PogoWasRight.org

Menu
  • About
  • Privacy
Menu

Gawker: Google engineer breached minors’ privacy, accounts (updated)

Posted on September 14, 2010 by pogowasright.org

Adrian Chen writes on Gawker:

…  A Google engineer spied on four underage teens for months before the company was notified of the abuses.

David Barksdale, a 27-year-old former Google engineer, repeatedly took advantage of his position as a member of an elite technical group at the company to access users’ accounts, violating the privacy of at least four minors during his employment, we’ve learned. Barksdale met the kids through a technology group in the Seattle area while working as a Site Reliability Engineer at Google’s Kirkland, Wash. office. He was fired in July 2010 after his actions were reported to the company.

It’s unclear how widespread Barksdale’s abuses were, but in at least four cases, Barksdale spied on minors’ Google accounts without their consent, according to a source close to the incidents. In an incident this spring involving a 15-year-old boy who he’d befriended, Barksdale tapped into call logs from Google Voice, Google’s Internet phone service, after the boy refused to tell him the name of his new girlfriend, according to our source. After accessing the kid’s account to retrieve her name and phone number, Barksdale then taunted the boy and threatened to call her.

In other cases involving teens of both sexes, Barksdale exhibited a similar pattern of aggressively violating others’ privacy, according to our source.

Read more on Gawker.

As someone who has repeatedly — nay, ad nauseum — encouraged entities to get ahead of the story and to voluntarily disclose breaches, I think Google made a tremendous error in not disclosing the problem on its own initiative and then telling everyone what they were doing to prevent future problems of this kind. Having it leak out this way does not engender trust, in my opinion.

Update: Jason Kincaid reports that not only has Google confirmed that they fired the employee for privacy violations but that this was the second such incident involving an employee breaching privacy, although the first incident did not involve minors.

Category: Breaches

Post navigation

← When a flamewar tactic is criminalized: the Ralph Golb trial begins
“Let’s be very careful out there” →

Now more than ever

Search

Contact Me

Email: info@pogowasright.org

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

Categories

Recent Posts

  • Missouri Clinic Must Give State AG Minor Trans Care Information
  • Georgia hospital defeats data-tracking lawsuit
  • No Postal Service Data Sharing to Deport Immigrants
  • DOGE aims to pool federal data, putting personal information at risk
  • Privacy concerns swirl around HHS plan to build Medicare, Medicaid database on autism
  • Kenyan court orders Worldcoin to delete all biometric data
  • Virginia Governor Signs into Law Bill Restricting Minors’ Use of Social Media

RSS Recent Posts on DataBreaches.net

  • Nova Scotia Power hit by cyberattack, critical infrastructure targeted, no outages reported
  • Georgia hospital defeats data-tracking lawsuit
  • 60K BTC Wallets Tied to LockBit Ransomware Gang Leaked
  • UK: Legal Aid Agency hit by cyber security incident
  • Public notice for individuals affected by an information security breach in the Social Services, Health Care and Rescue Services Division of Helsinki
©2025 PogoWasRight.org. All rights reserved.
Menu
  • About
  • Privacy