John Ribeiro reports: A subcommittee of the U.S. House of Representatives has proposed requiring vehicle manufacturers to state their privacy policies, besides providing for civil penalties of up to US$100,000 for the hacking of vehicles. The lawmakers have also proposed that the National Highway Traffic Safety Administration set up an Automotive Cybersecurity Advisory Council to…
Category: Federal
Shared passwords and the Computer Fraud and Abuse Act
Orin Kerr writes: Next week, a panel of the Ninth Circuit Court of Appeals (Thomas, Reinhardt, and McKeown) will hear oral argument in the second round of United States v. Nosal. This time around, the main question in the case is whether and when accessing an account using a shared password is an unauthorized access under the Computer…
Facebook, Google, Amazon and other big tech companies just slammed a proposed US cybersecurity law
Rob Price reports: The tech industry is not a fan of the proposed Cybersecurity Information Sharing Act (CISA) currently being deliberated by the US Congress. The Computer & Communications Industry Association (CCIA), which represents Amazon, Google, Facebook, Microsoft, and more big tech companies, has published a blog post slamming CISA, arguing it “does not sufficiently protect…
Vote imminent on controversial US cyber security ‘sharing’ bills?
Darren Pauli reports: US Senate and House committee members are confident twin security bills will be passed in the coming weeks, making serious inroads into the perennial failure that is cyber security information sharing. The bipartisan bills would offer liability protection to organisations who supply de-anonymised security threat information with the US government. The Protecting…
Australian data breach notification laws will not be passed in 2015: Brandis
Yes, let’s enact mandatory data retention laws without any companion protections or data breach notification requirements. Way to go, Australia! Chris Duckett reports: Despite the Joint Parliamentary Committee on Intelligence and Security recommending that Australia have data breach notification laws in place before the end of 2015, Australian Attorney-General George Brandis told the Senate on Tuesday that…
Senator Sheldon Whitehouse Wants to Make the Computer Fraud and Abuse Act Even Easier to Abuse
If you’re a security researcher, you’ll definitely want to read this. Nadia Kayyali writes: This summer, Senator Sheldon Whitehouse introduced an amendment to the flawed Cyber Information Sharing Act (CISA) that would make it even worse, by expanding the broken Computer Fraud and Abuse Act (CFAA). EFF has proposed common sense changes to this federal anti-hacking law, many of which were included in “Aaron’s…