source: https://mastodon.social/@mysk/112340023465073147
#Apple recently introduced a new URI scheme so that #iOS users in the #EU can install marketplace apps from the browser. #Safari handles the scheme insecurely leaving users exposed to tracking.
#surveillance #politics #europe #software #security #privacy #news #problem #fail #smartphone #warning
The Guardian
A little-known amendment to the reauthorized version of Fisa would enlarge the government’s surveillance powers to a drastic, draconian degree.
(Text continues underneath the photo.)
The US House of Representatives agreed to reauthorize a controversial spying law known as Section 702 of the Foreign Intelligence Surveillance Act last Friday without any meaningful reforms, dashing hopes that Congress might finally put a stop to intelligence agencies’ warrantless surveillance of Americans’ emails, text messages and phone calls.
The vote not only reauthorized the act, though; it also vastly expanded the surveillance law enforcement can conduct. In a move that Senator Ron Wyden condemned as “terrifying”, the House also doubled down on a surveillance authority that has been used against American protesters, journalists and political donors in a chilling assault on free speech. (...)
Tags: #surveillance #mass_surveillance #nsa #fisa #government_surveillance #spying_law #Foreign_Intelligence_Surveillance_Act #privacy #human_rights
#usa #justice #privacy #security #smartphone #mobile #technology #news #police #surveillance
I can’t recall what this service was for as I don’t find any login saved for it, but I was reading the updated privacy policy they sent me in an e-mail (looks like it may have been a service a tried a long time ago). It’s very long and starts out quite well, but it was when I got to these paragraphs below that it really starts to worry me as they are basically claiming all sorts of metadata will be passed on online advertising networks, social media companies and other 3rd party services, including GPS locations and click stream information. This includes for children 13 years and older. It’s similar to what WhatsApp passes up to Meta, which made me drop WhatsApp like a hot potato, because of who that data gets passed to.
An extract: “Specifically, we permit third party online advertising networks, social media companies and other third-party services, to collect information about your use of the VERO Website over time so that they may play or display ads for our products and services on other websites or services you may use, and on other devices you may use. Typically, though not always, the information used for interest-based advertising is collected through tracking technologies, such as cookies, web beacons, embedded scripts, location-identifying technologies, and similar technology, which recognize the device you are using and collect information, including click stream information, browser type, time and date you visited the VERO Websites, AdID, and other similar information. If permitted by your device settings, they may also collect location data through GPS, Wi-Fi or other methods. We and our third-party partners use this information to make the advertisements you see online more relevant to your interests, as well as to provide advertising-related services such as reporting, attribution, analytics and market research. We may also use services provided by third parties (such as social media platforms) to serve targeted ads to you and others on such platforms.”
This extract could imply your data gets made available to data brokers even: “Please be aware that your Personal Information and communications may be transferred to and maintained on servers or databases located outside your state, province, or country. We store and process the information that we collect in the United States in accordance with this Privacy Policy though our Service Providers may store and process data outside the United States. The laws in the United States may not be as protective of your privacy as those in your location.”
Well, this re-assuring that they don’t “sell” the information: “We do not “sell” personal information as most people would typically understand that term. However, on certain portions of the VERO Website, we do allow certain third-party partners and providers to collect information about consumers directly through our services for purposes of analyzing and optimizing our services, displaying ads on third party sites, providing content and ads that are more relevant, measuring statistics and the success of ad campaigns, and detecting and reporting fraud. This practice may be interpreted to constitute a “sale” under the U.S. state privacy laws, or may constitute the “sharing” or processing of your personal information for cross-context behavioral advertising purposes.”
They at least do expand here on selling: “We have “sold” or “shared” the following categories of personal information for the purposes described in our Privacy Policy, subject to your settings and preferences and your Right to Opt-Out: Identifiers, Commercial Information, and Internet/Network Information.”
This is what is stated about 3rdparty identity services: “VERO does not receive the biometric identifier generated from the images, however, for identity verification and security purposes, VERO will receive the results of the identity verification process, including the images of your ID and the results of the liveness check, as well as text extracted from the ID scan. We may use some or all of this information and associated information to verify your account.”
