How Facebook Executive Scum help Scum outside FB
How Facebook Helps Shady Advertisers Pollute the Internet:
It's possible for miscreants to secretly extract people's personal information via Facebook's Login service – the tool that lets you sign into websites using just a Facebook ID. Readers will be familiar with Steven Englehardt, a Mozilla privacy engineer who pursues privacy research for his PhD at Princeton, whose work on …
That's what they aim for. That's an industry that doesn't create real value, just destroys it.
It's strange how people loathe companies like Microsoft or Oracle - which in many ways deserve it, but at least, actually created real products for real needs - while they're still in awe towards companies like Facebook which are built from the ground up to take advantage of them exploiting their weaknesses, in exchange for some candies.
Not in the slightest, though it's nice to see my constant avoidance of the "login with your Facebook/Gmail" option for all these years has now been justified. Yeah, no thanks, I'd rather have a separate and unique login for each individual website!
"Not in the slightest, though it's nice to see my constant avoidance of the "login with your Facebook/Gmail" option for all these years has now been justified. Yeah, no thanks, I'd rather have a separate and unique login for each individual website!"
Yeah. You know that thing where they say don't use the same username and password for multiple sites...
I've been reading the various internet advertising industry websites just to see their reaction to the greater awakening that people are having to Facebook (and, by extension, all other internet advertising companies).
The level of contempt the industry shows for the people they're advertising to is truly astounding. It rivals even the level of contempt that you regularly see from Silicon Valley. But then, I'm increasingly suspecting that there's little actual difference between those two groups.
Is there anything Facebook does that doesn't take the worst privacy-invading option?
The Login facility only needed to pass some form of unique ID (generated on the fly) by Facebook in order to achieve what the users think they're getting. Do any of them realise that Facebook has gone beyond this and given up their profile details (ie who they are)?
The first example (details accessed from a local database) is dodgy but, I suppose, not illegal. The second example, where the iframe is used to make another call on Facebook, looks suspiciously like an unauthorised access.
Scum, the lot of them - and that includes any site that goes beyond mere authentication and grabs profile data.
The problem is that people expect to be able to login using their FB profile and then the service know their name, possibly DoB and other details.
That's part of the whole SSO mentality - it's their 'profile' across all of the services they use, not just an authentication thing.
It's also the reason that I go to the effort of creating an account on each service and not using some third-party authenticator,
"That's part of the whole SSO mentality - it's their 'profile' across all of the services they use, not just an authentication thing."
SSO is, mathematically, a decent idea. However, it was coopted very early on and turned into something that decreases security rather than increases it.
Facebook are also holding ransoms on information now.
If you have a limited company, for any reason such as being a contractor facebook will slurp it off companies house and put up a holding page for you complete with map and directions to its location. They will also put the business on the crowdsourced verify list bringing to the attention of loads of faecebook users.
If you want them to take it down you will have to "verify yourself" by sending them copies of official documents.
So they will hold an unauthorised page whilst demanding more slurp data as a ransom.
Heinous organisation, and we have all those bottom-feeders who sustain it to thank.
"When I do a search on Google for the name of my company, I get a plethora of websites with an info page based on data scraped from Companies House."
Much the same here for a company closed 10 years ago. And for take down in some cases their required information is more than required, e.g. email address and telephone number. Could be fun coming up in a month or so.
And that is why the current all jump on Facebook campaign is so ridiculous. Google, Apple, Yahoo etc (I am sure there are more) all do this. It is the quid that they get for the quo of making life simple for users.
I personally find it amazing how little effort most people seem to want to make to get to read their email, log in to websites etc., but this is what has become the norm: A single log-in to access all of your on-line profiles and actions. Consequently, I find it hard to support the outrage when one company is found to have then used this feature for some other purpose. As far as I am concerned, this is how the company can provide you with these services for no fee (I won`t say free, because it clearly isn`t).
I also find it hard to get upset when a government agency also has access to data which people have willingly given to a private company, but that clearly marks me out as some-kind of apologist for something or other (apparently) so you should probably ignore everything I write.
"And that is why the current all jump on Facebook campaign is so ridiculous."
It's not ridiculous. All of the other companies you've mentioned have been lambasted for their wrongdoings before, and will be again. It's just Facebook's turn right now.
And there's nothing wrong with that. "Everybody does it" is a defeatist line of thinking that only helps to ensure that this situation won't change. But when one of these companies gets into the public eye, that's an opportunity to pound the lesson home for that company, and makes it easier to pressure the other companies when their turn comes around again.
I agree, it's not ridiculous at all to point out the shortcomings of these companies.
Facebook are probably the least apologetic about it, particularly as they are clearly using users to track the behaviour of non-users, but Microsoft, Apple and Google are all at it to greater or lesser degrees to name just a few
The federal government of the United States collection as much data as Facebook... and has the ability to enter your house with guns. A sociopathic narcissist running a company is just a rich asshole. A sociopathic narcissist running a country is the source of some of the worst catastrophes in human history.
If someone was trying to kill me I would welcome a policeman with a gun... and as long as the government collects needed data to deliver needed services, where's the problem? And, besides NSA & C. illegal-but-somehow-approved snooping, probably the government knows less about you than Facebook. Do you report it everytime you go on travel or vacation?
Also, the problem is not in companies collecting the minimum amount of data to deliver product and services. The problem i data harvesting, and their processing for specific targeting, especially to exploit the weakest ones.
I guess that it allows Tesco to target their advertising. Say you only go to Tesco's (or any other store's) website when you want to do some shopping - you're visiting it on their terms. A retailer will want to tell you about stuff which they think will prompt you to start that transaction and maybe buy something extra, say by telling you about some attractive offer. They can promote that offer through any advertising channel, but directing adverts to known customers, e.g. through Facebook, simply means better rate of return on their advertising spend.
What do these tiqcdn/Tealium creeps do? That’s a domain I’m starting to see increasingly often in my NoScript/RequestPolicy menus (naturally, I never allow it to load, of course).
There are just far too many of these dodgy “analytics” scripts on many websites these days, and I’m pretty sure that, despite their plaintive bleating otherwise, most of them are effectively harvesting personally identifiable profile data, and so therefore I can’t wait for GDPR to come down on them like a tonne of bricks.
Biting the hand that feeds IT © 1998–2021