Data Breach

• newWaikato DHB failed OIA requirements over cyber security breach – Ombudsman | Stuff.co.nz
  “Unfortunately, predicting what cyber criminals will do with the data is problematic and preventing further disclosure is an ongoing and ...
  - 49 mins ago 24 Oct 21, 12:21am -
• newDEF CON 29 Aerospace Village - Ronald Brobert's 'Fuzzing NASA Core Flight System Software'
  Most Read on the Boulevard. Government Gunning for Cryptocurrency—Uses Ransomware as Pretext · Sontiq BreachIQ Data Breach Report: Week of Oct. 18.
  - 1 hour ago 23 Oct 21, 11:59pm -
• newReport: Over 3 Million Email Addresses of CoinMarketCap Users Leaked - CryptoPotato
  Coinmarketcap Confirms Data Leak. The report further revealed that the passwords to these leaked email addresses were not compromised in the hack.
  - 3 hours ago 23 Oct 21, 10:27pm -
• newRussian Drivers' Personal Data Available Online for Less than the Price of an iPhone - autoevolution
  Regardless of the method used to obtain the database, the data collection happened for nearly 13 years, so if there's indeed a breach that someone ...
  - 3 hours ago 23 Oct 21, 9:57pm -
• newNew Bill Would Secure Government Contractors' Use of AI - BankInfoSecurity
  RT @DataBreachToday: After repeat #ransomware warnings, are businesses stepping up? Also: What made the Thingiverse data breach, and airlin… 16 ...
  - 5 hours ago 23 Oct 21, 8:25pm -

Krebs On Security

• Missouri Governor Vows to Prosecute St. Louis Post-Dispatch for Reporting Security Vulnerability

  

  On Wednesday, the St. Louis Post-Dispatch ran a story about how its staff discovered and reported a security vulnerability in a Missouri state education website that exposed the Social Security numbers of 100,000 elementary and secondary teachers. In…
  - 9 days ago 14 Oct 21, 5:37pm -
• How Coinbase Phishers Steal One-Time Passwords

  

  A recent phishing campaign targeting Coinbase users shows thieves are getting cleverer about phishing one-time passwords (OTPs) needed to complete the login process. It also shows that phishers are attempting to sign up for new Coinbase accounts by t…
  - 10 days ago 13 Oct 21, 2:27pm -

Naked Security

• REvil ransomware gang allegedly forced offline by law enforcement counterattacks

  

  One down. Lots more to go. Here's what to do...
  - 1 day ago 22 Oct 21, 2:03pm -
• S3 Ep55: Live malware, global encryption, dating scams, and secret emanations [Podcasts]

  

  Latest episode - listen now! (And sign up for our forthcoming Live Malware Demo at the same time.)
  - 2 days ago 21 Oct 21, 6:13pm -

CSO Online

• BrandPost: CIS CSAT Pro v1.7: CIS Controls v8 Assessment and More

  

  The CIS Controls Self Assessment Tool (CIS CSAT) allows organizations to perform assessments on their implementation of the CIS Critical Security Controls (CIS Controls). You can track progress over time and identify areas for improvement. CIS CSA…
  - 1 day ago 22 Oct 21, 3:25pm -
• Security Recruiter Directory

  

  Looking for a qualified candidate or new job? CSO's security recruiter directory is your one-stop shop.The recruiters listed below can help you find your next chief information security officer (CISO) or VP of security and fill hard-to-hire positi…
  - 2 days ago 22 Oct 21, 9:00am -

FierceITSecurity

CIO Online

• UiPath partners with CrowdStrike to secure SaaS workflow automation

  

  UiPath is expanding its robotic process automation (RPA) platform with new features it hopes will put it on CIOs’ radar, including better security, a cloud-native delivery model, and the ability to automate through APIs as well as the UI.The sec…
  - 13 days ago 11 Oct 21, 9:00am -
• What is AIOps? Injecting intelligence into IT operations

  

  Cloud platforms, managed service providers, and organizations undertaking digital transformations are beginning to reap the benefits of an emerging IT trend: the use of AI-powered IT operations technology to monitor and manage the IT portfolio aut…
  - 52 days ago 2 Sep 21, 9:00am -

