Privacy Issues: We Told You So! - Technology Information

Online Newsletter, Nov, 2000

In the October 2000 issue of the 'Online Newsletter' (p.3) "New Scanners Latest PC Fad", we addressed privacy issues related to activating the bar code scanners.

"... users must register with Digital Convergence.:Com's Web site to activate their scanner. Some users may not want to enter personal information that is requested and/or required for privacy issues. ..."

"...the scanner companies may wish to address privacy issues first for the products to ever be successful, since privacy studies and Congressional legislation are pending on just such applications. ..."

The miniature :Cue:Cat scanner from Digital Convergence.:Com was offered free to both 'Forbes' magazine subscribers (810,000 subscribers), and Radio Shack's new 2001 catalog.

But hackers broke into Digital Convergence's Website and were able to access

names, email addresses, gender, age range, and ZIP codes of 140,000 members in September.

While the new AES cryptographic method may help some of the inadequate security methods now used by most Websites for financial transactions, the truth is that e-commerce is not yet ready for prime time (which is why we don't write about it - yet). ... Not necessarily in the encryption method used (although many 40-bit third-world encryption software is still being used by a majority of Websites), but rather the lapse in maintaining security of keeping user/member lists (i.e. personal and financial) out of hackers reach. These lists are often available on the same Website's server and with a little luck can be accessed by almost anyone. In addition, these lists are often sold to or shared by other third parties whose security may be practically nonexistent (an issue that caused EPIC to drop Amazon) [see 'Online Newsletter' October 2000 p.2].

Rule of thumb: Don't send your Social Security or credit/debit card numbers over the Internet - you are inviting disaster.

If you see a product or service you want on the Internet, look for a toll-free or local number on the Website and make a "hard-wired" telephone call. (Wireless [cell] or cordless phones have their own security risks and are just as easily monitored.) The use of debit cards is strictly discouraged because debit cards have no limit to the funds that can be withdrawn illegally and without any owner appeal, as opposed to the $50 maximum risk for credit card fraud.

"Freebies" always have strings attached. Caveat emptor. [RSH}