Archive december 2018

Facial recognition: It’s time for action

 |   Brad Smith – President

In July, we shared our views about the need for government regulation and responsible industry measures to address advancing facial recognition technology. As we discussed, this technology brings important and even exciting societal benefits but also the potential for abuse.<…>

In particular, we don’t believe that the world will be best served by a commercial race to the bottom, with tech companies forced to choose between social responsibility and market success

Läs mer

Google’s Earth: how the tech giant is helping the state spy on us

We knew that being connected had a price – our data. But we didn’t care. Then it turned out that Google’s main clients included the military and intelligence agencies. <…>

Where we go, what we do, what we talk about, who we talk to, and who we see – everything is recorded and, at some point, leveraged for value. Google, Apple and Facebook know when a woman visits an abortion clinic, even if she tells no one else: the GPS coordinates on the phone don’t lie. One-night stands and extramarital affairs are a cinch to figure out: two smartphones that never met before suddenly cross paths in a bar and then make their way to an apartment across town, stay together overnight, and part in the morning. Läs mer

En upphandling gjord med halvöppna ögon

Fackförvaltningen Intraservice kan ha köpt dyra tjänster av Microsoft som riskerar att röja känslig information från Göteborgs stad. Problemet är sannolikt större då många andra svenska kommuner har upphandlat molntjänster som inte är säkerhetsmässigt tillförlitliga. <…>

Anlitar man ett utländskt företag som tillhandahåller molntjänster, vilket i Göteborgs Stads fall är amerikanska Microsoft, är det liktydigt med att sekretessbelagda uppgifter ”får anses vara röjda”. Läs mer

Ett gott uppsåt skyddar inte sekretessbelagda uppgifter

Problemet är inte att Microsoft skulle ha ont uppsåt, eller att åtkomstmöjligheten faktiskt har missbrukats historiskt. Problemet är att sekretessbelagda uppgifter utsätts för risken att hamna i orätta händer i samma ögonblick som de hanteras av ett system där en obehörig kan skapa sig åtkomst till uppgifterna. Utländska myndigheter är obehöriga att ta del av sekretessbelagda uppgifter (OSL 8 Kap 3§). Läs mer

2019 cloud security predictions

The smart attack era is upon us. Learn how AI, machine learning, IT process automation and a bit of common sense will help our cloud security. -/-

A big focus for IT pros in the coming year should surround the automation of security reporting and auditing. With a growing list of cloud services, at times spread across multiple providers, it can become quite cumbersome to keep track of security reporting. Leveraging IT process automation, tools like Microsoft Secure Score, and creating efficient and automated review workflows should be at the top of all our lists next year. Having this information readily available and simple to review can save time and allow for faster responses to emerging cloud security threats.-/-

The biggest threat to user security still remains to be social engineering. Phishing emails have seen a resurgence, along with other attacks that rely on the social aspect of our day to day work. End users should focus on being more vigilant with suspicious emails, calls, texts, etc.

Läs mer

Röjande och molntjänster [i juridisk mening måste ses som ett röjande om en molntjänst används]

eSams juridiska expertgrupp har tagit fram ett rättsligt uttalande om röjande och molntjänster. I uttalandet beskriver de sin tolkning av gällande rätt i frågan. Expertgruppen bedömer att det inte går att utesluta att en leverantör av en molntjänst som lyder under utländsk lagstiftning kan medverka till att sekretessreglerade uppgifter röjs. Läs mer

Facebook’s latest privacy scandal: The private photos of millions of users were accidentally shared with 1,500 apps

  • Facebook said it found a bug that gave as many as 1,500 third-party apps access to the unposted Facebook photos of up to 6.8 million users.
  • The affected pictures include those posted on Facebook Stories and Facebook Marketplace, as well as those that were uploaded but never shared, Facebook said.
  • ”We’re sorry this happened,” Facebook said in a statement.

Läs mer