Skip to main content

Search

Items tagged with: Privacy

A boss is bitten in the bottom after being struck by one of the worst crimes in Finnish history, Strava’s privacy isn’t so private, and a private investigator uncovers some TikTok tall tales.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by @gcluley and Carole Theriault, joined this week by @varmazis
Find it in all good podcast apps, or at https://www.smashingsecurity.com/319

#cybersecurity #finland #strava #privacy #databreach #mentalhealth #tiktok
Ville Tapio of Vastaamo, pursued by the media...

319: The CEO who also ran IT, Strava strife, and TikTok tall tales

A boss is bitten in the bottom after being struck by one of the worst crimes in Finnish history, Strava's privacy isn't so private, and a private investigator uncovers some TikTok tall tales.
Smashing Security
#TikTok #privacy #cybersecurity #Finland #mentalhealth #strava #databreach @Maria Varmazis :verified_neko: @Graham Cluley

< ORIGINAL STATEMENT >
Smartphones using the Snapdragon 630 chip were found to call home to Qualcomm without the consent of the user, bypassing the whole operating system. […]
< SEE ATTACHMENT >

EDIT / UPDATE:
Martijn Braam took a look and provides a valuable counterstatement. Thx @bart
https://blog.brixit.nl/nitrokey-dissapoints-me/
Still without the actual data that gets transmitted though. Unless someone does it first I'll replicate the test setup myself tomorrow and post my findings here.
#privacy #security
Screenshot of original toot: Smartphones using the Snapdragon 630 chip were found to call home to Qualcomm without the consent of the user, bypassing the whole operating system. Data includes unique hardware ID, current IP, country, your ISP, list of installed apps and other data. It is send unencrypted and gets combined with data broker profiles. https://www.nitrokey.com/news/2023/smartphones-popular-qualcomm-chip-secretly-share-private-information-us-chip-maker As usual, big IT companies don't give a flying fart about any laws, their customers or ethics in general. Who would've guessed. 😔 #privacy #security

NitroKey disappoints me

A look at NitroKeys latest article
Martijn Braam (BrixIT Blog)
#security #privacy @PureTryOut

☣️ This is why you should never trust your important information (like passwords!) to proprietary software like @1password.

#OpenSource #FreeSoftware #privacy #security #infosec

🤡 #1Password becomes #spyware:

https://blog.1password.com/privacy-preserving-app-telemetry/

We're changing how we discover and prioritize improvements | 1Password

Learn about a new, privacy-preserving in-app telemetry system that 1Password is trialing with its employees.
1Password
#security #privacy #freesoftware #opensource #infosec #1password #spyware @1password

Did you know, it's now possible to fingerprint by HTTP/2?

On Firefox, I recommend you to disable the protocoll until we find a solution to either spoof it or break the fingerprinting method. It works even without #javascript.

The whitepaper 👉 https://www.blackhat.com/docs/eu-17/materials/eu-17-Shuster-Passive-Fingerprinting-Of-HTTP2-Clients-wp.pdf

#privacy #fingerprinting #infosec #opsec #cybersecurity #http #http2 #browserleaks

Test yourself at https://browserleaks.com/http2

HTTP/2 Fingerprinting

HTTP/2 Browser Fingerprinting identifies web clients by analyzing specific HTTP/2 attributes, such as SETTINGS frame values, WINDOW_UPDATE frames, stream prioritization, and the pseudo-header fields order.
BrowserLeaks
#privacy #cybersecurity #infosec #JavaScript #fingerprinting #opsec #http #browserleaks #HTTP2

#rasberrypi właśnie ogłosiło, że wybrało drogę "Internet of 💩".
😞
W kolejnych #rpi będą chipy z własnościowym #AI od #sony , które będzie raportować do bazy "tylko" metadane.
https://www.extremetech.com/computing/new-raspberry-pi-devices-will-have-sony-ai-platform-built-in
#privacy #fail

