February 3, 2023

Money News PH

The Premier Blog Where Money Talks

The Largest US Surveillance Program You Didn’t Know About

“The private financial records of ordinary people are dumped indiscriminately into a vast database that is accessible to virtually any police officer who wishes to access it,” Nathan Freed Wessler, associate director of the ACLU’s Speech, Privacy, and Technology Project, told the WSJ. “This program should never have started and it must end now.”

A security researcher discovered a version of the United States’ controversial no-fly list on an unsecured server operated by CommuteAir, a regional airline based in Ohio. The list, which contains more than 1.5 million entries, is far larger than previously reported and includes the names of people banned from flying to the United States.

CommuteAir confirmed the authenticity of the document to the Daily Dot, which was the first to report the leaked list.

According to the Daily Dot, the list includes the names of several notable figures, including convicted Russian arms dealer Viktor Bout. The Biden administration sent Bout back to Russia as part of a prisoner swap for WNBA star Brittney Griner, who returned to the United States in December. In the data shared with WIRED Thursday night, there were nearly 30 entries for people born after 2010.

According to CNN, the US Transportation Security Administration is investigating the incident.

After an eight-month investigation, the US Supreme Court has not determined who made the draft decision overturning Roe v. Wade leaked, according to a report released Thursday by the court. The unprecedented leak to Politico last spring came more than a month before the final statement was released and sparked nationwide protests.

In the course of the leak investigation, the court interviewed 97 court employees and brought in forensic experts to examine call logs, printer logs and fingerprints. According to the report, in addition to the nine judges, 80 people had access to the draft opinion.

“No one has admitted to publicly disclosing the document, and none of the available forensic or other evidence provided a basis for identifying an individual as the source of the document,” the report said. “It is not possible to determine the identity of any person who may have disclosed the document, or how the draft opinion ended up with Politico.”

The report did not say whether the judges were questioned.

According to a PayPal security incident report, between December 6 and December 8, 2022, attackers used a credential stuffing attack to gain unauthorized access to the accounts of thousands of users. Credential stuffing occurs when hackers, typically with a bot, attempt to access accounts using lists of leaked password and username pairs.

For two days, hackers had access to account holders’ full names, dates of birth, mailing addresses, social security numbers, and individual tax identification numbers. According to PayPal, 34,942 of its users have been affected by the incident.

Affected users will receive a free two-year identity monitoring service from Equifax.