Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
precedence: bulk
Subject: Risks Digest 31.00 (), Volume 31 summary
REPLY-TO: risks@csl.sri.com
RISKS-LIST: RISKS-FORUM Digest Volume 31 : Issue 00 (99)
FORUM ON RISKS TO THE PUBLIC IN COMPUTERS AND RELATED SYSTEMS
ACM Committee on Computers and Public Policy, Peter G. Neumann, moderator
Contents:
Info on RISKS (comp.risks), contributions, subscriptions, FTP, etc.
SUMMARY OF RISKS VOLUME 31 (1 Jan 2019 -- 12 Jun 2020)
(NOTE: This summary is archived in ftp file risks-31.00 at ftp.sri.com,
cd risks, and is also at http://catless.ncl.ac.uk/Risks/31.00.html.)
----------------------------------------------------------------------
Date: Wed, 17 Aug 2016 11:11:11 -0800
From: RISKS-request@csl.sri.com
Subject: Abridged info on RISKS (comp.risks)
The ACM RISKS Forum is a MODERATED digest. Its Usenet manifestation is
comp.risks, the feed for which is donated by panix.com as of June 2011.
=> SUBSCRIPTIONS: The mailman Web interface can be used directly to
subscribe and unsubscribe:
http://mls.csl.sri.com/mailman/listinfo/risks
=> SUBMISSIONS: to risks@CSL.sri.com with meaningful SUBJECT: line that
includes the string `notsp'. Otherwise your message may not be read.
*** This attention-string has never changed, but might if spammers use it.
=> SPAM challenge-responses will not be honored. Instead, use an alternative
address from which you never send mail where the address becomes public!
=> The complete INFO file (submissions, default disclaimers, archive sites,
copyright policy, etc.) is online.
<http://www.CSL.sri.com/risksinfo.html>
*** Contributors are assumed to have read the full info file for guidelines!
=> OFFICIAL ARCHIVES: http://www.risks.org takes you to Lindsay Marshall's
searchable html archive at newcastle:
http://catless.ncl.ac.uk/Risks/VL.IS --> VoLume, ISsue.
Also, ftp://ftp.sri.com/risks for the current volume
or ftp://ftp.sri.com/VL/risks-VL.IS for previous VoLume
Lindsay has also added to the Newcastle catless site a palmtop version
of the most recent RISKS issue and a WAP version that works for many but
not all telephones: http://catless.ncl.ac.uk/w/r
ALTERNATIVE ARCHIVES: http://seclists.org/risks/ (only since mid-2001)
<http://the.wiretapped.net/security/info/textfiles/risks-digest/>
*** NOTE: If a cited URL fails, we do not try to update them. Try
browsing on the keywords in the subject line or cited article leads.
==> Special Offer to Join ACM for readers of the ACM RISKS Forum:
<http://www.acm.org/joinacm1>
------------------------------
RISKS 31.00
Info on RISKS (comp.risks), contributions, subscriptions, FTP, etc.
SUMMARY OF RISKS VOLUME 31 (ongoing) (archived in ftp file risks-31.00)
RISKS 31.01 Friday 4 January 2019
911 emergency services go down across the US after CenturyLink outage (ABC)
Pilots Kept Losing Oxygen and the Military Had No Idea Why.
Now There's a Possible Fix. (NYTimes)
Huawei gives the US & allies security nightmares (Henry Baker)
Wielding Rocks and Knives, Arizonans Attack Self-Driving Cars (NYTimes)
Oregon Unconstitutionally Fined a Man $500 for Saying 'I am an Engineer',
Federal Judge Rules (Motherboard via PGN)
Computer Virus Disrupts Delivery Of San Diego Union-Tribune (LA Times)
Car Smarts: The Future of Vehicle Tech (CTA)
Drones Used to Find Toy-Like Butterfly Land Mines (Scientific American)
Instagram Update Brings Horizontal Scrolling to Horrified Users (NYTimes)
USA Wants to Restrict AI Exports: A Stupid and Dangerous Idea
(Lauren Weinstein)
Hazing (Rob Slade)
Google sat on Chromecast bug for years, now hackers can wreak havoc
(TechCrunch)
Google erases Kurdistan from maps in compliance with Turkish gov. (LW)
Re: New Zealand courts banned ...; Google just emailed it out. (Chris Drewe)
Re: IRS Linux move delayed (Dmitri Maziuk)
Re: Innovation and Immigration (John Levine)
Re: New Zealand courts banned ...; Google just emailed it out.
(Steve Bacher)
Re: Rudy Giuliani Says Twitter Sabotaged His Tweet (Peter Houppermans,
Amos Shapir)
Re: MTR East Rail disruption caused by failure of both primary
(Richard Stein)
RISKS 31.02 Friday 11 January 2019
Heathrow flights disrupted by yet another drone (Ars)
Gatwick and Heathrow buying anti-drone equipment (bbc.com)
Inaccurate Software for Brain Surgery (Medscape)
Can't connect to that *.gov website? Here's why... (Micah Lee via
danny burstein)
Denver was ground zero for CenturyLink's recent network outage
... and it can be explained by a Mickey Mouse movie (Aldo Svladi)
Astronaut sparks panic after accidentally dialing 911 from space
sending NASA security teams into a frenzy (The Sun)
USB Type-C Authentication Program Officially Launches (EWeek)
Finally, Some Good News About the EU's Horrendous "Right To Be Forgotten"
Law (Lauren Weinstein)
"Market volatility: Fake news spooks trading algorithms" (Tom Foremski)
Is it time for Linux? (Dave Crooke)
'Chipping' Is the Next Frontier for Biohackers (Fortune)
Facebook appending ?fbclid to links (Dan Jacobson)
US Air Force: 5G Dominance Critical to National Security (Security Now)
Marriott Concedes 5 Million Passport Numbers Lost to Hackers Were Not
Encrypted (NYTimes)
Hackers Leak Details of German Lawmakers, Except Those on Far Right
(NYTimes)
A DNS hijacking wave is targeting companies at an almost unprecedented scale
(Ars)
Hot new trading site leaked oodles of user data, including login tokens
(Ars)
The Risk of Twitter knowing all, telling all (Taipei Times)
Chinese phone maker Huawei punishes employees for iPhone tweet blunder
(CNBC)
Los Angeles Accuses Weather Channel App of Covertly Mining User Data
(NYTimes)
Could a Chinese-made Metro car spy on us? Many experts say yes. (WashPost)
Alexia really is a spy (The Register)
Kingpin Used Spyware to Obsessively Monitor His Wife and Mistress:
El Chapo Trial (NYTimes)
T-Mobile, Sprint, and AT&T Are Selling Customers' Real-Time
Location Data, And It's Falling Into the Wrong Hands (Motherboard)
For Owners of Amazon's Ring Security Cameras, Strangers May Have
Been Watching (The Intercept)
Aging In Place Technology Watch (CES 2019)
Escalating Value of iOS Bug Bounties Hits $2M Milestone (EWeek)
Zeroday Exploit Prices Are Higher Than Ever, Especially for iOS
and Messaging Apps (Dan Goodin)
Phone-staring warning after Wellingborough 'hit-and-run' (bbc.com)
Manafort Accused of Sharing Trump Campaign Data With Russian Associate
(NYTimes)
Democrats Faked Online Push to Outlaw Alcohol in Alabama Race (NYTimes)
Google search results listings can be manipulated for propaganda
(Catalin Cimpanu)
Disney, Apple and Facebook will be among your new streaming options
in 2019 (WashPost)
What Happens When Facebook Goes the Way of Myspace? (NYTimes)
Hackers Target Chromecast Devices, Smart TVs With PewDiePie Message
(Variety)
Taking the smarts out of smart TVs would make them more expensive
(The Verge)
Why it pays to declutter your digital life (bbc.com)
Is Gamification Working in Security Training? (Channel Futures)
U.S. Announces Settlement With Fiat Chrysler Over Emissions (NYTimes)
Apple trolls Google at CES 2019 with massive iMessage privacy ad
(Business Insider)
Re: New Zealand courts banned ... (Dimitri Maziuk)
Re: Huawei gives the US & allies security nightmares (Amos Shapir)
Re: USA Wants to Restrict AI Exports: A Stupid and Dangerous Idea
(Amos Shapir)
The AI Winter is coming (Mark Thorson)
RISKS 31.03 Thursday 17 January 2019
In the Shutdown, the U.S. Government Is Flirting with Cybersecurity
Disaster (DataCenterKnowledge)
"Why is my keyboard connected to the cloud?" (Chris Duckett)
USB Type-C Authentication Program Officially Launches (E-Week)
The Super-Secure Quantum Cable Hiding in the Holland Tunnel (Jeremy Kahn)
America's Electric Grid Has a Vulnerable Back Door -- and Russia
Walked Through It. (WSJ)
A Worldwide Hacking Spree Uses DNS Trickery to Nab Data (WiReD)
Dark markets have evolved to use encrypted messengers/dead-drops
(Cory Doctorow)
A Simple Bug Makes It Easy to Spoof Google Search Results into
Spreading Misinformation (Zack Whittaker)
Pilot project demos credit cards with shifting CVV codes to stop fraud
(Ars Technica)
Veterans of the News Business Are Now Fighting Fakes (NYTimes)
When Chinese hackers declared war on the rest of us (MIT TechReview)
200 million Chinese resumes leak in huge database breach (TheNextWeb)
North Korean hackers infiltrate Chile's ATM network after Skype job
interview (ZDNet)
Chinese Internet censors turn attention to rest of world (MIT TechReview)
State-backed Hackers Sought and Stole Singapore Leader's Medical Data (WSJ)
Man gets 10 years for cyberattack on Boston Children's Hospital
(BostonGlobe)
The Danger of Calling Out Cyberattackers (Bloomberg)
How a little-known Democratic firm cashed in on the wave of midterm money
(WashPost)
Deepak Chopra has a prescription for what ails technology (WashPost)
GoDaddy injecting site-breaking JavaScript into customer websites, here's a
fix (TechRepublic)
"How three rude iPhone users ruined an evening" (Chris Matyszczyk)
Re: Escalating Value of iOS Bug Bounties Hits $2M Milestone
(Richard Stein)
RISKS 31.04 Monday 28 January 2019
If 5G Is So Important, Why Isn't It Secure? (Henry Baker on NYT item)
Everybody Does It: The Messy Truth About Infiltrating Computer Supply
Chains (The Intercept)
Digital Assistants Inside Cars Raise Serious Privacy Concerns (Fortune)
Toilet seat sensor tracks blood pressure, stroke volume, blood oxygenation
(MobiHealthNews)
The Hidden Automation Agenda of the Davos Elite (NYT)
Prepare for the Smart Home Fitness Revolution (WIRED)
The Prime Challenges for Scout, Amazon's New Delivery Robot (Gabe Goldberg)
Why Uber wants to build scooters and bikes that can drive themselves
(Ars Technica)
"Our worst fears have come true," VW Group exec wrote to Audi exec. (Ars)
The World Economy Runs on GPS. It Needs a Backup Plan (Bloomberg)
Runner found to be a hitman after GPS Watch ties him to crime scene
(Runner's World)
Buy Bitcoin at the Grocery Store via Coinstar (Fortune)
The Internet of human things: Implants for everybody and how we get there
(ZDNet)
Drone activity halts air traffic at Newark Liberty International (WashPo)
How Volunteers for India's Ruling Party Are Using WhatsApp to Fuel
Fake News Ahead of Elections (Time)
Family says hacked Nest camera warned them of North Korean missile attack
(WashPost)
GoDaddy weakness let bomb threat scammers hijack thousands of big-name
domains (Ars Technica)
Google ordered to submit search index to state sponsorship in Russia
(SearchEngineLand)
Why Hackers Had Thousands of DNA Tests Delivered to Random People
Over the Holidays (Fortune)
The Duty to Read the Unreadable (Monty Solomon)
Amazon software works best on white men, study says (WashPost)
Risks of Deepfake videos (Geoff Goodfellow)
Here's how you can stay clear of online scams (CNET)
Data Broker That Sold Phone Locations Used by Bounty Hunters Lobbied FCC
to Scrap User Consent (Motherboard)
Researchers discover state actor's mobile malware efforts because of YOLO
OPSEC (Ars Technica)
1000 Vulnerable Cranes (Trendmicro via Henry Baker)
When your landlord installs smart locks (José María Mateos)
Hundreds of popular cars at risk from key compromise (BBC)
Coming Soon to a Police Station Near You: The DNA 'Magic Box' (NYT)
An IoT security mailing list (Firemountain via JMM)
Japan to regulate foreign companies use of e-mail content (Mark Thorson)
Facebook "real names" policy forces you to sign up with a fake name
(Neil Youngman)
Reaction to the #10YearChallenge circulating on Facebook: Nope.
(Gabe Goldberg)
How Reserved Storage Works in the Next Version of Windows 10 (MS)
Security, Compliance Add-Ons Offered to Microsoft 365 Users (GG)
How Reserved Storage Works in the Next Version of Windows 10 (MS via GG)
US Patent for Drone delivery of coffee based on a cognitive state (GG)
Did Australia Hurt Phone Security Around the World? (NYTimes)
Location-Based Little Brothers (Henry Baker)
How We Destroy Lives Today (NYTimes)
Covington and the Pundit Apocalypse (NYTimes)
Re: A Simple Bug Makes It Easy to Spoof Google Search Results (Vint Cerf)
Re: How three rude iPhone users ruined an evening (Henry Baker)
Cyber Security Hall of Fame Nominations now open (Spaf)
RISKS 31.05 Monday 4 February 2019
A study of fake news in 2016 (Science via PGN)
Deep Fakes: A Looming Challenge for Privacy, Democracy, and
National Security by Robert Chesney, Danielle Keats Citron (SSRN)
Japanese government plans to hack into citizens' IoT devices (ZDNet)
"This smart light bulb could leak your Wi-Fi password" (ZDNet via
Gene Wirchenko)
Tech addicts seek solace in 12 steps and rehab (AP)
How Machine Learning Could Keep Dangerous DNA Out of Terrorists' Hands
(Scientific American via Richard Stein)
Taking apart a botnet ... (Naked Security via Rob Slade)
What If Your Fitbit Could Run on a Wi-Fi Signal? (SciAm)
iPhone FaceTime Bug That Allows Spying Was Flagged to Apple Over a
Week Ago (NYTimes)
Apple revokes Google's ability to use internal iOS apps, just like Facebook
(WashPost)
Apple hits back at Facebook and revokes a key license (CNBC)
Putting the exact size of land in ads (Dan Jacobson)
Passwords, escrow, and fallback positions (CoinDesk via Rob Slade)
My old RISKS nightmare comes true - partially (Rex Sanders)
Minor Crimes and Misdemeanors in the Age of Automation (DevOps.com)
ICE set up phony Michigan university in sting operation (WashPost via
Monty Solomon)
Chinese maker of radios for police, firefighters struggles to outlast
Trump trade fight (WashPost)
Keyless Cars Are Easy to Steal Using Cheap Theft Equipment (Fortune via
Gabe Goldberg)
UK auto theft (Claire Duffin via Chris Drewe)
Problems with car key fobs (Gizmodo via Arthur T.)
Google, you sent this to too many people, so it must be spam (Dan Jacobson)
Re: Buy Bitcoin at the Grocery Store via Coinstar (John Levine)
Re: Hidden Automation Agenda of the Davos Elite (Henry Baker)
Re: Is it time for Linux? (J Coe)
Re: If 5G Is So Important, Why Isn't It Secure? (Mark Thorson)
Re: The Duty to Read the Unreadable (Amos Shapir)
Re: Risks of Deepfake videos (Amos Shapir)
RISKS 31.06 Wednesday 13 February 2019
'A Trail of Decisions Kept Lion Air Pilots in the Dark' (NYT)
The infrastructural humiliation of America (TechCrunch)
Investigation finds Navy leaders ignored warnings for years before
one of the deadliest crashes in decades (ProPublica)
Spectre: Do Loose Lips Sink Chips? (Henry Baker)
Mayhem, the Machine That Finds Software Vulnerabilities, Then Patches Them
(IEEE Spectrum)
Beware of Cars With Minds of Their Own (Bloomberg)
Goodbye trolley problem: This is Silicon Valley's new ethics test (WashPost)
A Machine Gets High Marks for Diagnosing Sick Children (SciAm)
Where's my paycheck? Wells Fargo customers say direct deposits not showing
up after outage (USA Today)
Network outage prevents bike rentals (Jeremy Epstein)
USB sticks can take it ... (Rob Slade)
Some AT&T iPhones Displaying Misleading '5G E' Icon in iOS 12.2 Beta 2
(MacRumors)
Japan gears up for mega hack of its own citizens (Straits Times)
Indecent disclosure (Ars Technica)
LibreOffice and Apache OpenOffice vulnerable to same bug; only one is fixed.
