<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0"
     xmlns:content="http://purl.org/rss/1.0/modules/content/"
     xmlns:dc="https://purl.org/dc/elements/1.1/"
     xmlns:dcterms="http://purl.org/dc/terms/"
     xmlns:media="http://search.yahoo.com/mrss/"
     xmlns:atom="http://www.w3.org/2005/Atom"
     xmlns:cf="https://www.futureplc.com/rss/content-flags"
>
    <channel>
                    <atom:link href="https://www.nexttv.com/feeds/tag/cybersecurity" rel="self" type="application/rss+xml" />
                            <title><![CDATA[ Latest from Next TV in Cybersecurity ]]></title>
                <link>https://www.nexttv.com/tag/cybersecurity</link>
        <description><![CDATA[ All the latest cybersecurity content from the Next TV team ]]></description>
                                    <lastBuildDate>Mon, 15 Jul 2024 19:24:35 +0000</lastBuildDate>
                            <language>en</language>
                                <item>
                                                            <title><![CDATA[ AT&T Reportedly Paid Almost $400,000 in Ransom to Hackers to Delete Private Customer Data ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/atandt-reportedly-paid-almost-dollar400000-in-ransom-to-hackers-to-delete-private-customer-data</link>
                                                                            <description>
                            <![CDATA[ Among the information leaked are telephone numbers and cell site IDs, which could potentially be used to locate customers ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">zKxRdLZPVn8qBbngHecHJk</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/Yc3tiqmMMVMST3dJ4G4fpH-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 15 Jul 2024 19:24:35 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Business]]></category>
                                                                                                <author><![CDATA[ jackreid598@gmail.com (Jack Reid) ]]></author>                    <dc:creator><![CDATA[ Jack Reid ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/Yc3tiqmMMVMST3dJ4G4fpH-1280-80.jpg">
                                                            <media:credit><![CDATA[Ronald Martinez/Getty Images]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[The logo of AT&amp;T outside of AT&amp;T corporate headquarters on March 13, 2020 in Dallas, Texas.]]></media:description>                                                            <media:text><![CDATA[The logo of AT&amp;T outside of AT&amp;T corporate headquarters on March 13, 2020 in Dallas, Texas.]]></media:text>
                                <media:title type="plain"><![CDATA[The logo of AT&amp;T outside of AT&amp;T corporate headquarters on March 13, 2020 in Dallas, Texas.]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/Yc3tiqmMMVMST3dJ4G4fpH-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>AT&T paid a hacker group about $400,000 to delete customer data that was stolen in a widespread leak earlier this year, <a href="https://www.bloomberg.com/news/articles/2024-07-14/hacker-says-at-t-paid-about-400-000-to-erase-sensitive-data?embedded-checkout=true" target="_blank"><strong>according to Bloomberg</strong></a>.</p><p>The Dallas telecom reportedly negotiated a roughly $380,000 payment through an intermediary called Reddington, which acted on behalf of the ShinyHunters hacking group.</p><p>AT&T <a href="https://about.att.com/story/2024/addressing-illegal-download.html" target="_blank"><strong>disclosed Friday</strong></a> that hackers had leaked private information from “nearly all” of its customers through a third-party cloud service called Snowflake, which AT&T uses to store data.</p><p>The breach is one of several compromises associated with the software provider Snowflake, as the company confirmed Friday that the AT&T hack was connected to other incidents with Live Nation Inc.’s Ticketmaster and online loan marketplace LendingTree.</p><p>Bloomberg called it one of the worst security breaches of a U.S. telecom company in history.</p><p>According to <a href="https://www.wired.com/story/atandt-paid-hacker-300000-to-delete-stolen-call-records/" target="_blank"><em><strong>Wired</strong></em></a>, AT&T has received a video to prove that the hackers have deleted all customer data.</p><p>AT&T has yet to confirm whether it received the video, but said that it “does not believe that the data is publicly available.”</p><p>The reported payout is relatively low compared to recent ransom payments made by other high-profile companies including UnitedHealthcare, which made a $22 million ransom payment in February, according to Bloomberg.</p><p>“For a big company like AT&T, $380,000 is a drop in the ocean,” Jon DiMaggio, chief security strategist at Analyst1, told Bloomberg.</p><p>ShinyHunters reportedly demanded an initial ransom of $1 million, but AT&T was able to talk the group down to a lower price, which it paid on May 17th in Bitcoin, <em>Wired</em> said.</p><p>The stolen data included telephone numbers and cell site IDs, information that could potentially be used to locate and identify customers.</p><p>However, AT&T says other sensitive data such as the content of texts, social security numbers and private personal information were not leaked.</p><p>AT&T didn&apos;t immediately respond to our requests for comment. </p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ FCC Proposes IoT Cybersecurity Seal of Government Approval ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/fcc-proposes-iot-cybersecurity-seal-of-government-approval</link>
                                                                            <description>
                            <![CDATA[ Agency seeks input on who should oversee voluntary program ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">vxN7Pxxcn33hqtbxcZmb9A</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/czHeyQGUeUs3fFopyUTMBX-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 10 Aug 2023 18:18:01 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/czHeyQGUeUs3fFopyUTMBX-1280-80.jpg">
                                                            <media:credit><![CDATA[Oscar Wong/Getty Images]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[woman using IoT refrigerator]]></media:description>                                                            <media:text><![CDATA[woman using IoT refrigerator]]></media:text>
                                <media:title type="plain"><![CDATA[woman using IoT refrigerator]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/czHeyQGUeUs3fFopyUTMBX-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>The Federal Communications Commission has officially proposed a voluntary cybersecurity labeling program for the “things” in the <a href="https://www.nexttv.com/tag/internet-of-things">Internet of Things (IoT)</a>.</p><p>FCC chair Jessica Rosenworcel on Thursday (August 10) released a <a href="https://docs.fcc.gov/public/attachments/FCC-23-65A1.pdf" target="_blank">notice of proposed rulmemaking (NPRM)</a> seeking comment on how to institute such a program for smart devices that meet certain privacy and security standards, similar to <a href="https://www.nexttv.com/news/pay-tv-firms-cea-energy-agree-set-top-standards-262511">the Energy Star program for devices, including cable equipment</a>, that meet efficient energy-use standards.</p><p>Rosenworcel said the mark, billed as a “trusted, government-backed symbol,” would help consumers make more informed choices about their devices.</p><p>“The proliferation of consumer IoT devices has opened the door to cyberattacks on consumer products that can have serious privacy and national security consequences, ranging from theft of personal information to disruption of critical infrastructure,” the NRPM said.</p><p>The FCC IoT stamp of approval would come in the form of a U.S. Cyber Trust Mark, the goal being to distinguish trustworthy products from nontrustworthy devices and “create incentives for manufacturers to meet higher cybersecurity standards.”</p><p>The FCC cited the estimated 1 billion to 5 billion attacks on smart devices in the first half of 2021 alone in arguing for the need for a new seal of cybersecurity approval.</p><p>The mark would be based on criteria from the National Institute of Standards.</p><p>The FCC is seeking lots of comments on just how to set up the program, including which devices should be eligible, who should oversee it, how to demonstrate compliance and prevent unauthorized use, and how to let consumers know about it.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ FCC Launches Inquiry Into Threats to Internet Routing ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/fcc-launches-inquiry-into-threats-to-internet-routing</link>
                                                                            <description>
                            <![CDATA[ Potential internet misuse by Russians helps drive unanimous vote ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">MLAaDtRnndWSGKdPwu9Zvg</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/i2qZWtB9GfxYP7asQDURuh-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 28 Feb 2022 21:39:05 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/i2qZWtB9GfxYP7asQDURuh-1280-80.jpg">
                                                            <media:credit><![CDATA[FCC]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[FCC&#039;s 2020 seal]]></media:description>                                                            <media:text><![CDATA[FCC&#039;s 2020 seal]]></media:text>
                                <media:title type="plain"><![CDATA[FCC&#039;s 2020 seal]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/i2qZWtB9GfxYP7asQDURuh-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>In the wake of the Department of Homeland Security’s warning about cyber-threats related to <a href="https://theweek.com/russo-ukrainian-war/1010724/17-mile-long-russian-convoy-reaches-outskirts-of-kyiv">Russia&apos;s invasion of Ukraine</a>, the <a href="https://www.nexttv.com/tag/fcc">Federal Communications Commission</a> has launched a proceeding to examine potential threats to the global internet routing system, including any equity issues that might implicate.</p><p>The FCC commissioners uninamously adopted a notice of inquiry into the security of the <a href="https://docs.fcc.gov/public/attachments/FCC-22-18A1.pdf">Border Gateway Protocol (BGP)</a>, the internet&apos;s global routing system for data including email, e-commerce, banking, interconnected voice-over-IP service and 911.</p><p>The agency is looking to prevent bad actors from hijacking the protocol, which it said could expose web users to data theft, extortion, espionage and insecure transactions.</p><p><a href="https://www.nexttv.com/news/cta-pledges-to-back-russia-tech-sanctions">Also: CTA Pledges to Back Russia Tech Sanctions</a></p><p>The FCC has already warned communications providers to review their cybersecurity protections and practices, given that their communications networks are critical to transportation, gas, electricity, water and financial markets.</p><p>The FCC said Russian networks have been suspected of hijacking BGP to rout traffic through their networks under "unexplained" circumstances.</p><p>Among the issues on which the FCC wants comments:</p><p>1.) “Steps the Commission, in coordination with other federal agencies, could take to prevent BGP hijacking or otherwise promote secure Internet routing.”</p><p>2.) “Whether the Commission has a role in helping U.S. network operators deploy BGP security measures.”</p><p>3.) “[Its] authority to promote the security of Internet routing through regulation, including as it may apply to wireless and wireline Internet Service Providers, Internet Exchange Providers, interconnected VoIP providers, operators of content delivery networks, cloud service providers, and other enterprise and organizational stakeholders.”</p><p>4.) “Whether regulatory clarity could help network operators prioritize investments in the security of their networks.”</p><p>5.) “How our proposals may promote or inhibit advances in diversity, equity, inclusion and accessibility.” ■</p><p><br></p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ House Passes Trio of Communications Bills ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/house-passes-trio-of-communications-bills</link>
                                                                            <description>
                            <![CDATA[ Includes directive for FCC to study 6G wireless ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">iQpkYax8azvudvyz7rw2od</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/YXiwsRS3oTWFuVr2iRyQ5P-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 02 Dec 2021 16:06:18 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/YXiwsRS3oTWFuVr2iRyQ5P-1280-80.jpg">
                                                            <media:credit><![CDATA[Gary Arlen]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[Capitol Hill]]></media:description>                                                            <media:text><![CDATA[Capitol Hill]]></media:text>
                                <media:title type="plain"><![CDATA[Capitol Hill]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/YXiwsRS3oTWFuVr2iRyQ5P-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>The House on Thursday (Dec. 2) passed three communications-related bills, including one requiring the <a href="https://www.nexttv.com/tag/fcc"><u>Federal Communications Commission</u></a> to start kicking the tires on 6G wireless.</p><p>The bills are the <a href="https://www.nexttv.com/news/house-eandc-extends-suspect-tech-ban-to-non-subsidized-nets">FUTURE Networks Act (HR 4045)</a>, the Understanding Cybersecurity of Mobile Networks Act (HR 2685) and the American Cybersecurity Literacy Act (HR 4055).</p><p>The <a href="https://energycommerce.house.gov/sites/democrats.energycommerce.house.gov/files/documents/BILLS-1174045ih.pdf"><u>Future Uses of Technology Upholding Reliable and Enhanced Networks [FUTURE] Act</u></a><u> </u>directs the FCC to create a 6G task force comprising public interest groups, communications network businesses (though not ones considered to be “not trusted,” the law makes clear), and government stakeholders.</p><p>The bill defines <a href="https://www.nexttv.com/news/fcc-continues-crackdown-on-suspect-tech">“not trusted"</a> as technology “owned by, controlled by, or subject to the influence of a foreign adversary” or that otherwise “poses a threat to the national security of the United States.”</p><p>Within a year, the FCC must report back to Congress on, among other things, the status of industry-led standards, supply chain security limitations, and how to coordinate siting, deployment and adoption of 6G.</p><p>The task force will have to produce a draft of that report within six months and put it out for public comment.</p><p>The bills together are meant to ensure the country leads in next-generation communications technology, said the Republican leadership of the House Energy & Commerce Committee, adding that they “will strengthen our cybersecurity awareness, bolster our leadership in 6G technology and reinforce the security of our mobile communications network.”</p><p>The bills passed out of the committee back in July.</p><p>The <a href="https://energycommerce.house.gov/sites/democrats.energycommerce.house.gov/files/documents/BILLS-1172685ih.pdf"><u>“Understanding Cybersecurity of Mobile Networks Act,”</u></a> which requires the National Telecommunications and Information Administration (NTIA), the Biden administration&apos;s chief telecom policy advisory arm, to study and report on the cybersecurity of mobile broadband nets and their susceptibility to attacks and surveillance by “adversaries.”</p><p>HR 4055, the <a href="https://energycommerce.house.gov/sites/democrats.energycommerce.house.gov/files/documents/BILLS-1174055ih.pdf"><u>“American Cybersecurity Literacy Act,”</u></a> would require the NTIA to educate the public about cybersecurity risks and best practices.</p><p>“The Understanding Cybersecurity of Mobile Networks Act gives policymakers a better understanding of the state of the cybersecurity in our wireless networks, which is a matter of national security,” Rep. <a href="https://www.nexttv.com/tag/anna-eshoo">Anna Eshoo</a> (D-Calif.), who was the driving force behind that and the American Cybersecurity Literacy Act, said.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ House GOP Troubled by T-Mobile Breach ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/house-gop-troubled-by-t-mobile-breach</link>
                                                                            <description>
                            <![CDATA[ Say it buttresses argument for data protection legislation ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">RBvH6DrknhoyDU3obcDPUc</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/SodpqSDHfA9XpoayemVoyT-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 19 Aug 2021 20:42:30 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/SodpqSDHfA9XpoayemVoyT-1280-80.jpg">
                                                            <media:credit><![CDATA[ Andrew Brookes via Getty Images]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[A man types on a laptop in the dark]]></media:description>                                                            <media:text><![CDATA[A man types on a laptop in the dark]]></media:text>
                                <media:title type="plain"><![CDATA[A man types on a laptop in the dark]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/SodpqSDHfA9XpoayemVoyT-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>House Energy & Commerce Committee Republican leadership said Thursday (Aug. 19) that they had big issues with <a href="https://www.nexttv.com/news/report-fcc-investigating-t-mobile-data-breach">the theft of data from T-Mobil</a>e, saying Congress has to pass privacy legislation ASAP.</p><p>“The T-Mobile data breach is of serious concern. While we have more to learn to determine how this breach happened and its potential wide-ranging consequences, we urge all companies to do everything they can to safeguard and protect American’s personal information," they said in a statement.</p><p>"They" were E&C ranking member Cathy McMorris Rodgers (R-Wash.), Communications and Technology Subcommittee ranking member Bob Latta (R-Ohio), and Consumer Protection ranking member Gus Bilirakis (R-Fla.).</p><p>They pointed out that last month the committee approved bipartisan legislation to promote cybersecurity information sharing.</p><p>That <a href="https://www.nexttv.com/news/house-eandc-extends-suspect-tech-ban-to-non-subsidized-nets">appeared to be a reference to H.R. 4046</a>, the “NTIA Policy and Cybersecurity Coordination Act,” which would authorize the NTIA&apos;s Office of Policy Analysis and Development and re-christen it the Office of Policy Development and Cybersecurity.</p><p>The office administers the network security information sharing program established by Congress in the Secure and Trusted Communications Act. It <a href="https://www.nexttv.com/news/house-eandc-extends-suspect-tech-ban-to-non-subsidized-nets">passed along with a raft of tech/cybersecurity bills</a> last month.</p><p>But they said more needs to be done. "We need to build on that work to protect Americans’ privacy. This breach is yet another example of why Congress must pass a national privacy and data security law. We need strong national standards that ensure industries can innovate, strengthen cybersecurity and data privacy, and keep up with the evolving ways bad actors steal personal information.”</p><p>Both Republicans and Democrats have argued for national legislation, but have yet to agree on just what should be in that law.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Hackers Reportedly Target Cox Media Group Stations ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/hackers-reportedly-target-cox-media-group-stations</link>
                                                                            <description>
                            <![CDATA[ Reports say ransomware attack affected company’s radio and television streams ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">BsQ27FGsyWeBHPZfHvPEQo</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/SodpqSDHfA9XpoayemVoyT-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Fri, 04 Jun 2021 22:32:18 +0000</pubDate>                                                                                                                                <updated>Wed, 09 Jun 2021 18:29:34 +0000</updated>
                                                                                                                                            <category><![CDATA[Business]]></category>
                                                    <category><![CDATA[Stations]]></category>
                                                                                                <author><![CDATA[ michael.farrell@futurenet.com (Mike Farrell) ]]></author>                    <dc:creator><![CDATA[ Mike Farrell ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/W74hEd5BFbwpWEgrytvFyP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/SodpqSDHfA9XpoayemVoyT-1280-80.jpg">
                                                            <media:credit><![CDATA[ Andrew Brookes via Getty Images]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[A man types on a laptop in the dark]]></media:description>                                                            <media:text><![CDATA[A man types on a laptop in the dark]]></media:text>
                                <media:title type="plain"><![CDATA[A man types on a laptop in the dark]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/SodpqSDHfA9XpoayemVoyT-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>A day after live streams for its radio and television stations were attacked by hackers in an apparent ransomware incident, <a href="https://www.nexttv.com/tag/cox-media-group">Cox Media Group</a> properties across the country were still largely unavailable.</p><p>Cox Media owns 65 radio stations in 11 markets, 33 television stations in 20 markets, and several multi-platform streaming video and digital platforms. The TV stations, in markets like Boston; Pittsburgh; Dayton, Ohio; Seattle; and Tulsa, Oklahoma are a mixture of major network affiliates like ABC, Fox, CBS, NBC and My Network TV and independents. </p><p>According to a report in <a href="http://www.insideradio.com/free/cox-media-group-stations-still-offline-a-day-after-apparent-malware-attack/article_7c619380-c506-11eb-9b7b-4f6576d00aa0.html"><em>Inside Radio</em></a>, the attack began on the morning of June 3, and was apparently centered on internal networks and live streaming capabilities such as web streams and mobile apps at the Cox Media properties. Websites for the stations and most programming remained unharmed, but according to Inside Radio some live stream programming and newscasts had to be canceled. </p><p>The attack apparently didn’t affect traditional pay TV feeds for the channels. Dish Network, which reached a carriage deal with Cox Media for about 14 channels in December, said it experienced no issues with the broadcaster. </p><p>Cox Media representatives did not return requests for comment, but according to reports, several stations informed employees to shut down their work computers and phones on June 3.</p><p><a href="https://www.nbcnews.com/tech/security/tv-news-stations-become-apparent-target-next-cyberattack-n1269662">NBC News</a> reported that at least two stations — ABC affiliate WFTV in Orlando, Florida, and NBC affiliate WPXI in Pittsburgh — were affected, with WFTV telling workers to stay home Thursday.  <a href="https://thedesk.matthewkeys.net/2021/06/cox-media-group-ransomware-attack/ ">Other reports</a> claimed that Cox stations in Charlotte, North Carolina ABC affiliate WSOC-TV and Tulsa Fox affiliate KOKI-TV were affected as well. As of Friday afternoon some reports said a few of the stations were beginning to resume their online streams, but streams for Cox Media <a href=" https://www.wedr.com/">radio stations were still unavailable.</a></p><p>As of 6 p.m. ET Friday, online streaming for Cox Media’s Alexandria, Louisiana ABC affiliate KLAX-TV, Atlanta ABC affiliate WSB-TV, Boston Fox affiliate WFXT, Dayton, Ohio CBS affiliate WHIO-TV, Charlotte ABC affiliate WSOC-TV, Orlando ABC affiliate WFTV and Tulsa Fox affiliate KOKI-TV was either unavailable or showing partial replays of old newscasts. </p><p>Streaming services like <a href="https://twitter.com/hulu_support/status/1400558682564444168">Hulu Live</a>, which carry local broadcast streams, also were impacted. Hulu Live temporarily replaced WSB-TV’s broadcast feed with ABC News Live until the local feed was restored. </p><p>According to a report in cybersecurity publication <a href="https://therecord.media/live-streams-go-down-across-cox-radio-tv-stations-in-apparent-ransomware-attack/ "><em>The Record,</em></a> Cox Media employees were saying earlier this morning that they had shut down their systems in time and that they “should be back up and running soon.” </p><p>The attack comes shortly after some high-profile ransomware incidents, including the <a href="https://www.theguardian.com/technology/2021/may/19/colonial-pipeline-cyber-attack-ransom ">May hack of the Colonial Pipeline </a>which choked off gasoline supplies up and down the East Coast for days. Colonial  reportedly paid $4.4 million to hackers to get fuel flowing again. Earlier this month, <a href="https://www.nytimes.com/2021/06/01/business/meat-plant-cyberattack-jbs.html">meat producer JBS shut down nine beef plants </a>in the U.S. after a similar ransomware attack.  </p><p>On Thursday, deputy national security adviser Anne Neuberger issued an <a href="https://www.nytimes.com/2021/06/03/us/politics/ransomware-cybersecurity-infrastructure.html  ">open letter</a> urging companies to take security precautions to protect against ransomware attacks.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Survey: Small Infrastructure Businesses Have Big Cybersecurity Issues ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/survey-small-infrastructure-businesses-have-big-cybersecurity-issues</link>
                                                                            <description>
                            <![CDATA[ USTelecom finds 75% of SMBs suffered breaches ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">eC99rUSKCmRMU4Hz96vu46</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/nTaNpuYyB7HgvrvDhNgBhd-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 04 Mar 2021 16:19:01 +0000</pubDate>                                                                                                                                <updated>Thu, 04 Mar 2021 16:29:39 +0000</updated>
                                                                                                                                            <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/nTaNpuYyB7HgvrvDhNgBhd-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[USTelecom Cybersecurity survey]]></media:description>                                                            <media:text><![CDATA[USTelecom Cybersecurity survey]]></media:text>
                                <media:title type="plain"><![CDATA[USTelecom Cybersecurity survey]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/nTaNpuYyB7HgvrvDhNgBhd-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>A new USTelecom study of the cybersecurity-readiness of small and medium-sized businesses operating critical infrastructure and found them generally wanting at a risk to national security.</p><p>USTelecom’s <a href="https://www.ustelecom.org/research/2021-cybersecurity-survey-critical-infrastructure-small-and-medium-sized-businesses/">2021 Cybersecurity Survey: Critical Infrastructure Small and Medium-Sized Businesses (SMBs)</a> looked at communications networks as well as energy, financial and water, and found small businesses involved in all those were particularly vulnerable to breaches and can take longer to identify and recover from them (on average seven-and-a-half-months to fully recover).</p><p><a href="https://www.nexttv.com/news/dca-says-covid-fueled-pirate-streaming-is-big-malware-threat">Also Read: COVID-19 Related Pirate Streaming Is Big Malware Threat</a></p><p>Fully three quarters of those businesses surveyed said they had experienced a cyber breach while a majority (59%) said that their breach(es) had "stopped" productivity.</p><p>"Don’t be fooled – these companies may be small or have fewer employees than their counterparts – but they play a big role in operating and safeguarding our country’s critical infrastructure, including energy, financial, water and communications assets," said USTelecom SVP Robert Mayer in announcing the study.</p><p>The survey found that the cost, on average, to resolve a breach was $170,000, while 46% said they also lost customers because of breaches.</p><p><a href="https://www.nexttv.com/news/iot-cybersecurity-bill-signed-into-law">Also Read: IoT Cybersecurity into Law</a></p><p>USTelecom offered up some recommendations for mitigating cybersecurity risks: 1) conduct regular training; 2) revisit and update policies and procedures; 3) update system configurations; 4) conduct annual risk assessments; 5) conduct post-breach assessments; 6) evaluate in-house capabilities annually; 7) have cybersecurity insurance; 8) share information formally and informally; 9) conduct regular briefings; 10) dedicate at least 10%-25% of IT budgets to cybersecurity.</p><p>USTelecom conducted 14 in-depth online surveys with SMB CEOs and C-level executives. Usable responses were obtained from 323 respondents.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Increasing Challenges for Disunified Internet Ecosystem, SOTN Speakers Contend ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/blogs/increasing-challenges-for-disunified-internet-ecosystem-sotn-speakers-contend</link>
                                                                            <description>
                            <![CDATA[ Security, digital divide, AI control, capacity management among hurdles cited by policymakers, analysts at virtual annual event ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">R42z42qvGYfHTGtVJcGNVb</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/qEvCrJRXaegjPdGfZ5krhE-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 03 Feb 2021 21:47:24 +0000</pubDate>                                                                                                                                <updated>Wed, 03 Feb 2021 21:48:05 +0000</updated>
                                                                                                                                            <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ garyarlen@gmail.com (Gary Arlen) ]]></author>                    <dc:creator><![CDATA[ Gary Arlen ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/77vzvgXxLcw7QmjLLWvE7Y.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/qEvCrJRXaegjPdGfZ5krhE-1280-80.jpg">
                                                            <media:credit><![CDATA[Internet Education Foundation]]></media:credit>
                                                                                                                                                                        <media:description><![CDATA[Reps. Cathy McMorris Rodgers, Kelly Armstrong, John Katko spoke at virtual SOTN ]]></media:description>                                                            <media:text><![CDATA[SOTN logo]]></media:text>
