Cyber security 101: Protect your privacy from hackers, spies, and the government

Simple steps can make the difference between losing your online accounts or maintaining what is now a precious commodity: Your privacy.

"I have nothing to hide" was once the standard response to the occasional surveillance experience by way of cameras, border checks, or casual questioning by law enforcement.

Privacy used to be considered generally balanced in many countries -- at least, in the West -- with a few changes to rules and regulations here and there often made only in the name of the common good.

Things have changed, and not for the better.

China's Great Firewall, the UK's Snooper's Charter, the US' mass surveillance and bulk data collection -- compliments of the National Security Agency (NSA) and Edward Snowden's whistleblowing -- Russia's insidious election meddling, and countless censorship and communication blackout schemes across the Middle East are all contributing to a global surveillance state in which privacy is a luxury of the few and not a right of the many.

As surveillance becomes a common element of our daily lives, privacy is in danger of no longer being considered an intrinsic right.

https://www.zdnet.com/article/online-security-101-how-to-protect-your-privacy-from-hackers-spies-and-the-government/

#cyber #security #privacy

Cambodia plans China-style internet firewall

'National internet gateway' includes 'censorship angle' that alarms NGOs

PHNOM PENH -- Cambodia's government will route all web traffic through a "national internet gateway" under plans that human rights advocates fear will see critical content blocked by a China-style firewall.

The plans are laid out in a yet-to-be-signed sub-decree drafted in July and obtained by the Nikkei Asian Review.

The document states the national internet gateway will manage internet connections in the country to enhance "national revenue collection," protect "national security" and assure "social order."

The gateway will be managed by a government-appointed operator or operators, who will collaborate with the Ministry of Post and Telecommunications, the Telecommunication Regulator of Cambodia and "relevant authorities."

https://asia.nikkei.com/Politics/Cambodia-plans-China-style-internet-firewall

#Asia #Cambodia #censorship #internet #firewall

Pakistan blocks five dating apps including Tinder and Grindr

KARACHI, Pakistan (Reuters) - Pakistan said on Tuesday it has blocked Tinder, Grindr and three other dating apps for not adhering to local laws, its latest move to curb online platforms deemed to be disseminating “immoral content”.

Pakistan, the second largest Muslim-majority country in the world after Indonesia, is an Islamic nation where extra-marital relationships and homosexuality are illegal.

The Pakistan Telecommunications Authority said it has sent notices to the management of the five apps, “keeping in view the negative effects of immoral/indecent content streaming.”

https://www.reuters.com/article/us-pakistan-socialmedia-ban/pakistan-blocks-five-dating-apps-including-tinder-and-grindr-idUSKBN25S618

#Asia #Pakistan #dating #apps

Documents suggest Facebook uses media “accusations” to determine credibility of alleged crimes

Evidence disputing the accusations doesn't appear to be considered in the section of the documents describing how to determine whether an alleged crime is "credible."

Leaked documents provided by former Facebook content moderator Ryan Hartwig appear to outline a one-sided internal process that’s used by Facebook and its content moderators to assess the credibility of accusations of “recognized crime” on its platforms.

According to the internal documents Hartwig shared with Reclaim The Net, Facebook’s criteria for determining when such accusations should be considered “credible” is that “an accusation of a FB [Facebook] recognized crime against a target should be considered credible if the accusations are by a victim or law enforcement or media.”

https://reclaimthenet.org/leaked-documents-facebook-recognized-crime/

#Facebook

Appeals court finds NSA's bulk phone data collection was unlawful

Edward Snowden, who revealed the program in 2013, says he feels vindicated.

A federal appeals court ruled Wednesday that the US National Security Agency's bulk collection of citizens' phone records was against the law. The program, now ended, collected records from phone carriers about who called whom. The massive collection went beyond the scope of what Congress allowed under a foundational surveillance law, the panel of judges ruled, adding that the program may have violated the US Constitution.

The collection program was first revealed to the public in 2013 by journalists who received a document leak from Edward Snowden, a former NSA contractor. Snowden also revealed several other programs in which the NSA and agencies in cooperating countries tapped into the backbone of the internet in the name of foreign surveillance. The NSA news outraged privacy advocates and US citizens whose data was caught up in the dragnet. It also prompted US tech companies to distance themselves from government spy agencies in an effort to reassure customers that their data was secure.

https://www.cnet.com/news/appeals-court-finds-nsas-bulk-phone-data-collection-was-unlawful/

#US #NSA #unlawful #mass #surveillance

Google removes Android app that was used to spy on Belarusian protesters

App mimicked a popular anti-government news site and collected location and device owner details.

Google has removed this week an Android app from the Play Store that was used to collect personal information from Belarusians attending anti-government protests.

