Shawn E. Tuma

Posts Tagged ‘Computer Fraud and Abuse Act’

Former Cardinals exec sentenced to prison for hacking Astros

In CFAA Cases, Computer Fraud, Computer Fraud and Abuse Act on July 18, 2016 at 4:59 pm

HOUSTON (AP) — A federal judge sentenced the former scouting director of the St. Louis Cardinals to nearly four years in prison Monday for hacking the Houston Astros’ player personnel database and email system in an unusual case of high-tech cheating involving two Major League Baseball clubs.

Source: Former Cardinals exec sentenced to prison for hacking Astros

Law360 (paywall required) article: Ex-Cardinals Director Gets 46 Months For Astros Hacking

The CFAA is for Access of a Computer, Not Mere Possession

In Computer Fraud, Computer Fraud and Abuse Act on June 16, 2016 at 6:35 am

It often said that the Computer Fraud and Abuse Act (CFAA), 18 U.S.C. § 1030, is an access crime — meaning that it is designed to punish the wrongful access of a device. A recent case out of the Northern District of Texas highlights this point. Read the rest of this entry »

Cyber Law Update on #DtSR Podcast with Los, Santarcangelo and Tuma

In Cybersecurity Law, Digital Information Law on May 18, 2016 at 4:26 pm

Listen to the Podcast   /   Join the #DtSR Discussion on Twitter

Shawn Tuma was a guest the Down the Security Rabbithole podcast where he and hosts Rafal Los (@Wh1t3Rabbit) and Michael Santarcangelo (@Catalyst) discussed recent events in the world of cyber law. Read the rest of this entry »

Will Changes to the CFAA Deter Hackers?

In Computer Fraud and Abuse Act, Cybersecurity Law on May 13, 2016 at 8:55 am

Note: this article was previously posted on Norse’s DarkMatters.

The problem with laws is that they are usually written by lawyers. The same could be said for proposed amendments to laws, such as those to the Computer Fraud and Abuse Act that President Obama proposed leading up to the 2015 State of the Union Address.

The root of this problem is that, many times, we lawyers get too focused on the details and never step back and see the bigger picture. I believe that is the case with the proposed changes to this law as it concerns improving cybersecurity by deterring outside hackers (i.e., non-privileged users). Read the rest of this entry »

Can a Company Remotely Wipe an Ex-Employee’s Device?

In CFAA Cases, Computer Fraud and Abuse Act, Cybersecurity Law, Digital Information Law, Privacy, Trade Secrets on May 4, 2016 at 8:55 am

Note: this article was previously posted on Norse’s DarkMatters.

One of my favorite sayings about cyber risk is “an ounce of prevention is cheaper than the very first day of litigation.” A recent case provides a nice example of exactly what I mean. In this case, an effective BYOD policy could have saved this company tens of thousands of dollars, at least. Read the rest of this entry »

%d bloggers like this: