Pinboard (jm)
https://pinboard.in/u:jm/public/
recent bookmarks from jmcryptoshredding2018-11-28T18:58:22+00:00
https://news.ycombinator.com/item?id=18554327
jmpii gdpr privacy data-protection crypto cryptoshredding deletion codinghttps://pinboard.in/https://pinboard.in/u:jm/b:5e168bb0dc66/Data Protection Mishap Leaves 55M Philippine Voters at Risk2016-04-12T10:12:34+00:00
http://blog.trendmicro.com/trendlabs-security-intelligence/55m-registered-voters-risk-philippine-commission-elections-hacked/
jmEvery registered voter in the Philippines is now susceptible to fraud and other risks after a massive data breach leaked the entire database of the Philippines’ Commission on Elections (COMELEC). While initial reports have downplayed the impact of the leak, our investigations showed a huge number of sensitive personally identifiable information (PII)–including passport information and fingerprint data–were included in the data dump. [....]
Based on our investigation, the data dumps include 1.3 million records of overseas Filipino voters, which included passport numbers and expiry dates. What is alarming is that this crucial data is just in plain text and accessible to everyone. Interestingly, we also found a whopping 15.8 million record of fingerprints and a list of people running for office since the 2010 elections.
In addition, among the data leaked were files on all candidates running on the election with the filename VOTESOBTAINED. Based on the filename, it reflects the number of votes obtained by the candidate. Currently, all VOTESOBTAINED file are set to have NULL as figure.
]]>fingerprints biometrics philippines authentication data-dumps security hacks comelec e-voting pii passports votinghttps://pinboard.in/https://pinboard.in/u:jm/b:40999081928a/User data plundering by Android and iOS apps is as rampant as you suspected2015-11-05T10:53:30+00:00
http://arstechnica.com/security/2015/11/user-data-plundering-by-android-and-ios-apps-is-as-rampant-as-you-suspected/
jmAn app from Drugs.com, meanwhile, sent the medical search terms "herpes" and "interferon" to five domains, including doubleclick.net, googlesyndication.com, intellitxt.com, quantserve.com, and scorecardresearch.com, although those domains didn't receive other personal information.
]]>privacy security google tracking mobile phones search piihttps://pinboard.in/https://pinboard.in/u:jm/b:1a81e1400333/Epsilon Interactive breach the Fukushima of the Email Industry (CAUCE)2015-03-10T12:15:14+00:00
http://www.cauce.org/2011/04/epsilon-interactive-breach-the-fukushima-of-the-email-industry.html
jmUpon gaining access to an ESP, the criminals then steal subscriber data (PII such as names, addresses, telephone numbers and email addresses, and in one case, Vehicle Identification Numbers). They then use ESPs’ mailing facility to send spam; to monetize their illicit acquisition, the criminals have spammed ads for fake Adobe Acrobat and Skype software.
On March 30, the Epsilon Interactive division of Alliance Data Marketing (ADS on NASDAQ) suffered a massive breach that upped the ante, substantially. Email lists of at least eight financial institutions were stolen.
Thus far, puzzlingly, Epsilon has refused to release the names of compromised clients. [...] The obvious issue at hand is the ability of the thieves to now undertake targeted spear-phishing problem as critically serious as it could possibly be.
]]>cauce epsilon-interactive esp email pii data-protection spear-phishing phishing identity-theft security adshttps://pinboard.in/https://pinboard.in/u:jm/b:3343947e41a3/Apple Pay suffering fraud problems2015-01-30T22:32:33+00:00
http://www.droplabs.co/?p=1204
jmFraud in Apple Pay will in time, come to be managed – but the fact that easily available PII can waylay best in class protection should give us all pause.
]]>fraud apple apple-pay pii identity-thefthttps://pinboard.in/https://pinboard.in/u:jm/b:a6a16bc500d5/ACS Law, MediaCAT ruling could kill the [UK Digital Economy Act]2011-02-13T22:09:47+00:00
http://www.thinq.co.uk/2011/2/10/acs-law-mediacat-ruling-could-kill-dea/
jmip-addresses pii privacy torrents acs-law dea uk lawhttps://pinboard.in/u:jm/b:add0b6c94846/P2P investigations now illegal in Switzerland2010-09-13T13:57:34+00:00
http://arstechnica.com/tech-policy/news/2010/09/switzerland-gathering-ip-addresses-from-bittorrent-sites-illegal.ars
jmp2p privacy ip-addresses pii logistep switzerland piracyhttps://pinboard.in/u:jm/b:a3dfd54ce49e/