Remember Microsoft's Recall? The first implementation was never released and was met with strong criticism from privacy advocates and the infosec/security community. Guess what? Microsoft has doubled down, and its controversial Recall scraper is finally entering the public preview stage. If you care about privacy, please think twice before using this on your AI-enabled PCs (Snapdragon-powered Copilot+ PCs) blogs.windows.com/windows-insi…

#privacy #infosec #security #windows11 #DoNotWant

Previewing Recall with Click to Do on Copilot+ PCs with Windows Insiders in the Dev Channel

Hello Windows Insiders, today we are releasing Windows 11 Insider Preview Build 26120.2415 (KB5046723) to the Dev Channel. With this update, we welcome Windows Insiders with Snapdragon-powered

^{Windows Insider Blog}

Black Weeks at @Tutanota Save 62% On Our Legend Plan! 💎 tuta.com/blog/black-weeks-at-t…

#Encrypt #privacy #BlackFriday #Email #Calendar #FLOSS #OSS #OpenSource

Not endorsing the #degoogle hashtag here just because a hell of a lot of spackle is needed for a comparable experience, but if you're interested in #cloud email servoces, this is one of the better ones in this space.

Black Weeks at Tuta: Save 62% On Our Legend Plan! 💎 | Tuta

Get the deal from November 15 to December 4, 2024.

^Tuta

How to set up a mimimal/blank new tab page on Ungoogled Chromium that conforms to your system’s dark mode setting:

github.com/ungoogled-software/…

PS. You can install Ungoogled Chromium easily on macOS using Homebrew:

```shell
brew install --cask eloston-chromium
```

For more macOS setup/configuration tips see my quick gist:

codeberg.org/aral/gists/src/br…

#ungoogledChromium #chromium #chrome #minimal #newTabPage #aesthetics #accessibility #privacy #configuration #web

gists/mac-setup.md at main

gists - A place for me to post and share small, self-contained code snippets.

^Codeberg.org

Mounting calls to protect kids from ‘harmful’ information online, and laws that try to do that, are being challenged in the United States.

There are privacy concerns and constitutional challenges with each idea and way of protecting minors. And soon, the Supreme Court will review a Texas law requiring porn sites to block underage users.

theconversation.com/is-childpr…
#socialmedia #parenting #privacy #scotus #uspolitics

Let's Encrypt is 10 years old today!
Let's Encrypt is a free, automated, and open certificate authority brought to you by the nonprofit Internet Security Research Group (ISRG). Huge thanks to everyone involved in making HTTPS available to everyone for free

letsencrypt.org/

#tech #technology #security #privacy #encryption #https #letsencrypt #ISRG

Let's Encrypt

Let's Encrypt is a free, automated, and open certificate authority brought to you by the nonprofit Internet Security Research Group (ISRG). Read all about our nonprofit work this year in our 2023 Annual Report.

^{letsencrypt.org}

#Orbot lies brazenly to the user

Source: guardianproject.info/apps/org.…

Orbot is a very useful app for using the #TOR #network on #Android. With all due respect to floss and the achievements of the altruistic developers, I still think it's downright cheeky to lie so blatantly to the user.

The bridge functionality, which can be optionally activated, allows users from the censored Internet, where all TOR servers are blocked, to connect anyway.

Orbot is writing:

It will not drain your battery

This is wrong. There will be more background activity for this connections and this will cost battery power. This is a damn lie!

It will not slow down your internet

This is wrong. There will be connections from others and they will slow down your internet. With a big bandwidth you won't note it but not everyone have high speed internet. This is a damm lie!

🤥

#news #fail #Software #gui #Problem #onion #privacy #snowflake #bridge #documentation #user #lie #internet

tools like @torproject, @securedrop (by @freedomofpress) and @signalapp are going to be so important for protecting people in the coming years. please support them

#privacy #security #anonymity #journalism #whistleblowing

A hands-On Review with Session — A Fully Encrypted Chat App

As with Threema and SimpleX, Session is one of the most secure and private chat apps that you get today (more so than Signal, and way more so than WhatsApp).

