IP – PrivaSecTech https://privasectech.com/ Wed, 13 Nov 2019 18:33:57 +0000 en-US hourly 1 https://wordpress.org/?v=5.4.2 The Stop Online Piracy Act https://privasectech.com/the-stop-online-piracy-act/ Wed, 18 Jan 2012 10:47:43 +0000 http://privasectech.com/?p=223 Continue reading The Stop Online Piracy Act]]> If you’ve not heard of #SOPA yet, you likely will today. As of right now, it’s only something that techies and internet crusaders seem to be aware of. Like many of the scariest laws of the last decade, you should name your legislation something that sounds really good, but in the end does the exact opposite of what the name implies. The US PATRIOT ACT  and the Canadian Safe Streets and Communities Act are perfect examples of this. Like the US Patriot Act, it’s easiest to pass draconian legislation through when citizens are distracted and afraid, using their fear against them. My speculation is today’s public outcry will have the bills tabled… until there’s some ’emergency’ where they can be rammed through without proper public debate.

The latest attack is on the internet as we know it, and it’s entitled the Stop Online Piracy Act. While this sounds good simply by the name, if you read it, it’s scary. It allows American private sector organizations to effectively control the global internet. They could turn your organization’s website off, if they wanted to. There’s a lot more to it, which you should read about and understand for yourself. It’s so scary, that many of the internet’s most popular websites have declared today a “blackout day”, to give you an idea of what the internet can and will be like should this legislation pass. As of writing this, Wikipedia, Google, XKCD, boingboing, reddit, oatmeal, craigslist USA, the Whitehouse and dozens of others have at least taken an official anti SOPA stance, if their site isn’t blacked out altogether for Jan 18th, 2012.

The organizations that support SOPA are American, and rely on legacy and outdated policies and legislation around copyright and intellectual property. Instead of effectively working with technology and technologists, and their users, to make the world better, they insist on controlling it with SOPA, a virtual weapon. This is like trying to ban CDs if you’re a company that makes 8 tracks. This entire industry will be completely different in 10 years, and SOPA will be an embarrassment to all involved at that time, even more so than it is now.

I smell a RAT https://privasectech.com/i-smell-a-rat/ Wed, 03 Aug 2011 17:40:04 +0000 http://privasectech.com/?p=157 Continue reading I smell a RAT]]> Yesterday, Vanity Fair published an exclusive on operation Shady RAT (remote access tool), which was a high-level hacking campaign that lasted over 5 years, compromising over 70 name brand victims in over 13 countries. For the techies reading this, McAfee has published a 14-page report [pdf] on the hack. Canadian government agencies were targeted multiple times between 2009 and 2010, 4 in total, with the Canadian hosted World Anti-Doping agency having been compromised for 14 months. F-secure has published a few examples of what the targeted emails look like. Operation Shady RAT has been described as the “biggest transer of … intellectual property in history.”, one that could pose a serious economic threat on a global scale. It is suggested it was the work of one specific operation conducted by a single actor/group. “All the signs point to China,” says James A. Lewis, director and senior fellow of the Technology and Public Policy Program at the Center for Strategic and International Studies, adding, “Who else spies on Taiwan?”. Alperovitch (McAfee) said he divides all Fortune Global 2000 firms into two categories: those that know they’ve been compromised and those that don’t yet know.

This happening as British Columbia, and Canada, race to implement wireless smart meters, electronic health records, and electronic voting, each of which could be compromised by my small organization, should we be given the opportunity. Perhaps we should wait until the security tools are in place that I can’t suggest they could be compromised so easily.