Author Archives: Tiffany

D.A. Serves Twitter with Subpoena for Users’ Tweets

Posted on February 17, 2012 by Tiffany| Leave a comment

Should social networks hand over the personal data of their users to the government during criminal investigations? That’s the question being raised by a recent subpoena issued from the Boston D.A.’s office to the social networking giant Twitter.

In 2011, two Twitter users are alleged to have hacked into the Boston Police Patrolmen’s Association and then distributed some of the identifying info via their Twitter feeds. As part of the investigation into the hacking, the Suffolk D.A.’s office has issued a subpoena to Twitter, requesting the company to hand over as much as personal information as possible about the accounts associated with the crime. Along with two Twitter account names, the D.A. also requested information about a user with the name Guido Fawkes. Interestingly, one of the account names listed in the subpoena was @OccupyBoston. Likely, though, the D.A. intended to request information about @Occupy_Boston, which posts updates about the Occupy Movement in the Boston area.

While the D.A. requested that Twitter keep the subpoena request private, it was almost immediately leaked. According to the company’s law enforcement section, Twitter says it will always inform a user before handing over their information to authorities, which may have been the motivation behind the leak.  Unlike other social networking sites, though, Twitter doesn’t go through the trouble of checking user names or email addresses for authentication, so the company may only have user IP addresses to provide the D.A.’s office.

In a statement about the leak, Twitter said “To help users protect their rights, it is our policy to notify our users about law enforcement and governmental requests for their information, unless we are prevented by law from doing so.”

Image c/o: stepnout

→ Leave a comment

Posted in Privacy News

Tagged , , ,

Smartphone Software Company Develops Ability to Monitor Customer Keystrokes

Posted on February 17, 2012 by Tiffany| Leave a comment

In late 2011, the smartphone software maker Carrier IQ found its name in the headlines due to concerns about some of its software’s capabilities. In November, a researcher named Trevor Echkart, who does not work for Carrier IQ, posted a video online showing him using the company’s software to monitor keystrokes, text messages, and Internet searches. Eckhart echoed concerns that Carrier IQ might be monitoring customers’ private smartphone data by developing this ability within their applications.

In response, the company issued a ceast-and-desist order to Eckhart and filed a lawsuit, alleging that the 25-year-old had violated the company’s copyright by posting the information online and that he had made “unsubstantiated allegations” against the software maker by claiming that Carrier IQ could be keeping tabs on private data. Two days later, however, Carrier IQ withdrew the ceast-and-desist order and issued an apology to Eckhart.

Despite the company’s backtrack on its actions against Eckhart, Carrier IQ is still defending its applications. The VP of Marketing, Andrew Coward, said “What is true is that there’s a huge amount of information available to us on the device. But capturing keystrokes and messages, email, audio, and video is not what we do, and we’ve been absolutely adamant that we don’t do these things.”

After learning of these concerns, both Massachusetts Representative Ed Markey and Minnesota Senator Al Franken got involved in the debate, requesting the FTC to launch an investigation and sending a letter to Carrier IQ demanding to know about its business practices. Two class-action lawsuits have also been filed against the company, as well as Samsung and HTC, smartphone manufacturers that use the software. Most of the large smartphone carriers, including Sprint, T-Mobile, and AT&T, also use Carrier IQ software on their devices.

Image c/o: Frederick Md Publicity

→ Leave a comment

Posted in Privacy News

Tagged , , , , ,

Michigan Primary Voters Angered by Privacy Issues

Posted on February 17, 2012 by Tiffany| Leave a comment

As the Republican primary season heats up, more and more Michigan voters are voicing their displeasure with a recent change that allows state officials to know which party individuals cast their votes for. In August of 2011, the Michigan GOP decided to change the voting process to a closed primary. Those who want to vote during the Republican Primary must be registered Republicans in order to vote.

Individuals are not required to verbally express their loyalty to the GOP before voting, but the Democratic and Republican nominees are on separate ballots. Before going into the booth, voters must complete a form that shows which ballot they are selecting. In effect, this steps serves to notify the government which party the individual is voting for. After the election is over, the Michigan Secretary of State will have a list of which individuals voted for which party and the list will be publicly available for nearly two years afterward.

According to Michigan GOP officials, the change was made to reduce the number of Democrats voting in Republican primaries. One spokesperson said, “We should have a process by which Republicans choose the Republican nominee for President.” While the change may seem simple, some residents were outraged by the shift, saying the move signified a loss of voter privacy. One news reader said that voters should be prepared to “be bombarded with politicians and political parties begging for bucks” after their voting preferences become public. Michigan holds its Republican primary on February 28 and its Democratic caucus on May 5.

Image c/o: Rochelle, just rochelle

→ Leave a comment

Posted in Privacy News

Tagged , , ,

Women Sue Insurance Company for Bathroom Privacy Violation

Posted on January 11, 2012 by Tiffany| Leave a comment

In 2006, two women who worked for an Ohio insurance salesman found an unpleasant surprise in their company’s bathroom – a hidden video camera. The women, Sara Koeppel and Deanna Miller, filed a lawsuit against their boss, Robert Speirs, for invading their privacy. Last month, the Iowa Supreme Court ruled that the case could go forward, even though the camera didn’t work properly.

