EARN IT: The Anti-Encryption Bill That Doesn’t Mention Encryption Nor Backdoors.

The US is planning on introducing a new bill that has a lot of privacy experts worried. Many have called it an “encryption backdoor” bill or an “anti-encryption” bill. On the face of it, though, it’s supposed to be a “fight child porn” bill – the word “encryption” is not mentioned even once. So why […] read more

US Appeals Court: Jail Time To Force Decryption Capped At 18 months.

The US Court of Appeals for the Third Circuit has declared that a person who refuses to hand over encrypted data cannot be held in jail for more than 18 months. The ruling sets free a certain Francis Rawls, who has been imprisoned for 4 years because he either wouldn’t or couldn’t decrypt two hard […] read more

Thieves Using Bluetooth To Track Laptops and Smartphones To Steal.

As you travel and shop over the holidays, keep in mind that criminals will be working overtime in ways you don’t expect. According to wired.com, incidents where thieves are using Bluetooth scanners are increasing. At least, it’s the only conclusion to be drawn in a number of cases where phones and other electronics were stolen […] read more

Rethinking Encryption: Former Anti Strong-Encryption FBI Guy Changes His Mind.

A couple of weeks ago, Jim Baker published a long article on why the US needs strong encryption. One could call this position surprising, seeing how Baker was part of the FBI’s 2016 efforts to hamstring Apple’s iPhone encryption, a consequence of the San Bernardino terrorist incident. Baker does a good job of showing why […] read more

AG Barr Says Encryption Backdoors Are Acceptable Risk.

Attorney General William Barr – the same one who concluded that Special Counsel Robert Mueller’s report on collusion and obstruction of justice “exonerates” the sitting president (in quotations because there’s a wee bit of a controversy on whether the report actually does so; plus Barr never literally uttered the word) – gave a speech on […] read more

Leading Self-Encrypting Drives Compromised, Patched.

Earlier this week, security researchers revealed that certain SEDs (self-encrypting drives) sold by some of the leading brands in the consumer data storage industry had flaws in its full disk encryption.   Bad Implementation One of the easiest ways to protect one’s data is to use full disk encryption (FDE). As the name implies, FDE […] read more

Most of the Used Memory Cards Bought Online Are Not Properly Wiped.

According to tests carried out by researchers at the University of Hertfordshire (UK), nearly two-thirds of memory cards bought used from eBay, offline auctions, and second-hand shops were improperly wiped. That is, the researchers were able to access images or footage that were once saved to these electronic storage units… even if they were deleted. […] read more

Panera Data Breach: Further Proof That People Need Strong Data Security Laws.

Panera Bread has a public relations fiasco on its hands. It has embroiled itself in one of the most tragicomic data breaches the world has seen in a while, a breach that could have been easily avoided. Dylan Houlihan, the finder and eventual whistleblower of the security issue, has created a post providing the authoritative […] read more

HIPAA Breach Results In Lawsuit And Countersuit Between Aetna and KCC.

Reuters reported earlier this month that Aetna, the health insurance company, and Kurtzman Carson Consultants (KCC), an administrative-support services provider, have sued each other over a mishandled class action settlement notification. Last year, Aetna settled a number of lawsuits regarding the fulfillment of HIV medication prescriptions. With the legal issues finalized, it was up to […] read more