Path - Privacy & Security Problems

by @edent | # # # # # # # | 2 comments | Read ~268 times.

I'm trying out the new Android app for Path - the new social networking service. I've discovered something rather troubling... Most of the app's communication with the Path servers is over SSL. This means that no-one can see the data you're sending and receiving. If there are snoops on your network, they will only be… Continue reading →

A (Minor) Twitter Privacy Bug?

by @edent | # # # # # # | 1 comment | Read ~179 times.

Quick Summary Twitter's secure API hides the contents of the tweets you are reading. But it doesn't hide the images of those you converse with. Raised as Issue 2175. A Bit More Detail Twitter has a secure (HTTPS) and insecure (HTTP) API. When calling the secure API, all the content of the returned message (tweets)… Continue reading →