Reading today, thanks to @-pidder_ post on Twitter :
Student (@mrkoot) built a HUGE database of 35.000.000 Google Profiles. It contains 15.000.000 Gmail addresses. http://bit.ly/jAfLgX #privacy
How easy it was to create a database containing:
– person names,
– multiple past educations (institute, study, start/end date), – multiple past work experiences (employer, function, start/end date),
– links to Picasa photoalbums, …. —
and in ~15.000.000 cases, also the username and therefore @gmail.com address.
Additionally, this data base could use face recognition software and other data aggregators to create a more exhaustive profile.
He assures his activities were performed as part of his research on anonymity/privacy at the University of Amsterdam.
He believes that ‘the misuse value of personal data on social networks ought to be elicited before publishing it under a false perception of informed consent. One possible outcome‘.
One more example of mass aggregation and processing of data available and the risks for users as I was pointing out earlier this week with the case of data collected by TalkTalk customer service.
Data minimisation as well as data security should be the principle rule or we will see an rise of identity theft.