Dropbox employee’s password reuse led to theft of 60M+ user credentials

Kate Conger, reporting at TechCrunch:

Dropbox disclosed in 2012 that an employee’s password was acquired and used to access a document with email addresses, but did not disclose that passwords were also acquired in the theft. Because Dropbox stores its user passwords hashed and salted, that’s technically accurate — it seems that hackers were only able to obtain hashed files of Dropbox user passwords and were unable to crack them. But it does appear that more information was taken from Dropbox than was previously let on, and it’s strange that it’s taken this long for the breach to surface.

Don’t reuse passwords folks. Find a password manager and learn to love it. There’s 1Password, LastPass, Dashlane and many others. That means there’s no excuse for you to keep using your dog’s name combined with your college graduation year or whatever terrible password you’re using for everything.

Secret Cameras Record Baltimore’s Every Move From Above

Pritchett had no idea that as he spoke, a small Cessna airplane equipped with a sophisticated array of cameras was circling Baltimore at roughly the same altitude as the massing clouds. The plane’s wide-angle cameras captured an area of roughly 30 square miles and continuously transmitted real-time images to analysts on the ground. The footage from the plane was instantly archived and stored on massive hard drives, allowing analysts to review it weeks later if necessary.

It must be the NSA or the CIA or the FBI, right? They must have a warrant, right? They must be deleting the video after a certain period of time, right?

Wrong.

It’s the Baltimore Police Department. The article and accompanying video clarify the motivation of the company providing the technology and the service to BPD. Founder Ross McNutt says he hopes technology like his will have a deterrent effect on crime in cities where its deployment is disclosed. That’s a good goal but it’s not the BPD or the company’s founder I’m worried about.

Anything on a hard drive that isn’t air gapped is vulnerable to exfiltration by hackers. That includes a massive digital video recorder covering an entire city for an indeterminate amount of time.

Scary stuff.

I fact-checked that old anti-Muslim mass email, and you’ll totally believe what happened next

A beloved relative recently included me on an email forward that I could not simply ignore.

Continue Reading →

NJ law would require pet stores sell only rescue animals

John C. Ensslin reports for The Record:

New pet stores in New Jersey would be allowed to sell only cats and dogs obtained from shelters, pounds and animal rescue organization under a bill the state Senate passed Thursday.

The bill still has to go to the Assembly and will face industry opposition there, but it’s a great step forward. Find more information about the bill here. You can read an embedded PDF of the Senate version below this post.

A Slack bot to alert about missing children

Slack screenshot of MissingKidsBot

From the product page of MissingKidsBot, built by David Markovich and Daniel Doubrovkine:

According to the National Center for Missing and Exploited Children, roughly 800,000 children are reported missing each year in the United States — that’s roughly 2,000 per day.

This is a really great idea, and something everyone with a Slack group should consider adding. However small the chances are that you’ll ever see something that might help with one of these alerts, a child’s life will always be worth it.

Nerds can look at the code over on Github. And those of you who don’t use Slack should keep an eye out for MissingKidsBot on Facebook, Skype and WhatsApp.

Apple users targeted in first known Mac ransomware campaign

Jim Finkle reports for Reuters:

Hackers infected Macs through a tainted copy of a popular program known as Transmission, which is used to transfer data through the BitTorrent peer-to-peer file sharing network, Palo Alto said on a blog posted on Sunday afternoon.

The cynical part of me wonders whether this is a clever move by one or more media companies to discourage the use of BitTorrent clients.

I know, maybe I need to order a tin-foil hat. But when even Kanye is pirating stuff it’s really time to bust out some innovative new tactics.

The perils of marriage equality

Professor Kimberly Mutcherson of Rutgers Law School writes at Concurring Opinions about Professor Katherine Franke’s recent book ‘Wedlocked: the Perils of Marriage Equality’:

We do not want to reinforce familial hierarchies by forcing people into specific family arrangements in order to warrant recognition (2 parents only), nor do we want to fetishize outsider families such that those who do not fit that model are denigrated for their choices (i.e., the adoptive parents who choose a closed adoption or the birth mother who opts for such an adoption thus perhaps not being queer enough in their choices). In thinking about the ways in which reproductive justice calls for us to respect the right to have a child, not have a child, or parent that child in a safe and healthy environment, the upshot for me is that the reproductive justice paradigm does not demand that outsider families conform to some particular form in order to help dismantle hierarchy.

I have thought about this concern since undergrad, where postcolonial literature, feminism and even semiotics courses touched on the nature of othering as an active verb, something done to a group of people. I was lucky enough to take a course in law school called Sexual Orientation, Gender Identity and the Law with Professor Leonore F. Carpenter which expanded my understanding and interest in the dynamics of queer identity, family and legal frameworks.

