You remember when HP tricked its users into downgrading their printers by sending them a fake "security update" that actually made the printers refuse third-party and refilled ink cartridges? Read the rest
EFF to Texas AG: Epson is screwing Texans
California farm lobby's sellout to John Deere will cost its members their right to repair
As I wrote last week, the California Farm Bureau (which lobbies for the state's farmers) struck a deal to gut the state's Right to Repair legislation, a move that will cost farmers their right to fix their own tractors and other heavy equipment. Read the rest
Cloud computing and DRM: a match made in hell
As part of yesterday's International Day Against DRM, Public Knowledge's John Bergmayer published It’s Always DRM’s Fault, which uses this month's viral story about an Apple user named Anders G da Silva whose movie was deleted from his Itunes because he moved from one country to another. Read the rest
FCKDRM: a DRM-free games company launches a site for DRM-free media
Good Old Games is a fantastic classic video game company whose products are 100% DRM-free; they are stalwart defenders of your rights to use your technology in legal ways, to protect your privacy and to experiment with the things you buy. Read the rest
Join me and the Electronic Frontier Foundation today for a Reddit AMA about how copyright law can censor security research
Have you ever wanted to talk with the Electronic Frontier Foundation about the risks of talking in public about security issues, especially in connected Internet of Things devices? Today, you'll get your chance. Read the rest
Antivirus maker Sentinelone uses copyright claims to censor video of security research that revealed defects in its products
At this week's B-Sides Manchester security conference, James Williams gave a talk called "Next-gen AV vs my shitty code," in which he systematically revealed the dramatic shortcomings of anti-virus products that people pay good money for and trust to keep them safe -- making a strong case that these companies were selling defective goods. Read the rest
Truthful security disclosures should always be legal. Period.
After a week of blockbuster security revelations from Defcon it's important to take a step back and address the ongoing battle by companies to seize a veto over who can reveal defects in their products. Read the rest
Insecure medical equipment protocols let attackers spoof diagnostic information
Douglas McKee of McAffee presented his research into the security of medical diagnostic equipment at last week's Defcon conference in Las Vegas. Read the rest
Bad infrastructure means pacemakers can be compromised before they leave the factory
It's been ten years since the first warnings about the security defects in pacemakers, which made them vulnerable to lethal attacks over their wireless links, and since then the news has only gotten worse: one researcher found a way to make wireless pacemaker viruses that spread from patient to patient in cardiac care centers, and the medical device makers responded to all this risk by doubling down on secrecy and the use of proprietary code. Read the rest
Google DRM for Email can be disabled by ticking a few boxes in Firefox
Last week, I linked to a critique of Google's new "confidential mode" for Gmail and Google Docs, which purports to allow you to send people documents without letting them print, copy or forward them. Read the rest
Meet the people who went to the US Copyright Office to demand your right to repair, remix and preserve!
Every three years, the US Copyright Office undertakes an odd ritual: they allow members of the public to come before their officials and ask for the right to use their own property in ways that have nothing to do with copyright law.
It's a strange-but-true feature of American life. Blame Congress. When they enacted the Digital Millennium Copyright Act in 1998, they included Section 1201, a rule that bans people from tampering with copyright controls on their devices. That means that manufacturers can use copyright controls to stop you from doing legitimate things, like taking your phone to an independent service depot; or modifying your computer so that you can save videos to use in remixes or to preserve old games. If doing these legal things requires that you first disable or remove a copyright control system, they can become illegal, even when you're using your own property in the privacy of your own home.
But every three years, the American people may go before the Copyright Office and ask for the right to do otherwise legal things with their own property, while lawyers from multinational corporations argue that this should not happen.
The latest round of these hearings took place in April, and of course, EFF was there, with some really cool petitions (as dramatized by the science fiction writers Mur Lafferty, John Scalzi, and Cory Doctorow [ahem]), along with many of our friends and allies, all making their own pleas for sanity in copyright law.
We commemorated the occasion with a collection of short video conversations between me and our pals. Read the rest
DRM, the World Cup, and what happens when a red team plays a green team
Before the W3C green-lit its DRM for web-video, we at EFF made a plea to allow bypassing the DRM to add accessibility features like shifting colors to accommodate color-blind people; the leadership dismissed the idea as a mere nice-to-have that companies could be relied on to fix themselves. Read the rest
With the App Store monopoly case, the Supreme Court could reverse decades of frustrated antitrust enforcement
On Monday, the Supreme Court will review the 9th Circuit's decision in Apple Inc. v. Pepper, in which the plaintiffs argue that Apple has established a monopoly over apps for Ios (this part is actually incontrovertible, as Apple has used both technology and law to prevent rival app stores from operating), and that Iphone and Ipad owners have a right to ask the government to break up this monopoly (that's the controversial part). Read the rest
How do we fix IoT security without blocking interoperability and creating monopolies?
Jonathan Zittrain (previously) writes, "There’s reason to worry about security for the ever-growing Internet of Things, and it’ll be tempting to encourage vendors to solely control their devices that much more, limiting interoperability or user tinkering. There are alternatives - models for maintaining firmware patches for orphaned devices, and a 'Faraday mode' so that iffy devices can still at least partially function even if they’re not able to remain safely online. Procrastination around security has played a key role in its success. But 'later' shouldn’t mean 'never' for the IoT." Read the rest
UK consumer review magazine Which?: your smart home is spying on you, from your TV to your toothbrush
The UK consumer review magazine Which? (equivalent to America's Consumer Reports) has published a special investigation into the ways that Internet of Things smart devices are spying on Britons at farcical levels, with the recommendation that people avoid smart devices where possible, to feed false data to smart devices you do own, and to turn off data-collection settings in devices' confusing, deeply hidden control panels. Read the rest
My science fiction story about EFF's proposed jailbreaking exemption
Every three years, the US Copyright Office lets the public beg for limited exemptions to Section 1201 of the Digital Millennium Copyright Act, which bans bypassing DRM, even in your own property, even for strictly legal reasons. Read the rest
Mur Lafferty wrote a science fiction story about the DMCA to help EFF's fair use for vidders campaign
Every three years, the US Copyright Office asks America about the problems with Section 1201 of the DMCA, which bans breaking DRM even for legal reasons, and America gets to answer with requests for exemptions to this rule. Read the rest
