B.C. NDP quietly dismantling privacy protections for British Columbians
On November 25, 2021, amendments to B.C.’s Freedom of Information and Protection of Privacy Act, R.S.B.C. 1996, c. 165 (“FOIPPA”) came into force through Bil...
Posts by Tag
- Privacy 12
- facebook 9
- SSL 8
- Google 7
- PIPEDA 7
- Canada 6
- https:// 5
- internet 4
- twitter 4
- BC 4
- British Columbia 4
- passwords 4
- GnuPG 3
- free 3
- PATRIOT ACT 3
- Apple 3
- PII 3
- encryption 3
- web 3
- tracking 3
- communications 3
- PIPA 3
- compromise 3
- hack 3
- surveillance 3
- Email 2
- OpenPGP 2
- PGP 2
- hijacking 2
- iphone 2
- stalking 2
- Identity Theft 2
- packet sniffing 2
- sidejacking 2
- wireshark 2
- Media 2
- protection 2
- Vancouver Sun 2
- digital 2
- online 2
- tracker 2
- torrent 2
- CRTC 2
- UBB 2
- Usage Based Billing 2
- browser 2
- ghostery 2
- trackers 2
- always on 2
- IP 2
- crack 2
- spam 2
- CA 2
- law 2
- CBC 2
- java 2
- ixquick 2
- Search 2
- anti virus 2
- norton 2
- GNU Privacy Guard 2
- gpg 2
- comms 2
- chrome 2
- firefox 2
- internet explorer 2
- opera 2
- Email encryption 1
- open source 1
- Adwords 1
- Apache 1
- logs 1
- netcraft 1
- proxy 1
- pseudoanonymity 1
- tor 1
- User agent 1
- free email 1
- Gmail 1
- Hotmail 1
- SLA 1
- Yahoo! Mail 1
- cippic 1
- FISA 1
- Copy and Paste 1
- Tynt 1
- comparison 1
- E71 1
- MMS 1
- Nokia 1
- recommendations 1
- SIP 1
- smartphone 1
- SMS 1
- GPS 1
- GPSr 1
- metadata 1
- 10 Principles of Privacy 1
- collection of data 1
- collection of personal information 1
- small business 1
- Law enforcement 1
- ebay 1
- frugal 1
- product 1
- shopping 1
- tech 1
- tip 1
- privacy breach 1
- Streetview 1
- Credit Report 1
- Equifax 1
- Transunion 1
- ethereal 1
- ferret 1
- hamster 1
- http 1
- session highjacking 1
- Canadian Press 1
- CP 1
- FreePress 1
- Winnipeg 1
- Digital Life 1
- firesheep 1
- Gillian Shaw 1
- Common Criteria 1
- FIPS 140-2 1
- security standards 1
- @PrivaSecTech 1
- banking 1
- change 1
- currency 1
- fear 1
- paypal 1
- shopping online 1
- class 1
- Ethical hacking 1
- Korea 1
- Seoul 1
- Suwon 1
- backups 1
- BCP 1
- Business Continuity Planning 1
- Disaster Recovery Planning 1
- DRP 1
- EFF 1
- forensic 1
- forensic marking 1
- printer 1
- printing 1
- watermark 1
- breach 1
- fail 1
- file 1
- hosts 1
- safety 1
- surfing 1
- censorship 1
- filter 1
- filtering 1
- advertising 1
- airport security 1
- conference 1
- reboot 1
- security theatre 1
- TSA 1
- bandwidth 1
- caps 1
- internet service provider 1
- ISP 1
- limits 1
- oligarchy 1
- #cdnpoli 1
- politicians 1
- @caparsons 1
- Chris Parsons 1
- presentation 1
- Social Media Club 1
- UVic 1
- Victoria 1
- ads 1
- plugin 1
- account 1
- settings 1
- pen testing 1
- penetration testing 1
- pentest 1
- pentesting 1
- care card 1
- chip and pin 1
- health care 1
- @shawhelp 1
- @shawinfo 1
- DNS 1
- nxr 1
- Shaw 1
- Harper Government 1
- spying 1
- PIPPA 1
- US Patriot Act 1
- Bing 1
- Search engine 1
- anonymity 1
- blogging 1
- pseudoanon 1
- Operation Shady RAT 1
- state actor 1
- @snookca 1
- LinkedIn 1
- CanWest 1
- compliance 1
- Edmonton Journal 1
- HTML 1
- Ottawa Citizen 1
- PostMedia 1
- Victoria Times-Colonist 1
- W3 1
- DigiNotar 1
- exploit 1
- Iran 1
- MITM 1
- vuln 1
- civil liberties 1
- riot 1
- Vancouver 1
- 0day 1
- certificate 1
- comodo 1
- DigitNotar 1
- Ich Sun 1
- windows update 1
- #F8 1
- data retention act 1
- personally identifiable information 1
- adword 1
- keyword 1
- secure 1
- SEM 1
- SEO 1
- FIPPA 1
- legislation 1
- legislature 1
- affiliate marketing 1
- authentication 1
- hash 1
- john the ripper 1
- l0phtcrack 1
- rainbow tables 1
- THC Hydra 1
- connections 1
- lsof 1
- netstat 1
- network 1
- tcp 1
- udp 1
- Administrative services 1
- identity 1
- SIN 1
- social insurance number 1
- theft 1
- copyright 1
- SOPA 1
- stop online piracy act 1
- cross site scripting 1
- javascript 1
- malicious 1
- scripts 1
- XSS 1
- @vicpdcanada 1
- accountability 1
- ALPR 1
- AOI 1
- audit 1
- FOI 1
- RCMP 1
- surveiilance 1
- transparancy 1
- Victoria Police 1
- authority 1
- customs 1
- digitalpolicy 1
- domain 1
- enforcement 1
- ICANN 1
- ICE 1
- regulator 1
- DuckDuckGo 1
- Engine 1
- avast 1
- AVG 1
- hacker 1
- pwn 1
- pwned 1
- rooted 1
- scan 1
- symantec 1
- creeping 1
- foursquare 1
- geo-loc 1
- latitude 1
- linked in 1
- longtitude 1
- social 1
- @DanPollock 1
- Canadian Broadcasting Corporation 1
- dangerous 1
- motorcycle 1
- Steven Smart 1
- viral 1
- based 1
- cloud 1
- storage 1
- IPO 1
- publicly traded 1
- Diaspora 1
- PKI 1
- social network 1
- clickjacking 1
- DNSChanger 1
- Eastern Europe 1
- FBI 1
- scam 1
- client 1
- file transfer 1
- IM 1
- instant messenger 1
- retroshare 1
- anti 1
- AV 1
- macosx 1
- OSX 1
- virus 1
- Ann Cavoukian 1
- biometrics 1
- Daily Dashboard 1
- friendly 1
- IAPP 1
- scanning 1
- C-12 1
- C-29 1
- security 1
- telephone 1
- voice 1
- SIGINT 1
- trust 1
- duck duck go 1
- start page 1
- camera 1
- public 1
- recording 1
- video 1
- Data Privacy Day 1
- disk encryption 1
- FDE 1
- full disk encryption 1
- cellular phone 1
- court 1
- Ontario 1
- smart phone 1
- @kevinsmcarthur 1
- CBA 1
- CCIRC 1
- cURL 1
- Kevin McArthur 1
- OpenSSL 1
- peerjacking 1
- php 1
- responsible disclosure 1
- cops 1
- police 1
- R. vs Telus 1
- SCC 1
- search warrant 1
- wiretap 1
- 2013 1
- blackberry 1
- safari 1
- symantac 1
- symantic 1
- top 3 steps 1
- authorization 1
- business 1
- consent 1
- corporation 1
- opt-in 1
- opt-out 1
- privacy commission 1
- chomium 1
- IE 1
- TLS 1
- FOIPPA 1
- NDP 1
- cookies 1
Privacy
Recording video or taking pictures in public
What likely started out as a school prank has turned into a popular video series called Surveillance Camera Man
Are surveillance systems using biometric scanning really privacy-friendly?
I read a post today on the IAPP‘s Daily Dashboard talking about a “privacy-friendly” “positive side of facial recognition”. It suggests that Ontario’s Inform...
Retroshare
I had a lot of positive feedback from the recent post on Diaspora with client-side encryption. For those of you who are somewhat technically inclined, and li...
Free cloud storage
The cloud is a current buzzword in technology, referring to remote storage space on the internet. The big challenge with using free cloud storage, as a priva...
The browser tracker test
I’ve spoken about trackers before and recommended four steps/solutions for protecting your browsing privacy:
ixquick, an alternative, privacy forward, search option
I mentioned a few months ago for those wanting to leave Google search to give DuckDuckGo a try. There’s another alternative as well, called ixquick. Give it ...
What info does Facebook have on me?
After the F8 conference, there is even more concern than before about what personal information Facebook has on an individual. I was sent Facebook’s personal...
A must have hosts file
My friend Dan Pollock has been compiling the must have hosts file for some time. According to Wikipedia, the hosts file is a computer file used in an operati...
Why would Facebook application developers sell your home address?
Because now they can. Last Friday, after work, Facebook announced they will be providing your home address and telephone number to software developers.
Apple’s updated privacy policy
“To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the ...
Social networking, what’s next?
In 2008, I was in Ottawa, talking with one of our clients, CIPPIC. Specifically the executive director at the time, about Facebook. There was discussion that...
Warning Facebook you control your data
There’s currently a Facebook status going around that states the following:
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
Facebook post F8
Right after the Facebook F8 keynote, a 15 year old noted he didn’t understand this new model Facebook was about to roll out. What might not be obvious, is th...
Had your Twitter or Facebook hacked?
