Your daily digest of “All Things Security” gathered, collected and researched by your very own 10Fold Security Practice team.
Big items to consider: Twitter is beginning to warn users of a possible state-sponsored hack. Anonymous has claimed responsibility in the European space agency record breach. Next Tuesday 190 countries will meet to discuss how the internet will be governed for the next ten years. Lastly, an article about the essentials for the everyday encryption technology.
Twitter has issued its first ever warning about a possible hack by state-sponsored actors, as the social media site steps up its scrutiny of possible security breaches. The alert highlights growing concern over hacking activity backed by foreign governments after a year in which high-profile cyber attacks included the breach of 22m personnel profiles at the US Department of Homeland Security.
Claiming the name Anonymous, those responsible for a weekend data breach at the European Space Agency (ESA) said the act was one of pure amusement (lulz) and not part of a larger scheme or protest. The compromised records were discovered on the ESA subdomains targeted by Anonymous, including due.esrin.esa.int, exploration.esa.int, and sci.esa.int. Once the records were copied, they were posted to a public document server and shared among various people online.
Government officials from more than 190 counties will meet next Tuesday in New York for a two-day discussion (the United Nations’ 10 Year Review of the World Summit on the Information Society, or WSIS+10 Review) that could, in principle, have a huge influence on how the Internet is governed for the next decade. One of them, the crucial one, concerns the choice between two different approaches to Internet governance. The first, usually referred to as the “multistakeholder approach”, and prevailing so far, is based on the involvement of the private sector, the civil society, the international organizations and the academia in all decisions regarding the Internet. The other, the “multilateral”, gives more powers and discretionality to the governments. This might sound like a boring discussion, but is, in fact, fundamental to the future of the Internet. That is, to our future.
The best way to stop government from pressing forward with its demands for weakening encryption — and that’s exactly what backdoors would accomplish — is to make encryption ubiquitous and mainstream. If everyone is using encryption, from encrypted chat to encrypted email to encrypted Web surfing and everything in between, then it becomes much harder to argue that encryption protects only the select few who have something to hide.