March 2012

Chinese hackers call for “self-discipline” and an end to commercially motivated cybercrime. The Wall St. Journal (subscription required) suggests it’s because former hackers have grown up and become security professionals. But does it occur to anyone that the Chinese government might be worried about the rising tide of complaints about Chinese hacking, particularly cyber espionage

General Keith Alexander, the head of US Cyber Command and the National Security Agency, testified to Congress yesterday that China continues to hack into “defense industrial base companies” and steal military technology (see Don Reisinger‘s latest blog post). And he confirmed what was widely believed already—that China was responsible for the hacks on

I wonder whether this strategy will really be all that effective. Apparently “Microsoft does not believe the operators of the facilities it raided on Friday, which rent space to clients on computers connected to the Internet, are in league with the people behind the botnets. And those operators said they had no idea that equipment

A few weeks ago, everyone agreed that the CFAA civil liability provisions were way overbroad, and the Senate judiciary committee proposed amending the CFAA to abolish CFAA liability for violating a website or webservice’s terms of service. That was the right decision; the unamended law essentially enforced commercial terms of service with criminal penalties. But