Interview: Len Shneyder, Co-Chair, Election Security Working Group, M3AAWG
Len Shneyder is co-chair of the election security working group at the Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) where industry comes together to work against botnets, malware, spam, viruses, DoS attacks and other online exploitation to fight online abuse.
Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) Celebrates Jerry Upton's 15 Years as Executive Director at the 48th General Meeting
The Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG), the largest global industry consortium developing collaborative approaches to combat online abuse, today announced that Jerry Upton will retire from his role as M3AAWG's Executive Director after 15 years of service. He will be succeeded by Amy Cadagin.
Efforts Ramp Up to Strengthen Wanted Campaign Communications
https://www.twilio.com/blog/election-security-m3aawg-ctia
Election security means different things to different people. Cyber security personnel may think of election security as locking down access to voting machines. Other experts in the field may focus their attention on securing systems that are critical to the day to day operations of organizing elections, such as email and other communication channels, as a means of shrinking the attack surface of our elections. Whatever the focus, one thing rings absolutely true: maintaining free, fair and credible elections in democracies around the world is absolutely key to ensuring the survival of those democracies.
CAMPAIGNS STRUGGLING WITH CYBERSECURITY HAVE NEW PLACES TO START
Practitioners could develop ostrich syndrome when it comes to cybersecurity. With the drumbeat of concern growing louder, taking the first steps to reduce a campaign or group’s exposure can feel daunting.
At least that’s the concern of Seth Blank, who works on election security for the Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG).
With email security, some things can't be outsourced
https://www.csoonline.com/article/3516548/with-email-security-some-things-cant-be-outsourced.html
You can outsource your email, but a good chunk of securing that email remains in-house. Here's what you need to know.
How to stop email spoofing of parked domains
https://www.csoonline.com/article/3512239/how-to-stop-email-spoofing-of-parked-domains.html
J.M. Porup includes M3AAWG recommendations on protecting parked domains in an article on the importance of publishing a DMARC record for every domain a business owns.
Steven Harroun to the panel on “Cybersecurity Risks and Realities” at the Telecommunications Media Forum
https://www.canada.ca/en/radio-television-telecommunications/news/2019/12/steven-harroun-to-the-panel-on-cybersecurity-risks-and-realities-at-the-telecommunications-media-forum.html
In a transcribed speech, Steven Harroun, chief compliance and enforcement officer, Canadian Radio-television and Telecommunications Commission (CRTC), describes efforts to protect digital economies and societies. He notes the CRTC’s work with groups like M3AAWG, the Internet Corporation for Assigned Names and Numbers and more.
Louisiana spurns attempted ransomware attack, governor says
https://www.scmagazine.com/home/security-news/ransomware/louisiana-spurns-attempted-ransomware-attack-governor-says/
Seth Blank, co-chair of M3AAWG’s Election Security Special Interest Group, comments on threats to election integrity for cities and states.
3 Cybersecurity Threats Facing Campaigns in 2020
https://www.campaignsandelections.com/campaign-insider/3-cybersecurity-t...
Seth Blank, co-chair of M3AAWG’s Election Security Special Interest Group, comments on threats to elections, including SIM jacking, domain spoofing and email hacking.
JPAAWG 2nd General Meeting
https://internet.watch.impress.co.jp/docs/interview/1217983.html
The Japan Anti-Abuse Working Group (JPAAWG) cooperates with M3AAWG to examine and implement measures against a wide range of email and messaging attacks, such as spam, malware and DDoS.
JPAAWG starts full-scale international activities for Internet safety in Japan
https://japan.zdnet.com/article/35143650/
In May 2019, the Japan Anti-Abuse Working Group (JPAAWG) launched in cooperation with M3AAWG to promote Internet security in Japan. Mr. Shuji Sakuraba, the chairman of the JPAAWG, spoke about JPAAWG’s goals and direction.
Twilio Joins Anti-Abuse Working Group
https://www.technologybusinesstoday.com/news/article/twilio-joins-anti-abuse-working-group
Twilio announced that it joined M3AAWG, the premier industry group dedicated to combating bots, malware, spam, viruses, denial-of-service attacks and other online exploitation.
Technology, law, and the world to protect the Internet: Interview with the standards organization JPAAWG
https://www.atmarkit.co.jp/ait/articles/1910/07/news010.html
Japan Anti-Abuse Working Group (JPAAWG) launched in May 2019 and works with M3AAWG to focus on Internet security in Japan. ITmedia spoke with Mr. Shuji Sakuraba and Mr. Nobuhiro Suemasa of JPAAWG about the group’s work, including collaboration with M3AAWG.
AI’s Place in Preventing Piracy
https://www.cablefax.com/technology/rough-seas-ais-place-in-preventing-piracy
Cable operators are working to prevent disruptions to their networks caused by the streaming of pirated content and DDoS attacks. The article calls out CableLabs’ work with M3AAWG on the DDoS Information Sharing Project.
Is a DMARC policy really right for everyone?
https://www.valimail.com/blog/dmarc-enforcement-for-everyone/
Valimail makes the case for DMARC enforcement and notes that M3AAWG recommends enforcement as a deliverability best practice.
Solving extreme email deliverability mysteries
https://postmarkapp.com/podcast/solving-extreme-email-deliverability-mysteries
Anna Ward, Postmark’s head of deliverability, discusses her path to becoming an email deliverability expert and the impact of being a part of the M3AAWG community on her work.
CSA at M3AAWG – Staying Up-to-Date with the Newest Technologies in Message Security
eco Association
A short interview with Florian Mielke of CSA, an eco Association member, explaining why he attends M3AAWG and appreciating the community and productive atmosphere.
CRTC Enforcement Advisory - Notice for Web Hosting Service Industry
https://crtc.gc.ca/eng/internet/web.htm
The CRTC (Canadian Radio-television and Telecommunications Commission) issued a CASL advisory for hosting services that lists the M3AAWG Anti-Abuse Best Common Practices for Hosting and Cloud Service Providers as a useful reference for developing a corporate compliance program.
Policy eliminates pre-emptive protection of internet infrastructure abuse
Networks Asia - Security Asia
https://www.networksasia.net/article/policy-eliminates-pre-emptive-prote...
A joint APWG-M3AAWG survey of cybercrime responders and anti-abuse personnel indicates ICANN’s Temporary Specification for domain name WHOIS data has eliminated interventions that previously allowed investigators to stop new cybercrimes while still in the preparatory stages -- and has markedly impeded routine mitigations for many kinds of cybercrimes.
How Do You Fight a $12B Fraud Problem? One Scammer at a Time
https://krebsonsecurity.com/2018/10/how-do-you-fight-a-12b-fraud-problem...
Brian Krebs interviewed Ronnie Tokazowski, founder of the private BEC List that received the 2018 JD Falk Award, on Business Email Compromise and the list's cooperative fight to protect end-users.