(Ars Technica)
There's No Good Reason To Trust Blockchain Technology (Bruce Schneier/WiReD)
Fire -- and lots of it: Berkeley researcher on the only way to fix
cryptocurrency (Ars Technica)
Navigating Bitcoin, Ethereum, XRP: How Google Is Quietly Making Blockchains
Searchable (Forbes)
Crypto CEO dies holding only passwords that can unlock millions in
customer coins (geoff goodfellow)
`Zero Trust' AI: Too Much of a Good Thing is Wonderful (Henry Baker)
FDA proposes a supply chain tracking overhaul (Fortune)
Why CAPTCHAs have gotten so difficult (The Verge)
Situation Normal, All Zucked Up (Japan News)
Google Began Censoring Search Results in Russia, Reports Say (Moscow Times)
Security Researcher Assaulted Following Vulnerability Disclosure (SecJuice)
NSO Group attacking investigators (Rob Slade)
How does NYPD surveil thee? Let me count the Waze (Henry Baker)
How Hackers and Scammers Break into iCloud-Locked iPhones (Motherboard)
Airline Passengers Potentially at Risk From Check-In Flaws (EWeek)
Privacy, transparency, and increasing digital trust (David Strom)
Many popular iPhone apps secretly record your screen without asking
(TechCrunch)
Apple allows screen captures of evertyhing that you do ... (Rob Slade)
HP's ink DRM instructs your printer to ignore the ink in your cartridge
when you cancel your subscription (BoingBoing)
The perils of using Internet Explorer as your default browser
(TechCommunity)
Judge orders $150,000 in damages in GTA Online cheating case (Ars Technica)
Maybe he'll die of the plague and we can all breathe easier ... (Rob Slade)
Re: Deep Fakes (PGN)
Re: Google, you sent this to too many people, so it must be spam
(Dan Jacobson)
Re: Passwords, escrow, and fallback positions (Rob Slade)
Re: Is it time for Linux? (Aaron M. Ucko)
Re: Minor Crimes and Misdemeanors in the Age of Automation (Mark Brader)
An Enthralling and Terrifying History of the Nuclear Meltdown at Chernobyl
(NYTimes)
Revised UK Code of Practice for testing Automated Vehicles (Martyn Thomas)
RISKS 31.07 Wednesday 20 February 2019
The Instant, Custom, Connected Future of Medical Devices (Janet Morrissey)
Disinformation and fake news: House of Commons DCMS Committee
(Brian Randell)
Psy-Group interferes with local California election (joh hight)
El Chapo's encryption defeated by turning his IT consultant (Bruce Schneier)
Russia to Temporarily Disconnect from Internet as Part of Cyberdefense Test
(RBC)
A Lime scooter accident left Ashanti Jordan in a vegetative state.
Now her mother is suing on her behalf. (WashPost)
Google: 'Nest' microphone was on 'double-secret probation' (Nick Bastone)
Seatback cameras on Singapore Airlines (Henry Baker)
These Android Apps Have Been Tracking You, Even When You Say Stop
(Laura Hautala)
Out of the Way, Human! Delivery Robots Want a Share of Your Sidewalk
(Scientific American)
Call to Ban Killer Robots in Wars (Pallab Ghosh)
Vision system for autonomous vehicles watches not just where pedestrians
walk, but how (techcrunch.com)
Machine learning causing a "science crisis"? (Mark Thorson, Richard Stein)
AAAS: Machine learning 'causing science crisis' (bbc.com)
An Elon Musk-backed AI firm is keeping a text generating tool under
wraps amid fears it's too dangerous (Business Insider via Nancy Leveson)
OpenAI built a text generator so good it's considered too dangerous
to release (techcrunch via Richard Stein)
Risks of automatic text generation (Mark Thorson)
This posting could be completely fake ... (Rob Slade)
Mailing list risks (Gabe Goldberg)
Navigation apps sending heavy traffic through quiet Alexandria neighborhoods
(Alexandria Virginia News)
What is a Smart Microwave? (Gabe Goldberg)
Backup. Backup, backup, backup. (Rob Slade)
Re: `Zero Trust' AI: Too Much of a Good Thing is Wonderful (Amos Shapir)
Re: A Machine Gets High Marks for Diagnosing Sick Children (Wol,
Andrew Duane)
Re: Crypto CEO dies holding only passwords that can unlock millions
in customer coins (Wendy M. Grossman)
Re: How does NYPD surveill thee? Let me count the Waze (Amos Shapir)
RISKS 31.08 Tuesday 26 February 2019
Lion Air Crash Fixes Delayed (WSJ)
Setback for Israeli lunar lander as computer glitch prevents scheduled
maneuver (The Times of Israel)
NHTSA's Implausible Safety Claim for Tesla's Autosteer Driver
Assistance System (R.A.Whitfield)
Electronic Medical Records make it easier to peddle patient data
(Kelly Bert Manning)
Quantum Computers: Here's What One Looks Like (Fortune)
The Kalashnikov assault rifle changed the world. Now there's a Kalashnikov
drone. (SanFranciscoChron)
U.S. Cyber Command operation disrupted Internet access of Russian
troll factory on day of 2018 midterms (WashPost)
ToRPEDO Privacy Attack on 4G/5G Networks Affects All U.S. Carriers
(ThreatPost)
Rabbit Holes that, by simply choosing not to do Internet video, we have
Not Gone Down (NYTimes)
... but we "never activated the cameras" (Mark Thorson)
The Auto Show of the Future is Already Here (NYTimes)
Self-Driving Cars Might Kill Auto Insurance as We Know It (Bloomberg)
AI's Big Challenge (Scientific American)
Artificial intelligence debate raises more questions than answers
(Japan Times)
Techplomacy (CBC)
"Microsoft Edge lets Facebook run Flash code behind users' backs"
(Catalin Cimpanu)
Nike's bug-ridden self-tying shoe app (BBC)
SET lives! -- Maybe ... (Rob Slade)
Cybercriminals Have a New Favorite Hack: Formjacking (Fortune)
Re: Vision system for autonomous vehicles watches not just where
pedestrians walk, but how (Amos Shapir)
Re: 'Zero Trust' AI: Too Much of a Good Thing is Wonderful (Henry Baker)
Experts warn of growing health risk from plastic (Express)
RISKS 31.09 Sunday 3 March 2019
Anticipating a deluge of false-positive medical tests
(Kenneth D. Mandl and Arjun K. Manrai)
Cryptocurrency wallet caught sending user passwords to Google's spelling
checker (ZDNet)
Fake Reviews: $168 buys 600+ five-star ratings online... (NBC)
Robocalls Routed via Virtue Signaling Network? (NYTimes)
Oscars: IBM & Surveillance AI: Clean Hands? (Henry Baker)
"Robot love? An app to schedule sex? What is wrong with you?"
(Chris Matyszczyk)
Robot workers can't go on strike but they can go up in flames
(Straits Times)
Who's making money from your DNA? (bbc.com)
The secret lives of Facebook moderators in America (The Verge)
Subaru plans recall: Perfume could cause your car to malfunction
(Chicko Stuneoka)
iPhone hacking tool being sold on eBay -- but not wiped (Forbes)
Boeing Unveils Australian-Developed Unmanned Jet (The Guardian)
Roscoe Bartlett: The Congressman Who Went Off the Grid (Politico)
Your iPhone Has A Hidden List of Every Location You've Been (Gabe Goldberg)
Re: Plastic and other threats to the planet (Martyn Thomas)
Re: AI's continuing Big Challenge (Tom Gardner)
RISKS 31.10 Thursday 7 March 2019
All Intel chips open to new Spoiler non-Spectre attack: Don't expect a
quick fix. (ZDNet)
The rise of the online ticketing bots (David Strom)
DeepFake litigation (Fortune)
Fake paid product reviews on Amazon challenged (Consumer Health)
Siri, What Should I Eat? (Cell.com)
Goldman Sachs asks in biotech research report: Is curing patients
a sustainable business model? (Chuck Petras)
GDPR: Victim of Sheryl Sandberg's "Lean On" Feminism (Henry Baker)
Phishing Scams: Is Your Financial Institution Helping Cyberthieves?
(Washington Consumers' Checkbook)
Once hailed as unhackable, blockchains are now getting hacked
(MIT Technology Review)
Uproar Over Facebook 2FA Privacy Violation (Richi Jennings)
Prosecutors Don't Plan to Charge Uber in Self-Driving Car's Fatal Accident
(NYTimes)
Outdoor Tech -- Skiing *and* privacy? (Rob Slade)
PDF Signatures (Rob Slade)
Alphabet's Security Start-Up Wants to Offer History Lessons
(Nicole Perlroth)
Yet another Facebook privacy leak (Peter Houppermans)
Re: Robocalls Routed via Virtue Signaling Network? (John Levine)
Re: Oscars: IBM & Surveillance AI: Clean Hands? (Amos Shapir)
RISKS 31.11 Tuesday 12 March 2019
737 MAX 8 to get software upgrade (CBC)
2 Billion Unencrypted Records Leaked In Marketing Data Breach
-- What Happened And What To Do Next (Forbes)
Triton is the world's most murderous malware, and it's spreading
(TechReview)
Navy, Industry Partners Are 'Under Cybersiege' by Chinese Hackers,
Review Asserts (WSJ)
Mystery Database of 1.8 Million Women in China (Gizmodo)
America's Undersea Battle With China for Control of the Global
Internet Grid (WSJ)
Physician Phishing (JAMA)
New Zealand Farmers Have New Tool for Herding Sheep: Drones That
Bark Like Dogs (Peter Holley)
Hackers breach admissions files at three private colleges (WashPost)
Internet of Things Cybersecurity Improvement Act of 2019 (scribd.com)
Revolut, Telcos and phone numbers as unique IDs (Toby Douglass)
How Kids Are Using Google Docs to Bully Each Other (Offspring)
Man told he's going to die by doctor on video-link robot (bbc.com)
Drowning detection system to be set up at 28 public pools
(Straits Times)
First print something bad, then cover it up with something good
(Dan Jacobson)
U.S. DST change proposals and WWVB radio clocks (Rich Wales)
Hackers can get into Macs with sneaky tricks, Crowdstrike experts say
(CNET)
A woman was trying to take a selfie with a jaguar when it attacked her,
authorities say (WashPost)
Bumble Bee Foods Is Tracking Tuna on a Blockchain (Fortune)
More on the SwissPost hacking challenge (PGN)
Anticipating a deluge of false...cat belling, revisited? (Mark Norem)
Re: Robocalls Routed via Virtue Signaling Network? (Kelly Bert Manning)
Re: but we never activated the cameras (Gabe Goldberg)
RISKS 31.12 Monday 18 March 2019
The Rapid Decline Of The Natural World Is A Crisis Even Bigger Than
Climate Change (HuffPost via Geoff Goodfellow)
Boeing promised pilots a 737 software fix last year, but they're
still waiting (NYTimes)
American Airlines takes jets out of service, cancels flights due to
overhead-bin problem (CNBC)
How Artificial Intelligence Could Transform Medicine (NYTimes)
Cancer Patients Are Getting Robotic Surgery; there's no evidence
it's better (NYTimes)
Toyota patents system to dispense tear gas on car thieves (Autoblog)
World of hurt: GoDaddy, Apple, and Google misissue >1M certificates
(Ars Technica)
When your IoT goes dark: Why every device must be open source and multicloud
(ZDNet)
Companies are leaking sensitive files via Box accounts (Catalin Cimpanu)
Women face greater threat from job automation than men: Study
(The Straits Times)
"Security Holes Found in Big Brand Car Alarms" (Dan Simmons)
A slew of CEOs charged in alleged college entrance cheating scam
(Monty Solomon)
Hashing to prevent spread of hate videos? (CNN)
Tech's Moral Void (CBC)
U.S. Campaign to Ban Huawei Overseas Stumbles as Allies Resist (NYTimes)
App notification for a stranger on my phone (Steven Klein)
Re: U.S. DST change proposals and WWVB radio clocks (John Levine)
RISKS 31.13 Thursday 21 March 2019
German Air Traffic Control with software error (Tagesschau)
Doomed Jets Lacked 2 Safety Features That Boeing Sold as Extras (NYTimes)
737 Max issues, breakdown and analysis (Bob Poortinga)
How a 50-year-old design came back to haunt Boeing with its troubled
737 Max jet (Los Angeles Times)
Boeing 737 Max: Software patches can only do so much (ZDNet)
Millions of Facebook passwords exposed internally (BBC News)
Accidentally exposing the data of 230M people (WiReD)
Locking more than the doors as cars become computers on wheels (NYTimes)
The Attack That Broke the Net's Safety Net (NYTimes)
Inside YouTube's struggles to shut down video of the New Zealand
shooting -- and the humans who outsmarted its systems (WashPost)
Fewer than 200 people watched the New Zealand massacre live.
A hateful group helped it reach millions. (WashPost)
Aadhaar: unique numbers for all residents in India (Reetika Khera)
Spy cameras in Seoul secretly live-streamed 1,600 hotel guests for
subscribers. Then police caught on. (WashPost)
Ransomware Fighter Lives in Fear for his Life (Security Boulevard)
Why The Promise Of Electronic Health Records Has Gone Unfulfilled (npr.org)
How to Check Your Hotel Room for Hidden Cameras (ThePointsGuy)
Browser also fills in bad guy address with good guy address (Dan Jacobson)
DNA and a Coincidence Lead to Arrest in 1999 Double (NYTimes)
Is Computer Code a Foreign Language? (William Egginton)
Lookin' in my back door (Henry Baker)
ESPN Slips Up, Revealing the NCAA Women's Bracket Four Hours Early
(NYTimes)
Re: Is curing patients, a sustainable business model? (Martin Ward)
Re: The Rapid Decline Of The Natural World ... (Jurek)
Re: Security Holes Found in Big Brand Car Alarms (Amos Shapir)
RISKS 31.14 Tuesday 26 March 2019
Take Another Little Peek at my Heart (Dan Goodin)
Warnings of a Dark Side to AI in Health Care (NYTimes)
These 11 Weird Smart Home Devices Can Change Your Life (Lifewire)
Baristas beware: A robot that makes gourmet cups of coffee has
arrived (The Washington Post)
Two Singapore consortia to develop/trial driverless road cleaning
vehicles (The Straits Times)
Hackers Hijacked ASUS Software Updates to Install Backdoors on
Thousands of Computers (motherboard)
iOS Safari Flaw Allows Deceptive News Headlines in Messages (Intego)
These Portraits Were Made by AI: None of These People Exist (The Verge)
The Spring That Prematurely Ended a Magical Summer (Now I Know)
Detroit Downloads Tesla's Software Strategy (WSJ)
Russia wants to cut itself off from the global Internet.
Here's what that really means. (MIT Tech Review)
Tweet by Soldier of FORTRAN on Twitter (Drew Dean)
Jeep stuck in Whately woods after GPS gives wrong directions (GazetteNet)
How Google's Bad Data Wiped a Neighborhood off the Map (Medium)
The Internet's Phone Book Is Broken (Medium)
Lithuanian Man Pleads Guilty to $100 Million Fraud Against Google, Facebook
(SWJ)
EU passes their nightmare copyright legislation (Lauren Weinstein)
One dead battery + app = two dead batteries (Dan Jacobson)
Online voting, again (Fortune)
Tech subjects and the media (Rob Slade)
Apple Life+ (Rob Slade)
Re: Inside YouTube's struggles to shut down video of the New Zealand
shooting -- and the humans who outsmarted its systems (Arthur Flatau)
Re: How a 50-year-old design came back... (Craig Burton)
Unproven declarations about healthcare (Paul Black)
Re: Is curing patients, a sustainable business model? (Toby Douglass)
The Newcastle RISKS SSL cert expired (Toby Douglass)
RISKS 31.15 Monday 1 April 2019
Might this be the last vestige of the British Empire? (PGN)
MIT To Require 'Turing Test' for Admissions (Henry Baker)
Russian interference alleged in mayor's election (Mark Thorson)
ThickerThanWater[dot]com (Richard Stein)
Electric seaplanes? (Rob Stein)
British Airways flight lands 525 miles away from destination (USA Today)
Computer outage led to flight delays for some U.S. biggest airlines (Vox)
HTTPS Isn't Always As Secure As It Seems (WiReD)
Twitter Network Uses Fake Accounts to Promote Netanyahu (NYTimes)
Lawmakers Scrutinize Timeline for Boeing 737 MAX Software Fix (WSJ)
Road safety: UK set to adopt vehicle speed limiters (bbc.com)
Russia Regularly Spoofs Regional GPS (DarkReading)
Smart talking: are our devices threatening our privacy? (The Guardian)
RISKS 31.16 Saturday 6 April 2019
DoD AI's to monitor "Top Secret" employees (Defense One)
WikiLeaks: "Don't Be Evil!" was Google's "Warrant Canary" (Henry Baker)
Half of Industrial Control System Networks have Faced Cyberattacks,
Say Security Researchers (ZDNet)
Hackers reveal how to trick a Tesla into steering towards oncoming traffic
(Charlie Osborne)
Tesla cars keep more data than you think, including this video of a
crash that totaled a Model 3 (FTC via Geoff Goodfellow)
What AI Can Tell From Listening to You (WSJ)
Can we stop AI outsmarting humanity? (The Guardian)
AI is flying drones -- very, very slowly (NYTimes)
New Climate Books Stress We Are Already Far Down The Road To A
Different Earth (TPR)
Are We Ready For An Implant That Can Change Our Moods? (npr.org)
Researchers Find Google Play Store Apps Were Actually Government Malware
(Motherboard)
Office Depot Pays $25 Million To Settle Deceptive Tech Support
Lawsuit (Bleeping Computer)
Why Pedestrian Deaths Are At A 30-Year High (NPR)
More on the RISKS.ORG Newcastle certificate issue (Lindsay Marshall)
Insurers Creating a Consumer Ratings Service for Cybersecurity Industry
(WSJ)
Another Gigantic Leak (PGN)
Nokia phones caught mysteriously sending data to Chinese servers (BGR)
IBM + Flickr + facial recognition + privacy (Fortune via Gabe Goldberg)
Brits: Huawei's code is a steaming pile... (Henry Baker)
More on the Swiss electronic voting experiment (Post -- Swiss)
'The biggest, strangest problem I could find to study' (bbc.com)
Black-box data shows anti-stalling feature engaged in Ethiopia
crash (WashPost)
The emerging Boeing 737 MAX scandal, explained (Vox)
Re: How a 50-year-old design came back... (David Brodbeck)
Re: How Google's Bad Data Wiped a Neighborhood off the Map (Dan Jacobson)
Re: Tweet by Soldier of FORTRAN on Twitter (Dan Jacobson)
Re: Unproven declarations about healthcare (Martin Ward, Wol)
Re: Is curing patients, a sustainable business model? (Dmitri Maziuk)
According to this bank, password managers are bad (Sheldon Sheps)
"Privacy and Security Across Borders" (Jen Daskel via Marc Rotenberg)
RISKS 31.17 Tuesday 9 April 2019
Additional software problem detected in Boeing 737 Max flight control
system, officials say (WashPost)
Not Just Airplanes: Why The Government Often Lets Industry Regulate Itself
(npr.org)
Makers of self-driving cars should study Boeing crashes (The Straits Times)
Major US airlines hit by delays after glitch at vendor (The Boston Globe)
Simulated Engine Failure Led To Crash (Russ Niles)
Eyes on the Road: Your Car Is Watching (NYTimes)
Covert data-scraping on watch as EU DPA lays down 'radical' GDPR red-line
Hospital viruses: Fake cancerous nodes in CT scans, created by malware,
trick radiologists (WashPost)
The Newest AI-Enabled Weapon: Deep-Faking Photos of the Earth? (Defense One)
Backdoor vulnerability in open-source tool exposes thousands of apps to
remote code execution (Cyberscoope)
Security analyst finds fake cell carrier apps are tracking iPhone location
and listening in on phone calls (9to5 Mac)
UK to keep social networks in check with Internet safety regulator (CNET)
Should cybersecurity be more chameleon, less rhino? (bbc.com)
This is not how the secret service should examine a USB stick (TechCrunch)
Report: Official forgot secret arms-deal file at airport (Times of Israel)
Hospital says patient info exposed after phishing incident (Boston Globe)
DHS tech manager admits stealing data on 150,000 internal investigations,
nearly 250,000 workers (WashPost)
Online credit-card skimmer (WarbyParker)
The engineering of living organisms could soon start changing everything
(The Economist)
Social media are divisive (WSN/NBC poll)
The future of news is conversation in small groups with trusted voices
(Chikai Ohazama)
Why It's So Easy for a Bounty Hunter to Find You (NYTimes)
Identity Theft -- Act Now to Protect Yourself (Kiplinger)
Re: Are We Ready For An Implant That Can Change Our Moods? (Wol)
Re: How a 50-year-old design came back (Wol)
Re: New Climate Books Stress We Are Already Far Down The Road To A
Different Earth (Wol, Amos Shapir)
Re: Researchers Find Google Play Store Apps Were Actually Government Malware
Amos Shapir)
Re: Huawei's code is a steaming pile... (Amos Shapir)
Re: According to this bank, password managers are bad (Andrew Duane)
Re: Is curing patients, a sustainable business model? (Toby Douglass,
Chris Drewe)
RISKS 31.18 Thursday 11 April 2019
NOAA Monitoring Stations Are Off-Line from a GPS Y2K Moment
(EOS via danny burstein)
That GPS rollover that everyone poo-pooed? Well, NYC... (NYTimes)
Somebody forgot to upgrade: Flights delayed, canceled by GPS rollover
(Ars Technica)
24 Charged in $1.2 Billion Medicare Scheme, U.S. Says. (NYTimes)
Israeli election problem (JPost via PGN-ed)
EU Tells Internet Archive That Much Of Its Site Is 'Terrorist Content'
(TechDirt)
Amazon' Alexa isn't just AI; thousands of humans are listening (Bloomberg)
Not a burglar after all (NPR via Mark Brader)
Computers Turn an Ear on New York City (Scientific American)
The language of InfoSec (Rob Slade)
New wire-fraud scam targets your direct deposit info, reroutes your paycheck
(CNBC)
Verizon issues patch for vulnerabilities on millions of Fios routers (CNET)
Assange arrested and charged after Ecuador rescinds asylum (WashPost)
Re: Are We Ready For An Implant That Can Change Our Moods? (Richard Stein)
RISKS 31.19 Saturday 20 April 2019
AA 300 JFK-LAX incident (CBS via PGN)
1983 Soviet nuclear false alarm incident (Dan Jacobson)
Contractor identifies new problems with phase 2 of the Silver Line
(WashPost)
"Fallible machines, fallible humans" (The Straits Times and Financial Times)
A computerized YouTube fact-checking tool goes very wrong: In flaming Notre
Dame, it somehow sees 9/11 tragedy (WashPost)
Election systems in 50 states were targeted in 2016 (DHS/FBI via
Ars Technica)
Mysterious operative haunted Kaspersky critics (AP)
Samsung's $2,000 folding phone is breaking for some users after two days
(CNBC)
Cyberspies Hijacked the Internet Domains of Entire Countries (WiReD)
Man Bites Dog Dept: MSFT supports human rights!! (Reuters)
Microsoft Email Hack Shows the Lurking Danger of Customer Support (WiReD)
As China Hacked, U.S. Businesses Turned A Blind Eye (npr.org)
Wipro customers hacked, says Krebs. Nothing to see here, says Wipro
(TechBeacon)
Facebook has admitted to unintentionally uploading the address books of 1.5
million users without consent (The Guardian)
Utah Bans Police From Searching Digital Data Without A Warrant,
Closes Fourth Amendment Loophole (Forbes)
AppleWatch or AnkleMonitor: You Decide (Henry Baker)
Fintech fiddles as home burns: 97% of apps lack basic security (TechBeacon)
RISKS 31.20 Tuesday 23 April 2019
A Marriage Made in Hell": The growing partnership between Russia's
government and cybercriminals (CBS)
The Mueller Report includes lots of information on Russian election
interference (PGN)
Sometimes Bitcoin makes you easier to trace ... (CNN)
How the Boeing 737 Max Disaster Looks to a Software Developer
(IEEE Spectrum)
A video showed a parked Tesla Model S exploding in Shanghai (qz.com)
Roman Mars Mazda virus (Jeremy Epstein)
Nokia 9 buggy update lets anyone bypass fingerprint scanner with a
pack of gum (Catalin Cimpanu)
How sovereign citizens helped swindle $1 billion from the government
they disavow (NYTimes)
How *not* to kill a news cycle ... (Rob Slade)
"Can Facebook be trusted with a virtual assistant?" (Computerworld)
The trouble with tech unicorns Tech's new stars have it all --
Silicon Valley Came to Kansas Schools. That Started a Rebellion (NYTimes)
Domain transfer at gunpoint ... (CNN via Rob Slade)
Battle for .amazon Domain Pits Retailer Against South American Nations
(E-Week)
Should AI be used to catch shoplifters? (cnn.com)
Facebook Uses Mueller Report to Distract from Security Breach (The Register)
Facial Recognition in NYC (NYTimes)
An Interesting Juxtaposition in RISKS 31.18 (Gene Wirchenko)
RISKS 31.21 Monday 29 April 2019
Russian hackers were in position to alter Florida voter rolls (Rubio))
National Security Council cyberchief: Criminals are closing the gap with
nation-state hackers (Cyberscoop)
Cryptocurrencies shed $10 billion in an hour on worries over 'stablecoin'
tether (CNBC)
City of Chicago Almost Lost More Than $1 Million In Phishing Scam (CBS)
Invisible Malware Is Here and Your Security Software Can't Catch It (PCMag)
Using side-channel attacks to detect malware? (Science Daily)
Man guilty for using "USB Killer" against college computers (DoJ)
A 'Blockchain Bandit' Is Guessing Private Keys and Scoring Millions (WiReD)
Japan Has a New Emperor. Now It Needs a Software Update. (NYTimes)
Japan develops app that yells 'stop' to scare off molesters
(The Straits Times)
NSA wants to stop drinking from the fire hose (Naked Security)
Don't get phished (The Straits Times)
"Why I've learned to hate my Apple Watch" (Evan Schuman)
Virtual dress-up website settles with the FTC following data breach
(The Verge)
Docker Hub Breached, Impacting 190,000 Accounts (E-Week)
Apple Cracks Down on Apps That Fight iPhone Addiction (NYTimes)
Marathon training risk over fitness trackers that 'can't be trusted' to
measure distance (Telegraph.co.uk)
In Australia, hacked Lime scooters spew racism and profanity (WashPost)
The invisibility pic ... (Rob Slade)
Travis in IEEE Spectrum on Boeing 737 MAX MCAS software (Peter B Ladkin)
Re: How the Boeing 737 Max Disaster Looks to a Software Developer
(Dan Jacobson, Thomas Koenig)
Re: Is curing patients, a sustainable business model? (Martin Ward,
Martin Ward)
Re: Should AI be used to catch shoplifters? (Antonomasia)
Re: How *not* to kill a news cycle ... (Dan Pritts)
Re: Battle for .amazon Domain Pits Retailer Against South American
(Dan Jacobson)
Re: A video showed a parked Tesla Model S exploding in Shanghai
Re: Huawei's code is a steaming pile... (Richard Stein, Martin Ward)
Re: EU Tells Internet Archive That Much Of Its Site Is 'Terrorist Content'
(TechDirt)
Re: An Interesting Juxtaposition (Wol)
RISKS 31.22 Saturday 4 May 2019
World's Top Internet User Taps Fake News Busters for Elections
(Bloomberg)
Wells Fargo and Post Office Horizon (Lindsay Marshall)
Database Exposes Medical Info, PII Data of 137k People in U.S.
(Bleeping Computer)
Ladders Data Leak: Over 13M User Records Exposed Due To Cloud
Misconfiguration (IBTimes)
How angry pilots got the Navy to stop dismissing UFO sightings; UFO
information not expected to go to general public, Navy says (Wash Post)
This $1,650 pill will tell your doctors whether you've taken it.
Is it the future of medicine? (WashPost)
"Telecom giants battle bill which bans Internet service throttling for
firefighters in emergencies" (ZDNet)
UK Police Have a Message for Crime Victims- Hand Over Your Private Data
(NYTimes)
NSA Reports 75% Increase in Unmasking U.S. Identities... (WSJ)
New Documents Reveal DHS Asserting Broad, Unconstitutional Authority to
Search Travelers' Phones and Laptops (EFF)
Zero-day attackers deliver a double dose of ransomware -- no clicking
required? (Ars Technica)
Electronic Health Records and Doctor Burnout (Scientific American)
Hertz, Accenture, and the blame game (Browser London)
Monster screwup on dividends (Korea Herald)
NSA-inspired vulnerability found in Huawei laptops (Bruce Schneier)
Vodafone found hidden backdoors in Huawei equipment (Bloomberg)
Vodafone denies Huawei Italy security risk (BBC)
Re: Huawei's code is a steaming pile... (Keith Thompson, Dmitri Maziuk,
phil colbourn)
Re: Should AI be used to catch shoplifters? (Richard Stein)
Re: A video showed a parked Tesla Model S exploding in Shanghai
(Roger Bell-West)
Re: A 'Blockchain Bandit' Is Guessing Private Keys and Scoring Millions
(Dan Jacobson)
Re: An Interesting Juxtaposition (Gene Wirchenko)
Re: Gregory Travis' article on the 737 MAX (Gregory Travis)
Digital health ... (Rob Slade)
Re: Is curing patients, a sustainable business model? (Toby Douglass)
"Bernie Sanders wants you to expose your friends, Facebook-style" (ZDNet)
RISKS 31.23 Thursday 9 May 2019
80,000 Deaths. 2 Million Injuries. It's Time for a Reckoning on Medical
Devices (NYTimes)
`Deep fake' videos that can make anyone say anything worry
U.S. intelligence agencies (Fox5NY)
Mystery Frequency Disrupted Car Fobs in an Ohio City, and Now
Residents Know Why (PGN-ed)
*Really* active defense ... (The Hacker News via Rob Slade)
How a Google Street View image of your house predicts your
risk of a car accident (MIT Technology Review)
Another one bites the dust: Why consumer robotics companies keep folding
(Robotics)
Risks of FAX (Hackaday)
Cosmos, Quantum and Consciousness: Is Science Doomed to Leave Some
Questions Unanswered? (Scientific American)
The Fight for the Right to Drive (Suzanne Johnson, Richard Stein)
Massachusetts judge granted warrant to unlock suspects iPhone with
Touch ID (Apple Insider)
Forgers forcing $12.3 trillion trade financing sector to go
digital: Experts (The Straits Times)
Malvertiser behind 100+ million bad ads arrested and extradited to
the U.S. (Catalin Cimpanu)
A doorbell company owned by Amazon wants to start producing `crime news',
and it'll definitely end well (Nieman Lab)
How the UK Won't Keep Porn Away From Teens (NYTimes)
"Unhackable" CPU? (Rob Slade)
Too proud of my house number (Dan Jacobson)
How to Quickly Disable Fingerprint and Facial Recognition on Your Phone
(LifeHacker)
Re: Post Office Horizon (Attila the Hun)
Re: A 'Blockchain Bandit' Is Guessing Private Keys and Scoring
(Peter Houppermans)
Re: A video showed a parked Tesla Model S exploding in Shanghai (Wol)
Re: Electronic Health Records... (Craig Burton)
Re: Is curing patients, a sustainable business model? (Sparse Matrix)
Re: Gregory Travis's article on the 737 MAX (Ladkin, Travis)
RISKS 31.24 Tuesday 14 May 2019
Silicon Valley makes everything worse: Four industries that Big Tech has
ruined (Salon)
"Do we need 6G wireless already? 5G engineers debate" (ZDNet via GeneW)
"Over 25,000 smart Linksys routers are leaking sensitive data"
(Charlie Osborne)
The Future Is Here, and It Features Hackers Getting Bombed
(Foreign Policy)
Ford to expand medical transport service (Detroit News)
Australian $50 note typo: spelling mistake printed 46 million times
(The Guardian)
SHA-1 collision attacks are now actually practical and a looming danger
(Catalin Cimpanu)
TOCTOU Attacks Against BootGuard (PGN via sundry sources)
Sharp increase in ransomware attacks on Swiss SMEs (GovCert via
Peter Houppermans)
AI Can Now Defend Itself Against Malicious Messages Hidden in Speech
(Matthew Hutson)
Singlish also can, for this AI call system (The Straits Times)
Special issue: The global competition for AI dominance
(Bulletin of the Atomic Scientists: Vol 75, No 3)
Who[m] to Sue When a Robot Loses Your Fortune (Bloomberg.com)
What Sony's robot dog teaches us about biometric data privacy (CNET)
New e-voting support system by Microsoft (via Diego Latella)
Boeing Knew About Safety-Alert Problem for a Year Before Telling FAA,
Airlines (WSJ)
Unless you want your payment card data skimmed, avoid these commerce sites
(Ars Technica)
Hey, Alexa: Stop recording me (WashPost)
"RobbinHood" ransomware takes down Baltimore City government networks
(Ars Technica)
Buying a replacement iPhone battery? Be careful you don't get ripped off
(ZDNet)
Software update crashes police ankle monitors in the Netherlands
(Catalin Cimpanu)
Tenants win as settlement orders landlords give physical keys over
smart locks (CNET)
Re: The Fight for the Right to Drive (Dan Jacobson)
Re: Drug names (Robert R. Fenichel)
RISKS 31.25 Friday 17 May 2019
Vote-by-phone tech trend is scaring the life out of security experts
(SDUnionTrib)
FBI can't say with certainty that Florida voter databases not affected by
2016 hack (Politico)
U.S. Senate election security bill requiring paper ballots (Maggie Miller)
WhatsApp flaw let hackers install spyware on cellphones when people
made or got calls (CBS)
Facebook busts Israel-based 'fake news' campaign to disrupt elections
Israeli TV Eurovision webcast hacked with fake missile alert (The Guardian)
CRYPTO-GRAM, May 15, 2019 (Bruce Schneier PGN-ed)
San Francisco Bans Facial Recognition Technology (NYTimes)
Britain_risks_heading_to_US_levels_of_inequality, warns_top_economist
(The Guardian)
Poll says that 56% of Americans don't want kids taught Arabic numerals.
We have some bad news. (Marissa Higgins)
New speculative execution bug leaks data from Intel chips' internal
buffers (Ars Technica)
GozNym cyber-crime gang which stole millions busted (BBC.com)
Ransomware Is Putting a Damper on Our Smart City Future (Gizmodo)
Re: Gregory Travis's article on the 737 MAX (Chris Drewe)
Re: Healthcare spending (Martin Ward)
Re: Is curing patients a sustainable business model? (Martin Ward)
RISKS 31.26 Saturday 25 May 2019
The Bomb Detector That Was a Dud (Now I Know)
Tesla fires could dampen electric car sales as industry ramps up production,
auto analysts say (CNBC)
Whom to Sue When a Robot Loses Your Fortune (Bloomberg)
Bluetooth's Complexity Has Become a Security Risk (WiReD)
Equifax demise (CNBC)
Warning over using augmented reality in precision tasks (bbc.com)
"Bestmixer seized by police for washing $200 million in tainted
cryptocurrency clean" (ZDNet)
Boeing 737 Max Simulators Are in High Demand. They Are Flawed. (NYTimes)
First phones, now drones ... (Lite)
A Chip in My Hand Unlocks My House. Why Does That Scare People? (NYTimes)
Amnesty International sues NSO Group (Naked Security)
Facebook to create new cryptocurrency (BBC)
RBC customer out of pocket after fraud: What you need to know if you
E-transfer money (CBC News)
RealTalk speech synthesis (Medium)
OECD AI Principles (Janosch Delcker)
DWU heptathlon athlete ineligible for nationals due to email error
(Keloland)
Re: Martin Ward's post in RISKS-31.25 (Radoslaw Moszczynski, Amos Shapir,
Dimitri Maziuk)
Re: "Too proud of my house number" (Gene Wirchenko)
RISKS 31.27 Friday 31 May 2019
Russia hacked us: We made it far too easy -- and still do (Jeremy Epstein)
On a Pacific island, a nuclear dome left behind by the US begins to crack
(The Times of Israel)
Passengers stranded as Air Canada technical outage stymies airport
operations, check-ins (CBC)
GM Gives All Its Vehicles a New Soul (WiReD)
NSA's EternalBlue: Mustard Gas for the 21st Century (NYTimes)
Fake cryptocurrency apps on Google Play try to profit on bitcoin price surge
(Ars Technica)
Huawei Ban Threatens Wireless Service in Rural Areas (NYTimes)
False assumptions by programmers (John Harper)
Your smartphone is not listening to you, but your 'free' apps are
definitely spying on you
'Dr. Frankenstein Of Teslas' Aims To Fill Electric Car Giant's
Repair Void (Here and Now)
Apple vs. Apple (WashPost)
"Employees not the target of encryption laws: Home Affairs" (ZDNet)
New York tenants fight as landlords embrace facial recognition
cameras (The Guardian)
Snapchat internal tools abused to spy on users and pillage data (ZDNet)
737 MAX: Boeing dodges responsibility, with help from the FAA
(Chuck Karish)
Re: "It's time to press delete on Europe's failed data protection
(Chris Drew)
Re: OECD AI Principles (Amos Shapir)
Re: Martin Ward's post in RISKS-31.25 (Martin Ward)
Re: Facebook to create new cryptocurrency (Matthew Kruk)
Re: RBC customer out of pocket after fraud (Keith Medcalf, Gabe Goldberg,
Jose Maria Mateos)
I have no sympathy *at all* ... (Rob Slade)
RISKS 31.28 Friday 7 June 2019
SpaceX's Starlink Could Change The Night Sky Forever, And Astronomers Are
Not Happy (Forbes.com)
Quest Diagnostics Says Up to 12 Million Patients May Have Had Financial,
Medical, Personal Information Breached (NBC-NY)
885 Million Records Exposed Online- Bank Transactions, Social Security
Numbers, and More (Topic Box)
Networking issues take down Google Cloud in parts of the U.S. and Europe,
YouTube and Snspchat also affected (GeekWire)
New RCE vulnerability impacts nearly half of the Internet's email servers
(Catalin Cimpanu)
Millions of machines affected by command execution flaw in Exim mail server
(Ars Technica)
With Technology, Institutions Have Made 'Most Effective Means of Social
Control in the History of Our Species' (Edward Snowden)
Schools Are Deploying Massive Digital Surveillance Systems. The Results Are
Alarming (EdWeek)
Warnings of world-wide worm attacks are the real deal, new exploit shows
(Ars Technica)
Microsoft deprecates passwords (Ars Technica)
US Army testing jam-resistant GPS in Europe (Joe Gould)
Flying Robotaxis Prepare for Takeoff (Bloomberg)
The richest 10% of households now represent 70% of all U.S. wealth
(Market Watch)
GitHub shocks top developer: Access to 5 years' work inexplicably blocked
(Liam Tung)
Former Head of Pentagon's Secret UFO Program Has Some Strange Stories to
Tell (Live Science)
Deaths on Mt. Everest; Is social media partly to blame? (The Atlantic)
U.S. Visa Applicants Required To Turn Over Social Media (The Hill)
One way to tackle the nuclear waste prob: redefine the labels
(danny burstein)
FCC Affirms Robocall Blocking By Default to Protect Consumers (FCC)
Privacy Fears Split German Government on Use of Alexa Data as Evidence
(Fortune)
Apple's 'Find My' Feature Uses Some Very Clever Cryptography (WiReD)
'Sign In With Apple' Protects You in Ways Google and Facebook Don't (WiReD)
NSA warns Microsoft Windows users to update systems to protect against
cyber-vulnerability (The Hill)
US visas now need five years of your social media ... (Rob Slade)
What He Learned Trying To Secure Congressional Campaigns (Idle Words)
Trump urges customers to drop AT&T to punish CNN over its coverage of him
(WashPost)
How Limbic Capitalism Preys on Our Addicted Brains (Quillette)
This ID Scanner Company is Collecting Sensitive Data on Millions of
Bar-goers (Medium)
VR Systems remotely accessed Durham county computer before 2016 election
(Kim Zetter)
Election Rules Are an Obstacle to Cybersecurity of Presidential Campaigns
(NYTimes)
More on Mueller and Interference (Time)
Phishing calls (Rob Slade)
Boeing Built Deadly Assumptions Into 737 Max, Blind to a Late (NYTimes)
Re: 737 MAX AoA Indications (Ladkin, Karish, Ladkin)
Re: 737 MAX: Boeing dodges responsibility, with help from the FAA (Karish)
Re: GM Gives All Its Vehicles a New Soul (Jared Gottlieb)
RISKS 31.29 Tuesday 11 June 2019
U.S. Customs and Border Protection says photos of travelers into and out of
the country were recently taken in a data breach (WashPost)
How AI Could Be Weaponized to Spread Disinformation (NYTimes)
Major HSM vulnerabilities impact banks, cloud providers, governments (ZDNet)
Hawaiian Airlines' software glitch blamed for flight delays, cancellations
(Hawaii News Now)
GPS Degraded Across Much of U.S., ADS-B Impacted (rntfnd)
The Catch-22 that broke the Internet (Brian Barrett)
For two hours, a large chunk of European mobile traffic was rerouted through
China (Catalin Cimpanu)
Spam, Anti-Spam, Data, and Drugs (Paul Vixie)
Amazon's Home Surveillance Company Is Putting Suspected Petty Thieves in its
Advertisements (Vice)
Project ExplAIn - interim report Rob Slade)
Facial recognition in schools: keep them safe? (NYTimes)
Database of 3D objects stolen (The Register)
Careless bitcoin blackmail (Jose Maria Mateos)
Google has warned U.S. of security risks from banning Huawei (ISC2)
Some Real News About Fake News (David A. Graham, Dave Crocker)
Re: U.S. visas now need five years of your social media (Amos Shapir)
Re: Phishing calls (Dmitri Maziuk, John Levine)
RISKS 31.30 Friday 21 June 2019
Pilots fret over fire safety of Dreamliner planes, also used by El AL
(The Times of Israel)
Top AI researchers race to detect deepfake videos: ``We are outgunned.''
(Drew Harwell)
Zuckerfake (Vice)
Hackers behind dangerous oil and gas intrusions are probing US power grid
(Ars Technica)
Chinese Cyberattack Hits Telegram, App Used by Hong Kong Protesters (NYTimes)
Auto-renting bugs (Amos Shapir)
Google: Our way or the Huawei! (Henry Baker)
Android/iPhone fun -- security, risks...(ToI and UK Mirror)
New security warning issued for Google's 1.5B Gmail/Calendar Users (Forbes)
How spammers use Google services (Kaspersky)
This 'most dangerous' hacking group is now probing power grids
(Steve Ranger)
Masters ticket lottery scheme involved identity theft, millions of emails
(WashPost)
Facial Recognition: How Emotion Reading Software Will Change Driving
(Fortune)
DJI's New Drone for Kids Is a $500 Tank That Fires Lasers and Pellets
(Bloomberg)
Your Cadillac Can Now Drive Itself More Places (WiReD)
Four Ways to Avoid Facial Recognition Online and in Public (Gabe Goldberg)
Breaking ground, IBM Haifa team holds live robot debate fed by crowd
arguments (The Times of Israel)
Apple spent $10,000 repairing his MacBook Pro. There was nothing wrong
with it. (ZDNet)
Autonomous vehicles don't need provisions and protocols? (Rob Slade)
Info stealing Android apps can grab one time passwords to evade 2FA
protections (ZDNet)
Facebook Plans Global Financial System Based on Cryptocurrency (NYTimes)
Libra (Rob Slade)
Porn trolling mastermind Paul Hansmeier gets 14 years in prison.
(Ars Technica)
Mudslide warning system depends on proper boundary file (Dan Jacobson)
Mom used phone tracking app after daughter missed curfew, found her
pinned under car 7 hours later (FoxNews)
In Stores, Secret Surveillance Tracks Your Every Move (NYTimes)
Was your flight delay due to an IT outage? What a new report on
airline IT tells us. (ZDNet)
Patients frustrated over computer system outage at Abrazo Health Hospitals
(AZFamily)
Power outage at Greensboro apartments has unintended consequence,
reveals alleged Medicaid scheme (Monty Solomon)
Is Target still down? Chain says registers working now after outage.
(USA Today)
Instagram Outage Follows Disruption To PlayStation Network (Deadline)
The PlayStation Network Is Back Up. Here's the Latest on the PSN Outage
(Digital Trends)
In the Wiggle of an Ear, a Surprising Insight into Bat Sonar
(Scientific American)
'RAMBleed' Rowhammer attack can now steal data, not just alter it (ZDNet)
Ransomware halts production for days at major airplane parts manufacturer
(Catalin Cimpanu)
Study finds that a GPS outage would cost $1 billion per day (Ars Technica)
Re: GPS Degraded Across Much of U.S (jared gottlieb)
Did I Tweet that? (Rob Slade)
Bull and backdoors (Rob Slade)
Ross Anderson's non-visa (Rob Slade)
RISKS 31.31 Friday 28 June 2019
Slugfest (BBC)
Inside the West's failed fight against China's Cloud Hopper hackers
(Reuters)
Iranian hackers step up cyber-efforts, impersonate email from president's
office (The Times of Israel)
US-Israeli cyber firm uncovers huge global telecom hack, apparently by China
(The Times of Israel)
China's big brother casinos can spot who's most likely to lose big
(Bloomberg)
Large scale government IT efforts do not have great track records (Reuters)
AI rejects scientific article, flagging literature citations as plagiarism
(J.F.Bonnefon)
Cybercriminals Targeting Americans Planning Summer Vacations (McAfee)
Riviera Beach $600k data ransom (Tony Doris)
Rolos Unveils New Cryptocurrency Exclusively For Rolos Customers (The Onion)
Facebook Libra: Three things we don't know about the digital currency
(TechReview)
Man's $1M Life Savings Stolen as Cell Number Is Hijacked (NBC Bay Area)
Flaws in self-encrypting SSDs let attackers bypass disk encryption
(Gabe Goldberg)
Here's how I survived a SIM swap attack after T-Mobile failed me -- twice
(Matthew Miller)
Your iPhone is not secure: Cellebrite UFED Premium is here (TechBeacon)
New vulnerabilities may let hackers remotely SACK Linux and FreeBSD systems
(Ars Technica)
Hackers, farmers, and doctors unite! Support for Right to Repair laws slowly
grows (Ars Technica)
Oracle issues emergency update to patch actively exploited WebLogic flaw
(Ars Technica)
Cloudflare aims to make HTTPS certificates safe from BGP hijacking attacks
(Ars Technica)
Jibo (The Verge)
Computer problems may have led to miscarriages of justice in Denmark
(Zap Katakonk)
C, Fortran, and single-character strings (Thomas Koenig)
How to: Reset C by GE Light Bulbs (YouTu)
Too many name collisions (JEremy Epstein)
Re: Ross Anderson's non-visa (John Levine)
Oh, darn, maybe cell phones don't really make you grow horns (John Levine)
Re: Info stealing Android apps can grab one time passwords to evade 2FA
protections (Amos Shapir)
Re: Auto-renting bugs (Martin Ward)
Re: In Stores, Secret Surveillance Tracks Your Every Move (Toebs Douglass)
RISKS 31.32 Friday 5 July 2019
FDA recalls insulin pumps because of wireless vulnerability
FAA Flags New Computer Issue In 737 MAX Testing
In the Census Case, a Rebuke to Bad-Faith Government
U.S. Census at risk from glitches and attackers (Chris Hamby)
Could 'fake text' be the next global political threat?
Someone Is Spamming and Breaking a Core Component of PGP's Ecosystem
7-Eleven Japanese customers lose $500,000 due to mobile app flaw
Google Maps detour traps drivers in mud
"How Hackers Turn Microsoft Excel's Own Features Against It"
Microsoft Kills Automatic Registry Backups in Windows 10
Cloudflare stutters and the Internet stumbles (ZDNet)
Superhuman is Spying on You
Attention Correction Feature in iOS 13 Beta Enables Appearance of Eye
China Is Forcing Tourists to Install Text-Stealing Malware at its
Line just went Orwellian on Japanese users with its social credit
These are the sneaky new ways that Android apps track you
Re: Autonomous vehicles don't need provisions and protocols
Mobius: A Memoir (Richard Thieme)
RISKS 31.33 Monday 15 July 2019
How Fake News Could Lead to Real War (Politico)
Collision on Hong Kong metro (MTR)
Cyber-incident Exposes Potential Vulnerabilities Onboard Commercial
Vessels (Coast Guard)
"Vulnerabilities found in GE anesthesia machines" (Catalin Cimpanu)
Inside the world of bogus medicine, where smoothies and salads can
supposedly kill cancer (WashPost)
"Robot that started fire costs Ocado $137M" (Greg Nichols)
Anaesthetic devices 'vulnerable to hackers' (bbc.com)
FDA seeks comment on cybersecurity warnings and security upgrades
(Federal Register)
EU "Galileo" GPS system remains down (BBC)
Tiny flying insect robot has four wings and weighs under a gram
(New Scientist)
Smartphone payment system by Seven-Eleven Japan hacked from day 1:
lack of two stage authentication, etc. (Japan Times)
Border Patrol agents tried to delete their horrific Facebook posts
-- but they were already archived (NSFW -- The Intercept)
Professor faces 219-year prison sentence for sending missile chip
tech to China (The Verge)
London Police's Facial Recognition System Has 81 Percent Error Rate? (Geek)
"GDPR: Record British Airways fine shows how data protection
legislation is beginning to bite" (Danny Palmer)
D-Link Agrees to Make Security Enhancements to Settle FTC Litigation
(Federal Trade Commission)
As Florida cities use insurance to pay $1 million in ransoms to
hackers, Baltimore and Maryland weigh getting covered (WashPost)
House Democrats introduce a bill to tighten airport security stings
(WashPost)
Introducing ERP software: The biggest risk to your business (Faz)
European regulators to tighten rules for use of facial recognition
(Politico)
"New Windows 7 'security-only' update installs telemetry/snooping,
uh, feature" (Woody Leonhard)
"The Windows 10 misinformation machine fires up again" (Ed Bott)
"WTF, Microsoft?" (Steven J. Vaughan-Nichols)
"Raspberry Pi 4 won't work with some power cables due to its USB-C
design flaw" (Liam Tung)
Confirmed: Zoom Security Flaw Exposes Webcam Hijack Risk,
Change Settings Now (Forbes)
Texas County Purchases DRE Machines Over Expert Security Objections
(Brian Bethel)
The Hard-Luck Texas Town That Bet on Bitcoin -- and Lost (WiReD)
Thoughtcrime --> Thoughtaccidents (WiReD)
Mass Attacks in Public Spaces - 2018 (Secret Service National
Threat Assessment Center)
Google audio recordings of users leaked (Marc Thorson)
New Bedford computer outages continue for sixth day (WBSM)
Feds: New Bedford police officer arrested after 194 child porn
files found on computer (WHDH)
7-Eleven's 7pay app hacked in a day due to 'appalling security lapse'
(TechBeacon)
On the Bugginess of This Year's OS Betas From Apple (Daring Fireball)
"Apple disables Walkie-Talkie app due to snooping vulnerability"
(Adrian Kingsley-Hughes)
Stripe Outage Smacked Businesses for Two Hours (Fortune)
Google/Amazon/Apple are you listening to me? (Rob Slade)
Your Pa$$word doesn't matter - Microsoft Tech Community - 731984
(Alex Weinert)
The New York Times blocks viewing in private mode (Thomas Koenig)
Re: Line just went Orwellian on Japanese users with its social
credit-scoring system (Amos Shapir)
Re: Autonomous vehicles don't need provisions and protocols (Dan Jacobson)
Re: Line just went Orwellian on Japanese users with its social
credit-scoring system (Dan Jacobson)
Fernando Corbato dies (Katie Hafner via PGN)
RISKS 31.34 Thursday 25 July 2019
Senate Intelligence report on election integrity (NYTimes)
Nuclear industry pushing for fewer inspections at plants (NBC)
Tesla floats fully self-driving cars as soon as this year.
