Tag Archives: online privacy

How to Avoid High-Risk Hires

The New York Times has published a disturbing article that shows how some online reputation damage happens: intentionally.

In A Vast Web of Vengeance, tech reporter Kashmir Hill details how one person spent years creating false, negative posts about more than a hundred people. They have suffered extreme reputation damage due to 1200 defamatory posts that are too unpleasant to print here. In her article, Hill describes “the power of a lone person to destroy countless reputations, aided by platforms like Google that rarely intervene.”

Yes: On the internet, anyone can be impersonated, harassed or the focus of “fake news.” It persists because of the Communications Decency Act Section 230, (CDA 230), a law that protects the platforms that publish such information — publishers like Google, Facebook, Twitter and millions of blogs, forums and websites — against liability for third-party content on their websites.

We have written extensively about the need to update that law.  That includes our interviews with leaders active in the movement to change it, notably:

Dan Shefet, a member of our Advisory Board, who established the Association for Accountability and Internet Democracy (AAID), which has lobbied the European Commission to introduce rules to make it easier for others to remove harmful information online.

 Right2Remove, which advocates for “Right to Remove” privacy policy legislation “that allows for the removal of content from Internet platforms that is designed to cause reputational harm to consumers in the United States.”

For more insight on this topic, our blog post  No Right to be Forgotten Here is also relevant.  And be sure to check out, The Case for Bringing the Right to be Forgotten to America.

Here is to more investigative journalism focusing on this important topic, including changing the law that enables such harmful content to remain on the internet forever, or at all.

 
 
Google

The European Union has introduced some of the world’s strictest online privacy rules. The “Right to be Forgotten” on Google — not yet available in the U.S. — is a notable example.

Now, according to The New York Times, the French data protection authority has fined Google 50 million euros for not properly disclosing to users how data is collected across its services. That includes its search engine, Google Maps and YouTube and other platforms. (If you’ve seen personalized advertisements following you around when you are using the internet, that is where they originate. Tech companies make massive profits from collecting and selling your data to marketers.)

Organizations like Facebook and Google make strenuous efforts to keep such laws from entering the U.S. Nonetheless, Europeans who have spearheaded such efforts are laying the groundwork here to begin bringing more protective laws to U.S. consumers.

We support bringing the “Right to be Forgotten” to America…along with better privacy laws. These are articles we have published about the issues:

Protecting the Privacy of High Net Worth Families

Right2Remove: Bringing the “Right to be Forgotten” to America

Electronic Frontier Foundation Primer Helps Protect Your Online Privacy

How Google’s Content Removal Request Process Works

For more insight, read this Times’ article: What the G.D.P.R., Europe’s Tough New Data Law, Means for You.

 
 

Congress has sent proposed legislation to President Trump that wipes away landmark online privacy protections. According to The Washington Post, that means removing limits from what companies like AT&T, Verizon and others can do with information like your Internet browsing habits, app usage history, location data and Social Security number. It will also reduce rules requiring providers to strengthen safeguards for your data against hackers and thieves.

Not only will Internet providers be able to monitor your behavior online: without your permission, they will be able to use your personal and financial information to sell highly targeted ads. The providers could also sell your information directly to marketers, financial firms and other companies that mine personal data — all of whom could use the data without your consent. In addition, the Federal Communications Commission, which initially drafted the protections, will be forbidden from issuing similar rules in the future.

If this alarms you as much as it does us, the Electronic Frontier Foundation has extensive resources available to help you reclaim your privacy. First and foremost is Surveillance Self-Defense: Tips, Tools and How-to’s for Safer Online Communications. Browse the section for authoritative information on securely removing deleted information from your computer, the most secure email systems, and the basics of encryption as well as an overview of encryption tools.

The Electronic Frontier Foundation is the leading nonprofit organization defending civil liberties in the digital world. Founded in 1990, EFF champions user privacy, free expression, and innovation through impact litigation, policy analysis, grassroots activism, and technology development.   You may not support their stance on all Internet-related issues, but they are an excellent resource if you are concerned with the security of your data. Their site merits revisiting whenever you want to assume more control over your online privacy and security…or just want more insight into what your options are.

 
 

The New York Times has published the article “Hacking Victims Deserve Empathy, Not Ridicule,” reminding us that hacking could easily throw anyone’s life into disarray.

The article cites thegrugq, the author of several practical guides to protecting yourself from hacking. He points out that, “Security is a trade-off against efficiency” and that it can be difficult to make the additional effort when consequences seem remote or unlikely.

But if the hack of AshleyMadison…and Adobe.com…and even the website for Dominos Pizza…tells us anything, the chance of being hacked is no longer remote (check Have I Been Pwned? to see if you already have been). Now is a good time to reconsider what the right level of operational security is for you—and implement it, consistently.

 
 
Privacy risks facing high net worth families

The New York Times today published “‘Right to Be Forgotten’ Online Could Spread,” an article discussing the imminent proliferation of ‘right to be forgotten’ laws and the problems they could cause.

So far, the law has been overwhelmingly used in ways most people would support—mostly removing links to private personal information. But individual nations have demanded that Google remove access to information worldwide, and other countries are considering more aggressive laws.

This will be a battle between advocates of privacy and of free speech, vastly complicated by notions of sovereignty. How it develops is critical to practitioners of ORM, but it could impact how the Internet is experienced by everyone.

 
 
Future Crimes by Marc Goodman

Marc Goodman’s Future Crimes: Everything is Connected, Everyone is Vulnerable and What We Can Do About It (Doubleday, $30), is a must-read.  Goodman has spent a career in law enforcement and technology, including serving as a futurist-in-residence with the FBI.

Future Crimes exposes the ways criminals, corporations and countries are using new and emerging technologies against you – and how this makes you more vulnerable than you ever imagined.

Here are two excerpts that stand out:

If you don’t own and control your own online persona, it’s extremely easy for a criminal to aggregate the known information about you and use it for a wide variety of criminal activity, ranging from identity theft to espionage. Indeed, there are many such examples of this occurring, especially for high-profile individuals.

The more data you produce, the more organized crime is happy to consume. Many social media companies have been hacked, including LinkedIn (6.5 million accounts), Snapchat (4.6 million names and phone numbers), Google, Twitter and Yahoo. Transactional crime groups are responsible for a full 85% of those data breaches, and their goal is to extract the greatest amount of data possible , with the highest value in the cyber underground.

In 2013, the data broker Experian mistakenly sold the personal data of nearly two-thirds of all Americans to an organized crime group in Vietnam. The massive breach occurred because Experian failed to do due diligence.

Goodman concludes Future Crimes with an appendix of tips that will help readers avoid more than 85 percent of the digital threats that they face each day. (Turning off your computer at night is one.)  Reading the book will help you understand why they are so important.

 
 

The Electronic Frontier Foundation (EFF) is the largest organization dedicated to Internet privacy and related issues. Its resources are considered the gold standard by many experts.

That’s why their Secure Messaging Scorecard caught our attention. It examines dozens of messaging technologies and rates each of them using a range of security metrics. If you already use messaging you think is secure, you may be in for a surprise. (Hint:  low ratings are given to Google Hangouts/Chat “Off the Record,” Hushmail, Skype and Yahoo Messenger, among others.)

The scorecard is part of a campaign the EFF has undertaken in collaboration with Julia Angwin at ProPublica and Joseph Bonneau at the Princeton Center for Information Technology Policy to help consumers access tools to encrypt their communications. They are championing technologies that are strongly secure and also simple to use.

If you are interested in using the safest encryption tools in your communications, their report is essential reading.