Wednesday, February 1, 2017

US border plans to demand tourists' browser history, phone data may be unlawful

b6c6297faf1bd0a746fcfd1c7ce4e6d1d035d465.jpgNEW YORK -- A former senior lawyer for the National Security Agency has called plans to force visitors to the US to turn over contacts lists, browsing histories, and social media data "tremendously intrusive" and "grossly overbroad."
April Doss, former associate general counsel for intelligence law at the National Security Agency, argued in a phone call that such a move would almost certainly be unlawful.

READ MORE:


CNN reported Sunday that White House policy director Stephen Miller said Trump administration officials are "discussing the possibility of asking foreign visitors to disclose all websites and social media sites they visit, and to share the contacts in their cell phones."
Miller added that foreign visitors who decline to share that information could be denied entry, but sources said that the idea was at a preliminary discussion level.
"It defies belief to my way of thinking that web browsing histories and contacts list of every person who wants to enter the US on a visit could possibly have intelligence value," said Doss.

"GROSSLY OVERBROAD"

News of the discussions comes two days after President Trump signed a new executive order barring citizens of seven predominantly Muslim nations entry into the US, which sparked protests around the country during the weekend and widespread condemnation from major tech companies whose employees were also affected by the order.
After the ACLU brought forward a case, a federal court stayed the executive order, preventing any deportations for the time being.
If you want to get started as an ethical hacker, learn how network security professionals protect their systems, or take your IT career to the next level you are going to LOVE this course! This course is a sequel to The Complete Ethical Hacking Course:...
Training provided by Udemy
The former NSA lawyer, whose job provided legal advice on the NSA's intelligence operations as well as ensuring compliance with privacy and civil liberties policies, explained that the government neither has the capacity to conduct deep-dive searches on every visitor at the border, nor has the legal powers to do it once they are permitted entry to the US.
Doss said that it would be "tremendously intrusive" if US border officials were searching the contents of communications, such as contacts lists and social media information, which people are generally afforded a reasonable expectation of privacy.
Even with browsing data, she said that it's "pretty well established in US law" that web searches and news articles can be construed as content if the name of the article is in the web address, for example.
"To ask every single visitor to the US to provide this information would certainly be grossly overbroad," she said.

INTERNATIONAL FALLOUT

Rules like this, if enacted, could have serious domestic and foreign policy implications for the Trump administration.
Doss warned that the international ramifications may diminish intelligence sharing between the US and other countries, such as Iran which has reportedly already banned US citizens from entering the country.
International trade and data flows could be interrupted, she said.
I can't imagine [Privacy Shield] surviving something like this," she said, "because it would be very hard for European data protection authorities to reach a level of comfort with this kind of personal data from individuals simply as a requirement of traveling into the US."
"This could precipitate or [be] used to further propaganda for adversaries of the US," she added.
Already, social and media channels belonging to so-called Islamic State are said to be "taking advantage of the situation" by sharing articles by Western media outlets instead of their own propaganda.

"DETRIMENTAL TO INTELLIGENCE ACTIVITIES"

Doss, who served for more than a decade at the intelligence agency, warned that there could be a negative impact on effective intelligence gathering, if such a plan was implemented.
"There is no conceivable fashion in which all of the information from every person who wishes to enter the US on a visit has anything to do with national security or lawfully authorized intelligence gathering activities," she said.
"To do that sort of collection on this scale would be quite detrimental to intelligence activities because you would get so much garbage that has nothing to do with anything," she added.
She said that the move would be a "tremendous drain on resources" because the volume of people coming in would make finding a needle in a haystack "several hundred million times larger."
That could hamper and distract intelligence officials "from doing much more focused work that could have very important outcomes," she added.
"That could be a real cost to effective intelligence gathering," she said.
A spokesperson for the White House did not return an email requesting comment.

