[Midway] Hacked Your Beat_ Asking the Right Questions When Cybercriminals Target Your Community | Otter.ai

[Midway] Hacked Your Beat_ Asking the Right Questions When Cybercriminals Target Your Community

Online News Association27min

Unknown Speaker

01:00

Hi everybody,

Julian Hayda

01:02

Welcome to our session about cybersecurity at ONA 2021. I'm so happy to be here with you. Before I introduce my guest, Katie, I want to say a little bit about the global cyber Alliance and myself. My name is Julian Hayda. I'm the Newmark journalist scholar at the Global Cyber Alliance. We are a global nonprofit that works to mitigate cyber risk. And my job as part of the Craig Newmark Internet Democracy Program is to inject a little bit of journalism into the cybersecurity dialogue that is happening. And hopefully a little bit of vice versa, as well. Just as a note, the fellowship is open, please replace me, be the new me. The fellowship the program is a lot of fun, and I've been really happy to do it for the last year. So with me is Katie Nichols. I'm going to have Katie, introduce yourself. But we're here to talk to you about how do you cover cybersecurity in your local community. When cybersecurity hits the community, when a cyber attack or cyber event, we're going to talk about terms in a minute. arrive in your community these are the nuts and bolts. This is a how-to, how do you report on breaking cyber news in your community. So with me, it's Katie Nickels. Katie, take it away. Why am I talking to you, you know everything.

Katie Nickels

02:27

I am so happy to be here, Julian. My name is Katie Nickels. I'm the director of intelligence at a cybersecurity company called Red Canary. We do software as a service, we are a security ally, help people find intrusions on their networks, quite simply. I'm also a fellow at the Atlantic Council. I teach for a company called Sans provide cybersecurity training. And I'm really fortunate in my work that I get to talk to a lot of journalists. And so my pleasure to be here today to talk about some of the things that I've seen go really well in cybersecurity journalism, that haven't go gone so well, to hopefully help you all out as you cover all of these many cybersecurity stories that are breaking every day now.

Julian Hayda

03:08

Yeah, to say the least. I you know, 2020 is a heck of a year. I mean, it goes without saying 2021 is stacking up to be just about the same. But this presentation is directed towards mostly beat reporters, right. So when I think of beat reporters, I think if people cover education, health, business, government. Any sort of beat has, at one point or another in the last year been touched by some sort of cybersecurity story. So, you know, you don't need to be a tech reporter necessarily. You don't need to be a cybersecurity reporter, since those beats existed, often because of big papers, national papers, TV networks. But if you're working for a local newspaper, or a local radio station, and you cover schools, well, 400 schools, experienced cyber attacks in the year 2020. Your local school could be shut down as everybody is at home studying virtually What does that do? What does that mean? How do you report on it? Hospitals do you cover health? Last thing you want is for the for the systems to fall at the hospital? And and how do you report on that? How does healthcare get interrupted? And how do you kind of know how to address that? So there's a lot of examples. And here's just a few of why this can become a very local story and the cybersecurity can go from being a tech story covered by the national papers and TV stations, very much into your local community. And we want to help you cover it. So I have a couple of questions. Katie, you're you're on the other side of the microphone, on the other side of the notepad often. So first of all, what are some of the questions What are the right questions that journalists should be asking when their local school, hospital, government, business, whatever, has experienced a cyber attack.

Katie Nickels

05:05

So the good news is you can rely on your classic five W's and the H. A full disclosure, I was really into journalism in high school and college so I'm familiar with these. The one thing I wanted to point out, though, is that, okay, these same questions that you'd apply to any story can really apply to cyber stories, too, but they're going to be a little bit different. So for example, everyone wants to know who, who is behind the keyboard, who's behind this cyber attack. Be aware that that's not always very easy. You know, in physical crime, it's much easier to say cool, we found the human fingerprint, we found the adversary or the criminal, but online, the who might be unknown, especially when a first story first breaks.

Katie Nickels

05:48

The what? This is where I feel like a lot of reporters, especially who are new to cyber get intimidated. What happened? Well, Oh, my gosh, I have to know all the bits and bytes and exactly what happened with the malware. Don't worry too much about those technical details, right At a high level, what happened? Some common things data was stolen, data was leaked, there was downtime for a company, right? Think about that high level what?

Processing audio...