Avast Announces Termination of Data Collection Subsidiary

Adam Levin

Avast will phase out Jumpshot, a subsidiary that sells user browsing data gleaned from its antivirus and security products. . “I The article resulted in a torrent of negative publicity for the company, especially for its promise to deliver data on “every search.

Colorado Passes Consumer Privacy Law

Schneier on Security

Uncategorized data collection data protection privacyFirst California. Then Virginia. Now Colorado. Here’s a good comparison of the three states’ laws.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

TikTok Sued Over Data Collection of Minors | Avast

Security Boulevard

Former children’s commissioner of England Anne Longfield is suing TikTok on behalf of millions of children in the UK over data collection that Longfield maintains is without sufficient warning and transparency.

De-anonymization Story

Schneier on Security

The data that resulted in Burrill’s ouster was reportedly obtained through legal means. Carriers were caught in 2018 selling real-time location data to brokers , drawing the ire of Congress. Location data is not anonymous.

OSINT Data Collection: You Still Need Humans, but Automation is Well Worth the Investment

Security Boulevard

OSINT data collection automation ensures that teams are gathering the most relevant data as quickly and efficiently as possible, while keeping investigations – and investigators – secure.

Commercial Location Data Used to Out Priest

Schneier on Security

A Catholic priest was outed through commercially available surveillance data. There is a whole industry devoted to re-identifying anonymized data. Uncategorized cell phones data collection data mining de-anonymization geolocation privacy surveillance

New survey shows US adults split on COVID-19 cell phone tracking and data collection

Tech Republic Security

Governments and organizations are unleashing new technologies to fight the spread of the coronavirus, adding to privacy and data collection concerns

Biometric Data Collection Demands Scrutiny of Privacy Law

Dark Reading

An IT lawyer digs into the implications of collecting biometric data, why it can't be anonymized, and what nations are doing about it

Changes in WhatsApp’s Privacy Policy

Schneier on Security

In 2016, WhatsApp gave users a one-time ability to opt out of having account data turned over to Facebook. Some of the data that WhatsApp collects includes: User phone numbers. Diagnostic data collected from app logs.

ThreatList: Google’s Advertising Network Dominates Global Data Collection

Threatpost

With DoubleClick, Analytics and AdWords under its belt, Google continues dominating when it comes to global data collection for advertising, a new report found. Most Recent ThreatLists Privacy Adsense Advertising advertising network AdWords Analytics aol advertising data collection DoubleClick google moat tracking

Introducing continuous remote worker visibility and expanded data collection with Secure Network Analytics Release 7.3.2

Cisco Retail

Are employees exfiltrating sensitive proprietary data? by introducing endpoint Network Visibility Module (NVM) data as a primary telemetry source to provide organizations with continuity in remote worker monitoring and visibility without requiring NetFlow telemetry to be present.

Introducing continuous remote worker visibility and expanded data collection with Secure Network Analytics Release 7.3.2

Cisco Retail

Are employees exfiltrating sensitive proprietary data? by introducing endpoint Network Visibility Module (NVM) data as a primary telemetry source to provide organizations with continuity in remote worker monitoring and visibility without requiring NetFlow telemetry to be present.

The Dark Sides of Modern Cars: Hacking and Data Collection

Threatpost

How features such as infotainment and driver-assist can give others a leg up on car owners. Privacy Vulnerabilities Web Security Audi BMW Charlie Miller Chris Valasek driverless vehicles electronic control units smart cars Society of Automotive Engineers

Microsoft Products Under EU Investigation About Data Collection

Dark Reading

A new inquiry aims to determine whether contracts between Microsoft and EU organizations violate GDPR

Poland and Lithuania fear that data collected via FaceApp could be misused

Security Affairs

Many security experts are warning of the risks of using the popular app, threat actors could be potentially interested in data collected by FaceApp. Poland’s digital affairs ministry is investigating into the app and it is evaluating the security risks posed by FaceApp to the personal data of its users. FaceApp CEO Yaroslav Goncharov attempted to reassure privacy advocates by explaining that Russian authorities did not have access to any user data.

The US Military Buys Commercial Location Data

Schneier on Security

Vice has a long article about how the US military buys commercial location data worldwide. military is buying the granular movement data of people around the world, harvested from innocuous-seeming apps, Motherboard has learned.

Online Retailers That Cancel Purchases Continue To Utilize Personal Information Gathered During The Attempted Transactions

Joseph Steinberg

Furthermore, if we allow parties to use data collected in such a fashion is it not possible that we will encourage scammers to offer items for sale at “erroneous” prices specifically in order to collect data without having to deliver anything?

Retail 151

89% of Android Users Didn't Consent to Facebook Data Collection

Dark Reading

A new survey shows most Android users did not give Facebook permission to collect their call and text data

On Executive Order 12333

Schneier on Security

Although electronic surveillance programs authorized by EO 12333 generally target foreign intelligence from foreign targets, its permissive targeting standards allow for the substantial collection of Americans’ communications containing little to no foreign intelligence value.

Windows 10 snooping: Microsoft gets more time to tackle 'excessive' data collection

Tech Republic Security

Microsoft has been granted more time to change how Windows 10 collects data about users in order to comply with the French data protection act

De-anonymization Story

Security Boulevard

The data that resulted in Burrill’s ouster was reportedly obtained through legal means. Security Bloggers Network Data Collection de-anonymization geolocation Privacy pseudonymity surveillance Uncategorized

TikTok Surreptitiously Collected Android User Data Using Google-Prohibited Tactic

Threatpost

data collection Encryption google mobile apps mobile devices Smartphones tiktok Wall Street JournalApp concealed the practice of gathering device unique identifiers using an added layer of encryption. Government Mobile Security Privacy Android ByteDance Ltd.

Amazon Fires Employee Who Leaked Customer Names, Emails

Threatpost

Breach Privacy amazon amazon data Amazon privacy customer notification data breach data collection Data sharing email address employee fired insider threat law enforcementAmazon notified customers and law enforcement of the insider-threat incident this week.

Wacom Tablet Data Exfiltration Raises Security Concerns

Threatpost

Wacom stated that its data collection is done only in aggregate -- but that doesn't fix the issues, according to security experts.

Covid-19 Spurs Facial Recognition Tracking, Privacy Fears

Threatpost

Government Privacy Biometrics coronavirus COVID-19 data collection Data Privacy facial recognition GDPR surveillance stateThe coronavirus pandemic is creating a lucrative market for facial recognition manufacturers. But privacy issues need to be top of mind, tech experts warn.

Data collection cheat sheet: how Parler, Twitter, Facebook, MeWe’s data policies compare

Security Affairs

CyberNews researchers analyzed data from multiple social platforms like Parler, Twitter, Facebook, MeWe’s to compare data policies. Users would need to read both Triller’s and Quickblox’ privacy policies to get a good idea of how their data is being collected and processed.

The TikTok Ban: Security Experts Weigh in on the App’s Risks

Threatpost

Government Malware Mobile Security Privacy app bans censorship China dangers data collection downloads mobile app security security concerns security experts Spying surveillance tik-tokWith no hard evidence of abuse, are bans warranted?

Facebook Privacy Glitch Gave 5K Developers Access to ‘Expired’ Data

Threatpost

Facebook has fixed a privacy issue that gave developers access to user data long after the 90-day "expiration" date. Facebook Privacy Cambridge analytics Data data collection Data sharing developer expired access Security social media third party app Third party apps

FTC Slams Children?s App Developer for COPPA Violations

Threatpost

Mobile Security Privacy children data privacy children's apps COPPA data collection Data Privacy enforcement action Federal Trade Commission fine FTC HyperBeard regulatoryChildren's app developer HyperBeard must pay $150,000 after the FTC claimed it violated privacy laws.