                                <media:title type="plain"><![CDATA[SOTN logo]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/qEvCrJRXaegjPdGfZ5krhE-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>The year ahead will bring momentous challenges to digital ecosystems, according to dozens of policymakers and industry analysts who offered their visions at the annual “State of the Net” conference. They focused on the digital divide, cybersecurity, privacy, Section 230 oversight and the encouragement (but control) of fast-emerging technologies such as artificial intelligence during the two-day virtual event last week. </p><p>Many of the public officials, in their remarks, also shot down the concept of “unity” as enunciated a week earlier in President Biden’s inaugural address. Their presentations offered a contentious glimpse of what’s ahead, frequently laced with interpretations of how the COVID-19 recovery process will affect telecommunications and media policy. The 2021 edition of SOTN presented an especially volatile annual amalgam of achievements and complaints; the event is produced by the <a href="https://www.neted.org">Internet Education Foundation.</a></p><p>Among the three Members of the House of Representatives who spoke, Rep. Cathy McMorris Rodgers (R-Wash.) was the most critical of President Biden – challenging his first-day-in-office action to reverse a Trump Administration order to protect the electrical grid. Rodgers, the ranking member of the House Energy & Commerce Committee, also praised former FCC Chairman Ajit Pai’s spectrum policy actions.  </p><p>Reflecting her interest in infrastructure – especially power grid issues, Rodgers chastised President Biden’s moves “to weaken the grid.”</p><p>“On his first day, President Biden issued an order freezing the … executive order from last year,” Rodgers said, citing the SolarWinds cybersecurity hack. “It’s incredibly disappointing that President Biden has taken this action to weaken our grid. I hope that the Biden administration will reconsider that decision as quickly as possible; our grid is too critical to leave it vulnerable to hostile efforts of China and other foreign adversaries.”</p><p>In broader statements, Rodgers pressed her support for emerging technologies, citing her sponsorship of the  “American Competitiveness of a More Productive Emerging Tech Economy (the American COMPETE) Act” last year, which encourage U.S. leadership in Internet of Things, artificial intelligence, blockchain and other advanced projects.</p><p><a href="https://www.nexttv.com/news/house-passes-american-compete-act">Also Read: House Passes American COMPETE Act</a></p><p>“We must ensure emerging technologies such as artificial intelligence are developed with western values to counter and isolate China,” Rodgers said. She heaped considerable praise on the FCC’s Pai for his “significant progress in bringing the next generation of wireless communications to Americans” and making “unprecedented amounts of spectrum available to the private sector for commercial deployment.”</p><p><a href="https://www.nexttv.com/news/klobuchar-pushes-competition-policy-to-enhance-antitrust-crackdown">Also Read: Sen. Amy Klobuchar Pushes ‘Competition Policy’ to Enhance Antitrust Crackdown </a></p><p>Rep. John Katko (R-N.Y.) focused on cybersecurity and the digital divide, reflecting his role as ranking member of the House Homeland Security Committee and on the House Transportation and Infrastructure Committee. He insisted that America needs “to better understand the nature and extent of third-party cyber-risks.”</p><p>“We need to rethink our fragmented approach to government security by centralizing authority,” Katko said. Although he cited the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security as a natural focal point, he argued that CISA shouldn’t take authority away from the other agencies, but rather be “a good clearing house…[and] advisor” for the entire dot.gov cyber-realm. </p><p>“We need to whack the hell out of the bad guys when they commit these acts like SolarWinds,” he added, referring to the massive December hack that assaulted government and corporate networks. </p><p>Rep. Kelly Armstrong (R-N.D.), who sits on the House Judiciary Committee’s Antitrust Subcommittee, focused on the need for “coordination between the Judiciary and Commerce committees” as Congress plunges into the intertwined relationships between monopoly, privacy and use of consumer proprietary information.</p><p>“We cannot avoid the fact that user data is the coin of the realm,” Armstrong said. He described as vital the need for use of data during upcoming tech antitrust investigations, characterizing use of personal data as a major factor in dominant firms’ “anti-competitive conduct.”</p><p>“We must ask whether privacy measures are being used as a sword against competitors,” he said. “We must ask the same question when a company cites privacy as justification for consolidating its ad tech stack by requiring all ad purchases on its platforms to be routed through its demand side tools. … We cannot consider these issues in a silo. Tech antitrust and data privacy are intrinsically linked; our responses must acknowledge this fact.”</p><p><a href="https://www.nexttv.com/news/sec-230-gets-academic-once-over-at-state-of-net-conference">Also Read: Sec. 230 gets Academic Once-Over at State of Net Conference</a></p><h2 id="citing-covid-19-era-successes-reducing-digital-divide">Citing COVID-19 Era Successes; Reducing Digital Divide</h2><p><br></p><p>During a session on “Resiliency and Network Performance,” Matt Toomey, VP of broadband technology at NCTA: The Internet & Television Association, lauded cross-industry collaboration within the broadband sector during the past year; he characterized it as a way to “to keep America connected” by focusing on adaptive video technology.</p><figure class="van-image-figure pull-left" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' style="max-width:202px;"><p class="vanilla-image-block" style="padding-top:136.14%;"><img id="nLtHBHhWCUyfD8hFF35NbF" name="Matt Toomey NCTA.jpg" alt="Matt Toomey" src="https://cdn.mos.cms.futurecdn.net/nLtHBHhWCUyfD8hFF35NbF.jpg" mos="" align="left" fullscreen="" width="202" height="275" attribution="" endorsement="" class="pull-left"></p></div></div><figcaption itemprop="caption description" class="pull-left"><span class="caption-text">Matt Toomey, NCTA  </span><span class="credit" itemprop="copyrightHolder">(Image credit: SOTN)</span></figcaption></figure><p>“It&apos;s a testament to the adaptiveness of how … the video streaming guys work; it&apos;s just phenomenal,” Toomey said. “There&apos;s lots of evidence of collaboration across the board between operators and content providers.” He cited experiences in which engineers exchanged reports between their “war rooms … to make sure that content from content providers was able to get to ISP networks and … to make any adjustments in real time.”  </p><p><a href="https://www.nexttv.com/news/fccs-geoffrey-starks-digital-disparities-must-not-stand">Also Read: FCC&apos;s Geoffrey Starks: Digital Disparities Must Not Stand</a></p><p>Maurita Coley, president and CEO, Multicultural Media, Telecom and Internet Council (MMTC) cited the broadband achievements of the past year as a model for what should be addressed in other pending policy issues, notably in bridging the digital divide.</p><p>“Maybe you could call it ‘trickle up,’” she said, describing the need for an “emergency broadband benefit.” Supporting the Biden $3.2 billion plan for very low-income family subsidies that would include broadband benefits, Cole cited endorsements from top executives. She said it is “absolutely essential that everyone have access to broadband, not just during the pandemic.” Coley included senior citizens and tribal communities as needing support for permanent access to broadband services.</p><figure class="van-image-figure " data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' style="max-width:521px;"><p class="vanilla-image-block" style="padding-top:32.05%;"><img id="6hNY9Yq3yWWR2yNM3b5rKF" name="Coley Mehlman Sepulveda.jpg" alt="Coley Mehlman Sepulveda" src="https://cdn.mos.cms.futurecdn.net/6hNY9Yq3yWWR2yNM3b5rKF.jpg" mos="" align="middle" fullscreen="" width="521" height="167" attribution="" endorsement="" class=""></p></div></div><figcaption itemprop="caption description" class=""><span class="caption-text">Maurita Coley, Bruce Mehlman, Daniel Sepulveda </span><span class="credit" itemprop="copyrightHolder">(Image credit: SOTN)</span></figcaption></figure><p>Evan Marwell, founder/CEO of Education Super Highway, pointed out how policy commitments can change the access equation. He noted that in 2013 only 10% of students had good internet access in their classrooms; by last year, that factor had risen to 99.7%. He cited the value of the impetus from the Obama administration.</p><p>Addressing the digital divide, Marwell said, “Somebody needs to step up and that somebody probably needs to be President Biden.” He urged that the President “set a national goal of connecting all of our households and our students.” Citing the need for better broadband mapping, Marwell urged more work on collecting “data about who isn&apos;t connected.”</p><p>“It&apos;s really hard to solve a problem like this if you don&apos;t know where the problem is,” he said. “The broadband benefit is a great opportunity to make progress in… tackling the digital divide.” And he criticized the FCC for not reserving “a portion of the fund for the unconnected.” He supported Coley’s recommendation “to make this benefit permanent.”</p><p> “The Biden administration needs a clear measurable goal that all of the different departments and agencies … [are]  working towards that is measurable, and they need to track progress against it,” Marwell said. He added the need for a unified “implementation strategy.”</p><p>At a SOTN session on internet geopolitics, several top former federal officials plowed more deeply into these access issues.</p><p>Bruce Mehlman, former Assistant Secretary of Commerce for Technology Policy at the  Department of Commerce (G.W. Bush administration), pointed out the differing viewpoints of Democrats and Republicans on domestic broadband rollouts.</p><p>“There will be a lot of discussion … about digital inclusion questions such as, algorithmic bias or just the diversity within the workforce of tech companies,” said Mehlman, now a principal at Mehlman Castagnetti Rosen & Thomas, a government relations firm. “Republicans have investments in rural access, and Democrats have investment in less-rural affordability.”  He called that an opportunity for dealing and because “there is an imperative to get it done.” Mehlman also cited “the opportunity for platforms to empower civil rights groups” but warned that the challenge of operating in “a post truth world where everybody starts with their own facts.”</p><p>“Smart infrastructure makes all the difference. It can make a country far more productive, but it also enables the surveillance state. So how do you get the balance right on things like crypto?” he asked rhetorically. Praising the U.S. tech sector, Mehlman also warned that, “We need to do a better job at retraining.”  </p><p>Daniel Sepulveda, a former deputy assistant secretary ambassador, U.S. Department of State (Obama administration) speculated on a proposal by former FCC Chair Tom Wheeler to <a href=" https://www.nexttv.com/blogs/proposal-envisions-federal-digital-platform-agency-to-oversee-rampant-big-tech">create a digital platform agency.</a>  </p><p>“At some point of an agency specialized on digital platforms depending on size and scope and reach is, it&apos;s certainly possible, he said. Sepulveda, now senior VP for policy and advocacy for MediaMath, a global advertising and marketing technology company, observed that such plans may be affected by similar concepts being bruited about in Europe. He said he is “not personally convinced it&apos;s necessary.” Sepulveda said he expects that existing agencies – such as the FCC and FTC, which “have infrastructure” in place, could be “bulked up … to deal with the challenges that are posed by new digital platforms.”</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ 5G, Broadband, Streaming Content, Cybersecurity Top Virtual CES Agenda ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/blogs/5g-broadband-streaming-content-cybersecurity-top-virtual-ces-agenda</link>
                                                                            <description>
                            <![CDATA[ Verizon, WarnerMedia, Microsoft, iHeartMedia among featured speakers; $149 price discount ends Jan. 3 ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">CAxyUoidjxgHNcGBuc3Age</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/5L5GgQqwAr5CLdVMAr6GGe-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 28 Dec 2020 20:12:28 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[As I Was Saying]]></category>
                                                                                                <author><![CDATA[ garyarlen@gmail.com (Gary Arlen) ]]></author>                    <dc:creator><![CDATA[ Gary Arlen ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/77vzvgXxLcw7QmjLLWvE7Y.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/5L5GgQqwAr5CLdVMAr6GGe-1280-80.jpg">
                                                            <media:credit><![CDATA[CTA]]></media:credit>
                                                                                                                                                                        <media:description><![CDATA[Janet Foster, Gary Shapiro, Karen Chupka Explain CES 2021 Plans]]></media:description>                                                            <media:text><![CDATA[Online access to CES 2021]]></media:text>
                                <media:title type="plain"><![CDATA[Online access to CES 2021]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/5L5GgQqwAr5CLdVMAr6GGe-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>With an appropriate emphasis on broadband – especially 5G wireless technology – along with a timely focus on cybersecurity, streaming media and an expanded examination of content, the first-ever <a href="https://www.ces.tech">all-virtual CES 2021</a> is ready to roll next month. </p><p>The Consumer Technology Association, producer of the electronic extravaganza, which is usually held in Las Vegas in early January, is still cobbling together details for the Jan. 11-14 online convention. It has not yet revealed details, for example, of its public policy program, which usually features top FCC, FTC, Transportation Department and Congressional officials and staff members.</p><p>However, in keeping with the current developments in cybersecurity – such as the alleged foreign hacking of U.S. government and corporate networks – CTA just announced a keynote presentation by Microsoft President Brad Smith, who has been a highly visible spokesman during recent weeks discussing the digital intrusion; Smith has also been Microsoft’s face for its push to convince the FCC to allocate broadcast white spaces for a “Rural <a href="https://www.nexttv.com/news/microsoft-claims-rural-white-spaces-plan-could-cost-less-12-billion-167069   ">Broadband</a> Initiative.” </p><p>Other cybersecurity speakers will include Damien Kieran, Twitter’s chief privacy officer, Keith Enright, Google’s chief privacy officer and Anne Toth, director-Alexa Trust at Amazon.</p><p>Verizon Chairman and CEO Hans Vestberg will deliver the CES 2021 kickoff keynote address, discussing 5G as the framework of the 21st century. Other sessions include “Broadband for All,” “Connected Cities” (examining smart cities, a favorite CTA objective) plus detailed sessions about 5G and mobile communications.</p><p> Karen Chupka, CTA’s Executive VP, CES, calls “CES the hub for 5G” and characterizes 5G as “driving innovation.”</p><p>On the content front, Ann Sarnoff, chair/CEO of WarnerMedia Studios and Networks Group has just joined the CES line-up. On a separate program, iHeartMedia will run a conference session on how technology is enabling talent to continue to create and introduce music and immersive experiences during the pandemic. Ryan Seacrest (producer and on-air host) will run the session, which will include a “fireside chat” with singer/songwriter Dua Lipa and a special performance by Billie Eilish.</p><p>The <a href="https://digital.ces.tech/c-space?t=%257B%2522from%2522%253A%25222021-01-11T08%253A30%253A00-05%253A00%2522%252C%2522to%2522%253A%25222021-01-13T19%253A00%253A00-05%253A00%2522%257D">“C Space” track of conference sessions</a> will examine content development from both the advertiser/marketer viewpoint as well as “next-gen” consumers.</p><p><a href="https://www.nexttv.com/blogs/ces-2021-a-work-in-progress-explores-how-tech-is-reshaping-post-pandemic-world">Also Read: CES 2021, a Work in Progress, Explores How Tech Is Reshaping Post-Pandemic World</a></p><p>Chupka along with CTA President/CEO Gary Shapiro and Jean Foster, senior VP of marketing and communications, explained the design of CES 2021, at an online news conference in mid-December. Microsoft has created the platform which will enable virtual booth visits, private meetings and a simulation of random corridor encounters. The “live” on-demand conference sessions and booth visits will be available from 7 a.m. to 9 p.m. ET daily. Recorded versions will remain available through Feb. 15.  Both time frames give global visitors more time to check out the array of CES “digital activations,” according to Foster.</p><p>Instead of bumping into friends in the convention center or hotel corridors and aisles, CTA and Microsoft said they have set up an attendee directory which will enable random encounters in hallways that are comparable to the live environment. In addition, the entire platform will be searchable by keywords.</p><p>The CES program will be produced as a combination of live and pre-recorded presentations, many of them to be produced during the coming week to make them as timely as possible before “show dates.” Using automated and real-time translation systems, the presentations will be available in 16 languages, including American Sign Language.</p><p>The CTA leadership team continually encouraged “early registration” (until Jan. 3).  The flat fee to attend all CES 2021 programs (including about 100 conference sessions plus access to exhibits and private meeting rooms) is $149, which will go up to $499.</p><h2 id="no-sore-feet-but-scaled-back-event">No Sore Feet, But Scaled-Back Event</h2><p>Reflecting the online environment, most CES sessions will be much shorter than at in-person events – often about 20 to 30 minutes long, even for panel discussions. </p><p>CTA seems to be adjusting the expected turnout for the scaled-down virtual event.  Shortly after announcing initial plans, the association indicated that the online programs would attract about 150,000 attendees and 1,500 exhibitors (both numbers significantly smaller than the 180,000 and 4,500 comparables last January).</p><p>Recent announcements suggest about 100,000 virtual visitors and “more than 1,000” exhibitors.</p><p>The agenda calls for Monday Jan. 11 as a Media Day for reporters to receive new product briefings from about two dozen exhibitors. Virtual exhibits and conference sessions will be spread out over Tuesday through Thursday (Jan. 12-14) and most videos will remain available on-demand through Feb. 15.</p><p>The CES package will feature a live anchor desk with four tech journalists operating a “central command” to help attendees navigate the digital experience, hear the latest news and watch interviews.  The featured anchors are Justine Ezarik (iJustine), host and tech content creator; Rich DeMuro, tech reporter for KTLA-TV/Los Angeles; Naomi Kyle, actress, producer and host of <em>Star Trek’s The Ready Room</em> on CBS; and Brian Tong, tech host and content creator.</p><p>CTA said it made a “seven-figure investment” to develop the platform, which includes artificial/mixed reality components.   </p><p>“We wanted to invest in the value of the connections,” Chupka explained.  “You will see artificial intelligence enabling the platform, including streaming videos. We really wanted this to be an easy user experience, so we didn’t go into the technology that would be interesting to see” but may have been confusing.</p><p>Looking toward 2022, Shapiro predicted that “We’ll go back to Las Vegas,” but he also expects CES will continue as a hybrid digital event.</p><p>“The pandemic has demonstrated value of tech, especially broadband – not just for home office but for everything in your home that has to do with technology,” Shapiro said. During the video briefing session, he made several references to the need to develop public policies to support broadband, citing the nature of smart cities.</p><p>Shapiro acknowledged that this first effort “won’t be the best possible [but] we’ll learn from it. </p><p>Exhibitors for CES 2021 include tech giants such as Canon, Hisense, Intel, Lenovo, LG Electronics, Panasonic, Philips, Sony, Samsung Electronics, TCL and Voxx, as well as non-traditional tech companies including Bridgestone, Caterpillar, Indy Autonomous Challenge, John Deere, L’Oréal and Procter & Gamble.</p><p><em>Disclosure:  I have been a paid consultant, managing CES programs for several years; I have no involvement in the CES 2021 agenda.</em></p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ IoT Cybersecurity Bill Signed Into Law ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/iot-cybersecurity-bill-signed-into-law</link>
                                                                            <description>
                            <![CDATA[ NCTA says it was a must for both industry and government ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">6cbHqzakKfgdV5PYYaSKGP</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/XVHBSZxEvM4PSF3wdYLMDR-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 07 Dec 2020 19:59:38 +0000</pubDate>                                                                                                                                <updated>Mon, 07 Dec 2020 22:58:47 +0000</updated>
                                                                                                                                            <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/XVHBSZxEvM4PSF3wdYLMDR-1280-80.jpg">
                                                            <media:credit><![CDATA[Architect of the Capitol]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[Capitol Hill]]></media:description>                                                            <media:text><![CDATA[Capitol Hill]]></media:text>
                                <media:title type="plain"><![CDATA[Capitol Hill]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/XVHBSZxEvM4PSF3wdYLMDR-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>NCTA-the Internet & Television Association is celebrating the President&apos;s signature on the Internet of Things Cybersecurity Improvement Act.</p><p>The bill, introduced in March 2019, "requires that devices purchased by the U.S. government meet certain minimum security requirements." </p><p><a href="https://www.nexttv.com/news/iot-bill-headed-to-senate">Related: IoT BIll Heads to Senate</a></p><p>“We applaud the President for signing into law the Internet of Things Cybersecurity Improvement Act," NCTA said in a statement. "With potential security threats to networks always looming, maintaining stringent cybersecurity standards is a must to protect many business and government operations. Since the government is such a large purchaser and user of IoT devices, this new law will have an impact on IoT purchases by businesses and beyond. Many thanks to Senators Gardner and Warner, and Representatives Kelly and Hurd, for introducing this important legislation and navigating it through Congress.”</p><p>Specifically, the law:</p><p>"Requires contractors and vendors providing information systems to the U.S. government to adopt coordinated vulnerability disclosure policies, so that if a vulnerability is uncovered, that can be effectively shared with a vendor for remediation." </p><p>"Requires the National Institute of Standards and Technology (NIST) to issue recommendations addressing, at a minimum, secure development, identity management, patching, and configuration management for IoT devices. </p><p>"Directs the Office of Management and Budget (OMB) to issue guidelines for each agency that are consistent with the NIST recommendations, and charge OMB with reviewing these policies at least every five years. </p><p>"Requires any Internet-connected devices purchased by the federal government to comply with those recommendations. </p><p>"Directs NIST to work with cybersecurity researchers, industry experts, and the Department of Homeland Security (DHS) to publish guidance on coordinated vulnerability disclosure to ensure that vulnerabilities related to agency devices are addressed."</p><p>The bill was introduced in the Senate by Sens. Mark Warner (D-Va.) and Cory Gardner (R-Colo.), co-chairs of the Senate Cybersecurity Caucus, as well as Sens. Maggie Hassan (D-N.H.) and Steve Daines (R-Mont.). Reps. Robin Kelly (D-Ill.) and Will Hurd (R-Texas) took the lead on the bill in the House.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ IoT Security Bill Passes Congress ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/iot-security-bill-passes-congress</link>
                                                                            <description>
                            <![CDATA[ Heads to President's desk ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">6xmafgwVpMx4KSR94L7FaM</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/aSUtwCn6F5jLcgiwsJzYgT-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 18 Nov 2020 02:04:44 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/aSUtwCn6F5jLcgiwsJzYgT-1280-80.jpg">
                                                            <media:credit><![CDATA[Architect of the Capitol]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[Capitol Hill]]></media:description>                                                            <media:text><![CDATA[Capitol Hill]]></media:text>
                                <media:title type="plain"><![CDATA[Capitol Hill]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/aSUtwCn6F5jLcgiwsJzYgT-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>The Senate has approved a bipartisan bill, the Internet of Things (IoT) Cybersecurity Improvement Act, which requires that any IoT devices purchased with government money meet minimum security standards.</p><p>The latest incarnation of the bill was introduced in March 2019 by Sen. Cory Gardner (R-Colo.), co-chair of the Senate Cybersecurity Caucus with Mark Warner (D-Va.), and in the House by Reps. Robin Kelly (D-Ill.) and Will Hurd (R-Texas).</p><p>It passed the House in September and <a href="https://www.nexttv.com/news/sen-warner-praises-house-passage-of-iot-device-security-bill">heads to the President&apos;s desk</a> for his signature.</p><p>The bill:</p><p>1. "Requires the National Institute of Standards and Technology (NIST) to issue recommendations addressing, at a minimum, secure development, identity management, patching, and configuration management for IoT devices.</p><p>2. "Directs the Office of Management and Budget (OMB) to issue guidelines for each agency that are consistent with the NIST recommendations, and charge OMB with reviewing these policies at least every five years.</p><p>3. "Requires any Internet-connected devices purchased by the federal government to comply with those recommendations.</p><p>4. "Directs NIST to work with cybersecurity researchers, industry experts, and the Department of Homeland Security (DHS) to publish guidance on coordinated vulnerability disclosure to ensure that vulnerabilities related to agency devices are addressed.</p><p>5. "Requires contractors and vendors providing information systems to the U.S. government to adopt coordinated vulnerability disclosure policies, so that if a vulnerability is uncovered, that can be effectively shared with a vendor for remediation."</p><p>“While more and more products and even household appliances today have software functionality and internet connectivity, too few incorporate even basic safeguards and protections, posing a real risk to individual and national security,” said Warner. “I’m proud that Congress was able to come together today to pass this legislation, which will harness the purchasing power of the federal government and incentivize companies to finally secure the devices they create and sell. I urge the President to sign this bill into law without delay.”</p><p>“I applaud the Senate for passing our bipartisan and bicameral legislation to ensure the federal government leads by example and purchases devices that meet basic requirements to prevent hackers from accessing government systems,” said Gardner. “Most experts expect tens of billions of devices operating on our networks within the next several years as the Internet of Things (IoT) landscape continues to expand. We need to make sure these devices are secure from malicious cyber-attacks as they continue to transform our society and add countless new entry points into our networks, particularly when they are integrated into the federal government’s networks.”</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Sen. Warner Praises House Passage of IoT Device Security Bill ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/sen-warner-praises-house-passage-of-iot-device-security-bill</link>
                                                                            <description>
                            <![CDATA[ Sen. Mark Warner (D-Va.) is praising House passage of his Internet of Things (IoT) Cybersecurity Improvement Act, which requires minimum security requirements for IoT devices bought by the U.S. government, saying that there are not enough market incentives to secure devices. ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">xbi5ckqz8AzifExX4Gn5ze</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/Z7RPVfh4UTkGsCNwb3QAHC-1280-80.png" type="image/png" length="0"></enclosure>
                                                                        <pubDate>Mon, 14 Sep 2020 21:40:32 +0000</pubDate>                                                                                                                                <updated>Tue, 15 Sep 2020 11:17:26 +0000</updated>
                                                                                                                                            <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/png" url="https://cdn.mos.cms.futurecdn.net/Z7RPVfh4UTkGsCNwb3QAHC-1280-80.png">
                                                            <media:credit><![CDATA[N/A]]></media:credit>
                                                                                                                                                                        <media:description><![CDATA[Sen. Mark Warner]]></media:description>                                                            <media:text><![CDATA[Sen. Mark Warner]]></media:text>
                                <media:title type="plain"><![CDATA[Sen. Mark Warner]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/Z7RPVfh4UTkGsCNwb3QAHC-1280-80.png" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Sen. Mark Warner (D-Va.) is praising House passage of his Internet of Things (IoT) Cybersecurity Improvement Act, which requires minimum security requirements for IoT devices bought by the U.S. government, saying that there are not enough market incentives to secure devices.</p><p><a href="https://www.nexttv.com/news/sen-warner-urges-net-device-makers-to-protect-products">Related: Sen. Warner Urges Internet Device Makers to Protect Products</a></p><p>The latest incarnation of the bill <a href="https://www.nexttv.com/news/iot-security-bill-teed-up">was introduced in March 2019</a> by Warner joined by Sen. Cory Gardner (R-Colo.), co-chair of the Senate Cybersecurity Caucus with Warner, and in the House by Reps. Robin Kelly (D-Ill.) and Will Hurd (R-Texas).</p><p>The bill has yet to pass the Senate, but did pass the Senate Homeland Security and Governmental Affairs Committee in June 2019.</p><p>It would:</p><p>1. "Require the National Institute of Standards and Technology (NIST) to issue recommendations addressing, at a minimum, secure development, identity management, patching, and configuration management for IoT devices.</p><p>2. "Direct the Office of Management and Budget (OMB) to issue guidelines for each agency that are consistent with the NIST recommendations, and charge OMB with reviewing these policies at least every five years.</p><p>3. "Require any Internet-connected devices purchased by the federal government to comply with those recommendations.</p><p>4. "Direct NIST to work with cybersecurity researchers, industry experts, and the Department of Homeland Security (DHS) to publish guidance on coordinated vulnerability disclosure to ensure that vulnerabilities related to agency devices are addressed.</p><p>5. "Require contractors and vendors providing information systems to the U.S. government to adopt coordinated vulnerability disclosure policies, so that if a vulnerability is uncovered, that can be effectively shared with a vendor for remediation."</p><p>“The House passage of this legislation is a major accomplishment in combating the threats that insecure IoT devices pose to our individual and national security," said Sen. Warner. "Frankly, manufacturers today just don’t have the appropriate market incentives to properly secure the devices they make and sell – that’s why this legislation is so important."</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ DHS Releases 5G Cybersecurity Proposal ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/dhs-releases-5g-cybersecurity-proposal</link>
