SEC, State Attorneys Investigate Zoom Over China Contacts

After several months of investigation by the U.S. Securities and Exchange Commission and two U.S. Attorneys’ offices, Zoom Video Communications revealed that it has provided investigators with information regarding its interactions with China and other governments in addition to security and user privacy issues. A former employee based in China, Xinjiang Jin (also known as Julien Jin) has been charged by the Department of Justice for helping the Chinese government halt a remote commemoration of the Tiananmen Square uprising. Continue reading SEC, State Attorneys Investigate Zoom Over China Contacts

ETC Executive Coffee: USC Students Meet with Dolby Execs

In the final Fall 2020 installment of ETC@USC’s Executive Coffee with… series on November 12, Dolby Laboratories proposed two discussion topics: 1) Virtual and augmented reality; what are they good for, and what concerns you about them? And 2) Privacy, security and controlling your own data. Richard Doherty, senior director of technology strategy, Office of the CTO at Dolby Labs led a group of 14 Dolby employees in a discussion with seven USC students studying cinema, engineering, music, communication and business. Continue reading ETC Executive Coffee: USC Students Meet with Dolby Execs

Ireland Fines Twitter for Privacy Breach in a First for U.S. Tech

Ireland’s Data Protection Commission fined Twitter €450,000 (about $546,000) for failing to notify the regulator or document a data breach within 72 hours. The breach, revealed in January 2019, exposed some Android users’ private tweets for over four years. Twitter chief privacy officer Damien Kieran said the company takes responsibility … and remains “fully committed to protecting the privacy and data of [its] customers.” This is the first time a U.S. tech company has been served with a GDPR fine in a cross-border case. Continue reading Ireland Fines Twitter for Privacy Breach in a First for U.S. Tech

Apple’s Mandatory Privacy Labels Launch on All iOS Platforms

Apple launched mandatory labels that provide easy-to-grasp information of the privacy policies for apps in the Mac and iOS App stores. The mandatory policy applies only to new apps or updates of existing ones. Although countries such as Finland, Singapore and the UK have adopted such labels, Apple appears to be the first global Big Tech company to “embrace and promote” the idea. The labels list three items: Data Used to Track You, Data Linked to You and Data Not Linked to You, with details under each. Continue reading Apple’s Mandatory Privacy Labels Launch on All iOS Platforms

Lawsuits Against Facebook Also Target Data Sharing via APIs

This week, the Federal Trade Commission and 46 state attorneys general filed lawsuits against Facebook for anticompetitive practices. But it is also looking at how Facebook leveraged user data to both lure and control third party developers, relying heavily on data sharing via application programming interfaces (APIs). MIT Initiative on the Digital Economy director Sinan Aral noted that the upcoming cases could set a precedent for any platform that shares data via an API and has conditions on that data sharing.

Continue reading Lawsuits Against Facebook Also Target Data Sharing via APIs

Google Intros New Security Interface Version with Chrome 88

When Google’s next version of Chrome — Chrome 88 — debuts in mid-January, it will include the third version of Manifest, the company’s programming interface for privacy and security. The new version will limit some abilities of extensions used to customize the Chrome browser, and some developers are worried that it will hobble ad blockers. In fact, Manifest V3 limits the “rules” that extensions can be applied to a web page as it loads. Manifest V2 will continue to work for at least one year. Continue reading Google Intros New Security Interface Version with Chrome 88

ETC Executive Coffee: Equinix Ponders Consequences of AI

Equinix executives led the fifth installment of ETC@USC’s Executive Coffee with… series. “AI development and ethics, what are the intended and unintended consequences of the rollout?” was the topic of the October 22 discussion. Kaladhar Voruganti, VP of technology innovation and senior fellow, and Doron Hendel, senior manager of global business development, ecosystem development, partnerships and alliances at Equinix led the discussion. Eleven graduate and undergraduate USC students, mostly computer science and data science majors, participated. Continue reading ETC Executive Coffee: Equinix Ponders Consequences of AI

Apple and Google to Broaden and Clarify Key Privacy Policies

Google stated that, on January 18, a day before the release of Chrome 88, it will require that every extension publicly display its privacy policies and developers will be limited with what they can do with the collected data. Meanwhile, Apple stated that its mandatory app privacy “nutrition labels” program applies to its own apps as well as those from third-party developers. Apple and Google also banned data broker X-Mode Social from collecting location information from mobile devices using their operating systems. Continue reading Apple and Google to Broaden and Clarify Key Privacy Policies

Amazon Sidewalk Rolls Out with Echo, Ring Software Updates

Amazon is slowly rolling out Amazon Sidewalk, first revealed in 2019 as an effort to create smart neighborhoods via wireless Bluetooth Low Energy (BLE) and 900MHz radio signals that can expand the connectivity reach to up to half a mile. Using a small amount of the home’s Wi-Fi bandwidth, Amazon Sidewalk can connect the user with any compatible device, such as garage door openers or outdoor lights, without any additional hardware. Amazon has unveiled it first as a free software update to Echo speakers and Ring cameras. Continue reading Amazon Sidewalk Rolls Out with Echo, Ring Software Updates

Internet Task Force Pushes CDN Routing Security Measures

The Internet’s Border Gateway Protocol (BGP), its universal routing system, has always had design weaknesses. Now, a global initiative known as Mutually Agreed Norms for Routing Security (MANRS) — supported by the Internet Society and a consortium of Internet infrastructure companies — has established a task force to assist content delivery networks (CDNs) and other cloud services in hardening security. Although MANRS already focused on improving security for network operators and their physical hardware, this task force focuses on bringing the process to the cloud. Continue reading Internet Task Force Pushes CDN Routing Security Measures

Congress Is United in Passing Internet of Things Security Bill

Congress gave unanimous approval to the IoT Cybersecurity Improvement Act, a law covering all the bases for the security of the Internet of Things. The Act was written with advice from Symantec, Mozilla and BSA | The Software Alliance among others, which contributed a list of considerations including secure development, identity management, patching, and configuration management. The law is perceived as establishing a baseline for IoT devices and products. Manufacturers can choose to release products that do not comply. Continue reading Congress Is United in Passing Internet of Things Security Bill

Twitter Intros Ephemeral Tweets, Gathering Spaces for Audio

Twitter is launching Fleets, a feature that allows users to post photos or text that will disappear after 24 hours. Snapchat pioneered the ephemeral post, followed by Instagram and Facebook. Rollout of the Stories-like feature is moving forward, but has been scaled back as Twitter addresses “some performance and stability problems.” The platform’s “global town square” continues to be its “marquee product” but, said Twitter director of design Joshua Harris, the Fleets feature creates a space with less pressure for users who lurk but don’t post. The company is also testing Spaces, a new audio feature similar to Clubhouse, a startup that debuted earlier this year. Continue reading Twitter Intros Ephemeral Tweets, Gathering Spaces for Audio

Government Extends Deadline for ByteDance to Divest TikTok

Although ByteDance’s TikTok missed a Thursday deadline to complete its deal with Oracle and Walmart, the Commerce Department did not enforce the shutdown order, citing last month’s preliminary injunction from U.S. District Judge Wendy Beetlestone. That suit was brought by three TikTok stars who charged that the government exceeded its authority by threatening the “robust exchange of informational materials.” President Trump initiated the effort to get TikTok to divest itself of its U.S. operations based on national security concerns. Now the deadline has been extended to November 27. Continue reading Government Extends Deadline for ByteDance to Divest TikTok

Private 5G Networks Bring Services to Rural U.S., Companies

Private 5G networks are being built across the country, mainly intended to connect machines rather than smartphones. This follows in the footsteps of utility companies, retailers and large enterprises that once built their own private 4G networks. Private networks are more readily customized and can offer better reliability and security than Wi-Fi over large areas. In rural Wisconsin, for example, WiConnect is benefitting from 5G to keep its 1,400 households connected to a broadband network that’s faster than ever before. Continue reading Private 5G Networks Bring Services to Rural U.S., Companies

WhatsApp Debuts Disappearing Messages, Expands in India

In response to the pressure for privacy on social media apps, Facebook-owned WhatsApp debuted a setting to automatically delete messages after seven days. This is intended to make users feel more secure in communicating one-on-one and in group chats. As WhatsApp product manager Zafir Khan noted, “records of most in-person conversations don’t exist forever, so conversations on WhatsApp shouldn’t have to either.” He added that, nowadays, people are “using WhatsApp messaging for very deep and intimate conversations.” Continue reading WhatsApp Debuts Disappearing Messages, Expands in India