If your friends ever tell you that they’ve received spam from your account, but you didn’t send it, likely your account was compromised. The following steps ...
Tech Tip: Secure connection to Facebook
This tip is to create a permanent secure connection to Facebook. You can tell you’re using SSL if the URL starts with https:// instead of http://. When you’r...
Why would Facebook turn your actions into an ad?
Because they can. On Monday, Facebook released a [ video](https://www.facebook.com/video/video.php?v=10100328087082670) that shows how their new *sponsored s...
Why would Facebook application developers sell your home address?
Because now they can. Last Friday, after work, Facebook announced they will be providing your home address and telephone number to software developers.
Social networking, what’s next?
In 2008, I was in Ottawa, talking with one of our clients, CIPPIC. Specifically the executive director at the time, about Facebook. There was discussion that...
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
SSL
Secure websites
I’m often asked about secure websites. For example, should you trust the connection with your computer and your bank’s website? The article is going to get a...
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
Google now offering secure search
It’s not often we’ve given Google credit for privacy or security steps, but this week is one of them. Following the steps by Facebook and Twitter we announce...
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
Upgrade your browser before you check your gmail
There is a wildcard *google.com SSL certificate in the wild, which means malicious people can sit between you and anything at Google (including gmail) and pr...
Using a secure connection where possible
I received a lot of feedback after my post yesterday about creating a permanent SSL (https://) connection to Facebook. It’s most important to use SSL anywher...
Tech Tip: Secure connection to Facebook
This tip is to create a permanent secure connection to Facebook. You can tell you’re using SSL if the URL starts with https:// instead of http://. When you’r...
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
Change your default search engine
Most of us use a search engine such as Google or Yahoo daily without taking much time to consider the inherent privacy implications. If you have some time, ...
ixquick, an alternative, privacy forward, search option
I mentioned a few months ago for those wanting to leave Google search to give DuckDuckGo a try. There’s another alternative as well, called ixquick. Give it ...
Google now offering secure search
It’s not often we’ve given Google credit for privacy or security steps, but this week is one of them. Following the steps by Facebook and Twitter we announce...
Duck Duck Go
You’re likelty using Google as your default search engine; and they’re undoubtably good at search. The challenge to me is what are they doing with the inform...
Where does Google’s censorship end?
It’s been well reported on Google’s kowtowing to the Chinese government in regards to censorship. This was based on the requests of a foreign government. How...
What does Google’s Street View know about you?
There is a lot of attention on Google right now due to the fact that Google had cars driving around the world, collecting photographic data so that it could ...
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
PIPEDA
Canadian Patriot Act back as bill C-12
If you’ve followed this blog for some time, I first wrote about the introduction of the bill in May 2010, and then a follow up redux in August 2010 (a summar...
What info does Facebook have on me?
After the F8 conference, there is even more concern than before about what personal information Facebook has on an individual. I was sent Facebook’s personal...
LinkedIn to approve the closing of your account?
After writing an article yesterday on how LinkedIn opts your name and photo into social advertising by default, it was brought to my attention today that if ...
The cloud is still a bad idea… keep your user’s personal information off US soil at all costs.
There’s an article in the register today highlighting that American organizations are all bound by the US Patriot act, which essentially allows the US govern...
Canadian Patriot Act redux
The article posted in May on the Canadian Patriot Act being introduced to the House of Commons didn’t seem to go much further than “preaching to the choir”. ...
Was I notified either verbally or in writing, of the reason each piece of my information is being collected?
Recently, I was in a local brewery buying a keg, and they asked for a copy of my driver’s licence to write down the number on the deposit form. And then a fe...
Canadian Patriot Act introduced
Today a couple of changes to Canada’s privacy landscape were introduced under the infamous banner of “safety and security”. This will create significant chan...
Canada
What are our regulators doing to protect Canadian internet sovereignty?
This is the basis of the follow up letter from Digital Policy Canada drafted to the CIRA sponsored Canadian Internet Forum this week. The fundamental questio...
What info does Facebook have on me?
After the F8 conference, there is even more concern than before about what personal information Facebook has on an individual. I was sent Facebook’s personal...
Stop online spying in Canada
You may remember a year ago I broke the story on the introduction of the minority government’s Canadian version of the patriot act (see articles one and two)...
Update on usage based billing (UBB)
This image is getting a lot of attention. Today Michael Geist has released an article on Unpacking The Policy Issues Behind Bandwidth Caps & Usage Based ...
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
Was I notified either verbally or in writing, of the reason each piece of my information is being collected?
Recently, I was in a local brewery buying a keg, and they asked for a copy of my driver’s licence to write down the number on the deposit form. And then a fe...
https://
Google now offering secure search
It’s not often we’ve given Google credit for privacy or security steps, but this week is one of them. Following the steps by Facebook and Twitter we announce...
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
Using a secure connection where possible
I received a lot of feedback after my post yesterday about creating a permanent SSL (https://) connection to Facebook. It’s most important to use SSL anywher...
Tech Tip: Secure connection to Facebook
This tip is to create a permanent secure connection to Facebook. You can tell you’re using SSL if the URL starts with https:// instead of http://. When you’r...
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
internet
What are our regulators doing to protect Canadian internet sovereignty?
This is the basis of the follow up letter from Digital Policy Canada drafted to the CIRA sponsored Canadian Internet Forum this week. The fundamental questio...
Where is your computer connecting to?
What is your computer doing on the internet without your knowledge?
Stop online spying in Canada
You may remember a year ago I broke the story on the introduction of the minority government’s Canadian version of the patriot act (see articles one and two)...
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
Had your Twitter or Facebook hacked?
If your friends ever tell you that they’ve received spam from your account, but you didn’t send it, likely your account was compromised. The following steps ...
Using a secure connection where possible
I received a lot of feedback after my post yesterday about creating a permanent SSL (https://) connection to Facebook. It’s most important to use SSL anywher...
Update on usage based billing (UBB)
This image is getting a lot of attention. Today Michael Geist has released an article on Unpacking The Policy Issues Behind Bandwidth Caps & Usage Based ...
BC
B.C. NDP quietly dismantling privacy protections for British Columbians
On November 25, 2021, amendments to B.C.’s Freedom of Information and Protection of Privacy Act, R.S.B.C. 1996, c. 165 (“FOIPPA”) came into force through Bil...
What information can my organization collect from a person under BC PIPA?
If you’ve ever wondered, “What information can my organization collect from a person according to British Columbia’s Personal Information and Protection Act ...
Wanna put your friends, or enemies, under surveillance?
In an overwhelming scary move, the Vancouver Police Department and the Integrated Riot Squad have just launched a Vancouver riot tell-on-your-friends website...
British Columbia’s new health care card another waste of resources?
It was [announced a few minutes ago](https://www.timescolonist.com/residents+secure+CareCards+must+renew+every+five+years/4812099/story.html) that British Co...
British Columbia
What information can my organization collect from a person under BC PIPA?
If you’ve ever wondered, “What information can my organization collect from a person according to British Columbia’s Personal Information and Protection Act ...
Bill-3: Amendments to B.C. FIPPA to remove more of citizen’s privacy
If you’re a citizen of British Columbia and concerned about the government’s handling of your personal information, you probably want to read Bill-3 (full te...
What info does Facebook have on me?
After the F8 conference, there is even more concern than before about what personal information Facebook has on an individual. I was sent Facebook’s personal...
British Columbia’s new health care card another waste of resources?
It was [announced a few minutes ago](https://www.timescolonist.com/residents+secure+CareCards+must+renew+every+five+years/4812099/story.html) that British Co...
passwords
Is this password manager any good?
I’ve been asked this question countless times over the last couple decades, perhaps because I used to be responsible for cracking weak passwords for a compan...
Portable Password Manager
Today’s question comes from a former student, asking what I use for a portable password manager:
Password protect your cellphone
For most things privacy related in Canadian law, it comes down to what a judge feels Canadians think is reasonable. A couple of days ago the Ontario court of...
How strong is your password?
While working in information security for the largest company in Canada, I realized there was no one internally, actively attacking the password database to ...
GnuPG
Happy Data Privacy Day 2013!
According to Wikipedia, the purpose of Data Privacy Day is to raise awareness and promote data privacy education. It is currently ‘celebrated’ in the United ...
GNU Privacy Guard
Ever since PGP removed their open source client, GnuPG has been the standard in open source PKI. If you want to encrypt your emails and/or files on your comp...
Email Encryption
On our contact us page we mention OpenPGP standard encryption (RFC 4880). What is this? Most people think email only goes to the intended recipient, but inst...
free
Anti-Virus for Macosx
Because of Apple’s advertising, Mac users often (wrongly) believe that they don’t need anti-virus software. The problem that these users have is that when th...
Ethical Hacking class
If you are in the Suwon/Seoul area of Korea tomorrow, I will be teaching an Ethical Hacking class at no cost. Contact me at @PrivaSecTech on twitter for di...
Free Email
“My email provider shut down my account, gave me a support ticket number, but I have no way to look it up” “Have you paid for your account?” “No, it’s a free...
PATRIOT ACT
Stop online spying in Canada
You may remember a year ago I broke the story on the introduction of the minority government’s Canadian version of the patriot act (see articles one and two)...
Canadian Patriot Act redux
The article posted in May on the Canadian Patriot Act being introduced to the House of Commons didn’t seem to go much further than “preaching to the choir”. ...
Canadian Patriot Act introduced
Today a couple of changes to Canada’s privacy landscape were introduced under the infamous banner of “safety and security”. This will create significant chan...
Apple
Anti-Virus for Macosx
Because of Apple’s advertising, Mac users often (wrongly) believe that they don’t need anti-virus software. The problem that these users have is that when th...
Apple’s updated privacy policy
“To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the ...
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
PII
Identity theft at UVic
Over the week-end, the University of Victoria’s new administrative building was broken into. A payroll server with the personally identifiable information (P...
What info does Facebook have on me?
After the F8 conference, there is even more concern than before about what personal information Facebook has on an individual. I was sent Facebook’s personal...
Was I notified either verbally or in writing, of the reason each piece of my information is being collected?
Recently, I was in a local brewery buying a keg, and they asked for a copy of my driver’s licence to write down the number on the deposit form. And then a fe...
encryption
Everything you say is likely compromised
Ever since the early days of 2600, people have been learning what it takes to compromise voice conversations.
Are surveillance systems using biometric scanning really privacy-friendly?
I read a post today on the IAPP‘s Daily Dashboard talking about a “privacy-friendly” “positive side of facial recognition”. It suggests that Ontario’s Inform...
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
web
Change your default search engine
Most of us use a search engine such as Google or Yahoo daily without taking much time to consider the inherent privacy implications. If you have some time, ...
A must have hosts file
My friend Dan Pollock has been compiling the must have hosts file for some time. According to Wikipedia, the hosts file is a computer file used in an operati...
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
tracking
Duck Duck Go
You’re likelty using Google as your default search engine; and they’re undoubtably good at search. The challenge to me is what are they doing with the inform...
Detect and block website trackers with Ghostery
For anyone that attended the Privacy and Security talk tonight at Social Media Club – Victoria, I mentioned a browser plugin that allows you to see who is tr...
Your printer is giving you up!
Did you know that most printer manufacturers have secretly ensured there are watermarks on everything you print? These are tiny tracking dots barely visible ...
communications
What communication systems can you trust?
After reading my Everything you say is likely compromised post, my friend Ross Henton asked,
Everything you say is likely compromised
Ever since the early days of 2600, people have been learning what it takes to compromise voice conversations.
The Naked Traveller – is all this necessary?
I will be speaking at the 12th Annual Privacy and Security Conference with the theme “Security and Privacy – Is there an app for that?”
PIPA
What info does Facebook have on me?
After the F8 conference, there is even more concern than before about what personal information Facebook has on an individual. I was sent Facebook’s personal...
LinkedIn to approve the closing of your account?
After writing an article yesterday on how LinkedIn opts your name and photo into social advertising by default, it was brought to my attention today that if ...
The cloud is still a bad idea… keep your user’s personal information off US soil at all costs.
There’s an article in the register today highlighting that American organizations are all bound by the US Patriot act, which essentially allows the US govern...
compromise
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
Had your Twitter or Facebook hacked?
If your friends ever tell you that they’ve received spam from your account, but you didn’t send it, likely your account was compromised. The following steps ...
I smell a RAT
Yesterday, Vanity Fair published an exclusive on operation Shady RAT (remote access tool), which was a high-level hacking campaign that lasted over 5 years, ...
hack
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
Had your Twitter or Facebook hacked?
If your friends ever tell you that they’ve received spam from your account, but you didn’t send it, likely your account was compromised. The following steps ...
I smell a RAT
Yesterday, Vanity Fair published an exclusive on operation Shady RAT (remote access tool), which was a high-level hacking campaign that lasted over 5 years, ...
surveillance
Supreme Court of Canada says a wiretap is needed for text messages
In the Supreme Court of Canada’s case of R v. Telus, a 5-2 decision was made that law enforcement need wiretap authorization to intercept text (SMS) messages...
Are surveillance systems using biometric scanning really privacy-friendly?
I read a post today on the IAPP‘s Daily Dashboard talking about a “privacy-friendly” “positive side of facial recognition”. It suggests that Ontario’s Inform...
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
Retroshare
I had a lot of positive feedback from the recent post on Diaspora with client-side encryption. For those of you who are somewhat technically inclined, and li...
Email Encryption
On our contact us page we mention OpenPGP standard encryption (RFC 4880). What is this? Most people think email only goes to the intended recipient, but inst...
OpenPGP
GNU Privacy Guard
Ever since PGP removed their open source client, GnuPG has been the standard in open source PKI. If you want to encrypt your emails and/or files on your comp...
Email Encryption
On our contact us page we mention OpenPGP standard encryption (RFC 4880). What is this? Most people think email only goes to the intended recipient, but inst...
PGP
GNU Privacy Guard
Ever since PGP removed their open source client, GnuPG has been the standard in open source PKI. If you want to encrypt your emails and/or files on your comp...
Email Encryption
On our contact us page we mention OpenPGP standard encryption (RFC 4880). What is this? Most people think email only goes to the intended recipient, but inst...
hijacking
Shaw’s decided to hijack their customer’s DNS
When you go to a website that doesn’t exist, instead of your search engine of choice offering you other solutions, Shaw has decided to do this themselves, an...
Tynt.com. We want to hijack the paste in your next cut & paste
If you cut and paste from websites fairly often, especially on media websites, you may have noticed when you did so that some extra text was added. This is m...
iphone
Apple’s updated privacy policy
“To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the ...
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
stalking
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
Apple’s updated privacy policy
“To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the ...
Identity Theft
Identity theft at UVic
Over the week-end, the University of Victoria’s new administrative building was broken into. A payroll server with the personally identifiable information (P...
Your credit report
There are two credit bureaus in Canada, Equifax and Transunion (there was a 3rd, American company, but it appears to be defunct). Contrary to the prices list...
packet sniffing
3 Steps to Guard Against the Wolf in Firesheep Clothing – Vancouver Sun
I was quoted in this Vancouver Sun article today which highlights several ways you can protect yourself from sidejacking attacks.
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
sidejacking
3 Steps to Guard Against the Wolf in Firesheep Clothing – Vancouver Sun
I was quoted in this Vancouver Sun article today which highlights several ways you can protect yourself from sidejacking attacks.
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
wireshark
3 Steps to Guard Against the Wolf in Firesheep Clothing – Vancouver Sun
I was quoted in this Vancouver Sun article today which highlights several ways you can protect yourself from sidejacking attacks.
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
Media
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
Program Firesheep allows easy hacking of Facebook, Twitter over unsecured WiFi – Winnipeg FreePress
Today I was quoted in the Winniped FreePress about Firesheep:
protection
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
3 Steps to Guard Against the Wolf in Firesheep Clothing – Vancouver Sun
I was quoted in this Vancouver Sun article today which highlights several ways you can protect yourself from sidejacking attacks.
Vancouver Sun
Postmedia formatting hack
If you read any of the PostMedia (formerely CanWest) newspapers online, you know that their technical abilities are lacking, to say the least. One of the big...
3 Steps to Guard Against the Wolf in Firesheep Clothing – Vancouver Sun
I was quoted in this Vancouver Sun article today which highlights several ways you can protect yourself from sidejacking attacks.
digital
Your printer is giving you up!
Did you know that most printer manufacturers have secretly ensured there are watermarks on everything you print? These are tiny tracking dots barely visible ...
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
online
Change your default search engine
Most of us use a search engine such as Google or Yahoo daily without taking much time to consider the inherent privacy implications. If you have some time, ...
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
tracker
Using a non-tracker analytics service
You’ve probably heard of Google analytics, which takes logs of your website visitors, and all of their activities, and provides you some very pretty, and use...
A must have hosts file
My friend Dan Pollock has been compiling the must have hosts file for some time. According to Wikipedia, the hosts file is a computer file used in an operati...
torrent
Retroshare
I had a lot of positive feedback from the recent post on Diaspora with client-side encryption. For those of you who are somewhat technically inclined, and li...
Where does Google’s censorship end?
It’s been well reported on Google’s kowtowing to the Chinese government in regards to censorship. This was based on the requests of a foreign government. How...
CRTC
Update on usage based billing (UBB)
This image is getting a lot of attention. Today Michael Geist has released an article on Unpacking The Policy Issues Behind Bandwidth Caps & Usage Based ...
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
UBB
Update on usage based billing (UBB)
This image is getting a lot of attention. Today Michael Geist has released an article on Unpacking The Policy Issues Behind Bandwidth Caps & Usage Based ...
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
Usage Based Billing
Update on usage based billing (UBB)
This image is getting a lot of attention. Today Michael Geist has released an article on Unpacking The Policy Issues Behind Bandwidth Caps & Usage Based ...
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
browser
No scripts!
One of the most common ways your computer gets compromised, is by malicious scripts opened by your web browser. This means you go to a website that might loo...
Detect and block website trackers with Ghostery
For anyone that attended the Privacy and Security talk tonight at Social Media Club – Victoria, I mentioned a browser plugin that allows you to see who is tr...
ghostery
Using a non-tracker analytics service
You’ve probably heard of Google analytics, which takes logs of your website visitors, and all of their activities, and provides you some very pretty, and use...
Detect and block website trackers with Ghostery
For anyone that attended the Privacy and Security talk tonight at Social Media Club – Victoria, I mentioned a browser plugin that allows you to see who is tr...
trackers
The browser tracker test
I’ve spoken about trackers before and recommended four steps/solutions for protecting your browsing privacy:
Detect and block website trackers with Ghostery
For anyone that attended the Privacy and Security talk tonight at Social Media Club – Victoria, I mentioned a browser plugin that allows you to see who is tr...
always on
Using a secure connection where possible
I received a lot of feedback after my post yesterday about creating a permanent SSL (https://) connection to Facebook. It’s most important to use SSL anywher...
Tech Tip: Secure connection to Facebook
This tip is to create a permanent secure connection to Facebook. You can tell you’re using SSL if the URL starts with https:// instead of http://. When you’r...
