government Archives

Over 24,000 People Sign Data Privacy Petition to Stop Facebook Extremism

Andrew Orr · January 4, 2022

A petition signed by over 24,000 people has been delivered to Congress from Fight for the Future, Senator Ron Wyden to encourage a federal data privacy law. The impetus? Far-right extremism on social media websites such as Facebook.

Coalition members urged lawmakers to protect against attacks like that on the Capitol last year by addressing Facebook’s data-fueled algorithmic manipulation.

When Facebook whistleblower Frances Haugen testified before Congress in October, she named algorithmic manipulation as the platform’s source of power. Algorithmic manipulation is only possible with invasive and copious personal data on individual people, harvested via mass surveillance.

Link

President Biden Signs 'National Defense Authorization Act' Into Law for Cybersecurity

Andrew Orr · December 29, 2021

The National Defense Authorization Act of 2022 lays out voluntary cybersecurity practices for private companies that handle critical infrastructure in the U.S.

But provisions all rely on the voluntary participation by industry, which owns and operates the vast majority of the nation’s critical infrastructure. Despite bipartisan calls after massive breaches at SolarWinds, Microsoft Exchange, Colonial Pipeline and other hacks, the NDAA made it through the House without mandatory incident reporting requirements for the private sector.

I disagree on the “voluntary” part. Make it mandatory, otherwise we end up with T-Mobile’s half-dozen breaches in the span of four years.

Link

State Legislators Help Libraries in Fight Over Ebook Licensing Terms

Andrew Orr · December 21, 2021

A report from Axios says libraries want better licensing terms for eBooks from Amazon and other publishers. States are stepping in to help the libraries.

A Maryland law set to take effect in January and a similar bill in New York would require publishers that sell ebooks to consumers to also license them to libraries on reasonable terms. The Maryland law and New York bill say it is not reasonable to limit the number of ebook licenses libraries can buy at the same date they are available to the general public.

News

Fed Chair Jerome Powell Doesn't Believe Cryptos are Threat at This Time

Andrew Orr · December 15, 2021

Federal Reserve Chairman Jerome Powell briefly spoke about cryptocurrencies and doesn’t believe they represent a threat at this time.

News

DHS Announces 'Hack DHS' Bug Bounty Program to Improve Security

Andrew Orr · December 15, 2021

On Tuesday, the Department of Homeland Security (DHS) announced a bug bounty program called Hack DNS to improve security.

News

Biden Expected to Sign Order for More Online Government Services

Andrew Orr · December 13, 2021

President Biden is expected to sign into law a bill that would direct certain government agencies to offer their services online.

Link

Co-Founder of Swiss SMS Giant 'Mitto AG' Accused of Government Surveillance

Andrew Orr · December 7, 2021

Swiss tech company Mitto AG is trusted by companies such as Twitter and Google to deliver SMS security codes to users, appointment reminders, sales promotions, and more. It’s co-founder and COO Ilja Gorelik has been accused of selling access to Mitto’s networks for surveillance.

The existence of the alternate service was only known to a small number of people within the company, these former employees said. Gorelik sold the service to surveillance companies which in turn contracted with government agencies, according to the employees.

Link

Government Traces Ransomware Payments to Business Address in Moscow

Andrew Orr · December 6, 2021

The New York Times writes how the U.S. government has traced ransomware payments to an address in Federation Tower East in Moscow, Russia.

That this high-rise in Moscow’s financial district has emerged as an apparent hub of such money laundering has convinced many security experts that the Russian authorities tolerate ransomware operators. The targets are almost exclusively outside Russia, they point out, and in at least one case documented in a U.S. sanctions announcement, the suspect was assisting a Russian espionage agency.

News

Debt Collectors Can Now Email, Text, and Message You on Social Media

Andrew Orr · December 2, 2021

On Tuesday, new rules went into effect that allow debt collectors you DM you on social media, email, and text you.

Link

Proposed Bill Would Ban Bots From Buying Online Goods

Andrew Orr · November 30, 2021

A report from PCMag: Democrats are reintroducing a bill that would ban automated bots from buying online goods. The legislation aims to stop scalpers.

The proposed legislation expands on an earlier law passed in 2016 that outlawed automated bots from circumventing control measures to buy up ticket sales for public events, such as music concerts and sporting events. In addition, the law made it illegal for scalpers to resell the tickets obtained through the bot.

Link

France Seeks Removal of 'Wish' From App Stores, Search Engines

Andrew Orr · November 24, 2021

The French administration wants app stores and search engines to remove Wish after an investigation of its products. They found that many of the products listed in Wish don’t meet European standards.

When Wish is notified that it is selling a dangerous good, those products are removed from the marketplace within 24 hours as expected. And yet, “in most cases, those products remain available under a different name, and sometimes even from the same seller. The company doesn’t keep any log related to transactions of non-compliant and dangerous products,” France’s Ministry of the Economy says in its statement.

Link

Rule Approved: Banks Must Report Cyber Attacks Within 36 Hours

Andrew Orr · November 19, 2021

U.S. regulators have approved a rule to require banks to report major cyber incidents within 36 hours.

The rule, dubbed the Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers, was cemented by the Office of the Comptroller of the Currency, Board of Governors of the Federal Reserve System and the Federal Deposit Insurance Corporation. There is currently no specific window that banks must repot such incident to the agencies in question.

News

Taxpayers Foot the Bill for Apple's Roll Out of iOS 15 Digital ID

Andrew Orr · November 15, 2021

Apple has strict rules for states that opt into its digital ID service and taxpayers are on the receiving end of the trillion-dollar company’s invoice.

News

FTC Returns $60 Million to Amazon Drivers That Company Illegally Kept

Andrew Orr · November 8, 2021

The Federal Trade Commission will return US$60 million to over 140,000 drivers for Amazon that the company illegally withheld.

News

US Government Asked for 83,000 Apple Data Requests in 2020

Andrew Orr · November 8, 2021

Apple has released its transparency report for 2020. These include data requests about Apple customers from governments and law enforcement.

News

Cybersecurity Agency CISA Gives Federal Agencies 6 Months to Patch Security Flaws

Andrew Orr · November 3, 2021

The Cybersecurity and Infrastructure Security Agency will require all federal agencies to patch security flaws in their systems.

News

ISPs in the United States Will Start Destroying Huawei Equipment

Andrew Orr · November 2, 2021

Last week the FCC start a reimbursement program to replace equipment from Chinese companies like Huawei and ZTE.

Podcast

Apple and China and Apps – TMO Daily Observations 2021-10-27

Kelly Guimont · October 27, 2021 · Add Comment

Charlotte Henry joins host Kelly Guimont to discuss the iOS App Store in China, and the sudden disappearance of particular apps.

VIew all episodes

News

FCC Orders China Telecom Americas Out of the United States

Andrew Orr · October 27, 2021

The FCC has revoked and terminated China Telecom America’s services in the U.S., citing Chinese government influence.

Link

'REvil' Ransomware Group Taken Down Through Multi-Country Effort

Andrew Orr · October 22, 2021

The FBI, working with Cyber Command, the Secret Service, and other countries, took down REvil.

According to three people familiar with the matter, law enforcement and intelligence cyber specialists were able to hack REvil’s computer network infrastructure, obtaining control of at least some of their servers. After websites that the hacker group used to conduct business went offline in July, the main spokesman for the group, who calls himself “Unknown,” vanished from the internet.