The authorities seized the Toshiba laptop from defendant Ramona Fricosu in 2010 with a court warrant while investigating alleged mortgage fraud. Ruling that the woman’s Fifth Amendment rights against compelled self-incrimination would not be breached, U.S. District Judge Robert Blackburn ordered the woman in January to decrypt the laptop.

Microsoft’s Office 365 isn’t the only cloud service losing high-profile customers to security and privacy concerns. Google got a dose of the same medicine on Wednesday, with the LA Timesreporting that the LAPD is now backing out of its contract with Google so it can stick with its on-premises Novell platform for e-mail.

The LAPD and the city attorney’s office ultimately decided, some two years after deciding to move their e-mail systems to the cloud in order to save costs, that no cloud computing solution is really compatible with the federal security guidelines that the departments are required to follow.

“It will be difficult for law enforcement to move to a cloud solution until the [security requirements] and cloud are more in line with each other,” LAPD’s CIO told the LA Times.

more

A claim by Wikileaks that documents it released last week provide evidence of a “secret new industry” of mass surveillance was as breathless as previous pronouncements from Julian Assange’s organization. But the material does provide a stark reminder that our online activities are easily snooped upon, and suggests that governments or police around the world can easily go shopping for tools to capture whatever information they want from us.

The take-home for ordinary computer users is that the privacy and security safeguards they use—including passwords and even encryption tools—present only minor obstacles to what one researcher calls the “cyber security industrial complex.”

“There is no true privacy in any computing systems against determined government-level surveillance,” says Radu Sion, a computer scientist at Stony Brook University who directs its Network Security and Applied Cryptography Laboratory. He says that as computing systems become more complex, and reliant on components from many different suppliers, the number of vulnerabilities that can be exploited by attackers and surveillance tools will grow.

more

Smartphones are computers. Software is hacked every day. The speaker and camera can be turned on without a warning. This also is possible with normal landlines. The phone speaker can remotely activated without the phone ringing.

Chinese hackers were said to be turning on webcams and secretly transmitting. Information flows into and out of smartphones like water flows in rainforests. Information practically evaporates. Spyware can be installed. Wifi and Bluetooth are open doors.”

http://blogs.computerworld.com/19352/smartphone_pocket_spy_tracking_by_drug_cartels_at_mexican_border_war_zone

Fourteen Comanche code talkers and two Medal of Honor recipients are among those inducted into the Oklahoma Military Hall of Fame on Nov. 11. The Comanches used their native language to keep Germans from understanding radio transmissions during World War II. They were honored posthumously during the ceremony. Nine other Oklahomans also were honored at the ceremony  Nov. 11 at the Gaylord Center at Oklahoma Christian University. Four of them also are deceased. Those selected for induction into the Oklahoma Military Hall of Fame are:
The Comanche Nation code talkers served in the U.S. Army 4th Signal Company, 4th Infantry Division during World War II. They used their Comanche language in radio transmissions that helped save the lives of thousands of Allied troops. They served in combat from the D-Day invasion of Normandy to the end of the World War II in Europe. The 14 Comanche code talkers who served in the European Theater are: Charles Joyce Chibitty, Haddon “Red” Codynah, Robert Holder; Forrest Kassanavoid, Wellington “Mike” Mihecoby, Perry “Taxi” Noyobad, Clifford Ototivo Sr., Simmons Parker, Melvin Permansu, Elgin Red Elk, Roderick Red Elk, Larry W. Saupitty, Morris “Sunrise” Tabbyyetchy and Willis Wood Yackeschi. Noyobad was awarded the Bronze Star and Purple Heart; Kassanavoid, Saupitty, Yackeschi and Roderick Red Elk were awarded the Purple Heart during the Korean War. Melvin Permansu and Roderick Red Elk received the Korean War Service Medal and United Nations Service Medal. In 1995, Chibitty, then 78, was honored as the last surviving World War II Comanche U.S. Army code talker in the Pentagon’s Hall of Heroes.

Staff Sgt. George G. Red Elk was born in Lawton. He enlisted in the U.S. Army in 1967 and served in Vietnam as a loader, gunner and tank commander with Company D, 1st Squadron, 11th Armored Cavalry Regiment. He received the Silver Star and Purple Heart for his actions on March 18, 1969, when his unit was conducting a sweep through a rubber plantation. Red Elk’s tank received rocket-propelled grenade fire, severely wounding his hand. He knocked out a second rocket-propelled grenade team and remained with his tank until he passed out. Red Elk also served in the Oklahoma Guard’s Battery A, 1st Battalion, 158th Field Artillery of the 45th Field Artillery Brigade. He was deployed to Saudi Arabia during Operations Desert Shield and Desert Storm.

Read more: http://newsok.com/oklahoma-military-hall-of-fame-set-to-induct-new-members/article/3600761#ixzz1d9GRLoxD

The Illinois Statewide Terrorism and Intelligence Center released a “Public Water District Cyber Intrusion” report on November 10 that indicates that hackers may have had access to the system since September. Hackers using Russian IP addresses hacked the software vendor that makes the system. They were then able to access the vendor’s database of usernames and passwords, and used the stolen credentials for remote access to the SCADA system’s network. These vendors keep records of their customer’s access information for maintenance and upgrading the systems.

Two to three months before the discovery of the hack, operators noticed “glitches” in the remote access to the SCADA system. “They just figured it’s part of the normal instability of the system,” said Joe Weiss, cybersecurity expert and managing partner at Applied Control Solutions, who obtained a copy of the report. “But it wasn’t until the SCADA system actually turned on and off that they realized something was wrong.”

Britain’s largest police force has been using covert surveillance technology that can masquerade as a mobile phone network to intercept communications and unique IDs from phones or even transmit a signal to shut off phones remotely, according to the Guardian.

The system, made by Datong in the United Kingdom, was purchased by the London Metropolitan police, which paid $230,000 to Datong for “ICT hardware” in 2008 and 2009.

The portable device, which is the size of a suitcase, pretends to be a legitimate cell phone tower that emits a signal to dupe thousands of mobile phones in a targeted area. Authorities can then intercept SMS messages, phone calls and phone data, such as unique IMSI and IMEI identity codes that allow authorities to track phone users’ movements in real-time, without having to request location data from a mobile phone carrier.

…

A spokesman for the U.S. Secret Service verified to CNET that the agency has done business with Datong, but would not say what sort of technology it bought from the company.

The FBI is known to use a similar technology called Triggerfish, which also pretends to be a legitimate cell tower base station to trick mobile phones into connecting to it. The Triggerfish system, however, collects only location and other identifying information, and does not intercept phone calls, text messages, and other data.

more

“This is definitely a troubling development on a number of levels,” says Ronald Deibert, director of Citizen Lab, an Internet think-tank at the University of Toronto who leads research on cyberwarfare, censorship, and espionage. “In the context of the militarization of cyberspace, policymakers around the world should be concerned.”

Indeed, the spread of such code could be destabilizing. The Pentagon’s cyberwar strategy, for example, makes clear that computer attacks on industrial and civilian infrastructure like chemical factories or power grids as well as military networks could be regarded as equivalent to a conventional bombing or other attack, if civilians were endangered.

more

A legal challenge questioning the constitutionality of a federal law authorizing warrantless electronic surveillance of Americans inched a step closer Wednesday toward resolution.

The 2nd U.S. Circuit Court of Appeals for the second time rejected the Obama administration’s contention that it should toss a lawsuit challenging the 2008 Foreign Intelligence Surveillance Amendments Act. Among other things, the government said the plaintiffs — Global Fund for Women, Global Rights, Human Rights Watch, International Criminal Defence Attorneys Association, The Nation magazine, PEN American Center, Service Employees International Union and others — don’t have standing to bring a constitutional challenge because they cannot demonstrate that they were subject to the eavesdropping or suffered hardships because of it.

Former AT&T engineer Mark Klein handed a sheaf of papers in January 2006 to lawyers at the Electronic Frontier Foundation, providing smoking-gun evidence that the National Security Agency, with the cooperation of AT&T, was illegally sucking up American citizens’ internet usage and funneling it into a database.

The documents became the heart of civil liberties lawsuits against the government and AT&T. But Congress, including then-Sen. Barack Obama (D-Illinois), voted in July 2008 to override the rights of American citizens to petition for a redress of grievances.

Congress passed a law that absolved AT&T of any legal liability for cooperating with the warrantless spying. The bill, signed quickly into law by President George W. Bush, also largely legalized the government’s secret domestic-wiretapping program.

Obama pledged to revisit and roll back those increased powers if he became president. But, he did not.

more