Daniel W Woods
@ieltop.bsky.social
Economics of security and privacy. Lecturer at the University of Edinburgh + Researcher at Coalition.
Definitely a blind men and an elephant problem
December 3, 2024 at 9:20 AM
Definitely a blind men and an elephant problem
Initial access vectors according to various DFIR firms.
Random thoughts:
- None of the reports find the majority are caused by vulns/exploits
- How do some of these firms *not* have an "unknown" category
- Many categories are overlapping
- We really need a standardized schema @zakird.com
Random thoughts:
- None of the reports find the majority are caused by vulns/exploits
- How do some of these firms *not* have an "unknown" category
- Many categories are overlapping
- We really need a standardized schema @zakird.com
December 3, 2024 at 8:56 AM
Initial access vectors according to various DFIR firms.
Random thoughts:
- None of the reports find the majority are caused by vulns/exploits
- How do some of these firms *not* have an "unknown" category
- Many categories are overlapping
- We really need a standardized schema @zakird.com
Random thoughts:
- None of the reports find the majority are caused by vulns/exploits
- How do some of these firms *not* have an "unknown" category
- Many categories are overlapping
- We really need a standardized schema @zakird.com
Notably, insurers see non-trivial costs associated with cyberbullying.
The typical claim may involve legal costs, counselling and lost wages to respond to the incident.
But in extreme cases, cyber insurance will cover costs associated with moving home or school.
The typical claim may involve legal costs, counselling and lost wages to respond to the incident.
But in extreme cases, cyber insurance will cover costs associated with moving home or school.
November 25, 2024 at 10:02 AM
Notably, insurers see non-trivial costs associated with cyberbullying.
The typical claim may involve legal costs, counselling and lost wages to respond to the incident.
But in extreme cases, cyber insurance will cover costs associated with moving home or school.
The typical claim may involve legal costs, counselling and lost wages to respond to the incident.
But in extreme cases, cyber insurance will cover costs associated with moving home or school.
We also asked participants to estimate how much compensation they would need to cover each cyber incident.
Financial frauds were estimated to be the most expensive, with no statistically significant difference between victims and nn-victims.
The median cost of cyberbullying was estimated to be $0.
Financial frauds were estimated to be the most expensive, with no statistically significant difference between victims and nn-victims.
The median cost of cyberbullying was estimated to be $0.
November 25, 2024 at 9:59 AM
We also asked participants to estimate how much compensation they would need to cover each cyber incident.
Financial frauds were estimated to be the most expensive, with no statistically significant difference between victims and nn-victims.
The median cost of cyberbullying was estimated to be $0.
Financial frauds were estimated to be the most expensive, with no statistically significant difference between victims and nn-victims.
The median cost of cyberbullying was estimated to be $0.
Cyber attack and online fraud are possibly too generic.
There was multiple examples where participants thought they were "very easy" to define, only to find the real definitions from a policy are "not at all similar" when presented with one.
These discrepancies can lead to nasty surprises.
There was multiple examples where participants thought they were "very easy" to define, only to find the real definitions from a policy are "not at all similar" when presented with one.
These discrepancies can lead to nasty surprises.
November 25, 2024 at 9:57 AM
Cyber attack and online fraud are possibly too generic.
There was multiple examples where participants thought they were "very easy" to define, only to find the real definitions from a policy are "not at all similar" when presented with one.
These discrepancies can lead to nasty surprises.
There was multiple examples where participants thought they were "very easy" to define, only to find the real definitions from a policy are "not at all similar" when presented with one.
These discrepancies can lead to nasty surprises.
The second stage designed a survey to explore coverage, risk and product uncertainty.
Some of these coverages are well understood by both high and low security awareness participants, such as cyberbullying and ID theft.
Cyber extortion was perceived to be the hardest to define.
Some of these coverages are well understood by both high and low security awareness participants, such as cyberbullying and ID theft.
Cyber extortion was perceived to be the hardest to define.
November 25, 2024 at 9:55 AM
The second stage designed a survey to explore coverage, risk and product uncertainty.
Some of these coverages are well understood by both high and low security awareness participants, such as cyberbullying and ID theft.
Cyber extortion was perceived to be the hardest to define.
Some of these coverages are well understood by both high and low security awareness participants, such as cyberbullying and ID theft.
Cyber extortion was perceived to be the hardest to define.
What does personal cyber insurance cover?
Our new article found that personal cyber insurance covers a range of online harms, including social media abuse.
"Why would money protect me from cyber bullying?": A Mixed-Methods Study of Personal Cyber Insurance
www.computer.org/csdl/proceed...
Our new article found that personal cyber insurance covers a range of online harms, including social media abuse.
"Why would money protect me from cyber bullying?": A Mixed-Methods Study of Personal Cyber Insurance
www.computer.org/csdl/proceed...
November 25, 2024 at 9:53 AM
What does personal cyber insurance cover?
Our new article found that personal cyber insurance covers a range of online harms, including social media abuse.
"Why would money protect me from cyber bullying?": A Mixed-Methods Study of Personal Cyber Insurance
www.computer.org/csdl/proceed...
Our new article found that personal cyber insurance covers a range of online harms, including social media abuse.
"Why would money protect me from cyber bullying?": A Mixed-Methods Study of Personal Cyber Insurance
www.computer.org/csdl/proceed...
My favourite finding is that these teams function like labour unions in negotiating with large tech companies to receive fair bug bounty payouts. This fighting for the little guy was very Ross.
We scraped a bunch of descriptive stats on team size, finding that the biggest teams have 500+ members.
We scraped a bunch of descriptive stats on team size, finding that the biggest teams have 500+ members.
November 22, 2024 at 3:13 PM
My favourite finding is that these teams function like labour unions in negotiating with large tech companies to receive fair bug bounty payouts. This fighting for the little guy was very Ross.
We scraped a bunch of descriptive stats on team size, finding that the biggest teams have 500+ members.
We scraped a bunch of descriptive stats on team size, finding that the biggest teams have 500+ members.