And this: “We do not sell sensitive information, and we do not process or otherwise share sensitive information for the purpose of targeted advertising.” Except that this contradicts what was said earlier about targeted advertising! Because I understand “to make the advertisements you see online more relevant to your interests” to mean targeted advertising. Maybe relevant and targeted mean two different things?
We don’t always have time to read updated privacy policies, but many do contain these hidden gems, that quite frankly can put you off using such services. The sites of course are usually “free” to use, so are funded by advertisers who require these conditions to be in place.
One can see why so many then flock to the Fediverse and other decentralised platforms which are funded by volunteers. It worth considering giving some small donations to these volunteer projects when they’re keeping you free from invasive advertising and data collection policies.
According to the latest draft text of the controversial EU Child Sexual Abuse Regulation proposal leaked by the French news organization Contexte, which the EU member states discussed, the EU interior ministers want to exempt professional accounts of staff of intelligence agencies, police and military from the envisaged scanning of chats and messages (Article 1 (2a)). The regulation should also not apply to “confidential information” such as professional secrets (Article 1 (2b)). The EU governments reject the idea that the new EU Child Protection Centre should support them in the prevention of child sexual abuse and develop best practices for prevention initiatives (Article 43(8)).
“The fact that the EU interior ministers want to exempt police officers, soldiers, intelligence officers and even themselves from chat control scanning proves that they know exactly just how unreliable and dangerous the snooping algorithms are that they want to unleash on us citizens,” commented Pirate Party MEP Patrick Breyer.
It just keeps on crawling back time and time again like a freaking zombie
#chatcontrol #Chatkontrolle #chatcontrole #privacy #europe #democracy #surveillance
https://gitlab.torproject.org/tpo/core/tor/-/raw/tor-0.4.8.11/ChangeLog
Changes in version 0.4.8.11 - 2024-04-10
This is a minor release mostly to upgrade the fallbackdir list. Worth noting
also that directory authority running this version will now automatically
reject relays running the end of life 0.4.7.x version.
o Minor feature (authority):
- Reject 0.4.7.x series at the authority level. Closes ticket 40896.
o Minor feature (dirauth, tor26):
- New IP address and keys.
o Minor feature (directory authority):
- Allow BandwidthFiles "node_id" KeyValue without the dollar sign at
the start of the hexdigit, in order to easier database queries
combining Tor documents in which the relays fingerprint does not
include it. Fixes bug 40891; bugfix on 0.4.7 (all supported
versions of Tor).
o Minor features (fallbackdir):
- Regenerate fallback directories generated on April 10, 2024.
o Minor features (geoip data):
- Update the geoip files to match the IPFire Location Database, as
retrieved on 2024/04/10.
o Minor bugfixes (directory authorities):
- Add a warning when publishing a vote or signatures to another
directory authority fails. Fixes bug 40910; bugfix
on 0.2.0.3-alpha.
Tor Browser 13.0.14
https://blog.torproject.org/new-release-tor-browser-13014/
#tor #tor-browser #privacy #surveillance #censorship #tor-project
Some popular places in Onionland
DuckDuckGo
https://duckduckgogg42xjoc72x3sjasowoarfbgcmvfimaftt6twagswzczad.onion/
EFF
https://www.iykpqm7jiradoeezzkhj7c4b33g4hbgfwelht2evxxeicbpjy44c7ead.onion/
The New York Times
https://www.nytimesn7cgmftshazwhfgzm37qxb44r64ytbb2dj3x62d2lljsciiyd.onion/
ProPublica
http://p53lf57qovyuvwsc6xnrppyply3vtqm7l6pcobkmyqsiofyeznfu5uqd.onion/
BBC News
https://www.bbcnewsd73hkzno2ini43t4gblxvycyac5aw4gnv7t2rccijh7745uqd.onion/
Deutsche Welle News
https://www.dwnewsgngmhlplxy6o2twtfgjnrnjxbegbwqx6wnotdhkzt562tszfid.onion/en/top-stories/s-9097
Amnesty International
https://www.amnestyl337aduwuvpf57irfl54ggtnuera45ygcxzuftwxjvvmpuzqd.onion/en/
Rise Up
http://vww6ybal4bd7szmgncyruucpgfkqahzddi37ktceo3ah7ngmcopnpyyd.onion/
Proton Mail
https://protonmailrmez3lotccipshtkleegetolb73fuirgj7r4o4vfu7ozyd.onion/
The NSA is just 𝗗𝗔𝗬𝗦 from taking over the internet, and it's not on the front page of any newspaper--because no one has noticed.