                                                                            <description>
                            <![CDATA[ The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) has released its proposal for securing 5G networks and industry will have a big part. ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">owuSiFEKQ5meCuxrMJpovg</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/UBcN63CsRtoGzDVVApZRxb-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 25 Aug 2020 09:42:20 +0000</pubDate>                                                                                                                                <updated>Tue, 25 Aug 2020 13:16:13 +0000</updated>
                                                                                                                                            <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/UBcN63CsRtoGzDVVApZRxb-1280-80.jpg">
                                                            <media:credit><![CDATA[Dong Wenjie via Getty Images]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/UBcN63CsRtoGzDVVApZRxb-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>The Department of Homeland Security&apos;s Cybersecurity and Infrastructure Security Agency (CISA) <a href="https://www.cisa.gov/sites/default/files/publications/cisa_5g_strategy_508.pdf">has released its proposal</a> for securing 5G networks and industry will have a big part.</p><p>"CISA relies on its partnership with the private sector to understand and manage risks posed to 5G technology," the proposal said. "With the promise of connectivity between billions of Internet of Things (IoT) devices, it is critical that CISA and industry collaborate to identify vulnerabilities and ensure that cybersecurity is prioritized within the design and development of 5G technology."</p><p>The proposal is grouped into five strategic objectives (see graphic).</p><figure class="van-image-figure " data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' style="max-width:1138px;"><p class="vanilla-image-block" style="padding-top:56.24%;"><img id="z48iK8UL2ARMTDz6jfkcCS" name="CISA-5G-cybersecurity.jpg" alt="The Cybersecurity and Infrastructure Security Agency (CISA) has released a proposal for securing 5G networks" src="https://cdn.mos.cms.futurecdn.net/z48iK8UL2ARMTDz6jfkcCS.jpg" mos="" align="middle" fullscreen="" width="1138" height="640" attribution="" endorsement="" class=""></p></div></div><figcaption itemprop="caption description" class=""><span class="credit" itemprop="copyrightHolder">(Image credit: CISA)</span></figcaption></figure><p>The bottom line of the proposal is that it will take collaboration. "[T]he nature of the risk environment precludes any single entity from managing risk entirely on its own," it said, while "the stakes for safeguarding the network against these vulnerabilities could not be higher "given the potential for various applications and reliance of the network for future infrastructure."</p><p>“5G technology represents a pivotal shift in the United States&apos; and world’s digital infrastructure, and with that shift come critical security and policymaking considerations,” said John Miller, senior counsel and senior VP for policy at tech association ITI. “The tech industry appreciates CISA’s leadership in recognizing where it can play a unique role in 5G implementation while simultaneously acknowledging the need for government-wide coordination to ensure a trusted and resilient 5G ecosystem.”</p><p>The Trump Administration and Congress have already taken some steps to secure 5G networks and the supply chain, most notably by excluding tech from Chinese telecom suppliers ZTE and Huawei from government-subsidized broadband buildouts and government contracts.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Tech Groups Push Government Cybersecurity ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/tech-groups-push-government-cybersecurity</link>
                                                                            <description>
                            <![CDATA[ Tech Groups Push Government Cybersecurity ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">46ueUwuEdXQwbp1pK7DwD5</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/PwMyFFpVtU23D9vEBkEDSN-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 29 Jun 2020 16:11:46 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/PwMyFFpVtU23D9vEBkEDSN-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/PwMyFFpVtU23D9vEBkEDSN-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Tech groups want to make sure Congress prioritizes money for government-related cybersecurity in any future COVID-19 aid package.<br/><br/>That <a href="https://www.itic.org/policy/MultiassociationLetter_COVIDResponse_ITandCyberPriorities.pdf">came in a letter</a> to congressional leadership from the Information Technology Industry Council (ITI), Alliance for Digital Innovation (ADI), BSA | The Software Alliance, the Computing Technology Industry Association (CompTIA), the Center for Procurement Advocacy, Internet Association (IA), and the Cybersecurity Coalition.</p><p><a href="https://www.nexttv.com/tag/coronavirus" data-original-url="https://www.multichannel.com/tag/coronavirus">Related: All the Latest Industry News on Covid-19</a></p><p>They said CTO have been doing "admirably" with what they have, but also say more cybersecurity money is needed at all levels of government.</p><p>They argue that "the prevalence of outdated legacy IT continues to hamper the effectiveness of [pandemic] recovery efforts. Citizens are being denied positive digital government experiences as they seek access to much needed programs, such as securing business loan programs, receiving economic security payments, or applying for unemployment benefits.”</p><p>Back in April, the groups said that to combat the COVID-19 pandemic the government <a href="https://www.nexttv.com/news/tech-groups-lobby-hill-trump-administration-for-big-it-investments" data-original-url="https://www.multichannel.com/news/tech-groups-lobby-hill-trump-administration-for-big-it-investments">needs to invest in IT upgrades across the board</a> and at a level commensurate with the challenge of socially distanced living.</p><p>This week's letter outlines some cybersecurity upgrade main points:</p><p><strong>1.</strong> "Support the <a href="https://tmf.cio.gov/_">Technology Modernization Fund</a> at a level that would allow for meaningful investment in cross-agency IT modernization initiatives. To expedite the resourcefulness of such funds, existing requirements directing agencies to payback TMF funds should be relaxed when such funds are tied to pandemic or disaster recovery efforts;"</p><p><strong>2.</strong> "Provide direct funding to federal agencies to modernize and secure IT systems beneficial to COVID-19 and future emergency responses. Such funding should be made available for expenditure over multiple years, but does not necessarily need to flow through agency working capital funds;</p><p><strong>3.</strong> "Establish and fund a mechanism that provides federal financial support to state and local government agencies in need of IT modernization and upgrades to foster better recovery efforts. Such investments should focus on interoperability between programs that rely on federal, state, and local IT systems, where applicable. Language providing additional resources to the Coronavirus Relief Fund for IT improvements is an avenue Congress should explore;</p><p><strong>4.</strong> "Provide necessary legislative authority for agencies to establish IT working capital funds with strong governance and reporting requirements to enable both Congress and the Executive Branch to more effectively budget for and finance significant IT modernization initiatives;</p><p><strong>5.</strong> "Provide increased funding to the CDM program so that DHS can promptly and completely fulfill all requests for service and ensure robust threat detection and mitigation against increased adversarial attacks at all Federal agencies;</p><p><strong>6.</strong> "Support funding to improve the Federal Risk Authorization and Management Program (FedRAMP) cloud technology security program by automating the security authorization process to increase government access to secure commercial cloud service and technology providers; and</p><p><strong>7.</strong> "Establish a dedicated cybersecurity grant program for SLTT governments to enable greater resiliency and enhanced security of critical technology systems and networks; and</p><p><strong>8.</strong> "Ensure that IT modernization efforts include focused attention and investment in commercial technologies that strengthen cybersecurity, empower effective workforce training, and ensure robust digital transformation."  </p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Trump Extends Cybersecurity National Emergency ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/trump-extends-cybersecurity-national-emergency</link>
                                                                            <description>
                            <![CDATA[ Trump Extends Cybersecurity National Emergency ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">wW8Fnvtx5QrPGmRx7k3HCB</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/g5su9X7jp8NGXRwLmuWrBS-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 30 Mar 2020 20:39:33 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/g5su9X7jp8NGXRwLmuWrBS-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/g5su9X7jp8NGXRwLmuWrBS-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>President Donald Trump has extended the executive order declaring the country to be in a state of national emergency due to cyber threats. </p><figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="hwH4mwA6nA5w4TghYouPEP" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/hwH4mwA6nA5w4TghYouPEP.jpg" mos="https://cdn.mos.cms.futurecdn.net/hwH4mwA6nA5w4TghYouPEP.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>The order was first issued April 1, 2015, by President Barack Obama, to deal with the "unusual and extraordinary threat to the national security, foreign policy, and economy of the United States constituted by the increasing prevalence and severity of malicious cyber‑enabled activities originating from, or directed by persons located, in whole or in substantial part, outside the United States." It was expanded in December 2016 and President Trump added to it in 2017.</p><p>Related: Trump Extends Cybersecurity National Emergency</p><p>Those turned out to include foreign election meddling that continues to this day, according to government officials and news reports, though that meddling has been downplayed by the current President. </p><p>The White House said Monday (March 30) that "cyber-enabled activities" continue to pose an extraordinary threat to national security, foreign policy and the economy, which currently needs no more downward pressure. </p><p>The renewal of the order is for a year. </p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Sen. Warner Pushes for Passage of IoT Cybersecurity Bill ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/sen-warner-pushes-for-passage-of-iot-cybersecurity-bill</link>
                                                                            <description>
                            <![CDATA[ Sen. Warner Pushes for Passage of IoT Cybersecurity Bill ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">pACFsnagBDGrWwpJTUAELs</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/eu5o8oEYWTGDdqrkAvmiZK-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 26 Feb 2020 19:49:03 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/eu5o8oEYWTGDdqrkAvmiZK-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/eu5o8oEYWTGDdqrkAvmiZK-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="eu5o8oEYWTGDdqrkAvmiZK" name="" alt="Sen. John Warner" src="https://cdn.mos.cms.futurecdn.net/eu5o8oEYWTGDdqrkAvmiZK.jpg" mos="https://cdn.mos.cms.futurecdn.net/eu5o8oEYWTGDdqrkAvmiZK.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div><figcaption itemprop="caption description" class="pull-"><span class="caption-text">Sen. John Warner </span></figcaption></figure><p>The vice chairman of the Senate Intelligence Committee is citing the recent disclosure of malware exploring a Department of Defense server to push for passage of his Internet of Things Cybersecurity Improvement Act. </p><p><a href="https://www.nexttv.com/news/senate-intelligence-report-recommends-overarching-cyber-doctrine" data-original-url="https://www.multichannel.com/news/senate-intelligence-report-recommends-overarching-cyber-doctrine">Related: Senate Intelligence Report Recommends Overarching Cyber Doctrine</a></p><p>Sen. Mark Warner (D-Va.) pointed out in a statement that it was a vulnerability exposure regime at DOD that allowed a researcher to report the malware and said his bill would help advance similar programs that could be coordinated with the DOD procedures in place. Warner's bill was reported out of the Senate Homeland Security and Governmental Affairs Committee last June, but has yet to be voted in the Senate. </p><p><a href="https://www.zdnet.com/article/bug-hunter-finds-cryptocurrency-mining-botnet-on-dod-network/">Znet reported</a> that the researcher had first discovered that a DOD server running on Amazon Web Services' cloud platform was publicly accessible without credentials, then that it had been hacked and was being used by a botnet to mine cryptocurrency. </p><p>The bill <a href="https://www.nexttv.com/news/iot-security-bill-teed-up" data-original-url="https://www.multichannel.com/news/iot-security-bill-teed-up">was introduced last March</a> and <a href="https://www.nexttv.com/news/iot-bill-headed-to-senate" data-original-url="https://www.multichannel.com/news/iot-bill-headed-to-senate">reported favorably out of the Senate Homeland Security and Governmental Affairs Committee</a> last June. </p><p>It would make sure government IoT devices are as secure as they can be, including by requiring transparency and disclosure from contractors. The bill now heads to the full Senate for a vote. It would also require government-purchased devices to meet a minimum level of security. </p><p>“This incident demonstrates the inherent value of vulnerability disclosure programs for information technology products operated by federal agencies,” Warner wrote <a href="https://www.warner.senate.gov/public/_cache/files/6/3/632357d7-b397-4bf1-83c7-c41334e59e23/36E5EFC10AA9F040E397290B4AF49704.letter-monero-mining-malware-dod-signed.pdf">in a letter to DOD CIO Dana Deasy</a>. “These programs are a crucial force multiplier for federal cybersecurity efforts. Clear guidelines and a process for security researchers to find and share vulnerabilities enabled this malware discovery, and ultimately prompt remedial action by DOD," he said. "Continuing to encourage the responsible discovery and disclosure of bugs or vulnerabilities on federal information technology systems with both internal and outside security researchers can only strengthen the cybersecurity posture of federal and DOD systems.” </p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Commerce Passes HARVEST Act ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/commerce-passes-harvest-act</link>
                                                                            <description>
                            <![CDATA[ Commerce Passes HARVEST Act ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">vvjZ6PNgK1dh9W8oyNaBf2</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/ZArz5V44GS2CFJKCAjJUdD-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 13 Nov 2019 17:13:08 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/ZArz5V44GS2CFJKCAjJUdD-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/ZArz5V44GS2CFJKCAjJUdD-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>The Harvesting American Cybersecurity Knowledge through Education (HACKED) Act passed the <a href="https://www.commerce.senate.gov/services/files/9B9B54E0-C71C-4132-8120-E50CFF2D983B">Senate Commerce Committee</a> Wednesday (Nov. 13) with an amendment that would create a cybersecurity exchange program between government and industry.</p><p>The bill, which is co-sponsored by the bipartisan leadership of the committee and Communications Subcommittee, is meant to boost cybersecurity education and workforce.</p><p>The bill includes an amendment from Sen. Amy Klobuchar (D-Minn.) that would establish "a public-private cyber security professionals exchange program" that would recruit experts in the private sector and academia to join the federal government for up to a two-year hitch. On the other side, government computer experts would do "tours of duty in the private sector," in both cases to learn from each other and apply that knowledge to "help further secure government computer systems and critical infrastructure."<br/></p><p>“With more than 300,000 cybersecurity job vacancies in the United States, ensuring that workers now and in the future have access to cyber education is a priority,” said ITI President Jason Oxman in a statement. “The bipartisan HACKED Act takes important steps to help fill this critical skills gap and bolster the U.S. cybersecurity workforce through long-term planning and investment."</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Hawley Rakes TikTok, Apple Over Cybersecurity Coals ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/hawley-rakes-tiktok-apple-over-cybersecurity-coals</link>
                                                                            <description>
                            <![CDATA[ Says China connections could compromise U.S. data security ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">B2hmqU85jMmNrSbwMsCkfg</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/ZJiQ96oeffGRbypbL4tqkW-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 07 Nov 2019 02:44:59 +0000</pubDate>                                                                                                                                <updated>Sun, 01 Dec 2019 00:30:06 +0000</updated>
                                                                                                                                            <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/ZJiQ96oeffGRbypbL4tqkW-1280-80.jpg">
                                                            <media:credit><![CDATA[Official Government Portrait]]></media:credit>
                                                                                                                                                                                                                                    <media:description><![CDATA[Sen. Josh Hawley]]></media:description>                                                            <media:text><![CDATA[Sen. Josh Hawley]]></media:text>
                                <media:title type="plain"><![CDATA[Sen. Josh Hawley]]></media:title>
                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/ZJiQ96oeffGRbypbL4tqkW-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Sen. Josh Hawley (R-Mo.) read TikTok and Apple the riot act in absentia Tuesday (Nov. 5) after the Chinese-backed social media platform and the social media giant <a href="https://www.multichannel.com/news/apple-tik-tok-decline-invitations-to-hawley-tough-talk-tech-hearing">declined to send representatives</a> to his hearing on Big Tech&apos;s data handling, or mishandling, and risks from their connections to China. </p><p>Sen. Hawley began the hearing asking about all the data TikTok is collecting from American users. Hawley warned that the short-form mobile video platform and its massive data collection could be leveraged by the Chinese government against the U.S. </p><figure class="van-image-figure pull-right" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' style="max-width:2700px;"><p class="vanilla-image-block" style="padding-top:126.67%;"><img id="ZJiQ96oeffGRbypbL4tqkW" name="josh-hawley.jpg" alt="Sen. Josh Hawley" src="https://cdn.mos.cms.futurecdn.net/ZJiQ96oeffGRbypbL4tqkW.jpg" mos="" align="right" fullscreen="" width="2700" height="3420" attribution="" endorsement="" class="pull-right"></p></div></div><figcaption itemprop="caption description" class="pull-right"><span class="caption-text">Sen. Josh Hawley </span><span class="credit" itemprop="copyrightHolder">(Image credit: Official Government Portrait)</span></figcaption></figure><p>He then lit into Apple for providing cloud services to China.</p><p>Hawley said he wanted to get it on the record that TikTok is collecting "a lot of data," including content, location, contacts, behavioral data on use of the platform, and information from messages and users&apos; phone books. </p><p>He said that was comparable to the "massive data harvesting" machines Google and Facebook. </p><p>And while TikTok said that data is stored in the U.S. and Singapore, Hawley pointed out that TikTok&apos;s parent is <a href="https://bytedance.com/en">ByteDance</a>, which is based in China and subject to a 2017 Chinese national intelligence law that requires Chinese companies to cooperate with state intelligence work. </p><p>He said that means TikTok&apos;s doors could be opened at any time to the Chinese Communist Party and Beijing could tell parent ByteDance to scoop up data on Americans and give it to Beijing. </p><p>Hearing witness Klon Kitchen, senior research fellow at the Heritage Foundation, said that was "without a doubt true." </p><p><a href="https://www.multichannel.com/news/sen-whitehouse-hammers-social-media">Related: Sen. Whitehouse Hammers Social Media</a></p><p>Hawley ticked off some of the ways TikTok or another Chinese platform could abuse all that data, particularly using data to help artificial intelligence train autonomous weapons systems to identify targets--China is reportedly investing heavily in AI tech. </p><p>Asked how the U.S. could ensure that TikTok or other Chinese tech companies weren&apos;t Trojan Horses gathering data on Americans and sending it back to the Chinese government. "I&apos;m not sure we can," said Kitchen. He said that anyone who thinks a Chinese company, even if a portion of the company is in the U.S., can say no to the Chinese government, "that is a fundamental misunderstanding of the way the government in Beijing works." </p><p>Apple, which was another hearing no-show, took it on the chin from both Hawley and Kitchen. </p><p>Hawley said he was concerned about American companies--specifically Apple, which provides cloud services to China--storing both data and the tools to decrypt it in China.  </p><p>Kitchen said that while Apple was providing decryption keys for Chinese data stored there, doing so would give China a better understanding of the inner workings of Apple&apos;s iCloud accounts and could allow them to collect data "outside of that border." </p><p>Hawley asked Kitchen whether he thought Apple and others were compromising U.S. data security by storing both data and encryption keys. He said, yes, any company <a href="https://support.apple.com/en-us/HT208351">complying with China cybersecurity laws</a> was risking not only data security but national security.  </p><p><a href="https://www.multichannel.com/news/hawley-big-tech-is-exploiting-digital-treadmill">Related: Sen. Hawley Says Big Tech Is Exploiting Digital Tread Mill</a></p><p>Kitchen followed that with his most sobering observation/allegation, one that particularly struck Hawley, who said it summed up the problem: "China imprisons and tortures and kills religious minorities and political dissidents, and it is using compliant companies to do this at scale." </p><p>Neither Tik Tok nor Facebook had responded to a request for comment at press time on the tenor of the hearing or the company&apos;s decision not to participate. </p><p>But Vanessa Pappas, GM of TikTok U.S. has posted on the issue, saying: "[W]e store all U.S user data in the United States, with backup redundancy in Singapore. TikTok’s data centers are located entirely outside of China. Further, we have a dedicated technical team focused on adhering to robust cybersecurity policies, and data privacy and security practices."</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Hawley Rakes TikTok, Apple Over Cybersecurity Coals ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/hawley-rakes-tik-tok-apple-over-cybersecurity-coals</link>
                                                                            <description>
                            <![CDATA[ Hawley Rakes TikTok, Apple Over Cybersecurity Coals ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">4d2YNzEhBjyxjW6HMbd3nK</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/swFvUTYoMfeh2Kzv4s3aVL-1280-80.png" type="image/png" length="0"></enclosure>
                                                                        <pubDate>Wed, 06 Nov 2019 20:18:23 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/png" url="https://cdn.mos.cms.futurecdn.net/swFvUTYoMfeh2Kzv4s3aVL-1280-80.png">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/swFvUTYoMfeh2Kzv4s3aVL-1280-80.png" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Sen. Josh Hawley (R-Mo.) read TikTok and Apple the riot act in absentia Tuesday (Nov. 5) after the Chinese-backed social media platform and the social media giant declined to send representatives to his hearing on Big Tech's data handling, or mishandling, and risks from their connections to China. </p><figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="swFvUTYoMfeh2Kzv4s3aVL" name="" alt="Sen. Josh Hawley" src="https://cdn.mos.cms.futurecdn.net/swFvUTYoMfeh2Kzv4s3aVL.png" mos="https://cdn.mos.cms.futurecdn.net/swFvUTYoMfeh2Kzv4s3aVL.png" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div><figcaption itemprop="caption description" class="pull-"><span class="caption-text">Sen. Josh Hawley </span></figcaption></figure><p>Sen. Hawley began the hearing asking about all the data TikTok is collecting from American users. Hawley warned that the short-form mobile video platform and its massive data collection could be leveraged by the Chinese government against the U.S. </p><p>He then lit into Apple for providing cloud services to China.</p><p>Hawley said he wanted to get it on the record that TikTok is collecting "a lot of data," including content, location, contacts, behavioral data on use of the platform, and information from messages and users' phone books. </p><p>He said that was comparable to the "massive data harvesting" machines Google and Facebook. </p><p>And while TikTok said that data is stored in the U.S. and Singapore, Hawley pointed out that TikTok's parent is <a href="https://bytedance.com/en">ByteDance</a>, which is based in China and subject to a 2017 Chinese national intelligence law that requires Chinese companies to cooperate with state intelligence work. </p><p>He said that means TikTok's doors could be opened at any time to the Chinese Communist Party and Beijing could tell parent ByteDance to scoop up data on Americans and give it to Beijing. </p><p>Hearing witness Klon Kitchen, senior research fellow at the Heritage Foundation, said that was "without a doubt true." </p><p><a href="https://www.nexttv.com/news/sen-whitehouse-hammers-social-media" data-original-url="https://www.multichannel.com/news/sen-whitehouse-hammers-social-media">Related: Sen. Whitehouse Hammers Social Media</a></p><p>Hawley ticked off some of the ways TikTok or another Chinese platform could abuse all that data, particularly using data to help artificial intelligence train autonomous weapons systems to identify targets--China is reportedly investing heavily in AI tech. </p><p>Asked how the U.S. could ensure that TikTok or other Chinese tech companies weren't Trojan Horses gathering data on Americans and sending it back to the Chinese government. "I'm not sure we can," said Kitchen. He said that anyone who thinks a Chinese company, even if a portion of the company is in the U.S., can say no to the Chinese government, "that is a fundamental misunderstanding of the way the government in Beijing works." </p><p>Apple, which was another hearing no-show, took it on the chin from both Hawley and Kitchen. </p><p>Hawley said he was concerned about American companies--specifically Apple, which provides cloud services to China--storing both data and the tools to decrypt it in China.  </p><p>Kitchen said that while Apple was providing decryption keys for Chinese data stored there, doing so would give China a better understanding of the inner workings of Apple's iCloud accounts and could allow them to collect data "outside of that border." </p><p>Hawley asked Kitchen whether he thought Apple and others were compromising U.S. data security by storing both data and encryption keys. He said, yes, any company <a href="https://support.apple.com/en-us/HT208351">complying with China cybersecurity laws</a> was risking not only data security but national security.  </p><p>Related: Sen. Hawley Says Big Tech Is Exploiting Digital Tread Mill</p><p>Kitchen followed that with his most sobering observation/allegation, one that particularly struck Hawley, who said it summed up the problem: "China imprisons and tortures and kills religious minorities and political dissidents, and it is using compliant companies to do this at scale." </p><p>Neither Tik Tok nor Facebook had responded to a request for comment at press time on the tenor of the hearing or the company's decision not to participate. </p><p>But Vanessa Pappas, GM of TikTok U.S. has posted on the issue, saying: "[W]e store all U.S user data in the United States, with backup redundancy in Singapore. TikTok’s data centers are located entirely outside of China. Further, we have a dedicated technical team focused on adhering to robust cybersecurity policies, and data privacy and security practices." </p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ The State(s) of Privacy ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/the-state-s-of-privacy</link>
                                                                            <description>
