Perhaps FB is beginning to understand the public's suspicion of facial recognition?... [...] Facebook is giving users more control over a facial recognition feature used by the company to help identify, or Tag, people on its platform. Starting Tuesday, the company said it would allow its users to opt-out of the Tag Suggestions feature, while at the same time the company is attempting to help users better understand what the feature does. Facebook said it will replace the
BA have not had a good time recently with IT. Here's one more problem to deal with ...: [...] Researchers on Tuesday said that check-in links being sent by British Airways to their passengers via email are unencrypted – opening them up to an attack that could expose victims’ booking reference numbers, phone numbers, email addresses and more. Researchers told Threatpost they estimate that 2.5 million connections were made to the affected British Airways domains over the past
Ouch!...: [...] The social-media giant in a Wednesday release for its Q1 2019 earnings said that it was setting aside $3 to $5 billion as a contingency expense “in connection with” the FTC’s investigation of its user-data practices. “In the first quarter of 2019, we reasonably estimated a probable loss and recorded an accrual of $3 billion in connection with the inquiry of the FTC into our platform and user-data practices, which accrual is included in accrued expenses
One of the boring but necessary pieces of infrastructure you need to manage is domain name renewals. This is why: Samsung Galaxy phones used to have a core application titled S Suggest. The app had a wide range of permissions on the phone via a trust with Samsung’s domain ssuggest.com. Recently Samsung forgot to renew the registration of the domain name. This allowed a third party, Anubis Labs, to register the domain and potentially take control of the app itself. Due to the
Useful situation report: The EU-US Privacy Shield, designed to protect EU citizens’ personal data when it is transferred to US organisations, has now been in place for a couple of months. How is it shaping up? How we arrived at the Privacy Shield… Under current EU data protection laws, as well as under the forthcoming General Data Protection Regulation (GDPR), personal data can be sent to entities based outside the EU only if one of the specified protections are in pla
Before I dispose of computers I used to smash up the disk drives. Now that most machines are part or all solid state, often in one sealed unit, that's proving a more difficult. For most devices I run a wipe/overwrite with 0's (at least 3 times)/reinstall regime that complies with UK IS5. For SSDs, look at this article on ATA Secure Erase: FOLLOWING FRIDAY AFTERNOON’S FBI release of documents about Hillary Clinton’s private email servers, Julian Assange, CNN, an...
I'm as guilty as anyone else for trading off convenience against privacy. This made me think. Reproduced from TechCrunch: Tim Berners-Lee created the web in 1989. Twenty-seven years later, he’s asking for a reinvention. The web has made life easier, but it has also introduced challenges and ethical questions pertaining to personal data, access to information and privacy. Berners-Lee laments that the web has morphed into a surveillance network filled with corporate hacker
Take a look at the alternative arrangements in this article. If your service provider has facilities within the EU then the short term fix may be to contractually bind the provider to using those facilities. For example, Microsoft has data centres in Ireland and The Netherlands and it's possible to specify that your data is primarily hosted in one place with backup and recovery services from the other: As we previously reported, this February, United States (U.S.) and Europe