Kvinnliga ministrar får mer plats SvD Inrikes(cached at March 7, 2015, 11:35 pm)

Manliga ministrar tar fortfarande mer plats i medierna än kvinnliga, 60 procent mot 40. Men räknar man bort statsminister Stefan Löfven (S) är det kvinnorna som dominerar, med 57 procent av medieutrymmet, skriver Svenska Dagbladet.
Kvinnliga ministrar får mer plats SvD Inrikes(cached at March 7, 2015, 11:35 pm)

Manliga ministrar tar fortfarande mer plats i medierna än kvinnliga, 60 procent mot 40. Men räknar man bort statsminister Stefan Löfven (S) är det kvinnorna som dominerar, med 57 procent av medieutrymmet, skriver Svenska Dagbladet.
Fujitsu Tech Can Track Heavily Blurred People In Security Videos Slashdotby timothy on privacy at January 1, 1970, 1:00 am (cached at March 7, 2015, 11:35 pm)

itwbennett writes Fujitsu has developed image-processing technology that can be used to track people in security camera footage, even when the images are heavily blurred to protect their privacy. The company says that detecting the movements of people in this way could be useful for retail design, reducing pedestrian congestion in crowded urban areas or improving evacuation routes for emergencies. An indoor test of the system was able to track the paths of 80 percent of test subjects, according to the company.

Read more of this story at Slashdot.

Fujitsu Tech Can Track Heavily Blurred People In Security Videos Slashdotby timothy on privacy at January 1, 1970, 1:00 am (cached at March 7, 2015, 11:35 pm)

itwbennett writes Fujitsu has developed image-processing technology that can be used to track people in security camera footage, even when the images are heavily blurred to protect their privacy. The company says that detecting the movements of people in this way could be useful for retail design, reducing pedestrian congestion in crowded urban areas or improving evacuation routes for emergencies. An indoor test of the system was able to track the paths of 80 percent of test subjects, according to the company.

Read more of this story at Slashdot.

DNSChain 0.5 Released: HTTPS + Openname Resolver API + More! (Reddit) SANS ISC SecNewsFeed(cached at March 7, 2015, 11:30 pm)

Should it be Mandatory to have an Independent Security Audit after a Breach?, (Sat, SANS Internet Storm Center, InfoCON: green(cached at March 7, 2015, 11:30 pm)

Security breaches seem to be the norm now. Home Depot, Target, Sony, JP Morgan Chase to name a few who have been in the recent past, victim of sophisticated system compromise which ultimately lead to sensitive information leaked to the open. It is difficult to tell how sophisticated the attack was since we rarely ever see a report how the attack took place and what could have been done to prevent it (remember the last step of incident response).

One of the latest victims is Anthem Inc. who may have been compromised as early as December 2014 over a period of several weeks. For those who have been victims of this attack, Antem setup a website to signup for Identity Theft Repair Credit Monitoring Services.

Coming back to my question, should it be mandatory to have an independent security audit performed against the affected systems after a severe breach? The result of the report is made available to the victims to help them regain trust their data is secure and whenever necessary, is encrypted and protected. What do you think?

[1] https://www.anthem.com/health-insurance/home/overview
[2] https://www.anthemfacts.com
[3] http://www.oas.org/cyber/documents/IRM-5-Malicious-Network-Behaviour.pdf

-----------

Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Should it be Mandatory to have an Independent Security Audit after a Breach?, (Sat, SANS Internet Storm Center, InfoCON: green(cached at March 7, 2015, 11:30 pm)

Security breaches seem to be the norm now. Home Depot, Target, Sony, JP Morgan Chase to name a few who have been in the recent past, victim of sophisticated system compromise which ultimately lead to sensitive information leaked to the open. It is difficult to tell how sophisticated the attack was since we rarely ever see a report how the attack took place and what could have been done to prevent it (remember the last step of incident response).

One of the latest victims is Anthem Inc. who may have been compromised as early as December 2014 over a period of several weeks. For those who have been victims of this attack, Antem setup a website to signup for Identity Theft Repair Credit Monitoring Services.

Coming back to my question, should it be mandatory to have an independent security audit performed against the affected systems after a severe breach? The result of the report is made available to the victims to help them regain trust their data is secure and whenever necessary, is encrypted and protected. What do you think?

[1] https://www.anthem.com/health-insurance/home/overview
[2] https://www.anthemfacts.com
[3] http://www.oas.org/cyber/documents/IRM-5-Malicious-Network-Behaviour.pdf

-----------

Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Obama: Vår marsch är inte över SvD Utrikes(cached at March 7, 2015, 11:05 pm)

För ett halvt sekel sedan tog medborgarrättsrörelsen ett stort steg framåt när aktivisterna valde att gå över Edmund Pettus-bron i Selma i Alabama.
Tidning evakuerad efter bombhot SvD Inrikes(cached at March 7, 2015, 11:05 pm)

Södermanlands Nyheters redaktion i centrala Nyköping har evakuerats efter att ett bombhot inkommit via mejl. Det anonyma mejlet, där det stod att ett bombattentat planerades mot tidningen, kom vid halv niotiden, uppger SN på sin hemsida.
Tidning evakuerad efter bombhot SvD Inrikes(cached at March 7, 2015, 11:05 pm)

Södermanlands Nyheters redaktion i centrala Nyköping har evakuerats efter att ett bombhot inkommit via mejl. Det anonyma mejlet, där det stod att ett bombattentat planerades mot tidningen, kom vid halv niotiden, uppger SN på sin hemsida.
NCC Group to audit OpenSSL for security holes (ZDNet) SANS ISC SecNewsFeed(cached at March 7, 2015, 11:00 pm)

”Vill hedra de som kom före” SvD Utrikes(cached at March 7, 2015, 10:35 pm)

 
Bombhot mot tidning - redaktionen utryms SvD Inrikes(cached at March 7, 2015, 10:35 pm)

Södermanlands Nyheters redaktion i Nyköping blev under lördagskvällen bombhotat. Hur hotet ska ha nått redaktionen är oklart. Lokalen har utrymts och polisen tar hotet på allvar, uppger P4 Sörmland .
Bombhot mot tidning - redaktionen utryms SvD Inrikes(cached at March 7, 2015, 10:35 pm)

Södermanlands Nyheters redaktion i Nyköping blev under lördagskvällen bombhotat. Hur hotet ska ha nått redaktionen är oklart. Lokalen har utrymts och polisen tar hotet på allvar, uppger P4 Sörmland .
Ask Slashdot: Best Strategies For Teaching Kids CS Skills With Basic? Slashdotby timothy on education at January 1, 1970, 1:00 am (cached at March 7, 2015, 10:35 pm)

beaverdownunder writes We're currently working on developing a teaching platform based around our BASIC interpreter DiscoRunner, and we would love to hear from Slashdot readers as to what methods they've used in the past to teach kids computer science concepts — which worked, what didn't, and why? This will obviously be invaluable to us when it comes to working out the lessons that will be taught in our fight-to-save-the-world-from-evil learning environment, and we would be eternally grateful for any scraps of wisdom you could toss our way.

Read more of this story at Slashdot.