computer fraud and abuse act – Computer Security Articles

When good-faith hacking gets people arrested, with Harley Geiger: Lock and Code S03E14

July 4, 2022 admin CFAA, computer fraud and abuse act, Department of Justice, good-faith hacking, hacking, lock and code, lock and code podcast, podcast, security research, Supreme Court, white hat, white hat hackers, white hat hacking

Credit to Author: Malwarebytes Labs| Date: Mon, 04 Jul 2022 19:51:26 +0000

This week on Lock and Code, we discuss the various laws that can be violated when good-faith hacking reveals security flaws.

The post When good-faith hacking gets people arrested, with Harley Geiger: Lock and Code S03E14 appeared first on Malwarebytes Labs.

Independent Krebs

What Counts as “Good Faith Security Research?”

June 3, 2022 admin A Little Sunshine, computer fraud and abuse act, Department of Justice, deputy attorney general lisa o. monaco, Digital Millennium Copyright Act, good faith security research, Orin Kerr, university of california berkley, van buren v. united states

Credit to Author: BrianKrebs| Date: Fri, 03 Jun 2022 19:33:03 +0000

The U.S. Department of Justice (DOJ) recently revised its policy on charging violations of the Computer Fraud and Abuse Act (CFAA), a 1986 law that remains the primary statute by which federal prosecutors pursue cybercrime cases. The new guidelines state that prosecutors should avoid charging security researchers who operate in “good faith” when finding and reporting vulnerabilities. But legal experts continue to advise researchers to proceed with caution, noting the new guidelines can’t be used as a defense in court, nor are they any kind of shield against civil prosecution.

MalwareBytes Security

Stalkerware’s legal enforcement problem

November 18, 2019 admin al franken, computer fraud and abuse act, cyberstalk, cyberstalking, Department of Justice, district attorney, domestic abuse, domestic abuse survivor, domestic abuse survivors, domestic violenc, FBI, federal wiretap act, franken, FTC, jackie's law, mobilespy, National Network to End Domestic Violence, nnedv, nso group, online harassment, operation safe horizon, phonesheriff, senator al franken, stalkerware, stalking, StealthGenie, Teensafe, us attorney, US Federal Trade Commission, WhatsApp, wiretap

Credit to Author: David Ruiz| Date: Mon, 18 Nov 2019 15:47:58 +0000

Those who install stalkerware with the intent to monitor, control, harass, or otherwise abuse their victims typically get away with it, avoiding legal penalty even if there’s plenty of evidence to suggest their guilt.

Categories:

Stalkerware

Tags: Al Franken Computer Fraud and Abuse Act cyberstalk cyberstalking Department of Justice District Attorney domestic abuse domestic abuse survivor domestic abuse survivors domestic violenc fbi Federal Wiretap Act Franken FTC Jackie’s Law MobileSpy National Network to End Domestic Violence NNEDV NSO Group online harassment Operation Safe Horizon PhoneSheriff Senator Al Franken stalkerware stalking StealthGenie TeenSafe US Attorney US Federal Trade Commission whatsapp Wiretap

(Read more…)

The post Stalkerware’s legal enforcement problem appeared first on Malwarebytes Labs.

Independent Krebs

New Bill Seeks Basic IoT Security Standards

August 1, 2017 admin Aaron Swartz, Berklett Cybersecurity Project, Berkman Klein Center for Internet & Society, CDT, Center for Democracy & Technology, CFAA abuse, computer fraud and abuse act, Cory Gardner, Department of Homeland Security, Digital Millennium Copyright Act, DMCA, Harvard University, IoT Cybersecurity Improvement Act of 2017, IoT devices, Mark Warner, Mozilla, Other, Ron Wyden, Steve Daines

Credit to Author: BrianKrebs| Date: Tue, 01 Aug 2017 19:32:47 +0000

Lawmakers in the U.S. Senate today introduced a bill that would set baseline security standards for the government’s purchase and use of a broad range of Internet-connected devices, including computers, routers and security cameras. The legislation, which also seeks to remedy some widely-perceived shortcomings in existing cybercrime law, was developed in direct response to a series of massive cyber attacks in 2016 that were fueled for the most part by poorly-secured “Internet of Things” (IoT) devices.