Data Breach

• newConnecticut GOP lost registered voters after Capitol breach
  The data showed the most defections came from residents of Greenwich, Glastonbury, Milford, Fairfield and Stamford. “I don't think it's anything that ...
  - 4 hours ago 28 Feb 21, 9:45pm -
• newEssential tools for managing user identity and how they impact your bottom line
  Protecting sensitive data from malicious intrusion and taking steps to prevent data breaches is central to a sound security policy and compliance with ...
  - 4 hours ago 28 Feb 21, 9:33pm -
• newGrave data breach
  The recent data breach involving online lending app Cashalo has underlined the risks attendant to the country's transition to a digital economy.
  - 6 hours ago 28 Feb 21, 8:03pm -
• newWhen it Comes to Cybersecurity and Compliance, there is no Room for Error
  ... go out of business within six months after falling victim to a data breach or cyber ... But with financial security and future of your business on the line, ...
  - 6 hours ago 28 Feb 21, 7:52pm -
• newTime for corporate leaders to get serious about diversity efforts
  The classic cases of the Toyota acceleration and brake recalls in 2009; the Target data breach in 2013; the Volkswagen diesel scandal in 2015; and ...
  - 6 hours ago 28 Feb 21, 7:52pm -

Krebs On Security

• How $100M in Jobless Claims Went to Inmates

  

  The U.S. Labor Department's inspector general said this week that roughly $100 million in fraudulent unemployment insurance claims were paid in 2020 to criminals who are already in jail. That's a tiny share of the estimated tens of billions of dollar…
  - 3 days ago 25 Feb 21, 10:26pm -
• Checkout Skimmers Powered by Chip Cards

  

  Easily the most sophisticated skimming devices made for hacking terminals at retail self-checkout lanes are a new breed of PIN pad overlay combined with a flexible, paper-thin device that fits inside the terminal's chip reader slot. What enables thes…
  - 5 days ago 23 Feb 21, 3:53pm -

Naked Security

• S3 Ep21: Cryptomining clampdown, the 100-ton man, and ScamClub ads [Podcast]

  

  Latest episode - listen now!
  - 3 days ago 25 Feb 21, 7:35pm -
• Keybase secure messaging fixes photo-leaking bug – patch now!

  

  It's a bit like Snapchat all over again - but this bug was quickly fixed.
  - 5 days ago 23 Feb 21, 7:59pm -

CSO Online

• IT Salary Survey 2021: The results are in

  

  The latest Insider Pro and Computerworld Salary Survey reveals the current salaries for dozens of tech titles, the IT skills most in demand (and those not), the tech hiring expectations for the coming year, and what matters most to IT pros in their c…
  - 3 days ago 26 Feb 21, 11:00am -
• New US CISO appointments, February 2021

  

  The upper ranks of corporate security are seeing a high rate of change as companies try to adapt to the evolving threat landscape. Many companies are hiring a chief security officer (CSO) or chief information security officer (CISO) for the first tim…
  - 3 days ago 26 Feb 21, 10:00am -

FierceITSecurity

CIO Online

• Security job candidate background checks: What you can and can't do

  

  Enterprise cybersecurity begins with a trustworthy staff. Here's how to ensure that current and prospective team members aren't hiding any skeletons.(Insider Story)
  - 4 days ago 25 Feb 21, 10:00am -
• 5 ways to combat audit fatigue

  

  The growing number of audits for security and privacy regulatory compliance is stressing security personnel and draining resources from security operations. Here's how to better manage them.(Insider Story)
  - 6 days ago 23 Feb 21, 10:00am -

Homeland Security Today

• Las Vegas Man Charged with Mailing White Powder to the New York State Gaming Commission
  Carter is accused of using the U.S. mail to send envelopes containing white power and other substances to the New York State Gaming Commission, between April 15, 2019 and January 28, 2021.
  - 1 day ago 27 Feb 21, 5:39pm -
• Police Chief Warns of Jan. 6 Militia Groups Striving to ‘Blow Up the Capitol,’ Kill Members
  Pittman said Capitol Police "did face some operational challenges that we are addressing" including ICS breakdown.
  - 1 day ago 27 Feb 21, 5:02pm -

