I feel a little lazy this week. We just got back from a very busy spring with two cruises: one from Vancouver around Hawaii and back to Vancouver on Holland America and the other from Amsterdam to Budapest on a Viking Longboat. I strongly recommend both cruises. Between the trips we attended a family wedding at the other end of the state.
But cyber attacks continue unabated. Some of the more recent “highlights:”
- On top of the 191 million voter registration records stolen in December 2015, another 56 million records were captured and exposed, probably by a Christian right-wing organization. While a lot of information in your voter registration file is public, it does include name, address, birth date, and party affiliation. Organizations can use that information to correlate other non-public information including voting history, religious affiliation, charity donations, work place, income level, political leaning, and some really strange information like whether you like auto racing.
- State Farm had information on 77,000 customers stolen by a hack into DAC Group, a large advertising agency in the US and Canada. While it currently seems that no financial information was stolen; it is likely that these customers had their email addresses stolen. What is instructive, however, is that this information was stolen from a development server at DAC. Security on development systems is often not as comprehensive as on a production system, and one of the reasons to have a development system is to confirm that any enhancements have not impacted data security before the software moves to the production environment. You should never use production data in a development environment. DAC should have known better.
- A Japanese travel agency, JTB Corp, had personal information for almost 8 million people. One of JTB group companies experienced a targeted email attack, and an employee opened an attached file, which infected their server.
- On the lighter side, the Cowboys Casino in Calgary, Canada, was attacked and personal information on less than 2,000 customers and staff were stolen. You parents told you not to gamble.
These are just a few of dozens of attacks in June 2016. If you are not having trouble sleeping, check out Norse real-time threat intelligence. This shows a small sub-set in real-time of network attacks based on their service and port. This does not include email or other application-level or OS-level attacks.
The last word:
For those of you in the United States, enjoy the Fourth of July and think about the freedoms we have here.
A number of people we met on the European cruise were from the UK, and this cruise was just before the BREXIT election. Most of them were concerned that the UK might vote to leave. From my perspective, it is past time for the UK to leave the EU. The EU bureaucrats control far too much of what each individual country and company must do, down to specifying the size and shape of wine bottles. These bureaucrats all seem to be socialists. As a result, the growth of the European economy is in last place compared to Africa, Asia, North and South America. However, the European economy is growing faster than the economy of Antarctica.
In 1992, “everyone” predicted dire consequences for the UK economy when it refused to abandon the Pound and move to the Euro. In 1990, the UK entered the European Exchange Rate Mechanism, a prerequisite for adopting the Euro. The UK spent over £6 billion pounds trying to keep its currency within the narrow limits prescribed by the EU, but, led by Prime Minister Tony Blair and his successor Gordon Brown, finally ruled out conversion to the Euro in 2007. One of the best moves in recent UK history.
Before the BREXIT vote, the UK was the fifth largest economy in the world. Do you really think a European company will cease to trade with a UK company because they are no longer in the EU?
Keep your sense of humor.