Hacker News with Generative AI: Data Security

GM banned from sharing driving and location data with insurance companies (techcrunch.com)
We regularly hear stories about companies that are selling your sensitive personal information — including your location data — to the highest bidder. The latest culprit appears to be General Motors.

Privacy, Automotive Industry, Data Security, Consumer Protection

29 points by belter 15 hours ago | 5 comments

Candy Crush, Tinder, MyFitnessPal: Apps hijacked to spy on location (wired.com)
Some of the world’s most popular apps are likely being co-opted by rogue members of the advertising industry to harvest sensitive location data on a massive scale, with that data ending up with a location data company whose subsidiary has previously sold global location data to US law enforcement.

Privacy, Mobile Apps, Data Security, Advertising

187 points by gnabgib 8 days ago | 108 comments

What happens on your device, stays on your device – until it doesn't (obdev.at)
Apple has recently shown a noticeable tendency to collect, gather, transmit, and sometimes even store privacy-sensitive data – despite repeatedly emphasizing the importance of protecting such data and ensuring it remains solely on the user’s device.

Privacy, Apple, Data Security, Technology, Mobile Devices

17 points by bangonkeyboard 9 days ago | 3 comments

ShredOS – Secure disk erasure/wipe (github.com/PartialVolume)

Security, Software, Data Security

56 points by arunc 19 days ago | 47 comments

We know where your car is (ccc.de)
Der Chaos Computer Club (CCC) deckt auf, dass der Volkswagen-Konzern Bewegungsdaten von hunderttausenden Fahrzeugen der Marken VW, Audi, Skoda und Seat systematisch erfasst und über lange Zeiträume speichert. Die Daten, einschließlich Informationen über Fahrzeughalter:innen, waren zudem ungeschützt im Internet zugänglich.

Privacy, Automotive, Data Security, Germany

96 points by uxhacker 20 days ago | 67 comments

Beijing got unprecedented access to private texts and phone conversations (fortune.com)

Privacy, China, Surveillance, Data Security

11 points by doener 20 days ago | 0 comments

One third of adults can't delete device data (theregister.com)
The UK's Information Commissioner's Office (ICO) has warned that many adults don't know how to wipe their old devices, and a worrying number of young people just don't care.

Privacy, Cybersecurity, Data Security, Technology

10 points by rntn 25 days ago | 0 comments

Ask HN: Do you backup your Emails? (ycombinator.com)

Email, Backup, Data Security

32 points by michidk 28 days ago | 76 comments

Show HN: Disk Prices on eBay (unli.xyz)
This is an Enterprise Drive;Not for Home Use. 100% Guaranteed;30 Day Seller Warranty w/ Hassle-Free Returns for any reason. We perform Sentinel Drive Analysis and a DoD 5220.22 M Data Wipe on all drives.

Hardware, Storage, eBay, Data Security

15 points by xk3 35 days ago | 0 comments

Microsoft Confirms Password Deletion for 1B Users (forbes.com)
Microsoft has confirmed plans to delete passwords for a billion users. “The password era is ending,” it says, warning those users that “bad actors know it, which is why they’re desperately accelerating password-related attacks while they still can.”

Cybersecurity, Microsoft, Data Security, Privacy

248 points by elorant 35 days ago | 677 comments

FTC takes action against Gravy Analytics, Venntel for selling location data (ftc.gov)

FTC, Privacy, Location Data, Data Security, Law

194 points by gnabgib 45 days ago | 158 comments

The name 'David Mayer' crashes ChatGPT. Digital privacy requests may be at fault (techcrunch.com)
Users of the conversational AI platform ChatGPT discovered an interesting phenomenon over the weekend: the popular chatbot refuses to answer questions if asked about a “David Mayer.” Asking it to do so causes it to freeze up instantly.

ChatGPT, Artificial Intelligence, Privacy, Data Security, Technology

8 points by pseudolus 46 days ago | 1 comments

SUSE unveils major rebranding, and a new AI platform that protects your data (zdnet.com)

SUSE, Rebranding, Artificial Intelligence, Data Security

5 points by CrankyBear 53 days ago | 3 comments

Anyone Can Buy Data Tracking US Soldiers an Spies to Nuclear Vaults and Brothels (wired.com)
A joint investigation by WIRED, Bayerischer Rundfunk (BR), and Netzpolitik.org reveals that US companies legally collecting digital advertising data are also providing the world a cheap and reliable way to track the movements of American military and intelligence personnel overseas, from their homes and their children’s schools to hardened aircraft shelters within an airbase where US nuclear weapons are believed to be stored.

Privacy, Data Security, Military, Surveillance, Journalism

13 points by SirLJ 58 days ago | 3 comments

Why do we see no companies offering to deploy local LLMs? (ycombinator.com)
It seems an obvious idea but we cannot find anyone offering b2b local LLMs setup to corporations that doesn't want to use external ones & keep their data in-house.. ie airlines, governments, attorneys, accountants..

Artificial Intelligence, Business, Privacy, Data Security

20 points by oogwayy 59 days ago | 14 comments

Anyone Can Buy Data Tracking US Soldiers and Spies to Nuclear Vaults in Germany (wired.com)
A joint investigation by WIRED, Bayerischer Rundfunk (BR), and Netzpolitik.org reveals that US companies legally collecting digital advertising data are also providing the world a cheap and reliable way to track the movements of American military and intelligence personnel overseas, from their homes and their children’s schools to hardened aircraft shelters within an airbase where US nuclear weapons are believed to be stored.

Privacy, Military, Intelligence, Data Security, Germany

7 points by marban 59 days ago | 1 comments

Deanonymization of owners of anonymous Telegram channels (github.com/vognik)
Maltego module for working with Telegram.

Telegram, Privacy, Data Security, Social Media, Security Tools

16 points by vognik 64 days ago | 2 comments

Colorado scrambles to change voting-system passwords after accidental leak (arstechnica.com)
The Colorado Department of State said it accidentally posted a spreadsheet containing "partial passwords" for voting systems.

Cybersecurity, Elections, Colorado, Government, Data Security

230 points by rbanffy 78 days ago | 644 comments

Strava was used to locate the most powerful people (theguardian.com)
A French newspaper has revealed the whereabouts of world leaders with the use of the hugely popular running app. So is it time to stop it tracking your location?

Privacy, Data Security, Location Tracking, World Leaders, Social Media

94 points by kawera 80 days ago | 81 comments

Privacy4Cars (privacy4cars.com)
Privacy4Cars enables the automotive ecosystem to delete personal information from vehicles in a fast, traceable, and cost-effective manner to reduce liability, meet regulatory requirements and improve customer satisfaction

Privacy, Automotive Industry, Data Security, Compliance, Customer Experience

10 points by peutetre 83 days ago | 14 comments

The global surveillance free-for-all in mobile ad data (krebsonsecurity.com)
Not long ago, the ability to digitally track someone’s daily movements just by knowing their home address, employer, or place of worship was considered a dangerous power that should remain only within the purview of nation states.

Privacy, Mobile Advertising, Data Security, Surveillance

294 points by todsacerdoti 87 days ago | 162 comments

CISA proposes new security requirements to protect govt, personal data (bleepingcomputer.com)
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is proposing security requirements to prevent adversary states from accessing American's personal data as well as government-related information.

Cybersecurity, Government, Data Security, Privacy

13 points by sandwichsphinx 87 days ago | 0 comments

Ask HN: Why is there not more concern about the physical security of Cloudflare? (ycombinator.com)
Using Hetzner and Azure, we trust that our unencrypted in-memory data and business logic are housed in professional data centers with strong physical security measures. However, Cloudflare has built its Workers and serverless offerings on top of its Cache/CDN and anti-DDoS infrastructure, which operates out of questionable ISP and IXP colocation facilities in various jurisdictions with dubious standards.

Cloud Security, Serverless Computing, Data Security, Physical Security

90 points by dtquad 93 days ago | 54 comments

Cards Against Humanity campaigns to encourage voting, expose personal data abuse (theregister.com)
The troublemakers behind the party game Cards Against Humanity have launched a campaign demonstrating how easy it is to buy sensitive personal data about American voters, while simultaneously encouraging those Americans to plan how to cast a vote in the upcoming presidential election.

Politics, Privacy, Social Commentary, Data Security, Games

6 points by LinuxBender 98 days ago | 1 comments

Internet Archive data is safe, still bringing services back up (twitter.com)

Internet Archive, Data Security, Technology, Online Services

20 points by odo1242 98 days ago | 1 comments

How to delete your 23andMe data amid the company's turmoil (lifehacker.com)
DNA analysis company 23andme has been in trouble lately: data was breached in a 2023 hack, and this September the entire board of directors resigned over disagreements with the CEO.

Privacy, Genetics, Data Security

157 points by gnabgib 101 days ago | 152 comments

Meta fined $101M for storing passwords in plaintext (therecord.media)
The social media giant Meta has been fined €91 million ($101 million) for accidentally storing hundreds of millions of its users’ passwords in plaintext instead of in an encrypted format on its internal systems.

Data Security, Privacy, Meta, Cybersecurity, Regulation

91 points by ssklash 109 days ago | 32 comments

A national lab retires–and shreds–large computing resources (techxplore.com)
Ever wonder what happens to massive supercomputing systems when they're retired? Surprisingly, when it comes to the data, it's not too different from disposing of old documents—they go straight into a shredder and sent to recycling.

Data Security, Supercomputing, Technology, Recycling

8 points by PaulHoule 115 days ago | 0 comments

NIST to forbid requirement of specific passwords character composition (mastodon.social)

Security, Government Regulations, Passwords, Data Security, Privacy

266 points by riffraff 115 days ago | 134 comments

Kaspersky deletes itself, installs UltraAV antivirus without warning (bleepingcomputer.com)
Starting Thursday, Russian cybersecurity company Kaspersky deleted its anti-malware software from customers' computers across the United States and automatically replaced it with UltraAV's antivirus solution.

Cybersecurity, Antivirus Software, Russia, Data Security

29 points by clwg 116 days ago | 4 comments