Friday, February 2, 2007

Watchdog Attacks Us Swoop for Bank Secrets Europe's main privacy watchdog yesterday said that the banking secrets and rights of millions of people and businesses were being abused on a massive scale by a clandestine programme giving US agencies access to the information. It accused the EU's banks and financial authorities of doing nothing to stop the breaches. In a damning report on the covert transfer to US agencies of the details of millions of financial transactions by EU citizens, Peter Hustinx, the European Data Protection supervisor, accused the European Central Bank of complicity in the system that has been used since 9/11 and which was deemed illegal by European data protection agencies two months ago. The Belgium-based company Swift (Society for Worldwide Interbank Financial Telecommunication) has been supplying the US Treasury and the CIA with details - such as names, account numbers and sums involved - allegedly as part of George Bush's "war on terror". After 9/11, Swift agreed to cooperate with the US Treasury by creating a system where personal data is transferred to a "black box" owned by the US authorities, enabling "massive transfers of data" and the "focused searching" of the information by US agencies. The Brussels-based company says it is obliged to cooperate with the US authorities because it is subject to US subpoenas and could be fined for ignoring the requests. The system, which is estimated to include the bank details of more than 4m Britons, was operated secretly for years until it was disclosed last summer. A Belgian investigation into the scheme found that Swift was operating in uncertain legal territory. Privacy watchdogs across Europe concluded in November that the company was breaching data protection laws and privacy rights. Mr Hustinx said yesterday that the Swift operation "has breached the trust and private lives of many millions of people". He accused the Frankfurt-based European Central Bank of failing to demand a halt to the operation and of keeping quiet for years on the controversy. The ECB denied responsibility and called instead for the European and US governments to "clarify" the dilemmas thrown up by a clash between privacy rights and combating terrorism. 2:29:49 AM  PermaLink   / trackback []

Confidential Data Lost Via USB Drives and Other Mobile Devices, New Survey Finds. Confidential Data Lost Via USB Drives and Other Mobile Devices, New Survey Finds. Data loss prevention at the endpoint is top priority for IT security. [GT: Security and Privacy] 2:20:37 AM  PermaLink   / trackback []

Rise in Sophisticated Attacks Against Savvy PC Users Expected to Rise. Rise in Sophisticated Attacks Against Savvy PC Users Expected to Rise. "Malware writers continue to blur the line between trojans, worms, viruses and spyware." [GT: Security and Privacy] 2:08:56 AM  PermaLink   / trackback []

Vermont agency warns 70,000 of possible data compromise. Vermont agency warns 70,000 of possible data compromise. The Vermont Agency of Human Services is warning some 70,000 people in the state that a computer breach may have exposed their Social Security numbers and other personal data. [Computerworld Privacy News] 2:05:33 AM  PermaLink   / trackback []

BBC NEWS | Magazine | Could X-ray scanners work on the street? X-ray cameras that would "undress" passers-by in a bid to thwart terrorists concealing weapons, could be coming to a street near you, according to reports. Aside from the obvious privacy issues, would such a plan work? Leaked documents said to have been drawn up by the Home Office and seen by the Sun newspaper say cameras which can see through clothes could be built into lamp posts to "trap terror suspects". While Home Secretary John Reid has denied knowledge of the plans, the technology is not dissimilar to that already found in some UK airports. Currently, air security officials pick out individuals to stand in a booth while three pictures are taken of the person in slightly different positions. Within seconds, an X-ray scanner produces an image of the body, minus the clothes. What shows up is the naked human form and anything that may be concealed on the person, such as coins, a gun or drugs. 2:01:07 AM  PermaLink   / trackback []

Workplace Prof Blog: Ninth Circuit Revises Workplace Privacy Ruling A few months ago, we wrote about the 9th Circuit case of United States v. Ziegler, in which the court had found that a private sector employee had no legitimate expectation of privacy under the Fourth Amendment when government agents sought to use evidence from his workplace computer in a criminal prosecution. This finding was based on the fact that his company had access rights to the computer. Orin Kerr of the Volokh Conspiracy vehemently opposed this reading of what the Fourth Amendment requires and now the 9th Circuit panel has reissued its opinion in the case, United States v. Ziegler, No. 05-30177 (9th Cir. Jan. 30, 2007). Although the result comes out the same, Orin is now happy because the court's reasoning is more consistent with Fourth Amendment precedent in this area. Here is some of what Orin said yesterday about the case on The Volokh Conspiracy: 1:55:45 AM  PermaLink   / trackback []

