From Reuters: Court adviser deals major blow to EU-U.S. data share deal "A deal easing the transfer of data between the United States and the EU is invalid, an adviser to the European Union's top court said on Wednesday, dealing a blow to a system used by Facebook, Google and thousands of other companies. The Safe Harbour agreement did not do enough to protect EU citizen's private information when it reached the United States and should have been suspended, Yves Bot, Advocate General at the European Court of Justice (ECJ), said."
From Milton Security: Morgan Stanley Employee Pleads Guilty in Data Breach Case "A Morgan Stanley employee who was fired in connection with a data breach at the company, pleaded guilty Monday to downloading hundreds of thousands of confidential customer account data. Names, addresses, account numbers, and investment information are among the sensitive data of the 730,000 accounts (10% of the Wealth division clients) taken by Marsh, according to the prosecution. They also claim that Marsh was speaking to other companies about a possible new job when the data was taken."
From Washington Post: Obama administration explored ways to bypass smartphone encryption "An Obama administration working group has explored four possible approaches tech companies might use that would allow law enforcement to unlock encrypted communications - access that some tech firms say their systems are not set up to provide. Senior officials do not intend to advance the solutions as "administration proposals" - or even want them shared outside the government, according to a draft memo obtained by The Washington Post."
From Bloomberg: Russia's Plan to Crack Tor Crumbles "The Kremlin was willing to pay 3.9 million rubles ($59,000) to anyone able to crack Tor, a popular tool for communicating anonymously over the Internet. Now the company that won the government contract expects to spend more than twice that amount to abandon the project."
From Computerworld: A diesel whodunit: How software let VW cheat on emissions "According to the U.S. Environmental Protection Agency, Volkswagen was able to cheat emissions tests for half a million of its U.S.-sold cars. Diesel cars from Volkswagen and Audi cheated on clean air rules by including software, likely a single line of code that made the vehicles' emissions look cleaner than they actually were."
From ZDNet: Security spending will reach $75.4b worldwide: Gartner "Worldwide security spending will reach $75.4 billion this year, a 4.7 percent increase over last year, according to the latest forecast from technology research firm Gartner. "Interest in security technologies is increasingly driven by elements of digital business, particularly cloud, mobile computing, and now also the Internet of Things, as well as by the sophisticated and high-impact nature of advanced targeted attacks," Elizabeth Kim, research analyst at Gartner said. Kim said this focus is driving investment in emerging offerings, such as endpoint detection and remediation tools, threat intelligence, and cloud security tools, such as encryption."
From THE STACK: Cookies can facilitate attacks on secure web sites "CERT have issued a new directive notifying that cookies can be used to allow remote attackers to bypass a secure protocol (HTTPS) and reveal private session information - and that modern browsers, including Apple's Safari, Mozilla's Firefox and Google's Chrome, currently provide no protection against the attack vector. Research indicates that secure sites as important as Google and the Bank of America are vulnerable to the technique."