Journalists discovered that two companies had posted the personal data of 170,000 customers online. The leak, which exposed the victims to identity theft and fraud, was reportedly so bad that social security numbers, passport scans, financial data and home addresses were indexed by search engines. Rather than merely address the problem, however, TerraCom and YourTel threatened the reporters, referring to them as “hackers” and accusing them of “numerous violations of the Computer Fraud and Abuse Act.”
David Giles, Scripps’ deputy general counsel, responded to the accusation that the reporters “hacked” the information by calling on the companies to stop the “name calling and the legal posturing” and instead address the “apparent careless security practices” raised by the story. “Regardless of the flowery moniker you have used to characterize the bureau's newsgathering activities, the bureau's reporters have not violated the Computer Fraud and Abuse Act or any other law or regulation,” Giles wrote in a letter sent to TerraCom and YourTel’s lawyers earlier this month.
It's interesting how readily many of us pattern-recognize this as a classic "hacker tragedy," whereby clueless stupids kill the messenger who was trying to help them. But it seems simpler than that, to me: is this not simply a case of criminals breaking data protection laws in pursuit of their own convenience, then threatening the people who caught them?
See, for example, this part of the legal nastygram they sent to the journos:
"Because the Scripps Hackers have put the Companies in the position of having to incur the costs of potentially complying with more than 20 state data breach notification laws, the Companies are likely to look to Scripps to reimburse them for those costs."
Translation: "If only we hadn't been found out, we wouldn't have to comply with the law. You'll pay for this!" *shakes fist*
Last week’s John Oliver segment on Robert E. Murray, CEO of the coal mining Murray Energy Corporation, noted that Murray had a history of litigation against his critics in the news media, including the New York Times, and predicted that Murray would go on to sue Oliver (Murray’s lawyers had sent Oliver a letter warning […]
In this security footage from a bank in Chapalita, Mexico, three masked men approach the doors with the clear intent to rob the place. A fleet-footed member of staff locks the glass doors. The masked men stand on the other side a little while, looking in at him. Then they walk off.
SXSW has made good on its promises to walk the talk on supporting immigration rights, coming out in support of the city of Austin’s lawsuit against the state of Texas over SB-4, the Texas law that bans “sanctuary cities” where law enforcement officers do not check or take action on arrestees’ immigration status unless it […]
Even though credit cards now feature an EMV chip for securing transactions, they still have to include the magnetic strip for compatibility with older point of sale systems. Because of this, there’s no way for the chip’s new security capabilities to protect against card skimmers in the wild.How do you protect yourself from legacy-technology-induced fraud? […]
As the old saying goes, “You should sit in meditation for 30 minutes every day. Unless you are too busy, in which case you should meditate for an hour.” Since most of us have an endless list of things to do and people to see, carving out quiet time can feel impossible, especially when most […]
The Bragi Dash Truly Wireless Smart Earphones are far more than your run of the mill Bluetooth earbuds. While the earpiece design makes these earbuds ideal for exercise and activity, and passive noise cancelling is conducive to a more serene listening experience, these buds go well beyond just playing music.First of all, they can actually […]