Schneier on Security

APRIL 2, 2024

Through a 2010 FOIA request (yes, it took that long), we have copies of the NSA’s KRYPTOS Society Newsletter, “ Tales of the Krypt ,” from 1994 to 2003. According to the jacket, Schneier is a data security expert with a master’s degree in computer science. There are many redactions. protocols and source code.

FOIA 133

FOIA IT Security 133

eDiscovery Daily

APRIL 4, 2024

Here are some questions to ask a technology company you are looking to work with to help solve FOIA and request management issues. Does the platform offer features for securely redacting sensitive information from documents? What measures does the platform have in place to ensure data security and protect against unauthorized access?

FOIA 41

FOIA Education Cloud Access 41

Schneier on Security

AUGUST 22, 2023

A FOIA he filed with the Westchester police revealed that the ALPR system was scanning over 16 million license plates a week, across 480 ALPR cameras. But in this case it was used to examine the driving patterns of anyone passing one of Westchester County’s 480 cameras over a two-year period. ” And he had the data to back it up.

FOIA 96

FOIA IT Artificial Intelligence Privacy 96

Data Matters

MAY 5, 2022

Cybersecurity and Infrastructure Security Agency (“CISA”), repeatedly emphasizes CISA’s cooperative approach with the U.S. Instead, she described the Agency as a coequal partner with the private sector in securing U.S. Jen Easterly, Director of the U.S. private sector. infrastructure. The post CISA: “We don’t stab the wounded.”

FOIA 95

FOIA Cybersecurity Privacy Communications 95

The Schedule

AUGUST 22, 2018

The second speaker was Nate Jones, Director of the FOIA Project for the National Security Archive. ” In his role with the FOIA Project, he’s had numerous occasions to request records from NARA, so he began with a brief overview of records scheduling at the federal level. embracing automatic declassification.

Archiving 58

Archiving FOIA Records Management Compliance 58

Data Matters

FEBRUARY 11, 2019

On December 28, 2018, Michigan adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law in the form of Michigan H.B. FOIA Protections. The Act does not, of course, supersede federal privacy or data security laws, such as HIPAA. 6491 (Act). MCL § 500.550. MCL § 500.550.

Insurance 67

Insurance Security Cybersecurity FOIA 67

Schneier on Security

JANUARY 10, 2020

Motherboard received the brochure as part of a FOIA request to the Irvine Police Department in California. Special Services Group, a company that sells surveillance tools to the FBI, DEA, ICE, and other US government agencies, has had its secret sales brochure published.

FOIA 72

FOIA Sales Communications Government 72

eDiscovery Daily

MARCH 25, 2024

Sensitive Information: Balancing transparency with privacy and national security concerns can be challenging. The post What are the Growing Challenges with Public Records/FOIA Requests? Some of the additional challenges include: Volume of Requests: The high volume of requests can overwhelm agencies with limited resources.

FOIA 31

FOIA Compliance Risk Government 31

eDiscovery Daily

MARCH 28, 2024

By Rick Clark In the two separate worlds of legal processes and Freedom of Information Act (FOIA)/public records requests, eDiscovery technology and standard workflows have emerged as powerful ways to streamline operations and ensure compliance. Search and review processes are central to both FOIA requests and eDiscovery workflows.

FOIA 41

FOIA Compliance Cloud Government 41

Hunton Privacy

MARCH 2, 2011

finding that corporations are not entitled to “personal privacy” and therefore may not invoke Exemption 7(C) of the Freedom of Information Act (“FOIA”). AT&T Inc. The Court disagreed and reversed a Third Circuit decision that extended “personal privacy” rights to corporations.

FOIA 40

FOIA Privacy Communications IT 40

Hunton Privacy

JANUARY 26, 2012

Regarding FOIA, Christopher Graham warned of a widening gap between “the rhetoric of openness” and “the day-to-day reality of reluctance and foot-dragging.” Regarding FOIA, Christopher Graham warned of a widening gap between “the rhetoric of openness” and “the day-to-day reality of reluctance and foot-dragging.”

FOIA 40

FOIA Insurance Big data Data breaches 40

Hunton Privacy

DECEMBER 17, 2015

adopts the Senate’s longer 10-year sunset. adopts the Senate’s longer 10-year sunset. The House is scheduled to vote on the omnibus spending bill on Friday, with the Senate to follow. The Obama Administration has already signaled that it supports the bill.

Cybersecurity 40

Cybersecurity FOIA Risk Government 40

Gimmal

JANUARY 12, 2022

For these types of requests, which go by a variety of names like FOIA, Public Records Requests, and Sunshine Laws, being proactive is not only an essential step in an excellent open records process; it becomes critical when you are working with tight deadlines and limited resources. Smaller public organizations do not have that luxury.

FOIA 52

FOIA Records Management ROT Information governance 52

Data Protection Report

NOVEMBER 23, 2021

operations of foreign banking organizations) to notify their regulators as soon as possible but no later than 36 hours of identifying a significant “computer-security incident” that results in “actual harm” and rises to the level of a “notification incident” as defined in the final rule. Applicability to Banking Organizations.

FOIA 64

FOIA Data breaches Communications Insurance 64

Hunton Privacy

JUNE 20, 2013

It also updated or published 55 pieces of advice relating to the Freedom of Information Act 2000 (“FoIA”). Commissioner Graham reported that individuals’ awareness of their rights under FoIA are back to peak levels of 86%, last recorded in 2007. The ICO also: issued 23 penalties, totaling over £2.6 Effective and Efficient.