The app, named NEXTA LIVE (com.moonfair.wlkm), was available for almost three weeks on the official Android Play Store, and was downloaded thousands of times and received hundreds of reviews.

To get installs, NEXT LIVE claimed to be the official Android app for Nexta, an independent Belarusian news agency that gained popularity with anti-Lukashenko protesters after exposing abuses and police brutality during the country's recent anti-government demonstrations.

https://www.zdnet.com/article/google-removes-android-app-that-was-used-to-spy-on-belarusian-protesters/

#Europe #Belarus #Google #spy #protesters #app #surveillance

Facebook’s push to fix its fake news problem isn’t working in Africa either

Just over a year ago, Facebook announced it would add fake news checks on local language content in a bid to boost trust and reliability among African users. It came along with other measures, including shutting down suspected networks of fake accounts targeting African elections with misinformation.

But recent data suggests those moves have not yet paid off among one of Facebook’s most coveted demographics: young Africans.

More than half of young Africans do not regard Facebook as a trustworthy source of news, claims a poll by the African Youth Survey, which was commissioned by the Ichikowitz Family Foundation and conducted by global polling firm, PSB Research. WhatsApp, the messaging app owned by Facebook, which is the dominant social media platform in Africa, is also deemed untrustworthy by half of the survey’s respondents. In contrast, only about a fifth of respondents had similar misgivings about Google as a source of news.

https://qz.com/africa/1898283/fake-news-young-africans-dont-trust-facebook-as-a-news-source/

#Africa #Facebook #fake #news

Need a Pirate Bay Proxy? DuckDuckGo Best Option, Says Google

Under pressure from rightsholders, Google makes pirate sites harder to find in search results. As a result, pirates are increasingly advising each other to use DuckDuckGo instead. Surprisingly, in response to a very popular 'pirate' search term, Google appears to agree its rival is the best option.

In an ideal world, search engine users would be presented with the most authoritative set of results in response to a specific search.

Unfortunately, we don’t live in an ideal world but companies like Google, given the scale of the task, do a reasonable job of helping us find what we’re looking for, with some caveats.

Piracy-Related Searches Are Tampered With

By design, Google and other search engines have been deciding what’s ‘best’ for us for years. After all, it’s their own algorithms that decide which sites appear in response to any kind of search. Precisely how these decisions are made are closely-guarded secrets but in more recent years and under pressure from copyright holders, we known that Google has been heavily tampering with piracy-related searches.

https://torrentfreak.com/need-a-pirate-bay-proxy-duckduckgo-best-option-says-google-200829/

#Google #DucDuckGo #PirateBay #proxy

Internet companies urge FCC to reject Trump bid to impose new social media regulations

WASHINGTON (Reuters) - A group representing major internet companies including #Facebook Inc, #Amazon.com Inc and Alphabet Inc’s #Google on Wednesday urged the Federal Communications Commission (FCC) to reject a Trump administration bid to narrow the ability of social media companies to remove objectionable content.

The Internet Association said in a filing that the Trump administration petition filed in August seeking new rules “is misguided, lacks grounding in law, and poses serious public policy concerns.” It said new #FCC rules could result in a loss of legal protections for removing “fraudulent schemes, scams, dangerous content promoting suicide or eating disorders to teens, and a wide range of other types of ‘otherwise objectionable’ content.”

https://www.reuters.com/article/us-trump-social-media/internet-companies-urge-fcc-to-reject-trump-bid-to-impose-new-social-media-regulations-idUSKBN25T329

#US #social #media

NSA Mass Surveillance Program Illegal, U.S. Court Rules.

The NSA argued its mass surveillance program stopped terrorist attacks – but a new U.S. court ruling found that this is not, and may have even been unconstitutional.

A U.S. federal appeals court ruled that the controversial National Security Agency (NSA) mass surveillance program exposed in 2013 was illegal – and may have even been unconstitutional.

https://threatpost.com/nsa-mass-surveillance-program-illegal-u-s-court-rules/158924/

📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Feds can’t ask Google for every phone in a 100-meter radius, court says

Google says "geofence" search requests grew 100-fold between 2017 and 2019.

Federal courts in the Chicago area have three times rejected government applications for warrants to force Google to produce a list of smartphones near two particular commercial establishments during one of three 45-minute intervals. The most recent ruling was handed down last week and was recently made public.

