Hackers are hacking. Sony, unfortunately, can’t catch a break. “Hello , Iam Idahc a Lebanese hacker. I was Bored and I play the game of the year: ‘hacker vs Sony.’” The new popular kid on the block is LulzSec. He or they even have a Twitter account to taunt LulzSec’s hapless victims and spread LULZ. LulzSec claims to have hacked an FBI-affiliated organization called InfraGard. LulzSec recently hacked a PBS and posted a fake news story reporting that Tupac Shakur was alive and living in New Zealand. LulzSec also steals and makes public passwords and other personal data. Sony confirmed that it was breached by LulzSec this week. The most ominous recent hacking incident involved defense contractor Lockheed Martin using the now compromised RSA SecureID system, which was regarded as the ‘gold standard” for Internet security. The perpetrator of that hack has yet to be identified.
I promised to update my previous post on prosecutors in Montgomery County, Pa., asking a judge to make a local school administrator surrender the password to his mobile phone (I’m not saying cell phone anymore) in a criminal sexting case. A specialist in Information Security, or InfoSec, from the University of Pennsylvania, offered a solid read on the situation in my comments section:
If the contents of the cell phone are encrypted (depending on the type of device this can be easy or impossible) then law enforcement has no way to recover data off of the device. They require the password so they can access any data (such as saved SMS messages). There is some argument that the Fifth Amendment protects against such disclosure to the courts. The reality is that we’ve finally reached an era where consumer grade encryption is good enough to foil most law enforcement. It’s why entire countries now forbid Blackberry encryption.