Google is about as open as a clam. Over the holidays, I found a Chromebook that Samsung had given me to evaluate about six years ago and which had been gathering dust ever since. Coincidentally, Laura’s sister Annie had just told me that she needed a laptop. Hmm… Well, there was no way I was going to give her a Google spy device, so I decided to liberate the Chromebook from Google’s surveillance-based operating system (ChromeOS) and gift it to her.

"It’s taking longer than we initially had thought."

Nextcloud - un lieu sûr pour toutes vos données

Des procureurs américains en pleine instruction

Behind the scenes, Apple is trying to kill legislation that would make it easier for normal people to fix iPhones.

The other day, AWS announced its latest plans to work around the license of ElasticSearch, a very useful open source project cared for by E...

Les outils agricoles pourront-ils, à l’image des logiciels libres, devenir « libres » ? Est-ce que les principes fondateurs de l’open source – la possibilité de partager, distribuer, modifier et re...

In December 2018, we revealed how some of the most widely used apps in the Google Play Store automatically send personal data to Facebook the moment they are launched. That happens even if you don't have a Facebook account or are logged out of the Facebook platform (watch our talk at the Chaos Communication Congress (CCC) in Leipzig or read

GOOD ENOUGH TO RECOGNIZE MUSIC VIA SHAZAM IF YOU TURN IT UP TO 11

Firefox gets another new feature from the Tor Uplift project started in 2016.

Coach sportif, date de règles, recherche d’appartement… ces services envoyaient des informations très privées, même si les utilisateurs n’étaient pas sur Facebook.

Trackography is our open source project which illustrates which companies track us when we read the news online, as well as where our data travels to everytime we access a media website within a period of time.

Facebook, Google, and other masters of the surveillance economy have bred a virulent mutation of capitalism, which explains why they aren’t interested in addressing their many scandals

Thread by @jeremyburge: "For years Facebook claimed the adding a phone number for 2FA was only for security. Now it can be searched and theresable that. Facebook 2FA numbers are also shared with Instagram which prompts you 'is this your phone number? […]"

Experts with whom we consulted confirmed New York Times reports on the Saudi capability to “collect vast amounts of previously inaccessible data from smartphones in the air without leaving a trace—including phone calls, texts, emails”—and confirmed that hacking was a key part of the Saudis’ “extensive surveillance efforts that ultimately led to the killing of [Washington Post] journalist Jamal Khashoggi.”

A leaked internal document obtained by Motherboard outlines a program that looks almost exactly like the requirements of right to repair legislation that has been proposed in 20 states.

Objectives To investigate whether and how user data are shared by top rated medicines related mobile applications (apps) and to characterise privacy risks to app users, both clinicians and consumers.

Design Traffic, content, and network analysis.

Setting Top rated medicines related apps for the Android mobile platform available in the Medical store category of Google Play in the United Kingdom, United States, Canada, and Australia.

Participants 24 of 821 apps identified by an app store crawling program. Included apps pertained to medicines information, dispensing, administration, prescribing, or use, and were interactive.

Interventions Laboratory based traffic analysis of each app downloaded onto a smartphone, simulating real world use with four dummy scripts. The app’s baseline traffic related to 28 different types of user data was observed. To identify privacy leaks, one source of user data was modified and deviations in the resulting traffic observed.

Main outcome measures Identities and characterisation of entities directly receiving user data from sampled apps. Secondary content analysis of company websites and privacy policies identified data recipients’ main activities; network analysis characterised their data sharing relations.

Results 19/24 (79%) of sampled apps shared user data. 55 unique entities, owned by 46 parent companies, received or processed app user data, including developers and parent companies (first parties) and service providers (third parties). 18 (33%) provided infrastructure related services such as cloud services. 37 (67%) provided services related to the collection and analysis of user data, including analytics or advertising, suggesting heightened privacy risks. Network analysis revealed that first and third parties received a median of 3 (interquartile range 1-6, range 1-24) unique transmissions of user data. Third parties advertised the ability to share user data with 216 “fourth parties”; within this network (n=237), entities had access to a median of 3 (interquartile range 1-11, range 1-140) unique transmissions of user data. Several companies occupied central positions within the network with the ability to aggregate and re-identify user data.

Conclusions Sharing of user data is routine, yet far from transparent. Clinicians should be conscious of privacy risks in their own use of apps and, when recommending apps, explain the potential for loss of privacy as part of informed consent. Privacy regulation should emphasise the accountabilities of those who control and process user data. Developers should disclose all data sharing practices and allow users to choose precisely what data are shared and with whom.

La mairie de Nice teste actuellement un dispositif de reconnaissance faciale sur son carnaval. Quelles potentialités pour ces technologies dont la généralisation semble approcher ? Quels risques en matière de liberté individuelles ?

L’association, qui promeut en France OpenStreetMap, a plusieurs serveurs hébergeant des services et applications liés au projet de cartographie libre. Elle vient de réussir son appel aux dons, avec la somme de...

Privacy advocates have praised Vermont’s new data broker law, but acknowledge it does little to rein in a largely obscure and unregulated industry.

Social network targeted legislators around the world, promising or threatening to withhold investment

Spoiler : c'est plus compliqué que ça en a l'air

Les alertes ont été ignorées

Once again, there is another data leak exposing personal data and business intelligence information from an unsecured source. Researchers have uncovered yet another leaked database containing a vast set of personal data. This latest discovery was unearthed by Bob Diachenko, a researcher at Security Discovery. Through his blog post, Diachenko claims that the database is… Read More »Verifications.io Leaks Personal Records of 2 Billion Users

Eiere av Nokia 7 Plus kan i flere måneder ha fått sendt sensitive opplysninger til en server i Kina. Datatilsynet i Finland vurderer gransking etter NRKs avsløring.

Le fourbe a été téléchargé 150 millions de fois

WhatsApp co-founder Brian Acton told students to reject Facebook by deleting their apps from their phones in an address at Stanford University in California on Wednesday.

Messaging platform Telegram claims to have had a surge in signups during a period of downtime for Facebook’s rival messaging services. In a message sent to his Telegram channel, founder Pavel Durov’s just wrote: “I see 3 million new users signed up for Telegram within the last 24 …

Facebook, the online social network, has more than 2 billion global users. Because those users do not pay for the service, its benefits are hard to measure. We report the results of a series of three non-hypothetical auction experiments where winners are paid to deactivate their Facebook accounts for up to one year. Though the populations sampled and the auction design differ across the experiments, we consistently find the average Facebook user would require more than $1000 to deactivate their account for one year. While the measurable impact Facebook and other free online services have on the economy may be small, our results show that the benefits these services provide for their users are large.

Our Biggest Data Breach Discovery of 2019 a massive 800 million emails leaked online. This data breach uncovered how an email verification service uses spam

Le 22-02-2019, le Wall Street Journal publiait un article d’investigation détaillé. On y apprend que de nombreuses applications mobiles traitant des données de santé communiquent lesdites données à Facebook, que vous y soyez connecté·e ou pas. Defensive Lab Agency a été sollicitée pour conduire ces mêmes analyses. Au vu de la faible maturité sur le sujet, nous avons décidé d’expliciter une partie de notre expertise sur le sujet et d’illustrer les conclusions du Wall Street Journal avec quelques éléments techniques.

WSJ reporter Katherine Bindley found that our ability to control Facebook ad tracking is limited and that much of what Facebook claims should come with lengthy footnotes.

WhatsApp has announced that it will start sharing your phone number with Facebook. The messaging service has updated its privacy policy to indicate the changes as well as other additions to the platform, such as WhatsApp Web, desktop clients, end-to-end encryption, and voice call service.

Facebook has changed its story after initially trying to downplay how it targeted teens with its Research program that a TechCrunch investigation revealed was paying them gift cards to monitor all their mobile app usage and browser traffic. “Less than 5 percent of the people who chose to part…