Tag: Data Security Action Plan
Sony Pictures hack shows weak security but no reason to violate privacy, start a war
Sony Pictures Entertainment was recently pwned by a group calling themselves the Guardians of Peace, ostensibly acting under the guidance of the North Korean government (though this is subject to debate). It was bad that the hackers took advantage of a culture of bad cybersecurity practice at Sony. Thanks to a bevy of embarrassing cybersecurity practices, worse cybersecurity discourse, and a growing culture of fear in Washington (and around the world), there is little doubt that this incident will be spun to support poorly-drafted laws that infringe upon user rights and do nothing to increase security. We shouldn’t, and we don’t, have to sacrifice privacy to achieve better network security. The U.S. Congress needs to reject any legislation that would attack our privacy, such as an invasive information sharing regime.