Over 100 million IoT devices and servers are vulnerable because of 20-year-old TCP/IP stacks

Over 100 million IoT devices and servers are vulnerable because of 20-year-old TCP/IP stacks

In context: Security researchers at Forescout and JSOF have uncovered a set of nine vulnerabilities within four commonly used TCP/IP stacks.However, Forescout created an open-source script to help administrators track down vulnerable IoT devices and servers on the network.

So Long as You Carry a Cellphone, the Government Can Track You

So Long as You Carry a Cellphone, the Government Can Track You

"[I]t is our understanding that the Carpenter decision concerned historical Cell Site Location Information which is distinct from the opt-in app data available on the Venntel platform," the Internal Revenue Service (IRS) recently told the Treasury Inspector General for Tax Administration (TIGTA) in response to a query about the use of commercial databases such as Venntel.

Facebook has been helping law enforcement identify Capitol rioters

Facebook has been helping law enforcement identify Capitol rioters

Facebook has gone out of its way to help law enforcement officials identify those who participated in the January 6 riot at the US Capitol, the company said in a Thursday conference call with reporters.

Millions Flock to Telegram and Signal as Fears Grow Over Big Tech

Millions Flock to Telegram and Signal as Fears Grow Over Big Tech

On Signal, a Florida-based militia group said on Monday that it was organizing its chats in small, city-by-city groups limited to a few dozen people each, according to messages seen by The New York Times.

Protect Our Civil Liberties Act would repeal Patriot Act, FISA Amendments Act, and ban encryption backdoors

Protect Our Civil Liberties Act would repeal Patriot Act, FISA Amendments Act, and ban encryption backdoors

Representative Tulsi Gabbard (D-HI) and Representative Thomas Massie (R-KY) are cosponsoring a bipartisan bill titled the Protect Our Civil Liberties Act (H.R. If passed, the Act would repeal the Patriot Act and the FISA Amendment Acts – essentially ending domestic surveillance programs siphoning up AMerican’s phone calls and emails.

The US government admits to using the Patriot Act to collect web browsing information

The US government admits to using the Patriot Act to collect web browsing information

Letters between the Director of National Intelligence (DNI) and Senator Ron Wyden confirm that the United States government has used Section 215 of the Patriot Act to collect web browsing information via a FISA court order.

'Smart' doorbells for sale on Amazon, eBay came stocked with security vulnerabilities

'Smart' doorbells for sale on Amazon, eBay came stocked with security vulnerabilities

In this case, researchers bought another device from Amazon and eBay that was vulnerable to KRACK, a three-year-old bug that attackers could use to eavesdrop on wireless networks.

ICO fines Marriott International Inc £18.4million for failing to keep customers’ personal data secure

ICO fines Marriott International Inc £18.4million for failing to keep customers’ personal data secure

The ICO’s investigation found that there were failures by Marriott to put appropriate technical or organisational measures in place to protect the personal data being processed on its systems, as required by the General Data Protection Regulation (GDPR).

TheNewOil : blog piece on 'The War on Telegram" as states ban service

TheNewOil : blog piece on 'The War on Telegram" as states ban service

War has come for the popular encrypted messaging app Telegram, not for the first time and likely not the last.There’s a lot more that goes into making an app hard to centralize, but I think that’s one of the most critical.

When the GDPR goes wrong…

When the GDPR goes wrong…

The merit behind the Bradford Trigger has nothing to do with personal data; each variable of the formula is a piece of information, which a company shall record, inter alia as required under the labour laws.

Privacy News Online | Weekly Review: August 28, 2020

Privacy News Online | Weekly Review: August 28, 2020

UK class action style claim filed over Marriott data breach.A new class action lawsuit has been filed in the United Kingdom against Marriott for failing to protect personal data.Privacy News Online is brought to you by Private Internet Access, the world’s most trusted VPN service.

Introducing IOTA Stronghold. Stronghold is a collection of…

Introducing IOTA Stronghold. Stronghold is a collection of…

There are many challenges involved in securely managing digital secrets like passwords, vehicle access codes, and wallet seeds:High-value secrets like private keys need to be encrypted at rest, using modern and secure algorithmsSuch secrets need to be purged from device memory immediately after useUsers must be able to configure systems to their security needsApplications need to run on any type of hardware from phones to cars, where possible leveraging Trusted Execution Environments.

Welcome to Element!

Welcome to Element!

Welcome to a whole new beginning for Riot: welcome to your new Element, one where mainstream Matrix users will enjoy themselves too - and which will pave the way for wider adoption of open, secure, decentralised communication via Matrix throughout the world.- Matthew, Amandine, and the whole Element team.

FreePN - A Guide to the PATRIOT Act Renewal and Your Online Privacy

FreePN - A Guide to the PATRIOT Act Renewal and Your Online Privacy

On May 13, the Senate failed to pass an amendment to the USA FREEDOM Reauthorization Act which would protect individuals’ Internet browsing and search history from government surveillance without a warrant.

House leadership is trying to ram through a reauthorization of FISA and PATRIOT Act surveillance authorities using an obscure Congressional mechanism

House leadership is trying to ram through a reauthorization of FISA and PATRIOT Act surveillance authorities using an obscure Congressional mechanism

Not only would this prevent the House of Representatives from voting on the popular Wyden-Daines amendment which would force the government to obtain a warrant before spying on people’s Internet activity, but it would also prevent the House from ratifying the Lee-Leahy amendment which has been passed by the Senate to protect journalists, political candidates, and religious groups from government surveillance.

