Posts Tagged ‘privacy’

Hacking and Privacy Issues

Friday, April 22nd, 2011

Two things have happened in the last week or so that have caused people to rethink their blasé attitude to how companies deal with personal data. The first was when a script was published that allows an iPhone user to open the hidden file that saves your location, essentially tracking you for the whole time your phone is on. The second was the hacking of the PlayStation Network and the theft of several million users’ details.

So should these two things change your attitude towards privacy? Should you remove any personal details from websites, in case they are hacked? I think not, and here’s why.

The iPhone “scandal” is nonsensical. It has been known for a while that the iPhone stores location details, but it is only since a user-friendly way to show this data appeared that there has been even the slightest outcry.

It’s not unusual for any mobile phone to store its location – any mobile phone connecting to a mast will log that it has connected. On a smartphone that has geolocation, it is reasonable that the phone will keep track of where it is, to save time when using location-based services. The fact that this file is accessible on the phone and on a synced computer is not a security breach. I’m sure if anyone hacked your computer or stole your phone there are more things to worry about than the knowledge of where you’ve been for the last few months.

However, the second is more serious. It is an absolute breach of security that has left many people’s personal details exposed. The only mitigation is that the credit card details stolen are encrypted, so cannot be used. Still, every credit card provider signs up (as far as I know) to an insurance scheme which means that you are not liable for any fraudulent activity on your account.

The personal details which have been hacked include names, addresses phone numbers and email addresses. These undoubtably will be shared and will cause loads of unwanted spam.

Sony acted quickly in taking down the PlayStation Network, and has been very sheepish in it’s apologies, but the fact that such a large organisation has been hacked shows you how important it is to protect data. For most of us, we don’t need to worry about our data being hacked – hackers will only go for targets that are worth it.

However, should we pull our details from every online service? Of course not. Big companies spend big money on protecting data. The response to the Sony hacking shows how u usual it is for such a thing to happen, and in the wake of it more online companies (Apple and Amazon, I’m looking at you!) should be reviewing their security processes. And I’m sure they will.

The Internet has opened up so many opportunities for businesses and for private users. Online shopping, social networking, online gaming… The list is endless. And I would rather embrace these opportunities than be stifled by the fear that I might have my email address stolen. The bigger the company, the more it stands to lose from a security lapse like this, and Microsoft and Nintendo must be rubbing their hands in glee at the thought of people defecting to Xboxes and Wiis.

Tags: apple, internet, privacy, Sony
Posted in Opinion, Web Development | No Comments »

Not the Buzz Google Wanted

Wednesday, November 3rd, 2010

When Google Buzz launched earlier this year, the buzz it generated wasn’t what Google wanted. Privacy concerns were raised, and Google reacted quickly to try and dampen the resulting ballyhoo. This morning I received this email from Google:

Google rarely contacts Gmail users via email, but we are making an exception to let you know that we’ve reached a settlement in a lawsuit regarding Google Buzz (http://buzz.google.com), a service we launched within Gmail in February of this year.

Shortly after its launch, we heard from a number of people who were concerned about privacy. In addition, we were sued by a group of Buzz users and recently reached a settlement in this case.

The settlement acknowledges that we quickly changed the service to address users’ concerns. In addition, Google has committed $8.5 million to an independent fund, most of which will support organizations promoting privacy education and policy on the web. We will also do more to educate people about privacy controls specific to Buzz. The more people know about privacy online, the better their online experience will be.

Just to be clear, this is not a settlement in which people who use Gmail can file to receive compensation. Everyone in the U.S. who uses Gmail is included in the settlement, unless you personally decide to opt out before December 6, 2010. The Court will consider final approval of the agreement on January 31, 2011. This email is a summary of the settlement, and more detailed information and instructions approved by the court, including instructions about how to opt out, object, or comment, are available at http://www.BuzzClassAction.com.

——————————————————————–
This mandatory announcement was sent to all Gmail users in the United States as part of a legal settlement and was authorized by the United States District Court for the Northern District of California.

Google Inc. | 1600 Amphitheatre Parkway | Mountain View, CA 94043″

I think this is a fairly positive result for Google – they’ve reached a settlement quickly and haven’t allowed it to drag on, and admitted their responsibility for it. Still, it’s another sign that as web services like Google (and Twitter, Facebook etc.) become even bigger, the amount of data we share online is growing and growing, and we need to know we can trust these services with our information.

Tags: google, privacy, web
Posted in Work | No Comments »