‘You can’t pay cash here’: how our newly cashless society harms the most vulnerable

Retailers and banks have been pushing us to use contactless payments and online services for hygiene reasons. But many older, abused and unbanked people still depend on cash. What will happen to them?

It had taken so much for Tina to get to the supermarket; to go home empty-handed left her in tears. Tina, 47, has conditions including chronic fatigue syndrome, fibromyalgia, post-traumatic stress disorder, anxiety and depression. She should not have been out at all, but, although her doctor had told her to shield indoors, she had not been put on the government’s high-risk list, meaning she has to do her food shopping herself.

https://www.theguardian.com/money/2020/jun/24/you-cant-pay-cash-here-how-cashless-society-harms-most-vulnerable

France to introduce controversial age verification system for adult websites

Macron made the protection of children against adult content online a high-profile issue.

PARIS — The French Parliament unanimously agreed on Thursday to introduce a nationwide age verification system for pornography websites, months after President Emmanuel Macron pledged to protect children against such content.

Macron made the protection of children against adult content online a high-profile issue well before the coronavirus crisis hit. In January, tech companies, internet services providers and the adult movies industry signed a voluntary charter, pledging to roll out tools to help ensure minors don’t have access to pornographic content.

https://www.politico.eu/article/france-to-introduce-controversial-age-verification-system-for-adult-pornography-websites

#france

PimEyes - A Polish company just abolishes our anonymity

Research by netzpolitik.org shows the potential for abuse of PimEyes, a free search engine for 900 million faces. All of whom have photos on the Internet could already be part of their database.

Dylan smiles into the camera, arm in arm with the other guests of a queer boat party. Behind them, glasses glisten on the shelves of a bar. Eight years ago a party photographer uploaded this snapshot on the internet. Dylan had already forgotten it - until today. Because with a reverse search engine for faces, everyone can find this old party photo of Dylan. All they have to do is upload his profile picture from the Xing career network, free of charge and without registration. But Dylan wants to keep his private and professional life separate: During the day he works as a banker in Frankfurt am Main.

The name of the search engine is PimEyes. It analyses masses of faces on the Internet for individual characteristics and stores the biometric data. When Dylan tests the search engine with his profile picture, it compares it with the database and delivers similar faces as a result, shows a preview picture and the domain where the picture was found. Dylan was recognized even though, unlike today, he did not even have a beard then.

Our research shows: PimEyes is a wholesale attack on anonymity and possibly illegal. A snapshot may be enough to identify a stranger using PimEyes. The search engine does not directly provide the name of a person you are looking for. But if it finds matching faces, in many cases the displayed websites can be used to find out name, profession and much more.

👀 👉🏼 🇬🇧 PimEyes - A Polish company just abolishes our anonymity
https://netzpolitik.org/2020/pimeyes-face-search-company-is-abolishing-our-anonymity/

👀 👉🏼 🇩🇪: https://netzpolitik.org/2020/gesichter-suchmaschine-pimeyes-schafft-anonymitaet-ab/

👀 👉🏼 🇬🇧 https://www.bbc.com/news/technology-53007510

👀 👉🏼 🇬🇧 https://petapixel.com/2020/06/11/this-creepy-face-search-engine-scours-the-web-for-photos-of-anyone/

👀 👉🏼 🇩🇪 Automated face recognition -
Enforce our data protection rights at last!
https://netzpolitik.org/2020/automatisierte-gesichtserkennung-setzt-unsere-datenschutzrechte-endlich-auch-durch/

#PimEyes #facialrecognition #searchengine #privacy #anonymity #ourdata #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Home router warning: They're riddled with known flaws and run ancient, unpatched Linux

And there are no routers in the study from the Fraunhofer Institute without known security flaws.

Germany's Fraunhofer Institute for Communication (FKIE) has carried out a study involving 127 home routers from seven brands to check for the presence of known security vulnerabilities in the latest firmware. The results are appalling.

The FKIE study found that 46 routers hadn't got a single security update within the past year and that many routers are affected by hundreds of known vulnerabilities.

https://www.zdnet.com/article/home-router-warning-theyre-riddled-with-known-flaws-and-run-ancient-unpatched-linux/

#wireless

California reportedly launches antitrust investigation into Google.

According to a report in Politico, California has become the 49th state to launch an antitrust investigation into Google.

