There’s a new app that uses Watson to scour social media time-lines and identify potentially racist, sexist or just general douche-baggery and flag it for you to delete. From ThinkProgress:
So maybe it’s good that Noah didn’t delete those tweets, and that there wasn’t an app like Clear to make it easier to erase them from the record. Maybe it was important for us to see Noah’s unflattering past, considering he is inheriting a position of tremendous influence, if not technical “news” authority (though to suggest The Daily Show is “just” a comedy show is to be willfully ignorant of what that institution has become under Stewart’s leadership).
The latest version of 1Password for Mac adds the One Time Password feature (what I’m going to continue to call 2-Factor Authentication). It syncs with the iOS version too.
Check out how they handle the barcode scanning implementation video:
This seems like an absolutely terrible precedent. Javascript injection of 1% of Chinese Baidu users is all it takes to bring Github down. Imagine what they could do with 5%.
Oh, and also trying to make forensics more difficult:
What is interesting with this new attack on GitHub is that the attackers are now trying to make it difficult to locate the injection point of the malicious JavaScript by modifying the IP TTL values of injected packets.
From Buzzfeed:
But while Glass failed to set the consumer space on fire, some clinicians and other medical professionals have embraced it as a hands-free means of sharing and accessing information quickly. As cases like Phelan’s demonstrate, Glass still has promise in enterprise markets like health care.
Stop and think about this for one second. Medical researchers, with access to extreamly sensitive data and bound by HIPAA and myriad other laws protecting patients, are going to wear cameras provided by an advertising company.
From the AgileBits blog on the Slack security breach:
The notion of infeasible depends on the relationship between the amount of work the defender has to do to secure the system compared to the amount of work that the attacker has to do to break it
Good read. There are lots of things we thought were not feasible until they were.
Slack notified users this week of a security breach. They also made two factor authentication available for everyone. This is not a coincidence. It’s time to change passwords and enable 2FA on any groups with personal information. I recommend using 1Password’s new one-time password feature.
While it doesn’t sound like anything was really compromised, Slack is increasingly becoming a honeypot. It’s nice to see how they responded to this first incident.
“Review” might be a stretch, but Torrentfreak has a pretty good rundown of a bunch of VPNs and their responses to a privacy questionnaire. If you’re tired of your ISP screwing around with your Netflix bandwidth and aren’t interested in ad supported Internet, this might be a good time to consider a VPN.
A nice summary from Marc Rogers:
Superfish replaces legitimate site certificates with its own in order to compromise the connections so it can install its adverts. This means that anyone affected by this adware cannot trust any secure connections they make.
Remember Sony? The reality is that this will not put Lenovo out of business. The repercussions for doing something obviously wrong are vanishingly small when compared to the money made by doing it.
I’ve used the Surveillance Station on Synology for a couple of years now and it’s great. It’s revealed misbehaving teenagers, dishonest house sitters, rafters of turkeys, and drunk trash can bulldozers. I’m mostly happy when I don’t need it but when I do use it, I’m really impressed by the features available in a piece of software that comes with my NAS.
Version 7 is a minor step forward for my use but I’m thrilled that it keeps improving.
I had completely forgotten that one of the reasons I avoided Acompli (the iOS app that Microsoft re-branded as Outlook) was how they managed email remotely.
Here’s a recent Register article that describes the issue.
Rene Winkelmeyer breaks down the entire thing and is the source for the Register article:
What I saw was breathtaking. A frequent scanning from an AWS IP to my mail account. Means Microsoft stores my personal credentials and server data (luckily I’ve used my private test account and not my company account) somewhere in the cloud!
