Accurate, Focused Research on Law, Technology and Knowledge Discovery Since 2002

Category Archives: Cybercrime

Equifax is one of many companies that collect information about you

Via NBR/CNBC: “There are literally hundreds of smaller consumer-reporting companies [33-page PDF] operating in the U.S. and the smaller ones are collecting information you might not expect. The Consumer Financial Protection Bureau maintains a self-reported list of the companies. Consider Milliman IntelliScript, for example. The company collects information on the prescription drugs you buy. If… Continue Reading

Under EU General Data Protection Regulation large fines result from failure to protect consumer data

eSecurity Planet: “The massive Equifax breach that recently affected 143 million consumers would have led to hugely significant fines if the European Union’s General Data Protection Regulation (GDPR), which takes effect in May 2018, had already been in place. Under the new rules, organizations that fail to protect sensitive data can be fined up to… Continue Reading

FTC alerts consumers about post Equifax scams

Ring, ring. “This is Equifax calling to verify your account information.” Stop. Don’t tell them anything. They’re not from Equifax. It’s a scam. Equifax will not call you out of the blue. That’s just one scam you might see after Equifax’s recent data breach. Other calls might try to trick you into giving your personal… Continue Reading

CRS – Justice Department’s Role in Cyber Incident Response

Via EveryCRSReport.com: Justice Department’s Role in Cyber Incident Response August 23, 2017 R44926. “Criminals and other malicious actors increasingly rely on the Internet and rapidly evolving technology to further their operations. In cyberspace, criminals can compromise financial assets, hacktivists can flood websites with traffic—effectively shutting them down, and spies can steal intellectual property and government… Continue Reading

Equifax hack may have breached personal data on half the US population w/updates

CNET: “…According to Equifax, which released a statement today, the company’s database was breached through a vulnerability on its website, exposing the personal information of an estimated 143 million people, including some in the UK and Canada….Equifax has set up its own program to help people find out if they were one of the millions… Continue Reading

2017 U.S. State and Federal Government Cybersecurity Research Report

“In August 2017, SecurityScorecard analyzed and scored the current security posture of 552 small, medium and large U.S. government organizations with more than 100 public-facing IP addresses, to determine the state of government cybersecurity programs today. In this report, 2017 U.S. State and Federal Government Cybersecurity Research Report, you’ll learn:  Top performing U.S. State and… Continue Reading

CRS Report – Russia: Background and U.S.

Russia: Background and U.S. Policy, Cory Welt, Analyst in European Affairs, August 21, 2017. “Over the last five years, Congress and the executive branch have closely monitored and responded to new developments in Russian policy. These developments include the following: increasingly authoritarian governance since Vladimir Putin’s return to the presidential post in 2012; Russia’s 2014… Continue Reading

President’s National Infrastructure Advisory Council Report – Securing Cyber Assets

President’s National Infrastructure Advisory Council (NIAC) Report – Securing Cyber Assets – Addressing Urgent Cyber Threats to Critical Infrastructure, August 2017. “Executive Summary: Imperative Takeaways – Our review of hundreds of studies and interviews with 38 cyber and industry experts revealed an echo chamber, loudly reverberating what needs to be done to secure critical U.S.… Continue Reading

Those supposed;y secure passwords you routinely create are not secure at all

WSJ.com – “…Back in 2003, as a midlevel manager at the National Institute of Standards and Technology, Bill Burr was the author of “NIST Special Publication 800-63. Appendix A.” [this is the 2017 version] The 8-page primer advised people to protect their accounts by inventing awkward new words rife with obscure characters, capital letters and… Continue Reading

New Tool for Looking at Federal Cybersecurity Spending

“With malicious hacking and other cyber threats on the rise, Taxpayers for Common Sense recently turned our attention to how much the federal government spends to keep us safe from cyber threats and where it spends that money.  Our analysts spent two years reviewing hundreds of thousands of pages of federal budget documents in an attempt to answer those questions. When… Continue Reading

Your Social Security Number is a major target of ID theft – government has yet to implement an alternative

Social Security Numbers: OMB Actions Needed to Strengthen Federal Efforts to Limit Identity Theft Risks by Reducing Collection, Use, and Display, GAO-17-553: Published: Jul 25, 2017. Publicly Released: Jul 27, 2017. “Governmentwide initiatives aimed at eliminating the unnecessary collection, use, and display of Social Security Numbers (SSN) have been underway in response to recommendations that… Continue Reading

State Department Telecommunications: Information on Vendors and Cyber-Threat Nations

State Department Telecommunications: Information on Vendors and Cyber-Threat Nations, GAO-17-688R: Published: Jul 27, 2017. Publicly Released: Jul 27, 2017. “Federal telecommunications systems can include a variety of equipment, products, and services which may be produced by foreign manufacturers—and may potentially be vulnerable to manipulation by a cyber-threat nation like China, Iran, North Korea, or Russia.… Continue Reading