mersenneforum.org  

Go Back   mersenneforum.org > Extra Stuff > Soap Box

Reply
 
Thread Tools
Old 2020-12-15, 13:23   #353
Dr Sardonicus
 
Dr Sardonicus's Avatar
 
Feb 2017
Nowhere

2×7×11×29 Posts
Default

(URL snipped)
Quote:
Originally Posted by retina View Post
Amazon's Halo wristband: the fitness tracker that listens to your mood

And if when Amazon has some new product they require you to buy then they will cut support for this little spying thing and turn it into a paper weight.[/url]
<snip>
Plus, all these monitoring things/apps have never shown any improvement to health. Basically they are useless (yes, they are useless, and you don't need one). But people are still duped by the marketing about how much their lives will improve. Complete nonsense.
Reminds me of "mood rings," which instead of a sparkly had some liquid crystal that made shimmery colors when it warmed up. They were quite the novelty for a while, commanding fairly hefty price tags. The last time I saw them being sold, it was in "gum ball machine" type vending machines.
Dr Sardonicus is offline   Reply With Quote
Old 2020-12-31, 16:33   #354
Nick
 
Nick's Avatar
 
Dec 2012
The Netherlands

1,657 Posts
Default

Hacked home cams used to livestream police raids in swatting attacks
https://www.bbc.com/news/technology-55499164
Nick is offline   Reply With Quote
Old 2021-01-11, 11:39   #355
retina
Undefined
 
retina's Avatar
 
"The unspeakable one"
Jun 2006
My evil lair

23×32×5×17 Posts
Default

Quote:
Originally Posted by retina View Post
https://www.bbc.com/news/technology-54436575
Quote:
A security flaw in a hi-tech chastity belt for men made it possible for hackers to remotely lock all the devices in use simultaneously.

The internet-linked sheath has no manual override, so owners might have been faced with the prospect of having to use a grinder or bolt cutter to free themselves from its metal clamp.
It's a bad idea of course, but made worse by having to include the manufacturer in all actions.
Quote:
The cage wirelessly connects to a smartphone via a Bluetooth signal, which is used to trigger the device's lock-and-clamp mechanism.

But to achieve this, the software relies on sending commands to a computer server used by the manufacturer.
... and it got used by a hacker. Well of course it did, you didn't expect anything else did you?

https://www.bleepingcomputer.com/new...chastity-belt/
Quote:
Following the disclosure, an attacker started targeting Qiui Cellmate mobile app users who controlled the smart toy and locked the chastity device. Victims were asked to pay 0.02 bitcoins, around $270 at the time of the attacks.
And I "love" this final sentence:
Quote:
Qiui addressed the issues causing all the trouble, so the latest version of the app should be safe to use.
I doubt that very much. They only fixed what has been found so far. That in no way means they fixed all issues. And it still leaves the manufacture in the loop for all "transactions", so you will perpetually be dependant upon them to always be around and never have problems.
retina is online now   Reply With Quote
Old 2021-01-11, 15:09   #356
Dr Sardonicus
 
Dr Sardonicus's Avatar
 
Feb 2017
Nowhere

2·7·11·29 Posts
Default

Quote:
Originally Posted by retina View Post
And I "love" this final sentence:
Quote:
Qiui addressed the issues causing all the trouble, so the latest version of the app should be safe to use.
I think my favorite part was
Quote:
Soon after the attacks started, a flood of complaints came from victim users reporting that they could no longer control the smart adult toy. Some of them fell victim to the attacker multiple times.
There's an old saying. "Fool me once, shame on you. Fool me twice, shame on me!
Dr Sardonicus is offline   Reply With Quote
Old 2021-01-12, 17:20   #357
kladner
 
kladner's Avatar
 
"Kieren"
Jul 2011
In My Own Galaxy!