                            <![CDATA[ The State(s) of Privacy ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">jjKTFD73UTic7ADny4KqMB</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/qa8S2vw8nvxpvMxY8A48je-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 07 Oct 2019 12:00:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/qa8S2vw8nvxpvMxY8A48je-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/qa8S2vw8nvxpvMxY8A48je-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>WASHINGTON — Advertisers are pushing for a national privacy bill, but with little chance of comprehensive legislation in the near term, they are pushing back on efforts by states to push for privacy legislation. State-level laws, they argue, are a Balkanized approach that could boost the power of the Big Tech players that both states and the federal government are looking to rein in.</p><p>Dan Jaffe, group executive vice president of government relations for the Association of National Advertisers, has been a point man in this pushback, notably against the California Consumer Privacy Act (CCPA). The CCPA becomes law on Jan. 1 and compliance will cost businesses billions — that is, when they can figure out what to comply with, which Jaffe said remains a moving target.</p><figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="qa8S2vw8nvxpvMxY8A48je" name="" alt="Dan Jaffe" src="https://cdn.mos.cms.futurecdn.net/qa8S2vw8nvxpvMxY8A48je.jpg" mos="https://cdn.mos.cms.futurecdn.net/qa8S2vw8nvxpvMxY8A48je.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div><figcaption itemprop="caption description" class="pull-"><span class="caption-text">Dan Jaffe </span></figcaption></figure><p>Jaffe spoke with <em>Multichannel News</em> about the implications of privacy by design, if that design is a patchwork of state approaches. Here’s an edited transcript of that conversation.</p><p><strong>MCN: What are ANA’s main problems with the California Consumer Privacy Act?<br/>Dan Jaffe:</strong> At the most fundamental level, it is that it is a single state law. We don’t think that privacy rules work on a state-by-state basis. The business has already gone through a substantial amount of fragmentation and that is only going to increase in 2020 unless there is a federal law passed that pre-empts state laws.</p><p><strong>MCN: You say “laws,” so clearly the problem isn’t just California.<br/>DJ:</strong> Let me give you the quick list of what I know, and I may not be covering everything. There is CCPA, as well as a [California] data-broker registration bill that is not the same as a Vermont databroker bill. Nevada’s new law goes into effect today [Sept. 30]. Maine has an ISP law and New Jersey has a major piece of privacy legislation with private-rights-of-action provisions in it. The attorney general of Ohio is talking about holding privacy hearings. … You get the general gist.</p><p>Overlaying all of this is the [European Union’s] General Data Protection Rules [which apply to any business over a certain size doing business in the EU, just as the CCPA applies to any business over a certain size doing business in the state].</p><p>I know a number of companies who have spent multi, multimillions of dollars to become GDPR compliant and are now spending millions on becoming CCPA compliant because of the differences in definitions.</p><p><strong>MCN: Speaking of big money, the California attorney general’s office has put out a regulatory impact statement. What trouble signs are in that report?<br/>DJ:</strong> I have said since the outset that this was going to be a major tax on California consumers because I could see there were going to be major regulatory compliance requirements. Now the attorney general’s report is talking about as much as $55 billion dollars in costs from the CCPA, and a further $16.9 billion in costs for compliance with the attorney general’s [rules].</p><p>I don’t want to be hyperventilating here, but the report says this is going to fall particularly hard on small business. Because of the way the act is designed, a relatively large number of relatively small businesses will be covered.</p><p>Big companies are going to be able to do well in this situation because they have compliance lawyers and IT experts and advertising experts. Companies midsize and below are going to have a very much harder time — and that is if everything goes smoothly.</p><p>Now, people may say that the privacy protections people have gotten outweigh all of these costs. I don’t necessarily think that that’s true.</p><p><strong>MCN: Obviously, you don’t want this Balkanized model, but if it develops, is the free web content model sustainable?<br/>DJ:</strong> For some, yes. The Tyrannosaurus Rexes survive, at least in the short run. But I don’t know how Google and Amazon and all these other companies that started out in garages and dorm rooms would have done if they had faced all these restrictions.</p><p><strong>MCN: But an already divided Congress fighting over impeachment is unlikely to come together on privacy legislation anytime soon.<br/>DJ:</strong> To pass any major legislation when they don’t like each other and they don’t work well together is very hard. I don’t know what’s possible. I just know what’s needed. We are going to make every effort to move [federal legislation] as far and as fast as we can. There is nothing more important that we are working on than privacy and data security issues.</p><p>A very large proportion of companies will say the same thing. And the situation is only going to get more difficult because there are 22 more states that seriously considered privacy legislation in 2019.</p><p>Unlike data security, where disparate laws still deal with a limited set of issues and, if you are complying with those requirements, you are likely complying with most data-security laws, this isn’t the case with privacy. It has a large range of issues over billions and billions of transactions and an enormous number of parties from first parties to third parties to data suppliers to data trackers to publishers.</p><p><strong>MCN: So the answer is national legislation.<br/>DJ:</strong> Yes, and for the first time the industry is not split on that. I don’t hear anybody say, “Oh, we don’t need national legislation.”</p><p>One more thing, and this I think is a grenade that has been thrown into the process. Before the law takes effect and even before the attorney general has finished his rulemaking, Alastair Mactaggart [the California resident who pushed for the initial ballot initiative] is putting forward a new ballot initiative that will completely alter and add to the existing [CCPA]. We are in a never-ending compliance race. To use a legal term: It’s a mess, and it’s likely to get messier.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ DoH! ISPs Push Back on Encryption Test ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/doh-isps-push-back-on-encryption-test</link>
                                                                            <description>
                            <![CDATA[ DoH! ISPs Push Back on Encryption Test ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">cZiSC73sAJue6uEruc6gkz</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/h3bsDpQbWvXT53BzADp37b-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 30 Sep 2019 12:00:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/h3bsDpQbWvXT53BzADp37b-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/h3bsDpQbWvXT53BzADp37b-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>WASHINGTON — Internet service providers and child advocates have gone to Congress to try and block what they say is an effort by Google to centralize the domain naming system (DNS) to the potential detriment of cybersecurity and more.</p><p>NCTA-The Internet & Television Association, CTIA and USTelecom said the potential fallout could include Google acquiring “greater control over user data across networks and devices around the world. This could inhibit competitors and possibly foreclose competition in advertising and other industries.”</p><figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="h3bsDpQbWvXT53BzADp37b" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/h3bsDpQbWvXT53BzADp37b.jpg" mos="https://cdn.mos.cms.futurecdn.net/h3bsDpQbWvXT53BzADp37b.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>NCTA outlined to the heads of the relevant committees just what it thought was at stake if Google took more control of the domain-naming system, which has been used to:</p><p>(1) Provide parental controls and Internet of Things management;<br/>(2) Connect users to CDS so they could get content in the “fastest, cheapest and most reliable” way; and<br/>(3) Assist law enforcement in combating online piracy.</p><p>Google has countered that it isn’t trying to centralize control and that the effort is only a test, with limited applicability.</p><p>With Big Tech under pressure to protect privacy, Google said it is just trying to bring the privacy benefits of the secure HHTPS regime (DNS-over-HTTPS, or DoH) to the domain naming system (DNS), which it said would help prevent others from seeing which sites a web user is visiting and help prevent spoofing.</p><p>Sounds good so far. But ISPs and others say there are unintended consequences, which is what prompted them to seek Hill help. The ISPs and child advocates, in their letters to top legislators, also said they were concerned that the DNS change would make it harder to track and stop child predators.</p><p>Not true, Google said. “There is no change to how DNS providers work with law enforcement in accordance with court orders,” it said in a statement.” Google said the test is among only a handful of DNS providers that already support DoH, and will not be instituted by default in those cases, as Mozilla has signaled it will.</p><p>As to the centralizing charge, Google said characterizing the company as a “centralized encrypted DNS provider” is not accurate.</p><p>Google was expected to reach out to the ISPs to try and clear up what they suggested was a misunderstanding. An NCTA spokesperson said they knew of no such outreach.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Senate Intelligence Report Recommends Overarching 'Cyber Doctrine' ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/senate-intelligence-report-recommends-overarching-cyber-doctrine</link>
                                                                            <description>
                            <![CDATA[ Senate Intelligence Report Recommends Overarching 'Cyber Doctrine' ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">8ddNAYJMDQ1DTHsXFCfCdk</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/ZArz5V44GS2CFJKCAjJUdD-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 25 Jul 2019 20:13:06 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/ZArz5V44GS2CFJKCAjJUdD-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/ZArz5V44GS2CFJKCAjJUdD-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>A report released by the bipartisan leadership of the Senate Intelligence Committee Thursday (July 25), one of the more bipartisan committees in Congress, says the government should come up with an "overarching cyber doctrine." </p><p>That was one of the recommendations in <a href="https://www.intelligence.senate.gov/sites/default/files/documents/Report_Volume1.pdf">a voluminous report on Russian election meddling</a> focused on infrastructure.</p><p>The report concluded that the U.S. should make it clear to its adversaries, in a sort of "this could mean war" declaration, that it will treat an attack on election infrastructure as a hostile act, whose response may not be limited to cyber activity. </p><p>Further, it said, "[i]deally, this principle of deterrence should be included in an overarching cyber doctrine for the U.S. Government. That doctrine should clearly delineate cyberespionage, cybercrime, and cyber attacks.  </p><p>"Further, a classified portion of the doctrine should establish what the U.S. Government believes to be its escalation ladder in the cyber realm—what tools does it have, what tools should it pursue, and what should the limits of cyber war be. "[P]olicymakers should consider what steps the U.S. will need to take to outstrip the capabilities of Russia, China, Iran, North Korea, and other emerging hostile actors in the cyber domain," it said.  </p><p>It also suggests the world community needs to get together to talk about cyber norms, "[j]ust as the international community has established norms and treaties about the use of technologies and weapons systems." </p><p>It said the U.S. should lead the conversation about both the norms and the limits of cyber activities (say, declaring tampering with nuclear reactors off limits, as the world did with chemical warfare after the First World War).  </p><p>The report was released by Senate Select Committee on Intelligence Chairman Richard Burr (R-N.C.) and Vice Chairman Mark Warner (D-Va.). </p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Digital Sleuths: Video Piracy Abets Hackers ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/digital-sleuths-video-piracy-abets-hackers</link>
                                                                            <description>
                            <![CDATA[ Digital Sleuths: Video Piracy Abets Hackers ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">urkUveTTNwJ4Bu9fzuAfiM</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/xThykK8nVVze86nT8cwTRJ-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 25 Apr 2019 09:30:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/xThykK8nVVze86nT8cwTRJ-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/xThykK8nVVze86nT8cwTRJ-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Devices consumers use to pirate digital copies and live streams of TV shows and movies appear also to be allowing for the theft of their owners' data in that Faustian bargain.</p><p>That is according to a nine-month probe by the <a href="https://www.digitalcitizensalliance.org/about/about-the-digital-citizens-alliance/">Digital Citizens Alliance</a>, which said that jailbroken Fire TV sticks and Kodi Boxes are being used by hackers to steal user names and passwords and breach networks.</p><p>The group has been hammering on the pirate-hacking connection for some time, producing a slick video last year to try and educate the public.</p><div class="youtube-video" data-nosnippet ><div class="video-aspect-box"><iframe data-lazy-priority="high" data-lazy-src="https://www.youtube-nocookie.com/embed/RlzEQVfNuJk" allowfullscreen></iframe></div></div><p>A study by bandwidth tracker Sandvine last year suggested that as much as 6% of all homes in North America had a Kodi open source media player in some form of content piracy mode.</p><p>Related: Fully Loaded Kodi Boxes Becoming Bigger Piracy Threat</p><p>The alliance has published its findings in a new report, Fishing in the Piracy Stream: Howthe Dark Web of Entertainment is Exposing Consumers to Harm. One harm is that users of piracy devices and apps are six times more likely to report issues with Malware, the alliance said.</p><p>“What the investigation shows is that as piracy shifts from websites and downloads to devices and apps, hackers are adapting and finding new ways to exploit consumers,” said Tom Galvin, executive director of Digital Citizens. “Consumers think these devices are like an Apple TV or Roku device, but they have a distinct difference: they have little to no incentive to protect their users. In other words, they are perfect for hackers.”</p><p><a href="https://www.nexttv.com/news/dca-warns-pirate-facilitators-416797" data-original-url="https://www.multichannel.com/news/dca-warns-pirate-facilitators-416797">Related: Digital Citizens Alliance Warns of Pirate Facilitators</a></p><p>The group says its investigation, conducted in conjunction with cybersecurity firm Dark Wolfe Consulting, also uncovered a scheme to monetize stolen Netflix accounts.</p><p>Among the findings of the investigation were:</p><p>• Researchers found malware pre-loaded on apps used to illegally watch movies, sports, and other content</p><p>• Malware in the illicit ad-supported streaming app 'Mobdro' "forwarded the researcher’s WiFi network name and password to a server that appeared to be in Indonesia."</p><p>• That Malware "uploaded, without permission, 1.5 terabytes of data from the researcher’s device."</p><p>• Users of the illicit devices are abetting hackers by enabling them to bypass network security when the devices are connected directly to a home network.</p><p>• A scheme enabled "criminals" to pose as streaming sites, like Netflix, to gain illegal access to a legitimate subscription.</p><p>Among the alliance's proposed action items in the face of that hacking threat is for 1) consumer protection agencies--like the Federal Trade Commission, which has vowed to crack down on privacy violations--to warn consumers about the risks of illicit devices; 2) law enforcement to investigate and prosecute; and 3) digital marketplaces--eBay, Craigslist, Facebook--to ban the devices.</p><p>The alliance claims among its supporters, "health, pharmaceutical, and creative industries," the last which are obviously most affected by the aforementioned content piracy.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Five Steps for Securing Broadcast Content ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/blog/five-steps-securing-broadcast-content-guest-blog</link>
                                                                            <description>
                            <![CDATA[ Five Steps for Securing Broadcast Content ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">tBSwQoBXb3cF2CxeN7VDyY</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/oeTb5pWaaF5SSoehudvKM-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 29 Nov 2018 18:43:58 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[MCN Guest Blog]]></category>
                                                                                                                    <dc:creator><![CDATA[ Vinit Duggal, VP of Network Engineering and CISO, Intelsat ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/oeTb5pWaaF5SSoehudvKM-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/oeTb5pWaaF5SSoehudvKM-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>For broadcasters and programmers, there is nothing more important than the quality, reliability and unique nature of their content. A cyberattack can disrupt streaming services, slow video performance and enable hackers to steal unique content. The availability of connected devices on a broadband network is changing the way people consume content – and posing new security challenges.</p><p>These current trends – as well as the trends toward cloud-based streaming and linear programming – require that media companies rethink their approach to cybersecurity. While there are no simple solutions, the following five steps can help media organizations identify potential risks and significantly improve their security posture.</p><p><strong>1. Harden Your Network at Every End-Point</strong></p><p>The same new opportunities that enable programmers to contribute content, and enable customers to obtain content, have opened new inroads for malicious actors to steal or disrupt content. Every end-point across the distribution cycle needs to be assessed, tested and secured. Companies need to consider how their content data stores are protected, whether their transit is secure, and if everything is protected by encryption.</p><p>For satellite operators, it is critical to use multi-platform, layered controls to establish proactive security that limits opportunities for content and other data to be compromised on the ground or in orbit.</p><p><strong>2. Use Layered Security</strong></p><p>Multiple layers of security make it harder to breach your system and give your team valuable time to detect and respond before any data is compromised.</p><p>In the satellite industry, the most progressive operators utilize a pervasive security framework that includes layered controls, a mature compliance program, extensive audit and assessment initiatives, and a coordinated incident-response process.</p><p><strong>3. Insist Your Partners Follow Best Practices</strong></p><p>Even if you secure all the end-points you manage and employ layered-security measures, your content remains at risk if your partners do not follow best practices and are not transparent in their security posture. Media companies need to ensure that each ecosystem partner has the right security requirements in place and has regular communication to keep up with the threat environment and maintain security in orbit and on the ground.</p><p>The most progressive satellite operators maintain secure flight operations for all wide-beam and spot-beam satellites via a segmented control network that ensures key assets are being managed in a proactive way. Those operators also have multiple levels of cybersecurity in place for their partners, segmented by need of network access.</p><p>It is critical for satellite operators to proactively work with media customers to ensure their connected ecosystem is protected against active threats at all stages of uplink, downlink and terrestrial transport.</p><p><strong>4. Practice Rapid Incident Response</strong></p><p>Rapid incident response is what distinguishes an advanced cybersecurity program from others – and prevents an incident from becoming a significant breach. Breaches will occur, but the ability to rapidly detect, thwart and recover is what can make all the difference in the world.</p><p>Advanced digital payloads, such as those on Intelsat <a href="http://www.intelsat.com/global-network/satellites/epicng/">EpicNG</a> satellites, can rapidly identify, communicate, move and mitigate interference issues – thus limiting the scope and severity of the breach.</p><p><strong>5. Conduct Independent Security Audits</strong></p><p>Cybersecurity is too complex and disruptive to rely solely on internal security reviews. Many companies have engaged outside cybersecurity firms and sought accreditations to ensure their current program and security posture is current and effective. If an outside firm identifies security issues, they can provide recommendations to further harden internal controls.</p><p>When evaluating satellite operators, media organizations should select only those that have been audited by a major, independent auditing firm. Also, insist that your satellite operator has completed a Service Organization Control 3 (SOC 3) review of security controls.</p><p><strong>Conclusion</strong></p><p>Cybersecurity will become a greater challenge as more content is distributed over multiple platforms. As media organizations become increasingly connected, the demand for cybersecurity solutions will increase significantly.</p><p>There are no simple solutions to ensure broadcast security. However, the five steps outlined above can substantially improve the security of your media content.</p><p><em>About the Author: Vinit Duggal is Vice President of Network Engineering and CISO at Intelsat, the world’s largest satellite operator.</em></p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ CTIA Launches IoT Certification Program ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/ctia-launches-iot-certification-program</link>
                                                                            <description>
                            <![CDATA[ CTIA Launches IoT Certification Program ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">ontERp8q4ZqpnyWMSLpcCN</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/F7PFHrUkCaxymjZfjY4wT6-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 21 Aug 2018 14:45:08 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/F7PFHrUkCaxymjZfjY4wT6-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/F7PFHrUkCaxymjZfjY4wT6-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>CTIA, the wireless association, has launched a new cybersecurity certification program for Internet of Things (IoT) devices developed in collaboration with nationwide carriers including AT&T, Verizon and T-Mobile.</p><p>Devices can be submitted for testing starting in October.</p><p><a href="https://www.broadcastingcable.com/needtoknow/iot-poses-new-cybersecurity-threats-for-cable">Related: IoT Poses New Security Threats for Cable</a></p><p>CTIA says it will provide a more secure network for smart cities, connected cars, telehealth and other applications connected by wireless nets.</p><p>It could also help <a href="https://www.broadcastingcable.com/news/ftc-presses-for-iot-device-security">head off government regulations</a>, particularly since it is based in recommendations from the Commerce Department's National Telecommunications & Information Administration and the National Institute of Standards & Technology.</p><p>“America’s wireless industry has long been a leader in cybersecurity best practices and establishing an industry-led cybersecurity certification program for IoT devices is a major step in building a trusted, secure wireless ecosystem for the Internet of Things,” said Tom Sawanobori, CTIA SVP and CTO, in a statement.<br/></p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Need to Know: IoT Poses New Cybersecurity Threats for Cable ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/needtoknow/need-to-know-iot-poses-new-cybersecurity-threats-cable</link>
                                                                            <description>
                            <![CDATA[ Need to Know: IoT Poses New Cybersecurity Threats for Cable ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">aRFhkB7cu4txA3ahCiiR3w</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/NBjwUXcbxkcH8kFXt7pL7W-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 02 Jul 2018 12:00:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                                                                <author><![CDATA[ garyarlen@gmail.com (Gary Arlen) ]]></author>                    <dc:creator><![CDATA[ Gary Arlen ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/77vzvgXxLcw7QmjLLWvE7Y.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/NBjwUXcbxkcH8kFXt7pL7W-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/NBjwUXcbxkcH8kFXt7pL7W-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <iframe frameborder="" height="" width="" data-lazy-priority="high" data-lazy-src="https://content.jwplatform.com/players/KSXt7NAP-uufpz0H5.html"></iframe><p>As cybercrimes and incidents of institutional hacking increase, cybersecurity is a critical concern for big TV distributors that give consumers access to the internet.</p><p>It’s also a strange topic for cable operators, though, because it’s rarely discussed in public, beyond the chorus of concern from consumer data watchdogs.</p><p>The Federal Communications Commission, whose leaders have made lofty speeches about the importance of cybersecurity, offers a perfunctory summary of its cybersecurity objectives, with few details about its cable or telco initiatives, in describing the FCC Cybersecurity and Communications Reliability (CCR) Division.</p><p><strong>Need to Know:</strong><a href="https://www.nexttv.com/needtoknow/need-to-know-cybersecurity" data-original-url="https://www.multichannel.com/needtoknow/need-to-know-cybersecurity">Cybersecurity</a></p><p>NCTA–The Internet & Television Association and the American Cable Association emphasize that “the entire cable industry takes cybersecurity very seriously” and back security and risk management practices. But details about those efforts — or the failures in the system — are scant.</p><p>Still, the scale of cyber-threats to the cable industry is significant and growing. In Akamai’s Summer 2018 State of the Internet/Security: Web Attack report, the firm measured a 16% increase in the number of distributed denial of service (DDoS) attacks recorded since last year globally, with new and more devious attack methods noted.</p><p>There are also constant reminders of new threats. This past May, researchers found that U.S. customers’ WiFi connections could be harvested from a cable operator's bill or email. Comcast said <a href="https://www.nexttv.com/news/comcast-locks-down-bug-could-expose-wifi-credentials" data-original-url="https://www.multichannel.com/news/comcast-locks-down-bug-could-expose-wifi-credentials">it quickly disabled the vulnerability</a> in its activation portal, established an additional layer of authentication and that no personal user info was ever accessed.</p><figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="u9eTS2bS329YkWJdra6vVD" name="" alt="Steve Goeringer, principal security architect at CableLabs" src="https://cdn.mos.cms.futurecdn.net/u9eTS2bS329YkWJdra6vVD.jpg" mos="https://cdn.mos.cms.futurecdn.net/u9eTS2bS329YkWJdra6vVD.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div><figcaption itemprop="caption description" class="pull-"><span class="caption-text">Steve Goeringer, principal security architect at CableLabs </span></figcaption></figure><p>Steve Goeringer, principal security architect at CableLabs, said cable has been “at the forefront of cybersecurity of broadband” thanks to the DOCSIS cable-modem specification, which has employed strong encryption and authentication since its version 1.1. Subsequent updates have created further barriers to DoS and DDoS, he added.</p><p>“Delivering services the way they were intended, including protecting customer privacy, is always critical,” Goeringer said. He cited pirated over-the-top content, which aside from being illegal, also exposes consumers to malicious software and theft of personal information, and the growing presence of Internet of Things devices, which are often insufficiently protected and can bring malicious software into the system.</p><p><a href="https://www.kyrio.com">Kyrio, a CableLabs subsidiary</a> that provides technology services, has been focusing on Internet of Things security. “Companies that can provide strong security at scale will be able to use that as a key differentiator for their products, protect their brand and future-proof their products,” Ron Ih, the company’s director of business development, said <a href="https://www.kyrio.com/blog/internet-of-things-security">in a June 4 blog post</a>. Putting an emphasis on cable’s growing involvement with wireless services, he observed that, “expanded wired and wireless connectivity accelerates the need for a more scalable security solution for these networked devices” in the IoT value chain.</p><p>CableLabs vice president of technology policy Rob Alderfer recently acknowledged the need for government/industry cooperation, especially in the fast-emerging IoT category.</p><p>“With the constant barrage of new cyber incidents, often driven by IoT devices vulnerable to exploitation, governments at all levels are taking notice and grappling with the rapidly evolving threat,” according to a CableLabs summary of his remarks at a IoT workshop. “Cybersecurity is no longer the domain of the IT department, but rather a key area of governance for all enterprises.” </p><p><strong>Need to Know:</strong><a href="https://www.nexttv.com/needtoknow/need-to-know-cybersecurity" data-original-url="https://www.multichannel.com/needtoknow/need-to-know-cybersecurity">Cybersecurity</a></p><p><strong>Need to Know More?</strong></p><p><strong>Have a burning question about cybersecurity — or maybe request for a different topic you’d like to see us tackle? Email us at <a href="mailto:needtoknow@nbmedia.com">needtoknow@nbmedia.com</a> and we’ll put our top minds on it!</strong></p><p><strong>More from Future on cybersecurity:</strong></p><ul><li><a href="https://www.tvtechnology.com/needtoknow/need-to-know-protecting-the-broadcast-plant">Cybersecurity and Television [TV Technology]</a></li><li><a href="https://www.twice.com/needtoknow/cybersecurity-retail-how-to-stop-the-bleeding">Cybersecurity and Retail [TWICE]</a></li><li><a href="https://www.radioworld.com/needtoknow/cybersecurity-its-not-just-a-problem-for-it">Cybersecurity and Radio [Radio World]</a></li><li><a href="https://www.avnetwork.com/needtoknow/need-to-know-cybersecurity-and-av">Cybersecurity and ProAV [AV Network]</a></li><li><a href="https://www.residentialsystems.com/needtoknow/cybersecurity/resi-need-to-know-cybersecurity">Cybersecurity and Residential Integration [Residential Systems]</a></li><li><a href="http://www.prosoundnetwork.com/needtoknow/need-to-know-cybersecurity-and-pro-audio">Cybersecurity and Pro Audio [Pro Sound News]</a></li><li><a href="https://www.techlearning.com/resources/five-cybersecurity-safeguards-for-school-districts">Cybersecurity and Education [Tech & Learning]</a></li></ul>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Comcast Locks Down Bug That Could Expose WiFi Credentials ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/comcast-locks-down-bug-could-expose-wifi-credentials</link>
                                                                            <description>
