Apr 08
We’ve seen eavesdropping issues in Chrome before, like one exploit that lets sites ask for permission to the microphone, and then keeps listening long, long after
Jan 22
Voice control is an awesomely futuristic way to control your technology like a spaceman, but only if you can trust it. So you might want to stay tight-lipped around Chrome; Google’s browser has a dangerous security flaw that can let malicious sites eavesdrop on your every word.
     |
Nov 11
It seems like every day brings a new "revelation
| |
Jul 19
Skype has long claimed to be "end-to-end encrypted", an architectural category that suggests conversations over the service would be difficult or impossible to eavesdrop upon, even given control of users’ Internet connections. But Skype’s 2005 independent security review admits a caveat to this protection: "defeat of the security mechanisms at the Skype Central Server" could facilitate a "man-in-the-middle attack" (see section 3.4.1). Essentially, the Skype service plays the role of a certificate authority for its users and, like other certificate authorities, could facilitate eavesdropping by giving out the wrong keys.
| |
Jul 16
Microsoft asks US Attorney General to intervene on security disclosures, denies assisting with NSA interceptions
Posted in: Today's Chili
Microsoft sits between a rock and a hard place when it comes to privacy — it can’t reveal more about FISA requests, but it’s also accused of assisting with NSA eavesdropping. The company is trying to settle both matters today, starting with a call on the US Attorney General for help. Microsoft hasn’t had a response to its June 19th request to publish aggregate security request data, and it wants the Attorney General to directly intervene by legalizing these disclosures. The government official hasn’t publicly acknowledged the request so far, although we weren’t expecting an immediate answer.
At the same time, Microsoft is expanding its denials of The Guardian‘s recent reporting that it facilitates large-scale NSA snooping. Along with insisting once more that it only offers specific information in response to legal requests, the firm claims that its supposedly eavesdrop-friendly actions were innocuous. Microsoft was only moving Skype nodes in-house rather than simplifying the NSA’s access to audio and video chats, for example. It’s doubtful that the public position will completely reassure doubters given the veils of secrecy surrounding the NSA and its collaborators, but the crew in Redmond at least has a full statement on record.
Filed under: Storage, Internet, Software, Microsoft
Source: Microsoft on the Issues
Jul 11
Tech firms say they aren’t giving the NSA direct access to their servers, but that might not even be necessary. The Guardian reports that Microsoft, at least, is making it easy to snoop on services from the outside. Documents provided by Edward Snowden claim that Microsoft helped the NSA bypass Outlook.com chat encryption, even before the product launched; reportedly, it also simplified PRISM access to both SkyDrive and Skype conversations. The company denies offering any kind of carte blanche access, however, and insists that it only complies with specific, legal requests. Whether or not that’s true, we can only know so much when Microsoft is limited in what it can say on the subject.
Filed under: Storage, Internet, Microsoft
Source: The Guardian
Jul 04
The US isn’t the only western country with an all-seeing digital eye… at least, according to Le Monde. The news outlet claims that France’s General Directorate for External Security has a PRISM-like system that captures and processes the metadata for “billions and billions” of communications, including internet messaging, phone calls, SMS and even faxes. The goal is ostensibly to track the behavior of terrorist cells, but the Directorate allegedly shares the anonymized information with other intelligence services, including the police. Whether or not residents can do much about the snooping, if real, is another matter. One source believes that it exists in a gray area, as French law reportedly doesn’t account for the possibility of storing personal data this way. We’re skeptical of claims that the Directorate can spy on “anyone, anytime,” especially without official commentary, but we’d suggest that locals be careful with their secrets all the same.
Dan Cooper contributed to this report.
Filed under: Internet
Via: GigaOM
Source: Le Monde (translated)
Who's in charge here?
This is site is run by Sascha Endlicher, M.A., during ungodly late night hours. Wanna know more about him? Connect via Social Media by jumping to about.me/sascha.endlicher.