|
|
Topic Originator: DBP
Date: Wed 8 Oct 17:56
So that’s discord (very popular online chat and video messaging service) now reporting that their user’s data has been hacked.
Not only does this include usernames, email, billing information, the last four digits of credit card numbers, IP addresses, messages with customer support…
…but thanks to the uk’s ridiculous online safety bill - for uk users, it also includes age verification data they had to upload, I.e, their government official ID such as their driving licence or passport
Not unexpected, but do feel sorry for those who complied, and now find that the online safety bill has actually had the complete opposite effect!
|
|
|
|
|
|
Topic Originator: red-star-par
Date: Wed 8 Oct 20:26
I reckon that in the next couple of years pretty much everything anyone has ever done online will be in the public domain, all their personal details, all financial details, every internet search they have done, every conversation that they have had with AI, every conversation they have ever had with anyone, every photo they have ever uploaded. Everyone will know everything about everyone
|
|
|
|
|
|
Topic Originator: Andrew283
Date: Thu 9 Oct 10:34
Use the Internet without a VPN at your own peril now I guess
|
|
|
|
|
|
Topic Originator: sadindiefreak
Date: Thu 9 Oct 10:50
Quote:
Andrew283, Thu 9 Oct 10:34
Use the Internet without a VPN at your own peril now I guess
Surely the only thing a VPN would have stopped them getting in this instance is the IP address.
|
|
|
|
|
|
Topic Originator: DBP
Date: Thu 9 Oct 12:29
If you present from a different country, then their age verification stuff may not have kicked in?
I haven’t been asked for any age verification because I now set my vpn to a third country (used to just set it as uk), but any company that asks me to upload my passport to let me chat (for example) will be instantly unsubscribe from
|
|
|
|
|
|
Topic Originator: Wotsit
Date: Thu 9 Oct 14:24
Yip, I will never be uploading my passport to any website that`s not an airline or the UK government. If they need it for me to use their service then I just won`t use the service.
The enemy travels by private jet, not by dinghy.
|
|
|
|
|
|
Topic Originator: DBP
Date: Fri 10 Oct 08:10
Reported in bbc that it’s about 70,000 photo IDs, and it was actually a targeted attack on the firm that discord use to help verify the ages of their users as opposed to discord itself
This is one the firms who are experts in cyber security, and as we’re being told, will be making sure all our IDs and data will be safe
|
|
|
|
|
|
Topic Originator: jake89
Date: Fri 10 Oct 13:15
Isn`t age verification only on porn websites? If so, what kind of stuff are you watching that you`re worried about a breach? 😂
I`d be more concerned about all the data Tesco have thanks to "clubcard prices".
|
|
|
|
|
|
Topic Originator: DBP
Date: Fri 10 Oct 16:50
Not at all just porn sites… case in point discord is a chat site you use to speak to pals when gaming
Microsoft bringing in the same for their chat features
|
|
|
|
|
|
Topic Originator: jake89
Date: Fri 10 Oct 20:54
My eldest uses Discord. I don`t recall him having to evidence his age. Is it only for those declaring themselves to be over 18?
Obviously the way around it is a simple VPN. As far as Brian`s concerned, I`m in Norway 😉
|
|
|
|
|
|
Topic Originator: parsfan
Date: Fri 10 Oct 23:17
I saw something earlier today where people who were using a specific VPN, Modpro, were having their bank accounts cleared out.
- Sign up to a VPN, probably free.
- Send all your traffic through them.
- Be surprised when all your secret financial details have been exploited (by some free service you found on the internet).
Nothing against VPNs, just remember they can be another attack vector for criminals.
Be careful folks.
