UPDATE “Just Say No!”- to Facebook Login Request for Employment March 23, 2012
Posted by Chris Mark in Industry News, InfoSec & Privacy.Tags: cybersecurity, facebook, InfoSec & Privacy, mark consulting group, privacy, security
add a comment
UPDATE: Kudos to Facebook for weighing in on this subject. Facebook says that not only is the practice wrong, but it is a violation of Facebook’s terms of service. Echoing what I (and others) have said, logging into someone’s FB page could expose the employer to a lawsuit. “(W)e don’t think it’s right the thing to do,” she said. “But it also may cause problems for the employers that they are not anticipating. For example, if an employer sees on Facebook that someone is a member of a protected group (e.g. over a certain age, etc.) that employer may open themselves up to claims of discrimination if they don’t hire that person.”
I find myself posting on this subject occasionally because a neighbor, friend or other person will inform me that during an interview or application they were asked to provide their Facebook or other ‘social media’ login. This topic seems to arise again, and again and was again highlighted on msnbc.com. So, for those who are asking or saying: “Chris, if you have nothing to worry about, then why do you care?” Valid question. Let me answer. First, if you are looking for a job, as a responsible professional person you should take care to not post inflammatory, racist, hateful or other items on your social media. If you are a proud member of a hate group, you may want to keep that info private. Pictures of you doing drugs, or being arrested in New Orleans is also probably a bad idea. (more…)
France’s PATROIT Act? – “Visit Website; Go to Jail” March 23, 2012
Posted by Chris Mark in Industry News, Laws and Leglslation, terrorism.Tags: al qeada, Chris Mark, france murders, mark consulting group, PATRIOT, privacy, Red Scare, security, terrorism
add a comment
In the aftermath of the murder of 7 people in France by a self-proclaimed Al Qaeda militant, France’s president Nicolas Sarkozy has proposed a sweeping law that would jail those who visit extremist websites. “Anyone who regularly consults Internet sites which promote terror or hatred or violence will be sentenced to prison,” he told a campaign rally in Strasbourg, in eastern France. “What is possible for pedophiles should be possible for trainee terrorists and their supporters, too”
The murders of 7 people in Toulouse were horrific. Among those killed were a Rabbi and several children at a Jewish school. The murderer, 23 year old Mohamad Merah, was killed by French police after a standoff. (more…)
Social Media – Dangerously Anonymous & Plausibly Deniable March 19, 2012
Posted by Chris Mark in Industry News, InfoSec & Privacy, Risk & Risk Management, terrorism.Tags: Chris Mark, facebook, hacktivism, mark consulting group, plausible deniability, Social media, terrorism
add a comment
Today on Foxnews was a story about a person who claimed to be an occupy Wall Street protester who tweated a threat to kill a police officer. A user with the name “Smackema1” tweeted: “We won’t make a difference if we don’t kill a cop or 2,” What is interesting about this is that the person had never attended any Occupy protests and was actually in Florida when he sent the tweet. The author, who police are trying to identify, clarified his remarks to a Florida newspaper when he said: “It’s not like I meant anything of it. Who takes anything like that seriously? I’m in Florida, what am I going to do?” (more…)
More Security Theater – “CyberCops and Robbers” March 15, 2012
Posted by Chris Mark in Industry News, Risk & Risk Management, Uncategorized.Tags: bank robberies, Chris Mark, fbi, mark consulting group, risk, security, security theater
add a comment
Today in my Google alerts, I had a story from FoxNews (…ahemm) titled “CyberCops and Robbers; Digital Posses to Bust Bank Robbers” After reading the article, I had to write a post and discuss (rant?) about the fluff that is being proposed. The article talks about a new initiative by the FBI and select banks where banks that comply with certain rules and agree to be involved in the program get to post a “badge” on their door like the one in this post.
There are so many flaws and issues with this approach, I don’t know where to start. This is Security Theater at its finest. For those who are unfamiliar with the term, Bruce Schneier, in his book Beyond Fear, coined the phrase security theater. Security theater describes security countermeasures intended to provide the feeling of improved security while doing little or nothing to actually improve security. (more…)
22 Arrested in Iranian Backed Plot Against US and Israeli Embassies March 14, 2012
Posted by Chris Mark in Industry News, Risk & Risk Management, terrorism.Tags: Azerbaijain, Chris Mark, Iran, risk management, security, Stuxnet, terrorism
add a comment
According to FoxNews and Agence France Presse, 22 people have been arrested inside Azerbaijan suspected of planning attacks against the US and Israeli embassies inside Baku. According to the reports, the attacks were planned for the benefit of Iran.
“Twenty-two citizens of Azerbaijan have been arrested by the national security ministry for cooperating with the Iranian Sepah,” the ministry said, referring to the Iranian Revolutionary Guards, according to AFP. “On orders of the Sepah, they were to commit terrorist acts against the US, Israeli and other Western states’ embassies and the embassies’ employees.” (more…)
Global Security, Privacy, & Risk Management 