Emanuele @emanuele@m.divita.eu
Admin
Computer engineer. Dreamer. Hero.
Joined May 2020
#Instagram is being investigated by Ireland's Data Protection Commissioner (DPC) over its handling of children's personal data on the platform.
Would you like to have a voice recognition system open and accessible to everyone?
Your help to improve it is welcome: https://commonvoice.mozilla.org/
TL;DR: "This blog post provides a technical description of how we discovered a #backdoor in a smartwatch made for children.
"[...] the backdoor enables remote and covert surveillance through wiretapping, taking pictures, and location #tracking."
https://www.mnemonic.no/blog/exposing-backdoor-consumer-products
Contact-tracing data harvested from pubs and restaurants being sold on
https://www.thetimes.co.uk/article/contact-tracing-data-harvested-from-pubs-and-restaurants-being-sold-on-s0d85mkrr
LPT: On #iOS14 under "Settings > Privacy > Tracking" disable "Allow Apps to Request to Track".
Thanks me later.
Emanuele
boosted
Over the last 2 years, onion service usability has become a primary feature of Tor Browser. The security and improved usability of onion services are the reason we can run an onion adoption campaign like #MoreOnionsPorfavor.
Read our latest blog post:
https://blog.torproject.org/tor-brower-onion-services-challenges-opportunities
Oh, also, if the company pushes an update to fix any of this, they could permanently lock up the dicks of many of their users.
Thankfully (?) there's not much risk of them fixing it. When PenTestPartners contacted them, the company said it only had $50k on hand and couldn't afford to update the software.
And now, the latest one: the Qiui Cellmate - a smart cock cage that lets kinksters lock up their subs' dicks in a hardened steel cage, is vulnerable to networked attacks that can freeze the lock shut, so that you need an angle-grinder to remove them.
https://www.pentestpartners.com/security-blog/smart-male-chastity-lock-cock-up/
That's the headline, but there are so many other ways you can attack a Cellmate user: steal their location, password and other PII.
* Smart buttplugs broadcast their presence using #Bluetooth and can be detected from the sidewalk in front of your house
https://www.pentestpartners.com/security-blog/screwdriving-locating-and-exploiting-smart-adult-toys/
* Sex toy secretly records audio from your sexual activity, vendor calls it a "minor bug"
https://www.theverge.com/2017/11/10/16634442/lovense-sex-toy-spy-surveillance
Receipts:
* A networked fellatio machine is vulnerable to code-injection attacks that cause it to mangle your junk
https://twitter.com/sarahjamielewis/status/933150566347284481
* Smart dildoes tracked users' wanking habits and sold the data
https://www.vocativ.com/358530/smart-dildo-company-sued-for-tracking-users-habits/index.html
Smart #sex-toys are a terrible idea, notwithstanding the ways that they work for certain kinks (to say nothing of sex workers, who can charge for access to them during livestreams).
It's just the combining the intrinsically terrible security of #IoT with the inherently sensitive nature of sex-toy use and the unavoidable risk of network interfaces for servos and motors on your junk makes this a big old nope.
«Marketing is a form of mind control. You’re affecting people’s decision-making capabilities and you’re affecting their choices. And that can have negative consequences».
Life pro tip: if you remove the #YouTube app from your iPhone you can browse m.youtube.com and click on Share -> "Add to Home screen".
This way you will be able to visit Youtube without the need of an app plus:
1. you will gain the ability to use Picture in Picture (denied by Google on their app)
2. you will not be annoyed by their video-ads by just using any browser ad-blocker.
#Cloudflare is launching a brand new "privacy-first web analytics service" but forgot to say they will be able to keep an eye on all of those stats.
My idea of #privacy and "personal" is pretty different.
Don't get fooled.
https://blog.cloudflare.com/free-privacy-first-analytics-for-a-better-web/
Emanuele
boosted
As a tracking nerd (as in I hate it, but know a fair bit about it), the subtitle on this article made me chuckle. This is a really great explainer about first party vs third-party tracking, focusing on Facebook:
I think any person building stuff for the web should be subscribed to The Markup. They’re publishing really useful explainers, and giving us a lot of insight into the impact of “our” common practices.
#LinkedIn used to send me random daily notifications on their iOS app.
One day I asked to myself: do I really need the Linkedin app?
Every time I clicked on it, they gained a lot of data about me.
It ended I removed it from my iPhone.
Amazon One. https://one.amazon.com/
WTF. Do you really want your #biometric data to be uploaded on a cloud? What could go wrong in the end?
Emanuele
boosted
📣 Abortion without privacy cannot be safe. This is how data-exploitative tactics can obstruct the access to abortion care & services
#InternationalSafeAbortionDay 👇 https://privacyinternational.org/news-analysis/4202/international-safe-abortion-day-no-safety-without-privacy
