HomeBlog

Blog

Nest Alert: Protection From Pwned* Passwords

A colleague just received an “Urgent Security Alert - Action Requested” email from Nest (see the image below). At first glance it looked like either a phishing attempt or one of the way-too-often breach notifications we all receive these days.

Continue reading

Space Invaders - Consumer-Grade IoT in the Enterprise

I used to love the old Space Invaders arcade game - waves of enemy attackers came in faster and faster while you tried to defend your base. With experience you could learn their tactics and get pretty adept at stopping them. For today’s enterprise IT staff, consumer-grade IoT devices must certainly feel like those space invaders of old.

Continue reading

The Cyber Incident Tsunami - Time to Get Ready

In advance of Data Privacy & Protection Day, we just released the Cyber Incident & Breach Trends Report (press release here), a look back at the cyber incident trends in 2017 and what can be done to address them.

Continue reading

Will Uber Drive Us to Federal Breach Legislation ?

The past six months we have witnessed an un-paralleled level of questionable business practices resulting from data breaches.  As trusted brands, Uber as well as Equifax and others, who have been entrusted with significant amounts of personal data have failed the American public.  The breach missteps and follies only continue.  Each time most within the security and privacy communities have rolled our eyes in disbelieve.

Continue reading

CAN-SPAM - Looking Ahead & Looking Global

This week OTA / the Internet Society joined nearly 90 individuals and organizations submitting comments in response to the US Federal Trade Commission call for comments in regard to the CANSPAM Act.  By most accounts, the interactive marketing industry and email community have demonstrated a commitment towards compliance and the overall user experience.  Based on OTA's own research businesses are u

Continue reading

2017 Online Trust Audit Released - What Did We Learn?

Today we released the 9th annual Online Trust Audit and Honor Roll. This year’s Audit is our most comprehensive ever, assessing more than 1000 consumer-facing sites for their adoption of best practices in consumer/brand protection, site security and responsible privacy practices.

Continue reading

Whitelisting Ads Vs. Scorched Earth: What's The Best Approach?

By some accounts, there are more than 200 variants of ad-blocking solutions, many of which utilize whitelisting that allows certain ads through when they adhere to specific rules. While an ad blocker that doesn’t block all ads may sound like an oxymoron, I argue that whitelisting may be critical for the long-term sustainability of ad-supported services.

Continue reading

Responsible, Coordinated & Ethical Vulnerability Disclosures

Updated April 10, 2017

OTA Joins coalition submitting comments to the National Institute of Standards and Technology's (NIST) to Improving Critical Infrastructure Cybersecurity highlighting the need for vulnerability reporting mechanisms.  Read more>

Continue reading

A New Chapter for OTA (and Me)

I would like to share exciting news.  Today OTA has announced it has joined forces with the Internet Society (ISOC) and will operate as a key ISOC initiative effective May 1, 2017.  ISOC is a global non-profit with the mission to promote the open development, evolution, and use of the Internet for the benefit of all people throug

Continue reading

Repeal of FCC Privacy Rules; A Sad Day for Consumers

The vote to repeal FCC broadband privacy controls is a sad day for consumers, businesses and the United States.  While the rest of the world is increasingly recognizing privacy as a basic human right, Congress has failed the U.S.

Continue reading

Pages

Subscribe to Blog