~~~~~~~~~~~~~~~~~~~~~~~~
The universe is ruled by chance and indifference
|
|
|
|
|
|
Topic Originator: Dave_1885
Date: Sat 11 Oct 08:11
Think the only age verification Ive had to provide was for a poker site - GGPoker, who still refuse me to play after sending numerous bank statements etc. If the hackers got in they would realise I didn’t have a penny to pay them anyway 😂
|
|
|
|
|
|
Topic Originator: DBP
Date: Sat 11 Oct 16:44
Wouldn’t trust free vpns, anymore than I’d trust Wi-Fi hotspots you get from pubs, trains etc
|
|
|
|
|
|
Topic Originator: Skerla
Date: Wed 15 Oct 13:08
It affects Steam accounts as well. I’ve also just had an email from xbox to verify my age with a “trusted” partner…
|
|
|
|
|
|
Topic Originator: jake89
Date: Wed 15 Oct 13:25
Quote:
Skerla, Wed 15 Oct 13:08
It affects Steam accounts as well. I’ve also just had an email from xbox to verify my age with a “trusted” partner…
What do you need to provide to evidence your age? I was under the impression it was just a visual thing like banks do (hold your face up to confirm age). I`d read kids were holding their phones up to posters of celebrities.
|
|
|
|
|
|
Topic Originator: P
Date: Wed 15 Oct 16:55
I had to confirm age for Xbox games account today, it scanned my face and said you’re old as F and that was it - no documentation provided
|
|
|
|
|
|
Topic Originator: DBP
Date: Wed 15 Oct 17:32
You might say that was it, and luckily you didn’t have to provide further info… but that’s means there’s a picture of your face linked to your other details that Microsoft has
|
|
|
|
|
|
Topic Originator: Dave_1885
Date: Wed 15 Oct 20:12
Not had anything from Steam saying I need to verify my age. Granted the only game I purchase from them is Football Manager, so I wonder if that is why?
|
|
|
|
|
|
Topic Originator: P
Date: Wed 15 Oct 20:15
Quote:
DBP, Wed 15 Oct 17:32
You might say that was it, and luckily you didn’t have to provide further info… but that’s means there’s a picture of your face linked to your other details that Microsoft has
I walk the dog and 200 people have a image of my face on their ring camera cloud account (under t&c’s that I guarantee not one has read) along with any number of cctv cameras in the area along with dashcams of every other car. It’s not that big a deal.
Course that’s before the fact that they do not have my image on Microsoft at all as it is not linked to the account and is temporarily used by middleware for a single purpose and is immediately deleted as part of the process so it’s literally the least concerning picture of my face taken in a day.
|
|
|
|
|
|
Topic Originator: DBP
Date: Wed 15 Oct 22:20
You mean instantly deleted like the 70,000 that were just hacked and taken along with their other personal information?
|
|
|
|
|
|
Topic Originator: Andrew283
Date: Wed 15 Oct 22:30
Quote:
DBP, Wed 15 Oct 22:20
You mean instantly deleted like the 70,000 that were just hacked and taken along with their other personal information?
The common man is so clueless about how much data about them is stored indefinitely
|
|
|
|
|
|
Topic Originator: jake89
Date: Thu 16 Oct 09:10
Quote:
Andrew283, Wed 15 Oct 22:30
Quote:
DBP, Wed 15 Oct 22:20
You mean instantly deleted like the 70,000 that were just hacked and taken along with their other personal information?
The common man is so clueless about how much data about them is stored indefinitely
The common man complains about proposed digital ID cards while happily telling Tesco:
Full name
Address
DOB
When they change address
When they have a baby
When they get a pet
When times are tough and they spend less
When they have friends coming to stay
Changes in their diet
When a child moves out
When they single
When they`re not
When they`re having a party
A scan of their face every time they use self service
When they forget their own bag
If they have a mini break in the UK
When they go abroad
If they then have Tesco insurance linked to their clubcard they obviously reveal even more:
Bank details
Car they drive
How much they drive
How safely they drive.
|
|
|
|
|
|
Topic Originator: DBP
Date: Thu 16 Oct 13:00
Agreed…
The thing is that while lots of separate entities have amassed lots of data on individuals who use their products and services, what governments are actively looking to do i to collate of all of that data in one accessible place for them, and then can let their AI models loose on it.