Many are worried about what that will unleash. (WashPost)
Airbus A350 software bug forces airlines to turn planes off and on
every 149 hours (The Register)
Home elevator deaths (WashPost)
Numerous airport passengers hijacked by robots (JXM)
Satellite Outage Serves as a Warning (WiReD)
'Dumb' robot ants are alarmingly smart -- and strong -- working together
(Greg Nichols)
The AI Metamorphosis (The Atlantic)
Cylances AI-based AV easily spoofed (SkylightCyber)
AI Could Escalate New Type Of Voice Phishing Cyber Attacks (CSHub)
Uber glitch charges passengers 100 times the advertised price,
resulting in crosstown fares in the thousands of dollars (WashPost)
"Google says leaked assistant recordings are a violation of data
security policies" (Asha Barbaschow)
U.S. Companies Learn to Defend Themselves in Cyberspace (WSJ)
Agora farewell (Rob Slade)
NYC Subway Service Is Suspended on Several Lines, MTA Says (NYTimes)
Brazil is at the forefront of a new type of router attack (ZDNet)
My browser, the spy: How extensions slurped up browsing histories
from 4M users (Ars Technica)
Amazon Prime Day Glitch Let People Buy $13,000 Camera Gear for $94 (Gizmodo)
Microsoft Office 365: Banned in German schools over privacy fears
(Cathrin Schaer)
Sweden and UK's surveillance programs on trial at the European Court of
Human Rights (Catalin Cimpanu)
Bluetooth exploit can track and identify iOS, Microsoft mobile device users
(ZDNet)
Clean Energy Regulator, WA Mines Department, and Vet Surgeons Board
trying to access metadata (Comms Alliance)
Permission-greedy apps delayed Android 6 upgrade so they could
harvest more user data (ZDNet)
Do drivers think you're a Ridezilla'? Better check your Uber rating.
(WashPost)
London Police Twitter feed was hacked; then Trump got in on the act
(WashPost)
Car locks itself, trapping toddler inside (DerWesten)
Hackers breach FSB contractor, expose Tor deanonymization project and more
(Catalin Cimpanu)
Facebook's Libra currency spawns a wave of fakes, including on Facebook
itself (WashPost)
Facebook Stock: Facebook's Libra Surrenders to Authority (InvestorPlace)
Tether's $5B error exposes cryptocurrency market fragility (WSJ)
College student was late returning a textbook to Amazon, so the
company took $3,800 from her father (Libercus)
Notre-Dame came far closer to collapsing than people knew.
This is how it was saved. (NYTimes)
One in five US tech employees abuse pain relief drugs, reveals study
(Eileen Brown)
Here's The Story Behind That Photo Of A Waterfall Inside A Metro Car (Dcist)
Stallone in Terminator 2? How one deepfake prankster is changing cinema
history (Digital Trends)
Cellphone WiFi auto-connect identifies vandals (Boston Globe)
Risks of an untimely text (Boston Globe)
Minister apologizes for text alert (Taipei Times)
Re: Line just went Orwellian on Japanese users with its social,
credit-scoring system (Brian Inglis)
Re: Galileo sat-nav system experiences service outage (Gabe Goldberg)
Re: How Fake News Could Lead to Real War (Dick Mills)
Re: London commuters Wi-FiTube being tracked (Chris Drewe)
RISKS 31.35 Tuesday 6 August 2019
One reason for the 737 Max disaster? Avoiding software complexity
(Thomas Koenig)
Warning over auto cyberattacks (Eric D. Lawrence)
Tesla hit with another lawsuit over a fatal Autopilot crash (The Verge)
This Satellite Image Shows Everything Wrong With Greenland Right Now
(Gizmodo)
North Korea took $2 billion in cyberattacks to fund weapons program (U.N.)
How China Weaponized the Global Supply Chain (National Review)
China has started a grand experiment in AI education. It could
reshape how the world learns. (MIT Tech Review)
44 people in China were injured when a water park wave machine
launched a crushing tsunami (WashPost)
In Hong Kong Protests, Faces Become Weapons (NYTimes)
Amazon Requires Police to Shill Surveillance Cameras in Secret Agreement
(VICE)
Apple's Siri overhears your drug deals and sexual activity,
whistleblower says (Charlie Osborne)
Capital One data breach compromises tens of millions of credit card
applications, FBI says (WashPost)
California State Bar accidentally leaks details of upcoming exam (NBC News)
Russian hackers are infiltrating companies via the office printer
(MIT Tech Review)
A VxWorks Operating System Bug Exposes 200 Million Critical Devices (WiReD)
Capital One Systems Breached by Seattle Woman, U.S. Says (Bloomberg)
Another Breach: What Capital One Could Have Learned from Google's
"BeyondCorp"
Paige Thompson, Capital One Hacking Suspect, Left a Trail Online (NYTimes)
Cambridge Analytica's role in Brexit (Ted)
The scramble to secure America's voting machines (Politico)
The state of our elections security (Web Informant)
A lawmaker wants to end social media addiction by killing features
that enable mindless scrolling (WashPost)
Cisco in Whistleblower Payoff and PR Doublespeak Row
(Security Boulevard)
Social Media Addiction Reduction Technology, or SMART, Act (Fortune)
200-million devices some mission-critical vulnerable to remote takeover
(Ars Technica)
Siemens contractor pleads guilty to planting logic bomb in company
spreadsheets (ZDNet)
People forged judges' signatures to trick Google into changing results
(Ars Technica)
Partial hashes broadcast in Bluetooth can be converted to phone numbers
(Ars Technica)
Apple suspends human eavesdropping through Siri (Taipei Times)
Why People Should Care About Quantum Computing (Fortune)
Your Train Is Delayed. Why? (NYTimes)
Barr Revives Encryption Debate, Calling on Tech Firms to Allow for
Law Enforcement (NYTimes)
Dark Web Consequences Increase from Global Rise of Police-Friendly
Laws (Channel Futures)
The Hidden Costs of Automated Thinking (The New Yorker)
We Tested Europe’s New Digital Lie Detector. It Failed. (The Intercept)
AI Predictive Policing (Daily Mail)
Guardian Firewall iOS App Automatically Blocks the Trackers on Your Phone
(WiReD)
Google researchers disclose vulnerabilities for 'interactionless'
iOS attacks (ZDNet)
Another Breach: What Capital One Could Have Learned from Google's
"BeyondCorp" (Lauren's Blog)
"A data breach forced this family to move home and change their names
(ZDNet)
Brazilian president’s cellphone hacked as Car Wash scandal intrigue
widens (WashPost)
Malicious 'Google' domains used in Magento card card skimmer attacks (ZDNet)
MyDoom: The 15-year-old malware that's still being used in phishing
attacks in 2019 (ZDNet)
StockX was hacked, exposing millions ofcustomers'_data (TechCrunch)
Ikea says sorry for customer data breach (Straits Times)
Refunds for Global Access Technical Support customers (Consumer Information)
Business Continuity?: Kyoto Anime recovers digital recordings
(Chiaki Ishikawa)
Colorado gov't. email account for reporting child abuse goes unchecked for
4 years (WashPost)
Re: "Mortgage Provider Tells Savers of Zero Balances" (Chris Drewe)
RISKS 31.36 Monday 12 August 2019
A Boeing Code Leak Exposes Security Flaws Deep in a 787's Guts (WiReD)
This Tesla Mod Turns a Model S Into a Mobile 'Surveillance Station' (WiReD)
"New Windows malware can also brute-force WordPress websites"
(Catalin Cimpanu)
Getting physical: warshipping (Fortune)
These Legit-Looking iPhone Lightning Cables Will Hijack Your Computer (VICE)
Inside the Hidden World of Elevator Phone Phreaking (WiReD)
Popular kids' tablet patched after flaws left personal data vulnerable
(Danny Palmer)
Watch a Drone Take Over a Nearby Smart TV (WiReD)
5G Wireless Networks Are Not Harmful to Health, FCC Says (Fortune)
Phishing attack: Students' personal information stolen in university data
breach (Danny Palmer)
Navy Reverting DDGs Back to Physical Throttles, After Fleet Rejects
Touchscreen Controls (USNI News)
This High-Tech Solution to Disaster Response May Be Too Good to Be True
(The New York Times)
Scam pulse-monitoring app returns to Apple Store (Ben Lovejoy)
He Tried Hiding From Silicon Valley in a Pile of Privacy Gadgets (Bloomberg)
GDPR's unintended consequences (The Register)
Black Hat: GDPR privacy law exploited to reveal personal data (BBC News)
Password policy recommendations: Here's what you need to know. (HPE)
Re: Russian hackers are infiltrating companies via the office printer
(Kelly Bert Manning)
Climate change: how the jet stream is changing your weather (FT)
Re: AI Predictive Policing (George Jansen)
Re: Hawley/SMART Act (Rob Slade, Dimitri Maziuk)
Re: Apple's Siri overhears your drug deals and sexual activity
(Amos Shapir)
Re: Siemens contractor pleads guilty to planting logic bomb in company,
spreadsheets (Martin Ward)
Researchers wrest control of one of world's most secure industrial
controllers (The Times of Israel)
Writing about writing (Rob Slade)
RISKS 31.37 Monday 19 August 2019
Russian nuclear-powered cruise missile blows up, creating
`mini-Chernobyl' (Ars Technica)
Facial recognition software mistook 1 in 5 California lawmakers
for criminals, says ACLU (LATimes)
Major breach found in biometrics system (The Guardian)
Security Database leak reveals: Biometric data, plaintext passwords
and much more... (VPN Mentor)
"Researchers Use Blockchain to Drive Electric Vehicle Infrastructure"
(U.Waterloo)
"Why blockchain-based voting could threaten democracy" (Lucas Mearian)
Steam vulnerability reportedly exposes Windows gamers to system hijacking
(Charlie Osborne)
Critical Windows 10 Warning: Millions Of Users At Risk (Forbes via
Gabe Goldberg)
Null is Not Nothing (WiReD)
Trend Micro fixes privilege escalation security flaw in Password Manager
(Charlie Osborne)
Ransomware Attack Hits 20 Local Governments In Texas (Kut)
Computer Outage Delays International Travelers Arriving at Dulles
(NBC4 Washington)
London Exchange Is Delayed by Technical Problem (NYTimes)
Cascading Effect of putting your data in a single cloud basket (Telus)
Electric car charging stations may be portals for power grid
cyber-attacks (Tech Xplore)
How Flat Earthers Nearly Derailed a Space Photo Book (NYTimes)
Hack in the box: Hacking into companies with "warshipping" (Ars Technica)
Re: These Legit-Looking iPhone Lightning Cables Will Hijack Your Computer
(Chiaki Ishikawa)
Re: Password policy recommendations: Here's what you need to know
(R A Lichensteiger, Gabe Goldberg)
Re: Climate change: how the jet stream is changing your weather
(R. G. Newbury)
RISKS 31.38 Saturday 24 August 2019
16 Million Americans Will Vote on Hackable Paperless Machines
(MIT TechReview)
Moscow's blockchain voting system cracked a month before election (ZDNet)
Judge Bars Georgia From Using Current Voting Technology in 2020 (CNet)
Employees connect nuclear plant to the Internet so they can mine
cryptocurrency" (Catalin Cimpanu)
Patrick Byrne (Rob Slade)
Why the U.S. Disaster Agency Is Not Ready for Catastrophes
(Scientific American)
Backdoor code found in 11 Ruby libraries (Catalin Cimpanu)
"Unpatchable security flaw found in popular SoC boards"
(Catalin Cimpanu)
Hospital website hijacked by 'pirates' (Sonoma News)
MoviePass exposed thousands of unencrypted customer card numbers
(Tech Crunch)
Hong Kong protesters warn of Telegram feature that can disclose
their identities (Catalin Cimpanu)
Researcher publishes second Steam zero day after getting banned on
Valve's bug bounty program (Catalin Cimpanu)
This trojan malware being offered for free could cause hacking spike
(ZDNet)
Users of Adult Website Exposed By Data Breach (Infosecurity)
Ransomware Attacks Are Testing Resolve of Cities Across America (NYT)
Ransomware Attack Hits 23 Texas Towns, Authorities Say (NYTimes)
Phishing spam is getting better ... (Rob Slade)
A credit card never needed cleaning instructions... then Apple came along
(Gene Wirchenko)
Want To Know What's In Your Sweat? There's A Patch For That (npr.org)
Playing God: Japan temple puts faith in robot priest "with AI.
It's changing Buddhism" (AFP)
Re: Contingency plan for compromised fingerprint database (Edwin Slonim)
Re: Facial recognition errors (Arthur T.)
Re: Electric car charging stations may be portals for power grid
cyberattacks (Kelly Bert Manning)
Re: Shoot out the headlines first, ask questions later: Climate change ...
(Kelly Bert Manning, Amos Shapir)
Re: Password policy (Dmitri Maziuk)
Noise about Quiet Skies program (Richard Stein)
RISKS 31.39 Thursday 29 August 2019
"Why positive train control is vulnerable to a cyber-attack"
(D G. Rossiter)
Frequency-sensitive trains and the lack of failure-mode analysis
(Clive Page)
Inside America's Dysfunctional Trillion-Dollar Fighter-Jet Program
(Valerie Insinna via Richard Stein)
Sometimes simplicity is dangerous ... (Rob Slade)
A Bitter Divorce Battle on Earth Led to Claims of a Crime in Space (NYTimes)
Premier's office accidentally publishes name of secret agent (TheAge)
WeWork's Wi-Fi network is laughably easy to hack (Fast Company)
Wake Up! Your House Is Calling (NYTimes)
OpenAI releases larger GPT-2 dataset. Can it write fake news better
than a human? (Boing Boing)
SecurityWatch: Backstabbing, Disinformation, and Bad Journalism:
The State of the VPN Industry (PCMag)
Security Researchers Find Several Bugs in Nest Security Cameras (VICE)
Found: World-readable database used to secure buildings around the globe
(Ars Technica)
Credit card privacy matters: Apple Card vs. Chase Amazon Prime Rewards Visa
(WashPost)
Regis University's technology systems targeted by malicious threat
likely from outside the country (Denver Post)
A Harvard freshman says he was denied entry to the U.S. over
social media posts made by his friends (WashPost)
Ring, the doorbell-camera firm, has partnered with 400 police
forces, extending surveillance reach (WashPost)
FBI seeks to monitor Facebook, oversee mass social media data
collection (Charlie Osborne)
Facebook's big win: Will this ruling have global impact on how
your data is used? (Cathrin Schaer)
Re: Playing God: Japan temple puts faith in robot priest (Amos Shapir)
Re: Phishing spam is getting better (Amos Shapir)
Risks 31.40 Thursday 5 September 2019
Avoiding a space collision (MIT Tech Review)
Elon Musk said the satellites his company launches will avoid
potential collisions on their own. (QZ)
Strangelove redux: U.S. experts propose having AI control nuclear weapons
(Bulletin of the Atomic Scientists)
Tesla autopilot is found partly to blame for 2018 freeway crash (via GG)
Tesla customers locked out of our cars: unknown error (Reddit)
iPhone hacks (The Register)
Google accused of leaking personal data to thousands of advertisers
(Liam Tung)
Governments Shut Down the Internet to Stifle Critics. Citizens Pay the Price
(NYTimes)
600,000 GPS trackers left exposed online with a default password of '123456'
(Catalin Cimpanu)
How Apple's HomePod turned my friends into rude troglodytes
(Chris Matyszczyk)
Apple is Bad at Software, says Google (Security Boulevard)
Algorithmic Foreign Policy (Scientific American)
Oregon Judicial Department hit by phishing attack (Bradenton)
Cyberattacks Mar Start of Academic Year (InsideHigherEd)
Ask Amy: Son left home, but left behind racy mementos (WashPost)
'Dutch mole' planted Stuxnet virus in Iran nuclear site on behalf of CIA,
Mossad (The Times of Israel)
Frequency-sensitive trains and the lack of failure-mode analysis
(R.G. Newbury)
Forget email: Scammers use CEO voice 'deepfakes' to con workers into wiring
cash (Liam Tung)
Re: Sometimes simplicity is dangerous ... (Alexander Klimov)
Re: Facebook's big win (Amos Shapir)
Re: Phishing spam is getting better (Roger Bell_West)
Re: A Harvard freshman says he was denied entry to the U.S. over social
media posts (Dick Mills)
Re: Contingency plan for compromised fingerprint database (Martin Ward)
RISKS 31.41 Monday 9 September 2019
An Op-Ed from the Future on Election Security (Alex Stamos)
French air traffic control 'outage' hits UK flights (BBC)
Voice-mimicking software used in major theft (WashPost)
Robot hires human being in world first as AI conducts job interview
(Daily Star)
Bright Idea --Can't stop... (from New of the Weird, The Guardian)
Voice-mimicking software used in heist -- in AI first
(The Straits Times)
Evading Machine-Learning Malware Classifiers (William Fleshman)
No, this AI hasn't mastered eighth-grade science (Tiernan Ray)
Stina Ehrensvärd is creating "a seatbelt for the Internet." (Fortune)
Apple Finally Breaks Its Silence on iOS Hacking Campaign (WiReD)
Convicted hacker called to testify to grand jury in Virginia (WashPost)
Re: How Apple's HomePod turned my friends into rude troglodytes
(Amos Shapir)
RISKS 31.42 Friday 13 September 2019
CIA source pulled from Russia had confirmed Putin ordered 2016 meddling
(Zack Budryk/The Hill)
Open Privacy discovers unencrypted patient medical information
broadcast across Vancouver (Open Privacy Research Society)
Blockchains and Cryptocurrency (Nick Weaver)
Bank of America less than charitable to charity that says it was hacked
(BostonGlobe)
Sysadmins Scramble to Secure 5M Exim Email Servers (Security Boulevard)
3-D Printers Could Help Spread Weapons of Mass Destruction
(Scientific American)
The Next Generation of Airbus Aircraft Will Track Your Bathroom Visits
(Time)
Why a cup of coffee forced a plane to make an unplanned landing (WashPost)
Chinese police sniff out a fugitive —- literally -— in the case of the
telltale hot pot (WashPost)
Apple makes changes to kids app guidelines after criticism from developers
(WashPost)
Alabama is penalizing students for leaving football games early.
