The EFF’s Proposal to Reform the CFAA

From the Electronic Frontier Foundation:

“After the tragic death of programmer and Internet activist Aaron Swartz, EFF calls to reform the infamously problematic Computer Fraud and Abuse Act (CFAA). In June 2013, Aaron’s Law, a bipartisan bill to make common sense changes to the CFAA was introduced by Reps. Lofgren and Sensenbrenner. You can help right now by emailing your Senator and Representative to reform the draconian computer crime law.

The CFAA is the federal anti-hacking law. Among other things, this law makes it illegal to intentionally access a computer without authorization or in excess of authorization; however, the law does not explain what “without authorization” actually means. The statute does attempt to define “exceeds authorized access,” but the meaning of that phrase has been subject to considerable dispute. While the CFAA is primarily a criminal law intended to reduce the instances of malicious hacking, a 1994 amendment to the bill allows for civil actions to be brought under the statute.” Read more…


New Developments: Kosovar Hacker Charged With Supplying U.S. Military Personnel Info to ISIS

Malaysia arrests hacker who allegedly stole U.S. military personnel records for ISIS

Kevin Collier writes on THE DAILY DOT:

“Malaysian police have arrested an alleged hacker and accused him of helping the terrorist group Islamic State.

The FBI has accused Ardit Ferizi, known online as Th3Dir3ctorY, of leading the hacking group Kosova Hacker’s Security—which calls itself “Albania’s largest hacking group”— and helping ISIS publish the names and personal information of U.S. military personnel in September. Distributing that information online, along with instructions to attack those personnel, is a common ISIS tactic.” Read more…

New Developments: “Cannibal Cop” Decision Deepens Circuit Split On Federal Hacking Statute

from Sam Winston on TRADE SECRET INSIDER:

“Prosecutors and employers take notice — one of the most robust, wide-reaching tools against computer fraud and abuse could be blunted. The Second Circuit recently joined the Fourth and Ninth circuits in narrowly interpreting the Computer Fraud and Abuse Act (CFAA) in United States v. Valle, 807 F.3d 508 (2d Cir. 2015). Valle, an ex-cop, was convicted of using his access to police databases to aid his gruesome plot to kidnap, torture, and eat a woman, but the Second Circuit overturned that conviction based on its reading of the CFAA. While the Valle case made lurid headlines in the New York press, it has further reaching consequences for the CFAA. The decision deepens the circuit split against the First, Fifth, Seventh, and Eleventh circuits, which give prosecutors and employers more room to bring claims under the CFAA with a broader interpretation of the act.” Read more….