Banning Surveillance-Based Advertising

Schneier on Security

The Norwegian Consumer Council just published a fantastic new report: “ Time to Ban Surveillance-Based Advertising. A ban on surveillance-based advertising does not mean that one can no longer finance digital content using advertising.

Banning Surveillance-Based Advertising

Security Boulevard

The Norwegian Consumer Council just published a fantastic new report: “ Time to Ban Surveillance-Based Advertising. From the Introduction: The challenges caused and entrenched by surveillance-based advertising include, but are not limited to: privacy and data protection infringements.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

A New Way to Advertise Online | Avast

Security Boulevard

The Avast team has been interested to learn about a recent proposal put forth by politicians in the US House of Representatives which calls for an end to targeted advertising, AKA surveillance advertising.

Data Privacy alert as advertisements are following you across the web

CyberSecurity Insiders

Are you seeing the same advertisement on all the websites that you are surfing? The post Data Privacy alert as advertisements are following you across the web appeared first on Cybersecurity Insiders. Data Security online data privacy Advertisements

Grindr fined £5.5m for selling user data to advertising companies

CyberSecurity Insiders

million for selling user information to advertisement firms without the consent of its users on a respective note. The leaked info includes age, gender, advertising ID, HIV status and HIV testing dates, IP address, GPS Location, and their se$ual orientation.

Instagram Anti-Abuse Tool, Apple Advertiser Restrictions, Terrible Passwords

Security Boulevard

to restrict tracking by advertisers, and a discussion about why people continue to choose terrible passwords. ** Links mentioned on the show ** Instagram debuts new tool to stop abusive message salvos made through new accounts [link] Apple […].

The Quiet Way Advertisers Are Tracking Your Browsing

WIRED Threat Level

Cookies are on the way out—but not enough is being done about browser fingerprinting. So what is it? Security Security / Privacy

FTC fines Twitter $150M for using 2FA info for targeted advertising

Bleeping Computer

The Federal Trade Commission has fined Twitter $150 million for using phone numbers and email addresses collected to enable two-factor authentication for targeted advertising. [.].

Advertising Plugin for WordPress Threatens Full Site Takeovers

Threatpost

Vulnerabilities Web Security adning Advertising critical bug RCE remote code vulnerability security vulnerability unauthenticated attackers WordFence Wordpress pluginThousands of vulnerable websites need to apply the patch to avoid RCE.

Ragnar Locker ransomware gang advertises Campari hack on Facebook

Security Affairs

?Ragnar Locker Ransomware operators have started to run Facebook advertisements to force their victims into paying the ransom. ” The advertising campaign has begun on the evening of Monday, Nov.

Amazon gets $888 million GDPR fine for behavioral advertising

Bleeping Computer

Amazon has quietly been hit with a record-breaking €746 million fine for alleged GDPR violations regarding how it performs targeted behavioral advertising. [.].

Apple Privacy Update And Advertisers | Avast

Security Boulevard

Now, in this post, we'll be presenting the advertiser’s perspective of the situation at hand. While advertisers may think the sky is falling, the full-on Chicken Little scenario might not be happening. Last week, we described the privacy changes happening within Apple’s iOS 14.5.

Facebook Is Using Your Two-Factor Authentication Phone Number to Target Advertising

Schneier on Security

From Kashmir Hill : Facebook is not content to use the contact information you willingly put into your Facebook profile for advertising. Hill again: They found that when a user gives Facebook a phone number for two-factor authentication or in order to receive alerts about new log-ins to a user's account, that phone number became targetable by an advertiser within a couple of weeks.

Iranian developer advertised BlackRouter RaaS

Security Affairs

An Iranian developer is advertising on Telegram a Ransomware-as-a-Service called BlackRouter. The same expert advertises other malware and is believed to the author of another ransomware called Blackheart. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. The post Iranian developer advertised BlackRouter RaaS appeared first on Security Affairs.

Twitter Fined $150 Million for Misusing Users' Data for Advertising Without Consent

The Hacker News

Twitter, which is in the process of being acquired by Tesla CEO Elon Musk, has agreed to pay $150 million to the U.S. Federal Trade Commission (FTC) to settle allegations that it abused non-public information collected for security purposes to serve targeted ads.

