Collaborate Disseminate
The European Union’s General Data Protection Regulation (GDPR) is almost upon us and while businesses are scrambling to ensure they are compliant, another discussion is happening within the information security space among analysts: What’s going… Continue reading WHOIS is Changing: Analyst Impact
On two occasions this past year I’ve published stories here warning about the prospect that new European privacy regulations could result in more spams and scams ending up in your inbox. This post explains in a question and answer format some of the reasoning that went into that prediction, and responds to many of the criticisms leveled against it. Continue reading Security Trade-Offs in the New EU Privacy Law
When the European Union General Data Protection Regulation (GDPR) comes into force on May 25, 2018, what will happen to currently-available domain registration data in WHOIS? The GDPR restricts how personal data about natural persons residing in the Eu… Continue reading GDPR Is Coming, So What Now for WHOIS Domain Registration Data?
The White House is hoping to convince European regulators to protect security researchers in their General Data Protection Regulation so they can continue to scrape data that’s relevant for data breach and botnet investigations, according to White House Cybersecurity Coordinator Rob Joyce. GDPR, which mandates companies with European customers to have numerous data protections in place, goes into effect May 25, 2018. The law will have a significant impact on the billion dollar cybersecurity industry, but some of its privacy provisions could have a negative effect on security researchers’ work. One of the more concerning developments revolves around access to data published by the Internet Corporation for Assigned Names and Numbers (ICANN). Whenever a domain name is registered, ICANN requires information like, a name, IP address and physical address to be submitted. While these details are sometimes forged, that information can provide clues about a cyberattack. ICANN stores all of […]
The post White House pushing for research carveout in GDPR appeared first on Cyberscoop.
Continue reading White House pushing for research carveout in GDPR
Brian Krebs, writing at his eponymous KrebsOnSecurity, reiterates the debacle of the new EU data privacy regulations, and the affect on legitmate utility in the information security space. Today’s MustRead.
Permalink
The post The WHOIS Enfeeblement ap… Continue reading The WHOIS Enfeeblement
Security researchers who rely on data included in Web site domain name records to combat spammers and scammers will likely lose access to that information for at least six months starting at the end of May 2018, under a new proposal that seeks to bring the system in line with new European privacy laws. The result, some experts warn, will likely mean more spams and scams landing in your inbox. Continue reading Who Is Afraid of More Spams and Scams?
Today I received an email claiming that my OneDrive account is going to be deleted as it has been unused for the past two years. This is probably true.
The email urges me to visit OneDrive to reactivate my account before a d… Continue reading Is this email from OneDrive a phishing attack?
A new European data privacy law and official internet policy are about to conflict with each other. Continue reading WHATIS Going to Happen With WHOIS?
I was reading through No Starch’s Metasploit book when I came across a segment which showed the results of running the ‘whois’ command on a hostname and then on it’s corresponding IP only to yield different results.
> who… Continue reading Difference between whois of a hostname and an IP [on hold]
Whois maintainer for Asia Pacific notifies customers of an error where hashed authentication details for were inadvertently available for download. Continue reading Whois Maintainer Accidentally Makes Password Hashes Available For Download