In a blog post on Sept. 3, Facebook’s Chief Product Officer Chris Cox explained the company’s goal to offer personalized education to public school students. Facebook partnered with the Bay Area’s Summit Public Schools throughout the 2014 school year to develop Personalized Learning Plan (“PLP”), a tool to help students organize and tailor their educations. Over 2000 students and 100 teachers utilized the program in 2014.

Summit seeks to offer PLP to public schools across the nation, and is partnering with a few schools in 2015 to test the piloted program. Facebook will use feedback from the 2015 school year to improve the interface.

PLP is a program entirely separate from the main Facebook company. Students and teachers who login are not required to have a Facebook account, and user information will not be sold to any advertisement companies. In fact, Facebook must abide by the Student Privacy Pledge, a guide to protecting students endorsed by the US Government.

Article via TechCrunchJuly 13, 2015

Photo: Facebook via Scott Beale [Creative Commons Attribution-NonCommercial-NoDerivs]

In July of 2015, 400 gigabytes of documents outlining the dealings of spyware company Hacking Team were released. The for-profit surveillance firm was found to work with oppressive regimes across the globe, including those of Russia, Ethiopia, Azerbaijan, Kazakhstan, Vietnam, Saudi Arabia, and Sudan. Also benefiting from the company’s exploitive surveillance tools is the US Bureau of Investigation, which has spent $775,000 on Hacking Team tools since 2011.

Hacking Team’s abilities are expansive. The firm can steal pre-encrypted data and passwords typed in Web browsers, as well as activate the microphone and camera on a target device. Users of Google Play and Apple stores may also be activating surveillance malware coded by Hacking Team.

Privacy and human rights advocates are outraged by the lack of legislation regulating firms like Hacking Team and its rival Gamma International, but regulation can be tricky. Badly drafted export controls could create red tape for journalists to circumvent when trying to access communications mechanisms or antivirus software. Syrian activists, for example, have cited American export controls as one of the leading obstacles of installing anti-surveillance software on phones and computers to protect their communications from the Assad regime.

The discussion is subtle, as it must take into account the personal liberties of global citizens, the dynamic nature of the technology industry, and the diverse interests of country governments.

Article via Committee to Protect JournalistsJuly 13, 2015

Photo: On the Phone via Artform Canada [Creative Commons Attribution-NonCommercial-NoDerivs]

 

 

 

According to Manhattan’s District Attorney, smartphone data encryption hinders criminal investigations in state courts. Cyrus R. Vance, Jr. testified to the Senate Judiciary Committee on July 8, 2015 in an effort to advocate legislation allowing law enforcement officials to access private phone data with judicial authorization.

Vance, Jr. cites that 71% of phone evidence in his office comes from Apple or Android devices. As a result, Apple and Google’s move to fully integrate data encryption in their next devices will significantly affect prosecution processes in state courts.

State courts adjudicate over 90% of all criminal cases annually, which means over 100,000 cases for Vance’s office alone.

“To investigate these 100,000 cases without smartphone data is to fight crime with one hand tied behind our backs,” he asserts.

Vance does not support bulk data collection or surveillance without authorization. Civil liberty and privacy advocates are still wary, however, and endorse data encryption overall. This sentiment is in relative accordance with statements from Deputy Attorney General Sally Yates and FBI Director James Comey. They say that the Obama administration has no current plans to mandate companies to provide federal agents encryption keys for their products, but they also recognize that companies should not make their devices “warrant-free zones” that impede law enforcement’s authorized access to criminal evidence.

Article via Legaltech NewsAugust 10, 2015

Photo: IPhone via Jorge Quinteros [Creative Commons Attribution-NonCommercial-NoDerivs]

The National Institute of Standards and Technology (NIST) released a practice guide on how health care providers can share patient information securely through mobile devices. The guide is the first in a series dedicated to the development of advanced cybersecurity for all organizations.

Tablets and smartphones are already integrated in the health professions, as 87% of physicians report using a tablet or smartphone in the workplace. Physicians can exchange patient information, submit medical claims, access electronic records, and e-prescribe through mobile devices. In general, the use of mobile devices for these tasks is efficient and less susceptible to error.

However, the use of tablets and smart phones for secure health information carries significant risk. Vital patient information could be leaked if the device were lost or stolen, or if a patient sent data through insecure cellular networks. Without developed authentication or data encryption, patients face the threat of “medical identity theft,” disastrous for both their own health and the success of their provider.

NIST guide seeks to mitigate risks through explicit instructions and hypothetical scenarios. The guide will take comments from the public until Sept. 25, 2015.

Article via Ice Miller Strategies LLC, August 6, 2015

Photo: Man at work–physician assistant via yooperann [Creative Commons Attribution-NonCommercial-NoDerivs]

Recent incidences of police brutality have sparked public outrage, and as a result, the use of police dashboard and body cameras has increased. However, footage released to the public could be altered. Sandra Bland’s arrest video, for example, loops several times in the 52 minute span. Journalists have accused police departments of editing the videos; the Texas Department of Public Safety denies any tampering of the footage.

Police camera footage is stored unaltered on police department software systems. This is because the Axon body cam dominates the police camera industry, and it records footage in a way that is nearly impossible to corrupt. The only way an officer could impede a video is by physically pushing the off-button for five seconds, an unlikely occurrence during a high-intensity event. Additionally, the officer’s name is attached to the video for as long as it exists in the software system.

Although raw footage can’t be edited, there’s no way to regulate what edits are made to the footage released to the public. In fact, almost all videos that the media releases are edited—bystanders’ faces are blurred, and sections of video with no action are removed. The Freedom of Information Act has no provisions that require police departments to release raw footage. However, several incidences recorded on police cameras have led to the indictment of guilty officers, and no allegations that videos are tampered have been confirmed.

It’s evident that police body and dashboard cams will continue to rise to prominence, whether the accusations of video tampering are true or not. The Obama administration has proposed a $75 million program to provide 50,000 cameras to agencies, and the Department of Justice is allocating $20 million for police body cameras.

Article via The Huffington Post, August 28, 2015

Photo:  via Whoop Whoop that’s the Sound of the Police via AshtonPal [Creative Commons Attribution-NonCommercial-NoDerivs]

In a ruling by the US Court of Appeals on Aug. 24, the Federal Trade Commission (FTC) has the authority to prosecute corporations that have insufficient cybersecurity to protect customers against hackers.

The Third Circuit ruled in favor of the FTC, which litigated the international hotel company Wyndham Worldwide Corporation for failing to prevent the theft of 619,000 customer’s personal and financial information by hackers. The hacking resulted in over $10.6 million in counterfeit charges.

Wyndham attempted to counter the Commission’s lawsuit in the US Court of Appeals, but the recent ruling declared the FTC’s actions legal.

The FTC will be expected “to increase its regulatory activity in this area now that its authority has been upheld,” says Michael Hindelang, head of the data security/privacy litigation and e-discovery/information management practice groups at Honigman Miller Schwartz and Cohn.

 

Article via Legaltech News, August 26, 2015

Photo: statue at Federal Trade Commission via sha in LA [Creative Commons Attribution-NonCommercial-NoDerivs]