|
Post by bullfrog on Jul 13, 2024 16:44:02 GMT -5
They’re the ones attacking us first. A government-sponsored cyber attack is a hostile act of war the same as any others. “Good security” means nothing when it comes to enemy professional hackers. They have tools and techniques that don’t depend on civilians giving them information. How do you post that with a straight face? Are you seriously that ignorant of the activities of the cia and nsa? If you are cool with a stealth missile taking out an NSA station in DC, then i guess we can do the same. There’s no equality or equivalence in this. We’re the good guys. We’re free to do what we need to in order to protect ourselves. They are not free to do what they want to harm us. Its as simple as that. If you don’t believe we’re the good guys in the world, you know where to go…
|
|
|
Post by biminitwisted on Jul 13, 2024 16:49:37 GMT -5
To address the specific cybersecurity aspects, the Federal Trade Commission (FTC) employs its authority through a combination of enforcement actions, guidelines, and rulemaking within the framework set by the FTC Act and other specific legislations. Here are the key components:
Section 5 of the FTC Act: This is the cornerstone of the FTC's authority over cybersecurity. The Act doesn't explicitly mention cybersecurity, but the FTC uses its provisions against "unfair or deceptive acts or practices" to cover cybersecurity lapses that can harm consumers. This includes actions where businesses fail to implement reasonable cybersecurity practices, potentially leading to data breaches or other consumer harms.
Children's Online Privacy Protection Act (COPPA): This act requires websites and online services aimed at children to implement specific security measures to protect children's personal information. The FTC enforces these rules, which include cybersecurity practices.
Gramm-Leach-Bliley Act (GLBA): Under the GLBA, the FTC has established the Safeguards Rule, which requires financial institutions to have a comprehensive security plan to protect the confidentiality and integrity of consumer personal information. The Rule mandates regular testing of key controls, systems, and procedures of the information security program.
Health Breach Notification Rule: For vendors of personal health records and related entities that are not covered by the Health Insurance Portability and Accountability Act (HIPAA), the FTC enforces this rule, which requires notification to consumers in the event of a breach of unsecured identifiable health information.
Identity Theft Red Flags Rule: This rule, under the Fair and Accurate Credit Transactions Act (FACTA), requires financial institutions and creditors to implement programs to detect, prevent, and mitigate instances of identity theft, including cybersecurity measures that protect against data breaches leading to identity theft.
Enforcement Actions: The FTC has brought numerous enforcement actions against companies for failing to adequately protect consumer data, asserting that inadequate cybersecurity practices constitute unfair or deceptive practices under the FTC Act. These actions often result in settlements that include requirements to establish comprehensive information security programs and to undergo regular independent security assessments.
Guidance and Best Practices: The FTC regularly publishes guidance documents and best practices for businesses on how to protect consumer data and comply with federal laws, emphasizing the importance of cybersecurity measures in protecting personal information.
These tools and actions collectively empower the FTC to regulate cybersecurity practices extensively, ensuring businesses take necessary steps to protect consumer information from cyber threats.
|
|
|
Post by luapnor on Jul 14, 2024 6:56:01 GMT -5
How do you post that with a straight face? Are you seriously that ignorant of the activities of the cia and nsa? If you are cool with a stealth missile taking out an NSA station in DC, then i guess we can do the same. There’s no equality or equivalence in this. We’re the good guys. We’re free to do what we need to in order to protect ourselves. They are not free to do what they want to harm us. Its as simple as that. If you don’t believe we’re the good guys in the world, you know where to go… You confuse the people and our constitution with the deep state and our corrupted government. They are not the good guys and you shouldnt be so naive.
|
|
|
Post by ferris1248 on Jul 14, 2024 7:48:24 GMT -5
They’re the ones attacking us first. A government-sponsored cyber attack is a hostile act of war the same as any others. “Good security” means nothing when it comes to enemy professional hackers. They have tools and techniques that don’t depend on civilians giving them information. How do you post that with a straight face? Are you seriously that ignorant of the activities of the cia and nsa? If you are cool with a stealth missile taking out an NSA station in DC, then i guess we can do the same. What a stupid response. Of course we do it. That doesn't mean we shouldn't protect ourselves better. I'm sure your adopted country plus China, Iran and N. Korea all actively protect their electronic information.