2×3×1,693 Posts
Default

Quote:
Originally Posted by Dr Sardonicus View Post
I think my favorite part wasThere's an old saying. "Fool me once, shame on you. Fool me twice, shame on me!
I thought that was "Fool me once, shame on you. Fool me twice.....can't fool me again." -GWB

Last fiddled with by Dr Sardonicus on 2021-01-12 at 22:00 Reason: fignix posty
kladner is offline   Reply With Quote
Old 2021-01-26, 01:32   #358
retina
Undefined
 
retina's Avatar
 
"The unspeakable one"
Jun 2006
My evil lair

612010 Posts
Default

Quote:
Originally Posted by Nick View Post
Hacked home cams used to livestream police raids in swatting attacks
https://www.bbc.com/news/technology-55499164
Those remote faceless companies running the "security" surveillance systems can always be trusted, no matter what, right?

https://gizmodo.com/a-home-security-...ems-1846111569
Quote:
A former employee of prominent home security company ADT has admitted that he hacked into the surveillance feeds of dozens of customer homes, doing so primarily to spy on naked women or to leer at unsuspecting couples while they had sex.

Telesforo Aviles, 35, pleaded guilty to a count of computer fraud in federal court this week, confessing that he inappropriately accessed the accounts of customers some 9,600 times over the course of several years. He is alleged to have done this to over 200 customers.

Authorities say that the IT technician “took note of which homes had attractive women, then repeatedly logged into these customers’ accounts in order to view their footage for sexual gratification.” He did this by adding his personal email address to customer accounts, which ultimately hooked him into “real-time access to the video feeds from their homes.”

<...>

“Some of these customers were previous victims of assault. They were relying on ADT to provide them with a sense of safety and security. Instead, they were victimized again,” said an attorney involved in one of the cases, highlighting the psychological effects of such an invasion of privacy.
I'm not convinced that "hacked" is the correct term there. But whatever, many people still don't seem to understand that all of this stuff is run by ordinary people using ordinary systems, and they can be abused in perfectly ordinary ways.

And MS has your bitlocker keys. Nothing can possibly go wrong.
retina is online now   Reply With Quote
Old 2021-01-26, 02:43   #359
Dr Sardonicus
 
Dr Sardonicus's Avatar
 
Feb 2017
Nowhere

2×7×11×29 Posts
Default

Quote:
Originally Posted by retina View Post
Those remote faceless companies running the "security" surveillance systems can always be trusted, no matter what, right?

https://gizmodo.com/a-home-security-...ems-1846111569 I'm not convinced that "hacked" is the correct term there. But whatever, many people still don't seem to understand that all of this stuff is run by ordinary people using ordinary systems, and they can be abused in perfectly ordinary ways.
<snip>
And, of course, the company wanted to do right by its injured customers...

ADT employee spied on customers for years through their security cameras, lawsuits claim
Quote:
MAY 18, 2020

Hundreds of customers of ADT Security Services were spied on through security cameras installed inside and outside of their homes, two federal lawsuits filed Monday are claiming.

ADT, headquartered in Boca Raton, "failed to provide rudimentary safeguards" to prevent an employee from gaining remote access to the customers' cameras over a seven-year period, a news release from the Dallas-based Fears Nachawati Law Firm states.

ADT notified customers of the breaches and then tried to pay them off if they agreed not to reveal them publicly, according to the suits filed in U.S. District Court in Fort Lauderdale.

"In a frantic effort to mitigate and hide its actions, ADT began a campaign to call all affected account holders and secure a release and confidentiality agreement in exchange for a monetary payment representing a fraction of the value of their claims," one of the suits says.
Yuck. I think I'm gonna hurl.
Quote:
They aren't the first accusations that ADT failed to protect its security systems from unwanted intrusions. In 2017, the company agreed to pay $16 million to settle class actions suits in Illinois, Arizona, Florida and California claiming it systems were vulnerable to hacking because the company failed to encrypt them.
Oh, joy, now the dry heaves...
Dr Sardonicus is offline   Reply With Quote
Old 2021-01-26, 03:38   #360
retina
Undefined
 
retina's Avatar
 
"The unspeakable one"
Jun 2006
My evil lair

23·32·5·17 Posts
Default

And that is only the shenanigans that has been discovered and reported.

I'd expect perhaps 1% (maybe less) to be discovered. And a fraction of those discovered to be reported, the rest kept quiet, or expanded upon when the boss decides he likes it.
retina is online now   Reply With Quote
Old 2021-01-27, 11:20   #361
retina
Undefined
 
retina's Avatar
 
"The unspeakable one"
Jun 2006
My evil lair

23×32×5×17 Posts
Default A trio of stupidity

https://old.reddit.com/r/theinternet...lership_for_a/
Quote:
Dude comes straight from the dealership for a car-seat installation, but halfway through the car disables itself (I'm guessing some anti-tamper safeguard). Hilariously, the boys at Ferrari can't remotely fix it because there's no reception undergound.
https://www.bitdefender.com/box/blog...dult-websites/
Quote:
... clips stolen from more than 50,000 hacked cameras have been uploaded to pornographic websites, and X-rated footage sold to people prepared to pay a subscription fee of US $150.

As Singapore’s The New Paper describes, videos surreptitiously stolen from hacked cameras feature couples, breastfeeding mums, and even teenagers and children – with many captured in “various states of undress or compromising positions.”
https://uploadvr.com/facebook-accoun...t-paperweight/
Quote:
Quest 2 is the first Oculus headset to require a Facebook account at launch. False positives from its account verification system may be leaving some buyers with no choice but to return it.

We’re seeing reports from Quest 2 buyers who aren’t on Facebook finding difficulty creating an account. Facebook’s account verification system- reportedly administered by a machine learning agent– may ask for photographic evidence of identity. That evidence seems to be reviewed by a human, since it can apparently take weeks to process.

Others trying to re-activate old accounts to use their brand new Quest 2 also report instant suspensions. Trying to create a new account also fails.
retina is online now   Reply With Quote
Old 2021-01-28, 08:01   #362
LaurV
Romulan Interpreter
 
LaurV's Avatar
 
Jun 2011
Thailand

3×55 Posts
Default

Ha!

(making retina happy )
LaurV is online now   Reply With Quote
Old 2021-04-06, 08:32   #363
retina
Undefined
 
retina's Avatar
 
"The unspeakable one"
Jun 2006
My evil lair

612010 Posts
Default Verkada Inc. gave ’20-Year-Old Interns’ a ‘Super Admin’ privilege to look in on feeds

https://dailycaller.com/2021/03/11/v...curity-breach/
Quote:
Super Admin accounts could turn off a “privacy mode” activated by customers that was meant to prevent employees from viewing their cameras. Workers were required to log their use of Super Admin accounts and provide justification for their use, but that wasn’t much of a deterrent, according to one former employee. “Nobody cared about checking the logs. You could put whatever you wanted in that note; you could even just enter a single space,” they told Bloomberg.

The hackers were also able to gain access to customers’ personal and financial information, according to The Verge. The hack is America’s highest-profile security breach since the SolarWinds hack of Microsoft, which gave hackers access to Microsoft user information.
retina is online now   Reply With Quote
Reply

Thread Tools


Similar Threads
Thread Thread Starter Forum Replies Last Post
Internet down question ctteg Information & Answers 2 2018-03-13 17:57
DSL Internet Disconnection Issues Stargate38 Hardware 15 2013-12-14 17:47
PCs not connected to internet kdelisle2005 Software 3 2011-06-22 03:09
Too Much Internet Access. M0CZY Software 3 2005-10-17 15:41
LL Tests Over Internet JuanTutors Software 6 2004-08-17 12:09

All times are UTC. The time now is 05:38.

Sun Apr 18 05:38:32 UTC 2021 up 10 days, 19 mins, 0 users, load averages: 1.32, 1.35, 1.52

Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2021, Jelsoft Enterprises Ltd.

This forum has received and complied with 0 (zero) government requests for information.

Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation.
A copy of the license is included in the FAQ.