                            <![CDATA[ Comcast Locks Down Bug That Could Expose WiFi Credentials ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">v4YoT51Cpzkac2KmBD8KYX</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/VFEiE3KN335RNVG6Uug4xd-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 22 May 2018 17:49:44 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                    <category><![CDATA[Distribution]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/VFEiE3KN335RNVG6Uug4xd-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/VFEiE3KN335RNVG6Uug4xd-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Comcast said it moved quickly to disable a vulnerability in its activation portal for broadband gateways that could enable someone to obtain a customer’s WiFi network name and password using a customer's account number and address, rather than going through an additional layer of authentication, such as also having to provide a cell phone number.</p><p>As <a href="https://www.zdnet.com/article/comcast-bug-leaks-xfinity-home-addresses-wireless-passwords/">ZDNet first reported</a>, two security researchers discovered the vulnerability, noting that a customer’s WiFi credentials could be uncovered if someone, for example, obtained a discarded bill or email from the cable operator. The researchers said the method could also be used to change WiFi network names and passwords and lock out the customer temporarily.</p><p>Using that method, a person could obtain machine data, but not customer data.</p><p>Comcast said it removed the option that caused the vulnerability soon after it was alerted to it, and has also launched an investigation.</p><p>“There’s nothing more important than our customers’ security,” a Comcast spokesperson said in a statement. “Within hours of learning of this issue, we shut it down. At no time did this site enable anyone to access customers’ personal usernames and passwords and we have no reason to believe that any account information was accessed. We are conducting a thorough investigation and will take all necessary steps to ensure that this doesn’t happen again.”</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Adopting a 'Cyber-Posture' to Fight Digital Assaults ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/blog/adopting-cyber-posture-fight-digital-assaults</link>
                                                                            <description>
                            <![CDATA[ Adopting a 'Cyber-Posture' to Fight Digital Assaults ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">j1WDMH32w85bNEgZUUF3c5</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/9vDte9qXoUnVYVrv6rZsub-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Fri, 20 Apr 2018 21:36:30 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[As I Was Saying]]></category>
                                                                                                <author><![CDATA[ garyarlen@gmail.com (Gary Arlen) ]]></author>                    <dc:creator><![CDATA[ Gary Arlen ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/77vzvgXxLcw7QmjLLWvE7Y.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/9vDte9qXoUnVYVrv6rZsub-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/9vDte9qXoUnVYVrv6rZsub-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Cyber-attacks on "critical infrastructure" and theft or espionage involving commercial intellectual property remain the top concerns of the global cybersecurity community, Robert L. Strayer, Deputy Assistant Secretary for Cyber and International Communications and Information Policy at the U.S. Department of State said Thursday (April 19).</p><figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="9vDte9qXoUnVYVrv6rZsub" name="" alt="Robert L. Strayer, Deputy Assistant Secretary for Cyber and International Communications and Information Policy " src="https://cdn.mos.cms.futurecdn.net/9vDte9qXoUnVYVrv6rZsub.jpg" mos="https://cdn.mos.cms.futurecdn.net/9vDte9qXoUnVYVrv6rZsub.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div><figcaption itemprop="caption description" class="pull-"><span class="caption-text"><em>Robert L. Strayer, </em>Deputy Assistant Secretary for Cyber and International Communications and Information Policy  </span></figcaption></figure><p>In remarks at the Media Institute's monthly luncheon in Washington, Strayer emphasized, "No business is unaffected by cybertheft" and warned that "we will continue to see threats to the digital ecosystem."   </p><p>Strayer declined, when asked by <em>MCN</em>, to specify media or telecom operators, including cable TV, as part of the "critical infrastructure." But he acknowledged that the U.S. Department of Homeland Security and other federal agencies are constantly examining ways to foil "bad actors" who could disrupt or hack into the operations of American companies.</p><p>He said U.S. and global partners "have to think of all the misuses" of cyber systems. He emphasized the growing role of the digital economy and noted that international groups such as the G7 and G20 nations "are increasingly looking at technology issues" such as blockchain, that are affecting traditional global systems.</p><p>"As we look around the world, we want to assure an open flow of data," Strayer said, but at the same time "it is absolutely critical to preserve a decentralized model." He emphasized that many countries want to regulate the internet, but that U.S. policy will continue to "push back against that." </p><p>Strayer acknowledged that in the U .S. and most democracies, the digital infrastructure is in the hands of the private sector.</p><figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="z3khXr7FLzfJgkpVLZjMxg" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/z3khXr7FLzfJgkpVLZjMxg.jpg" mos="https://cdn.mos.cms.futurecdn.net/z3khXr7FLzfJgkpVLZjMxg.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>"We should not expect companies to operate in cyberspace any differently" than they do in conventional environments, Strayer said, but he warned that the task - including public/private collaboration - may be very challenging.</p><p>New cybersecurity standards will be "voluntary," he said, adding that "industry is driving the solution." He cited the need "to achieve maximum economic value" as companies battle cyberattacks.</p><p>Strayer cited Europe's "General Data Protection Regulation (GDPR)" that goes into effect on May 25, restricting many ecommerce and digital media practices in an effort to assure consumer privacy. He did not offer an opinion about whether such restraints may eventually emerge in the U.S., especially amid the current furor over activities at Facebook, Google and other companies that collect personal data.</p><p>He focused, instead, on ways that federal enforcement agencies are developing systems "to improve our defenses" and create a "cyber-posture" to fight cybercrimes. He said that systems are now "so interconnected that these threats can race around the world" almost instantly.</p><p>To battle such scourges, Strayer explained that the State Department and other U.S. agencies have about 150 "digital economy officers" at embassies and other locations worldwide to identify potential cybercrimes and to development enforcement tactics, often in collaboration with host countries.</p><p>Strayer also cited forecasts that estimate about 200,000 people will be needed to handle America's cybersecurity requirements in the coming years - a significant job creation stimulant.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Verizon Launches Security Service for the Smart Home ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/verizon-launches-security-service-smart-home-418725</link>
                                                                            <description>
                            <![CDATA[ Verizon Launches Security Service for the Smart Home ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">qPTwMfgjtF2SwEAEe2GEWC</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/gpeNMWtQDW9LR4HwMk3LN6-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Fri, 16 Mar 2018 19:37:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/gpeNMWtQDW9LR4HwMk3LN6-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/gpeNMWtQDW9LR4HwMk3LN6-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="gpeNMWtQDW9LR4HwMk3LN6" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/gpeNMWtQDW9LR4HwMk3LN6.jpg" mos="https://cdn.mos.cms.futurecdn.net/gpeNMWtQDW9LR4HwMk3LN6.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>Applying a layer of security and customer support for connected smart home devices, Verizon has launched TechSure, a service for its Fios and other high speed internet customers.</p><p>Verizon is selling three tiers of service:</p><p>-TechSure ($10 a month): Includes 24/7 phone support for most devices connected to the home network, and includes help with software installation, device setup support, and troubleshooting.</p><p>-TechSure Plus ($15 a month): The above plus identity theft protection, virus protection, and parental controls from partners that include LifeLock and McAfee.</p><p>-TechSure Premium ($30 a month): Everything in TechSure Plus, as well as added protection for many connected devices in the home (excludes mobile phones, which can be covered under a Total Mobile Protection plan). Under this tier, if a TV, tablet, smart thermostat, or any other eligible gadget breaks down, Verizon will repair or replace it.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Kyrio Teams on IoT Device Security ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/kyrio-teams-iot-device-security-418389</link>
                                                                            <description>
                            <![CDATA[ Kyrio Teams on IoT Device Security ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">erqmDvQqBKMvUPbNQP8L4t</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/JedNgg7pYiBkLqCtbjRDd3-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 27 Feb 2018 18:59:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Platforms]]></category>
                                                    <category><![CDATA[Technology]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/JedNgg7pYiBkLqCtbjRDd3-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/JedNgg7pYiBkLqCtbjRDd3-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="JedNgg7pYiBkLqCtbjRDd3" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/JedNgg7pYiBkLqCtbjRDd3.jpg" mos="https://cdn.mos.cms.futurecdn.net/JedNgg7pYiBkLqCtbjRDd3.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>Kyrio, the for-profit unit of CableLabs, has teamed with Microchip to develop embedded device security for the Internet of Things (IoT) sector.</p><p>Kyrio said it is the first certificate authority and Microchip Security Design Partner as part of an effort aimed at driving scale into IoT device security.</p><p><a href="https://www.nexttv.com/news/cablelabs-unit-tackles-iot-testing-408228" data-original-url="https://www.multichannel.com/news/cablelabs-unit-tackles-iot-testing-408228">RELATED: CableLabs Unit Tackles IoT Testing</a></p><p>“The mission of this partnership is to embed IoT devices with digital certificates in secure hardware in a way that integrates well with hardware manufacturing process flows,” Ron Ih, director of business development at Kyrio, explained in this <a href="https://www.kyrio.com/blog/microchip-technologies-inc-partnership/">blog post</a>. “This strategy will make it easy for IoT device manufacturers to enable enterprise-grade security without needing to be security experts.”</p><p>He noted that providing high security for networked devices historically requires complex back-end security software, security specialists, and processes “that did not fit well with hardware manufacturing flows,” and represents a situation that’s not sustainable with an IoT world that is seeing the number of connected devices explode.</p><p><a href="https://www.nexttv.com/news/kyrio-takes-over-cablelabs-certification-testing-program-413305" data-original-url="https://www.multichannel.com/news/kyrio-takes-over-cablelabs-certification-testing-program-413305">RELATED: Kyrio Takes Over CableLabs Certification Testing Program</a></p><p>“IoT devices – from lightbulbs to cars – need security at the core, not as an afterthought,” Ih added. “By providing a strong managed Public Key Infrastructure (PKI) that fits within the existing design flow and supply chain familiar to device manufacturers, we are moving closer to the standardization the IoT industry requires to grow securely,” Ih explained.</p><p><a href="https://www.nexttv.com/news/cablelabs-rebrands-security-spin-397080" data-original-url="https://www.multichannel.com/news/cablelabs-rebrands-security-spin-397080">RELATED: CableLabs Rebrands Security Spin-Off</a></p><p>Microchip, he said, already works with customers in several markets, including consumer, automotive, communications and industrial control.</p><p>Though Kyrio is the first certificate authority for Microchip’s Design Partner Program, other companies involved with it include cloud providers such as Google, Afero and Amazon Web Services, CycloneCrypto (a stack provider), and Cerberus, a design house based in the U.K.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ IoT's Dynamic Cybersecurity Demands Require 'Light Touch' Rules, AEI Panel Says ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/blog/iots-dynamic-cybersecurity-demands-require-light-touch-rules-aei-panel-says-418388</link>
                                                                            <description>
                            <![CDATA[ IoT's Dynamic Cybersecurity Demands Require 'Light Touch' Rules, AEI Panel Says ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">3WmHRqe7xfSmscmNy476fR</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/2nEkFDhRaKz5r5DHeUQLdF-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 27 Feb 2018 18:00:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[As I Was Saying]]></category>
                                                                                                <author><![CDATA[ garyarlen@gmail.com (Gary Arlen) ]]></author>                    <dc:creator><![CDATA[ Gary Arlen ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/77vzvgXxLcw7QmjLLWvE7Y.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/2nEkFDhRaKz5r5DHeUQLdF-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/2nEkFDhRaKz5r5DHeUQLdF-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Speaking alongside other panelists at a Capitol Hill luncheon briefing earlier this month, Sen. Ed Markey (D-Mass.) reiterated his concern that IoT stands for "Internet of Threats."<br/><br/>Rep. Ted Lieu (D-Calif.) insisted that consumers should know a so-called smart device can be hacked after they install it at home, but that government protections should have a "very light touch."<br/><br/>Chris Calabrese, VP-policy at the Center for Democracy and Technology, emphasized that the approval seal proposed in the Markey-Lieu Cyber Shield legislation is merely a way "to figure out if we can trust these devices."<br/><br/>And they all acknowledged that any such law will have to be dynamic because of the rapidly changing factors in the Internet of Things.<br/><br/>Shane Tewes, a visiting fellow at the American Enterprise Institute, organized and moderated the <a href="https://youtu.be/DrnFcLuqzd4">"Securing the Internet of Things" seminar</a> Feb. 14. She characterized it as a good way "to get people's attention" even though some parties "are not going to be happy about it." In particular, she told <em>Multichannel News</em> after the event, manufacturers "don't want to put this in a box and get sued."<br/><br/>"You have to find the middle ground," Tewes said, adding quickly that AEI is not endorsing the legislation, but rather acknowledging that "something is going to happen" and the group doesn't want to "shy away" from the process.<br/><br/>Although it was unusual for a right-leaning think-tank such as AEI to showcase legislation by two liberal Democrats, the event hit a topic of interest to cable operators and other carriers as well as equipment makers -- all of whom are concerned about the assigned liability if home IoT devices are hacked. Markey is a member of the Senate Commerce Committee and its subcommittees handling communications and consumer protection. Lieu sits on the House Judiciary Committee. They introduced the <a href="http://www.broadcastingcable.com/news/washington/new-bill-would-create-iot-cybersecurity-seal-approval/169695">Cyber Shield Act of 2017</a> (S.2020 and H.R.4163) in October.<br/><br/>Their proposal calls for a voluntary cybersecurity program for the Internet of Things, with input from a public/industry/academic advisory committee; one objective is to create product labels (physical or digital) that identify IoT devices that meet strong cybersecurity standards. The seal would show consumers that devices -- ranging from baby monitors to phones, laptops and other networked items -- are safe from intrusions. The voluntary self-certification program in the legislation would put the program into the Department of Commerce, also home of the National Institute of Standards and Technology and the National Telecommunications and Information Administration.<br/><br/><strong>Dangers and Dynamic Solutions</strong><br/>Markey, in his opening remarks at the AEI session, warned, "We're here to talk about the sinister side of cyberspace: the harm that can be inflicted."<br/><br/>He emphasized that every IoT device is "something that can be compromised ... in ways that people don't think about but they should." He said the Cyber Shield "seal" would "enable consumers to make informed decisions" when they buy and install devices on a home network and "reward businesses that offer best practices." In the process, the legislation would "create a roadmap of improvements for manufacturers and their devices," Markey added.<br/><br/>Lieu concentrated on the "living, breathing process which would change over time as tech continues to change."<br/><br/>"The reason we're not very specific in this statute is [because] when it comes to technology, government should have a very light touch," Lieu added, emphasizing his expectation that that industry will "self-regulate." He explained that the voluntary program established by the proposed legislation would rely on a commission of diverse experts to set standards.<br/><br/>Industry-wide self-regulating standards, however, became the first matter addressed during a follow-on panel.<br/><br/>"We haven't seen a lot of coordination behind the standard," said CDT's Calabrese. "A lot of private entities have tried to put out standards, and the result has been a jumble."<br/><br/>Nonetheless, he agreed that certification of some sort is valuable "to figure out if we can trust these devices." He cited the recent <a href="https://www.bitag.org">BITAG</a> report on technical aspects of IoT security and privacy as a model for such cross-industry collaboration. (The Broadband Internet Technical Advisory Group's members include Comcast, Charter, AT&T, Dish Network, Cisco, CableLabs, NCTA and Level 3.)<br/><br/>Rena Mears, head of consulting at DLA Piper law firm, pointed to the role of communications companies as devices are added to home networks.<br/><br/>"The level of data sharing is immense and going to get bigger," she said. "The risk with IoT is that each individual product is so small ... but taken together, it is immense." That will lead to "supply chain issues" which will put the burden "back to industry," Mears added.<br/><br/>"Even in an organized system, it's hard to find where the vulnerability or breach is," she said, stressing that liability "sits thick and heavy" in complex networks, such as IoT relationships.<br/><br/>"When I look at a home that has become a platform, and I look at the immense possibilities for IoT," Mears said, she envisions both values and dangers.<br/><br/>She called the ecosystem for IoT liabilities "just mind-boggling."<br/><br/>"There will have to be some set of rules that apply at some broader level rather than the traditional way of [managing] every little piece," Mears said.<br/><br/>Robert Stein, VP-government and regulatory affairs at InterDigital, a research and development company that provides wireless technologies for mobile devices, networks and services, acknowledged that, "We haven't thought that far ahead about who oversees" the integration of IoT connections.<br/><br/>The panel agreed that the Cyber Shield legislation is forcing the industry to examine specifics about digital security. Beyond the integrated role for carriers and hardware providers, there are "complicated realities" such as locked passwords. If a manufacturer installs a digital lock that a consumer cannot update, they wondered how it would affect the future interoperability with other home devices -- especially if a device is compromised or discarded.<br/><br/>The discussion echoed an early remark by Calabrese, who characterized the proposed legislation as an interim measure.<br/><br/>"No one should mistake it for a solution," he said.<br/><br/><em>Pictured (from left): Chris Calabrese, Rena Mears and Robert Stein, panelists at AEI's IoT security briefing Feb. 14.</em></p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Cox Business Expands Security Offering ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/cox-business-expands-security-offering-417961</link>
                                                                            <description>
                            <![CDATA[ Cox Business Expands Security Offering ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">eRcuR1v4nAVT6PVYdsVF49</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/aGgdZEJTfYtkBcWf8VsRKc-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 06 Feb 2018 14:22:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                    <category><![CDATA[Distribution]]></category>
                                                                                                                    <dc:creator><![CDATA[ MCN Staff ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/aGgdZEJTfYtkBcWf8VsRKc-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/aGgdZEJTfYtkBcWf8VsRKc-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="aGgdZEJTfYtkBcWf8VsRKc" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/aGgdZEJTfYtkBcWf8VsRKc.jpg" mos="https://cdn.mos.cms.futurecdn.net/aGgdZEJTfYtkBcWf8VsRKc.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>Cox Business, the commercial services unit of Cox Communications, said it will offer its security product across all regions as it prepares to make it available soon in additional markets that include Cleveland, Roanoke, Santa Barbara, Palos Verdes and Sun Valley.</p><p>That offering, calledCox Business Security Solutions (CBSS), is underpinned by a 24/7 professionally-monitored UL Listed, 5-Diamond facility, Cox Business said.</p><p>CBSS uses a broadband connection with a wireless backup to help customers continually monitor the system and verify ongoing security. It also ties in a mobile alert system with cameras, enables customers to access and control the system with any connected smartphone, tablet or PC/laptop.</p><p>“We’re thrilled to expand Cox Business Security Solutions nationwide,” Steve Rowley, executive vice president, Cox Business, said in a statement. “Simply put, business owners must monitor their environments and create a ‘smart business’. With Cox Business Security Solutions, our video surveillance and detection systems help drive confidence in asset protection and provide peace of mind.”</p><p>Cox Business provides said it provides voice, data, video and security services for more than 350,000 small and regional businesses.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Telecom Policymaking a Piecemeal Effort, Walden Predicts ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/blog/telecom-policymaking-piecemeal-effort-walden-predicts-417840</link>
                                                                            <description>
                            <![CDATA[ Telecom Policymaking a Piecemeal Effort, Walden Predicts ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">6qh9du8bisKuAN9Duz6F2u</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/eWzM9L8Rtd7TwnveDB89aV-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 31 Jan 2018 16:15:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[As I Was Saying]]></category>
                                                                                                <author><![CDATA[ garyarlen@gmail.com (Gary Arlen) ]]></author>                    <dc:creator><![CDATA[ Gary Arlen ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/77vzvgXxLcw7QmjLLWvE7Y.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/eWzM9L8Rtd7TwnveDB89aV-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/eWzM9L8Rtd7TwnveDB89aV-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Congressional action to update the Telecommunications Act will be incremental, according to Rep. Greg Walden (R-Ore.), chair of the House Energy & Commerce Committee.<br/><br/>"We're looking at it piece by piece," Walden said at the <a href="http://www.stateofthenet.org/live/">2018 State of the Net conference</a> on Monday, Jan. 29. He added that Congress also "needs to look at the FCC operation" overall, acknowledging that "we live in a different era" than when the 1996 Telecom law was enacted. Walden said he expects a "program-by-program" evaluation, but did not suggest any timetable or urgency for the review.<br/><br/>More From SOTN: Rosenworcel Seeks Wider Investigation of Fake Comments<br/><br/>Walden's outlook on piecemeal telecom reform legislation echoes the view of his Senate counterpart Sen. John Thune, chairman of the Senate Committee on Commerce, Science, and Transportation Committee. At the SOTN conference last year, Thune also avoided any expectation that an omnibus revision of the Telecommunications Act is likely.<br/><br/>Walden also addressed net neutrality and broadcast spectrum issues in his remarks. He blamed the FCC's 2015 Open Internet ruling for creating an unnecessary barrier, but stopped short of promising any Congressional lawmaking on the topic either, as others have suggested.<br/><br/>"We ought to be able to find common ground to prevent bad behavior," such as paid prioritization, Walden said. But he contended that the issues are "not fully understood," saying, "We need to get certainty on what will drive more investment."<br/><br/>Related: Walden Says House E&C Will Hold Hearing on Paid Prioritization<br/><br/>Walden said he believes that lawsuits about the issue "will force America further back" in Internet development. He did promise that his committee will hold hearings on the topic, but did not specify a schedule.<br/><br/>In addition to his vow to find more money for the broadcast channel repack, required after last year's incentive spectrum auction, Walden vowed "a continuing effort to find more spectrum" and indicated that he expects that the FCC will "proceed with more spectrum auctions."<br/><br/><a href="http://www.broadcastingcable.com/news/washington/walden-we-need-find-3b-auction-repack/171422">Related | broadcastingcable.com: Walden Says $3B Needed for Auction Repack</a><br/><br/>Asked about white space uses in the broadcast spectrum, Walden said he'd like to "maximize spectrum use but not interfere" with current operations.<br/><br/>"I'm not opposed so long as there is no interference," he explained.<br/><br/>A subsequent SOTN session on "The Fragmentation of Communications Policy" focused on privacy. Former Federal Trade Commission chair Jon Leibowitz, now in private practice at Davis Polk and Wardell law firm, said that the FTC is a "muscular agency" in this category and warned that state oversight of the issue is unacceptable.<br/><br/>"A federal solution - not a patchwork of state rules" is needed, Leibowitz said.<br/><br/>Another panelist, former National Telecommunications and Information Administration Director Larry Irving, now a telecom consultant, responded that the "FTC is not the right agency to regulate privacy over the Internet." At that, Chris Lewis, VP at Public Knowledge, insisted, "There is no reason why you can't have multiple cops on the beat," saying such an arrangement would provide "robust power" for enforcement.<br/><br/>Irving characterized the "likelihood of legislation in the near term is de minimis."<br/><br/><strong>DOJ's Views of Security</strong><br/>Deputy Assistant Attorney General Rod Rosenstein focused on security in his remarks at the final SOTN session. Attendees were cautioned that he would not talk about or respond to questions about that day's revelations relating to the Russia allegations involving White House and Congressional activities.<br/><br/>Nonetheless, Rosenstein plunged into the fray, warning that, "We'll probably have more [cyber attacks] in the future with people protecting themselves" against such incursions.<br/><br/>He also said the DOJ is seeking "responsible encryption."<br/><br/>"We favor encryption but not to the exclusion of legitimate law enforcement concerns," he said. "We need to continue to improve our cyber defenses so we can help private sector protect themselves.”<br/><br/>He urged that "federal agencies work with industry to combat threats."<br/><br/>"We need to improve our cyber defenses to help protect the sector," he said.<br/><br/>In response to a question about intellectual property protection, Rosenstein said it was a "top priority for us," citing global coordination of efforts to fight piracy.<br/><br/><strong>Public Dismay/Confusion</strong><br/>Earlier in the day, Sally Shipman Wentworth, vice president of Global Policy Development at the Internet Society, described an ISOC study which found that the user-centric vision of the Internet "has been lost." Commercial providers and government involvement now is dominant in Internet operations, factors that users don't understand, she said.<br/><br/>Wentworth also noted the "enormous explosion of threat vectors," singling out the massive role that government agencies will play in the Internet of Things, such as sensors for traffic, local security and other public services. She said that such activities will involves organizations that "have not necessarily been part of the Internet discussion so far," suggesting potential problems as new ventures and services emerge.<br/><br/>Her concerns were reinforced by findings from another new research report, unveiled at the SOTN conference.<br/><br/>Eighty-five percent of Americans said that the Internet has had a positive impact on their lives, but 56 percent said they believe it has weakened American democracy, according to the study by the Internet Education Foundation <a href="http://www.neted.org">www.neted.org</a> , which produces the SOTN conference. The "Society Under Strain" report found that Americans are "skeptical about the ability to secure the Internet" and about financial innovations that many don’t understand.<br/><br/>“Americans have high hopes for what the Internet can mean to their lives, but as technology advances it creates new concerns that ultimately end up before Congress and regulators,” said Tim Lordan, executive director of the Internet Education Foundation.<br/><br/>"Americans look to policymakers for answers," he added. "A majority (53%) believe that the laws and regulations that we have today aren’t working to deal with the issues that arise due to the Internet."<br/><br/>The study, conducted by <a href="http://www.vrge.us">Vrge Strategies</a>, found that Americans are mixed on whether artificial intelligence and virtual assistants enabled by it will be beneficial or harmful. Thirty-seven percent said it will benefit them by making their life and work easier; nearly the same amount (36%) said it will be harmful by creating security and privacy issues.<br/><br/>According to the report's analysis, Americans overwhelmingly expect Internet companies to protect customers from cyberattacks: 52% cited Internet companies, 19% said the government and 18% expect consumers themselves to be responsible for protecting their Internet uses.<br/><br/>Nearly half of respondents (48%) said that while some incidents can be prevented, the “Internet cannot be protected from most cyber attacks.”<br/><br/><em>Pictured: Rep. Greg Walden speaking at the 2018 State of the Net conference.</em></p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Comcast Ventures Invests in BigID ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/comcast-ventures-invests-bigid-417803</link>
                                                                            <description>
                            <![CDATA[ Comcast Ventures Invests in BigID ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">r6EbpwzhSsaSYAAvxwqsGv</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/xsdatQzc3o73wEtRFKudrn-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 30 Jan 2018 14:11:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Business]]></category>
                                                    <category><![CDATA[Platforms]]></category>
