This is unlikely to deter future rioters but it does illustrate one aspect of social media. Would an image and GPS location be enough to convict?
https://www.wired.com/story/faces-of-the-riot-capitol-insurrection-facial-recognition/
This Site Published Every Face From Parler's Capitol Riot Videos
WHEN HACKERS EXPLOITED a bug in Parler to download all of the right-wing social media platform's contents last week, they were surprised to find that many of the pictures and videos contained geolocation metadata revealing exactly how many of the site's users had taken part in the invasion of the US Capitol building just days before. But the videos uploaded to Parler also contain an equally sensitive bounty of data sitting in plain sight: thousands of images of unmasked faces, many of whom participated in the Capitol riot. Now one website has done the work of cataloging and publishing every one of those faces in a single, easy-to-browse lineup.
Late last week, a website called Faces of the Riot appeared online, showing nothing but a vast grid of more than 6,000 images of faces, each one tagged only with a string of characters associated with the Parler video in which it appeared. The site's creator tells WIRED that he used simple open source machine learning and facial recognition software to detect, extract, and deduplicate every face from the 827 videos that were posted to Parler from inside and outside the Capitol building on January 6, the day when radicalized Trump supporters stormed the building in a riot that resulted in five people's deaths. The creator of Faces of the Riot says his goal is to allow anyone to easily sort through the faces pulled from those videos to identify someone they may know or recognize who took part in the mob, or even to reference the collected faces against FBI wanted posters and send a tip to law enforcement if they spot someone.
To answer some questions from my Security students. We do use their exam guide as a text…
CISSP certification guide: Requirements, training, and cost
… Because CISSP covers some management-related material, you may be wondering about the difference between it and Certified Information Security Manager (CISM), another popular infosec certification. In a nutshell, a CISSP certification demonstrates in-depth technical knowledge over a broad range of security domains, along with an understanding of managerial responsibilities. CISM, on the other hand, is more strongly oriented towards managers, with an emphasis on understanding infosec incentives from a business point of view.
… The CISSP All-in-One Exam Guide is widely beloved, [??? Bob] and has a companion set of practice exams.
(Related) As long as you are a shut-in with nothing to do…
Fortinet Extends Free NSE Security Training Courses to Close Industry’s Skills Gap
… In April 2020, Fortinet addressed the need to further build security expertise by making all its self-paced courses from the Network Security Expert (NSE) Training Institute available for free to all. The Fortinet NSE Training Institute programs provide IT professionals, students, veterans and more the opportunity to expand and learn new security skillsets, opening doors to the field of cybersecurity.
Since making more than 30 courses available for free to anyone worldwide, there have been more than 800,000 registration for the free training courses. Given the demand and interest in the company’s free training in 2020, Fortinet’s advanced self-paced courses will remain available free of charge beyond 2021 to continue developing the world’s cyber workforce of the future.
A scorecard.
https://blogs.dlapiper.com/privacymatters/dla-piper-gdpr-fines-and-data-breach-survey-january-2021/
DLA Piper GDPR fines and data breach survey: January 2021
… A theme of this year’s report, in common with our previous reports, is that there is significant variance in compliance and enforcement practice across the countries surveyed. The level of individual fines imposed, the aggregate values of fines per country and the number of personal data breaches notified per country all varied widely. As our weighted rankings of the number of personal data breaches notified per 100,000 capita demonstrate, there are notable cultural differences in the approach to breach notification with France and Italy, both with populations in excess of 60 million people, ranking well down the table.
There has also been year on year double digit growth in both the aggregate value of fines issued – for a wide range of alleged infringements of GDPR – and in the number of personal data breaches notified since 28 January 2020.
A total of EUR158.5m (USD193.4m / GBP142.7m) in fines were imposed in the period from 28 January 2020, a 39% increase on the previous 20 month period since the application date of GDPR on 25 May 2018. On average 331 personal data breach notifications were made per day since 28 January 2018 compared to 278 breach notifications per day for the previous year.
… The report is available to download here.
Let AI make some of those complex IT decisions… Beware of “the AI made me do it!”
https://devops.com/measuring-the-business-benefits-of-aiops/
Measuring the Business Benefits of AIOps
Staffing levels within IT operations (ITOps) departments are flat or declining, enterprise IT environments get more complex by the day and the transition to the cloud is accelerating. Meanwhile, the volume of data generated by monitoring and alerting systems is skyrocketing, and Ops teams are under pressure to respond to incidents more quickly.
Faced with these challenges, companies are increasingly turning to AIOps – the use of machine learning and artificial intelligence to analyze large volumes of IT operations data – to help automate and optimize IT operations. But before investing in a new technology, leaders want assurances that it will bring value to end users, customers and the business at large.
New ways to find anti-trust or new definitions of anti-trust?
Antitrust watchdogs around the world are going back to school to study blockchain and AI
… On Tuesday, the Department of Justice announced that it would be participating in a new initiative at Stanford University to onboard more advanced technological tools into its fight against monopolies.
The DoJ is merely the most vocal addition to Standord’s Computational Antitrust project. It joins the competition watchdogs of 46 other countries and the U.S.’s Federal Trade Commission.
The announcement is part of a broad surge in interest in cutting-edge tech and antitrust law, the culmination of a lot of motion at both academia and global regulators.
… The Computational Antitrust project was only publicized on Monday. It aims to bring “together academics from different backgrounds (law, computer science, economics…) with developers, policymakers, and regulators.” Alongside the program’s announcement, founding professor Thibault Schrepel published objectives for research that envisione:
“A world in which artificial intelligence ('AI') and blockchain combined with quantum computing will soon provide valuable support by enabling a better understanding of the world’s complexity, and eventually, capturing part of it.”
A good backgrounder for my students.
The Inside Story of How the Lowly PDF Played the Longest Game in Tech
… The Portable Document Format that essentially strives to replicate paper in digital form has been around since the early pre-Web 1990s. Thoroughly lacking in glamor or sizzle, the PDF has not only persisted for decades, but prevailed. Even stalwarts like Microsoft Word or PowerPoint get challenged by rival offerings from Google or Apple. But no PDF-killer has emerged. In fact, PDF inventor Adobe reports that in its 2020 fiscal year alone, about 303 billion PDFs were opened using its Document Cloud service — a 17% annual increase during a year in which the tech conversation was dominated by things like videoconferencing, autonomous vehicles, and facial recognition technology.
… Upon its 1993 release, the specs of the PDF format were made freely available. While Adobe’s specific version remained proprietary, others could tinker with it at will — “allowing it to become a de facto standard,” as a 2018 Vice overview of the format put it. Soon, the company dropped the fee for its reader software, focusing entirely on the creation product as a revenue stream — but gambling that the more people who could read the format, the more attractive it would be to the creator side.
No comments:
Post a Comment