- cross-posted to:
- hackernews@lemmy.bestiver.se
- cross-posted to:
- hackernews@lemmy.bestiver.se
What are the chances this will lead to online data privacy reform and corporate accountability for PII for all? or just…some?
You must log in or register to comment.
Federal political sources downplayed the seriousness of the issue, believing the issue was not related to a data leak or breach.
Sources noted the private contact information for politicians was often already widely available and known by stakeholders and members of the public they had interacted with. Some pointed out that politicians often kept the same contact details for years, from when they were more junior politicians who freely distributed their numbers on public documents like press releases or community announcements.
It’s really the phone companies’ fault for stagnating instead of innovating.
There is no reason at this point for most people to have phone numbers at all. We have the technology today to throw the whole concept out the window.
Replace it with something where a stranger couldn’t guess how to contact a random person. Replace it with something where third parties can’t easily share your contact info.
You could even have both technologies at the same time to help transition. And we do, as users, but we still need phone numbers because our carriers don’t give us multiple options directly.
Phone numbers are based on requirements for a system that’s almost 150 years old now. Back when the numbers really meant locations and before people realized how easy it could be exploited to steal old people’s retirement money.
Phone numbers are the equivalent of IP addresses. It’s just that the accompanying DNS solutions are pretty badly broken and the firewall options are all iffy.
Would you care to describe how you would implement said system? Because I can’t see how that would work technologically
As today if I give you a phone number you have no idea who is the owner if you don’t look up on some service.
It will not change if instead of the phone number we use the IMEI or a UUID, somewhere you need to have a link between the owner and the something, if nothing else in your phone and at the phone company.You still have to have some kind of unique identifier. What do you propose phone numbers are replaced with because I can’t think of anything that isn’t basically just the same but with a different flavour or actually is actively worse.
Your device and account credentials are unique enough to identify you on the carrier-level, SIM/eSIM as well. Ultimately, every time you share your contact info, it should be a unique code (QR would be convenient enough) generated by your cell provider. If it’s ever leaked, you just notify your carrier to burn it, and give the contact a new unique code. No two people should be given the same contact, and all of the contacts are simply correlated to your device by the carrier. Additionally, when sharing contacts via QR, they could be modified on the device-level to include e2e encryption keys, thus further securing the transmitted information, not at the trust-me-bro carrier level, but at the user-verifiable device level. If the carrier gets hacked, reset the identifiers, associate the new one in your text app to keep conversations going, and move on like nothing happened. You’ll still be better off than if your phone number was leaked. It’s not perfect, but it’d be a hell of a lot more secure than what we have now.
In other words: What if a billion dollar company made Signal, but with cell towers, and not as good?
QR would be convenient enough
My friend, that is not convenient. Phone numbers need to be memorable, and need to be transmittable offline without relying on technology. Old people use phones…
Phone numbers need to be memorable. A disposable unique contact does not. You can print a QR code, easily save it to a device, transmit it via nearly anything with a connectible screen. Of course you would want to launch it with alongside phone numbers, not in place of it, but this is what should be the next ‘innovation’ in cellular communication.
That said, it does pose the problem of contacting someone with a phone that isn’t your own, perhaps from jail. I’m sure they would never suggest putting an emergency contact chip in your hand for your own health and safety. No government would ever suggest something so silly. /s
Email should work similarly.
For those who ran their own mail servers it already did, via the +something notation.
Unfortunately the industry and the Internet in general went the other way.
EDIT: Oh, you mean temporary address. Easy. You have tracker nodes and receipt nodes. You publish on all tracker nodes you know your receipt node (by temporary address) every time you generate a temporary address. So those mailing you find it on trackers and post there. On that receipt node your temporary address is associated with some secret, allowing you to retrieve your incoming mail. The easiest way is that the temporary address is a pubkey and to confirm ownership you just need to sign a request for mail, or maybe it’ll be encrypted with it and no good for anyone else. Or both.
Agreed.
In Tox you have a code on the end of the Tox address. One can do similar, but have different codes for different levels of acceptance. Default - ignore. Some other code - add to the list of callers without notification. Some other - with notification. Some other - for SMS, but not calls, or the other way around. And so on.
The problem with things being memorable exists, yes. Computers can make calls, meaning that there’s no solution. A good secret required to call someone can’t be memorable.
Sure you can have a unique identifier. That’s not the issue. The issue is that anyone can contact you via your phone number! This is not a problem with chat apps where people need permission to add you to their contact list. Why not have a system like that?
Same goes for credit cards. They should need to ask for permission to charge your credit card. Merely knowing your credit card info should not be enough.
For CCs 3DS does exactly this, though not implemented everywhere.
New punishments for hacking politicians’ phones.
Zero changes for anyone else.
hate to say it but you’re probably right
Probably right on the money, sadly.
Now get him to verify his age.
Prime Minister signs up for NordVPN
This is HORRIBLE! That RICH people’s Information was Leaked! This needs to be PUNISHED BY DEATH so they Learn to ONLY leak POOR People’s information!
Guaranteed rich people’s phones are targeted for hacking more
Yeah so targeting individuals or specific organisations is pretty hard. It sounds dumb but how do you get someone’s phone number if they don’t give it to you? Its hard unless you’re determined tbh which most people aren’t.
Most hackers setup watering hole style attacks, or use phishing which is roughly the same concept. Basically they cast a wide net and see what they can grab, like the browser credentials of Debra from accounting who knows everything about compound interest and nothing about opening an
.exefile in an email. There are some big game hunting groups, and the LinkedIn breach made some waves (see the fappening), but your run of the mill discord-as-a-c2 style hacker isn’t going after rich people.Someone “hacking a phone” likely put a kitchen scale iPhone app on the app store, which when first opened asks for permissions for microphone, camera, text messages, contacts and file storage, and sends all that information to Argentina for a week or so until their app gets banned.
Also, the most likely person to hack your phone seems to be someone in your household, abusive parent or spouse sorta thing. Most common devices to get hacked are laptops, usually windows. Its just kinda hard to hack a phone. Unless you know a lot about compressed image formats and the iPhone messages app apparently because NSO made like 5 zero days in a row out of that.
Albo: I keep getting texts from random numbers, all saying the same thing… It just says, Cunt.
Must be a nice change to get “Cunt” messages from random numbers instead of getting “Cunt” messages from his colleagues.
867-5309
What’s the number? So I can make sure I don’t accidentally send him a text…
I need someone where to send me the number so I can make sure I don’t accidentally send him a message saying cunt