New Raspberry Pi Devices Will Have Sony AI Platform Built In

Future Raspberry Pi deviecs will have access to Sony's Aitrios edge sensing platform for AI projects.
Ryan Whitwam (ExtremeTech)
#FAIL #privacy #AI #Sony #rpi #rasberrypi

@Alex Hall If you want to keep #privacy an unlock limits using #medium , you can use alternative FOSS frontend #scribe. There are several instances available, f.e. my: https://scribe.citizen4.eu
#privacy #medium #Scribe @Alex Hall

#privacy #prywatność @MiKlo:~/citizen4.eu$💙💛

Hmmmm, federated cocaine? 🧐

#TikTok and its algos should be a controlled substance 🧠 tightly regulated

(otherwise more bears in all nations will be using it all day and long into the night 🐾 🐾)

#BigTech #Media
#Attention #Hack
#MentalHealth
#Privacy #Surveillance
#Democracy
#TikTok #privacy #media #surveillance #bigtech #mentalhealth #democracy #hack #Attention

My “here's to the crazy ones" thesis:

• any #Fediverse self-hosted instance as easy to set up as a Facebook account

• #Fediverse must easily straddle;

- PRIVATE
consumer individual family safe spaces
#privacy #encryption

– OPENWEB
shared public resource, common carrier status,
actual virtual-public-square not #Elmo absolutist illusion w/corp asses covered by #Section230

• SysAdmin a pain = opportunity

• market for #Privacy enabled

• new Laws needed, incumbents will resist
#fediverse #privacy #encryption #elmo #section230

Just learned recently that #Discord is adding AI to their service: https://read.whatever.social/discord/status/1633862297893601280#m

People should definitely worry about this! #AI can be useful but in Discord's case, they might as well be using it to exploit user's #data and violate their #privacy.

If you want a privacy-respecting alternative to Discord with E2EE, use #Matrix with #Element

Discord (@discord)

When it comes to sharing AI experiences with your friends, there's no place like Discord. Today, we’re introducing new AI experiments, including an AI chatbot named Clyde, AutoMod AI, and Conversation Summaries, and launching an AI Incubator.
Nitter
#matrix #privacy #AI #element #discord #data

Ya think? 🤦🏻‍♂️

"New research suggests that privacy in the #metaverse might be impossible:
https://venturebeat.com/virtual/new-research-suggests-that-privacy-in-the-metaverse-might-be-impossible/

🔎👀

#Privacy
#Surveillance
#SurveillanceCapitalism
#BigTech
#VR #AI #ML
#BigData

New research suggests that privacy in the metaverse might be impossible

Protecting privacy in the metaverse is critical, and it's shocking how little data is needed to uniquely identify a user in the metaverse.
Louis Rosenberg, Unanimous A.I. (VentureBeat)
#privacy #SurveillanceCapitalism #AI #surveillance #bigtech #metaverse #vr #ML #bigdata

#friendica #activitypub #foss #privacy #markdown #misskey #Django #BBCode #Cloudflare #soapbox #latex #mitra #hometown #substack #tallship #Epicyon #Faceplant #calckey #takahe #desoc #monero #myspace #quote_post #smithereen #sourceforge #tootsuite #vkontakte #wildebeest #community_values #masto_migration #mastopub #qoto

The crazy story of the Ubiquiti hack! Police keep creating encrypted messaging systems for criminals! Apple Watch accused of crying wolf!

All this - and more - in the latest episode of the award-winning "Smashing Security" podcast, with me, Carole Theriault, and special guest Mark Stockley.

Thanks to our sponsors @bitwarden, NordLayer, and SecurEnvoy for their support!

https://grahamcluley.com/smashing-security-podcast-308/

#cybersecurity #podcast #ubiquti #databreach #apple #encryption #privacy

Smashing Security podcast #308: Jail after VPN fail, criminal messaging apps, and wolf-crying watches

When Ubiquiti suffered a hack the world assumed it was just a regular security breach, but the truth was much stranger… why are police happy that criminals…
Graham Cluley
#apple #privacy #cybersecurity #podcast #encryption #ubiquti #databreach @Bitwarden

Oh look, Google being Google.

