@lukOlejnik Next update of Google's Chrome delivers "first-party sets". Feature bypasses single origin policy: several websites to communicate/share data/cookies/etc. Single origin policy prohibit such flows. Opens new tracking potential.


Mozilla opposed this change


The European Data Protection Supervisor (EDPS) publishes the tool Website Evidence Collector under the European Union Public License (EUPL-1.2). The tool supports the automation of privacy and personal data protection inspections of websites. The tool collects evidence of personal data processing, such as cookies, or requests to third parties.


With a nice shitstorm currently going on around various "revolutionary" proposals on how to rebuild online I would like to bring back this excellent 2015 presentation that goes into technical details *why* exactly needs all this surveillance exactly idlewords.com/talks/what_happe

No worries, we're fixing mobile too ¯\_(ツ)_/¯

"If Chrome fixes too fast it could break the web ... Much of the content on the web is supported by advertising revenue, and advertisers will shift to mobile apps"


EFF: BREAKING: We’ve confirmed that the Ring doorbell app on Android covertly shares personally identifiable information on its users with third-party companies, including Facebook. eff.org/deeplinks/2020/01/ring

"Algorithms and digital technologies constantly collect data and evaluate us and sometimes make life changing decisions such as credit, housing and employment.  Advertisements play a crucial part in this in that they inform us about goods and services, opportunities, products or nudge us into certain behaviours."


"15.4% of the 1.3 million Android applications we analyzed, contained security-related code snippets from Stack Overflow. Out of these 97.9% contain at least one insecure code snippet." aisec.fraunhofer.de/en/stackov

Client-side scanning is a new proposal of US law enforcement to combat child porn by hashing every image sent by IM clients against a database of known CP hashes. EFF discusses how this can be abused.


"Facebook isn't neutral turf on which good ideas will naturally prevail over bad ones, John Stuart Mill-style. It's an advertising-driven business whose design deliberately promotes its own peculiar idea of "engagement." axios.com/costs-facebook-free-

Conveniently skips CA and other shenanigans but still interesting PoV:

"Why would Facebook or Google owe you anything? (...) You willfully used a service and generated data that wouldn’t otherwise exist. What you get in return is Facebook itself, for which you’ve not paid a nickel. (...) You’re an infinitesimally small part of a data cooperative whose benefits accrue to the very users that generated it." wired.com/story/no-data-is-not

Facebook, Twitter and Alphabet’s Google have failed to provide adequate transparency for global users around political advertising on their services, a privacy advocacy group said on Tuesday.


"Ecuadorian authorities have arrested the executive of a data analytics firm after his company left the personal records of most of Ecuador's population exposed online on an internet server." Novaestrat

asked people for their mobile numbers "only for purposes", then used them for profiling, and then leaked on the web... techcrunch.com/2019/09/04/face

Show more

kravietz 🦇's choices:

Mastodon 🔐 privacytools.io

Fast, secure and up-to-date instance. PrivacyTools provides knowledge and tools to protect your privacy against global mass surveillance.

Website: privacytools.io
Matrix Chat: chat.privacytools.io
Support us on OpenCollective, many contributions are tax deductible!