Privacy News, Articles and Updates

ACLU to deliver petition requesting Amazon stop selling surveillance technology to the government

The American Civil Liberties Union and other advocacy groups are delivering their petition to Amazon's Seattle headquarters today requesting that it stop selling surveillance technology to the government.

Uber's drunk passenger patent could be a 'privacy nightmare for consumers

Uber recently applied for a patent to use artificial intelligence to spot drunken drivers

ENCRYPT Act reintroduced in Congress

A bipartisan Congressional group has put forth a bill to create a national standard encryption that would supersede any similar standards created on the state or local levels.

Privacy by design BSI standard being developed for IOT devices and apps

BSI confirms that it is running the secretariat for a new ISO Project Committee developing ISO 23485 Consumer protection - Privacy by design for consumer goods and services - aimed at protecting consumers' domestic privacy.

InvisiMole cyber espionage malware detailed

A rarely used, but very powerful cyberespionage malware with the ability to install backdoors, remotely execute code and grab sound and audio from the affected device has been discovered and analyzed by ESET researchers.

States gearing up for 2018 elections by requesting Federal cybersecurity funding

The U.S Election Assistance Commission (EAC) announced that 26 states have requested $209,638,865, or 55 percent of the allocated $380 million for Help American Vote Act (HAVA) funds.

Microsoft's Github buy: is it good news for security?

Microsoft has announced a £5.6 billion deal to acquire software development platform GitHub, arguably the most visible open source resource online.

Researchers warn widespread Google Group misconfigurations are exposing sensitive data

A survey of 2.5 million domains looked for configurations publicly exposed, found 9,637 exposed organizations, then used a random sample of 171 public organizations to determine nearly 3,000 domains were leaking sensitive data.

Apple discloses new protections against snoopy apps and websites at WWDC event

Apple's newest enhancements to its Safari browser will inhibit websites and apps -- including Facebook -- from using cookies and fingerprinting techniques to track users across the internet.

Facebook defends sharing user data with mobile OEMs

Facebook is defending its privacy practices again after a report that the social media giant entered into agreements over the last decade to share user data with at least 60 mobile device manufacturers, in an effort to make its services available to device owners via integrated APIs.

Major vulnerabilities in the EOS blockchain may push back Mainnet launch

Major vulnerabilities in the EOS blockchain and smart contracts platform may push back the Mainnet launch scheduled for June 2.

Facebook 2FA no longer requires a phone number

Facebook has unveiled a new way for its users to set up two-factor authentication for their accounts eliminating the need to register a phone number.

T-Mobile bug exposed personal customer data

A glitch in T-Mobile's employee website allowed anyone to look up customer account details.

Baltimore-based LifeBridge Health breach impacts half a million patients

LifeBridge Health is notifying 500,000 patients that their personal information was exposed in a data breach.

Researchers find abundance of legitimate apps used to stalk intimate partners

Researchers from various universities conducted what was described as the first large-scale study of apps used by stalkers to track their intimate partners.

Sens. Markey, Blumenthal call for FTC investigation of Google geolocation practices

Senators from Connecticut and Massachusetts have asked the Federal Trade Commission to investigate whether or not Google, through its Android devices, has deceitfully gathered geo-location data from device users.

Report: Ring updates smart doorbell app due to risky password change process

Home security product manufacturer Ring reportedly made changes to its smart doorbell system last January after learning that the product's app was not automatically logging off users from their accounts after they changed their passwords.

Google assures users it's ready for GDPR

Google announced its plans detailing how it will handle customer data to comply with GDPR requirements after May 25.

NIST adds privacy recommendations to its Risk Management Framework

The National Institute of Standards and Technology has updated its Risk Management Framework (RMF) to cover privacy issues with a focus on helping organizations better understand and protect their member's personally identifiable information (PII).

Paris Hilton's hacker steals $130K plus nude photos

A woman who pled guilty to hacking into Parris Hilton' bank accounts and iCloud accounts to steal nude photos and over a $100,000 is scheduled for sentencing Monday.

NSA collected 530 million calls and texts in 2017

The National Security Agency (NSA) collected more than 530 million phone calls and texts in 20107, more than three times the number gathered the previous year.

SC Video: GDPR could expose smaller players to a high liability, says NS8's Adam Rogas

NS8's Adam Rogas discusses how GDPR can impact smaller businesses regardless of where they are in the data chain of custody.

PUBG Corp. says 15 Chinese hackers arrested

PUBG Corp. announced the arrest of 15 hackers in China who were accused of developing, selling, promoting, and using unauthorized hacking/cheating programs

GDPR: It's (just about) here

Like many college students who cram the night before a test - and some writers who test the limits of their editors' patience with their procrastination - many companies have pushed off GDPR compliance, believing either it doesn't apply to them, it's too costly or overwhelming or they can afford to wait and see just how serious regulators are about admonishing and fining companies who falter on privacy. Big mistake.

Chasing privacy

Defining privacy is easy. Hit up to read that it is "the state or condition of being free from being observed or disturbed by other people."

Amazon Echo made to eavesdrop without exploit or manipulation

Checkmarx security researchers developed a proof of concept attack that would allow enable an Amazon Echo to continue recording a user long after a request is made.

Study finds children hit worst by data breaches

While data breaches put millions at risk each year, it's easy to forget about some of the most vulnerable victims who often don't have the knowledge or resources to protect their identities.

Who's Calling?