Security Alerts & News
by Tymoteusz A. Góral

#1061 UN council: Seriously, nations, stop switching off the damn internet
The United Nations officially condemned the practice of countries shutting down access to the internet at a meeting of the Human Rights Council on Friday.

A resolution [PDF] entitled The promotion, protection and enjoyment of human rights on the Internet effectively extends human rights held offline to the internet. It was passed by consensus, but only after a determined effort by a number of countries, including China and Russia, to pull out key parts of the text.

In particular, a number of states – notable by their authoritarian stances – were opposed to the resolution's focus on the need for an accessible and open internet, and its condemnation of violations against people for expressing their views online. A vote planned for Thursday was delayed to Friday after the issue became heated.

Four amendments pulling out that language were tabled, but none were adopted after an impassioned debate.
#1060 Spy tech that reads your mind
Leaks, theft, and sabotage by employees have become a major cybersecurity problem. One company says it can spot “insider threats” before they happen—by reading all your workers’ email.

On any given morning at a big national bank or a Silicon Valley software giant or a government agency, a security official could start her day by asking a software program for a report on her organization’s staff. “Okay, as of last night, who were the people who were most disgruntled?” she could ask. “Show me the top 10.”

She would have that capability, says Eric Shaw, a psychologist and longtime consultant to the intelligence community, if she used a software tool he developed for Stroz Friedberg, a cybersecurity firm. The software combs through an organization’s emails and text messages—millions a day, the company says—looking for high usage of words and phrases that language psychologists associate with certain mental states and personality profiles. Ask for a list of staffers who score high for discontent, Shaw says, “and you could look at their names. Or you could look at the top emails themselves.”

Many companies already have the ability to run keyword searches of employees’ emails, looking for worrisome words and phrases like embezzle and I loathe this job. But the Stroz Friedberg software, called Scout, aspires to go a giant step further, detecting indirectly, through unconscious syntactic and grammatical clues, workers’ anger, financial or personal stress, and other tip-offs that an employee might be about to lose it.
#1059 Brexit no threat to UK, say cyber-security professionals
The UK’s ability to protect itself against cyber-attacks won’t change if the country opts to leave the European Union, a survey of cyber-security professionals suggests.

The study, conducted by cyber-security firm Tripwire, involved 278 information security professionals who attended the InfoSecurity Europe conference in London last week.

64 per cent of the respondents said that choosing to leave the European Union in the June 23 referendum won’t affect the UK’s ability to protect itself from cyber-attacks. The info-security professionals also suggested that in case of Brexit, the UK could reconsider national implementation of several recent EU data privacy and cyber-security regulations.
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12