Posts Tagged ‘Personal privacy’

Snappening: Snapchat leak is real

October 13th, 2014 No Comments By Mof Gimmers

snapchat 300x300 Snappening: Snapchat leak is realThe Snapchat nudes leak is a real thing, now dubbed ‘The Snappening’ after the iCloud leak was referred to as ‘The Fappening’.

Videos and images of around 200,000 people, which were stored on a third party website, have been put online. This time, it doesn’t just focus on celebrities.

It appears the third party site in question is Snapsaved.com, which allows users to grab a screenshot of the Snapchat images that usually expire after a few seconds.

Snapsaved appears to have saved not only the images, but also, the users’ login details so that, in the torrent that stores all the images, you can search for images under people’s usernames. This third party is not to be confused with Snapsave, which only stores images on the phone of the user.

4chan, as ever, were the ones to announce the 13 gigabytes of images, but one of the problems here is that much of the content could be from underage users, meaning that anyone who distributes the photos or hosts them, could be in legal trouble for hosting child porn or sexual images of minors.

In a statement, Snapchat said that: “We can confirm that Snapchat’s servers were never breached and were not the source of these leaks. Snapchatters were victimised by their use of third party apps to send and receive Snaps, a practice that we explicitly prohibit in our terms of use precisely because they compromise our users’ security.”

Snapchat hacked: Prepare the n00dz

October 10th, 2014 2 Comments By Mof Gimmers

snapchat 300x300 Snapchat hacked: Prepare the n00dzAfter the huge celebrity leak of photos, dubbed ‘The Fappening’, looks like we’re due ‘The Snappening’ as rumours abound that hackers have got a load of Snapchat photos and plan release all the mucky, naked ones that match with usernames.

They’ll be available on October 12th on a torrent.

According to reports, the hackers have a 13GB library of snaps from a third-party app which allows users to save Snapchats without the sender knowing.

Snapchat know about the leak: “We can confirm that Snapchat’s servers were never breached and were not the source of these leaks. Snapchatters were victimized by their use of third-party apps to send and receive Snaps, a practice that we expressly prohibit in our Terms of Use precisely because they compromise our users’ security. We vigilantly monitor the App Store and Google Play for illegal third-party apps and have succeeded in getting many of these removed.”

Snapchat are deflecting blame away from themselves, but if they were really vigilant, they should’ve got third party apps removed from app stores or something.

What should worry people though is that a lot of young people use Snapchat, which means anyone looking at any potential leaks could basically be looking at compromising images of underage kids.

Google+ will stop forcing you to do things

September 22nd, 2014 No Comments By Ian Wade

google plus logo Google+ will stop forcing you to do thingsGood news Googlers – you no longer have to have a Google+ account tied in with your activities.

Google are said to have quietly snuffed out the service, which demands you tell it everything during the sign-up process, and then chains itself to your radiator* (*every move on the internet).

Now when you create a new Google account, there’s the option of signing up for a G+ account. And now, you can instead use the new “No thanks” button, and they’ll be on their way.

It doesn’t mean the end of the network, oh no, it’s suggested that they will continue to perservere with it, and improving aspects such as Google Hangouts.

But it sort of gives the idea that Google may not be arsed at foisting it on people willy nilly, and accept that it will never be the level that Twitter and Facebook enjoy.

However you can carry on ignoring it as usual, but it may hamper you leaving app reviews and uploading videos to YouTube and that.

A Google spokesperson said: “We updated the signup experience in early September. Users can now create a public profile during signup, or later, if and when they share public content for the first time (like a restaurant review, YouTube video or Google+ post).”

5 million Gmail adresses and passwords dumped online

September 11th, 2014 No Comments By Mof Gimmers

gmail logo stylized 300x300 5 million Gmail adresses and passwords dumped onlineNearly 5 million Gmail addresses and plain text passwords was posted on a forum this week, which is a massive pain in the arse for someone – probably the person who has to answer questions at Google about security breaches and the like.

Someone called ‘tvskit’ posted the archive file on a Bitcoin security forum called btcsec.com, which you can imagine, is a riotous read and will keep you entertained for literally seconds. They reckon that over 60% of the credentials in the file are valid.

