No password required: Mobile carrier exposes data for millions of accounts

No password required: Mobile carrier exposes data for millions of accounts

Q Link Wireless, a provider of low-cost mobile phone and data services to 2 million US-based customers, has been making sensitive account data available to anyone who knows a valid phone number on the carrier’s network, an analysis of the company’s account management app shows.

Wi-Fi devices set to become object sensors by 2024 under planned 802.11bf standard

Wi-Fi devices set to become object sensors by 2024 under planned 802.11bf standard

SENS is envisioned as a way for devices capable of sending and receiving wireless data to use Wi-Fi signal interference differences to measure the range, velocity, direction, motion, presence, and proximity of people and objects.

U.S. Supreme Court rebuffs Facebook appeal in user tracking lawsuit

U.S. Supreme Court rebuffs Facebook appeal in user tracking lawsuit

The justices declined to hear Facebook’s appeal of a lower court ruling that revived the proposed nationwide litigation accusing the company of violating a federal law called the Wiretap Act by secretly tracking the visits of users to websites that use Facebook features such as the “like” button.

In-kernel WireGuard is on its way to FreeBSD and the pfSense router

In-kernel WireGuard is on its way to FreeBSD and the pfSense router

Mindful of Netgate's exposed position, Donenfeld reached out to core FreeBSD developers Kyle Evans and Matt Dunwoodie, and the three dug in for a mad, week-long sprint to bring the problematic code up to par.

'Smart' doorbells for sale on Amazon, eBay came stocked with security vulnerabilities

'Smart' doorbells for sale on Amazon, eBay came stocked with security vulnerabilities

In this case, researchers bought another device from Amazon and eBay that was vulnerable to KRACK, a three-year-old bug that attackers could use to eavesdrop on wireless networks.

The iOS COVID-19 app ecosystem has become a privacy minefield

The iOS COVID-19 app ecosystem has become a privacy minefield

At WIRED's request, Albright then broke down the dataset further to focus specifically on the 359 apps that handle contact tracing, exposure notification, screening, reporting, workplace monitoring, and COVID-19 information from public health authorities around the globe.

Rubenerd: We need physical audio kill switches

Rubenerd: We need physical audio kill switches

If there is any latency whatsoever between us hitting a mute button and the audio not cutting out, the hardware or software has failed.Well-engineered mute buttons on keyboards shouldn’t need to go to software, they should immediately send a signal to the motherboard’s DAC—ideally on a separate wire or connection—to say terminate this signal.

Cyber Deception Reduces Data Breach Costs by Over 51% and SOC Inefficiencies by 32%

Cyber Deception Reduces Data Breach Costs by Over 51% and SOC Inefficiencies by 32%

FREMONT, Calif.--(BUSINESS WIRE)--Attivo Networks®, an award-winning leader in cyber deception and attacker lateral movement threat detection, today announced the results of a new research report conducted with Kevin Fiscus of Deceptive Defense, Inc., “Cyber Deception Reduces Breach Costs & Increases SOC Efficiency.” The paper identifies the direct and measurable financial and productivity benefits of deception technology for organizations of all types and sizes.

If the Government Had Its Way, Everything Could be Wiretapped

If the Government Had Its Way, Everything Could be Wiretapped

The battle over encryption and secure communications suggests that governments think the answer is “everything,” at least so long as investigators aren’t violating weak privacy laws.People want to have private conversations that are not recorded for all time, and these platforms are making that possible again.

Decentricity:

Decentricity:

Wireless internet is broadcast out of every node in the meshnet, and provides connectivity for other devices in the network that aren't nodes.Commotion Wireless is a meshnet implementation that aims to create community wireless networks from the outset.

Suit Claims Google’s Tracking Violates Federal Wiretap Law

Suit Claims Google’s Tracking Violates Federal Wiretap Law

— Google violated federal wiretap laws when it continued to collect information about what users were doing on the internet without their permission even though they were browsing in so-called private browsing mode, according to a potential class-action lawsuit filed against the internet giant on Tuesday.

The long, ugly history of how police have tracked protesters

The long, ugly history of how police have tracked protesters

American police have used technology to combat dissent—especially dissent by communities of color—since before there was a United States of America.Empowered by wiretaps, eavesdropping bugs, and then-cutting-edge recording devices, it became routine for police to monitor those who would dare to dissent.

Private Internet Access announces third year of WireGuard® sponsorship

Private Internet Access announces third year of WireGuard® sponsorship

Private Internet Access believes in sponsorship as a way of giving back to the community and is proud to sponsor WireGuard.Because it is a free and open source software (FOSS) project, WireGuard development is supported by developers that donate their time, as well as companies that donate funds.

WireGuard® on PIA is out of beta and available to use on Windows, Mac, Linux, Android, and iOS

WireGuard® on PIA is out of beta and available to use on Windows, Mac, Linux, Android, and iOS

In March, Private Internet Access rolled out WireGuard® support to our beta testers on PIA desktop clients and mobile apps.WireGuard is officially a go on our Windows, Mac, Linux desktop clients as well as our Android & iOS mobile apps.

Saudi Arabia Exploiting Wireless SS7 Flaw to Track Targets In The United States

Saudi Arabia Exploiting Wireless SS7 Flaw to Track Targets In The United States

U.S. carriers like AT&T, Verizon, and T-Mobile routinely receive Provide Subscriber Information (PSI) messages from foreign phone companies to help them track roaming costs for users on foreign cell plans traveling abroad.

