EU Archives - Page 3 of 3 - Schneier on Security

Entries Tagged "EU"

Page 3 of 3

SWIFT Violates Legal Privacy Protections

This is a good summary of the SWIFT privacy case:

This week, the Article 29 group—a panel of European Commissioners for Freedom, Security, and Justice—ruled that the interbank money transfer service SWIFT (Society for Worldwide Interbank Financial Telecommunication) has failed to respect the provisions of the EU Data Protection directive by transferring personal financial data to the US in a manner the press release describes as “hidden, systematic, massive, and long-term.”

Posted on February 13, 2007 at 7:49 AM • View Comments

Buying Fake European Passports

Interesting story of a British journalist buying 20 different fake EU passports. She bought a genuine Czech passport with a fake name and her real picture, a fake Latvian passport, and a stolen Estonian passport.

Despite information on stolen passports being registered to a central Interpol database, her Estonian passport goes undetected.

Note that harder-to-forge RFID passports would only help in one instance; it’s certainly not the most important problem to solve.

Also, I am somewhat suspicious of this story. I don’t know about the UK laws, but in the US this would be a major crime—and I don’t think being a reporter would be an adequate defense.

Posted on December 5, 2006 at 1:38 PM •

If the NSA Surveillance Happened in the European Union

Fascinating essay about how EU law would treat the NSA’s collection of everyone’s phone records.

Posted on June 2, 2006 at 7:20 AM • View Comments

The DHS Secretly Shares European Passenger Data in Violation of Agreement

From the ACLU:

In 2003, the United States and the European Union reached an agreement under which the EU would share Passenger Name Record (PNR) data with the U.S., despite the lack of privacy laws in the United States adequate to ensure Europeans’ privacy. In return, DHS agreed that the passenger data would not be used for any purpose other than preventing acts of terrorism or other serious crimes. It is now clear that DHS did not abide by that agreement.

Posted on May 8, 2006 at 6:34 AM • View Comments

Insider Threat Statistics

From Europe, although I doubt it’s any different in the U.S.:

One in five workers (21%) let family and friends use company laptops and PCs to access the Internet.
More than half (51%) connect their own devices or gadgets to their work PC.
A quarter of these do so every day.
Around 60% admit to storing personal content on their work PC.
One in ten confessed to downloading content at work they shouldn’t.
Two thirds (62%) admitted they have a very limited knowledge of IT Security.
More than half (51%) had no idea how to update the anti-virus protection on their company PC.
Five percent say they have accessed areas of their IT system they shouldn’t have.

One caveat: the study is from McAfee, and as the article rightly notes:

Naturally McAfee has a vested interest in talking up this kind of threat….

And finally:

Based on its survey, McAfee has identified four types of employees who put their workplace at risk:

The Security Softie – This group comprises the vast majority of employees. They have a very limited knowledge of security and put their business at risk through using their work computer at home or letting family members surf the Internet on their work PC.

The Gadget Geek – Those that come to work armed with a variety of devices/gadgets, all of which get plugged into their PC.

The Squatter – Those who use the company IT resources in ways they shouldn’t (i.e. by storing content or playing games).

The Saboteur – A very small minority of employees. This group will maliciously hack into areas of the IT system to which they shouldn’t have access or infect the network purposely from within

I like the list.

Posted on December 19, 2005 at 7:13 AM • View Comments

←Previous 1 2 3

Sidebar photo of Bruce Schneier by Joe MacInnis.