Unauthorized Access

Courts Reining In What it Means to be a “Hacker” Under the Computer Fraud and Abuse Act (CFAA)

Ralph C. Losey of Jackson Lewis writes: The Computer Fraud and Abuse Act (“CFAA”) is an anti-hacker statute that prohibits unauthorized access, or the exceeding of authorized access, of computers connected to interstate commerce. 18 U.S.C. § 1030. Violators are subject to both criminal and civil liability. Employers have long taken advantage of the CFAA’s civil remedies to “sue former...

C’mon, FTC, when will you do something? (update 2)

It has now been about two years since I filed a complaint with the FTC to alert them to all the data security breaches involving Experian’s credit report database. And while I continue to   wait to see the FTC take action against Experian over their numerous breaches involving misuse of clients’ login credentials,...

Aflac discloses insider breach involving customers’ Social Security numbers (updated)

The Continental American Insurance Company (Aflac) is notifying some customers that a former temporary employee improperly accessed customer data, including names and Social Security numbers. Although the firm has no indication of any misuse of the data, affected customers are being offered a year of free credit-monitoring services through ProtectMyID. You can read the...