HomeBlog

Blog

Responsible, Coordinated & Ethical Vulnerability Disclosures

Updated April 10, 2017

OTA Joins coalition submitting comments to the National Institute of Standards and Technology's (NIST) to Improving Critical Infrastructure Cybersecurity highlighting the need for vulnerability reporting mechanisms.  Read more>

Continue reading

A New Chapter for OTA

I would like to share exciting news.  Today OTA has announced it has joined forces with the Internet Society (ISOC) and will operate as a key ISOC initiative effective May 1, 2017.  ISOC is a global non-profit with the mission to promote the open development, evolution, and use of the Internet for the benefit of all people throughout the world

Continue reading

Repeal of FCC Privacy Rules; A Sad Day for Consumers

The vote to repeal FCC broadband privacy controls is a sad day for consumers, businesses and the United States.  While the rest of the world is increasingly recognizing privacy as a basic human right, Congress has failed the U.S.

Continue reading

Why the Insurance Industry Will Never Be the Same After the Mirai DDoS Attack

Guest Blog from Pascal Millaire, Symantec

 We are entering a new era for global insurers, where business interruption claims are no longer confined to a limited geography, but can simultaneously impact seemingly disconnected insureds globally. This creates new forms of systemic risks that could threaten the solvency of major insurers if they do not understand the silent and affirmative cyber risks inherent in their portfolios.  

Continue reading

Don’t Be a Tool – Verifying Subscriptions and Honoring Unsubscribes

This summer the email marketing industry suffered a setback due to “list bomb” attacks in which thousands of targeted users were unknowingly subscribed to tens of thousands of mailings. In these attacks, ESP infrastructure and highly-reputed brands were used as a means to effectively create a “denial of service” against user inboxes, and email originating from many ESPs and brands was blocked by Spamhaus until the situation was better understood. Could this have been prevented?

Continue reading

So you’ve had a data breach, now what?

Companies, organizations and agencies that hold and transmit people’s personal information should keep it reasonably secure from unauthorized access and use. But what if there is a data breach that exposes the information? How should the breached entity help those affected? Should it offer them identity theft services?

Continue reading

Drones - Privacy, Transparency and Accountably

Today a multi-stakeholder group convened by the U.S.

Continue reading

Pages

Subscribe to Blog