(In case you were thinking of learning/using Go, I’d say skip it. There are plenty of other fish in the sea. Unless you like telemetry by default in your programming languages and tools, that is. In fact, just don’t touch anything tainted by Google if you can help it.)

https://github.com/golang/go/discussions/58409

#google #alphabet #go #surveillance #capitalism #peopleFarming #privacy #development #dev #software

telemetry in the Go toolchain · Discussion #58409 · golang/go

How do software developers understand which parts of their software are being used and whether they are performing as expected? The modern answer is telemetry, which means software sending data to ...
GitHub
#Software #privacy #Development #Capitalism #google #surveillance #go #peoplefarming #dev #alphabet

LastPass Sibling Company GoTo Loses Encrypted Backups to Hackers

The hacker also stole an encryption key for a portion of the encrypted backups by accessing a cloud storage database shared by both LastPass and GoTo.

#news #tech #technology #security #privacy #Lastpass #breach #hacking

https://www.pcmag.com/news/lastpass-sibling-company-goto-loses-encrypted-backups-to-hackers

LastPass Sibling Company GoTo Loses Encrypted Backups to Hackers

Michael Kan (PCMag)
#security #privacy #technology #tech #news #hacking #lastpass #breach

🆕 blog! “The IAB loves tracking users. But it hates users tracking them.”

The Interactive Advertising Bureau (IAB) is a standards development group for the advertising industry. Their members love tracking users. They want to know where you are, who you're with, what you're buying, and what you think. All so they can convince you to spend sligh…

👀 Read more: https://shkspr.mobi/blog/2023/01/the-iab-loves-tracking-users-but-it-hates-users-tracking-them/

#advertising #email #privacy

The IAB loves tracking users. But it hates users tracking them.

The Interactive Advertising Bureau (IAB) is a standards development group for the advertising industry. Their members love tracking users. They want to know where you are, who you’re with, wh…
Terence Eden’s Blog
#privacy #advertising #email

Uh huh.

Where's your GDPR statement? Handling a lot of people's identifable personal data here.

And storing it indefinitely.

Why do you think "opt out only" is safe for minorities?

I quite like searching stuff but these seem like very obvious concerns. Maybe you could address them in your FAQ?

#GDPR #Privacy #MastodonPrivacy
#GDPR #privacy #mastodonprivacy

"The Danger Of Privacy At All Costs"

People have to make a decision. You can only choose one.

Do you want freedom / human autonomy?

Or do you want pretend safety?

Ben Franklin quote:

"Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety."

Thomas Jefferson: "I prefer dangerous freedom over peaceful slavery"

#privacy #humanRights #autonomy #massSurveillance #crypto #e2ee #Signal #encryption quote

https://www.nytimes.com/2022/12/28/opinion/jack-dorseys-twitter-signal-privacy.html
#signal #privacy #encryption #humanrights #e2ee #crypto #masssurveillance #autonomy

Big tech is dying as we enter a new era of internet. After decades of users being the product, we can take back control from these giants by committing to an #opensource #decentralized future. The #twittermigration is a massive step in the right direction. Internet #privacy will be much more of a priority moving forward.
#privacy #opensource #decentralized #twittermigration

When billionaires say they don’t care about privacy, it‘s your privacy they’re talking about not theirs. Mark Zuckerberg says “privacy is dead” in one breath and buys the four houses around his house in the next because he values his own privacy. It’s yours that he’s actively engaged in strangling the life out of.

#privacy #markZuckerberg #elonMusk #SiliconValley #surveillance #capitalism
#privacy #Capitalism #surveillance #elonmusk #siliconvalley #markzuckerberg

The annoying cookie banners and pop-ups are not the GDPR 's fault: they exist to push us into accepting tracking cookies; EU law* doesn't require cookie banners at all, consent is only required for cookies that aren't necessary for a site to function.