Sowing the Seeds of Surveillance. Sowing the Seeds of Surveillance. History suggests the spy technology we build to catch terrorists will eventually be used to bust minor scofflaws. Commentary by Jennifer Granick. [Wired News: Security Blanket] 1:49:55 AM  PermaLink   / trackback []

Tracking the Russian Scammers. Tracking the Russian Scammers. In the battle to bust Eastern European carding syndicates, the biggest obstacles are sometimes the foreign law enforcement agents protecting them. By Kim Zetter. [Wired News: Security Blanket] 1:46:55 AM  PermaLink   / trackback []

Records on Spy Program Turned Over to Lawmakers - washingtonpost.com The Justice Department turned over documents about the government's controversial domestic spying program to select members of Congress yesterday, ending a two-week standoff that included pointed threats of subpoenas from Democrats. The deal appears to resolve the latest conflict between Congress and the administration over the National Security Agency's surveillance effort, and it provides new evidence of the administration's more accommodating approach to the Democrats who now control Congress. The agreement follows the administration's announcement two weeks ago that it was replacing NSA's warrantless surveillance program with a plan approved by the secret court that administers the Foreign Intelligence Surveillance Act, or FISA. The NSA had conducted the domestic spying for more than five years without court oversight. Under yesterday's accord, announced by Attorney General Alberto R. Gonzales, more than three dozen lawmakers will have access to the secret court orders governing the spying program that were issued Jan. 10 and the applications from the Justice Department that preceded them. The lawmakers include the House and Senate leaders, the members of the two intelligence panels and the heads of the two judiciary committees, officials said. But Gonzales and other Bush administration officials also indicated that they had no intention of making the orders and related documents available to the public. The lawmakers and staff who view the records will be subject to strict statutes that bar disclosure of classified information. Congressional aides said it was unclear how much new information could be shared with the public. 1:44:13 AM  PermaLink   / trackback []

Crime Boards Come Crashing Down. Crime Boards Come Crashing Down. Competing FBI and Secret Service operations clash, as the feds prepare to strike deep at the heart of international cybercrime rackets. Last in a three-part series by Kim Zetter.Plus: Part 1: Tightening the Net on Cybercrime [Wired News: Security Blanket] 1:40:15 AM  PermaLink   / trackback []

Poll Exposes Generational Divide on Privacy Expectations. Poll Exposes Generational Divide on Privacy Expectations. "This survey raises questions that could significantly impact our policymaking on privacy in years to come, assuming the MySpace generation maintains their privacy views as they age." [GT: Security and Privacy] 1:34:26 AM  PermaLink   / trackback []

My health records? Let me check my cell. My health records? Let me check my cell. Blue Cross of Northeastern Pennsylvania plans next month to allow its 600,000 members to access their health records on cell phones or handheld devices. [Computerworld Privacy News] 1:30:05 AM  PermaLink   / trackback []

E-Mail Security: Coping With New Threats, Legal Requirements, And Archiving Challenges. E-Mail Security: Coping With New Threats, Legal Requirements, And Archiving Challenges. (Source: St. Bernard) This webcast will help you evaluate whether or not you have adequate protections and safeguards in place for securing and managing e-mail. It will discuss policies, best practices, and technology solutions that you can use to make your enterprise e-mail secure and in compliance. [Computerworld Privacy News] 12:42:39 AM  PermaLink   / trackback []

Free stolen ID search service launched amid skepticism. Free stolen ID search service launched amid skepticism. A service launched last week that aims to help online users determine whether their credit card and Social Security numbers may have been compromised is running into skepticism about how secure -- and safe -- it is. [Computerworld Privacy News] 12:37:44 AM  PermaLink   / trackback []