What You May Have Missed

What You May Have Missed

1. Can a CEO lose his job over a data breach?  Earlier this month, the board of directors at Target replaced its chief executive after a massive data breach that ultimately hurt the company’s bottom line. For a legal analysis of why the board had no choice, read this piece on the importance of having…

Digital StillCamera

Ultimate Security Wisdom From Verizon’s DBIR: Limit, Control, and Monitor

For those in IT too busy to read the 60-page Data Breach Investigations Report, Verizon provides the shorter executive summary. And to summarize the summary, they’ve come up with seven tips based on their analysis of over 60,000 security incidents. If I had to condense this list into a simple one sentence security mantra it…

What You May Have Missed

What You May Have Missed

1. In the unregulated world of social media, the FTC has become the de facto enforcer of privacy. Snapchat is the photo sharing service that promised customers their photos and videos would automatically self-destruct. On Thursday, they admitted to the FTC that photos don’t actually disappear forever. As part of the FTC settlement, Snapchat agreed to be monitored by an independent auditor for the next 20 years.

tc-disrupt-2014

Privacy Becomes a Focus at TechCrunch Disrupt NY

When launching software in the get-it-out-the-door world of consumer apps, companies often give security and privacy a lower priority. Understandable, of course. It’s not that this isn’t considered, but it’s hard for many embryonic startups (and even some larger players) to implement privacy-by-design concepts when also having to deal with everything else. With that in…

What You May Have Missed May 2 2014

What You May Have Missed

1. EdTech startup with plans to collect and analyze data from US schools closes down over privacy concerns. Several key states ultimately passed laws to prevent school districts from sharing student data with outside services, resulting in this startup dropping out of the student database business. 2. The White House’s Big Data report also includes…

what you may have missed

What you may have missed

1. An awesome graphic of Heartbleed and security, depicting how the vulnerability works and a way to flag sites vulnerable to Heartbleed. 2. Despite the powers of big data, there are a few shortcomings that limit the accuracy for predicting flu epidemics. 3. Healthcare conference attendees believe privacy will crash big data if we don’t get it right. 4. Government public service…

what you may have missed

What you may have missed

1. The FTC can now sue companies with loose security controls that result in a data breach if the company claims that consumer data is secure. No way! Yes way.  The U.S. District Court for the District Court of New Jersey upheld the FTC’s authority to regulate data security under the unfair or deceptive provisions of the…

What you may have missed

What You May Have Missed

1. There were many articles on #Heartbleed this week, and if you only have time to read one very interesting article about it,  this is the one.  Bruce Schneier, this blog’s favorite security expert, calls Heartbleed “catastrophic”, and thankfully he provides a link to an app that can check a site’s vulnerability to this deadly…

report-card-ferpa-edtech

For a passing grade, EdTech needs a privacy solution

Last week, New York state lawmakers passed legislation to prevent identifiable student data from being uploaded to a centralized national database. The database belongs to a non-profit in the growing education technology or EdTech sector. Their goal was to collect PII, student scores, attendance, and other information and then disseminate it to teachers and administrators…

800px-Anonymous_at_Scientology_in_Los_Angeles

Malevolent Marketplaces

When considering security, it’s typical to think of systems in terms of technology: bugs, errors, and broken or exploited code. However, underlying the technical issues we face every day as technology professionals, there are economic forces attempting to exploit those cracks in the security facade for their own gain. While that fact is fairly self-evident and an intrinsic…