Forwarded from cRyPtHoN™ INFOSEC (EN)
Mark Zuckerberg says Facebook has been an 'innovator in privacy'
- Facebook CEO Mark Zuckerberg said Facebook is an "innovator in privacy" despite criticisms of the company's own lapses.
- In a discussion with Harvard law professor Jonathan Zittrain, Zuckerberg said Facebook has long been focused on private messaging.
- Zuckerberg said encrypted messaging on platforms like WhatsApp gives consumers assurance that governments aren't eavesdropping on them.
Despite the numerous privacy scandals Facebook has faced of late, CEO Mark Zuckerberg calls the company an "innovator in privacy."
https://www.cnbc.com/2019/02/20/zuckerberg-says-facebook-has-been-an-innovator-in-privacy.html
#DeleteFacebook
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
- Facebook CEO Mark Zuckerberg said Facebook is an "innovator in privacy" despite criticisms of the company's own lapses.
- In a discussion with Harvard law professor Jonathan Zittrain, Zuckerberg said Facebook has long been focused on private messaging.
- Zuckerberg said encrypted messaging on platforms like WhatsApp gives consumers assurance that governments aren't eavesdropping on them.
Despite the numerous privacy scandals Facebook has faced of late, CEO Mark Zuckerberg calls the company an "innovator in privacy."
https://www.cnbc.com/2019/02/20/zuckerberg-says-facebook-has-been-an-innovator-in-privacy.html
#DeleteFacebook
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
This media is not supported in your browser
VIEW IN TELEGRAM
Always up to date with the
✅ Latest Vulnerabilitys.
✅ Latest Patches.
✅ Privacy and democracy Breaches.
✅ Security Breaches.
✅ InfoSec and other worldwide cybersecurity news.
🇬🇧
https://news.1rj.ru/str/cRyPtHoN_INFOSEC_EN
🇪🇸
https://news.1rj.ru/str/cRyPtHoN_INFOSEC_ES
🇩🇪
https://news.1rj.ru/str/cRyPtHoN_INFOSEC_DE
✅ Latest Vulnerabilitys.
✅ Latest Patches.
✅ Privacy and democracy Breaches.
✅ Security Breaches.
✅ InfoSec and other worldwide cybersecurity news.
🇬🇧
https://news.1rj.ru/str/cRyPtHoN_INFOSEC_EN
🇪🇸
https://news.1rj.ru/str/cRyPtHoN_INFOSEC_ES
🇩🇪
https://news.1rj.ru/str/cRyPtHoN_INFOSEC_DE
My protonmail account was blocked with no reason
Coming back to the subject at hand, your account is was disabled because you are the suspect in a case of criminal fraud and theft, and there has been a request to disable your account, to prevent the theft from occurring. You have been accused of being involved in cryptocurrency theft. As this is a criminal case, it will most likely be heard by the State of Geneva's prosecutor's office. You will of course have the opportunity to present a defense in court, should you wish to reveal your identity in court, and should you prevail, the courts will also mandate the restoration of your account.
https://np.reddit.com/r/ProtonMail/comments/atv7c1/my_protonmail_account_was_blocked_with_no_reason/eh4cb1s/
#ProtonMail
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Coming back to the subject at hand, your account is was disabled because you are the suspect in a case of criminal fraud and theft, and there has been a request to disable your account, to prevent the theft from occurring. You have been accused of being involved in cryptocurrency theft. As this is a criminal case, it will most likely be heard by the State of Geneva's prosecutor's office. You will of course have the opportunity to present a defense in court, should you wish to reveal your identity in court, and should you prevail, the courts will also mandate the restoration of your account.
https://np.reddit.com/r/ProtonMail/comments/atv7c1/my_protonmail_account_was_blocked_with_no_reason/eh4cb1s/
#ProtonMail
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Forwarded from BlackBox (Security) Archiv
Media is too big
VIEW IN TELEGRAM
📺🇬🇧 China: How Xi Jinping´s surveillance state becomes reality
What if a surveillance state becomes reality? In China George Orwell´s classic 1984 seems happening now as a surveillance state is infiltrating daily life. Is China´s President Xi Jinping heading China into a complete surveillance state? Has China already become an all-seeing state that records all citizen´s bad actions?
📺 https://www.youtube.com/watch?v=v1BTmfxAJqQ
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
What if a surveillance state becomes reality? In China George Orwell´s classic 1984 seems happening now as a surveillance state is infiltrating daily life. Is China´s President Xi Jinping heading China into a complete surveillance state? Has China already become an all-seeing state that records all citizen´s bad actions?
📺 https://www.youtube.com/watch?v=v1BTmfxAJqQ
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Developer of Maps (F-Droid) needs help. It seems there is no possibility to use the official maps.me map server anymore (or a mirror), the only option is building our own maps. He is looking for people who could kindly provide a server with updates for the whole planet. It takes more than 3 days to generate the data and about 400GB of free space.
If you're interesting, here are the details: https://gitlab.com/axet/omim/issues/77
#maps #fd #fdroid
If you're interesting, here are the details: https://gitlab.com/axet/omim/issues/77
#maps #fd #fdroid
New AOSDP for whyred (Xiaomi Redmi Note 5 pro) build is up!
AOSDP-9.0-Alpha-whyred-20190224
Changelog:
Stay tuned for more stuff, that's it for today, more builds coming to OP3 and Poco Phone.
