Sunday, July 04, 2021

Is it war yet? Curious that this happens on the Friday of a long holiday weekend. Curious that it’s the fourth of July. Curious that the President can’t immediately point to the source.

https://gizmodo.com/a-large-ransomware-attack-may-have-ensnared-hundreds-of-1847222405

A Large Ransomware Attack Has Ensnared Hundreds of Companies [Update: Make That 1,000+ Companies]

On Friday, Kaseya disclosed that it had been the victim of a “potential attack,” implying that hackers were somehow targeting users of its VSA on-premises product. Customers should shut down VSA “IMMEDIATELY,” an alert reads.

While the company has claimed that the attack is “limited to a small number” of customers, Kaseya’s position in a wider IT ecosystem means the effects of this attack could be quite large—potentially making it one of the largest ransomware attacks in history.



(Related)

https://www.france24.com/en/americas/20210704-massive-us-ransomware-attack-forces-swedish-shops-to-shut-fbi-investigating

Massive US ransomware attack forces Swedish shops to shut, FBI investigating

One of the largest ransomware attacks in history spread worldwide on Saturday, forcing the Swedish Coop grocery store chain to close all 800 of its stores because it could not operate its cash registers.

The shutdown of the major food retailer followed Friday's unusually sophisticated attack on U.S. tech provider Kaseya. The ransomware gang known as REvil is suspected of hijacking Kaseya's desktop management tool VSA and pushing a malicious update that infect tech management providers serving thousands of business.

The impacted businesses had files encrypted and were left electronic messages asking for ransom payments of thousands or millions of dollars.

Some experts said the timing of the attack, on the Friday before a long U.S. holiday weekend, was aimed at spreading it as quickly as possible while employees were away from the job.

FBI Statement on Kaseya Ransomware Attack https://t.co/tvHh5Xekio



(Related)

https://www.reuters.com/technology/biden-says-uncertain-who-is-behind-latest-ransomware-attack-2021-07-03/

Biden orders probe of latest ransomware attack

President Joe Biden said on Saturday he has directed U.S. intelligence agencies to investigate who was behind a sophisticated ransomware attack that hit hundreds of American businesses and led to suspicions of Russian gang involvement. [‘cause they wouldn’t investigate without his direction? Bob]

Biden said "we're not certain" who is behind the attack. "The initial thinking was it was not the Russian government but we're not sure yet," he said.

Biden said he had directed U.S. intelligence agencies to investigate, and the United States will respond if they determine Russia is to blame.





Timely, if not perfect.

https://www.databreaches.net/nydfs-issues-guidance-on-cybersecurity-controls-to-combat-ransomware-and-clarifies-reporting-obligations/

NYDFS Issues Guidance on Cybersecurity Controls to Combat Ransomware and Clarifies Reporting Obligations

Lance Taubin, Kate Hanniford, and Kimberly Peretti of Alston & Bird write:

The New York Department of Financial Services (NYDFS) issued new guidance this week intended to assist organizations in thwarting ransomware attacks. The guidance clarifies the NYDFS’ expectation that NYDFS-regulated companies should “implement these controls whenever possible” and report any successful deployment of ransomware or unauthorized access to privilege accounts to the NYDFS under its established cybersecurity event reporting regulations.

Read more on Privacy, Cyber & Data Strategy Blog.





Just because your algorithm is based on previous decisions does not mean it is more perfect than those decisions. (Garbage in, garbage out)

https://labourlaw.unibo.it/article/view/13117

The anti-discrimination right to the artificial intelligence test

Starting from the analysis of the case relating to the Frank algorithm, decided by the Court of Bologna, the contribution intends to highlight the more complex challenges to which the anti-discrimination law is exposed where Artificial Intelligence systems are based on machine-learning approaches, in particular the problems connected to algorithmic opacity, to the so-called “black box” effect.

First of all, the issue of transparency will be examined in its declination within the different regulatory levels involved, in relation to the protection of personal data, software copyrights and industrial secrets. The investigation will therefore focus on reconstructing possible solutions aimed at strengthening and guaranteeing anti-discrimination protection. The reflection will focus on the verification of the measures contained in the proposed Regulation on Artificial Intelligence and of the techniques that could be borrowed from the proposed Directive on pay transparency in the context of gender equality, proposals that were both presented by the European Commission in 2021.





Do we have any “not artificial” intelligence based businesses?

https://www.techradar.com/news/the-future-of-the-ai-based-enterprise

The future of the AI-based enterprise

Imagine an enterprise like a living organism that will naturally adapt based on the environment. Its products and services, will grow, shrink, defend, and heal themselves as needed. This is the future of the AI-based enterprise. We are living in an unprecedented time. Technology innovations disrupt existing industry business models, in some cases completely replace existing industries, and continuously and fundamentally changes the way we live and interact with each other.

Compared with the industrial revolution and the Internet revolution, the AI revolution is proceeding at an even faster pace. In the coming decades, AI will profoundly impact every aspect of our daily life, from home, to work, to our society.



(Related) How soon will the first AI pass the Bar? Will all law firms require an AI partner to be taken seriously?

https://www.natlawreview.com/article/natural-language-processing-nlp-litigation-can-alexa-help-you-win-your-next-mass

Natural Language Processing (NLP) in Litigation: Can Alexa Help You Win Your Next Mass Torts Case?

In mass torts, trial teams deal with large amounts of medical records – it’s par for the course, but these days they are more likely dealing with some form of electronic health records (EHRs). EHRs are basically the medical data of a patient stored on computers, in portals and on extranet sites. According to Forbes, in 2020, the amount of healthcare data created globally was estimated at 2,314 exabytes (a single exabyte is equivalent to one billion gigabytes).

So how does one wade through the billions of bytes to get to the key pieces of information needed? Using the artificial intelligence of Natural Language Processing (NLP) – how the computer analyzes and processes the natural written and spoken language of humans.



(Related)

https://ruj.uj.edu.pl/xmlui/handle/item/275449

Electronic person - de lege ferenda analysis on the basis of selected institutions of the Polish legal order

The subject of this paper is to discuss the issues related to the legitimacy of introducing a new entity of civil law into the Polish legal order in the form of an electronic person, as an entity that would be independently liable for damages caused in the course of its operation beyond human control. Given the similar level of autonomy in the undertaken activities, smart contracts and other homogeneous programs and artificial intelligence algorithms will be considered collectively for the purposes of this paper as entities to which an electronic personality would be granted. Concepts related to the field of new technologies will be introduced, such as distributed ledger technology (DLT), blockchain, smart contracts, decentralized autonomous organization (DAO) or high frequency trading (HFT), as well as problems related to the current legal approach to smart contracts. An attempt will be made to indicate the superior standards according to which autonomous entities aspiring to the legal status of an electronic person should be created. Then, an analysis of the compliance of the introduction of an electronic person in the form proposed in this paper with the standards resulting from the Constitution, in particular in the sphere of human rights and freedoms, will be carried out. The issues of jurisdiction, legal capacity of an electronic person, grounds for liability for damages, as well as sources of property and the issue of enforcement will also be discussed. The above critical analysis of the norms of substantive and procedural civil law will be extended to include examples of possible future changes in the applicable regulations, enabling electronic persons to function in accordance with the intended purpose.





A good start, but probably not sufficient.

https://www.makeuseof.com/what-is-a-blockchain-protocol-and-why-is-it-important-for-crypto/

What Is a Blockchain Protocol and Why Is It Important for Crypto?

Blockchain protocols are critical for the functioning of all cryptocurrencies. But what are they, and how do they work?





For those rare times when beer is not available...

https://www.makeuseof.com/best-wine-apps/

The 10 Best Wine Apps for Connoisseurs



No comments: