HP's boardroom witch hunt causes two directors to leave

Pretexting now part of the HP Way

Secure remote control for conventional and virtual desktops

Put the cheery comeback stories on hold. HP has a boardroom scandal that deserves some attention.

Sweat started trickling down the foreheads of workers in HP's PR department late Tuesday as word broke of a boardroom spy debacle. According to various reports, two of HP's directors have severed ties with the company as a result of Chairman Patricia Dunn's decision to investigate board members. Dunn hoped to discover which board member leaked information about an HP planning session to the press and okayed the use of controversial surveillance techniques to track down the leaker.

Tom Perkins, HP veteran and founder of venture capital firm Kleiner, Perkins Caufield and Byers, resigned from HP's board in May after he learned of Dunn's surveillance operation. And today the Wall Street Journal reports that fellow board member George Keyworth will not be invited back to serve as a director after HP fingered him as the mole.

Dunn permitted a team of so-called security experts to dive into records of the directors' personal telephone calls made both at their homes and on their cell phones, according to the reports. The investigators then processed the data and figured out which director had been communicating with reporters. Dunn did not inform the directors of the investigation until is was completed.

The Chairman was said to be upset about a series of leaks that occurred before and after HP fired CEO Carly Fiorina. A CNET story by Dawn Kawamoto that outlined HP's long-term strategy pushed Dunn over the edge.

"On May 18, at HP headquarters in Palo Alto, Calif., Dunn sprung her bombshell on the board: she had found the leaker," Newsweek reports. "According to Tom Perkins, an HP director who was present, Dunn laid out the surveillance scheme and pointed out the offending director, who acknowledged being the CNET leaker.

"Close to 90 minutes of heated debate followed, but Perkins, the Silicon Valley venture capitalist, says he was the only director who rose to take Dunn on directly. Perkins says he was enraged at the surveillance, which he called illegal, unethical and a misplaced corporate priority on Dunn’s part. In an interview with NEWSWEEK, Perkins says he was particularly annoyed since he chaired the HP board’s Nominating and Governance Committee and had not been informed by Dunn of the surveillance, even though, he says, she had told him for months that she was attempting to discover the source of the leak."

On May 19, HP then announced Perkins' resignation in a brief statement. It provided no reason for his departure in the statement and seemed to portray Perkins as leaving on good terms.

"On behalf of HP, I wish to thank Tom for his service and dedication to our company," CEO Mark Hurd said in the statement. "I am particularly grateful for the support he has provided to me over the past year."

Perkins has expressed outrage that HP did not disclose his reasons for resigning. The company is now expected to release an SEC filing tomorrow that discloses the investigation and outs Keyworth as the leaker.

"The situation is regrettable," Ms. Dunn said in a statement provided to the Wall Street Journal. "But the bottom line is that the board has asserted its commitment to upholding the standards of confidentiality that are critical to its functioning. A board can't serve effectively if there isn't complete trust that what gets discussed stays in the room."

This corporate scandal comes at a time when HP has received mounds of favorable press for its recent financial performance. The company has managed to turn in a couple quarters of consistent results - quite the change from the yo-yo days of Fiorina. Hurd, who pitches himself as a no-nonsense pragmatist, cannot be happy about the exposure of the boardroom shenanigans at this time.

Fiorina, however, must be somewhat pleased. The well-groomed executive is about to ship her tell-all book and can use the extra press to boost sales.

Newsweek seems to have dug up the most gossip about the boardroom episode, although it has relied heavily on Perkin's account of the situation. The magazine stressed that HP's investigation did not rely on tapping phone lines or reading e-mails. Rather investigators grabbed phone records via a technique known as "pretexting" where a person misrepresents who they are to obtain the details of another individual from a phone company. It's basically a form of social engineering.

"Perkins himself was pretexted as part of Dunn’s leaker probe," the magazine reports. "In the materials he sent to the SEC, Perkins includes an August 11 letter from an attorney at AT&T spelling out to Perkins that he was a victim of pretexting in January 2006; Perkins had requested that AT&T examine whether he had been pretexted.

"The AT&T letter explains that the third-party pretexter who got details about Perkins’s local home-telephone usage was able to provide the last four digits of Perkins’s Social Security number and that was sufficient identification for AT&T. The impersonator then convinced an AT&T customer-service representative to send the details electronically to an e-mail account at yahoo.com that on its face had nothing to do with Perkins."

Pretexting is illegal according to the US Federal Trade Commission.

HP's move not to disclose Perkins' reason for resigning is also of note. Companies are required issue a filing with the SEC that outlines why a director resigned when there's a disagreement between the director and the company over "operations, policies and practices."

You can expect more on this story to unfold in the coming days, particularly when HP's SEC filing goes out tomorrow.

We've been digging through Dave Packard's The HP Way to find the chapter on pretexting but seem to have missed it. Any help is much appreciated.®

Secure remote control for conventional and virtual desktops

More from The Register

next story
6 Obvious Reasons Why Facebook Will Ban This Article (Thank God)
Clampdown on clickbait ... and El Reg is OK with this
Kaspersky backpedals on 'done nothing wrong, nothing to fear' blather
Founder (and internet passport fan) now says privacy is precious
TROLL SLAYER Google grabs $1.3 MEEELLION in patent counter-suit
Chocolate Factory hits back at firm for suing customers
Facebook, Google and Instagram 'worse than drugs' says Miley Cyrus
Italian boffins agree with popette's theory that haters are the real wrecking balls
Mozilla's 'Tiles' ads debut in new Firefox nightlies
You can try turning them off and on again
Sit tight, fanbois. Apple's '$400' wearable release slips into early 2015
Sources: time to put in plenty of clock-watching for' iWatch
Facebook to let stalkers unearth buried posts with mobe search
Prepare to HAUNT your pal's back catalogue
Ex-IBM CEO John Akers dies at 79
An era disrupted by the advent of the PC
prev story


Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Advanced data protection for your virtualized environments
Find a natural fit for optimizing protection for the often resource-constrained data protection process found in virtual environments.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.