Three Things I Learned About Personal Cybersecurity At RSAConference That You Should Be Doing Right Now
February 28, 2013
Image via CrunchBase
I just returned from RSAConference 2013 where I had the privilege and honor of giving a presentation of the legal risks caused by social media in the workplace. As a speaker-attendee, I had the priceless benefit of access to all the other speakers and programs held during the conference.
One such program I attended was “We Were Hacked: Here’s What You Should Know”. The speakers, Matthew Prince (@eastdakota) CEO of CloudFlare, and Mat Honan (@mat) writer for Wired Magazine, shared their common experience as targets of high profile hacks. Hearing the details from them first hand, including information from interviews with the hackers themselves, I learned how easy it is to be the victim of hacking and how it’s the little things that create exploitable seams in our information security barriers.
Rather than rewrite their stories, I thought I would share three simple lessons I learned that I’ve already implemented and you should too. Besides, Matt does a better job telling his own story which can be found here.
Here are the three things I learned about how you can protect yourself and others in your organization.
First, security attacks go after the “low hanging fruit” and that often means figuring out a way to exploit your personal email address. With so many web-based services and so much login information to remember, many of us use our personal email as our username for everything from the web sites on which we comment, to our online photo gallery, to our online banking service. Unfortunately, this is probably the address we use for password recovery if we forget. Given that our digital lives are easily mapped, hackers already have one piece of the two-piece login puzzle: they know your user name.
TIP NO. 1: Use a private, obscure email address for your more sensitive information.
Second, once a hacker has accessed your accounts, your computer and your files, the fun has just begun for them. As Matt Honan described, these often adolescent script kiddies simply don’t understand the value of your stored memories and other information. In his case, all the photos of his children were permanently deleted. Regardless of a hacker attack, stuff happens and you don’t want to lose everything because you we’re too lazy to back up.
TIP NO. 2: Back Up your digital life, early and often.
Third, today’s’ Internet is an interdependent ecosystem. Just because you or your organization takes security seriously, doesn’t mean that other do as well. Your internal systems are not enough. Like it or not, the seams of your security perimeter are intertwined and permeated by the services and systems of customers and vendors. For most consumers, the there is a Hobbesian choice of Security v. Convenience. Multiple login usernames and super long passwords are difficult to remember and tedious to use. As a result, most people choose the least secure means of authentication on the assumption that using astringent password is enough. Unfortunately, some people don’t even bothers with that. A recent ZoneAlarm study found that “password” was the fourth most commonly used password by consumers.
Google, Facebook and others have started using two-factor authentication. Two-factor authentication requires that one enter a code after entering the username/password combo. The code is sent via, text message, voice call or email. This greatly reduces the chances of unauthorized access because hackers would need to have your phone, in addition to your username/password combo.
TIP NO. 3: Whenever possible enable two-factor authentication.
Please understand that there is no “magic bullet” when it comes to Cybersecurity. Taking these precautions does not guarantee that you won’t be attached or that your account information won’t be accessed. However, these are important and easy steps that you can take to improve your personal data security.
Please comment and follow!
Related articles
- Twitter looks to add two-factor authentication to stop password hacks (arstechnica.com)
Social Media Legal News Roundup
August 2, 2012
1. Content & Marketing
MutualMind Signs Agreement With LexisNexis to Offer Advanced Social Media
MarketWatch (press release)
PRNewswire via COMTEX/ — MutualMind, an award-winning social media technology developer based in Dallas, Texas, announced an agreement today with LexisNexis, a leading provider of legal content and technology solutions.
Facebook: Should Law Firms Bother?
Business 2 Community
While consumer brands have embraced Facebook as a key tool in building deeper customer engagement, the biggest social network largely remains terra incognita in the legal world. The sector has certainly harnessed professional networking sites.
2. International
Bahrain may act against social media abuse
Trade Arabia
Legal action could be taken against people in Bahrain, who incite violence and spread sectarianism on social media, said a top official. The initiative comes as a new code of honour for social media users is set to be launched by the Bahrain Bloc.
3. Law Enforcement
Infographic: How police investigators are using social media
Police News
An overwhelming majority of investigators using social media for investigative purposes are “self taught,” according to a new survey of 1200 Federal, state, and local law enforcement professionals.
Social media for investigators: Why Police departments should invest in training
Police News
That’s but one of the many conclusions found in a comprehensive new survey — conducted in a partnership between PoliceOne and LexisNexis Risk Solutions — focused on the impact of social media on law enforcement in criminal investigations. Among the …
4. Employees & Workplace
What your social media profile is telling future employers? (Take our poll)
Plain Dealer
The State of Maryland already has passed a law forbidding employers from asking job candidates for their passwords to Facebook and other social media sites, and California is considering a similar law. 01fgSCREEN2.jpg View full size · The Society for …
Social Media in the Workplace – July 2012
JD Supra (press release)
With an understanding of some of the relevant issues, employers can implement meaningful and reasonable policies and guidelines for employees and respond appropriately and legally to social media issues that arise. Below are a few of the discrete issues …
5. Financial Services
Quest IRA, Inc. Develops New Interactive Website & Social Media Campaign
Equities.com
The trick for us is trying to provide legally correct information, in such a way that is easy to understand, to the American public so that investors truly understand their options with retirement savings.” “Internet, the online experience and social media are the 21st Century.”
The New Social Metrics
Bank Technology News
Below are methodologies and metrics for determining the ROI of these specific social media use cases. The metrics roll up to three major categories of benefits: revenue impact, operational efficiencies, and legal and compliance risk avoidance.
David M. Adler, Esq. is an attorney, author, educator, entrepreneur and partner with Leavens, Strand, Glover & Adler, LLC, a boutique law firm in Chicago, Illinois created with a specific mission: provide businesses with a competitive advantage by enabling them to leverage their intangible assets and creative content in order to drive innovation and increase overall business value.
We meet this challenge by providing legal counsel on issues related to creation, protection and commercialization of intangible assets, our comprehensive understating of the relevant law, our team of seasoned professionals and our client service philosophy.
World Social Media Legal News Roundup
July 23, 2012
Newsmakers Q&A | Law slow to address workers’ social-media privacy
Columbus Dispatch
Colorado shooting: Public calls on Christian Bale to swoop in
Los Angeles Times
July 21, 2012, 12:04 p.m.. People are calling upon the caped crusader in the wake of the Colorado theater shooting with the 21st century bat signal: social media.
Afghan social media war steps up with new campaign
Reuters UK
And with the government mulling a media law to tighten its grip over the fledgling but lively Afghan press corps, Nai hoped social media could help safeguard political and social freedoms, as occurred during the wave of uprisings across the Middle East.
A social media win on merger
Philadelphia Inquirer
It’s a bracing lesson, on a local stage, in the power of social media to create community around an issue and ratchet up pressure on key players – in this case, the members of the Abington board and its president and CEO, Laurence Merlis. “It’s amazing to me just how fast word spread,” …. A community-conscious and activist community, with a high concentration of concerned, committed people who work in industries such as law, medicine, public relations, and journalism.
Valley reacts via social media regarding Colorado shooting
KGBT-TV
Once new information began streaming in about the shooting, over 100 viewers began responding to the Action 4 News Facebook page and Twitter feed. As the day progressed, over 500 comments came into valleycentral.com andAction 4 social media
Media Wise Parents to the rescue
Windsor This Week
Media Wise Parents helps parents, educators and churches become more aware with social media and the internet. Tweet · Bookmark and … It’s certainly in my background with law and marketing, it’s always something that interests me.
We Want To Hear From You: Take This Two-Minute Social Media Survey
Business Insider
This Is The Gun Used In The Colorado Shooting That Everyone Can’t Believe Is Actually Legal
In Focus: Social Media & Law Enforcement
Busted! Police Turn to Social Media to Fight Crime
CNBC.com (blog)
Law enforcement is taking to social media because criminals are changing their behavior and using social media to facilitate crime. In response, law enforcement officials are using it to track down criminals and as a predictive policing tool, said Haywood.
Role of Social Media in Law Enforcement Significant and Growing
Business Wire (press release)
WASHINGTON–(BUSINESS WIRE)–LexisNexis® Risk Solutions today announced the results of a comprehensive survey focused on the impact of social media on law enforcement in criminal investigations.
Police Make Wide Use Of Social Tools
InformationWeek (blog)
The survey, of more than 1200 law enforcement professionals with federal, state, and local agencies, found that 83% of the respondents are using social media, particularly Facebook and YouTube, to further their investigations.
Crime Busters Embrace Social Media
BusinessNewsDaily
It’s not just prospective customers, partners or employers who may be scanning the social media landscape to glean information about you and your organization. The long arm of the law has joined the party as well, a new survey shows.
How Law Enforcement Is Using Social Media (Infographic)
Law enforcement officials are using social media to solve crimes and will continue to do so in greater numbers. In an online survey conducted by LexisNexis Risk Solutions, four out of five law enforcement officials used social media.
Social Media Legal News Roundup
July 17, 2012
Into the data jungle – in association with Huron Legal
The Lawyer
Technological developments such as cloud computing, social networking and mobile apps mean EU law is no longer fit for purpose. The EU claims current laws often conflict and cost businesses a total of nearly £2bn a year.
Saudi Arabia considers law against insulting Islam
Bangladesh News 24 hours
JEDDAH, Saudi Arabia, July 16 (bdnews24.com/Reuters) – Saudi Arabia is studying new regulations to criminalise insulting Islam, including in social media, and the law could carry heavy penalties, a Saudi paper said on Sunday.
Mind the missteps in online job dance
Lawyers Weekly
With some background check firms specializing in social media searches (U.S.-based Social Intelligence Corp. for one), how do third-party recruiters use social media when screening or finding clients for law firms in Canada?
Saudi Arabia looking to criminalize Islam insults on social media
Bikya Masr
DUBAI: The Saudi Arabia government is looking to ensure users on social media networking sites do not insult Islam or the Prophet Mohamed, al-Watan newspaper reported on Sunday, citing officials who said a new law could bring “heavy” penalties.
Watching the detectives: the case for restricting access to your social media data
Delimiter
That debate tells us something about how Australians and the media conceptualise privacy and business-government relationships in a world where mobile phones and social network services such as Facebook are ubiquitous.
10 Tactics for Integrating Photographs into Content Marketing
Business 2 Community
Acquire digital rights for images. Remember when using images, especially photographs, your legal team is your best friend. Ensure that you’ve got the right to use the photos by incorporating outtakes and additional shots for social media.
Syracuse Neighborhood Watch plans to increase social media outreach
CNYcentral.com
New program coordinator plans more email, social media contact. … CNY Biz Central – Legal. Helpful advice about finding the right attorney for your legal needs. CNY Biz Central. Get information from our team.
Reasonable Expectations of Privacy in the Digital Age
Mondaq News Alerts (registration)
In this digital age of smart phones, global positioning systems, cloud computing, and social networking, determining what constitutes private information and what lengths our legal system will go to protect it is increasingly challenging.
Sale Of Digg Reminder Of Potential Risks To Facebook And Other Social Media …
Seeking Alpha
In 2011, social media watchers may recall reading in Bloomberg that Myspace, which had been purchased by News Corporation (NWS) for $580 million in 2005 had reportedly been sold for just $35 million to private investors, including Justin Timberlake. In …
Your Social Media Tweeting & Posting Legal Rights. TV … – YouTube
Find out how legally liable you are for your Twitter Tweets and Facebook postings.
Learn more about me here: www.ecommerceattorney.com and follow me here
Privacy Legal News Roundup
July 4, 2012
Trying to beat the heat? Peruse these top Privacy stories from around the web.
The Internet needs its own ‘declaration of independence’
Christian Science Monitor
A new ‘Declaration of Internet Freedom’ should spark a much-needed discussion about online rights and privacy.
Homeowners Bill of Rights passes in California
Examiner.com
According to Assembly Speaker John Perez (D-Los Angeles), the key provisions of the Homeowners Bill of Rights legislation include: “a requirement that a person or team of persons employed by a lender to be a single point of contact for the homeowner.
Facebook Joins California Mobile App Privacy Program
InformationWeek
California launched its mobile app privacy program in February 2012, just one day before the White House announced its proposed Consumer Privacy Bill of Rights. From the outset, the state announced that the six companies with the biggest mobile app …
How California’s New Homeowners’ Bill Of Rights Protects Against Wrongful Foreclosures.
ThinkProgress
The “Homeowners’ Bill of Rights,” pushed by state Attorney General Kamala Harris (D), aims to extend to the state level many of the protections ensured by the mortgage fraud settlement between six big banks and the federal government and states.
Descendants of the signers to read the Declaration of Independence on July 4
American Civil Liberties Union News and Information (blog)
“My professional career has been dedicated to advancing people’s rights and liberties as outlined in the Declaration and in the Constitution and its Bill of Rights,” said Murphy, the Director of the American Civil Liberties Union’s Washington …
Independence Day: Ghosts of SCOTUS on the fundamental right to privacy
Network World
While the Constitution may not specifically state the right to privacy, the Bill of Rights most assuredly protects aspects of privacy. In 1965, the Supreme Court ruled 7-2 on the landmark case, Griswold v. Connecticut, and the Justices referenced the …
Cash-Strapped Consumer And Privacy Groups Petition Commerce Dept For Better Participation.
techPresident
That’s the department that’s organizing the workshops that are meant to convene all U.S. stakeholders to develop a code of conduct to implement the administration’s Privacy Bill of Rights. The first workshop is taking place inside the Beltway on July …
Why Kansas City is getting Internet 100 times faster than everyone else
Alaska Dispatch
Yesterday, an impressive coalition of companies and Internet and human rights activists endorsed a Declaration of Internet Freedom that aims to start a discussion about the basic principles that should underlie online access. Among the 20000 groups or …
Celebrate your independence: You have rights as a taxpayer
Savannah Morning News
Years after the War the Bill of Rights was drafted and 10 amendments were added to our Constitution. … Privacy and confidentiality: The IRS may not discuss any of the facts and information given to them with anyone except in accordance with the law.
Do you have information or data privacy and security concerns? Contact David Adler at Leavens, Strand, Glover & Adler for a free consultation.
Perfect Pitch™ ©2009 David M. Adler, All Rights Reserved
My recent attendance at TechWeek Chicago 2012 reminded me of advice that I used to provide to start-up and technology entrepreneurs. I have spent the last 15 years of my law practice advising entrepreneurs and businesses in varying stages of development. At some point, all growing businesses will need an infusion of capital. Sometimes this comes from “friends, family and fools.” Just as often it comes from professional investors such as Angels or Venture Capitalists. If you or your business needs additional capital to get to the “next level” whether that be development of a “proof of concept,” execution of the go-to-market strategy or strategic investment in new people or technology, you will need to convince the investor that your idea or business is relevant to the target market, achievable by the people and intellectual capital behind it, and likely to result in a substantial increase in value.
It has been my experience that many entrepreneurs or CEO pitch-men lose sight of the forest for the tress. All too often, the “pitch” or presentation only focuses on one thing. Usually, it focuses too heavily on the idea or the market and not enough on the people and strategy. On the other hand successful presentations seem to incorporate three basic, yet distinct concepts, what I call the tri-partite “Perfect Pitch.” In a nutshell the Perfect Pitch answers three questions: Who Am I? What Am I? Why Am I?
Who Am I?
Answering this question tells investors about the people behind the idea. Every presentation should begin with a short, pithy and relevant description of the people and company, their history together and their qualifications for successfully commercializing this idea. For example: “John Doe, Jane Smith and Mary Jones each graduated in 2006 with a MBA from the Whoopity School Of Business. John has 5 years experience managing operations for a national retail chain. Jane has a 4 years experience as an assistant human resources manager for a Fortune 500 Company. Mary operated a small consulting business for 3 years before shutting down operations to pursue her MBA. Last year, they formed National Widget Sales Consultants (NWSC) as a Delaware LLC to capitalize on the emerging/growing/widening need for retailers to leverage the growing list of retail sales technologies.”
What Am I?
Answering this question tells the investor about the specific product or service offered and the revenue model. Put another way, answering this question tells investors what you do, how you do it and how you plan to make money. It never ceases to amaze me how many entrepreneurs forget the making-money part. They simply assume that advisors, investors and strategic partners will intuitively “get it.”
We won’t unless you tell us in plain and simple terms. If it is a product, does it stand alone or will it be incorporated into an end-product? Will it be sold wholesale, at retail, through VARs, through an inside sales team, or through an outside sales team, e.g. commissioned sales reps? How will the product be distributed? Will you have your own distribution? Will you piggy-back on another’s? Will you use a traditional courier, e.g., UPS or FedEx?
If it is a service, how will you market it? How will customers acquire it? Will it be licensed? How do you plan to keep customers coming back?