The decisions are significant because Google has reported massive growth in law enforcement use of such "geofence" searches. Google says there was a 1,500 percent increase between 2017 and 2018 and a further 600 percent jump from 2018 to 2019. That's a hundredfold increase in two years. Google received 180 geofence search requests a week during 2019, according to CNet.

https://arstechnica.com/tech-policy/2020/09/feds-cant-ask-google-for-every-phone-in-a-100-meter-radius-court-says

#US #Google #geofence #locations #surveillance

Firefox Nightly for Android to get full add-ons support

The Nightly version of the new Firefox web browser for Google's Android operating system will soon get full add-ons support according to a post by Mozilla's Add-ons Community Manager Caitlin Neiman on the official Mozilla Add-ons blog.

Mozilla launched a completely redesigned version of Firefox for Android in July 2020. The browser replaced the underlying engine with a Mozilla's new mobile browser engine GeckoView to improve web compatibility and performance of the browser.

Firefox users were migrated to the new version automatically, provided that the automatic update function was not disabled. One of the main issues that some users experienced after the upgrade was that add-ons support was limited.

The new Firefox supported nine extensions, and not the thousands of extensions that were supported by the previous versions. While these were the most popular based on user installs, it meant that Firefox users noticed that all other extensions were disabled and could not be used anymore.

Mozilla did promise to bring full add-ons support to Firefox, and it appears that a first step is being made soon in that regard.

https://www.ghacks.net/2020/09/03/firefox-nightly-for-android-to-get-full-add-ons-support/

#Mozilla #Firefox #Nightly #addons

Threema Goes Open Source, Welcomes New Partner

Strengthened Through Partnership

After an intense startup phase, Threema lays the foundation for continuity, further growth, and an acceleration of the product development thanks to the entry of the German-Swiss investment company Afinum Management AG.

Afinum fully shares our values regarding security and privacy protection. The additional resources gained through this partnership enable Threema to grow beyond the German-speaking part of Europe, and we can use our energy for visionary new ideas and projects. That said, Threema’s founders – Manuel Kasper, Silvan Engeler, and Martin Blatter, all software developers – will continue to lead the company and still retain a significant ownership interest.

Open Source and Multi Device

Security and privacy protection are deeply ingrained in Threema’s DNA, which is why our code gets reviewed externally on a regular basis. Within the next months, the Threema apps will become fully open source, supporting reproducible builds. This is to say that anyone will be able to independently review Threema’s security and verify that the published source code corresponds to the downloaded app.

In the future, it will be possible to use multiple devices in parallel thanks to an innovative multi-device solution. In contrast to other approaches, no trace of personal data will be left behind on a server. Thanks to this technology, Threema can be used on a PC without a smartphone.

In conclusion, Threema will become even more trustworthy and even more convenient to use.

👀 👉🏼 https://threema.ch/en/blog/posts/open-source-and-new-partner

#threema #opensource #afinum #swiss #germany
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Police Across Canada Are Using Predictive Policing Algorithms, Report Finds

Police across Canada are increasingly adopting algorithmic technology to predict crime. The authors of a new report say human rights are threatened by the practice.

Police across Canada are increasingly using controversial algorithms to predict where crimes could occur, who might go missing, and to help them determine where they should patrol, despite fundamental human rights concerns, a new report has found.

To Surveil and Predict: A Human Rights Analysis of Algorithmic Policing in Canada is the result of a joint investigation by the University of Toronto’s International Human Rights Program (IHRP) and Citizen Lab. It details how, in the words of the report’s authors, “law enforcement agencies across Canada have started to use, procure, develop, or test a variety of algorithmic policing methods,” with potentially dire consequences for civil liberties, privacy and other Charter rights, the authors warn.

https://www.vice.com/en_us/article/k7q55x/police-across-canada-are-using-predictive-policing-algorithms-report-finds

#Canada #police #predictive #algorithms #privacy #surveillance

Former IT director gets jail time for selling government's Cisco gear on eBay

Former Horry County IT security director sentenced to two years in federal prison.

A South Carolina man was sentenced this week to two years in federal prison for taking government-owned networking equipment and selling it on eBay.

The man, Terry Shawn Petrill, 48, of Myrtle Beach, worked as the IT Security Director for Horry County in South Carolina, the Department of Justice said in a press release on Tuesday.

According to court documents, "beginning on June 11, 2015, through August 23, 2018, Petrill ordered forty-one Cisco 3850 switches that were to be installed on the Horry County network."

US authorities said that through the years, when the switches would arrive, Petrill would take custody of the devices and tell fellow IT staffers that he would handle the installation alone.

https://www.zdnet.com/article/former-it-director-gets-jail-time-for-selling-governments-cisco-gear-on-ebay

Covid Is Accelerating a Global Censorship Crisis

Autocracies and democracies alike are suppressing information within their borders, which will affect public health and security around the world.

