Skip to main content

The hidden dangers of documents

Dot.life - how technology changes us
By Mark Ward
BBC News Online technology correspondent

Your Microsoft Word document can give readers more information about you than you might think. Even Alastair Campbell has fallen foul of the snippets of invisible data few of us realise our documents contain.

Drop of water, Photodisk/Eyewire
You could be leaking sensitive information
Usually with Microsoft Word, what you see is what you get.

If you make a change to a document, then that is what you see when it gets printed out.

But in fact, in many cases it is what you cannot see at first glance that proves more interesting.

Hidden and dangerous

Analysis of hidden information in the so-called Iraq "dodgy dossier" showed, among other things, the names of the four civil servants who worked on it.

Downing Street press office head Alastair Campbell had to explain who these people were to the House of Commons Foreign Affairs Select Committee investigating the genesis of the plagiarised document.

Alastair Campbell, PA
Alastair Campbell had to explain hidden names
"The time when most information tends to leak is when you are using a document that has a number of revisions or a number of people working on it," says Nick Spenceley, founder director of computer forensics firm Inforenz.

The UK government has now largely abandoned Microsoft Word for documents that become public and has turned to documents created using Adobe Acrobat which uses the Portable Data Format (PDF).

"I'm not sure many people check Word documents before they go out or are published," says Mr Spenceley.

He says he knows of a case in which someone found previous versions of an employment contract buried in the Word copy he was sent. Reading the hidden extras gave the person applying for the job a big advantage during negotiations.

Sometimes the mistakes are even more public.

During the hunt for the Washington sniper the police allowed the Washington Post to publish a letter sent to the police that included names and telephone numbers.

HIDDEN TEXT
Text from other documents open at the same time
Previously deleted text
E-mail headers and server information
Printer names
Data about the machine where the document was written
Where the document was saved
Word version number and document format
Names and usernames of document authors
The newspaper tried to hide these details using black boxes which were easily removed and the sensitive details exposed for all to see.

But it is not just governments, businesses and newspapers that can be embarrassed in this way.

You could be too.

There is a function in many versions of Microsoft Office programs, which includes Word, Excel and PowerPoint, that means that fragments of data (which Microsoft refers to as metadata) from other files you deleted or were working on at the same time could be hidden in any document you save.

This could be embarrassing for any home workers whose colleagues find out that they have been applying for jobs while working at home or being less than complimentary about their co-workers.

Look and learn

With the right tools this hidden data can easily be extracted.

Unix and Linux users can turn to tools such as Antiword and Catdoc to turn the document, including its formatting information, into a simple text file.

Computer researcher Simon Byers has conducted a survey of Word documents available on the net and found that many of them contain sensitive information.

Montgomery County police chief Charles Moose, AP
Sensitive data was exposed during the hunt for the Washington sniper
He gathered about 100,000 Word documents from sites on the web and every single one of them had hidden information.

In a research paper about the work Mr Byers wrote that about half the documents gathered had up to 50 hidden words, a third up to 500 words hidden and 10% had more than 500 words concealed within them.

The hidden text revealed the names of document authors, their relationship to each other and earlier versions of documents.

Occasionally it revealed very personal information such as social security numbers that are beloved of criminals who specialise in identity theft.

Also available was useful information about the internal network the document travelled through, which could be useful to anyone looking for a route into a network.

Mr Byers wrote that the problem of leaky Word documents is pervasive and wrote that anyone worried about losing personal information might want to consider using a different word processing program.

Alternatively he recommends using utility programs that scrub information from Word documents or following Microsoft's advice about how to make documents safer.

"Microsoft is aware of the functionality of metadata being stored within Word 97 documents and would advise users to follow the instructions laid out in [the Microsoft Knowledge Base - see Related Internet Links]," says a spokesperson. "However, Microsoft do not wish to comment on how customers use the functionality within our software."

Source: BBC News

Comments

Popular posts from this blog

More on Msafara

Hi, I got this from the Msafara Blog . Thought it would be good to share it here. Getting ready from Msafara - Wheels of Hope by msafara We are just getting ready to begin the Msafara this Friday. We have done all that we can . . . and the time has come. To prepare for the Spiritual warfare, we have engaged a strategy of 4 levels of prayer: A team of 5 National Intercessors who will go ahead of us and pray over our ministry, the places we shall be in, and the strongholds in each of these towns (Mombasa is notorious for witchcraft and demonization. Eldoret houses the First Masonic Temple ever built in Kenya/E. Africa). This team intercedes on behalf of this nation full-time. They will spend several days of prayer in each place. A larger team of 100 Church intercessors - mainly lay people trained in the ministry of intercession. They will be involved I city prayer walks, going to specific points of the city blood was shed. Going totemples or witchcraft centers, etc. They will spend on...

Study Shows Drinking Tea is Actually Healthier than Drinking Water

Study Shows Drinking Tea is Actually Healthier than Drinking Water Teresa Neumann (September 18, 2008) Provides antioxidants, replaces fluids, strengthens bones and protects against dental plaque. An ounce of prevention is worth a pound of cure as they say. (United Kingdom)—The European Journal of Clinical Nutrition has reported that tea not only rehydrates as well as water does, but it can also protect against heart disease and some cancers. Other health benefits, according to a BBC report, included protection against tooth plaque and potentially tooth decay, plus bone strengthening. Public health nutritionist Dr. Carrie Ruxton said, "Drinking tea is actually better for you than drinking water. Water is essentially replacing fluid. "Tea replaces fluids and contains antioxidants so it's got two things going for it. Studies on caffeine have found very high doses dehydrate and everyone assumes that caffeine-containing beverages dehydrate. But even if you had a really, reall...

The Secret vs The Bible

Or should I put the, The Bible versus The Secret. Of late a couple of my friends have asked me a lot about 'The Secret' which is supposed to be revolutionizing people's lives. I got a chance to watch the DVD on TS but somehow I was not convinced. Don't get me wrong, a lot of what they teach is great and people should be applying it. But I do have a couple of issues with it. One thing that really bothered me is the way they sort of overlooked God or glossed over him. They even do quote scripture and all but still, it wasn't convincing. They have Biblical principals and even teach that many preachers e.g Kenneth Copeland, Creflo Dollar, Joel Osteen and so on teach principles based on the secret. Well, I think they are just trying to justify their teaching. I for one listen to all these preachers regularly. I am subscribed to their podcasts, buy their books and CDs and DVDs. Never once did I hear them use the secret as their reference material. They use the Bible - God...