Hacks at Twitter, New York Times, WSJ and Washington Post highlight need for better security hygiene

February 4, 2013

Earlier tonight, I received an email I would just as soon not have gotten from Twitter, along with 250,000 Twitter users who had their password reset. Twitter security director Bob Lord explained why I’d received the email on the company blog:

“This week, we detected unusual access patterns that led to us identifying unauthorized access attempts to Twitter user data. We discovered one live attack and were able to shut it down in process moments later. However, our investigation has thus far indicated that the attackers may have had access to limited user information – usernames, email addresses, session tokens and encrypted/salted versions of passwords – for approximately 250,000 users.”

Mike Isaac has been following the story the hack at Twitter at AllThingsD, if you want the latest news tonight.

After the password reset, I went through revoked Twitter authorization access to a number of unused apps, something I’ve been doing periodically for years now. That habit is among Twitter’s security recommendations.

I’m thinking about other social media accounts now, too. Shortly after Nicole Perloth began covering IT security for the New York Times, she shifted her practices:

“Within weeks, I set up unique, complex passwords for every Web site, enabled two-step authentication for my e-mail accounts, and even covered up my computer’s Web camera with a piece of masking tape — a precaution that invited ridicule from friends and co-workers who suggested it was time to get my head checked.”

She talked to two top-notch security experts and wrote up a useful list of good digital security practices. Unfortunately, it may be that it takes getting hacked and embarrassed (as I was on Twitter, on Christmas Eve a couple years ago) to change what how people approach securing their digital lives.

I don’t recommend that sort of experience to anyone. I was lucky, was tipped nearly right away and was able to quickly get help from the remarkable DelHarvey, head of the Twitter Safety team.

It could have been much, much worse. I’m thinking of Mat Honan, a Wired journalist who experienced an epic hacking that came about through a chain of  compromised accounts at Amazon, iTunes, Gmail and Twitter. After a lot of work, Honan managed to recover his data, including some precious pictures of his child. In the wake of the hack, he turned on 2-factor authentication on Google and Facebook, turned off “Find my” Apple device, and set up dedicated, secret accounts for password management. Honan isn’t alone in the tech journalist ranks: he just happens to have a bigger platform than most and was willing to make his own painful experience the subject of an extensive story.

A jarring reality is that even people who are practicing reasonably good security hygiene can and do get p0wned. Unfortunately, the weakest point in many networks are the humans — that’s reportedly how Google ran into trouble, when key employees were “spear phished” during “Operation Aurora,” targeted with social engineering attacks that enabled hackers to access the networks.

The last paragraph of Lord’s post suggests that a similar expertise was at work at Twitter, although he does not specify a source.

“This attack was not the work of amateurs, and we do not believe it was an isolated incident. The attackers were extremely sophisticated, and we believe other companies and organizations have also been recently similarly attacked. For that reason we felt that it was important to publicize this attack while we still gather information, and we are helping government and federal law enforcement in their effort to find and prosecute these attackers to make the Internet safer for all users.”

It’s been true for a decade but it’s even clearer in the second month of 2013: practicing basic information security hygiene is now a baseline for anyone else online, particularly those entrusted with handling confidential sources or sensitive information.

Chris Soghoian was clear about the importance of journalists and media companies getting smarter about keeping sources and information safe in 2011. Tonight, I am not sanguine about how much has changed since in the news industry and beyond.

Two days ago, the New York Times disclosed that hackers had infiltrated …the New York Times. The next day, The Wall Street Journal has disclosed similar intrusions. Earlier today, Brian Krebs reported that the Washington Post was broadly infiltrated by Chinese hackers in 2012. The Post confirmed the broad outlines of an attack on its computers.

If you’re a journalist & you’re not using a password manager+unique, long random passwords per website: stop, install and configure one now.

— Christopher Soghoian (@csoghoian) February 2, 2013

If you have a moment this weekend, think through how you’re securing your devices, networks and information. If you use Twitter, visit Twitter.com and update your password. If you haven’t turned on 2-factor authentication for Facebook and Gmail, do so. Update your Web browser and use HTTPS to connect to websites. disable Java in your Web browser. Think through what would happen if you were hacked, in terms of what numbers you would call and where and how your data is backed up. Come up with tough passwords that aren’t easily subject to automated cracking software.

