Tag: Privacy

Live in Obedient Fear, Customer

No Comments

Amazon CEO Jeff Bezos is one Persian cat away from being a Bond villain, and people are paying him money to put listening devices in their houses:

It’s time to break out your “Alexa, I Told You So” banners – because a Portland, Oregon, couple received a phone call from one of the husband’s employees earlier this month, telling them she had just received a recording of them talking privately in their home.

“Unplug your Alexa devices right now,” the staffer told the couple, who did not wish to be fully identified, “you’re being hacked.”

At first the couple thought it might be a hoax call. However, the employee – over a hundred miles away in Seattle – confirmed the leak by revealing the pair had just been talking about their hardwood floors.

The recording had been sent from the couple’s Alexa-powered Amazon Echo to the employee’s phone, who is in the husband’s contacts list, and she forwarded the audio to the wife, Danielle, who was amazed to hear herself talking about their floors. Suffice to say, this episode was unexpected. The couple had not instructed Alexa to spill a copy of their conversation to someone else.

“I felt invaded,” Danielle told KIRO-TV. “A total privacy invasion. Immediately I said, ‘I’m never plugging that device in again, because I can’t trust it.'”

………

According to Danielle, Amazon confirmed that it was the voice-activated digital assistant that had recorded and sent the file to a virtual stranger, and apologized profusely, but gave no explanation for how it may have happened.

………

But the truth is that if Alexa devices can easily be turned into bugs if there is a hardware or software mistake and we are willing to bet that in its haste to constantly update its devices Amazon let a big mistake through.

Amazon insists that its box mistakenly heard them say Alexa, and then it mistakenly heard them say to send the recording to their workplace.

I don’t find this particularly reassuring, and neither should you.

Crap Websites

No Comments
Because of #GDPR, USA Today decided to run a separate version of their website for EU users, which has all the tracking scripts and ads removed. The site seemed very fast, so I did a performance audit. How fast the internet could be without all the junk! 🙄
5.2MB → 500KB pic.twitter.com/xwSqqsQR3s

— Marcel Freinbichler (@fr3ino) May 26, 2018

It really is remarkable just how crapified and bloated websites have become.

It’s ads and trackers that crapify websites, and I’m sure that in the next few days, USA Today will succeed in coming up with a website just as bloated and slow as the US one.

This Guy Just Cost Himself a Billion Dollars on Principle

No Comments

The billionaire chief executive of WhatsApp, Jan Koum, is planning to leave the company after clashing with its parent, Facebook, over the popular messaging service’s strategy and Facebook’s attempts to use its personal data and weaken its encryption, according to people familiar with internal discussions.

Koum, who sold WhatsApp to Facebook for more than $19 billion in 2014, also plans to step down from Facebook’s board of directors, according to these people. The date of his departure isn’t known.

………

The independence and protection of its users’ data is a core tenet of WhatsApp that Koum and his co-founder, Brian Acton, promised to preserve when they sold their tiny start-up to Facebook. It doubled down on its pledge by adding encryption in 2016. The clash over data took on additional significance in the wake of revelations in March that Facebook had allowed third parties to mishandle its users’ personal information.

………

Koum’s exit is highly unusual at Facebook. The inner circle of management, as well as the board of directors, has been fiercely loyal during the scandals that have rocked the social media giant. In addition, Koum is the sole founder of a company acquired by Facebook to serve on its board. Only two other Facebook executives, Zuckerberg and Chief Operating Officer Sheryl Sandberg, are members of the board.

………

Acton left the company in November. He has joined a chorus of former executives critical of Facebook. Acton recently endorsed a #DeleteFacebook social media campaign that has gained force in the wake of the controversy over data privacy sparked by Cambridge Analytica, a political marketing firm tied to the Trump campaign that had inappropriately obtained the private information of 87 million Facebook users.

………

WhatsApp executives were comfortable sharing some data with Facebook to measure who was using the service, according to the people. But they opposed using WhatsApp’s data to create a user profile that was unified across Facebook’s multiple platforms, which also include Instagram and Facebook Messenger, and that could be used for ad-targeting or for Facebook’s data-mining.

