Tag: privacy

Telegram Will Now Share Users’ IP Addresses and Phone Numbers With Governments in Response to Legal Requests

Telegram, the messaging app that once positioned itself as the rebel’s answer to Big Tech surveillance, has made a sharp U-turn on the “we protect your data at all costs” highway. On Monday, the company quietly updated its privacy policy to allow for the disclosure of user information—like those precious IP addresses and phone numbers—to law enforcement, but only, of course, if they present a valid legal request.

As we all know, no one has ever stretched the definition of “valid” to fit their agenda, right?

This revelation comes hot on the heels of a little incident back in August, when Telegram’s CEO Pavel Durov found himself in handcuffs, detained by French authorities. What was the crime? Well, it appears Telegram was accused of playing hardball with French law enforcement, refusing to hand over data, leading to Durov’s arrest. It seems law enforcement didn’t take kindly to that level of noncompliance, especially after making 2,460 unanswered requests for information.

Keep reading

Social Media Giants Collecting Massive Amounts of Data From Kids, Teens

Child welfare advocates renewed calls for U.S. lawmakers to pass a pair of controversial bills aimed at protecting youth from Big Tech’s “dangerous and unacceptable business practices” after the Federal Trade Commission (FTC) published a report on Sept. 19 detailing how social media and streaming companies endanger children and teens who use their platforms.

The FTC staff report — entitled “A Look Behind the Screens: Examining the Data Practices of Social Media and Video Streaming Services” — “shows how the tech industry’s monetization of personal data has created a market for commercial surveillance, especially via social media and video streaming services, with inadequate guardrails to protect consumers.”

The agency staff examined the practices of Meta platforms, which include Facebook, Instagram and WhatsApp; YouTube; X, formerly known as Twitter; Snapchat; Reddit; Discord; Amazon, which owns the gaming site Twitch; and ByteDance, the owner of TikTok.

“The report finds that these companies engaged in mass data collection of their users and — in some cases — nonusers,” Bureau of Consumer Protection Director Samuel Levine said in the paper.

“It reveals that many companies failed to implement adequate safeguards against privacy risks. It sheds light on how companies used our personal data, from serving hypergranular targeted advertisements to powering algorithms that shape the content we see, often with the goal of keeping us hooked on using the service.”

Keep reading

iPhone Now Collects Your Mental Health Data

True Story: The Health app built into iPhones is now collecting as much personal information on the mental health of each and every one of us as they can get a hold of.

Yet, a search on Google and Brave yielded no results on the dangers of sharing such information over the phone or the internet. Seriously, no single MSM has done an article on why such data sharing might be a bad idea?

To start, in sharing such data, you aren’t just sharing your information; iPhone knows exactly who your family members are. In many cases, those phones are connected via family plans.

iPhone mental health assessments not only ask questions about your mental health but can also infer the mental health status of family members, as demonstrated by the image publicly shared by phone on the benefits of a phone mental health assessment.

Keep reading

CBDCs Will Allow Police To Collect, Store Personal Data For Surveillance State, IMF Paper Reveals

The International Monetary Fund (IMF) published a report recently that warns about the very serious privacy risks associated with central bank digital currencies (CBDCs).

According to the paper, entitled “Central Bank Digital Currency Data Use and Privacy Protection,” any central bank can use its CBDC system to collect all sorts of private information about users. It could then turn that private information over to the authorities for mass surveillance and possibly persecution reasons.

“CBDC data allows for commercial exploitation while also raising the possibility of state surveillance,” the IMF warns.

The way CBDCs work is that every time a transaction is made, all sorts of private information is transferred and uploaded into the blockchain as proof. That information is then open game for government authorities and anyone else to exploit it for ulterior purposes.

“Central bank digital currency (CBDC), as a digital form of central bank money, may allow for a ‘digital trail’ – data – to be collected and stored,” the paper explains.

“In contrast to cash, CBDC could be designed to potentially include a wealth of personal data, encapsulating transaction histories, user demographics, and behavioral patterns. Personal data could establish a link between counterparty identities and transactions.”

The paper goes on to explain that there is economic value in CBDCs due to the data trail it creates. Data is considered an “infrastructural resource that can be used by an unlimited number of users and for an unlimited number of purposes as an input to produce goods and services.”