California and Alabama were the only states that did not participate in an antitrust investigation by 48 states, Puerto Rico and the District of Columbia, that began in September and is focused on Google’s dominance in online advertising and search.

It is still unclear what aspects of Google’s business the reported California investigation will focus on.

https://techcrunch.com/2020/07/09/california-reportedly-launches-antitrust-investigation-into-google/

📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Join EFF's 30th Anniversary Livestream and Party Like It's 1990!

On Friday, July 10, 1990, the Electronic Frontier Foundation was officially born. It's safe to say that on that day, co-founders Mitch Kapor, John Perry Barlow, and John Gilmore, with critical help from Steve Wozniak, were ahead of their time in imagining that there needed to be an organization that fought to protect ordinary people's access to new technology that could instantly erase distance, create connection, and access much of the world’s knowledge. Today—thirty years later—that technology affects and is affected by most everything we do.

✳️✳️ RVSP ✳️✳️

https://www.eff.org/deeplinks/2020/07/join-effs-30th-anniversary-livestream-and-party-its-1990

📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Security cameras can tell burglars when you're not home, study shows

Some popular home security cameras could allow would-be burglars to work out when you've left the building, according to a study published Monday.
Researchers found they could tell if someone was in, and even what they were doing in the home, just by looking at data uploaded by the camera and without monitoring the video footage itself.
The international study was carried out by researchers from Queen Mary University of London (QMUL) and the Chinese Academy of Science, using data provided by a large Chinese manufacturer of Internet Protocol (IP) security cameras.

Cameras like these allow users to monitor their homes remotely via a video feed on the internet, but the researchers say the traffic generated by the devices can reveal privacy-compromising information.

https://edition.cnn.com/2020/07/06/tech/home-security-cameras-risks-scli-intl-scn/index.html

More pre-installed malware has been found in budget US smartphones

Cheap phones often have tradeoffs but researchers say this should never compromise user safety.

Back in January, cybersecurity researchers from Malwarebytes discovered unremovable malware bundled with the Android operating systems on the Unimax (UMX) U686CL, a low-end handset sold by Assurance Wireless as part of the Lifeline Assistance program, a 1985 US initiative which subsidizes telephone services for low-income families.

There was no way to remove a pair of apps on the handsets which would install other software on the devices without the user's knowledge.

Now, Malwarebytes has uncovered another budget handset with similar security issues.

The smartphone in question is the ANS (American Network Solutions) UL40, running Android OS 7.1.1.

https://www.zdnet.com/article/more-pre-installed-malware-has-been-found-in-budget-us-smartphones/

#android #malware

Huawei infiltration in Uganda

Unwanted Witness, our partner organisation based in Uganda, explore critical questions Huawei's surveillance dealings with the Ugandan government raise. While Huawei's relationship with the government raises concerns for human rights, many of these concerns remain unaddressed.

Key findings

📝The Uganda government has a contract with Huawei to supply and install surveillance equipment in cities throughout Uganda

📝 Details about the contract remain sectret - and it's not clear whether the procurement was legal or how much Huawei will get out of the project

📝 There could be significant human rights immplications to the project, Huawei technicians have, reportedly, already helped security personal spy on political opponents

📝 Police plan on integrating these systems with other key agencies, including the revenue office, identification authority, and immigration office

https://privacyinternational.org/case-study/3969/huawei-infiltration-uganda

Related post

#africa #uganda #huawei #china #surveillance

No Cookies, No Problem — Using ETags For User Tracking

As a Senior Digital Analytics Consultant at a leading international analytics vendor, I have been keeping a close eye on the current crusade of modern web browsers against cookie technology.

Turns out, there is a way to track individual non-signed in users without using cookies. I implemented it. Here is how.

One quick opening remark: The whole point of this piece is to spark discussion and awareness in the industry and among users. Personally, I would never advocate for employing these tracking practices and I am glad to be working for an analytics vendor, that has always put privacy, transparency, and integrity first.

https://levelup.gitconnected.com/no-cookies-no-problem-using-etags-for-user-tracking-3e745544176b

#privacy #tracker

LibreOffice 7: Why a paid enterprise edition could be a positive change

Commentary: There are rumblings in the open source community that LibreOffice will no longer be free for enterprise users. Jack Wallen shares his take on this and other LibreOffice 7-related rumors.

The RC1 candidate of LibreOffice was recently released. Soon after, something odd was discovered in the About LibreOffice window. It seems the developers had tagged that release candidate as a Personal Edition.

