Android and iOS devices impacted by new sensor calibration attack – it’s easy to follow your device everywhere online

Posted on May 23, 2019 by Robin Edgar

A new device fingerprinting technique can track Android and iOS devices across the Internet by using factory-set sensor calibration details that any app or website can obtain without special permissions. This new technique — called a calibration fingerprinting attack, or SensorID — works by using calibration details from gyroscope and magnetometer sensors on iOS; and Read more about Android and iOS devices impacted by new sensor calibration attack – it’s easy to follow your device everywhere online[…]

Adobe: If You Use Old Apps, You May Be Violating Third-Party Copyrights, highlighting the problem that you don’t own anything in the Cloud

Posted on May 14, 2019 by Robin Edgar

Last week, Adobe said that older versions of Creative Cloud apps—including Photoshop and Lightroom—would no longer be available to subscribers. This week, some users are getting messages from Adobe warning they could be at “risk of potential claims of infringement by third parties” should they continue to use outdated versions of their apps. The new Read more about Adobe: If You Use Old Apps, You May Be Violating Third-Party Copyrights, highlighting the problem that you don’t own anything in the Cloud[…]

Google gives Chrome 3rd party cookie control – which allows it to track you better, but rivals to not be able to do so

Posted on May 9, 2019 by Robin Edgar

Google I/O Google, the largest handler of web cookies, plans to change the way its Chrome browser deals with the tokens, ostensibly to promote greater privacy, following similar steps taken by rival browser makers Apple, Brave, and Mozilla. At Google I/O 2019 on Tuesday, Google’s web platform director Ben Galbraith announced the plan, which has Read more about Google gives Chrome 3rd party cookie control – which allows it to track you better, but rivals to not be able to do so[…]

A Team At Amazon Is Listening To Recordings Captured By Alexa

Posted on April 11, 2019 by Robin Edgar

Seven people, described as having worked in Amazon’s voice review program, told Bloomberg that they sometimes listen to as many as 1,000 recordings per shift, and that the recordings are associated with the customer’s first name, their device’s serial number, and an account number. Among other clips, these employees and contractors said they’ve reviewed recordings Read more about A Team At Amazon Is Listening To Recordings Captured By Alexa[…]

Your AirPods Probably Have Terrible Battery Life – The Atlantic

Posted on March 24, 2019 by Robin Edgar

Two years ago, Desmond Hughes heard so many of his favorite podcasters extolling AirPods, Apple’s tiny, futuristic $170 wireless headphones, that he decided they were worth the splurge. He quickly became a convert. Hughes is still listening to podcasters talk about their AirPods, but now they’re complaining. The battery can no longer hold a charge, Read more about Your AirPods Probably Have Terrible Battery Life – The Atlantic[…]

Facebook receives personal health data from apps, even if you don’t have a FB account

Posted on March 4, 2019 by Robin Edgar

Facebook receives highly personal information from apps that track your health and help you find a new home, testing by The Wall Street Journal found. Facebook can receive this data from certain apps even if the user does not have a Facebook account, according to the Journal. Facebook has already been in hot water concerning Read more about Facebook receives personal health data from apps, even if you don’t have a FB account[…]

W3C approves WebAuthn as the web standard for password-free logins using FIDO2

Posted on March 4, 2019 by Robin Edgar

The World Wide Web Consortium (W3C) today declared that the Web Authentication API (WebAuthn) is now an official web standard. First announced by the W3C and the FIDO Alliance in November 2015, WebAuthn is now an open standard for password-free logins on the web. It is supported by W3C contributors, including Airbnb, Alibaba, Apple, Google, Read more about W3C approves WebAuthn as the web standard for password-free logins using FIDO2[…]

spacedesk – extend or duplicate your desktop on a smartphone or tablet

Posted on February 22, 2019 by Robin Edgar

At least 2 machines are needed to operate spacedesk. These machines must be connected via a Local Area Network (e.g. Ethernet or Wireless) supporting TCP/IP network protocol. Each one of the two machines is running a different spacedesk software: 1. The Primary Machine is a Windows PC, laptop or Surface Pro tablet. It runs the spacedesk DRIVER Read more about spacedesk – extend or duplicate your desktop on a smartphone or tablet[…]

why does Singapore Airlines have an embedded camera looking at you on the inflight entertainment system? Just like the Google Nest spy, they say it’s ummm all ok, nothing to see here.