A lot of this is to do with the metadata level (that data which WhatsApp actively resell ...continues

See gadgeteer.co.za/a-hands-on-rev…

#privacy #Session #technology

A hands-On Review with Session — A Fully Encrypted Chat App

^{Danie (GadgeteerZA)}

Today on Interviews With Homophobes…

#BrendanEich #prop8 #privacy #cryptoBros kafeneio.social/@foufoutos/113…

Sometime ago somebody shared a screenshot of a service with a cookie message along the lines of:
"We take your privacy seriously" while there also was a list of 600+ vendors with whom data would be shared. Does anyone have this screenshot & the source? I think this was by Microsoft MS365?

#Privacy #Cookies #Tech #TechPolicy #OpenSource #Data #GDPR #bigtech #Security #CyberSecurity

This is why you should always be an advocate for #privacy, #encryption etc. You should not fall for ”protecting the children” for governments or private corporations storing data from you they have no business storing.

Because at some point there will be a fascist government, and it will use the same mechanisms against everyone which opposes it.

#AI: New #GPS #system for #microorganisms could revolutionise police work

Source: lunduniversity.lu.se/article/n…

This means you can use #bacteria to determine whether someone has just been to the beach, got off the train in the city centre or taken a walk in the woods. This opens up new possibilities within #medicine, #epidemiology and #forensics.

#police #surveillance #location #technology #privacy #news #future

New GPS system for microorganisms could revolutionise police work

Lund University. Microorganisms are organisms, such as bacteria, that are invisible to the naked eye. The word microbiome is used to describe all the microorganisms in a particular environment.

^{www.lunduniversity.lu.se}

A great guide for anyone interested in improving their #privacy posture.

(TL;DR in the comments.)

"Whatever platforms you're on, whatever devices you have, you need to have a sense of what kind of data you're generating and then use the controls available to limit who can see what you're doing."

wired.com/story/the-wired-guid…

#infosec #e2ee #security

It should matter that one of Bluesky's investors is Alumni Ventures, which also funded Outlogic (formerly known as X-Mode Social) - basically a data broker that collected and sold location data by tracking various mobile apps (including dating, music, weather, and Muslim prayer apps.)

Among other controversies, Outlogic/X‑Mode had supplied location data to U.S. military contractors:

themarkup.org/privacy/2022/01/… & cyberdaily.au/security/10093-n…

#Bluesky #Privacy

NSA called out for purchasing data from illegal data brokers

The US National Security Agency (NSA) has been called out for the unconsenting purchase of American data through illegal data brokers.

^{Daniel Croft (Cyber Daily)}

Funny how, a decade ago, they called us “tin-foil hat conspiracy theorists” for suggesting such things and we were shunned by “respectable” folks in the web community afraid to lose their favoured status as Big Tech’s bottom feeders.

vimeo.com/96727211

#BigTech #SiliconValley #ventureCapital #capitalism #surveillance #BigWeb #web #SmallTech #ethicalTech #privacy #humanRights mstdn.ca/@teledyn/113489107039…

Aral Balkan - Free is a Lie - Thinking Digital 2014

At Thinking Digital 2013, Aral Balkan delivered the most watched and favourited Thinking Digital talk of all time. In 2014, Aral returned to Thinking Digital…

^Vimeo

teledyn 𓂀

2024-11-15 21:32:25

@bjb @jrredho

It is called Active Listening, and Alexa has a patent on it.

buttondown.com/creativegood/ar…

Surveillance never sits still

To mark the seventh anniversary of my WFMU show Techtonic, I built this week’s episode around a simple reminder: Even more devices are spying on you. I say...

^{Creative Good}

The devil is in the details! 😈

Today X changed their #privacy policy & terms of service.

