From the good folks at EPIC.org: On February 27, EPIC filed reply comments with the Federal Communications Commission supporting the FCC’s proposal to use funds from its E-Rate program to support strengthening cybersecurity at schools and libraries, as these are increasingly attractive targets to hackers. The E-Rate program uses discounted pricing to facilitate schools and libraries providing…
Hackers target FCC, crypto firms in advanced Okta phishing attacks
Bill Toulas reports: A new phishing kit named CryptoChameleon is being used to target Federal Communications Commission (FCC) employees, using specially crafted single sign-on (SSO) pages for Okta that appear remarkably similar to the originals. The same campaign also targets users and employees of cryptocurrency platforms, such as Binance, Coinbase, Kraken, and Gemini, using phishing pages…
These Video Doorbells Have Terrible Security. Amazon Sells Them Anyway.
Stacey Higginbotham and Daniel Wroclawski report: On a recent Thursday afternoon, a Consumer Reports journalist received an email containing a grainy image of herself waving at a doorbell camera she’d set up at her back door. If the message came from a complete stranger, it would have been alarming. Instead, it was sent by Steve…
Biden’s new data security order leaves industry officials, privacy advocates scratching their heads
David DiMolfetta reports: A new White House directive that gives agencies the legal power to prevent Americans’ sensitive data from falling into the hands of foreign adversaries is getting mixed reviews, with industry executives saying it could risk muddling current data flow mechanisms and privacy advocates contending it doesn’t go far enough to address potential abuses at…
Vastaamo victims’ lawyer: Some took their own lives after patient record leak
YLE News, STT report: Some patients from the Vastaamo psychotherapy centre had died by suicide after their patient records were stolen and used in extorition attempts, according to a lawyer representing victims. Legal arguments in the trial of Aleksanteri Kivimäki, who is accused of stealing the data and extorting victims, are scheduled to conclude next week….
Message to the Congress on Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern
TO THE CONGRESS OF THE UNITED STATES: Pursuant to the International Emergency Economic Powers Act (50 U.S.C. 1701 et seq.) (IEEPA), the National Emergencies Act (50 U.S.C. 1601 et seq.), and section 301 of title 3, United States Code, I hereby report that I have issued an Executive Order that expands the scope of the national emergency…