Presentation is loading. Please wait.

Presentation is loading. Please wait.

Escalation 5 (cont.): Broadcast Media Coverage

Published byMatilde Fuchs Modified over 5 years ago

Similar presentations

Presentation on theme: "Escalation 5 (cont.): Broadcast Media Coverage"— Presentation transcript:

1 Escalation 5 (cont.): Broadcast Media Coverage
Airplane Incident Reported Escalation 5 (cont.): Broadcast Media Coverage Internal Update + CEO Guidance Investigation Findings Released The Euro News Network clip spurs intense online speculation that cybercriminals can use the toy’s camera to spy on customers or to set homes on fire. SCE has received hundreds of calls from current customers and resellers, inquiring about the security of the product. Potential Security Issue Product Update, Broadcast Coverage & AG Investigation FOR SIMULATION PURPOSES ONLY

2 FOR SIMULATION PURPOSES ONLY
Airplane Incident Reported Question 5: Internal Update + CEO Guidance What should the company do? Work with the product development team to create a software update to mitigate the problem. Create a website where the consumer can identify if they are impacted by the recall and download the software update directly to their unit. Keep relevant regulators and elected officials updated. Address media coverage by providing a written statement. All of the above. Gurpreet to All How does the inclusion of a physical risk change our response strategy? How long can we wait for our product development team to patch the issue before contacting/involving the CPSC or the appropriate EU group? Outside Counsel Advice based on task force input- one person could discuss to consolidate a bit. Keep applicable US, EU and UK agencies updated Establish international compliance/reporting strategy if applicable Can a software fix be pushed to devices? Stop use until corrected Refund if no software or replacement remedy: class action! May even need to do merch credit/gift card Communications How do you address speculation, exaggeration or misinformation in media/social media? What owned and paid media channels can we utilize to take back control of the narrative? What are our key messages at this point? Engineering How close is ‘close proximity’ that is required to gain control of the toy? What is the reasonableness of this scenario and what is the added risk associated with this as compared with that of a criminal/hacker with similar intentions in and around the house? This specifically focuses on the new IoT concept of “hazardization” that relates to an initially ‘safe’ product that becomes hazardous when connected to a network, as a result of changes to the ‘operational code’, malicious or otherwise. Real Life 2018 Example- Cloud Pets Stop Sale ( Reverse Logistics Need to look at supporting call center activity with concerns?  Alternative remedy for consumers that are still not comfortable? How will product at retailers be handled. Do you risk having all inventory pulled from shelves? (potential for field team to do software updates) FOR SIMULATION PURPOSES ONLY

3 Escalation 6: Product Update
Airplane Incident Reported Escalation 6: Product Update Internal Update + CEO Guidance Investigation Findings Released From: Product Development Team To: SCE Crisis Team Subject: NEW Update RE Bluetooth Exploit All, We have a software update ready for deployment that will remedy the security vulnerability in the Mr. Robot 3000. Our investigation also found that our full breadth of IoT products in the Educational Products division could be exploited by the same issue. At this stage, knowing the potential scale here, we would recommend communicating with all customers of IoT products to request them to update their software via our website. We might also consider reporting this finding to the CPSC, but will let your team make that call. Martin Esposito Vice President, Product Development Second City Electronics Potential Security Issue Product Update, Broadcast Coverage & AG Investigation Software Update FOR SIMULATION PURPOSES ONLY

4 FOR SIMULATION PURPOSES ONLY
Airplane Incident Reported Question 6: Internal Update + CEO Guidance How should the company communicate the patch? Communicate directly with known customers and direct consumers Issue press release Conduct press conference 1&2 None of the above Gurpreet to All Do we disclose that there’s a vulnerability to all products? If yes, which stakeholders? If no, why not and what are the risks associated with not disclosing? What do each of you recommend as next steps for the company? Legal Counsel Advice- Belinda Yes! This is the chance to finally get in front of the problem Properly and non-emotionally frame the issue & solution Carol and Pinuccia will cover discussion re going-forward design changes, civil penalty exposure and forward looking regulatory assurances U.S. Government Response- Carol Discuss updates to agencies including CPSC requirement on status of recall monitoring- Publish MPR? EU Response- Pinnucia What does the EU expect from this company now and in the future? Communications What can we do to protect our reputation and convince consumers that our products are safe and secure? How can we urge all IoT customers to get the software update without disclosing the potential vulnerability to all IoT products? Engineering Have you had the proposed fix validated/independently confirmed by an outside/independent third party to avoid any bias/error and having to potentially do a second recall down the line? Reverse Logistics [CHRIS – please add in key questions to address/general talking points] FOR SIMULATION PURPOSES ONLY

5 Thank You!

Download ppt "Escalation 5 (cont.): Broadcast Media Coverage"

Similar presentations

Secure Systems Research Group - FAU Process Standards (and Process Improvement)

Secure Systems Research Group - FAU Process Standards (and Process Improvement)
Social Engineering Jero-Jewo. Case study Social engineering is the act of manipulating people into performing actions or divulging confidential information.