You can say your suggestions for other devices, also could give a try to build yourself🙂
AOSDP Channel:
https://news.1rj.ru/str/AOSDPx
Group: https://news.1rj.ru/str/joinchat/IUxM9UsgzMa39dhnldhD0g
Sources
https://github.com/AOSDP
#aosdp
AOSDP-9.0-Alpha-whyred-20190224
Changelog:
Added MicroG support
Hardened frameworks base and Settings
[Disabled Bluetooth by default
Hide sensitive information by default on lockscreen
Require unlocking to use nfc, bluetooth, airplane, wifi, rotation, data saver, cellular and battery saver qs noscript
Increased default maxium password lenght
Changed DNS fallback from Google to DNS Watch
Added MAC randomization]
Added VoLIT icon
Little bug fixes/improvments
Changed DarkLauncher iconStay tuned for more stuff, that's it for today, more builds coming to OP3 and Poco Phone.
You can say your suggestions for other devices, also could give a try to build yourself🙂
AOSDP Channel:
https://news.1rj.ru/str/AOSDPx
Group: https://news.1rj.ru/str/joinchat/IUxM9UsgzMa39dhnldhD0g
Sources
https://github.com/AOSDP
#aosdp
Telegram
AOSDP
Android Open Source Dark Project announcements, news, info and groups.
Forwarded from cRyPtHoN™ INFOSEC (EN)
Malspam campaign fakes Google reCAPTCHA images to fool victims
A recently discovered malspam campaign targeting customers of a Polish bank was found using forgeries of Google reCAPTCHA images to fake legitimacy.
https://www.scmagazineuk.com/malspam-campaign-fakes-google-recaptcha-images-fool-victims/article/1562714
Read Via Telegram
#malspam #deletegoogle #captcha
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
A recently discovered malspam campaign targeting customers of a Polish bank was found using forgeries of Google reCAPTCHA images to fake legitimacy.
https://www.scmagazineuk.com/malspam-campaign-fakes-google-recaptcha-images-fool-victims/article/1562714
Read Via Telegram
#malspam #deletegoogle #captcha
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Facebook, Google, Twitter - your lying company policy disgusts me!
Whether it's fake news, hate, crimes or data GAU - Mark Zuckerberg, Sheryl Sandberg or Susan Wojcicki from the Youtube conspiracy platform have no answer to the question of how to get the lid back on Pandora's can. Hence my appeal to all politicians to read this:
How long are you going to say that you are innocent of the growing polarization of our society, of the erosion of democracy? Who gives you the right to knowingly spread hate and lies, spy on us and sell our data just because you can?
For a long time I bit my lips, convinced myself that excesses are part of it, on the way from startup to global corporation. But my understanding of your irresponsibility is completely exhausted. If you ask me, you should be so thoroughly regulated that the servers are smoking at you! Your top management should be ordered to obligatory courses in ethics and humanism, preferably for the rest of your life.
📡@NoGoolag
#DeleteFacebook
Whether it's fake news, hate, crimes or data GAU - Mark Zuckerberg, Sheryl Sandberg or Susan Wojcicki from the Youtube conspiracy platform have no answer to the question of how to get the lid back on Pandora's can. Hence my appeal to all politicians to read this:
How long are you going to say that you are innocent of the growing polarization of our society, of the erosion of democracy? Who gives you the right to knowingly spread hate and lies, spy on us and sell our data just because you can?
For a long time I bit my lips, convinced myself that excesses are part of it, on the way from startup to global corporation. But my understanding of your irresponsibility is completely exhausted. If you ask me, you should be so thoroughly regulated that the servers are smoking at you! Your top management should be ordered to obligatory courses in ethics and humanism, preferably for the rest of your life.
📡@NoGoolag
#DeleteFacebook
How Google, Microsoft, and Big Tech Are Automating the Climate Crisis
In a deal that made few ripples outside the energy industry, two very large but relatively obscure companies, Rockwell Automation and Schlumberger Limited, announced a joint venture called Sensia.
The new company will “sell equipment and services to advance digital technology and automation in the oilfield,” according to the Houston Chronicle. Yet the partnership has ramifications far beyond Houston’s energy corridor: It’s part of a growing trend that sees major tech companies teaming with oil giants to use automation, AI, and big data services to enhance oil exploration, extraction, and production.
Rockwell is the world’s largest company that is dedicated to industrial automation, and Schlumberger, a competitor of Halliburton, is the world’s largest oilfield services firm. Sensia will be, according to the press release, “the first fully integrated digital oilfield automation solutions provider.” It will enable drilling rigs to run on automated schedules, enhance communication between oilfield equipment, and help machinery assess when it is in need of repair or modification—all in the name of making drilling for oil smarter, cheaper, and more efficient.
As the Chronicle put it, Sensia will “help producers churn out more oil and gas with fewer workers.” Which, of course, is precisely the opposite of what needs to be happening in regards to the churning out of oil right now.
The specter of catastrophic climate change has never loomed so large. The most recent major United Nations report by the world’s top climate scientists concluded we have just over a decade to draw down emissions to the point that we might avoid runaway climate change and the soaring temperatures and rising sea levels that will accompany it.
Read the whole story on TG 👇
https://news.1rj.ru/str/BlackBox_Archiv/129
#google #microsoft #BigTech #BigOil #ClimateCrisis
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
In a deal that made few ripples outside the energy industry, two very large but relatively obscure companies, Rockwell Automation and Schlumberger Limited, announced a joint venture called Sensia.
The new company will “sell equipment and services to advance digital technology and automation in the oilfield,” according to the Houston Chronicle. Yet the partnership has ramifications far beyond Houston’s energy corridor: It’s part of a growing trend that sees major tech companies teaming with oil giants to use automation, AI, and big data services to enhance oil exploration, extraction, and production.
Rockwell is the world’s largest company that is dedicated to industrial automation, and Schlumberger, a competitor of Halliburton, is the world’s largest oilfield services firm. Sensia will be, according to the press release, “the first fully integrated digital oilfield automation solutions provider.” It will enable drilling rigs to run on automated schedules, enhance communication between oilfield equipment, and help machinery assess when it is in need of repair or modification—all in the name of making drilling for oil smarter, cheaper, and more efficient.
