Every picture tells a story

On 27 January 1888, the National Geographic Society was founded. While the society is one of the largest non- profit scientific and educational institutions in the world, the public face of the organization is its iconic magazine, which was the first to use photographs to tell stories.

In the age of Instagram, it might be difficult to by grasp just how revolutionizing it was for a magazine to use photos as stories, especially a scientific journal like National Geographic. The magazine brought the world to people before the existence of commercial air travel, color photography, and radio. People then had seen the invention of electricity, cars, and telephones; we tend to exaggerate the technological advancement of the present day. Their technology must have seemed like witchcraft to them! What is Instagram but a glorified photo album that uses electricity and radio waves to work?

Now, we use images to tell our personal stories to the entirety of the world in an instant. One thing the people at the turn of the last century didn't have to worry about is malware. But you do. It could be hiding in the images you see on the internet. Through what is known as steganography, crooks have used JavaScript code hidden in pixels in images. Thus far, security researchers have discovered the technique used in banner advertising. Can other images be far behind?

Mere speculation, of course, but you can take steps to protect yourself now. Don't click suspicious links. Back up your data on a separate device that you keep unplugged and stored away. Use SumRando VPN when you are on public Wi-Fi to protect online access points. Never click a pop-up window that claims you have malware - always use a keyboard command or taskbar to close those types of windows.

By the way, Natgeo, as it's known these days, is the #1 brand on social media in the United States year after year. And why not? They've been storytelling through photography for 130 years. Happy birthday, @natgeo!

SumTips: 9 Cyber Security Awareness Month Events Not to Miss

It’s National Cyber Security Awareness Month, a United States-based event that increasingly attracts the attention of digital citizens worldwide. No matter where in the world you are this October, be sure to check out the following online NCSAM events:

October 6: #ChatSTC Twitter Chat: STOP. THINK. CONNECT.™ - The Basics of Online Safety
This #ChatSTC Twitter chat will discuss simple ways you can protect yourself, your family and your community online and explore how to engage young people in responsible technology use and pursue careers devoted to protecting the internet. Join via #ChatSTC at 3:00PM EDT.

October 11: EDUCAUSE Live! – Top Attack Techniques, Top Human Risks & How to Create a Cyberaware Culture
What are the scariest new attack techniques in 2016? What are the top human risks organizations are currently facing? Join the head of the Internet Storm Center and the director of SANS Securing The Human to discover how you can prepare for threats posed by technologies and people, and leverage that knowledge to create a more "cyberaware" culture on campus. Join via www.educause.edu at 1:00PM EDT.

October 13: Solving the “password1” Problem: Why Businesses Need 2FA
IDC analyst Robert Westervelt and ESET Senior Technical Strategist Ben Reed will be giving a free webinar on two-factor authentication (2FA). Topics to be discussed include the different types of multifactor authentication, why the right 2FA solution helps prevent breaches and how to implement 2FA quickly and easily. Join via www.brighttalk.com at 1:00PM EDT.

October 13: #ChatSTC Twitter Chat: Creating a Culture of Cybersecurity from the Break Room to the Boardroom
This #ChatSTC Twitter chat will discuss how leaders and employees in business, healthcare, academic, government and civil society can keep their organizations safer and more secure during National Cyber Security Awareness Month and year-round. Join via #ChatSTC at 3:00PM EDT.

October 20: Get Smart About Ransomware: Protect Yourself and Your Organization
Do you think you're doing enough to protect yourself against ransomware threats? It's time to start learning how to better protect yourself (and your organization) online. Support NCSAM by attending Security Innovation's free live webinar, which will discuss what ransomware is and how it affects you, real-world examples of ransomware attacks and what we've learned from them, what to do if you or your organization becomes a ransomware victim and how you can avoid ransomware threats to protect yourself and your organization. Join via web.securityinnovation.com at 1:00PM EDT.

October 20: #ChatSTC Twitter Chat: Recognizing and Combating Cybercrime
This #ChatSTC Twitter chat will discuss different kinds of cybercrime, how to better protect yourself against online threats and how you can play a role in the greater effort against cybercrime. Join via #ChatSTC at 3:00PM EDT. 

October 27: #ChatSTC Twitter Chat: Navigating Your Continuously Connected Life
This #ChatSTC Twitter chat will discuss how you can take security precautions and protect your personal information as the world of cutting-edge technologies continues to grow. Join via #ChatSTC at 3:00PM EDT. 

October 28: Digital Citizenship Summit
The Digital Citizenship Summit is a major global event for digital citizenship, featuring well-known and diverse, emerging voices discussing the safe, savvy and ethical use of social media and technology. Kicking off U.S. Media Literacy Week, the flagship Digital Citizenship Summit this year will focus on citizenship, literacy and advocacy. Join via www.digcitsummit.com at 9:00AM PDT.

