Mark Richards @markalanrichards@librem.one

https://markalanrichards.com/posts/2024-04-21-chinese-backdoor-to-uk-bank/

Will this be the next Post Office Scandal?

Most UK banks give remote access to customer accounts to various third parties, in one case including a Chinese firm the bank likely has no contract with.

Access would appear as customers’, includes to users passwords and allows spoofing of bank features.

It’s not just banks, get in touch if you are worried about any sites you use.

They can be you!

https://theycanbeyou.com/

The computer said you did it: Who doesn't have remote access to your bank account? thttps://markalanrichards.com/posts/2024-01-23-the-computer-said-you-did-it/

Bitrot happens. Love with it

https://www.theguardian.com/uk-news/2023/jul/15/revealed-metropolitan-police-shared-sensitive-data-about-victims-with-facebook

Another kids charity and one that isn’t afraid to tell you that it’s sharing kids data with adtech https://kidsharms.com/coram-voice/#article

Kids in crisis should have respect for their privacy.

Instead another children’s charity using ad tech to track their behaviour.

https://kidsharms.com/buttle/

Another children’s charity directing kids to online harms, tries to remedy it by removing YouTube and instead ends up with Vimeo.

Better? Maybe, but Vimeo isn’t so far from YouTube that I would recommend it as the type of site you want troubled kids on… kids who are actively trying to find material for depression could run into who knows what… search around and you’ll see.

How hard is it for kids charities to host support videos on their own site?

https://kidsharms.com/the-childrens-society/

@MishaalRahman any ideas how wild the keys are? Not that it makes things much safer, but I am sure some infosec folks might enjoy playing with signing their own apps for research. Sadly my current phone is not Android so I will miss out the fun either way.

@openrightsgroup

Sorry for the content links here to explain a problem (I am happy to delete this if requested).

If you open a private browser and visit https://www.youtube.com/watch?v=zzk2Gmi8A1E you will see it requires an account to verify age.

If you then visit https://www.youtube.com/watch?v=i0jstgVnhxo you will notice there is no verification of age.

What is the point of mandating age verification, if platforms cannot categorise the age appropriateness of their content in the first place?

NSPCC (Childline) wants troubled kids visiting YouTube when looking for support content - an online harms site that invades their privacy.

This flies in the face of their campaigns to protect children from online harms, leading some of the most vulnerable to one of the platforms that poses a high risk to them.

#gdpr #privacy #onlineharms #nspcc #childline

https://kidsharms.com/

@kyle at least they're speaking out, it could be worse. I'm interested in reading more on this topic, are the alternatives in the realms of gpg or Blockchain? Have I missed other technologies? In either case, I've not read enough to try to push for something better myself so keen to learn.

Open rights group are raising funds to take legal action against the UK data protection authority (ICO) for failing to act on adtech invasion of privacy
https://action.openrightsgroup.org/help-us-protect-your-data-illegal-ads

I don't think any Covid19 tracking app can avoid increasing the opportunity for law enforcement surveillance.
However, I do think the risks can be minimised, law enforcement and the public can be made aware of the increased capability and democratic systems can not only make the right decision for here and now in a pandemic, but know what to stop doing when the elevated risks are over.
https://eandt.theiet.org/content/articles/2020/05/developers-find-new-flaws-in-source-code-of-nhs-contract-tracing-app/

I've been part of a very interesting discussion about software lifecycle process.

If you haven't designed a process for how your team works, then try it.

You should approach the design with a problem solving methodology that works well with collaborators and includes others in the discussion beyond your team.

It forces you to ask the questions of what do the people around you need and what is an effective way to ensure their needs are met.

Time box it and keep it simple to start with.

@pinkelephant@infosec.exchange
Masks do impact the amount of viral particles you are exposed to.
https://www.theguardian.com/world/2020/mar/27/can-a-face-mask-protect-me-from-coronavirus-covid-19-myths-busted

Whether they reduce it enough to impact whether you receive an infection dose and whether that infectious dose size relates to severity of symptoms it doesn't seem clear.

This is an interest read...

https://www.newscientist.com/article/2238819-does-a-high-viral-load-or-infectious-dose-make-covid-19-worse/#

If you are in a country with a shortage, don't buy them unless you're in a higher risk category.
Otherwise, it doesn't hurt to use one, it may help