An anonymous Slashdot reader writes: TSA checkpoints caused 6, 800 American Airlines passengers to miss their flights in just one week this spring, and the problem isn’t improving. “Two years ago the Transportation Security Administration (TSA) offered $15, 000 to anybody — literally anybody — who could come up with an idea to speed up airport security…” writes Popular Science. “They wouldn’t say who won or for which idea, but since we’re here two years later with longer wait times than ever, it’s fair to say it hasn’t lived up to the groundbreaking ideals of that call to action… Now in summer 2016, the TSA recommends arriving three hours early instead of a mere two.” So this spring the Seattle-Tacoma airport replaced many of the TSA staff with private screeners, although “Private security operates under strict direction from the TSA, and even those airports that heavily utilize private contractors still have a lot of TSA personnel in the back rooms…” according to the article. “The ability to do exactly what the TSA does, only faster and cheaper, seems to be the major draw.” Now 22 U.S. airports are using private screeners, although the Seattle and San Francisco airports are the only ones with significant traffic. The article also cites a Homeland Security report which discovered that investigators were able to smuggle a test bomb past security checkpoints in 67 out of 70 tests. Read more of this story at Slashdot.
More:
Long TSA Delays Force Airports To Hire Private Security Contractors
River Tam quotes a report from CSO Australia: Enterprise access management firm OneLogin has suffered an embarrassing breach tied to a single employee’s credentials being compromised. OneLogin on Tuesday revealed the breach affected a feature called Secure Notes that allowed its users to “store information.” That feature however is pitched to users as a secure way to digitally jot down credentials for access to corporate firewalls and keys to software product licenses. The firm is concerned Secure Notes was exposed to a hacker for at least one month, though it may have been from as early as July 2 through to August 25, according to a post by the firm. Normally these notes should have been encrypted using “multiple levels of AES-256 encryption, ” it said in a blog post. Several thousand enterprise customers, including high profile tech startups, use OneLogin for single sign-on to access enterprise cloud applications. The company has championed the SAML standard for single sign-on and promises customers an easy way to enable multi-factor authentication from devices to cloud applications. But it appears the company wasn’t using multi-factor authentication for its own systems. OneLogin’s CISO Alvaro Hoyos said a bug in its software caused Secure Notes to be “visible in our logging system prior to being encrypted and stored in our database.” The firm later found out that an employees compromised credentials were used to access this logging system. The company has since fixed the bug on the same day it detected the bug. CSO adds that the firm “also implemented SAML-based authentication for its log management system and restricted access to a limited set of IP addresses.” Read more of this story at Slashdot. 
An anonymous reader quotes a report from Reuters: The European Commission will rule against Ireland’s tax dealings with Apple on Tuesday, two source familiar with the decision told Reuters, one of whom said Dublin would be told to recoup over 1 billion euros in back taxes. The European Commission accused Ireland in 2014 of dodging international tax rules by letting Apple shelter profits worth tens of billions of dollars from tax collectors in return for maintaining jobs. Apple and Ireland rejected the accusation; both have said they will appeal any adverse ruling. The source said the Commission will recommend a figure in back taxes that it expects to be collected, but it will be up to Irish authorities to calculate exactly what is owed. A bill in excess of 1 billion euros ($1.12 billion) would be far more than the 30 million euros each the European Commission previously ordered Dutch authorities to recover from U.S. coffee chain Starbucks and Luxembourg from Fiat Chrysler for their tax deals. When it opened the Apple investigation in 2014, the Commission told the Irish government that tax rulings it agreed in 1991 and 2007 with the iPhone maker amounted to state aid and might have broken EU laws. The Commission said the rulings were “reverse engineered” to ensure that Apple had a minimal Irish bill and that minutes of meetings between Apple representatives and Irish tax officials showed the company’s tax treatment had been “motivated by employment considerations.” Read more of this story at Slashdot.