#cfaa — Public Fediverse posts

I would like to believe that if the US federal government weren't completely fucked up right now then OpenAI and the other AI parasites with a nexus in the US would have been criminally charged by now with violating the #CFAA by actively circumventing the crawling protections added recently to websites specifically to block them.
Alas, the government is too busy engaging in vindictive prosecution of #Trump's enemies who aren't actively bribing him.
#infosec #AI
Ref: https://darmstadt.social/@claudius/115436859378534835

Correct me if I'm wrong, US #lawfedi, but I'm pretty sure @404mediaco is right that every case of of the landlords accessing the (prospective) tenants' workplace logins is a #CFAA violation, because employees are not legally entitled to authorize the landlord to log into the employers' systems, so the landlords are exceeding their authorized access.

#uslaw #cybercrime

Ryanair’s #CFAA Claim Against Booking.com Has Nothing To Do with Actual #Hacking
#ryanair #Bookingcom #security

https://www.eff.org/deeplinks/2025/07/ryanairs-cfaa-claim-against-bookingcom-has-nothing-do-actual-hacking

"Musk’s #DOGE Goons Surreptitiously Transmitted Reams of White House Data. Musk’s team installed a Starlink Wi-Fi terminal on top of the White House, allowing them to bypass data-tracking security measures."
https://www.thedailybeast.com/elon-musks-doge-goons-surreptitiously-transmitted-reams-of-white-house-data/

PS: This looks like it violates a handful of serious federal laws. But will the Trump #DOJ prosecute? Even investigate? Trump could pardon all the DOGE players or simply direct their nonprosecution. Or if the Trump-Musk spat continues, he could press for max penalties under law. If he doesn't, could it be that there's evidence of his own approval or involvement? What data was transmitted and who has copies now?

#Espionage #CFAA #Musk #Trump #Theft #USLaw #USPol #USPolitics

Lost the post I was trying to quote… #AI #BadBots #CreepyCrawlers #CFAA https://bsky.app/profile/did:plc:gd454babhsadtqelpkvuopqr/post/3llbdk4d5222h

Sue these f*ckers for unauthorised access to sites, a serious offence under the US #CFAA, and I’m sure many options for (class) civil suits… I defer of course to my learned US friends 👩‍💼 https://natlawreview.com/article/scotus-resolves-circuit-split-limits-scope-computer-fraud-and-abuse-act

Supreme Court Resolves Unautho...

In A Monday Night Declaration, The White House Admits #Musk And #DOGE Violated The #CFAA (Although They Might Not Realize It) - https://www.techdirt.com/2025/02/18/in-a-monday-night-declaration-the-white-house-admits-musk-and-doge-violated-the-cfaa-although-they-might-not-realize-it/

When It’s Not Just A Coup But A CFAA Violation Too
https://www.techdirt.com/2025/02/04/when-its-not-just-a-coup-but-a-cfaa-violation-too/

"Elon Musk, and everyone on his DOGE team accessing the federal government’s computer infrastructure, is potentially personally liable for violating the Computer Fraud and Abuse Act (CFAA)."

#ElonMusk #Coup #Musk #Politics #Law #CFAA #Tech #Technology #Government #Trump #Treasury #OPM #GSA #US #USA #News

Update. Cathy Gellis (@cathygellis) supports my hunch that the Muskovite action violated the Computer Fraud and Abuse Act (#CFAA).
https://www.techdirt.com/2025/02/04/when-its-not-just-a-coup-but-a-cfaa-violation-too/

#Crime #Musk #USLaw #USPol #USPolitics

If I were tabulating all U.S. data breaches, I'd really be tempted to include what Musk's team did at Treasury as a data breach. But would you code it as insider-wrongdoing or an external hack?

And if it is a breach, doesn't #CFAA make tampering with code a federal offense?

But of course, everything they did was authorized by Trump, so it's not a breach at all, right?

I only hope that there's a good backup somewhere so if a court overturns what Musk's team did, Treasury can restore from backup.

#doge #Treasury #databreach

When It’s Not Just A #Coup But A #CFAA Violation Too - https://www.techdirt.com/2025/02/04/when-its-not-just-a-coup-but-a-cfaa-violation-too/ interesting... #musk #trump

To prevent your bar from turnijng into a Nazi bar, you have to kick them out immediately and prevent return.

Every US Government institution needs to think the same way. Do not let the Elmo goons in the building. If they resist, have them arrested for trespassing.

They are not authorized staff, so tell them to leave.

Then, each separate institution should file a lawsuit.

Because DOGE ie violating CFAA.

https://www.techdirt.com/2025/02/04/when-its-not-just-a-coup-but-a-cfaa-violation-too/

#CFAA

"Exclusive: #Musk aides lock Office of Personnel Management workers out of computer systems"
https://www.reuters.com/world/us/musk-aides-lock-government-workers-out-computer-systems-us-agency-sources-say-2025-01-31/

This looks like a #crime, for example under the Computer Fraud and Abuse Act (#CFAA). If it would be a wrong when done by a rogue govt employee, why not worse when done by an outside agitator? Or are these questions pointless if the prosecutor would have to be federal and if #Trump has the #pardon power?

#USPol #USPolitics

A women’s gynecological clinic in Attleboro (Four Women Health Services) is suing a neighboring crisis pregnancy center (Attleboro Women’s Health Center), accusing it of hacking its confidential online portal and misleading patients to prevent abortion.

Rapid7 provided an affidavit about how the hack/interception of data may have occurred involving their third-party web-based platforms for messaging and appointment requests.

https://www.boston.com/news/local-news/2024/09/10/attleboro-crisis-pregnancy-center-stole-data-tricked-patients-lawsuit-alleges/

This is a civil suit, but If they can prove the hacking, will any of the anti-abortion health center folks go to prison for hacking and interference with healthcare?

#hacking #healthsec #CFAA

While 1) banning the resale of legally purchased tickets should be illegal and 2) TIcketmaster totally deserves this, I wonder if anyone told them that every time the barcode changes it’s a separate felony charge under the Computer Fraud and Abuse Act?

By reverse-engineering how Ticketmaster and AXS actually make their electronic tickets, scalpers have essentially figured out how to regenerate specific, genuine tickets that they have legally purchased from scratch onto infrastructure that they control. In doing so, they are removing the anti-scalping restrictions put on the tickets by Ticketmaster and AXS. 

https://www.404media.co/scalpers-are-working-with-hackers-to-liberate-non-transferable-tickets-from-ticketmasters-ecosystem

https://complainthub.com/2024/07/08/1341/

#CFAA #scalpers

A recent federal court ruling in California provides guidance on when cease-and-desist letters can be used to revoke access to public websites. Read about the implications of this decision in our latest blog post by Ahmed Eissa and Stacey Brandenburg. #CFAA #DataPrivacy #InternetSecurity 

https://www.zwillgen.com/alternative-data/cease-desist-letter-insufficient-revoke-authorization-cfaa-claim/

Bungie wins landmark suit against Destiny 2 cheat-maker AimJunkies - Enlarge (credit: Bungie)

They wanted to make money by selling ... - https://arstechnica.com/?p=2027163 #aimingcheats #copyrightlaw #aimjunkies #copyright #destiny2 #aimbots #gaming #bungie #cfaa #dmca

Wow. The Computer Fraud and Abuse Act(#CFAA) just entered the chat. Lock them up. Lock them ALL up.

https://techcrunch.com/2024/03/26/facebook-secret-project-snooped-snapchat-user-traffic/?fbclid=IwAR0g5UIFs7L5lQ_BQpyEqpubwoULAzcf4GRiMLF2Eg1-hgIvOBIKIrRskaI_aem_Ac9DF5OeQpFKmFnJEia3Y9lL0-QzArcuh5aAwaNXazb4irUScf7U39P5hxc27sXWR5c

🎙️ ✨ A new episode has been published on @ITSPmagazine

Show: Redefining CyberSecurity With @seanmartin

Episode: Security, Laws, and Vulnerabilities: Unpacking the Disclosure Process to Understand the Intersection of CFAA, DMCA, and Coordinated Vulnerability Disclosure

Guests: Katie Noble and Harley Geiger

Podcast format: Video & Audio

#cybersecurity #vulnerability_management #CFAA #DMCA, #Vulnerability_Disclosure #podcast

Enjoy!