As the Chronicle put it, Sensia will “help producers churn out more oil and gas with fewer workers.” Which, of course, is precisely the opposite of what needs to be happening in regards to the churning out of oil right now.
The specter of catastrophic climate change has never loomed so large. The most recent major United Nations report by the world’s top climate scientists concluded we have just over a decade to draw down emissions to the point that we might avoid runaway climate change and the soaring temperatures and rising sea levels that will accompany it.
Read the whole story on TG 👇
https://news.1rj.ru/str/BlackBox_Archiv/129
#google #microsoft #BigTech #BigOil #ClimateCrisis
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
NanoDroid
NanoDroid is a microG installer (by Setialpha) that can install MicroG either in system or systemlessly (as a Magisk module)
🌏Web:
https://nanolx.org/nanolx/nanodroid
📚 Guide:
https://gitlab.com/Nanolx/NanoDroid
📝 Changelog:
https://gitlab.com/Nanolx/NanoDroid/blob/master/ChangeLog.md
Stable downloads:
https://downloads.nanolx.org/NanoDroid/Stable
Beta downloads:
https://downloads.nanolx.org/NanoDroid/Beta
🗣 XDA:
https://forum.xda-developers.com/apps/magisk/module-nanodroid-5-0-20170405-microg-t3584928
📲 F-Droid repo
http://nanolx.org/fdroid/repo
Link to add:
https://nanolx.org/fdroid/repo?fingerprint=862ED9F13A3981432BF86FE93D14596B381D75BE83A1D616E2D44A12654AD015
🆚 The full list of differences compared to upstream microG can be read here:
https://github.com/Nanolx/android_packages_apps_GmsCore#changes
Nanodroid zips:
♦️NanoDroid-*.zip
--This is the biggest zip and full of other foss apps, terminal utilities and the best Legend of Zelda ringtones and sounds.
--Flash either this or the MicroG zip.
♦️NanoDroid-microG-*.zip
--The real package. Contains MicroG stuff and patched Play Store.
--Flash either this or the full NanoDroid zip. This is recommended.
♦️NanoDroid-BromiteWebView-*.zip
--Contains the Bromite webview. Currently the easiest way to intall it.
♦️NanoDroid-fdroid-*.zip
--Contains F-droid and its privileged extension. The full zip already includes FDroid.
♦️NanoDroid-OsmAnd-*.zip
--Contains the OsmAnd maps application along with a contour lines plugin to be installed as system (not sure what good that will do)
♦️NanoDroid-patcher-*.zip
--Signature spoofing enabler.
♦️NanoDroid-setupwizard-*.zip
--Aroma setup wizard for MicroG nanodroid. Either use this, or default settings.
♦️NanoDroid-systest-*.zip
--If you face issues with NanoDroid installation, flash this and it will create logs which you can send to the dev.
♦️NanoDroid-uninstaller-*.zip
--Self-explanatory.
(Note: * = latest version)
🏗 Steps to Install NanoDroid are:
NOTE: Do this on a clean flash of the ROM. That is, wipe Data, Cache and System, and flash your ROM again. (Otherwise you may have permission problems and battery drain.) Optionally, flash Magisk.
Make sure your ROM supports Signature Spoofing. Check #sigspoof
1. After installing your rom and TWRP, reboot before doing anything. This initalizes folders necessary for patching/installation
2. Flash NanoDroid-setupwizard-*.zip and configure your install.
3. If sig spoofing isn't included in your ROM or doesn't work, Flash the NanoDroid patcher. If you're on P, make sure you deodex first!
4. Flash either the NanoDroid-*.zip or NanoDroid-microG-*.zip.
5. Optionally, flash these zips: NanoDroid-BromiteWebView-*.zip, NanoDroid-fdroid-*.zip and Nanodroid-OsmAnd-*.zip.
6. Setup MicroG using the microg #guide.
Report problems with NanoDroid here:
https://forum.xda-developers.com/apps/magisk/module-nanomod-5-0-20170405-microg-t3584928/
📡 @NoGoolag
#nanodroid #microg #guide
NanoDroid is a microG installer (by Setialpha) that can install MicroG either in system or systemlessly (as a Magisk module)
🌏Web:
https://nanolx.org/nanolx/nanodroid
📚 Guide:
https://gitlab.com/Nanolx/NanoDroid
📝 Changelog:
https://gitlab.com/Nanolx/NanoDroid/blob/master/ChangeLog.md
Stable downloads:
https://downloads.nanolx.org/NanoDroid/Stable
Beta downloads:
https://downloads.nanolx.org/NanoDroid/Beta
🗣 XDA:
https://forum.xda-developers.com/apps/magisk/module-nanodroid-5-0-20170405-microg-t3584928
📲 F-Droid repo
http://nanolx.org/fdroid/repo
Link to add:
https://nanolx.org/fdroid/repo?fingerprint=862ED9F13A3981432BF86FE93D14596B381D75BE83A1D616E2D44A12654AD015
🆚 The full list of differences compared to upstream microG can be read here:
https://github.com/Nanolx/android_packages_apps_GmsCore#changes
Nanodroid zips:
♦️NanoDroid-*.zip
--This is the biggest zip and full of other foss apps, terminal utilities and the best Legend of Zelda ringtones and sounds.
--Flash either this or the MicroG zip.
♦️NanoDroid-microG-*.zip
--The real package. Contains MicroG stuff and patched Play Store.
--Flash either this or the full NanoDroid zip. This is recommended.
♦️NanoDroid-BromiteWebView-*.zip
--Contains the Bromite webview. Currently the easiest way to intall it.
