Archive for December, 2013

Can Hackers Decrypt Target’s PIN Data?

Slightly longer answer: it depends on whether they have access to the encryption key, or to a machine that contains the encryption key.

In case you have no idea what I’m talking about: there was recently a massive credit card breach at Target. If you’re like many people you probably heard about this three times. First in the news, then again in your email when Target notified you that you were a victim, and finally a third time when you checked your credit card bill. Not a proud day for our nation’s retailers.

The news got a bit messier today when Target announced the thieves had also managed to get their hands on the PIN numbers of unfortunate debit card customers. But this time there’s a silver lining: according to Target, the PIN data was encrypted under a key the hackers don’t have.

12/28/2013 · No Comments Continue Reading

What to Expect From Surveillance Politics in 2014 (Hint: It’s Not Reform)

One would think that a federal judge calling an NSA program “almost Orwellian” would be a good sign for surveillance and privacy in 2014. Especially when coupled with his observation that the founding fathers would be “aghast” at the NSA’s bulk warrantless collection of telephone metadata, and his view that it’s therefore likely unconstitutional under the Fourth Amendment…

And even though the findings released by President Obama’s surveillance review panel this week were more “a set of guidelines than a set of restrictions”, the more than 40 recommendations will no doubt compel major changes to the nation’s surveillance apparatus, right?

Well, hold on. None of these things necessarily signals a turning point in the debate about surveillance. If you’re holding out hope for an act of political courage to end bulk surveillance and improve transparency, such as passage of the Leahy-Sensenbrenner USA Freedom Act to curb the NSA: Abandon hope, all ye whose data is indiscriminately collected here. Instead, here are some things to expect from the government, tech companies, and investors regarding surveillance and privacy this coming year.

12/21/2013 · No Comments Continue Reading

700 Domains Seized as Part of Anti-Counterfeit Crackdown

Law enforcement agencies from three continents seized more than 700 domains on Tuesday for selling counterfeit goods. US Immigration and Customs Enforcement (ICE), Europol, and Hong Kong Customs worked together on the project, which was called “In Our Sites, Project Cyber Monday IV” in the US. The agencies were coordinated by the National Intellectual Property Rights Coordination Center.

The US government is now targeting PayPal accounts used by the websites for seizure, and $175,000 of criminal proceeds. eBay is cooperating with the investigation, and made a statement in support of the efforts of law enforcement to protect its customers and brand.

12/09/2013 · No Comments Continue Reading