|
|
|
Post by johngalt on Jul 14, 2024 8:35:53 GMT -5
I think the old “build a better mousetrap” theory comes to play. I’m no computer expert by far but it seems like it’s always a game of trying to out smart the competition or bad guys. At least when we used paper records and file cabinets it was a lot harder to steal a million files. 😎
|
|
|
Post by ferris1248 on Jul 14, 2024 8:41:38 GMT -5
I think the old “build a better mousetrap” theory comes to play. I’m no computer expert by far but it seems like it’s always a game of trying to out smart the competition or bad guys. At least when we used paper records and file cabinets it was a lot harder to steal a million files. 😎 That's true about paper stuff. But it seems like if we spent a few billion more on cyber hacking prevention instead of placating a few dozen despots we'd be better off.
|
|
|
Post by meateater on Jul 15, 2024 15:18:00 GMT -5
maybe if we spend a few billion more our 8th graders will be able to read at a 4th grade level.
|
|
|
Post by Tarponator on Jul 15, 2024 15:22:25 GMT -5
Sure, let's attack a sovereign nation and potentially start a war because Florida has poor data security, and there is no other way.
Are you serious, or is it just a bad Saturday morning?
They’re the ones attacking us first. A government-sponsored cyber attack is a hostile act of war the same as any others. “Good security” means nothing when it comes to enemy professional hackers. They have tools and techniques that don’t depend on civilians giving them information. You couldn't be more wrong: Good security means everything when it comes to foiling hackers, government sponsored or otherwise, and the fact that they have tools and techniques that don't depend on civilians makes it even more true not less.
What proof do you have that it was a government-sponsored cyber attack or is that supposition you're suggesting we attack a sovereign nation over?
|
|
|
Post by OhMy on Jul 15, 2024 15:29:05 GMT -5
I have headed private regulated cybersecurity teams.
Cybersecurity is very expensive (public or private) and a lot of companies do not want to invest in proper mitigation tools due to their expense.
Whenever there is a cybersecurity event, corps typically blame the IT / Network / Security Team(s) and not lack of funding.
HIPAA compliance costs a TON of money to implement and operate. It is a true job creating regulation.
|
|
|
Post by garycoleco on Jul 15, 2024 15:39:13 GMT -5
Another boogieman no one cares unless their money gets cut off
|
|
|
Post by swampdog on Jul 15, 2024 16:18:36 GMT -5
Give the hackers time and they’ll be taking down power grids and communication infrastructure. It could do major damage during severe weather events and critical need medical facilities. I know a lot of hospitals have back up power or multiple power feeds into them. Back up generators would be short duration fixes. Multiple high delivery power line feeds would probably not suffice. A cyber war would be pretty serious if we’re not the leader in cybersecurity.
|
|
|
Post by biminitwisted on Jul 15, 2024 16:21:25 GMT -5
Give the hackers time and they’ll be taking down power grids and communication infrastructure. It could do major damage during severe weather events and critical need medical facilities. I know a lot of hospitals have back up power or multiple power feeds into them. Back up generators would be short duration fixes. Multiple high delivery power line feeds would probably not suffice. A cyber war would be pretty serious if we’re not the leader in cybersecurity. Yet so many RWNJ want to castrate the FTC and their rule making authority that allows real time response to these threats. Make it make sense. How the hell is congress supposed to keep up with technology that changes daily?
|
|
|
Post by Tarponator on Jul 15, 2024 16:51:03 GMT -5
How do you post that with a straight face? Are you seriously that ignorant of the activities of the cia and nsa? If you are cool with a stealth missile taking out an NSA station in DC, then i guess we can do the same. There’s no equality or equivalence in this. We’re the good guys. We’re free to do what we need to in order to protect ourselves. They are not free to do what they want to harm us. Its as simple as that. If you don’t believe we’re the good guys in the world, you know where to go… Who is equating it?
You said "they're the ones attacking us first".
The facts are that we've been doing it for just as long or longer than anyone else.
Even Mendoza man is right occasionally.
|
|
|
Post by Captj on Jul 16, 2024 15:05:05 GMT -5
Our free state leader might want to spend some more time studying infrastructure than fighting with Disney and dismantling public education. You know things that actually impact our lives. Not to mention the insurance crisis in our great state.
|
|
|
Post by luapnor on Jul 16, 2024 16:25:09 GMT -5
I have headed private regulated cybersecurity teams. Cybersecurity is very expensive (public or private) and a lot of companies do not want to invest in proper mitigation tools due to their expense. Whenever there is a cybersecurity event, corps typically blame the IT / Network / Security Team(s) and not lack of funding. HIPAA compliance costs a TON of money to implement and operate. It is a true job creating regulation. Regulatory compliance isnt a job creating machine, it is a job killing machine.
|
|