Telegram launches advertising program for public channels

Bleeping Computer

Telegram has launched a new advertising program dubbed Ad Platform and offering the opportunity to display sponsored messages on the instant-messaging platform. [.].

Grindr fined for selling user data to advertisers

Malwarebytes

million fine by Norwegian regulator Datatilsynet for sharing data with advertisers. Grindr disclosed information about a user’s GPS location, IP address, mobile phone advertising ID, age and gender to several third parties for marketing purposes.

UK Ministry of Defense publishes an advertisement for a SAS Hacker

CyberSecurity Insiders

In the third week of August this year, UK’s Ministry of Defense posted an advertisement for a role to be filled by a SAS hacker who will earn £33,000 a year and will work for the secretive Computer Network Operations Exploitation Unit.

The Chrome Update Is Bad for Advertisers, but Good for Google

WIRED Threat Level

The world’s most popular browser is about to make it a lot harder for advertisers to track your online activity. Security Security / Security News

Musk-Themed ‘$SpaceX’ Cryptoscam Invades YouTube Advertising

Threatpost

Beware: The swindle uses legitimately purchased YouTube ads, real liquidity, legitimate DEX Uniswap, and the real wallet extension MetaMask to create an entirely convincing fake coin gambit. Cryptography Web Security

Industrial Spy, a New Stolen Data Market Is Advertised via Adware and Cracks

Heimadal Security

The post Industrial Spy, a New Stolen Data Market Is Advertised via Adware and Cracks appeared first on Heimdal Security Blog.

Is Your Company Doing Market Research for Your Advertiser?

Adam Levin

Online advertising is a data free-for-all. However, Amazon is doing so well right now because it has access to the data of every seller and advertiser using its platform. Between the two companies, two-thirds of the online advertising market is affected. The post Is Your Company Doing Market Research for Your Advertiser? Unless you live in a boot at the bottom of Loon Lake, you know that everything you do online is tracked.

A New Threat Advertises Malicious Privacy Tools as Security Enhancers

Heimadal Security

The post A New Threat Advertises Malicious Privacy Tools as Security Enhancers appeared first on Heimdal Security Blog. Even if we can consider the pretense ironic, the situation can be very risky as it can actually end up deploying infostealer malware on the victim machine.

Firefox stops advertisers tracking you as you browse, calls itself the most “private and secure major browser”

Malwarebytes

Tracking cookies have been a hot topic in recent months, as advertisers try switching to other methods of tracking. Third party tracking: An advertiser’s dream. A third-party cookie is being set by someone else, like an advertiser or ad network, via code embedded into the page.

Canadian Advertisers Self-Regulate Online Behavioural Advertising

Privacy and Cybersecurity Law

Canada Consumer Protection Privacy Rights ad choices advertising DAAC OBA online behavioural advertising PIPEDACall to Action on OBA The Office of the Privacy Commissioner (OPC) is aware of the challenges associated with balancing privacy in the online […].

Facebook sues hackers who hijacked advertising agencies' accounts

Bleeping Computer

Facebook has filed lawsuits against two groups of suspects who took over advertising agency employees' accounts and abused its ad platform to run unauthorized or deceptive ads. [.].

Firefox improves advertising tracker blocking in private browsing

Bleeping Computer

Mozilla says that Firefox users will be better protected from advertising trackers (like Google Analytics scripts) while browsing the Internet in Private Browsing mode and using Strict Tracking Protection. [.].

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

” The DOJ’s statement doesn’t mention that RSOCKS has been in operation since 2014, when access to the web store for the botnet was first advertised on multiple Russian-language cybercrime forums. Authorities in the United States, Germany, the Netherlands and the U.K.

Magecart Returns with Advertising Library Tactic

Threatpost

Malware Web Security adverline Advertising Card skimming group 12 Library magecart third party javascriptThe threat group also has a new subsidiary, Magecart Group 12.

ThreatList: Google’s Advertising Network Dominates Global Data Collection

Threatpost

With DoubleClick, Analytics and AdWords under its belt, Google continues dominating when it comes to global data collection for advertising, a new report found. Most Recent ThreatLists Privacy Adsense Advertising advertising network AdWords Analytics aol advertising data collection DoubleClick google moat tracking

Serious Privacy Podcast – Monster Cookies: Privacy Issues in Advertising

TrustArc

In this episode of Serious Privacy, Paul Breitbarth and K Royal connect with Jocelyn Paulley, Partner at Gowling WLG in London and Lindsey Schultz, Senior Counsel at Global Privacy for Visa.

