When data is breached on the internet platforms, should the user be blamed for trusting the company?
The security breach has been on the news for a long time as it is becoming difficult for security officials to defend as cyber terrorists have always found a new way to attack the users with malware. When an attacker hacks into a corporate website and steals sensitive data out of a database and that is when the data breach happens. 1) Weak passwords, 2) missing software patches that are exploited or lost, 3) stolen laptops and 4) mobile devices are the key for the criminals to breach the data. Criminals can have direct access to sensitive systems and records this direct access goes undetected for months, if not indefinitely.
VIEW:
In this case I would say that users are not at all responsible for trusting the company, it is the company which has to be held liable for the data breach that happens in the company which puts data of thousands or sometimes millions of users at stake, but ironically users are finally held responsible which is completely unacceptable. Data breach prevention is the job of everyone in the organization.
With so many cybersecurity team roles and responsibilities, it’s rare that data breach responsibility falls on one person or group. However, a few bad decisions made by one or two people can easily snowball into a devastating breach. The result is often a loss of revenue and your customers’ trust.
Of course, instead of worrying about how to avoid blame for a data breach, it’s far better to reduce the chances that an incident will occur in the first place.
- Kaushik MV
- 1BBA ‘C’
COUNTERVIEW:
In this particular case, I would say it is the fault of the user. The justification for my opinion is explained below. Let's consider an example, whenever a user registers on any form of social media platforms these days, it asks for private data initially. But after that step, they also display lengthy terms and conditions after accepting which only the user becomes a part of the platform.
Usually what users tend to do is they just tick the 'I agree to the terms and conditions' without even reading it. This might be because of the ignorance of the user. Sometimes it is also because of the excitement that the user has to become a part of the platform.
From the above example what I'm trying to state is that if in the first place the user had glanced through the terms and conditions he would have mostly seen a point clearly stating that the company is not responsible for any breach of personal information.
Now, this is the whole reason why Mark Zuckerberg was scrutinized and not punished by the American Lawmakers in the Cambridge Analytica case. Just not this particular point, also putting forth the basics of the web world is that you as a major should be aware of the limitations before signing up.
- Sujith S
- 1BBA ‘C’
The security breach has been on the news for a long time as it is becoming difficult for security officials to defend as cyber terrorists have always found a new way to attack the users with malware. When an attacker hacks into a corporate website and steals sensitive data out of a database and that is when the data breach happens. 1) Weak passwords, 2) missing software patches that are exploited or lost, 3) stolen laptops and 4) mobile devices are the key for the criminals to breach the data. Criminals can have direct access to sensitive systems and records this direct access goes undetected for months, if not indefinitely.
VIEW:
In this case I would say that users are not at all responsible for trusting the company, it is the company which has to be held liable for the data breach that happens in the company which puts data of thousands or sometimes millions of users at stake, but ironically users are finally held responsible which is completely unacceptable. Data breach prevention is the job of everyone in the organization.
With so many cybersecurity team roles and responsibilities, it’s rare that data breach responsibility falls on one person or group. However, a few bad decisions made by one or two people can easily snowball into a devastating breach. The result is often a loss of revenue and your customers’ trust.
Of course, instead of worrying about how to avoid blame for a data breach, it’s far better to reduce the chances that an incident will occur in the first place.
- Kaushik MV
- 1BBA ‘C’
COUNTERVIEW:
In this particular case, I would say it is the fault of the user. The justification for my opinion is explained below. Let's consider an example, whenever a user registers on any form of social media platforms these days, it asks for private data initially. But after that step, they also display lengthy terms and conditions after accepting which only the user becomes a part of the platform.
Usually what users tend to do is they just tick the 'I agree to the terms and conditions' without even reading it. This might be because of the ignorance of the user. Sometimes it is also because of the excitement that the user has to become a part of the platform.
From the above example what I'm trying to state is that if in the first place the user had glanced through the terms and conditions he would have mostly seen a point clearly stating that the company is not responsible for any breach of personal information.
Now, this is the whole reason why Mark Zuckerberg was scrutinized and not punished by the American Lawmakers in the Cambridge Analytica case. Just not this particular point, also putting forth the basics of the web world is that you as a major should be aware of the limitations before signing up.
- Sujith S
- 1BBA ‘C’
No comments:
Post a Comment