Can't Blame The Messenger For Identity Theft Security Problems

from the poking-holes dept

With all of the various data security holes reported over the past few weeks, one aspect that didn't get much coverage was how some of them were discovered. The guy who found out that an online payroll company was exposing plenty of personal data has written up his experience claiming that PayMaxx threatened to sue him for pointing out the flaw. They said it was a violation of the Computer Fraud and Abuse Act -- even though he was just trying to protect his own and others' content. With such an experience behind him, he's pointing out that any real attempt to stop identity theft needs to explicitly allow "white hat" hacking. This way, those who are simply trying to help companies find the security flaws in their system are protected. It's basically a question of whether or not the messenger should be blamed. Still, many will point out that there's a fine line between good Samaritan hacking and malicious hacking -- and some worry that malicious hackers will start claiming good intentions when they're caught. However, if the boundaries are made clear, this shouldn't be a huge problem.
Hide this

Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.

Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.

While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.

–The Techdirt Team


Reader Comments

Subscribe: RSS

View by: Time | Thread


  • identicon
    Arnnei, 2 Apr 2005 @ 4:18am

    Protect against Identity Theft - use CAT (Cellular

    The CAT is new technology that costs nothing to the end user. It is a FREE TFA OTP solution that manages all your Passwords.

    The eAUthentication Service is available to all Web sites from Mega AS Consulting Ltd.

    Use it.

    link to this | view in chronology ]


Follow Techdirt
Essential Reading
Techdirt Deals
Report this ad  |  Hide Techdirt ads
Techdirt Insider Discord

The latest chatter on the Techdirt Insider Discord channel...

Loading...
Recent Stories

This site, like most other sites on the web, uses cookies. For more information, see our privacy policy. Got it
Close

Email This

This feature is only available to registered users. Register or sign in to use it.