Popular mobile apps send sensitive personal data to Facebook by using Facebook's SDK to collect this data:
– at least 11 out of 70 popular apps are affected
– sensitive data includes blood pressure, pregnancy status, menstrual cycles, heartbeat rates, viewed real estate postings etc.
– some of these apps are "Instant Heart Rate", "Flo Period & Ovulation Tracker", "Realtor.com"
– also affects users without Facebook accounts
Q: How do you bootstrap your IoT device with WiFi credentials?
A: Just broadcast them encoded in UDP packet lengths to your WiFi and let the IoT device sniff it.
Probably a good bookmark to set so you can easily check how to fixup everything when you fucked up while using #git.
Also, the site gets my "quote of the day" award for its first sentence:
"Git is hard: screwing up is easy, and figuring out how to fix your mistakes is fucking impossible."
2.7 million medical calls breached in Sweden
The calls were stored on a NAS connected to the internet with no authentication or encryption, with people's phone numbers in the file names of audio files
Google put hidden microphones in people's houses and when caught admitted they shouldn't have been so secretive about it. They claim innocent intentions and the mics were never on. Most people believe them. That's the difference between them and Facebook. If FB did this, folks would flip. Google has credibility, and it's worth asking how they got it, how they maintain it, and whether they deserve it.
Forgot to mention the microphone we built into that smoke alarm, oops.
534 Ways that Windows 10 Tracks You - From German Cyber Intelligence - https://www.privateinternetaccess.com/blog/2018/11/534-ways-that-windows-10-tracks-you-from-german-cyberintelligence/ #rr #tracking
I scanned the whole country of Austria and this is what I've found
IP cameras, printers, industrial controls to name a few..
Assembled the new RGBI DVI Pmod! It works! Using the hdmi_text 1080p design by @tnt Looks really nice and crisp! It is pretty amazing what the small ice40up5k on the iCEBreaker can do. :D https://github.com/smunaut/ice40-playground/tree/master/projects/hdmi_text
[TV Commercial Announcer Voice]
"Are you tired of only being able to be digitally attacked online? Do you wish you could make your real life vulnerable to hackers as well? Introducing a groundbreaking new product: the Internet-connected pacemaker! You'll revel in the exhilaration of knowing that you could be a literally killed by hackers any moment! Order now!"
Don't copy-paste from a website to a terminal http://thejh.net/misc/website-terminal-copy-paste
Upgraded my #openwrt home router box (which intentionally only does VDSL + DHCP and not much more, to lower attack surface) to OpenWRT 18.06.2 today. More recent kernel and packages, various security fixes, etc. etc.
Went pretty smoothly, other than that I had to clear the browser cache to be able to log in again, and I had to re-install/re-enable luci-ssl.
Please reshare widely and **take action**. This has the potential to endanger the #internet as we know it, making it more and more composed of only large platforms.
Please *contact me*. All I need is the domain name, which EU Member State it's located in, and the rough topic of the instance. Approximate user count welcome, but not necessary.
Please help. This is important.
A. Schaller et al., "Intrinsic Rowhammer PUFs: Leveraging the Rowhammer Effect for Improved Security”
...In this work, we present a new type of a memory-based intrinsic PUF, which leverages the Rowhammer effect in DRAM modules; the Rowhammer PUF…
...this is the first work to use the Rowhammer effect in a positive context: to design a novel PUF
@EikeHein is the treasurer of KDE e.V. and long-time Plasma and Konversation developer. So he's actually more knowledgeable on the tech side of KDE than I am.
This reporter blocked each of the five "tech giants" for a week—
Then, for the 6th week, she blocked all five for a whole week! https://gizmodo.com/i-cut-the-big-five-tech-giants-from-my-life-it-was-hel-1831304194
Here's how to try it yourself: https://gizmodo.com/want-to-really-block-the-tech-giants-heres-how-1832261612
Some popular iPhone apps are secretly recording your screen:
– apps include Air Canada, Hollister, Expedia, Hotels.com
– these and other apps use a "session replay" feature of Glassbox
– Glassbox session replays are essentially real-time videos of how you interact with the app
Fosstodon is a Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.