Graham Cluley Latest

• Npower scraps app, and urges customers to change passwords, after data breach
  UK energy firm Npower has scrapped its smartphone app following an attack by hackers that saw some users' accounts accessed and personal information stolen.
  - 3 days ago 26 Feb 21, 11:31am -
• Recorded Future’s free Cyber Daily newsletter brings trending threat insights straight to your inbox
  Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! Recorded Future provides deep, detailed insight into emerging threats by automatically collecting, analyzing, and or…
  - 3 days ago 25 Feb 21, 2:43pm -

Multi-State Information Sharing Center

• Multiple Vulnerabilities in Mozilla Firefox Could Allow for Remote Code Execution
  ...
  - -
• Multiple Vulnerabilities in Google Chrome Could Allow for Remote Code Execution
  ...
  - -

Network World

• Cisco issues 3 critical warnings around ACI, NS-OX security holes

  

  Cisco has issued three security advisories rated “critical” for some of its high-end software systems—two aimed at its Application Services Engine (ASE) implementation and one at the NX-OS operating system.The most concerning warning came for C…
  - 4 days ago 24 Feb 21, 10:46pm -
• IoT security tips and a cautionary tale

  

  You will have more connected devices than ever on your network in 2021, especially if you’re in healthcare, retail, or logistics, industries that are among the early adopters of the Internet of Things (IoT). You’ll have devices on your network ed…
  - 5 days ago 24 Feb 21, 11:00am -

Packet Storm Latest

• Package Control Arbitrary File Write
  Package Control suffers from an arbitrary file write vulnerability.
  - 2 days ago 26 Feb 21, 4:19pm -
• Microsoft DirectWrite fsg_ExecuteGlyph Buffer Overflow
  Microsoft DirectWrite suffers from a heap-based buffer overflow vulnerability in fsg_ExecuteGlyph while processing variable TTF fonts.
  - 2 days ago 26 Feb 21, 4:18pm -

NIST Latest in IT

• NISTs Network-of-Things Model Builds Foundation to Help Define the Internet of Things
  A new publication from the National Institute of Standards and Technology (NIST) provides a basic model aimed at helping researchers better understand the Internet of Things (IoT) and its security challenges.Credit: Natasha ...
  - 28 Jul 16, 12:10pm -
• Realizing the Potential of Quantum Information Science and Advancing High-Performance Computing
  The White House announced today a new report from the National Science and Technology Council on challenges, opportunities and the path forward in quantum information science, including a plan for high-performance computing.As described ...
  - 27 Jul 16, 2:38pm -

US- CERT Alerts

• AA21-055A: Exploitation of Accellion File Transfer Appliance
  Original release date: February 24, 2021 | Last revised: February 25, 2021SummaryThis joint advisory is the result of a collaborative effort by the cybersecurity authorities of Australia,[1] New Zealand,[2] Singapore,[3] the United Kingdom,[4] and th…
  - 4 days ago 24 Feb 21, 2:00pm -
• AA21-048A: AppleJeus: Analysis of North Korea’s Cryptocurrency Malware

  

  Original release date: February 17, 2021 | Last revised: February 18, 2021SummaryThis Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor ta…
  - 11 days ago 17 Feb 21, 4:00pm -

Cisco Security Alerts

• ISC BIND Subsequent RDATA Query Processing Remote Denial of Service Vulnerability
  HP has released an additional security bulletin and updated software to address the ISC BIND subsequent RDATA query processing remote denial of service vulnerability.
  - 1 Feb 16, 2:04pm -
• Network Time Protocol decodenetnum() Function Denial of Service Vulnerability
  IBM has released a security advisory and fixes to address the Network Time Protocol decodenetnum() function denial of service vulnerability.
  - 25 Jan 16, 1:43pm -

Cisco Event Responses

• Cisco Event Response: February 2021 Cisco FXOS and NX-OS Software Security Advisory Bundled Publication
  - 4 days ago 25 Feb 21, 12:00am -
• Cisco Event Response: SolarWinds Orion Platform Software Attack
  - 73 days ago 18 Dec 20, 3:05am -

HIPPA Omnibus Rule

• NSA Issues Guidance on Zero Trust Implementation

  

  Critical Networks Within National Security Systems Should Implement Zero TrustThe US National Security Agency has issued its zero trust guidance aimed at securing critical networks and sensitive data within key federal agencies. The NSA adds it is al…
  - -
• House SolarWinds Hearing Focuses on Updating Cyber Laws

  

