News Articles

Homeland Security subpoenas Twitter for data breach finder`s account

Source: ZD Net, 02/07/2020

Homeland Security has served Twitter with a subpoena, demanding the account information of a data breach finder, credited with finding several large caches of exposed and leaking data. The New Zealand national, whose name isn`t known but goes by the handle Flash Gordon, revealed the subpoena in a tweet last month. The pseudonymous data breach finder regularly tweets about leaked data found on exposed and unprotected servers. Last year, he found a trove of almost a million patients` data leaking from a medical telemarketing firm. A recent find included an exposed cache of law enforcement data by ALERRT, a Texas State University-based organization, which trains police and civilians against active shooters. The database, secured in March but reported last week, revealed that several police departments were under-resourced and unable to respond to active shooter situations. Homeland Security`s export control agency, Immigration and Customs Enforcement (ICE), served the subpoena to Twitter on April 24, demanding information about the data breach finder`s account. Twitter informed him of the subpoena, per its policy on disclosing legal processes to its users. A legal effort to challenge the subpoena by a June 20 deadline was unsuccessful. Attorneys from the Electronic Frontier Foundation provided Flash Gordon legal assistance. ICE demanded Twitter turn over his screen name, address, phone number -- and any other identifying information about the account, including credit cards on the account. The subpoena also demanded the account`s IP address history, member lists, and any complaints filed against the Twitter account. The subpoena did not demand the account`s private messages or any other content, which typically requires a court order or a search warrant. It`s not known why the subpoena was issued. Twitter spokesperson Emily Horne said the company does not comment on individual accounts for privacy and security reasons. ICE has faced calls for it to shut down amid bipartisan pressure -- and complaints from within the agency -- over the recent incarcerations of child migrants and lawful asylum seekers. Although ICE`s public image is often viewed through a lens of detentions and deportations, a large part of the agency`s work includes fighting national security threats and fighting transnational crime, including prosecuting those who violate export laws. In a message, Flash Gordon said he believed that the subpoena may have related to the recent find of law enforcement data, but couldn`t be sure. Security researchers have a target on their backs ` and looming threats of legal action and lawsuits have many concerned. `I don`t know what else [Homeland Security] would want from me,` he said. But serving an export enforcement subpoena -- used in cases to investigate US export law violations -- is almost unheard of in the case of a data breach involving private and personal information, according to one export controls attorney. `As a general matter, the subpoena is likely to relate to the development or production of a controlled item, and not names, addresses, and contact information,` said the attorney in a phone call, who asked not to be named to avoid any conflicts with his work. The attorney said that if the subpoena related to the ALERRT breach that this would be `a misuse` of the subpoena power, as the exposed personal data wouldn`t be an export control matter. He said that an export enforcement subpoena may relate to the posting of materials subject to export controls, such as military items, or technical information and schematics. A search of Flash Gordon`s several hundred tweets revealed nothing obvious that would justify the kind of subpoena served. The attorney said it`s `not clear how a Twitter account could even be relevant in an export control investigation,` calling the case a `head scratcher.` The data breach finder said he`s been left without answers, and doesn`t know which offending tweets -- if any -- led to the legal process. As we covered last year, several prominent security researchers and data breach hunters spoke of a `chilling effect` on their work. `Which sucks,` he said in a message, `because now I don`t know what I am allowed to post or talk about on Twitter.` When reached, ICE spokesperson Matthew Bourke would not comment.


Search

  •    Johannesburg - Home Affairs officials and former prison warders are set to appear in court on Monday morning over allegations that they hatched an elaborate plan to assist in the illegal release of prisoners for a fee.... Read more...
  •    Last week we learned that hundreds of IT contractors across the Department of Home Affairs were told they were no longer needed, with just a few weeks notice, six weeks before Christmas.... Read more...
  •    When it comes to South African tourism, our beaches, safari parks, Table Mountain and the Garden Route undoubtedly garner the most attention.... Read more...
  •    SA`S NEW travel rules prevented our minor children from attending a family funeral. My wife and children were on holiday in Florence, Italy, and I had returned early to our home in Singapore when we received the tragic news that our three-year-old niece had passed away. We wanted to return to SA immediately, in time for the funeral last Friday.... Read more...
  •    EE and Virgin Media fined for breaking consumer protection rules Ofcom has imposed fines totalling £13.3m on EE and Virgin Media, saying both providers levied excessive charges on customers who ended their contracts early regulator Ofcom has imposed fines of £6.3m on EE and £7m on Virgin Media for overcharging phone and broadband customers who were trying to leave their contracts early.... Read more...
  •    Smart cities: how IOT is putting Africa on the map Internet of things infrastructure opens the door to technological innovation from the private sector, says IoT.nxt.... Read more...
  •    UK firms have a long way to go in building the business resilience required to withstand cyber threats and other major disruptions, a study shows... Read more...
  •    In South Africa, unregistered people working as migration agents are not breaking the law but are unregulated and you have no recourse for poor advice which will have devasting consequences on your application and your future in South Africa.... Read more...
  •    Overstaying one’s visa is a common occurrence among people who applied to extend their visa in South Africa and said visa not issued in time for travel.... Read more...
  •    Yes. In South Africa VFS, the officer taking your photograph and fingerprints ( biometrics) will talk to you using an interpreter.... Read more...

Get the latest Immigration News