eff

(get it in RSS or Atom)

Massive FBI facial recognition database raises privacy fears

Facial recognition. Image courtesy of Shutterstock.

The FBI is building a massive facial recognition database that could contain as many as 52 million images by 2015, including 4.3 million non-criminal images, according to information obtained by the EFF via a freedom of information request.

Google accidentally improves Android privacy, just for a moment

Google accidentally improves Android privacy, just for a moment

App Ops Launcher, a hidden feature that allowed Android users to deny selected permissions to apps, was an experiment that was never supposed to be released and that could break apps instead of just policing them, Google said.

AT&T hacker and internet troll 'Weev' appeals 41-month prison sentence

AT&T hacker/Internet troll 'Weev' appeals 41-month prison sentence

The EFF has filed an appeal seeking to free the hacker and self-described internet troll, who exploited a hole in AT&T's publicly facing website to siphon the personal data of more than 100,000 iPad owners.

ACLU: Cops should have a tougher time sucking up 7 months of mobile phone data

ACLU: Cops should have a tougher time sucking up 7 months of mobile phone data

The ACLU joined other legal activist groups to file a brief in what they call a potentially pivotal case in determining whether the government needs a warrant to track our mobile phones.

Ridiculously redacted interpretation of FISA snooping law released

Ridiculously redacted interpretation of FISA snooping law released

US privacy organization EFF invites you to click on thumbnails of the summaries it managed to pry out of the government, but let's save your finger muscles the workout with this summaries summary: ------------------------------.

Ubuntu pipes search queries to Amazon, worrying privacy experts

Ubuntu pipes search results to Amazon

Revolution OS - or adware? An update to the popular Ubuntu Linux distribution will pass searches through Amazon.com's search engine. Now the Electronic Frontier Foundation calls that move a "major privacy problem."

$20 million is not enough! How much should Facebook pay for settling sponsored stories dispute?

thumb word cloud_thumb

A judge has rejected Facebook’s settlement offer of $10 million for lawyers and $10 million for privacy groups in a privacy lawsuit over the use of users’ names and faces in "Sponsored Stories" ads.

Google to demote websites with pirated content

Google logo

Google has announced changes to its search algorithms, pushing down websites with several copyright take-down requests from the prime position in search results. Not everyone thinks this is a good idea.

Megaupload users who want their data have to pay (or sue), feds say

megaupload_thumb

It's not looking good for those Megaupload users who want their files returned, unless they want to pay, or sue, to get it back.

CISPA debate rages on in the US, what's all the fuss about?

CISPA debate rages on in the US, what's all the fuss about?

A new law being debated in the US is causing concern among privacy advocates. The law is designed to encourage information sharing to thwart cybercrime, yet even the White House is expressing concerns over the privacy implications of the bill.

Canadian resident sentenced to death for writing a computer program

Saeed Malekpour with wife

A Canadian resident has been sentenced to death in Iran for offending the faith, after his computer program was used without his knowledge to upload pornography.

Can you be forced by law to decrypt your computer? US v. Fricosu court case rages on

Passwords screenshot

Ramona Fricosu, accused of committing financial fraud, is currently in a court battle fighting to keep her encrypted data private. The prosecution say that if the government fail to demand data decryption, it will harm public interests. This article looks at the arguments for both sides and asks whether this would be possible under UK law.

Google and EFF propose improvements to HTTPS as GlobalSign releases CA breach report

GlobalSign gives itself clean bill of health after Iranian hacker's braggadocio

GlobalSign released their report on security incident the certificate authority suffered earlier this year. They're clean, but that doesn't take the spotlight off of the need for a fix to the SSL certificate trust system that is in place.

EFF asks US Copyright Office to exempt jailbreaking from DMCA

EFF-logo-250

The EFF is asking the US Copyright Office to expand exemptions for jailbreaking/rooting devices to include game consoles and other smart devices. We explore the security risks and benefits of their proposal.

FBI takes on Coreflood botnet - but is this a step too far?

doj-thumb

Two weeks ago, the FBI kicked off an anti-cybercrime operation of a sort which had never been authorised before in America, taking remote remediation action against infected PCs.

Things went so well the Feds want to do more.

SSCC 55 - More SSL CA problems, RSA update and Chrome blocking more dangerous content

Sophos Security Chet Chat 41

Tony Ross joins Chester Wisniewski this week to discuss the latest news on SSL Certificate Authorities ignoring signing guidelines. They also talk about the RSA breach, the Epsilon email leakage, Chrome adding malicious download filtering and more.

CanSecWest 2010 day 2 summary

Image (1) cansecwest200.png for post 2787

The second day of CanSecWest was a beautiful day in Vancouver. The day was full of information-packed sessions and anticipation for the evening dinner party reception. "SEH overwrite and its exploitability - Shuichiro Suzuki" Shuichiro, who works for Forteenforty, demonstrated Read more…