Archives for May 2015

New Documents Show How FTC Lobbied Sen. Jay Rockefeller To Kill FOIA Reform

By: Daniel Epstein

Cause of Action led the charge to uncover the information

Yesterday, MuckRock.com released documents obtained through the Freedom of Information Act (FOIA) showing how the Federal Trade Commission (FTC), at the direction of FTC Chairwoman Edith Ramirez, lobbied former U.S. Sen. Jay Rockefeller to hold up FOIA reform legislation late last year.

Sen. Rockefeller is the former chairman of the Senate Commerce Committee – the committee charged with FTC oversight.

Shawn Musgrave at MuckRock.com requested the documents at the suggestion of our organization—Cause of Action, a group that works tirelessly to make the federal government more open and transparent.

While the revelation may come as a shock to some, cronyism and opacity at the FTC is nothing new to us. Prior to yesterday, our organization released documents exposing both the close relationship between the FTC and Sen. Rockefeller, as well as the FTC’s opacity when it comes to FOIA requests.

The documents obtained by MuckRock.com show not only how the FTC lobbied aggressively against transparency reform, but also reflect the heights to which FTC’s opacity – and Sen. Rockefeller’s acquiescence – reach. In fact, Jeanne Bumpus, the FTC’s congressional liaison, used a non-government email account to lobby the FTC: ftcexchange.com.

This isn’t the first case of a government official using a non-government email address to conduct official government business. It is, however, yet another example of how this administration’s “commitment…to usher in a new era of open Government” was little more than lip service.

The FTC Used Sen. Rockefeller As Its Personal Hit Man

Last year, Cause of Action alleged that Sen. Rockefeller was a pawn for the FTC. We produced documents showing that Sen. Rockefeller’s own chief of staff negotiated with Chairwoman Ramirez concerning former House Oversight Committee Chairman Darrell Issa’s investigation into the FTC, an investigation initiated in response to the FTC’s aggressive and fraudulent battle with the cancer detection company LabMD.

In an effort to silence our organization, the FTC motivated Sen. Rockefeller to publicly attack us in a letter to Congressman Issa.

What the documents uncovered yesterday confirm is that the FTC and Sen. Rockefeller shared an extremely cozy relationship whereby the FTC would use the senator as a proxy to fight its battles to kill FOIA reform and to attack us.

We Live Security: Whistleblower claims cybersecurity firm hacked clients

Read the full story: We Live Security

Last week, a former employee of Tiversa claimed in court in Washington D.C. that the company would routinely hack systems belonging to prospective clients to motivate them to purchase the cybersecurity firm’s services. It is alleged that the company would break into the prospect’s systems, without permission, then make a sales call to the prospect to offer security services to fix the problems it had just found and/or created. According to ESET security researcher Stephen Cobb, “Obviously, if these allegations are substantiated, they will be seen as some of the most egregious violations of professional ethics that the security industry has ever seen; but we do need to bear in mind that these proceedings are still ongoing and nothing is yet proven.”

 

This has all come to a head because a cancer testing laboratory, LabMD, has accused the cybersecurity firm, Tiversa, of stealing its client data back in 2010. It is alleged that Tiversa then claimed that the stolen data was being shared by known identity thieves. When the lab refused to buy the security firm’s services it threatened to report the lab to the FTC (Federal Trade Commission) for not securing their records properly. This is ultimately what happened, allegedly leading to the medical facility’s ultimate bankruptcy, according to a report in The Register.

 

As CNN Money puts it, the FTC gave LabMD a choice: “sign a consent decree (basically a plea deal which means years of audits and a nasty public statement) or fight in court.” Given that a plea deal would damage the reputation of the business, LabMD took the latter option. This initial case was lost, but following the release of a book about the case, a government watchdog, Cause of Action, has taken up the matter to pursue it further.

Weekly Rundown 5-8-2015

COA_blogImages_v03

 

CNN Money: Whistleblower accuses cybersecurity company of extorting clients – Cause of Action’s fight against the FTC continued on Tuesday… Read More

Law 360: Analyst Backs LabMD In FTC Row, Alleges Fraud At Tiversa — “LabMD Inc. on Tuesday scored a major hit in its data security fight with the Federal Trade Commission after a former analyst at the cybersecurity firm Tiversa Inc. testified that his company lied to the agency about the extent of LabMD’s data leaks after the medical testing firm turned down its services… According to LabMD’s attorney Reed Rubinstein… the testimony marked a “remarkable day” in the case and vindicated the company’s assertion that “the FTC action was based on manufactured evidence.” At the close of the hearing Tuesday, Rubenstein announced that LabMD will seek a criminal investigation against the Tiversa…” Read More

Epoch Times: EB-5 Visa Limits May Slow Flow of China’s Elite to US – Cause of Action will not allow public officials to take advantage of the EB-5 visa program… Read More

Fox News: Clinton agrees to testify this month before House committee on Benghazi, private emails — “Democratic presidential candidate Hillary Clinton has agreed to testify on Capitol Hill this month about two controversial issues when she was secretary of state — the fatal terror attacks in Benghazi, Libya, and using a private server and emails for official business, her attorney said Tuesday…” Read More

Washington Times: IRS still targeting tea party: Nine groups awaiting agency approval — “Nine tea party groups were still awaiting IRS approval for nonprofit status nearly two years after the political targeting program was exposed, the inspector general said in a report Thursday that, despite hiccups, claimed the tax agency has generally done a good job of cleaning up its act…” Read More

CNNMoney: Whistleblower accuses cybersecurity company of extorting clients

Read the full story: CNNMoney

In a federal court this week, Richard Wallace, a former investigator at cybersecurity company Tiversa, said the company routinely engaged in fraud — and mafia-style shakedowns.