  Lawmakers and Witnesses See Expanded Role for CISA Following AttackA pair of U.S. House committees held their first public hearings into the SolarWinds attack, with lawmakers and witnesses offering support for expanding federal cybersecurity laws to…
  - -

• Big Data Healthcare Project Raises Privacy Issues

  

  Truveta Initiative Involves Sharing De-Identified Data From 14 Provider OrganizationsTruveta, a new big data collaborative research effort involving 14 U.S. healthcare providers, will share de-identified data on millions of patients in an effort to i…
  - -
• DHS to Provide $25 Million More for Cybersecurity Grants

  

  CISA May Launch Other Grants as WellThe U.S. Department of Homeland Security will provide an additional $25 million in grants to state and local cybersecurity preparedness programs with a particular focus on combatting ransomware, Secretary Alejandro…
  - -
• HIPAA Omnibus Final Rule
  This package of regulations includes modifications to the HIPAA privacy, security, enforcement and breach notification rules, as required under the HITECH Act.
  - -
• HITECH Act Stage 2 EHR Incentive Program Software Certification Final Rule
  This rule establishes criteria for electronic health records software that qualifies for Stage 2 of the HITECH Act Electronic Health Record Incentive Program. The program, part of the economic stimulus package, is providing billions of dollars in Med…
  - -
• HITECH Act Stage 2 EHR Incentive Program Meaningful Use Final Rule
  This rule establishes criteria that hospitals and physicians must meet to qualify as "meaningful users" of electronic health records and receive further financial incentives in Stage 2 of the HITECH Act Electronic Health Record Incentive Program. The…
  - -
• FDA: Unique Device Identification System
  This proposed rule from the U.S. Food and Drug Administration would require unique identifiers on medical devices. While the rule aims to ease the collection and analysis of data about adverse health events and help detect counterfeit products, no pa…
  - -
• Live Webinar: Going Passwordless and Beyond - The Future of Identity Management
  - -
• Illumination Summit: Poker & Cybersecurity: A Game of Skill, Not Luck
  - -
• Live Webinar | The Path to Zero Trust with Least Privilege & Secure Remote Access
  - -
• Live Webinar | You Can’t Stop Human Attackers without Human Reporting and Analysis
  - -
• Analysis: Feds Crack Down on Cryptocurrency Scams
  The latest edition of the ISMG Security Report features an analysis of a federal crackdown on ICO cryptocurrency scams. Also featured: An update on the SonicWall hack investigation and the use of digital IDs to verify COVID-19 testing.
  - -
• Secure Patient Access to Health Records: The Challenges
  As the healthcare sector works to provide patients with secure access to their health information via smartphones and other devices, it must address critical identity and trust issues, says DirectTrust president and CEO Scott Stuewe.
  - -
• Mobile Health App and API Security: Common Flaws
  Broken object level authorization, or BOLA, vulnerabilities are among the most common and worrisome weaknesses contained in dozens of mobile health applications used by patients and clinicians, posing security and privacy risks to health information,…
  - -
• Analysis: Russia's Sandworm Hacking Campaign
  This edition of the ISMG Security Report features an analysis of the impact of a hacking campaign linked to Russia’s Sandworm that targeted companies using Centreon IT monitoring software. Also featured: a discussion of CIAM trends; a critique of B…
  - -
• Not 'Above the Law' - Feds Target ICO Cryptocurrency Scams
  $70 Million Allegedly Lost to Schemes Such as Bitcoiin2Gen Touted by Steven SeagalAuthorities have accused Serbia-based scammers of capitalizing on the "initial coin offering" bubble that began in 2017, bilking global cryptocurrency investors out of…
  - -
• SonicWall Was Hacked. Was It Also Extorted?
  Hacker Claims SonicWall Paid Ransom; SonicWall Stays SilentSonicWall was recently attacked via a zero-day flaw in one of its own products. Curiously, SonicWall hasn't said much about the extent and damage of the breach since its announcement. But the…
  - -
• Data Breaches: ShinyHunters' Dominance Continues
  Prolific Cybercrime Group Recently Tied to Breaches of E-Commerce and Dating SitesIn 2020, a cybercrime operation known as ShinyHunters breached nearly 50 organizations, security researchers say. And this year, it shows no signs of slowing down - it'…
  - -
• Bloomberg's Supermicro Follow-Up: Still No Chip
  New Story Is Scant on Proof That China Implanted Chips on MotherboardsBloomberg has stood firm on its controversial story from two years ago asserting that China implanted a tiny chip on motherboards made by Supermicro. But rather than proving its co…
  - -