♦️NanoDroid-fdroid-*.zip
--Contains F-droid and its privileged extension. The full zip already includes FDroid.
♦️NanoDroid-OsmAnd-*.zip
--Contains the OsmAnd maps application along with a contour lines plugin to be installed as system (not sure what good that will do)
♦️NanoDroid-patcher-*.zip
--Signature spoofing enabler.
♦️NanoDroid-setupwizard-*.zip
--Aroma setup wizard for MicroG nanodroid. Either use this, or default settings.
♦️NanoDroid-systest-*.zip
--If you face issues with NanoDroid installation, flash this and it will create logs which you can send to the dev.
♦️NanoDroid-uninstaller-*.zip
--Self-explanatory.
(Note: * = latest version)
🏗 Steps to Install NanoDroid are:
NOTE: Do this on a clean flash of the ROM. That is, wipe Data, Cache and System, and flash your ROM again. (Otherwise you may have permission problems and battery drain.) Optionally, flash Magisk.
Make sure your ROM supports Signature Spoofing. Check #sigspoof
1. After installing your rom and TWRP, reboot before doing anything. This initalizes folders necessary for patching/installation
2. Flash NanoDroid-setupwizard-*.zip and configure your install.
3. If sig spoofing isn't included in your ROM or doesn't work, Flash the NanoDroid patcher. If you're on P, make sure you deodex first!
4. Flash either the NanoDroid-*.zip or NanoDroid-microG-*.zip.
5. Optionally, flash these zips: NanoDroid-BromiteWebView-*.zip, NanoDroid-fdroid-*.zip and Nanodroid-OsmAnd-*.zip.
6. Setup MicroG using the microg #guide.
Report problems with NanoDroid here:
https://forum.xda-developers.com/apps/magisk/module-nanomod-5-0-20170405-microg-t3584928/
📡 @NoGoolag
#nanodroid #microg #guide
GitLab
Christopher Roy Bratusek / NanoDroid · GitLab
microG, F-Droid, GNU Bash, FOSS applications and more for Android
China blocks 17.5 million plane tickets for people without enough 'social credit'
Would-be passengers blacklisted for offences as minor as walking dogs without lead.
The Chinese government blocked 17.5 million would-be plane passengers from buying tickets last year as a punishment for offences including the failure to pay fines, it emerged.
Some 5.5 million people were also barred from travelling by train under a controversial “social credit” system which the ruling Communist Party claims will improve public behaviour.
The penalties are part of efforts by president Xi Jinping‘s government to use data-processing and other technology to tighten control on society.
Human rights activists warn the system is too rigid and may lead to people being unfairly blacklisted without their knowledge, while US vice-president Mike Pence last year denounced it as “an Orwellian system premised on controlling virtually every facet of human life”.
Authorities have experimented with social credit in parts of China since 2014. Points are deducted for breaking the law, but also, in some areas, for offences as minor as walking a dog without a lead.
Offences punished last year also included false advertising and violating drug safety rules, said China’s National Public Credit Information Centre. It gave no details of how many people live in areas with social credit systems.
Social credit is one facet of efforts by the ruling party to take advantage of increased computing power, artificial intelligence and other technology to track and control the Chinese public.
In 2000 the police ministry launched an initiative dubbed “Golden Shield” to build a nationwide digital network to track individuals.
The ruling party is spending heavily to roll out facial recognition systems, and human rights activists say people in Muslim and other areas with high ethnic minority populations have been compelled to give blood samples for a genetic database.
Those systems rely heavily on foreign technology, which has prompted criticism of US and European suppliers for enabling human rights abuses.
#MassSurveillance #China #why #GoldenShield #HumanRights
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Would-be passengers blacklisted for offences as minor as walking dogs without lead.
The Chinese government blocked 17.5 million would-be plane passengers from buying tickets last year as a punishment for offences including the failure to pay fines, it emerged.
Some 5.5 million people were also barred from travelling by train under a controversial “social credit” system which the ruling Communist Party claims will improve public behaviour.
The penalties are part of efforts by president Xi Jinping‘s government to use data-processing and other technology to tighten control on society.
Human rights activists warn the system is too rigid and may lead to people being unfairly blacklisted without their knowledge, while US vice-president Mike Pence last year denounced it as “an Orwellian system premised on controlling virtually every facet of human life”.
Authorities have experimented with social credit in parts of China since 2014. Points are deducted for breaking the law, but also, in some areas, for offences as minor as walking a dog without a lead.
Offences punished last year also included false advertising and violating drug safety rules, said China’s National Public Credit Information Centre. It gave no details of how many people live in areas with social credit systems.
Social credit is one facet of efforts by the ruling party to take advantage of increased computing power, artificial intelligence and other technology to track and control the Chinese public.
In 2000 the police ministry launched an initiative dubbed “Golden Shield” to build a nationwide digital network to track individuals.
The ruling party is spending heavily to roll out facial recognition systems, and human rights activists say people in Muslim and other areas with high ethnic minority populations have been compelled to give blood samples for a genetic database.
Those systems rely heavily on foreign technology, which has prompted criticism of US and European suppliers for enabling human rights abuses.
#MassSurveillance #China #why #GoldenShield #HumanRights
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
This media is not supported in your browser
VIEW IN TELEGRAM
The Trauma Floor
The secret lives of Facebook moderators in America
https://www.theverge.com/2019/2/25/18229714/cognizant-facebook-content-moderator-interviews-trauma-working-conditions-arizona
📡 @NoGoolag
#DeleteFacebook #fb
The secret lives of Facebook moderators in America
https://www.theverge.com/2019/2/25/18229714/cognizant-facebook-content-moderator-interviews-trauma-working-conditions-arizona
📡 @NoGoolag
#DeleteFacebook #fb
Europe's path between surveillance, capitalism and communism
Data collection, social scoring and our privacy - our guest author sees two dominant systems here, namely surveillance capitalism and communism.
When I pause for a moment and try to summarize the last ten years of digital technology history in a few sentences, the following remains: There are two dominant systems.
One is the US Facebook and Google system, which collects data from its users in order to generate revenue from its advertisers*. And secondly, the Chinese social credit system, with the help of which state power rewards desired behavior and punishes unwanted behavior.
For the US system, Harvard professor Shosanna Zuboff coined the term "surveillance capitalism. The Chinese system could therefore be characterized as "surveillance communism.
While the US-American system has already proven its worth over the past few years in the interests of Facebook and Google shareholders, the Chinese system is still on the verge of being baptized. Various systems are currently being tested in pilot regions and cities to test and optimize the algorithms. From 2020, a uniform social credit system is to be rolled out across the board as far as possible.
Read all 🇬🇧 at TG 👇
https://news.1rj.ru/str/BlackBox_Archiv/138
In 🇩🇪 (original) you find it 👇
https://news.1rj.ru/str/BlackBox_Archiv/140
#europe #surveillance #capitalism #communism #blackbox
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Data collection, social scoring and our privacy - our guest author sees two dominant systems here, namely surveillance capitalism and communism.
When I pause for a moment and try to summarize the last ten years of digital technology history in a few sentences, the following remains: There are two dominant systems.
One is the US Facebook and Google system, which collects data from its users in order to generate revenue from its advertisers*. And secondly, the Chinese social credit system, with the help of which state power rewards desired behavior and punishes unwanted behavior.
For the US system, Harvard professor Shosanna Zuboff coined the term "surveillance capitalism. The Chinese system could therefore be characterized as "surveillance communism.
While the US-American system has already proven its worth over the past few years in the interests of Facebook and Google shareholders, the Chinese system is still on the verge of being baptized. Various systems are currently being tested in pilot regions and cities to test and optimize the algorithms. From 2020, a uniform social credit system is to be rolled out across the board as far as possible.
Read all 🇬🇧 at TG 👇
https://news.1rj.ru/str/BlackBox_Archiv/138
In 🇩🇪 (original) you find it 👇
https://news.1rj.ru/str/BlackBox_Archiv/140
#europe #surveillance #capitalism #communism #blackbox
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Exploring alternative funding models for the web
The online advertising ecosystem is broken. The majority of digital advertising revenue is going to a small handful of companies, leaving other publishers with scraps. Meanwhile users are on the receiving end of terrible experiences and pervasive tracking designed to get them to click on ads or share even more personal data.
https://blog.mozilla.org/futurereleases/2019/02/25/exploring-alternative-funding-models-for-the-web/
📡 @NoGoolag
#mozilla #funding #alternatives #BigData
The online advertising ecosystem is broken. The majority of digital advertising revenue is going to a small handful of companies, leaving other publishers with scraps. Meanwhile users are on the receiving end of terrible experiences and pervasive tracking designed to get them to click on ads or share even more personal data.
https://blog.mozilla.org/futurereleases/2019/02/25/exploring-alternative-funding-models-for-the-web/
📡 @NoGoolag
#mozilla #funding #alternatives #BigData
First monthly intermediate results of the EU Code of Practice against disinformation
Facebook & Co. must redouble efforts against disinformation.
In its monthly report on the monitoring of a code of conduct to combat "fake news", the Commission accuses Facebook in particular of not delivering.
The Commission has received monthly reports from Google, Facebook and Twitter addressing actions taken during January 2019 towards implementation of the commitments on electoral integrity.
These three online platforms are signatories of the Code of Practice against disinformation and the Commission asked them to report monthly on their actions undertaken ahead of the European Parliament elections in May 2019, in particular on the scrutiny of ad placements, political and issue-based advertising and integrity of services.
Broadly, the Commission is encouraged that the Reports provide further information on the policies the platforms have developed to meet these commitments.
Nevertheless, the Commission remains deeply concerned by the platform’s failure to provide specific benchmarks to measure progress, by the lack of detail on the actual results of the measures already taken and lack of detail showing that new policies and tools are deployed timely and with sufficient resources across all EU Member States.
https://ec.europa.eu/digital-single-market/en/news/first-monthly-intermediate-results-eu-code-practice-against-disinformation
#DeleteFacebook #fb #cop #EU #disinformation #report #FakeNews
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Facebook & Co. must redouble efforts against disinformation.
In its monthly report on the monitoring of a code of conduct to combat "fake news", the Commission accuses Facebook in particular of not delivering.
The Commission has received monthly reports from Google, Facebook and Twitter addressing actions taken during January 2019 towards implementation of the commitments on electoral integrity.
These three online platforms are signatories of the Code of Practice against disinformation and the Commission asked them to report monthly on their actions undertaken ahead of the European Parliament elections in May 2019, in particular on the scrutiny of ad placements, political and issue-based advertising and integrity of services.
Broadly, the Commission is encouraged that the Reports provide further information on the policies the platforms have developed to meet these commitments.
Nevertheless, the Commission remains deeply concerned by the platform’s failure to provide specific benchmarks to measure progress, by the lack of detail on the actual results of the measures already taken and lack of detail showing that new policies and tools are deployed timely and with sufficient resources across all EU Member States.
https://ec.europa.eu/digital-single-market/en/news/first-monthly-intermediate-results-eu-code-practice-against-disinformation
#DeleteFacebook #fb #cop #EU #disinformation #report #FakeNews
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Mozilla publishes the largest public transcribed voice dataset.
Mozilla makes available the largest set of human voices based entirely on crowdsourcing. The data set includes 18 different languages and adds up to nearly 1,400 hours of recorded voice data from more than 42,000 contributors.