                                                    <category><![CDATA[Technology]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/xsdatQzc3o73wEtRFKudrn-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/xsdatQzc3o73wEtRFKudrn-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="xsdatQzc3o73wEtRFKudrn" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/xsdatQzc3o73wEtRFKudrn.jpg" mos="https://cdn.mos.cms.futurecdn.net/xsdatQzc3o73wEtRFKudrn.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>Comcast Ventures participated in a $14 million “A” round of funding in BigID, a startup focused on enterprise data protection and privacy for personal data.</p><p>Other new investors in the round included ClearSky Security and SAP.iO. Previous investor BOLDstart Ventures also participated in the round, with takes BigID’s funding total to about $16.1 million.</p><p>BigID said it will use the funds to shore up its engineering team in Israel and expand its global sales and marketing efforts for its “data-driven personal information (PI) protection, privacy and governance platform.”</p><p>The company said its platform combines machine learning with identity intelligence to find, track and “de-risk” identity data at petabyte scale.</p><p>Founded in 2016, BigID is headquartered in New York, and launched its initial product in mid-2017.  </p><p>Tied to the A round, announced in conjunction with CyberTech Israel, BigID said ClearSky Security Managing Director and former Blackstone CISO Jay Leek has joined its board of directors.</p><p>“Customers are the lifeblood of any business and unless an organization can properly safeguard the security and privacy of their customer data they will not survive in the digital economy,” Dimitri Sirota, CEO at BigID, said in statement. “Regulations like GDPR [General Data Protection Regulation] crystallize the need for companies to understand their data. BigID gives companies a first-of-its-kind way to find, secure and govern their identity data across the data center and cloud. After all, you can’t know your customer unless you first know their data.”</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Cable-Tec Expo: The Boogeyman Is Real in IoT Security ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/cable-tec-expo-boogeyman-real-iot-security-416062</link>
                                                                            <description>
                            <![CDATA[ Cable-Tec Expo: The Boogeyman Is Real in IoT Security ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">gs9vCLACfQ35UuLaA7PTGX</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/uqL7MFEZZFrfWKjv4bZGJi-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Fri, 20 Oct 2017 13:39:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                    <category><![CDATA[Cable TV]]></category>
                                                    <category><![CDATA[Platforms]]></category>
                                                    <category><![CDATA[Distribution]]></category>
                                                                                                                    <dc:creator><![CDATA[ Leslie Ellis ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/uqL7MFEZZFrfWKjv4bZGJi-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/uqL7MFEZZFrfWKjv4bZGJi-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="uqL7MFEZZFrfWKjv4bZGJi" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/uqL7MFEZZFrfWKjv4bZGJi.jpg" mos="https://cdn.mos.cms.futurecdn.net/uqL7MFEZZFrfWKjv4bZGJi.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>DENVER — Just over the past year, connected devices including light bulbs, refrigerators, televisions, automobiles, insulin pumps and the electricity grid in the Ukraine were successfully hacked. All are evidence that the security threat for IoT and connected devices is real, but not insurmountable, according to panelists at a Cable-Tec Expo session, “IoT Security: Is It Really a Risk?”<br/><br/>Answer: Yes. “Security is a process, not a one-time thing,” said Petr Peterka, CTO of Verimatrix. “We need to be thinking about these devices over their entire lifetime.”<br/><br/><a href="https://www.nexttv.com/tag/cable-tec-expo" data-original-url="https://www.multichannel.com/tag/cable-tec-expo">Read More: Complete Coverage of Cable-Tec Expo 2017</a><br/><br/>“We have got to stop this,” said Brian Scriber, principal security architect at CableLabs. “We have the tools.”<br/><br/>Scriber pointed out that manufacturers have little to no economic incentive to provide post-sale updates or security measures, let alone for their anticipated lifetime, Scriber said.<br/><br/></p><p>Plus, patches to remedy hacks and not always designed for the everyday person. Light bulbs don’t usually come with USB ports, for instance; depending on the type of IoT device hacked, the remedies can range from requiring special adaptors, custom cables, and even soldering irons.</p><p>Hackers hack for different reasons, Peterka said: Academics do it to expose flaws “because they want to protect us.” So-called “hactivists” usually have a political leaning they want known; thieves hack to steal; terrorists hack to cause large-scale damage.<br/><br/>Peterka characterized four levels of threats, associated with IoT hacks: Threats to brand and reputation, threats to lives (e.g. medical aides we have in or on ourselves), threats to national security, and threats to critical infrastructure.<br/><br/>Because set-tops and gateways are, in essence, the very first “connected IP devices” in a home or business, some security elements have already been solved, and can be applied to the IoT scene, he said. In particular, his list of the four corners of IoT device security includes device integrity, secure boot-ups, authentication, and the security of collected data.<br/><br/>He referenced work happening within CableLabs and some of its members with the Open Connectivity Forum, or OCF, as a solid flanking mechanism. “We have leadership there — which matters, because IoT security will absolutely impact our networks … and the fact is that we’ve solved these problems before,” Scriber said.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Primetime Targets ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/primetime-targets-414699</link>
                                                                            <description>
                            <![CDATA[ Primetime Targets ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">tqYeMdGgStCxr1G3JLPLjx</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/JMA8oQPsN4EQjjoGc6xFT9-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 21 Aug 2017 12:00:00 +0000</pubDate>                                                                                                                                <updated>Tue, 08 Sep 2020 16:44:44 +0000</updated>
                                                                                                                                            <category><![CDATA[Platforms]]></category>
                                                    <category><![CDATA[Technology]]></category>
                                                                                                                    <dc:creator><![CDATA[ Alex Weprin, Contributing Writer ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/JMA8oQPsN4EQjjoGc6xFT9-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/JMA8oQPsN4EQjjoGc6xFT9-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="JMA8oQPsN4EQjjoGc6xFT9" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/JMA8oQPsN4EQjjoGc6xFT9.jpg" mos="https://cdn.mos.cms.futurecdn.net/JMA8oQPsN4EQjjoGc6xFT9.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>The ransom note appeared online on aug. 7, in the form of a chilling video addressed to HBO CEO Richard Plepler.<br><br>“HBO was one of our difficult targets to deal with, but we succeeded,” a voice says over sinster-souding music from <em>Game of Thrones</em>, before making a threat: “Our demand is clear and non-negotiable: we want [redacted] dollars to stop leaking your data.”<br><br>The demands followed the hackers’ claim to have stolen 1.5 Terabytes of the network’s most closely-guarded secrets from internal servers deep in the HBO fortress — seven times as much data as was stolen from Sony Pictures Entertainment in 2014.<br><br>The theft, which became public in late July, reverberated throughout the media industry, though the full extent of what the hackers actually stole remains sketchy. So far, a script for an upcoming episode of <em>Game of Thrones</em> was released, as were unreleased episodes of <em>Curb Your Enthusiasm</em>, <em>Ballers</em> and <em>Insecure</em>, personal data on <em>GoT</em> stars and email messages from a senior executive, with the hackers promising to release more content from the hack each week.<br><br>Plepler, in his initial memo revealing the breach to staff at the channel, was candid but confident.<br><br>“The problem before us is unfortunately all too familiar in the world we now find ourselves a part of,” he wrote. “As has been the case with any challenge we have ever faced, I have absolutely no doubt that we will navigate our way through this successfully.”<br><br>Cyber-threats affecting governments, companies and individuals are at a record high, by many estimates, and online extortion has become a major issue with the unprecedented growth in the number of new ransomware mutations.<br><br><strong>The Cybersecurity Issue: </strong><a href="https://www.nexttv.com/news/cybercrime-losses-continue-mount-414702" data-original-url="https://www.multichannel.com/news/cybercrime-losses-continue-mount-414702">Cybercrime Losses Continue to Mount</a><br><br>HBO’s hack was just the latest example of an industry threat — including ransomware, malware and distributed denial-of-service (DDoS) attacks designed to shut down entire networks — that executives could not have imagined only a few years ago. And for the companies that make and distribute content in a competitive world of consumer-savvy conglomerates, the stakes have never been higher.<br><br>That’s particularly true for networks, which often have huge revenue expectations for expensive first-run originals. The premature drop of an episode of a hot show, or the release of, say, unsavory emails about a show’s stars, can have lasting and costly consequences.<br><br><strong>High Costs of Hacking<br></strong>Sony Pictures is estimated to have spent more than $100 million in costs related to its hack, according to Reuters, while Yahoo’s 2013-2014 email hack ended up reducing its sale price to Verizon Communications by $350 million.<br><br>For now, it is unclear how hackers accessed HBO’s internal systems, though in the case of Sony Pictures and other recent attacks, access was gained through “phishing” emails sent to company executives or other employees. Once the user clicks on an infected link, hackers may be able to gain access to their email accounts, computers or servers.<br><br>“The scary thing about HBO is that of their internal network, they happened to get to the crown jewels, because they got to <em>Game of Thrones</em>,’ ” a cybersecurity analyst who works with companies in this field and asked not to be named said. “If they can get to that, they can get to anything.”<br><br>Immediately after the attack, Plepler sent an email to staff at the premium cable channel, urging calm through what he called “this difficult period,” reassuring employees that HBO’s email system as a whole was not compromised in the same way Sony’s was, a compromise which led to online leaks of sensitive data on talent, projects and personnel.<br><br>“At this time, we do not believe that our email system as a whole has been compromised, but the forensic review is ongoing,” Plepler wrote in the memo.<br><br>Distributors are struggling to stay current with the problem as well. As the backbone of the U.S. communications infrastructure, cable and telecom companies are in the crosshairs of hackers on a daily basis. Attacks that take down their services can cripple businesses, annoy consumers and wreak severe economic damage.<br><br>Sophisticated hackers can find a way to gain entry into company servers, stealing internal or customer data. In July, for example, Verizon Communications revealed that personal data for millions of its customers was exposed due to a misconfigured cloud server.<br><br>“Twenty years ago, I had an ISP look me straight in the eye and say, ‘We build the highway, how you choose to drive on it is up to you,’ ” Dave Lewis, global security advocate for content delivery network and cloud services provider Akamai, said. “Unfortunately, that sort of mentality just doesn’t hold water anymore, and they really need to take these sorts of things seriously.”<br><br>Given the investments internet-service providers make in security, most offer premium tiers of service to clients, particularly in enterprise, that offer added security features. According to Cisco Systems’s 2017 <em>Midyear Cybersecurity Report</em>, 71% of service providers surveyed offer such products.<br><br>Of course, for ISPs, the biggest threat isn’t necessarily stolen internal or customer data, but a blunt-force attack on their networks.<br><br>“In 2014, I was in the White House and someone said we have some report of a 500-Gigabyte-per-second [DDoS] attack, and at the time the experts said, ‘That is just not possible, it’s not gonna happen,’ ” said Ari Schwartz, managing director of cybersecurity services for Venable LLP, who served as director of cybersecurity at the National Security Council during the Obama administration until 2015. “At the time, it was literally not possible. The biggest attacks were in the 100-Gigabyte range. Now we are seeing 10 times that amount three years later.”<br><br>Those attacks can slow the internet to a trickle, as with the U.S. attack last October, or knock it offline altogether, as attacks in Europe demonstrated.<br><br>According to Cisco’s 2017 midyear cybersecurity report, 34% of service providers surveyed said they lost customers as a result of attacks to their networks. “As an active security challenge, it is quite a bit to take on, the bigger the pipelines, the bigger the threats,” Michal Brenner, marketing manager for Cisco’s service provider business group, said. “Service providers, as they move to more advanced technologies, really need to look at their complete end to end infrastructure and see how to protect that in a holistic way.”<br><br>As internet-connected devices, from speakers to baby monitors, continue to grow in popularity, the risks to U.S. ISPs grows exponentially greater. Last October, hackers hijacked an army of thousands of internet-connected security cameras, smart TVs and other “Internet of Things” devices, and marshaled them against Domain Name System (DNS) provider Dyn. The “botnet” the hackers created launched a distributed denial of service attack (DDoS) that slowed internet traffic to a crawl across most of the eastern U.S. Similar attacks have occurred in Europe and the U.S.<br><br>Ensuring that IoT devices are secure will be a top priority going forward. For ISPs, that means making sure that they can isolate future botnet attacks, protecting the rest of their customers and the larger network.<br><br>Device makers are expanding their products to include more devices with built-in security. Arris, which produces modems, routers and gateways for use in homes and offices, recently launched a home gateway with built-in McAfee Secure Home Internet support. These devices can be particularly useful in securing Internet of Things devices, which may otherwise be vulnerable.<br><br>“For a lot of devices [like a WiFi-enabled camera] there is no way to put security software on top of it, but as long as they are connected through this gateway, then they will be under this umbrella of security protection,” Bill Zhou, vice president of product management for Arris, said. “That is really the beauty of it.”<br><br><strong>Staying a Step Ahead<br></strong>The biggest challenge for distributors, indeed for all companies, is taking the threats serious enough to create basic end-to-end protections. Most large ISPs and cable operators successfully fend off hundreds of attacks on a daily basis. More often than not, they’re able to stay one step ahead of malicious attackers, or at least keep up with them fast enough to prevent disaster.<br><br>Still, each new hack into a big media company brings the problem back into the spotlight.<br><br>“There are still a lot of companies out there in the space that don’t do true risk management, that see security as a compliance exercise, and even the small and medium- size guys have to move to start thinking of this as risk management,” Venable’s Schwartz said.<br><br>Perhaps more alarming is the rising trend of hackers looking not to ransom, release or sell stolen data, but to destroy networks altogether, to wreak havoc.<br><br>“The fantastic fantasies of Hollywood, of what a hacker could do, early in the days of making hacker movies, we are starting to get to the point where many of those things are becoming a reality,” Francisco Artes, an architect for Cisco’s security business group, said.<br><br>The Trump administration may also force the hand of internet providers, depending on the outcome of an executive order signed by the president in May.<br><br>That order asks federal agencies to examine whether service providers, particularly publicly-traded providers like cable companies and telcos, are as transparent as they can be with regard to the risks they face and the security precautions they take. The order also tackles botnets, and asks U.S. security officials to determine what role ISPs should have in preventing those types of attacks in the future, and whether the government should force them to keep “clean pipes.”<br><br>“People have been under-investing in basic hygiene, and that has to change,” Schwartz said.<br><br><strong>SIDEBAR: Tips on How to Stay Secure<br></strong>Security consultants suggest several tips for information-technology teams to avoid breaches. Senior executives and employees that work in IT are among the most frequent targets of hackers, because of the level of access they have to proprietary and confidential data. In general, though, the same basic rules of security can and should be used by all company employees.<br><br><strong>1. Authenticate:</strong> Enable multifactor authentication on email accounts. Even if a hacker gets email credentials, multi-factor authentication, which can include authentication through codes sent to mobile devices, for example, they will have a much harder time actually accessing employee accounts.<br><br><strong>2. Monitor:</strong> Networks and systems should be regularly monitored, and any unusual activity should be immediately escalated and, if the need arises, isolated.<br><br><strong>3. Educate:</strong> Executives and employees should be kept abreast of the latest phishing emails, and reminded not to click on links they are not expecting. “These things happen every day,” Dave Lewis, global security advocate for Akamai, said. “Every single company is targeted by these sort of things.”<br><br><strong>4. Communicate:</strong> Executives and IT professionals should regularly communicate with staff, and promptly alert them if there is a breach (as HBO did following its hack). Employees should be encouraged to speak up if they think something is wrong, even if it ends up being a false alarm.<br><br><strong>5. Update:</strong> All software and applications used by everyone in the company should be kept as up to date as possible. “Everybody should be doing this by now, but quite frankly it is like working with an NFL football team and telling them that tackle and blocking is important, it always will be,” Francisco Artes, an architect for Cisco’s security business group, said. <em>— AW</em></p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Cybercrime Losses Continue to Mount ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/cybercrime-losses-continue-mount-414702</link>
                                                                            <description>
                            <![CDATA[ Cybercrime Losses Continue to Mount ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">owtSttqkgvKKrf57Xi3G6b</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/GpMJWgvUkJ8DThiA6sYkEY-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 21 Aug 2017 12:00:00 +0000</pubDate>                                                                                                                                <updated>Tue, 08 Sep 2020 16:44:29 +0000</updated>
                                                                                                                                            <category><![CDATA[Technology]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/GpMJWgvUkJ8DThiA6sYkEY-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/GpMJWgvUkJ8DThiA6sYkEY-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="GpMJWgvUkJ8DThiA6sYkEY" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/GpMJWgvUkJ8DThiA6sYkEY.jpg" mos="https://cdn.mos.cms.futurecdn.net/GpMJWgvUkJ8DThiA6sYkEY.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>High-profile snatching of content from Netflix and HBO may have grabbed the headlines in recent weeks and months, but the overall cybercrime trend itself has become increasingly harrowing.<br><br>“From a cybersecurity standpoint, the second quarter of 2017 has been one of the scariest in years,” Panda Security, a maker of cybersecurity systems and monitoring tools, proclaimed in its analysis for the second quarter.<br><br>The firm noted that the WannaCry attack in May and the GoldenEye/Peyta attack in June were the “standouts,” as they had an impact on multiple countries, which are still recovering. Some estimates put the overall cost of those attacks at between $1 billion and $4 billion, meaning the average loss per victim ranged from $4,300 to more than $17,000.<br><br><strong>The Cybersecurity Issue: </strong><a href="https://www.nexttv.com/news/primetime-targets-414699" data-original-url="https://www.multichannel.com/news/primetime-targets-414699">Primetime Targets</a><br><br>The frequency and financial impact of internet crimes are showing no signs of slowing.<br><br>In its 2016 <em>Internet Crime Report</em>, the Internet Crime Complaint Center (IC3), a branch of the FBI, said it has received an average of more than 280,000 complaints per year over the past five years. Formed in May 2000 to monitor scams such as ransomware, tech-support fraud and online extortion, the IC3 said more than 3.7 million cybercrime-related complaints have been reported since its inception.<br><br>Last year alone, IC3 received almost 300,000 complaints with reported losses in excess of $1.3 billion. With 2016 factored in, the reported losses since 2012 total $4.63 billion, the division said.<br><br>Ransomware, whereby the victim is urged to pay a ransom (usually in the form of a virtual digital currency like Bitcoin) to regain access to their data, continues to be a growing contributor. Last year, IC3 received 2,673 ransomware-related complaints, with associated losses of more than $2.4 million.<br><br>“Ransomware is still on the rise, and will continue to be as long as there are victims willing to pay,” Panda Security noted.<br><br>Panda Security’s latest report amplifies a growing trend, noting that of all the machines protected by its platform, 3.44% were attacked by unknown threats in Q2, up almost 40% from the previous quarter.<br><br>And hackers will have more targets to pursue amid the rise of the Internet of Things and as more connected “smart cities” emerge.<br><br>“Hyper-connected cities that are made up of networks of millions of devices will increase the overall reach of attacks, and the consequences will be more costly and more severe,” Panda Security predicted.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ High Dynamic Range Content Needs High Levels of Security ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/blog/high-dynamic-range-content-needs-high-levels-security-413269</link>
                                                                            <description>
                            <![CDATA[ High Dynamic Range Content Needs High Levels of Security ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">nTf38UJQ6qwWgwNY3jrLdn</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/PSy42AHccf2qzZ8etvNkiC-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 06 Jun 2017 16:15:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[MCN Guest Blog]]></category>
                                                                                                                    <dc:creator><![CDATA[ Mark Nakano, NexGuard, and Ron Wheeler, 20th Century Fox ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/PSy42AHccf2qzZ8etvNkiC-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/PSy42AHccf2qzZ8etvNkiC-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Video piracy is a global epidemic. From recording device-toting movie theater audiences to the behind-the-scenes torrent network manager (and ad salesperson), there isn’t a limit to the number of identities content thieves can assume. But to varying degrees, they’re united in their desire to swindle content producers — and consumers in many cases — and capitalize.<br/><br/>The advent of higher-quality resolution content like High Dynamic Range (HDR) is one of the latest opportunities for video pirates around the globe to target and exploit to their advantage, as the pirate source is most attractive to users (and their eyeballs).<br/><br/>Strategy Analytics predicts that annual worldwide sales of HDR-enabled TVs will reach 58 million units in 2020, with U.S. penetration of HDR TVs forecasted to reach nearly 25% of homes. The need to protect HDR content will intensify as more consumers obtain access to these devices — and subsequently this higher quality and valued content. Effective and efficient measures, however, are already in place so content owners and players can equip and protect themselves in the wake of this growing technology.<br/><br/>The content industry started adopting new systems to better secure its revenue when 4K-quality content was unveiled to the market — initially, on UHD Blu-ray Discs, and more recently on a wide variety of pay TV and over-the-top platforms. MovieLabs — a joint venture among the six Motion Picture Association of America (MPAA) studios — published the first version of its Specification for Enhanced Content Protection in 2013, which outlined a set of security recommendations for improving the security of the highest value audiovisual content regardless of delivery mechanism. Since then, the specifications have been tightened further. Content distribution partners should always use the most recent ones as their lodestar.<br/><br/>In discussing the challenges associated with HDR content, my co-author, Ron Wheeler, senior vice president of content protection and technology strategy at 20th Century Fox, told me that for companies whose business is to entertain viewers, innovation is key — including the latest picture quality evolution made possible with HDR.<br/><br/>However, better quality is just as attractive to pirates as to paying consumers. “Fox’s experience is that the moment a high-quality pirate source becomes available, it immediately becomes much more popular than lower-quality sources such as theater camcorders or ‘ordinary’ HD sources, and is, therefore, a bigger threat to our legitimate business. That makes it imperative that we do everything we can to protect that high-quality source from piracy as long as possible,” he said.<br/><br/>This is where forensic watermarking becomes a critical tool. The presence of a unique identifier for each piece of content makes retrieval a lot easier and enables content owners to easily identify the weak link in their distribution system. The ability to trace illicit redistribution to the original source makes it a very strong piracy deterrent, as content owners can strongly warn pirates, and even consumers watching an illegal stream, against the legal implications of accessing or sharing copyrighted content.<br/><br/>Equally if not more importantly, they can refer uploaders of the content to law enforcement authorities for investigation and prosecution, with attendant publicity that will make future would-be uploaders think twice. This deterrent effect has resulted in significant delays in piracy of high-quality sources in places where watermarking has been deployed, such as South Korea.<br/>Studios are planning to offer HDR as a mass-market proposition by 2018, so content distributors need to implement or upgrade their protection arsenal now. By preparing for this growing pixel revolution, they can avoid the pitfalls of tech-savvy pirates using the latest specifications for content protection.<br/><br/><em>Mark Nakano is senior director of product marketing and partnerships at NexGuard; Ron Wheeler is senior vice president of content protection and technology strategy at 20th Century Fox.</em></p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Rural Broadband, Restoring FCC to 5 Members Top Walden's Agenda ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/blog/rural-broadband-restoring-fcc-5-members-top-waldens-agenda-410931</link>
                                                                            <description>
                            <![CDATA[ Rural Broadband, Restoring FCC to 5 Members Top Walden's Agenda ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">mGy7yWwAq6dWaJVH1zrsHn</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/aGLpbB99CA5yYS75m2aPDb-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 15 Feb 2017 15:15:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[As I Was Saying]]></category>
                                                                                                <author><![CDATA[ garyarlen@gmail.com (Gary Arlen) ]]></author>                    <dc:creator><![CDATA[ Gary Arlen ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/77vzvgXxLcw7QmjLLWvE7Y.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/aGLpbB99CA5yYS75m2aPDb-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/aGLpbB99CA5yYS75m2aPDb-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>House Energy & Commerce Committee chairman Greg Walden (R-Ore.) outlined a broad agenda for the committee and its Communications Subcommittee on Tuesday (Feb. 14), with items ranging from legislative action on Title II to a comprehensive examination of FCC and NTIA "reauthorization" to accelerated rural broadband deployment to increased oversight of federal cybersecurity initiatives.</p><p>At the monthly luncheon of the Media Institute, Walden (<em>pictured</em>) endorsed the "process reforms" that FCC chairman Ajit Pai (who was in the audience) has already introduced. Walden complimented Pai for successfully doing administratively "what Congress has been trying to do legislatively." He singled out Pai's decisions to revoke recent regulations over broadcast joint-sales and shared-service agreements and to rescind certain requirements for noncommercial TV ownership reports.</p><p>"We want this business to be vibrant and competitive," Walden said, noting that he expects to "see additional deregulation."</p><p>"We don't need antiquated rules like cross-ownership," Walden said.</p><p>As for the Open Internet rules, the Commerce chairman said, "Republicans are open to legislative solutions" and that net-neutrality decisions "should be done legislatively." But he acknowledged "it will take time" to develop new procedures, saying, "We have draft legislation" in the works.  </p><p>Walden did not respond to queries about a timetable for the congressional review. He chastised the previous FCC leadership's "over-reach" in the Open Internet process.</p><p>Although he glazed over his agenda for what he called a long-overdue comprehensive reauthorization of both the Federal Communications Commission and the National Telecommunications and Information Administration, Walden said he believes the FCC should be restored to its five-member level (currently the agency has only three Commissioners).</p><p>"The Commission should be filled out, the sooner the better," Walden insisted.</p><p>On the broader issue of a comprehensive update to the 1996 Telecommunications Act, Walden said he "resists the notion that it will be one bill," preferring to "look at this in modules" affecting various industries, he said, emphasizing that Communications Subcommittee chair Marsha Blackburn (R-Tenn.) will lead the group's decisions on a rewrite.</p><p>"If the marketplace can handle [conditions], it should," Walden said. </p><p>Walden called deployment of rural broadband a top priority on the Committee's communications agenda, pulling in examples of the need for wireless broadband. In particular, he emphasized the need to "lower the cost of broadband development."</p><p>He told a homespun tale of the need for such capabilities coming up this summer, on Aug. 27: the date of a total solar eclipse where a prime viewing area will be in small towns within his central Oregon district. Walden said there is almost no wireless capability for a stretch of nearly 30 miles around the eclipse epicenter. Then he wondered aloud, looking directly at Pai,  if he "only knew someone who had administrative authority to require coverage in that region." (At that point, Pai jokingly stood up and started to walk away from his table, to the gleeful laughter of the audience.)</p><p>Regarding cybersecurity, Walden indicated that the Commerce Committee will examine the ways in which various agencies monitor activities within their sectors to avoid duplication. Citing the threats to power utilities as well as commercial and communications facilities, Walden vowed to work with industry and to "incentivize" the entire ecosystem to prepare for possible digital assaults.</p><p>"We don't need every agency to grab a piece of cybersecurity," he added.  "The goals should be how to share information and avoid cyberattacks."</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Verizon Launches ‘Digital Security Pro’ ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/verizon-launches-digital-security-pro-410772</link>