IP
The Stop Online Piracy Act
If you’ve not heard of #SOPA yet, you likely will today. As of right now, it’s only something that techies and internet crusaders seem to be aware of. Like m...
I smell a RAT
Yesterday, Vanity Fair published an exclusive on operation Shady RAT (remote access tool), which was a high-level hacking campaign that lasted over 5 years, ...
crack
How strong is your password?
While working in information security for the largest company in Canada, I realized there was no one internally, actively attacking the password database to ...
Had your Twitter or Facebook hacked?
If your friends ever tell you that they’ve received spam from your account, but you didn’t send it, likely your account was compromised. The following steps ...
spam
What information can my organization collect from a person under BC PIPA?
If you’ve ever wondered, “What information can my organization collect from a person according to British Columbia’s Personal Information and Protection Act ...
Had your Twitter or Facebook hacked?
If your friends ever tell you that they’ve received spam from your account, but you didn’t send it, likely your account was compromised. The following steps ...
CA
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
Upgrade your browser before you check your gmail
There is a wildcard *google.com SSL certificate in the wild, which means malicious people can sit between you and anything at Google (including gmail) and pr...
law
Password protect your cellphone
For most things privacy related in Canadian law, it comes down to what a judge feels Canadians think is reasonable. A couple of days ago the Ontario court of...
Bill-3: Amendments to B.C. FIPPA to remove more of citizen’s privacy
If you’re a citizen of British Columbia and concerned about the government’s handling of your personal information, you probably want to read Bill-3 (full te...
CBC
The browser tracker test
I’ve spoken about trackers before and recommended four steps/solutions for protecting your browsing privacy:
Identity theft at UVic
Over the week-end, the University of Victoria’s new administrative building was broken into. A payroll server with the personally identifiable information (P...
java
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
No scripts!
One of the most common ways your computer gets compromised, is by malicious scripts opened by your web browser. This means you go to a website that might loo...
ixquick
Change your default search engine
Most of us use a search engine such as Google or Yahoo daily without taking much time to consider the inherent privacy implications. If you have some time, ...
ixquick, an alternative, privacy forward, search option
I mentioned a few months ago for those wanting to leave Google search to give DuckDuckGo a try. There’s another alternative as well, called ixquick. Give it ...
Search
Change your default search engine
Most of us use a search engine such as Google or Yahoo daily without taking much time to consider the inherent privacy implications. If you have some time, ...
ixquick, an alternative, privacy forward, search option
I mentioned a few months ago for those wanting to leave Google search to give DuckDuckGo a try. There’s another alternative as well, called ixquick. Give it ...
anti virus
Anti-Virus for Macosx
Because of Apple’s advertising, Mac users often (wrongly) believe that they don’t need anti-virus software. The problem that these users have is that when th...
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
norton
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
GNU Privacy Guard
Happy Data Privacy Day 2013!
According to Wikipedia, the purpose of Data Privacy Day is to raise awareness and promote data privacy education. It is currently ‘celebrated’ in the United ...
GNU Privacy Guard
Ever since PGP removed their open source client, GnuPG has been the standard in open source PKI. If you want to encrypt your emails and/or files on your comp...
gpg
Happy Data Privacy Day 2013!
According to Wikipedia, the purpose of Data Privacy Day is to raise awareness and promote data privacy education. It is currently ‘celebrated’ in the United ...
GNU Privacy Guard
Ever since PGP removed their open source client, GnuPG has been the standard in open source PKI. If you want to encrypt your emails and/or files on your comp...
comms
What communication systems can you trust?
After reading my Everything you say is likely compromised post, my friend Ross Henton asked,
Everything you say is likely compromised
Ever since the early days of 2600, people have been learning what it takes to compromise voice conversations.
chrome
Browser plugins for device protection
These are the three browser plugins for device protection I recommend you install. The first one is arguably more important than anti-virus, and takes a whil...
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
firefox
Browser plugins for device protection
These are the three browser plugins for device protection I recommend you install. The first one is arguably more important than anti-virus, and takes a whil...
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
internet explorer
Browser plugins for device protection
These are the three browser plugins for device protection I recommend you install. The first one is arguably more important than anti-virus, and takes a whil...
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
opera
Browser plugins for device protection
These are the three browser plugins for device protection I recommend you install. The first one is arguably more important than anti-virus, and takes a whil...
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
Email encryption
Email Encryption
On our contact us page we mention OpenPGP standard encryption (RFC 4880). What is this? Most people think email only goes to the intended recipient, but inst...
open source
Email Encryption
On our contact us page we mention OpenPGP standard encryption (RFC 4880). What is this? Most people think email only goes to the intended recipient, but inst...
Adwords
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
Apache
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
logs
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
netcraft
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
proxy
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
pseudoanonymity
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
tor
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
User agent
Web server logs
If you’re looking at a web site in your web browser (Firefox, Internet Explorer etc), it is being served by a web server. According to Netcraft over 50% of w...
free email
Free Email
“My email provider shut down my account, gave me a support ticket number, but I have no way to look it up” “Have you paid for your account?” “No, it’s a free...
Gmail
Free Email
“My email provider shut down my account, gave me a support ticket number, but I have no way to look it up” “Have you paid for your account?” “No, it’s a free...
Hotmail
Free Email
“My email provider shut down my account, gave me a support ticket number, but I have no way to look it up” “Have you paid for your account?” “No, it’s a free...
SLA
Free Email
“My email provider shut down my account, gave me a support ticket number, but I have no way to look it up” “Have you paid for your account?” “No, it’s a free...
Yahoo! Mail
Free Email
“My email provider shut down my account, gave me a support ticket number, but I have no way to look it up” “Have you paid for your account?” “No, it’s a free...
cippic
Social networking, what’s next?
In 2008, I was in Ottawa, talking with one of our clients, CIPPIC. Specifically the executive director at the time, about Facebook. There was discussion that...
FISA
Canadian Patriot Act introduced
Today a couple of changes to Canada’s privacy landscape were introduced under the infamous banner of “safety and security”. This will create significant chan...
Copy and Paste
Tynt.com. We want to hijack the paste in your next cut & paste
If you cut and paste from websites fairly often, especially on media websites, you may have noticed when you did so that some extra text was added. This is m...
Tynt
Tynt.com. We want to hijack the paste in your next cut & paste
If you cut and paste from websites fairly often, especially on media websites, you may have noticed when you did so that some extra text was added. This is m...
comparison
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
E71
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
MMS
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
Nokia
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
recommendations
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
SIP
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
smartphone
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
SMS
Apple iphone vs Nokia E71
Traditional cellular phones are now known as feature phones, deprecated by the advanced “smart phone”, which allows one to install feature rich, operating sy...
GPS
Apple’s updated privacy policy
“To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the ...
GPSr
Apple’s updated privacy policy
“To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the ...
metadata
Apple’s updated privacy policy
“To provide location-based services on Apple products, Apple and our partners and licensees may collect, use, and share precise location data, including the ...
10 Principles of Privacy
Was I notified either verbally or in writing, of the reason each piece of my information is being collected?
Recently, I was in a local brewery buying a keg, and they asked for a copy of my driver’s licence to write down the number on the deposit form. And then a fe...
collection of data
Was I notified either verbally or in writing, of the reason each piece of my information is being collected?
Recently, I was in a local brewery buying a keg, and they asked for a copy of my driver’s licence to write down the number on the deposit form. And then a fe...
collection of personal information
Was I notified either verbally or in writing, of the reason each piece of my information is being collected?
Recently, I was in a local brewery buying a keg, and they asked for a copy of my driver’s licence to write down the number on the deposit form. And then a fe...
small business
Was I notified either verbally or in writing, of the reason each piece of my information is being collected?
Recently, I was in a local brewery buying a keg, and they asked for a copy of my driver’s licence to write down the number on the deposit form. And then a fe...
Law enforcement
Canadian Patriot Act redux
The article posted in May on the Canadian Patriot Act being introduced to the House of Commons didn’t seem to go much further than “preaching to the choir”. ...
ebay
Technology Tip: Shopping
This is a technology hint for those wanting to know if they’re getting a good deal. You can use this hint no matter what you’re buying. You could be looking ...
frugal
Technology Tip: Shopping
This is a technology hint for those wanting to know if they’re getting a good deal. You can use this hint no matter what you’re buying. You could be looking ...
product
Technology Tip: Shopping
This is a technology hint for those wanting to know if they’re getting a good deal. You can use this hint no matter what you’re buying. You could be looking ...
shopping
Technology Tip: Shopping
This is a technology hint for those wanting to know if they’re getting a good deal. You can use this hint no matter what you’re buying. You could be looking ...
tech
Technology Tip: Shopping
This is a technology hint for those wanting to know if they’re getting a good deal. You can use this hint no matter what you’re buying. You could be looking ...
tip
Technology Tip: Shopping
This is a technology hint for those wanting to know if they’re getting a good deal. You can use this hint no matter what you’re buying. You could be looking ...
privacy breach
What does Google’s Street View know about you?
There is a lot of attention on Google right now due to the fact that Google had cars driving around the world, collecting photographic data so that it could ...
Streetview
What does Google’s Street View know about you?
There is a lot of attention on Google right now due to the fact that Google had cars driving around the world, collecting photographic data so that it could ...
Credit Report
Your credit report
There are two credit bureaus in Canada, Equifax and Transunion (there was a 3rd, American company, but it appears to be defunct). Contrary to the prices list...
Equifax
Your credit report
There are two credit bureaus in Canada, Equifax and Transunion (there was a 3rd, American company, but it appears to be defunct). Contrary to the prices list...
Transunion
Your credit report
There are two credit bureaus in Canada, Equifax and Transunion (there was a 3rd, American company, but it appears to be defunct). Contrary to the prices list...
ethereal
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
ferret
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
hamster
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
http
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
session highjacking
Borrow your neighbours identity
If you have a wireless card in your laptop or netbook, you should see if it can be put into monitor mode/promiscuous mode. If so, this means you can “sniff p...
Canadian Press
Program Firesheep allows easy hacking of Facebook, Twitter over unsecured WiFi – Winnipeg FreePress
Today I was quoted in the Winniped FreePress about Firesheep:
CP
Program Firesheep allows easy hacking of Facebook, Twitter over unsecured WiFi – Winnipeg FreePress
Today I was quoted in the Winniped FreePress about Firesheep:
FreePress
Program Firesheep allows easy hacking of Facebook, Twitter over unsecured WiFi – Winnipeg FreePress
Today I was quoted in the Winniped FreePress about Firesheep:
Winnipeg
Program Firesheep allows easy hacking of Facebook, Twitter over unsecured WiFi – Winnipeg FreePress
Today I was quoted in the Winniped FreePress about Firesheep:
Digital Life
3 Steps to Guard Against the Wolf in Firesheep Clothing – Vancouver Sun
I was quoted in this Vancouver Sun article today which highlights several ways you can protect yourself from sidejacking attacks.
firesheep
3 Steps to Guard Against the Wolf in Firesheep Clothing – Vancouver Sun
I was quoted in this Vancouver Sun article today which highlights several ways you can protect yourself from sidejacking attacks.
Gillian Shaw
3 Steps to Guard Against the Wolf in Firesheep Clothing – Vancouver Sun
I was quoted in this Vancouver Sun article today which highlights several ways you can protect yourself from sidejacking attacks.
Common Criteria
Too much trust in Common Criteria and FIPS 140-2?
Last week I attended PacSec in Tokyo, Japan. This is one of the three SecWest conferences every year, the largest being CanSecWest in Vancouver. One of t...
FIPS 140-2
Too much trust in Common Criteria and FIPS 140-2?
Last week I attended PacSec in Tokyo, Japan. This is one of the three SecWest conferences every year, the largest being CanSecWest in Vancouver. One of t...
security standards
Too much trust in Common Criteria and FIPS 140-2?
Last week I attended PacSec in Tokyo, Japan. This is one of the three SecWest conferences every year, the largest being CanSecWest in Vancouver. One of t...
@PrivaSecTech
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
banking
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
change
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
currency
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
fear
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
paypal
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
shopping online
Why is there so much fear about …?
This is my first Q&A post. If you have a question about anything Privacy, Security or Technology related, contact us on our website or ask as on twitt...
class
Ethical Hacking class
If you are in the Suwon/Seoul area of Korea tomorrow, I will be teaching an Ethical Hacking class at no cost. Contact me at @PrivaSecTech on twitter for di...
Ethical hacking
Ethical Hacking class
If you are in the Suwon/Seoul area of Korea tomorrow, I will be teaching an Ethical Hacking class at no cost. Contact me at @PrivaSecTech on twitter for di...
Korea
Ethical Hacking class
If you are in the Suwon/Seoul area of Korea tomorrow, I will be teaching an Ethical Hacking class at no cost. Contact me at @PrivaSecTech on twitter for di...
Seoul
Ethical Hacking class
If you are in the Suwon/Seoul area of Korea tomorrow, I will be teaching an Ethical Hacking class at no cost. Contact me at @PrivaSecTech on twitter for di...
Suwon
Ethical Hacking class
If you are in the Suwon/Seoul area of Korea tomorrow, I will be teaching an Ethical Hacking class at no cost. Contact me at @PrivaSecTech on twitter for di...
backups
Ready to test your BCP?
Most large organization make sure to do Business Continuity Planning (BCP), also known as Disaster Recovery Planning (DRP), because they understand the impor...
BCP
Ready to test your BCP?
Most large organization make sure to do Business Continuity Planning (BCP), also known as Disaster Recovery Planning (DRP), because they understand the impor...
Business Continuity Planning
Ready to test your BCP?
Most large organization make sure to do Business Continuity Planning (BCP), also known as Disaster Recovery Planning (DRP), because they understand the impor...
Disaster Recovery Planning
Ready to test your BCP?
Most large organization make sure to do Business Continuity Planning (BCP), also known as Disaster Recovery Planning (DRP), because they understand the impor...
DRP
Ready to test your BCP?
Most large organization make sure to do Business Continuity Planning (BCP), also known as Disaster Recovery Planning (DRP), because they understand the impor...
EFF
Your printer is giving you up!
Did you know that most printer manufacturers have secretly ensured there are watermarks on everything you print? These are tiny tracking dots barely visible ...
forensic
Your printer is giving you up!
Did you know that most printer manufacturers have secretly ensured there are watermarks on everything you print? These are tiny tracking dots barely visible ...
forensic marking
Your printer is giving you up!
Did you know that most printer manufacturers have secretly ensured there are watermarks on everything you print? These are tiny tracking dots barely visible ...
printer
Your printer is giving you up!
Did you know that most printer manufacturers have secretly ensured there are watermarks on everything you print? These are tiny tracking dots barely visible ...
printing
Your printer is giving you up!
Did you know that most printer manufacturers have secretly ensured there are watermarks on everything you print? These are tiny tracking dots barely visible ...
watermark
Your printer is giving you up!
Did you know that most printer manufacturers have secretly ensured there are watermarks on everything you print? These are tiny tracking dots barely visible ...
breach
Why would Facebook application developers sell your home address?
Because now they can. Last Friday, after work, Facebook announced they will be providing your home address and telephone number to software developers.
fail
Why would Facebook application developers sell your home address?
Because now they can. Last Friday, after work, Facebook announced they will be providing your home address and telephone number to software developers.
file
A must have hosts file
My friend Dan Pollock has been compiling the must have hosts file for some time. According to Wikipedia, the hosts file is a computer file used in an operati...
hosts
A must have hosts file
My friend Dan Pollock has been compiling the must have hosts file for some time. According to Wikipedia, the hosts file is a computer file used in an operati...
safety
A must have hosts file
My friend Dan Pollock has been compiling the must have hosts file for some time. According to Wikipedia, the hosts file is a computer file used in an operati...
surfing
A must have hosts file
My friend Dan Pollock has been compiling the must have hosts file for some time. According to Wikipedia, the hosts file is a computer file used in an operati...
censorship
Where does Google’s censorship end?
It’s been well reported on Google’s kowtowing to the Chinese government in regards to censorship. This was based on the requests of a foreign government. How...
filter
Where does Google’s censorship end?
It’s been well reported on Google’s kowtowing to the Chinese government in regards to censorship. This was based on the requests of a foreign government. How...
filtering
Where does Google’s censorship end?
It’s been well reported on Google’s kowtowing to the Chinese government in regards to censorship. This was based on the requests of a foreign government. How...
advertising
Why would Facebook turn your actions into an ad?
Because they can. On Monday, Facebook released a [ video](https://www.facebook.com/video/video.php?v=10100328087082670) that shows how their new *sponsored s...
airport security
The Naked Traveller – is all this necessary?
I will be speaking at the 12th Annual Privacy and Security Conference with the theme “Security and Privacy – Is there an app for that?”
conference
The Naked Traveller – is all this necessary?
I will be speaking at the 12th Annual Privacy and Security Conference with the theme “Security and Privacy – Is there an app for that?”
reboot
The Naked Traveller – is all this necessary?
I will be speaking at the 12th Annual Privacy and Security Conference with the theme “Security and Privacy – Is there an app for that?”
security theatre
The Naked Traveller – is all this necessary?
I will be speaking at the 12th Annual Privacy and Security Conference with the theme “Security and Privacy – Is there an app for that?”
TSA
The Naked Traveller – is all this necessary?
I will be speaking at the 12th Annual Privacy and Security Conference with the theme “Security and Privacy – Is there an app for that?”
bandwidth
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
caps
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
internet service provider
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
ISP
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
limits
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
oligarchy
Canadian petition against usage based billing
As of writing this, I am one of over 180,000 Canadians that have signed the stop the meter campaign against usage based billing. There are several challenges...
#cdnpoli
Update on usage based billing (UBB)
This image is getting a lot of attention. Today Michael Geist has released an article on Unpacking The Policy Issues Behind Bandwidth Caps & Usage Based ...
politicians
Update on usage based billing (UBB)
This image is getting a lot of attention. Today Michael Geist has released an article on Unpacking The Policy Issues Behind Bandwidth Caps & Usage Based ...
@caparsons
Privacy and Security talk at Social Media Club – Victoria
If you’re in Victoria on April 18, 2011, I will be speaking with my good friend Chris Parsons at Social Media Club – Victoria. My talk’s current title is “T...
Chris Parsons
Privacy and Security talk at Social Media Club – Victoria
If you’re in Victoria on April 18, 2011, I will be speaking with my good friend Chris Parsons at Social Media Club – Victoria. My talk’s current title is “T...
presentation
Privacy and Security talk at Social Media Club – Victoria
If you’re in Victoria on April 18, 2011, I will be speaking with my good friend Chris Parsons at Social Media Club – Victoria. My talk’s current title is “T...
UVic
Privacy and Security talk at Social Media Club – Victoria
If you’re in Victoria on April 18, 2011, I will be speaking with my good friend Chris Parsons at Social Media Club – Victoria. My talk’s current title is “T...
