New Study: 'Nearly Anyone' Can Access Your Phone Location Data and Multiple States are Suing Meta (Issue 26, 2023)
Also, DNA data from 23andMe is on the dark web and the UK is worried Snapchat isn't protecting children.
We’re delivering you the hottest internet news that affects all of us. Scroll down to read our full reporting below and if you love what we’re doing, please consider contributing $5 per month so that we can continue providing you with this vital, unique reporting.
Talk Liberation is committed to providing equal access for individuals with disabilities. To view an accessible version of this article, click here.
In this edition:
Cellphone Roaming Vulnerabilities Let Anyone Track You
FTC Claims Amazon Has Automated Price Hiking
DNA Data From 23andMe For Sale on Dark Web
Colorado Court Deals Blow to Privacy in Criminal Google Keyword Case
States Sue Meta Claiming the Tech Giant “Fueled Youth Mental Health Crisis”
Clearview AI Wins Appeal Against UK Privacy Sanction
Californians Allowed Deletion of Personal Data from Big Tech
Snapchat’s AI Bot May be Unsafe for Children
Cellphone Roaming Vulnerabilities Let Anyone Track You
A new report from the University of Toronto’s Citizen Lab highlights the ease that government, law enforcement, private snoops and even criminals have when tracking your physical location.
Vulnerabilities inherent in cellphone roaming systems make it nearly impossible to keep your phone’s location private. This is due to the fact that each time you travel to a new area with a different cell service provider, the previous provider must perform a “hand off” that includes sending personally identifiable information to the new provider.
In an example provided by Citizen Lab, one of the largest information exchange companies helping cell providers swap info on roaming users, IP Exchange, allows any of the telecom companies managing their nearly 800 mobile networks across the globe to privately sell or re-sell access to IP Exchange so nearly anyone can get their hands on user geolocation data.
FTC Claims Amazon Has Automated Price Hiking
The antitrust lawsuit against Amazon being brought by the United State’s Federal Trade Commission (FTC) has publicly revealed a secret pricing algorithm known as "Project Nessie".
The FTC’s suit alleges that "Amazon’s use of its Project Nessie pricing system is an unfair method of competition in violation of Section 5(a) of the FTC Act." Unnamed sources speaking to the Wall Street Journal have claimed the amount of additional revenue squeezed from American households via Project Nessie are “in excess of $1 billion”.
Along with the issue involving Project Nessie, the FTC’s suit contains a total of 20 charges against Amazon, including: four counts of federal monopoly maintenance and two counts of unfair methods of competition.
DNA Data From 23andMe For Sale on Dark Web
A database of users from the DNA genotyping website “23andMe” has been shared on the dark web, as verified by NBC News. Specifically targeted were users with Ashkenazi Jewish ancestry and the database appears to contain information on nearly one million people who’ve previously used 23andMe’s service.
23andMe has stated they are investigating the leak and currently believe that the data hackers obtained came from using available passwords from previously hacked 23andMe users and then exploiting the fact that the genetic website gives vast access to related users genetic information.
23andMe has released a press statement saying; “We are taking this issue seriously and will continue our investigation to confirm these preliminary results”.
Colorado Court Deals Blow to Privacy in Criminal Google Keyword Case
A suspect in a recent Colorado arson case asked the court to throw out evidence against them due to the use of a “reverse-keyword warrant” used to obtain their identity. Lawyers for the suspect claimed the warrant violated the Fourth Amendment ban on “unreasonable searches and seizures”.
The suspect claimed that warrants issued to Google produced details on 61 searches made by 8 user accounts and included IP addresses and user information that led law enforcement to charge the suspect.
The case eventually made its way to the Colorado Supreme Court who upheld the warrant, stating that law enforcement “acted in good faith” and that the suspect’s Fourth Amendment rights were not violated.
The negative privacy implications for anyone using search engines prompted the Colorado Supreme Court to state: "If dystopian problems emerge, as some fear, the courts stand ready to hear argument regarding how we should rein in law enforcement's use of rapidly advancing technology. Today, we proceed incrementally based on the facts before us.”
States Sue Meta Claiming the Tech Giant “Fueled Youth Mental Health Crisis”
Over 40 attorneys general representing their respective states have opened a lawsuit against Meta claiming the social media behemoth designed products that are “deliberately addictive and fuel the youth mental health crisis”.
Likening the recent litigation to lawsuits from the 90’s against Big Tobacco’s marketing practices, Jean Twenge, a professor of psychology at San Diego State University quoted: "These days, when we see people smoking, they're in the small minority, and we think, what are they doing? Maybe we'll think that way in the future about 12-year-olds and 14-year-olds being on social media."
The core of the multi-state suit alleges that Meta dismissed safety concerns in order to addict as many young people as possible via “dopamine-manipulating features” that ultimately boosted their bottom line.
If the lawsuits are successful they will have Meta's design features considered unlawful and in violation of state consumer protection laws, triggering hefty financial penalties. Also included in the state attorneys general agenda is a request for the court to force drastic changes at Facebook and Instagram that make the platforms safer for young people.
Clearview AI Wins Appeal Against UK Privacy Sanction
Over one year ago in May of 2022 the UK’s Information Commissioner’s Office (ICO) enforced a fine of £7.5 million (approx. $10 million) against the US based facial recognition company, Clearview AI. Included in the enforcement action was a requirement for Clearview to delete information it held on UK citizens, which prompted Clearview to file an appeal.
The outcome of the appeal was finalized earlier this October with the tribunal deciding that the companies activities fall outside the UK’s jurisdiction when it comes to data protection law.
It should be noted that the breaches of local privacy law were upheld, however, the fines and enforcement action levied by the ICO was determined to not be legally binding.
Californians Allowed Deletion of Personal Data from Big Tech
In a big win for privacy advocates the state of California’s Governor has signed a new bill, the Delete Act, into law. The new law enhances the ability of Californians to request their data be deleted as prior to the Delete Act this action required filing a request with each individual company.
Also included in the bill is a requirement for all data brokers to register with the state’s data privacy watchdog, the California Privacy Protection Agency (CPPA) and create an easy and free way for any resident to delete their data using a single webpage.
Under the new law, California will have until 2026 to implement the Delete Act and is currently working to ascertain the mechanisms that will be used to enforce the bill.
Snapchat’s AI Bot May be Unsafe for Children
The UK’s Information Commissioner’s Office (ICO) has issued a preliminary enforcement notice against Snapchat due to the social app’s “potential failure to properly assess the privacy risks posed by its generative AI chatbot ‘My AI’”.
As Snapchat prepared to roll out its generative AI chatbot ‘My AI’ the company performed a risk assessment that the ICO claims did not incorporate the UK’s latest data protection rules, and particularly new rules related to the personal data of 13-17 year olds.
While there is no enforcement action accompanying a preliminary notice, the ICO has essentially warned Snapchat’s parent company Snap Inc. that the government watchdog is concerned “Snap may not have taken steps to ensure the product complies with data protection rules”.
That concludes this edition of Your Worldwide INTERNET REPORT!
Remember to SUBSCRIBE and spread the word about this unique news service.
This issue of Your Worldwide INTERNET REPORT was written by Matt Millen of WillenRimer; Edited by Suzie Dawson and Sean O’Brien; Graphics by K4t4rt; with production support by Beth Bracken.
Talk Liberation - Your Worldwide INTERNET REPORT was brought to you by Panquake.com. We Don’t Hope, We Build!
© Talk Liberation Limited. The original content of this article is licensed under a Creative Commons Attribution-ShareAlike 4.0 International license. Please attribute copies of this work to “Talk Liberation” or talkliberation.com. Some of the work(s) that this program incorporates may be separately licensed. For further information or additional permissions, contact licensing@talkliberation.com