Electronic Frontier Foundation | Deep Links

• Federal Court Agrees: Prosecutors Can’t Keep Forensic Evidence Secret from Defendants
  When the government tries to convict you of a crime, you have a right to challenge its evidence. This is a fundamental principle of due process, yet prosecutors and technology vendors have routinely argued against disclosing how forensic technology w…
  - 2 days ago 26 Feb 21, 10:44pm -
• From Creativity to Exclusivity: The German Government's Bad Deal for Article 17
  The implementation process of Article 17 (formerly Article 13) of the controversial Copyright Directive into national laws is in full swing, and it does not look good for users' rights and freedoms. Several EU states have failed to present balanced c…
  - 2 days ago 26 Feb 21, 6:25pm -

• The SAFE Tech Act Wouldn't Make the Internet Safer for Users
  Section 230, a key law protecting free speech online since its passage in 1996, has been the subject of numerous legislative assaults over the past few years. The attacks have come from all sides. One of the latest, the SAFE Tech Act, seeks to addres…
  - 3 days ago 26 Feb 21, 12:17am -
• Virginia's Weak Privacy Bill Is Just What Big Tech Wants
  Virginia’s legislature has passed a bill meant to protect consumer privacy—but the bill, called the Virginia Consumer Data Protection Act, really protects the interests of business far more than the interests of everyday consumers.Take ActionVi…
  - 3 days ago 25 Feb 21, 11:31pm -
• Interoperability Gains Support at House Hearing on Big Tech Competition
  With a new year and a new Congress, the House of Representatives’ subcommittee covering antitrust has turned its attention to “reviving competition.” On Thursday, the first in a series of hearings was held, focusing on how to help small busines…
  - 3 days ago 25 Feb 21, 10:26pm -
• EFF joins Dozens of Organizations Urging More Government Transparency
  EFF has joined 42 other organizations, including the ACLU, the Knight Institute, and the National Security Archive calling for the new Biden administration to fulfill its promise to “bring transparency and truth back to government.” Specificall…
  - 3 days ago 25 Feb 21, 6:21pm -
• Coded Resistance: Freedom Fighting and Communication

  

  It’s nearing the end of Black History Month, and that history is inherently tied to strife, resistance, and organizing related to government surveillance and oppression. Even though programs like COINTELPRO are more well-known now, the other side o…
  - 4 days ago 25 Feb 21, 12:55am -
• Student Surveillance Vendor Proctorio Files SLAPP Lawsuit to Silence A Critic
  During the pandemic, a dangerous business has prospered: invading students’ privacy with proctoring software and apps. In the last year, we’ve seen universities compel students to download apps that collect their face images, driver’s license d…
  - 5 days ago 23 Feb 21, 9:31pm -
• How Do Copyright Rules Affect Internet Creators? And What Can They Do About It?
  This event has ended. Click here to watch a recording of the event.If you make and share things online, professionally or for fun, you’ve been affected by copyright law. You may use a service that depends on the Digital Millennium Copyright Act…
  - 9 days ago 19 Feb 21, 7:10pm -
• Cops Using Music to Try to Stop Being Filmed Is Just the Tip of the Iceberg
  Someone tries to livestream their encounters with the police, only to find that the police started playing music. In the case of a February 5 meeting between an activist and the Beverly Hills Police Department, the song of choice was Sublime’s “S…
  - 9 days ago 19 Feb 21, 6:42pm -
• Racial and Immigrant Justice Groups Sue Government for Records of COVID-19 Data Surveillance
  Just Futures Law, MediaJustice, Mijente, Immigrant Defense Project and Electronic Frontier Foundation say public must know details of COVID-19 related data collection and sharingSan Francisco - The Electronic Frontier Foundation (EFF) is representing…
  - 9 days ago 19 Feb 21, 5:57pm -
• EFF to First Circuit: Schools Should Not Be Policing Students’ Weekend Snapchat Posts
  This blog post was co-written by EFF intern Haley Amster.EFF filed an amicus brief in the U.S. Court of Appeals for the First Circuit urging the court to hold that under the First Amendment public schools may not punish students for their off-camp…
  - 11 days ago 17 Feb 21, 10:36pm -
• Speak Up for Real Privacy in Virginia
  Last week, we raised the alarm about an empty privacy bill moving fast through the Virginia legislature. The bill, SB 1392, is supported by Microsoft and Amazon, and would set a dangerous standard for state privacy bills. Take ActionVirginia: Spea…
  - 12 days ago 16 Feb 21, 10:30pm -
• EFF to Patent Office: No New Design Patents
  Design is incredibly important to how people use and choose products, but design patents are not. They provide exclusive rights only to ornamental product features, which by definition are not useful or artistic; for those that are, utility patent an…
  - 12 days ago 16 Feb 21, 9:49pm -
• Turkey’s Free Speech Clampdown Hits Twitter, Clubhouse -- But Most of All, The Turkish People
  EFF has been tracking the Turkish government’s crackdown on tech platforms and its continuing efforts to force them to comply with draconian rules on content control and access to users’ data. As of now, the Turkish government has now managed to…
  - 12 days ago 16 Feb 21, 3:04pm -
• Indonesia’s Proposed Online Intermediary Regulation May be the Most Repressive Yet
  Indonesia is the latest government to propose a  legal framework to coerce social media platforms, apps, and other online service providers to accept local jurisdiction over their content and users’ data policies and practices. And in many ways, i…
  - 12 days ago 16 Feb 21, 3:00pm -
• New EFF Report Shows Cops Used Ring Cameras to Monitor Black Lives Matter Protests
  LAPD Wanted Unknown Amount of Video for Unknown Reasons – Raising First Amendment ConcernsSan Francisco - The Electronic Frontier Foundation (EFF) has obtained emails that show that the Los Angeles Police Department (LAPD) sent at least one request…
  - 13 days ago 16 Feb 21, 11:42am -
• LAPD Requested Ring Footage of Black Lives Matter Protests