Victoria
Privacy and Security talk at Social Media Club – Victoria
If you’re in Victoria on April 18, 2011, I will be speaking with my good friend Chris Parsons at Social Media Club – Victoria. My talk’s current title is “T...
ads
Detect and block website trackers with Ghostery
For anyone that attended the Privacy and Security talk tonight at Social Media Club – Victoria, I mentioned a browser plugin that allows you to see who is tr...
plugin
Detect and block website trackers with Ghostery
For anyone that attended the Privacy and Security talk tonight at Social Media Club – Victoria, I mentioned a browser plugin that allows you to see who is tr...
account
Tech Tip: Secure connection to Facebook
This tip is to create a permanent secure connection to Facebook. You can tell you’re using SSL if the URL starts with https:// instead of http://. When you’r...
settings
Tech Tip: Secure connection to Facebook
This tip is to create a permanent secure connection to Facebook. You can tell you’re using SSL if the URL starts with https:// instead of http://. When you’r...
pen testing
Who’s pentesting your organization?
Penetration testing, also known as pentesting, is a way of evaluating the security of your organization from the perspective of a malicious black hat hacker....
penetration testing
Who’s pentesting your organization?
Penetration testing, also known as pentesting, is a way of evaluating the security of your organization from the perspective of a malicious black hat hacker....
pentest
Who’s pentesting your organization?
Penetration testing, also known as pentesting, is a way of evaluating the security of your organization from the perspective of a malicious black hat hacker....
pentesting
Who’s pentesting your organization?
Penetration testing, also known as pentesting, is a way of evaluating the security of your organization from the perspective of a malicious black hat hacker....
care card
British Columbia’s new health care card another waste of resources?
It was [announced a few minutes ago](https://www.timescolonist.com/residents+secure+CareCards+must+renew+every+five+years/4812099/story.html) that British Co...
chip and pin
British Columbia’s new health care card another waste of resources?
It was [announced a few minutes ago](https://www.timescolonist.com/residents+secure+CareCards+must+renew+every+five+years/4812099/story.html) that British Co...
health care
British Columbia’s new health care card another waste of resources?
It was [announced a few minutes ago](https://www.timescolonist.com/residents+secure+CareCards+must+renew+every+five+years/4812099/story.html) that British Co...
@shawhelp
Shaw’s decided to hijack their customer’s DNS
When you go to a website that doesn’t exist, instead of your search engine of choice offering you other solutions, Shaw has decided to do this themselves, an...
@shawinfo
Shaw’s decided to hijack their customer’s DNS
When you go to a website that doesn’t exist, instead of your search engine of choice offering you other solutions, Shaw has decided to do this themselves, an...
DNS
Shaw’s decided to hijack their customer’s DNS
When you go to a website that doesn’t exist, instead of your search engine of choice offering you other solutions, Shaw has decided to do this themselves, an...
nxr
Shaw’s decided to hijack their customer’s DNS
When you go to a website that doesn’t exist, instead of your search engine of choice offering you other solutions, Shaw has decided to do this themselves, an...
Shaw
Shaw’s decided to hijack their customer’s DNS
When you go to a website that doesn’t exist, instead of your search engine of choice offering you other solutions, Shaw has decided to do this themselves, an...
Harper Government
Stop online spying in Canada
You may remember a year ago I broke the story on the introduction of the minority government’s Canadian version of the patriot act (see articles one and two)...
spying
Stop online spying in Canada
You may remember a year ago I broke the story on the introduction of the minority government’s Canadian version of the patriot act (see articles one and two)...
PIPPA
The cloud is still a bad idea… keep your user’s personal information off US soil at all costs.
There’s an article in the register today highlighting that American organizations are all bound by the US Patriot act, which essentially allows the US govern...
US Patriot Act
The cloud is still a bad idea… keep your user’s personal information off US soil at all costs.
There’s an article in the register today highlighting that American organizations are all bound by the US Patriot act, which essentially allows the US govern...
Bing
Duck Duck Go
You’re likelty using Google as your default search engine; and they’re undoubtably good at search. The challenge to me is what are they doing with the inform...
Search engine
Duck Duck Go
You’re likelty using Google as your default search engine; and they’re undoubtably good at search. The challenge to me is what are they doing with the inform...
anonymity
Canadian judge rules in favour of pseudo-anonymous website commenters/bloggers
An article came out today on canada.com.details how some good precedence for freedom of speech and anonymity online was just made in Ontario:
blogging
Canadian judge rules in favour of pseudo-anonymous website commenters/bloggers
An article came out today on canada.com.details how some good precedence for freedom of speech and anonymity online was just made in Ontario:
pseudoanon
Canadian judge rules in favour of pseudo-anonymous website commenters/bloggers
An article came out today on canada.com.details how some good precedence for freedom of speech and anonymity online was just made in Ontario:
Operation Shady RAT
I smell a RAT
Yesterday, Vanity Fair published an exclusive on operation Shady RAT (remote access tool), which was a high-level hacking campaign that lasted over 5 years, ...
state actor
I smell a RAT
Yesterday, Vanity Fair published an exclusive on operation Shady RAT (remote access tool), which was a high-level hacking campaign that lasted over 5 years, ...
@snookca
LinkedIn to approve the closing of your account?
After writing an article yesterday on how LinkedIn opts your name and photo into social advertising by default, it was brought to my attention today that if ...
LinkedIn to approve the closing of your account?
After writing an article yesterday on how LinkedIn opts your name and photo into social advertising by default, it was brought to my attention today that if ...
CanWest
Postmedia formatting hack
If you read any of the PostMedia (formerely CanWest) newspapers online, you know that their technical abilities are lacking, to say the least. One of the big...
compliance
Postmedia formatting hack
If you read any of the PostMedia (formerely CanWest) newspapers online, you know that their technical abilities are lacking, to say the least. One of the big...
Edmonton Journal
Postmedia formatting hack
If you read any of the PostMedia (formerely CanWest) newspapers online, you know that their technical abilities are lacking, to say the least. One of the big...
HTML
Postmedia formatting hack
If you read any of the PostMedia (formerely CanWest) newspapers online, you know that their technical abilities are lacking, to say the least. One of the big...
Ottawa Citizen
Postmedia formatting hack
If you read any of the PostMedia (formerely CanWest) newspapers online, you know that their technical abilities are lacking, to say the least. One of the big...
PostMedia
Postmedia formatting hack
If you read any of the PostMedia (formerely CanWest) newspapers online, you know that their technical abilities are lacking, to say the least. One of the big...
Victoria Times-Colonist
Postmedia formatting hack
If you read any of the PostMedia (formerely CanWest) newspapers online, you know that their technical abilities are lacking, to say the least. One of the big...
W3
Postmedia formatting hack
If you read any of the PostMedia (formerely CanWest) newspapers online, you know that their technical abilities are lacking, to say the least. One of the big...
DigiNotar
Upgrade your browser before you check your gmail
There is a wildcard *google.com SSL certificate in the wild, which means malicious people can sit between you and anything at Google (including gmail) and pr...
exploit
Upgrade your browser before you check your gmail
There is a wildcard *google.com SSL certificate in the wild, which means malicious people can sit between you and anything at Google (including gmail) and pr...
Iran
Upgrade your browser before you check your gmail
There is a wildcard *google.com SSL certificate in the wild, which means malicious people can sit between you and anything at Google (including gmail) and pr...
MITM
Upgrade your browser before you check your gmail
There is a wildcard *google.com SSL certificate in the wild, which means malicious people can sit between you and anything at Google (including gmail) and pr...
vuln
Upgrade your browser before you check your gmail
There is a wildcard *google.com SSL certificate in the wild, which means malicious people can sit between you and anything at Google (including gmail) and pr...
civil liberties
Wanna put your friends, or enemies, under surveillance?
In an overwhelming scary move, the Vancouver Police Department and the Integrated Riot Squad have just launched a Vancouver riot tell-on-your-friends website...
riot
Wanna put your friends, or enemies, under surveillance?
In an overwhelming scary move, the Vancouver Police Department and the Integrated Riot Squad have just launched a Vancouver riot tell-on-your-friends website...
Vancouver
Wanna put your friends, or enemies, under surveillance?
In an overwhelming scary move, the Vancouver Police Department and the Integrated Riot Squad have just launched a Vancouver riot tell-on-your-friends website...
0day
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
certificate
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
comodo
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
DigitNotar
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
Ich Sun
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
windows update
Ich Sun is back, claiming the #MostSophisticatedHackOfAllTime
You may have read my comodogate article back in March where I reported that the comodogate hacker, going by the name Ich Sun told me “…there is a lot of vu...
#F8
Facebook post F8
Right after the Facebook F8 keynote, a 15 year old noted he didn’t understand this new model Facebook was about to roll out. What might not be obvious, is th...
data retention act
What info does Facebook have on me?
After the F8 conference, there is even more concern than before about what personal information Facebook has on an individual. I was sent Facebook’s personal...
personally identifiable information
What info does Facebook have on me?
After the F8 conference, there is even more concern than before about what personal information Facebook has on an individual. I was sent Facebook’s personal...
adword
Google now offering secure search
It’s not often we’ve given Google credit for privacy or security steps, but this week is one of them. Following the steps by Facebook and Twitter we announce...
keyword
Google now offering secure search
It’s not often we’ve given Google credit for privacy or security steps, but this week is one of them. Following the steps by Facebook and Twitter we announce...
secure
Google now offering secure search
It’s not often we’ve given Google credit for privacy or security steps, but this week is one of them. Following the steps by Facebook and Twitter we announce...
SEM
Google now offering secure search
It’s not often we’ve given Google credit for privacy or security steps, but this week is one of them. Following the steps by Facebook and Twitter we announce...
SEO
Google now offering secure search
It’s not often we’ve given Google credit for privacy or security steps, but this week is one of them. Following the steps by Facebook and Twitter we announce...
