2 min read

ICYMI: July 6 - July 12

ICYMI: July 6 - July 12

ICYMI is posted every Monday recapping privacy news over the last week from around the web.

iOS 14: What do the orange and green dots in the status bar mean?

The orange dot means that an application on your phone is using the microphone. The microphone is being listened to and could be recorded. This may show up when you are using Siri or Dictation, for example, and need the iPhone to transcribe your speech to text. Assuming all apps are acting in good faith, the orange dot should only appear when you are doing something that requires the microphone.
The green dot appears when an app is using the camera, like when taking a photo. Camera access implies access to the microphone too; in this case, you won’t see the orange dot separately. The green color matches the LEDs used in Apple’s MacBook and iMac products.

A lot of iOS and Apple news lately but there's a ton of great things coming down the pipeline.  Apple is adding a visual indicator when the microphone and/or camera is in use, making it easier to see when rogue or malicious apps activate your camera or mic in the background.

New records show Google, Microsoft, and Amazon have thousands of previously unreported military and law enforcement contracts

The subcontracts were obtained through open records requests by accountability nonprofit Tech Inquiry. They show that tech giants including Google, Amazon, and Microsoft have secured more than 5,000 agreements with agencies including the Department of Defense, Immigrations and Customs Enforcement, the Drug Enforcement Agency, and the FBI.
Subcontracts come about when one contractor can't carry out all the duties of their federal contract and hires a third party to fulfill certain aspects. In many cases, military and law enforcement contractors subcontracted with Google, Amazon, and Microsoft for services like cloud computing and data processing.

The research shows that Microsoft has over 5,000 subcontracts with law enforcement, while Amazon and Google each have several hundred subcontracts.

The most privacy invasive companies that harvest untold amounts of your data have thousands of unreported contracts with various government bodies and law enforcement.  Who would have guess.

LinkedIn sued over allegation it secretly reads Apple users' clipboard content

Microsoft Corp’s LinkedIn was sued by a New York-based iPhone user on Friday for allegedly reading and diverting users’ sensitive content from Apple Inc’s Universal Clipboard application.

Good.  This practice was not an accident or a bug.

Yahoo engineer gets no jail time after hacking 6,000 accounts to look for porn

Court documents say Reyes used his access to the Yahoo backend to obtain access to hashed passwords and then proceeded to crack the password strings to access Yahoo Mail accounts of younger women, including personal friends and work colleagues.

Once he gained access to the accounts, Ruiz searched for sexually explicit images and videos, which he downloaded and stored on a personal hard drive at home.

Investigators also said that Ruiz also used the hacked Yahoo email accounts to compromise victim profiles at other third-party services where victims used the Yahoo email address to register accounts and store personal files. He is believed to have hacked an additional 100 accounts at services like Apple iCloud, Gmail, Hotmail, Dropbox, and Photobucket.

This is why client side encryption and zero knowledge providers are so important when it comes to email, communication, and storage.