From the outset, our vision for Common Voice has been to create the world's most diverse voice dataset, optimized specifically for the development of speech. We have also promised to make the dataset freely accessible so that start-ups, researchers* and anyone else interested in speech technologies can use the high-quality transcribed speech data we have collected.
Today, we are pleased to present our first multilingual dataset, covering 18 languages - including English, French, German and Mandarin (traditional), but also Welsh and Kabyle, for example. This new dataset contains a total of approximately 1,400 hours of voice recordings from more than 42,000 people.
With this release, the Common Voice record is now the largest of its kind, thanks to the support of tens of thousands of people who have brought their voices and written sentences to the Public Domain (CC0). The complete data set is now available for download on the Common Voice page.
📡 @NoGoolag
#mozilla #dataset #voice #crowdsourcing #multilingual #speech
Mozilla makes available the largest set of human voices based entirely on crowdsourcing. The data set includes 18 different languages and adds up to nearly 1,400 hours of recorded voice data from more than 42,000 contributors.
From the outset, our vision for Common Voice has been to create the world's most diverse voice dataset, optimized specifically for the development of speech. We have also promised to make the dataset freely accessible so that start-ups, researchers* and anyone else interested in speech technologies can use the high-quality transcribed speech data we have collected.
Today, we are pleased to present our first multilingual dataset, covering 18 languages - including English, French, German and Mandarin (traditional), but also Welsh and Kabyle, for example. This new dataset contains a total of approximately 1,400 hours of voice recordings from more than 42,000 people.
With this release, the Common Voice record is now the largest of its kind, thanks to the support of tens of thousands of people who have brought their voices and written sentences to the Public Domain (CC0). The complete data set is now available for download on the Common Voice page.
Web: https://voice.mozilla.org/en/datasets📡 @NoGoolag
#mozilla #dataset #voice #crowdsourcing #multilingual #speech
Android without Google: Take back control! (Part 1)
1. android without data octopus
The article series "Your phone your data" from 2014 has played a major role in the success story of this blog. Many thousands of people wanted to learn how to get rid of Google and regain control of their Android device.
After now five years it is time for a new edition of the article series. Much has changed. Partly for the positive, partly also for the negative. Also the article series "Take back control!" requires a lot of patience and the willingness to say goodbye to one's own comfort - and of course also to the indoctrination of the manufacturers.
The ambitious goal of the article series "Take back control!" can be summarized in one sentence: You as a user should regain control over your Android device and your data. Step by step I will lead you towards this goal. Because it must finally be an end to proprietary apps and (Google) services that merely fool us into believing our independence and self-determination over our data.
2nd Google has long been evil
Directly after switching on our android we are asked to create a Google account or to link the already existing one with the device. We are pushed into the cloud and should not worry about our data, but rather trust the providers or Google "blindly". In return, so to speak, we receive a perfectly coordinated eco-system that can hardly be surpassed in terms of simplicity and convenience, but also in terms of perfidy.
Google's strategy of conquering the market with user-friendly products and services has therefore paid off. Success proves them right. But with this success story, the price paid by the actual users must always be borne in mind. They pay and pay with the data they "produce". However, they are not aware of this "paying with data" because they lack the transparency to see what is actually happening "behind their backs" when using smartphones.
Google is like a junkie, constantly on the lookout for new data sources that will allow the already accumulated data treasures to continue to grow. Google wants to know everything. In an interview with James Bennet, supervisory board chairman Eric Schmidt said:
"With your permission you give us more information about you, about your friends, and we can improve the quality of our searches. We don't need you to type at all. We know where you are. We know where you've been. We can more or less know what you're thinking about."
This remark, already made in 2010, is now more relevant than ever. Android and other Google products and services are perfectly interlocking gears that give the user an illusion of control over his data. Google relies on dark patterns or nudging to hide data protection settings, to mislead users or to prevent them from protecting their privacy with misleading formulations.
...(...)...
Regardless of these "restrictions", we want to achieve the following with our project:
✅ Complete control over your own data
✅ Independent and self-determined use of the device
✅ The decoupling from the Google eco-system
✅ The exit from the advertising machinery of the manufacturers
✅ Protection against advertising profiling
https://news.1rj.ru/str/BlackBox_Archiv/156
#android #NoGoogle #guide #part1 #kuketz
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
1. android without data octopus
The article series "Your phone your data" from 2014 has played a major role in the success story of this blog. Many thousands of people wanted to learn how to get rid of Google and regain control of their Android device.
After now five years it is time for a new edition of the article series. Much has changed. Partly for the positive, partly also for the negative. Also the article series "Take back control!" requires a lot of patience and the willingness to say goodbye to one's own comfort - and of course also to the indoctrination of the manufacturers.
The ambitious goal of the article series "Take back control!" can be summarized in one sentence: You as a user should regain control over your Android device and your data. Step by step I will lead you towards this goal. Because it must finally be an end to proprietary apps and (Google) services that merely fool us into believing our independence and self-determination over our data.
2nd Google has long been evil
Directly after switching on our android we are asked to create a Google account or to link the already existing one with the device. We are pushed into the cloud and should not worry about our data, but rather trust the providers or Google "blindly". In return, so to speak, we receive a perfectly coordinated eco-system that can hardly be surpassed in terms of simplicity and convenience, but also in terms of perfidy.
Google's strategy of conquering the market with user-friendly products and services has therefore paid off. Success proves them right. But with this success story, the price paid by the actual users must always be borne in mind. They pay and pay with the data they "produce". However, they are not aware of this "paying with data" because they lack the transparency to see what is actually happening "behind their backs" when using smartphones.
