Thursday, February 15, 2018

I think training is the right choice.
Security Awareness Training Top Priority for CISOs: Report
Thirty-five percent of CISOs in the financial sector consider staff training to be the top priority for cyber defense. Twenty-five percent prioritize infrastructure upgrades and network defense.
.. The FS-ISAC's 2018 Cybersecurity Trends Report (PDF) notes a distinction in priorities based on the individual organization's reporting structure. Where CISOs report into a technical structure, such as the CIO, the priority is for infrastructure upgrades, network defense and breach prevention. Where they report into a non-technical function, such as the COO or Legal, the priority is for staff training.

Not sure what this buys the UK. Perhaps some diplomatic leverage?
U.K. Officially Blames Russia for NotPetya Attack
British Foreign Office Minister for Cyber Security Lord Tariq Ahmad said the June 2017 NotPetya attack was launched by the Russian military and it “showed a continued disregard for Ukrainian sovereignty.”
The Kremlin has positioned Russia in direct opposition to the West yet it doesn’t have to be that way. We call upon Russia to be the responsible member of the international community it claims to be rather then secretly trying to undermine it,” the official stated.
The U.K. was also the first to officially accuse North Korea of launching the WannaCry attack. The United States, Canada, Japan, Australia and New Zealand followed suit several weeks later.

Gosh Harvard, we’ve been saying that for years!
… we found that a good corporate privacy policy can shield firms from the financial harm posed by a data breach — by offering customers transparency and control over their personal information — while a flawed policy can exacerbate the problems caused by a breach. Together, this evidence is the first to show that a firm’s close rivals are directly, financially affected by its data breach and also to offer actionable solutions that could save some companies hundreds of millions of dollars.

Interesting article.
The Age of Unregulated Social Media Is Over
… Last week, U.K. Members of Parliament traveled to the United States to meet with experts on questions at the intersection of technology, media and democracy ahead of a day receiving testimony from technology executives in Washington DC. Dubbed the “Inquiry on Fake News,” the panel produced seven hours of pointed — sometimes heated — discussion on issues ranging from the role of companies like Facebook and Twitter in enabling propagandists, to questions about how recommendations systems can be gamed by bad actors, to the problems of algorithmic bias.
Despite little clarity from either the politicians or the executives on the specifics of what should be done, one thing was abundantly clear: as far as the House of Commons members are concerned, the age of unregulated social media is over.

Good idea or bad?
Twitter's Marjory Stoneman Douglas High School Live Stream Was Part Of A New Initiative
Twitter is starting to show live, local news broadcasts in a live streaming window next to its timeline during major breaking news events.
Twitter's initiative to air these videos is currently rolled out across the platform, a company spokesperson confirmed to BuzzFeed News. The company will rely on a set of partnerships with local news stations to select the footage.
On Wednesday, Twitter put the initiative into action in a big way, streaming hours of footage from Miami's WSVN 7 next to the timelines of US users as the news station covered the shooting at Broward County's Marjory Stoneman Douglas High School in Florida.

Fits with my Computer Security class discussion of eDiscovery. Was this data stored in the US?
Rafia Shaikh reports:
Following Bill Gates comments yesterday that encouraged tech companies to share consumer data when the government comes calling to avoid future regulation, it appears at least the company’s rival is doing exactly the same. In potentially one of the first such incidents, Sony has coughed up PS4 data to the Federal Bureau of Investigation (FBI) on a user who was suspected of planning to fly from Kansas to the Middle East to join a terrorist organization.
The FBI warrant (link) mentions nine related search warrants (from Facebook, Microsoft, Yahoo, and others) that will help the agency get information from the suspect’s social media accounts and electronic devices, including his PlayStation 4.
Read more on WCCFTech.

Might be interesting if you are planning your argument... What are the hot buttons and how to push them?
U of M crowdsourcing project transcribes Supreme Court justices’ handwritten notes
University of Minnesota News: “…If you have ever wanted to be a fly on the wall during deliberations by U.S. Supreme Court justices or travel back in time to witness Supreme Court decisions, a new crowdsourcing project led by researchers at the University of Minnesota and Michigan State University allows you to do just that. The project, named SCOTUS Notes, is the newest citizen science project under the Zooniverse platform originated at the University of Minnesota. Zooniverse, the world’s largest and most popular people-powered online research platform, runs on support from volunteers that now number more than 1.5 million. These volunteers act as armchair scientists and archivists helping academic research teams with their projects from the comfort of their own homes. In this project, members of the public transcribe handwritten notes from U.S. Supreme Court justices. Unlike members of Congress, justices cast their votes in complete privacy during weekly conference meetings. Only justices are allowed in the Chief Justice’s conference room when they discuss, deliberate, and make initial decisions on cases that focus on some of the nation’s most pressing legal issues. The only record of what has been said, and by whom, is provided by the handwritten personal notes the justices themselves take during conference. These crucial documents detail the discussions and debates that took place in thousands of cases spanning multiple decades…”

Perspective. A look at that cloud thing we’re all moving to.
Top cloud providers 2018: How AWS, Microsoft, Google Cloud Platform, IBM Cloud, Oracle, Alibaba stack up
… a few things to note: This list of public cloud providers revolves around the service providers that offer software-, platform- and infrastructure-as-a-service offerings. There are many more cloud providers that specialize in some part of the enterprise software stack.
Increasingly, companies will combine the large public cloud providers along with a specialist.

Perspective. (And for those of us keeping score.)
Amazon dethrones Microsoft to become the world’s third most valuable company
Amazon stock climbed 2.6 percent Wednesday, giving the company a market value of $702.5 billion and topping Microsoft’s market cap for the first time. The online retailer now trails only Apple and Google’s parent, Alphabet, as the most valuable companies in the world.

No comments: