Search Results for “Android Police”


July 26, 2019
Caroline Haskins / Motherboard

Caroline Haskins / Motherboard  
Amazon’s Ring Creates a Self-Perpetuating Neighborhood Surveillance Network by Secretly Enlisting Police Departments to Give Away Its Cameras

In an agreement that requires police to “keep the terms of this program confidential,” Amazon’s home security company Ring has enlisted local police departments around the country to advertise its surveillance cameras in exchange for free Ring products and a “portal” that allows police to request footage from these cameras according to one agreement obtained by Motherboard. In the agreement for Lakeland, Florida, police are contractually required to “Engage the Lakeland community with outreach efforts on the platform to encourage adoption of the platform/app.” Police departments under the deal must also assign officers to Ring-specific roles that include a press coordinator, a social media manager, and a community relations coordinator. For every Lakeland resident signed up under the town’s “neighborhood watch” app, called Neighbors, the police department gets credit toward more free Ring cameras for residents, creating a self-perpetuating surveillance network. One email suggests that there are dozens of unknown partnerships between Ring and local police departments in Florida alone.

Tweets:@wirecutter


August 6, 2019
Tara Seals / Threatpost

Tara Seals / Threatpost  
Google Partners With ARM to Implement Memory-Tagging Extension Feature to Tackle Memory Safety Flaws in Android Platform

Google has partnered with mobile silicon-maker ARM to implement a hardware-based bug detection solution for one of the largest vulnerabilities in the Android platform, memory-safety flaws. The new feature, called the memory-tagging extension (MTE),  helps mitigate these kinds of bugs by enabling easier detection of them. It has two execution modes: Precise mode, which provides more detailed information about the memory violation and imprecise mode, which has lower CPU overhead and is more suitable to be always-on.

August 14, 2019
Josh Taylor / The Guardian

Josh Taylor / The Guardian  
Biometrics, Unencrypted Credentials, Personal Information Exposed via Unprotected Database Used by Security Company for UK Police, Defense Contractors, Banks

The fingerprints of over 1 million people, as well as facial recognition information, unencrypted usernames and passwords, and personal information of employees in an unencrypted and unprotected database for Suprema, a security company used by the UK Metropolitan police, defense contractors and banks was discovered by Israeli security researchers Noam Rotem and Ran Loca working with VPN services company vpnmentor. Suprema is responsible for the web-based Biostar 2 biometrics lock system that allows centralized control for access to secure facilities such as warehouses or office buildings and uses fingerprints and facial recognition as part of its identification methods. The researchers had access to over 27.8m records, and 23 gigabytes-worth of data including admin panels, dashboards, fingerprint data, facial recognition data, face photos of users, unencrypted usernames and passwords, logs of facility access, security levels and clearance, and personal details of staff. The also discovered plain-text passwords of administrator accounts.

Related: VPNMentor, Verdict, Tech.Co, Hacker News: Newest, Help Net Security, The Sun, Computer Business Review, Daily Mail, Silicon Republic, ET news, Security Magazine, SC Magazine, Techerati, ZDNet Security, Engadget, Tech Insider, BiometricUpdate, The Register – Security, The Times of IsraelIT World Canada

 

 

Tweets:@grahamcluley

VPNMentor: Report: Data Breach in Biometric Security Platform Affecting Millions of Users
Verdict: WhatsApp fingerprint authentication bolsters Android Beta security
Tech.Co: Data Breach Exposes 2.8 Million People’s Fingerprint and Facial Recognition Details
Hacker News: Newest: Data Breach Has Exposed Millions of Fingerprint and Facial Recognition Records
Help Net Security : Huge database found leaking biometric, personal info of millions
The Sun: Brits warned as huge breach reveals MILLIONS of fingerprints and faces in hack of system used by UK banks and police
Computer Business Review: White Hats Breach Biometrics Database: 27.8 Million Records Exposed
Daily Mail : Huge data leak exposed the biometric data of MILLIONS of people
Silicon Republic: Biometric security firm used by UK police exposed 1m fingerprints
ET news: Lawmakers and ACLU push for California facial recognition ban
Security Magazine: New Face Recognition Test Falsely Matches CA Lawmakers with Mugshots
SC Magazine: BioStar 2 database leaked one million fingerprints, facial recognition data | SC Media
Techerati: Biometrics platform used by UK police stored millions of unhashed fingerprints on unsecured database
ZDNet Security: Major biometrics data leak impacts UK Metropolitan Police, banks, enterprise companies
Engadget: Massive biometric security flaw exposed more than one million fingerprints
Tech Insider: WeWork just filed for its IPO, and revealed a lengthy list of risk factors that investors should be aware of
BiometricUpdate: Millions of unencrypted biometric fingerprint and face records exposed to web in Suprema database
The Register – Security: Not very Suprema: Biometric access biz bares 27 million records and plaintext admin creds
The Times of Israel: Israeli experts say biometric firm exposed data of millions of people
IT World Canada: Researchers find huge database of fingerprints and facial recognition images on the internet

@grahamcluley: Security breach. Fingerprints, facial recognition and other personal information from biometrics system - used by banks, UK police and defence firms - discovered on publicly accessible database


August 28, 2019
Dan Goodin / Ars Technica

Dan Goodin / Ars Technica  
App With 100 Million Downloads on Google Play Store, CamScanner, Included Malicious Trojan Dropper That Executed Secret Payloads

An app, CamScanner, with 100 million downloads contained a malicious component that downloaded secret payloads onto infected Android devices, according to researchers at Kaspersky. Although a legitimate app that provided useful functions for scanning and managing documents for most of its life, CamScanner changed at some point to include an advertising library that contained a malicious module known as a “Trojan dropper,” which executed code from a designated server and then decrypted and executed it on an infected device. Kaspersky calls the module Trojan-Dropper.AndroidOS.Necro.n.

Related: BleepingComputer.com, Securelist, Kaspersky, TechSpot, NewsBytes App, GBHackers On Security, TechNadu, Memeburn, The Next Web, Infosecurity Magazine, The Register – Security, IT Wire, BGR, IBTimes India, Android Police, fossBytes, DNA India, ibtimes.sg : Top News, Tech.CoNDTV Gadgets360.com, SlashGear » security, PCMag.com

BleepingComputer.com: Android Trojan Infects Tens of Thousands of Devices in 4 Months
Securelist: An advertising dropper in Google Play
Kaspersky: Malicious Android app had more than 100 million downloads in Google Play
TechSpot: Malware discovered in Google Play app with over 100 million downloads
NewsBytes App: You need to uninstall the CamScanner app now: Here’s why
GBHackers On Security: Beware!! 100 Million Users Downloaded CamScanner PDF App Drops a Malware in Android Phone
TechNadu: Popular Android App ‘CamScanner’ Spreading Malware to Millions
Memeburn: CamScanner installs malware to your Android smartphone, security firm warns
The Next Web: Malware found in CamScanner’s document scanning Android app, which has over 100M downloads
Infosecurity Magazine: Trojanized CamScanner App Had 100 Million Google Play Downloads
The Register – Security: Android PDF app with just 100m downloads caught sneaking malware into mobes
IT Wire: CamScanner on Android contains malware
BGR : CamScanner removed from Google Play Store after it was found carrying malware
IBTimes India: CamScanner malware attack puts millions at risk: What should you do
Android Police: CamScanner booted from Play Store after discovery of malicious code
fossBytes: CamScanner Android App With 100M Downloads Found Loaded With Malware
DNA India: CamScanner removed from Google Play Store
ibtimes.sg : Top News: 100+ million users installed this PDF creator app with dangerous malware from Google Play
Tech.Co: One Google Play Malware App Saw Over 100 Million Downloads
NDTV Gadgets360.com: CamScanner App With Over 100 Million Downloads Removed From Google Play Store Over Advertising Malware
SlashGear » security: Popular CamScanner PDF OCR Android app discovered with malware inside
PCMag.com: Malware Discovered in Popular Android App CamScanner


August 19, 2019
Angela Moon, Paresh Dave / Reuters

Angela Moon, Paresh Dave / Reuters  
Google Shut Down Data Sharing Service With Mobile Carriers Due to Fear of Attracting Privacy Scrutiny by Regulators, Lawmakers, Sources

Google has shut down a free service, Google’s Mobile Network Insights service, it has provided since 2017 to wireless carriers globally that showed them weak spots in their network coverage, people familiar with the matter said, because of Google’s concerns that sharing data from users of its Android phone system might attract the scrutiny of users and regulators. The data from the service, which was actually shut down in April, came from devices running Google’s Android operating system, encompassing about 75% of the world’s smartphones. The service used data only from users who had opted into sharing location history and usage and diagnostics with Google and the data were aggregated, not explicitly linking any information to any individual phone user. Nevertheless, Google shut down the service out of fear that this initiative might attract the attention of regulators and lawmakers keen on enforcing stricter privacy rules.

