Privacy

GrapheneOS version 2024091900 released:

https://grapheneos.org/releases#2024091900

See the linked release notes for a summary of the improvements over the previous release.

Forum discussion thread:

https://discuss.grapheneos.org/d/15853-grapheneos-version-2024091900-released

#GrapheneOS #privacy #security

For LinkedIn users, go to your settings, go to the Data Privacy Menu, select the option "Data for Generative AI Improvement".
Flip that switch to off.

#tech #ai #socialmedia #technews #linkedin #privacy

▪️ @[email protected] research▪️ Cashless toll payments end with massive data leak⤵️
#GoPass #Colombia #privacy #datasecurity #cybersecurity #dataleak #infosec

https://cnews.link/gopass-colombia-data-leaked/

Is your company using a quantum-safe email provider in 2024?

Not yet? Upgrade now! 🔐

Here’s how Tuta Mail can help your business 👉 https://tuta.com/blog/how-companies-benefit-from-tuta

#encryption #privacy #gdpr

With the recent allegations of monitoring of @[email protected] entry nodes being monitored by #German agencies to identify users by "timing analyzes" (https://www.tagesschau.de/investigativ/panorama/tor-netzwerk-100.html), I've been thinking about protections against this sort of attack if it proved to be feasible. The best protections would obviously be more entry nodes and rejection of mass internet surveillance, but as a second-best/intermediate solution, would a #Tor-powered OS like @[email protected] or #Tails be a solution? My reasoning is that the OSes connect to the entry node independent of when the browser or other applications connect.

#Privacy #security #CyberSecurity #surveillance

GrapheneOS version 2024091700 released:

https://grapheneos.org/releases#2024091700

See the linked release notes for a summary of the improvements over the previous release.

Forum discussion thread:

https://discuss.grapheneos.org/d/15819-grapheneos-version-2024091700-released

#GrapheneOS #privacy #security

Vanadium version 129.0.6668.54.0 released:

https://github.com/GrapheneOS/Vanadium/releases/tag/129.0.6668.54.0

See the linked release notes for a summary of the improvements over the previous release and a link to the full changelog.

Forum discussion thread:

https://discuss.grapheneos.org/d/15803-vanadium-version-12906668540-released

#GrapheneOS #privacy #security #browser

El representant de Meta a Austràlia admet que Facebook usa totes les fotos i textos dels usuaris d'aquell país i que no hi ha possibilitat de evitar-ho.

A més, diu que a la UE no han fet perquè les lleis no els són favorables.

#Facebook #Meta #Privacy

Facebook admits to scraping every Australian adult user's public photos and posts to train AI, with no opt-out option

https://www.abc.net.au/news/2024-09-11/facebook-scraping-photos-data-no-opt-out/104336170

cross-posted from: https://links.hackliberty.org/post/2667522

Apparently some company I do business with shared my data with another corp without me knowing, then that corp who I did not know had my data was breached.

WTF?

Then the breached corp who could not competently secure the data in the first place offers victims a gratis credit monitoring services (read: offers to let yet another dodgy corp also have people’s sensitive info thus creating yet another breach point). Then the service they hired as a “benefit” to victims outsources to another corp and breach point: Cloudflare.

WTF?

So to be clear, the biggest privacy abuser on the web is being used to MitM a sensitive channel between a breach victim and a credit monitoring service who uses a configuration that blocks tor (thus neglecting data minimization and forcing data breach victims to reveal even more sensitive info to two more corporate actors, one of whom has proven to be untrustworthy with private info).

Cannot make this shit up. I am now waiting for someone to tell me it’s a prank.. “you’ve been punk’d!”.

(update)
Then the lawyers representing data breach victims want you to give them your e-mail address so they can put Microsoft Outlook in the loop. WTF? The shit show of incompetence has no limit.

Nach 6 Wochen iOS-Nutzung kann ich sagen: Für datenschutzbewusste Nutzer, die die Kontrolle behalten wollen, ist iOS aus meiner Sicht leider nicht geeignet. Zu viel Kontrolle von Apple über das System, eingeschränkte Anpassungsmöglichkeiten und mangelnde Transparenz bei der Datenverarbeitung machen es schwer, die Souveränität über das eigene Gerät und die persönlichen Daten zu behalten.

#ios #apple #datenschutz #sicherheit #privacy #security

Following Founders’ Arrest, Telegram Will Allow Moderation of Private Chats.

"Telegram CEO Pavel Durov released his first public statement since being arrested and signaled a big change for the company."

https://gizmodo.com/following-founders-arrest-telegram-will-allow-moderation-of-private-chats-2000495589

If you were using Telegram for privacy before, it's now time to stop. If they can access the chats at all, it's not private. Use signal.

#Telegram #Privacy #E2EE #Encryption

In the past I have only seen PayPal spontaneously demand at arbitrary/unexpected moments that I jump their their hoops -- to login and give them more info about me. I reluctantly did what they wanted, and they kept my account frozen and kept my money anyway.

So I’ve been boycotting PayPal ever since. Not worth it for to work hard to find out why they kept my account frozen and to work hard to twist their arm to so that I can give them my business.

Now an actual financial institution is trying something similar. They are not as hostile as PayPal was (they did not pre-emptively freeze my account until I dance for them), but they sent an email demanding that I login and update my employment information (even though it has not changed). Presumably they will eventually freeze my account if I do not dance for them to satisfy their spontaneous demand.

I just wonder how many FIs are pulling this shit. And what are people doing about it? Normally I would walk.. pull my money out and go elsewhere. But the FI that is pushing KYC harassment has a lot of power because they offer some features I need that I cannot get elsewhere, and I have some stocks through them, which makes it costly/non-trivial to bounce.

I feel like we should be keeping a public database on FIs who pull this shit, so new customers can be made aware of who to avoid.

This BBC interview has a #Cloudflare rep David Bellson who describes CF’s observations on internet traffic. CF tracks for example the popularity of Facebook vs. Tiktok. Neither of those services are Cloudflared, so how is CF tracking this? Apparently they are snooping on traffic that traverses their servers and recording what people are talking about. Or is there a more legit way Cloudflare could be monitoring this activity?