2 Highlights:
-They "collect and use your #biometric information"
-3rd party collaborators might "train their artificial intelligence models" on user #data

As a surprise for #X "Premium's Anniversary" we decided to make another guide 😜

If you still have #Xitter, make sure your "Data sharing with business partners" setting is disabled!
x.com/settings/data_sharing_wi…

Also posting this on #Twitter 😂

#SocialMedia

#China Connected #SaltTyphoon Compromised AT&T / #Verizon / #LawfulIntercept #Backdoors

Installed #Windows Kernel Rootkit

"backdoors protect kids"....

Don't buy into this #propaganda.

#privacy #News #infosec #cybersecurity #USA #Telecom #CISA #ATT

heise.de/en/news/China-s-cyber…

China's cyber spies intercept phone data and calls from US network operators

Chinese cyber spies infiltrated US network operators. Conversations and data from government and politicians were intercepted, as were police wiretaps.

^{Frank Schräer (heise online)}

Senator Slams Gun Industry’s “Invasive and Dangerous” Sharing of Customer #Data With Political Operatives
—

In response to a ProPublica investigation, Sen. Richard Blumenthal demanded answers from the gun industry about its “covert program” to collect information on gun owners for #political purposes.

#News #Guns #Privacy #Politics #Business

propub.li/4er0KaE

Gun Industry’s Sharing of Customer Data Slammed by U.S. Sen. Blumenthal

In response to a ProPublica investigation, Sen. Richard Blumenthal demanded answers from the gun industry about its “covert program” to collect information on gun owners for political purposes.

^ProPublica

good article, also applies to

* protect some other medical or family info

* protect yourself in advance of need so you don't have a suspicious change in communications habits

* (most important for people like me) help vulnerable people hide in a crowd of others with similar privacy habits. Privacy is a collective problem, and having "nothing to hide" comes with an obligation to choose #privacy to help protect those who need it

themarkup.org/the-breakdown/20…

How Do I Protect My Privacy If I’m Seeking an Abortion? – The Markup

A guide to keeping your plans private through every step of an abortion in any state, including Florida and South Dakota

^{themarkup.org}

Pregnancy Tracking #App ‘What to Expect’ Refuses to Fix Issue that Allows Full Account Takeover

What to Expect is a popular pregnancy tracking app available for #ios and #android.

An exposed API endpoint handling password reset requests for the app does not require authentication or enforce rate limits and is vulnerable to brute force attacks.

#privacy #security #cybersecurity

404media.co/pregnancy-tracking…

Pregnancy Tracking App ‘What to Expect’ Refuses to Fix Issue that Allows Full Account Takeover

Vulnerabilities in the popular What to Expect app include one that allows a full account take over, and another that exposes that email address of forum admins.

^{Joseph Cox (404 Media)}

Get ready for the transition to @thunderbird mobile!

blog.iode.tech/get-ready-for-t…

#thunderbird #android #rom #privacy #cybersecurity #adblocker #iodé #degoogle #opensource

If you’re looking for an EU-based alternative to AzireVPN since they’ve now sold to a US company (why, hello, Trump presidency, how goes?), see Mullvad VPN (@mullvadnet).

mullvad.net

#privacy #security #VPN #AzireVPN #MullvadVPN

Mullvad VPN - Free the internet

Free the internet from mass surveillance and censorship. Fight for privacy with Mullvad VPN and Mullvad Browser.

^Mullvad

Learn how to parse an app's privacy policy and data collection reports for keywords that signal a company's intentions when collecting, storing, and using your private information.

#privacy #policy #data #collection
pcmag.com/explainers/take-thes…

Sad to see that @mozilla needs to layoff 30%😢

Is Google’s ban on paying Mozilla for including G Search in Firefox the reason?

All #privacy companies must unite against Big Tech now! 💪
👉 tuta.com/blog/will-ban-on-goog…

Looks like the final nail in the coffin for Chat Control in Finland !

The Constitutional committee has sided against the proposal. Looks like Finland is going to defend the future of privacy in Europe!

yle.fi/uutiset/lyhyesti/74-201…

#ChatControl #finland #europe #privacy #encryption

Perustuslakivaliokunta ei tue Unkarin esittämää mallia lapsipornon estämiseksi

Uutiset nopeasti ja luotettavasti.

^{STT (Yle Uutiset)}

Spread #privacy this Thursday!

What's your favorite chat app?

Here are our recommendations: tuta.com/blog/best-whatsapp-al…

Please comment with choice and reasons below!

We have read a lot of posts being concerned about #period apps and urging to delete them due to #privacy tracking issues under the awful new administration.

Here are two alternatives that don't track you:

dripapp.org/ @dripapp

eukiapp.com/ @baku1210

@defcon #mastodon #fediverse

Euki

^Euki

In the weeks to come,
protecting your communications and online activities might become increasingly important 🔒

Remember that complete anonymity online is difficult to achieve,

But here are a few tools
you can start using *right now* to greatly improve your protections and data privacy online:

📶 VPN (Proton VPN): protonvpn.com/

Browser - Day-to-Day (LibreWolf): librewolf.net/installation/

Browser - Sensitive Activities (Tor): torproject.org/download/

Email (Proton Mail): proton.me/mail/pricing

📩 Throwaway Email Addresses (SimpleLogin): simplelogin.io/

Messaging & Audio/Video (Signal with username): signal.org/download/

📄 Shared Documentation (Anytype): download.anytype.io/

🔃 File Sharing (OnionShare): onionshare.org/

🗺️ Maps (OsmAnd): osmand.net/

✊ Activism & Groups (Mobilizon): joinmobilizon.org/en/

📆 Scheduling Meetups (Framadate): framadate.org/abc/en/

#Privacy #Safety #USpol #Activism

anytype — the everything app

for those who celebrate trust & autonomy.

^{download.anytype.io}

Why is my air fryer spying on me? Which? reveals the #smart devices gathering your data - and where they send it

Source: which.co.uk/policy-and-insight…

The Aigostar air fryer wanted to know gender and date of birth when setting up an owner account, again for no clear reason, but this was optional. The Aigostar and #Xiaomi fryers both sent people’s personal data to servers in #China, although this was flagged in the #privacy notice.

Why must smart technology be in the #cloud - is the advantage of this only surveillance? 🤔

#news #technology #Software #economy #fail #spy #bigdata #bigbrother #orwell #Problem #security

Privacy: 2+ hrs into the hearing, protecting #encryption, #privacy & stopping #spyware are finally raised, thanks to S&D's Kaljurand. But Brunner's response pits safety against privacy - a common trope of the outgoing Commissioner.

What's more, despite an outright ask for him to commit to protecting #E2EEncryption, Brunner skirts the question. A silver lining? He compliments the Parliament's position on the #CSAReg, which rejected the Commission's mass surveillance and encryption-breaking plans

Wild ass day in the Tor node operator world. Got an email from my VPS, forwarding a complaint from WatchDog CyberSecurity saying that my box was scanning SSH ports!

> Oh no, oh no, I knew I should have set up fail2ban, oh god why was I so lackadaisical!

So I remote in to the machine: no unusual network activity, no unusual processes, users, logins, command history, no sign that anything is doing anything I didn't tell it to do.

So what's up? Turns out there's been a widespread campaign where some actor is spoofing IPs to make it look like systems running Tor are scanning port 22: forum.torproject.org/t/tor-rel…

Operators from all over are saying they're getting nastygrams from their VPS providers because WatchDog is fingering their source IPs (which are being spoofed and NOT part of a global portscanning botnet).

@delroth did an amazing writeup of the whole thing here: delroth.net/posts/spoofed-mass…

#tor #infosec #cybersecurity #threatintel #privacy

[tor-relays] Tor relays source IPs spoofed to mass-scan port 22?

It would be hard to explain to Verizon I run Tor relays since they technically don't allow servers. I hope I'm not forced onto AT&T Internet Air as my particular co-op rental unit won't let met get Spectrum even when other units can, not that I wante…

^{Tor Project Forum}