US Department of Justice thinks companies need to trust gov't on cybersecurity
Tue 9 Dec 2014, 22:20

The US Department of Justice (DOJ) said that the fight against cybercrime would be more effective if private companies put more trust in the country's law enforcement agencies and if they engage more.

But DOJ calls for legislation to require mobile phone operating systems to include back doors in newly announced encryption tools may be a major stumbling block to additional cooperation. FBI Director James Comey raised concerns about law enforcement access to criminal evidence on smartphones after Apple and Google both announced encryption tools for their mobile operating systems.

Dean Garfield, CEO of tech trade group the Information Technology Industry Council, said the tech industry will oppose efforts to pass a law requiring a back door in encryption tools. Such regulations would be "incredibly disruptive in a negative way," he said.

EPIC urges privacy assessment of FBI Next Generation Identification program
Sat 10 Jan 2015, 01:20

In a letter to Senators Grassley and Leahy, EPIC has urged the Senate Judiciary Committee to investigate the FBI's "Next Generation Identification" program. NGI is the most extensive biometric database in the world and raises many privacy risks. In a recent FOIA case, EPIC v. FBI, EPIC obtained documents which show that the FBI accepted a 20% error rate for facial recognition matches. EPIC and over 30 organizations have urged Attorney General Holder to conduct a privacy assessment of NGI, but the program has since gone fully operational without the required evaluation.

FBI proposes Congress 3 ways to fight cyber threats
Fri 12 Dec 2014, 18:20

FBI’s assistant director Joseph Demarest suggested three ways Congress could combat cyber threat: to update the Computer Fraud and Abuse Act, to require businesses to provide prompt notice to consumers in the wake of cyber attacks, and for government and the private sector to share insights into cyber threats.

Darkweb site taken down
Tue 9 Dec 2014, 15:00

FBI and Europol, took down Doxbin, one of the darkweb’s most notorious sites where users and admins posted the names, addresses, social security numbers, healthcare histories and other personal details in a spirit of digital vigilantism – or plain malice. Although the police were able to seize the domain, it is technically trivial to re-establish control of a “seized” site. And the Doxbin’s new overlord has simply set up a new domain that agents cannot touch.

Offline, one common use of data from Doxbin is to employ it in “SWATing” a target, where a victim’s phone number is spoofed and used to call in armed police. The caller claims they need urgent assistance to the related address, officers arrive with guns drawn and surprise the victim.

Supreme Court approves rule change that expands FBI computer search powers
Fri 29 Apr 2016, 07:40

The Supreme Court has adopted amendments to a rule to give judges the authority to issue warrants to remotely search computers whose locations are concealed using technology.