Accurate, Focused Research on Law, Technology and Knowledge Discovery Since 2002

Category Archives: E-Records

CIA allegedly destroyed sole copy of Senate torture report

The Independent: “The CIA inspector general’s office has said it “mistakenly” destroyed its only copy of a comprehensive Senate torture report, despite lawyers for the Justice Department assuring a federal judge that copies of the documents were being preserved. The erasure of the document by the spy agency’s internal watchdog was deemed an “inadvertent” foul-up… Continue Reading

IG Report – GSA Data Breach – 18F and Slack

MANAGEMENT ALERT REPORT: GSA Data Breach JE16-004 May 12, 2016 “During the course of an ongoing evaluation, the OIG Office of Inspections and Forensic Auditing identified an issue that warrants immediate attention. Due to authorizations enabled by GSA 18F staff, over 100 GSA Google Drives were reportedly accessible by users both inside and outside of… Continue Reading

FCW – OPM’s sensitive data on feds still not encrypted

Federal Computer Week, Adam Mazmania, May 13, 2016 – “More than a year after a hack of Office of Personnel Management systems compromised more than 22 million records, the agency has not been able to encrypt all the sensitive data on 4 million federal employees, including Social Security numbers. “There are still elements of OPM… Continue Reading

Sixth Annual Benchmark Study on Privacy & Security of Healthcare Data

“The Sixth Annual Benchmark Study on Privacy and Security of Healthcare Data by the Ponemon Institute, finds that criminal attacks are the leading cause of half of all data breaches in healthcare.  Employee mistakes, third-party snafus, and stolen computer devices—are the root cause of the other half of data breaches. The study also found that… Continue Reading

Lack of Trust in Internet Privacy and Security May Deter Economic and Other Online Activities

National Telecommunications and Information Administration (NTIA): “Every day, billions of people around the world use the Internet to share ideas, conduct financial transactions, and keep in touch with family, friends, and colleagues. Users send and store personal medical data, business communications, and even intimate conversations over this global network. But for the Internet to grow… Continue Reading

Multiple data security breaches reported by FDIC

Washington Post: “In yet another example of fragile security in federal cyber systems, data for 44,000 Federal Deposit Insurance Corp. customers were breached by an employee leaving the agency. The breach occurred in February and was outlined in an internal FDIC memorandum obtained by The Washington Post. The March 18 memo from Lawrence Gross Jr.,… Continue Reading

Senate Judiciary Committee Hearings on Mass Surveillance Statute

Via EFF: “The Senate Judiciary Committee will hold a hearing on the Foreign Intelligence Surveillance Act Amendments Act Tuesday May 10. The Act, passed in 2008, created what is now known as Section 702 of the Foreign Intelligence Surveillance Act (FISA).  Section 702 is used for mass spying, and government surveillance conducted under the law… Continue Reading

UK Gov – Password Guidance Simplifying Your Approach

UK Center for the Protection of National Infrastructure – Password Guidance Simplifying Your Approach – By simplifying your organisation’s approach to passwords, you can reduce the workload on users, lessen the support burden on IT departments, and combat the false sense of security that unnecessarily complex passwords can encourage. “Passwords are an essential part of… Continue Reading

New Scientist – Google AI has access to huge haul of NHS patient data

Via New Scientist, Hal Hodson: ” It’s no secret that Google has broad ambitions in healthcare. But a document obtained by New Scientist reveals that the tech giant’s collaboration with the UK’s National Health Service goes far beyond what has been publicly announced. The document – a data-sharing agreement between Google-owned artificial intelligence company DeepMind… Continue Reading

EFF Sues for Secret Court Orders Requiring Tech Companies to Decrypt Users’ Communications

Via EFF: “The Electronic Frontier Foundation (EFF) filed a Freedom of Information (FOIA) lawsuit today against the Justice Department to shed light on whether the government has ever used secret court orders to force technology companies to decrypt their customers’ private communications, a practice that could undermine the safety and security of devices used by… Continue Reading

Data Act: Progress Made but Significant Challenges Must Be Addressed

Data Act: Progress Made but Significant Challenges Must Be Addressed to Ensure Full and Effective Implementation, GAO-16-556T: Published: Apr 19, 2016. Publicly Released: Apr 19, 2016. “The Office of Management and Budget (OMB) and the Department of the Treasury (Treasury) have taken some significant steps toward implementing the key provisions of the Digital Accountability and… Continue Reading

Saving Government Email an Open Question with December 2016 Deadline Looming

Via National Security Archive: “The Defense Intelligence Agency (DIA), the Department of the Treasury’s Comptroller, and the Nuclear Regulatory Commission (NRC) are among a handful of agencies that have already admitted they will not meet the December 31, 2016, deadline for electronic management of official government email – like Hillary Clinton’s – in their mandatory,… Continue Reading