 

To scare potential clients, Tiversa would typically make up fake data breaches, Wallace said. Then it pressured firms to pay up.

 

“Hire us or face the music,” Wallace said on Tuesday at a federal courtroom in Washington, D.C.. CNNMoney obtained a transcript of the hearing.

 

The results were disastrous for at least one company that stood up to Tiversa and refused to pay.

 

In 2010, Tiversa scammed LabMD, a cancer testing center in Atlanta, Wallace testified. Wallace said he tapped into LabMD’s computers and pulled the medical records.

Witness in LabMD Proceeding Confirms that FTC Never Checked Source of Key Evidence

By: Patrick Massari

After nearly one year, the Federal Trade Commission’s (FTC) enforcement action against LabMD, Inc., a cancer detection company, resumed (In re: LabMD, Inc., No. 9357). After much anticipation, LabMD called to the stand Richard Wallace, a former employee turned whistleblower of Tiversa, Inc. (the company that provided the primary evidence relied upon by the FTC in bringing this enforcement action). According to LabMD’s attorney Reed Rubinstein, Wallace’s testimony confirmed that “the FTC action was based on manufactured evidence.”

Specifically, the FTC’s case has hinged on whether a LabMD file with confidential patient information was located on a publicly available network. Wallace testified in open court that although Tiversa told FTC that it located the file at various IP addresses, this simply was not true. To the contrary, Wallace said that Tiversa sought to “monetize” a business model where it would fabricate IP addresses where confidential information was available. According to Wallace, Tiversa would then contact the “offending” company with a proposal to pay money to Tiversa to remediate the cybersecurity threat, or face prosecution from the FTC for violating federal laws regarding data security practices. When LabMD refused to pay Tiversa, Tiversa’s CEO Robert Boback “basically said F him, make sure he’s at the top of the list.” According to Wallace, the list (given to FTC) identified companies that refused to hire Tiversa, but for which Tiversa fabricated IP addresses with confidential information.

With regard to the primary exhibit upon which FTC’s case rests, Walllace confirmed the Judge’s insightful observation that “[Exhibit] CX 19, these four IP addresses were created by you and they’re actually for all practical purposes they’re fake as far as the aging file was not found on these [four] IP addresses…” Wallace added: “…the actual files that were doctored up were never provided to LabMD. They just — I just had to put them in the data store so they would look real.” Despite the opportunity, FTC chose not to question Wallace at this time.

This testimony supports the assertion that FTC never fulfilled its obligation to confirm the key information upon which it relied to bring this enforcement action, which, for all practical purposes, has ended LabMD’s business. Indeed, it confirms what LabMD has argued in motions and publicly since September 2013: that FTC’s case against LabMD is based upon a crime – the theft of LabMD’s confidential medical files – and a lie – Tiversa misled Congress, FTC, and LabMD in misrepresenting that the file was available on other IP addresses.

At this time, the parties await FTC’s decision on whether it intends to present more testimony in light of LabMD’s case, and Wallace’s testimony.

Cause of Action Renews Request for Review of Department of Justice’s Asset Forfeiture Program

By: Josh Schopf

Cause of Action today sent a letter to the Inspector General for the Department of Justice (DOJ IG), renewing its request for an investigation of DOJ’s asset forfeiture program. In response to a prior letter from Cause of Action, the DOJ IG announced in January 2015 that it was conducting a review of its asset seizure activities. This review, however, does not examine administrative seizures, or the civil liberties threats that result from such seizures, even though administrative seizures comprise the majority of adoptions.

Cause of Action also demanded an immediate investigation of Desert Snow, LLC, an approved federal contractor involved in asset seizure and training activities. Specifically, Desert Snow’s founders created a program known as Black Asphalt, which was used for a government-run license-plate tracking system, and enabled more than 25,000 officers and federal authorities throughout the country to share reports about American motorists, many of whom had not been charged with any crimes. The purported goal of the license-plate tracking program, run by the DEA, is to seize cars, cash and other assets to help combat drug trafficking. But the breadth of the program has expanded, and is now being used in connection with potential crimes and is being accessed by numerous state and local law-enforcement agencies. Congress has questioned license-plate tracking systems and other surveillance programs, but reports indicate that the program continues to expand, and that Desert Snow continues to receive federal funds, including from DOJ.

Cause of Action is asking the DOJ IG to investigate Asset Forfeiture Program contractors and systems, including but not limited to, Desert Snow, Black Asphalt, and license plate tracking systems.

Daily Caller: Memo: Since 2009, The State Department Required Outgoing Officials To Turn Over Emails

Read the full story: Daily Caller

A memo sent to State Department officials last year indicates that the agency had a policy in place as early as 2009 requiring out-going officials to turn over email records when they leave office.

 

Hillary Clinton flouted that policy when she left her position as secretary of state in February 2013. Clinton exclusively used a personal email account hosted on a private server during her time at the agency and only turned those records over a few months ago.

 

“As a supplement to existing policy, and consistent with the policy in place since 2009, it is important to capture electronically the e-mail accounts of the senior officials…as they depart their positions,” reads an Aug. 28, 2014, memo entitled “Senior Officials’ Records Management Responsibilities” sent by Patrick Kennedy, undersecretary of management.

 

Clinton held on to her emails until Dec. 2014, nearly two years after leaving her position. When she did finally turn the records over, she did so only at the State Department’s request and as a House committee investigating Benghazi sought them.

 

Cause of Action, a nonprofit government watchdog group, pointed out the Kennedy memo, which was included in a list of documents it received in response to a March 17 letter calling on the State Department to investigate whether Clinton turned over all official government emails sent to and from her personal account.