Is that normal? (WashPost)
Sorry, general AI is still a long, long way off (Mary Branscombe)
Re: Russia-Ukraine power-grid blackout (Gabe Goldberg)
Re: Robot hires human being in world first as AI conducts job interview
(Amos Shapir)
Re: Hackers short-change themselves; 21st century UK NHS (Chris Drewe)
Re: Tweet from Fridge: possible but probably not in this case
(Anthony Thorn)
RISKS 31.43 Wednesday 25 Sept 2019
Saudi Arabia oil output takes major hit after apparent drone attacks
claimed by Yemen rebels (The WashPost)
Exclusive: Russia carried out a 'stunning' breach of FBI
communications system, escalating the spy game on U.S. soil (Cryptography)
Google CEO Warns of Deepfakes Detection Challenges Ahead (Politico)
125 New Flaws Found in Routers and NAS Devices from Popular Brands
(TheHackerNews)
How Hackers Could Break Into the Smart City (James Rundle)
Chicago Man Fraudulently Accrued 42 Million Delta SkyBonus Points
(The NYTimes)
I create fake videos. Here's why people believe even the obvious ones
(Fast Company)
I am awesome': How a millennial built a fentanyl empire (WashPost)
There Is No Tech Backlash; Worse, we think there is one. (Rob Walker)
Your Car. Your Data. (via Gabe Goldberg)
When `collect all the data' misses the important data (Arthur T.)
Get popcorn for iOS 13's privacy pop-ups of creepy Facebook data grabs
(TechCrunch)
The children of Donor H898 (WashPost)
The man-made 'stars' changing the night sky (bbc.com)
What Really Brought Down the Boeing 737 Max? (The NYTimes)
You watch TV. Your TV watches back. (The Washington Post)
Single drivers are taking over Massachusetts carpool lanes
False emergency alarms set off in Hawaii, again. (NBC News)
Global Preparedness Monitoring Board (Fortune)
Instigator of fatal Kansas swatting receives prison sentence (Ars Technica)
IoT Security: Now Dark Web Hackers are Targeting Internet-Connected Gas
Pumps (Danny Palmer)
'Security' Cameras Are Dry Powder for Hackers. Here's Why (Fortune)
The iOS 13 Privacy and Security Features You Should Know (WiReD)
Two years later, hackers are still breaching local government payment
portals (Catalin Cimpanu)
Man allegedly used drone to pelt ex-girlfriend's home with bombs
(Charlie Osborne)
Apple Watch helps save motorcyclist's life (Adiran Kingsley-Hughes)
Good Quote from 'The Handmaid's Tale' Author (Chris Drewe)
Stanislav Petrov, `The Man Who Saved The World', Dies At 77 (NPR)
Too Many VPNs Put Our Privacy And Security At Risk (Forbes)
Two articles by Bruce Schneier on supply-chain security threats (PGN)
Re: Alabama is penalizing students for leaving football games early
(Arthur T.)
Re: Why a cup of coffee forced a plane to make an unplanned landing
(Mark Brader)
RISKS 31.44 Wednesday 2 October 2019
Secret FBI subpoenas scoop up personal data from scores of companies (NYT)
Putin Begins Installing Equipment To Cut Russia's Access To World Wide Web
(Zak Doffman)
Lawmakers warn about threat of political deepfakes by creating one
(WashPost)
How will Self-Driving Cars Impact Cities? (CTA)
A Nation Divided: U.S. Politics Taking Physical, Emotional Toll On Americans
(StudyFinds)
White House mistakenly sends Trump-Ukraine talking points to Democrats
(WashPost)
As Made-To-Order DNA Gets Cheaper, Keeping It Out Of The Wrong Hands Gets
Harder (npr.org)
Airbus hit by a series of cyber-attacks on its suppliers (PGN)
Feds say Boeing 737 needs to be better designed for humans (WiReD)
The Dangers of Delaying FAA Modernization (WiReD)
The Loophole That Turns Your Apps Into Spies (NYTimes)
Exim vulnerability "remote code execution seems to be possible" (J Coe)
Inside the campaign that tried to compromise Tibetans' iOS and Android
phones (Ars Technica)
People are hacking their Peloton bikes so they can watch Netflix and cheat
the leaderboard ranking system (Business Insider)
Life imitates a bad sitcom? (Ars Technica)
No big conspiracy. Just map tile boundaries right upon borders
(Dan Jacobson)
The Privacy Project (NYTimes)
Twitter executive with editorial responsibility for the Middle East
is also British psyops officer (Middle East Eye)
Heyyo dating app leaked users' personal data, photos, location, more
(Catalin Cimpanu)
An 11-year-old drove 200 miles alone to live with a man he met on Snapchat,
police say (WashPost)
99% of Misconfigurations in the Public Cloud Go Unreported (Charlie Osborne)
Hackers Say They Took Over Vote Scanners Like Those Coming to Georgia
(Mark Neisse)
Developer of Checkm8 explains why iDevice jailbreak exploit is a game
changer (Ars Technica)
A fitness influencer will serve nearly 5 years in jail ...
(Business Insider)
What Is a Blockchain Smartphone and Should You Buy One Now? (Blocks Decoded)
The risk? "Security" questions (MadMeSmile)
Re: Google Chrome update corrupting some macOS installs (Gabe Goldberg)
RISKS 31.45 Monday 7 October 2019
The broken record: Why Barr's call against end-to-end encryption is
nuts (Sean Gallagher)
Disney World Skyliner Gondola abruptly stops, stranding passengers in air
(NYTimes)
Volatile compounds? 3D printing has a serious safety problem (Greg Nichols)
Decades-old code is putting millions of critical devices at risk (WiReD)
Ransomware forces 3 hospitals to turn away all but the most
critical patients (Ars Technica)
These sneaky email scammers are making it even harder for workers
to spot fake invoices (Danny Palmer)
This mysterious hacking campaign snooped on a popular form of VoiP software
(Danny Palmer)
Webkit zero-day exploit besieges Mac and iOS users with malvertising
redirects (Ars Technica)
Commuters get an eyeful after pair breaks in, uploads porn to
Michigan billboard (NBC News)
Maine hospital 'Wall of Shame' used records to mock disabled patients
(The Boston Globe)
How Israeli security services used big data to stop a wave of terrorism
(haaretz)
Wearable face projector to avoid face recognition (Reddit)
Federal government has dramatically expanded exposure to risky mortgages
(WashPost)
What Is Bitcoin Block Size and Why Does It Matter? (Blocks Decoded)
Hacking Of Internet-connected cars big national security threat
(Consumer Watchdog)
Some of the biggest critics of Waymo and other self-driving cars
are the Silicon Valley residents who know how they work (WashPost)
10 Tips to Avoid Leaving Tracks Around the Internet (NYTimes)
Code 42 Info Requested (Charles Dunlop)
NCCIC (Rebecca Mercuri)
Look Who's Driving, NOVA, 23 Oct 9 pm EDT (Gabe Goldberg)
RISKS 31.46 Monday 21 October 2019
Russian Secret Weapon Against U.S. 2020 Election Revealed In New
Cyberwarfare Report (Forbes)
Melbourne cyber-conference organisers pressured speaker to edit
'biased' talk (Josh Taylor)
Zuckerberg fears 'erosion of truth' but defends allowing
politicians to lie in ads (WashPost)
Citizen Data of 92 Million Brazilians Offered for Sale on
Underground Forum (CPO Magazine)
Fifth-generation broadband wireless threatens weather forecasting
(Physics Today)
Does your car have automated emergency braking?
It's a big fail for pedestrians (Liam Tung)
A Police Tesla Nearly Ran Out of Power During a Chase.
It Wasn't the Car's Fault. (NYTimes)
Mountain village begs tourists not to follow Google Maps and get stuck
(CNN)
There's an art to artificial intelligence (Forbes)
Trying to use the police robot slows down emergency response (NBC)
Troubles with Tesla's automated parking feature summon safety regulators
(Reuters)
Better reply even if told to be patient (Dan Jacobson)
Tell HUD: Algorithms Shouldn't Be an Excuse to Discriminate (EFF)
Japanese assault suspect 'tracked down pop star via eye reflection
in selfie' (*The Guardian*)
How my iPhone landed me with a £476 fine and made me a criminal
(Financial Times)
Inside New York's Partnership With Israeli iPhone Hacking Company
(Cellebrite)
FBI's Use of Foreign-Surveillance Tool Violated Americans' Privacy Rights
(WSJ)
How Photos of Your Kids Are Powering Surveillance Technology (NYT)
What's Happening at the Center of the Surveillance Economy (Fortune)
Power company happy talk (Dominion Energy)
'This Did Not Go Well': Inside PG&E's Blackout Control Room (NYT)
Why the PG&E Blackouts Spared California's Big Tech HQs (WiReD)
Malware That Spits Cash Out of ATMs Has Spread Across the World (VICE)
Student tracking, secret scores: How college admissions offices
rank prospects before they apply (WashPost)
Fortnite has been down for hours as millions of players stare at a
black hole (The Verge)
Want to disconnect from your phone? Automakers are making that tougher
(ABC News)
This just got real: US, UK agencies issue joint VPN security alert
(TechBeacon)
Blizzard restores Hong Kong player's winnings, reduces suspension
after international uproar (WashPost)
Fingerprint security? Not so much... (SendGrid)
A Young Man Nearly Lost His Life to Vaping (NYTimes)
Chinese app on Xi's ideology allows data access to 100 million
users' phones, report says (WashPost)
One Good Reason to Delist Chinese Companies (Bloomberg)
Guess what loses its value faster than your car? Your smartphone.
(Adrian Kingsley-Hughes)
Mobile security: These health apps aren't good for your phone or
your privacy (Danny Palmer)
GitHub gets blocking half-backwards (Dan Jacobson)
Vaping devices add to fire risks on planes and officials struggle
to keep up. (WashPost)
With Windows Virtual Desktop, the bad old days are coming back
(Computerworld)
Former Apple employees create Level Lock smart lock, backed by Walmart
(CNBC)
Feds bust massive child porn sharing site; hundreds of users arrested
(Ars Technica)
Re: The broken record: Why Barr's call against end-to-end encryption is nuts
(Keith Medcalf)
Re: 3D printing (Dam Jackson)
Re: PGN comment (R. G. Newbury)
RISKS 31.47 Tuesday 12 November 2019
Galileo satellite system failure (The Register)
Boeing Shaped a Law to Its Liking. Weeks Later, a 737 Max Crashed. (NYTimes)
Illegal drones ground water-dropping helicopters at critical moment in Maria
fire battle (LA Times)
Drones Used in Crime Fly Under the Law's Radar (NYTimes)
Kiwibot delivery bots drones (NYTimes)
AT&T claims a weeks-long voicemail outage will be fixed with a single device
update (The Verge)
Wrong-way driverless Tesla Model 3 (Geoff Goodfellow)
Uber self-driving car involved in fatal crash couldn't detect jaywalkers
(Engadget)
Testing Cars That Help Drivers Steer Clear of Pedestrians (NYTimes)
How Russia Meddles Abroad for Profit: Cash, Trolls and a Cult Leader
(NYTimes)
Russia Will Test Its Ability to Disconnect from the Internet (via GeoffG)
Brian Kernighan: Unix: A History and a Memoir (PGN)
GitHub blocking: vandal's dream (Dan Jacobson)
PSA: Turning off silent macros in Office for Mac leaves users wide open to
silent macro attacks (The Register)
Large Bitcoin Player Manipulated Price Sharply Higher, Study Says (WSJ)
Inside the Icelandic Facility Where Bitcoin Is Mined (WiReD)
Amazon blames 'error' for blocking Nintendo resellers from listing products
(The Verge)
What happens if your mind lives for ever on the Internet? (The Guardian)
1.5 Million Packages a Day: The Internet Brings Chaos to NY Streets
(NYTimes)
Security Researchers Warn of Online Voting Risks (Computerworld)
Calculation gives different results on different operating systems
(Techxplore)
Microsoft's Secured-Core PC Feature Protects Critical Code (WiReD)
The rise of microchipping: are we ready for technology to get under the
skin? (The Guardian)
Saudi Arabia recruited Twitter workers to spy on users, feds say (CBS News)
U.S. Charges Former Twitter Employees With Spying for Saudi Arabia (WSJ)
The Internet is tilting toward tyranny (WashPost)
Network Solutions: Important Security Information re: Breach (via GabeG)
Radios do interfere with garage-door openers! (fauquiernow)
Automatic bug tracker issue closers (stalebot)
Robinhood Markets -- rob the poor to feed the rich? (Bloomberg)
Apps track students from the classroom to bathroom, and parents are
struggling to keep up (WashPost)
At an Outback Steakhouse Franchise, Surveillance Blooms (WiReD)
Researchers hack Siri, Alexa, and Google Home by shining lasers at them
(Ars Technica)
Insanely humanlike androids have entered the workplace and soon may take
your job (CNBC)
HireVue's AI face-scanning algorithm increasingly decides whether you
deserve the job (Wash Post)
Screen time is actually good for kids! (Oxford)
Risks of posting the wrong emoji (Dan Jacobson)
We Have No Reason to Believe 5G Is Safe (Scientific American Blog Network)
She Accidentally Uncovered a Nationwide Scam on Airbnb (VICE)
Expanded testbed in Singapore for autonomous vehicles a big boost for
research and developers (The Straits Times)
Coalfire CEO statement (via Gabe Goldberg)
Cirrus' $2 Million Vision Jet Now Lands Itself, No Pilot Needed (WiReD)
These Machines Can Put You in Jail. Don't Trust Them. (NYTimes)
Trolling Is Now Mainstream Political Discourse (WiReD)
Video giant Twitch pushes Trump rallies and mass violence into the
live-stream age (WashPost)
Text messages delayed from February were mysteriously sent overnight
(The Verge)
Netflix to stop supporting older devices from Samsung, Roku, and Vizio in
December (The Verge)
Members of violent white supremacist website exposed in massive data dump
(Ars Technica)
Re: Mountain village begs tourists not to follow Google Maps and
get stuck (Dan Jacobson)
Risks 31.48 Monday 25 November 2019
Ghost ships, crop circles, and soft gold: A GPS mystery in Shanghai
(MIT Technology Review)
GPS is easy to hack, and the US has no backup (Scientific American)
European Council approves plans to make new car safety features
mandatory (INews)
Non-urgent alarms are drowning out real ones in hospitals (WashPost)
Internet world despairs as non-profit .org sold for $$$$ to private
equity firm, price caps axed (The Register)
How dumb design wwii plane led macintosh (WiReD)
Accidental evacuation warning (Peter H. Gregory)
6 Tips for Windows 7 End of Life and Support (MakeUseOf}
Microsoft restores services after it experienced a large global
outage across numerous platforms (Business Insider)
Someone Got Access to Their Secret Consumer Score. Now You Can Get
Yours, Too. (NYTimes)
Could Salesforce Blockchain Cut Cancer Drug Development Costs in Half?
