Twitter revealed that an earlier security vulnerability that allowed someone to enter a phone number or email address to verify if that information was tied to an existing Twitter account. The Twitter user account name was returned if a match was found. Twitter fixed this issue and is in the process of contacting only those users that were affected by this incident.
The state of Colorado has passed the Colorado Privacy Act (CPA) in 2021, and it is scheduled to take effect on July 1, 2023. This act (SB21-190) is designed to protect the data privacy of Colorado residents.
T-Mobile has notified its customers that there was unauthorized access to some of its company data in August of 2021, and that the entry point for the intrusion was closed. The company is still researching this event.
Update: T-Mobile has released more details as well as recommendations for its customers, as well as former and prospective customers.
Kaseya has reported that their VSA product has been the victim of a cyberattack. Some VSA customers have reported ransomware related to this issue. The Cybersecurity and Infrastructure Security Agency (CISA) also released instructions regarding this incident for customers of Kaseya VSA.
Virginia passed new privacy state legislation in March 2021: The Consumer Data Protection Act (CDPA), which is scheduled to go into effect as of January 1, 2023. The International Association of Privacy Professionals (IAPP) has summarized the requirements of this new state law intended to protect the privacy of Virginia residents.
iOS 14 also shows if an app is using the camera or phone. A green indicator will appear if an app is using the device’s camera, and an orange indicator will appear if the microphone is in use. App settings for hardware use can be changed under Settings > Privacy. Apps running on iOS14 will also be required to obtain permission to track users starting in early 2021.
Apple has provided a list of compatible devices for iOS 14 and iPadOS.
Windows 10 Activity History has local records of apps and services in use, files that were opened, and visited websites. This information may be periodically sent to Microsoft under the default options. These settings can be changed and are found at Start Button > Settings > Privacy > Activity History.
Facebook will prompt its users to review their privacy settings within the next few weeks as part of a rollout of new and revised privacy features:
- An updated Privacy Checkup tool;
- An Off-Facebook Activity tool with a summary of data from third-party sites used for targeted ads, with an option to delete this data;
- A new Alerts for Third-Party Logins feature that allows you to see how your Facebook login is being used by other apps and services.
Avast announced that they have decided to end operations for its subsidiary data analytics company Jumpshot because of public concerns about user privacy. Avast’s free and paid antivirus software is used by millions of computer and mobile device users.