Oct 242020
 October 24, 2020  Posted by  Breaches, Court

October 23 – A criminal complaint was unsealed today in federal court in Brooklyn charging Kenneth Kurson, also known as “Jayden Wagner” and “Eddie Train,” with stalking and harassing three individuals.  Kurson surrendered to authorities earlier today in Brooklyn and will make his initial appearance this afternoon before United States Magistrate Judge Ramon E. Reyes.

Seth D. DuCharme, Acting United States Attorney for the Eastern District of New York, and William F. Sweeney, Jr., Assistant Director-in-Charge, Federal Bureau of Investigation, New York Field Office (FBI), announced the charges.

As alleged in the complaint, between approximately November 2015 and December 2015, Kurson engaged in a pattern of stalking and harassment against three victims. As part of this pattern, Kurson used multiple aliases to file false complaints about two of the victims with their employer, post false negative reviews about one victim’s professional conduct on crowd-sourced review websites and made unsolicited contact with two of the victims.  Kurson traveled on multiple occasions to the workplace of two of the victims, taking photographs and inquiring about one victim’s work schedule.  During the investigation, the FBI gathered evidence that Kurson simultaneously engaged in a similar pattern of harassment against two other individuals.  As a result of Kurson’s conduct, an employer of two of the victims hired a security guard.

“Kurson is alleged to have engaged in a disturbing pattern of retaliatory harassment that intimidated and alarmed several victims and their employer,” stated Acting United States Attorney DuCharme.  “This Office is committed to protecting victims from malicious cyberstalking activity and apprehending criminals who try to rely on Internet anonymity to facilitate their crimes.”

“As alleged, Kurson bullied his victims by attacking their character online and attempted to intimidate them by showing up at their place of employment without a valid reason.  The shadows of cyberspace may have provided him with some cover, but once his identity was revealed, he no longer had the benefit of a virtual retreat,” stated FBI Assistant Director-in-Charge Sweeney.

The charges in the complaint are allegations, and the defendant is presumed innocent unless and until proven guilty.

The government’s case is being handled by the Office’s Public Integrity Section.  Assistant United States Attorneys Nathan D. Reilly and Ryan C. Harris are in charge of the prosecution.

Source: U.S. Attorney’s Office, Eastern District of New York

Oct 232020
 October 23, 2020  Posted by  Featured News, Govt, Laws, Non-U.S.

Covington & Burling have published a client advisory that will be of interest to many readers.  It begins:

On October 21, 2020, the National People’s Congress (“NPC”), China’s top legislative body,
released its first draft of the Personal Information Protection Law (the “Draft Law”) for public
comment (official Chinese version available here). The period for public comment ends on
November 19, 2020 and comments can be submitted through NPC’s official website.

As the country’s first comprehensive law in the area of personal information protection, the Draft
Law aims to “protect the rights and interests of individuals,” “regulate personal information
processing activities,” “safeguard the lawful and orderly flow of data,” and “facilitate reasonable
use of personal information” (Art. 1).

Although bearing a resemblance to the European Union’s (“EU”) General Data Protection
Regulation (“GDPR”) and other recent privacy legislation in major jurisdictions in some
important areas, the Draft Law introduces a number of provisions that are consistent with recent
trends in other Chinese laws in the areas of data and technology, such as the draft Data
Security Law and the newly enacted Export Control Law. These include, for example, rules
establishing extraterritoriality of the Draft Law and a “black list” that would restrict or prohibit
listed foreign organizations from receiving personal information from China.

Read more on Cov.com (pdf).

Oct 222020
 October 22, 2020  Posted by  Breaches, Business, U.S., Youth & Schools

Kurt Erikson reports:

A company offering virtual learning programs in Missouri “inadvertently” released student information as it worked the Capitol halls earlier this year in a bid to make it easier to expand its offerings.


In an Aug. 20 letter, Christopher Neale, assistant commissioner of the Missouri Department of Elementary and Secondary Education, said the company distributed a spreadsheet to lobbyists, lawmakers and members of the state Board of Education that included personal information of students.

Read more on STLtoday.

I’m glad they put “inadvertently” in quotation marks.

K12, known as the Missouri Virtual Academy, or MOVA in Missouri, is not to be confused with Doug Levin’s wonderful k12 cybersecurity resource.