An RSA survey of 6,000 US and EU adults found that only a minority (48%) believes there is any ethical way to use personal data (that figure rises to 60% when considering US respondents alone); 57% believe that data-breaches are the fault of companies for gathering and retaining data, not the hackers who release it; only 17% believe that ad customization is moral; and only 24% believe that newsfeed customization is moral. Read the rest

Propublica is one of many organizations, mainly nonprofits, whose "ad transparency" tools scrape Facebook ads and catalog them, along with the targeting data that exposes who is paying for which messages to be shown to whom. Read the rest

On September 12th, GM's director of global digital transformation Saejin Park gave a presentation to the Association of National Advertisers in which he described how the company had secretly gathered data on the radio-listening habits of 90,000 GM owners in LA and Chicago for three months in 2017, tracking what stations they listened to and for how long, and where they were at the time; this data was covertly exfiltrated from the cars by means of their built-in wifi. Read the rest

Safari has blocked third-party cookies (used to track your behavior across multiple websites) since 2010, but the ad-tech industry has fired back with a bunch of covert tracking tools that watch you even if you've adopted privacy countermeasures; the latest version of Safari goes one better, deploying machine-learning to selectively block even more tracking technologies, while still preserving useful third-party cookies that help you stay logged in and do useful work across different sites. Read the rest

White Ops, a security firm, has published a detailed report on a crime-ring they call "Methbot" that generated $3M-$5M by creating 6,000 fake websites to embed videos in, then generating convincing bots that that appeared to watch 300,000,000 videos/day -- running virtual instances of various browsers (mostly Chrome) on virtual machines running MacOS X, from a huge pool of IP addresses that they fraudulently had assigned to US locations, deploying clever grace-notes like limiting access to "daylight" hours in their notional locations; simulating mouse-movements and clicks and more. Read the rest

Tim Wu's book The Attention Merchants: The Epic Scramble to Get Inside Our Heads (review) was one of the best books I read in 2016; on Rick Kleffel's Narrative Species podcast, Wu discusses the book (MP3) covering depth that he couldn't fit between the covers. Read the rest

Proofpoint has identified a new version of DNSChanger EK, a strain of malware that changes your DNS settings so that the ads on the websites you browse are replaced with other ads that benefit the attackers -- and which can also be used for more nefarious ends, because controlling your DNS means controlling things like where your computer gets software updates. Read the rest

When the next president takes office, he brings with him an anti-encryption, anti-free-press, Islamophobic, racist, anti-transparency agenda that will depend on the tech sector's massive databases of identifiable information and their sophisticated collection capabilities to bring his agenda to fruition. Read the rest

The Obama administration asserted the power to raid the massive databases of peoples' private, sensitive information that ad-based tech companies have assembled; the Trump administration has promised to use Obama's powers to effect the surveillance and deportation of 11 millions undocumented migrants, and the ongoing, continuous surveillance of people of Muslim heritage. Read the rest

Maciej Cegłowski's posted another of his barn-burning speeches about the Internet's problems, their origins and their solutions (previously), a talk from the Fremtidens Internet conference in Copenhagen called "What Happens Next Will Amaze You." Read the rest