Security Medium 1 — Human Review of Voice Assistant Recordings The Guardian newspaper started what turned out to be a far-ranging controversy be reporting that when Apple said they kept anonymised Siri recordings for analysis, that analysis included grading by human beings. Specifically, by outside contractors.
Continue readingMore TagCategory: Security Bits
Security Bits – 25 July 2019
Followups The Zoom webcam/webserver issue We now have confirmation that the vulnerability was also present in the RingCentral and Zhumu apps — www.imore.com/… Apple have rolled out an additional automatic security update to address the issues with these apps — www.macobserver.com/… Related Opinion: John Gruber addresses the question Isn’t [Apple’s response] “nonconsensual technology” too? in […]
Continue readingMore TagSecurity Bits – 14 July 2019
Security Medium 0 (more of a Followup) — 3rd-party Parental Control Apps Return to iOS Editorial by Bart: I’ve seen some very lazy reporting on this story, and I think the context and nuance are important, hence giving this apparently simple story the ‘Security Medium’ treatment. To understand what happened this week, it’s important to […]
Continue readingMore TagSecurity Bits – 30 June 2019
Followups Facebook has replaced the infamous study app that breached Apple’s Enterprise Developer Program rules and got them into so much trouble a few months ago with a new app that is not side-loaded, is explicit in what it does, and is Android only (Editorial by Bart: I’m guessing they couldn’t get a useful spying […]
Continue readingMore TagSecurity Bits – 15 June 2019
Followups 🇺🇸 🇮🇳 Thanks to a letter sent to Facebook by US Senator Richard Blumenthal we now know that Facebook’s controversial VPN tracking app collected data on 187K users, and that 31K of those were in the US, and 4.3K of those were teens. The remaining users were in India — nakedsecurity.sophos.com/… Security Medium — […]
Continue readingMore Tag
Security Bits – 1 June 2019
Followups Andrew Orr at TMO got a bit of a sneak-peak at Cloudflare’s soon-to-be released Warp VPN (Editorial by Bart: support for a split tunnel is a nice touch) — www.macobserver.com/… Security researchers have found that there are still nearly a million devices out there on the internet vulnerable to the BlueKeep RDP vulnerability Microsoft […]
Continue readingMore TagSecurity Bits – 16 May 2019
Security Medium 1 — The WhatsApp Vulnerability 🧯 The Financial Times were first to report that a vulnerability existed in the WhatsApp app for iOS & Android, and that it was being actively but very selectively exploited against high-value targets, probably by governments. Facebook confirmed that the vulnerability existed, and that it is patched in […]
Continue readingMore TagSecurity Bits – 3 May 2019
Followups Marcus Hutchins, the young security researcher who shot to fame by killing the WannaCry malware and then to infamy when he was arrested and charged with cyber crimes while traveling to the US to present at a security conference, has pleaded guilty to writing and selling banking malware. The offences pre-date his work as […]
Continue readingMore TagSecurity Bits – 19 April 2019
Followup — Scanning for Cameras The story we covered last time about a hidden camera being found in an Irish AirBnB got a conversation going on the NosillaCast Slack. The story revolved around a New Zealand family who stayed in an AirBnB in Cork, Ireland. The father was an IT guy, and he scanned the […]
Continue readingMore Tag
NC #724 Sonova/Phonak Listening Device, Solo NY Region Backpack, WD Drive with WiFi, 2019 iPad Lineup, Security Bits
I was on the SMR Podcast this week. CSUN interview with Sonova/Phonak about their Assisted Listening Devices. My review of the Solo New York Region Backpack. Allister Jenks explains how well the Western Digital WiFi-enabled hard drive helps him. I try to help you decide which iPad to get with my 2019 iPad lineup comparison […]
Continue readingMore Tag