“We can’t confirm that it is indeed as much as 60%, but a great amount of the leaked data is legitimate,” said Peter Kruse, the chief technology officer of CSIS Security Group. “We believe the data doesn’t originate from Google directly. Instead it’s likely it comes from various sources that have been compromised.”

What that means is, Google haven’t been hacked, but rather, accounts on other sites where people have used their Gmail addresses as the user name have been obtained.

Google said: “The security of our users is of paramount importance to us. We have no evidence that our systems have been compromised, but whenever we become aware that an account has been compromised, we take steps to help our users secure their accounts.”

In conclusion, here’s the usual ‘you might want to change your password on sites where you’ve used your Gmail address as a user name’ advice.

How to keep your nudes safe from being hacked

September 1st, 2014 1 Comment By Mof Gimmers

naked selfie How to keep your nudes safe from being hackedAs you’re no doubt aware, Jennifer Lawrence has had some naked selfies stolen from her, and according to the very reputable 4chan, they were swiped by someone hacking her iCloud account. If you haven’t seen the photos, then chances are we’ve lost you and you’re burrowing into a search engine now, looking for boobs.

How can you keep your cloud accounts safe? If you have an account with iCloud, Dropbox or Google+, you might find that they automatically upload and save your images.

First thing to do is to make sure your password doesn’t get stolen or is difficult to guess. That’s blindingly obvious, but worth mentioning. Change your passwords regularly and make sure they’re not words, but rather, a collection of letters, numbers and symbols.

It doesn’t matter how safe cloud accounts are made if your password is 123456 or ‘password’.

Another thing you can do is make sure that you switch off the automatic backup services. In all Apple devices, you can disable Photostream. If you turn it off, it’ll delete any automatically stored images from iCloud. You’ll have to delete any manually shared Photostreams yourself.

With Dropbox, your Android device can be set-up to upload every photo and video you take into the cloud. If that’s not your thing, go to ‘settings’ and turn the option off. You’ll also need to delete them from Dropbox manually.

On Android, G+ and Picasa, you can disable automatic photo backup in the Photos app on your device. You’ll need to go to ‘settings’ then Auto-Backup and then untick ‘Back up local folders’.

Of course, you’re not a celebrity so the chances of someone wanting to hack your account and share your photos are slim. However, if you’re feeling jumpy or just want to disable these functions, now you know how.

You’re still not reading this are you. You’re still looking at boobs.

Want to see where Google have tracked you?

August 18th, 2014 3 Comments By Mof Gimmers

Google Maps Want to see where Google have tracked you?You know that Google tracks your every movement don’t you? Unless you’ve tinkered with the location settings on your phone, they know where you’ve been going. Including that late night jog you went on… to a massage parlour.

Well, if you didn’t know, there’s a map online, where you can see to what level Google have been following you around.

Of course, many of you will look at your map and realise that you’ve got the life-radius of a beetle tied to a nail, walking around in ever decreasing circles.

You’ll have to log in with your Google account, but once you do, you’ll see a 2D map with a record of where you’ve been for the last month. Whether you think this is a cause for concern is your business, but looking at the map of your recent history might make you feel a bit weird in a Minority Report kinda way.

Have a look at the map of your whereabouts here.

google plus logo Google are scanning emails... but catching child abusersGoogle have been relatively open about how they scan everyone’s emails – it is so they can tailor adverts to customers and make loads of money. However, not everyone is happy about that, especially with all that NSA business.

However, reports say that a Google tip-off from the contents of a Gmail account ended up in the arrest of a child abuser from Texas. Police say Google told the National Centre for Missing and Exploited Children (NCMEC) about the content in an email sent by John Henry Skillern, who is a registered sex offender.

“He was trying to get around getting caught, he was trying to keep it inside his email,” said Detective David Nettles. “I can’t see that information, I can’t see that photo, but Google can.”

So what’s going on?

Pictures are hashed which creates a unique code for an image. The hash is compared with a database of known child abuse images and, if they match, details are passed to the NCMEC (or, if you’re in Britain, the Internet Watch Foundation, who Google actually give funding to). Then, a trained expert looks at the case and decides whether or not to pass it on to the police.

