Last week, CareFirst BlueCross BlueShield (CareFirst) reported a data breach that was initially discovered last year. When the incident was first noticed, the company assumed they had taken care of the problem – only to learn that wasn’t the case ten months later.
The healthcare sector has taken center stage in the recent months as criminals shift from retail and finance towards easier targets. Unfortunately, most healthcare organizations are operating under a number of flawed assumptions concerning security and it’s starting to cause serious problems.
The sheriff in San Bernardino County—east of Los Angeles County—has deployed a stingray hundreds of times without a warrant, and under questionable judicial authority.
In response to a public records request, the San Bernardino Sheriff’s Department (SBSD) sent Ars, among other outlets, a rare example of a template for a “pen register and trap and trace order” application. (In the letter, county lawyers claimedthis was a warrant application template, when it clearly is not.) The SBSD is the law enforcement agency for the entire county, the 12th-most populous county in the United States, and the fifth-most populous in California.
A San Diego, California court has ruled that a tech entrepreneur will not be allowed to access his license plate reader (LPR) records from a regional government agency.
Earlier this month, Superior Court Judge Katherine Bacal handed down a six-page decision to Michael Robertson, finding that he does not have the right, under the California Public Records Act (CPRA), to access records of his own license plate as scanned by members of the San Diego Association of Governments (SANDAG).
Biometric technologies are on the rise. By electronically recording data about individual’s physical attributes such as fingerprints or iris patterns, security and law enforcement services can quickly identify people with a high degree of accuracy.
The latest development in this field is the scanning of irises from a distance of up to 40 feet (12 metres) away. Researchers from Carnegie Mellon University in the US demonstrated they were able to use their iris recognition technology to identify drivers from an image of their eye captured from their vehicle’s side mirror.
Security researchers have tracked commuters with over 90 percent accuracy through accelerometer data stolen from Android smartphones.
In a paper describing the research, titled “We Can Track You If You Take the Metro: Tracking Metro Riders Using Accelerometers on Smartphones” (.PDF), a security team hailing from Nanjing University, China say they were able to use motion accelerometers as a side-channel for an attack aimed at tracking users with up to 92 percent accuracy.
Britons may soon face identity checks to access adult material on the internet, according to discussions between Whitehall and the private sector.
A scheme proposed by the pornography industry would see adult sites verifying visitors’ identity with organisations such as banks, credit reference agencies or even the NHS.
When Philip Zimmermann was campaigning for nuclear disarmament in the 1980s, he kept an escape plan in his back pocket. The inventor of the world’s most widely used email encryption system, Pretty Good Privacy – more commonly known as PGP – was ready to move his family from Colorado to New Zealand at a moment’s notice.
The button was never pressed and the Zimmermanns stayed put. Until this year, that is. At 61, the Internet Hall of Fame inductee and founder of three-year-old mobile encryption startup Silent Circle has just left the US for Switzerland. In the end, it was not the nuclear threat that convinced him to leave his homeland, but the surveillance arms race.