Tuesday, March 23, 2021

Several questions: Assuming that notification from the government is more likely to get noticed/action, does the government assume any liability? Does the manufacturer limit liability in any way? Would GE give the government the names of all of their customers? Was GE required to allow CISA to broadcast this warning rather than simply contacting their customers?

https://threatpost.com/cisa-security-flaws-ge-power-management/164961/

CISA Warns of Security Flaws in GE Power Management Devices

CISA warned that if not updated, the affected products could be exploited to allow an attacker to access sensitive information, reboot the UR, gain privileged access, or cause a denial-of-service condition.

Given that the devices control the flow and direction of electrical power, the impact of these flaws is heightened: “GE strongly recommends users with impacted firmware versions update their UR devices to UR firmware Version 8.10, or greater to resolve these vulnerabilities,” according to CISA’s alert last week.





Future policing? What if the algorithm worked?

https://www.pogowasright.org/pasco-countys-sheriff-must-end-its-targeted-child-harassment-program-eff/

Pasco County’s Sheriff Must End Its Targeted Child Harassment Program – EFF

Matthew Guariglia writes about a program previously noted on this blog as public awareness grows:

In September 2020, the Tampa Bay Times revealed a destructive “data-driven” policing program run by the Pasco County, Florida Sheriff’s Office. The program is misleadingly called “Intelligence-Led Policing” (ILP ), but in reality, it’s nothing more than targeted child harassment by police. Young people’s school grades and absences, minor infractions, and even instances where they are a victim of crime are used to inform a bogus rubric and point system, based on a formula that intends to “prevent future crimes”—essentially labeling youths as a potential future criminals.
Below is a page from the ILP’s pseudoscientific manual. Once a juvenile is tagged with this label, police show up at their home and harass their entire family. As one former deputy described the program to reporters, the objective was to “make their lives miserable until they move or sue.”

Read more on EFF.





Seeking common regulations?

https://www.huntonprivacyblog.com/2021/03/22/cipl-publishes-recommendations-on-a-risk-based-approach-to-regulating-ai/

CIPL Publishes Recommendations on a Risk-Based Approach to Regulating AI

On March 22, 2021, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth published its paper on delivering a risk-based approach to regulating artificial intelligence (the “Paper”), with the intention of informing current EU discussions on the development of rules to regulate AI.





Seeking definitions.

https://www.scmp.com/tech/policy/article/3126483/data-privacy-china-defines-first-time-necessary-information-apps-can

Data privacy: China defines for the first time ‘necessary’ information that apps can collect, closing ‘bundled consent’ loophole

The Chinese government has issued new rules that define for the first time the “necessary” personal information that mobile apps can obtain from their users, as Beijing intensifies its campaign against unauthorised data collection by Big Tech to further control the country’s digital economy.

Apps can collect necessary personal information from users that allows them to access basic functions and services, while users can decline to provide data outside what is deemed necessary and continue to use certain apps without obstruction, according to the new rules jointly released on Monday by agencies that include the Cyberspace Administration of China (CAC), the Ministry of Industry and Information Technology (MIIT), the Public Security Bureau (PSB) and the State Administration for Market Regulation (SAMR).

The regulation on necessary personal information for common types of mobile internet applications, which will take effect on May 1, also covers the basic functions and services for 39 app categories, including messaging, online shopping, payments, ride hailing, short video, live stream and mobile games.





Is this “stacking the deck?” Is there a clear and unambiguous test for Antitrust under these new definitions? If so, why do investigations last years without resolution?

https://www.theverge.com/2021/3/22/22321092/lina-khan-ftc-tech-antitrust-law-regulation-amazon?scrolla=5eb6d68b7fedc32c19ef33b4

Biden to nominate tech antitrust pioneer Lina Khan for FTC commissioner

President Joe Biden has announced his intent to nominate Lina Khan, a legal scholar and leading voice in the growing tech antitrust movement, to serve as a commissioner at the Federal Trade Commission.

The pick signals that the Biden administration is preparing to take on some of the tech industry’s most powerful and influential companies. In 2017, Khan authored an article for the Yale Law Journal titled “Amazon’s Antitrust Paradox,” which exploded in popularity in progressive economic policy circles. Khan has also served as an aide to the House Judiciary Committee’s subcommittee on antitrust throughout its yearslong investigation into anticompetitive behavior in the tech industry.





Perspective.

https://thenextweb.com/facebook/2021/03/22/why-trumps-social-media-network-will-be-an-epic-failure/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+TheNextWeb+%28The+Next+Web+All+Stories%29

Why Trump’s social media network will be an epic failure

I’ve seen a lot of dumb startup pitches in my day, but a Donald Trump-branded social media network takes the stupid cake.

All I can figure is, we’re exactly two months away from the FBI’s birthday and team Trump’s determined to get the old agency the perfect gift this year.



No comments: