Notices tagged with privacy

"Officials had discovered “technical irregularities” this year in its collection from phone companies of so-called call record details, or metadata showing who called or texted whom and when, but not what they said." #privacy https://www.nytimes.com/2018/06/29/us/politics/nsa-call-records-purged.html

"Oh, it also tracks your every move and taps your smartphone's microphone, supposedly in the name of helping to root out unauthorized match broadcasts in bars, restaurants and cafes." #privacy #futbol https://boingboing.net/2018/06/11/spanish-football-app-turns-use.html

"Industry lobbyists who want to continue monetising users’ online data are battling against new ePrivacy regulations, targeting EU member states in the Council. And some member state governments are only too happy to help." #privacy #gdpr #rgdp https://corporateeurope.org/power-lobbies/2018/06/shutting-down-eprivacy-lobby-bandwagon-targets-council

large Ticketfly data breach. Shout out to the excellent haveibeenpwned service that notifies users of #privacy disasters like this :) https://www.cbsnews.com/news/ticketfly-eventbrite-data-breach-disruption-today-2018-06-03/

"For more than a year, Mozilla Firefox and Google Chrome may have leaked users’ Facebook usernames, profile pictures, and likes if the users’ browsers visited malicious websites that employed a cutting-edge hack" #privacy #security

https://arstechnica.com/information-technology/2018/05/chrome-and-firefox-leaks-let-sites-steal-visitors-facebook-names-profile-pics/

"@eff has joined the ACLU and a coalition of civil liberties organizations demanding that Amazon stop powering a government surveillance infrastructure." #privacy #surveillance

https://www.eff.org/deeplinks/2018/05/amazon-stop-powering-government-surveillance

our @diggity on GDPR: "Warning screens and verbose agreements often become software malpractice: they not only mask the poison coursing through the system, they sedate the user into a click-through coma." #privacy #gdpr https://boingboing.net/2018/05/25/gdpr-dont-forget-to-bring-a.html

great piece by @yaelwrites including Jack Balkin's concept of information fiduciaries: "Although relationships with third parties might be lucrative for telecoms, any entity collecting sensitive information like location data has a moral obligation to keep it safe."
#privacy #security

https://slate.com/technology/2018/05/locationsmart-security-it-is-totally-legal-for-cellphone-companies-to-sell-location-data-to-third-parties.html

Doctorow: "if that data leaks, it would allow anyone to break into your kid's cloud and plunder all their private data... Naturally, Teensafe stored thousands of parents and kids' usernames and passwords, without encryption, on an insecure server." #privacy #security

https://boingboing.net/2018/05/20/utter-coathangers.html

"Google quickly disavowed the video, claiming it was just a thought experiment 'not related to any current or future products.' And yet, the company’s patent applications exhibit a mode of thinking that runs at least in parallel..."

https://www.theverge.com/2018/5/19/17246152/google-selfish-ledger-patent-applications

#privacy

the question now: "How much intercepted encrypted e-mail will be (or has been) decrypted by intelligence agencies?" Not all PGP/GPG e-mail is vulnerable... but the extent of the fallout won't be known for a while. #security #privacy

https://arstechnica.com/information-technology/2018/05/decade-old-efail-attack-can-decrypt-previously-obtained-encrypted-e-mails/

PGP/GPG users: Keep Calm and Disable HTML Rendering. It's a good idea to protect you from other kinds of tracking (images in HTML e-mails). Short-term mitigation steps for "Efail" vulnerability: https://efail.de #security #privacy

I’m getting deluged with spam emails and for the first time ever each one makes me happy. They’re all explaining that marketing will stop and begging me to opt back in now that #GDPR is taking effect. This is why I like the #EU - laws that put people’s interests before corporations. I’m looking forward to requesting my data is deleted from so many places. #privacy

"The Cambridge academic at the centre of the Facebook data-harvesting scandal also had access to Twitter data, the social network has confirmed." #privacy

https://www.theregister.co.uk/2018/04/30/aleksandr_kogan_also_slurped_twitter_data/

"...a 'rogue Alexa skill' that bypasses Amazon's security checks: it lurks silently and unkillably in the background of your Alexa, listening to all speech in range of it and transcribing it, then exfiltrating the text and audio of your speech..." https://boingboing.net/2018/04/26/user-supplied-listening-device.html

#privacy #security

"The really big data brokers - firms such as Acxiom, Experian, Quantium, Corelogic, eBureau, ID Analytics - can hold as many as 3,000 data points on every consumer, says the US Federal Trade Commission." #privacy #security

http://www.bbc.com/news/business-43697133

"The new terms asserted that Eventbrite staff had the right to 'enter and remain' at any event organized with the platform, record the entirety of the event with video and photography... and retain copyright over everything recorded." https://arstechnica.com/information-technology/2018/04/eventbrite-rolls-back-policy-that-would-have-given-it-right-to-record-events/

#privacy #security