Saturday, March 21, 2015

I'm not sure most organizations could meet this standard. Perhaps it is time for a shared security function – outsource your security into a “Group Buying Club?”
Paula Stannard reminds us:
As a result of recent breaches – including breaches of health information and information held by health insurers – a great deal of attention has recently been focused on state data breach notification requirements. Most States have general data breach notification requirements that apply to all data breaches, including those involving health information. A few States have specific data breach laws applicable to health information or to certain types of entities in the health care/health insurance industry. California is one of such States – and it has made several significant revisions to its statute, California Health and Safety Code § 1280.15, effective January 1, 2015 (A.B. 1755).
If you keep thinking that you have 60 days to notify under HIPAA and HITECH, think again if you do business in California, because you only have 15 days to notify the state and patients.
Read more on Alston & Bird’s Privacy & Data Security Blog.

(Related) How long would it take you to check a full year of logs (do you keep them that long?) for any possible victim of a breach? Is China everywhere or is the FBI finding there software everywhere?
Elizabeth Shim reports:
The FBI is probing into possible Chinese military involvement in a data breach of Register.com, a network that manages more than 1.4 million website addresses.
The Financial Times reported the cyber attack on the U.S. company included theft of employee passwords and unauthorized access to Register’s network during a yearlong breach that did not cause disruptions or theft of client data.
Read more on UPI.
[From the article:
However, a company spokesman said to The Financial Times the firm is building security protocols and tools to monitor and curb hacking threats. [Apparently they didn't have them before. Bob]
… In February The Washington Post reported the Chinese government was linked to a hack of health insurance company Anthem.
In that breach, a U.S. cyber security firm concluded the malware used was identical to the code used against a small U.S. defense contractor. The malware originated from China, according to the FBI.


“Well golly gee willikers, it's the government – what could be wrong with giving them anything they want?
Papers, Please! Writes:
The first “interim” release of documents responsive to our FOIA request for records of police and other government access to Amtrak reservation data show that Amtrak is not only giving police root access and a dedicated user interface to mine passenger data for general state and local law enforcement purposes, but also lying to passengers about this, misleading Amtrak’s own IT and planning staff about the legal basis for these actions, and violating Canadian if not necessarily US law.
Read more on Papers, Please!


Your camera as evidence? (Be sure to photograph a stack of bills with “Past Due” stamped on them.)
Mike Carter reports:
Federal prosecutors have taken the rare step of challenging the appointment of publicly funded lawyers to represent accused Russian hacker Roman Seleznev and have asked a judge to order Seleznev to reimburse the government for his defense.
[…]
As proof, the government provided the court with photographs of stacks of cash and luxury cars found on Seleznev’s phone and computer when he was arrested on July 5 while vacationing in the Maldives, a tiny chain of islands in the Indian Ocean.
Read more on The Seattle Times.
Well, sure, if he can afford a tropical vacation


“We can, therefore we must!” Software for parents who don't know how to parent?
GM Teen Driver Technology A Safe Bet To Limit, Monitor Young Drivers And Create Serious Teen Angst
… Teen Driver is meant to promote safe driving behavior for teens when they don’t have adult supervision in the car to make them “straighten up and fly right.”
A parent can enable Teen Driver in the MyLink Settings menu and create a PIN, which is then registered to the teen’s key fob. Once that step is taken, parents have full control over a number of in-vehicle features, performance capabilities, and even alert systems for their teen driver.
… One such “nanny” feature is the ability to mute the radio until front seat passengers have fastened their seat belts. Parents also have full control over the maximum volume of the radio, so don’t think that you’re gonna go cruising down the street, windows down, with death metal cranked all the way up.
And if you’re thinking about blasting down the highway at 100 mph in daddy’s new Malibu, guess again. Your old man can set a maximum driving speed anywhere the range of 40 to 75 mph lest you get any wild ideas. If a teen were to attempt to fly past those limits, alarm bells would start ringing in the vehicle’s cabin.
… Teen Driver will allow parents to keep track of the maximum speed driven, over-speed alerts, distance traveled (thinking about ditching school to make a quick road trip; guess again), and any instances where the antilock brakes or stability control had to kick in.


Every week, as welcome a sunshine.
Hack Education Weekly News
… Phil Hill offers a round-up of news and analysis about Rutgers University and ProctorTrack, “which costs students $32 in additional fees, accessing their personal webcams, automatically tracks face and knuckle video as well as watching browser activity.” He adds, Student privacy is a big issue, and students should have some input into the policies shaped by institutions.”
Via Go To Hellman: “16 of the top 20 Research Journals Let Ad Networks Spy on Their Readers.”
The University of Rochester is demanding that Yik Yak turn over “the names, email addresses and other information that would help the college identify UR students who might have posted racially offensive and threatening language.”
… Pacific Standard has several recent articles exploring adjunct labor on college campuses: “The Professor Charity Case” and “Survey: The State of Adjunct Professors.”


How strange. Perhaps education in immoral?
Internet Seen as Positive Influence on Education but Negative on Morality in Emerging and Developing Nations


Perfect timing. This is the last day of class (all papers are due) and we've been developing ways to do this all quarter.
How to Follow a #Hashtag Across Multiple Social Networks
A few weeks ago I wrote a post about using Tagboard to follow a hashtag across multiple social networks. As I wrote back then, the beauty of Tagboard is that I can follow a hashtag and see all of the Tweets, Instgram, Facebook, and Google+ posts about it in one place. This enables me to quickly catch up with what people are sharing about an event or saying in a chat like #edchat. In the video embedded below I provide an overview of how to use Tagboard.


For my Android toting students.
Productivity Problems? Check Out This Productivity Android App Guide
… Want more on productivity? Check out our whole Self Improvement section which will provide you with all kinds of tools and skills you can use to work smarter. While you’re at it, don’t forget the Android section that covers everything from the hottest devices to the newest apps!
Via TopApps


My students might find these useful too.
Two New Apps That Are Great for Recording Audio Interviews
This week I tested two new apps for recording audio interviews. Both of these apps can be used by students without creating any kind of new online accounts. Neither one is entirely perfect, but they're both quite good.
Opinion is a free iPad app for creating short audio recordings. To record simply open the app and tap the big red recording button at the top of the screen. When you're done talking, tap the recording button again to stop the recording. You can chop your recording into smaller pieces by tapping on your recording then tapping the scissors icon to cut your recording. Opinion recordings can be shared to a variety of places on the web including SoundCloud and Evernote. Opinion limits you to ten minutes of recording before you have to either upgrade or eliminate older recordings.
StoryCorps has a new app called StoryCorps.me that Larry Ferlazzo raved about earlier this week. The app is available for iPhone (it will also work on iPads, it's just a little grainy looking) and Android devices. StoryCorps.me will try to force you to create a StoryCorps account, but you can use it without creating an account. Creating an account will allow you to publish your recordings on the StoryCorps website.
StoryCorps.me is designed to help people conduct and record great interviews. The app includes a set of questions that you can use in your interview. The question sets are varied depending upon the relationship that you do or don't have with your interviewee. While recording your interview you can swipe through the questions to help you keep the interview on track. Completed recordings can saved on your device and or shared with the StoryCorps community.

No comments: