MIT Technology Review: It’s time to rein in the data barons

MIT Technology Review: It’s time to rein in the data barons. “Facebook, Google, and Amazon all have business models that require them to scoop up large amounts of data about people to power their algorithms, and they derive their power from this information. It’s the sheer scale and sophistication of the data-collection empires they’ve built that make them so distinctive. For the past decade or so, these three firms have had a relatively smooth ride to the top. Their cornucopia of services, often provided for free, made them immensely popular and turned them into some of the most valuable businesses in the world. Their combined market capitalization of some $2 trillion at the end of May was roughly equal to the GDP of Italy. Now, however, debates are in full swing on both sides of the Atlantic about how to deal with their dominance.”

CNET: Supreme Court says warrant necessary for phone location data in win for privacy

CNET: Supreme Court says warrant necessary for phone location data in win for privacy. “The US Supreme Court has ruled in favor of digital privacy. In a 5-4 decision on Friday, the justices said police need warrants to gather phone location data as evidence for trials. That reversed and remanded a decision by the Sixth Circuit Court of Appeals.”

The Hacker News: Thousands of Mobile Apps Expose Their Unprotected Firebase Hosted Databases

The Hacker News: Thousands of Mobile Apps Expose Their Unprotected Firebase Hosted Databases. “Mobile security researchers have discovered unprotected Firebase databases of thousands of iOS and Android mobile applications that are exposing over 100 million data records, including plain text passwords, user IDs, location, and in some cases, financial records such as banking and cryptocurrency transactions.”

Indivigital: New GDPR Tool Targets Google, Facebook With ‘Automated’ Right To Be Forgotten Requests

Indivigital: New GDPR Tool Targets Google, Facebook With ‘Automated’ Right To Be Forgotten Requests. “…some of the newest GDPR tools have inverted the target market and are helping users partly automate the process of sending erasure requests, colloquially referred to as ‘the right to be forgotten,’ to organizations that store their data. One such tool… allows users to search a database of 5,000 organizations for appropriate contact details of personnel or departments responsible for erasure requests. Upon selecting an organization to contact, the tool also opens a user’s email client and populates a new message with a template email.”

Wired: Millions Of Streaming Devices Are Vulnerable To A Retro Web Attack

Wired: Millions Of Streaming Devices Are Vulnerable To A Retro Web Attack. “IN MARCH, ARTIST and programmer Brannon Dorsey became interested in a retro web attack called DNS rebinding, teaching himself how to illicitly access controls and data by exploiting known browser weaknesses. It’s a vulnerability that researchers have poked at on and off for years—which is one reason Dorsey couldn’t believe what he found.”