I’m sure initially it will be under the guise of protecting children, stopping illegal workers, better government procurement, targeted spending, etc… but you bring all that data together under digital ids, add face recognition in every cctv, remove privacy from devices (and so on) and then throw the emerging power of AI into the mix… and it’s only a hop skip and a jump to something very scary!
Regardless of what personal information people have happily given over in the past under the banner of convenience, I do hope we really think about where all this is going.
In data science there’s a concept called big data citizenship, and within that data participation - my worry is people don’t take steps to consider and protect their personal information going forward, regardless of what they’ve done in the past
|
|
|
|
|
|
Topic Originator: P
Date: Thu 16 Oct 14:00
Quote:
Andrew283, Wed 15 Oct 22:30
Quote:
DBP, Wed 15 Oct 22:20
You mean instantly deleted like the 70,000 that were just hacked and taken along with their other personal information?
The common man is so clueless about how much data about them is stored indefinitely
The breach related to an entirely different piece of software so not the same thing. Microsoft use Azure face recognition technology, the image is used once and is not stored & is automatically deleted when age verification is complete. This is part of their published privacy commitment but if you don’t believe that and (no doubt) have some conspiracy view that’s up to you. However, a scan of my face that can & is regularly already being scanned elsewhere is well within my risk appetite.
Discord said the image would be used solely for age verification but did not promise deletion and their language was vague on when they (or rather their vendor 5CA) would delete them. So how is my example the same?
With regards to not knowing how much data is held I gave plenty of examples of how our image is captured with zero control whatsoever. As far as common man (if that was aimed at me since it was in reply to the response to me) I have worked in Technology, Data, Security, Resilience and Risk for 25 years so I do have some knowledge in the subject - most certainly enough to assess my own risk appetite from a scan unsupported by documentation 🙄
|
|
|
|
|
|
Topic Originator: Dandy Warhol
Date: Thu 16 Oct 15:15
Quote:
jake89, Thu 16 Oct 09:10
Quote:
Andrew283, Wed 15 Oct 22:30
Quote:
DBP, Wed 15 Oct 22:20
You mean instantly deleted like the 70,000 that were just hacked and taken along with their other personal information?
The common man is so clueless about how much data about them is stored indefinitely
The common man complains about proposed digital ID cards while happily telling Tesco:
Full name
Address
DOB
When they change address
When they have a baby
When they get a pet
When times are tough and they spend less
When they have friends coming to stay
Changes in their diet
When a child moves out
When they single
When they`re not
When they`re having a party
A scan of their face every time they use self service
When they forget their own bag
If they have a mini break in the UK
When they go abroad
If they then have Tesco insurance linked to their clubcard they obviously reveal even more:
Bank details
Car they drive
How much they drive
How safely they drive.
Starmer has just stated he likes that in other countries you need ot to access your money.
Have a wee look at China.
No from me, being unbanked or deleted for saying hurty words about the government doesn`t appeal.
I don`t wanna go down like disco.
|
|
|
|
|
|
Topic Originator: jake89
Date: Thu 16 Oct 21:16
There is a flip side to this. How annoying is it that your data is NOT shared. Your GP can see your medical info, but not when you move health board. Your dentist can`t see your allergies or prescriptions and your private physio can`t see what anti-inflammatories you`re on.
If you have a social work situation, your kids school have no clue. They don`t know that mum/dad isn`t allowed access to the kids anymore and social work can`t see that little Johnny hasn`t been at school. This situation was why there was a horrific murder in Fife not so long ago. All these professions being expected to talk to each other while their systems don`t.
If it was proposed to close the loop there would be an outcry of Big Brother and being monitored.
|
|
|
|
|
|
Topic Originator: Andrew283
Date: Thu 16 Oct 22:46
Quote:
jake89, Thu 16 Oct 21:16
There is a flip side to this. How annoying is it that your data is NOT shared. Your GP can see your medical info, but not when you move health board. Your dentist can`t see your allergies or prescriptions and your private physio can`t see what anti-inflammatories you`re on.
