Posts

Android Users Sue Google Over Alleged Security Flaw Exposing COVID-19 Contact-Tracing Data

Protect yourself from online attacks that threaten your identity, your files, your system, and your financial well-being.


Screenshot of CA Notify website. A proposed class action is asking a federal court to order Google to fix an alleged security threat that makes the company’s COVID-19 contact-tracing system developed with Apple less “privacy-preserving” than the tech giants claimed.

Nearly 40 countries and dozens of U.S. states, including California, use the Google-Apple Exposure Notification System (GAEN) for their coronavirus contact-tracing apps. The system leverages Bluetooth technology and deploys safeguards such as randomized identifiers, called rolling proximity identifiers or RPIs, and decentralized storage on devices to protect users’ privacy.

In a complaint filed Wednesday in the U.S. District Court for the Northern District of California, attorneys from Lieff Cabraser Heimann & Bernstein assert that dozens of third parties might have access to the system’s stored data on mobile devices, including personally identifiable information and potential COVID-19 exposure results.

Source…

Govt.-Backed Contact-Tracing Apps Raise Privacy Hackles

New opt-in COVID-19 Exposure Notifications Express systems baked into Apple’s iOS and available on Android need privacy guardrails, say privacy advocates.
Mobile Security – Threatpost

EFF: Google, Apple’s Contact-Tracing System Open to Cyberattacks

Malicious actors could potentially harvest data over the air and use it to shake confidence in the public-health system, EFF says.
Mobile Security – Threatpost