Giora Engel of LightCyber writes: The legal argument behind the $10 million Class Action lawsuit and subsequent settlement is a gross misrepresentation of how attackers operate. Central to the recent Target data breach lawsuit settlement was the idea that cyber attacks are mechanistic and follow a prescribed course or chain of events. The judge hearing the case…
Month: April 2015
“Freedom’s” just another word for data left to lose? (with apologies to Janis)
From Freedom Smoke‘s submission to the California Attorney General’s Office, a notice of a “potential security breach.” Note that the firm has already received reports of fraudulent charges on credit cards possibly linked to this incident, even though they have no evidence confirming illegal use: We identified that between approximately February 11, 2015 and March 16,…
Del. AG announces four privacy bills
Legal News Line reports: Delaware state legislators and Attorney General Matt Denn on Friday announced four bills that he says will help strengthen privacy laws when it comes to the Internet and social media. … The bills would tackle four different areas of online activity including: a Victim Online Privacy Act, a Delaware Online Privacy and…
HTTPS snooping flaw in third-party library affected 1,000 iOS apps with millions of users
Lucian Constantin reports: Apps used by millions of iPhone and iPad owners became vulnerable to snooping when a flaw was introduced into third-party code they used to establish HTTPS connections. The flaw was located in an open-source library called AFNetworking that’s used by hundreds of thousands of iOS and Mac OS X applications for communicating with Web…
“KYAnonymous,” the hacker who exposed Steubenville rapists, may get more prison time than the rapists
M. David reports: Deric Lostutter, the 26-year-old “hacktivist” who leaked the evidence that led to the conviction of two of the Steubenville, Ohio rapists is now facing more time behind bars than the rapists he exposed. The Steubenville Rape Case made national headlines when a video made by the rapists themselves, and their friends, proved that their victim…
University of Utah responds to alert, investigating
Vulnerable Disclosures writes: Looks like they still are having issues. While they haven’t noted any breaches we are pretty sure from what we have been seeing on our systems and sensors that they have an issue. UPDATE: Within minutes of the report the University of Utah has begun the process to research this issue. Apparently this…