veooz 360° of this story
Summary TAMPA, Florida (Reuters) - Despite enduring "a perfect storm" of troubles for U.S. spy agencies over the last 18 months, the director of national intelligence announced on Tuesday that he plans to stay on the job through the end of President Barack Obama's term. Speaking to an industry conference in Tampa, James Clapper detailed a litany of challenges he said have hit the $45 billion-per-year U.S. intelligence-gathering effort, from U.S. budget turmoil and the Syrian war to leaks by former National Security Agency contractor Edward Snowden. "The past 18 months is one of the toughest stretches for the intelligence community I've seen in my 50-plus years in the business," Clapper said.
Summary A new email service that protects its users from the prying eyes of the NSA and other spy agencies has gone online. In this way, the service only acts as a carrier for already encrypted messages which will prevent government agencies from extracting information. It will also mean Lavaboom will be unable to handover unencrypted mails and codes to government agencies if they request them.
Summary MOSCOW -- National Security Agency leaker Edward Snowden asked Russian President Vladimir Putin Thursday whether his nation's spy agencies sweep up data en-masse from Russian citizens, the way his former employer has done in the United States. "We have very strict rules about the use of special equipment and methods by the secret services listening into conversations, intercepting internet communications. It requires a court's permission for us to monitor individuals, so there is no mass monitoring and the law would not permit it." The Russian leader claimed his nation's spy agencies "do not have the money to do so like the U.S. does."
Summary Last Monday, my Washington Post colleagues celebrated winning the Pulitzer Prize for public service along with the Guardian newspaper for their reporting on Edward Snowden's revelations about the National Security Agency. On Wednesday, Post columnist Marc Thiessen held a counterdemonstration. Thiessen, who writes a weekly online column for the Post, hosted an event at the American Enterprise Institute devoted in large part to denouncing the Guardian, the Post and the Pulitzer committee for their actions.
Summary Security firm FireEye has discovered a major security flaw in Google's mobile operating system, ComputerWorld reports , which could allow an attacker to modify the behavior of an app icon in the launcher in order to send users to a malicious site that would collect personal data. The app apparently uses "normal" app permissions, with FireEye having demoed its proof-of-concept attack on a Nexus 7 running Android 4.4.2. The company also said that apps with this phishing feature could work on many other devices, including smartphones and tablets that don't use the "Launcher" functionality in AOSP - the company tested a Galaxy S4 running Android 4.3, a HTC One on Android 4.4.2 and a Nexus 7 running CyanogenMod 11, coming up with the same results.
Summary OTTAWA--Canadian police Wednesday said they had charged a 19-year old man with stealing confidential taxpayer data by exploiting the Internet security flaw known as the Heartbleed bug. The Royal Canadian Mounted Police said they had arrested the man, identified as Stephen Arthuro Solis-Reyes on Tuesday at his London, Ontario, residence.
Summary The Royal Canadian Mounted Police announced the arrest of a 19-year-old man who allegedly used a notorious security flaw to attack the country's tax agency, and steal data from 900 Canadians. "The RCMP treated this breach of security as a high priority case and mobilized the necessary resources to resolve the matter as quickly as possible," said an official. The incident was one of the most high-profile security breaches related to Heartbleed, a two-year old flaw related to the software that many companies and governments use to encrypt their website data.
Summary If this story from the Calgary Herald holds up, it will be among the first documented instance of a hacker exploiting the Heartbleed Internet security flaw - currently festering on hundreds of thousands of websites - to steal sensitive information:. On Monday, the agency said 900 social insurance numbers had been compromised. The loss was detected Friday, but the agency delayed telling Canadians about it at the request of the RCMP.
Summary OTTAWA--Canadian police said Wednesday they had charged a 19-year college student from Ontario with stealing confidential taxpayer data by exploiting the Internet security flaw known as the Heartbleed bug, the first such arrest since the bug was discovered this month. The police action came two days after the country's tax authority, the Canada Revenue Agency, said someone had, in a "malicious" act, removed about 900 social insurance numbers--akin to U.S. Social Security numbers--from its systems. The agency knew about the breach on Friday, but the RCMP had asked it to delay disclosing the matter until Monday.
Summary LONDON, Ontario, April 16 (UPI) -- Canadian police said Wednesday a 19-year-old student was charged with stealing confidential taxpayer data using the Internet security flaw called Heartbleed Bug. Canada's tax authority made public two days ago that someone had acted with malicious intent and accessed 900 social insurance numbers -- similar to U.S. Social Security numbers -- from its systems. While the tax agency knew about the breach Friday, the RCMP asked the agency to withhold disclosing the breach till Monday.
Summary Apple (NASDAQ: AAPL ) earned another feather for its cap last week when it became apparent that iOS and OS X web services were not exposed to the Heartbleed security flaw that affected millions of websites. OpenSSL copies data over an existing array without verifying the length of the packet. Since the server didn't verify that the amount of information being requested matches the size of the request packet, the client can ask for more information than it needs.