* Directive 2002/58/EC (Article 5(3) in particular), #GDPR and the ECJ "Planet49" decision (C‑673/17). #dataprotection #privacy
#GDPR #privacy #dataprotection

Google’s Quest to Digitize Troops’ Tissue Samples
--
#Google had a confidential plan to turn the collection—slivers of skin, #tumor biopsies & slices of organs from #veterans—into an immense archive that could help create tools to aid the diagnosis & treatment of #cancer & other #diseases. And it would seek first, exclusive dibs to do so.

“The chief concern,” Google’s liaison in the #military warned, “is keeping this out of the press.”

#privacy #ethics #DOD #Health
https://www.propublica.org/article/google-human-tissue-jpc-military?utm_medium=social&utm_source=mastodon&utm_campaign=mastodon-post

Google’s Quest to Digitize Valuable Military Tissue Samples

Staff at the DOD’s Joint Pathology Center have thwarted Google’s efforts to digitize priceless data from veterans’ tissue samples. The tech giant might win anyway.
ProPublica
#privacy #google #health #military #ethics #tumor #veterans #cancer #diseases #dod

Law Enforcement Is Extracting Tons Of Data From Vehicle Infotainment Systems

https://www.techdirt.com/2022/12/05/law-enforcement-is-extracting-tons-of-data-from-vehicle-infotainment-systems/

#infotainment #databrokers #siriusxm #hacking #privacy #cars #1

Law Enforcement Is Extracting Tons Of Data From Vehicle Infotainment Systems

For years, cars have collected massive amounts of data. And for years, this data has been extraordinarily leaky. Manufacturers don’t like to discuss how much data gets phoned home from vehicl…
Techdirt
#privacy #cars #hacking #infotainment #databrokers #siriusxm

This week on #osspodcast @kurtseifried and I chat about #stylometry

There's a tool to look at #HackerNews authors and see if their writing is similar to another user (sock puppets anyone?)

This of course leads to larger discussions about #privacy, #cybersecurity, #impersonation, and of course, #shakespeare

https://opensourcesecurity.io/2022/12/04/episode-352-stylometry-removes-anonymity/

Episode 352 – Stylometry removes anonymity

Josh and Kurt talk about a new tool that can do Stylometry analysis of Hacker News authors. The availability of such tools makes anonymity much harder on the Internet, but it’s also not unexp…
Open Source Security
#privacy #cybersecurity #Shakespeare #hackernews #OSSPodcast #stylometry #impersonation @kurtseifried (he/him)

Supervisor @W_Wiewiorowski@twitter.com welcomes a delegation from the Parliament of India 🇮🇳 and from the Parliament from Indonesia 🇮🇩 in the framework of the #RuleOfLaw Programme Asia of the Konrad Adenauer Stiftung. #dataprotection #privacy #gdpr #cooperation
Supervisor Wiewiorowski stands in front of an audience and delivers his speech. Seven people are sitting at a table and listen to him. Two screens in the background are presenting some slides to support the presentation.
#GDPR #privacy #dataprotection #cooperation #RuleofLaw

In episode 300 🥳 of the "Smashing Security" podcast, original co-host @vanjasvajcer returns to the show...

We discuss why deleting your Twitter account may be a very bad idea, how the police unravelled the #iSpoof fraud gang, and take a trip into interplanetary file-systems.

Find "Smashing Security" in your favourite podcast app, or listen at https://www.smashingsecurity.com/300

Thanks to everyone who has listened, appeared on the show, or supported us! 🙏

#cybersecurity #twitter #ipfs #phishing #privacy
Smashing Security episode 300. Picture of a spacesuited astronaut floating weightlessly above the Earth...