According to Speirs, Koeppel’s job performance had deteriorated over time and he suspected her of abusing drugs on the job. He claims he installed the camera originally in the reception area to monitor her performance. After two weeks, he moved the camera to the bathroom, after he claimed he found a used needle in the parking lot under Koeppel’s car.

Koeppel and Miller found the hidden camera before Speirs could remove it and informed the authorities. While Speirs was acquitted on any criminal charges, the women went ahead with a civil lawsuit, seeking to hold Speirs liable for invading their right to privacy at work. In its written opinion, the Iowa Supreme Court explained that a victim doesn’t have to be physically harmed in order have a case for damages. The court stated “Harm from intrusion occurs when a plaintiff reasonably believes an intrusion has occurred.”

While the outcome of the case remains to be seen, the state Supreme Court’s ruling goes a long way to establishing the rights of private individuals. According to the opinion, once an individual’s right to privacy is violated, even if there is no lasting harm, he or she may have a case.

Image c/o: dmuth

→ Leave a comment

Posted in Privacy News

Tagged , , ,

Grading Some of the Year’s Biggest Privacy Breaches

Posted on January 11, 2012 by Tiffany| Leave a comment

Unfortunately, 2011 was a big year for online privacy issues. Multiple corporations suffered massive breaches of personal data, including customers’ names, addresses, email addresses, and even Social Security numbers. Here are some of the biggest data breaches of the past year.

  • Sony’s repeated hacker attacks: Sony had a particularly difficult year when it came to protecting the personal data of their consumers. The PlayStation network was hit repeatedly by Internet hackers, who gained access to gamers’ payment information such as credit card numbers and online passwords. Adding to the public relations nightmare was the fact that Sony had drastically cut its network security staff immediately preceding the first hacker attack. The company has not yet been able to guarantee that the network is fully secure.
  • Sutter suffers computer theft: It doesn’t take Internet theft to steal consumer information. Sometimes companies can be hit through manual theft of equipment. This happened to medical corporation Sutter Physicians Services in 2011, when a desktop computer was stoledn from a building. The computer contained personal information from over 3.3 million patients, includes names, phone numbers, and health insurance data. Sutter is facing a class-action lawsuit over its handling of the security breach.
  • TriCare breach impacts military service members: In another case of manual theft, backup computer tapes were stolen from the vehicle of an employee for one of TriCare’s defense contractors, Science Applications International Corporation. The stolen data included Social Security numbers, names, and addresses of millions of Armed Forces members who were treated by the company over 20 years. The injured parties are suing TriCare for $5 billion due to the theft.

Image c/o: fernand0

→ Leave a comment

Posted in Privacy News

Tagged , ,

Should Smartphone Owners Expect to Give Up Their Privacy Rights?

Posted on December 17, 2011 by Tiffany| Leave a comment

If you’re a cell phone owner (and who isn’t), you may be weighing whether getting a smartphone is a good idea or not. There’s no doubt that these devices are extremely convenient, useful, and downright fun to use. And it doesn’t hurt that they look so cool either. However, smartphone owners are among the most monitored people in the world, whether they realize it or not. As the extensive tentacles of cell phone providers, applications, and social media websites grow, more and more smartphone owners are trading privacy for technology.

One of the main ways that smartphone owners are tracked is within the phone itself. If you turn on the wi-fi option on your phone, you’re able to connect to other wireless networks in  your area. This may make your web browsing and communications quicker, but you may also be broadcasting your location to mobile phone providers around the world. GPS tracking applications are another way that smartphone owners are monitored. These apps use your physical location to determine where you are and then make recommendations or suggestions as to what ads are relevant to you. You might think that these apps don’t affect you, but several of the extremely popular smartphone apps such as FourSquare, Facebook, and Yelp use GPS software to establish your location and allow you to “check in” or provide reviews of certain establishments.

As some technology writers believe, these programs are incredibly intrusive, but incredibly entertaining as well. And most smartphone owners are more than willing to give up some of their user privacy for the experience of using one of these devices As Gizmodo writer Sam Biddle put it, “That line of creepiness is there, but it’s eroding quickly because, frankly, we are just getting used to it.”

Image c/o: digitpedia

→ Leave a comment

Posted in Online Privacy, Privacy News

Tagged , , , ,

Can Sending an Email to Santa Claus Expose Your Online Privacy?

Posted on December 17, 2011 by Tiffany| Leave a comment

Many adults remember the days when kids would write letters to the North Pole, in the hopes that the real Santa Claus would read their Christmas wish lists and bring them the presents they wanted. Well, Dear Santa letters have finally caught up with the pace of technology, as many websites that claim to offer children a way to send their wish lists to the North Pole have been set up. According to the Augusta Chronicle, over 60 domain names relating to Dear Santa letters were already established by late November.

While helping your child craft an email to Santa might seem like a cute idea, there’s definitely reason for caution when  you use one of these third-party websites, particularly since these websites specifically cater to young children, who need the supervision of their parents when they’re online anyway. The Children’s Advertising Review Unit states that all websites that market to children should reveal the full name of the company and disclose whether they share any collected data with other companies. This policy may seem extreme, but is it so outrageous to demand to know who our children are communicating with online?

This non-profit review committee recommends that parents sit with their kids as they fill out their Santa letters and help them write a wish list that keeps their personal information safe. Children should not provide any physical description of themselves, nor should they give their real names or mailing addresses. Parents should also read over the site’s requirements to find out how much personal information the site asks children to provide. If a company requests more than a first name and a valid email address, the site may be intending to use this information for marketing purposes.

Image c/o: RambergMediaImages

→ Leave a comment

Posted in Online Privacy, Privacy News

Tagged , , , , , ,

Privacy Analysts Concerned About Facebook’s Use of Internet Cookies

Posted on November 19, 2011 by Tiffany| Leave a comment

Facebook, the largest social networking site in the world, has been the target of several online privacy complaints. Despite concerns about underage members and rumors of proposed member fees (later debunked), the Internet giant continues to grow and now claims over 800 million users, compared to 500 million users a year and a half ago. Now, though, privacy groups are expressing concern over the massive amount of private consumer data that Facebook collects, particularly from its members.

Through the use of Internet cookies, Facebook can obtain a user’s IP address, browser information, operating system, and a list of all websites visited that use a Facebook plug-in. (Facebook plug-ins are the widgets you see on websites that allow you to “share” what you read or “like” them on Facebook.) It gets worse for members of the site who browse the Internet while they are logged in to their accounts.

Facebook’s cookies monitor members’ full profile name, friends, email address, and “liked” pages during browsing. This means that the company could connect your browsing history with your personal Facebook account and know who you are and where you’re going online. According to company spokesman Arturo Bejar, Facebook does not match up browsing history with member profiles. He said “We’ve said that we don’t do it, and we couldn’t do it without some form of consent or disclosure.”

Industry analysts, though, aren

Image c/o: Thos003

→ Leave a comment

Posted in Privacy News

Tagged , , , ,

Federal Trade Commission Settles With Online Ad Network Over Privacy

Posted on November 19, 2011 by Tiffany| Leave a comment

Internet cookies are fast becoming one of the biggest causes for online privacy concerns. Most large websites, including Google, Facebook, and Amazon, use Internet cookies to temporarily track consumer data online. They then use this information to suggest products, make purchase recommendations, or promote specific advertisements based on your previous web search activity.

This past week, the Federal Trade Commission settled a privacy dispute with another website, ScanScout, over opt-out promises. The company had been promising site visitors they could opt out of ads if they chose to block cookies in their browser settings. Sounds fair, right? It wasn’t. ScanScout wasn’t using traditional HTTP cookies that could be blocked. Rather, the company was using Flash cookies, which store user information in a completely different place than HTTP cookies. That means that users couldn’t actually block those cookies, since they weren’t controlled by the browser.

The FTC alleged that by promising to provide consumer privacy controls that weren’t really available, ScanScout misrepresented its services and tricked users into believing they could keep their information private when they couldn’t really do so. An even bigger cause for concern is the fact that ScanScout got away with this for over three years, from April 2007 and December 2010.

Since the company didn’t charge any fees for this service, the FTC settlement is not a financial one. However, ScanScout will be required to display a message that clearly explains the company’s use of private user data and gives site visitors a defined way to opt out of the service.  The FTC will decide whether to make this decision final on December 8.

Image c/o: anomalous4

→ Leave a comment

Posted in Privacy News

Tagged , , , ,

Does Facebook’s New Timeline Violate User Privacy?

Posted on November 14, 2011 by Tiffany| Leave a comment

Are you on Facebook? If so, prepare to have your entire Facebook past broadcast over the wild World Wide Web. The massively popular social networking site is preparing to launch Facebook Timeline, a visual history of each user’s history on FB. That means that your previous pictures, posts, statuses, and links from as far back as 2004 will be available for viewing to all of the people in your friends list. If you have a profile that is open to the public, however, everyone who’s on the Internet can see your history, drunken wall posts and all.

According to the company, Timeline will allow you to “tell your life story with a new kind of profile”. But privacy experts and some FB users are worried about the possible effects of such a sweeping change. For example, if you have previously posted an explicit message or an ill-advised picture of yourself, this information may be available to anyone through Timeline. These changes could cause trouble for college students entering the workforce or for people in intimate relationships who have done things they regretted.

While the system will allow all users to decide who sees what parts of their history, those who have hundreds of friends may find it tedious to go through each aspect of their profile and choose who can see it. In the meantime, Facebook benefits from the increased brand exposure and the ability to target marketing ads directly to previous aspects of your profile. Posted a picture of yourself downing a Bud Light? Expect to see a Bud Light ad in your sidebar soon.

Overall, though, this shift demonstrates the need to exercise caution when posting anything online. Generally, users should be discreet about what they share, especially since they may be unable to remove it later. As one expert put it “If…you wouldn’t say something about yourself in a pub, you shouldn’t share it on Facebook.”

Image c/o: Sean MacEntee

→ Leave a comment

Posted in Privacy News

Tagged , , ,