Thousands of Android apps bypass Advertising ID to track users

Six years after it was introduced, it looks as if Android’s Advertising ID (AAID) might no longer be the privacy forcefield Google claimed it would be.

New research by AppCensus (https://blog.appcensus.mobi/2019/02/14/ad-ids-behaving-badly/) has found that 18,000 Play Store apps, many with hundreds of millions of installs, appear to be sidestepping the Advertising ID system by quietly collecting additional identifiers from users’ smartphones in ways that can’t be blocked or reset.
https://nakedsecurity.sophos.com/2019/02/19/thousands-of-android-apps-bypass-advertising-id-to-track-users/

Read Via Telegram

#google #vulnerability #ads
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_ES

Europe’s Article 13 is trying to kill memes and content creators AROUND THE GLOBE, and we’re running out of time. Spread the word.

It means almost every YouTube channel/user of any social media using something that isn’t theirs is on the chopping block. This means the death of our fanart, fan theory videos, gaming channels, and most of all, our memes.

❗️Please don’t let this happen, it’ll ruin lives and jobs and take away peoples freedom in Europe. Even if you don’t live in Europe please sign the petition, it affects everyone. Europe helped the US out with Net Neutrality, so please help us out with Article 13.

Leave your vote: 👇
https://www.change.org/p/european-parliament-stop-the-censorship-machinery-save-the-internet

More memes:👇
https://whatthevoss.eu/
#WhatTheVoss #censorship #SaveTheInternet #article13 #uploadfilter #FreeSpeach #CreateAwareness #EU

European Police Congress: Darknet must be removed
At the European Police Congress in Berlin, a ban on Darknets in free democratic states was called for.

Less data protection, no darknet

There is no need for Darknet in democracies, writes State Secretary Günter Krings at the European Police Congress. His second speaker called for the reduction of data protection in China to be taken as a guideline.

❗️China is doing the right thing

Wolfgang Sobotka, President of the Austrian National Council and successor to Krings, also spoke out against anonymity and data protection. He praised China for having no inhibitions and successfully ignoring data protection in the analysis of citizens. The Chinese government is working on a scoring system for its citizens. The procedure called Social Credit System relies on the comprehensive monitoring of the population.

https://www.heise.de/newsticker/meldung/Europaeischer-Polizeikongress-Weg-mit-dem-Darknet-4313276.html
#SaveTheInternet #FreeSpeach #darknet #dataprotection #EuropeanPoliceCongress
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES

♦ FDroid mirror repositories

Maybe FDroid's default repository is slow to connect for you. It's kind of overloaded, and so several mirrors have been created.

Right now, they are:
-- https://f-droid.org/repo
-- rsync://mirror.f-droid.org/
-- https://fdroid.tetaneutral.net/fdroid/repo
-- https://mirror.cyberbits.eu/fdroid/repo
-- https://bubu1.eu/fdroid/repo
-- https://fdroid.swedneck.xyz/fdroid/repo
-- https://ftp.fau.de/fdroid/repo
-- https://fauftpffbmvh3p4h.onion/fdroid/repo
-- https://mirror.jarsilio.com/fdroid/repo

And all the mirrors will always be listed at:
https://gitlab.com/fdroid/mirror-monitor/#active-mirrors

Just disable the main FDroid repository (some mirrors may even ask you to delete it), add any one of these and enable it, refresh, and make FDroid suck a lot less.

📡 @NoGoolag
#fdroid #mirror #repositories

Assistant applications

Google assistant works by learning everything about you.
MicroG aims to let Google learn nothing about you.

Alternatives you can use:

♦ Saiy
-- Fully customizable open source voice assistant -- https://t.iss.one/libreware/198
-- (Needs Google Assistant right now but working on removing that dependancy)


♦ Dragonfire
-- https://t.iss.one/libreware/207

♦ Just search
-- Simple internet search shortcut
-- https://f-droid.org/app/co.pxhouse.sas

📡 @NoGoolag
#assistant #search #alternatives

🎧 Decentralize It

Some people believe that decentralization is the inevitable future of the web. They believe that internet users will start to demand more privacy and authenticity of information online, and that they’ll look to decentralized platforms to get those things. But would decentralization be as utopian as advocates say it could be?

📻 https://irlpodcast.org/season4/episode6

📡 @NoGoolag
#podcast #decentralize #irl

A comic that explains what happens when you browse to a website

https://howdns.works

📡 @NoGoolag
#dns #how

Google's Nest Hub Has a Microphone It Forgot to Mention

Google said Wednesday it forgot to mention that it included a microphone in its Nest Secure home alarm system, the latest privacy flub by one of the tech industry’s leading collectors of personal information.