Tuesday, January 31, 2017

Apple's Cash @ $246, 009, 000, 000

Apple's cash hoard swells to record $246.09 billion

Apple's enormous cash hoard grew to $246.09 billion in the fiscal fourth quarter, up $8.49 billion from the previous quarter.
That figure is larger than Sri Lanka's estimated 2016 gross domestic product, but smaller than Denmark's, according to the CIA World Factbook. If Apple's cash pile was its own public company, it would be the 13th largest in the world.
The tech giant also reported earnings that beat Wall Street expectations on Tuesday and said it sold more iPhones than expected. The stock jumped more than 2 percent in after-hours trading as more than 4.9 million shares changed hands.
The company's cash reserves have long fueled speculation of acquisitions that Apple might make. Apple keeps most of its cash outside the U.S. for tax reasons, but President Donald Trump and the Republican-controlled Congress are expected to change rules on repatriation of cash stored overseas, which could make it easier for Apple to spend some of the money on acquisitions without taking a major tax hit.
Apple CEO Tim Cook told CNBC, "Repatriation is front and center. That is good for the country and Apple."

Novel French Disconnect Law Has Little Practical Effect



The new law was prompted by concerns over the intrusion of work into private lives.
Carlina Teteris/Getty Images
Ah, to work in France: plenty of vacation and a 35-hour workweek. And, as of Jan. 1, a new law that gives French employees the right to disconnect. Companies in France are now required to stop encroaching on workers' personal and family time with emails and calls.
The law was part of an overall labor bill that provoked months of street demonstrations and divided the country. The controversy was mostly over a single provision that made it easier for French companies to fire people. But nearly everyone supports the provision allowing workers to walk away from emails and ignore their smartphones when they're out of the office.
French Labor Minister Myriam El Khomri commissioned a 2015 study that warned of the health impact of what she called "info-obesity." It showed that more and more French people could not get away from work — even when they weren't there.
Labor lawyer Patrick Thiebart argues that burnout and other health-related issues are on the rise because of an overload of digital demands on employees.
"If an employee receives emails during all their weekends and at night until 11 p.m., then I can assure you that at a certain point in time, it can negatively impact his health," he says.
French Labor Minister Myriam El Khomri commissioned a 2015 study that warned of the health impact of what she called "info-obesity." It showed that more and more French people could not get away from the office, even when they weren't there.
Aurelien Meunier/Getty Images
The new law stipulates that companies with more than 50 workers must negotiate with employees and unions and agree on a policy to reduce the intrusion of work into private lives.
"Of course your boss shouldn't send you emails on a Sunday when you're at lunch, enjoying a leg of lamb and a good Bordeaux," says Bernard Vivier, who runs the Higher Institute of Work, a think tank that focuses on the French workplace.
"It's so French to throw a law at every kind of problem," he says. But he doesn't think a law can fix this one. Such ills must be changed by management and through new practices, he says.
It's a complicated issue, notes Thiebart, the lawyer, because digital culture also offers employees freedom and flexibility.
"Everybody is happy with the smartphones and the new technology," Thiebart says, "because employees can work at home and don't have to spend time and money in commuting. And for companies, they can save money because they don't need all the staff on the premises."
Many large European companies and government departments already recognize the right of their employees to disconnect from work. Companies such as Volkswagen and Daimler, and French insurer Axa, have taken steps to restrict out-of-hours messaging — including Volkswagen's limited email server connections on evenings and weekends.
Thiebart says that isn't such a good idea, since many businesses operate across several time zones. But he says his clients, many of them large corporations, are not hostile to the new French law. They believe a lack of downtime decreases the productivity of their workforce.
At a Paris gym where people are working up a sweat after a day at the office, many are still attached to their devices. Jean Luc Bauché is lifting weights, wearing white earbuds connected to a smartphone in his pocket.
He says it's a great idea to be able to disconnect. But he doesn't think it's possible.
"You can pass laws to protect people from dangers like speeding," he says, "but this law won't work because it's counter to the way society is evolving."
Bauché says he's the only person he knows who turns his phone off at night when he sleeps.
"Most people don't dare," he says. "They're afraid they'll miss something."

