Bits and Bytes

Fitbit, NotPetya, RSA and China

By Paul Rosenzweig
Monday, January 29, 2018, 12:34 PM

Anonymity does not equate to privacy or security! “An interactive map posted on the Internet that shows the whereabouts of people who use fitness devices such as Fitbit also reveals highly sensitive information about the locations and activities of soldiers at U.S. military bases, in what appears to be a major security oversight.” Pro tip: Don't wear Fitbit at a secret base—it ain’t so secret anymore.

The true costs of ransomware. Four thousand servers and 45,000 computers in one company alone. “Maersk has revealed that a devastating ransomware attack which struck businesses across Europe in 2017 required close to a ‘complete infrastructure’ overhaul and the reinstallation of thousands of machines.”

Beware of Greeks or Chinese bearing gifts. The modern day equivalent of a Trojan Horse is, apparently, a free building. “In 2012, the Chinese government ‘graciously offered’ African States a gift and constructed the African Union’s headquarters in Addis Ababa. The act of soft diplomacy proved to be a rather self-serving maneuver to spy on the activities and discussions being conducted by leaders of the exclusive continental group.”

Join me at RSA in April. Pleased to say that two panels I'm on have been accepted: “Bringing Order to Chaos: The Development of Nation-State Cyber-Norms”" and “The EU's General Data Protection Regulation—Beauty or Beast?” The keynotes also look interesting. Any Lawfare readers planning to attend, drop me a line.