The company said earlier this month that its voice assistant feature would be available on the system’s Nest Guard, which controls home alarm sensors.
https://www.securityweek.com/googles-nest-hub-has-microphone-it-forgot-mention

Read Via Telegram

#deletegoogle #surveillance #privacy
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_ES

Pedos pollute YouTube comments on kids’ videos, advertisers flee

A YouTube content creator has found what he calls a “wormhole” that, within as few as five clicks, could lead to a “soft-core pedophilia ring” where pedophiles are connecting with each other in the comments sections of innocuous videos featuring children.
https://nakedsecurity.sophos.com/2019/02/22/pedos-pollute-youtube-comments-on-kids-videos-advertisers-flee/

Read Via Telegram

#deletegoogle #deleteyoutube #vulnerability
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_ES

Mark Zuckerberg says Facebook has been an 'innovator in privacy'

- Facebook CEO Mark Zuckerberg said Facebook is an "innovator in privacy" despite criticisms of the company's own lapses.
- In a discussion with Harvard law professor Jonathan Zittrain, Zuckerberg said Facebook has long been focused on private messaging.
- Zuckerberg said encrypted messaging on platforms like WhatsApp gives consumers assurance that governments aren't eavesdropping on them.

Despite the numerous privacy scandals Facebook has faced of late, CEO Mark Zuckerberg calls the company an "innovator in privacy."

https://www.cnbc.com/2019/02/20/zuckerberg-says-facebook-has-been-an-innovator-in-privacy.html

#DeleteFacebook
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES

Always up to date with the

✅ Latest Vulnerabilitys.
✅ Latest Patches.
✅ Privacy and democracy Breaches.
✅ Security Breaches.
✅ InfoSec and other worldwide cybersecurity news.

🇬🇧
https://t.iss.one/cRyPtHoN_INFOSEC_EN
🇪🇸
https://t.iss.one/cRyPtHoN_INFOSEC_ES
🇩🇪
https://t.iss.one/cRyPtHoN_INFOSEC_DE

My protonmail account was blocked with no reason

Coming back to the subject at hand, your account is was disabled because you are the suspect in a case of criminal fraud and theft, and there has been a request to disable your account, to prevent the theft from occurring. You have been accused of being involved in cryptocurrency theft. As this is a criminal case, it will most likely be heard by the State of Geneva's prosecutor's office. You will of course have the opportunity to present a defense in court, should you wish to reveal your identity in court, and should you prevail, the courts will also mandate the restoration of your account.
https://np.reddit.com/r/ProtonMail/comments/atv7c1/my_protonmail_account_was_blocked_with_no_reason/eh4cb1s/

#ProtonMail
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES

📺🇬🇧 China: How Xi Jinping´s surveillance state becomes reality

What if a surveillance state becomes reality? In China George Orwell´s classic 1984 seems happening now as a surveillance state is infiltrating daily life. Is China´s President Xi Jinping heading China into a complete surveillance state? Has China already become an all-seeing state that records all citizen´s bad actions?

📺 https://www.youtube.com/watch?v=v1BTmfxAJqQ

📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES

Developer of Maps (F-Droid) needs help. It seems there is no possibility to use the official maps.me map server anymore (or a mirror), the only option is building our own maps. He is looking for people who could kindly provide a server with updates for the whole planet. It takes more than 3 days to generate the data and about 400GB of free space.

If you're interesting, here are the details: https://gitlab.com/axet/omim/issues/77

#maps #fd #fdroid

New AOSDP for whyred (Xiaomi Redmi Note 5 pro) build is up!

AOSDP-9.0-Alpha-whyred-20190224

Changelog:
Added MicroG support
Hardened frameworks base and Settings
[Disabled Bluetooth by default
Hide sensitive information by default on lockscreen
Require unlocking to use nfc, bluetooth, airplane, wifi, rotation, data saver, cellular and battery saver qs title
Increased default maxium password lenght
Changed DNS fallback from Google to DNS Watch
Added MAC randomization]
Added VoLIT icon
Little bug fixes/improvments
Changed DarkLauncher icon

Stay tuned for more stuff, that's it for today, more builds coming to OP3 and Poco Phone.
You can say your suggestions for other devices, also could give a try to build yourself🙂

AOSDP Channel:
https://t.iss.one/AOSDPx

Group: https://t.iss.one/joinchat/IUxM9UsgzMa39dhnldhD0g

Sources
https://github.com/AOSDP

#aosdp

Malspam campaign fakes Google reCAPTCHA images to fool victims

A recently discovered malspam campaign targeting customers of a Polish bank was found using forgeries of Google reCAPTCHA images to fake legitimacy.
https://www.scmagazineuk.com/malspam-campaign-fakes-google-recaptcha-images-fool-victims/article/1562714

Read Via Telegram

#malspam #deletegoogle #captcha
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES

Facebook, Google, Twitter - your lying company policy disgusts me!

Whether it's fake news, hate, crimes or data GAU - Mark Zuckerberg, Sheryl Sandberg or Susan Wojcicki from the Youtube conspiracy platform have no answer to the question of how to get the lid back on Pandora's can. Hence my appeal to all politicians to read this:

How long are you going to say that you are innocent of the growing polarization of our society, of the erosion of democracy? Who gives you the right to knowingly spread hate and lies, spy on us and sell our data just because you can?

For a long time I bit my lips, convinced myself that excesses are part of it, on the way from startup to global corporation. But my understanding of your irresponsibility is completely exhausted. If you ask me, you should be so thoroughly regulated that the servers are smoking at you! Your top management should be ordered to obligatory courses in ethics and humanism, preferably for the rest of your life.