If you have a social work situation, your kids school have no clue. They don`t know that mum/dad isn`t allowed access to the kids anymore and social work can`t see that little Johnny hasn`t been at school. This situation was why there was a horrific murder in Fife not so long ago. All these professions being expected to talk to each other while their systems don`t.
If it was proposed to close the loop there would be an outcry of Big Brother and being monitored.
GPs can 100% still view your medical notes from other health boards. You`ve had a very lazy GP
|
|
|
|
|
|
Topic Originator: jake89
Date: Fri 17 Oct 07:29
Quote:
Andrew283, Thu 16 Oct 22:46
Quote:
jake89, Thu 16 Oct 21:16
There is a flip side to this. How annoying is it that your data is NOT shared. Your GP can see your medical info, but not when you move health board. Your dentist can`t see your allergies or prescriptions and your private physio can`t see what anti-inflammatories you`re on.
If you have a social work situation, your kids school have no clue. They don`t know that mum/dad isn`t allowed access to the kids anymore and social work can`t see that little Johnny hasn`t been at school. This situation was why there was a horrific murder in Fife not so long ago. All these professions being expected to talk to each other while their systems don`t.
If it was proposed to close the loop there would be an outcry of Big Brother and being monitored.
GPs can 100% still view your medical notes from other health boards. You`ve had a very lazy GP
No they can`t. They all have access to your Key Information Summary and Emergency Care Summary but the notes they have access to depends on how each GP uses them and if they add them to the right fields. It`s not standardised across Scotland. These notes are also often NOT visible to nurses for example or, if they are there, the nurse has no device to check. Honestly, you wouldn`t believe how awful IT in the NHS is. The "new" NHS app for Scotland launches soon and it`s a national embarrassment. If you doubt it, just Google to see what it does. 5 years of time and money spent on it only for it to do LESS than the NHS England app that`s been around for ages. Countries like Poland have far, far better health systems that it must be embarrassing when a Pole moves to Scotland.
|
|
|
|
|
|
Topic Originator: The One Who Knocks
Date: Fri 17 Oct 10:01
In what way is the Polish healthcare system far far better than the Scottish NHS?
And although my eyes were open
They just might as well be closed
|
|
|
|
|
|
Topic Originator: jake89
Date: Fri 17 Oct 11:42
Not the healthcare system, their health systems (IT).
Go to Poland and you can download an app where you can see and control your appointments, sort repeat prescriptions, see your medical information and display your vaccination status.
We have no app to do this in Scotland and the one that will be launched this year - in LANARKSHIRE ONLY - will only allow people to see their dermatology appointments. 5 years of development on an app that will benefit fewer than 1000 people. FIVE YEARS. £6m spent (doesn`t include civil servants time) and another £12m to be spent rolling it out beyond Lanarkshire.
Post Edited (Fri 17 Oct 11:42)
|
|
|
|
|
|
Topic Originator: The One Who Knocks
Date: Fri 17 Oct 11:55
Incredible and especially embarrassing if England already had an app we could have easily copied up here.
And although my eyes were open
They just might as well be closed
|
|
|
|
|
|
Topic Originator: jake89
Date: Fri 17 Oct 12:00
Quote:
The One Who Knocks, Fri 17 Oct 11:55
Incredible and especially embarrassing if England already had an app we could have easily copied up here.
That`s not even the best bit. The hard graft of the app is being done by BJSS who were awarded a contract back in January to...further develop the NHS England app.
I`m not one to talk down Scotland, but this is a prime example of a band of civil servants who can talk the talk but never walk the walk. One even stated that the Scotland solution wasn`t just an app like they have in England. Well he wasn`t wrong as it`s rubbish compared to the English one that launched 10 years ago!
|
|
|
|
|
|
Topic Originator: DBP
Date: Fri 17 Oct 19:32
God to hear you can assess the security concerns from your own perspective… but that’s not the main thrust of my concern
It’s the collation and creation of big data (most of it will be our personal data) and the power that AI will give governments when they get their hands on it (which is the absolute ambition btw). It will completely change our relationship, and power balance with the state
|
|
|
|
|
|