………

Another point of disagreement was over WhatsApp’s encryption. In 2016, WhatsApp added end-to-end encryption, a security feature that scrambles people’s messages so that outsiders, including WhatsApp’s owners, can’t read them. Facebook executives wanted to make it easier for businesses to use its tools, and WhatsApp executives believed that doing so would require some weakening of its encryption.

Here is the link about him leaving a 10 figure payday on the table.

I’m not sure if it’s really possible to make privacy profitable without charging users, but you sure as hell can’t do it at Facebook.

Mark Zuckerberg’s Apologies Today Are Not Sincere

No Comments

We know this because he has been shedding the same crocodile tears for almost 15 years:

On 2003, one year before Facebook was founded, a website called Facemash began nonconsensually scraping pictures of students at Harvard from the school’s intranet and asking users to rate their hotness. Obviously, it caused an outcry. The website’s developer quickly proffered an apology. “I hope you understand, this is not how I meant for things to go, and I apologize for any harm done as a result of my neglect to consider how quickly the site would spread and its consequences thereafter,” wrote a young Mark Zuckerberg. “I definitely see how my intentions could be seen in the wrong light.”

In 2004 Zuckerberg cofounded Facebook, which rapidly spread from Harvard to other universities. And in 2006 the young company blindsided its users with the launch of News Feed, which collated and presented in one place information that people had previously had to search for piecemeal. Many users were shocked and alarmed that there was no warning and that there were no privacy controls. Zuckerberg apologized. “This was a big mistake on our part, and I’m sorry for it,” he wrote on Facebook’s blog. “We really messed this one up,” he said. “We did a bad job of explaining what the new features were and an even worse job of giving you control of them.”

Then in 2007, Facebook’s Beacon advertising system, which was launched without proper controls or consent, ended up compromising user privacy by making people’s purchases public. Fifty thousand Facebook users signed an e-petition titled “Facebook: Stop invading my privacy.” Zuckerberg responded with an apology: “We simply did a bad job with this release and I apologize for it.” He promised to improve. “I’m not proud of the way we’ve handled this situation and I know we can do better,” he wrote.

By 2008, Zuckerberg had written only four posts on Facebook’s blog: Every single one of them was an apology or an attempt to explain a decision that had upset users.

In 2010, after Facebook violated users’ privacy by making key types of information public without proper consent or warning, Zuckerberg again responded with an apology—this time published in an op-ed in The Washington Post. “We just missed the mark,” he said. “We heard the feedback,” he added. “There needs to be a simpler way to control your information.” “In the coming weeks, we will add privacy controls that are much simpler to use,” he promised.

Are you noticing a pattern?

He’s Travis Kalanick in a hoodie.

Yeah, This Is Horrifying

No Comments

It turns out that in addition to promiscuously sharing user data with anyone who would pay, Facebook was planning to use health data from hospitals for further refine their profiles of their users:

Facebook has asked several major U.S. hospitals to share anonymized data about their patients, such as illnesses and prescription info, for a proposed research project. Facebook was intending to match it up with user data it had collected, and help the hospitals figure out which patients might need special care or treatment.

The proposal never went past the planning phases and has been put on pause after the Cambridge Analytica data leak scandal raised public concerns over how Facebook and others collect and use detailed information about Facebook users.

“This work has not progressed past the planning phase, and we have not received, shared, or analyzed anyone’s data,” a Facebook spokesperson told CNBC.

But as recently as last month, the company was talking to several health organizations, including Stanford Medical School and American College of Cardiology, about signing the data-sharing agreement.

Let’s be clear about this:  The data would not have been meaningfully anonymized, because you COULD NOT meaningfully anonymize the data.

The data itself would indicate who the individuals in question were, and in fact HAD TO, because otherwise it would serve no use, because it had to be target at SPECIFIC PATIENTS who might, “Need special care or treatment.”

The business plan here was to take the data, merge it with other data to get personalized medical information, and then sell it back to doctors and hospitals.

If that does not chill you, figure that the next step would have been making it available to businesses to allow them to pre-screen applicants to exclude those who would likely have expensive health problems.

Think of it as a FICO score for your life.

Are you horrified yet?

Live in Obedient Fear Citizen

No Comments

It looks like the Orwellian named Department of Homeland Security is compiling a database of media and “Media Influencers”, which has civil libertarians concerned.

This seems to be rather more extensive that a typical clipping service, which would make copies fof articles about an organization and file them, in the days or yore:

The U.S. Department of Homeland Security wants to monitor hundreds of thousands of news sources around the world and compile a database of journalists, editors, foreign correspondents, and bloggers to identify top “media influencers.”

 It’s seeking a contractor that can help it monitor traditional news sources as well as social media and identify “any and all” coverage related to the agency or a particular event, according to a request for information released April 3.

 The data to be collected includes a publication’s “sentiment” as well as geographical spread, top posters, languages, momentum, and circulation. No value for the contract was disclosed.

 ………

 The DHS wants to track more than 290,000 global news sources, including online, print, broadcast, cable, and radio, as well as trade and industry publications, local, national and international outlets, and social media, according to the documents. It also wants the ability to track media coverage in more than 100 languages including Arabic, Chinese, and Russian, with instant translation of articles into English.

 ………

 The DHS request says the selected vendor will set up an online “media influence database” giving users the ability to browse based on location, beat, and type of influence. For each influencer found, “present contact details and any other information that could be relevant, including publications this influencer writes for, and an overview of the previous coverage published by the media influencer.”

Why does the Department of Homeland Security always make me feel less secure?

When You Put Back Doors in, Crooks Use Them Too

2 Comments
Law enforcement has insisted on setting up our phone systems so they can use cell tower spoofing devices undetectably to track suspicious actions.

We now have learned that crooks and spies are using the same technologies, and the same back doors, to spy on people:

The federal government has formally acknowledged for the first time that it has located suspected and unauthorized cell-site simulators in various parts of Washington, DC.

The revelation, which was reported for the first time on Tuesday by the Associated Press, was described in a letter recently released from the Department of Homeland Security to the offices of Sen. Ron Wyden (D-Oregon).

“Overall, [DHS’ National Protection and Programs Directorate] believes the malicious use of IMSI catchers is a real and growing risk,” wrote Christopher Krebs, DHS’ acting undersecretary, in a March 26, 2018 letter to Wyden.

The letter and attached questionnaire say that DHS had not determined who is operating the simulators, how many it found, or where they were located. DHS also said that its NPPD is “not aware of any current DHS technical capability to detect IMSI catchers.” The agency did not explain precisely how it was able to observe “anomalous activity” that “appears to be consistent” with cell-site simulators.

The devices, which are also known as stingrays or IMSI catchers, are commonly used by domestic law enforcement nationwide to locate a particular phone. Sometimes, they can also be used to intercept text messages and phone calls. Stingrays act as a fake cell tower and effectively trick a cell phone into transmitting to it, which gives up the phone’s location.

There is no, “Technical capability to detect IMSI catchers,” because DHS, the FBI, the CIA, the NSA, and the rest of the TLAs want to be able to spy and track with impunity, so the difficulty of detection and countermeasures has been designed into these systems.

This is what happens when you put back doors in systems, the bad guys figure out how to use them too.

To quote Leonard McCoy on this one, “”It’s NOT enough! You didn’t care what happened as long as you could hang your trophy on the wall. Well, it’s not on it, Captain, it’s in it!”

This is why we cannot trust, nor should we consider the absolutist demands of our state security apparatus.

Facebook Might Be the Best of the Social Media Companies

No Comments
Case in point, LGBT dating site Grindr is sharing the HIV status of its users with other companies:

The gay hookup app Grindr, which has more than 3.6 million daily active users across the world, has been providing its users’ HIV status to two other companies, BuzzFeed News has learned.

The two companies — Apptimize and Localytics, which help optimize apps — receive some of the information that Grindr users choose to include in their profiles, including their HIV status and “last tested date.”

Because the HIV information is sent together with users’ GPS data, phone ID, and email, it could identify specific users and their HIV status, according to Antoine Pultier, a researcher at the Norwegian nonprofit SINTEF, which first identified the issue.

