Email or username:

Password:

Forgot your password?
Top-level
Jurjen Heeck :mastodon:

@briankrebs The one & only reason I refuse to use or even install those apps on devices containing address information. I only have an Instagram app on a tablet with zero contacts.

20 comments
Christian Fomm

@jurjen_heeck @briankrebs

Even if you have never been registered on Facebook etc.: Facebook knows your mobile number and mail address because other people have already uploaded them.

You can delete your phone number/mail address from meta's database via the following website:

facebook.com/contacts/removal

Shannon

@fomm @jurjen_heeck @briankrebs is there one for LinkedIn? I purposely deleted my original LinkedIn account to get a fresh restart with no connections. When I created a new LinkedIn account and instructed it not to be found via email or phone, I was still located by people who had my contact info.

Jurjen Heeck :mastodon:

@shecantech @fomm @briankrebs Same issue. Linkedin occasionally pushes me to invite people to join LinkedIn based on such network knowledge.

Shaun Dyer

@jurjen_heeck @briankrebs @fomm Thanks for the link that’s really useful. I wonder if the other big tech companies have something similar

David Penfold :verified:

@fomm @jurjen_heeck @briankrebs it seems to work for mobiles and landlines, but refuses to allow me to select email (FF on Android)

Jan Schaumann

@fomm @jurjen_heeck @briankrebs

Fun fact: the mail server(s) Meta uses to send the confirmation email are in Spamhaus's Block List...

Eric Beaudry

@fomm @jurjen_heeck @briankrebs is this trustable? Or is it only a new way to get more emails & phone numbers? I was just about to submit my phone number when that “internal skeptical me” got a hold of my thumb.

Gomphotherium

@EricBeaudry @fomm @jurjen_heeck @briankrebs I clicked on the provided link and, at least in german, it says that if you request your phone number or email to be removed, they "have to keep a copy in their blocklist" so they will not be uploaded again by another user.

I wonder if thats legal? (EU?)

My phone number would just change the database (maybe idk, they talk about blocklists), how can I trust them that its only used for blocking? And what if I just want them to absoulutely not have it?

Chris

@EricBeaudry @fomm @jurjen_heeck @briankrebs

I did this last year and tbh, I was skeptical but I knew they already had it so if submitting it this way can stop others uploading it and it being used then it was worth a try

It's not like I was giving facebook any information that they hadn't already stolen from friends and colleagues

Jack Yan (甄爵恩)

@fomm Thank you, that is immensely useful. I gave my cell number to my dentist (Lumino) a few years ago, as they insisted I could not use my land line, then found through their contractorʼs T&Cs (which I was never shown at the time) that my personal data had been sold. Itʼs a number no one outside of family and friends should have. This is a start in getting rid of it from databases.

@jurjen_heeck @briankrebs

skry

@fomm @jurjen_heeck @briankrebs

This page isn't sending me the text message required before it will remove my phone number. Just one more disservice from FB.

Phil Landmeier

@fomm @jurjen_heeck @briankrebs Um, ten years ago, Facebook stated that they never, ever delete anything. Deleting your account, which I did eleven years ago does nothing but de-activate the account. Nothing is deleted. Facebook said that its systems are designed in such a way that they are unable to actually delete anything, nor any mechanisms in place to enable them to determine what needed to be deleted.

Deletion is not a thing at Facebook.

JudeNunga

@fomm @jurjen_heeck @briankrebs

lol if they FB didn't know it before, they will when you give it to them to find out if they have it. How would you know if it's actually been deleted? It's not like FB is the most trustworthy of businesses.

DELETED

@fomm And with this you add it to another Meta database... 🤔
@jurjen_heeck @briankrebs

Louis Ingenthron

@jurjen_heeck With modern phones, you can just deny them the permission to access the data.

Callisto

@jurjen_heeck @briankrebs Yup. I created an Insta account a few years ago to follow some local organizations, but never posted until they started letting you do that from the web.

imdat celeste of Tau Ceti :v_nb: :v_tg: [NaG • NaB]

@jurjen_heeck (A little advertising, please bear with me)

With our messenger “Ginlo” (@ginlo) we thought very long about this.

We also ask your permission to check if any of your contacts have Ginlo accounts. But we do it this way:

When someone creates a Ginlo account and provides contact information (they don’t have to, but they can) such as a phone or mobile number, we store that information on the server only for the briefest of times to confirm it (send a code to that mobile or email). Then we destroy it on our servers. Instead, we generate a `bcrypt`-hash with a salt out of that contact information (never reversible to the contact-data back) and store it linked to this ginlo account on the server.

If then someone else creates an account and they give us permission to check if any of their Adressbook-contacts exist on Ginlo, we create similar hashes for each mobile phone and email address from those contacts LOCALLY ON THE USER’S DEVICE and send only these bcrypt-hashes to the server.

The server then responds with the hash + account-guid if it could find any account matching that.

The server NEVER EVER stores those hashes from your adressbook (and even if it did, they are just hashes, meaning one-way only).

This way, you *can* (if you want) let ginlo check if any of your contacts have a ginlo account WITHOUT EVER HAVING TO FEAR that we save any of those contacts on the server. We don’t want that, because we have no tracking, no ads, no nonsense. Ginlo Private is free of charge. The company makes money with the “Ginlo Business”-Version where companies or business pay a monthly fee.

Of course, with this approach we cannot tell you “Hey, your contact ‘X’ has joined Ginlo” … but that’s a really cheap price to pay.

To us, your are definitely NOT the product. The product we sell is “Ginlo Business” (and yes, many business customers require a free private version because they want to be able to talk to their customers, and yes, the business version has a few more perks, but only mostly things businesses need)

@briankrebs

@jurjen_heeck (A little advertising, please bear with me)

With our messenger “Ginlo” (@ginlo) we thought very long about this.

We also ask your permission to check if any of your contacts have Ginlo accounts. But we do it this way:

When someone creates a Ginlo account and provides contact information (they don’t have to, but they can) such as a phone or mobile number, we store that information on the server only for the briefest of times to confirm it (send a code to that mobile or email). Then we...

Go Up