Wednesday, November 01, 2017

I can’t recall a breach of credit card information where the victim was certified as being in compliance with PCI-DSS.
From the NYS Attorney General’s Office, yesterday:
Attorney General Eric T. Schneiderman today announced a $700,000 settlement with Hilton Domestic Operating Company, Inc., formerly known as Hilton Worldwide, Inc. (“Hilton”), after data security incidents exposed over 350,000 credit card numbers in two separate breaches in 2015. Attorney General Schneiderman’s investigation, conducted in collaboration with the Vermont Attorney General’s office, revealed that Hilton did not provide consumers with timely notice and did not maintain reasonable data security.
… On February 10, 2015, Hilton learned from a computer services provider that a system Hilton utilized in the United Kingdom was communicating with a suspicious computer outside Hilton’s computer network. A forensic investigation revealed credit-card targeting malware that potentially exposed cardholder data between November 18 and December 5, 2014.
On July 10, 2015, Hilton learned of a second breach through an intrusion detection system. A forensic investigation found further malware designed to steal credit card information. It found that payment card data was potentially exposed from April 21, 2015 through July 27, 2015, as well as evidence of 363,952 credit card numbers aggregated for removal by the attackers.




Keep up!
Facebook, Google and Twitter Executives Testified on Russian Disinformation
by Sabrina I. Pacifici on Oct 31, 2017
The Senate Committee on the Judiciary, Subcommittee on Crime and Terrorism hearing entitled: “Extremist Content and Russian Disinformation Online: Working with Tech to Find Solutions” October 31, 2017. This link includes video of the testimony as well as transcripts of prepared testimony by Facebook, Twitter, Google as well as two subject matter experts.
  • The Washington Post: “Tuesday’s hearing by a Senate judiciary subcommittee comes a day after the prepared testimonies of Facebook and Twitter revealed that the reach of the Russian-connected disinformation campaign on their platforms was much larger than initially reported. As many as 126 million Facebook users may have seen content produced and circulated by Russian operatives. Twitter said it had discovered that 2,752 accounts controlled by Russians, and more than 36,000 Russian bots tweeted 1.4 million times during the election. And Google disclosed for the first time that it had found 1,108 videos with 43 hours of content related to the Russian effort on YouTube. It also found $4,700 worth of Russian search and display ads…”
  • Google Blog Post – Security and disinformation in the U.S. 2016 election: “We have been conducting a thorough investigation related to the U.S. election across our products drawing on the work of our information security team, research into misinformation campaigns from our teams, and leads provided by other companies. Today, we are sharing results from that investigation. While we have found only limited activity on our services, we will continue to work to prevent all of it, because there is no amount of interference that is acceptable…”




Interesting. I wonder what other questions trigger monthly charges?
Amazon’s Alexa now knows your credit score
Consumers can now ask Amazon’s Alexa device for their credit score. But it will cost them $25 a month.
The company said it hopes the skill will especially appeal to millennials. To access a report through Alexa, the user must give their username and password by voice command, as well as a four-digit personal key, which only lasts five minutes. If a user starts a new session after five minutes, they will be prompted for the personal key again.
The cost of a device that supports Alexa ranges from $50 for the Amazon Echo to $150 for an Echo Plus. And enabling many features of the Experian service on Alexa comes with a monthly fee.
The Alexa/Experian service is only available once consumers sign up for CreditWorks, a subscription service for credit monitoring that Experian sells. It comes in a “standard” version that is free, and a “premium” version that costs a steep $24.99 a month, after an introductory month for $4.99.
Those who use the standard, free version can only use two features: Hearing a summary of their credit and debt, and credit alerts.




We love you and we hate you? We hate you but we want you?
Survey Says Tech is Embraced and Mistrusted at the Same Time
by Sabrina I. Pacifici on Oct 31, 2017
Axios: “More than 70% of Americans believe technology has had a positive or somewhat positive effect on society, according to an Axios/ SurveyMonkey poll, and most Americans are optimistic about the impact of technology on the future. But that doesn’t mean they trust tech companies — 78% thought it was a “bad thing” that tech companies are able to collect so much information about their users.”




A simple question?




Da computer biz.
Microsoft's Office 365 subscription push pays off; what it means for biz
The company now has about 120 million active monthly users, and those subscriptions appear to be generating more revenue for Microsoft than it used to get from one-time licenses. That could entice the company to push subscriptions even harder.
If just 10% of the Office audience now accounts for more than 50% of the revenue, it would seem that Microsoft has an opportunity to generate enormous amounts of revenue, assuming it eventually offers only subscriptions and can turn every user into a subscriber. Analysts believe the first is inevitable. The second? Not so much.




Could this replace PowerPoint?
Sutori Updates Allow for Additional Embedding
Sutori is a great tool that allows you to create multimedia timelines. The product was just updated to include some features that make it better than ever.
Users are now able to embed nearly anything into a Sutori including Flipgrids, Padlets, Quizlets, Thinglinks, Instagrams, Buncees, History Channel videos, Prezi, and Tweets, as well as Google Docs, Forms, Slides, Presentations, and Maps. More option will be added in the near future.
The other update is single sign-on for teachers and students using Microsoft Office 365.
Check out this video to learn more about Sutori.


No comments: