Category: Cyber-Crime

Senator Brian Schatz and the Unconstitutional Age Verification Bill

Senator Brian Schatz is one of the more thoughtful Senators we have, and he and his staff have actually spent time talking to lots of experts in trying to craft bills regarding the internet. Unfortunately, it still seems like he still falls under the seductive sway of this or that moral panic, so when the bills actually come out, they’re…

New York Court Rules State Police Can’t Keep Hiding Its Misconduct Records From The Public

Two decades of misconduct records will be now trickling out of the NYSP’s hands. One assumes it will be a very slow drip, one perhaps interrupted by last-minute admissions the NYSP has, say, destroyed records it was required to retain. A lot can happen over twenty years, but hopefully it won’t take twenty years for records requesters to obtain what they’re entitled to possess.

The Superior Court (basically the first level of state courts in New York) decision [PDF] is short and sweet. It not only directs the NYSP to comply with the law, but draws some other helpful legal conclusions along the way, like this one, which says cop shops can’t withhold information about officers who were investigated for misconduct, but later cleared of wrongdoing.

It is clear that the mere fact that the complaint was determined to be unsubstantiated does not categorically exempt the records from disclosure.

National Guardsman Arrested For Leaking Top Secret Ukraine War Documents On Discord

So, we’re just handing out top secret security clearance to everyone, I guess. It was clear from the documents posted to Discord (before spreading everywhere), the person behind them would soon be located.

The folded security briefings were obviously smuggled out of secure rooms in someone’s pocket and then photographed carelessly, in one case on top of a hunting magazine. I mean, that narrows it down to people who still buy stuff printed on physical media, a number that shrinks exponentially by the day.

On top of that, the entry level for the leaked info — much of it related to the current invasion of Ukraine by Russia — was Discord, which no one has considered to be the equivalent of Signal or any other secure site for the dissemination of sensitive material.

Abusive Governments (And The Criminals They Employ) Are Going To LOVE The UN’s Cybercrime Treaty

Various treaties and multi-national proposals to combat cybercrime have been around for years. I’m not exaggerating. These have been floating around for more than a decade. (Do you want to feel old? This cybercrime treaty proposal would be old enough to legally obtain a social media account in the United States if it were still viable.)

The UN has been pushing its own version. But its idea of “crime” seems off-base, especially when it’s dealing with a conglomerate of countries with varying free speech protections. The “Cybercrime Treaty” proposed by the UN focuses on things many would consider ugly, distasteful, abhorrent, or even enraging. But it’s not things most people consider to be the sort of “crimes” a unified world front should be addressing — not when there’s plenty of financially or personally damaging cybercrime being performed on the regular.

AI Firm Clearview AI Scrapes 30 Billion Social Media Photos, Hands Them to Law Enforcement

One of the most notorious privacy-breaching tech companies in operation, Clearview AI, has, according to its CEO, scraped 30 billion social media photos, packaged and curated them, and passed them along to the surveillance state authorities to do with what they will (in the dark, with no oversight, naturally, as the Founders warned such authorities would if left unchecked). Clearview’s…

Canada faces questions over alleged Chinese interference

When Member of Parliament Kenny Chiu was contacted by the Canadian Security Intelligence Service (CSIS) ahead of Canada’s federal election in 2021, he was puzzled. He had never expected to be part of a CSIS investigation, let alone one that required an in-person talk at the height of Canada’s COVID-19 pandemic. “At that time, everything had moved online, so it was…

French Court Smacks Remote Learning Software Company For Pervasive Surveillance Of Students In Their Own Homes

In a preliminary victory in the continuing fight against privacy-invasive software that “watches” students taking tests remotely, a French administrative court outside Paris suspended a university’s use of the e-proctoring platform TestWe, which monitors students through facial recognition and algorithmic analysis.

TestWe software, much like Proctorio, Examsoft, and other proctoring apps we’ve called out for intrusive monitoring of exam takers, constantly tracks students’ eye movements and their surroundings using video and sound analysis. The court in Montreuil, France, ruled that such “permanent surveillance of bodies and sounds” is unreasonable and excessive for the purpose preventing cheating.

Pentagon Leaks: 5G THREATENS Military Satellites | Breaking Points Exclusive

Ex-Twitter CEO Parag Agrawal, Vijaya Gadde and other employees sue Elon Musk over job-related legal bills

Twitter chief Elon Musk fired three top executives when he took over the social media platform. The then company CEO Parag Agrawal, policy chief Vijaya Gadde along with CFO Nel Segal were removed from their positions a day after Musk took over. Turns out they have all filed lawsuits against Musk demanding reimbursement for litigation costs, investigations and inquiries related to their former jobs. Agrawal, along with the company’s former chief legal and financial officers, claim in the lawsuit that they are owed over $1 million, which Twitter is legally obligated to pay.