What did this mean?

Of course speculation is running amok with rumors that LibreOffice is no longer going to be free. After all, the open source office suite has always been free and never before hinted at ever not being free. Yet, there was that oh-so-obvious change in the About dialog indicating something was amiss. After all, it's a pretty easy conclusion to draw when said dialog clearly states : "The Personal Edition is supported by volunteers and is intended for individual use."

https://www.techrepublic.com/article/libreoffice-7-why-a-paid-enterprise-edition-could-be-a-positive-change/

#libreoffice

Facial recognition technology is expanding rapidly across Australia. Are our laws keeping pace?

Facial recognition technology is increasingly being trialed and deployed around Australia. Queensland and Western Australia are reportedly already using real-time facial recognition through CCTV cameras. 7-Eleven Australia is also deploying facial recognition technology in its 700 stores nationwide for what it says is customer feedback.

And Australian police are reportedly using a facial recognition system that allows them to identify members of the public from online photographs.

Facial recognition technology has a somewhat nefarious reputation in some police states and non-democratic countries. It has been used by the police in China to identify anti-Beijing protesters in Hong Kong and monitor members of the Uighur minority in Xinjiang.

https://techxplore.com/news/2020-07-facial-recognition-technology-rapidly-australia.html

#australia #biometrics #surveillance #privacy

Signal’s New PIN Feature Worries Cybersecurity Experts.

The popular encrypted app is now going to store your contacts in the cloud. Experts are worried this compromises users’ privacy.

Ever since NSA leaker Edward Snowden said “use Signal, use Tor,” the end-to-end encrypted chat app has been a favorite of people—including Motherboard—who care about privacy and need a chat and calling app that is hard to spy on.

One of the reasons security experts recommended Signal is because the app's developers collected—and thus retained—almost no information about its users. This means that, if subpoenaed by law enforcement, Signal would have essentially nothing to turn over.

https://www.vice.com/en_us/article/pkyzek/signal-new-pin-feature-worries-cybersecurity-experts

📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Police Surveilled George Floyd Protests With Help From Twitter-Affiliated Startup Dataminr

Leveraging close ties to Twitter, controversial artificial intelligence startup Dataminr helped law enforcement digitally monitor the protests that swept the country following the killing of George Floyd, tipping off police to social media posts with the latest whereabouts and actions of demonstrators, according to documents reviewed by The Intercept and a source with direct knowledge of the matter.

The monitoring seems at odds with claims from both Twitter and Dataminr that neither company would engage in or facilitate domestic surveillance following a string of 2016 controversies. Twitter, up until recently a longtime investor in Dataminr alongside the CIA, provides the company with full access to a content stream known as the “firehose” — a rare privilege among tech firms and one that lets Dataminr, recently valued at over $1.8 billion, scan every public tweet as soon as its author hits send. Both companies denied that the protest monitoring meets the definition of surveillance.

https://theintercept.com/2020/07/09/twitter-dataminr-police-spy-surveillance-black-lives-matter-protests/

#twitter #dataminr #surveillance #protest #privacy

Mobian Project Wants to Bring Debian GNU/Linux to Mobile Devices

Meet Mobian, a new Open Source project that aims to bring the powerful and very popular Debian GNU/Linux operating system to mobile devices.

If you thought for a second that the Linux phone market lacks operating systems you can try, think again as developers are just getting started. After postmarketOS announcing their PinePhone Community Edition, now there’s a new project called Mobian, which promises to bring Debian to Linux phones.

That’s right, you can now install and use a pure Debian GNU/Linux operating system on your PinePhone. Mobian helps you do that by integrating the standard Debian GNU/Linux packages with the GNOME-based Phosh (Phone Shell) user interface developed by Purism for their Librem 5 phone.

https://9to5linux.com/mobian-project-wants-to-bring-debian-gnu-linux-to-mobile-devices

#linux #debian #mobile #mobian

Backdoor accounts discovered in 29 FTTH devices from Chinese vendor C-Data

The backdoor accounts grant access to a secret Telnet admin account running on the devices' external WAN interface.

Two security researchers said this week that they found severe vulnerabilities and what appears to be intentional backdoors in the firmware of 29 FTTH OLT devices from popular vendor C-Data.

FTTH stands for Fiber-To-The-Home, while OLT stands for Optical Line Termination.

The term FTTH OLT refers to networking equipment that allows internet service providers to bring fiber optics cables as close to the end-users as possible.

As their name hints, these devices are the termination on a fiber optics network, converting data from an optical line into a classic Ethernet cable connection that's then plugged in a consumer's home, data centers, or business centers.

https://www.zdnet.com/article/backdoor-accounts-discovered-in-29-ftth-devices-from-chinese-vendor-c-data

#ftth #network #backdoors

The Complete Android Privacy & Security Guide
By Techlore

The ultimate guide showing how to make Android as secure, private, and anonymous as you need it to be. This video covers security, privacy, anonymity, passwords, authentication, VPNs, biometrics, search engines, browsers, Tor, 2FA, custom ROMS (GrapheneOS, LineageOS, CalyxOS) and more to reclaim your privacy and data today!

https://lbry.tv/@techlore:3/the-complete-android-privacy-security:c

Android Security & Privacy Checklist PDF: https://techlore.tech/androidguide.pdf

iOS Version of this Video: https://www.youtube.com/watch?v=d2bJVKcIEg0


📡 @techloreofficial
#Android #privacy #security #guide

Target’s Gig Workers Will Strike to Protest Switch to Algorithmic Pay Model

On Wednesday, the day of the work stoppage, Shipt will expand a blackbox pay model that workers say will hurt their earnings.

Gig workers on Target’s delivery app Shipt will strike on July 15 to protest the rollout of an algorithmic pay model that they claim has reduced wages by 30 percent in cities where it has been tested. The striking workers have also asked customers to boycott the app.

On Friday, Shipt announced to workers on its Facebook group and through notifications on its app that the pay model would take effect in at least 38 new metro areas in the United States in coming weeks. For gig workers in 12 of those metro areas, including Chicago, Indianapolis, Tampa, Denver, Portland, and Richmond, Virginia, the algorithmic pay model will take effect on July 15.

https://www.vice.com/en_us/article/v7gzd8/targets-gig-workers-will-strike-to-protest-switch-to-algorithmic-pay-model

#target #shipt #protest

I Have Cancer. Now My Facebook Feed Is Full of ‘Alternative Care’ Ads.

Being targeted by those who traffic in false promises feels like a “slap in the face” to patients like me.

Last week, I posted about my breast cancer diagnosis on Facebook. Since then, my Facebook feed has featured ads for “alternative cancer care.” The ads, which were new to my timeline, promote everything from cumin seeds to colloidal silver as cancer treatments. Some ads promise luxury clinics — or even “nontoxic cancer therapies” on a beach in Mexico.

https://www.nytimes.com/2020/07/10/opinion/facebook-cancer-ads.html

#facebook #privacy #ads

Are you free on the Internet?

It was 31st of January, Dr. Li posted on Weibo that an unknown SARS like virus has infected him, he also detailed how the Wuhan police had accused him of spreading rumors when he told his fellow doctors about the virus in late December. In a matter of weeks, the virus had wrecked havoc in the world.

On May 25, a video emerged on social media of a police officer kneeling on the neck of a black man, which resulted in his death. Protests erupted in the city of Minneapolis and within the next few days the protests had expanded in over 140 US cities and in several countries all over the world.

Unless you are living under a rock, I’m sure you must know of these two incidents. The above events occurred in People’s Republic of China and United States of America and caused worldwide disruption. When a person looks at them together, the impact of Internet today on society is very clear.

https://medium.com/@mohammad.shavez/are-you-free-on-the-internet-8fa7ea71a2bb

#surveillance

Linus Torvalds: I hope Intel's AVX-512 'dies a painful death'

Torvalds wants Intel to address real-world uses, not supercomputer benchmarks and "special-case garbage".

Linux kernel creator Linus Torvalds hopes to see the end of Intel's 512-bit vector extensions and admits he has an "irrational hatred" of the floating-point (FP) benchmarks used to prove their value.

Torvalds fired off his criticism of Intel's Advanced Vector Extensions 512 (AVX-512) instructions in a mailing list chat. He was responding to Phoronix's article on GNU Compiler Collection 11 lacking support for AVX-512 in the compiler instructions Intel has enabled for Alder Lake, its 2021 processors for the desktop. Intel's future Xeon Sapphire Roads processors still do support AVX-512.

https://www.zdnet.com/article/linus-torvalds-i-hope-intels-avx-512-dies-a-painful-death/

📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@FLOSSb0xIN