. It provides an introduction to some of the new security challenges of such environments and provides recommendations for implementing security in next-generation data centers.
Who Owns Security in the Data Center?
This editorial brief addresses the disconnect between security and operations teams and the need for IT operations teams to address security and risk management.
Webcasts »
Gartner Next Generation Network IPS Webcast
Learn how Gartner's criteria for next generation IPS helps organizations achieve effective threat prevention despite changes in network communications, new applications, and changes in the threat landscape.
McAfee Continuous Compliance
3 minute Flash video - overview of the need for and value of Configuration Control.
Taming the Wild West: How to build a strong cloud security strategy
Cloud deployments are playing a critical role in propelling innovation for many companies. At the same time security has become the #1 one of the top concerns for IT and business leaders as they migrate into the cloud. In this webinar, learn from Accenture discusses how to recast the cloud as a "fresh chance to rethink your approach to security."
Customer Spotlight: How IPC The Hospitalist Company Implemented Oracle on VMware
Have you been looking to hear about customer's experiences with the new VMware vCenter Site Recovery Manager product? View this webcast to learn about VMware customer, Navicure, and their experiences testing and evaluating the recovery manager, their progress in implementing it in their environment and their advice other customers considering using vCenter.
Quantifying the Business Value of VMware View - Webcast
Many enterprises have discovered that the use of virtualization to support desktop workloads creates a range of significant benefits. These benefits include price efficiencies, improved IT management and greater agility and choice for end users.

This VMware sponsored webcast with IDC will provide both quantitative measurement of the business value -- defined as the expected ROI -- and qualitative analysis associated with the use of VMware View™. IDC will also provide an analysis of the View Composer and ThinApp™ features of VMware View, including the business value of these solutions and an overview of how they work.

Attend this webcast to learn about:
- Challenges and barriers that might impede the adoption of desktop virtualization
- Navigating roadblocks to facilitate a strategic implementation
- Optimizing qualitative and quantitative benefits to IT and your business
Deliver Private Cloud Database as a Service with VMware vFabric Data Director
VMware recently announced VMware vFabric™ Data Director, a new database deployment and operations platform that enables enterprise IT organizations to offer database as a private cloud service. Built on top of VMware vSphere 5, vFabric Data Director enables IT organizations to ontrol database sprawl through automation and consistent policy enforcement and accelerate application development cycles with self-service database management. Attend this webcast to learn how vFabric Data Director can help you build database-as-a-service in your datacenter.
Newsletter Sign-Up »

Receive the latest news test, reviews and trends on your favorite technology topics

Choose a newsletter
  11. View all Newsletters | Privacy Policy
White Papers » All White Papers

Identity Governance: The Business Imperatives

CA Technology Brief: CA Point of View: Content Aware Identity & Access Management

Aberdeen Analyst Insight: Does Your Enterprise Have a Dropbox Problem?

Google: Security for Google Apps Messaging & Collaboration

Architecting the Security of the Next-Generation Data Center

Who Owns Security in the Data Center?

Virtual Patching with Network Security

Gartner Next Generation Network IPS Research Note

Top Ten Security Topics

The New Reality of Stealth Crimeware (McAfee Labs)

2012 Threat Predictions Report (McAfee Labs)

McAfee Security Connected - Mitigates Risk, Maximizes Business Efficiency

Think Your AntiVirus Software is Working? Think Again

Reducing Local Admin Exposure Through Application Whitelisting

Unruly USB Devices Expose Networks to Malware

The CISOs Guide to Measuring IT Security

Why Free Patch Management Tools Could Cost You More

From the Frontline - Preventing APT

Protecting Point of Sale Systems from Targeted Attack

Stop Hackers Before They Attack
Resource Center
buy a link »
Ads by TechWords