Data Collection And State Surveillance Put LGBTQ People At Risk Online And Off
A new report outlines the minefield of online threats LGBTQ people have to navigate online, from overt state surveillance to tracking via facial recognition to dating app information that gets shared with data brokers and advertisers.
Recorded Future, a cybersecurity company, released a detailed look at what queer communities outside North America have to grapple with. The idea, senior director Maggie McDaniel said, was to better understand where deeper security research is needed.
“It’s kind of daunting,” said Evan Akin, associate intelligence consultant who spearheaded the report. “It just shows how difficult it is to navigate between all these different apps, these different states, different regions. There’s not just security issues. There’s data privacy issues. There are issues with traveling to these different regions. You don’t know what the laws are, you don’t know how extensively they’re enforced.”
Based on existing and new research, the results of the report are grim. Even in the few places where LGBTQ people are under less of a threat of state surveillance, the dating apps they may be using still collect data and share it with data brokers or advertisers. This includes sensitive information like sexual orientation, location, drug use, and even HIV status.
Researchers looked at Tinder, OkCupid, Grindr, Scruff, and Her. Scruff was the only app that offered reasonable protections for its users by limiting the information the app collects and shares. The rest of the apps build data sharing into their business models. This creates an inherent threat even as apps introduce protections for their users, like notifications if they’re entering a country with anti-homosexuality laws, because that information can be passed on without users’ knowledge.
“What we’re finding is that even if they don’t use their name, even if they don’t use their phone number, they’re still having enough of that information being collected to be identified,” said Akin.
Log-in credentials for the dating apps are a hot commodity on dark web marketplaces, too, creating an additional risk for anyone who reuses passwords. Over the last year, OkCupid and Tinder were key targets for cybercriminals.
These issues have come up before and Grindr was briefly deemed a national security threat by the US when a Chinese company bought it. The company was forced to sell back to US ownership, but that still doesn’t mean it’s completely safe to use, due to the sensitive data it collects.
“If the US government is worried about the data being collected on Grindr, so should you,” Akin said.
The data that’s collected by advertisers across dating apps “can pretty much identify people’s daily routines,” Akin said.
“It really facilitates the ability to target individuals and then potentially prosecute them under different laws or statutes,” said McDaniel.
She pointed to findings from cybersecurity firm FireEye that showed the Russian government targeting LGBTQ activists online. Earlier this month, a referendum that made same-sex marriage illegal passed in the country.
Other governments have also weaponized the internet to target LGBTQ people, the report shows. A February 2018 study by human rights organization Article 19 showed Egypt, Lebanon, and Iran have all used apps and social media to track and entrap users. In 2014, the Israeli army reportedly identified gay Palestinians in order to blackmail them, in part through surveillance.
“The capability and technology that powers a lot of the surveillance software companies is growing and getting more powerful every year,” Akin said.
These technologies include facial recognition companies and data analytics, which have become more powerful in the last few years and frequently partner with governments or sell their services to law enforcement.
“This highlights the need for a lot of the companies behind these apps and services geared towards the LGBTQ community to maybe step up their game and make it more of a public effort — to try harder — to protect and offer options to their users,” Akin said, “so that they feel a little bit more safe and protected.”
A new report outlines the minefield of online threats LGBTQ people have to navigate online, from overt state surveillance to tracking via facial recognition to dating app information that gets shared with data brokers and advertisers. Recorded Future, a cybersecurity company, released a detailed look at what queer communities outside…
Recent Posts
- British monarchy rocked by bad Photoshop job
- Oscars 2024: all the latest from the biggest night in film
- AMD has plans to support a little known chip for at least another 16 years — and no, it is neither a Ryzen, nor a Threadripper or an Epyc CPU
- Why you should make a cloud backup this March
- Las Vegas Sphere has 4,000TB SSD storage delivering 400GB/s throughput — World’s only 16K display requires some exquisite technology to keep it going
Archives
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- December 2019
- November 2019
- December 2011