Privacy

31186 readers

559 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago

MODERATORS

[email protected]

120

I Tracked an NYC Subway Rider's Movements with an MTA ‘Feature’ (www.404media.co)

submitted 1 year ago by [email protected] to c/[email protected]

12 comments fedilink hide all child comments

During all this monitoring, I wasn’t anywhere near the rider. I didn’t even need to see them with my own eyes. Instead, I was sitting inside an apartment, following their movements through a feature on a Metropolitan Transportation Authority (MTA) website, which runs the New York City subway system.

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 15 points 1 year ago (4 children)

What's the feature

[–] [email protected] 57 points 1 year ago (2 children)

With their consent, I had entered the rider’s credit card information—data that is often easy to buy from criminal marketplaces, or which might be trivial for an abusive partner to obtain—and punched that into the MTA site for OMNY, the subway’s contactless payments system. After a few seconds, the site churned out the rider’s travel history for the past 7 days, no other verification required.

From the article

[–] [email protected] 10 points 1 year ago

Credit cards are as secure as carrying your passwords around you on a piece of paper, and telling it loots of people always.

[–] [email protected] 8 points 1 year ago

Thank you! I was on the bus and couldn't get the article to load

[–] [email protected] 15 points 1 year ago (1 children)

From the article, you can get a detailed usage history of MTA transactions by simply supplying the credit card number (which they state can very often be bought on the dark web). The lack of identity confirmation to pull the report is the concern.

[–] [email protected] 2 points 1 year ago (1 children)

You want to force people to show ID to use the subway?

Why is this info even public? That's the real issue.

[–] [email protected] 6 points 1 year ago

Not to use the subway, to access a payment card's complete ride history.

[–] [email protected] 5 points 1 year ago

Credit card info -> see timestamped transit transacting history, including station name (location)

[–] [email protected] 3 points 1 year ago (2 children)

What is reading

[–] [email protected] 1 points 1 year ago

Are we playing Jeopardy?

[–] [email protected] -2 points 1 year ago