A distributed denial of service (DDoS) attack swarmed servers owned by Dyn, a company that connects users to websites. The attack was conducted in part by harnessing the growing popularity of internet of things (IoT) devices. The DDoS attack was the result of failures in the private sector, the government, and even by the public. Understanding these failures is a critical to mitigating the risk of another similar attack.

Read More

New Website Makes Thousands of CRS Reports Accessible

Twenty years ago, CDT listed accessible Congressional Research Service (CRS) reports at the top of its “10 Most Wanted Government Documents” list. In the years since, CDT and others have continued to ask Congress to make these reports more available to the public. With still no action, a new website has been launched enabling access to more than 8,000 of the report, free of charge.

Read More

Surveying State Student Privacy Laws

In the absence of a comprehensive baseline consumer privacy law, student privacy is addressed by a patchwork of state and federal laws. With more and more states legislating around privacy in new and novel ways, understanding these laws has become challenging. To help sort through this maze of laws, CDT developed a state-by-state survey of student privacy laws, along with a great team at BakerHostetler.

Read More

DHS Misses the Mark in Attempts to Quell Public Concerns on the Gathering of Social Media Handles

Last month, CDT opposed a proposal by U.S. Customs and Border Protection (CBP) to gather information about the online presence of foreign visitors from Visa Waiver Program countries. DHS and CBP have issued an updated Privacy Impact Assessment (PIA) and a Supporting Statement that discuss oversight of the program and shed light on how the collected information will be processed, but do not adequately address the fundamental concerns raised in public comments.

Read More