FOIA 40

FOIA Education Personal data Compliance 40

Schneier on Security

JULY 15, 2019

With a name, police can also find a person's email address, phone numbers, current and previous addresses, bank accounts, social security number(s), business relationships, family relationships, and license information like height, weight, and eye color, as long as it's in the agency's database. Boing Boing [link].

Access 109

Access IT FOIA Security 109

Schneier on Security

MAY 10, 2021

This is a newly unclassified NSA history of its reaction to academic cryptography in the 1970s: “ New Comes Out of the Closet: The Debate over Public Cryptography in the Inman Era ,” Cryptographic Quarterly , Spring 1996, author still classified.

FOIA 145

FOIA IT 145

Hunton Privacy

AUGUST 6, 2010

As reported in BNA’s Privacy Law Watch on July 29, 2010, three bills were introduced by House Republicans to repeal Section 929I of the Dodd-Frank Wall Street Reform and Consumer Protection Act (the “Dodd-Frank Act”).

FOIA 40

FOIA Privacy Risk IT 40

Hunton Privacy

JUNE 16, 2016

Department of Homeland Security (“DHS”) and U.S. On June 15, 2016, the U.S. Department of Justice (“DOJ”) jointly issued final guidance on the Cybersecurity Information Sharing Act of 2015 (“CISA”). Enacted in December 2015, CISA includes a variety of measures designed to strengthen private and public sector cybersecurity.

Cybersecurity 45

Cybersecurity FOIA Government Privacy 45

Schneier on Security

JULY 23, 2024

It’s heavily redacted , but still interesting. Many more ODNI documents here.

IT 111

IT FOIA 111

IG Guru

MARCH 12, 2020

Read about this significant breach on images here. The post Clearview AI has billions of our photos. Its entire client list was just stolen via CNN appeared first on IG GURU.

IT 53

IT FOIA Data breaches Risk 53

Interactive Information Management

APRIL 9, 2014

The Agency Deputy CIO (DCIO), Enterprise Architect (EA), IT System/Security Manager (ITSM) and the Open Data Community Evangelist (ODCE) – Over Cafeteria Coffee The DCIO & ITSM at a table, talking about the annual IT budget status. The ODCE drifts over, recognizes the ITSM from a recent agency newsletter. ODCE – "Can I sit here?

Energy and Utilities 45

Energy and Utilities Big data FOIA CMS 45

IGI

OCTOBER 5, 2017

The following is an excerpt of a letter submitted to the National Archives and Records Administration by the IGI in response to a public hearing of the FOIA Advisory Committee to be held at the National Archives McGowan Theatre on October 19th, 2017.

FOIA 20

FOIA Archiving Government Access 20

Brandeis Records Manager

FEBRUARY 21, 2015

She forcefully implores readers to delete credit card documents, used checkbooks, and pay slips, without any acknowledgement of the need to securely eradicate the PII therein (whoops). This book passed under my radar until a kind colleague pointed out that, in one chapter, Kondo dispenses personal record retention and categorization guidance.

Records Management 46

Records Management Paper FOIA Record destruction 46

Schneier on Security

AUGUST 31, 2021

Late last year, the NSA declassified and released a redacted version of Lambros D. Callimahos’s Military Cryptanalytics, Part III. We just got most of the index. It’s hard to believe that there are any real secrets left in this 44-year-old volume.

Military 90

Military FOIA IT 90

eDiscovery Daily

JANUARY 30, 2018

We’ve compiled intriguing data from high-profile FOIA releases to contextualize how leading practitioners are using visualizations, analytics, and AI as a force multiplier for investigations. How to leverage data security practices to ensure appropriate protection of personal data under the GDPR. Tired of looking at Enron data?

e-Discovery 34

e-Discovery Artificial Intelligence GDPR Education 34

Data Protection Report

MARCH 16, 2022

The Act will require a “covered entity” to report any “substantial cyber incident” to the Cybersecurity and Infrastructure Security Agency (“CISA”) within 72 hours after the covered entity reasonably believes the incident has occurred. Reporting Requirements. CISA will then coordinate further sharing of the report. Work to be Done .

Ransomware 59

Ransomware FOIA Agriculture Cybersecurity 59

DLA Piper Privacy Matters

MAY 12, 2021

In addition, the law requires the Georgia state director of emergency management and homeland security to develop additional rules and regulations related to the notice requirements. HB 156 was signed into law on March 25, 2021 and is already in effect. Scope of the law. The law applies to utilities and agencies in the state of Georgia.

Cybersecurity 105

Cybersecurity FOIA Data breaches Government 105

OpenText Information Management

MARCH 7, 2025

For example, AI use cases are under development at NARA , the Department of Homeland Security , the Department of Health and Human Services , and the General Services Administration. Responding to a FOIA request can be time-consuming and expensive for an agency. The variety and scope of these AI use cases are also vast.

Government 64

Government FOIA Artificial Intelligence Metadata 64

Adam Shostack

JANUARY 2, 2025

Storm-0558 was able to succeed because of a cascade of security failures at Microsoft. Storm-0558 was able to succeed because of a cascade of security failures at Microsoft. The CSRB has released its report into an intrusion at Microsoft, and.its a doozy. its a doozy. How long should we wait for a key to be replaced?

Cloud 52

Cloud FOIA Government Metadata 52

Krebs on Security

FEBRUARY 23, 2025

The Trump administration has fired at least 130 employees at the federal government’s foremost cybersecurity body — the Cybersecurity and Infrastructure Security Agency (CISA). Those dismissals reportedly included CISA staff dedicated to securing U.S. elections, and fighting misinformation and foreign influence operations.

Cybersecurity 315

Cybersecurity Government Security Access 315