  

  Along with other civil liberties organizations and activists, EFF has long warned that Amazon Ring and other networked home surveillance devices could be used to monitor political activity and protests. Now we have documented proof that our fears wer…
  - 13 days ago 16 Feb 21, 10:57am -
• Virginians Deserve Better Than This Empty Privacy Law
  A very weak consumer data privacy bill is sailing through the Virginia legislature with backing from Microsoft and Amazon, which have both testified in support of the bill. The bill, SB 1392 and its companion HB 2307, are based on a Washington privac…
  - 16 days ago 13 Feb 21, 1:03am -
• Victory! EFF Scores Another Win for the Public’s Right of Access against Patent Owner Fighting for Secrecy
  Patents generate profits for private companies, but their power comes from the government, and in this country, the government’s power comes from the people. That means the rights patents confer, regardless of who exercises them, are fundamentally…
  - 20 days ago 8 Feb 21, 9:09pm -
• EFF, Freedom of the Press Foundation and 22 Other Press Freedom Organizations Call on Attorney General to Drop Assange Prosecution
  The prosecution of Julian Assange for charges related to his publications of government documents on the whistleblower website Wikileaks poses a grave threat to press freedom, EFF, Freedom of the Press Foundation and other human rights organizations…
  - 20 days ago 8 Feb 21, 7:53pm -
• Some Answers to Questions About the State of Copyright in 2021
  In all the madness that made up the last month of 2020, a number of copyright bills and proposals popped up—some even became law before most people had any chance to review them. So now that the dust has settled a little and we have some better ide…
  - 23 days ago 5 Feb 21, 7:46pm -
• Online-Only Vaccine Distribution Will Leave Too Many Behind
  As the rollout of COVID-19 vaccines has begun across the U.S., there have been numerous reports of people having trouble getting it—not just because of its limited availability, but also because some counties and states have chosen to require compu…
  - 23 days ago 5 Feb 21, 6:33pm -
• Facebook's Latest Proposed Policy Change Exemplifies the Trouble With Moderating Speech at Scale
  Hateful speech presents one of the most difficult problems of content moderation. At a global scale, it’s practically impossible. That’s largely because few people agree about what hateful speech is—whether it is limited to derogations based…
  - 24 days ago 4 Feb 21, 9:07pm -
• Incoming Biden Administration Officials Should Change Course on Encryption
  To have privacy and security in the digital world, encryption is an indispensable ingredient. Without it, we’re all at risk of exploitation—by authoritarian governments, over-reaching police, nosy corporations, and online criminals.But for some…
  - 24 days ago 4 Feb 21, 6:41pm -
• Section 1201’s Harm to Security Research Shown by Mixed Decision in Corellium Case
  Under traditional copyright law, security research is a well-established fair use, meaning it does not infringe copyright. When it was passed in 1998, Section 1201 of the Digital Millennium Copyright Act upset the balance of copyright law. Since then…
  - 25 days ago 4 Feb 21, 7:41am -
• No Secret Evidence in Our Courts
  If you’re accused of a crime, you have a right to examine and challenge the evidence used against you. In an important victory, an appeals court in New Jersey agreed with EFF and the ACLU of NJ that a defendant is entitled to see the source code of…