Homeland Security Today

• newForeign Language Translation for the IC Gets a Machine Learning Boost From IARPA
  Some of the hottest, trending languages are Kazakh, Swahili and Pashto. Well, at least for the U.S. Intelligence Community.The post Foreign Language Translation for the IC Gets a Machine Learning Boost From IARPA appeared first on Hstoday.
  - 12 hours ago 23 Oct 21, 1:09pm -
• newOver 10,000 Attempts to Smuggle Contraband Into U.K. Prisons Thwarted by X-Ray Body Scanners
  X-ray body scanners have stopped 10,000 attempts to smuggle contraband including drugs, weapons and phones into prisons in the U.K. in just over a year.The post Over 10,000 Attempts to Smuggle Contraband Into U.K. Prisons Thwarted by X-Ray Body Scan…
  - 14 hours ago 23 Oct 21, 11:01am -

Graham Cluley Latest

• Donald Trump’s Truth Social account posts a picture of a pig defecating
  There's a lesson here for anyone else building a website. Be sure to keep everything safely secured under lock-and-key until you are ready to properly launch.
  - 1 day ago 22 Oct 21, 3:47pm -
• Recorded Future Identity Intelligence prevents identity fraud and disrupts attackers – learn more now
  Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! Strong identity authentication is more important than ever as organizations face an unprecedented level of attacks t…
  - 1 day ago 22 Oct 21, 2:00pm -

Multi-State Information Sharing Center

• Multiple Vulnerabilities in Mozilla Firefox Could Allow for Remote Code Execution
  ...
  - -
• Multiple Vulnerabilities in Google Chrome Could Allow for Remote Code Execution
  ...
  - -

Network World

• Gartner: Top strategic predictions for 2022 and beyond

  

  Expect the unexpected – that’s just one of the core premises IT leaders need to embrace in the next few years, according to Gartner's top strategic predictions for 2022 and beyond.IT leaders need to be able to move in multiple strategic direc…
  - 2 days ago 21 Oct 21, 6:34pm -
• Gartner says IT spending to top $4 trillion in 2022

  

  With IT budgets growing at the fastest rate in 10 years, worldwide IT spending is projected to total $4.5 trillion in 2022, an increase of 5.5% from 2021, according to the latest Gartner forecasts.All IT spending segments—from data-center system…
  - 3 days ago 20 Oct 21, 10:08pm -

Packet Storm Latest

• Faraday 3.18.0
  Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security a…
  - 1 day ago 22 Oct 21, 3:48pm -
• Ubuntu Security Notice USN-5121-1
  Ubuntu Security Notice 5121-1 - Andre Protas, Richard Cloke, and Andy Nuttall discovered that Mailman did not properly associate cross-site request forgery tokens to specific accounts. A remote attacker could use this to perform a CSRF attack to gain…
  - 1 day ago 22 Oct 21, 3:47pm -

NIST Latest in IT

• NISTs Network-of-Things Model Builds Foundation to Help Define the Internet of Things
  A new publication from the National Institute of Standards and Technology (NIST) provides a basic model aimed at helping researchers better understand the Internet of Things (IoT) and its security challenges.Credit: Natasha ...
  - 28 Jul 16, 12:10pm -
• Realizing the Potential of Quantum Information Science and Advancing High-Performance Computing
  The White House announced today a new report from the National Science and Technology Council on challenges, opportunities and the path forward in quantum information science, including a plan for high-performance computing.As described ...
  - 27 Jul 16, 2:38pm -

US- CERT Alerts

• AA21-291A: BlackMatter Ransomware
  Original release date: October 18, 2021SummaryActions You Can Take Now to Protect Against BlackMatter Ransomware• Implement and enforce backup and restoration policies and procedures.• Use strong, unique passwords.• Use multi-factor authenti…
  - 5 days ago 18 Oct 21, 5:00pm -
• AA21-287A: Ongoing Cyber Threats to U.S. Water and Wastewater Systems
  Original release date: October 14, 2021SummaryImmediate Actions WWS Facilities Can Take Now to Protect Against Malicious Cyber Activity• Do not click on suspicious links.• If you use RDP, secure and monitor it.• Use strong passwords.• Use…
  - 9 days ago 14 Oct 21, 6:00pm -