FTC Demands Broadband Providers Reveal Data Handling Practices

Threatpost

The FTC is ordering seven companies - including AT&T, T-Mobile, Comcast and more - to outline what data they collect, what they use the data for, and how transparent they're being with consumers. Government Privacy AT&T Comcast data collection Data Privacy FTC internet data ISP isp data collection Sprint T-Mobile

Govt.-Backed Contact-Tracing Apps Raise Privacy Hackles

Threatpost

Mobile Security Privacy apple California contact tracing COVID-19 data collection Electronic Frontier Foundation exposure notification Gavin Newsom google lawmakers legislators

New Bill Proposes NSA Surveillance Reforms

Threatpost

government to collect telephone data from millions of Americans. The newly-introduced bill targets the Patriot Act's Section 215, previously used by the U.S.

Critical Bugs Open Food-Safety Systems to Remote Attacks

Threatpost

The AK-EM 800 software from Danfoss centralizes alarm management, automatic data collection and food-quality reporting. Vulnerabilities ak-em 800 alarm management automatic data collection critical vulnerabilities danfoss food safety system food-quality reporting patch risk based security

Broadvoice Leak Exposes 350M Records, Personal Voicemail Transcripts

Threatpost

Companies that use Broadvoice's cloud-based VoIP platform may find their patients, customers, suppliers and partners to be impacted by a massive data exposure. Breach Cloud Security Privacy 350 million b-hive broadvoice cloud communications Cloud misconfiguration cloud pbx Customer Records data breach data collections data leak data retention policies Elasticsearch personal data voicemail transcripts VoIP

Ring Doorbell App for Android Caught Sharing User Data with Facebook, Data-Miners

Threatpost

The Amazon-owned video doorbell uses third-party trackers to serve up rich data to marketers without meaningfully notifying users.

What’s up with WhatsApp’s privacy policy?

Malwarebytes

The key focus of concern around the update, was how data would be shared going forward. Aspects which people objected to included some data remaining on a device even after deleting an account, lines about “respecting privacy” being removed from the privacy policy, and things like phone numbers being shared with Facebook. Simply by having to explain the differences between forms of messaging, data collection is thrown into sharp relief.

EFF Talks the Corporate Surveillance of Consumers

Threatpost

The EFF explains how data is being tracked and used on the web and mobile devices, how consumers can protect themselves - and why it's not all bad news. Podcasts Privacy ad tracking amazon Cookies data collection Facebook google mobile Mobile tracking twitter web tracking

Match, Tinder Swipe Right For Privacy Red Flags, Say Experts

Threatpost

Analysts at ProPrivacy say the dating apps collect everything from chat content to financial data on their users -- and then they share it. Privacy Web Security Advertising compromising pictures data collection Data sharing financial data iac match.com privacy policies sexts sharing third parties Tinder

Consumer Data Privacy Rights: Emerging Tech Blurs Lines

Threatpost

Data privacy is a fundamental right for Americans - but new emerging technologies like drone, IoT and facial recognition are introducing gray areas. Government Privacy Alexa CCPA data collection Data Privacy drone emerging technologies enfuse 2019 facial recognition GDPR IoT privacy law privacy regulation

SecurityTrails as a Threat Intelligence Platform

SecurityTrails

Learn what's the best alternative to Shodan for IP, Domain and Software data collection and intelligence research. tools

$12m Grindr fine shows GDPR’s got teeth

Malwarebytes

As thoughts turn to Data Privacy this week in a big way , GDPR illustrates it isn’t an afterthought. The General Data Protection Regulation is a robust set of rules for data protection created by the European Union (EU), replacing much older rules from the 1990s. There’s plenty of rules and requirements for things such as data breaches or poor personal data notifications. Batten down the data privacy hatches.

Researchers: Facebook’s Data-Leveraging Scandal Puts Users on Notice

Threatpost

After a report revealed that Facebook used user data to leverage its relationships with other companies, researchers are stressing that both firms and users need to re-assess data privacy. Facebook Privacy data collection Data Privacy Data sharing Facebook Data nbc report social media user data as leverage

Apple Blasts Facebook Over Data-Sucking ‘Research’ App

Threatpost

Another one of Facebook's apps has been banned from Apple's ecosystem due to the level of data that it collects and how it was distributed. Mobile Security Privacy Web Security app privacy apple banned data collection enterprise developer Facebook Facebook Privacy facebook research project Onavo Protect paid data tracking project atlas teens