Accurate, Focused Research on Law, Technology and Knowledge Discovery Since 2002

Category Archives: Cybersecurity

Symantec – Mobile Privacy: What Do Your Apps Know About You?

Just how much personal information are your apps gathering? “And do they really need so much? The average smartphone user these days has between 60 and 90 apps on their device. Most of these apps request some sort of information about you and the device you are using. They may want to know your name, your email address, or your real-world address. But because smartphones are so powerful, they can also get quite a bit more than that, such as your exact location. Some apps will even request access to the device’s camera or microphone. While all of this is done with the user’s consent, you may be surprised at the level of access some apps have to personal data. Did you know that 45 percent of the most popular Android apps and 25 percent of the most popular iOS apps request location tracking, for example? Or that 46 percent of popular Android apps and 25 percent of popular iOS apps request permission to access your device’s camera? Some Android apps even ask you to give them access to your SMS messages and phone call logs. Under the microscope – In order to find out what kind of data your apps may be looking for, we decided to put the most popular to the test. We downloaded and analyzed the top 100 free apps as listed on the Google Play Store and Apple App Store on May 3, 2018. For each app, we tried to find out two main things: how much personal information was the user sharing with the app and which smartphone features the app accessed?…”

Researcher study – U.S. House candidates vulnerable to hacks

Reuters: “Three of every 10 candidates running for the U.S. House of Representatives have significant security problems with their websites, according to a new study by independent researchers that underscores the threat hackers pose to the November elections…A team of four independent researchers led by former National Institutes for Standards and Technology security expert Joshua… Continue Reading

Study – How Do Americans Feel About Online Privacy in 2018?

The Best VPN – “Concerns around online privacy have come to a head in 2018. In mid-March, The New York Times and The Guardian reported that data from 50 million Facebook profiles was harvested for data mining firm Cambridge Analytica — a number that would eventually be revised to 87 million in one of the… Continue Reading

Foreign Economic Espionage in Cyberspace 2018

Foreign Economic Espionage in Cyberspace 2018 – Economic cyber espionage will only get worse, ODNI report says “In the 2011 report to Congress on Foreign Spies Stealing U.S. Economic Secrets in Cyberspace, the Office of the National Counterintelligence Executive provided a baseline assessment of the many dangers facing the U.S. research, development, and manufacturing sectors… Continue Reading

Cybersecurity Role, Spend on the Rise for Corporate Legal

Association of Corporate Counsel: “More than 40 percent of in-house lawyers stated their companies plan to change data security standards, breach notification procedures, and incident response plans as a result of the upcoming European Union General Data Protection Regulation (GDPR), and 63 percent in the United States strongly favor the implementation of a federal law… Continue Reading

DHS announces US critical infrastructure at risk from Russia

WSJ – DHS Forms New Cyber Hub to Protect Critical U.S. Infrastructure Secretary Nielsen Says ‘Our Intelligence Community Had it Right’ About Russian Interference – What What What ⸮⸮⸮ [see my previous posting about this punctuation mark] As this article is behind a paywall – you may want to avail yourself via US-CERT of the… Continue Reading

New on LLRX – The 6 Types Of Cyber Attacks To Protect Against In 2018

Via LLRX – The 6 Types Of Cyber Attacks To Protect Against In 2018 – Lizzie Kardon’s article is a timely guide to the different methods by which cyber attacks are launched and the tools used to deliver them. As the goals and objectives for such attacks differ, it is critical to employ accurate and… Continue Reading

GAO – Urgent Actions Are Needed to Address Cybersecurity Challenges Facing the Nation

Urgent Actions Are Needed to Address Cybersecurity Challenges Facing the Nation, GAO-18-645T: Published: Jul 25, 2018. Publicly Released: Jul 25, 2018. “GAO has identified four major cybersecurity challenges and 10 critical actions that the federal government and other entities need to take to address them. GAO continues to designate information security as a government-wide high-risk… Continue Reading

Chrome is flagging HTTP sites as “not secure”

In case you have not noticed, your workplace security team has no doubt started blocking your access to websites that are not using HTTPS encryption – via ZDNet: “Chrome will today start marking sites that don’t use HTTPS as “not secure. First announced two years ago, Google said it would flag any site that still… Continue Reading

DOJ Report of the Attorney General’s Cyber Digital Task Force

United States Department of Justice, Office of the Deputy Attorney General, Cyber-Digital Task Force Report. July 2, 2018. “In February 2018, the Attorney General established a Cyber-Digital Task Force within the Department and directed the Task Force to answer two basic, foundational questions: How is the Department responding to cyber threats? And how can federal… Continue Reading

CRS – Cybersecurity: Data, Statistics, and Glossaries

Via EveryCRSReport.com – Cybersecurity: Data, Statistics, and Glossaries – July 16, 2018 R43310 – “This report describes data and statistics from government, industry, and information technology (IT) security firms regarding the current state of cybersecurity threats in the United States and internationally. These include incident estimates, costs, and annual reports on data security breaches, identity… Continue Reading

How the Russians did it – unwrapping Mueller’s latest indictment

What Mueller’s Latest Indictment Reveals About Russian and U.S. Spycraft “Special Counsel Robert Mueller, as part of his investigation into interference with the 2016 presidential election, charged 12 Russian military intelligence officers with conducting “large-scale cyber operations to interfere with the 2016 U.S. presidential election.” The indictment contains a surprising amount of technical information about alleged Russian… Continue Reading