The data is already public. Except in fully sealed cases, which are rare, the decisions of a judge are the matter of public record. Any competent attorney who does their research has a good idea going in of where their judge likely stands on various issues. But, the court doesn't let you switch judges just because you got one you don't like, and they're fairly savvy to game playing by the attorneys once a judge has been assigned the case.
Read the filing and you'll see that that's what they do. The bots are circumventing their throttling. They seem to have other countermeasures as well, which are also being circumvented, though none of it looks like a hack. More like well orchestrated abuse of soft limits and behavior-based controls.
They allege that the bots are scraping information from the site both anonymously and while logged in. Probably different types of bot.
They're not being bombed right now, but they just decided to lease out hundreds of thousands of square feet of office space in their headquarters. Maybe they know something is coming...
Another judge in the Northern District of California recently ruled that this practice "unsettling" but constitutional. Same investigation, different cases.
Quick tip: Next time you want to steal your employers trade secrets, remember to have the admin print out the records and give them to you in paper. Then you're only violating the EEA and don't have to worry about these pesky, overly-broad interpretations of the CFAA causing you to be convicted as a hacker instead of just a thief.
I assure you that governments can and do store their work on Microsoft's servers, regularly.
In the U.S., there are many government agencies already using Microsoft Azure Government and Office 365 in government cloud, including HHS, DoD, FAA, NIST, and the U.S. Army. Microsoft is on track to have their cloud FedRAMP "High" certified this summer, which will open the door to even greater usage, as security is one of the last arguments of the agencies who have not yet moved.
Judge Koh is already in line for a nomination to the Ninth Circuit Court of Appeals, which will probably happen this month. Not to say that couldn't be pulled in favor of a Supreme Court nomination, but it's pretty unlikely.
The same goes for any story about any new feature for a product that does not directly involve something that would be awesome to a nerd. (think: breakthrough algorithm, incredible engineering feat, novel approach to solving a common problem, etc.)
That sounds annoying. Personally, I file early, always owe a little (no free loans from me, Uncle Sam), and pay at the last moment, so this doesn't seem like it would be a problem for me. Fortunately, it sounds like the IRS knows which PINs were compromised, so they'll be re-issued.
As for the fraud, sure, we don't want that, but this sounds like a drop in the bucket compared to other tales of government waste.
Am I missing something here? What is the risk in someone having my SSN and e-file PIN? Are they going to file my taxes for me? Even if they file a fraudulent return and the IRS cuts a check to the bad guy, I'm not seeing any liability for me.
I had my SSN stolen and used once for illegal employment. I only found out when the IRS contacted me and asked why I hadn't filed my "other" W-2. It was pretty clear that I wasn't simultaneously working two full time jobs, and they quickly marked the other W-2 as fraudulent and moved on.
I remember meeting Michael Richter, the then Privacy Counsel for Facebook, at a lunch privacy forum back in 2008. Someone in our group asked him about their 'authentic identities' policy and what Facebook planned to do when people wanted to use an alternate identity for privacy reasons. His response was very off-the-cuff, dismissing the concern entirely - "we don't believe in that, people only have one identity". Most of the people in attendance were privacy law scholars and there was an audible gasp. He went on to talk without shame about how Facebook was terminating the accounts of people who were found not using their real names while we sat there mouths agape. There wasn't any attempt at all to discuss the issue with us. All of his statements were very matter-of-fact.
The only topic of discussion on the drive back was how this person, who was the acting Privacy Officer at the time and who should have been championing privacy organizationally, did not seem to value privacy at all. It told me all I needed to know about what Facebook's priorities were then, and still are now.
Slashdot Mirror
The data is already public. Except in fully sealed cases, which are rare, the decisions of a judge are the matter of public record. Any competent attorney who does their research has a good idea going in of where their judge likely stands on various issues. But, the court doesn't let you switch judges just because you got one you don't like, and they're fairly savvy to game playing by the attorneys once a judge has been assigned the case.
Read the filing and you'll see that that's what they do. The bots are circumventing their throttling. They seem to have other countermeasures as well, which are also being circumvented, though none of it looks like a hack. More like well orchestrated abuse of soft limits and behavior-based controls. They allege that the bots are scraping information from the site both anonymously and while logged in. Probably different types of bot.
They're not being bombed right now, but they just decided to lease out hundreds of thousands of square feet of office space in their headquarters. Maybe they know something is coming...
Another judge in the Northern District of California recently ruled that this practice "unsettling" but constitutional. Same investigation, different cases.
#FeelTheJohnson
Quick tip: Next time you want to steal your employers trade secrets, remember to have the admin print out the records and give them to you in paper. Then you're only violating the EEA and don't have to worry about these pesky, overly-broad interpretations of the CFAA causing you to be convicted as a hacker instead of just a thief.
Because it's an actual problem that my computer does not print 'HELLO WORLD' on bootup?
I assure you that governments can and do store their work on Microsoft's servers, regularly.
In the U.S., there are many government agencies already using Microsoft Azure Government and Office 365 in government cloud, including HHS, DoD, FAA, NIST, and the U.S. Army. Microsoft is on track to have their cloud FedRAMP "High" certified this summer, which will open the door to even greater usage, as security is one of the last arguments of the agencies who have not yet moved.
A lack of mod points doth make Anonymous Cowards of us all.
Judge Koh is already in line for a nomination to the Ninth Circuit Court of Appeals, which will probably happen this month. Not to say that couldn't be pulled in favor of a Supreme Court nomination, but it's pretty unlikely.
Hey mods, Twitter features are not good stories.
The same goes for any story about any new feature for a product that does not directly involve something that would be awesome to a nerd. (think: breakthrough algorithm, incredible engineering feat, novel approach to solving a common problem, etc.)
That sounds annoying. Personally, I file early, always owe a little (no free loans from me, Uncle Sam), and pay at the last moment, so this doesn't seem like it would be a problem for me. Fortunately, it sounds like the IRS knows which PINs were compromised, so they'll be re-issued.
As for the fraud, sure, we don't want that, but this sounds like a drop in the bucket compared to other tales of government waste.
Am I missing something here? What is the risk in someone having my SSN and e-file PIN? Are they going to file my taxes for me? Even if they file a fraudulent return and the IRS cuts a check to the bad guy, I'm not seeing any liability for me.
I had my SSN stolen and used once for illegal employment. I only found out when the IRS contacted me and asked why I hadn't filed my "other" W-2. It was pretty clear that I wasn't simultaneously working two full time jobs, and they quickly marked the other W-2 as fraudulent and moved on.
I named my son Logan for the same reason.
I remember meeting Michael Richter, the then Privacy Counsel for Facebook, at a lunch privacy forum back in 2008. Someone in our group asked him about their 'authentic identities' policy and what Facebook planned to do when people wanted to use an alternate identity for privacy reasons. His response was very off-the-cuff, dismissing the concern entirely - "we don't believe in that, people only have one identity". Most of the people in attendance were privacy law scholars and there was an audible gasp. He went on to talk without shame about how Facebook was terminating the accounts of people who were found not using their real names while we sat there mouths agape. There wasn't any attempt at all to discuss the issue with us. All of his statements were very matter-of-fact.
The only topic of discussion on the drive back was how this person, who was the acting Privacy Officer at the time and who should have been championing privacy organizationally, did not seem to value privacy at all. It told me all I needed to know about what Facebook's priorities were then, and still are now.
This was patched yesterday.