MyTwitFace is a social networking service. Militant head of security buys Ambiguous Manage monitoring software for the company to monitor every employee’s laptop, but the software is exploitable (similar to Lower Marion school software, Absolute Manage).
Coder on open source competitor hacks into the CEO's computer, and captures video/screenshot, and then exposes CEO's personal life in an embarrassing way via chat roulette - plus CEO is exposed as writing he does not care about his user's privacy. Lots of opportunity for funny videos and photos.
Information passed to a journalist. The CEO reads article, call local FBI, but too small a case. Then calls REACT task force, now this a priority, and journalist is raided, computers seized.
Prosecution for 2511 (wiretap), 1030 (CFAA). Issues are wiretap act via-a-vis audio, video, for profit of 1030 in context of open source, and screen shot wiretap issue.
Motion to suppress raided computers, asking for exclusion (fails).
PLAYERS:
- Head of Security – Carole Fennelly
- CEO - Richard Thieme
- Open source competitor
- Expert witness re exploit
- Case agent – Jonathan Klein
- Judge – Richard Salgado
- Prosecution - Paul Ohm
- Defense - Kevin Bankston
- Defense - Kurt Opsahl
- Legal Assistance – Kevin Manson
Carole Fennelly is an information security professional with over 25 years of hands-on experience in the computing technology field. She is the author of numerous articles for IT World, SunWorld and Information Security Magazine. A frequent speaker at security conferences, such as the Black Hat Briefings, her technical background includes in-depth security and administration knowledge of UNIX operating systems. Ms. Fennelly is presently the Director of Content and Documentation for Tenable Network Security.
Kevin Manson: Secure Online Community Architect. - 1970's State Prosecutor and Magistrate. - 1980's - Coined the term "Cybercop", Staff counsel on US Senate Judiciary Committee. - 1990's - Co-founded Cybercop Portal, a Department of Homeland Security endorsed, secure online information sharing community with a DARPA pedigree serving over 14,000 law enforcement and industry users as well as 4,000 INFRAGARD members. Cybercop was founded to strengthen our nation's "CyberCivil Defense" in support of Presidential Decision Directive 63 (URL: http://www.cybercopportal.com) At the Federal Law Enforcement Training Center (FLETC), pioneered Internet investigations training and in the early 90's developed the Cybercop BBS, (Wildcat), the first online community for federal law enforcement agents. Designed, developed and deployed new training initiatives for "Digital Officer Safety", Data Mining and Internet Investigations for federal agents at the FLETC. (URL: www.fletc.gov) 2000's - Co-Keynoted at Black Hat 2001 with FBI UNABOM'er profiler William Tafoya ("The elite are not those who destroy or cause havoc in cyberspace, but rather [those who work] to protect the Net," URL: http://archives.cnn.com/2001/TECH/internet/07/16/black.hat.conference.idg/ ). "Meet the Fed" panelist. Member of the US Secret Service New York Electronic Crimes Task Force. Collaborating with field experimentation teams at the Naval Postgraduate School regarding Secure Trusted Proxy networks, UAV and Robotics technologies (Cooperative Operations and Applied Science and Technology Studies). Member of International Association of Chiefs of Police Cyber Crime and Digital Evidence WorkGroup and Chairs the Ethics Committee for the Digital Forensics Certification Board http://ncfs.ucf.edu/dfcb/ Kevin is regularly involved in building hastily formed technology accelerations teams for national security and public safety in support of those who serve behind the "thin digital blue line" with his group of "Usual Suspects" Now recruiting world-class cybercops for his new Cybercop Training Team and serving as liaison-at-large and recruiter for the all volunteer attack attribution "Project Vigilant" www.jugiterviglio.us