FIPPA
Bill-3: Amendments to B.C. FIPPA to remove more of citizen’s privacy
If you’re a citizen of British Columbia and concerned about the government’s handling of your personal information, you probably want to read Bill-3 (full te...
legislation
Bill-3: Amendments to B.C. FIPPA to remove more of citizen’s privacy
If you’re a citizen of British Columbia and concerned about the government’s handling of your personal information, you probably want to read Bill-3 (full te...
legislature
Bill-3: Amendments to B.C. FIPPA to remove more of citizen’s privacy
If you’re a citizen of British Columbia and concerned about the government’s handling of your personal information, you probably want to read Bill-3 (full te...
affiliate marketing
Using a non-tracker analytics service
You’ve probably heard of Google analytics, which takes logs of your website visitors, and all of their activities, and provides you some very pretty, and use...
authentication
How strong is your password?
While working in information security for the largest company in Canada, I realized there was no one internally, actively attacking the password database to ...
hash
How strong is your password?
While working in information security for the largest company in Canada, I realized there was no one internally, actively attacking the password database to ...
john the ripper
How strong is your password?
While working in information security for the largest company in Canada, I realized there was no one internally, actively attacking the password database to ...
l0phtcrack
How strong is your password?
While working in information security for the largest company in Canada, I realized there was no one internally, actively attacking the password database to ...
rainbow tables
How strong is your password?
While working in information security for the largest company in Canada, I realized there was no one internally, actively attacking the password database to ...
THC Hydra
How strong is your password?
While working in information security for the largest company in Canada, I realized there was no one internally, actively attacking the password database to ...
connections
Where is your computer connecting to?
What is your computer doing on the internet without your knowledge?
lsof
Where is your computer connecting to?
What is your computer doing on the internet without your knowledge?
netstat
Where is your computer connecting to?
What is your computer doing on the internet without your knowledge?
network
Where is your computer connecting to?
What is your computer doing on the internet without your knowledge?
tcp
Where is your computer connecting to?
What is your computer doing on the internet without your knowledge?
udp
Where is your computer connecting to?
What is your computer doing on the internet without your knowledge?
Administrative services
Identity theft at UVic
Over the week-end, the University of Victoria’s new administrative building was broken into. A payroll server with the personally identifiable information (P...
identity
Identity theft at UVic
Over the week-end, the University of Victoria’s new administrative building was broken into. A payroll server with the personally identifiable information (P...
SIN
Identity theft at UVic
Over the week-end, the University of Victoria’s new administrative building was broken into. A payroll server with the personally identifiable information (P...
theft
Identity theft at UVic
Over the week-end, the University of Victoria’s new administrative building was broken into. A payroll server with the personally identifiable information (P...
copyright
The Stop Online Piracy Act
If you’ve not heard of #SOPA yet, you likely will today. As of right now, it’s only something that techies and internet crusaders seem to be aware of. Like m...
SOPA
The Stop Online Piracy Act
If you’ve not heard of #SOPA yet, you likely will today. As of right now, it’s only something that techies and internet crusaders seem to be aware of. Like m...
stop online piracy act
The Stop Online Piracy Act
If you’ve not heard of #SOPA yet, you likely will today. As of right now, it’s only something that techies and internet crusaders seem to be aware of. Like m...
cross site scripting
No scripts!
One of the most common ways your computer gets compromised, is by malicious scripts opened by your web browser. This means you go to a website that might loo...
javascript
No scripts!
One of the most common ways your computer gets compromised, is by malicious scripts opened by your web browser. This means you go to a website that might loo...
malicious
No scripts!
One of the most common ways your computer gets compromised, is by malicious scripts opened by your web browser. This means you go to a website that might loo...
scripts
No scripts!
One of the most common ways your computer gets compromised, is by malicious scripts opened by your web browser. This means you go to a website that might loo...
XSS
No scripts!
One of the most common ways your computer gets compromised, is by malicious scripts opened by your web browser. This means you go to a website that might loo...
@vicpdcanada
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
accountability
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
ALPR
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
AOI
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
audit
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
FOI
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
RCMP
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
surveiilance
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
transparancy
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
Victoria Police
Canada’s massive public traffic surveillance system
Do you think such a thing could be implemented without any public consultation or corporate media attention? It exists. About 6 months ago at an Ideas Victor...
customs
What are our regulators doing to protect Canadian internet sovereignty?
This is the basis of the follow up letter from Digital Policy Canada drafted to the CIRA sponsored Canadian Internet Forum this week. The fundamental questio...
digitalpolicy
What are our regulators doing to protect Canadian internet sovereignty?
This is the basis of the follow up letter from Digital Policy Canada drafted to the CIRA sponsored Canadian Internet Forum this week. The fundamental questio...
domain
What are our regulators doing to protect Canadian internet sovereignty?
This is the basis of the follow up letter from Digital Policy Canada drafted to the CIRA sponsored Canadian Internet Forum this week. The fundamental questio...
enforcement
What are our regulators doing to protect Canadian internet sovereignty?
This is the basis of the follow up letter from Digital Policy Canada drafted to the CIRA sponsored Canadian Internet Forum this week. The fundamental questio...
ICANN
What are our regulators doing to protect Canadian internet sovereignty?
This is the basis of the follow up letter from Digital Policy Canada drafted to the CIRA sponsored Canadian Internet Forum this week. The fundamental questio...
ICE
What are our regulators doing to protect Canadian internet sovereignty?
This is the basis of the follow up letter from Digital Policy Canada drafted to the CIRA sponsored Canadian Internet Forum this week. The fundamental questio...
regulator
What are our regulators doing to protect Canadian internet sovereignty?
This is the basis of the follow up letter from Digital Policy Canada drafted to the CIRA sponsored Canadian Internet Forum this week. The fundamental questio...
DuckDuckGo
ixquick, an alternative, privacy forward, search option
I mentioned a few months ago for those wanting to leave Google search to give DuckDuckGo a try. There’s another alternative as well, called ixquick. Give it ...
Engine
ixquick, an alternative, privacy forward, search option
I mentioned a few months ago for those wanting to leave Google search to give DuckDuckGo a try. There’s another alternative as well, called ixquick. Give it ...
avast
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
AVG
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
hacker
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
pwn
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
pwned
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
rooted
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
scan
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
symantec
Anti-virus, are you doing it right?
Most of my clients are running anti-virus on their home and work computers, but are they using it right? There are 3 key steps to running anti-Virus software...
creeping
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
foursquare
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
geo-loc
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
latitude
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
linked in
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
longtitude
Opening your social network profile
There have been a lot of stories about what happens when you reveal your social network profile, especially your geo-location information. Probably made famo...
@DanPollock
The browser tracker test
I’ve spoken about trackers before and recommended four steps/solutions for protecting your browsing privacy:
Canadian Broadcasting Corporation
The browser tracker test
I’ve spoken about trackers before and recommended four steps/solutions for protecting your browsing privacy:
dangerous
The browser tracker test
I’ve spoken about trackers before and recommended four steps/solutions for protecting your browsing privacy:
motorcycle
The browser tracker test
I’ve spoken about trackers before and recommended four steps/solutions for protecting your browsing privacy:
Steven Smart
The browser tracker test
I’ve spoken about trackers before and recommended four steps/solutions for protecting your browsing privacy:
based
Free cloud storage
The cloud is a current buzzword in technology, referring to remote storage space on the internet. The big challenge with using free cloud storage, as a priva...
cloud
Free cloud storage
The cloud is a current buzzword in technology, referring to remote storage space on the internet. The big challenge with using free cloud storage, as a priva...
storage
Free cloud storage
The cloud is a current buzzword in technology, referring to remote storage space on the internet. The big challenge with using free cloud storage, as a priva...
IPO
Warning Facebook you control your data
There’s currently a Facebook status going around that states the following:
publicly traded
Warning Facebook you control your data
There’s currently a Facebook status going around that states the following:
Diaspora
Diaspora with client side encryption
I’ve written about Diaspora before, a social network (Facebook replacement?) that is decentralized, and cares (more) about privacy. If you’re interested to l...
PKI
Diaspora with client side encryption
I’ve written about Diaspora before, a social network (Facebook replacement?) that is decentralized, and cares (more) about privacy. If you’re interested to l...
clickjacking
Are you vulnerable to the DNSChanger?
Wired is reporting that several hundred thousand people may be affected on Monday when the FBI turns off the domains used in the DNSChanger malware. Over 1/...
DNSChanger
Are you vulnerable to the DNSChanger?
Wired is reporting that several hundred thousand people may be affected on Monday when the FBI turns off the domains used in the DNSChanger malware. Over 1/...
Eastern Europe
Are you vulnerable to the DNSChanger?
Wired is reporting that several hundred thousand people may be affected on Monday when the FBI turns off the domains used in the DNSChanger malware. Over 1/...
FBI
Are you vulnerable to the DNSChanger?
Wired is reporting that several hundred thousand people may be affected on Monday when the FBI turns off the domains used in the DNSChanger malware. Over 1/...
scam
Are you vulnerable to the DNSChanger?
Wired is reporting that several hundred thousand people may be affected on Monday when the FBI turns off the domains used in the DNSChanger malware. Over 1/...
client
Retroshare
I had a lot of positive feedback from the recent post on Diaspora with client-side encryption. For those of you who are somewhat technically inclined, and li...
file transfer
Retroshare
I had a lot of positive feedback from the recent post on Diaspora with client-side encryption. For those of you who are somewhat technically inclined, and li...
