The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has indicated there will be no ban on ransomware payments. Director Jen Easterly emphasized the importance of reporting cyber incidents and promoting secure design practices to combat cyber threats effectively.
The episode also delves into a breach experienced by TeamViewer, attributed to Russian state-affiliated threat actors. Despite the breach being contained within TeamViewer's corporate systems, the incident underscores the ongoing cybersecurity challenges faced by organizations. Additionally, a survey by Sophos reveals that while many companies have strengthened their cyber defenses to qualify for insurance coverage, there remains uncertainty among respondents regarding the extent of coverage, particularly concerning ransom payments and income loss.
The podcast highlights the U.S. Supreme Court's decision to overturn the Chevron Deference Doctrine, impacting regulatory oversight and agency power. This ruling is seen as a victory for opponents of big government and will shift more responsibility onto Congress to address policy issues through new laws. Furthermore, a new Senate bill aims to assist small businesses in leveraging AI by providing training resources, signaling a potential avenue for businesses to explore the benefits of artificial intelligence technology.
In the tech realm, analyst Ming-Chi Kuo predicts that Apple will commence mass production of AirPods with camera modules by 2026. These AirPods are expected to integrate infrared camera technology for enhanced spatial audio and potential in-air gesture control. Apple's expansion of its repair tool and commitment to device longevity through software support are also highlighted, reflecting the company's focus on customer service and product sustainability in the evolving tech landscape.
Three things to know today
00:00 CISA's Jen Easterly: No Ban on Ransomware Payments, Focus on Reporting and Design Security
03:29 Supreme Court’s Chevron Decision: Long-Term Impacts on Regulatory Landscape
05:01 Apple to Begin Mass Production of AirPods with Cameras by 2026?
Supported by:
https://www.huntress.com/mspradio/
💼 All Our Sponsors
Support the vendors who support the show:
👉 https://businessof.tech/sponsors/
🚀 Join Business of Tech Plus
Get exclusive access to investigative reports, vendor analysis, leadership briefings, and more.
👉 https://businessof.tech/plus
🎧 Subscribe to the Business of Tech
Want the show on your favorite podcast app or prefer the written versions of each story?
📲 https://www.businessof.tech/subscribe
📰 Story Links & Sources
Looking for the links from today’s stories?
Every episode script — with full source links — is posted at:
🎙 Want to Be a Guest?
Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:
💬 https://www.podmatch.com/hostdetailpreview/businessoftech
🔗 Follow Business of Tech
LinkedIn: https://www.linkedin.com/company/28908079
YouTube: https://youtube.com/mspradio
Bluesky: https://bsky.app/profile/businessof.tech
Instagram: https://www.instagram.com/mspradio
TikTok: https://www.tiktok.com/@businessoftech
Facebook: https://www.facebook.com/mspradionews
Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.
[00:00:00] It's Tuesday, July 2nd, 2024, and I'm Dave Sopel. Three things to know today. CISA's Jenny Sturley no ban on ransomware payments, focusing instead on reporting and design security. The Supreme Court's Chevron decision, the long-term impacts on the regulatory landscape,
[00:00:18] and maybe Apple to begin mass productions of AirPods with cameras by 2026? This is the Business of Tech. Jenny Sturley, the director of the U.S. Cybersecurity and Infrastructure Security Agency, dismissed the idea of a ban on ransomware payments in the United States.
[00:00:37] In a discussion with the former head of the UK's National Cybersecurity Center, she mentioned the difficulty in reducing ransomware attacks and highlighted the importance of the Cyber Incident Reporting for Critical Infrastructure Act in providing better insights into the cyber attack ecosystem.
[00:00:53] He also emphasized the need for a secure-by-design campaign and to address vulnerabilities in technology. TeamViewer, a remote access software company, experienced a breach in its corporate IT environment attributed to Russian state-affiliated threat actors known as Midnight Blizzard.
[00:01:11] The breach involved compromised employee account credentials and was contained within TeamViewer's corporate systems, with no evidence of further access to customer data. The company is taking steps to mitigate risks, including collaborating with Microsoft in implementing stronger authentication procedures.
[00:01:29] A survey conducted by Sophos reveals that 76% of companies have strengthened their cyber defenses in order to qualify for cyber insurance coverage. However, respondents have mixed confidence regarding the extent of the coverage, with many unsure if their policies cover ransom payments or income loss.
[00:01:48] Cyber attack recovery costs surpass insurance coverage limits, with only 1% of claimants fully compensated. Why do we care? The headline for me is that a ban on ransomware payments is not coming. I had hoped it would. Clearly, too much of a stretch for the readiness of most organizations.
[00:02:08] Now the survey highlights the positive impact of cyber insurance requirements in driving necessary security measurements, but emphasizes that it's just one part of an effective risk mitigation strategy. It stands to reason that one way to drive customer action is to get them to get insurance.
