Fake legal request hack shows need for data privacy reforms

Apple and Meta hacked
06 April 2022
Image sourced from storyblocks.com

A brazen hack that exposed consumer data collected by Apple and Meta has raised fresh questions about how secure our data is in the hands of tech companies, and how easily law enforcement can get hold of the information big tech collects. 

It was revealed last week that hackers obtained the information of some Apple and Meta users by forging an emergency legal request, one of several mechanisms by which law enforcement agencies can request or demand that tech companies hand over data such as location and subscriber information. 

Lawmakers and privacy advocates argued the forgery was a warning sign that the system is in need of reform. 

A review of the myriad ways tech companies share consumer data with law enforcement agencies reveals that it’s often fairly straightforward for such bodies to get their hands on consumer data. 

An emergency legal request, like the one the hackers forged, for instance, doesn’t require a subpoena or warrant, unlike many other legal requests. It’s supposed to be reserved for exceptional situations. 

Apple considers legal requests an “emergency” if it relates to circumstances involving imminent and serious threats to: the life or safety of individuals; the security of a State; or the security of critical infrastructure. 

But, as the hackers have shown, it can be easily exploited. 

- CyberBeat

Reference

 

About CyberBeat

CyberBeat is a grassroots initiative from a team of producers and subject matter experts, driven out of frustration at the lack of media coverage, responding to an urgent need to provide a clear, concise, informative and educational approach to the growing fields of Cybersecurity and Digital Privacy.

Contact CyberBeat

If you have a story of interest, a comment, a concern or if you'd just like to say Hi, please contact us

Terms & Policies >>

Sponsors

We couldn't do this without the support of our sponsors and contributors.