Social Engineering Jero-Jewo. Case study Social engineering is the act of manipulating people into performing actions or divulging confidential information.
Consumer Product Safety Commission OISM 470W Marissa Korchynsky.

Consumer Product Safety Commission OISM 470W Marissa Korchynsky.
Credit unions use social media in a variety of ways, including marketing, providing incentives, facilitating applications for new accounts, inviting feedback.

Credit unions use social media in a variety of ways, including marketing, providing incentives, facilitating applications for new accounts, inviting feedback.
CPSC Lead Program: Regulations, Guidance, and Outreach Frank J. Nava U.S. Consumer Product Safety Commission January 26, 2006 These comments are those.

CPSC Lead Program: Regulations, Guidance, and Outreach Frank J. Nava U.S. Consumer Product Safety Commission January 26, 2006 These comments are those.
Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.

Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.
Foreign Supplier Verification Programs Supplemental Proposal 1.

Foreign Supplier Verification Programs Supplemental Proposal 1.
1 Crisis Management and Communication Dr. Joy Smith and Ms. Robin Denny.

1 Crisis Management and Communication Dr. Joy Smith and Ms. Robin Denny.
Investigations: Strategies and Recommendations (Hints and Tips) Leah Lane, CFE Director, Global Investigations, Texas Instruments, Inc.

Investigations: Strategies and Recommendations (Hints and Tips) Leah Lane, CFE Director, Global Investigations, Texas Instruments, Inc.
Linda Hanwacker MSCS, MBA, CBCP. Information Technology (IT) – hardware and software used to store, retrieve and process data Communication Technology.

Linda Hanwacker MSCS, MBA, CBCP. Information Technology (IT) – hardware and software used to store, retrieve and process data Communication Technology.
Business Challenges in the evolution of HOME AUTOMATION (IoT)

Business Challenges in the evolution of HOME AUTOMATION (IoT)
Cyber Insurance Risk Transfer Alternatives Heather Soronen - Operations Director Rocky Mountain Insurance Information Association.

Cyber Insurance Risk Transfer Alternatives Heather Soronen - Operations Director Rocky Mountain Insurance Information Association.
Siting Updates and the CEQ Meeting March 18, 2013 Linda Davis Western Governors’ Association.

Siting Updates and the CEQ Meeting March 18, 2013 Linda Davis Western Governors’ Association.
Regulation models addressing data protection issues in the EU concerning RFID technology Ioannis Iglezakis Assistant Professor in Computers & Law Faculty.

Regulation models addressing data protection issues in the EU concerning RFID technology Ioannis Iglezakis Assistant Professor in Computers & Law Faculty.
Data Breach ALICAP, the District Insurance Provider, is Now Offering Data Breach Coverage as Part of Our Blanket Coverage Package 1.

Data Breach ALICAP, the District Insurance Provider, is Now Offering Data Breach Coverage as Part of Our Blanket Coverage Package 1.
© 2009 Michigan State University licensed under CC-BY-SA, original at Incident Management.

© 2009 Michigan State University licensed under CC-BY-SA, original at Incident Management.
For more course tutorials visit

For more course tutorials visit
For More Best A+ Tutorials CMGT 400 Entire Courses (UOP Course) CMGT 400 Week 1 DQ 1 (UOP Course)  CMGT 400 Week 1 Individual Assignments.

For More Best A+ Tutorials CMGT 400 Entire Courses (UOP Course) CMGT 400 Week 1 DQ 1 (UOP Course)  CMGT 400 Week 1 Individual Assignments.
1 Terminal Management System Usage Overview Document Version 1.1.

1 Terminal Management System Usage Overview Document Version 1.1.
Cyber Security Phillip Davies Head of Content, Cyber and Investigations.

Cyber Security Phillip Davies Head of Content, Cyber and Investigations.

Similar presentations

Ads by Google