November 3: #ChatSTC Twitter Chat: Building Cyber Resilience in Critical Infrastructure
As National Cyber Security Awareness Month (NCSAM) comes to a close, National Critical Infrastructure Security and Resilience (CISR) Month begins in November. In this #ChatSTC, we’ll discuss the connection between the cyber and physical worlds, the importance of protecting and securing our Nation’s critical infrastructure, and share simple cyber tips for individuals looking to do their part to protect our critical infrastructure from cyber threats. Join via #ChatSTC at 3:00PM EDT. 

Know your online resources, surf secure and stay Rando!

---

Image credit of Shutterstock.com. 

Want more SumTips? Read on!

• SumTips: 5 Human Rights Violations Not to Be Ignored
• SumTips: 5 Countries on Censorship Watch, According to Ban Ki-moon
• SumTips: 4 Reasons to Beware of the Facebook Algorithm

Want SumTips sent to your inbox? Sign up for our weekly newsletter ("Security Tips and News" at bottom of page). 

SumRando Cybersecurity is a Mauritius-based VPN, Web Proxy and Secure Messenger provider. Surf secure and stay Rando!

SumTips: 4 Reasons to Beware of the Facebook Algorithm

[Source: Aftenposten]

Facebook has gotten its share of the spotlight this September—and the news has been far from in the social media platform’s favor. More than once the famed Facebook algorithm has produced results in need of human correction:

1.    The Terror of War: Norwegian newspaper Aftenposten posted Nick Ut’s Pulitzer Prize-winning photograph of children fleeing a Vietnam War napalm attack, only to find the widely-received photograph removed on grounds of child nudity. The act elicited the criticism of Erna Solberg, Norway’s Prime Minister; the image has since been reposted and Facebook Chief Operating Officer Sheryl Sandberg has apologized.

2.    “September 11: The footage that ‘proves bombs were planted in Twin Towers’”: A hoax article from The Daily Star topped Facebook’s trending stories as the 9/11 anniversary approached. Facebook’s algorithm had defaulted to a story that blamed bombs—not airplanes—for the falling of New York’s Twin Towers in the second such mishap since the platform did away with human curation of news in late August.

3.    Black Lives Matters activist Shaun King: When activist and New York Daily News writer Shaun King posted a racist message that had been directed at him, King was the one to be temporarily banned from Facebook. King’s response:

“I love Facebook. I was an early user and have been on here for over a decade, but I regularly have friends complain that when they post about the racism and bigotry they face, THEY end up getting suspended instead of the person who harassed them.  

It’s almost like a cruel joke. 

Well, it just happened to me. Earlier this morning I received a horrible email. I posted the email WITHOUT the email address of the person who sent it, then a few hours later was told that I was banned from posting for at least 24 hours because of it. 

This is completely ridiculous. Facebook needs to be much more sensible and intelligent about how it does these things. I have complained to my friends who work there and will see what happens.” 

King’s account was reinstated within hours, which he contributes in part to the connections he has with the company.

4.    Northern Ireland revenge porn: For every image Facebook removes erroneously, there is one that it leaves up unjustly. A 14-year-old victim of revenge porn endured a naked photo of herself posted to a “shame page” from November 2014 until January 2016. Facebook and the man suspected of posting the photo are now being sued.

The next time you login to Facebook, remember that what you see may haunt you, be untrue or never be seen again. Surf secure and stay Rando!

---

Want more SumTips? Read on!

• SumTips: 8 Countries Where Journalism Threatens Personal Safety
• SumTips: 6 Ways Free Speech Shaped the 2016 Brazil Olympics
• SumTips: 3 Cybersecurity Bills You Should Protest Now (and How)

Want SumTips sent to your inbox? Sign up for our weekly newsletter ("Security Tips and News" at bottom of page). 

SumRando Cybersecurity is a Mauritius-based VPN, Web Proxy and Secure Messenger provider. Surf secure and stay Rando!

Report Lists 91 Countries Requesting Facebook Account Data and Content Restrictions

Have you seen your Facebook page lately? The photos from your best friend’s wedding, where you were last night and even your phone number?