“The HIV status is linked to all the other information. That’s the main issue,” Pultier told BuzzFeed News. “I think this is the incompetence of some developers that just send everything, including HIV status.”

Grindr was founded in 2009 and has been increasingly branding itself as the go-to app for healthy hookups and gay cultural content. In December, the company launched an online magazine dedicated to cultural issues in the queer community. The app offers free ads for HIV-testing sites, and last week, it debuted an optional feature that would remind users to get tested for HIV every three to six months.

But the new analysis, confirmed by cybersecurity experts who analyzed SINTEF’s data and independently verified by BuzzFeed News, calls into question how seriously the company takes its users’ privacy.

………

Gee, you think?

“To then have that data shared with third parties that you weren’t explicitly notified about, and having that possibly threaten your health or safety — that is an extremely, extremely egregious breach of basic standards that we wouldn’t expect from a company that likes to brand itself as a supporter of the queer community.”

Yeah pretty much.

If you know anyone who used Grindr, you should warn them.

I Believe That We Have Just Been Told to Zuck Off

No Comments

How can I pass up this Hitchhikers Guide to the Galaxy reference:

“All the planning charts and demolition orders have been on display at your local planning department in Alpha Centauri for 50 of your Earth years, so you’ve had plenty of time to lodge any formal complaint” https://t.co/AZys4x1LF7

— Parker (@jeffparker) March 26, 2018

Yes, Zuckerberg is saying, “It’s in the terms of service, so go Zuck yourself.”

Considering the history of Facebook, we should expect nothing less from him.

Holland Gets It

No Comments

Dutch voters have narrowly rejected a law that would give spy agencies the power to carry out mass tapping of Internet traffic delivering a setback to Prime Minister Mark Rutte’s government.

Dubbed the “trawling law” by opponents, the legislation would allow spy agencies to install wire taps targeting an entire geographic region or avenue of communication, store information for up to three years, and share it with allied spy agencies.

With 89 percent of the vote from a referendum counted on Thursday morning, the “no” vote was 48.8 percent, against 47.3 percent “yes.”

The tapping law has already been approved by both houses of parliament. Rutte’s government had backed a “yes” vote, saying the law was needed to make the country safer, and though the referendum was non-binding Rutte has vowed to take the result seriously

It’s the right thing, and I cannot imagine American voters doing the same thing.

Of course, Rutte is under no obligation to do anything about this, so I expect some cosmetic breast beating, and perhaps the creation of a do-nothing commission to study the program, which will allow Holland to spy on its citizens.

File Under, “Dystopian”

No Comments
It appears that the car of the future have all the respect for your privacy that Mark Zuckerberg does, so expect hemorrhoid ads on your multi-function display:

Picture this: You’re driving home from work, contemplating what to make for dinner, and as you idle at a red light near your neighborhood pizzeria, an ad offering $5 off a pepperoni pie pops up on your dashboard screen.

Are you annoyed that your car’s trying to sell you something, or pleasantly persuaded? Telenav Inc., a company developing in-car advertising software, is betting you won’t mind much. Car companies—looking to earn some extra money—hope so, too.

Automakers have been installing wireless connections in vehicles and collecting data for decades. But the sheer volume of software and sensors in new vehicles, combined with artificial intelligence that can sift through data at ever-quickening speeds, means new services and revenue streams are quickly emerging. The big question for automakers now is whether they can profit off all the driver data they’re capable of collecting without alienating consumers or risking backlash from Washington.

“Carmakers recognize they’re fighting a war over customer data,” said Roger Lanctot, who works with automakers on data monetization as a consultant for Strategy Analytics. “Your driving behavior, location, has monetary value, not unlike your search activity.”

I just want an off switch for the car’s connectivity features, because, in addition to eschewing the aforementioned advertisements, I don’t want some script kiddie turning off my anti-lock brakes.

Being Evil………

No Comments

Many people realize that smartphones track their locations. But what if you actively turn off location services, haven’t used any apps, and haven’t even inserted a carrier SIM card?

Even if you take all of those precautions, phones running Android software gather data about your location and send it back to Google when they’re connected to the internet, a Quartz investigation has revealed.

