Monday, April 19, 2021

I think we really need to talk about this…

https://www.theregister.com/2021/04/19/ncsc_exchange_server_legal_powers_question/

Brit authorities could legally do an FBI and scrub malware from compromised boxen without your knowledge

UK authorities could lawfully copy the FBI and forcibly remove web shells from compromised Microsoft Exchange server deployments – but some members of the British infosec industry are remarkably quiet about whether this would be a good thing.

In the middle of last week the American authorities made waves after deleting web shells from Exchange Server deployments compromised in the Hafnium attacks. The agency had gone to the US federal courts for permission, which it received.

The entire infosec world had been bellowing at IT admins to update and mitigate the vulns, which were being exploited by skilled and malicious people who found the remote-code-execution bug. Nonetheless, some laggards still hadn't bothered – and with compromised boxen providing a useful base for criminals to launch further attacks from, evidently the FBI felt the wider risk was too great not to step in.





Worth a read… Also available as an audio file.

https://www.newyorker.com/magazine/2021/04/26/the-incredible-rise-of-north-koreas-hacking-army

The Incredible Rise of North Korea’s Hacking Army

The country’s cyber forces have raked in billions of dollars for the regime by pulling off schemes ranging from A.T.M. heists to cryptocurrency thefts. Can they be stopped?





I wondered if this would be the result. Predictive policing needs to be a bit more scientific. And schools a bit more thoughtful.

https://www.pogowasright.org/feds-investigating-pasco-schools-giving-student-data-to-sheriff/

Feds investigating Pasco schools giving student data to sheriff

Kathleen McGrory and Natalie Weber report:

The U.S. Department of Education has opened an investigation into whether the Pasco school district broke federal law by sharing private student information with the Pasco Sheriff’s Office.
The Tampa Bay Times reported in November that the school district shared information on student grades, discipline and attendance with the Sheriff’s Office, which used the data to compile a secret list of schoolchildren it believed could “fall into a life of crime.”

Read more on The Tampa Bay Times.





Covid and privacy? Will you need this card to fly? Cross state lines? Enter government buildings?

https://www.bespacific.com/all-about-your-coronavirus-vaccine-card-and-what-to-do-if-you-lose-it/

All about your coronavirus vaccine card (and what to do if you lose it)

Washington Post – “There are various ways to document that you received a coronavirus vaccine. Some people have snapped selfies proudly displaying the Band-Aid on their upper arm. Some vaccination sites are handing out stickers. But the official form of documentation is the small white vaccination record card issued by the Centers for Disease Control and Prevention, which you receive after your first shot. “You do want to make sure you keep it safe,” says Kelly Moore, deputy director of the Immunization Action Coalition. “You do want to make a copy of it and keep that on file, not because it’s the only record, but because it’s the one that you control.” Here’s what Moore and other experts say you need to know about the cards and what you should do after receiving one…”

See also PC World – How to protect your COVID vaccination card digitally: Dos and don’ts





Perspective.

https://www.reuters.com/business/finance/uk-launches-taskforce-potential-bank-england-digital-currency-sunak-2021-04-19/

'Britcoin' not bitcoin? UK considers new digital currency

British finance minister Rishi Sunak told the Bank of England on Monday to look at the case for a new "Britcoin", or central bank-backed digital currency, aimed at tackling some of the challenges posed by cryptocurrencies such as bitcoin.

A BoE-backed digital version of sterling would potentially allow businesses and consumers to hold accounts directly with the bank and to sidestep others when making payments, upending the lenders' role in the financial system.

Other central banks are also looking at whether to set up digital versions of their own currencies, essentially widening access to central bank funds which only commercial banks can use at present. This could speed up domestic and foreign payments and reduce financial stability risks.





I suspect this is true for more than retail…

https://instoremag.com/most-small-business-owners-are-missing-this-biggest-benefits-of-the-internet/

Most Small Business Owners Are Missing This Biggest Benefits of The Internet

The first opportunity is the most obvious: the use of data for analysis that can lead to better decision-making. You already have a wealth of data available to you through Google Analytics, Google Ads, Facebook Ads, your Shopify store, email marketing system, and social media channels. With a third-party app like Whatagraph (easy) or Morphio (intermediate), you can feed your data from all those channels into one system and produce automatic, easy-to-read reports on any schedule you like. When you see a data pattern or trend, that’s a clue to start asking questions, like why is this happening? Or, what can we do to increase a good trend or reverse a bad one?



Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)