And then hope that researchers figure out a better way to handle authentication for all of the places that require a string of characters we struggle to remember and protect.

Thanks to digiphile

Leave a Comment » | Application Hosting, Managed Service Hosting, Marketing | Tagged: , , , , , , , | Permalink
Posted by david ricketts

Making newspapers, magazines instantly shoppable

November 29, 2012

Enabling readers to buy directly from magazines or newspapers has been an elusive goal for years, and it’s becoming a more urgent one as print/online outlets see revenues slipping. This week The Wall Street Journal launched a shoppable holiday gift guide in the WSJ Select section of wsj.com (separate from editorial content). Customers pay for purchases within WSJ Select, then receive packages from the retailers selling the featured items and deal with them for returns. According to Ad Age, the publisher expects to continue the section beyond the holidays (e.g., Valentine’s Day and Mother’s Day guides) and possibly make some editorial posts shoppable as well.

Magazines, meanwhile, have been finding ways to fuse content with commerce so that it’s a quick hop from reading about an item to buying it. Harper’s Bazaar recently launched an e-commerce platform, ShopBazaar, featuring editorial content and editor-selected items. The print magazine will display icons next to those items available on ShopBazaar, and beginning in 2013, readers will be able to use a smartphone to access the site from the page. Esquire’s December issue lets readers do just that thanks to the Netpage app, which enables an iPhone to interact with a printed page sans visible codes or watermarks; the screen displays a digital replica of the page. Readers who use Netpage to “clip” products from a collection of “Great American Things,” selected by Esquire and Made Collection, see a “buy” button that links to an online storefront. Magazines can also use augmented reality apps like Blippar and Aurasma. Earlier this year, for instance, U.K. retailer ASOS partnered with Aurasma on an app, Scan to Shop, that makes the brand’s magazine instantly shoppable.

thanks to http://www.jwtinteeligence.com

Related articles

Leave a Comment » | Application Hosting, Marketing, Retail IT Solutions | Tagged: , , , , , , , | Permalink
Posted by david ricketts

The Predictive Analytics Revolution- Are you sitting on the sidelines?

October 18, 2012

Predictive analytics (or Big Data) is here to stay. You may not understand it. You may not believe that it really works. But the reality is this: your competitors (and it may be just one or two of them) are using predictive analytics to chew up market space as you remain on the sidelines.

Don’t believe me? Consider the retail space. Who is the undisputed king of retail? That’s right, Wal-Mart. What’s their secret? What has given them the edge for so many years over their competitors? Data analysis. They live and die by data and have been for decades. Wal-Mart knows their customer data better than anyone and have the market share to prove it.

Recently the Dollar stores took on Wal-Mart by providing cheaper supplies like toiletries and medicine. Their strategy started to see some success and Wal-Mart even started to lose market share. But the retail giant went back to their data for a solution. The data said that many Wal-Mart customers started pinching pennies at the end of each month and needed a few basic items to get them over until payday. The solution, stocking shelves with thousands of items under $1 at the end of each month. Customers lured to the Dollar stores for such items were back in the Wal-Mart fold.

Target has also jumped into the game with their own consumer analytics program. The most famous example is how they used in-store data to pick out pregnant women through their shopping habits. They used this information to send marketing material promoting baby products. It worked…almost too well.

Wal-Mart, Target, and online stores like Amazon have forced everyone in this market make a decision, if you want to compete in retail you had better jump into the data science and predictive analytics game or a going-out-of-business-sale is in your near future. Sitting on the sidelines is not an option.

This isn’t isolated to just retail. There are stories everyday in the news about companies in a variety of markets taking a second look at their data and finding a treasure trove of valuable information.

Despite the hype and the proof that predictive analytics can give companies a competitive edge, the sidelines are full of businesses that are still not sure about getting in the game.

The New York Times reported that a handful of universities are using their data and predictive analytics to help them find students who are about to drop out of school. These schools know that higher enrollment means more money. These early adopters are reaping the benefits and aren’t afraid to tell everyone. Why? The vast majority of their competitors haven’t given this type of data analysis a second thought. Just like the example above, a few colleges will charge ahead and reap the benefits of higher enrollment while other universities…sit on the sidelines.

