Prosecutors Admit They Don’t Understand What Weev Did, But They’re Sure It’s Like Blowing Up A Nuclear Plant
- March 20, 2014
Perhaps one of the stupidest things a prosecutor trying to defend criminal prosecution under CFAA can say is to admit that they have no understanding of what the alleged “hacker” did that made his conduct a hack or violation of CFAA. But that’s pretty much what happened in a Philadelphia courtroom yesterday during Weev’s...
Courts Reining In What it Means to be a “Hacker” Under the Computer Fraud and Abuse Act (CFAA)
- March 13, 2014
Ralph C. Losey of Jackson Lewis writes: The Computer Fraud and Abuse Act (“CFAA”) is an anti-hacker statute that prohibits unauthorized access, or the exceeding of authorized access, of computers connected to interstate commerce. 18 U.S.C. § 1030. Violators are subject to both criminal and civil liability. Employers have long taken advantage of the CFAA’s civil remedies to “sue former...
Did the CIA Violate the Computer Fraud and Abuse Act by Accessing Intelligence Committee Computers?
- March 13, 2014
Orin Kerr writes: Senator Feinstein recently claimed that the CIA may have violated the federal computer hacking statute, the Computer Fraud and Abuse Act, by searching computers used by the Intelligence Committee to conduct CIA oversight. Based on the facts we know so far, I’m skeptical of the claim that the CIA violated the statute. This...
C’mon, FTC, when will you do something? (update 2)
- February 18, 2014
It has now been about two years since I filed a complaint with the FTC to alert them to all the data security breaches involving Experian’s credit report database. And while I continue to wait to see the FTC take action against Experian over their numerous breaches involving misuse of clients’ login credentials,...
Aflac discloses insider breach involving customers’ Social Security numbers (updated)
- January 31, 2014
The Continental American Insurance Company (Aflac) is notifying some customers that a former temporary employee improperly accessed customer data, including names and Social Security numbers. Although the firm has no indication of any misuse of the data, affected customers are being offered a year of free credit-monitoring services through ProtectMyID. You can read the...