Continuing our previous example, “NWSC has created a proprietary and highly-customizable system that will be marketed and sold by an inside sales force. We will place consultants within our clients’ businesses to dissect their retail operations, identify operational and sales goals and evaluate which of the many technologies in the marketplace are the best fit for achieving those goals. NWSC generates revenue through consulting fees, commissions on technology sales and licensing the system to third-party business consultants.”
This is also the part of the presentation where you want to highlight the existence and commercial viability of any Intellectual Property including, Patents, Trademarks, Copyrighted content and Trade Secrets as well as proprietary technology or systems and methods.
Why Am I?
Now that you have convinced us that you are qualified to run this business and that you know how it will make money, you need to convince us how or why your idea meets existing or potential needs in the marketplace. Another common mistake I see is a focus on market size, penetration and growth. Yes, it’s true that VCs want to see Billion Dollar markets. But, more importantly, they want to know why your idea is going to penetrate that market and capture sales.
For example, is the market fragmented with no dominant provider? Are there segments of the market that are underserved by existing products/services? Put another way, what is your value proposition? Why will customers choose your product or service over their existing, entrenched ways of doing business? Again, don’t assume your audience will instinctively understand this. The more sophisticated the product or service, the more you will have to flesh out this value proposition.
The Bottom Line.
While following the method outlined above is not guaranteed to land you that round of financing that you are after, it will no doubt help. Paying attention to answering these three simple questions will help keep you focused, keep you on message and provide a framework for answering the types of questions that your advisors, investors and strategic partners will be asking themselves. Good Luck!
World Social Media Legal News Roundup
June 24, 2012
Law professor says social media can pose legal problems in Courtroom
Winnipeg Free Press
SASKATOON – The dean of law at the University of Saskatchewan says using social media can have negative consequences in the Courtroom – Business – Winnipeg Free Press.
Eight Ways Your Employee Social-Media Policy May Violate Federal law
AdAge.com (blog)
All employees have certain rights under federal law that social-media policies can’t restrict.
New Law to Force Identification of Trolls Set to be Unveiled
Technorati
Home / Social Media / Articles / New Law to Force Identification of Troll. … is behind the attacks on them online without having to resort to expensive legal action.
A blue wave of change Cleveland County law enforcers join move toward social media alerts
Norman Transcript
Lauri Stevens, a social media strategist at LAwS Communications, a Boston-area company, said law enforcement agencies nationwide are beginning to embrace social media.
Social media helped, hurt in hunt for suspect in triple shooting
Washington Post
Social media at times was a help, other times a hindrance in the search and eventual arrest of a suspect in the triple fatal shooting at an Alabama apartment complex.
Use social media, but use it responsibly, UAE conference hears
gulfnews.com
He said, “We do not monitor social media networks. People have the freedom to speak within the legal framework. There is no law specifically for twitter, but …
Police: Street gangs embrace social media, too
Kansas.com
Beard gave a presentation on gangs, the Internet and social media at last week’s Midwest Law Enforcement Conference on Gangs and Drugs, held in Wichita.
And…don’t forget to check out my presentation on the Law & Social Data panel at #TechWeek Chicago 2012.
The past few years have witnessed an explosion of legal and regulatory activity involving social and other new media. This session will examine several key areas, including copyright, trademark and related intellectual property concerns; defamation, obscenity and related liability; false advertising and marketing restrictions; gaming; data privacy issues presented by social media; and impacts of social media on employees and the workplace. Attendees will learn how to identify legal risks and issues before they become full-scale emergencies and how to develop appropriate policies and guidelines covering social media activity.
If you can’t make it, check out the Slideshare presentation here.
Chicago is a new kind of technology hub, and the Techweek Conference is a new type of technology conference.
The Techweek 2012 Conference showcases the technology renaissance evolving in Chicago and the midwest. June 22-26, 2012
Law & Social Data
The past few years have witnessed an explosion of legal and regulatory activity involving social and other new media. This session will examine several key areas, including copyright, trademark and related intellectual property concerns; defamation, obscenity and related liability; false advertising and marketing restrictions; gaming; data privacy issues presented by social media; and impacts of social media on employees and the workplace. Attendees will learn how to identify legal risks and issues before they become full-scale emergencies and how to develop appropriate policies and guidelines covering social media activity.
Sunday June 24, 2012 3:00pm – 3:45pm @ 3 – 8 A/B (222 Merchandise Mart Plaza, Chicago, IL)
