Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Compliance

Microsoft Challenging US Court Order on Overseas Data

NEW YORK – In a case closely watched by the tech sector, Microsoft will challenge Thursday a US court order requiring it to give prosecutors electronic mail content associated with an overseas server.

NEW YORK – In a case closely watched by the tech sector, Microsoft will challenge Thursday a US court order requiring it to give prosecutors electronic mail content associated with an overseas server.

Microsoft said it plans to argue that the warrant, which would require the tech giant to turn over customer emails stored in a data center in Dublin, should be nullified because it would give the US government excessive power to pry over private information.

The case comes amid rising concern about US surveillance following revelations of snooping disclosed by former National Security Agency contractor Edward Snowden. Leading tech firms, including Apple and Verizon, have filed briefs supporting Microsoft.

Microsoft general counsel Brad Smith said the customer emails, sought in this case in a Justice Department narcotics probe, should be entitled to the same protections as paper letters sent by mail.

That means prosecutors should only be able to access the information in the electronic “cloud” with a warrant.

“But under well-established case law, a search warrant cannot reach beyond US shores,” Smith said in an op-ed published Wednesday in The Wall Street Journal.

“Microsoft believes the higher legal protection for personal conversations should be preserved for new forms of digital communication, such as emails or text and instant messaging.”

Smith also said the case could leave US citizen’s privacy vulnerable to overseas prying, writing “it’s hard to believe the American people will blithely accept that foreign governments can obtain their emails stored in US data centers without letting them know or notifying the US government.”

But US Attorney Preet Bharara argued that under a 1986 law governing electronic communications, the tech giant is required to produce the data regardless of where Microsoft has decided to store it.

“Nothing in the text or structure of the statute carves out an exception for records stored abroad, and none exists in precedent,” Bharara said in a court brief.

“Overseas records must be disclosed domestically when a valid subpoena, order or warrant compels their production.”

US Magistrate Judge James Francis sided with the government, writing in an April decision that “it has long been the law that a subpoena requires the recipient to produce information in its possession… regardless of the location of that information.”

Thursday’s hearing will focus on Microsoft’s appeal of Francis’s decision and will take place in US District Court in downtown Manhattan.

A decision is expected in the coming months and could be appealed to a higher US court.

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Audits

Out of the 335 public recommendations on a comprehensive cybersecurity strategy made since 2010, 190 were not implemented by federal agencies as of December...

Ransomware

The Hive ransomware website has been seized as part of an operation that involved law enforcement in 10 countries.

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Cybercrime

The owner of China-based cryptocurrency exchange Bitzlato was arrested in Miami along with five associates in Europe

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...