Xinhua reports: More than 10,000 computers in China were attacked by domestic and overseas hackers between December 2014 and November 2015, a cybersecurity firm has detected. The SkyEye Lab, run by Chinese cybersecurity firm Qihoo 360, said 29 hacker organizations from home and abroad launched the attacks. Read more on Xinhua. Focusing on another part…
Category: Commentaries and Analyses
Departing Employee Taking Data from “Restricted” but Unsecured Folder Doesn’t Violate CFAA
Shawn E. Tuma writes: When an employer intends to keep a network folder restricted from employees, but fails to (1) objectively communicate this intention or (2) secure the folder from general access, an employee who accesses the folder and takes data from it does not violate the Computer Fraud and Abuse Act (CFAA), even if he does…
Read TechFreedom’s amicus brief in FTC v. LabMD
I wasn’t aware of this until today, but TechFreedom filed a motion seeking leave to submit an amicus brief in FTC v. LabMD. The brief supports LabMD’s position and urges the Commission to uphold Judge Chappell’s initial decision in favor of LabMD. You can read their brief here. Not surprisingly, I agree with their argument that…
Lawmakers Roast the Education Dept.’s Top Technology Officer Over Ethics and Data Security
Kelly Field reports: Angry lawmakers hammered the Education Department’s chief information officer, Danny A. Harris, at a hearing Tuesday, accusing him of ethical lapses and failing to secure the agency’s “vulnerable” information systems. “Cybersecurity for the federal government is a matter of quality management and effective leadership, not just tech,” said Rep. Will Hurd, a Texas Republican…
Voter Data Modeling: Does it Threaten Our Privacy?
Evan Halper writes about an issue I’ve raised in my own commentary on the risks of the explosion of voter profiling. …. But as presidential campaigns push into a new frontier of voter targeting, scouring social media accounts, online browsing habits and retail purchasing records of millions of Americans, they have brought a privacy imposition…
DHS Needs to Enhance Capabilities, Improve Planning, and Support Greater Adoption of Its National Cybersecurity Protection System: GAO
From a GAO report released today: The Department of Homeland Security’s (DHS) National Cybersecurity Protection System (NCPS) is partially, but not fully, meeting its stated system objectives: Intrusion detection: NCPS provides DHS with a limited ability to detect potentially malicious activity entering and exiting computer networks at federal agencies. Specifically, NCPS compares network traffic to known…