Facebook routinely grants government requests to access private pages and restricts content based on local laws. The social networking site recently released a breakdown of all activity worldwide from July to December 2015. Highlights include:

[Source: Keri J]

TOP 10 COUNTRIES FOR REQUESTS FOR USER DATA

United States (19,235)

India (5,561)

United Kingdom (4,190)

Germany (3,140)

France (2,711)

Brazil (1,655)

Italy (1,525)

Argentina (892)

Australia (802)

Poland (611)

TOP 10 COUNTRIES FOR USER ACCOUNTS REFERENCED

United States (30,041)

India (7,018)

United Kingdom (5,478)

Germany (3,628)

France (2,894)

Brazil (2,673)

Italy (2,598)

Argentina (1,047)

Spain (947)

Australia (846)

TOP 10 COUNTRIES FOR PERCENTAGE OF REQUESTS WHERE SOME DATA WAS PRODUCED

Nigeria (100%)
Croatia (90.91%)
Sweden (87.31%)
Turkey (84.20%)
United Kingdom (82.15%)
Serbia (81.48%)
United States (81.41%)
Albania (80.00%)
United Arab Emirates (80.00%)
Canada (79.63%)

TOP 10 COUNTRIES FOR CONTENT RESTRICTIONS

France (37,695)
India (14,971)
Turkey (2,078)
Germany (366)
Israel (236)
Austria (231)
United Kingdom (97)
Russia (56)
Brazil (34)
Kazakhstan (25)
 

The complete listing of all 91 countries with user data requests and content restrictions in the second half of 2015 can be found at https://govtrequests.facebook.com/, along with all reports dating back to 2013.

According to Facebook, government requests typically are prompted by criminal investigations and ask for basic subscriber information including name, registration date and length of service; account content; and/or IP address logs. Content restrictions occur when governments ask Facebook to remove content that would not be allowed under local law.

So, the next time you’re on Facebook (or even the Facebook-owned, metadata collecting WhatsApp), make sure that everything there is information you would be willing to share with your government. After all, sometimes even the most innocent of “criminals” can find themselves under government surveillance.

---

Want the latest freedom of speech and cybersecurity news from around the world? Read on!

• World Press Freedom Day 2016 Highlights What Journalism Needs
• It's a Vulnerable World: Panama Papers Edition
• This Tiradentes Day, Take a Stance Against Censorship in Brazil 

SumRando Cybersecurity is a Mauritius-based VPN, Web Proxy and Secure Messenger provider. Surf secure and stay Rando!

For Many, Nowruz Brings a ‘New Day’ But Not Peace

Persian New Year, or Nowruz, meaning “new day”, has been celebrated for thousands of years by individuals in much of Caucasus, Central Asia and the Middle East. Historically, the holiday’s ability to transcend the boundaries of countries and religions has come as both a blessing and a curse, as it has the power to either unite or divide groups of people; this year’s Nowruz has already proven to be no exception.

In New York yesterday, UN Secretary-General Ban Ki-moon focused on the “inspiration” that March 21st, the International Day of Nowruz, is often acknowledged for: “Nowruz is an ancient celebration that predates today’s borders and divisions. It is a reminder that national boundaries, religious faiths and other superficial differences are not as important as our common humanity. In that way, Nowruz breaks down barriers and builds bonds of trust.”

The bonds of trust he described were found in some celebrations this year, but certainly not all:

In Iran, President Hassan Rouhani forewent tradition and replaced the goldfish typically found on the Nowruz Haft Seen table display with an orange, a gesture indicating his support of those opposed to the practice of keeping and then releasing the fish, usually to their death. His action has been received online with both praise and criticism: animal rights activists were pleased, but others argued it was a thinly veiled attempt to gain popular support.

In Afghanistan, not only has the fear of suicide bombing and the Taliban undermined the picnicking that typically accompanies Nowruz, some imams are campaigning against the holiday altogether on the grounds that it predates Islam. According to the BBC’s Auliya Atrafi, social media has the power to worsen the situation, “Many believe that this puritanical thinking is the product of the Salafi school of thought, spreading throughout the world with the help of imams, social media and backed by Saudi oil money. So whether a young man lives in Herat, London or Helmand, an internet search will produce the same conservative anti-Nowruz messages.”

In Turkey, Nowruz was welcomed in some places, but not others. In Diyarbakir, thousands came together to celebrate the holiday, but the mostly Kurdish crowd also used the opportunity to protest the arrest of Abdullah Ocalan, leader of the Kurdistan Workers’ Party. In Ankara and Istanbul, celebrations were prohibited altogether. Turkey as a whole is a far cry from the “common humanity” Nowruz promotes: in the last week alone, a suicide bombing killed 37 people in Ankara, a car bomb was found in Diyarbakir, and a suicide attack in Istanbul claimed the lives of 4 individuals.

For 3000 years, Nowruz has asked its followers to mark the first day of Spring in solidarity and peace. SumRando applauds those individuals who have found ways—public or private—to carry out this tradition, despite the difficulties that stand in their way.

---

Want the latest freedom of speech and cybersecurity news from around the world? Read on!

• St. Patrick's Day: Mythical Holiday vs. Modern Reality
• Internet Security Depends on Human Behavior, Says RSA's Amit Yoran
• This International Women's Day, Celebrate the Words of Women

SumRando Cybersecurity is a Mauritius-based VPN, Web Proxy and Secure Messenger provider. Surf secure and stay Rando!

Facebook Offers A French Flag; Concerned Users Provide Choice

Allflags.world gives SumRando a new look.

If you’re one of the millions of people who check Facebook daily, you may have noticed a hostility in your news feed that wasn’t there a week ago. Users are upset that Facebook offered a flag in solidarity with the Paris bombings, but not one in support of Kenya; that Safety Check was turned on for Paris, but not Beirut; that they cannot express sympathy for Paris without being criticized for not sympathizing with other bombed cities; that the rights of refugees have been called into question…

Be it an act of recognition, apology, or pacification, Facebook activated Safety Check for the second time in less than a week, this time for Tuesday’s bombing in Yola, Nigeria. Historically, Safety Check had been reserved for times of natural disaster (think: April’s earthquake in Nepal), but Paris was the precedent that shifted the tool into the realm of human disaster.

Regardless, given that Nigeria’s Safety Check was not accompanied with a flag overlay, it’s clear that Nigeria has been given the ‘Free Basics’ treatment, if also likely that Facebook had little interest in perpetuating the very flag war it had begun.

A disaster is one of the few reasons we can imagine a user would want to broadcast their location and status to others; for that, we applaud Safety Check and its growing ubiquity.

Regarding flag overlays, however, we remind you that your Facebook page is just that: your page. Facebook’s suggestions are always yours to leave or take; your profile picture is yours to modify as you see fit. 

Facebook has been littered with French flags in the past week, but there are also countless examples of users taking matters into their own hands. Of note:

• Allflags.world was created to add an overlay of flags from all countries attacked by ISIS to profile pictures. The website includes 27 countries and welcomes submissions of any countries overlooked.

• Facebook user Hubert Southall posted “All cries need to be heard” and has offered to create any overlay not provided by Facebook for any user in need.

No platform is perfect, but what Facebook has always done well is enable users to express themselves to friends and the public as they (more or less) wish. The hostility of the past week demonstrates that Facebook users everywhere want equal treatment and also that messages are perhaps best expressed without Facebook’s prompting.

---

Want to know more about what's happening on Facebook? Read on!

• Facebook Updates Search (Check Your Privacy Settings NOW)
• Take Action Against Facebook's Targeted Ads
• Facebook Looks to Grow User Base and Ad Revenue From South African Office

SumRando Cybersecurity is a South Africa-based VPN, Web Proxy and Secure Messenger provider.

Facebook Updates Search (Check Your Privacy Settings NOW)

Facebook U.S. became even less private last week with the announcement that its search has gone public. This, however, is one change users can act against.

When Facebook launched in 2004, search was a tool for locating friends. Last year, its functionality expanded to include the individual posts of friends. Now, any post set to ‘public’ can be found via Facebook search.

On October 22, Facebook not only announced the change, but also created a new section of its Newsroom page: Search FYI, a sure sign of additional change to come. Based on Facebook’s current trajectory, it seems safe to assume that Search FYI will become the home of future privacy-reducing announcements.  

From Facebook’s perspective, the shift provides the opportunity to “find out what the world is saying about topics that matter” and, with a current collection of 2 trillion individual posts, they certainly have the capacity to make that a reality. Regardless, it’s not hard to see that Facebook also hopes public search will give users one less reason to turn to Google or Twitter.

Fortunately, individual users remain in control of their posts’ privacy settings, which means now is a great time to update your Facebook account:

Our suggestions:

• Protect your future posts: Click on the ‘Privacy Shortcuts’ padlock icon in the top right corner of your Facebook page. From the dropdown menu, click on ‘Who can see my stuff?’ and then ‘Who can see my future posts?’ Customize this as you like; we support ‘Only Me’, ‘Friends’ and anything in between.

• Protect your past posts: Click on the ‘Privacy Shortcuts’ padlock icon in the top right corner of your Facebook page. At the bottom of the dropdown menu, click on ‘See More Settings’ and then ‘Limit Past Posts’ under ‘Who can see my stuff?’. By selecting ‘Limit Old Posts’, any post you’ve already shared will now be shared with your friends only.

Our words of caution:

• You always have the option to change the privacy settings of individual posts. If you choose to use this feature, keep in mind that Facebook defaults your account settings to your most recent setting. So, if you decide it’s safe to share your World Series enthusiasm publicly, be sure to readjust your privacy settings immediately after or all your future posts will go global.

• Facebook was created as a platform to let information go viral, not protect it. Your privacy settings will not stop friends from including you in their public posts and, in spite of your best efforts to limit your audience, your posts will reach friends of friends every time you tag someone.

Facebook’s latest change is a clear attempt to compete with the services offered by Google and Twitter. Its success, however, rests on users’ willingness to make their posts public. In the interest of not converting the internet into a one-platform forum, let’s keep Facebook amongst friends.

SumRando Cybersecurity is a South Africa-based VPN, Web Proxy and Secure Messenger provider. Surf secure and stay Rando!