Pegasus no longer galloping so hard, and other privacy and security news

Privacy

This week saw some interesting developments about NSO Pegasus: Israelis were mostly unbothered about NSO’s spyware — until it was reportedly turned on them. Now, NSO chairman steps down after domestic spying allegations in Israel For a broader view of the global surveillance politics see this NYT exposition: The Battle for the World’s Most Powerful Cyberweapon

Always looking for new ways to track users, Google abandons FLoC, introduces Topics API to replace tracking cookies

After public criticism, The IRS Needs to Stop Using ID.me's Face Recognition, Privacy Experts Warn, … Treasury reconsiders IRS use of ID.me facial recognition amid privacy concerns

LG’s Latest Announcement Solidifies Everything Wrong With TVs: Now your TV will spy as much on you as your phone!

If you want to know what Amazon knows about you, make sure you have enough storage:

How to Download Everything Amazon Knows About You (It's a Lot)

It’s not just about your private actions: The modern workplace: Will remote tech workers tolerate being monitored?

The technologies to identify users continue to advance: GPUs Can Be Exploited for Privacy-Invasive Browser Fingerprinting

Security

FTC: US consumers lost $770 million in social media scams in 2021, up 18x from 2017

More security vulnerabilities are exposed:

• DazzleSpy: Pro-democracy org hijacked to become macOS spyware distributor

• Safari Flaws Exposed Webcams, Online Accounts, and More

• Android malware can factory-reset phones after draining bank accounts

NFTs and Crypto applications appear to be particularly vulnerable : This NFT on OpenSea Will Steal Your IP Address. Here’s an explanation: This Is Why There’s Been So Many NFT and Crypto Hacks The blockchain is shockingly secure, but the platforms that interact with it are a paradise for hackers and scammers.

Even 2FA has it’s loop holes: Did You Install This Malicious Android 2FA Authenticator App? Trying to improve security Here's why your Apple two-factor texts include strange tags

Your personal data is valuable, and dangerous in the wrong hands. It's time to protect it better hmmm..., why is this news?

Let’s make the teen Tesla hack a teachable moment – the software and service supply chain appears to be unprotected. They flaw was in 3rd party software that users loaded, and that managed to access key automotive functions.

Apple releases iOS 15.3 with fix for ‘actively exploited’ iPhone flaw … ground hog day!

Regulations

The federal agencies appear to be busy

• FCC moves forward with plans to require broadband 'nutrition labels' this might work for the people who read them…

• FTC fines online shop $4M for hiding reviews below 4 stars

• Regulatory headwinds topple Facebook's cryptocurrency initiative

Federal appeals court upholds California net neutrality law

WhatsApp quizzed over consumer protection concerns in EU –it’s not just the content of the terms, but also how they are being pushed