A survey of 341 attendees of the recent RSA Conference in San Francisco revealed that less than half (48 percent) felt the NSA overstepped its boundaries with its surveillance programs.
This year’s conference faced controversy due to allegations that RSA accepted a $10 million payment from the NSA several years ago to use a weak number generating algorithm by default in its BSAFE toolkits. The resulting furor led several scheduled speakers to pull out of the conference, while other people created a rival event known as Trustycon, which took place Feb. 27 at a nearby location.
Seventy-five percent of those surveyed – regardless of their stance on the NSA – felt that those who boycotted the conference had a right to their opinion, and nine percent said they contemplated joining them. Seventeen percent classified those who boycotted the conference as attention seekers.
Of the 52 percent of the respondents who felt the NSA did not overstep, 21 percent believe the government needs to be aware of citizens’ communications data in order to protect the nation from terrorist activity. Thirty-one percent meanwhile, said they were conflicted about the issue.
In addition to the diverse attitudes about the NSA’s electronic surveillance, the survey also revealed many attendees are skeptical when it comes to their ability to control privileged access within their organizations. Just 19 percent said they were confident such access is used properly, while 61 percent said they either know employees have abused access within their company (24 percent) or feel that it is likely they have (37 percent).
“Regardless of where you stand on the issue, the attention around Edward Snowden’s alleged disclosures last year has raised major concerns worldwide around the risk posed by insiders who have access to privileged account passwords,” said Jonathan Cogley, founder and CEO of Thycotic Software, in a statement. “It’s disheartening to hear that so many RSA attendees think privileged abuse is happening within their companies, and it goes to show that there is a need to be more vigilant than ever when it comes to managing and tracking who has access to privileged accounts and sensitive data. Regardless of intention, data breaches always have the potential to devastate a company’s reputation and create a significant drain on resources.”
More from Brian Prince
- U.S. Healthcare Companies Hardest Hit by ‘Stegoloader’ Malware
- CryptoWall Ransomware Cost Victims More Than $18 Million Since April 2014: FBI
- New Adobe Flash Player Flaw Shares Similarities With Previous Vulnerability: Trend Micro
- Visibility Challenges Industrial Control System Security: Survey
- Adobe Flash Player Zero-Day Exploited in Attack Campaign
- Researchers Demonstrate Stealing Encryption Keys Via Radio
- Researchers Uncover Critical RubyGems Vulnerabilities
- NSA, GCHQ Linked to Efforts to Compromise Antivirus Vendors: Report
Latest News
- Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability
- ChatGPT Hallucinations Can Be Exploited to Distribute Malicious Code Packages
- Blumira Raises $15 Million for SMB-Tailored XDR Platform
- Microsoft Will Pay $20M to Settle US Charges of Illegally Collecting Children’s Data
- KeePass Update Patches Vulnerability Exposing Master Password
- AntChain, Intel Create New Privacy-Preserving Computing Platform for AI Training
- Keep Aware Raises $2.4M to Eliminate Browser Blind Spots
- Google Workspace Gets Passkey Authentication