California Bans SMartphone Useage in Vehicles

Get out that phone mount or face a fine under a new California law.
Get out that phone mount or face a fine under a new California law.
IMAGE: ANDREAS GEBERT/PICTURE-ALLIANCE/DPA/AP IMAGES
Starting Sunday a new law is making it even harder to use your phone in the car. Throughout the state you already can't text, scroll around, click or look at messages on your phone while driving, and we've been long trained to never bring our phones to our ears while talking.
But starting Jan. 1 2017, you can't even have your phone in your hand or out to click or swipe something. It will have to be mounted to your windshield or dashboard — only then can you tap your screen to make sure that that new Google Maps route delivers you out of traffic hell.
The bill, AB 1785, is one step closer to making motorists comply with completely hands-free cellphone laws which first went into effect in 2008. California Highway Patrol public information officer Mike Martis told Mashable that the new mounted rule "clears it up for a lot of drivers" who were unsure about what they could or couldn't do in the car. 
With this new law, drivers will likely use way more Siri and voice-operated services. So let's hope that technology can keep up with our demands and increased usage. 
California is one of many states with pretty strict cellphone laws for texting, talking and other uses while driving. Martis said he's already pulled over many drivers from out of state who claim to have no idea about California's cellphone laws. But now the state is taking hands-free driving to the next level. "California is pretty aggressive" when it comes to distracted driving, Martis said. "We’re hoping to reduce the number of distracted driver collisions."
"We’re hoping to reduce the number of distracted driver collisions."
The bill's author, state assemblyman Bill Quirk told the Sacramento Bee this week that this finally closes a loophole in rules meant to slow down distracted driving. "The whole idea is you don’t have the phone in your hand, period,” he told the paper. 
When the bill was signed back in September, Quirk said in a press release, “Smartphones have an abundance of available features that demand a driver’s attention, leading to very dangerous driving behavior."
So from Sunday, California drivers won't be able to hold a phone in their hands at all. Any violation (swiping, tapping, clicking your phone while it's off a phone mount) starts with a $20 fine and a $50 fine for subsequent violations.
The most limiting and likely most difficult part of the law to enforce is only allowing "a single swipe or tap of the driver's finger" even if the phone is mounted. No excessive swiping!
Most smartphones are mounted on the windshield or dashboard in Uber vehicles, but many other drivers hold them in their hands.

Most smartphones are mounted on the windshield or dashboard in Uber vehicles, but many other drivers hold them in their hands.
IMAGE: AP PHOTO/RAFIQ MAQBOOL
Kamala Harris, the state's newly elected senator, wrote in a Facebook post Thursday that "California road safety officials estimate that distracted driving is a factor in 80% of crashes." She sees the law as a way to make roads safer.
For ride-hailing app users and drivers this shouldn't have much of an impact since most seasoned Uber and Lyft drivers already have a mounted phone rig. But for non-professional drivers this means it's time to buy some equipment if you want to continue swiping onto the next song or to see an alternate route on a maps app. 
For others visiting the state without a phone mount, better put the phone away entirely to avoid any temptation to touch your phone. Or put all your trust in Siri — no one has time for fines. 

Monday, January 30, 2017

Trump Using His “old, unsecured Android phone”




Same old unsecured hairstyle too...






Enlarge / The Samsung Galaxy S7 and S7 Edge, Samsung's most recent (non-exploding) flagship smartphones.
Ron Amadeo

Donald Trump continues to use his "old, unsecured Android phone" since taking office despite "the protests of some of his aides," according to a report from The New York Times about how the new president is settling in to his routine. This contradicts another report from late last week that indicated Trump had given up the phone in exchange for a "secure, encrypted device approved by the Secret Service."
It's not clear exactly what kind of Android phone Trump uses—he has previously indicated that it's a Samsung Galaxy device—or whether it has also been encrypted or otherwise hardened or what kinds of things he uses it for. Samsung's Knox software is approved for "sensitive but unclassified use" by the US Department of Defense, so these phones are cleared for at least some kinds of government work when configured correctly.
How big of a deal is this? We don't know anything about the phone's configuration, but the state of Android security is notoriously poor compared to other operating systems like iOS or Windows, both of which are patched regularly by Apple and Microsoft with no interference from hardware manufacturers or wireless carriers. Google releases monthly security updates for Android, and Samsung is better than most about actually releasing those updates to its most recent devices (flagship phones tend to get monthly updates, midrange phones and most tablets get quarterly patches), but there is still often a gap of several days or weeks between when those security bulletins are published and when the patches are available.
In any case, it's surprising that Trump has kept his old phone—the Trump campaign spent months criticizing Democratic nominee Hillary Clinton for her alleged mishandling of sensitive e-mails, and her campaign has claimed that the FBI's statements on the case may have cost her the election. President Obama was only given a smartphone last year, and in interviews he claimed that it had been so locked down that it couldn't even be used to take pictures or send text messages.
"A lot of the newfangled stuff for security reasons, I don't get," Obama said in 2015.