AOL also employ a similar system and they caught someone sharing illegal images last year.

The moral quandary is that, while the capture of child abusers is absolutely good and noble, Google and others are sifting through everyone’s correspondence and repacking it for advertisers. With Google’s buying of Nest, some people even think that they’ll be able to spy on you via your thermostat (a bit like the Piers Brosnan robot house in The Simpsons).

So what’s the trade off? If you’re not doing anything wrong, should people be scanning your emails? Do you not mind because child abusers can be caught? Is this case being crowed about in a bid to try and distract users from something a bit dodgy going on? Or do we just accept it because this is how the internet works?

Facebook launched their Messenger service not too long ago, in a bid to muscle in on the market that WhatsApp have enjoyed so much. If you have the FB app on your phone, you were pretty much forced to download the Messenger app because Zuckerberg wouldn’t let you read your inbox without it.

Most people weren’t too fussed – it is just another app right?

Well, if you look in the terms and conditions, as spotted by IA there’s some very dodgy looking stuff in there. Not surprising that Facebook are being shady, but it makes for grim reading.

facebook messenger 500x476 Facebook Messenger recording your calls without permission?

As you can see, the t&cs say that having Messenger on your phone allows Facebook to read your phone call log, read data about who you’re contacting and when, and most worryingly, allows Facebook to take pictures and videos without your consent and record audio of your calls.

Of course, there’s still going to be people who aren’t bothered about this because they think their lives are too humdrum to warrant recording, but this is worrying. It isn’t the only app that asks for permissions such as this.

Naturally, you can uninstall the app if this makes you jumpy, or at least toggle the security settings. This seems to be the permissions for the Android version of the app, with the iPhone version being slightly different.

Facebook. Looks like they’re at it again.

david cameron government Hello, emergency laws to monitor your phones and internet useEmergency laws are being brought in next week which will force phone and internet companies to hold records of customers’ calls, texts and visits to websites.

Sounds dodgy doesn’t it? How can a government do something like that? Well, Cameron & Co. have wheeled out the usual excuse of terrorism. See, if the government can snoop on everyone, that’ll stop someone from listening to God and blowing themselves up.

Obviously.

According to Cameron, these fast-tracked measures are absolutely necessary to defend our national security against the threat from Iraq and Syria. If we don’t, the consequences are “grave.” This move is a response to a ruling by the European Court of Justice which struck down regulations that allowed communications companies from storing data for police use for a year. Downing Street reckons that we’re all doomed if phone and internet companies start deleting these records.

“It is the first duty of government to protect our national security and to act quickly when that security is compromised,” David Cameron said. “As events in Iraq and Syria demonstrate, now is not the time to be scaling back on our ability to keep our people safe. The ability to access information about communications and intercept the communications of dangerous individuals is essential to fight the threat from criminals and terrorists targeting the UK. No government introduces fast track legislation lightly. But the consequences of not acting are grave.”

“I want to be very clear that we are not introducing new powers or capabilities – that is not for this Parliament. This is about restoring two vital measures ensuring that our law enforcement and intelligence agencies maintain the right tools to keep us all safe.”

Nick Clegg, a man hired to wander around Whitehall to say ‘does anything need doing? No? Okay. Fancy a pint after? You’re busy? Never mind then’, said these emergency laws “will not be used as an excuse for more powers, or for a ‘snooper’s charter’.”

“Liberty and security must go hand in hand. We can’t enjoy our freedom if we’re unable to keep ourselves safe.”

Tom Watson, meanwhile, isn’t impressed and said on the radio this morning that this is a “stitch up” that denies MPs the chance to be able to scrutinise the legislation: ”This is a secret deal between party leaders. There hasn’t been a bill published, we find out this morning when Parliament is on a one-line whip and MPs are in their constituencies that next week they will railroad through emergency legislation.”

“If you are an MP, you probably shouldn’t bother turning up for work next week because what you think doesn’t really matter. They are ramping up the rhetoric on it but no one in civic society has a chance to form a view on this or lobby their MP or talk to them about it. I understand that Labour’s shadow cabinet is seeing it this morning. They’ve not had a chance to think about it yet.”