The specific concern with which I’ve been preoccupied since then is that there is a danger in radical acceptance or the success of various equality movements. The danger I see is in achieving a nominal or “seat at the table” equality that normalizes othered groups to the frameworks of the groups that have historically done the othering.

One infuriating example of how I think about this stuff is the so-called equality of separate-but-equal, which of course was not equality at all. In the case of race, equality is not allowing non-white people to do all the stuff white people are allowed to do, but allowing non-white people to do whatever it is non-white people want to do, which is really what has always been allowed to white Americans.

I see Professors Franke and Mutcherson making a similar point about the danger of seeing marriage equality as squeezing queer couples and families into 1) heteronormative cis-gendered and/or culturally/racially segregated family models or 2) altogether new models, sometimes developed by hand-wavingly obnoxious if well-intentioned hetero-cis folks. Maybe I’m mistaken, but the overall approach as I see it being explained by these two scholars is essentially to stop putting up new roads and signs for queer families and just get the hell out of the way.

Read Mutcherson’s entire post, it’s worth it. And I’ve added “Wedlocked’ to my Kindle wishlist, which is growing faster than I can keep up.

Re: Dumb conspiracy theories on Scalia’s death

Enough with the conspiracy theories about Justice Scalia’s death

I read this earlier today:

“As a former homicide commander, I am stunned that no autopsy was ordered for Justice Scalia,” William O. Ritchie wrote in a Facebook post on Sunday, according to reports. After seeking to cast doubt on the conclusion of the deputy U.S. marshals who responded to a call from the ranch, he added, “My gut tells me there is something fishy going on in Texas.”

My gut tells me there is some fishing for attention going on in the head of the former D.C. police officer who said that.

Why?

Let’s consider this:

Why?
Why??
Why???

Was it a Liberal conspiracy to get President Obama one more lasting decision about the future of United States legal policy?

Was it a “Conservative” conspiracy to give Congressional Republicans and presidential candidates something “meaningful” to “stand up” to Obama about?

Was it Ancient Aliens?

There was no autopsy, they say! There was a pillow above his head, they say! The President was told long before anyone else, they say (as if the President doesn’t get most of the news before everyone else…)!

Conspiracy theorists demand: “What is your proof Scalia wasn’t murdered?”

These stupid theories remind me of one of the frequent arguments levied against atheists: “What is your proof that there is no god??”

Who proved god exists in the first place?

Pillows

Many articles note the ranch owner who found Scalia said there was a pillow above his head, and many conspiracy theorists point to this as suspicious. I sleep with a pillow over my head every night, and another one underneath it, using the two to drown out the sounds of an increasingly conspiratorial world so I can maintain my slumber all night long.

No conspiracy. Just a light sleeper.

Politics aside

I disagreed with much of Justice Scalia’s Supreme Court jurisprudence but his presence on the Court was invaluable to the development of United States law and the debates from which it springs.

He articulated his positions in such a way that I (almost always) respected them, even when I found it hard to believe someone so intelligent was seriously asserting them. He was rarely conclusory, giving reasons for his views, and whether you agreed with those reasons or not, that’s more than most politicians (and lawyers) usually do.

His death is a loss, but there are few more certain paths to some sort of immortality than thirty years on the Supreme Court of the United States.

Photo: Then-nominee Antonin Scalia, right, with President Ronald Reagan in 1986, via Wikipedia

Google begins rolling out free internet to public housing in Fiber cities

This is a big deal. I worked at the Philadelphia Housing Authority for years and talked to a lot of kids and adults about their desire to get online. Philly isn’t yet on Google’s Fiber expansion roadmap, but this is a great development.

Retiring founder wants $1M for his SCOTUS audio archive

Oyez is a robust archive of audio recordings and other information spanning much of the history of the Supreme Court of the United States. Its founder Chicago-Kent College of Law Professor Jerry Goldman is looking for a buyer as he nears retirement. Jess Bravin reports at the Wall Street Journal:

The sticking point, however, isn’t the annual budget; Harvard Law School, for one, has offered to pick up the operating cost. But Mr. Goldman also wants to be paid for the sweat he’s put into his baby–or at least the intellectual property it represents—something he estimates is worth well over $1 million.

Here comes an entitled opinion right here: A decision to somehow “close down” Oyez if no one is willing to put up six or seven figures for it would be morally bankrupt and stain Professor Goldman’s otherwise admirable legacy.

joeross.me

Thoughts on law, tech, and everything