FTNK Posted April 18, 2018 Share Posted April 18, 2018 Link to comment Share on other sites More sharing options...
Sideways Posted April 18, 2018 Share Posted April 18, 2018 1 hour ago, Jeff Ream said: http://www.geocities.ws/marchingresearch/lamsym00.txt Like I said previously...plantar fasciitis is preferable. Link to comment Share on other sites More sharing options...
Jeff Ream Posted April 18, 2018 Share Posted April 18, 2018 1 hour ago, rpbobcat said: Thanks fort the link,I think. sorry i should have put up a disclaimer Link to comment Share on other sites More sharing options...
oldsoprano Posted April 18, 2018 Share Posted April 18, 2018 1 hour ago, Jeff Ream said: https://groups.google.com/forum/m/#!topic/rec.arts.marching.drumcorps/tLokn10f_Og Not sure I've ever seen anyone use the word "euphoniumist" before. Guess I better change my screen name to "oldsopranoist." 2 Link to comment Share on other sites More sharing options...
JimF-LowBari Posted April 18, 2018 Share Posted April 18, 2018 I’m sorry but grant from IBM? Glad I did not discover newsgroups until later.... Link to comment Share on other sites More sharing options...
mkelley Posted April 18, 2018 Share Posted April 18, 2018 16 hours ago, Jeff Ream said: Apparently someone hacked YEAs site. Couldn’t imagine why Hacked again? Yikes. It is disappointing to me that they are still struggling with these types of cyber security issues. This winter my kid attended the camps in NJ, when the folks found out that I worked in the cyber security / compliance field they introduced me to GH. He disclosed to me at least two recent technology specific security and compliance "events" that they were still dealing with. I was told that their legal team / insurance company has been asking for a formal security and compliance audit (this is NOT a financial audit) for some time. I live way too far away to do a long term on-site pro bono security and compliance assessment, but as a courtesy I called out several common sense security controls which must not have been implemented (ie at minimum deploy multi-factor authentication for critical administrative accounts, encryption of data at rest, Internet facing vulnerability assessment scans, etc). The reason I call this out at all is because the data they collect on prospective marching members definitely has some elements of both PII (Personally Identifiable Information) and PHI (Protected Health Information), both of which are regulated at both the state and federal levels. I think most non-profit organizations struggle with this type of thing, hopefully this is sorted out as well, would hate that any MMs end up the victim of identity theft. To a large degree this is a problem that all corps DCI/DCA would have to address, I have often wondered if DCI provided cyber or business best practices to every corps but after the disheartening month we have had my guess is they do not... or it is not followed very closely by some organizations. I have read DCP for years but seldom post (I hate politics), I hope the above comments are not a distraction from the theme of this thread, prayers to those girls who have had to suffer in silence for so long. 7 2 Link to comment Share on other sites More sharing options...
JimF-LowBari Posted April 18, 2018 Share Posted April 18, 2018 Thanks for bringing up the PII issue with hacking. Never thought about it hitting insurance but makes great sense. Yeah deal with IT security too in other ways Link to comment Share on other sites More sharing options...
Daave Posted April 18, 2018 Share Posted April 18, 2018 3 hours ago, Jeff Ream said: http://www.geocities.ws/marchingresearch/lamsym00.txt As the old saying goes, that is an hour of my life i'll never get back. Sheesh. Link to comment Share on other sites More sharing options...
Daave Posted April 18, 2018 Share Posted April 18, 2018 3 hours ago, Jeff Ream said: https://groups.google.com/forum/m/#!topic/rec.arts.marching.drumcorps/tLokn10f_Og "My brain hurts" ($1 to D.P Gumby) and ($1 to me for the obscure Monty Python reference) I think I need a bottle of aspirin and box of contraceptives because I have ******* headache! 2 2 Link to comment Share on other sites More sharing options...
Jeff Ream Posted April 18, 2018 Share Posted April 18, 2018 44 minutes ago, mkelley said: Hacked again? Yikes. It is disappointing to me that they are still struggling with these types of cyber security issues. This winter my kid attended the camps in NJ, when the folks found out that I worked in the cyber security / compliance field they introduced me to GH. He disclosed to me at least two recent technology specific security and compliance "events" that they were still dealing with. I was told that their legal team / insurance company has been asking for a formal security and compliance audit (this is NOT a financial audit) for some time. I live way too far away to do a long term on-site pro bono security and compliance assessment, but as a courtesy I called out several common sense security controls which must not have been implemented (ie at minimum deploy multi-factor authentication for critical administrative accounts, encryption of data at rest, Internet facing vulnerability assessment scans, etc). The reason I call this out at all is because the data they collect on prospective marching members definitely has some elements of both PII (Personally Identifiable Information) and PHI (Protected Health Information), both of which are regulated at both the state and federal levels. I think most non-profit organizations struggle with this type of thing, hopefully this is sorted out as well, would hate that any MMs end up the victim of identity theft. To a large degree this is a problem that all corps DCI/DCA would have to address, I have often wondered if DCI provided cyber or business best practices to every corps but after the disheartening month we have had my guess is they do not... or it is not followed very closely by some organizations. I have read DCP for years but seldom post (I hate politics), I hope the above comments are not a distraction from the theme of this thread, prayers to those girls who have had to suffer in silence for so long. cyber security is an issue world wide...governments, major companies...so that it happens to a drum corps website isnt a surprise. not saying i condone it, but it's a real threat at all levels 2 Link to comment Share on other sites More sharing options...
Recommended Posts