Toronto, Canada is now using phone location data to track if people are congregating

Toronto, Canada is now using phone location data to track if people are congregating

This past Monday, Toronto Mayor Tory announced at a virtual TechTO meetup that the government has been receiving location data from wireless carriers and telecommunication companies in the area to show where people are still congregating and flouting social distancing – The Logic reports.

Private Internet Access announces Wireguard VPN Beta

Private Internet Access announces Wireguard VPN Beta

Private Internet Access has long had established server-client connection best practices for all of our VPN connection types such as OpenVPN and IPSec. We have added these best practices to our WireGuard implementation to ensure the same no logging VPN service that our users expect and will always get.

WireGuide: All about the WireGuard VPN protocol

WireGuide: All about the WireGuard VPN protocol

WireGuard is a relatively new VPN protocol when compared with the decades old OpenVPN and approaches software development with a different philosophy – do one thing simple and do it well (efficiently).

Meet the Guy Selling Wireless Tech to Steal Luxury Cars in Seconds

Meet the Guy Selling Wireless Tech to Steal Luxury Cars in Seconds

A 2017 video released by the West Midlands Police in the U.K. showed two men approach a Mercedes Benz parked in the owner's driveway; similar to Evan's video, one man stood next to the target vehicle with a handheld device, while another positioned a larger piece of tech near the home, hoping to pick up the signal emitting from the car keys stored inside.

Facebook Is More Concerned With the Appearance of Privacy, According to Mark Zuckerberg

Facebook Is More Concerned With the Appearance of Privacy, According to Mark Zuckerberg

One of the more interesting insights that comes from Mark Zuckerberg's lost journal pages, as reported by Wired's Steven Levy, is that even early on, the Facebook founder clearly wanted people to feel like they are having a private experience.

Opinion | The Government Uses ‘Near Perfect Surveillance’ Data on Americans

Opinion | The Government Uses ‘Near Perfect Surveillance’ Data on Americans

With access to [cellphone location data], the Government can now travel back in time to retrace a person’s whereabouts, subject only to the retention polices of the wireless carriers, which currently maintain records for up to five years.

Your mobile network broke the law by selling location data and may be fined millions... or maybe not, shrugs FCC

Your mobile network broke the law by selling location data and may be fined millions... or maybe not, shrugs FCC

The chair of the House Energy and Commerce Committee – which oversees the FCC – Frank Pallone (D-NJ) issued a statement: “Following our longstanding calls to take action, the FCC finally informed the Committee today that one or more wireless carriers apparently violated federal privacy protections by turning a blind eye to the widespread disclosure of consumers’ real-time location data.

FCC confirms carriers ‘apparently’ broke the law by selling customer location data

FCC confirms carriers ‘apparently’ broke the law by selling customer location data

“Following our longstanding calls to take action, the FCC finally informed the Committee today that one or more wireless carriers apparently violated federal privacy protections by turning a blind eye to the widespread disclosure of consumers’ real-time location data,” Pallone said in a statement after receiving the letter.

Do Ring Cameras Violate Wiretapping Laws? New Hampshire Is About to Find Out

Do Ring Cameras Violate Wiretapping Laws? New Hampshire Is About to Find Out

Assistant Strafford County Attorney Emily Garod, who is prosecuting Burke, told Motherboard that when she learned of the Ring audio recording she messaged a state-wide group of prosecutors to ask for advice or examples of similar cases.

Cutting the Wire

Cutting the Wire

A previous version of the policy (July 18, 2017) stated it would only share user data when required by law.This change doesn’t leave the user with much confidence as to when the company may share your data.

FYI: FBI raiding NSA's global wiretap database to probe US peeps is probably illegal, unconstitutional, court says

FYI: FBI raiding NSA's global wiretap database to probe US peeps is probably illegal, unconstitutional, court says

In a decision [PDF] that could put an end to a practice that civil-liberties groups have decried as illegal for years, the US Court of Appeals for the Second Circuit noted that the way the Feds today use a database of seized communications “would be at odds with the bedrock Fourth Amendment concept that law enforcement agents may not invade the privacy of individuals without some objective reason to believe that evidence of crime will be found by a search.”.

Private Internet Access updates Linux desktop client to prevent against [CVE-2019-14899]

Private Internet Access updates Linux desktop client to prevent against [CVE-2019-14899]

[CVE-2019-14899] affects many different types of VPN protocols including OpenVPN, WireGuard, and IKEv2/IPSec. Private Internet Access has released an update to its Linux client that mitigates [CVE-2019-14899] from being used to infer any information about our users’ VPN connections.

Location data: How much do wireless carriers keep?

Location data: How much do wireless carriers keep?

But the primary way iOS 13 and Android 10 do that – a notification to warn that one application or another has been getting your location when you weren’t using that app – only tells part of that privacy story.

Wire Business Update

Wire Business Update

Wire stands by its mission to best protect communication data with state-of-the-art technology and practice: All source code has been and will be available for inspection on GitHub ().Wire believes that data protection is best achieved through state-of-the-art encryption and continues to innovate in that space with Messaging Layer Security (MLS).

Should Tech CEOs Go to Jail Over Data Misuse? Some Senators Say Yes

Should Tech CEOs Go to Jail Over Data Misuse? Some Senators Say Yes

As Mark Zuckerberg testified about all things Facebook on the House side of the Capitol last week, over on the Senate side some lawmakers were debating whether CEOs like Zuckerberg should face jail time if their companies misuse people’s personal data.“You know, my sense is that Mark Zuckerberg is not going to take American’s privacy seriously unless he and others in these positions face personal consequences,” senator Ron Wyden (D-Oregon) told WIRED in his Capitol Hill office.

More