Feeds

Pretexting banned in the US

Privacy gets its Act together

Designing a Defense for Mobile Applications

The kind of surveillance activities carried out on behalf of computing giant Hewlett-Packard which caused controversy last year have been made illegal in the US thanks to a new law.

President George W Bush has signed an Act which outlaws pretexting, the practice of gaining information about a third party's phone use without their permission.

The federal legislation signed by Bush was the Federal Telephone Records and Privacy Protection Act. It creates criminal penalties for "the fraudulent or unauthorised acquisition or disclosure of confidential phone records information", according to a statement from the White House.

The Act was approved by the Senate in December last year and was signed by Bush on Friday. It creates penalties of up to 10 years in prison for anyone found to have broken the law. The punishment can be doubled if the activity is found to be on a large scale, which the Act defines as involving more than $100,000 or more than 50 victims.

Though the legislation was passed by the House of Representatives in April 2006 before being held up by the Senate, it became high profile news when HP's activities came to light.

An inquiry into leaks from HP's board resulted in the use of pretexting to discover details of board members' private telephone calls on non-HP phones. The activity, which was carried out by firms contracted directly or indirectly to HP, became public last August and prompted an outcry.

It later emerged that people acting for HP had also obtained phone records of journalists, had sent a fake email to one with a surveillance code in it and had even physically tracked one journalist.

HP chairwoman Patricia Dunn resigned over the affair and a federal prosecution is ongoing. In that case one investigator, Bryan Wagner of Colorado, has just pleaded guilty to identity theft and conspiracy charges.

Wagner's lawyer said that Wagner would testify on behalf of the prosecution in what is a major victory for prosecutors in their attempts to trace the charges back to more senior investigators and perhaps to HP itself.

Copyright © 2007, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

Application security programs and practises

More from The Register

next story
Yorkshire cops fail to grasp principle behind BT Fon Wi-Fi network
'Prevent people that are passing by to hook up to your network', pleads plod
Major problems beset UK ISP filth filters: But it's OK, nobody uses them
It's almost as though pr0n was actually rather popular
UK government officially adopts Open Document Format
Microsoft insurgency fails, earns snarky remark from UK digital services head
HP, Microsoft prove it again: Big Business doesn't create jobs
SMEs get lip service - what they need is dinner at the Club
ITC: Seagate and LSI can infringe Realtek patents because Realtek isn't in the US
Land of the (get off scot) free, when it's a foreign owner
MPs wave through Blighty's 'EMERGENCY' surveillance laws
Only 49 politcos voted against DRIP bill
EU's top data cops to meet Google, Microsoft et al over 'right to be forgotten'
Plan to hammer out 'coherent' guidelines. Good luck chaps!
prev story

Whitepapers

Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.