Read more at https://www.channelnewsasia.com/news/singapore/personal-data-of-800-000-blood-donors-accessed-illegally-hsa-ssg-11395364
(Updated: )
Ricky Lim
Let us discuss the issue of accountability :-
Scenario 1:-
(1) A robber walk into the bank - and rob the bank of money, open fire and kill a person in the bank.
Accountability :-
(1) Is the robber that commit robbery accountable - yes (he should be jail or even face death penalty for the crime.
(2) Now some people argue - should the robber father and mother be held accountable as well?
(3) Some more far fetch argument - should all the family members of the robber be held accountable? 诛九族。
(4) Should the bank employees and bank manager be held accountable - for failing to put in security to prevent the robbery?
(5) Even more far fetch argument --- should the Law Minister be held accountable - and ask to resign - for failing to prevent people from becoming robber, for failling to put security instrument to prevent the robbers from staging a robbery and from succeeding in the robbery.
Public at large seems to be able to accept that - only the robber is held accountable for money crime.
Then we will discuss Scenario 2 - data crime (stealing of data).
Scenario 1:-
(1) A robber walk into the bank - and rob the bank of money, open fire and kill a person in the bank.
Accountability :-
(1) Is the robber that commit robbery accountable - yes (he should be jail or even face death penalty for the crime.
(2) Now some people argue - should the robber father and mother be held accountable as well?
(3) Some more far fetch argument - should all the family members of the robber be held accountable? 诛九族。
(4) Should the bank employees and bank manager be held accountable - for failing to put in security to prevent the robbery?
(5) Even more far fetch argument --- should the Law Minister be held accountable - and ask to resign - for failing to prevent people from becoming robber, for failling to put security instrument to prevent the robbers from staging a robbery and from succeeding in the robbery.
Public at large seems to be able to accept that - only the robber is held accountable for money crime.
Then we will discuss Scenario 2 - data crime (stealing of data).
LikeReply1mEdited
Ricky Lim
Scenario 2 (data crime):-
(1) A vendor staff is contracted to install an IT system - but instead he steal the data while installing the system (assume in the toilet using wireless login with the admin account - and the government official that supervise his work - cannot go into the toilet cubicle to see what he is doing).
Accountability :-
(1) Is the vendor staff turn hacker that commit the data crime accountable - yes (he should be trial in Court for stealing the data and posting it in the Internet - infringing OSA).
(2) Now some people argue - should the hacker father and mother be held accountable as well?
(3) Some more far fetch argument - should all the family members of the hacker be held accountable? 诛九族。
(4) Should the HSA employees and HSA manager be held accountable - for failing to put in security to prevent the hacking? (Ie. put CCTV in the toilet cubicle or use eyeball to peep what this vendor is doing in the toilet?)
(5) Even more far fetch argument --- should the Health Minister be held accountable - and ask to resign - for failing to prevent the vendor from becoming hacker, for failling to put security instrument to prevent the vendor from hacking and from putting the data in the Internet.
Some people seems to say that - the hacker is held accountable & further demanding HSA and Minister to be held accountable.
Is there differences in robbery and data crime -- in terms of assigning accountability?
(1) A vendor staff is contracted to install an IT system - but instead he steal the data while installing the system (assume in the toilet using wireless login with the admin account - and the government official that supervise his work - cannot go into the toilet cubicle to see what he is doing).
Accountability :-
(1) Is the vendor staff turn hacker that commit the data crime accountable - yes (he should be trial in Court for stealing the data and posting it in the Internet - infringing OSA).
(2) Now some people argue - should the hacker father and mother be held accountable as well?
(3) Some more far fetch argument - should all the family members of the hacker be held accountable? 诛九族。
(4) Should the HSA employees and HSA manager be held accountable - for failing to put in security to prevent the hacking? (Ie. put CCTV in the toilet cubicle or use eyeball to peep what this vendor is doing in the toilet?)
(5) Even more far fetch argument --- should the Health Minister be held accountable - and ask to resign - for failing to prevent the vendor from becoming hacker, for failling to put security instrument to prevent the vendor from hacking and from putting the data in the Internet.
Some people seems to say that - the hacker is held accountable & further demanding HSA and Minister to be held accountable.
Is there differences in robbery and data crime -- in terms of assigning accountability?
LikeReply1m
Ricky Lim
What is the World trend in data hacking? Can data hacking be prevented and totally cut off?
This is as good as asking can crime like robbery, stealing and other more serious crime be prevented?
Study shows that, with proliferation of Internet, mobile devices and more IT connected world --- hacking, data crime happen in every Country that are connected.
(1) US - has many highly secret, confidential data - whether in Government, Military, Business etc being stolen by hackers. Snowden (the NSA contractor) steal all the NSA data and fled overseas that started the wikileak.
(2) China - same
(3) Russia - same
plus almost every Countries that have internet connection.
As much as IT security are put in place to prevent hacking and data crime from happening -- it is almost impossible for data crime be totally eradicated.
Cyber security is always a chasing game --- and though we should strive to minimise data crime into minimum (it will be far fetch to say we can totally eradicate cyber crime - just like eradicating crime like robbery, scam, thief etc).
Strong punishment will be some sort of deterrent (in addition to beefing up cyber security and processes).
This is as good as asking can crime like robbery, stealing and other more serious crime be prevented?
Study shows that, with proliferation of Internet, mobile devices and more IT connected world --- hacking, data crime happen in every Country that are connected.
(1) US - has many highly secret, confidential data - whether in Government, Military, Business etc being stolen by hackers. Snowden (the NSA contractor) steal all the NSA data and fled overseas that started the wikileak.
(2) China - same
(3) Russia - same
plus almost every Countries that have internet connection.
As much as IT security are put in place to prevent hacking and data crime from happening -- it is almost impossible for data crime be totally eradicated.
Cyber security is always a chasing game --- and though we should strive to minimise data crime into minimum (it will be far fetch to say we can totally eradicate cyber crime - just like eradicating crime like robbery, scam, thief etc).
Strong punishment will be some sort of deterrent (in addition to beefing up cyber security and processes).
No comments:
Post a Comment