IM
Retroshare
I had a lot of positive feedback from the recent post on Diaspora with client-side encryption. For those of you who are somewhat technically inclined, and li...
instant messenger
Retroshare
I had a lot of positive feedback from the recent post on Diaspora with client-side encryption. For those of you who are somewhat technically inclined, and li...
anti
Anti-Virus for Macosx
Because of Apple’s advertising, Mac users often (wrongly) believe that they don’t need anti-virus software. The problem that these users have is that when th...
AV
Anti-Virus for Macosx
Because of Apple’s advertising, Mac users often (wrongly) believe that they don’t need anti-virus software. The problem that these users have is that when th...
macosx
Anti-Virus for Macosx
Because of Apple’s advertising, Mac users often (wrongly) believe that they don’t need anti-virus software. The problem that these users have is that when th...
OSX
Anti-Virus for Macosx
Because of Apple’s advertising, Mac users often (wrongly) believe that they don’t need anti-virus software. The problem that these users have is that when th...
virus
Anti-Virus for Macosx
Because of Apple’s advertising, Mac users often (wrongly) believe that they don’t need anti-virus software. The problem that these users have is that when th...
Ann Cavoukian
Are surveillance systems using biometric scanning really privacy-friendly?
I read a post today on the IAPP‘s Daily Dashboard talking about a “privacy-friendly” “positive side of facial recognition”. It suggests that Ontario’s Inform...
biometrics
Are surveillance systems using biometric scanning really privacy-friendly?
I read a post today on the IAPP‘s Daily Dashboard talking about a “privacy-friendly” “positive side of facial recognition”. It suggests that Ontario’s Inform...
Daily Dashboard
Are surveillance systems using biometric scanning really privacy-friendly?
I read a post today on the IAPP‘s Daily Dashboard talking about a “privacy-friendly” “positive side of facial recognition”. It suggests that Ontario’s Inform...
friendly
Are surveillance systems using biometric scanning really privacy-friendly?
I read a post today on the IAPP‘s Daily Dashboard talking about a “privacy-friendly” “positive side of facial recognition”. It suggests that Ontario’s Inform...
IAPP
Are surveillance systems using biometric scanning really privacy-friendly?
I read a post today on the IAPP‘s Daily Dashboard talking about a “privacy-friendly” “positive side of facial recognition”. It suggests that Ontario’s Inform...
scanning
Are surveillance systems using biometric scanning really privacy-friendly?
I read a post today on the IAPP‘s Daily Dashboard talking about a “privacy-friendly” “positive side of facial recognition”. It suggests that Ontario’s Inform...
C-12
Canadian Patriot Act back as bill C-12
If you’ve followed this blog for some time, I first wrote about the introduction of the bill in May 2010, and then a follow up redux in August 2010 (a summar...
C-29
Canadian Patriot Act back as bill C-12
If you’ve followed this blog for some time, I first wrote about the introduction of the bill in May 2010, and then a follow up redux in August 2010 (a summar...
security
Everything you say is likely compromised
Ever since the early days of 2600, people have been learning what it takes to compromise voice conversations.
telephone
Everything you say is likely compromised
Ever since the early days of 2600, people have been learning what it takes to compromise voice conversations.
voice
Everything you say is likely compromised
Ever since the early days of 2600, people have been learning what it takes to compromise voice conversations.
SIGINT
What communication systems can you trust?
After reading my Everything you say is likely compromised post, my friend Ross Henton asked,
trust
What communication systems can you trust?
After reading my Everything you say is likely compromised post, my friend Ross Henton asked,
duck duck go
Change your default search engine
Most of us use a search engine such as Google or Yahoo daily without taking much time to consider the inherent privacy implications. If you have some time, ...
start page
Change your default search engine
Most of us use a search engine such as Google or Yahoo daily without taking much time to consider the inherent privacy implications. If you have some time, ...
camera
Recording video or taking pictures in public
What likely started out as a school prank has turned into a popular video series called Surveillance Camera Man
public
Recording video or taking pictures in public
What likely started out as a school prank has turned into a popular video series called Surveillance Camera Man
recording
Recording video or taking pictures in public
What likely started out as a school prank has turned into a popular video series called Surveillance Camera Man
video
Recording video or taking pictures in public
What likely started out as a school prank has turned into a popular video series called Surveillance Camera Man
Data Privacy Day
Happy Data Privacy Day 2013!
According to Wikipedia, the purpose of Data Privacy Day is to raise awareness and promote data privacy education. It is currently ‘celebrated’ in the United ...
disk encryption
Happy Data Privacy Day 2013!
According to Wikipedia, the purpose of Data Privacy Day is to raise awareness and promote data privacy education. It is currently ‘celebrated’ in the United ...
FDE
Happy Data Privacy Day 2013!
According to Wikipedia, the purpose of Data Privacy Day is to raise awareness and promote data privacy education. It is currently ‘celebrated’ in the United ...
full disk encryption
Happy Data Privacy Day 2013!
According to Wikipedia, the purpose of Data Privacy Day is to raise awareness and promote data privacy education. It is currently ‘celebrated’ in the United ...
cellular phone
Password protect your cellphone
For most things privacy related in Canadian law, it comes down to what a judge feels Canadians think is reasonable. A couple of days ago the Ontario court of...
court
Password protect your cellphone
For most things privacy related in Canadian law, it comes down to what a judge feels Canadians think is reasonable. A couple of days ago the Ontario court of...
Ontario
Password protect your cellphone
For most things privacy related in Canadian law, it comes down to what a judge feels Canadians think is reasonable. A couple of days ago the Ontario court of...
smart phone
Password protect your cellphone
For most things privacy related in Canadian law, it comes down to what a judge feels Canadians think is reasonable. A couple of days ago the Ontario court of...
@kevinsmcarthur
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
CBA
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
CCIRC
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
cURL
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
Kevin McArthur
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
OpenSSL
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
peerjacking
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
php
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
responsible disclosure
If you use SSL, cURL up and VERIFYPEERS
Reader level: Techy/Sysadmin
cops
Supreme Court of Canada says a wiretap is needed for text messages
In the Supreme Court of Canada’s case of R v. Telus, a 5-2 decision was made that law enforcement need wiretap authorization to intercept text (SMS) messages...
police
Supreme Court of Canada says a wiretap is needed for text messages
In the Supreme Court of Canada’s case of R v. Telus, a 5-2 decision was made that law enforcement need wiretap authorization to intercept text (SMS) messages...
R. vs Telus
Supreme Court of Canada says a wiretap is needed for text messages
In the Supreme Court of Canada’s case of R v. Telus, a 5-2 decision was made that law enforcement need wiretap authorization to intercept text (SMS) messages...
SCC
Supreme Court of Canada says a wiretap is needed for text messages
In the Supreme Court of Canada’s case of R v. Telus, a 5-2 decision was made that law enforcement need wiretap authorization to intercept text (SMS) messages...
search warrant
Supreme Court of Canada says a wiretap is needed for text messages
In the Supreme Court of Canada’s case of R v. Telus, a 5-2 decision was made that law enforcement need wiretap authorization to intercept text (SMS) messages...
wiretap
Supreme Court of Canada says a wiretap is needed for text messages
In the Supreme Court of Canada’s case of R v. Telus, a 5-2 decision was made that law enforcement need wiretap authorization to intercept text (SMS) messages...
2013
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
blackberry
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
safari
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
symantac
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
symantic
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
top 3 steps
The top 3 steps to protect your computing device
If you’re wondering what the top 3 steps to protect your computing device, this post is for you. It’s important to note I said device and not computer, as th...
business
What information can my organization collect from a person under BC PIPA?
If you’ve ever wondered, “What information can my organization collect from a person according to British Columbia’s Personal Information and Protection Act ...
consent
What information can my organization collect from a person under BC PIPA?
If you’ve ever wondered, “What information can my organization collect from a person according to British Columbia’s Personal Information and Protection Act ...
corporation
What information can my organization collect from a person under BC PIPA?
If you’ve ever wondered, “What information can my organization collect from a person according to British Columbia’s Personal Information and Protection Act ...
opt-in
What information can my organization collect from a person under BC PIPA?
If you’ve ever wondered, “What information can my organization collect from a person according to British Columbia’s Personal Information and Protection Act ...
opt-out
What information can my organization collect from a person under BC PIPA?
If you’ve ever wondered, “What information can my organization collect from a person according to British Columbia’s Personal Information and Protection Act ...
privacy commission
What information can my organization collect from a person under BC PIPA?
If you’ve ever wondered, “What information can my organization collect from a person according to British Columbia’s Personal Information and Protection Act ...
chomium
Browser plugins for device protection
These are the three browser plugins for device protection I recommend you install. The first one is arguably more important than anti-virus, and takes a whil...
IE
Browser plugins for device protection
These are the three browser plugins for device protection I recommend you install. The first one is arguably more important than anti-virus, and takes a whil...
TLS
Secure websites
I’m often asked about secure websites. For example, should you trust the connection with your computer and your bank’s website? The article is going to get a...
FOIPPA
B.C. NDP quietly dismantling privacy protections for British Columbians
On November 25, 2021, amendments to B.C.’s Freedom of Information and Protection of Privacy Act, R.S.B.C. 1996, c. 165 (“FOIPPA”) came into force through Bil...
NDP
B.C. NDP quietly dismantling privacy protections for British Columbians
On November 25, 2021, amendments to B.C.’s Freedom of Information and Protection of Privacy Act, R.S.B.C. 1996, c. 165 (“FOIPPA”) came into force through Bil...
Social Media Club
Privacy and Security talk at Social Media Club – Victoria
less than 1 minute read
If you’re in Victoria on April 18, 2011, I will be speaking with my good friend Chris Parsons at Social Media Club – Victoria. My talk’s current title is “T...