👉 https://www.youtube.com/watch?v=Dn8-5KYE2XE

If you prefer to listen to the audio podcast, enjoy it here
👇
https://itsprad.io/redefiningcybersecurity-320

To learn more about this host and podcast, visit the page here
👇
https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/sean-martin

Op-ed: Charges against journalist Tim Burke are a hack job
#CFAA #FreedomOfSpeech
https://arstechnica.com/?p=2009060

"Clicking your way through a poorly secured website doesn't satisfy most people's definition of #hacking #CFAA https://reason.com/2024/02/26/feds-target-journalist-tim-burke-with-law-intended-for-hackers/?

"Clicking your way through a poorly secured website doesn't satisfy most people's definition of #hacking #CFAA https://reason.com/2024/02/26/feds-target-journalist-tim-burke-with-law-intended-for-hackers/?

https://www.eff.org/deeplinks/2024/02/justice-department-even-following-its-own-policy-cybercrime-prosecution-journalist

A freelance Journalist was investigating the leaks of unaired footage from fox new programming, the FBI raided his home, arrested him, and has indicted him, even though he was doing what is considered by most, First-Amendment protected journalism.

The charges center on Burke attempting to access servers belonging to a sports network & Television streaming service, using credentials that were not his own.

#CFAA #FBI #journalism #JusticeDepartment #news #EFF

#SocialMedia #Twitter #WebScraping #CFAA #Musk: "The recent lawsuit that X Corp., formerly Twitter, filed against a nonprofit called the Center for Countering Digital Hate illustrates the ongoing threat to researchers—whether they’re nonprofit researchers, academics, journalists—who engage in public interest investigations of platforms and often speak critically about platforms. They will often find things that the platforms are not happy for them to publicize.

In this case, the Center for Countering Digital Hate published reports that talked about what it termed hate speech and misinformation that remained on the Twitter platform. In doing this research, they had to scrape public information on Twitter. They analyzed posts at scale and they argued that Twitter allowed content to remain up that violated Twitter’s own policies on content. X Corp. sued CCDH and their theory was that CCDH violated the terms of service and that that’s a breach of contract.

They’re seeking tens of millions of dollars in damages based on the reputational harm to them of these reports, which they say caused advertisers to flee."

https://themarkup.org/hello-world/2023/12/16/how-elon-musk-is-trying-to-make-web-scraping-dangerous-again

So, I'm watching the Lawful Masses video about the Destiny 2 cheat developer lawsuit (Bungie v Elite Boss Tech), and they called for civil RICO on the cheat developers, but also CFAA on them, for *DOWNLOADING DESTINY 2* to create their cheat program.

So, the court case, was ended in default judgment due to the defendants not appearing, after being served. But I really hope this does not get argued in court, it would be really bad if you can be hit with CFAA for lawfully downloading a program, which you then find ways to change the data in it, that's.... that's bad yo.

The only good argument in the claim Bungie made, was contract violation, due to repeatedly violating the EULA/TOS/ect, by circumventing bans by creating new accounts.

#hacking #infosec #destiny2 #reverseengineering #lawsuit #RICO #CFAA

The recent lawsuit against cheat maker Wallhax uses a novel construction of the #CFAA (thanks to @kathryntewson ) in addition to being a #RICO case. Details here: https://twitter.com/AkivaMCohen/status/1656030317864525824 and here: https://twitter.com/dmschmeyer/status/1656021011475619841