[HardOCP] Google Announces New Data Controls and the Closing of Google+ After Security Lapse - Overclock.net - An Overclocking Community

Forum Jump: 

[HardOCP] Google Announces New Data Controls and the Closing of Google+ After Security Lapse

 
Thread Tools
post #1 of 3 (permalink) Old 10-08-2018, 01:37 PM - Thread Starter
Observer
 
iamjanco's Avatar
 
Join Date: Aug 2016
Posts: 2,049
Rep: 96 (Unique: 57)
[HardOCP] Google Announces New Data Controls and the Closing of Google+ After Security Lapse

Note: the WSJ requires a subscription to it to read the full article; hence the link to HardOCP.

Quote:
Google has announced that it is shuttering its beleaguered social media portal Google+ in response to a security lapse where 3rd party developers could access private consumer data from 2015 until March 2018. The Wall Street Journal exposed the breach this morning. Project Strobe was an internal audit of privacy controls and a deep look into what data Google was sharing with 3rd party developers. The data from the security lapse was limited to optional Google+ profile fields including name, email address, occupation, gender and age. Google is adamant that it wasn't connected to other service like messages, Google account data, phone numbers, etc. The audit found no evidence of 3rd party developers exploiting the bug.
Source.


iamjanco is offline  
Sponsored Links
Advertisement
 
post #2 of 3 (permalink) Old 10-08-2018, 02:59 PM
New to Overclock.net
 
1Kaz's Avatar
 
Join Date: Feb 2013
Posts: 281
Rep: 9 (Unique: 9)
Another source: https://arstechnica.com/tech-policy/...kept-it-quiet/
Quote:
The exposure was the result of a flaw in programming interfaces Google made available to developers of applications that interacted with users’ Google+ profiles, Google officials said in a post published after the WSJ report. From 2015 to March 2018, the APIs made it possible for developers to view profile information not marked as public, including full names, email addresses, birth dates, gender, profile photos, places lived, occupation, and relationship status. Data exposed didn’t include Google+ posts, messages, Google account data, phone numbers, or G Suite content. Some of the users affected included paying G Suite users.
Pretty big deal considering it involves full names, addresses, birth dates, occupation and gender.

Social media is bad! #pitchfork

An even bigger deal, they chose not to disclose the data compromise after they discovered it.
1Kaz is offline  
post #3 of 3 (permalink) Old 10-09-2018, 03:41 AM
...
 
HowHardCanItBe's Avatar
 
Join Date: Apr 2007
Posts: 15,761
This is just the beginning. There are so many data breaches that occur under our very noses that we don't see or hear of because there are no data breach disclosure laws. Even if there is, companies simply don't give a damn, until someone makes a noise, or they seek legal advice in secret, or they only disclose them after the damage has been done, or it's too little too late.


HowHardCanItBe is offline  
Closed Thread

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off