Sharing Passwords is Hacking, Which is a Federal Crime.

The controversies regarding cyberspace just keep burning brightly. In the past couple of weeks, the Ninth Circuit Court of Appeals ruled that the unauthorized sharing and use of passwords can be deemed as hacking, and thus can be a violation of the Computer Fraud and Abuse Act (CFAA). As noted by motherboard.vice.com and others, this […] read more

Password Security: Ashley Madison Patrons Had Terrible Passwords.

Last week, motherboard.com reported that 4000 cracked passwords belonging to Ashley Madison customers were “awful,” security-wise.  The site went on to conclude that: It’s understandable for users to be frustrated with Ashley Madison for failing to protect their data. But when customers are choosing passwords that could probably just be guessed, they need to take […] read more

HIPAA Encryption: Indiana Medical Firm Data Breach Affects 230 Healthcare Organizations.

Last week, a Indiana medical firm saw a massive medical data breach that extended throughout the entire U.S.  Per online reports, possibly 4 million people in more than 230 hospitals and other healthcare organizations were affected by the breach, which occurred in May of this year. Hackers stole protected health information that included: “patients’ names, […] read more

Data Encryption: Game Livestreaming Site "Twitch" Resets Encrypted Passwords.

If you’re not a gamer or interested in computer games, you may not be familiar with Twitch, a site that streams live feeds of people playing (and commenting on) titles like League of Legends or Counter-Strike.  However, the site is extremely popular – techcrunch.com notes that it’s the “fourth largest site… in terms of peak […] read more

Connecticut Data Encryption: Senator To Propose Required Encryption For Insurance Companies.

It looks like Connecticut could be following in the footsteps of New Jersey: according to stamford.dailyvoice.com, state senators are considering proposing legislation that would require Insurance companies to encrypt any sensitive personal data.   If said proposal passes, it would become the second state I know of that makes it mandatory for insurance companies to use […] read more

New York Data Security Law: AG Pursuing Law Updates, Will Introduce Safe Harbor.

New York Attorney General Eric T. Schneiderman announced last week that he will be pursuing updates to the state’s data security laws.  Among the proposals are changes to the legal definition of “personal information”; introducing safe harbor for companies that meet security standards; and encouraging the sharing of forensic data.  It sounds as if security […] read more

Data Security: Home Depot’s Execs Switch To Macs, iPhones After Data Breach.

The Wall Street Journal reports on the Home Depot data breach.  Among some of the revelations is that (a) they had actually upgraded to the latest security measures when the data breach was discovered and (b) executives were handed Apple devices to counteract the immediate damage.  Seeing how these were “secure,” it sounds like disk […] read more

HIPAA Encryption: Why Use NIST-Validated Encryption?.

The site gawker.com has some click-bait titled “Public NYC Taxicab Database Lets You See How Celebrities Tip.”  Despite the gossipy nature of the title, the article itself goes into some very specifics on how this was possible despite the information being “protected.”  It’s not a giant leap from there to why one must ensure the […] read more