HackDig : Dig high-quality web security articles

When good-faith hacking gets people arrested, with Harley Geiger: Lock and Code S03E14

When Lock and Code host David Ruiz talks to hackers—especially good-faith hackers who want to dutifully report any vulnerabilities they uncover in their day-to-day work—he often hears about one specific law in hushed tones of fear: the Computer Fraud and Abuse Act. The Computer Fraud and Abuse Act, or CFAA, is a decades-old hacking law in the United Stat
Publish At:2022-07-04 16:02 | Read:713 | Comments:0 | Tags:Podcast cfaa Computer Fraud and Abuse Act Department of Just

It’s legal to scrape public data—US appeals court

Web scraping—the automated extraction of data from websites—has been around for a long time. Simultaneously cursed and praised, with nobody being able to quite land the decisive blow about whether it should be allowed, one way or another. This may have changed, thanks to a recent US appeals court ruling. A tangled web of scraped content LinkedIn (an
Publish At:2022-04-21 08:52 | Read:1387 | Comments:0 | Tags:Privacy cfaa content court ruling data LinkedIn microsoft sc

US offers huge reward in fight against state-sponsored cybercriminals

The US Department of State has announced that its Rewards for Justice (RFJ) program is now offering: …up to $10 million for information leading to the identification or location of any person who, while acting at the direction or under the control of a foreign government, participates in malicious cyber activities against U.S. critical infrastructur
Publish At:2021-07-16 12:15 | Read:1352 | Comments:0 | Tags:Malwarebytes news 10 million cfaa CIS Dark Web ransomware RF

DoD Opens .Mil to Legal Hacking, Within Limits

Hackers of all stripes looking to test their mettle can now legally hone their cyber skills, tools and weaponry against any Web property operated by the U.S. Department of Defense (DoD), according to a new military-wide policy for reporting and fixing security vulnerabilities. Security researchers are often reluctant to report programming flaws or security
Publish At:2016-11-24 04:35 | Read:9930 | Comments:0 | Tags:Other Alex Rice Bugcrowd CFAA computer fraud and abuse act D

Samy Kamkar’s ProxyGambit Picks Up for Defunct ProxyHam

Without fail in the weeks leading up to Black Hat and DEF CON, there are inevitably talks that are either pulled by organizers, cancelled by presenters, or strong suggestions are made that the talks don’t happen. This year’s first casualty, Ben Caudill’s scheduled DEF CON demonstration of ProxyHam, has already fanned some seriously speculat
Publish At:2015-07-17 10:35 | Read:7224 | Comments:0 | Tags:Hacks Mobile Security Privacy Web Security anonymity Ben Cau

Researcher Tries to Get Ahead of CFAA Changes, Dumps 10M Sanitized Passwords

The Obama administration’s proposed changes to Computer Fraud and Abuse Act (CFAA) have security researchers on edge. The amendments, spurred on by 2014’s seemingly never-ending stream of data breaches, contain vagaries in their language that threaten legitimate research done in the name of improving the security of ecommerce and communication. T
Publish At:2015-02-11 00:40 | Read:8752 | Comments:0 | Tags:Government Web Security bad passwords cfaa computer crime co

The President’s CFAA and the disclosure problem

The President’s CFAA and the disclosure problem Obama’s State of the Union speech gave cybersecurity a prominent position. The problem is the government’s view of security priorities usually puts intelligence agency demands first, military requirement second, business
Publish At:2015-01-26 20:10 | Read:5555 | Comments:0 | Tags:News News_legal News_politics CFAA RICO

Proposed CFAA Amendments Could Chill Security Research

Legitimate security researchers, from bug hunters to pen-testers, are buckled in for a bumpy ride as vague language in President Obama’s proposed amendments to the Computer Fraud and Abuse Act (CFAA) is expected to be debated and sorted out as it makes its way through the legislature.The amendments come with stiffer penalties for those convicted of hac
Publish At:2015-01-16 19:25 | Read:4912 | Comments:0 | Tags:Data Breaches Government Hacks Vulnerabilities cfaa CFAA ame

Is DDoS Illegal Or An Act Of Protest?

 The legality of DDoS attacks has been argued both in the U.S. and abroad. Some say penalties are far too harsh, comparing DDoS attacks to peaceful protest. Others argue that these types of attacks are criminal and meant to disrupt and cause damage. Regardless of what side of the fence you stand, the reality is that DDoS is a difficult issue to address.
Publish At:2014-08-14 10:13 | Read:4960 | Comments:0 | Tags:DDoS CFAA law legality of ddos

Legal Divide Between Security Research and Cybercrime Remains Murky

LAS VEGAS — In his keynote address at Black Hat Wednesday, Dan Geer, the CISO of In-Q-Tel and a respected security luminary noted that the industry has never been closer to the forefront of corporate and government policy decision making. Despite this, security research remains a dangerous business for those who seek out bugs in software systems and fa
Publish At:2014-08-09 22:40 | Read:5225 | Comments:0 | Tags:Hacks Black Hat cfaa ECPA Hacking Kevin Bankston Marcia Hofm


Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud