HackDig : Dig high-quality web security articles

When good-faith hacking gets people arrested, with Harley Geiger: Lock and Code S03E14

When Lock and Code host David Ruiz talks to hackers—especially good-faith hackers who want to dutifully report any vulnerabilities they uncover in their day-to-day work—he often hears about one specific law in hushed tones of fear: the Computer Fraud and Abuse Act. The Computer Fraud and Abuse Act, or CFAA, is a decades-old hacking law in the United Stat
Publish At:2022-07-04 16:02 | Read:643 | Comments:0 | Tags:Podcast cfaa Computer Fraud and Abuse Act Department of Just

What Counts as “Good Faith Security Research?”

The U.S. Department of Justice (DOJ) recently revised its policy on charging violations of the Computer Fraud and Abuse Act (CFAA), a 1986 law that remains the primary statute by which federal prosecutors pursue cybercrime cases. The new guidelines state that prosecutors should avoid charging security researchers who operate in “good faith” when
Publish At:2022-06-03 16:27 | Read:1148 | Comments:0 | Tags:A Little Sunshine computer fraud and abuse act Department of

Stalkerware’s legal enforcement problem

Content warning: This piece contains brief descriptions of domestic violence and assault against women and children. In the past five years, only two stalkerware developers, both of whom designed, marketed, and sold tools favored by domestic abusers to pry into victims’ private lives, have faced federal consequences for their actions. Following a guilty p
Publish At:2019-11-18 16:50 | Read:4051 | Comments:0 | Tags:Stalkerware Al Franken Computer Fraud and Abuse Act cybersta

New Bill Seeks Basic IoT Security Standards

Lawmakers in the U.S. Senate today introduced a bill that would set baseline security standards for the government’s purchase and use of a broad range of Internet-connected devices, including computers, routers and security cameras. The legislation, which also seeks to remedy some widely-perceived shortcomings in existing cybercrime law, was developed
Publish At:2017-08-02 03:35 | Read:6039 | Comments:0 | Tags:Other Aaron Swartz Berklett Cybersecurity Project Berkman Kl

DoD Opens .Mil to Legal Hacking, Within Limits

Hackers of all stripes looking to test their mettle can now legally hone their cyber skills, tools and weaponry against any Web property operated by the U.S. Department of Defense (DoD), according to a new military-wide policy for reporting and fixing security vulnerabilities. Security researchers are often reluctant to report programming flaws or security
Publish At:2016-11-24 04:35 | Read:9891 | Comments:0 | Tags:Other Alex Rice Bugcrowd CFAA computer fraud and abuse act D

Armed FBI agents raid home of researcher who found unsecured patient data

FBI agents, one armed with an assault weapon, reportedly raided the home of a security professional who discovered sensitive data for 22,000 dental patients was available on the Internet, according to a report published Friday.Justin Shafer, who is described as a dental computer technician and software security researcher, reportedly said the raid happened o
Publish At:2016-05-27 15:55 | Read:6538 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab computer fraud

Researcher Tries to Get Ahead of CFAA Changes, Dumps 10M Sanitized Passwords

The Obama administration’s proposed changes to Computer Fraud and Abuse Act (CFAA) have security researchers on edge. The amendments, spurred on by 2014’s seemingly never-ending stream of data breaches, contain vagaries in their language that threaten legitimate research done in the name of improving the security of ecommerce and communication. T
Publish At:2015-02-11 00:40 | Read:8743 | Comments:0 | Tags:Government Web Security bad passwords cfaa computer crime co

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud