Google records what people are doing on hundreds of thousands of mobile apps even when they follow the company’s recommended settings for stopping such monitoring, a lawsuit seeking class action status alleged on Tuesday. The data privacy lawsuit is the second filed in as many months against Google by the law firm Boies Schiller Flexner Read more about Google faces lawsuit over tracking in apps even when users opted out[…]
Most GDPR consent banner implementations are deliberately engineered to be difficult to use and are full of dark patterns that are illegal according to the law. I wanted to find out how many visitors would engage with a GDPR banner if it were implemented properly and how many would grant consent to their information being Read more about Only 9% of visitors give GDPR consent to be tracked[…]
As Alexa, Google Home, Siri, and other voice assistants have become fixtures in millions of homes, privacy advocates have grown concerned that their near-constant listening to nearby conversations could pose more risk than benefit to users. New research suggests the privacy threat may be greater than previously thought. The findings demonstrate how common it is Read more about Uncovered: 1,000 phrases that incorrectly trigger Alexa, Siri, and Google Assistant[…]
How many government demands for user data has Zoom received? We won’t know until “later this year,” an updated Zoom blog post now says. The video conferencing giant previously said it would release the number of government demands it has received by June 30. But the company said it’s missed that target and has given Read more about Zoom misses its own deadline to publish its first transparency report[…]
Twenty consumer and citizen rights groups have published an open letter [PDF] urging regulators to pay closer attention to Google parent Alphabet’s planned acquisition of Fitbit. The letter describes the pending purchase as a “game-changer” that will test regulators’ resolve to analyse how the vast quantities of health and location data slurped by Google would Read more about Consumer orgs ask world’s competition watchdogs: Are you really going to let Google walk off with all Fitbit’s data?[…]
This latest device succeeds the previous Librem 13 laptop, which ran for four generations, and includes a slightly bigger display, a hexa-core Ice Lake Intel Core i7 processor, gigabit Ethernet, and USB-C. As the name implies, the Librem 14 packs a 14-inch, 1920×1080 IPS display. Purism said this comes without increasing the laptop’s dimensions thanks Read more about Purism’s quest against Intel’s Management Engine black box CPU now comes in 14 inches[…]
The company said that it continued sharing user data with approximately 5,000 developers even after their application’s access expired. The incident is related to a security control that Facebook added to its systems following the Cambridge Analytica scandal of early 2018. Responding to criticism that it allowed app developers too much access to user information, Read more about Facebook says 5,000 app developers got user data after Cambridge Analytica scandal cutoff date[…]
Comcast has agreed to be the first home broadband internet provider to handle secure DNS-over-HTTPS queries for Firefox browser users in the US, Mozilla has announced. This means the ISP, which has joined Moz’s Trusted Recursive Resolver (TRR) Program, will perform domain-name-to-IP-address lookups for subscribers using Firefox via encrypted HTTPS channels. That prevents network eavesdroppers Read more about Talk about the fox guarding the hen house. Comcast to handle DNS-over-HTTPS for Firefox-using subscribers[…]
Names, adresses and mobile numbers have been sold for fraud using WhatsApp. Most of these numbers come from callcentres, mainly those selling energy contracts. The fresher a lead is, the more they are worth: betwween 25 cents and 2 euros. The money is usually transferred through mules, who keep a percentage of the proceeds. Source: Read more about tens of thousands of mobile numbers of 50+ year olds sold for whatsapp fraud[…]
In the case of Firefox users, some discovered that the new default Windows 10 browser, which is shipped to their devices via Windows Update, sometimes imports the data from Mozilla’s application even if they don’t give their permission. Some of these Firefox users decided to kill the initial setup process of Microsoft Edge, only to Read more about Microsoft Edge Accused of Sneakily Importing Firefox Data on Windows 10[…]
Google has introduced “continuous match mode” for apps on its voice-powered Assistant platform, where it will listen to everything without pausing. At the same time it has debuted related developer tools, new features, and the ability to display web content on its Smart Display hardware using the AMP component framework. The Chocolate Factory has big Read more about Google isn’t even trying to not be creepy: ‘Continuous Match Mode’ in Assistant will listen to everything until it’s disabled[…]
If you’re a free Zoom user, and waiting for the company to roll out end-to-end encryption for better protection of your calls, you’re out of luck. Free calls won’t be encrypted, and law enforcement will be able to access your information in case of ‘misuse’ of the platform. Zoom CEO Eric Yuan today said that the Read more about Zoom won’t encrypt free calls because it wants to comply with law enforcement[…]
The GSM Association, the body that represents mobile carriers and influences the development of standards, has suggested its members bake virus contact-tracing functionality into their own bundled software. The body today popped out a paper [PDF] on contact-tracing apps. After some unremarkable observations about the need for and operations of such apps, plus an explanation Read more about GSMA suggests mobile carriers bake contact-tracing into their own apps – if governments ask for it[…]
Contact tracing apps have the potential to slow the spread of COVID-19. But without proper security safeguards, some fear they could put users’ data and sensitive info at risk. Until now, that threat has been theoretical. Today, Amnesty International reports that a flaw in Qatar’s contact tracing app put the personal information of more than Read more about Qatar’s contact tracing app put over one million people’s info at risk[…]
Apple may still be recording and transcribing conversations captured by Siri on its phones, despite promising to put an end to the practice nine months ago, claims a former Apple contractor who was hired to listen into customer conversations. In a letter [PDF] sent to data protection authorities in Europe, Thomas Le Bonniec expresses his Read more about Hey Siri, are you still recording people’s conversations despite promising not to do so nine months ago?[…]
The US Senate has voted to give law enforcement agencies access to web browsing data without a warrant, dramatically expanding the government’s surveillance powers in the midst of the COVID-19 pandemic. The power grab was led by Senate majority leader Mitch McConnell as part of a reauthorization of the Patriot Act, which gives federal agencies Read more about Senate Votes to Allow FBI to Look at US citizen Web Browsing History Without a Warrant[…]
Privacy Enhancements for Android (PE for Android) is a platform for exploring concepts in regulating access to private information on mobile devices. The goal is to create an extensible privacy system that abstracts away the details of various privacy-preserving technologies. PE for Android allows app developers to safely leverage state-of-the-art privacy techniques without knowledge of Read more about Privacy Enhancements for Android[…]
You can’t make access to your website’s content dependent on a visitor agreeing that you can process their data — aka a ‘consent cookie wall’. Not if you need to be compliant with European data protection law. That’s the unambiguous message from the European Data Protection Board (EDPB), which has published updated guidelines on the Read more about No cookie consent walls — and no, scrolling isn’t consent, says EU data protection body[…]
This Guide has been developed by experts from IAB Europe’s Programmatic Trading Committee (PTC) to prepare brands, agencies, publishers and tech intermediaries for the much-anticipated post third-party cookie advertising ecosystem. It provides background to the current use of cookies in digital advertising today and an overview of the alternative solutions being developed. As solutions evolve, Read more about IAB Europe Guide to the Post Third-Party Cookie Era[…]
Researchers have created a new a new system that helps Internet users ensure their online data is secure. The software-based system, called Mitigator, includes a plugin users can install in their browser that will give them a secure signal when they visit a website verified to process its data in compliance with the site’s privacy Read more about Researchers create a new system to protect users’ online data by checking if data entered is consistent with the privacy policy[…]
Britons will not be able to ask NHS admins to delete their COVID-19 tracking data from government servers, digital arm NHSX’s chief exec Matthew Gould admitted to MPs this afternoon. Gould also told Parliament’s Human Rights Committee that data harvested from Britons through NHSX’s COVID-19 contact tracing app would be “pseudonymised” – and appeared to Read more about UK COVID-19 contact tracing app data may be kept for ‘research’ after crisis ends, MPs told[…]
Browser maker Mozilla is working on a new service called Private Relay that generates unique aliases to hide a user’s email address from advertisers and spam operators when filling in online forms. The service entered testing last month and is currently in a closed beta, with a public beta currently scheduled for later this year, Read more about New Firefox service will generate unique email aliases to enter in online forms[…]
Brave, a maker of a pro-privacy browser, has lodged complaints with the European Commission against 27 EU Member States for under resourcing their national data protection watchdogs. It’s asking the European Union’s executive body to launch an infringement procedure against Member State governments, and even refer them to the bloc’s top court, the European Court Read more about Brave accuses European governments of GDPR resourcing failure[…]
When he looked around the Web on the device’s default Xiaomi browser, it recorded all the websites he visited, including search engine queries whether with Google or the privacy-focused DuckDuckGo, and every item viewed on a news feed feature of the Xiaomi software. That tracking appeared to be happening even if he used the supposedly Read more about Surprise surprise, Xiaomi web browser and music player are sending data about you to China[…]
The design of Australia’s COVIDSafe contact-tracing app creates some unintended surveillance opportunities, according to a group of four security pros who unpacked its .APK file. Penned by independent security researcher Chris Culnane, University of Melbourne tutor, cryptography researcher and masters student Eleanor McMurtry, developer Robert Merkel and Australian National University associate professor and Thinking Security Read more about Australian contact-tracing app leaks telling info and increases chances of third-party tracking, say security folks. That’s OK says maker, you download worse stuff as games.[…]