Articles about privacy

sabotage

Big Tech turns saboteur to cripple new California privacy law in private

Technology companies are fighting a behind-the-scenes battle in California to undermine new privacy legislation before it comes into effect. The California Consumer Privacy Act was approved back in June following an extraordinary game of chicken between grassroots campaigners and lawmakers. It will give new rights to the state …
Kieren McCarthy, 21 Aug 2018
Man holds the BMW f30 key fob with an apple watch showing the connected drive information.

Connected car data handover headache: There's no quick fix... and it's NOT just Land Rovers

The perils of previous owners retaining unfettered access to the data and controls of connected cars after resale is a wider problem across the industry, The Register has discovered. We have confirmed that BMW, Mercedes-Benz and Nissan may all have much the same issue as Jaguar Land Rover, the focus of our recent article on …
John Leyden, 21 Aug 2018

Prenda lawyer pleads guilty to moneyshot honeypot scheme

One of the attorneys behind notorious copyright operation Prenda Law has just agreed to plead guilty to a pair of felony counts. Paul Hansmeier agreed on Friday to a deal [PDF] that will see him take convictions on one count conspiracy to commit mail and wire fraud and one count of conspiracy to commit money laundering. In …
Shaun Nichols, 20 Aug 2018
web cookie illustration

I wish I could quit you, but cookies find a way: How to sidestep browser tracking protections

Browsers' built-in tools that crumble web cookies that track you around the internet can be bypassed or rendered ineffective by malicious websites. In a paper presented at the USENIX Security Symposium this week, a trio of researchers from KU Leuven in Belgium describe how they developed a framework to analyze the enforcement …
Thomas Claburn, 17 Aug 2018
Online privacy image via Shutterstock

Mozilla-endorsed security plug-in accused of tracking users

A security plug-in for the Firefox browser is under fire after users discovered it was collecting and uploading their online activity. The outcry began after Mozilla featured the Web Security extension on its blog with a post titled "Make Your Firefox Browser a Privacy Superpower." The plug-in, developed by German company …
Shaun Nichols, 15 Aug 2018
A beach landscape of Minehead, Somerset in February at low tide

Hi-de-Hack! Redcoats red-faced as Butlin's holiday camp admits data breach hit 34,000

Updated Holiday camp and British institution Butlin's has admitted 34,000 visitor records have been compromised. Guest names, holiday dates, postal addresses, email and telephone numbers have been exposed. Butlin's said payment card details are not at risk. The breach was the result of staff responding to a phishing email that posed …
John Leyden, 10 Aug 2018
Man tries to keep phone as police grab it from him

Probe Brit police phone-peeking plans, privacy peeps plead

The UK's snooping watchdog has been urged to investigate whether the country's coppers have a legal basis to suck up mobile phone data – or if it would constitute state hacking. Privacy International said it had made a formal complaint about the lack of legal clarity around the police's ability to slurp data off people's …
Rebecca Hill, 3 Aug 2018
Arrested, image via Shutterstock

UK.gov ploughs cash into creaky police technology

The British government has sunk £100m into efforts to link up cops’ IT systems, boost resource-sharing and develop digital forensics. The UK's police forces have been battling to improve outdated systems for years. Multiple annual reports into the state of policing have concluded that cops lag far behind in their use of tech, …
Rebecca Hill, 2 Aug 2018
container_ship_hamburg_shutterstock_648

Holy ship! UK shipping biz Clarksons blames megahack on single point of pwnage

British shipping services firm Clarksons has revealed a high profile data breach last year stemmed from a hack on a “single and isolated user account”. shipping container Hacked Brit shipping giant Clarksons: A person may release some of our data today READ MORE Criminal hackers stole employee information from the shipping …
John Leyden, 1 Aug 2018
Man faceplants in airbag

Shock Land Rover Discovery: Sellers could meddle with connected cars if not unbound

Both data and the online controls on "connected cars" from Jaguar Land Rover remain available to previous owners, according to security experts and owners of the upmarket vehicles. The car maker has defended its privacy safeguards and security of its InControl tech. El Reg began investigating the issue after talking to Matt …
John Leyden, 27 Jul 2018

MyHealth Record rollout saga shambles on: ALP wants it put on hold

The rollout of Australia's MyHealth Record e-health system is moving from “troubled” towards “shambles”. In the space of the past few days: The Parliamentary Library has contradicted health minister Greg Hunt on the matter of law enforcement access to health records; Hunt has stuck to his guns nonetheless; the Australian …
Woman in hospital (in hospital gown) covers face with hands

Will this biz be poutine up the cash? Hackers demand dosh to not leak stolen patient records

Hackers say they will leak patient and employee records stolen from a Canadian healthcare provider unless they are paid off. The records include medical histories and contact information for tens of thousands of home-care patients in Ontario, Canada, and belong to CarePartners. The biz, which provides home medical care …
John Leyden, 18 Jul 2018
Celeb exits car while paparazzi try to take her picture

Call records breach let users feel like Movistars (with everyone watching who they're talking to)

Telefonica Spain has inadvertently exposed the personal details of customers of its Movistar division. Names, addresses, fixed and mobile line numbers, email addresses and the call breakdown of Movistar customers were all exposed because of basic programming errors in Movistar’s online customer portal. Anyone with a Movistar …
John Leyden, 18 Jul 2018
Cannabis leaves

PayPal's pal Venmo spaffs your pals' payments – and yours

PayPal-owned digital wallet Venmo shares way too much data via its public API, according to Berlin-based researcher Hang Do Thi Duc. If users accept the default setting on their account when they sign up, their transaction details are accessible via the service's API, making it “incredibly easy to see what people are buying, …
Mind the gap image

Don't panic about domain fronting, an SNI fix is getting hacked out

Over the weekend, at the IETF Hackathon in Montreal, Canada, software engineers from Apple, Cloudflare, Fastly and Mozilla made some progress toward closing a privacy gap affecting network communications. The programmers built an preliminary implementation of a privacy-oriented draft protocol called Encrypted Server Name …
Thomas Claburn, 17 Jul 2018
gag

Tim? Larry? We need to talk about smartphones and privacy

Oracle’s busy backgrounding about Android privacy last year appears to have helped draw US lawmakers' attention to Google and Apple. Members of the US House Energy and Commerce Committee have jumped on a report by Quartz’s Keith Collins from November 2017 as the basis of letters to Apple CEO Tim Cook and Alphabet CEO Larry …
airplane

Thomas Cook website spills personal info – and it's fine with that

Holidaymakers who used Thomas Cook Airlines had their personal information spilled onto the internet no thanks to basic coding cockups. Norwegian programmer Roy Solberg came across an enumeration bug that leaked the full name of all travelers on a booking, the email addresses used, and flight details from Thomas Cook Airlines …
John Leyden, 10 Jul 2018
spying

Evil third-party screens on smartphones are able to see all that you poke

Smartphone hackers can glean secrets by analysing touchscreen user interactions, according to new research. Boffins from Ben-Gurion University in Israel have shown it's possible to impersonate a user by tracking touch movements on smartphones with compromised third-party touchscreens, whether they're sending emails, conducting …
John Leyden, 10 Jul 2018

Create a news alert about privacy, or find more stories about privacy.

Biting the hand that feeds IT © 1998–2018