The Bad, the Ugly and the Cyber Immoral - Thank you, Uber
Technology, business and morality are not mutually exclusive, but rather fundamentally intertwined into the fabric of how our society operates and will have to increasingly operate in the future. As information about us is leveraged at the very core of modern economies, users have every right to expect a reasonable standard of care when it comes to keeping their personal information secure. And companies have a legal requirement to do just that. Security is far from perfect and we all acknowledge that breaches may still occur.
The Uber breach and subsequent coverup displayed not only a disregard for the law, but more fundamentally a disdain for their customers and basic morality responsibility. Uber not only failed to protect the information they were collecting about their customers -- thus causing them potential harm -- they chose to cover up the breach and subject those individuals to further risk by not meeting their notification responsibilities.
There are already a number of class action lawsuits against Uber, alleging the company was negligent in protecting consumer data. That sounds about right.
A digital society and economy require the establishment of a reasonable standard of care that ensures basic cyber hygiene practices are maintained by all organizations. While corporations may have resisted such a concept in the past, the inevitability of cyber attack and the possibility of breaches now has responsible boards of directors and corporate leaders looking for such clarity and guidance. All parties are finally saying “enough is enough.” Maybe that means some good change is around the corner.
Related Articles
YouTube Shorts: Stolen TikTok Videos Manipulated in Adult Dating, Dubious Products Scams for Views and Subscribers
January 12, 2022As Google's TikTok competitor YouTube Shorts gains viewers, hordes of scammers are quick to follow.
Cybersecurity Snapshot: Many Employees Overshare Work Info with AI Tools, Report Finds, as ‘Cybersecurity Awareness Month’ Kicks Off
October 4, 2024Check out the best practices cyber agencies are promoting during Cybersecurity Awareness Month, as a report warns that staffers are feeding confidential info to AI tools. Meanwhile, a study highlights how business decisions can derail OT security. Plus, get the latest on Active Directory security, CISO salary trends and ransomware attacks!
How to Unlock Advanced IoT Visibility for Cyber-Physical Systems
October 1, 2024As the number of IoT devices deployed globally continues to rise, cyber-physical systems and business operations are exposed to greater risk. Improving asset visibility, monitoring and risk management are critical steps to preventing breaches.
Cybersecurity Snapshot: NIST Program Probes AI Cyber and Privacy Risks, as U.S. Gov’t Tackles Automotive IoT Threat from Russia, China
September 27, 2024A new NIST program will revise security frameworks like NIST’s CSF as AI risks intensify. Plus, the U.S. may ban cars with Russian and Chinese IoT components. Meanwhile, the CSA adds AI insights to its zero trust guide. And get the latest on cybersecurity budgets, SBOMs and the Ghost cybercrime platform!
- Personal security