Cisco Security Alerts

• ISC BIND Subsequent RDATA Query Processing Remote Denial of Service Vulnerability
  HP has released an additional security bulletin and updated software to address the ISC BIND subsequent RDATA query processing remote denial of service vulnerability.
  - 1 Feb 16, 2:04pm -
• Network Time Protocol decodenetnum() Function Denial of Service Vulnerability
  IBM has released a security advisory and fixes to address the Network Time Protocol decodenetnum() function denial of service vulnerability.
  - 25 Jan 16, 1:43pm -

Cisco Event Responses

• Cisco Event Response: September 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication
  - 31 days ago 22 Sep 21, 11:00pm -
• Cisco Event Response: September 2021 Semiannual Cisco IOS XR Software Security Advisory Bundled Publication
  - 45 days ago 8 Sep 21, 4:00pm -

HIPPA Omnibus Rule

• New Bill Would Secure Government Contractors' Use of AI

  

  Co-Sponsor of Bipartisan Proposal Calls Bill 'Common-Sense Legislation'Two Senate leaders on Thursday introduced legislation that would form a working group charged with monitoring the security of AI data obtained by federal contractors. This body wo…
  - -
• FIN7 Sets Up Fake Pentesting Company Site to Recruit Talent

  

  The Cybercrime Group Posted Job Advertisements on Russian Job PortalsThreat group FIN7 has set up a website posing as a security company to recruit talent, according to fraud intelligence company Gemini Advisory. The aim of the scam was to lure secur…
  - -

• Malicious Packages Disguised as JavaScript Libraries Found

  

  Sonatype: Cryptominers Launched in Windows, macOS, Linux DevicesResearchers at open-source software firm Sonatype have uncovered multiple malicious packages that disguise themselves as legitimate JavaScript libraries on npm registries to launch crypt…
  - -
• Forrester Report: Key Questions to Ask XDR Vendors

  