“CBDC data could potentially be harvested by financial institutions that, in turn, could help develop data-driven businesses,” the paper continues.

Keep reading

School Monitoring Software Sacrifices Student Privacy for Unproven Promises of Safety

Imagine your search terms, key-strokes, private chats and photographs are being monitored every time they are sent. Millions of students across the country don’t have to imagine this deep surveillance of their most private communications: it’s a reality that comes with their school districts’ decision to install AI-powered monitoring software such as Gaggle and GoGuardian on students’ school-issued machines and accounts. As we demonstrated with our own Red Flag Machine, however, this software flags and blocks websites for spurious reasons and often disproportionately targets disadvantagedminority and LGBTQ youth.

The companies making the software claim it’s all done for the sake of student safety: preventing self-harm, suicide, violence, and drug and alcohol abuse. While a noble goal, given that suicide is the second highest cause of death among American youth 10-14 years old, no comprehensive or independent studies have shown an increase in student safety linked to the usage of this software. Quite to the contrary: a recent comprehensive RAND research study shows that such AI monitoring software may cause more harm than good.

That study also found that how to respond to alerts is left to the discretion of the school districts themselves. Due to a lack of resources to deal with mental health, schools often refer these alerts to law enforcement officers who are not trained and ill-equipped to deal with youth mental crises. When police respond to youth who are having such episodes, the resulting encounters can lead to disastrous results. So why are schools still using the software–when a congressional investigation found a need for “federal action to protect students’ civil rights, safety, and privacy”? Why are they trading in their students’ privacy for a dubious-at-best marketing claim of safety?

Keep reading

Backyard Privacy in the Age of Drones

Police departments and law enforcement agencies are increasingly collecting personal information using drones, also known as unmanned aerial vehicles. In addition to high-resolution photographic and video cameras, police drones may be equipped with myriad spying payloads, such as live-video transmitters, thermal imaging, heat sensors, mapping technology, automated license plate readers, cell site simulators, cell phone signal interceptors and other technologies. Captured data can later be scrutinized with backend software tools like license plate readers and face recognition technology. There have even been proposals for law enforcement to attach lethal and less-lethal weapons to drones and robots. 

Over the past decade or so, police drone use has dramatically expanded. The Electronic Frontier Foundation’s Atlas of Surveillance lists more than 1500 law enforcement agencies across the US that have been reported to employ drones. The result is that backyards, which are part of the constitutionally protected curtilage of a home, are frequently being captured, either intentionally or incidentally. In grappling with the legal implications of this phenomenon, we are confronted by a pair of U.S. Supreme Court cases from the 1980s:California v. Ciraolo and Florida v. Riley. There, the Supreme Court ruled that warrantless aerial surveillance conducted by law enforcement in low-flying manned aircrafts did not violate the Fourth Amendment because there was no reasonable expectation of privacy from what was visible from the sky. Although there are fundamental differences between surveillance by manned aircrafts and drones, some courts have extended the analysis to situations involving drones, shutting the door to federal constitution challenges.

Yet, Americans, legislators, and even judges, have long voiced serious worries with the threat of rampant and unchecked aerial surveillance. A couple of years ago, the Fourth Circuit found in Leaders of a Beautiful Struggle v. Baltimore Police Department that a mass aerial surveillance program (using manned aircrafts) covering most of the city violated the Fourth Amendment. The exponential surge in police drone use has only heightened the privacy concerns underpinning that and similar decisions. Unlike the manned aircrafts in Ciraolo and Riley, drones can silently and unobtrusively gather an immense amount of data at only a tiny fraction of the cost of traditional aircrafts. Additionally, drones are smaller and easier to operate and can get into spaces—such as under eaves or between buildings—that planes and helicopters can never enter. And the noise created by manned airplanes and helicopters effectively functions as notice to those who are being watched, whereas drones can easily record information surreptitiously.

Keep reading

The NYPD Is Illegally Leaking Sealed Records About Children to Tabloids

Last spring, New York City police officers stopped a 19-year-old on the subway during her commute. She was eligible for a free transfer from the bus to the subway, but the transfer failed to register at the turnstile, so she and a friend entered through the platform emergency exit door.

Police stopped them, took their names, and let her friend go. Officers told the 19-year-old she had a prior arrest — from 2018, when she was in her early teens — and began to question her.

The cops should not have known about that past arrest. A New York state law protects juvenile records in cases without any finding of guilt from access by anyone, including law enforcement, without a court order.

The arrest had occurred after an incident involving the girl’s mother that resulted in child services filing a petition against her mother for abuse and neglect, and removal of the girl from her mother’s custody. At the time of the subway encounter, she was still in foster care.

The arrest was never prosecuted and was later dismissed and sealed. Yet officers had managed to access the sealed record from their phones and question her about it.

The young woman is one of three plaintiffs who filed a class-action suit in July against the city and NYPD Commissioner Edward Caban for what they said was a practice of illegally accessing, using, and leaking sealed youth records. The suit, which was unsealed Thursday, alleges that officials routinely share those sealed records with prosecutors and the media — specifically with pro-cop tabloids that regularly publish juvenile arrest information sourced from police.

Keep reading

Big Brother Goes Digital: The Feds’ Race to Integrate Mobile IDs in America

The push to develop digital ID and expand its use in the US is receiving a boost as the country’s National Institute of Standards and Technology (NIST) is launching a new project.

NIST’s National Cybersecurity Center of Excellence (NCCoE) has teamed up with 15 large financial and state institutions, as well as tech companies, to research and develop a way of integrating Mobile Driver’s License (mDL) into financial services. But according to NIST, this is just the start and the initial focus of the program.

The agreement represents an effort to tie in yet more areas of people’s lives in their digital ID (“customer identification program requirements” is how NIST’s announcement describes the focus of this particular initiative). These schemes are often criticized by rights advocates for their potential to be used as mass surveillance tools.

Keep reading

Judge Ho rules that geofence warrants are “categorically prohibited by the Fourth Amendment” – “general, exploratory rummaging” by law enforcement is ILLEGAL

The federal Fifth Circuit Court of Appeals is maintaining its position that so-called geofence warrants, which were used to track Jan. 6, 2021, “insurrection” participants, are “categorically prohibited by the Fourth Amendment,” which protects We the People from unreasonable searches and seizures by law enforcement and other arms of the government.

Judge James C. Ho issued an opinion that while geofence warrants “are powerful tools for investigating and deterring crime,” they overtly violate the U.S. Constitution and the protections it affords to people living in this country.

“The defendants here engaged in a violent robbery – and likely would have gotten away with it, but for this new technology,” Judge Ho wrote. “So I fully recognize that our panel decision today will inevitably hamper legitimate law enforcement interests.”

“But hamstringing the government is the whole point of our Constitution. Our Founders recognized that the government will not always be comprised of publicly-spirited officers – and that even good faith actors can be overcome by the zealous pursuit of legitimate public interests.”

Justice Ho also quoted The Federalist No. 51, at 349 (J. Cooke ed. 1961) which reads in support of his ruling:

“If men were angels, no government would be necessary. If angels were to govern men, neither external nor internal controls on government would be necessary,” but “experience has taught mankind the necessity of auxiliary precautions” because of “human nature,” which makes it “necessary to control the abuses of government.”

Keep reading

California’s Digital Plates Plan Raises Privacy Fears

California is one of the US states that have introduced digital license plates, amid opposition from a number of rights advocates.

Now, there is a legislative effort to have GPS location tracking embedded in these, to all intents and purposes, devices attached to the car.

Sponsored by Democrat Assemblywoman Lori Wilson, Bill 3138 is currently making its way through the state’s legislature. It refers to “License plates and registration cards: alternative devices,” and the bill has another sponsor – Reviver.

The company was founded by Neville Boston, formerly of the Department of Motor Vehicles (DMV), and promotes itself as the first digital license plates platform. It has made its way to both this proposal, and the law the current draft builds on – AB 984 (also sponsored by Wilson) – which was signed into law two years ago.

The problem with Reviver is that it has already had a security breach that allowed hackers to track those using the company’s digital plates in real-time. It doesn’t help, either, that the company is effectively a monopoly – the only one, the Electronic Frontier Foundation (EFF) notes, “that currently has state authorization to sell digital plates in California.”

Meanwhile, the key problem with AB 3138, warns EFF, is that it “directly undoes the deal from 2022 and explicitly calls for location tracking in digital license plates for passenger cars.”

Keep reading