  - 25 days ago 4 Feb 21, 2:31am -
• Despite Progress, Metadata Still Under "Second Class" Protection in Latam Legal Safeguards
  This post is the fourth in a series about our new State of Communications Privacy Laws report, a set of questions and answers about privacy and data protection in Argentina, Brazil, Chile, Colombia, Mexico, Paraguay, Panama, Peru, and Spain. The rese…
  - 26 days ago 3 Feb 21, 9:23am -
• When Law Enforcement Wants Your Private Communications, What Legal Safeguards Are in Place in Latin America and Spain?
  This post is the third in a series about our new State of Communications Privacy Laws report, a set of questions and answers about privacy and data protection in Argentina, Brazil, Chile, Colombia, Mexico, Paraguay, Panama, Peru, and Spain. The resea…
  - 26 days ago 3 Feb 21, 3:11am -
• San Francisco Takes Small Step to Establish Oversight Over Business Association Surveillance
  The San Francisco Board of Supervisors last week voted unanimously in favor of requiring all special business districts—such as the Union Square Business Improvement District (USBID)—to bring any new surveillance plans to the Board before adoptin…
  - 26 days ago 2 Feb 21, 11:14pm -
• Can Government Officials Block You on Social Media? A New Decision Makes the Law Murkier, But Users Still Have Substantial Rights
  This blog post was co-written by EFF Legal Fellow Houston Davidson.It’s now common practice for politicians and other government officials to make major policy announcements on Twitter and other social media forums. That’s continuing to raise i…
  - 26 days ago 2 Feb 21, 6:55pm -
• Amazon Ring’s End-to-End Encryption: What it Means
  Almost one year after EFF called on Amazon’s surveillance doorbell company Ring to encrypt footage end-to-end, it appears they are starting to make this necessary change. This call was a response to a number of problematic and potentially harmful i…
  - 26 days ago 2 Feb 21, 6:48pm -
• The Old Media and the New Must Work Together to Preserve Free Speech Values
  EFF Civil Liberties Director David Greene delivered the following as a keynote address on March 6, 2020, at the Media Law and Policy in the Digital Age: Global Challenges and Opportunities symposium hosted by Indiana University's Center for Internati…
  - 30 days ago 29 Jan 21, 7:21pm -
• Arizona High Court Misses Opportunity to Uphold Internet Users’ Online Privacy
  It’s an uncontroversial position that EFF has long fought for: Internet users expect their private online activities to stay that way. That’s why law enforcement should have to get a search warrant before getting records of people’s Internet ac…
  - 30 days ago 29 Jan 21, 6:44pm -
• It’s Not 230 You Hate, It’s Oligopolies
  As we continue to hear calls to repeal or change Section 230, it appears that many people have conflated a law that affects the tech giants (among many others) with Big Tech as a whole. Section 230 is not a gift to Big Tech, nor is repealing it a pan…
  - 32 days ago 27 Jan 21, 8:54pm -
• End Two Federal Programs that Fund Police Surveillance Tech
  The new administration can do two things immediately that would help stop some of the more nefarious ways that police departments get surveillance technology. It should further roll back the infamous 1033 program of the National Defense Authorization…
  - 34 days ago 25 Jan 21, 11:39pm -
• For Many, the Arab Spring Isn't Over

  

  Ten years ago today, Egyptians took to the streets to topple a dictator who had clung to power for nearly three decades. January 25th remains one of the most important dates of the Arab Spring, a series of massive, civilian-led protests and uprisings…
  - 34 days ago 25 Jan 21, 8:16pm -
• Twitter and Interoperability: Some Thoughts From the Peanut Gallery
  Late in 2019, Twitter CEO Jack Dorsey floated "Project Blue Sky," a plan for an interoperable, federated, standardized Twitter that would let users (or toolsmiths who work on behalf of users) gain more control over their participation in the Twitter…
  - 34 days ago 25 Jan 21, 8:04pm -
• EFF’s Top Recommendations for the Biden Administration
  At noon on January 20, 2021, Joseph R. Biden, Jr. was sworn in as the 46th President of the United States, and he and his staff took over the business of running the country.The tradition of a peaceful transfer of power is as old as the United State…
  - 38 days ago 22 Jan 21, 12:16am -
• Political Satire Is Protected Speech – Even If You Don’t Get the Joke
  This blog post was co-written by EFF Legal Fellow Houston Davidson.Should an obviously fake Facebook post—one made as political satire—end with a lawsuit and a bill to pay for a police response to the post? Of course not, and that’s why EFF fi…
  - 39 days ago 20 Jan 21, 11:34pm -
• Blyncsy’s Patent On Contact Tracing Isn’t A Medical Breakthrough, It’s A Patent Breakdown
  Stupid Patent of the MonthContact tracing is critical for limiting the spread of a contagion like COVID-19, but that doesn’t mean it’s inventive to compare people’s locations using their smartphones. Rather, it’s all the more important to pr…
  - 39 days ago 20 Jan 21, 9:21pm -
• Oakland’s Progressive Fight to Protect Residents from Government Surveillance
  The City of Oakland, California, has once again raised the bar on community control of police surveillance. Last week, Oakland's City Council voted unanimously to strengthen the city's already groundbreaking Surveillance and Community Safety Ordinanc…
  - 39 days ago 20 Jan 21, 7:26pm -
• Why EFF Doesn’t Support Bans On Private Use of Face Recognition
  Government and private use of face recognition technology each present a wealth of concerns. Privacy, safety, and amplification of carceral bias are just some of the reasons why we must ban government use.But what about private use? It also can exa…
  - 39 days ago 20 Jan 21, 4:29pm -
• New OCC Rule Is a Win in the Fight Against Financial Censorship
  On Thursday, the Office of the Comptroller of the Currency finalized its Fair Access to Financial Services rule, which will prevent banks from refusing to serve entire classes of customers that they find politically or morally unsavory. The rule is a…
  - 40 days ago 20 Jan 21, 2:00am -
• So-called “Consent Searches” Harm Our Digital Rights
  Imagine this scenario: You’re driving home. Police pull you over, allegedly for a traffic violation. After you provide your license and registration, the officer catches you off guard by asking: “Since you’ve got nothing to hide, you don’t mi…
  - 45 days ago 15 Jan 21, 12:56am -
• It’s Business As Usual At WhatsApp
  WhatsApp users have recently started seeing a new pop-up screen requiring them to agree to its new terms and privacy policy in order to keep using the app. At first users were required to agree by February 8th, but after widespread controversy WhatsA…
  - 45 days ago 14 Jan 21, 11:44pm -
• EFF Welcomes Fourth Amendment Defender Jumana Musa to Advisory Board
  Our Fourth Amendment rights are under attack in the digital age, and EFF is proud to announce that human rights attorney and racial justice activist Jumana Musa has joined our advisory board, bringing great expertise to our fight defending users’ p…
  - 47 days ago 12 Jan 21, 9:55pm -
• Face Surveillance and the Capitol Attack
  After last week’s violent attack on the Capitol, law enforcement is working overtime to identify the perpetrators. This is critical to accountability for the attempted insurrection. Law enforcement has many, many tools at their disposal to do this,…
  - 47 days ago 12 Jan 21, 8:11pm -
• Beyond Platforms: Private Censorship, Parler, and the Stack
  Last week, following riots that saw supporters of President Trump breach and sack parts of the Capitol building, Facebook and Twitter made the decision to give the president the boot. That was notable enough, given that both companies had previously…
  - 48 days ago 12 Jan 21, 12:00am -
• The FCC and States Must Ban Digital Redlining

  

  The rollout of fiber broadband will never make it to many communities in the US. That’s because large, national ISPs are currently laying fiber primarily focused on high-income users to the detriment of the rest of their users. The absence of regul…
  - 48 days ago 11 Jan 21, 11:22pm -

• Cloud Security Alliance News
  Click for More Info on Cloud Security Alliance News