source: https://threadreaderapp.com/thread/1779920066840055847
#omg #wtf #law #nsa #problem #usa #privacy #internet #government #politics #fail #media
♲ Digital Angel - 2024-04-17 14:22:29 GMT
There is no #AI - Just other people's data!@fsfe@mastodon.social
#quote #technology #future #privacy #bigdata #wisdom #knowledge #meme #memes #internet #software
The Microsoft-Dilemma - Europe as a Software Colony | Full Documentary
https://kolektiva.media/w/ra7bfqXCyqBFn7dSFhneFy
Many state and public administrations from Helsinki to Lisbon operate with the #software of the US #corporation. It makes them vulnerable for hackers and spies, violates European public procurement law, blocks technical progress and costs Europe dearly.
Harald Schumann and his Investigate Europe research team have spoken to insiders and managers throughout Europe about this. Martin Schallbruch, the former head of IT at the German Government, reports how the states are becoming increasingly dependent on Microsoft. A top Dutch lawyer describes how the EU Commission and governments are violating European procurement law. In France, the Ministry of Defence has bypassed parliament in concluding secret contracts with Microsoft, so Senator Joelie Garriaud-Maylam now wants to set up a committee of inquiry. The Hamburg data protection officer Johannes Caspar warns that the Microsoft systems could expose private data of citizens to investigation by the US secret services. Internal documents prove that the Federal Office for Information Security shares this mistrust.
#privacy #security - #mistrust #Microsoft, close the #windows
Always funny how the bourgeoisie will laugh at acceptable free software alternatives, only to then pick paid alternatives to invasive corporate software that have the same quality or, in this case--with the search engine Kagi--are worse. And maybe equally as privacy invading as the corporate crap:
"Between the absolute blase attitude towards privacy, the 100% dedication to AI being the future of search, and the completely misguided use of the company’s limited funds, I honestly can’t see Kagi as something I could ever recommend to people. Is the search good? I mean…it’s not really much better than any other search, it heavily leverages Bing like DDG and the other indie search platforms do, the only real killer feature it has to me is the ability to block domains from your results, which I can currently only do in other search engines via a user script that doesn’t help me on mobile. But what good is filtering out all of the AI generated spamblogs on a search platform that wants to spit more AI generated bullshit at me directly?"
En novembre, à la suite des révélations de Disclose sur l’utilisation par la #police du logiciel israelien de reconnaissance faciale #Briefcam, Gérald #Darmanin annonçait le lancement d’une enquête indépendante dont les conclusions devaient être rendues « sous trois mois ». Alors que le ministère de l’intérieur refuse de communiquer sur le sujet, un rapport confidentiel démontre que la fonction reconnaissance faciale est « activée par défaut » depuis 2018.
https://disclose.ngo/fr/article/reconnaissance-faciale-gerald-darmanin-veut-enterrer-laffaire-briefcam
#TechnoPolice #Videosurveillance #surveillance #privacy #macronie #IA #flicage #Israel
Dilemme du jour. J'ai plusieurs projets dans les tiroirs, des trucs vraiment sympas, qui mériteraient d'être mis en visibilité de façon plus globale qu'uniquement dans #diaspora et #mastodon. Mais l'exploitation des données que font les autres réseaux me rebutent. D'un autre côté, il est impossible d'avoir un impact majeur en restant entre nous. Alors, que faire ?
https://www.linkedin.com/feed/update/urn:li:share:7183380099751116800/