(Fortune)
China is Pushing Toward Global Blockchain Dominance (WiReD)
Burglars Really Do Use Bluetooth Scanners to Find Laptops Phones (WiReD)
Disruption Mitigation Systems for Fusion Demonstration at ITER
(Richard Stein)
Law enforcement can plunder DNA profile database, judge rules (ZDNet)
How to Opt Out of the Sites That Sell Your Personal Data (WiReD)
Privacy not included (Mozilla)
146 New Vulnerabilities All Come Preinstalled on Android Phones (WiReD)
Uber safety push includes plans to start audio recording rides in
the U.S. (WashPost)
Nikki Haley Used System for Unclassified Material to Send `Confidential'
Information (The Daily Beast)
Official Monero website is hacked to deliver currency-stealing malware
(Ars Technica)
UK Conservative Party Scolded for Rebranding Twitter Account (NYTimes)
AI future or follies? (Fortune magazine email)
The Downside of Tech Hype (Scientific American)
Best Buy Made These Smart Home Gadgets Dumb Again (WiReD)
Officials Warn of "Juice Jacking" Scams at USB Charging Stations (LA County)
Artificial Intelligence Discovers Tool Use in Hide-and-Seek Games (NYTimes)
After False Drug Test, He Was in Solitary Confinement for 120 Days
NoiseAware - proprietary algorithm for noise detection in rental properties
(The Verge)
A hypothesis on the immediate future of audio scams (CBC)
How to prevent a data breach, lessons learned from the infosec vendors
themselves (Web Informant)
Someone Got Access to Their Secret Consumer Score. Now You Can Get Yours,
Too. (NYTimes)
Iowa hired cyberhackers, then arrested them (TechSpot)
Mastercard vs. mistakes and fraud (Fortune)
As 5G Rolls Out, Troubling New Security Flaws Emerge (WiReD)
Re: The rise of microchipping: are we ready for technology to get
under the skin? (Amos Shapir)
Re: What happens if your mind lives for ever on the Internet?
(John R. Levine)
RISKS 31.49 Wednesday 25 November 2019
Train door safety interlock based on hanger not actual door position (BBC)
Aircraft warning lights system open online (Security Affairs)
Tainted Data Can Teach Algorithms the Wrong Lessons (WiReD
Finds GPS tracker on his car, removes it, charged with theft (Ars Technica)
DMVs profit by selling PII (Vice/Motherboard)
Cheap kids smartwatch exposes the location of 5,000+ children
(Catalin Cimpanu)
More on AI-generated deepfakes (NYTimes)
Hidden Cam Above Bluetooth Pump Skimmer (Krebs on Security)
Tim Berners-Lee's plan includes framework to protect privacy,
personal data (MarketWatch)
Independent security researcher discovers information trove (Bloomberg)
Investigation finds BC firm delivered micro-targeted political ads
without ensuring consent (Kelly Bert Manning)
A cautionary tale about IT out sourcing -- Landlord finds millions
of confidential files left by defunct IT firm
This girl hacked 11,000 dogs and cats smart feeders
(Information Security Newspaper)
Re: How dumb design wwii plane led macintosh (Amos Shapir)
Re: A hypothesis on the immediate future of audio scams (Amos Shapir)
Re: There's more to the Internet than the DNS, or Internet world despairs
... (John Levine)
Re: What happens if your mind lives for ever on the Internet? (Martin Ward)
Re: Officials Warn of "Juice Jacking" Scams at USB Charging Stations
(Andrew Duane)
RISKS 31.50 Thursday 12 December 2019
If you think you voted in November in PA ... think again! (Rebecca Mercuri)
Election Security regulations in the U.S (Fortune)
A banner day for truth, consequences, integrity, and privacy (PGN)
China to remove all foreign computer equipment from government
(The Guardian)
Chinese tech groups shaping UN facial recognition standards (FT)
China introduces mandatory face scans for phone users (AFP)
TikTok Reverses Ban on Teen Who Slammed China's Muslim Crackdown (NYT)
Deepfakes (YouTube via Lauren Weinstein)
Fake news probe in Brazil exposes "Office of Hate" within government
(Angelica Mari)
BBB warns about fake shipping emails (KGW)
Exposed: Elaborate plot including fake email from an art expert designed to
prove Dali painting that belonged to James Stunt and hung on Prince
Charles's wall was real (Daily Mail)
Learn lessons from this $1 million email scam (ITWorld)
Professor by day, scambuster by night: Business professor helps scam victims
(Mustang News)
Bogus Emails Give Spirit Airlines Passengers Temporary Headache
(TravelPulse)
AI Is Not Similar To Human Intelligence. Thinking So Could Be Dangerous
(Forbes)
SSD drive with critical failure at 32768 hours of operation (HPE)
This might be a genuine Y2K problem -- are there more? (Martyn Thomas)
Plundervault (Ars Technica)
Medicare needs to be flexible with Seniors! (KHN)
I lost my 193,000-pound inheritance with one-digit-wrong sort code
(The Guardian)
WSJ discovers that phone systems are hard (danny burstein)
Uber's 'Dirty Little Secret': Shared Driver Accounts WSJ)
Nearly $50 Million of Ether Swiped From South Korean Cryptocurrency Exchange
(WSJ)
Fiber-optic cables pinpoint California tectonic fault zone
(National Geographic)
Dexcom Software Outage Draws Fury from Diabetes Patients and Their Parents
(Fortune)
Facebook Experiences Sporadic Outages (WSJ)
Microsoft OAuth whitelisted unregistered subdomains allowing azure account
takeovers (ThreatPost)
Re: AI future or follies? (Amos Shapir)
Re: Train door safety interlock based on hanger not actual door position
(John Murrell)
Re: What happens if your mind lives for ever on the Internet?
(Chris Drewe, Amos Shapir)
Re: DMVs profit by selling PII (Kelly Bert Manning)
RISKS 31.51 Wedesday 18 December 2019
Human error installing SCADA system leads to 7.5 million gallons of
raw sewage dumped in Valdosta, GA
Killer Robots Aren't Regulated. Yet. (Jonah M. Kessel)
Earth Enters Unknown as Magnetic North Pole Continues Push Toward
Russia, Crosses Greenwich Meridian (Sputnik News)
SpaceX to Make Starlink Satellites Dimmer to Lessen Impact on Astronomy
(Scientific American)
Smart lock has a security vulnerability that leaves homes open for attacks
(CNET)
Scores of sex offenders have state licenses to be electricians,
manicurists, and more. The official who found out got fired. (BostonGlobe)
Is Alexa Always Listening? How Amazon, Google, Apple Hear, Record
(Bloomberg)
Apple Used the DMCA to Take Down a Tweet Containing an iPhone
Encryption Key (VICE)
Phone-breaking Android hole revealed (Gadget)
Deepfakes are getting better. Should we be worried? (TheBostonGlobe)
Luggage tracking apps aren't 100% accurate. People are the weak link
(LATimes)
Internet of crap encryption: IoT gear is generating easy-to-crack keys
(The Register)
Prime Leverage: How Amazon Wields Power in the Technology World (NYTimes)
Cloud flaws expose millions of child tracking smartwatches (TechCrunch)
Thief Stole Payroll Data of 29,000 Facebook Employees (CISOmag)
Companies Ignoring Third-Party Breach Alerts (Security Boulevard)
Insurer Races to Fix Security Flaws After Whistleblower Alert
(Bank Infosecurity)
Audit knocks Mass. tax-collection agency (The Boston Globe)
How hacking the human heart could replace pill popping (BBC.com)
Bates v Post Office litigation - reliability of computers (Stephen Mason)
Re: Election Security regulations in the U.S. (Dick Mills)
Re: What happens if your mind lives for ever on the Internet? (Martin Ward)
RISKS 31.52 Thursday 2 January 2020
China flight systems jammed by pig farm's African swine fever defences
(SCMP)
Boeing spacecraft lands safely in New Mexico desert, a successful end to a
flawed test mission (The Washington Post)
Laser-based attacks for controlling voice-activated systems such as
Amazon's Alexa (Light Commands)
Science Under Attack: How Trump Is Sidelining Researchers and Their Work
(The NY Times)
Bumble blocked Sharon Stone, thinking she was a fake (WashPost)
U.S. Coast Guard discloses Ryuk ransomware infection at maritime facility
(DCO)
CIA devised way to restrict missiles given to allies, researcher says
(Reuters)
Chinese Cloud Hopper hacking campaign is worse than thought (The Verge)
Wawa Data Breach: DC, VA Customers Could Be Affected (Patch)
Hackers steal data for 15 million patients, then sell it back to
lab that lost it (Ars Technica)
Executive dies, taking investor cryptocurrency with him. Now they want the
body exhumed (Charlie Osborne)
Driving surveillance: What does your car know about you? We hacked a 2017
Chevy to find out. (WashPost)
Cars towed in South End due to city error (The Boston Globe)
How tourists take their lives into their own hands (WashPost)
Some junk for sale on Amazon is very literally garbage, report finds
(ArsTechnica)
This alleged Bitcoin scam looked a lot like a pyramid scheme (WiReD)
Apple's new Screen Time Communication Limits are easily beaten with a bug
(ArsTechnica)
2019 Apple Platform Security guide shows what it is doing to 'push the
boundaries' of security and privacy (9to5Mac)
Wave of Ring surveillance camera hacks tied to podcast, report finds
(Ars Technica)
How to Track President Trump (*The New York Times*)
India's Internet shutdown shows normal practice for sovereign countries
(Prashanth Mundkur)
Resignation of Board Members from Verified Voting (Rebecca Mercuri)
Meet Cliff Stoll, the Mad Scientist Who Invented the Art of Hunting Hackers
(WiReD)
Planned Obsolescence (npr.org)
Re: Human error installing SCADA system leads to 7.5 million gallons of, raw
sewage dumped in Valdosta, GA (Martin Ward)
Re: What happens if your mind lives for ever on the Internet? (Amos Shapir,
Roderick Rees)
Re: Bates v Post Office litigation: reliability of computers
(Kelly Bert Manning)
Re: Elections (Don Poitras)
RISKS 31.53 Monday 6 January 2020
The Ghost of Y2K hits Hamburg (Hamburger Abendblatt)
Software Glitch Affects 14,000 New York City Parking Meters (WSJ+)
The Internet Is No Longer a Disruptive Technology (Bloomberg)
'Shattered' -- Inside the secret battle to save America's undercover
spies in the digital age (WashPost)
737 MAX Crashes Strengthen Resolve of Boeing to Automate Flight (WSJ + NYT
item)
Europe rejects patent applications signed with AI inventor (Charlie Osborne)
Amazon' Next-Day Delivery Has Brought Chaos And Carnage To America's
Streets, But The World' Biggest Retailer Has A System To Escape The Blame
(Michelle Thompson)
Company shuts down because of ransomware, leaves 300 without jobs just
before holidays (Catalin Cimpanu)
Fresh Cambridge Analytica leak 'shows global manipulation is out of control'
(Carole Cadwalladr)
Re: What happens if your mind lives forever on the Internet? (Martin Ward)
RISKS 31.54 Tuesday 28 January 2020
Boeing 737s can't land facing west (FAA via Clive D.W. Feather)
GPS jamming expected in southeast during military exercise (AOPA)
Election Security At The Chip Level (SemiEngineering)
Russians Hacked Ukrainian Gas Company at Center of Impeachment
(Nicole Perlroth and Matthew Rosenberg)
Scientists Deliver, Once Again, a Horrifying Report About
How Hot Earth Is Getting (VICE)
Ransomware attack forces cancer patients to re-schedule (CBC Web)
An Avenue by Which It Might Be Technically Possible to Give an iPhone The
Software Equivalent of Cancer (Pixel Envy)
Please Stop Sending Terrifying Alerts to Our Cell Phones (WIRED)
Update Firefox now, says Homeland Security, to block attacks (9to5mac)
A field guide to Iran's hacking groups (Web Informant)
Iran hackers have been password-spraying the U.S. electric grid (WiReD)
Re: The shooting down of flight PS752 in Iran (Martyn Thomas)
In a desperate bid to stay relevant in 2020's geopolitical upheaval,
N. Korea upgrades its Apple Jeus macOS malware (The Register)
Inside Documents Show How Amazon Chose Speed Over Safety in Building Its
Delivery Network (ProPublica)
Feds Are Content to Let Cars Drive, and Regulate, Themselves (WIRED)
Should Automakers Be Responsible for Accidents? (Gabe Goldberg)
Paul Krugman's no-good, very bad Internet day (Ars Techica)
Hackers Cripple Airport Currency Exchanges, Seeking $6 Million Ransom
(NYTimes)
Hacker offers for sale 49M user records from US data broker LimeLeads
(Security Affairs)
Over two dozen encryption experts call on India to rethink changes
to its intermediary liability rules (Tech Crunch)
Chosen-Prefix attack against SHA-1 Reported (Ars Technica)
Patch Tuesday, January 2020 (Rapid7)
Facebook Says Encrypting Messenger by Default Will Take Years (WiReD)
China's new Cryptolaw (Cointelegraph)
Some consumers have noticed that computerization isn't always the answer
(Star Tribune)
At Mayo Clinic AI engineers face an acid test: Will their algorithms help
real patients? (StatNews)
AI Comes to the Operating Room (The New York Times)
A Very Real Potential for Abuse: Using AI to Score Video Interviews (CNN)
5G, AI, blockchain, quantum, ... (Marketoonist)
Inside the Billion-Dollar Battle Over .Org (Steve Lohr)
A lazy fix 20 years ago means the Y2K bug is taking down computers now
(New Scientist)
When 2 < 7 => failure (Ars Technica via Jeremy Epstein)
Make It Your New Year's Resolution Not to Share Misinformation
(Mother Jones)
Inside the Feds' Battle Against Huawei (WiReD)
Apple Is Bullying a Security Company with a Dangerous DMCA Lawsuit (iFixit)
How to Protect Yourself From Real Estate Scams (NYTimes)
Dutch Artists Celebrate George Orwell's Birthday By Putting Party Hats On
Surveillance Cameras (BuzzFeed News)
Re: reliability of computers (Chris Drewe)
RISKS 31.55 Friday 31 January 2020
Georgia election systems could have been hacked before 2016 vote (Politico)
U.S. will look at sudden acceleration complaints involving 500,000 Tesla
vehicles (Reuters)
Alleged MSFT mega breach (Comparitech)
How the Internet helped crack the Astros' sign-stealing case (ESPN)
Australian General Practice Medical Data Aggregation Software
(outcomehealth)
Microsoft Warns of Unpatched IE Browser Zero-Day That's Under Active Attacks
(The Hacker News)
Is LongFi the Next Wireless Revolution? (LifeWire)
Elaborate Honeypot 'Factory' Network Hit with Ransomware, RAT, and
Cryptojacking (Darkreading)
Recent paychecks are smaller for some feds due to National Finance Center
error (Federal News Network)
The Secretive Company That Might End Privacy as We Know It (NYTimes)
London police to roll out live facial recognition across the city
(Janosch Delcker, Politico Europe)
The world's 2,153 billionaires are richer than 4.6 billion people combined,
Oxfam says (Business Insider)
Hospitals Give Tech Giants Access to Detailed Medical Records (WSJ)
The Navy cryptically says it has top-secret UFO briefings that would cause
'exceptionally grave damage' to US national security if published
(NYTimes)
Panicking About Your Kids' Phones: New Research Says Don't
(Nathaniel Popper)
Singapore updates AI governance model with real-world cases
(The Straits Times)
Clearview app lets strangers find your name, info with snap of a photo,
report says (CNET)
College career centers teach job applicants how to impress AI systems (CNN)
Banning Facial Recognition Isn't Enough (Bruce Schneier, NYTimes)
It May Be the Biggest Tax Heist Ever. And Europe Wants Justice
(The New York Times)
India Restores Some Internet Access in Kashmir After Long Shutdown (NYTimes)
Y2038 is here (Twitter)
Yikes, friend's LinkedIn account hacked and spamming (Google)
From a car dealer (PGN)
Re: "Don't expect a return to the browser wars" (Chris Drewe)
RISKS 31.56 4 February 2020
Iowa's Tally-by-App Experiment Fails (WSJ)
Risks in the Iowa Tally fiasco (Sundry)
Live frogs (Flyer Talk)
Computers threaten saffron harvest (Eric Sosman)
No smoke, no water, no waste. VR could train the next generation of
firefighters (cnn.com)
Artificial intelligence-created medicine to be used on humans for first time
(bbc.com)
Why asking an AI to explain itself can make things worse (MIT Tech Review)
AI License Plate Readers Are Cheaper: Drive Carefully (WiReD)
No more Punxsutawney Phil: It's long overdue for an AI groundhog
instead, PETA says. (The Washington Post)
Android Users Beware: this dangerous menace is already hiding on 43 million
phones (Forbes)
Why Google Backtracked on Its New Search Results Look (NYTimes)
Regis University's cyberattack was ``a crisis of the highest order,
But investigators couldn't trace its origin (Denver Post)
An artist wheeled 99 smartphones around in a wagon to create fake traffic
jams on Google Maps (Business Insider)
Very strange, still receiving security patches/updates for Windows 7
systems (Gabe Goldberg)
Seven Years Later, Scores of EAS Systems sit Un-patched, Vulnerable
(Security Ledger)
The Fractured Future of Browser Privacy (WiReD)
NYTimes: How Chaos at Chain Pharmacies Is Putting Patients at Risk (NYTimes)
IKEA Promises New Data Controls for Consumers (WSJ)
Facebook shows you how it stalks you. Here are the privacy settings to
change. (WashPost)
Re: Boeing 737s can't land facing west (R. G. Newbury)
Re: Should Automakers Be Responsible for Accidents? (John Levine)
Re: Election Security At The Chip Level (John Levine, Gabe Goldberg)
RISKS 31.57 Monday 10 February 2020
Backhoes, squirrels, and woodpeckers as DoS vectors (Richard Forno)
Benjamin Netanyahu's election app potentially exposed data for every Israeli
voter (WashPost)
The app that broke the Iowa caucus, an inside look (CNET)
Tesla Remotely Removes Autopilot Features From Customer's Used Tesla
Without Any Notice (Clean Technica)
Recent Car Thefts May Be Related To Carsharing App Getaround, Warns
D.C. Attorney General (DCist)
SSL Certificates are expiring... (Cryptography)
Nasty Linux, macOS sudo bug found and fixed (ZDNet)
Cisco Flaws Put Millions of Workplace Devices at Risk (WiReD)
Data leakage from portable versions of Open Office and Libre Office
(Arthur T.)