Related: The Next Web, Android Authority, Android Police, San Jose Business News, PhoneArena, HotHardware.com, SlashGear, CNBC Technology, Engadget

Tweets:@nxthompson


August 30, 2019
Thomas Brewster / Forbes

Thomas Brewster / Forbes  
Google Boots Malicious Apps Idea Note and Beauty Fitness From Play Store Which Have Been Downloaded 1.5 Million Times

As many as 1.5 million Android users are having ads clicked for them in what appears to be shady practices by apps hosted on Google Play according to researchers at Symantec. Made by a developer called Idea Master, the shady apps, which have now been removed from Play Store, are Idea Note, a notepad app with more than 1 million downloads, and Beauty Fitness, a workout assistant with at least 500,000 downloads.

October 15, 2019
Stephanie Condon / ZDNet

Stephanie Condon / ZDNet  
Google Releases USB-C Titan Security Key Made by Yubico, Available for $40

Google announced it’s releasing a new USB-C Titan Security Key in partnership with the manufacturer Yubico. The key is used to protect users against evolving hacking and phishing methods attackers use to gain access to accounts and data and two-factor authentication for any site where FIDO security keys are supported. The device is compatible with Android, Chrome OS, macOS, and Windows devices. USB-C Titan Security Key comes with a hardware secure element chip that includes firmware engineered by Google to verify the key’s integrity, the same chip and firmware that the company uses in its existing USB-A/NFC and Bluetooth/NFC/USB Titan Security Key models manufactured in partnership with Feitian Technologies. The key is now available for $40 on the Google Store in the United States.

September 23, 2019
Lily Hay Newman / Wired

Lily Hay Newman / Wired  
Google Resumes Human Audio Review of Google Assistant Recordings but with Tighter User Control, Improved Filters to Catch Recordings Made in Error, Promises to ‘Vastly Reduce’ Stored Audio

After pausing human audio review of its Google Assistant recordings worldwide in July, Google said that human review will now resume with increased options for user data control. Google said that sending audio for review has never been the default mode on its devices but now Assistant users will be prompted to review their settings choice if their devices are currently opted in to the “Voice & Audio Activity” program that potentially sends recordings out for vetting. Google says it has also taken steps to improve filters meant to catch and immediately delete even more sensitive recordings made in error, those that are created when a smart speaker mistakenly thinks it has detected its so-called wake word. Google said it will further update the Google Assistant policies to “vastly reduce” the amount of audio data the company stores.

Related: Engadget, BetaNews, VentureBeat, ZDNet Security, 9to5Google, Android Authority, TechNadu, Slashdot, Z6 Mag, The Keyword, Fast Company, Threatpost, CNET, Android Police, 9to5Google, Engadget, Android Authority, VentureBeat

Tweets:@wagner_digital @josephfcox

Engadget: Google vows to never store Assistant recordings without permission
BetaNews: Google to automatically delete more audio recorded by Assistant and introduce new privacy protections
VentureBeat: Google Assistant no longer saves voice recordings by default
ZDNet Security: Google revamps privacy policy to give users more control over Assistant voice recordings
9to5Google: Assistant gaining ‘Hey Google’ hotword sensitivity setting, will store less audio data
Android Authority: Google pledges to reduce amount of audio recordings for Assistant
TechNadu: Google Assistant Will Return to Eavesdropping You, but With Your Permission
Slashdot: Google Loans Cameras To Volunteers To Fill Gaps in ‘Street View’
Z6 Mag: Users now need to opt-in before Google can save Google Assistant recordings
The Keyword: Doing more to protect your privacy with the Assistant
Fast Company: Google restarts human audio reviews of Assistant recordings with new safeguards in place
Threatpost: Google Assistant Audio Privacy Controls Updated After Outcry
CNET: Google Assistant updates seek to calm privacy concerns over human review
Android Police: Google Assistant improves privacy and adds sensitivity options for hotword detection
9to5Google: Assistant gaining ‘Hey Google’ hotword sensitivity setting, will store less audio data
Engadget: Google vows to never store Assistant recordings without permission
Android Authority: Google pledges to reduce amount of audio recordings for Assistant
VentureBeat: Google Assistant no longer saves voice recordings by default

@wagner_digital: Google revamps privacy policy to give users more control over Assistant voice recordings. You will be spared human eavesdroppers, too, unless you choose to opt-in. https://zd.net/30l5ZXp via @ZDNet & @SecurityCharlie
@josephfcox: After revelations human contractors were listening to Google Assistant recordings, Google suspended use of human contractors. Now, it's started the program up again with some changes in place https://blog.google/products/assistant/doing-more-protect-your-privacy-assistant/


September 19, 2019
Samantha Murphy Kelly / CNN

Samantha Murphy Kelly / CNN  
Facebook Launches $149 Portal TV Product With Camera and Smart Speaker Amid Privacy Backlash, Confirms Human Contractors Will Listen to Interactions

Embroiled in endless controversies over its privacy practices, Facebook announced it would take the concept of its Portal Product, a smart speaker with a screen, a step further with Portal TV, a $140 small black camera that can be clipped onto the top of users’ TVs or sit below them on a stand much like Roku or Apple TV. Despite marketing the device as “private by design,” Facebook confirmed that it may have contractors listen to recordings of user interactions with Portal TV and its other Portal devices, beginning when the wake word “Hey Portal” is spoken, in order to “improve the accuracy of voice services for everyone,” Andrew Bosworth, Facebook’s vice president of AR and VR, said the human reviews will be conducted by “trained vendors under very secure environments” and that users who are uncomfortable with this prospect can opt-out. Facebook also announced a redesigned 10-inch Portal at a reduced price ($179) and an 8-inch Portal Mini ($129).

Related: Vox, CNET, Futurism, San Francisco Chronicle, AP Breaking News, WRAL Tech Wire, AP Breaking News, channelnews, Popular Science, The Mac Observer, TechCrunch, Daily Mail, Quartz, Android Central, Investor’s Business Daily, MacRumorsBGR, Trusted Reviews, Android Police, Ubergizmo, Engadget, Wired, Facebook, The Verge, The Telegraph

Tweets:@dhh @mrjabbott @iansherr @rycrist @stevekovach

Vox: The techlash isn’t big enough to stop Facebook from selling video chat devices for your living room
CNET: Facebook Portal would be great for my kid, but then I have to trust Facebook
Futurism: Facebook: Actually, We Do Listen to You Sometimes
San Francisco Chronicle: Facebook slashes price, size of Portal video calling device
AP Breaking News: Facebook slashes price, size of Portal video call gadget
WRAL Tech Wire: Facebook cuts price on video call gadget, also offers smaller size
channelnews: New Facebook Portal TV Seen As A Security Risk
Popular Science: Facebook’s new Portal video chat devices are smaller, cheaper, and facing stiffer competition
The Mac Observer: Facebook Launches New Surveillance Devices For Your Home
TechCrunch: Daily Crunch: Facebook announces Portal TV
Daily Mail : Facebook can watch you at home: Firm launches Portal devices that lets users video chat
Quartz: Facebook is launching new Portal smart displays. But why?
Android Central : Facebook’s new Portal TV brings smart video calling to your television
Investor’s Business Daily: Facebook Expands Streaming Wars, Takes A Bite Out Of Roku
MacRumors: Facebook Announces ‘Portal TV’ for Streaming Content and Holding Video Calls
BGR: Facebook’s new Portal TV turns your television into a video chat monitor
Trusted Reviews: Facebook swears Portal devices won’t spy, but will use data for adverts
Android Police: Facebook refreshes Portal family, adds new Mini model and camera-only option for TVs
Ubergizmo: Facebook Unveiled The Portal TV For $149
Engadget: Facebook’s $149 Portal TV turns your television into a giant smart display
Wired: The Facebook Portal Smart Speaker Is Back, Now With More AI
Facebook: Meet the New Portal Family: Smart Video Calling on Your TV and Anywhere in Your Home
The Verge: Facebook introduces Portal TV, a video chat camera accessory for your television
The Telegraph: Facebook Portal security concerns laid bare as company admits humans can listen in

@dhh: Oh great. Facebook Google, et al are spying on you through your smart TV as well. Wouldn't want to miss an opportunity to exploit every waken minute of the day for more data collection. Surveillance capitalism is the fucking worst.
@mrjabbott: If you buy this Facebook Portal TV thing I will never go to your house.
@iansherr: Facebook Portal would be great for my kid, but then I have to trust Facebook
@rycrist: Facebook Portal and your privacy: Here's everything you should think about before buying in. My latest explainer for @CNET
@stevekovach: Very weird $ROKU would fall on Facebook Portal news. Zero indication these devices are selling. Comcast streaming box more of threat since it comes from the company already providing internet to customers.