Posted on February 21, 2019 by Robin Edgar

Given Singapore’s reputation for being an unabashed surveillance state, a passenger on a Singapore Airlines (SIA) flight could be forgiven for being a little paranoid. Vitaly Kamluk, an information security expert and a high-ranking executive of cybersecurity company Kaspersky Lab, went on Twitter with concerns about an embedded camera in SIA’s inflight entertainment systems. He Read more about why does Singapore Airlines have an embedded camera looking at you on the inflight entertainment system? Just like the Google Nest spy, they say it’s ummm all ok, nothing to see here.[…]

The “Do Not Track” Setting Doesn’t Stop You from Being Tracked – by Google, Facebook and Twitter, among many more

Posted on February 6, 2019 by Robin Edgar

Most browsers have a “Do Not Track” (DNT) setting that sends “a special signal to websites, analytics companies, ad networks, plug in providers, and other web services you encounter while browsing, to stop tracking your activity.” Sounds good, right? Sadly, it’s not effective. That’s because this Do Not Track setting is only a voluntary signal Read more about The “Do Not Track” Setting Doesn’t Stop You from Being Tracked – by Google, Facebook and Twitter, among many more[…]

Facebook pays teens to install VPN that spies on them

Posted on January 30, 2019 by Robin Edgar

Desperate for data on its competitors, Facebook has been secretly paying people to install a “Facebook Research” VPN that lets the company suck in all of a user’s phone and web activity, similar to Facebook’s Onavo Protect app that Apple banned in June and that was removed in August. Facebook sidesteps the App Store and Read more about Facebook pays teens to install VPN that spies on them[…]

FCC fines Swarm $900,000 for unauthorized satellite launch

Posted on December 22, 2018 by Robin Edgar

Swarm Technologies Inc will pay a $900,000 fine for launching and operating four small experimental communications satellites that risked “satellite collisions” and threatened “critical commercial and government satellite operations,” the Federal Communications Commission said on Thursday. The Federal Communications Commission (FCC) logo is seen before the FCC Net Neutrality hearing in Washington February 26, 2015. Read more about FCC fines Swarm $900,000 for unauthorized satellite launch[…]

Facebook Allowed Netflix, Spotify and A Bank To Read And Delete Users’ Private Messages. And around 150 other companies got to see other private information without user consent.

Posted on December 19, 2018 by Robin Edgar

Facebook gave more than 150 companies, including Microsoft, Netflix, Spotify, Amazon, and Yahoo, unprecedented access to users’ personal data, according to a New York Times report published Tuesday. The Times obtained hundreds of pages of Facebook documents, generated in 2017, that show that the social network considered these companies business partners and effectively exempted them Read more about Facebook Allowed Netflix, Spotify and A Bank To Read And Delete Users’ Private Messages. And around 150 other companies got to see other private information without user consent.[…]

Your Apps Know Where You Were Last Night, and They’re Not Keeping It Secret

Posted on December 12, 2018 by Robin Edgar

The millions of dots on the map trace highways, side streets and bike trails — each one following the path of an anonymous cellphone user. One path tracks someone from a home outside Newark to a nearby Planned Parenthood, remaining there for more than an hour. Another represents a person who travels with the mayor Read more about Your Apps Know Where You Were Last Night, and They’re Not Keeping It Secret[…]

Palm’s Ultra Tiny Phone Is an Absolute Snack

Posted on November 21, 2018 by Robin Edgar

There’s just something about this phone. From the moment I laid eyes on this thing, it just kind of made me happy. It’s small and adorable like a newborn puppy, and despite how petite it appears it photos, it looks and feels even smaller in person. And I’m not the only one that had this Read more about Palm’s Ultra Tiny Phone Is an Absolute Snack[…]

Flex Logix Says It’s Solved Deep Learning’s DRAM Problem

Posted on November 1, 2018 by Robin Edgar

Deep learning has a DRAM problem. Systems designed to do difficult things in real time, such as telling a cat from a kid in a car’s backup camera video stream, are continuously shuttling the data that makes up the neural network’s guts from memory to the processor. The problem, according to startup Flex Logix, isn’t Read more about Flex Logix Says It’s Solved Deep Learning’s DRAM Problem[…]

Now Apps Can Track You Even After You Uninstall Them

Posted on October 27, 2018 by Robin Edgar

If it seems as though the app you deleted last week is suddenly popping up everywhere, it may not be mere coincidence. Companies that cater to app makers have found ways to game both iOS and Android, enabling them to figure out which users have uninstalled a given piece of software lately—and making it easy Read more about Now Apps Can Track You Even After You Uninstall Them[…]

Open-source alt-droid wants to know if it’s still leaking data to Google

Posted on September 25, 2018 by Robin Edgar

/e/, a Google-free fork of Android, reached a milestone this month with its initial ROM release. It’s available for download, so you can kick the tires, with nightly builds delivered via OTA (over the air) updates. El Reg interviewed the project’s leader, Gael Duval, in the summer. Duval launched and led the Linux Mandrake project. Read more about Open-source alt-droid wants to know if it’s still leaking data to Google[…]

Cold Boot Attacks are back – plug a sleeping laptop into some kit and read all the memory, slurp all the passwords

Posted on September 14, 2018 by Robin Edgar

Olle and his fellow cyber security consultant Pasi Saarinen recently discovered a new way to physically hack into PCs. According to their research, this method will work against nearly all modern computers. This includes laptops from some of the world’s biggest vendors like Dell, Lenovo, and even Apple. And because these computers are everywhere, Olle Read more about Cold Boot Attacks are back – plug a sleeping laptop into some kit and read all the memory, slurp all the passwords[…]

Android data slurping measured and monitored – scary amounts and loads of location tracking

Posted on August 29, 2018 by Robin Edgar

Google’s passive collection of personal data from Android and iOS has been monitored and measured in a significant academic study. The report confirms that Google is no respecter of the Chrome browser’s “incognito mode” aka “porn mode”, collecting Chrome data to add to your personal profile, as we pointed out earlier this year. It also Read more about Android data slurping measured and monitored – scary amounts and loads of location tracking[…]

Bluetooth security: Flaw could allow nearby attacker to grab your private data

Posted on July 25, 2018 by Robin Edgar

A cryptographic bug in many Bluetooth firmware and operating system drivers could allow an attacker within about 30 meters to capture and decrypt data shared between Bluetooth-paired devices. The flaw was found by Lior Neumann and Eli Biham of the Israel Institute of Technology, and flagged today by Carnegie Mellon University CERT. The flaw, which Read more about Bluetooth security: Flaw could allow nearby attacker to grab your private data[…]

Every Android Device Since 2012 Impacted by RAMpage Vulnerability

Posted on July 2, 2018 by Robin Edgar

Almost all Android devices released since 2012 are vulnerable to a new vulnerability named RAMpage, an international team of academics has revealed today. The vulnerability, tracked as CVE-2018-9442, is a variation of the Rowhammer attack. Rowhammer is a hardware bug in modern memory cards. A few years back researchers discovered that when someone would send Read more about Every Android Device Since 2012 Impacted by RAMpage Vulnerability[…]

IBM AI Project Debater scores 1 – 1 vs man in 2 debates

Posted on June 19, 2018June 26, 2018 by Robin Edgar

The AI, called Project Debater, appeared on stage in a packed conference room at IBM’s San Francisco office embodied in a 6ft tall black panel with a blue, animated “mouth”. It was a looming presence alongside the human debaters Noa Ovadia and Dan Zafrir, who stood behind a podium nearby. Although the machine stumbled at Read more about IBM AI Project Debater scores 1 – 1 vs man in 2 debates[…]

EFAIL: PGP and S/MIME (encrypted email) are no longer safe

Posted on June 6, 2018 by Robin Edgar

EFAIL describes vulnerabilities in the end-to-end encryption technologies OpenPGP and S/MIME that leak the plaintext of encrypted emails. Email is a plaintext communication medium whose communication paths are partly protected by TLS (TLS). For people in hostile environments (journalists, political activists, whistleblowers, …) who depend on the confidentiality of digital communication, this may not be Read more about EFAIL: PGP and S/MIME (encrypted email) are no longer safe[…]

Google sued for ‘clandestine tracking’ of 4.4m UK iPhone users’ browsing data

Posted on June 6, 2018 by Robin Edgar

Google is being sued in the high court for as much as £3.2bn for the alleged “clandestine tracking and collation” of personal information from 4.4 million iPhone users in the UK. The collective action is being led by former Which? director Richard Lloyd over claims Google bypassed the privacy settings of Apple’s Safari browser on Read more about Google sued for ‘clandestine tracking’ of 4.4m UK iPhone users’ browsing data[…]