📡@NoGoolag
#DeleteFacebook

How Google, Microsoft, and Big Tech Are Automating the Climate Crisis

In a deal that made few ripples outside the energy industry, two very large but relatively obscure companies, Rockwell Automation and Schlumberger Limited, announced a joint venture called Sensia.

The new company will “sell equipment and services to advance digital technology and automation in the oilfield,” according to the Houston Chronicle. Yet the partnership has ramifications far beyond Houston’s energy corridor: It’s part of a growing trend that sees major tech companies teaming with oil giants to use automation, AI, and big data services to enhance oil exploration, extraction, and production.

Rockwell is the world’s largest company that is dedicated to industrial automation, and Schlumberger, a competitor of Halliburton, is the world’s largest oilfield services firm. Sensia will be, according to the press release, “the first fully integrated digital oilfield automation solutions provider.” It will enable drilling rigs to run on automated schedules, enhance communication between oilfield equipment, and help machinery assess when it is in need of repair or modification—all in the name of making drilling for oil smarter, cheaper, and more efficient.

As the Chronicle put it, Sensia will “help producers churn out more oil and gas with fewer workers.” Which, of course, is precisely the opposite of what needs to be happening in regards to the churning out of oil right now.

The specter of catastrophic climate change has never loomed so large. The most recent major United Nations report by the world’s top climate scientists concluded we have just over a decade to draw down emissions to the point that we might avoid runaway climate change and the soaring temperatures and rising sea levels that will accompany it.

Read the whole story on TG 👇
https://t.iss.one/BlackBox_Archiv/129

#google #microsoft #BigTech #BigOil #ClimateCrisis
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES

NanoDroid

NanoDroid is a microG installer (by Setialpha) that can install MicroG either in system or systemlessly (as a Magisk module)

🌏Web:
https://nanolx.org/nanolx/nanodroid

📚 Guide:
https://gitlab.com/Nanolx/NanoDroid

📝 Changelog:
https://gitlab.com/Nanolx/NanoDroid/blob/master/ChangeLog.md

Stable downloads:
https://downloads.nanolx.org/NanoDroid/Stable

Beta downloads:
https://downloads.nanolx.org/NanoDroid/Beta

🗣 XDA:
https://forum.xda-developers.com/apps/magisk/module-nanodroid-5-0-20170405-microg-t3584928

📲 F-Droid repo
https://nanolx.org/fdroid/repo
Link to add:
https://nanolx.org/fdroid/repo?fingerprint=862ED9F13A3981432BF86FE93D14596B381D75BE83A1D616E2D44A12654AD015

🆚 The full list of differences compared to upstream microG can be read here:
https://github.com/Nanolx/android_packages_apps_GmsCore#changes


Nanodroid zips:

♦️NanoDroid-*.zip
--This is the biggest zip and full of other foss apps, terminal utilities and the best Legend of Zelda ringtones and sounds.
--Flash either this or the MicroG zip.

♦️NanoDroid-microG-*.zip
--The real package. Contains MicroG stuff and patched Play Store.
--Flash either this or the full NanoDroid zip. This is recommended.

♦️NanoDroid-BromiteWebView-*.zip
--Contains the Bromite webview. Currently the easiest way to intall it.

♦️NanoDroid-fdroid-*.zip
--Contains F-droid and its privileged extension. The full zip already includes FDroid.

♦️NanoDroid-OsmAnd-*.zip
--Contains the OsmAnd maps application along with a contour lines plugin to be installed as system (not sure what good that will do)

♦️NanoDroid-patcher-*.zip
--Signature spoofing enabler.

♦️NanoDroid-setupwizard-*.zip
--Aroma setup wizard for MicroG nanodroid. Either use this, or default settings.

♦️NanoDroid-systest-*.zip
--If you face issues with NanoDroid installation, flash this and it will create logs which you can send to the dev.

♦️NanoDroid-uninstaller-*.zip
--Self-explanatory.

(Note: * = latest version)


🏗 Steps to Install NanoDroid are:

NOTE: Do this on a clean flash of the ROM. That is, wipe Data, Cache and System, and flash your ROM again. (Otherwise you may have permission problems and battery drain.) Optionally, flash Magisk.
Make sure your ROM supports Signature Spoofing. Check #sigspoof

1. After installing your rom and TWRP, reboot before doing anything. This initalizes folders necessary for patching/installation
2. Flash NanoDroid-setupwizard-*.zip and configure your install.
3. If sig spoofing isn't included in your ROM or doesn't work, Flash the NanoDroid patcher. If you're on P, make sure you deodex first!
4. Flash either the NanoDroid-*.zip or NanoDroid-microG-*.zip.
5. Optionally, flash these zips: NanoDroid-BromiteWebView-*.zip, NanoDroid-fdroid-*.zip and Nanodroid-OsmAnd-*.zip.
6. Setup MicroG using the microg #guide.

Report problems with NanoDroid here:
https://forum.xda-developers.com/apps/magisk/module-nanomod-5-0-20170405-microg-t3584928/


📡 @NoGoolag
#nanodroid #microg #guide