Show more

Popular mobile apps send sensitive personal data to Facebook by using Facebook's SDK to collect this data:

cnet.com/news/facebook-receive

– at least 11 out of 70 popular apps are affected
– sensitive data includes blood pressure, pregnancy status, menstrual cycles, heartbeat rates, viewed real estate postings etc.
– some of these apps are "Instant Heart Rate", "Flo Period & Ovulation Tracker", "Realtor.com"
– also affects users without Facebook accounts

#facebook #privacy #pii #gdpr

RT @yath0r

Q: How do you bootstrap your IoT device with WiFi credentials?
A: Just broadcast them encoded in UDP packet lengths to your WiFi and let the IoT device sniff it.

😳

espressif.com/sites/default/fi

🐦🔗: twitter.com/yath0r/status/1099

Probably a good bookmark to set so you can easily check how to fixup everything when you fucked up while using .

ohshitgit.com/

Also, the site gets my "quote of the day" award for its first sentence:

"Git is hard: screwing up is easy, and figuring out how to fix your mistakes is fucking impossible."

2.7 million medical calls breached in Sweden

hjorthjort.xyz/2019/02/20/2.7_

The calls were stored on a NAS connected to the internet with no authentication or encryption, with people's phone numbers in the file names of audio files

Google put hidden microphones in people's houses and when caught admitted they shouldn't have been so secretive about it. They claim innocent intentions and the mics were never on. Most people believe them. That's the difference between them and Facebook. If FB did this, folks would flip. Google has credibility, and it's worth asking how they got it, how they maintain it, and whether they deserve it.

bbc.com/news/technology-473030

I scanned the whole country of Austria and this is what I've found
IP cameras, printers, industrial controls to name a few..

blog.haschek.at/2019/i-scanned

Assembled the new RGBI DVI Pmod! It works! Using the hdmi_text 1080p design by @tnt Looks really nice and crisp! It is pretty amazing what the small ice40up5k on the iCEBreaker can do. :D github.com/smunaut/ice40-playg

[TV Commercial Announcer Voice]

"Are you tired of only being able to be digitally attacked online? Do you wish you could make your real life vulnerable to hackers as well? Introducing a groundbreaking new product: the Internet-connected pacemaker! You'll revel in the exhilaration of knowing that you could be a literally killed by hackers any moment! Order now!"

@johnathan012

Upgraded my home router box (which intentionally only does VDSL + DHCP and not much more, to lower attack surface) to OpenWRT 18.06.2 today. More recent kernel and packages, various security fixes, etc. etc.

Went pretty smoothly, other than that I had to clear the browser cache to be able to log in again, and I had to re-install/re-enable luci-ssl.

Breaking: The text of #Article13 and the #EU #Copyright Directive has just been finalised

juliareda.eu/2019/02/eu-copyri

Please reshare widely and **take action**. This has the potential to endanger the #internet as we know it, making it more and more composed of only large platforms.

This has the possibility of killing #alternative #socialmedia projects and small #startups trying to compete with the big #corporations.

Calling all #Fediverse admins of instances in the #EU. The #CopyrightDirective is coming, we need to show the MEPs how massively the EU Internets will be affected.

We are preparing a list of all EU-based #Pleroma, #Mastodon, #GNUSocial, #Peertube, #Funkwhale, and any other instances.

Please *contact me*. All I need is the domain name, which EU Member State it's located in, and the rough topic of the instance. Approximate user count welcome, but not necessary.

Please help. This is important.

A. Schaller et al., "Intrinsic Rowhammer PUFs: Leveraging the Rowhammer Effect for Improved Security”

...In this work, we present a new type of a memory-based intrinsic PUF, which leverages the Rowhammer effect in DRAM modules; the Rowhammer PUF…
...this is the first work to use the Rowhammer effect in a positive context: to design a novel PUF

arxiv.org/abs/1902.04444

@EikeHein is the treasurer of KDE e.V. and long-time Plasma and Konversation developer. So he's actually more knowledgeable on the tech side of KDE than I am.

Some popular iPhone apps are secretly recording your screen:

extremetech.com/mobile/285342-

– apps include Air Canada, Hollister, Expedia, Hotels.com
– these and other apps use a "session replay" feature of Glassbox
– Glassbox session replays are essentially real-time videos of how you interact with the app

#ios #glassbox #session #replay #leak #aircanada #hollister #expedia #hotelscom

Show more
Fosstodon

Fosstodon is a Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.