Young women using smartphone with social media concept hovering above phone screen.

Making the Best of Social Media

I’ve been concerned about this issue for some time now. As a resident of California, I’m entitled under the California Consumer Privacy Act (CCPA) to ask about the data that companies have mined from me. Recently, I did just that. Even though I closely follow cyber risk and privacy topics for a living, I was stunned by what I received in return. Both the sheer volume (we’re talking dozens of pages of spreadsheets) and the depth of the data points (e.g., the current phone numbers of friends I have not called since high school) rudely reawakened me to the reality of how our personal data has been commodified, sold, and traded without our full knowledge.

Yet, perhaps out of denial (“it won’t happen to me”) or cynicism (“they already have all my data”), too few of us take the steps needed to protect ourselves. It’s never too late to mitigate risk and doing something is better than oversharing your personal information with strangers and big data companies.  Here are some easy ways to reduce your vulnerability across social media platforms:

The risks of social media use are real and frightening: Identity theft, phishing, and now deepfakes can be perpetrated with the information we’ve willingly exposed about ourselves. From just a few small clues, a threat actor can target you or your business, open a credit card in the name of your child, or commit wire fraud.

Continue Reading

MSBs and Ransomware: Staying Ahead of the Compliance Curve

A Q&A with Winston Krone of Kivu

Ransomware is on the rise, and so, too, is the chance of having to pay a ransom to recover critical data, yet this practice remains a gray area for regulatory compliance. One way that businesses can mitigate the potential of regulatory risk is to respond to cyber extortion attacks by using vendors who have registered as a money services business (MSB), which not only demonstrates compliance with the US Treasury Department’s Financial Crimes Enforcement Network (FinCEN) but also helps law enforcement find and prosecute criminals. Last year, Kivu registered as an MSB—and was reportedly the first full-service ransomware response vendor to do so. We spoke to Global Managing Director Winston Krone about how this decision benefits Kivu and how it could help other businesses to follow suit.

Continue Reading

COVID-19 Preparedness: Updating Incident Response Plans for Pandemic Scenarios

A Q&A with Ron Raether of Troutman Sanders

In the wake of the COVID-19 pandemic, the traditional workforce has largely transformed into a work-from-home workforce, raising novel cyber security issues for organizations—particularly given a wave of attacks capitalizing on newfound vulnerabilities. One way to prepare for the current reality is to update cyber incident response plans with provisions for a remote response. We talked with Ron Raether of Troutman Sanders about making these needed updates.

Continue Reading

No more posts.