Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
WiIl Millennials Be The Death Of Data Security?
Oldest First  |  Newest First  |  Threaded View
Page 1 / 4   >   >>
Marilyn Cohodas
Marilyn Cohodas,
User Rank: Strategist
1/27/2015 | 2:53:00 PM
Ok Millennials, defend yourselves!
Are you really that tone-deaf when it comes to data security? 
ODA155
ODA155,
User Rank: Ninja
1/27/2015 | 5:00:59 PM
Re: Ok Millennials, defend yourselves!
Marilyn Cohodas... OK... I'm personally biased when it comes to this question, mostly because I'm not a Millennial and because I'm a security professional I tend to question anything regarding data security and privacy, especially mine.

So something happened last week, I heard about this app called "WAZE", so I went out to their website and checked out their "Privacy Policy" (...by the way, you have none), then I went to the Google Play to see what the permissions were to use this app... and OMG, let me put it this way, you're basically giving away your phone and whatever information that's on it, you may as well stand on a corner and pass out prepared documents with everything about yourself.This app will create an account for you based on your phone number and other information it gets from your device!

So I mention this after a department meeting where about 10 of the people ARE Millennials, and they all use it, but none of them took the time to read the Privacy agreement of look at all of the permissions needed. "It's a cool app" that's what they said, they all assume that their information is already known to whoever wants it. I know my little survey was not scientific by no means, but I wonder what would the numbers be if there were a real poll... makes me wonder.

But, to answer the original question "Will Millennials Be The Death Of Data Security?"... I hope they're smarter than that and understand the costs.
Kelly Jackson Higgins
Kelly Jackson Higgins,
User Rank: Strategist
1/27/2015 | 5:33:19 PM
Re: Ok Millennials, defend yourselves!
Why should they worry if every time their debit card or credit card is compromised, it gets replaced? Or if their Facebook account is hijacked, they just get FB to fix it. I don't think this is just a millenial problem--I think it's a consumer in general problem. Not much to sweat unless you're hit with a personal targeted attack, financial ruin, etc. "I just get a new debit card" is a famous quote I've heard from millenials and elders. 
dholmesf5
dholmesf5,
User Rank: Author
1/28/2015 | 10:47:04 AM
At least they'll have someone to blame
In the same way that all the Generation Xers blamed the Baby Boom for all the world's ills, the Millenials can blame the Generation Xers for not building more security into the systems.

Or perhaps we Genreation Xers can pass the blame back to the Boomers for not including security in the Internet in the first place!
Dr.T
Dr.T,
User Rank: Ninja
1/28/2015 | 10:48:37 AM
Security and privacy
 

Today, nobody really cares about security until they were hit, some would have concern around privacy. When it comes to millennials privacy would be less of a concern. That simply means we will see more hacking but less action to avoid them. We obviously need just opposite of it.
Dr.T
Dr.T,
User Rank: Ninja
1/28/2015 | 10:51:49 AM
Re: At least they'll have someone to blame
Good point. We know we are not blaming ourselves today but complaining bout it all the times. The same will happen for millennials, they will also expect less discussion around security and privacy, those are boring subjects. :--))
Dr.T
Dr.T,
User Rank: Ninja
1/28/2015 | 10:55:17 AM
Re: Ok Millennials, defend yourselves!
I agree completely. There is no real consequences when an attack happens other than we talk about it and speculate around that. Both attackers and person who does not remove vulnerability should be held responsible. 
Dr.T
Dr.T,
User Rank: Ninja
1/28/2015 | 11:05:48 AM
Re: Ok Millennials, defend yourselves!
I love Waze, I would give anything to e babel to use it :-)-). Waze was a successful startup and was bought by Google, they saw how much engagement this app could create. 
Marilyn Cohodas
Marilyn Cohodas,
User Rank: Strategist
1/28/2015 | 11:13:25 AM
Re: At least they'll have someone to blame
 they will also expect less discussion around security and privacy, those are boring subjects. :--))

@DrT -- If your comment presumes that Millennials will expect less discussion around security and privacy because the problems will be solved, more power to them! (But I doubt it)
ODA155
ODA155,
User Rank: Ninja
1/28/2015 | 11:31:33 AM
Re: Ok Millennials, defend yourselves!
@ Kelly Jackson Higgins, the points you make are dead on. The problem is, as technology (whatever the technology is) advances the trend or mantra is "lets make this easier, more efficient", well easy and efficient seems to always trump security and as someone else pointed out that has been passed down from one generation to the next. But, something else has been passed down, education and history, and I have to believe that these Millenials may very well be "smarter" in terms of education and documented history than any generation before them... I just hope they're smart enough to recognize the path we're on and make some adjustments... I think they are, but it's going to take some really hard lessons and hurting along the way.

@ DR T... as for you and WAZE... I'm glad that you love it, you said "...bought by Google, they saw how much engagement this app could create...." , Google only obtained WAZE because they saw how many more people they could add to their DB's, that's business.
Page 1 / 4   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Incorporating a Prevention Mindset into Threat Detection and Response
Threat detection and response systems, by definition, are reactive because they have to wait for damage to be done before finding the attack. With a prevention-mindset, security teams can proactively anticipate the attacker's next move, rather than reacting to specific threats or trying to detect the latest techniques in real-time. The report covers areas enterprises should focus on: What positive response looks like. Improving security hygiene. Combining preventive actions with red team efforts.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-1809
PUBLISHED: 2022-05-21
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0.
CVE-2022-31267
PUBLISHED: 2022-05-21
Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "#admin"' value.
CVE-2022-31268
PUBLISHED: 2022-05-21
A Path Traversal vulnerability in Gitblit 1.9.3 can lead to reading website files via /resources//../ (e.g., followed by a WEB-INF or META-INF pathname).
CVE-2022-31264
PUBLISHED: 2022-05-21
Solana solana_rbpf before 0.2.29 has an addition integer overflow via invalid ELF program headers. elf.rs has a panic via a malformed eBPF program.
CVE-2022-31259
PUBLISHED: 2022-05-21
The route lookup process in beego through 1.12.4 and 2.x through 2.0.2 allows attackers to bypass access control. When a /p1/p2/:name route is configured, attackers can access it by appending .xml in various places (e.g., p1.xml instead of p1).