This is a Fast-Air Tech Talk security notice. The Tech Talk security notice is a free service for all Fast-Air customers. Please suggest security notice topics.
By default, most digital cameras, including those in phones, embed metadata into digital photo files. This information is called tagging. The metadata includes Exchangeable Image File Format (EXIF) data, which includes the date and time the photo was taken. Often this metadata is useful, but could introduce privacy and security concerns.
When enabled, such as is common in phones, the location of the photo (geolocation) is included in this metadata information. Personal information might be included, depending upon how the device is configured.
For example, geolocation information might not seem intrusive with vacation photos. The geolocation metadata for photos taken inside a home reveals the home’s location, which could be useful to thieves and stalkers.
Some photo-sharing web sites are designed to display this metadata. Even when such web sites do not display the metadata, because the metadata is embedded in the photo file, when photos are posted online or shared through email this metadata is easily scraped or viewed and can be used to accumulate data in the never ending pursuit of user tracking and data mining.
Most if not all digital cameras can be configured to not store some of this information. Further, there are many photo editing tools that can add or delete this metadata before posting online or sharing.
- Free Gift Phishing Scams (Notice 2020-001) - January 15, 2020
- Tech Support Phone Scam (Notice 2019-001) - March 14, 2019
- VPNFilter Router Malware (Notice 2018-007) - May 30, 2018