Grindr and OKCupid Sell Your Data, but Twitter’s MoPub Is the Real Problem

Grindr and OKCupid Sell Your Data, but Twitter’s MoPub Is the Real Problem

On January 15, a Norweigian Consumer Council (NCC) investigative report exposed the ways that Grindr, OKCupid, and eight other apps are collecting and sharing extremely sensitive personal data.A third-party advertising company called MoPub, owned by Twitter, was responsible for much of the technology that Grindr used to collect and share data.

The National Cyber Security Alliance’s Data Privacy Day Honeypot on StaySafeOnline.org

The National Cyber Security Alliance’s Data Privacy Day Honeypot on StaySafeOnline.org

Someone using this tool on the Stay Safe Online website to “update their privacy settings”, would actually be helping Hotjar build a profile of information about themselves, including the sites they shop on, the email service they use, the type of mobile device they have, how they listen to music, share photos and videos, the ride share services they use, their favorite search engines, social networks, web browsers and more.

What Your Period Tracker App Knows About You

What Your Period Tracker App Knows About You

While the Facebook suit isn’t related to personal health data, it’s not hard to imagine that the information collected by period trackers—especially with some employers and health insurers licensing the apps to use as part of corporate wellness programs—could be used in ways that harm women, King says.

Google Will Charge Law Enforcement to Access User Data

Google Will Charge Law Enforcement to Access User Data

Google also that, regarding legal requests from government agencies in the U.S., “By far the most common is the subpoena, followed by search warrants.” It says it notifies users whose data has been requested where possible, as “If Google receives ECPA legal process for a user’s account, it’s our policy to notify the user via email before any information is disclosed unless such notification is prohibited by law.”.

The Firefox Browser is a privacy nightmare on desktop and mobile

The Firefox Browser is a privacy nightmare on desktop and mobile

While it is arguable that telemetry data isn’t technically “personal data” when it is viewed on its own without other information; however, if there’s a way to link a given set of telemetry data to a particular Firefox browser instance and IP address – and Mozilla just revealed that there is – then that telemetry data all of a sudden becomes the most personal of data.

Study shows prominent apps are selling your data to 3rd parties

Study shows prominent apps are selling your data to 3rd parties

In a study [PDF] conducted by the Norwegian Consumer Council named Forbrukerrådet on 10 apps, it has been found out that several popular dating apps such as Tinder, OkCupid & Grindr along with certain popular menstrual help apps such as Clue and MyDays have been sharing the personal data of users with as much as 135 different third parties for advertising purposes.

Trying to get pregnant? Period tracker apps come with privacy concerns

Trying to get pregnant? Period tracker apps come with privacy concerns

That’s the issue raised by a new review of five popular period tracker apps by Consumer Reports' Digital Lab, which tests apps to see how well they protect consumers’ privacy and data.

23andMe lays off 100 people as DNA test sales decline, CEO says she was 'surprised' to see market turn

23andMe lays off 100 people as DNA test sales decline, CEO says she was 'surprised' to see market turn

Home DNA-testing company 23andMe is laying off about 100 people, or 14% of its staff, on Thursday, in the wake of declining sales.

Lawmakers Say the FBI's Problematic Carter Page Warrant Require Congressional Surveillance Reforms

Lawmakers Say the FBI's Problematic Carter Page Warrant Require Congressional Surveillance Reforms

A bipartisan group in Congress is attempting (again) to pass legislation that would restrict the National Security Agency from abusing the PATRIOT Act and the Foreign Intelligence Surveillance Amendment (FISA) Court in order to collect and access private records of Americans.

Secure Messaging: A Spy Primer

Secure Messaging: A Spy Primer

When I choose a secure messaging app, I pick apps that protect the most important thing to me… my personal data.Terms of Use/Service offer little/no data protection because they assume a user is engaging in a free service with the company.

Microsoft Security Shocker As 250 Million Customer Records Exposed Online

Microsoft Security Shocker As 250 Million Customer Records Exposed Online

Now a newly published report, has revealed that 250 million Microsoft customer records, spanning an incredible 14 years in all, have been exposed online in a database with no password protection.

Porn site exposes credit cards, passports and more in major data leak

Porn site exposes credit cards, passports and more in major data leak

According to research conducted by VPNMentor, an adult affiliate website supporting more than 66 million registered members, appears to have left a database containing 20GB of visible data unsecured.This incident goes to underscore both the severity of data breaches and the risks of visiting adult websites.

Exclusive: U.S. directs agents to cover up program used to investigate Americans

Exclusive: U.S. directs agents to cover up program used to investigate Americans

Although these cases rarely involve national security issues, documents reviewed by Reuters show that law enforcement agents have been directed to conceal how such investigations truly begin - not only from defense lawyers but also sometimes from prosecutors and judges.

4000 “smart” streetlights in San Diego contain always recording cameras and microphones

4000 “smart” streetlights in San Diego contain always recording cameras and microphones

What is known, is that GE earned 30 million USD from San Diego’s city council to install these cameras and microphones in street lights under the guise of looking at traffic flows and environmental data and has the legal, government granted rights to sell whatever “source data” is gleaned from the surveillance equipment.

IWantClips Admits Performer Data Breach

IWantClips Admits Performer Data Breach

In this isolated incident, there was a minor inadvertent data release that affected a very small number of our artists (483 United States based artists out of our community of more than 30,000 artists) who had previously received a 1099 from us in the year 2017.