Since the beginning of 2017, Android phones have been collecting the addresses of nearby cellular towers—even when location services are disabled—and sending that data back to Google. The result is that Google, the unit of Alphabet behind Android, has access to data about individuals’ locations and their movements that go far beyond a reasonable consumer expectation of privacy.

Quartz observed the data collection occur and contacted Google, which confirmed the practice.

………

The practice is troubling for people who’d prefer they weren’t tracked, especially for those such as law-enforcement officials or victims of domestic abuse who turn off location services thinking they’re fully concealing their whereabouts. Although the data sent to Google is encrypted, it could potentially be sent to a third party if the phone had been compromised with spyware or other methods of hacking. Each phone has a unique ID number, with which the location data can be associated.

The revelation comes as Google and other internet companies are under fire from lawmakers and regulators, including for the extent to which they vacuum up data about users. Such personal data, ranging from users’ political views to their purchase histories to their locations, are foundational to the business successes of companies like Facebook and Alphabet, built on targeted advertising and personalization and together valued at over $1.2 trillion by investors.

Clearly the solution to Google cyber-stalking us is to eliminate regulatory oversight.  That way the market will solve everything.

Mark Zuckerberg Wants Me to Send Him What?!?!?!?!?

No Comments
Facebook is testing a new feature in Australia.

Here is how it workssend Facebook your nude picture, and they promise to try to prevent revenge porn posts on their platform.

Seriously? Send a nude picture of myself to Mark Zuckerberg and his Evil Minions?

Facebook is asking users to send the company their nude photos in an effort to tackle revenge porn, in an attempt to give some control back to victims of this type of abuse.

Individuals who have shared intimate, nude or sexual images with partners and are worried that the partner (or ex-partner) might distribute them without their consent can use Messenger to send the images to be “hashed”. This means that the company converts the image into a unique digital fingerprint that can be used to identify and block any attempts to re-upload that same image.

Facebook is piloting the technology in Australia in partnership with a government agency headed up by the e-safety commissioner, Julia Inman Grant, who told ABC it would allow victims of “image-based abuse” to take action before pictures were posted to Facebook, Instagram or Messenger.

“We see many scenarios where maybe photos or videos were taken consensually at one point, but there was not any sort of consent to send the images or videos more broadly,” she told the Australian broadcaster.

It makes me want to go all. “Jules in Pulp Fiction.”

I gotta figure that if you send Facebook your nude pix, you will shortly be seeing a lot of ads for penis enlargement, boob jobs, body hair removal, or anal bleaching.

Throw Your Amazon Echo out the Window Now

No Comments

Such a good idea to give access to every conversation in your room to Russian hackers:

The data is also kept in the event it’s request by law enforcement, however Amazon fought police over what it saw as an overly broad request for audio logs on a murder suspect last year. (The company relented in April of this year and handed over the logs when the suspect voluntarily said he was willing to provide them.)

Amazon does not hand this data over to developers, The Information says, because such a move would undermine Amazon’s commitment to user privacy. However, because Google, which makes the most popular Echo competitor currently on the market, does give developers access to this data, Amazon’s Echo and Alexa divisions feel they are at a disadvantage, the report states. Google did not immediately respond to a request for comment on its data-sharing policies for the Home speaker.

For instance, some developers fear that without audio logs of requests, like those related to a food delivery order, they won’t know exactly what went wrong if the order is ultimately incorrect and the customer unhappy. According to The Information, Amazon does give some data over to a select few “whitelisted” developers, though how that system works is unclear. Amazon is considering granting third-party app developers access to transcripts of audio recordings saved by Alexa-powered devices, according to a report from The Information today. The change would be aimed at enticing developers to continue investing in Alexa as a voice assistant platform, by giving those app makers more data that could help improve their software over time. Amazon’s goal, according to The Information, is to stay competitive with more recent entrants in the smart speaker market, like Apple and Google.

Amazon declined to comment on its future plans for Alexa data-sharing policies. However, a company spokesperson told The Verge, “When you use a skill, we provide the developer the information they need to process your request. We do not share customer identifiable information to third-party skills without the customer’s consent. We do not share audio recordings with developers.”

