A viral TikTok account is doxing ordinary and otherwise anonymous people on the internet using off-the-shelf facial recognition technology, creating content and growing a following by taking advantage of a fundamental new truth: privacy is now essentially dead in public spaces.
The 90,000 follower-strong account typically picks targets who appeared in other viral videos, or people suggested to the account in the comments. Many of the account’s videos show the process: screenshotting the video of the target, cropping images of the face, running those photos through facial recognition software, and then revealing the person’s full name, social media profile, and sometimes employer to millions of people who have liked the videos. There’s an entire branch of content on TikTok in which creators show off their OSINT doxing skills—OSINT being open source intelligence, or information that is openly available online. But the vast majority of them do it with the explicit consent of the target. This account is doing the same, without the consent of the people they choose to dox. As a bizarre aside, the account appears to be run by a Taylor Swift fan, with many of the doxing videos including Swift’s music, and including videos of people at the Eras Tour.
404 Media is not naming the account because TikTok has decided to not remove it from the platform. TikTok told me the account does not violate its policies; one social media policy expert I spoke to said TikTok should reevaluate that position.
The TikTok account, conversations with victims, and TikTok’s own lack of action on the account show that access to facial recognition technology, combined with a cultural belief that anything public is fair game to exploit for clout, now means that all it takes is one random person on the internet to target you and lead a crowd in your direction.
One target told me he felt violated after the TikTok account using facial recognition tech targeted him. Another said they initially felt flattered before “that promptly gave way to worry.” All of the victims I spoke to echoed one general point—this behavior showed them just how exposed we all potentially are simply by existing in public.
…
This has, disappointingly, always been the inevitable truth. The same technology that propels us also further binds us. Today, it’s facial recognition. Well before that, our phone and web data, license plate scanners, employee badges, credit card usage could reasonably track and expose us.
The tech itself isn’t harmful, it’s how it’s used that causes harm. People need and absolutely deserve protection - perhaps through legislation. The unfortunate thing is that responding to hysteria only handicaps technology we don’t yet fully understand.
technology that propels us also further
How does that apply to facial recognition tech? Its sole purpose is surveillance. Yeah and the negligible added convience to unlock your phone without touching it. I guess that justifies it to many.
Well, it is nice to automatically label who’s who in my photo collection…
Or for legitimate surveillance reasons, like telling me if someone is on my property who is unregistered or who I’ve told it to alert me about.
Yeah and the negligible added convience to unlock your phone without touching it. I guess that justifies it to many.
I’ve only ever had android phones, mostly the google-brand because they were cheap and no-frills android. It has always struck me as bizarre that people would use their face to unlock their device. I know it’s gotten better but that seems way easier to spoof than even fingerprints. I’ve seen several episodes on TV where this has literally happened so it’s not even an unknown fear.
Ignoring any spoofing concerns, in the US biometrics aren’t universally covered under the 5th ammendment so police can force you to unlock your devices if they are secured with them vs a password.
https://www.concordlawschool.edu/blog/constitutional-law/fifth-amendment-biometrics/
If you have evidence of illegal things on your devices this isn’t something you’ll want. If you don’t have any evidence on your devices this is something you still shouldn’t want.
There is open source face recognition tools ?!
And remember: today is the worst that AI will ever be.
Least-capable, maybe. I don’t know about worst.
Compared to the future? Worst = least capable
I guess they were hinting at an AI dystopia which would be “the worst”.
Assuming they’re being sarcastic
If such tools are going to exist, I suppose I’d rather it be in everyone’s hands not just the state and the powerful.
Amassing a huge dataset to search through with all the metadata (usernames, names, etc) is the part than an individual would probably have trouble with doing, not the actual “is this a photo of the person in this other photo” part.
You can run your own neural nets and things now. Especially with multiple gpus and parallel programming.
Scary potential really!
Just delete your social media accounts and use some form of adblocker/tracker blocker, and voilà, privacy restored to some degree
This only sorta works for today and if your friends never share images or videos online. The ever-increasing amount of people taking pictures and filming and posting them online means the day is quickly approaching where you could be identified and tracked through other people’s content, security & surveillance cameras, etc.
If stores start adopting the tracking used at Walmart and the Amazon biometric data, social media will be the last of your worries.
It doesn’t even have to be your friends. It could just be you walking by in the background of a photo someone else took.
If you don’t have a social media profile for them to cross reference that background pic they can’t do you. Maybe they can link it to your drivers licence but I doubt they have open access to that sort of database.
The problem is people you know may still have social media and they can tag you or include your info in the descriptions, even if you don’t have a profile. Companies collecting this info from social media can totally build a shadow profile if they want, especially if they’ve got like 5 photos that have a matching face and the description has the same tag or name in it.
Regarding the DMV thing, it looks like they don’t sell the photos but do sell other data that may be useful in cross-referencing things: https://www.vice.com/en/article/43kxzq/dmvs-selling-data-private-investigators-making-millions-of-dollars
It’s a matter of difficulty. By deleting all this you make it MUCH harder to get accurate info.
Welcome to the future [of shit]!
Use your real name and photo online, they said. What could go wrong, they said.
“I don’t immediately see anything illegal since folks are captured in public”
doxing
._.
I don’t think doxxing is generally illegal unless A) it is used for harassment or stalking, or B) it is done with illegally obtained material.
Not a lawyer though, and I might not be up on the latest laws.
And of course it could vary by jurisdiction.
Where I am, doxxing is illegal. What this person in the article has done can get them arrested.
Avatar checks out
If someone actually did that to me, just scanned my face for internet clout, I’d be locked away for assault. It wouldn’t be a minor charge if I could help it. That person would be lucky if they could use their hands for a long time if I had my way in this hypothetical situation.
I know it’s extreme, but if you ask me, we should teach those types of people manners through violence. They’ll remember the next time they try to do it that they got the shit kicked out of them for this a lot better than just telling them off.
How many secret raids on al quaeda have you done and do you have over 300 confirmed kills as the top sniper in the entire US armed forces?
Luckily they showed you how to find them
I mean, you buy a ticket from Ticketmaster who probably sells your data to third parties, then you slow up at the show with a ticket probably bought with a credit card or debit card. All the companies know exactly who you are and where you are at all times. This has been true for at least the last decade. You’re cell carrier knows exactly where you are just based on triangulation between network sectors. If you’re in public you’re being tracked heavily. This is worrisome, but it’s nothing new. It’s just very visual so it gets the point across better.
I agree but corporations have one motive, profit. Whereas individuals on social media have unknown motives that can be dangerous in many other ways.
