Sign up to Newsletter

Search

HTC gets Google envy with analytics gone awry
Content type: News & Analysis

HTC gets Google envy with analytics gone awry

2nd October 2011
Independent security researcher Trevor Eckhart revealed yesterday that a recent software update to some HTC smartphones has accidentally given third party applications access to huge amounts of private data, including call logs, geolocation history, SMS data and a whole lot more.   The update surreptitiously installs a suite of applications logging users' interactions with their devices. When a device is first switched on, the user ostensibly has the option not to allow HTC to collect and use…
Donate BLOG APEC cross border privacy rules - ready to party but will anyone come?
Content type: News & Analysis

Donate BLOG APEC cross border privacy rules - ready to party but will anyone come?

15th September 2011
The second 2011 meeting of the APEC Privacy Subgroup took place in San Francisco in mid September, and finalised the package of documents that comprise the Cross Border Privacy Rules (CBPR) system.  Endorsed by the parent Electronic Commerce Steering Group (ECSG), these will now go forward for ratification by Ministers in Hawaii in November, and subsequent implementation.  The Subgroup’s 2012 Work Plan envisages establishment of the Joint Oversight Panel (JoP), commencement of recognition of…
A cloud for grown ups?
Content type: News & Analysis

A cloud for grown ups?

9th June 2011
Other human rights organisations often ask us what they should to when it comes to their infosec needs.  Should they run their own mail server, or trust Gmail?  Should they merge their calendars by email (!), a local server, or use some cloud solution? We honestly don't know what to tell them.  In fact, we are unsure of what we ourselves should be doing.  We know that there are risks of keeping things local (e.g. lack of redundancy), and there are risks of data being stored beyond your control…
APEC developments, March 2011
Content type: News & Analysis

APEC developments, March 2011

30th March 2011
2011 is supposed to be the year that the APEC pathfinder projects on Cross Border Privacy Rules (CBPR) deliver a functional system for businesses to be certified for transfer of personal information between participating APEC economies. After the last round of APEC privacy meetings in Washington DC on 1-3 March, this prospect is looking increasingly remote. Even the basic set of documentation and processes required for the process of self-certification and assessment of businesses has yet to…
Skype called on to answer mounting security concerns
Content type: News & Analysis

Skype called on to answer mounting security concerns

11th March 2011
Skype has consistently assured that it protects its users and their communications. Having reviewed the company's technology and policies we have grounds for concern about Skype's overall level of security, and we believe there are a number of questions to which the company must respond. Skype's misleading security assurances continue to expose users around the world to unnecessary and dangerous risk. It's time for Skype to own up to the reality of its security and to take a leadership position…