Google and data brokers accused of illegally collecting people’s data: report

A campaigner says much of the world’s online advertising industry doesn’t comply with Europe’s privacy rules.

Google and several data brokers are violating the EU's privacy rules by harvesting people's personal information to build highly detailed online profiles, including some firms' collection of information on sexual orientation, health status and religious beliefs, according to a report published on Monday.

The accusations — from Johnny Ryan, a senior fellow at the Irish Council for Civil Liberties, an NGO — come 18 months after Ireland's privacy regulator began a probe into how Google collects and shares people's online information for its advertising business.

https://www.politico.eu/article/google-and-data-brokers-accused-of-illegally-collecting-data-report/

#Europe #EU #Google #data #brokers #privacy

Op-Ed: The global AI industry is intensifying mass surveillance in India

Facial recognition technology poses challenges to human rights and democratic accountability

Artificial Intelligence technologies are often presented as evidence of society’s progress toward a utopian vision: a data-driven, corruption-free world that has eradicated individual greed and human error.

Instead, the increasing adoption of such systems by a range of governments around the world indicates that these automated systems can also be emphatically anti-democratic, empowering mass surveillance with little accountability and oversight, and serving as a powerful tool for the harassment of dissenting voices.

https://medium.com/dfrlab/op-ed-the-global-ai-industry-is-intensifying-mass-surveillance-in-india-5c79ebc1bde2

#Asia #India #AI #face #recognition #biometrics #surveillance

New York City police officer spied on fellow Tibetans for China, prosecutors charge

A New York City police officer who also serves in the U.S. Army Reserve was arrested Monday on a federal charges of acting as an illegal agent of China.

The police officer, Baimadajie Angwang, who was born in the autonomous region of Tibet in China, allegedly repeatedly reported to officials at the Chinese Consulate in New York on the activities of other ethnic Tibetans in the New York area.

A complaint said that Angwang "used his official position in the NYPD to provide [Chinese] Consulate officials access to senior NYPD officials through invitations to official NYPD events."

The 33-year-old cop, Baimadajie Angwang, who was born in the autonomous region of Tibet in China, allegedly reported to officials at the Chinese consulate in New York on the activities of other Tibetans in the New York area.

Angwang, after appearing remotely in federal court in New York via teleconference, was ordered by a judge to be detained without bond after prosecutors said he "presents a serious risk of flight" to avoid the criminal charges. Angwang's lawyer reserved his right to argue for bail at a later date.

If convicted, Angwan, a resident of Nassau County, Long Island, face a maximum possible prison sentence of 55 years.

Authorities noted in a criminal complaint that Angwang, who currently works for the New York Police Department's community affairs unit in the 111th precinct in Queens, "initially traveled to the United States on a cultural exchange visa."

But after overstaying a second visa he "eventually sought asylum in the United States on the basis that he had allegedly been arrested and tortured in the [People's Republic of China] due partly to this Tibetan ethnicity," the complaint said.

The U.S. Attorney's Office for the Eastern District of New York, in a detention memo, said that despite Angwang's claims, an investigation found that "Angwang has traveled back to the PRC on numerous occasion since his asylum application was granted."

"These are not the actions of an individual who fears torture or persecution at the hands of the PRC, thus showing that his U.S. citizenship was secured through false pretenses," the memo said.

👀 👉🏼 https://www.cnbc.com/2020/09/21/nypd-cop-charged-with-acting-as-china-agent.html

#nypd #cop #charged #china #tibet #agent #spy
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Interview with Tutanota - Please submit your questions for our interview!

The e-mail provider "Tutanota" in an interview. How secure is the German mail provider really? How do they deal with the DDoS attacks?

The well-known German e-mail provider "Tutanota" for you in an interview. The past weeks were not easy for the German mail provider based in Hannover, which is very popular with many people. Serious DDoS attacks in the past few weeks have made it impossible for users to retrieve their mails from time to time. Even the Tutanota website was partially unavailable. But one does not give up: "now we have to fight for our right to privacy".

👀 👉🏼 Translated from 🇩🇪 with DeepL:
https://tarnkappe.info/tutanota-im-interview-bitte-fragen-fuer-ein-interview-einreichen/

#tutanota #email #interview
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Russia wants to ban the use of secure protocols such as TLS 1.3, DoH, DoT, ESNI

Amendment to IT law would make it illegal to use encryption protocols that fully hide the traffic's destination.

The Russian government is working on updating its technology laws so it can ban the use of modern internet protocols that can hinder its surveillance and censorship capabilities.

According to a copy of the proposed law amendments and an explanatory note, the ban targets internet protocols and technologies such as TLS 1.3, DoH, DoT, and ESNI.

Moscow officials aren't looking to ban HTTPS and encrypted communications as a whole, as these are essential to modern-day financial transactions, communications, military, and critical infrastructure.

https://www.zdnet.com/article/russia-wants-to-ban-the-use-of-secure-protocols-such-as-tls-1-3-doh-dot-esni/

#Russia #ban #secure #protocols #surveillance #privacy

Killed by Mozilla - A list of discontinued Mozilla products and services.

👉🏼 Inspired by Killed by Google 👈🏼
https://killedbygoogle.com/

👉🏼 Killed by Mozilla 👈🏼
https://killedbymozilla.com/

#mozilla #google #killed #graveyard
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

A new release of UntrackMe is available!

💡 Added:

✅ Use Bibliogram instances API
✅ Latency measurement for custom instances

👉🏼 Get the lite version
https://framadrive.org/s/CCafTK3BSSTPES7/download?path=%2F1.15.0%2F&files=app-lite-debug.apk

👉🏼 Get the full links version
https://framadrive.org/s/CCafTK3BSSTPES7/download?path=%2F1.15.0%2F&files=app-fullLinks-debug.apk

👀 👉🏼 https://toot.fedilab.app/@UntrackMe/104909568634924386

👀 👉🏼 https://framagit.org/tom79/nitterizeme

#UntrackMe #android #apk #update
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

seccomp — Your Next Layer of Defense

Why should you allow all possible system calls from your application when you know that you only need some? If you have ever wondered the same then this is the right talk for you.

👉🏼 We are covering:

* What is seccomp in a nutshell and where could you use it.
* Practical example with Docker, Elasticsearch, and Beats.
* How to collect seccomp violations with Auditd.

Because your security approach can always use an additional layer of protection.

📺 👉🏼 https://media.ccc.de/v/froscon2020-2614-seccomp_your_next_layer_of_defense

#froscon2020 #ccc #seccomp #video
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

UK firm to power face verification in Singapore's digital identity system

British firm iProov inks deal to provide face verification technology used in Singapore's national digital identity system, enabling four million users to access e-government services with a biometric scan.

Singapore has inked a deal with British vendor iProov to provide face verification technology used in the Asian country's national digital identity system. Already launched as a pilot earlier this year, the feature allows SingPass users to access e-government services via a biometric, bypassing the need for passwords.

The agreement also sees Singapore-based digital government services specialist, Toppan, involved in the deployment of the facial verification technology.

https://www.zdnet.com/article/uk-firm-to-power-face-verification-in-singapores-digital-identity-system/

#Asia #Singapore #face #verification #biometrics

This Deal Helped Turn Google Into an Ad Powerhouse. Is That a Problem?

The $3.1 billion acquisition of DoubleClick in 2007 was a “game changer.” A growing number of antitrust experts say it’s the sort of deal that should no longer be possible.

Google owns the world’s leading search engine, it operates the largest video-hosting service in YouTube, and its popular web browser, email, map and meeting software is used by billions of people.

But its financial heft — the source of nearly all its enormous profits — is advertising. And perhaps no day was more pivotal in transforming Google into a powerhouse across the entire digital advertising industry than April 13, 2007, when the company clinched a deal to buy DoubleClick for $3.1 billion.

https://www.nytimes.com/2020/09/21/technology/google-doubleclick-antitrust-ads.html

#US #Google #Doubleclick #acquisition

Facebook took down a Chinese disinformation network that spread propaganda across Southeast Asia and the US

Facebook announced Tuesday that it had removed two disinformation networks, one originating in China and the other in the Philippines, for violating its "coordinated inauthentic behavior" policy.

"In each case, the people behind this activity coordinated with one another and used fake accounts as a central part of their operations to mislead people about who they are and what they are doing," Facebook head of security Nathaniel Gleicher wrote in a blog post.

The Chinese network "focused primarily on the Philippines and Southeast Asia more broadly, and also on the United States," using fake accounts to pose as locals, posting mostly about "naval activity in the South China Sea, including US Navy ships," according to the company.

https://www.businessinsider.com/facebook-removes-chinese-disinformation-campaign-operating-in-asia-us-2020-9

#Facebook #disinformation #campaign

This Company Wants to Help Your Boss Monitor Your Brainwaves at Work

Critics doubt that Emotiv's earphone-style sensors can reliably track things like stress and attention—and some worry the technology will become yet another form of workplace surveillance.

The MN8 electroencephalography device looks like any set of sleek wireless earphones. Its buds can rest unobtrusively in the ear's concha for a whole workday and that, its makers at San Francisco-based Emotiv say, is the point. You and everyone around you forgets you’re wearing a device that is monitoring your brainwaves for signs of stress, focus, and attention.

The purpose of the headset, after all, is for companies to collect brain data from their employees.

https://www.vice.com/en_us/article/qj4qd7/this-company-wants-to-help-your-boss-monitor-your-brainwaves-at-work

#US #Emotiv #earphone #workplace #surveillance #privacy

Bill Gates thinks AI taking everyone's jobs could be a good thing

Bill Gates, the billionaire co-founder of Microsoft, thinks that artificial intelligence will take over a lot of jobs and ultimately will be a good thing.

In an interview with Fox Business, Gates said that robots taking over our jobs will make us more efficient, and lead to more free time.

“Well, certainly we can look forward to the idea that vacations will be longer at some point," Gates told Fox Business. "If we can actually produce twice as much as we make today with less labor, the purpose of humanity is not just to sit behind a counter and sell things, you know?"

https://markets.businessinsider.com/news/stocks/bill-gates-artificial-intellegence-doesnt-think-ai-taking-everyones-jobs-is-a-bad-thing-2018-1-1014021350#

#BillGates #AI

Despite Denials, LAPD Reportedly Used Facial Recognition Nearly 30,000 Times Since 2009

Recent denials that the Police Department used facial recognition were mistakes, Assistant Chief Horace Frank told the paper. Frank said he told the city’s Police Commission about its use two years ago.

The Los Angeles Police Department has used facial-recognition software nearly 30,000 times since 2009 even while denying at times that it used the controversial technology at all, the Los Angeles Times reported Monday.

The LAPD doesn't have its own face-scanning platform but uses the face-comparison software provided through the Los Angeles County Regional Identification System, a database of about 9 million mugshots, the Times said.

Recent denials that the Police Department used facial recognition were mistakes, Assistant Chief Horace Frank told the paper. Frank said he told the city’s Police Commission about its use two years ago.

https://www.nbclosangeles.com/news/local/despite-denials-lapd-reportedly-used-facial-recognition-nearly-30000-times-since-2009/2431926/

#US #LAPD #face #recognition #surveillance #privacy

A tip from a kid helps detect iOS and Android scam apps’ 2.4 million downloads

Smartphone apps raked in ~$500,000, in part thanks to shilling on TikTok and Instagram

Researchers said that a tip from a child led them to discover aggressive adware and exorbitant prices lurking in iOS and Android smartphone apps with a combined 2.4 million downloads from the App Store and Google Play.

Posing as apps for entertainment, wallpaper images, or music downloads, some of the titles served intrusive ads even when an app wasn’t active. To prevent users from uninstalling them, the apps hid their icon, making it hard to identify where the ads were coming from. Other apps charged from $2 to $10 and generated revenue of more than $500,000, according to estimates from SensorTower, a smartphone-app intelligence service

The apps came to light after a girl found a profile on TikTok that was promoting what appeared to be an abusive app and reported it to Be Safe Online, a project in the Czech Republic that educates children about online safety. Acting on the tip, researchers from security firm Avast found 11 apps, for devices running both iOS and Android, that were engaged in similar scams.

https://arstechnica.com/information-technology/2020/09/scam-apps-with-2-4-million-downloads-found-on-apple-and-google-shelves/

#scam #kids #adware #Playstore #android #AppStore #iOS #tiktok #instagram

Firefox usage is down 85% despite Mozilla's top exec pay going up 400%

Mozilla is in an absolute state: high overheads, falling usage of Firefox, questionable sources of revenue and now making big cuts to engineering as their income falls.

Mozilla recently announced that they would be dismissing 250 people. That's a quarter of their workforce so there are some deep cuts to their work too. The victims include: the MDN docs (those are the web standards docs everyone likes better than w3schools), the Rust compiler and even some cuts to Firefox development. Like most people I want to see Mozilla do well but those three projects comprise pretty much what I think of as the whole point of Mozilla, so this news is a a big let down.

The stated reason for the cuts is falling income. Mozilla largely relies on "royalties" for funding. In return for payment, Mozilla allows big technology companies to choose the default search engine in Firefox - the technology companies are ultimately paying to increase the number of searches Firefox users make with them. Mozilla haven't been particularly transparent about why these royalties are being reduced, except to blame the corona-virus.

I'm sure the coronavirus is not a great help but I suspect the bigger problem is that Firefox's market share is now a tiny fraction of its previous size and so the royalties will be smaller too - fewer users, so fewer searches and therefore less money for Mozilla.

👀 👉🏼 http://calpaterson.com/mozilla.html

#mozilla #firefox #browser #numbers #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Bill Gates thinks AI taking everyone's jobs could be a good thing

Bill Gates, the billionaire co-founder of Microsoft, thinks that artificial intelligence will take over a lot of jobs and ultimately will be a good thing.

In an interview with Fox Business, Gates said that robots taking over our jobs will make us more efficient, and lead to more free time.

“Well, certainly we can look forward to the idea that vacations will be longer at some point," Gates told Fox Business. "If we can actually produce twice as much as we make today with less labor, the purpose of humanity is not just to sit behind a counter and sell things, you know?"

https://markets.businessinsider.com/news/stocks/bill-gates-artificial-intellegence-doesnt-think-ai-taking-everyones-jobs-is-a-bad-thing-2018-1-1014021350#

#BillGates #AI

The EU is set to declare war on encryption

The EU is set to declare war on encryption with plans to allow law enforcement officials “targeted lawful access” to protected communications, according to a European Commission internal note seen by the Financial Times.

The note outlines the commission’s aim to “stimulate a discussion” among EU member states “on the issues posed by end-to-end encryption” for the purpose of tackling child abuse and other organised crime networks.

👀 👉🏼 https://tech.newstatesman.com/security/the-eu-is-set-to-declare-war-on-encryption

#eu #war #encryption #thinkabout #why
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Shopify discloses security incident caused by two rogue employees

Shopify said two rogue support staffers accessed customer transaction details for less than 200 stores.

Online e-commerce giant Shopify is working with the FBI and other law enforcement agencies to investigate a security breach caused by two rogue employees.

The company said two members of its support team accessed and tried to obtain customer transaction details from Shopify shop owners (merchants).

Shopify estimated the number of stores that might be affected by the employees' actions at less than 200. The company boasted more than one million registered merchants in its latest quarterly filings.

The e-commerce giant said the incident is not the result of a vulnerability in its platform but the actions of rogue employees.

"We immediately terminated these individuals' access to our Shopify network and referred the incident to law enforcement," the company said in a prepared statement. "We are currently working with the FBI and other international agencies in their investigation of these criminal acts."

An investigation into the security breach is still in its early phases. Shopify promised to notify impacted merchants and customers as relevant.

👀 👉🏼 https://community.shopify.com/c/Shopify-Discussion/Incident-Update/m-p/888971

👀 👉🏼 https://www.zdnet.com/article/shopify-discloses-security-incident-caused-by-two-rogue-employees

#fbi #breach #shopify #security #incident
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Web sites shared over 100 trillion pieces of our personal data last year: time to stop real-time bidding’s blatant disregard of privacy

Last week Privacy News Online wrote about developments in the long-running battle between the privacy campaigner Max Schrems and Facebook. One of the key issues there is the failure by the Irish Data Protection Commission (DPC) to act on the initial complaint made by Schrems seven years ago.

That matters, because under EU law, Ireland is effectively the data protection agency for the whole of the European Union. Like Facebook, Google too has its European headquarters in Dublin. That means complaints against the company must also be dealt with by Ireland’s DPC. As this blog reported two years ago, just such a complaint was submitted to both the UK and Irish data protection authorities, regarding the use of real-time bidding systems (RTB) by Google. The problem of RTB, and how it goes against core requirements of the EU’s GDPR legislation, was first discussed here three years ago, with updates noting the serious implication for privacy.

The UK’s Information Commission Office published the preliminary results of its investigation into RTB (since paused because of Covid-19) last year, and they didn’t look good for Google. The Irish DPC has been very slow to take action. As a result, one of the people involved in the initial complaint, Johnny Ryan, has released new evidence of how serious the problem is:

👀 👉🏼 https://www.privateinternetaccess.com/blog/web-sites-shared-over-100-trillion-pieces-of-our-personal-data-last-year-time-to-stop-real-time-biddings-blatant-disregard-of-privacy/

👀 👉🏼 https://www.iccl.ie/news/dr-johnny-ryan-takes-up-new-privacy-role-at-iccl/

#privacy #data #ourdata #urdata #rtb #dpc #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag