Clubhouse Replied: No Hack Involved, Personal Data is Publicly Available

Facebook, Linkedin, Clubhouse

Since the invite-only and audio-only social media app launch in March 2020, Clubhouse became popular and attracted millions of users. Users enjoy the audio community with various topics in “rooms.”I talked about the privacy and security risk of the app in February. If you still remember, Elon Musk helped Clubhouse leap during the frenzy of Gamestop, Wallstreetsbets, and Dogecoin. While the risks are still valid and not fixed, the personal data of 1.3 million Clubhouse users has been posted online on a popular hacker forum, according to a Saturday report from Cyber News.

Clubhouse And Its Privacy & Security Risk

The Need To Know Before Downloading Clubhouse

medium.com

Clubhouse Security Risk Follow-up: China Is Listening

Recent Research Confirmed the Data Exposure to China via Agora Inc.

medium.com

The scraped data of Clubhouse users includes names, social media profile names, and other details. Data leaks of Linkedin, another social media platform, were also reported by Cyber News the same day. The Scraped data contains 500 million LinkedIn users.

The Problem

Days before reports surfaced of the LinkedIn and Clubhouse data leaks, Insider’s Aaron Holmes reported that the hacker posted the full names, location, email addresses, and other sensitive pieces of information of 533 million Facebook users in a hacking forum.Nearly everything I heard what Facebook or Zuckerburg said only piss more people off than apologies. It is like it was our fault putting all data on Facebook.

All 533,000,000 Facebook Records Were Just Leaked for Free, So What?

Understanding the Value of Privacy Via the Facebook Data Leak

medium.com

But in fact, if you look a little bit deeper into the design and terms of use in Facebook, you would find out that nearly every part of Facebook encourages you to give up more datain exchange for more features and connections.

I did a little bit of research and wrote about the top two “hidden” features of Facebook that users should be aware of and be careful even you are offline in the physical world, or someone who does not have Facebook but actively connecting with people who have (that means all of us!).

How Facebook Is Stalking You Even You’re Offline — And How to Limit It

Explanation of Something You May Not Aware About Facebook Like “Off-Facebook Activity” and “Shadow Profile”

medium.com

I cannot emphasize more how Facebook is irresponsible about handling before and after this incident. If you are still on Facebook, make sure you know how to prevent being over-exposed.

On the one hand, Clubhouse did not officially respond immediately to the news, but they post the following tweet as a reply on Sunday.

That is great again, and I got the same feeling as Facebook's reply and found it amazing that Clubhouse thought the report is “false.” Even if the data can be scraped via API, it doesn’t mean they are not personal data.

There is no need to ask a security expert that you know someone can use those data to impersonate the user or scam them into revealing more sensitive data like password credentials and bank accounts via social engineering. I was also a victim of the recent Facebook data lask even I stopped using Facebook in 2016.

My Recent Encounter With A Credit Card Scammer

Introduction of Social Engineering From My Experience

medium.com

Do What Tim Said

Tim Ferriss post a video yesterday sharing how he uses a mobile phone. It is worth watching if you want to re-think how to use social media and why we need a new approach on this app.

Let’s walk through his rules:

  1. No email app on his phone
  2. No social media apps on this phone
  3. Airplane mode and silent mode when you need 100% focus
In short, you should know that social media platforms spend tons of money to lure us in and exploit our FOMO (Felling Of Missing Out) so that we cannot stop looking at it. That’s why you spend more time in the toilet or didn’t talk to your friends when having a meal.
Tim bought out the concept of “Friction Points” to tackle the addicting apps. Ultimately what it is trying to do is make the user experience less pleasant so that we are not that addicted.

Final Words — It’s Time To Protect Yourself; Even You Have Nothing To Hide

People think only criminals need to hide. Sadly, they do not know Privacy is our right.

For our digital self, we should value our data as the real world. We have vaults to store our personalized jewelry, and we only share our financial records with the bank.

There is no 100% anonymity on the internet. Every time you tap on your phone, you leave some traces.But it is not about being invisible to others because it would be impossible to interact with others.

All the privacy protection tools do not immediately make you anonymous, but your awareness did. We need to, at least, try our best, take back control of our data. Privacy is fundamental to the internet and net neutrality. We should prepare ourselves for the next Big Tech company, saying that we want more and say no this time.

How To Be Anonymous Online

It’s Time To Protect Yourself. Even You Have Nothing To Hide

medium.com

Similar Articles:

Third-party Facebook apps expose 540 million users’ details

Third-party Facebook apps expose 540 million users’ details

Facebook Confirms Millions of Instagram Passwords Were Stored in Plain Text

Facebook Confirms Millions of Instagram Passwords Were Stored in Plain Text

Want a Facebook account? Just hand over your private email password

Want a Facebook account? Just hand over your private email password

Why Facebook Privacy is a Hoax? Facebook censoring crypto-related messages

Why Facebook Privacy is a Hoax? Facebook censoring crypto-related messages