this post was submitted on 06 Dec 2023
373 points (86.8% liked)

Technology

62073 readers
6535 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
373
Apple admits to secretly giving governments push notification data (arstechnica.com)
submitted 1 year ago by celmit to c/[email protected]
51 comments fedilink hide all child comments
top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 274 points 1 year ago* (last edited 1 year ago) (5 children)

This headline is ridiculous; I expect better from Ars Technica. You "admit" to things you shouldn't have done. In this case the government compelled Apple to disclose certain data and simultaneously prohibited Apple from disclosing the disclosure. Thanks to a senator's letter, Apple is now free to disclose something that they previously wanted to disclose, about something they were forced to do in the first place.

Compare to the Reuters headline: "Governments spying on Apple, Google users through push notifications - US senator." The emphasis and agency are correctly placed on the bad actors.

[–] [email protected] 95 points 1 year ago (3 children)

Clickbaits need to die

[–] [email protected] 14 points 1 year ago (1 children)

It's so telling, how good chat gpt is at creating click bait.

Ask for 10 click bait titles to any essay. It'll be better than your title.

[–] [email protected] 7 points 1 year ago

You won’t believe these top 10 generated clickbait titles!

[–] [email protected] 9 points 1 year ago (1 children)

I was hoping moving to Lemmy would get me away from them but I was wrong.

[–] [email protected] 18 points 1 year ago

Lemmy isn't really that different, beside being decentralized and has less restrictions (and downvotes/upvotes don't mean shit here). People are people and news outlets are the same.

[–] [email protected] 4 points 1 year ago (1 children)

We need a bot that puts a better title in the comments, or an automod bot that physically changes the titles to be plain

[–] [email protected] 2 points 1 year ago (1 children)

This is when AI is actually useful.

[–] [email protected] 2 points 1 year ago (1 children)

Out of curiosity, what was it?

[–] [email protected] 1 points 1 year ago (1 children)

What was what?

[–] [email protected] 5 points 1 year ago

Ah I accidentally deleted it and I guess the deletion didn’t federate completely, now I un-deleted so we’re good!

[–] [email protected] 31 points 1 year ago (1 children)

yeah, it looks like most of the other new agencies are attributing it correctly as the government. IMO it's the damn gag order that's most damning. You will spy on them for us and tell no-one.

[–] [email protected] 1 points 1 year ago

You will spy on them for us and tell no-one.

This is a standard procedure for the spooks. That's why nothing to hide and dindu do no crime clowns are are naive clowns.

[–] [email protected] 23 points 1 year ago

To be fair Google was already making this information public via their transparency reports, albeit in aggregate, since 2010 [0].

"Google's transparency report, Ars confirmed, already documents requests for push notification data in aggregated data of all government requests for user information."

Apple conveniently played it safe until the coast was clear. Maybe they'd have been allowed to comment on this privacy issue if they published it in aggregate like Google - e.g. not specifically calling out the U.S. Govt? But that wasn't a risk Apple was willing to take for its users.

[0] https://en.wikipedia.org/wiki/Transparency_report

[–] [email protected] 6 points 1 year ago* (last edited 1 year ago)

I actually scrolled straight to the bottom of the article to see if it was flagged as being "republished from another Condé Nast property." Just hoping there was an excuse for Ars.

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago)

A letter from a senator doesn't carry much legal force. From my understanding of the article, Apple claims they were prohibited from sharing this information, but a simple letter couldn't overturn something like a legal order or court mandate. The change here doesn't support the claim.

It reads more like Apple chose not to disclose in order to avoid the ire of the DOJ, even though it would have been morally more correct to tell the public sooner.

[–] [email protected] 41 points 1 year ago (4 children)

How are we not suing the ever living shit out of the government for violating peoples 4th ammendment rights? This is a gross violation of the unreasonable search and seizure clause in the constitution.

[–] [email protected] 22 points 1 year ago (2 children)

Third party doctrine for one: the data held by third parties has no expectation of privacy, even if it's about you.

From Wikipedia:

The third-party doctrine is a United States legal doctrine that holds that people who voluntarily give information to third parties—such as banks, phone companies, internet service providers (ISPs), and e-mail servers—have "no reasonable expectation of privacy" in that information. A lack of privacy protection allows the United States government to obtain information from third parties without a legal warrant and without otherwise complying with the Fourth Amendment prohibition against search and seizure without probable cause and a judicial search warrant.

Basically the government's argument: if you wanted it to remain private, you wouldn't have given it to someone else.

I'm reality, it's an area of law that desperately needs to be updated.

[–] [email protected] 15 points 1 year ago

The problem is that you almost can't function in modern society without having a phone. So their argument is in bad faith, and really should be checked.

[–] [email protected] 4 points 1 year ago* (last edited 1 year ago) (1 children)

Laughs in GDPR

(as an EU citizen)

[–] [email protected] 2 points 1 year ago

The same EU that's desperately trying to ban end to end encryption and dictate which certification authorities browsers have to support so they can spy on you better?

[–] [email protected] 4 points 1 year ago (1 children)

It will take someone being brought in on evidence gathered by this method to get it overturned. It would probably wind its way up to the Supreme Court.

[–] [email protected] 1 points 1 year ago

4AM protects your person and property from unreasonable searches. Creepy Tim and Satya collect data on your online behavior, which is owned by their company. They can do with that data as they please, which they do.

They put themselves in the middle and now acting shocked that government is shaking them down for this.

[–] [email protected] 21 points 1 year ago (2 children)

[–] [email protected] 4 points 1 year ago

What if push messages doesn't happen on your phone but is somehow "pushed" from somewhere else?

[–] [email protected] 6 points 1 year ago

This is the best summary I could come up with:

Governments have been secretly tracking the app activity of an unknown number of people using Apple and Google smartphones, US Senator Ron Wyden (D-Ore.) revealed today.

According to Wyden, many app users do not realize that these instant alerts "aren't sent directly from the app provider to users’ smartphones" but instead "pass through a kind of digital post office run by the phone's operating system provider" to "ensure timely and efficient delivery of notifications."

Wyden said his office spent the past year investigating a "tip" received in spring 2022 claiming that "government agencies in foreign countries were demanding smartphone 'push' notification records from Google and Apple."

Ars verified that Apple's law enforcement guidelines now notes that push notification records "may be obtained with a subpoena or greater legal process."

It's unclear if either Apple or Google plans to provide any standalone reporting documenting all past requests for push notification data.

Wyden declined to comment further but wrote in his letter that he is pushing the DOJ to not just end the secrecy but also require even more transparency about these secretive requests.

The original article contains 694 words, the summary contains 182 words. Saved 74%. I'm a bot and I'm open source!

[–] construct_ 1 points 1 year ago

(Also Google, and both by force)

load more comments
view more: next ›