                                                                            <description>
                            <![CDATA[ Verizon Launches ‘Digital Security Pro’ ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">gcybqWTewKaZo5c7m4mNXF</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/fiomdsVBEF5XDdtssfa3Uj-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 08 Feb 2017 18:45:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/fiomdsVBEF5XDdtssfa3Uj-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/fiomdsVBEF5XDdtssfa3Uj-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="fiomdsVBEF5XDdtssfa3Uj" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/fiomdsVBEF5XDdtssfa3Uj.jpg" mos="https://cdn.mos.cms.futurecdn.net/fiomdsVBEF5XDdtssfa3Uj.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>To help high-speed subs ward off hackers and cyber-sleuths, Verizon Communications has launched Digital Security Pro, a service that costs $10 per month that combines services from LifeLock and McAfee.</p><p>The service, offered to Fios Internet other Verizon high-speed customers, aims to protect a customer’s online identify, shield them from malware and viruses along with access to a set of parental control tools.  Among that group, Verizon said McAfee’s security component lets customers manage and monitor devices from a centralized location.</p><p>Verizon is also offering additional adult and child subscriptions to LifeLock.</p><p>"We created Digital Security Pro so customers can spend less time worrying, and more time enjoying, what technology and the Internet have to offer," Susan Retta, vice president of consumer marketing at Verizon, said in a statement. "Digital Security Pro unifies virus protection, ID monitoring, and device management in one product giving customers the management tools needed to face online threats."</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Survey Says Majority Have Suffered Cyberattack ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/survey-says-majority-have-suffered-cyberattack-410436</link>
                                                                            <description>
                            <![CDATA[ Survey Says Majority Have Suffered Cyberattack ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">55iZ4ai9nsGwaMwZs4biFg</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/JdePrHa2tw6VJPg8wZxT5H-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 26 Jan 2017 13:49:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/JdePrHa2tw6VJPg8wZxT5H-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/JdePrHa2tw6VJPg8wZxT5H-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="JdePrHa2tw6VJPg8wZxT5H" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/JdePrHa2tw6VJPg8wZxT5H.jpg" mos="https://cdn.mos.cms.futurecdn.net/JdePrHa2tw6VJPg8wZxT5H.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>About half of Americans polled (49%) said they felt their personal information was less secure than it was five years ago, and a majority (64%) say they have have been exposed to some kind of data breach.</p><p>That is according to a new Pew Research Center cybersecurity survey.</p><p>The respondents did not have high expectations that the situation would be changing anytime soon.</p><p>Only 21% said they have a high level of confidence that either the federal government or social media sites can protect their personal information.</p><p>That comes as the government--White House, FCC, FTC--are trying to figure out how best to protect personal information and critical infrastructure in an Internet of Things world.</p><p>The respondents were about evenly split on the issue of encryption and whether the government should be able to get around it for law enforcement purposes.</p><p>According to the survey, 46% believe the government should be able to access encrypted data when pursuing criminals, while 44% said encryption should be unbreakable, even to law enforcement. Democrats and younger people skewed toward strong encryption while Republicans tend to favor law enforcement access.</p><p>One reason respondents may not have confidence in the security of their data is they neglect to follow cybersecurity best practices.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Broadband's Role in Infrastructure Buildout Tops 'State of the Net' Agenda ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/blog/broadbands-role-infrastructure-buildout-tops-state-net-agenda-410384</link>
                                                                            <description>
                            <![CDATA[ Broadband's Role in Infrastructure Buildout Tops 'State of the Net' Agenda ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">d2vjSDqMyqNxyeBHgGxEr2</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/4nvThiuBsmDtNqXRYZkEiJ-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 24 Jan 2017 18:45:00 +0000</pubDate>                                                                                                                                <updated>Mon, 07 Sep 2020 09:52:19 +0000</updated>
                                                                                                                                            <category><![CDATA[As I Was Saying]]></category>
                                                                                                <author><![CDATA[ garyarlen@gmail.com (Gary Arlen) ]]></author>                    <dc:creator><![CDATA[ Gary Arlen ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/77vzvgXxLcw7QmjLLWvE7Y.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/4nvThiuBsmDtNqXRYZkEiJ-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/4nvThiuBsmDtNqXRYZkEiJ-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <p>Sen. Brian Schatz (D-Hawaii), in early comments at Monday&apos;s annual State of the Net conference in Washington, presaged a discussion later in the day about whether and how federal support to build broadband facilities should be part of the Trump administration&apos;s proposals for upgrading the nation&apos;s infrastructure of roads and bridges.</p><p>That dialog sparked an examination, suitable to the venue and referred to throughout the day as part of the "kinetic versus cyber" ecosystem, of telecommunications&apos; importance vis-à-vis tangible products.</p><p>"The more we can do in the broadband space, the  better," Schatz said in his remarks <a href="http://www.stateofthenet.org">at the conference</a>. "We can get bipartisan support," but he proposed that "we should do little things" rather than go for sweeping telecom reform.</p><p>Schatz also addressed the continuing controversy about net neutrality, insisting that, "reversing the Open Internet order is not so easy." He said that "right now it is just too polarized" to legislate on that issue, although he thinks Congress should do so.</p><p>"I&apos;m open to legislating but only if it&apos;s not a Trojan horse for undermining the authority that is already in place," said Schatz, who sits on the Senate Committee on Commerce, Science and Transportation.</p><p>He also said he "believes Jessica should be back on the FCC," a reference to former Democratic FCC commissioner Jessica Rosenworcel, whose term ended after an ill-fated, politically laced attempt to reappoint her in late December.</p><p>Schatz&apos;s remarks included his views on privacy and the Internet of Things, which were major topics throughout the SOTN annual conference.</p><p>"IoT is one of the spaces where we need rules of the road; also artificial intelligence as it relates to law enforcement," Schatz said. "I don&apos;t think this is apocryphal sci-fi stuff. We have to have this conversation, ideally private-sector driven." </p><p>He did not offer any suggestions on how Congress would become involved in these rapidly developing tech/telecom sectors.</p><p>At a subsequent session on IoT, Dr. Ron Ross, a fellow at the National Institute of Standards and Technology, characterized cybersecurity intrusions as "the greatest national security problem," emphasizing that communications and utility operators are not adequately prepared for attacks, such as "exfiltration" of customer information. He said building the infrastructure to defend against cyberattacks "is incredibly complex."</p><p>The panel also addressed looming issues such as liability and how IoT systems can be built that enable consumers to keep control over their own data.</p><p><strong>Reassigning Spectrum, Funding Broadband Deployment</strong><br>A session on "Rethinking the Future of Communications Policy" spanned a terrain from spectrum allocation to FCC staffing.</p><p>After declaring the current broadcast incentive auction a success (despite its lower-than-expected revenue results), the panel said it expects further efforts to retrieve airwaves for new digital applications. In particular, the panel focused on government agency controlled airwaves, which it called "the low hanging fruit for more spectrum."</p><p>Larry Downes, project director of the Georgetown University Center for Business and Public Policy, cited the opportunity for the new administration "to incentivize federal agencies with underused spectrum to give it up or share it for commercial use.   </p><p>Although the Defense Department is unlikely to relinquish its massive spectrum holdings, according to panelists, airwaves controlled by aviation and other agencies may be diverted to commercial use.  No one offered specifics regarding timetable or how the transfer would be accomplished.</p><p>Broadband will be part of the Trump administration&apos;s national infrastructure construction plan, said Markham Erickson, a partner at Steptoe & Johnson law firm, who represents telecom and internet clients. He expects the primary federal actions will be created by providing tax incentives and subsidies for private investment, "some mechanism to get broadband out to rural places."</p><p>Erickson also said he expects that the FCC will retain "extensive regulations" over some telecom sectors, although he did not cite specific topics.</p><p>With <a href="https://www.nexttv.com/news/fcc-vetter-jamison-do-we-need-fcc-409255" data-original-url="https://www.multichannel.com/news/fcc-vetter-jamison-do-we-need-fcc-409255">FCC transition team member Mark Jamison</a> <em>(pictured above</em>) on the panel, discussion also touched on the extent of the FCC reorganization agenda. Jamison, who is director of the Public Utility Research Center at the University of Florida, was a member of the Trump transition team working on the FCC.</p><p>Jamison said that the "basic goal" was to "elevate the role of technical analysis."</p><p>"It&apos;s easier to hire lawyers than economists or engineers," he said. "I think the commissioners and public will be better served" with more technical expertise.</p><p>Gigi Sohn, a former advisor to former FCC chairman Tom Wheeler, concurred, noting that it was "very frustrating to bring engineers and economists" from telecom and media companies and count on their information. "As a result, we&apos;re reliant on industry input," Sohn said, lapsing, as she frequently did on the panel, to using "we" when discussing a job she left three weeks ago, a very common gaffe among recently quondam public servants. She joked about the ex post facto “we” that crept into her comments.</p><p>The panel agreed that FCC reorganization should reflect greater overlap of activities that affect multiple bureaus.</p><p>"The FCC should recognize the convergence of all kinds of Internet Protocol technologies," said Downes. "There is no need to separate bureaus based on [legacy] structures."</p><p>Sohn also used the platform to predict that Trump appointees will adopt the mantra "Consolidation, consolidation, consolidation," in counterpoint to Wheeler&apos;s "Competition" mantra. She predicted that the FCC will have no role in upcoming merger considerations, with those functions going to the Federal Trade Commission and Justice Department.</p><p>Erickson pointed out that there are similar rules at various bureaus and agencies, noting as an example that the Justice Department may be better equipped to take "a bigger view of intermodal and intramodal competition."  </p><p>In his closing keynote,  Sen. John Thune (R-S.D.) avoided any indication that an omnibus Telecommunications Act reform is in the works.</p><p>Comcast was the only "Platinum Sponsor" of the annual event;  AT&T, Verizon and Google were among the "Gold Sponsors."</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Giuliani to Advise Trump on Cybersecurity ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/giuliani-advise-trump-cybersecurity-410132</link>
                                                                            <description>
                            <![CDATA[ Giuliani to Advise Trump on Cybersecurity ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">tWLYeLUqrAuJ2TeLTPLagS</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/coiLGDVTbpKokJPYpw4vVi-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 12 Jan 2017 15:13:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                    <category><![CDATA[Policy]]></category>
                                                    <category><![CDATA[Fates &amp; Fortunes]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/coiLGDVTbpKokJPYpw4vVi-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/coiLGDVTbpKokJPYpw4vVi-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="coiLGDVTbpKokJPYpw4vVi" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/coiLGDVTbpKokJPYpw4vVi.jpg" mos="https://cdn.mos.cms.futurecdn.net/coiLGDVTbpKokJPYpw4vVi.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>Former New York Mayor Rudy Giuliani will advise the Trump  administration on cybersecurity, but in an unofficial capacity.</p><p>The Trump transition team said Thursday that Giuliani, who is a private consultant and chairman of the global cybersecurity practice at Greenberg Traurig, will "be sharing his expertise and insight as a trusted friend."</p><p>In addition, the president-elect plans to hold a series of meetings with senior execs "from companies which have faced or are facing challenges similar to those facing the government and public entities today, such as hacking, intrusions, disruptions, manipulations, theft of data and identities, and securing information technology infrastructure," which does not narrow the field much given the scope of cyber attacks.</p><p>The meetings appear to be more about information-gathering than policymaking.</p><p>"No consensus advice or recommendations resulting from group deliberations or interaction is expected or will be solicited," the transition team said.</p><p>"As the use of modern communications and technology has moved forward at unparalleled speed the necessary defenses have lagged behind," the team said in announcing Giuliani's ex officio role. "The President-elect recognizes that this needs immediate attention and input from private sector leaders to help the government plan to make us more secure."</p><p>Trump has said cybersecurity and preventing hacking is a priority, and made that point again in his press conference Wednesday (Jan. 11). He has said he wants a plan on combating cybercrime ASAP once he takes over Jan. 20.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Yahoo Confirms Another Data Breach, This Time Impacting 1B Accounts ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/yahoo-confirms-another-data-breach-time-impacting-1b-accounts-409702</link>
                                                                            <description>
                            <![CDATA[ Yahoo Confirms Another Data Breach, This Time Impacting 1B Accounts ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">atiftQMqPbi2bWw5wpmgKE</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/Y277Luwo296xf9bNrn7sXJ-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Thu, 15 Dec 2016 14:15:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Business]]></category>
                                                    <category><![CDATA[Technology]]></category>
                                                    <category><![CDATA[Distribution]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/Y277Luwo296xf9bNrn7sXJ-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/Y277Luwo296xf9bNrn7sXJ-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="Y277Luwo296xf9bNrn7sXJ" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/Y277Luwo296xf9bNrn7sXJ.jpg" mos="https://cdn.mos.cms.futurecdn.net/Y277Luwo296xf9bNrn7sXJ.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>Casting another dark cloud on its proposed sale to Verizon, Yahoo Inc. confirmed Wednesday that it believes an unauthorized third party, in August 2013, stole data associated with more than 1 billion user accounts.</p><p>The latest admission follows an earlier one in which Yahoo said data from more than 500 million accounts, including customer e-mail addresses, birth dates, phone number and encrypted passwords, were stolen.</p><p>Yahoo noted that the latest data breach was discovered after it law enforcement provided the company with data files that a third party claimed was Yahoo user data.</p><p><a href="https://www.nexttv.com/news/breached-408438" data-original-url="https://www.multichannel.com/news/breached-408438">RELATED: Breached: What happened when hackers shut down Liberty Global’s broadband in the Netherlands</a></p><p>“Yahoo believes this incident is likely distinct from the incident the company disclosed on September 22, 2016,” the company said.</p><p>The latest data breach admission plants another seed of doubt around Verizon’s $4.8 billion deal to acquire Yahoo for $4.8 billion. Speculation following the earlier hacking revelation was that Verizon might try to cut the purchase price by as much as $1 billion. Verizon has <a href="https://www.nexttv.com/news/verizon-says-data-breach-material-yahoo-deal-408415" data-original-url="https://www.multichannel.com/news/verizon-says-data-breach-material-yahoo-deal-408415">held that the data breach could be a material event</a></p><p>RELATED: Verizon Agrees to Buy Yahoo for $4.83B</p><p>Verizon said its position on the pending deal remains unchanged following this week’s revelation.  </p><p>"As we've said all along, we will evaluate the situation as Yahoo continues its investigation. We Will review the impact of this new development before reaching any final conclusions,” Verizon said in a statement.</p><p><strong>UPDATE:<a href="https://www.bloomberg.com/news/articles/2016-12-15/verizon-weighs-scrapping-yahoo-deal-on-hacking-liability?cmpid=socialflow-twitter-business&utm_content=business&utm_campaign=socialflow-organic&utm_source=twitter&utm_medium=social"></a></strong><a href="https://www.bloomberg.com/news/articles/2016-12-15/verizon-weighs-scrapping-yahoo-deal-on-hacking-liability?cmpid=socialflow-twitter-business&utm_content=business&utm_campaign=socialflow-organic&utm_source=twitter&utm_medium=social">Bloomberg reported</a> Thursday morning that Verizon is exploring a price cut or a possible exit from the proposed deal. </p><p>Regarding the latest breach discovery, Yahoo said stolen user account information may have included names, email addresses, telephone numbers, dates of birth, hashed passwords (using MD5) and, possibly, encrypted or unencrypted security questions and answers. Yahoo noted that the investigation showed that the purloined data did not include passwords in clear text, payment card data, or bank account information.</p><p>“Payment card data and bank account information are not stored in the system the company believes was affected,” Yahoo said.</p><p>Based on its ongoing investigation in the hacking matter, Yahoo said it believes an unauthorized third party accessed the company’s proprietary code to learn how to forge cookies.</p><p>Yahoo said it is encouraging its users to review their online accounts for suspicious activity and to change their passwords and security questions. Further, it’s recommending the use of a <a href="http://cts.businesswire.com/ct/CT?id=smartlink&url=https%253A%252F%252Fhelp.yahoo.com%252Fkb%252FSLN25781.html&esheet=51478633&newsitemid=20161214006239&lan=en-US&anchor=Yahoo+Account+Key&index=1&md5=2aece216857b3644e6ff6289eafa23a2">Yahoo Account Key</a>, an authentication tool that, it says, eliminates the need to use a password on Yahoo altogether.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ House Drills Down on IoT CyberInsecurity ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/house-drills-down-iot-cyberinsecurity-409137</link>
                                                                            <description>
                            <![CDATA[ House Drills Down on IoT CyberInsecurity ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">nQ2rvB7EfMDP8Kox7Et3xF</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/TftSpYQ9pzDx49SdHekp4U-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 16 Nov 2016 17:39:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                    <category><![CDATA[Technology]]></category>
                                                    <category><![CDATA[Distribution]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/TftSpYQ9pzDx49SdHekp4U-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/TftSpYQ9pzDx49SdHekp4U-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="TftSpYQ9pzDx49SdHekp4U" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/TftSpYQ9pzDx49SdHekp4U.jpg" mos="https://cdn.mos.cms.futurecdn.net/TftSpYQ9pzDx49SdHekp4U.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>The House took a serious, and mostly bipartisan, look Wednesday (Nov. 16) at the cybersecurity threat posed by the Internet of Things.</p><p>A joint hearing, "Understanding the Role of Connected Devices in Recent Cyber Attacks," was held in the Communications Subcommittee, chaired by Rep. Greg Walden (R-Ore.), and the Subcommittee on Commerce, Manufacturing and Trade, chaired by Rep. Michael C. Burgess (R-Texas).</p><p>The hearing was held in the wake of the <a href="https://www.nexttv.com/news/eastern-us-hit-ddos-attack-408574" data-original-url="https://www.multichannel.com/news/eastern-us-hit-ddos-attack-408574">distributed denial of service attack on Oct. 21</a> that restricted access to some major websites.</p><p>Apparently, the attack only employed 150,000 of about 1.5 million IoT devices still infected with the botnet that allows them to be commandeered to deliver similar or larger attacks in the future.</p><p>The seriousness of the issue was highlighted by the fact that the witnesses agreed that that the DDOS attack, which affected Netflix, Twitter and others -- was relatively benign compared to, say, an attack on critical systems that could cost lives.</p><p>Rep. Pete Olson (R-Tex.), a former Navy aviator, said the biggest threat to security is not bombs and missiles but ones and zeros and that, in the current environment, the government has to be proactive.</p><p>In fact, Republicans and Democrats were both using the R word (regulation) to talk about addressing the threat, as were all of the witnesses to some degree, though Dale Drew, SVP and chief security officer at Level 3 Communications, focused on standards and existing regs rather than new ones.</p><p>Rep. Anna Eshoo (D-Calif.), ranking member of the Communications Subcommittee, also suggested that approach. When one witness said a new government agency might be needed to deal with IoT cybersecutiry, she said that would not happen in the new administration. Walden joked that for every new agency created, they could eliminate two, a reference to President-elect Donald Trump's proposed requirement that two regulations be scrapped for every one added.</p><p>But Walden got serious, saying that the IoT cybersecurity issue was bipartisan and the Republican leadership would continue to address it.</p><p>Walden told the witnesses he was concerned about the government stepping into the marketplace, but primarily because he had heard cybersecurity witnesses before warn government to "first do not harm" and to be careful not to lock things into statute.</p><p>Rep. Frank Pallone (D-N.J.), ranking member of the Communications Subcommittee, pointed out that some have argued that regulating devices will constrain innovation.</p><p>Witness Bruce Schneier, adjunct Lecturer, Kennedy School of Government, Harvard University, conceded the point, but said the government would definitely need to step in because the risk was too great. He said there's "a fundamental difference between your spreadsheet crashing and losing your data, and a connected car crashing and losing your life."</p><p>He emphasized that it was a catastrophic risk, crashing all connected cars, for example.</p><p>"It is an arms race, and the current edge is to the attacker," Schneier said, adding that given the scale of the Web and the ability to affect physical objects via IoT, "it might be that the Internet of fun and games is over."</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Eastern U.S. Hit by DDoS Attack ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/eastern-us-hit-ddos-attack-408574</link>
                                                                            <description>
                            <![CDATA[ Eastern U.S. Hit by DDoS Attack ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">3gqx2TBKyamiVt6itRdq4L</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/HtKj96b6D493oqr4RXGpXV-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Fri, 21 Oct 2016 13:51:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/HtKj96b6D493oqr4RXGpXV-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/HtKj96b6D493oqr4RXGpXV-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="HtKj96b6D493oqr4RXGpXV" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/HtKj96b6D493oqr4RXGpXV.jpg" mos="https://cdn.mos.cms.futurecdn.net/HtKj96b6D493oqr4RXGpXV.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>Dyn Inc., a major Domain Name Server and Web hosting service, said Friday that it has recovered from a DDoS (distributed denial of service) attack that caused an Internet service disruption this morning on the east coast.</p><p>Per multiple media reports, sites supporting services such as Twitter, Reddit, Airbnb, Spotify, and Reddit were among those that were impacted.</p><p>As detailed in this week’s <a href="https://www.nexttv.com/news/breached-408438" data-original-url="https://www.multichannel.com/news/breached-408438"><em>Multichannel News</em> cover story (subscription required)</a>, DDoS attacks led by hacking groups have wreaked havoc on cable operators and have caused them to bolster their online defences. </p><p>“Starting at 11:10 UTC on October 21th-Friday 2016 we began monitoring and mitigating a DDoS attack against our Dyn Managed DNS infrastructure. Some customers may experience increased DNS query latency and delayed zone propagation during this time. Updates will be posted as information becomes available,” Dyn initially reported on its <a href="https://www.dynstatus.com/incidents/nlr4yrr162t8">status page</a>, noting that the attack was primarily centered on in the eastern U.S. and impacting managed DNS customers in that region.</p><p>“Services have been restored to normal as of 13:20 UTC [9:20 a.m. ET],” Dyn posted on that site, as well as on Twitter:</p><p>Services have been restored to normal as of 13:20 UTC.</p><p>— Dyn (@Dyn) <a href="https://twitter.com/Dyn/status/789462510562836480">October 21, 2016</a></p><p>Comcast said it's also being watchful:</p><p>Known DNS issues seem to be resolving. Our engineers are closely monitoring this external issue. Updates here: <a href="https://t.co/eLN09p8UBc">https://t.co/eLN09p8UBc</a></p><p>— ComcastCares (@comcastcares) <a href="https://twitter.com/comcastcares/status/789458541845229568">October 21, 2016</a></p><p><strong>Updates:</strong> Issues resurfaced into the afternoon amid more hacker attacks. The latest from Dyn: "Dyn Managed DNS advanced service monitoring is currently experiencing issues. Customers may notice incorrect probe alerts on their advanced DNS services. Our engineers continue to monitor and investigate the issue. Customers with questions or concerns are encouraged to reach out to our Technical Support Team."</p><p>Dyn issued this update at 2:52 p.m. ET: "At this time, the advanced service monitoring issue has been resolved. Our engineers are still investigating and mitigating the attacks on our infrastructure."</p><p>Dyn issued this update at 6:17 p.m. ET: "This incident has been resolved."</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Breached ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/breached-408438</link>
                                                                            <description>
                            <![CDATA[ Breached ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">Zf39ihfSDnTfoeVeDGYeQ</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/sHyHQ7U9moDFDstWJbCaLL-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Mon, 17 Oct 2016 12:00:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Policy]]></category>
                                                    <category><![CDATA[Distribution]]></category>
                                                    <category><![CDATA[Technology]]></category>
                                                    <category><![CDATA[Business]]></category>
