Apple Confirms Governments Using Push Notifications to Surveil Users ๐Ÿ‘€www.macrumors.com/2023/12/06/apple-governments-surveil-push-notifications/
1575 sats \ 6 comments \ @davidw 6 Dec 2023 privacy
MacRumors article
  • According to the report, Wyden's letter said a "tip" was the source of the information about the surveillance.
  • A source familiar with the matter confirmed that both foreign and U.S. government agencies have been asking Apple and Google for metadata related to push notifications.
  • The data is said to have been used to attempt to tie anonymous users of messaging apps to specific Apple or Google accounts.
  • Reuters' source would not identify which governments were making the data requests but described them as "democracies allied to the United States." They did not know how long the requests had been going on for.
  • Apple advises developers not to include sensitive data in notifications and to encrypt any data before adding it to a notification payload. However, this requires action on the developers' part.
  • Likewise, metadata (like which apps are sending notifications and how often) is not encrypted, potentially giving anyone with access to the information insight into users' app usage.
Archive.org link
๐Ÿ’ญ Surprise,surprise...
write
preview
related posts
50 sats \ 3 replies \ @Natalia 6 Dec 2023
wen privacy tricks? @davidw I might write one about emails ๐Ÿ‘€
reply
0 sats \ 2 replies \ @davidw OP 6 Dec 2023
Please do!
Initial focus from my side will be on indexing all the current content on the site. Then Iโ€™ll be happy to dig deeper into topics and take a bunch with me on the learning journey. Iโ€™m by no means a source of authority, so will do all I can to encourage people to post and not overcrowd this sub. Tools are constantly being added.
Emails are a huge area, glad to hear you are keen to focus there. Not just with the service, but client, domain, encrypted message content and also burner emails themselves. I know very few use burner accounts.
I canโ€™t wait to see what Will at Damus is working on. He said he was looking into email for Nostr.
reply
0 sats \ 1 reply \ @Natalia 6 Dec 2023
Emails are important, not just with the service, but client and also burner emails, plus password management for all manner of uses. I know very few use burner accounts.
yes - mails, PW manager, USB encryption, TailsOS, many fun to explore; I haven't tipped my toe into Linux yet, I hope can see more hands-on guides!
reply
21 sats \ 0 replies \ @davidw OP 6 Dec 2023
100%.
Have explained to family that secure email is like the tree trunk. Providing a nice solid structure. Up to you how far down to take the roots thereafter.
Same for Mobile OS.
TailsOS and Qubes I have yet to tackle but Iโ€™ll be keen to do also next year. Converted old Apple hardware into Ubuntu Linux last year. Will no doubt write that up in time. So much to capture!
reply
1 sat \ 1 reply \ @Zepasta 6 Dec 2023
Is this why Proton Mail App for Android doesnt show notifications?
reply
6 sats \ 0 replies \ @davidw OP 6 Dec 2023
Would be nice to think someone has our backs, for once.
Especially given how popular such a feature would be and if they were limited with what they could reveal.
reply