Google is like a junkie, constantly on the lookout for new data sources that will allow the already accumulated data treasures to continue to grow. Google wants to know everything. In an interview with James Bennet, supervisory board chairman Eric Schmidt said:
"With your permission you give us more information about you, about your friends, and we can improve the quality of our searches. We don't need you to type at all. We know where you are. We know where you've been. We can more or less know what you're thinking about."
This remark, already made in 2010, is now more relevant than ever. Android and other Google products and services are perfectly interlocking gears that give the user an illusion of control over his data. Google relies on dark patterns or nudging to hide data protection settings, to mislead users or to prevent them from protecting their privacy with misleading formulations.
...(...)...
Regardless of these "restrictions", we want to achieve the following with our project:
✅ Complete control over your own data
✅ Independent and self-determined use of the device
✅ The decoupling from the Google eco-system
✅ The exit from the advertising machinery of the manufacturers
✅ Protection against advertising profiling
Read the full guide🇬🇧
https://news.1rj.ru/str/BlackBox_Archiv/156
German (original)https://www.kuketz-blog.de/android-ohne-google-take-back-control-teil1/
#android #NoGoogle #guide #part1 #kuketz
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES
Tech companies could change these things to make your life easier and protect your digital security and privacy.
Why haven’t they yet?
https://fixitalready.eff.org/#/
📡 @NoGoolag
#fixitalready #why
Why haven’t they yet?
https://fixitalready.eff.org/#/
📡 @NoGoolag
#fixitalready #why
Android: IMSI Leaking during GPS Positioning
First of all, the basics:
Assisted GPS (abbreviated as A-GPS) is a system that usually significantly improves the time it takes to fix a satellite-based positioning system (GPS) for the first time - so GPS positioning is accelerated. How does this work? With mobile phones, the approximate location is already known from the radio cell in which your device is registered. This approximate location is then sent via the Secure User Plane Location Protocol (SUPL) to a SUPL server, which uses this information to limit the search range for the satellite signals and thus enables fast GPS positioning. Communication with the SUPL server takes place via TCP/IP or SMS.
Android systems use such a SUPL server to accelerate GPS positioning. However, the problem is that your IMSI number is also transmitted to the SUPL server when you make a request - which would not actually be necessary from a technical point of view.
The problem: The combination of the IMSI number with the radio cell ID enables the operator of a SUPL server to uniquely identify a user as soon as the smartphone locates or limits the location via a SUPL request. The SUPL protocol is therefore actually relatively sensible, but we do not know what the operators of the SUPL servers do with this information.
With my test devices I have now tried to find out when such a SUPL request is sent. Result: Whenever your GPS is activated and an app wants to query the location. It doesn't matter which mode you have chosen:
High accuracy:
Use GPS, WLAN, Bluetooth or mobile networks to determine your location.
Energy-saving mode:
Use WLAN, Bluetooth or mobile networks to determine your position.
Device only:
Use GPS to locate.
This means: Even if you have selected the mode "Device only", a request will be sent via A-GPS or SUPL-Request. The question is now which SUPL server or operator receives the radio cell information together with the IMSI number?
This is quite different - even with LineageOS. You can find out if you open the following file (root assumed) on your Android:
supl.google.com: Google
supl.sonyericsson.com: Sony
supl.qxwz.com: SUPL Server in China
supl.nokia.com: Nokia
If your GPS is activated, a SUPL request is sent to the SUPL_HOST - but this does not happen every time. You can force it after a device restart in combination with an app that wants to determine the GPS location. Sometimes it was also necessary to deactivate the WLAN interface.
Now you have to ask yourself if a quick GPS position determination via SUPL is important to you or maybe your privacy. If it's your privacy, you'll need to make the following changes to gps.conf and then restart your device:
With tcpdump you can check directly on the device if SUPL requests are still being sent:
How SUPL Reveals My Identity And Location To Google When I Use GPS. If you can help to answer this question, please feel free to contact me via email or use the forum thread.
With a "toy" like the HackRF One, mobile phone traffic on this level could certainly be recorded.
📡 @NoGoolag
#android #IMSI #leaking #GPS #positioning #guide #kuketz
First of all, the basics:
Assisted GPS (abbreviated as A-GPS) is a system that usually significantly improves the time it takes to fix a satellite-based positioning system (GPS) for the first time - so GPS positioning is accelerated. How does this work? With mobile phones, the approximate location is already known from the radio cell in which your device is registered. This approximate location is then sent via the Secure User Plane Location Protocol (SUPL) to a SUPL server, which uses this information to limit the search range for the satellite signals and thus enables fast GPS positioning. Communication with the SUPL server takes place via TCP/IP or SMS.
Android systems use such a SUPL server to accelerate GPS positioning. However, the problem is that your IMSI number is also transmitted to the SUPL server when you make a request - which would not actually be necessary from a technical point of view.
The problem: The combination of the IMSI number with the radio cell ID enables the operator of a SUPL server to uniquely identify a user as soon as the smartphone locates or limits the location via a SUPL request. The SUPL protocol is therefore actually relatively sensible, but we do not know what the operators of the SUPL servers do with this information.
With my test devices I have now tried to find out when such a SUPL request is sent. Result: Whenever your GPS is activated and an app wants to query the location. It doesn't matter which mode you have chosen:
High accuracy:
Use GPS, WLAN, Bluetooth or mobile networks to determine your location.
Energy-saving mode:
Use WLAN, Bluetooth or mobile networks to determine your position.
Device only:
Use GPS to locate.
This means: Even if you have selected the mode "Device only", a request will be sent via A-GPS or SUPL-Request. The question is now which SUPL server or operator receives the radio cell information together with the IMSI number?