Exclusive: Apple dropped plan for encrypting backups after FBI complained - sources

Exclusive: Apple dropped plan for encrypting backups after FBI complained - sources

SAN FRANCISCO (Reuters) - Apple Inc (AAPL.O) dropped plans to let iPhone users fully encrypt backups of their devices in the company’s iCloud service after the FBI complained that the move would harm investigations, six sources familiar with the matter told Reuters.

Apple reportedly abandoned plans to roll out end-to-end encrypted iCloud backups, apparently due to pressure from the FBI

Apple reportedly abandoned plans to roll out end-to-end encrypted iCloud backups, apparently due to pressure from the FBI

Messages are also stored using end-to-encryption but as said earlier, this is nullified if the user also enabled iCloud Backup.

Cyberattacks against North Dakota state government skyrocket to 15M per month

Cyberattacks against North Dakota state government skyrocket to 15M per month

Shawn Riley, North Dakota's chief information officer and head of the information technology department, said there were more than 15 million cyberattacks against the state's government per month in 2019, a 300 percent increase since 2018.In 2018, there were about 5 million attempted cyberattacks per month.

WeLeakInfo gets pwned by FBI; Dutch, N. Irish police arrest alleged breach brokers

WeLeakInfo gets pwned by FBI; Dutch, N. Irish police arrest alleged breach brokers

In an announcement of the seizure of the domain posted Thursday by the US Justice Department, the DOJ alleged that WeLeakInfo allowed its users to access "a search engine to review and obtain the personal information illegally obtained in over 10,000 data breaches containing over 12 billion indexed records—including, for example, names, email addresses, usernames, phone numbers, and passwords for online accounts."

Apple shared customer data with US government in a record-high 90% of cases, even as Trump administration complains it’s not doing enough

Apple shared customer data with US government in a record-high 90% of cases, even as Trump administration complains it’s not doing enough

Apple announced in a report Friday that it received a record-high 3,619 requests from the US government for users‘ account information in the first half of 2019, up 36% from the previous six-month period.

Police arrested an innocent man for murder using Google location data

Police arrested an innocent man for murder using Google location data

Police then turned to Google to help them crack the case, issuing a warrant for geofence information on all the active accounts in the area at the time of the crime, according to a report from the Phoenix New Times.

Top Euro court advised: Cops, spies yelling 'national security' isn’t enough to force ISPs to hand over massive piles of people's private data

Top Euro court advised: Cops, spies yelling 'national security' isn’t enough to force ISPs to hand over massive piles of people's private data

This is the key part of the legal argument: “The provisions of the directive will not apply to activities which are intended to safeguard national security and are undertaken by the public authorities themselves, without requiring the cooperation of private individuals and, therefore, without imposing on them obligations in the management of business” (UK Case C-623/17, paragraph 34/79).”.

How Twitter Misused Personal Phone Numbers for Advertising

How Twitter Misused Personal Phone Numbers for Advertising

This is in no doubt partly due to the nature of the platform – Twitter doesn’t encourage users to upload their entire lives and all associated media to the service in the way that Facebook and others do.

Now Stores Must Tell You How They're Tracking Your Every Move

Now Stores Must Tell You How They're Tracking Your Every Move

B8ta added the signage to its six California stores and expanded its online privacy policy late last year as it prepared to comply with a new state law that took effect this month called the California Consumer Privacy Act. The law requires businesses to disclose what personal information they collect from consumers at or before the time it is collected.

What kind of data is my new car collecting about me? Nearly everything it can, apparently

What kind of data is my new car collecting about me? Nearly everything it can, apparently

The car itself is collecting driving data such as speed and braking patterns, but the built-in navigation and entertainment services are also collecting information of a more personal nature, she says.

Researchers warn census privacy efforts may muddy federal data

Researchers warn census privacy efforts may muddy federal data

The policy change came after Census Bureau research found that an attacker could isolate almost half of the respondents using public data, allowing them to be cross referenced with commercially available medical data, purchasing information and the like.

Grindr and OkCupid Spread Personal Details, Study Says

Grindr and OkCupid Spread Personal Details, Study Says

Popular dating services like Grindr, OkCupid and Tinder are spreading user information like dating choices and precise location to advertising and marketing companies in ways that may violate privacy laws, according to a new report that examined some of the world’s most downloaded Android apps.

Stanford Law’s Jen King on California’s New Privacy Law

Stanford Law’s Jen King on California’s New Privacy Law

In the discussion that follows, Dr. Jennifer King, Director of Privacy at Stanford’s CIS, explains the new law and how far it may go to protect consumer personal data.

Privacy guide for MyAnalytics users

Privacy guide for MyAnalytics users

Note that these insights are derived from data that is already available to you in the following places: your Exchange Online mailbox your activity in OneDrive and SharePoint documents your chat and call history from Teams and from Skype for Business MyAnalytics simply applies some basic calculations and rules to make this data more actionable.

Time to (re-)evaluate your cookie and consent management platform

Time to (re-)evaluate your cookie and consent management platform

Likewise, some current implementations don’t even have an opt-out option, it’s “opt-in” or nothing, which leads to another consideration right now: Make clear you’re collecting the cookies (or any personal data) for a specific purpose .