You are here
Home > Posts tagged "Data Security"

Facebook Drops Default Facial Recognition Tag Suggestions

Perhaps FB is beginning to understand the public's suspicion of facial recognition?... [...] Facebook is giving users more control over a facial recognition feature used by the company to help identify, or Tag, people on its platform. Starting Tuesday, the company said it would allow its users to opt-out of the Tag Suggestions feature, while at the same time the company is attempting to help users better understand what the feature does. Facebook said it will replace the

British Airways E-Ticketing Flaw Exposes Passenger Flight, Personal Data

BA have not had a good time recently with IT. Here's one more problem to deal with ...: [...] Researchers on Tuesday said that check-in links being sent by British Airways to their passengers via email are unencrypted – opening them up to an attack that could expose victims’ booking reference numbers, phone numbers, email addresses and more. Researchers told Threatpost they estimate that 2.5 million connections were made to the affected British Airways domains over the past

Facebook May Face $5 Billion FTC Fine for Data Misuse

Ouch!...: [...] The social-media giant in a Wednesday release for its Q1 2019 earnings said that it was setting aside $3 to $5 billion as a contingency expense “in connection with” the FTC’s investigation of its user-data practices. “In the first quarter of 2019, we reasonably estimated a probable loss and recorded an accrual of $3 billion in connection with the inquiry of the FTC into our platform and user-data practices, which accrual is included in accrued expenses

Samsung Lets Domain Lapse and Exposes Millions of Phones to Potential Hackers

One of the boring but necessary pieces of infrastructure you need to manage is domain name renewals. This is why: Samsung Galaxy phones used to have a core application titled S Suggest. The app had a wide range of permissions on the phone via a trust with Samsung’s domain Recently Samsung forgot to renew the registration of the domain name. This allowed a third party, Anubis Labs, to register the domain and potentially take control of the app itself. Due to the

Transatlantic Data Transfer: An Update

Useful situation report: The EU-US Privacy Shield, designed to protect EU citizens’ personal data when it is transferred to US organisations, has now been in place for a couple of months. How is it shaping up? How we arrived at the Privacy Shield… Under current EU data protection laws, as well as under the forthcoming General Data Protection Regulation (GDPR), personal data can be sent to entities based outside the EU only if one of the specified protections are in pla

Actually, Clinton Should Have Destroyed Her Phones Better

Before I dispose of computers I used to smash up the disk drives. Now that most machines are part or all solid state, often in one sealed unit, that's proving a more difficult. For most devices I run a wipe/overwrite with 0's (at least 3 times)/reinstall regime that complies with UK IS5. For SSDs, look at this article on ATA Secure Erase: FOLLOWING FRIDAY AFTERNOON’S FBI release of documents about Hillary Clinton’s private email servers, Julian Assange, CNN, an...

The worth of your professional profile, network and personal data

I'm as guilty as anyone else for trading off convenience against privacy. This made me think. Reproduced from TechCrunch: Tim Berners-Lee created the web in 1989. Twenty-seven years later, he’s asking for a reinvention. The web has made life easier, but it has also introduced challenges and ethical questions pertaining to personal data, access to information and privacy. Berners-Lee laments that the web has morphed into a surveillance network filled with corporate hacker