Feeds

What the Hell is… CueCat?

A New-Economy marketing gimmick gone horribly wrong ;-)

  • alert
  • submit to reddit

High performance access to file storage

It's the size of a computer mouse, shaped vaguely like a cat, and plugs into your PC. It reads bar codes on printed pages and even on products, and immediately directs your browser to selected Web sites for a sales pitch. Hobbyists have cracked the firmware, cracked the software, and someone has even cracked its creator's customer database. And now privacy freaks have risen to arms over its diabolical serial number.

More than a million have been given away, and at least nine million are soon to be en route to eager hobbyists scheming to turn it into an all-purpose, and free, bar-code scanner running on open-source software. A Web site has already been run up for developers, and an OSDN forum has been dominated by cracks and code and tricks related to it. It comes to you courtesy of Radio Shack, and Forbes and Wired magazines. In its cracked incarnations, has considerable potential for mischief.

What is it? It's CueCat, brainchild of New-Economy 'technology' outfit DigitalConvergence. At first thoughts, it would seem a clever gimmick - the digital alternative to those irritating product-info cards in the backs of magazines (to which the mag inevitably, and annoyingly, opens). Too clever by half, it turns out. The company immediately lost control of its new toy.

One OSDN forum visitor named OmniGeek explains it thus: "I have obtained two CueCat scanners... and have never opened or used the CD-ROMs, and hence don't fall under the silly shrink-wrap license 'opening this software constitutes...' Bring on the lawyers. No way can they tell me how I can or cannot use the hardware gadget..."

That's right, just toss out the pre-licensed software unopened, and run the thing off your own code. What's left is a piece of hardware that anyone is at liberty to tinker with. The company can't possibly make a legal argument equivalent to, 'it's illegal to over-clock your own CPU; it's illegal to modify a car engine for extra performance; it's illegal to plug decent speakers into your el-cheapo audio system....'

So how did DigitalConvergence shoot itself in the foot with such a dramatically large-bore weapon? A bit of history tells a tale of what can only be described as an idea-mill going live with a high-tech gimmick in the absence of anything resembling high-tech savvy.

Need proof? According to a company press release, DigitalConvergence last week "experienced a security breach that may have exposed certain members' names and email addresses. The company was alerted... by Peter Thomas at Securitywatch."

The breach, it turns out, compromised the privacy of about 140,000 customers. Not good... not at all good, for an "Internet technology company".

The company's management team "includes a roster of industry veterans from Time Warner, AT&T, GE, ING Barings and Disney," the press release chirps. This could account for a good deal of its apparent technical incompetence. They likely have too many 'concept guys' in control with too little practical, nuts-and-bolts foresight and imagination. To compete in this market, the Big Swinging Dicks need an ability to 'think outside the box', sure, but they especially need to think outside the box with the dollar signs.

Then there is the CueCat's serial number, which privacy alarmists see as a potential user-profiling weapon. The company lamely explains that it only meant to track which of the several outlets (Forbes, Radio Shack, etc.) a given CueCat had come from, not user behaviour. And that may well be true, but... a serial number? You'd think these guys never heard of Intel, and it's Mark-of-the-Beast CPU debacle and hastily-issued 'security patch'.

Then of course there is the growing open-source CueCat project with which we opened our tale of spectacular failure. Shades here of NetPliance and its $99 i-Opener, cheaply and easily cracked into fully-functioning PCs. NetPliance soon found that an absurd number of buyers were cancelling their Net access contracts, on which the company's profits depended, after snapping up four or five of the handy gizmos. NetPliance may be forgiven for pioneering the blunder, but DigitalConvergence's determination to imitate it is rather difficult to overlook.

In all, a disastrous start to a marketing concept clearly executed by greedy fools. Now for a quick fix in keeping with the company's rig-it-and-roll mentality: we look for 'CueCat2' to come stuffed with a tiny squib, detonated by opening the plastic housing. They can worry about children's prying fingers after the fact, as they have done with every other potential pitfall. ®

High performance access to file storage

More from The Register

next story
Audio fans, prepare yourself for the Second Coming ... of Blu-ray
High Fidelity Pure Audio – is this what your ears have been waiting for?
Dropbox defends fantastically badly timed Condoleezza Rice appointment
'Nothing is going to change with Dr. Rice's appointment,' file sharer promises
Did a date calculation bug just cost hard-up Co-op Bank £110m?
And just when Brit banking org needs £400m to stay afloat
MtGox chief Karpelès refuses to come to US for g-men's grilling
Bitcoin baron says he needs another lawyer for FinCEN chat
Zucker punched: Google gobbles Facebook-wooed Titan Aerospace
Up, up and away in my beautiful balloon flying broadband-bot
Apple DOMINATES the Valley, rakes in more profit than Google, HP, Intel, Cisco COMBINED
Cook & Co. also pay more taxes than those four worthies PLUS eBay and Oracle
It may be ILLEGAL to run Heartbleed health checks – IT lawyer
Do the right thing, earn up to 10 years in clink
France bans managers from contacting workers outside business hours
«Email? Mais non ... il est plus tard que six heures du soir!»
Adrian Mole author Sue Townsend dies at 68
RIP Blighty's best-selling author of the 1980s
prev story

Whitepapers

Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.