Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Following on from our discussion of 2FA bypasses by tricking people into giving up their one-time-passwords, Vice did a detailed article describing one of the new 2FA-bypass-as-a-service cybercrime offerings: The Booming Underground Market for […]
Continue readingTag: patch
Security Bits — 21 March 2021
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. An interesting timeline of the Microsoft Exchange mega-attack discussed last time (Editorial by Bart: it really begs the question ‘what took Microsoft so long?’) — krebsonsecurity.com/… Bloomberg Report that when Parler (the social media […]
Continue reading
How to Update macOS Catalina and Not Upgrade to Big Sur
We all know that it’s important to “stay patched, so you stay secure.” But macOS is making that a bit harder these days. Apple really wants you to upgrade to macOS Big Sur, but if you’re not ready for that big jump, it may be hard to notice that you have macOS Catalina and Safari […]
Continue readingSecurity Bits — 13 September 2020
Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. Recently we were alerted by Allister Jenks and Joe Preiser in our slack at podfeet.com/slack to a problematic idea I had on the last Security Bits. We were talking about how choosing an alphanumeric […]
Continue reading
D-Link’s Attention to the KRACK Vulnerability Gives Me Pause
One of our goals in Home Automation has been to buy HomeKit-compatible devices whenever possible for security reasons. I’ve even created an elaborate network setup to isolate non-HomeKit (and Windows) devices from the rest of my gear. Last year we bought the first HomeKit-compatible webcam, the Omna 180 Cam HD from D-Link. At $150 it […]
Continue reading
CES 2018: L’Oréal UV Sense
Allison interviews Dr. Guive Balooch from L’Oréal about their UV Sense sun safety technology. Dr. Balooch described two new wearable products at CES: a special edition version of My UV Patch and a brand new sensor called UV Sense. My UV Patch is a stretchable skin sensor designed to monitor UV exposure. UV Sense is […]
Continue reading
Security Bits – Password Trackers, IOHIDeous, Meltdown & Spectre
Security Bits – 5 Jan 2018 Security Medium 1 — Password Managers as Trackers Security researchers have found that less-reputable tracking firms have deployed JavaScript which uses invisible forms to trick password managers into entering information which can then be used as a kind of super-cookie that users cannot delete, and hence, track them around […]
Continue reading