HomeBlog

Blog

Announcing the Online Trust Audit & Honor Roll Methodology for 2018

Later this year, we’ll publish the 10th annual Online Trust Audit & Honor Roll, which promotes responsible online privacy and data security practices and recognizes leaders in the public and private sectors who have embraced them. This morning, we released the methodology we’ll use for this year’s audit.

Continue reading

Nest Alert: Protection From Pwned* Passwords

A colleague just received an “Urgent Security Alert - Action Requested” email from Nest (see the image below). At first glance it looked like either a phishing attempt or one of the way-too-often breach notifications we all receive these days.

Continue reading

Space Invaders - Consumer-Grade IoT in the Enterprise

I used to love the old Space Invaders arcade game - waves of enemy attackers came in faster and faster while you tried to defend your base. With experience you could learn their tactics and get pretty adept at stopping them. For today’s enterprise IT staff, consumer-grade IoT devices must certainly feel like those space invaders of old.

Continue reading

The Cyber Incident Tsunami - Time to Get Ready

In advance of Data Privacy & Protection Day, we just released the Cyber Incident & Breach Trends Report (press release here), a look back at the cyber incident trends in 2017 and what can be done to address them.

Continue reading

Will Uber Drive Us to Federal Breach Legislation ?

The past six months we have witnessed an un-paralleled level of questionable business practices resulting from data breaches.  As trusted brands, Uber as well as Equifax and others, who have been entrusted with significant amounts of personal data have failed the American public.  The breach missteps and follies only continue.  Each time most within the security and privacy communities have rolled our eyes in disbelieve.

Continue reading

CAN-SPAM - Looking Ahead & Looking Global

This week OTA / the Internet Society joined nearly 90 individuals and organizations submitting comments in response to the US Federal Trade Commission call for comments in regard to the CANSPAM Act.  By most accounts, the interactive marketing industry and email community have demonstrated a commitment towards compliance and the overall user experience.  Based on OTA's own research businesses are unsubscribing t

Continue reading

2017 Online Trust Audit Released - What Did We Learn?

Today we released the 9th annual Online Trust Audit and Honor Roll. This year’s Audit is our most comprehensive ever, assessing more than 1000 consumer-facing sites for their adoption of best practices in consumer/brand protection, site security and responsible privacy practices.

Continue reading

Whitelisting Ads Vs. Scorched Earth: What's The Best Approach?

By some accounts, there are more than 200 variants of ad-blocking solutions, many of which utilize whitelisting that allows certain ads through when they adhere to specific rules. While an ad blocker that doesn’t block all ads may sound like an oxymoron, I argue that whitelisting may be critical for the long-term sustainability of ad-supported services.

Continue reading

Responsible, Coordinated & Ethical Vulnerability Disclosures

Updated April 10, 2017

OTA Joins coalition submitting comments to the National Institute of Standards and Technology's (NIST) to Improving Critical Infrastructure Cybersecurity highlighting the need for vulnerability reporting mechanisms.  Read more>

Continue reading

A New Chapter for OTA (and Me)

I would like to share exciting news.  Today OTA has announced it has joined forces with the Internet Society (ISOC) and will operate as a key ISOC initiative effective May 1, 2017.  ISOC is a global non-profit with the mission to promote the open development, evolution, and use of the Internet for the benefit of all people throughout the world

Continue reading

Pages

Subscribe to Blog