As it stands today, Amazon records audio through Alexa devices like the Echo home speaker and the new Echo Look camera and Echo Show monitor, however only after a “wake word” like “Hey Alexa” is used to prime the software. These devices send these audio clips to an Amazon-owned server where they’re analyzed to produce a near-instantaneous response from Alexa, but where they’re also stored so Amazon can improve its digital assistant through artificial intelligence training techniques.

………

Amazon does not hand this data over to developers, The Information says, because such a move would undermine Amazon’s commitment to user privacy. However, because Google, which makes the most popular Echo competitor currently on the market, does give developers access to this data, Amazon’s Echo and Alexa divisions feel they are at a disadvantage, the report states. Google did not immediately respond to a request for comment on its data-sharing policies for the Home speaker.

For instance, some developers fear that without audio logs of requests, like those related to a food delivery order, they won’t know exactly what went wrong if the order is ultimately incorrect and the customer unhappy. According to The Information, Amazon does give some data over to a select few “whitelisted” developers, though how that system works is unclear.

Yeah, throw out Google Home as well.

Orwell in a f%$#ing box.

What Part Of, “Working with Peter Thiel,” Don’t You Get?

No Comments

Peter Thiel is a gay bashing gay man, an Ayn Rand loving sociopath, and one of the founders of the Big Brother wannabee software company Palantir.

Needless to say, his history should be a red flag for anyone who would want to do business with him.

Subscribing to a philosophy which maintains that self-interest is the only form of morality does not imply that they would deal fairly or honestly with clients.

Case in point, the New York Police are terminating their contract with the firm, and Palantir is refusing to transfer to the department as is required in the contract, because supplying an overpriced and difficult to use product, your business model has to be lock in:

A showdown over law enforcement information — and who controls it — is taking place between the New York Police Department and Palantir Technologies, the $20 billion Silicon Valley startup that for years has analyzed data for New York City’s cops, BuzzFeed News has learned.

The NYPD is canceling its Palantir contract and intends to stop using the software by the end of this week, according to three people familiar with the matter who weren’t authorized to speak publicly. The department has created a new system to replace Palantir, and it wants to transfer the analysis generated by Palantir’s software to the new system. But Palantir, the NYPD claims, has not produced the full analysis in a standardized format — one that would work with the new software — despite multiple requests from the police department in recent months.

Lawyers from each side have gotten involved, showing that this dispute — which hasn’t previously been reported — has the potential to escalate into a legal fight. And given the work Palantir does for a host of other government clients, the standoff over a seemingly arcane technical issue has implications for a range of services, from international espionage to battlefield intelligence.

………

The NYPD has been a Palantir customer since at least 2012, and Palantir has touted the relationship to help it drum up other business. The software ingests arrest records, license-plate reads, parking tickets, and more, and then graphs this data in a way that can reveal connections among crimes and people. In late 2014, for example, the police department used Palantir’s analysis to plan a sting that landed the rapper Bobby Shmurda behind bars, just as his career was taking off, according to an internal Palantir email seen by BuzzFeed News.

………

The NYPD quietly began work last summer on its replacement data system, and in February it announced internally that it would cancel its Palantir contract and switch to the new system by the beginning of July, according to three people familiar with the matter. The new system, named Cobalt, is a group of IBM products tied together with NYPD-created software. The police department believes Cobalt is cheaper and more intuitive than Palantir, and prizes the greater degree of control it has over this system.

The NYPD was paying Palantir $3.5 million a year as of 2015, according to an internal Palantir email that describes a contract to be signed in late 2014. Other Palantir customers — including Home Depot, which canceled late last year — have also raised concerns about Palantir’s prices.

The emerging dispute is not over the data that the NYPD has fed into Palantir’s software, but over the analysis that the software has produced — all the insights like the one that underpinned the Shmurda arrest.

The NYPD asked Palantir in February for a copy of this analysis, and for a translation key so that it could put the analysis into its Cobalt system, the people familiar with the matter said. But when Palantir delivered a file in May, it declined to provide a way to translate it, arguing that doing so would require exposing its intellectual property, the people said.

The NYPD then asked Palantir for the information in a translated format — asking Palantir to do the translation itself — according to the people. Palantir responded this month, providing a file that was indeed readable. But according to the NYPD’s examination of the file, it contained only the original data the NYPD had fed into the system, the people said. The analysis appeared to be missing.

If the dispute is not resolved by the end of this week, the NYPD can continue to view the analysis by using Palantir software, given that customers retain a perpetual software license even after canceling, two people familiar with the matter said. But this could mean having to switch between systems to see information relating to a case, a situation the NYPD wants to avoid. Plus, as an ex-customer, the NYPD will not have access to the same product upgrades or support should the software fail.

The standoff highlights a thorny issue for companies and governments that outsource their data-mining tasks to outside contractors. Technology experts say software companies have little incentive to smooth a customer’s transition to a rival’s product. In some situations, a software company would genuinely risk devaluing its intellectual property if it shared information with a customer, since that could show the customer how the information was created, according to Tal Klein, chief marketing officer of IT monitoring company Lakeside Software.

I may be a bit unfair to Thiel and Palantir here:  It appears to me, at leastdescribed Mr. Klein, that this is a part and parcel of privatized IT operations and the cloud.

In a truly competitive and open market, the profits approach zero, so any business would put as much friction into changing services so as to maximize its power over its clients.

This is why you should not privatize this sh%$ or move it to the cloud. 

It’s a computerized roach motel:  Your data checks in, but it never checks out.

Yeah, This is Reassuring

No Comments

The founder of chat app Telegram has publicly claimed that feds pressured the company to weaken its encryption or install a backdoor.

“During our team’s 1-week visit to the US last year we had two attempts to bribe our devs by US agencies + pressure on me from the FBI,” Pavel Durov said on Twitter. “It would be naive to think you can run an independent/secure cryptoapp based in the US,” he added.

Durov’s comments follow earlier unsubstantiated claims that arch-rival Signal was compromised.

“The encryption of Signal (=WhatsApp, FB) was funded by the US Government. I predict a backdoor will be found there within 5 years from now,” Durov claimed.

 Live in obedient fear, citizen.

OK, This Was Creepy as F%$#

No Comments

I was using Google Maps, specifically the navigation function today.

The radio was on, it was NPR, and I was talking back to the radio. (I have a problem, OK?)

The phone then said something like., “I don’t understand your question.  Could you please repeat it?”  (Not an exact quote).

I had NOT turned on voice command on my phone, and all I can conclude is that my phone has been listening to and recording me, without my permission, at least when navigation is on.

I did a quick Google (Ironic, neh?) and discovered that Google Maps is tracking you, as well as listening to you. (See also here)

The problem is, I had already done all those things.

It turns out that “OK Google” has been installed in my phone on one of the myriad updates that have been pushed out on Google search.

You know Google Search, that bar across the top of the screen that the folks in Mountain View never let you remove.

Well, it turns out that there is a way to fix this: (Instructions are for Android Jelly Bean, specifically version 4.1.2, this may vary with version of OS and make and model of phone)

  1. Go to the app drawer, and open up Google Settings (NOT the same as the normal settings app) 
  2. Click on “Search.”
  3. Scroll down until you see”Voice”, and then click on that.
  4. Click on “OK Google Detection”
  5. Turn off “From the Google” which refers to search, and “While Driving”, which refers to maps.  This turns off the phone’s always listening snooping mode.
  6. Then, if you swear to your phone, go back up one level to voice, and turn “Block Offensive Words” off, so you can swear into speech to text.  (Optional for most, but essential for me, as I find the juxtaposition of profanity and technology to be invaluable.)

That should be it, at least until the Bond villains at Google come up with another way to put us into another panopticon.

Stop Using Unroll.me, Right Now. It Sold Your Data to Uber.

No Comments

That is the headline at The Intercept, and I’m inclined to agree:

Tucked away in a rollicking New York Times profile of amoral Uber CEO Travis Kalanick is a tidbit about Unroll.me, a popular service that aims to rescue your email inbox from unwanted newsletters and promotional messages with an easy automated unsubscribe service. The problem is, it’s been selling you out to advertisers, and you should stop using it immediately.

The Kalanick profile says that Uber previously used Unroll.me data to gauge the health of archrival Lyft:

Unroll.me’s CEO then issued the most hypocritical “apology” ever:

Our users are the heart of our company and service. So it was heartbreaking to see that some of our users were upset to learn about how we monetize our free service.

Yes, he’s SO sorry that he got caught.

Dump the service, and make sure that you never use anything from the founder, Jojo Hedaya, ever again.

Good Point

No Comments

Marcie “Emptywheel” Wheeler gives us a bright side to the Trump administration:

I have a confession.

There’s something I like about the Trump Administration.

It’s the way that his unpopularity taints long-standing policies or practices or beliefs, making people aware of and opposed to them in a way they weren’t when the same policies or beliefs were widely held under George Bush or Barack Obama. Many, though not all, of these policies or beliefs were embraced unquestioningly by centrists or even avowed leftists.

I’ve been keeping a running list in my mind, which I’ll begin to lay out here (I guess I’ll update it as I remember more).

  • Expansive surveillance
  • The presumption of regularity, by which courts and the public assume the Executive Branch operates in good faith and from evidence
  • Denigration of immigrants
  • Denigration of Muslims
  • Denigration health insurance

As an example, Obama deported a huge number of people. But now that Trump has expanded that same practice, it has been made visible and delegitimized.

In short, Trump has made things that should always have been criticized are now being far more widely so.

It’s true.  Obama’s war on whistle-blowers is unprecedented, he was the deportation president, he terrorized half a dozen with drone strikes, and he expanded surveillance beyond Dick Cheney’s wildest dreams.

The so-called left never had an objection to what Obama was doing, but now, even the far right is wondering about things like the surveillance state.

Obama normalized a lot of bad things, and now Trump is abnormalizing those same excesses.

It’s kind of like watching your mother-in-law going over a cliff in your brand new car.

Once Again, Their Evil Outstrips My Fertile Imagination

No Comments

The Republicans are proposing a bill that would allow employers to coerce genetic testing from their employers and share the data with whomever they please:

A little-noticed bill moving through Congress would allow companies to require employees to undergo genetic testing or risk paying a penalty of thousands of dollars, and would let employers see that genetic and other health information.

Giving employers such power is now prohibited by legislation including the 2008 genetic privacy and nondiscrimination law known as GINA. The new bill gets around that landmark law by stating explicitly that GINA and other protections do not apply when genetic tests are part of a “workplace wellness” program.

The bill, HR 1313, was approved by a House committee on Wednesday, with all 22 Republicans supporting it and all 17 Democrats opposed. It has been overshadowed by the debate over the House GOP proposal to repeal and replace the Affordable Care Act, but the genetic testing bill is expected to be folded into a second ACA-related measure containing a grab-bag of provisions that do not affect federal spending, as the main bill does.

“What this bill would do is completely take away the protections of existing laws,” said Jennifer Mathis, director of policy and legal advocacy at the Bazelon Center for Mental Health Law, a civil rights group. In particular, privacy and other protections for genetic and health information in GINA and the 1990 Americans with Disabilities Act “would be pretty much eviscerated,” she said.

………

Employers got virtually everything they wanted for their workplace wellness programs during the Obama administration. The ACA allowed them to charge employees 30 percent, and possibly 50 percent, more for health insurance if they declined to participate in the “voluntary” programs, which typically include cholesterol and other screenings; health questionnaires that ask about personal habits, including plans to get pregnant; and sometimes weight loss and smoking cessation classes. And in rules that Obama’s Equal Employment Opportunity Commission issued last year, a workplace wellness program counts as “voluntary” even if workers have to pay thousands of dollars more in premiums and deductibles if they don’t participate.

Actually, this explains a lot about Obamacare.

It appears that it was drawn up under the assumption that the average American was a fat ignorant slob with no agency, and so they needed to be coerced.

And people wonder why, even as people support almost all the parts of the ACA, they hate the whole package.

Because it was delivered to the American public dripping with contempt.  (“Deplorables”)