  Forrester Analyst Allie Mellen on Navigating the XDR MarketThe current state of the XDR market is a "chaotic jumble of different features," according to Forrester analyst Allie Mellon, who has authored a new study to identify the top XDR providers in…
  - -
• HIPAA Omnibus Final Rule
  This package of regulations includes modifications to the HIPAA privacy, security, enforcement and breach notification rules, as required under the HITECH Act.
  - -
• HITECH Act Stage 2 EHR Incentive Program Software Certification Final Rule
  This rule establishes criteria for electronic health records software that qualifies for Stage 2 of the HITECH Act Electronic Health Record Incentive Program. The program, part of the economic stimulus package, is providing billions of dollars in Med…
  - -
• HITECH Act Stage 2 EHR Incentive Program Meaningful Use Final Rule
  This rule establishes criteria that hospitals and physicians must meet to qualify as "meaningful users" of electronic health records and receive further financial incentives in Stage 2 of the HITECH Act Electronic Health Record Incentive Program. The…
  - -
• FDA: Unique Device Identification System
  This proposed rule from the U.S. Food and Drug Administration would require unique identifiers on medical devices. While the rule aims to ease the collection and analysis of data about adverse health events and help detect counterfeit products, no pa…
  - -
• MSP Growth Lab Summit: Sell, Scale, and Seize the Cybersecurity Opportunity
  - -
• Panel | 2022 IAM/IGA Predictions and Trends: Looking Backwards and Seeing Forward
  - -
• Live Ransomware Masterclass: Take Your Ransomware Defense to the NIST Level
  - -
• Live Webinar | Why Forgetting your Password is Safer than Having One – Best Practices for Banks Adopting Password-less Authentication
  - -
• Pandemic Plus Ransomware Is 'Perfect Storm' for Healthcare
  Disturbing findings from a recent study examining the impact of ransomware attacks on patient care must serve as a wake-up call for the healthcare sector to intensify its preparedness to deal with such incidents, say Larry Ponemon of research firm Po…
  - -
• Ransomware Warning: Are Businesses Stepping Up?
  The latest edition of the ISMG Security Report features an analysis of whether businesses are stepping up their ransomware defenses in response to several warnings released by the U.S. and U.K. governments highlighting the threat posed to infrastruct…
  - -
• Teenage Cybercrime: Giving Young Hackers A Second Chance
  The latest edition of the ISMG Security Report features an analysis of attempts made by European law enforcement to encourage young cybercriminals to channel their skills in more ethical ways. Also featured: Fraud detection and response; inspiring be…
  - -
• To Repel Supply Chain Attacks, Better Incentives Needed
  The breach of text message routing giant Syniverse revealed yet another supply chain attack involving a key supplier, exacerbated by outdated communications protocols desperately in need of a security revamp and better incentives for improvement, say…
  - -
• Ransomware Soap Opera Continues With REvil’s Latest Outage
  Who Hijacked Infrastructure of Ransomware Public Enemy No. 1 REvil, aka Sodinokibi?Is there any bigger cybercrime soap opera than the life and times of ransomware operators? Take the REvil, aka Sodinokibi, ransomware-as-a-service operation, which fee…
  - -
• BlackMatter Ransomware Defense: Just-In-Time Admin Access
  Thoroughly Restrict Admin-Level Access to Systems, US Government Advisory WarnsHow many ways do U.S. businesses need to be told to lock down their systems to safeguard themselves from ransomware? That's the focus of a new, joint cybersecurity advisor…
  - -
• Principles of Sustainable Cybersecurity
  Deepayan Chanda Discusses Reliability, Accuracy, Architecture and ResiliencyDeepayan Chanda discusses the four principles of cybersecurity - reliability, accuracy, architecture and resiliency - that he believes cover most of the aspects of how CISOs…
  - -
• The Troublemaker CISO: Getting Hacked
  The Rant of the Day From Ian Keller, EricssonRant of the day: Are we getting hacked because we now work remotely in the new normal? No, we're being hacked because we're not managing our risks and being lazy - and because the CISO is not being heard.
  - -

Electronic Frontier Foundation | Deep Links

• John Gilmore Leaves the EFF Board, Becomes Board Member Emeritus
  Since he helped found EFF 31 years ago, John Gilmore has provided leadership and guidance on many of the most important digital rights issues we advocate for today. But in recent years, we have not seen eye-to-eye on how to best communicate and work…
  - 1 day ago 22 Oct 21, 7:00pm -
• Police Can’t Demand You Reveal Your Phone Passcode and Then Tell a Jury You Refused
  The Utah Supreme Court is the latest stop in EFF’s roving campaign to establish your Fifth Amendment right to refuse to provide your password to law enforcement. Yesterday, along with the ACLU, we filed an amicus brief in State v. Valdez, arguing t…
  - 2 days ago 21 Oct 21, 10:29pm -

• Victory! Oakland’s City Council Unanimously Approves Communications Choice Ordinance
  Oakland residents shared the stories of their personal experience; a broad coalition of advocates, civil society organizations, and local internet service providers (ISPs) lifted their voices; and now the Oakland City Council has unanimously passed O…
  - 2 days ago 21 Oct 21, 6:23pm -
• Why Is It So Hard to Figure Out What to Do When You Lose Your Account?
  We get a lot of requests for help here at EFF, with our tireless intake coordinator being the first point of contact for many. All too often, however, the help needed isn’t legal or technical. Instead, users just need an answer to a simple question…
  - 2 days ago 21 Oct 21, 6:03pm -
• Crowd-Sourced Suspicion Apps Are Out of Control
  Technology rarely invents new societal problems. Instead, it digitizes them, supersizes them, and allows them to balloon and duplicate at the speed of light. That’s exactly the problem we’ve seen with location-based, crowd-sourced “public safet…
  - 2 days ago 21 Oct 21, 5:51pm -
• On Global Encryption Day, Let's Stand Up for Privacy and Security
  At EFF, we talk a lot about strong encryption. It’s critical for our privacy and security online. That’s why we litigate in courts to protect the right to encrypt, build technologies to encrypt the web, and it’s why we lead the fight against an…
  - 3 days ago 21 Oct 21, 12:52pm -
• New Global Alliance Calls on European Parliament to Make the Digital Services Act a Model Set of Internet Regulations Protecting Human Rights and Freedom of Expression
  The European Parliament’s regulations and policy-making decisions on technology and the internet have unique influence across the globe. With great influence comes great responsibility. We believe the European Parliament (EP) has a duty to set an e…
  - 3 days ago 21 Oct 21, 12:00pm -
• EFF to Federal Court: Block Unconstitutional Texas Social Media Law
  Users are understandably frustrated and perplexed by many big tech companies’ content moderation practices. Facebook, Twitter, and other social media platforms make many questionable, confounding, and often downright incorrect decisions affecting s…
  - 3 days ago 21 Oct 21, 6:51am -
• From Bangkok to Burlington — The Public Interest Social Internet
  This blog post is part of a series, looking at the public interest internet—the parts of the internet that don’t garner the headlines of Facebook or Google, but quietly provide public goods and useful services without requiring the scale or the b…
  - 3 days ago 20 Oct 21, 5:03pm -
• EFF Files New Lawsuit Against California Sheriff for Sharing ALPR Data with ICE and CBP
  The Marin County Sheriff illegally shares the sensitive location information of millions of drivers with out-of-state and federal agencies, including Immigration and Customs Enforcement (ICE) and Customs and Border Protection (CBP). The Sheriff uses…
  - 4 days ago 19 Oct 21, 5:11pm -
• After Years of Delays and Alarmingly Flimsy Evidence, Security Expert Ola Bini’s Trial Set for This Week

  

  Update, October 19: Ola Bini's trial has been suspended by request of the Corporación Nacional de Telecomunicaciones (CNT) whose representative was unable to attend the hearing. No new date has yet been set. For over two years EFF has been followin…
  - 4 days ago 19 Oct 21, 4:57pm -
• EFF Joins Press Freedom Groups In Asking U.S. To Drop Assange Extradition Efforts
  EFF has joined a coalition of press freedom, civil liberties, and human rights groups that sent a letter to Attorney General Merrick Garland urging the Department of Justice to drop its efforts to extradite and prosecute Julian Assange.The renewed…
  - 5 days ago 18 Oct 21, 5:59pm -
• Flight of the Concord Drones
  This blog post was written by Kenny Gutierrez, EFF Bridge Fellow.The City Council of Concord, California, is tone deaf to community concerns regarding a proposed police Unmanned Aerial Surveillance (UAS) system – commonly referred to as drones. In…
  - 8 days ago 15 Oct 21, 5:03pm -
• California Activists Sue Marin County Sheriff for Illegally Sharing Drivers’ License Plate Data With ICE, CBP and Other Out-of-State Agencies
  - 9 days ago 14 Oct 21, 5:09pm -
• Be The Face of Change and Pledge for EFF Through CFC Today!

  

  The pledge period for the Combined Federal Campaign (CFC) is underway and EFF needs your help! Last year, U.S. government employees raised over $38,000 for EFF through the CFC, helping us fight for privacy, free speech, and security on the internet s…
  - 9 days ago 14 Oct 21, 4:51pm -
• Come Back with a Warrant: Congress Should Pass the Protecting Data at the Border Act
  We do not lose our constitutional rights at the border. The U.S. Department of Homeland Security (DHS), however, believes you do. In fiscal year 2019 alone (before the pandemic curbed international travel), U.S. Customs and Border Protection (CBP) of…
  - 10 days ago 13 Oct 21, 8:54pm -
• Meet the Alliance for Encryption in Latin America and the Caribbean

  

  Today EFF and other internet and digital rights organizations are announcing the Alliance for Encryption in Latin America and the Caribbean (AC-LAC). The Alliance is a platform for collective capacity building and information, based on the principle…
  - 10 days ago 13 Oct 21, 2:02pm -
• Records Shed New Light on Trump White House Officials’ Efforts to Punish Social Media
  Within a day of Twitter fact-checking President Donald Trump’s May 2020 false tweets about mail-in voting, federal officials began trying to find out how much government agencies spent to advertise on social media. This inquiry was likely part of a…
  - 11 days ago 12 Oct 21, 9:59pm -
• Why Is PayPal Denying Service to Palestinians?
  For many years, Palestinian rights defenders have championed the cause of Palestinians in the occupied territories, who are denied access to PayPal, while Israeli settlers have full access to PayPal products. A recent campaign, led by Palestinian dig…
  - 11 days ago 12 Oct 21, 8:39pm -
• EFF to Tenth Circuit: First Amendment Protects Public School Students’ Off-Campus Social Media Speech
  EFF filed an amicus brief in the U.S. Court of Appeals for the Tenth Circuit in support of public school students’ right to speak while off school grounds or after school hours, including on social media. We argued that Supreme Court precedent make…
  - 11 days ago 12 Oct 21, 7:35pm -
• Coalition Against Stalkerware Named J.D. Falk Award Winner for Raising Awareness About and Helping Victims of Malicious Spying Apps
  Award Honors Falk, Antispam Pioneer and a M3AAWG Founding MemberSan Francisco—The Electronic Frontier Foundation (EFF) is thrilled to announce that the Coalition Against Stalkerware, co-founded by Cybersecurity Director Eva Galperin and leading ant…
  - 11 days ago 12 Oct 21, 2:44pm -
• What the Facebook Whistleblower Tells Us About Big Tech
  Through her leaks and Congressional testimony, Frances Haugen, the “Facebook Whistleblower,” revealed a lot about Facebook's operation. Many of these revelations are things we've long suspected but now have proof of: Facebook focuses on growth—…
  - 15 days ago 8 Oct 21, 9:58pm -
• Virtual Workshop Tuesday: EFF’s Mitch Stoltz Will Discuss Free Software Movement On Panel Examining Ethics and Open Source Software Licensing
  Workshop Looks at Feasibility of Embedding Human Rights Principles Into LicensesSan Francisco—On Tuesday, October 12, at 12 pm PT, EFF Senior Staff Attorney Mitch Stoltz will speak at an online workshop convened by the UCLA Institute for Technology…
  - 15 days ago 8 Oct 21, 4:54pm -
• Livestream Panel Discussion Tuesday: EFF, Encryption Users Will Discuss Consequences of Apple’s Planned Scanning Tool, Suggest Changes
  Photo Scanning Breaks Privacy and Security Promises to UsersSan Francisco—On Tuesday, October 12, at 8 am PT, EFF Senior Staff Technologist Erica Portnoy and representatives from more than 10 human, digital, and children’s rights organizations wi…
  - 16 days ago 8 Oct 21, 8:09am -
• Face Recognition Technology: Commonly Used Terms
  As face recognition technology evolves at a dizzying speed, new uses and terminologies seem to develop daily. On this page, we attempt to define and disambiguate some of the most commonly used terms. For more information on government use of face re…
  - 16 days ago 7 Oct 21, 4:31pm -
• Face Recognition Isn’t Just Face Identification and Verification: It’s Also Photo Clustering, Race Analysis, Real-time Tracking, and More
  Governments and corporations are tracking how we go about our lives with a unique marker that most of us cannot hide or change: our own faces. Across the country, communities are pushing back with laws that restrain this dangerous technology. In resp…
  - 16 days ago 7 Oct 21, 4:14pm -
• Pioneer Awards Ceremony 2021 Recap: Privacy Defenders Unite

  

  On September 16, EFF held the 30th Annual Pioneer Award Ceremony, a yearly celebration of our digital heroes. The Barlows this year went to a selection of individuals who have worked to protect privacy in unique, impressive, and successful ways, fro…
  - 17 days ago 7 Oct 21, 7:00am -
• Bring on the Publicity Trolls: Federal Appeal Court Ruling Drastically Undermines Online Speech
  - 18 days ago 5 Oct 21, 4:55pm -
• U.S. Supreme Court Upholds Public School Students’ Off-Campus Speech Rights
  In a win for freedom of speech, the U.S. Supreme Court held that public high school officials violated a student’s First Amendment rights when they suspended her from cheerleading for posting a vulgar Snapchat selfie over the weekend and off school…
  - 23 days ago 30 Sep 21, 6:50pm -
• EFF Stands With #SaveAlaa, Calls for Release of Alaa Abdel Fattah, Activist and Friend
  My conditions are but a drop in a dark sea of injustice. - Alaa Abdel Fattah,  November 7, 2019, at State Security ProsecutionEFF is profoundly concerned about our friend, Egyptian blogger, coder, and activist Alaa Abd El Fattah, who has been jail…
  - 24 days ago 29 Sep 21, 8:59pm -
• FPF’s 2020 Student Privacy Pledge: New Pledge, Similar Problems
  EFF legal intern Rob Ferrari was the lead author of this post.A new school year has started, the second one since the pandemic began. With our education system becoming increasingly reliant on the use of technology (“edtech”), especially for rem…
  - 25 days ago 29 Sep 21, 3:19am -
• Cross Border Police Surveillance Treaty Must Have Clear, Enforceable Privacy Safeguards, Not a Patchwork of Weak Provisions
  This is the fourth post in a series about recommendations EFF, European Digital Rights, the Samuelson-Glushko Canadian Internet Policy & Public Interest Clinic, and other civil society organizations have submitted to the Parliamentary Assembly of the…
  - 25 days ago 29 Sep 21, 1:30am -
• In U.S. v Wilson, the Ninth Circuit Reaffirms Fourth Amendment Protection for Electronic Communications
  In a powerful new ruling for digital privacy rights, the Ninth Circuit Court of Appeals has confirmed that the police need to get a warrant before they open your email attachments—even if a third party’s automated system has flagged those attachm…
  - 25 days ago 28 Sep 21, 10:43pm -
• EFF, Access Now, and Partners to European Parliament: Free Speech, Privacy and Other Fundamental Rights Should Not be Up for Negotiation in the Digital Services Act
  The European Committee on Legal Affairs adopted the proposals discussed here on Sept. 30 by a vote of 15+/9-. The proposals now go to the Committee on the Internal Market and Consumer Protection (IMCO), which will develop a position with a vote sched…
  - 25 days ago 28 Sep 21, 9:11pm -
• EFF to Court: Stop SFPD from Spying on Protesters for Black Lives
  EFF and the ACLU of Northern California recently filed a brief asking the San Francisco Superior Court to rule that the San Francisco Police Department (SFPD) violated the law when it obtained and used a remote, live link to a business district’s s…
  - 26 days ago 27 Sep 21, 8:53pm -
• SHOP SAFE Is Another Attempt to Fix Big Tech That Will Mostly Harm Small Players and Consumers
  Congress is once again trying to fix a very specific problem with a broad solution. We support the SHOP SAFE Act’s underlying goal of protecting consumers from unsafe and defective counterfeit products.  The problem is that SHOP SAFE tackles the…
  - 29 days ago 25 Sep 21, 2:53am -
• Digital Rights Updates with EFFector 33.6
  Want the latest news on your digital rights? Then you’ve come to the right place! Version 33, issue 6 of EFFector, our monthly-ish newsletter, is out now! Catch up on the latest EFF news, from our protests at Apple stores to celebrating that HTTPS…
  - 30 days ago 23 Sep 21, 5:31pm -
• Colorado Supreme Court Rules Three Months of Warrantless Video Surveillance Violates the Constitution
  EFF Legal Intern Hannah Donahue co-wrote this post.Last week, the Colorado Supreme Court ruled, in a case called People v. Tafoya, that three months of warrantless continuous video surveillance outside a home by the police violated the Fourth Amendm…
  - 31 days ago 22 Sep 21, 8:52pm -
• Stop Military Surveillance Drones from Coming Home
  A federal statute authorizes the Pentagon to transfer surveillance technology, among other military equipment, to state and local police. This threatens privacy, free speech, and racial justice. So Congress should do the right thing and enact Repres…
  - 32 days ago 21 Sep 21, 9:49pm -
• HTTPS Is Actually Everywhere

  

  For more than 10 years, EFF’s HTTPS Everywhere browser extension has provided a much-needed service to users: encrypting their browser communications with websites and making sure they benefit from the protection of HTTPS wherever possible. Since w…
  - 32 days ago 21 Sep 21, 6:37pm -
• Why EFF Flew a Plane Over Apple's Headquarters

  

  For the last month, civil liberties and human rights organizations, researchers, and customers have demanded that Apple cancel its plan to install photo-scanning software onto devices. This software poses an enormous danger to privacy and security. A…
  - 32 days ago 21 Sep 21, 4:23pm -
• How California’s Broadband Infrastructure Law Promotes Local Choice
  The legislative session has ended and Governor Newsom is expected to sign into law S.B. 4 and A.B. 14. These bills stand as the final pieces of the state’s new broadband infrastructure program. With a now-estimated $7.5 billion assembled between fe…
  - 36 days ago 17 Sep 21, 5:46pm -
• No, Tech Monopolies Don’t Serve National Security

  

  In what appears to be a “throw spaghetti on the wall approach” to stopping antitrust reform targeting Big Tech, a few Members of Congress and a range of former military and intelligence officials wrote a letter asserting that these companies need…
  - 37 days ago 16 Sep 21, 9:47pm -
• What’s Up with WhatsApp Encrypted Backups
  WhatsApp is rolling out an option for users to encrypt their message backups, and that is a big win for user privacy and security. The new feature is expected to be available for both iOS and Android “in the coming weeks.” EFF has pointed out une…
  - 37 days ago 16 Sep 21, 6:11pm -
• The Catalog of Carceral Surveillance: Patents Aren't Products (Yet)
  In EFF’s Catalog of Carceral Surveillance, we explore patents filed by or awarded to prison communication technology companies Securus and Global Tel*Link in the past five years. The dystopian technology the patents describe are exploitative and de…
  - 38 days ago 16 Sep 21, 12:22am -
• The Federal Government Just Can’t Get Enough of Your Face
  There are more federal facial recognition technology (FRT) systems than there are federal agencies using them, according to the U.S. Government Accountability Office (GAO). Its latest report on current and planned use of FRT by federal agencies revea…
  - 38 days ago 15 Sep 21, 10:52pm -
• Texas’ Social Media Law is Not the Solution to Censorship
  The big-name social media companies have all done a rather atrocious job of moderating user speech on their platforms. However, much like Florida's similarly unconstitutional attempt to address the issue (S.B. 7072), Texas' recently enacted H.B.…
  - 38 days ago 15 Sep 21, 6:13pm -
• Lessons From History: Afghanistan and the Dangerous Afterlives of Identifying Data
  As the United States pulled its troops out of Afghanistan after a 20-year occupation, byproducts of the prolonged deployment took on new meaning and represented a new chapter of danger for the Afghan people. For two decades, the United States spearhe…
  - 38 days ago 15 Sep 21, 5:34pm -
• Surveillance Self-Defense Guides Now Available in Burmese
  As part of our goal to expand the impact of our digital security guide, Surveillance Self-Defense (SSD), we recently translated the majority of its contents into Burmese. This repository of resources on circumventing surveillance across a variety of…
  - 38 days ago 15 Sep 21, 4:58pm -
• EFF and Allies Urge Council of Europe to Add Strong Human Rights Safeguards Before Final Adoption of Flawed Cross Border Surveillance Treaty
  EFF, European Digital Rights (EDRi), the Samuelson-Glushko Canadian Internet Policy & Public Interest Clinic (CIPPIC), and other civil society organizations have worked closely on recommendations to strengthen human rights protections in a flawed int…
  - 39 days ago 14 Sep 21, 7:11pm -

• Cloud Security Alliance News
  Click for More Info on Cloud Security Alliance News