You can find the same thing in the health care industry. The Wall Street Journal published an article by Dr. Marty Makary of Johns Hopkins pleading with hospitals to make better use of their data to save lives. You can almost hear the frustration in his voice when he writes, “Medical mistakes kill enough people each week to fill four jumbo jets.” Even though there are 98,000 deaths due to medical errors in the United State, most hospitals and medical facilities are slow to adapt any type of data analytics.

A few forward thinking hospitals and health care facilities will see the opportunity and do what Dr. Makary suggests. Using the data visualization and predictive analytics, the trend setters have improved patient care, are keeping costs down – and most importantly – saving lives in the process. But just like the universities, the majority of hospital will remain on the sidelines. (I hope I can take my family to the forward thinking hospital!)

Why are so many still sitting on the sidelines?

The Harvard Business Review may have the answer. In an an eye opening survey they reveal the source of the bottleneck. (I highly recommend reading this entire study.) The study shows that the hype and awareness about data analytics is at an all time high.

According to the survey, a vast majority of companies are planning Big Data initiatives:

  • 85% of organizations reported that they have Big Data initiatives planned or in progress.
  • 70% report that these initiatives are enterprise-driven.
  • 85% of the initiatives are sponsored by a C-level executive or the head of a line of business.
  • 75% expect an impact across multiple lines of business.
  • 80% believe that initiatives will cross multiple lines of business or functions.

But here is where the rubber meets the road. HBR reports that:

  • Only 15% of respondents ranked their access to data today as adequate or world-class.
  • Only 21% of respondents ranked their analytic capabilities as adequate or world-class.
  • Only 17% of respondents ranked their ability to use data and analytics to transform their business as more than more than adequate or world-class.

The majority of companies are on the sidelines because they think they can’t readily access the data they have, they don’t have in house tools or talent to analyze it and don’t have the ability to put the data to use anyway. In other words, they don’t think their data is good enough.

Don’t let this kind of thinking keep you on the sidelines. I talk to business owners everyday who think they don’t have enough data for predictive analytics or even just analytics. Most of time, just the opposite is true. Many of our clients were pleasantly surprised when we told them they had more than enough data to jump into the game.

Don’t be one of crowd still sitting on the sidelines. Be one of those early adopters in your market space that uses predictive analytics to jump ahead of the competition. Would you like to learn more?

Thanks to http://blog.canworksmart.com/predictive-analytics/the-predictive-analytics-revolution/?buffer_share=e125e

 

Leave a Comment » | Marketing, Retail IT Solutions | Tagged: , , , , , , , , , , , | Permalink
Posted by david ricketts

Gartner predicts that by 2017 the Chief Marketing Officer will control the technology spend

July 18, 2012

The Wall Street Journal just posted this article in advance of IBM’s 2Q earnings announcement tomorrow, leading with this sentence: “Technology companies have found a new customer—the marketing department.”

The story goes on to highlight the fact that marketing organizations are increasingly taking the lead in technology acquisition, and that “Companies are de-emphasising traditional productivity tools like PCs and standard business software in favor of advanced programs that help them boost revenue, for example by tracking customers across channels and better targeting offers and advertising.”

In the Journal article, author Spencer Ante points out that Gartner recently predicted by 2017, the chief marketing officer will control more technology spending than the company CIO. Gartner estimates that around a third of marketing department expense budgets is devoted to purchases such as systems to manage customer relationships, predict customer behavior, and run online storefronts, and that the global spend on marketing software already rose from $20 billion to $25 billion over the past year.

Anyway interesting video below:

Leave a Comment » | Application Hosting, Managed Service Hosting, Marketing | Tagged: , , , , , , , | Permalink
Posted by david ricketts

Data Scientist Study 2012 – Big data

March 1, 2012

C24 work heavily in the the data maangement arena and so anything to do with the field interest us. We spotted this inforgraphic that looks at the explosion of data and how organisations are unprepared for it.

Data Scientist

Leave a Comment » | Application Hosting, Retail IT Solutions | Tagged: , , , , , , , | Permalink
Posted by david ricketts

Follow

Get every new post delivered to your Inbox.

Join 751 other followers