Tag: government
YouTuber is facing 20 years in prison for intentionally crashing his plane in a real-life GTA stunt and then lying about it to the government
UK government rejects recommendations for further regulation of secondary ticketing
The government is very hackable, and they have your data
Data breaches and security failures happen everyday. There’s little we can do about that if we want to participate in modern society, except maybe switch out the companies we interact with for their competitors if we presume one to be more secure. There’s one service that we don’t have a choice on whether to interact with, no matter how high profile its security incidents become: the federal government.
A breach of the Office of Personnel Management announced in 2015 it had leaked background investigation records, impacting 21.5 million individuals, according to the agency. The highly publicized Solarwinds hack discovered in 2020 exposed government and business records to Russian insiders. Earlier this year, the US Marshals Service division of the Department of Justice became a target, when hackers stole personal information about investigation targets, personnel and more.
The attacks were targeted, usually seeking out some type of sensitive state information. But we all have sensitive information stored throughout federal agencies like our social security numbers or home addresses. Probably even more information is at stake if you utilize federal services like Medicare, student loans or SNAP benefits. We have no choice but to give the federal government access to our personal information in exchange for certain services, unless you’re reading this while living off grid.
“If we want to live in the information age, and we’re using some of these systems, we are inherently giving up control,” Kevin Cleary, clinical assistant professor of management science and systems at University at Buffalo, told Engadget. “You have to trust that agency has put forward all the best controls and practices.”
In response, the federal government has developed agencies like the Cybersecurity and Infrastructure Security Agency to lead better security initiatives across departments. In part, this is intended to help you feel a little bit better about storing your data within federal servers by setting higher standards for how it safeguards your data. According to Michael Duffy, associate director of the cybersecurity division at CISA, since the agency’s establishment in 2018, it’s spearheaded the most progress he’s seen in his federal cybersecurity career.
So, things are improving, and you can probably trust the federal government to keep your data safe in the same way you trust the companies you interact with everyday. What makes the government so different, though, is that it’s a high profile target. Adversarial countries want in on state secrets while, at the same time, it’s hard to prioritize spending on security measures. Getting tax-payer funds to fill a pothole on your local highway is hard enough when the damage is tangible and obvious, while security is hard to quantify the benefits of until an attack occurs. In other words, the value of security investments aren’t proven until it’s already too late.
This has gotten better. Security investments in the federal government largely trend upwards. Still, it’s not enough. “Sometimes their budgets don’t allow them to take every step or to everything that they would like to do, because you just simply don’t have the money,” Marisol Cruz Cain, director of information technology and cybersecurity at GAO, said.
But the reason why the federal government may appear less secure is because of its obligation for transparency. There’s a responsibility to share lessons learned after an incident, and make sure citizens know what happened. That’s actually a big part of CISA’s job. “We are really looking at ways that we are making it more acceptable to raise the hand and say this is the way that we were attacked or an incident occurred,” Duffy said.
The government also interacts with a ton of outside businesses. So, say a government contractor experiences a breach or security incident, that means that data held in federal tech could be exposed. This opens up a slew of new attack vectors, and possibilities for malpractice.
You can actually see how secure certain agencies are thanks to the Government Accountability Office (GAO) and legislation like the Federal Information Technology Acquisition Reform Act. The latter documents tech modernization efforts across major agencies, including cyber readiness. GAO, for its part, audits cybersecurity efforts and develops privacy impact assessments that are publicly available descriptions about what information the agency collects, how they use it and more.
But with all these audits come a relatively bleak conclusion. Agencies aren’t evaluating their policies and procedures to make sure that high profile incidents don’t happen on a regular basis, Cruz Cain said. Your information will be on those servers whether you like it or not.
This article originally appeared on Engadget at https://www.engadget.com/the-government-is-very-hackable-and-they-have-your-data-163034576.html?src=rss
Binance Temporarily Paused Bitcoin Transactions Over Network Congestion, Also Faces Government Scrutiny
The company resumed withdrawals within two hours of its initial Twitter posting about the withdrawals.
On-chain data shows that there are nearly 400,000 unconfirmed Bitcoin transactions, which is higher than anything seen during the bull runs of 2018 and 2021. The average transaction fee has also doubled since March, pushing it to a two-year high. The current transaction fee is just over $8, a 309% change from a year ago.
In an earlier CoinDesk article, an executive at Luxor Technologies, a full-stack Bitcoin mining pool, blamed the rising fees on the adoption of the new BRC-20 token standard, a new way to “inscribe” additional data during transactions.
But meanwhile, an anonymous reader shared another report from Mashable about Binance:
Bloomberg reported that the crypto exchange (currently the world’s largest) is facing a U.S. Department of Justice probe over possibly allowing Russians to move money in a way that would violate U.S. sanctions… It’s worth noting that no formal accusation has been made against Binance, as this is just a probe. It may be some time before accusations manifest — if they manifest at all. In 2021, Binance was under a similar investigation related to possible money laundering.
But another Reuters article adds that Bloomberg’s sources “also said that Binance is discussing the possibility of settling with the Department of Justice regarding previous allegations that the exchange was also used to move money to circumvent U.S. sanctions against Iran.”
And elsewhere, Reuters reports:
Israel has seized around 190 crypto accounts at crypto exchange Binance since 2021 , including two it said were linked to Islamic State and dozens of others it said were owned by Palestinian firms connected to the Islamist Hamas group, documents released by the country’s counter-terror authorities show…
In a blog post after its publication, Binance said that Reuters was “deliberately leaving out critical facts.” The exchange has been “working closely with international counter-terrorism authorities” on the seizures, Binance said. “With regard to the specific organizations mentioned in the article, it’s important to clarify that bad actors don’t register accounts under the names of their criminal enterprises,” it said…
Under Israeli law, the country’s defense minister can order the seizure and confiscation of assets that the ministry deems related to terrorism… The seizures by Israel’s National Bureau for Counter Terror Financing highlight how governments are targeting crypto companies in their efforts to prevent illegal activity. Binance, founded in 2017 by CEO Changpeng Zhao, says on its website it reviews information requests from governments and law enforcement agencies on a case-by-case basis, disclosing information as legally required.
Binance has also said it checks users for connections to terrorism and has “continued to invest tremendous resources to enhance its compliance program,” it told U.S. senators in March in response to their requests for information on Binance’s regulatory compliance and finances.
Read more of this story at Slashdot.
US government publishes annual report assessing copyright regimes around the world
Government on brink of giving NHS staff 5% pay rise
We can’t stay in Sudan forever, says government minister
Brazilian mayor, 65, married1-year-old two days after naming her mother to city government post
Elon Musk’s Twitter Has Been More Compliant with Government Requests, Not Less
After castigating OG Twitter for its cooperation with government content requests, it turns out that Elon Musk’s version of the platform hasn’t been doing much better since he took over half a year ago. Not only has Musk Twitter™️ been responding to a variety of government requests—but it’s been doing so at a much…