As per AFP report, The court filing listed various expenses associated with inquiries by the US Securities and Exchange Commission (SEC) and the Department of Justice (DOJ), but did not disclose the nature of the investigations or if they are still ongoing. Agrawal and former chief financial officer Ned Segal testified to the SEC last year and continued to engage with federal authorities. The SEC is examining whether Musk complied with securities rules when he purchased Twitter shares.

South Korea fines Google $32 million for blocking release of games on competitor’s platform

SEOUL (Reuters) – South Korea’s antitrust regulator has fined Alphabet Inc’s Google 42.1 billion won ($31.88 million) for blocking the release of mobile video games on a competitor’s platform.

The Korea Fair Trade Commission (KFTC) said on Tuesday that Google bolstered its market dominance, and hurt local app market One Store’s revenue and value as a platform, by requiring video game makers to exclusively release their titles on Google Play in exchange for providing in-app exposure between June 2016 and April 2018.

The KFTC said the move against the U.S. technology giant is part of efforts by the government to ensure fair markets.

Game makers affected by Google’s action include Netmarble, Nexon and NCSOFT, as well as other smaller companies, the antitrust regulator added.

In 2021, Google was fined more than 200 billion won by the KFTC for blocking customised versions of its Android operating system.

Trading firms identified as Binance VIP clients in CFTC lawsuit

Binance, one of the world’s largest cryptocurrency exchanges, is facing a lawsuit filed by the United States Commodities Futures Trading Commission (CFTC) for allegedly violating US law by allowing US clients to trade on its platform without complying with Know Your Customer (KYC) standards. In the lawsuit, the CFTC identified three trading firms – Jane Street Group, Tower Research Capital, and Radix Trading – as Binance’s VIP clients, who allegedly received preferential treatment from the exchange.

According to Bloomberg, which cited “people familiar with the matter,” Radix Trading was identified as “Trading Firm A” in the CFTC’s suit, while Jane Street was “Trading Firm B” and Tower Research was “Trading Firm C.” The firms on the CFTC’s list were examples of US clients allegedly able to access Binance, despite not complying with KYC standards.

Latitude Financial hit by malicious cyberattack

Latitude Financial has revealed it has been hit by a sophisticated and malicious cyberattack that has compromised a total of 328,000 separate pieces of data that it had sourced from its customers. The loans, credit card and insurance provider said it had detected unusual activity on its systems over the last few days that was believed to have originated from a major vendor used by Latitude.

The company said the attacker appeared to have used employee login credentials to steal personal information that was being held by two other of Latitude’s service providers. In a statement to the ASX on Thursday morning, Latitude said approximately 103,000 identifications documents – 97% of which were drivers’ licences – were stolen from the first service provider, while 225,000 customer records were stolen from a second service provider.

The Emotet botnet returns and is sending a slew of malicious emails

The notorious Emotet botnet, considered one of the biggest threats to internet security, has resurfaced after a prolonged hiatus, armed with new tactics. The botnet’s trademark strategy of sending spam messages that appear to be from a known contact, addressing recipients by name and purporting to respond to existing email threads, was observed again last week after a four-month break.

Previous resumptions of activity have seen Emotet deploy fresh techniques to avoid endpoint security products and deceive users into clicking on links or enabling dangerous macros in Microsoft Office attachments.

China identifies roots of US crackdown on TikTok

The White House Office of Management and Budget issued guidance on Monday giving all federal agencies 30 days to wipe TikTok from employees’ devices. Mandated by Congress, the move follows similar guidance by the Pentagon, Department of Homeland Security, and the State Department, all of which cited alleged data harvesting by the Chinese-developed app. “How unsure of itself can the world’s top superpower be to fear a favorite app of young people like that?” Chinese Foreign Ministry spokeswoman Mao Ning told a press briefing on Tuesday. 

New DOJ/Commerce ‘Disruptive Technology Strike Force’

The strike force’s goal is to “…protect U.S. national security by preventing …sensitive technologies from being used for malign purposes” by “nation-state adversaries” such as China, Iran, Russia, and North Korea. The “sensitive technologies” at issue include supercomputing and “exascale” computing, quantum computing, biosciences, and, of course, artificial intelligence.

This development reflects the Administration’s continuing focus on using export control policy and enforcement to advance its national security priorities—of which economic security has become a key subset. The Administration has used the Foreign Direct Product Rule and coordinated its use, particularly regarding advanced semiconductor technology and related tooling, among its allies and partners outside of the traditional multilateral frameworks.  This is yet another example of how the Administration has scaled-up its use of export controls to generate desired outcomes in the areas of technology security and economic competitiveness – both national security priorities – vis-à-vis, in particular, China. The creation of the Disruptive Technologies Strike Force is the latest step by the Administration toward institutionalizing a “whole of government” approach to its novel use of export control policy and enforcement to counter this geopolitical rival.