JustAnotherOldGuy tipped us off to this story. The Daily Mail reports: Home Depot and Lowe’s are secretly using facial recognition technology to track customer movement in their stores, violating privacy laws in Illinois, plaintiffs in two class action lawsuits say. The plaintiffs, who are Illinois residents, allege the two big box retailers are using the technology without properly notifying customers or…
Tag: disclosure
United States Files Civil Lawsuit Against Edward Snowden
The United States today filed a lawsuit against Edward Snowden, a former employee of the Central Intelligence Agency (CIA) and contractor for the National Security Agency (NSA), who published a book entitled Permanent Record in violation of the non-disclosure agreements he signed with both CIA and NSA. From a report: The lawsuit alleges that Snowden published his book without submitting it…
Online Lenders Publicly Shame Debtors in the Philippines Using Their Facebook Contacts
A man named Roger was surprised to hear from an old college friend after all these years, reports the Philippine Daily Inquirer — and even more surprised to find out why. What she wanted to know was why he gave her number to an online lending company that was hounding him at that time. The company told her that he was…
Kickstarter Accused of ‘Union-Busting’ After Firing Three Employees
The BBC reports that Kickstarter has been accused of “union-busting” after firing three employees: Taylor Moore, the company’s head of comedy and podcasts, tweeted that he and another employee were fired on Thursday, while tech and design lead Clarissa Redwine was fired last week. All three were heavily involved in the formation of a Kickstarter union this year, Mr Moore added….
Google Confirms Android 10 Will Fix 193 Security Vulnerabilities
“Were it not for third-party components, the August Android Security Bulletin would have been the first report to be released with only a single critical vulnerability found,” reports TechRepublic. “However, with the inclusion of Broadcom and Qualcomm components, there are seven in total.” Meanwhile, Forbes reports on what’s being fixed in September’s release of Android 10: 193 Android security vulnerabilities needed…
Researcher Publishes Second Steam Zero Day After Getting Banned on Valve’s Bug Bounty Program
A Russian security researcher has published details about a zero-day in the Steam gaming client. This is the second Steam zero-day the researcher has made public in the past two weeks. From a report: However, while the security researcher reported the first one to Valve and tried to have it fixed before public disclosure, he said he couldn’t do the same…
Intel Patches Three High-Severity Vulnerabilities
Intel’s latest patches “stomped out three high-severity vulnerabilities and five medium-severity flaws,” reports Threatpost: One of the more serious vulnerabilities exist in the Intel Processor Identification Utility for Windows, free software that users can install on their Windows machines to identify the actual specification of their processors. The flaw (CVE-2019-11163) has a score of 8.2 out of 10 on the CVSS…
Google Project Zero: 95.8% of All Bug Reports Are Fixed Before Deadline Expires
The Google Project Zero team said that around 95.8% of the security bugs they find in other software and report to their respective vendors get fixed before the 90-day deadline for a public disclosure expires. From a report: That’s quite the batting average for one of world’s most infamous cybersecurity programs. In a statistic shared on Wednesday, Google’s elite security team…