                                                                                                                    <dc:creator><![CDATA[ Mark Robichaux ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/sHyHQ7U9moDFDstWJbCaLL-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/sHyHQ7U9moDFDstWJbCaLL-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="sHyHQ7U9moDFDstWJbCaLL" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/sHyHQ7U9moDFDstWJbCaLL.jpg" mos="https://cdn.mos.cms.futurecdn.net/sHyHQ7U9moDFDstWJbCaLL.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>“This … is … bad.”</p><p>The chief information officer at Liberty Global, Veenod Kurup, mouthed those words, mostly to himself, as he saw the Guy Fawkes mask of Anonymous appear in the YouTube video.</p><p>It was bad enough that there was an outage in the system, and a big one. Hundreds of thousands of homes and counting — eventually 2.2 million, or nearly two of every three of Liberty’s Netherlands broadband subscribers — were now essentially unplugged.</p><p>Worse, the cause wasn’t a late summer storm or a lightning strike, but something far more devious: a breach in the company’s cyber defenses through an overwhelming distributed denial-of-service (DDoS) attack on company servers.</p><p>Transfixed by the video, Kurup and other executives realized the unfolding tech nightmare was getting worse. It appeared to be the sinister work of Anonymous, the infamous global Internet vigilante group known for ferocious attacks.</p><p>The Liberty executives listened in disbelief in their offices near Amsterdam as the eerie synthesizer-distorted voice on the screen explained how the next attacks would be even harsher. The target: Liberty Global’s newly acquired Ziggo operations in the Netherlands.</p><p>The audio ended with a version of the group’s signature coda: “We are Anonymous. We are legion. We do not forget. We do not forgive. F---k your bad services. Expect us.”</p><p>When it ended, the room fell silent for a second.</p><p>Over the ensuing 72 hours of August 2015, a bizarre chain of events would leave Liberty executives flummoxed, and forever wary. The crisis would embroil an eclectic set of characters, including frazzled cable engineers, detectives with the Dutch Police’s High-Tech Crime Unit, cyber gumshoes at the National Cyber Security Centre, the digital vigilante group known as Anonymous, copycat hackers looking for Internet glory and the true perpetrators, who briefly evaded authorities despite their crude methods.</p><p>In bringing down Liberty Global’s Ziggo network, the criminals and the manhunt to capture them yielded some crucial lessons for the many media companies — indeed, any major industrial concern — that will inevitably confront this insidious peril of the Internet Age: that they will be victimized by a hacker or attacker hell-bent on stealing data, demanding money or bringing the system down.</p><p>Hacking is big business, and it’s getting bigger. Cybercrime inflicts annual costs to the global economy exceeding $400 billion, according to a study by the Center for Strategic and International Studies, sponsored by cybersecurity firm McAfee. Costs could reach up to $2.1 trillion globally by 2019, according to Juniper Research. Other estimates put the figure at a mind-boggling $6 trillion within five years, including lost productivity, fraud and post-attack disruption.</p><p>Cable operators and other ISPs rarely speak about cybercrime for fear of inadvertently revealing network vulnerabilities, but given the widespread, mostly unauthorized revelations about the Netherlands cyberattack, Liberty executives agreed to share limited details to clarify the episode.</p><p>Sometimes a breach occurs for all the wrong reasons. A company can do all the right things, create the best safeguards and vigorously review security, but may overlook a tiny flaw in the system.</p><p>Liberty’s network, like that of many ISPs, is attacked constantly in a variety of ways (see chart), but the attempts are kept at bay with increasingly sophisticated safeguards. Though outages at big ISPs from hackers are rare, the odds continue to grow in the hackers’ favor as digital commerce and cloud computing thrive. Wireless operations are, in many ways, even more vulnerable.</p><p>Evolving prevention and detection strategies are as elaborate as they are endless: “honeypots,” for example, are computer systems set up to act as a decoy to lure cyber-attackers and study their methods. Liberty had long ago implemented a holistic approach to security beyond just firewalls, with a 24-hour monitoring team in a global security operations center. Highly trained executives followed a thoughtful crisis-management process. Recent upgrades had already reduced malware infection rates by 25% since January 2015. With a comprehensive plan backed by best practices, the network security team was comfortable the company could withstand most cyber attacks.</p><p><strong><em>THE ATTACK BEGINS</em></strong></p><p>But last summer, a rupture suddenly and quietly appeared in the front lines. And like all successful attacks, the intruders caught the fortress completely by surprise. It was as if the cable giant had built reinforced steel walls with spotlights and guard dogs in front of the house and then left a window open in the new annex out back.</p><p>Around 9:30 pm on Tuesday, Aug. 18, Liberty technicians got word that Ziggo, an incumbent cable operator acquired by Liberty months earlier, was reporting outages.</p><p>Ziggo had only just begun the process of integrating its system into Liberty’s, but no matter: Liberty owned them now and complaints were lighting up call centers by the thousands. In just hours, hundreds of thousands of customers would be without broadband services.</p><p>Ziggo and Liberty engineers quickly huddled on a conference call to determine the cause of the outage. More often than not, the problem can be traced to an equipment failure. Not this time. Within an hour, the engineers, because of the mushrooming volume of outages, quickly realized Ziggo was under a distributed denial of service (DDOS) attack. This was a Priority 1 incident.</p><p>Liberty Global’s chief technology officer, Balan Nair, knew reaction time was critical. “The key to solving all this is a function of how quickly you react initially and how good your team is,” he said. “Up and down the ladder, everyone was taking this very seriously. They were burning the midnight oil on this.”</p><p>A distributed denial-of-service attack typically floods a company’s network by inundating it with connection requests, leaving the targeted server overwhelmed, a lot like Lucy at the chocolate factory, frozen by its inability to keep pace with commands. Often the culprit is using an army of hijacked Web browsers or malware-infected computers, or botnets. According to a report by TrendMicro Research, $150 can buy a week-long DDoS attack on the black market.</p><p>Indeed, DDOS attacks are common — Liberty, like many cable operators, fends off up to 10 Gigabits of DDOS attacks — per day. This particular attack targeted DNS servers, which redirect domain names to correct IP addresses. Social media chatter about the outage began building — for those that could still get online.</p><p>Social media, in fact, supplied the first clues to identifying the perpetrator. Several groups began to claim credit via Twitter. Then came the YouTube video. As it played against a still photo of a Guy Fawkes mask, the synthesized voice began its threat:</p><p>“We, Anonymous, have a message to company Ziggo … now we’re going to hold Ziggo offline for a few days because Ziggo offers bad service. This is the last warning. We are Anonymous. We not forgive. We do not forget. F---k your bad services. We are Legion. Expect us.”</p><p>Recalls Kurup: “That shook us to the bone.”</p><p>The nature of a DDOS attack is that it ebbs and flows, and by 5 a.m. on Aug. 19, several hours after the first thrust, the attack seemed to ebb with the countermeasures of Ziggo and Liberty engineers. Liberty executives breathed a moment of relief: Customers could be back online when they awoke.</p><p>The DDOS attack had not been so unique or complex, so why had the network become so suddenly vulnerable?</p><p>While the tech teams were puzzled at first, they soon realized the cause. Despite defenses that Liberty Global had in place, the firewalls in front of newly acquired Ziggo’s DNS servers had not been set up according to Liberty Global standards, and had collapsed. Firewalls prevent routine unauthorized access, but not the kind of voluminous attacks of the sort that targeted Ziggo.</p><p>Moreover, the attackers had caught Liberty at its weakest moment — in the middle of migrating an entire network. As the DDoS attack ebbed, Liberty and Ziggo engineers were left chewing on a tough question: how to instantly migrate Ziggo’s network into Liberty’s — usually a months-long task with tests, changes and documentation required — in one day.</p><p>The engineers hatched an audacious scheme. Senior managers, confident the team could execute, approved the plan instantly.</p><p>“They said, ‘You know what you need to do — do it,’ ” said Kick Fronenbroek, a senior security specialist for Liberty Global.</p><p>At some point on the second day, another threatening YouTube video surfaced. This one was more specific, and raised questions about the attacker’s true identity. Posted by someone ominously dubbed “AnonNazi,” it featured a crudely drawn, green, animated, hooded character with a synthesized voice, emblazoned with a banner with swastika icons.</p><p>The voice claimed full credit for the earlier attack, dismissing Anonymous. “Some other people are claiming it was Anonymous, but it was not. We attacked the DNS service because of the bad service that Ziggo provides …” AnonNazi boasted.</p><p>His next utterances were pointed.</p><p>“Because of bad service we want you to pay all of the customers all of their money back for about one week. If you don’t accept this, we will continue with more powerful attacks,” the voice threatened. “You have been warned.”</p><p>The question burning on everyone’s mind: if this wasn’t the real Anonymous, who in the hell had just brought down service to nearly 2 million homes? Executives at Ziggo and Liberty were baffled.</p><p>Around 4 p.m. on that second day, Aug. 19 — after the first attack, and before the migration of the network — there was another, more ferocious assault using a different entry method.</p><p>Again, consumers and businesses across the country were digitally stranded with no broadband service. In just 24 hours, the national network had absorbed two unprecedented cyberattacks. “We had outages before, but this is the first big one we had,” Kurup said. “Nothing like it before.”</p><p>That roughly 2 million customers were without broadband (TV service worked fine) was enough. But the self-proclaimed attackers, AnonNazi, took to social media to pour salt in the wound: Liberty stood helpless — for the moment — as a second wave of digital torpedoes directed by the same hackers penetrated the bulkheads.</p><p>“We now understand the weakness, but we also see that the system is allowing it to happen,” Kurup said. “We knew we could fix this problem.”</p><p>The crisis was escalating. On YouTube, Ziggo was threatened with new attacks. At the same time, the attackers announced a new target, KPN, a Dutch telecommunications company.</p><p>The Dutch Ministry of Security and Justice called the attack “serious,” and Liberty executives called in the High-Tech Crime Unit of the Dutch Police Services Agency.</p><p>A growing team of technicians were tackling the DDOS attack, and by the evening on the second day, had counteracted the menace of the incoming traffic. The traffic issue was becoming more manageable.</p><p>By about 3 a.m. on Aug. 20 — about 50 hours into the attacks — engineers had redirected the flow of traffic, essentially by offloading it to island data centers.</p><p>Working around the clock, the teams had finally migrated the network and successfully updated defenses. All mitigation steps in Liberty’s elaborate security protocol were in place. Engineers at Ziggo and Liberty were content for the moment. The back window was shut.</p><p>Although the attackers had managed to inflict inconvenience, the company had reason to be proud of how it battled back. Its fast reaction preserved customers’ data and privacy, and minimized downtime for countless business and residential subscribers. An endto- end security plan made the attack manageable. And the incident left Liberty’s security team with invaluable battlefield experience.</p><p>As Liberty stated in its annual report, “the overload impacted 2.2 million customers, yet within 24 hours, our teams were moving 130,000 customers per hour to more resilient infrastructure. Two days later, full service was restored.”</p><p>Liberty now was intent on winning the war. Fearing further attacks as a result of the threats hurled over YouTube, Liberty didn’t just drop the matter, as many corporate hacking victims do. The company pressed a criminal investigation, beginning a cat and mouse game to track down the culprits, while bracing for more attacks.</p><p>But a strange thing happened — nothing.</p><p>Much to the bewilderment (and relief) of executives, no large-scale DDoS hacking attempts were detected in the system. The threatened deadline came and went. Ironically, the hacker’s inaction provided a major clue.</p><p>Serious hackers, not to mention ransomware, vow a certain time for an attack — and stick to it. That this code was not honored virtually confirmed suspicions that Anonymous wasn’t behind the attack.</p><p>A subsequent Twitter post by AnonOps, which claims to have ties to the actual group, echoed many social-media commenters: “DDoS on #Ziggo is not an #Anonymous operation.”</p><p><strong><em>HACKER VS. HACKER</em></strong></p><p>Then the manhunt took a bizarre turn for investigators: the groups claiming credit for the attack began to insult and threaten one another on social media.</p><p>Some dismissed the poster AnonNazi as a pretender. Another self-proclaimed hacker, AnonymousScruggs, claimed credit for the attacks on Ziggo.</p><p>“They were having turf wars,” said John Fokker, who, with Ton Maas led the digital team for the High Tech Crime Unit of the Dutch National Police. “Most [professional hackers] are discreet about how they approach the company. They don’t have a beef on Twitter.”</p><p>Days later, on Aug. 26, a video narrated by the synthesized voice of a faint image, hooded and tinted purple, and posted by “Code Red,” drew Liberty’s attention:</p><p>The hackers began to “dox” one another, an attack wherein all of a target’s personal documents (email addresses, phone numbers and bank accounts) are released on the Internet. On the Twitter account of AnonNazi, a post read simply, “This account has been compromised by @BOEFII.”</p><p>Said another post by @BOEFII under a story about the attack on a media website in the Netherlands:</p><p>“I would like to thank everyone who participated in helping me to dox every single person from Anon_Nazi. They are destroyed and they will never cause any harm to Ziggo again.”</p><p>Had a bunch of glory-hungry hackers claiming credit for the same crime just turned on one another — outing each other in the process?</p><p>Top engineers at Liberty were left scratching their heads.</p><p>In addition to the police, Liberty called in digital detectives from the National Cyber Security Centre, which collects data and advises organizations on security, and a rapid response team from Deloitte, which focused more on forensics.</p><p>Over the next several days, Liberty engineers began turning over discs of data to investigators. Digital detectives scoured social media for clues, conducted interviews and studied logs of interactions between the Liberty/Ziggo servers and outside computers. Investigators searched for patterns and addresses that matched the information they were gathering about the attackers.</p><p>As the digital dust settled, Liberty executives reviewed detection and prevention measures all across the Liberty Global footprint. “We had already sanitized the entire system,” said Kurup.</p><p>Chasing the digital breadcrumbs, the public claims of credit, and the battle between the hackers, Fokker and Maas moved quickly and made two arrests early on.</p><p>Six weeks after the initial attack, on Oct. 7, 2015, Dutch police arrested four minors between 14 and 17 years old and one 21-year-old. The boys come from Berkelland, Lochem, Den Helder, Schoorl and Vinkeveen.</p><p>Police seized computers, mobile phones, external hard drives and USB sticks. The young suspects “wanted to show they were capable of having a major effect such as taking down an Internet provider,” the National Prosecutor’s Office said in a statement to Dutch media.</p><p>Under Dutch penal code, the suspected hackers face up to two years for the DDoS attack. Because of the extortion threats, they face a maximum of an additional 12 years behind bars. A trial date has not been set, but because of the suspects’ age, leniency will be sought.</p><p>Today, the Liberty and Ziggo engineers are sensitive about the incident. “If the same cast of characters had done this anywhere else in our global footprint — Germany, France, Belgium — it wouldn’t have even caused an outage,” said Kurup. “We would have intercepted it. It would have been logged as a routine attack.”</p><p>Kurup hopes the apprehension of the hackers, which made big headlines in the Netherlands, deters others. But no matter — the incident has made the entire company more vigilant, and that’s a good thing.</p><p>“It’s a constant battle,” Kurup said.</p><p><strong>STATE of CYBERSECURITY</strong></p><p><strong>500M</strong></p><p>Number of accounts that Yahoo said hackers had accessed containing passwords and personal details in 2016.</p><p><strong>SOURCE :</strong> Yahoo</p><p><strong>129%</strong></p><p>Increase in DDoS attacks in Q2 2016 vs. Q2 2015</p><p><strong>SOURCE :</strong> Akamai <em>State of the Internet Security Report</em>, Q2 2016.</p><p><strong>45%</strong></p><p>Increase in 2015 of detected security incidents over the year before for telecommunications companies.</p><p><strong>SOURCE :</strong> PWC, <em>The Global State of Information Security Survey 2016</em>. Based on responses of more than 10,000 CEOs, CFOs, CIOs, CISOs, CSOs, VPs, and directors of IT and security practices from 127 countries.</p><p><strong>100M</strong></p><p>Number of fake tech-support scams blocked by Symantec in 2015, whereby pop-up error alerts steer victims to an 800 number where “tech- support reps” sell services.</p><p><strong>SOURCE :</strong> Symantec</p><p><strong>39%</strong></p><p>Percentage of companies that cited “budget” as the biggest barrier to adopting advanced security processes and technology.</p><p><strong>SOURCE :</strong> Cisco 2015 <em>Security Capabilities Benchmark Study</em></p><p><strong>54%</strong></p><p>Percentage of companies that cited malicious software downloads as the leading cause of internal breaches.</p><p><strong>SOURCE :</strong> Cisco Systems, <em>Security Risk and Trustworthiness Study</em></p><p><strong>93%</strong></p><p>Percentage of cases in which it took attackers “minutes or less” to compromise systems. Organizations, meanwhile, took weeks or more to discover that a breach had even occurred — and it was typically customers or law enforcement that sounded the alarm, not their own security measures.</p><p><strong>SOURCE :</strong> Verizon 2016 <em>Data Breach Investigations Report</em></p><p><strong>65%</strong></p><p>Percentage of respondents who collaborate to improve cybersecurity and reduce cyber-risks, up from 50% in 2013.</p><p><strong>SOURCE :</strong> PWC <em>The Global State of Information Security Survey</em> 2016, based on responses of more than 10,000 CEOs, CFOs, CIOs, CISOs, CSOs, VPs and directors of IT and security practices from 127 countries</p><p><strong>HACKING 101: HOW TO GET IN</strong></p><p><strong>Cybercrime</strong> is any criminal act involving a computer and/or a network. <strong>Hacking</strong> is the unauthorized access into a computer system. Crimes can take any form, from outright theft of data or funds, damage to a network or harm to a reputation. Increasingly, one of the weakest links in security is the employee. Most attacks on companies involve some sort of <strong>malware</strong>, a broad term for malicious code, including Trojans, worms and viruses that steal or destroy data, often introduced through emails, downloads or other network weak spots. Some common terms below:</p><p>• “<strong>Phishing</strong>” attempts involve official-looking emails tempting employees to click on a link that can trigger countless malware possibilities. (Spear phishers focus narrowly on a single company or individual.)</p><p>• <strong>Distributed Denial of Service (DDoS)</strong> attackers use multiple hijacked computers to push through a huge volume of traffic through the network until it becomes overwhelmed and no longer functions.</p><p>• <strong>Botnets</strong>, also known as “zombie armies,” are groups of infected computers controlled by third parties for DDoS attacks or for distributing other malware.</p><p>• <strong>Trojan</strong> attacks allow attackers to remotely steal data and manipulate the computer.</p><p>• <strong>Ransomware</strong> demands a ransom after blocking access to the computer by encrypting files on the hard drive.</p><p>• <strong>Spyware</strong> allows attackers to go undetected on infected computers to track users movements on the Internet, even keystrokes for theft of accounts, etc.</p><p>• <strong>Adware</strong> redirects users to unwanted advertising.</p><p>• <strong>SQL injection</strong> inserts a nefarious code in a website/’s entry field that allow attackers to manipulate or steal or destroy data.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Charter Hires Head of Corporate Security ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/charter-hires-head-corporate-security-408348</link>
                                                                            <description>
                            <![CDATA[ Charter Hires Head of Corporate Security ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">tUjDjeUAvRNKfJG73HJpKg</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/6cRnbgGwdAziXLvjxox59U-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Tue, 11 Oct 2016 14:56:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                    <category><![CDATA[Fates &amp; Fortunes]]></category>
                                                    <category><![CDATA[Distribution]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/6cRnbgGwdAziXLvjxox59U-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/6cRnbgGwdAziXLvjxox59U-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="6cRnbgGwdAziXLvjxox59U" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/6cRnbgGwdAziXLvjxox59U.jpg" mos="https://cdn.mos.cms.futurecdn.net/6cRnbgGwdAziXLvjxox59U.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>Charter Communications said it has hired Jane Rhodes-Wolfe as group vice president, head of corporate security, where she will will oversee physical security matters for the company and manage Charter’s overall relationship with law enforcement.</p><p>Rhodes-Wolfe, who reports to Charter senior executive VP David Ellen, will be based out of the company’s Stamford, Conn., headquarters and also provide support for to executive management on cybersecurity matters, the company said.</p><p>Rhodes-Wolfe joins Charter following 20 years with the Federal Bureau of Investigation, where she most recently served as section chief, counterterrorism division.  During her time at the FBI, Rhodes-Wolfe also served in other leadership positions, including national programs dedicated to national security, criminal investigations, and technology systems.</p><p>“In this increasingly dangerous world, Jane’s proven leadership and experience make her the ideal candidate to lead the physical security strategies and programs at Charter and to maintain the critical law enforcement relationships that help keep our 90,000 employees safe,” said Ellen, in a statement.</p><p>Since retiring from the FBI earlier this year, Rhodes-Wolfe has worked as a consultant, lending her expertise in security, enterprise risk management and media relations to private and government clients, Charter said.</p><p>Rhodes-Wolfe holds a Bachelor's Degree in Accounting from Western Michigan University.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Comcast Seeks Projects for ‘Innovation Fund’ ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/comcast-seeks-projects-innovation-fund-403907</link>
                                                                            <description>
                            <![CDATA[ Comcast Seeks Projects for ‘Innovation Fund’ ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">kL3e4ep2de2j1nQkvavBgg</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/nLQKr2sBz8PjUfWU8np5K9-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 06 Apr 2016 20:00:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Technology]]></category>
                                                    <category><![CDATA[Distribution]]></category>
                                                                                                                    <dc:creator><![CDATA[ Jeff Baumgartner ]]></dc:creator>                                                                                                        <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/nLQKr2sBz8PjUfWU8np5K9-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/nLQKr2sBz8PjUfWU8np5K9-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="nLQKr2sBz8PjUfWU8np5K9" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/nLQKr2sBz8PjUfWU8np5K9.jpg" mos="https://cdn.mos.cms.futurecdn.net/nLQKr2sBz8PjUfWU8np5K9.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>Comcast said it has opened the search for researchers and projects for the MSO’s <a href="http://innovationfund.comcast.com/">Innovation Fund</a> for 2016.</p><p>The fund, Comcast VP of Internet services Jason Livingood, noted in this <a href="http://corporate.comcast.com/comcast-voices/calling-all-researchers-comcast-innovation-fund-seeking-projects?awt_l=6KqtE&awt_m=3l5hTwIHrZFdAMm">blog post</a>, applies a focus on broadband, security and open-source development.</p><p>During its history, Comcast’s Innovation  Fund (formerly called the Comcast Technology Research & Development Fund) has supported  62 projects from 10 countries, he noted. According to the <a href="http://innovationfund.comcast.com/images/innovationfund_2015-annual-report.pdf">2015 annual report</a> on the initiative, 19 grants were made last year for U.S.-based projects, and one each in France, Switzerland and Australia.</p><p>Livingood highlighted three 2015 projects in the post: The United States Telecommunications Training Institute’s (USTTI), which provides free information and communications technology (ICT) training to technology leaders in the developing world; TheFrench Institute for Research in Computer Science and Automation’s (INRIA), which researches advanced trouble-shooting tools for home networks; and Georgia Tech, which is working to develop better firewall tools to help users spot and avoid malicious Domain Name System (DNS) activity.</p><p>“We specifically designed the fund to be a resource for researchers working on smaller projects that may not qualify for larger grant programs,” Livingood wrote.</p><p>The fund as backed by a $1 million commitment from several groups within Comcast in 2014 and 2015, and that level has been renewed for 2016, according to the annual report. Grants range from $3,000 to $100,000 or more, depending on the size and scope of the project.</p><p>Looking ahead, Livingood said the Innovation Fund is particularly interested in supporting projects that create or advance important open-source projects; address critical cybersecurity threats and issues; advance the deployment and adoption of IPv6, DNSSEC, and DANE; identify performance bottlenecks and other issues in home networks; explore the performance and security-related issues in home networks; and advance understanding of the Internet of Things.</p><p>“We’ve begun funding projects for 2016, but still have a lot of opportunity to support good projects. And if we see a worthy project that we can’t fit in this year, we will put it up for consideration in 2017,” Livingood wrote. </p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
                                <item>
                                                            <title><![CDATA[ Phishing/Hacking/Malware No. 1 Cause of Data Breaches ]]></title>
                                                                                                                                                                                                <link>https://www.nexttv.com/news/phishinghackingmalware-no-1-cause-data-breaches-report-403696</link>
                                                                            <description>
                            <![CDATA[ Phishing/Hacking/Malware No. 1 Cause of Data Breaches ]]>
                                                                                                            </description>
                                                                                                                                <guid isPermaLink="false">mtQepc576q9ZcvPUedzoTn</guid>
                                                                                                <enclosure url="https://cdn.mos.cms.futurecdn.net/kpBZqYpKv2NJPabJ9BgWv6-1280-80.jpg" type="image/jpeg" length="0"></enclosure>
                                                                        <pubDate>Wed, 30 Mar 2016 14:15:00 +0000</pubDate>                                                                                                                                                                                                                                <category><![CDATA[Business]]></category>
                                                    <category><![CDATA[Policy]]></category>
                                                    <category><![CDATA[Technology]]></category>
                                                                                                <author><![CDATA[ john.eggerton@futurenet.com (John Eggerton) ]]></author>                    <dc:creator><![CDATA[ John Eggerton ]]></dc:creator>                                                                                    <dc:source><![CDATA[ http://cdn.mos.cms.futurecdn.net/ETjt8sjZcQr97v7yakQ4hP.jpg ]]></dc:source>
                                                                <dc:description><![CDATA[ null ]]></dc:description>
                                                                                                                                <cf:isSponsored>false</cf:isSponsored>
                <cf:hasAffiliateLinks>false</cf:hasAffiliateLinks>
                <cf:isPaid>false</cf:isPaid>
                                                                                                                                <media:content type="image/jpeg" url="https://cdn.mos.cms.futurecdn.net/kpBZqYpKv2NJPabJ9BgWv6-1280-80.jpg">
                                                            <media:credit><![CDATA[null]]></media:credit>
                                                                                                                                                                                                                                                                                                                                                    </media:content>
                                                    <media:thumbnail url="https://cdn.mos.cms.futurecdn.net/kpBZqYpKv2NJPabJ9BgWv6-1280-80.jpg" />
                                                                                                                                                                    <content:encoded >
                            <![CDATA[
                            <article>
                                <figure class="van-image-figure pull-" data-bordeaux-image-check ><div class='image-full-width-wrapper'><div class='image-widthsetter' ><p class="vanilla-image-block" style="padding-top:56.25%;"><img id="kpBZqYpKv2NJPabJ9BgWv6" name="" alt="" src="https://cdn.mos.cms.futurecdn.net/kpBZqYpKv2NJPabJ9BgWv6.jpg" mos="https://cdn.mos.cms.futurecdn.net/kpBZqYpKv2NJPabJ9BgWv6.jpg" align="" fullscreen="" width="" height="" attribution="" endorsement="" class="pull-"></p></div></div></figure><p>As an unsavory group, phishing, hacking and malware together comprised the number one cause of data security "incidents."</p><p>They caused 31% of all breaches, according to the second annual <a href="http://bakerlaw.com/files/uploads/Documents/Privacy/2016-Data-Security-Incident-Response-Report.pdf">Data Security Incident Response Report from BakerHostetler</a>, which analyzed more than 300 such incidents the law firm helped manage.</p><p>Rounding out the top five causes, in order, were employee actions/mistakes (24%), external theft (17%), vendor-related incidents (14%) and internal theft (8%). Just outside the top five, at 6%, was improper records disposal.</p><p>The study found that the average time between a breach and detection was in excess of two months (69 days), and in at least one case well more than a year. Almost a quarter (24%) of the breaches resulted in a regulatory inquiry, and litigation was begun in 6% of the cases.</p><p>More than half of the breaches (52%) were self-detected.</p>
                                                            </article>
                            ]]>
                        </content:encoded>
                                                </item>
            </channel>
</rss>