Civil liberties groups are urging Congress to block the FBI from viewing Americans' web-browsing history without a warrant

Civil liberties groups are urging Congress to block the FBI from viewing Americans' web-browsing history without a warrant

The Senate last week passed a reauthorization of the Patriot Act that included language from Mitch McConnell granting the FBI authority to see web-browsing records without a warrant.

How a VPN can protect your internet history from The Patriot Act & the FBI

How a VPN can protect your internet history from The Patriot Act & the FBI

If the law passes and the Patriot Act grants the FBI warrantless access to the internet history of Americans, the best way to protect your internet history is with a VPN.

Cross-signing and End-to-end Encryption by Default is HERE!!!

Cross-signing and End-to-end Encryption by Default is HERE!!!

Three years have passed since we first announced End-to-end Encryption in Matrix and started to beta test it in Riot - and after an enormous amount of polishing and refinement on its user experience, we are finally declaring it out of beta and enabling it by default for all new private conversations in Riot.

Decentralized Communication: The Way of the Future

Decentralized Communication: The Way of the Future

Decentralization, as the name suggests, works by making a network run on a variety of providers rather than a single centralized network.So personally, I’m placing emphasis on self-hosted and decentralized solutions in the future to try to prepare for this eventuality.

Enterprise Security Woes Explode with Home Networks in the Mix

Enterprise Security Woes Explode with Home Networks in the Mix

The work-from-home (WFH) paradigm that has become the new normal in the age of coronavirus comes with exacerbated network security risk – as evidenced by growing a number of botnets and automated attacks that are taking advantage of known vulnerabilities in both consumer and corporate IT gear.

Why You (Yes You, Reading This) Need to Take the Lead in Privacy & Security

Why You (Yes You, Reading This) Need to Take the Lead in Privacy & Security

But for a lot of them, I’m the only person they communicate with using those services and when I try to convince them to get their friends and family to join, they respond with something along the lines of “they just don’t care about privacy or security.” But it’s up to you to lead the charge into an era of privacy and security, and here’s why.

Marriott Suffers Second Breach Exposing Data of 5.2 Million Hotel Guests

Marriott Suffers Second Breach Exposing Data of 5.2 Million Hotel Guests

The company has already taken the step of disabling the passwords of Marriott Bonvoy members who had their information potentially exposed in the incident, and they will be notified to change their passwords during the next login, as well as prompted to enable multi-factor authentication.

Incident Notification

Incident Notification

Although our investigation is ongoing, we currently have no reason to believe that the information involved included Marriott Bonvoy account passwords or PINs, payment card information, passport information, national IDs, or driver’s license numbers.

Australian State to Share Driver License Data with Biometrics Database

Australian State to Share Driver License Data with Biometrics Database

As ITNews reports, WA transport minister Rita Saffioti introduced Transport Legislation Amendment (Identity Matching Services) Bill 2020, which will allow photos, signatures, and other information to be shared with the NDLFRS database.

The enemy within: welcome to the Internet of gaslighting

The enemy within: welcome to the Internet of gaslighting

As the New York Times article explained, these phenomena had a common cause: women’s abusers were controlling Internet-connected devices in homes, using everyday apps on their smartphones.

Republicans Hate Surveillance on Trump but Sound Like They’ll Renew the PATRIOT Act

Republicans Hate Surveillance on Trump but Sound Like They’ll Renew the PATRIOT Act

BRENDAN SMIALOWSKIIf Republicans have any appetite for reining in domestic surveillance that they describe as a massive violation of the civil liberties of Donald Trump’s associates, it wasn’t on display when FBI Director Christopher Wray made his first appearance on Capitol Hill since the damning Justice Department inspector general’s report into the Trump-Russia investigation.

Consumer Reports warns IoT camera makers to improve their security

Consumer Reports warns IoT camera makers to improve their security

Consumer Reports has sent a letter to 25 manufacturers of IoT cameras with a call to improve their security.Consumer Reports warns the IoT camera manufacturers that its ratings will reflect whether it believes adequate steps have been taken to ensure the security and privacy of users is protected.

LogMeIn (LastPass) to be acquired by Private Equity Firms

LogMeIn (LastPass) to be acquired by Private Equity Firms

LogMeIn announced yesterday that it will be acquired by Private Equity Firm for approximately $4.3 billion in an all-cash transaction.LogMeIn announced yesterday that it will be acquired by Private Equity Firm for approximately $4.3 billion in an all-cash transaction.

Alexa is coming to more everyday household devices like light switches and thermostats

Alexa is coming to more everyday household devices like light switches and thermostats

Amazon's integration of AVS into AWS IoT Core should lead to a rapid jump in the number of Alexa-powered consumer IoT devices.

Giving Government Vast Snooping Authority Is One Thing Democrats and Republicans Both Like

Giving Government Vast Snooping Authority Is One Thing Democrats and Republicans Both Like

This relatively innocuous language pushes back the sunset provision of the Patriot Act by three months, leaving its vast powers in the hands of a president who Democratic presidential hopeful Joe Biden charges with "failure to uphold basic democratic principles," who House Speaker Nancy Pelosi has accused of "alarming connections and conduct with Russia" and, joined by Senate Democratic Leader Charles Schumer, says is making an attempt to "shred the Constitution.".