Tuesday, February 11, 2020

China wants to know as much about US (and Canadian) citizens as it does about its own.
Equifax: US charges four Chinese military officers over huge hack
More than 147 million Americans were affected in 2017 when hackers stole sensitive personal data including names and addresses.
Some UK and Canadian customers were also affected.
China has denied the allegations and insisted it does not engage in cyber-theft.
Announcing the indictments on Monday, Attorney General William Barr called the hack "one of the largest data breaches in history".
According to court documents, the four - Wu Zhiyong, Wang Qian, Xu Ke and Liu Lei - are allegedly members of the People's Liberation Army's 54th Research Institute, a component of the Chinese military.
They spent weeks in the company's system, breaking into security networks and stealing personal data, the documents said.

(Related) I really don’t agree with all of this.
Opinion | Chinese Hacking Is Alarming. So Are Data Brokers.
Companies like Equifax threaten our personal privacy and our national security.


Would your organization handle a notice as well? Who should receive the notice?
Estee Lauder Exposed 440 Million Records Online – Researchers
Jeremiah Fowler reports (typos are in the original):
On January 30th I discovered a non-password protected database that contained a massive amount of records totaling 440,336,852. Upon further review I was able to see connections to New York based cosmetic company Estée Lauder. I could see audit logs that contained a large number of email addresses in each doccument. I immediately sent a responsible disclosure notice Estée Lauder alerting them to the exposure.
As in most large companies when reporting a data exposure it is usually extremely difficult to get through the firewall of gate-keepes, but several hours later and multiple emails the data was still exposed. After calling every phone number I could find I was able to reach someone by phone who then promised to pass on the information. The company acted fast and professionally and restricted public access to the database on the same day as my notification.
Read more on Security Discovery.


I doubt the FBI ever considered something like this.(Don’t argue with Apple, BE Apple.)
The intelligence coup of the century’
For decades, the CIA read the encrypted communications of allies and adversaries.
For more than half a century, governments all over the world trusted a single company to keep the communications of their spies, soldiers and diplomats secret.
The company, Crypto AG, got its first break with a contract to build code-making machines for U.S. troops during World War II. Flush with cash, it became a dominant maker of encryption devices for decades, navigating waves of technology from mechanical gears to electronic circuits and, finally, silicon chips and software.
The Swiss firm made millions of dollars selling equipment to more than 120 countries well into the 21st century. Its clients included Iran, military juntas in Latin America, nuclear rivals India and Pakistan, and even the Vatican.
But what none of its customers ever knew was that Crypto AG was secretly owned by the CIA in a highly classified partnership with West German intelligence. These spy agencies rigged the company’s devices so they could easily break the codes that countries used to send encrypted messages.


For my Architecture students.
The Future of Platforms
Platforms power the world’s most valuable companies, but it will get harder and harder to capture and monetize their disruptive potential.


Should this law have been written by an AI?
Nicole Mormilo, Matthew Jedreski, K.C. Halm, and Jeffrey S. Bosley of Davis Wright Tremaine write:
On January 1, 2020, Illinois’ new Artificial Intelligence Video Interview Act(AIVIA) went into effect, meaning Illinois employers must now comply with the law if they use artificial intelligence (AI) to analyze video interviews by job candidates. As we outlined in a prior post, the AIVIA imposes duties of transparency, consent and data destruction on organizations using AI to evaluate interviewees for jobs that are “based” in Illinois.
While these concepts may be clear in the abstract, the Illinois law is a lesson in brevity and leaves several key terms undefined (including, for example, the term “artificial intelligence”). Nor is it clear what it means for a position to be “based” in Illinois. As a result, employers using AI-enabled analytics in interview videos must sort through these questions and take other affirmative steps to ensure compliance with the new law.
Read more on the firm’s blog.


Perspective.
Netflix dominates viewing on TVs over all other streaming services
Netflix is big and it's getting bigger. And we're not just watching it on our phones and tablets: That dominance translates to the biggest screen in US homes too, according to a new study Tuesday from TV-measurement giant Nielsen. Netflix gobbles up 31% of streaming to TVs, beating every other service.
In what may come as a surprise, YouTube is a close second. The massive Google video service, most often associated with short clips you watch on your phone, commanded 21% of TV streaming in the last three months of 2019, Nielsen said. Hulu came in third with 12%, followed by Amazon at 8%.

No comments: