SoylentNews is people
SoylentNews
Submitted via IRC for soylent_fuschia
Vendor wants Congress to mandate something that only they can provide. Interesting business model.
Brave Urges Congress to Require Ad Blocking Browsers for Govt Employees
In a letter to the U.S. Congress, Brave urged Homeland Security Committee members to make it mandatory for all federal employees to use a browser that blocks advertising by default.
Brave states that without a browser that blocks ads by default, federal employees would be vulnerable to malvertising, which could allow foreign and domestic threat actors to gain access to government devices or a foothold in sensitive networks.
"I represent Brave, a rapidly growing Internet browser based in San Francisco. Brave’s CEO, Brendan Eich, is the inventor of JavaScript, and co-founded Mozilla/Firefox. Brave is headquartered in San Francisco. I write to urge action to protect federal agency and employee computers and devices from cyberattacks by foreign state actors and criminals through “malvertising”."
Brave's letter also includes letters from U.S. Senator Ron Wyden, who since 2017 has been urging the federal government to take a stronger stance regarding the blocking of malicious advertisements.
One year ago, on November 16, 2017, I wrote to then-White House Cybersecurity Coordinator, Rob Joyce, regarding the threat posed by foreign government hackers using online advertisements to deliver malware to the computers of federal workers. In that letter, I urged the administration to direct DHS to require federal agencies to block delivery of all internet ads containing executable computer code to employees computers. In its response on April 20, 2018, DHS stated that it was continuing to investigate these risks and working with representatives from the online advertising industry to address this threat.
In June 2018, the National Security Agency (NSA) issued public guidance related to the threat posed by malicious advertisements. In the attached document, which NSA published on its website, the agency observed that advertising has been a known malware distribution vector for over a decade and as such, the agency recommends that organizations address this risk by blocking potentially malicious, internet-based advertisements.
As Brave sent this letter on the same day they officially released Brave Browser 1.0, this can be seen as a clever marketing ploy by the browser developers.
(Score: 0) by Anonymous Coward on Saturday November 16 2019, @04:43PM (1 child)
When I retired 5 years ago we were using Windows 7 and Redhat. Windows for the paper pushers and Redhat for the servers and data processing. It was about evenly divided between MS and Redhat. Clearly you don't understand the difficulties of version changes for large organizations. As for encryption, do you really believe having various, possilby unsecure, unapproved encryption is a good thing.. I spent four years in the encryption field and 32 years as a sysadmin.
(Score: 2) by bzipitidoo on Saturday November 16 2019, @06:30PM
> Clearly you don't understand the difficulties of version changes for large organizations.
Don't I? Well, MS understands entirely too well, and abuses their knowledge to keep large organizations on the upgrade treadmill.
Upgrading need not be so difficult, not even for large organizations, provided they stay with open stuff, and don't get locked into proprietary, undocumented, and secret formats. Also, staying organized and keeping regular backups helps greatly with upgrades, and is something that should be done even if upgrades are never made.
For all the government's freaking out over encrypted files, they are strangely willing to accept deliberately obfuscated file formats and the sloppy handling of data that such obfuscation can hide. Sensitive data has leaked out that way.