Cue: If you’re not doing anything wrong, it doesn’t matter arguments.

facebook mobile 300x200 Regulator probes into Facebook for emotion experimentFacebook – yes, it is still going – have been playing with people’s emotions which is very sinister, even though the company themselves are playing it down by shrugging and goofily saying it didn’t really work and, pschaw! don’t you worry about it!

However, people are worried about it and the Information Commissioner’s Office (ICO) is going to investigate. They want to know whether or not Facebook Inc broke data protection laws when they allowed researchers to do a psychological experiment on users of the social network.

Now, Facebook are taking it a little more seriously.

“It’s clear that people were upset by this study and we take responsibility for it. We want to do better in the future and are improving our process based on this feedback. The study was done with appropriate protections for people’s information and we are happy to answer any questions regulators may have,” a Facebook spokesman said.

Here’s the kicker though.

The ICO can levy fines for up to £500,000. Facebook have that kind of money down the back of their sofa, so they’ll probably say sorry, pay the fine and then conduct some more experiments because they’re bored.

Meanwhile, fans of Edward Snowden will be weighing up whether to run around, wailing hysterically about how the baddies are coming to get us or to tweet “Oh, you don’t say?!” sarcastically to their 103 followers.

What has this whole debacle taught us? That everyone, regardless of viewpoint, is annoying.

Vodafone blabs on government spies

June 6th, 2014 No Comments By Mof Gimmers

spy vs spy tofu prv 2 Vodafone blabs on government spiesVodafone who, in the past, have been big brown-nosers to whichever government asks them for a favour (see their part in the riots in Egypt for more) have started blabbing.

They have revealed that governments around the world are using secret wires to listen-in on phone conversations over their networks.

In the 29 countries where Vodafone operate, governments are using wires connected directly (and permanently) to its network so they can spy on people in real-time, while also tracking the location of individuals. Basically, what Vodafone have said, is that some countries don’t have to make an interception request to spy on people.

This news was revealed ahead of Vodafone publishing a Law Enforcement Disclosure Report.

In a number of countries where Vodafone do their business, the law says that mobile operators have to install direct-access wires and if they don’t, the law are allowed to install them.

It seems that this wouldn’t be legal in the UK (as spies need warrants), however, the law does “allow indiscriminate collection of information on an unidentified number of targets”.

The marvellously named Stephen Deadman from Vodafone said: “We need to debate how we are balancing the needs of law enforcement with the fundamental rights and freedoms of the citizens. The ideal is we get a much more informed debate going, and we do all of that without putting our colleagues in danger.”

Vodafone are blowing the whistle on all this because they want to see an end to direct-access wires.

Uncharacteristically nice from Vodafone, right? Maybe they’re hoping all this will make everyone forget about their taxes that made everyone so angry?

 

google plus logo Want to be forgotten by Google? Heres how...Google lost their case in a European court, so now, we all have the right to be forgotten. Basically, if there’s stuff online that you think is irrelevant and you want it removed from Google’s search engine, you can now ask for that to happen.

Very nice.

How do you lose the pointless load? Well, Google have issued a form where you can make your ‘right to be forgotten’ requests online.

The form asks for yours details, the links to the ‘outdated information’, and asks for an explanation of why they should be removed. You’ll also have to provide a scan of your photo ID, so Google know it is you asking, rather than some fraud horsing around or impersonating you.

Google acknowledge that this system might not be perfect as this is their ‘first try’ and they will be “working with data protection authorities” to develop it in the future.

The company haven’t said how long it will take them to action your request:  ”We will assess each individual request and attempt to balance the privacy rights of the individual with the public’s right to know and distribute information. When evaluating your request, we will look at whether the results include outdated information about you, as well as whether there’s a public interest in the information—for example, information about financial scams, professional malpractice, criminal convictions, or public conduct of government officials.”

If you want to see the form, click here.

Bitterwallet Facebook censorship Facebook: Snapchat, voting and relationship mitheringFacebook are branching out. After buying WhatsApp, they’re looking at even more ways of getting people to sign-up with them.