More than 180,000 people in the United States have now died from the coronavirus, a horrifying loss of human life that stands in profound contrast to the pandemic’s duration and severity in the rest of the world. Covid-19 “brought the world’s most powerful country to its knees,” with everything from the Trump administration’s destructive response to an underfunded public health system to systemic racism and white supremacy woven throughout.

https://www.wired.com/story/opinion-covid-is-accelerating-a-global-censorship-crisis/

#COVID19 #global #censorship

16-Year-Old Arrested for Cyberattacks on School's Online Learning Systems

The unidentified 16-year-old is a Miami-Dade public school student who admitted to eight DDoS attacks meant to take down school district networks.

A high school junior was arrested this morning for allegedly launching a cyber attack on the web-based systems used by their Florida school district for online learning.

The unidentified 16-year-old attends South Miami Senior High School, part of the Miami-Dade public school district. The student admitted to orchestrating eight DDoS (Distributed Denial of Service) cyber attacks meant to take down school district networks, including the web architecture propping up My School Online. The district has experienced more than a dozen cyber attacks since the 2020-2021 school year started.

https://www.pcmag.com/news/16-year-old-arrested-for-cyberattacks-on-schools-online-learning-systems

#US #Miami #school #cyberattack

A Saudi Prince's Attempt to Silence Critics on Twitter

An ongoing investigation reveals how Mohammed bin Salman's team allegedly infiltrated the platform—and got away with it.

In 2014, Mohammed bin Salman’s uncle, King Abdullah, was nearing death. For more than 60 years, the Saudi crown had been passed from one son of the kingdom’s founder to the next, the heir being determined by a combination of seniority and consensus of the surviving brothers. Mohammed’s father, Crown Prince Salman, was set to inherit the throne upon Abdullah’s death. But anonymous Twitter users were spreading claims that Salman had dementia, and that presented a problem for Mohammed: If the rumors became accepted as fact by Saudis and foreigners, Salman’s brothers might feel pressure to elevate one of his rivals, cutting the Salman clan off from its claim to the throne and dashing Mohammed’s hopes of one day inheriting the crown.

https://www.wired.com/story/mohammed-bin-salman-twitter-investigation

#Arab #Saudi #twitter

How a Petition to Shut Down Pornhub Got Two Million Signatures

The TraffickingHub campaign has convinced millions of people that one of the largest porn platforms needs to go.

Laila Mickelwait's timing was perfect. It was, in some ways, inevitable that her “TraffickingHub” campaign to shut down Pornhub would go viral when it launched in February.

Right after the Superbowl, an event that's been incorrectly called the biggest human trafficking day of the year for almost a decade—the Washington Examiner published Mickelwait's op-ed titled “Time to shut Pornhub down.” In that piece, she used recent incidents of exploitative content on one of the most popular porn platforms on the internet to argue that Pornhub should be shut down entirely. She highlighted videos that led to the arrest of a rapist after he uploaded child porn of his victim to the site, as well as the Girls Do Porn lawsuit.

https://www.vice.com/en_us/article/wxqy4z/petition-shut-down-pornhub-trafficking-hub-earn-it

#Pornhub #shutdown #petition

Google urges EU to be flexible in setting digital rule book

BRUSSELS (Reuters) - Google urged the European Commission on Thursday to avoid a one-size-fits-all approach to the tech industry in its forthcoming Digital Services Act.

The EU executive is drawing up new rules for data-sharing and the digital marketplace as well as boosting competition after concluding that multiple antitrust actions against Google have been ineffectual.

The Commission’s public consultation period ends on Sept. 8.

In a blog post and 135-page submission, Google encouraged European legislators to provide greater clarity on rules and responsibilities of online platforms.

https://www.reuters.com/article/us-europe-tech-google/google-urges-eu-to-be-flexible-in-setting-digital-rule-book-idUSKBN25U2NQ

#Europe #EU #Google

Cloudflare Shared Personal Details of Hundreds of Customers in Response to DMCA Subpoenas

Cloudflare doesn't remove anything in response to DMCA takedown notices unless it stores the content permanently. However, the company will hand over personal details of customers to copyright holders who obtain a DMCA subpoena. Over the past 12 months, Cloudflare was ordered to share information regarding more than 400 accounts.

Popular CDN and DDoS protection service Cloudflare has come under a lot of pressure from copyright holders in recent years.

The company offers its services to millions of sites. This includes multinationals, governments, but also some of the world’s leading pirate sites.

Many rightsholders are not happy with the latter. They repeatedly accuse Cloudflare of facilitating copyright infringement by continuing to provide access to these platforms. At the same time, they call out the CDN service for masking the true hosting locations of these ‘bad actors’.

https://torrentfreak.com/cloudflare-shared-personal-details-of-hundreds-of-customers-in-response-to-dmca-subpoenas-200903

#Cloudflare #DMCA #subpoenas #personal #details #privacy