Tuesday, May 03, 2016
Now a database of people who were breached has been breached.
Brian Krebs reports:
Last week, I learned about a vulnerability that exposed all 866 million account credentials harvested by pwnedlist.com, a service designed to help companies track public password breaches that may create security problems for their users. The vulnerability has since been fixed, but this simple security flaw may have inadvertently exacerbated countless breaches by preserving the data lost in them and then providing free access to one of the Internet’s largest collections of compromised credentials.
Read more on KrebsOnSecurity.
Is this just one judge who doesn’t get it, or are they really going crazy in Brazil?
WhatsApp Blocked in Brazil as Judge Seeks Data
Judge Marcel Maia Montalvão ordered telecom companies operating in Brazil to suspend WhatsApp nationwide for 72 hours. As of just after midday Monday, Brazilians said they could not use the popular messaging service.
The shutdown is the latest twist in a case that has embroiled WhatsApp in legal trouble. The case, which is under seal, involves an organized crime and drug trafficking investigation in the court in Lagarto, in the northeastern state of Sergipe. The court has been seeking data from WhatsApp to aid in the investigation. Diego Dzodan, a Facebook executive, was briefly taken into custody in March for refusing to comply with orders to turn over WhatsApp information in the case.
The judge who ordered WhatsApp’s shutdown on Monday is the same one who ordered Mr. Dzodan’s arrest. Mr. Dzodan was released after one night when a higher court judge said the arrest was “an extreme measure.”
An interesting approach. Will the victim be able to identify the culprit? At least, he may be able to correct some of the damage caused.
Glyn Moody reports:
The Italian data protection authority has ordered Facebook to provide an Italian user with all of their data, including the personal information, photos, and posts of a separate fake account set up in that person’s name by somebody else.
In addition, the US social network must provide details of how the personal data was used, including whom it was sent to or who might have obtained knowledge about it.
Read more on Ars Technica.
I suspect that no one in Congress needs to go through security at airports.
EPIC has filed a lawsuit challenging the Transportation Security Administration’s regulation for airport body scanners. The TSA announcement came nearly five years after a federal appeals court ordered the agency to “promptly” solicit public comments on the controversial screening procedure. Public comments overwhelmingly favored less invasive security screenings. But the TSA decided it may now mandate body scanners at US airports. In 2011, EPIC challenged the intrusive and ineffective TSA screening procedure. EPIC’s new lawsuit challenges the regulation because it “denies passengers the right to opt out” of body scanner screening. EPIC also challenged the effectiveness of airport body scanners and the TSA’s failure to recommend less invasive security screening.
Unless logic has changed in the decades since I worked in the Intelligence field, I can see no reason why “2,647” give away significantly (or even trivially) more information than “somewhere between 1 and 5,000.”
Judge dismisses Twitter’s lawsuit against government
A federal judge dismissed Twitter’s attempt to publish the exact number of secret orders it receives from the government to turn over its customers' information.
Judge Yvonne Gonzalez Rogers in California ruled that the information Twitter wants to publish is classified. Because of that, the judge dismissed Twitter’s claim that the gag order violates the social media company’s First Amendment right, which does not apply to classified information.
“Again, Twitter has conceded that the aggregate data is classified,” the judge wrote. “In the absence of a challenge to the decisions classifying that information, Twitter’s Constitutional challenges simply do not allege viable claims.”
The judge did give Twitter the option to amendment its lawsuit. If the company wants to, it can challenge the classification of the information it wants to make public.
For my Data Analytics and Enterprise Architecture classes.
Your Next Big Data Project? Operational Analytics
If Big Data has a killer application, it is operational analytics.
Companies using Big Data initially focused on the customer experience, with Capgemini/Sloan Management Review research finding that 40 percent of analytics initiatives in 2013 were aimed at the customer while 26 percent focused on operational improvements. A lot has changed in three years, however. In 2016, Capgemini surveyed 600 global executives and found 70 percent now emphasize operations rather than customer experience with their analytics projects.
That's because companies get the most bang for the buck with operational analytics, said Steve Jones, Global VP of Big Data for Capgemini.
… The benefits of operational analytics are far easier to illustrate than those of customer analytics, Jones said. A Capgemini report titled Going Big: Why Companies Need to Focus on Operational Analytics offers the example of an Asian steel manufacturer that used operational analytics to uncover root causes of quality issues and then attained a 50 percent reduction in lead time for production of some of its products and a 60 percent reduction in inventory. In another example, the UK's Network Rail used operational analytics to make better decisions on preventive maintenance for its rail system infrastructure, realizing cost savings of 125 million euros (U.S. $141 million) over a five-year period.
Inspirational Quotes From 100 Famous Business Leaders (Infographic)
Perspective. Now American Express (and Visa and Master Card) have competition everywhere.
Alipay Users Can Now Use it to Hail Uber Cars World-Wide
Users of China’s most popular digital-payment service, Alipay, can now use the mobile app to hail a car anywhere in the world where Uber is available.
On Tuesday, Uber Technologies Inc. extended its partnership with Alibaba Group Holding Ltd.’s online-payment affiliate to let the 450 million customers of Alipay use the digital-payments app to request and pay for a ride in all 69 countries in which Uber operates.
For our programming students?
This App Teaches You Coding Basics in Minutes per Day
… Every lesson gives you some information then asks you a question about it (usually multiple choice or typing your own code to complete a block) to be sure you understand it.
Any snippet of code you see in the apps can be run so you see its real output, and the apps also include a code playground where you can mess around and apply what you’ve learned to some real code.
‘cause Checkers is boring? (I am so out of touch…)
6 Coolest Games You Can 3D Print at Home