300: Interplanetary file systems, iSpoof, and don't delete Twitter

Why deleting your Twitter account may be a very bad idea, how the police unravelled the iSpoof fraud gang, and a trip into outer space (or at least interplanetary file systems).
Smashing Security
#twitter #privacy #cybersecurity #ipfs #phishing #ispoof @vanjasvajcer

THIS great sentiment
+
maybe we ALL take a serious & sober look at how ABSENCE of LAW over past 18 years (not bad law, shitty or law unfair law... no law)
in:
• #internet
• #mobile #social
• #privacy
• #surveillance
• #AI #ML
• #data #governance

This is a massive #mastodon #fediverse opportunity we can collectively capitalize on before #SiliconValley #BigTech #VC carpet baggers arrive.

#my2cents

@klonick@davew@craignewmark@jeffjarvis@daphnehk@qjurecic@blaine @@profcarroll
#fediverse #internet #mastodon #privacy #mobile #AI #surveillance #social #bigtech #My2Cents #siliconvalley #data #ML #governance #vc @blaine @David Carroll @Quinta Jurecic @Craig Newmark @Jeff Jarvis @Dave Winer ☕️ @klonick @daphnehk

Wait, what?… you don’t mean that your all-important secret for your Small Web site is going to be… A STRING OF EMOJI?!*

(Why yes, yes it is…) :awesome:

* Or, if you want to take all the fun out of it, a base256 encoding of your ed25519 private key that is purposefully impractical to write down somewhere or type in so you’ll be forced to practice good security hygiene and store it in your password manager.

#design #security #privacy #cryptography #kitten #SmallWeb #SmallTech
Screenshot of Kitten running an app at ~/sandbox/kitten-auth-test-1 (git main branch, 62 changes). Alongside the normal output there is a highlighted box labelled IMPORTANT! that reads: “This line of emoji is your secret <line of emoji follows> It will not be shown again. Please save your secret in your password manager.”
#security #SmallWeb #privacy #design #SmallTech #cryptography #kitten

And its happening in Germany too after France banned it last week! #Microsoft355 has finally been banned from schools!

#FLOSS #Privacy

https://bestofprivacy.com/eu/germany-forces-a-microsoft-365-ban-due-to-privacy-concerns/

Germany Forces a Microsoft 365 Ban Due to Privacy Concerns

The central German state of Hesse’s local Data Protection Authority (DPA) has banned the use of Microsoft 365 in its schools, citing concerns over privacy violations.
Vuk Mujovic (Best of Privacy)
#floss #privacy #microsoft355

Fuuuuuuuuuuuuck meeeeeee.
#Privacy #Facebook

Jay Holler

2022-11-23 23:02:28


Tax prep services send sensitive financial info to Facebook https://pluralistic.net/2022/11/22/free-file-now/

"If you were unfortunate enough to e-file your US tax using HR Block, Taxact or Taxslayer, your most sensitive financial information was nonconsensually shared with Facebook, where it was added to the involuntary dossier the company maintains billions of people, including people who don't have Facebook accounts.”

#facebook #privacy

Content warning: We heard you left Twitter for an open-source alternative?

#alternatives #privacy #collaboration

Another instance, another #introduction - here's hoping that I'll settle here for good!

I'm matchboxbananasynergy, AKA Banana, That Banana Guy, Bananaman... you get the point.

My main interests are #privacy and #security - with an extra focus on #android

I've previously contributed to privacy and security resources, and I am currently doing community moderation for various privacy and security related open-source projects.

Feel free to say hi! 👋​
#security #privacy #introduction #Android


tallship (@tallship@fosstodon.org)

@Anfeald @soapbox@gleasonator.com You're very welcome, and #Pleroma itself is kind of a hot mess now, largely in disarray, maybe even somewhat stalled after the very professionally minded #Soapbox developer left that project, forking it when he did…
Fosstodon
#friendica #fediverse #activitypub #foss #privacy #soapbox #mitra #tallship #jointhefedi #twatter @Alex Gleason @anime graf mays 🛰️🪐 @Miss Pasture