This is quite different - even with LineageOS. You can find out if you open the following file (root assumed) on your Android:
/etc/system/gps.confor
/vendor/etc/gps.confThere you can search for the following entries:
SUPL_HOST=supl.google.comPreviously identified as SUPL_HOST or operator:
SUPL_PORT=7275 (may vary)
supl.google.com: Google
supl.sonyericsson.com: Sony
supl.qxwz.com: SUPL Server in China
supl.nokia.com: Nokia
If your GPS is activated, a SUPL request is sent to the SUPL_HOST - but this does not happen every time. You can force it after a device restart in combination with an app that wants to determine the GPS location. Sometimes it was also necessary to deactivate the WLAN interface.
Now you have to ask yourself if a quick GPS position determination via SUPL is important to you or maybe your privacy. If it's your privacy, you'll need to make the following changes to gps.conf and then restart your device:
SUPL_HOST=localhost⚠️Note: It is not sufficient to comment out the lines. Then a fallback becomes active. Where the fallback information came from I could not find out yet.
SUPL_PORT=7275
With tcpdump you can check directly on the device if SUPL requests are still being sent:
tcpdump -i any -s0 port 7275Unfortunately, one question remains unanswered: Does the proprietary baseband possibly send a SUPL request on its own and bypasses the Android operating system? In any case, this is indicated by the following article:
How SUPL Reveals My Identity And Location To Google When I Use GPS. If you can help to answer this question, please feel free to contact me via email or use the forum thread.
With a "toy" like the HackRF One, mobile phone traffic on this level could certainly be recorded.
Source and more infohttps://www.kuketz-blog.de/android-imsi-leaking-bei-gps-positionsbestimmung/
📡 @NoGoolag
#android #IMSI #leaking #GPS #positioning #guide #kuketz
Cloudflare – The bad, the worse and the ugly?
What is Cloudflare and why not to use Cloudflare!
Cloudflare, the operator of the probably best-known content delivery network, is not only very popular with black copiers. Credit card fraudsters, phishing site operators, blackmailers and terrorists also like to use the services of the Californian company. Volker Rieck takes a closer look.
In the USA, a large technology company is about to go public. Cloudflare from San Francisco wants to collect almost 3.5 billion dollars on the stock exchange in the first half of the year with the support of the investment bank Goldman Sachs. However, there are heavy shadows over Cloudflare. The spectrum of his customers ranges from credit card fraudsters and spammers to sites that operate copyright infringement as a business model and terrorist sites. Even US embargoes are undermined.
💡 What is Cloudflare?
The service of Cloudflare is the supply of a content Delivery network (CDN) - also content distribution network called. That is simplified said a type of turbo for web pages, so that these are delivered world-wide fast and surely. Cloudflare hangs itself thereby between the web page and/or the servers of its customers and the visitor of the side and/or user of a service and provides by purposeful control and distribution of the Traffics for a correspondingly high speed. In this way Cloudflare can offer also protection against overload attacks (DDoS) in the net.
💡 However, it offers a hidden feature:
the company anonymizes its customers.
By doing so, Cloudflare will put a screen over the original website or its server, making the operator of this site almost untraceable. If, for example, you want to know where a certain website is hosted, you only receive Cloudflare data, but you can neither identify the original computer center nor the IP address, which would be necessary, among other things, for prosecuting legal violations.
Civil law inquiries are useless, because Cloudflare only provides the naming of a computer center, which is worthless without the respective IP address. This would be roughly comparable to the information of an address in a high-rise building with thousands of residents, where there are no bell signs.
Read the full article inside TG (🇬🇧)
https://news.1rj.ru/str/BlackBox_Archiv/163
Or the original (🇩🇪)
(TG) https://news.1rj.ru/str/BlackBox_Archiv/166
(Web) https://tarnkappe.info/cloudflare-the-bad-the-worse-and-the-ugly/
📡 @NoGoolag
#cloudflare #dns #truth #why
What is Cloudflare and why not to use Cloudflare!
Cloudflare, the operator of the probably best-known content delivery network, is not only very popular with black copiers. Credit card fraudsters, phishing site operators, blackmailers and terrorists also like to use the services of the Californian company. Volker Rieck takes a closer look.
In the USA, a large technology company is about to go public. Cloudflare from San Francisco wants to collect almost 3.5 billion dollars on the stock exchange in the first half of the year with the support of the investment bank Goldman Sachs. However, there are heavy shadows over Cloudflare. The spectrum of his customers ranges from credit card fraudsters and spammers to sites that operate copyright infringement as a business model and terrorist sites. Even US embargoes are undermined.
💡 What is Cloudflare?
The service of Cloudflare is the supply of a content Delivery network (CDN) - also content distribution network called. That is simplified said a type of turbo for web pages, so that these are delivered world-wide fast and surely. Cloudflare hangs itself thereby between the web page and/or the servers of its customers and the visitor of the side and/or user of a service and provides by purposeful control and distribution of the Traffics for a correspondingly high speed. In this way Cloudflare can offer also protection against overload attacks (DDoS) in the net.
💡 However, it offers a hidden feature:
the company anonymizes its customers.
By doing so, Cloudflare will put a screen over the original website or its server, making the operator of this site almost untraceable. If, for example, you want to know where a certain website is hosted, you only receive Cloudflare data, but you can neither identify the original computer center nor the IP address, which would be necessary, among other things, for prosecuting legal violations.
Civil law inquiries are useless, because Cloudflare only provides the naming of a computer center, which is worthless without the respective IP address. This would be roughly comparable to the information of an address in a high-rise building with thousands of residents, where there are no bell signs.
Read the full article inside TG (🇬🇧)
https://news.1rj.ru/str/BlackBox_Archiv/163
Or the original (🇩🇪)
(TG) https://news.1rj.ru/str/BlackBox_Archiv/166
(Web) https://tarnkappe.info/cloudflare-the-bad-the-worse-and-the-ugly/
📡 @NoGoolag
#cloudflare #dns #truth #why