August 23, 2019
Stephen Shankland / CNET

Stephen Shankland / CNET  
Google Unveils Vision for ‘Privacy Sandbox’ to Allow Advertisers to Target User Interests While Protecting Privacy

Google’s Chrome team has outlined a vision for a “privacy sandbox” that’s designed to give users ads that publishers can target their interests but that don’t infringe upon their privacy. The privacy sandbox would restrict tracking technology in much the same way that the browser already restricts malware, offering “a secure environment for personalization that also protects user privacy.” For example, Chrome would restrict some private data to the browser until it’s shared across a large group of people using technologies called differential privacy and federated learning which uses machine learning software in the browser itself to assess people’s interests. It would also use a trust token that advertisers and publishers can use to reduce ad fraud by grouping web users into two segments, along with conversion measurement technology that’ll let advertisers figure out which ads lead to successful outcomes like people buying an advertised product. Finally, Google envisions a”privacy budget” that would limit how much personal information a website can access to prevent so-called fingerprinting.

Related: 9to5Google, EFF, Android Police, The Drum, PYMNTS.com, HotHardware.com, Vox, Techradar, Tech Insider, SC Magazine, ZDNet Security, The Mac Observer, CNET News, BGR, Digital Trends, The Register – Security, Engadget, Slashdot, Threatpost, Fortune,Tech Wire Asia, Chromium Blog, The Chromium Projects, The Keyword, NewsBytes App, BetaNews, NDTV Gadgets360.com, The Next Web, Security – Computing, Neowin, The Hacker News

Tweets:@BrendanEich

9to5Google: Google announces ‘Privacy Sandbox’ initiative to build a more private web
EFF: Browsers Take a Stand Against Kazakhstan’s Invasive Internet Surveillance
Android Police: Google wants to create new ‘Privacy Sandbox’ standards for online advertising and browsers
The Drum: ‘A blow to the fight for a fairer programmatic industry’: the inside story of how KPEX fell apart
PYMNTS.com: New Google Initiative Limits Tracking Of Web Users
HotHardware.com: Google Announces Chrome Sandbox Functionality To Further Enhance User Privacy
Vox: Google says it’s making Chrome more private, but advertisers will still track you
Techradar: Android 10 release date, new features and everything you need to know
Tech Insider: Google pushed an exception through to allow US Customs and Border Protection to try a key cloud product free, even as 1,300 Google employees protest any work with the agency (GOOG, GOOGL)
SC Magazine: AhMyth –based malicious app found in Google Play | SC Media
ZDNet Security: Chrome devs propose Privacy Sandbox to balance ad targeting and user privacy
The Mac Observer: Google Privacy Sandbox Probably Won’t Protect Your Privacy
BGR: Google’s new privacy standards want to save us from creepy ad practices
Digital Trends: Google plans to increase privacy online via its new Privacy Sandbox initiative
The Register – Security: As browser rivals block third-party tracking, Google pitches ‘Privacy Sandbox’ peace plan
Engadget: Google proposes new privacy standards to protect web browsing data
Slashdot: Google Chrome Proposes ‘Privacy Sandbox’ To Reform Advertising Evils
Threatpost: Google Launches Open-Source Browser Extension for Ad Transparency
Fortune: How Google’s Plan to Increase Your Online Privacy Differs from Apple and Firefox Ideas
Tech Wire Asia: Can Google’s Privacy Sandbox protect the future of the vibrant web?
Chromium Blog: Potential uses for the Privacy Sandbox
The Chromium Projects: privacy-sandbox
The Keyword: Building a more private web
NewsBytes App: Google plans to make web browsing more private: Here’s how
BetaNews: Google seeks to make the web more private for Chromium users with Privacy Sandbox
NDTV Gadgets360.com: Google’s Privacy Sandbox Initiative to Protect Users’ Privacy on Web
The Next Web: Google follows Apple with its own anti-tracking policy for Chromium-based browsers
Security – Computing: Google proposes alternative plan to improve web privacy – while keeping the ad tech industry onside
Neowin: Google wants to help protect your privacy on the web
The Hacker News: Google Proposes ‘Privacy Sandbox’ to Develop Privacy-Focused Ads

@BrendanEich: Unlike Brave, no user revenue share! Otherwise sounds like a personal-data-leaky subset of what we do. In conjunction with obstruction of privacy work at W3C, this looks like weak sauce in a misleading "privacy matters" bottle, from a conflicted superpower that dominates the W3C.