Alexander’s Blog

A Seattle-based company called Earth Class Mail is offering individuals and businesses an interesting mail service. Currently people in more than 100 countries are using their service. The company calls the online postal service “Earth Class” because it is global and delivers mail electronically anywhere on earth. Whether you are at home or on the road, you simply log-in, check your mail and decide whether to keep or shred each piece. Since Seattle in one of the leading cities in USA when it comes to recycling, the company emphasizes the environmental benefits of using their service on their Web site.

“For every ton of paper we recycle, we reduce the air pollution produced by new paper production by 74%, and water pollution by 35%. We also keep more toxic ink, formaldehyde, and other chemicals out of the landfills. For every ton of paper we recycle, we save 204 trees and consume 8,190 fewer gallons of petroleum.”

A local Seattle TV station King 5 covered this service in their newscast. Earth Class Mail explains how their service works:

“Once you sign-up for our service and change your address to one of our 18 locations throughout the U.S., we scan the outside of each incoming envelope and post it in your online account. You log-in, review the envelopes and direct what should be opened, scanned, recycled, shredded, or forwarded to you. We will soon have check processing, so we can even deposit your checks for you.

Earth Class Mail manages standardized process mail, such as claim forms, invoices, and checks, more efficiently and cost-effectively than ordinary document management and storage solutions. For businesses, mail addressed to specific departments or account numbers can also be set up with “automatic rules” to be opened and scanned upon arrival, with the case of warranty cards, surveys, or other forms of process mail.”

Check out Earth Class Mail’s Web site for more details.

Privacy International (PI), a human rights research and campaign organization, prepared a report following a six-month investigation into the privacy practices of key Internet-based companies. The following companies were included in the study:

* Amazon
* AOL
* Apple
* BBC
* Bebo
* eBay
* Facebook
* Friendster
* Google
* Hi5
* Last.fm
* LinkedIn
* LiveJournal
* Microsoft
* Myspace
* Orkut
* Reunion.com
* Skype
* Wikipedia
* Windows Live Space
* Xanga
* Yahoo!
* YouTube

Based on the study, PI ranked Google at the bottom of the stack. Here are some highlights:
* “…throughout our research we have found numerous deficiencies and hostilities in Google’s approach to privacy that go well beyond those of other organizations.”
* “While a number of companies share some of these negative elements, none comes close to achieving status as an endemic threat to privacy.”
* “Google’s status in the ranking is also due to its aggressive use of invasive or potentially invasive technologies and techniques.”
* “…we have witnessed an attitude to privacy within Google that at its most blatant is hostile, and at its most benign is ambivalent.”
* “Google does not indicate how long the information collected through Google Toolbar is retained, nor does it offer users a data expungement option…”
* “Google fails to follow generally accepted privacy practices such as the OECD Privacy Guidelines and elements of EU data protection law.”
* “Google logs search queries in a manner that makes them personally identifiable but fails to provide users with the ability to edit or otherwise expunge records…”
* “Google fails to give users access to log information generated through their interaction with Google Maps, Google Video, Google Talk, Google Reader, Blogger and other services.”
* “Google has access to additional personal information, including hobbies, employment, address, and phone number, contained within user profiles in Orkut. Google often maintains these records even after a user has deleted his profile or removed information from Orkut.”

Here are brief excerpts from the report as to why Google and why not Microsoft.

Why Google?
We are aware that the decision to place Google at the bottom of the ranking is likely to be controversial, but throughout our research we have found numerous deficiencies and hostilities in Google’s approach to privacy that go well beyond those of other organizations. While a number of companies share some of these negative elements, none comes close to achieving status as an endemic threat to privacy. This is in part due to the diversity and specificity of Google’s product range and the ability of the company to share extracted data between these tools, and in part it is due to Google’s market dominance and the sheer size of its user base. Google’s status in the ranking is also due to its aggressive use of invasive or potentially invasive technologies and techniques.

The view that Google “opens up” information through a range of attractive and advanced tools does not exempt the company from demonstrating responsible leadership in privacy. Google’s increasing ability to deep-drill into the minutiae of a user’s life and lifestyle choices must in our view be coupled with well defined and mature user controls and an equally mature privacy outlook. Neither of these elements has been demonstrated. Rather, we have witnessed an attitude to privacy within Google that at its most blatant is hostile, and at its most benign is ambivalent. These dynamics do not pervade other major players such as Microsoft or eBay, both of which have made notable improvements to the corporate ethos on privacy issues.

Why not Microsoft?
The finding that Microsoft is a better privacy performer than Google is also likely to be contentious. Microsoft was awarded “orange” status, two bands better than Google’s position. However it is important, for the sake of clarity, to note that Windows Live Space received the more negative “red” rating, while Google’s Orkut avoided a black rating and was awarded red status.

The true difference between Google Inc and Microsoft Corp can be defined not so much by the data practices and privacy policies that exist between the two organizations, but by the corporate ethos and leadership exhibited by each. Five years ago Microsoft could reasonably be described as a fundamental danger to privacy. In more recent times the organization appears to have adopted a less antagonistic attitude to privacy, and has at least structurally adjusted to the challenge of creating a privacy-friendly environment.

The complete report called A Race to the Bottom: Privacy Ranking of Internet Service Companies is available here. You might also be interested in my article on privacy A Closer Look at the Fine Print in Privacy Statements.

By the time excited consumers were unwrapping their brand new iPhones, hackers had already found ways to hack into the iPhone. While AT&T had a nightmarish time dealing with activation problems, hackers are claiming to have successfully activated iPhones without paying for the service. Web sites like iphonehacks.com and numerous blogs are full of information related to iPhone hacks.

It didn’t take very long for researchers at Errata Security to find several security holes in Apple’s new iPhone, as reported by DarkReading.com. Errata discovered at least three major flaws in iPhone, which is based on a version of OS X. One of them has to do with a heap overflow bug in Safari browser. If a user visits a malicious Web site, it can potentially take over your iPhone. For example, if a user clicks on a spam message it can take him/her to the malicious Web site. This is only one of several examples of how the iPhone can be hacked due to this vulnerability.

Another bug is in the iPhone’s Bluetooth feature related to a potential denial-of-service attack. A third bug has to do with data “seepage” that can potentially cause data to be exposed by client applications over a WiFi connection. Similar to the known problem on Mac notebooks, if you come close to a wireless access point (WAP), your iPhone may just decide to connect to it and expose your information without your knowledge.

Errata, Flexilis, and other security companies are finding more bugs. However, security researchers say that they will wait until Apples announces the flaws before they will go public with their findings.

According to Federal Bureau of Investigation (FBI) press release last week, FBI has identified more than one million potential victims of botnet cyber crime. This was a result of “Operation Bot Roast” in which FBI worked with several industry partners.

“The majority of victims are not even aware that their computer has been compromised or their personal information exploited,” said FBI Assistant Director for the Cyber Division James Finch. “An attacker gains control by infecting the computer with a virus or other malicious code and the computer continues to operate normally. Citizens can protect themselves from botnets and the associated schemes by practicing strong computer security habits to reduce the risk that your computer will be compromised.”

FBI has warned people that it will never contact individuals online to gather any personal information so do not give out any personal information either online or via e-mails.

The entire press release is available here.

Google, the search engine giant, is once again caught in another controversy. This time it’s a privacy issue that have people up in arms. Google recently started the new “Street View” feature, to go along with its other views, such as satellite, hybrid, and map view. The street view is little too close for comfort for some because it allows Web users to see people not only on street but also in their homes and backyards. You can easily zoom into people’s cars in their driveways and read the license plate numbers. You can even rotate the view 360 degrees to see it all. The view is amazingly clear. The Street View is available for several major cities, such as New York, Las Vegas, San Francisco, Miami and Denver.

Check out this guy, is he breaking in or just entering his own apartment? Read the entire story here.

At least 10 bizarre sights in Google Street View are already posted on the Internet. Next time you step in your own private backyard, just smile because you could be showcased on Google’s street view (without your permission, of course).