DeepDotWeb admin imprisoned for advertising illegal dark web markets

Bleeping Computer

An Israeli citizen who operated DeepDotWeb (DDW), a news site and review site for dark web sites, has received a sentence of 97 months in prison for money laundering and was ordered to forfeit $8,414,173. [.]. Security

Facebook Is Suing the Hackers That Hijacked Advertising Agencies’ Accounts

Heimadal Security

Facebook is suing the suspects that took over the advertising agency employees’ accounts and managed to abuse the ad platform in order to run unauthorized or deceptive ads.

Security BSides Dublin 2021 – Kirill Efimov’s ‘The Case Of Malicious Advertisement SDK Affecting Thousands Of Mobile Apps’

Security Boulevard

The post Security BSides Dublin 2021 – Kirill Efimov’s ‘The Case Of Malicious Advertisement SDK Affecting Thousands Of Mobile Apps’ appeared first on Security Boulevard. Our sincere thanks to Security BSides Dublin for publishing their tremendous videos from the Security BSides Dublin 2021 Conference on the organization’s YouTube channel.

Security BSides Dublin 2021 – Kirill Efimov’s ‘Sour Mint – The Case Of Malicious Advertisement SDK Affecting Thousands Of Mobile Apps’

Security Boulevard

The post Security BSides Dublin 2021 – Kirill Efimov’s ‘Sour Mint – The Case Of Malicious Advertisement SDK Affecting Thousands Of Mobile Apps’ appeared first on Security Boulevard.

Using 2FA phone numbers for targeted advertising. One of the dumbest ways ever for a company to abuse its users’ trust. Take a bow, Twitter. And have a $150 million fine too.

Graham Cluley

for targeted advertising. Twitter has been fined $150 million for using phone numbers submitted by users to boost their security. Mobile Privacy Twitter 2FA

Twitter Slip-Up Spills MFA Phone Numbers, Emails to Advertisers

Dark Reading

Email addresses and phone numbers provided to secure user accounts were accidentally shared with marketers

Actor Advertises Japanese PII on Chinese Underground

Dark Reading

The dataset contains 200 million rows of information stolen from websites across industries, likely via opportunistic access

Advertising Alliance Plans Protocols to Reduce Dangerous Content

Dark Reading

The Global Alliance for Responsible Media will seek ways to clamp down on dangerous and fake content

Mobile Users Targeted With Malware, Tracked by Advertisers

Dark Reading

Cybercriminals continue to seed app stores with malicious apps, advanced attackers successfully compromise mobile devices, and advertisers continue to track users, new reports show

CPDP 2021 – Moderator: John Edwards ‘A Path To Empowering User Choice And Boosting User Trust In Advertising’

Security Boulevard

The post CPDP 2021 – Moderator: John Edwards ‘A Path To Empowering User Choice And Boosting User Trust In Advertising’ appeared first on Security Boulevard. Speakers: Marshall Erwin, Jane Horvath, Lucy Purdon, Marcel Kolaja. Organized By Apple Inc.

Facebook: User shadow data, including phone numbers may be used by advertisers

Security Affairs

The worst suspect is a disconcerting reality, Facebook admitted that advertisers were able to access phone numbers of its users for enhanced security. Researchers from two American universities discovered that that phone numbers given to Facebook for two-factor authentication were also used for advertising purposes. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

HUMAN (Formerly White Ops) Launches The Human Collective to Protect Against Bot Attacks and Fraud Across Advertising Supply Chain

CyberSecurity Insiders

NEW YORK–(BUSINESS WIRE)–Cybersecurity leader HUMAN, best known for collectively protecting enterprises from bot attacks, today announced the formation of The Human Collective, a new program designed to protect the digital advertising ecosystem from the impacts of fraud. The post HUMAN (Formerly White Ops) Launches The Human Collective to Protect Against Bot Attacks and Fraud Across Advertising Supply Chain appeared first on Cybersecurity Insiders