Now, they’re looking at voting, messages that die and having people poke around in your relationship status.

Voting?

Well, remember when Americans went crazy, clicking the ‘I’m a Voter!’ button when they renewed Barack Obama? Facebook want to roll something similar out to the rest of the world. Not North Korea, presumably. The feature was available in India when they chose Narendra Modi as their new prime minister. Seems that there’s good money in knowing how people are voting.

Dying messages?

Facebook failed to buy Snapchat, so instead of resting on their laurels, it looks like they’re going to make their own version called Slingshot and it could be released within the month. Basically, like Snapchat, users will be allowed to send short video messages and the like, by tapping their screens after selecting someone from their Facebook friend list. It looks like Slingshot is going after Vine, too.

Relationship mithering?

There’s a new Facebook button that allows you to ask people if they’re single or taken, which is a bit naggy isn’t it? A bit like a meddling aunt reminding you that you’re running out of time. If you haven’t seen the button, it is because you have your relationship status filled in – it only appears for those who have left it blank. Those asking have got a notes section where they can explain why they’re asking about your status. It isn’t unlike the ‘ask’ option where people can try and get your email or phone number. However, there might be some single users who will benefit from all this.

Bitterwallet Facebook censorship Facebook change privacy controls, but you shouldnt trust themAs anyone with half a brain knows, Facebook aren’t exactly bothered about their users’ personal privacy. Members of the site know this and that’s the trade-off for being able to perv on people’s photos or get weary at the xenophobes you went to school with. Revenue always beats rights.

At the F8 conference yesterday (very exciting, honest), Facebook tried to win some critics over by introducing anonymous app logins.

What exactly? Well, you’ll now be able to limit how much personal info you share with third-party mobile apps. You’ll be able to try these apps without logging in, which means you can see if you like them without giving developers access to your personal data. You’ll see the usual ‘log in with Facebook’ button, as well as ‘log in anonymously’.

Users will also get some control over what data a third-party app can look at, such as your email address, date of birth, who your Facebook friends are, your Likes and all that.

Facebook said: “We’ve heard from people that they are worried about sharing information with apps, and they want more control over their data. We are giving people more control over these experiences so they can be confident pressing the blue button.”

Naturally, even though you won’t be giving third parties your details, Facebook will still have them and use them to create revenue from advertisers, so this could well be a thoroughly pointless endeavour designed merely to placate.

In addition to that, whenever Facebook tinkers with privacy controls, it usually wipes the old ones, which means users’ settings are reverted wide open, so remember to fix that, if indeed, there’s any point in it. In a few months time, this conversation will inevitably happen all over again.

google plus logo Google: Contact lens cameras and still looking at your emailsGoogle, as we all know, aren’t too fussed about your privacy. When they’re not teaming up with governments, they’re scanning your correspondence so they can target adverts at you.

Personal privacy groups have long been unhappy with the internet giant and even Microsoft got in on the action, shouting “Don’t Get Scroogled by Gmail” when they were trying to convince everyone to use Outlook.

One court case against Google’s sniffing around our emails, District Judge Lucy H. Koh said that Google’s terms of service and privacy polices did not explicitly notify the plaintiffs “that Google would intercept users’ emails for the purposes of creating user profiles or providing targeted advertising.”

After that was said, Google spontaneously decided to update their terms of service, which came into play as of Monday, adding the provision that “Our automated systems analyse your content (including emails) to provide you personally relevant product features, such as customized search results, tailored advertising, and spam and malware detection. This analysis occurs as the content is sent, received, and when it is stored.”

Not only that, but it looks like they’ve got some more wearable tech in the pipeline which could well creep out the kind of people who think the sky is falling on their heads.

Basically, those worried about Google Glass taking photos without consent will love the news that Google now has a pending patent for a contact lens embedded with a camera. That’s Google Glass which you wouldn’t be able to see if someone was wearing it. That’s human beings, essentially walking around with a camera stuck on their eyeball. It’ll be ace of paparazzi photographers.

Google say that the development would be used or diabetics and blind people, which is a nice idea; but if Glass takes off, you can’t see a scenario where Google wouldn’t want to try and make a shedload of money from it with a general sale.