[00:02:25] But note that cyber insurance is generally a mess. One could prepare for insurance and start setting that money aside to self-insure and earn some interest in the current market. Today's episode is supported by CoreView. Your customers need your Microsoft 365 expertise, and CoreView has the only M365 management
[00:02:49] platform designed for MSPs. Manage hundreds of tenants, automate manual tasks, and monitor compliance, all while intelligently comparing to the baseline. With a no-code control approach, CoreView revolutionizes your Microsoft 365 administration. This powerful platform enables automatic reporting and remediation, ensuring optimal performance and security. The best part?
[00:03:14] You achieve this high level of service without the need for a large workforce, allowing you to focus on growing your business through efficiency. Want to know more? Visit coreview.com slash MSP and find out more.
[00:03:30] The European Union has accused Microsoft of violating antitrust rules by refusing to give customers a choice on whether to buy the Teams productivity app when getting other Microsoft apps. This comes after the EU accused Apple of unfairly restricting apps, indicating that broader
[00:03:47] crackdown on big tech by European regulators. The US Supreme Court has overturned the Chevron Deference Doctrine, a decades-old legal doctrine that allowed federal regulators to interpret unclear laws. The 6-3 decision will limit the power of environmental, consumer, and financial watchdog agencies
[00:04:05] and place more responsibility on Congress to address policy issues through new laws. The ruling gives judges a broader mandate to rein in regulators when they exceed their authority. A new Senate bill aims to help small businesses leverage AI by providing training resources.
[00:04:20] The bipartisan bill would partner the Department of Commerce with the Small Business Administration to distribute AI training materials for various purposes. The bill is still in its early stages, but businesses can explore industry-specific guides and trial AI tools to gain a basic understanding of the technology.
[00:04:40] Why do we care? The Supreme Court's decision is seen as a victory for opponents of big government and will have significant implications for agency power and regulatory oversight. We'll see. I'm no lawyer, so I'll be tracking and reporting back.
[00:04:53] I included the Senate bill because there may well be more useful resources coming out from the SBA and Commerce Department, and there are some now. According to analyst Ming-Chi Kuo, Apple plans to begin mass production of AirPods with camera modules by 2026.
[00:05:11] These new AirPods will feature an infrared camera similar to Face ID on iPhone and iPad and will integrate with Vision Pro and future Apple Vision headsets to enhance spatial audio and strengthen the spatial computing ecosystem. The IR camera could also enable in-air gesture control.
[00:05:28] Foxconn is the supplier of the IR camera, with an annual capacity plan of 18 to 20 million units. Apple is also exploring other wearable form factors such as smart glasses and a smart ring. And Apple is expanding its Apple Diagnostics for Self-Service Repair tool to 32 European
[00:05:46] countries, allowing users to troubleshoot issues and determine if their devices need repair. The tool currently supports iPhone, Mac, and Studio display models. Apple also published a white paper highlighting its efforts to increase device longevity through software support and expanded repair options. Why do we care?
[00:06:06] Well, tactically, I appreciate more right-to-repair investment. But strategically, I want to highlight how AirPods with cameras is both a prediction I already made, but more importantly are useful without the Vision Pro. Cameras that your phone can use to identify the area around you is a much more useful
[00:06:23] version of some of the technology we've seen lately. I'm looking at you, humane pin. And I would expect to be a logical outcome of all the machine learning vision investments broadly. So something to watch.
[00:06:38] With as many breaches and security concerns as I report in this show, it should be obvious that cybersecurity is not just about technology, but also the human expertise needed to interpret and respond to complex threats. Huntress is focused on elevating SMBs and MSPs around the world.
[00:06:57] Huntress has a suite of fully managed cybersecurity solutions powered by a 24x7 human-led SOC dedicated to continuous monitoring, expert investigation and rapid response. And the proof is the execution. Huntress is the number one rated EDR for SMBs on G2. Want to know more about the platform?
[00:07:19] Visit huntress.com slash MSPradio to learn more. Thanks for listening. Today is I forgot day. So forgive yourself for forgetting. It's also National Disco Day, which some of you may have chosen to forget. But you know what? Sometimes it's good fun.
[00:07:38] If you've got a comment or a thought on a story, put it in the comments if you're on YouTube or reach out on LinkedIn if you're listening to the podcast. And really, I would appreciate it if you enjoy the show, share it with a colleague. Everyone matters.
[00:07:50] Thanks for joining me. I'll talk to you again tomorrow. The Business of Tech is written and produced by me, Dave Sobel, under ethics guidelines. Post it at businessof.tech If you like the content, please make sure to hit that like button, follow or subscribe.
[00:08:07] It's free and easy and the best way to support the show and help us grow. You can also check out our Patreon where you can join the Business of Tech community at patreon.com slash MSPradio or buy our Why Do We Care merch at businessof.tech
[00:08:23] Finally, if you're interested in advertising on the show, visit MSPradio.com slash engage. Once again, thanks for listening to me. I'll talk to you again on our next episode of the Business of Tech.