Facebook's Bug Bounty Caught a Data-Stealing Spree (WiReD)
The `manosphere' is getting more toxic as angry men join the incels
(MIT Tech Review)
Explainable AI (Chris Els=C3=A4sser)
Read the FBI's Damning Case Against the Recently Arrested Nintendo Hacker
(Vice)
Who owns your feelings? Short doc shows how big tech uses AI to track
emotions (CBC)
Photo Roulette on the App Store (Gabe Goldberg)
The 'race to 5G' is a myth (WEForum)
Not all fun and memes: What's the trouble with TikTok? (CBC)
The Night Sky Will Never Be the Same (The Atlantic)
Boeing's Starliner space capsule suffered a second software
glitch during December test flight (WashPost)
Boeing Refuses to Cooperate With New Inquiry into Deadly Crash (NYTimes)
NASA Shares Initial Findings from Boeing Starliner Orbital Flight Test
Investigation (NASA)
Re: Boeing 737s can't land facing west (Terje Mathisen)
Re: 99 smartphones ... (3daygoaty, JC Cantrell)
Re: Artificial intelligence-created medicine to be used on humans for
first time (Mark Thorson)
Re: AI-created medicine to be used on humans (Henry Baker)
Re: Election Security At The Chip Level (John R. Levine)
Re: Should Automakers Be Responsible for Accidents? (Gabe Goldberg)
RISKS 31.58 Saturday 15 February 2020
The Intelligence Coup of the Century: For decades, the CIA read the
encrypted communications of allies and adversaries (Greg Miller)
The US Fears Huawei Because It Knows How Tempting Backdoors Are (WIRED)
U.S. Charges Chinese Military Officers in 2017 Equifax Hacking (NYTimes)
Voatz: Ballots, Blockchains, and Boo-boos? (MIT via PGN retitling)
Lax FAA oversight allowed Southwest to put millions of
passengers at risk, IG says (WashPost)
Pentagon ordered to halt work on Microsoft's JEDI cloud contract after
Amazon protests (WashPost)
Linux is ready for the end of time (ZDNet)
Google redraws the borders on maps depending on who's looking (WashPost)
Car renter paired car to FordPass, could still control car long after return
(ZDNet)
European Parliament urges oversight for AI (Politico Europe)
AI can create new problems as it solves old ones (Fortune)
AI and Ethics (NJ Tech Weekly)
The future of software testing in 2020: Here's what's coming (Functionize)
Will Past Criminals Reoffend? Humans Are Terrible at Guessing, and Computers
Aren't Much Better (Scientific American)
Apple joins FIDO Alliance, commits to getting rid of passwords (ZDNet)
IRS paper forms vs. COVID-19 (Dan Jacobson)
The Politics of Epistemic Fragmentation (Medium)
Why Is Social Media So Addictive? (Mark D. Griffiths)
The high cost of a free coding bootcamp (The Verge)
Debunking the lone woodpecker theory (Ed Ravin)
Re: Benjamin Netanyahu's election app potentially exposed data for
every Israeli voter (Amos Shapir)
Re: Backhoes, squirrels, and woodpeckers as DoS vectors (Tom Russ)
Re: A lazy fix 20 years ago means the Y2K bug is taking down computers, now
(Martin Ward)
Re: Autonomous vehicles (Stephen Mason)
RISKS 31.59 Friday 21 February 2020
Bluetooth-Related Flaws Threaten Dozens of Medical Devices (WIRED)
Electronic voting systems (Ross Anderson)
Orbital Debris Summary (Aerospace.org)
Fraud Case in Charleston SC Shines Light on Web's Dark Corners (WSJ)
Israel Says Hamas Targeted Its Soldiers in Honey Trap's Cyberattack (WSJ)
Your Doorbell Camera Spied on You. Now What? (NYTimes)
Sex robots may cause psychological damage (BBC)
Electrical Tape on Sign Tricked a Tesla Into Speeding in a Test
(Yahoo Finance)
Spooky Video shows self-driving cars being tricked by holograms (Inverse)
Microsoft Surface Battery Fail (Larry Werring)
Hundreds of Millions of PC Components Still Have Hackable Firmware (WIRED)
EU Commission white paper On Artificial Intelligence - A European approach
to excellence and trust (Europa via Diego Latella)
How smartphone addiction changes your brain: Scans reveal how grey
matter of tech addicts physically changes shape and size in a similar way
to drug users (Daily Mail)
US Govt Warns Critical Industries After Ransomware Hits Gas Pipeline
Facility (CISA)
Hackers Are Using the Coronavirus Panic to Spread Malware (Malware Bytes)
Flywheel owners found out that their bikes were bricked through Peloton
(The Verge)
Scientists Warn `Insect Apocalypse' Could Doom Humanity (The Guardian)
Mysterious GPS outages are wracking the shipping industry (Fortune)
UN/CCW/GGE documents on Autonomous Weapon Systems (Diego Latella)
IBM, Marriott, and Mickey Mouse Take on Tech's Favorite Law (David McCabe,
NYTimes, 4 Feb 2020)
Re: A lazy fix 20 years ago means the Y2K bug is taking down computers
(John Levine, Martin Ward)
Re: Debunking the lone woodpecker theory (Gabe Goldberg)
My smart car rental was a breeze - until I got trapped in the woods
(The Guardian)
Today in sharing economy struggles: our app-powered rental car
lost cell service on the side of a mountain in rural California and now I
live here I guess (Kari Paul)
Re: Car renter paired car to FordPass, could still control car long ...
(Jeremy Epstein, R. G. Newbury)
Re: The Intelligence Coup of the Century (David Lesher)
How the Iowa Caucuses Came Crashing Down (WashPost)
'The only uncertainty is how long we'll last': a worst-case scenario for
the climate in 2050 (The Guardian)
Like Something Out of The Book Of Exodus Locust Armies Are Devouring Entire
Farms In Kenya In As Little As 30 Seconds (CGTN)
RISKS 31.60 Friday 6 March 2020
Tesla Autopilot crash driver 'was playing video game' (BBC News)
NTSB report on Walter Huang/Tesla crash (The Verge)
Apple's Upcoming 'CarKey' Feature Will Let You Send Digital Keys
Using Messages App (MacRumors)
Reliability of Pricey New Voting Machines Questioned (ACM Tech News)
ElectionGuard (Lite via Rob Slade)
California man arrested on charges his DDoSes took down candidate's website
(Ars Technica)
A high-school student created a fake 2020 candidate. Twitter verified it
(CNN Business)
Radioactive products were popular in the early 20th century and still set
off geiger counters (WashPost)
Hackers Can Use Ultrasonic Waves to Secretly Control Voice Assistant Devices
(TheHackerNew)
Hackers target cable TV alert system and send false messages
(Shawn Merdinger)
Phishing scams are getting more sophisticated; what to look out for
(Business Insider)
LTE security flaw can be abused to take out subscriptions at your expense
(Bochum)
What to do about artificially intelligent government (Stanford)
Lawsuit Says Google Used School Software To Spy On Children (NYT)
New Wi-Fi Encryption Vulnerability Affects Over A Billion Devices
(The Hacker News)
A Viral Email About Coronavirus Had People Smashing Buses And Blocking
Hospitals. (Buzzfeednews)
Security self-theatre? (COVID-19 and masks)
Man who breached coronavirus stay-home notice stripped of Singapore PR
status, barred from re-entry (The Straits Times)
How coronavirus turned the dystopian joke of FaceID masks into a reality
(Technology Review)
The Computer Says No! UCLA face recognition (Fight for the Future via
Paul Cornish)
AI baby monitors attract anxious parents: Fear is the quickest way to get
people's attention (WashPost)
How North Korean Hackers Rob Banks Around the World (WIRED)
Fido Alliance gets backing from Apple to replace passwords (9to5Mac)
911 operators couldn't trace the location of a dying student's phone. It's
a growing issue. (WashPost)
Rice University Boosts 'Internet of Things' Security -- Again
(Mike Williams)
Startup's Stock Trading App experiences a day-long outage on one of
the busiest trading days of the year (Tech Crunch)
Government-Run Energy Company Keeps Reeling in the Same Employees
in Phishing Training (nextgov.com)
Clearview AI has billions of our photos. Its entire client list was just
stolen (CNN Business)
Afraid of the Thirteenth Floor? Superstition and Real Estate, Part 2
(Skeptical Inquirer)
Hilton drags corporate feet, minimizes disclosing personal data held
(A friend via Gabe Goldberg)
How a Hacker's Mom Broke Into a Prison -- and the Warden's Computer (WiReD)
Old RISKS risks are still in vogue (WXYZ via David Lesher)
Risks of Leap Years and Dumb Digital Watches (Mark Brader)
TikTok Challenges, Ranked by How Likely They Are to Maim or Kill You (Vice)
Algorithm Targets Marijuana Convictions Eligible To Be Cleared (npr.org)
Would you eat a 'steak' printed by robots? (bbc.com)
'They lied to us': Mom says police deceived her to get her DNA and charge
her son with murder (NBC News)
Taxes are expected to rise in Taunton, MA after an assessing tech snafu
(Christopher Gavin)
Pets 'go hungry' after smart feeder goes offline (bbc.com)
Emissions possible: Streaming music swells carbon footprints (Al Jazeera
via Dan Jacobson)
Re: Linux is ready for the end of time (John Stockton)
Re: Mysterious GPS outages are wracking the shipping industry
(Craig S. Cottingham)
RISKS 31.61 Sunday 15 March 2020
A lawsuit against ICE reveals the danger of government-by-algorithm
(WashPost)
This Unpatchable Flaw Affects All Intel CPUs Released in Last 5 Years
(PTSecurity)
How the Cloud Has Opened Doors for Hackers (WashPost)
Hackers Can Clone Millions of Toyota, Hyundai, and Kia Keys (WiReD)
Before Clearview Became a Police Tool, It Was a Secret Plaything of the Rich
(The New York Times)
How Hackers and Spies Could Sabotage the Coronavirus Fight
(Bruce Schneier and Margaret Bourdeaux, Foreign Policy)
Cybersecurity label for smart home devices (The Straits Times)
South Korea warns when potential virus carriers are near (BBC)
COVID-19, toilet paper, hoarding, and emergency preparedness (Rob Slade)
U.S. Treasury Sanctions Individuals Laundering Cryptocurrency for Lazarus
Group (Treasury via geoff goodfellow)
Black Market White Washing- Why You Shouldn't Take Legal Advice From
Criminals (Disruptive Labs)
Can YouTube Quiet Its Conspiracy Theorists? (NYTimes)
Risks of publishing web browser screenshots (MarketWatch)
China's Geely invests $326M to build satellites for autonomous cars
(Reuters)
Congress Must Stop the Graham-Blumenthal Anti-Security Bill (Gabe Goldberg)
Empty Promises Won't Save the .ORG Takeover (EFF)
How to clean up the mess we've made that's orbiting the Earth (The Hill)
How fake audio, such as deepfakes, could plague business, politics
(Bakersfield)
Ransomware Attacks Prompt Tough Question for Local Officials:: To Pay or
Not to Pay? (Pew)
Through apps, not warrants, Locate X allows federal law enforcement to track
phones (Protocol)
A hybrid AI model lets it reason about the world's physics like a child
(MIT Tech Review)
This Satellite Startup Raised $110 Million To Make Your Cellphone Work
Everywhere (Forbes)
Your smartphone is dirtier than a toilet seat. Here's how to disinfect it.
(Mashable)
PCI Fireside Chat: Vint Cerf and Ian Bremmer (The Unstable Globe)
RISKS 31.62 Saturday 21 March 2020
Boeing Culture Concealment 747 Max report (Tom Krisher via PGN)
His Tesla was in a hit and run. It recorded the whole thing. (WashPost)
NASA shows it's lost confidence in Boeing's ability to police its own work
on Starliner space capsule (WashPost)
Boeing Culture Concealment 747 Max report (The Guardian)
Bad Air: Pilots worldwide complain of unsafe cabin fumes (Politico)
Former acting Homeland Security inspector general indicted in data theft of
250,000 workers (WashPost)
Let's Encrypt discovers CAA bug, must revoke customer certificates (WiReD)
The EARN IT Act Is a Sneak Attack on Encryption (WiReD)
Wash Your Hands -- but Beware the Electric Hand Dryer (WiReD)
Live Coronavirus Map Used to Spread Malware (Krebs)
The Economic Ramifications of COVID-19 (Medium)
DA suspends most inspections of foreign drug, device and food manufacturers
(WashPost)
Downloading Zoom for work raises employee privacy concerns (Gabe Goldberg)
Scam call centre owner in custody after BBC investigation (BBC News)
Are AI baby monitors designed to save lives or just prey on parents'
anxieties? (WashPost)
In search of better browser privacy options (Web Informant)
Assigning liability when medical AI is used (StatNews)
Most Medical Imaging Devices Run Outdated Operating Systems (WiReD)
Come on, Microsoft! Is it really that hard to update Windows 10 right?
(Computerworld)
A Botnet Is Taken Down in an Operation by Microsoft, Not the Government
(NYTimes)
Fuzzy matching vs. marlberries (Dan Jacobson)
Giant Report Lays Anvil on US Cyber Policy (WiReD)
Google tracked his bike ride past burglarized home, which made him a suspect
(NBC News)
Crimea, Kashmir, Korea -- Google redraws disputed borders, depending on
who's looking (WashPost)
What happens when Google loses your address? You cease to exist. (WashPost)
Legislators Want to Block TikTok From Goverment Phones (LifeWire)
H.R. 5680, Cybersecurity Vulnerability Identification and Notification Act
of 2020 (Congressional Budget Office)
Whisper left sensitive user data exposed online (WashPost)
As the U.S. spied on the world, the CIA and NSA bickered (WashPost)
Re: Mysterious GPS outages are wracking the shipping industry (Dmitri Maziuk)
Re: ElectionGuard (John Levine)
Re: What to do about artificially intelligent government (Amos Shapir)
Re: 911 operators couldn't trace the location of a dying student's phone
(John Levine)
Re: Risks of Leap Years and Dumb Digital Watches (Amos Shapir, Terje Mathisen
)
Re: Risks of Leap Years ...., and depending on WWVB (Bob Wilson)
RISKS 31.63 Tuesday 31 March 2020
Covid-19 (Ninghui Li)
Covid-19 is nature's wake-up call to complacent civilisation
(George Monbiot)
Covid-19: 'Nature is sending us a message', says UN environment chief
(The Guardian)
RISKS 31.64 Wednesday 1 April 2020
The Driverless Vehicle Act (Richard Stein, April Fools 2020)
Tokyo firm urges caution against surge in coronavirus-related
disinformation on April Fools' Day (The Japan Times via Dave Farber)
Risks of Ostrichizing Yourself: Almost everything is interdependent
(PGN)
U.S. Health and Human Services Department suffered a cyber-attack (IFTTT)
U.S. government & tech industry discussing ways to use smartphone
(WashPost via Jan Wolitzky)
Putin's New Cyberweapons (Zak Doffman)
Classified info on stolen laptop (NYTimes)
Electronic Health Records Need an Ethical Tune-Up (Scientific American)
Speech recognition algorithms may also have racial bias (Ars Technica)
Big Rigs Begin to Trade Diesel for Electric Motors (NYTimes)
RFID Locks and the Lock Picking Lawyer (YouTube via Sheldo)
Siri and Alexa Fails: Frustrations With Voice Search (The Manifest)
Zoom bombing (NYTimes)
Video conferences under attack by "zoombombing" (Lauren Weinstein)
Beware of call-back numbers (Mabry Tyso vi PGN)
Wash Your Hands -- but Beware the Electric Hand Dryer (Rob Slade)
Why Don't We Just Ban Targeted Advertising (WIRED)
Death on Mars (Scientific American)
Her Incredible Sense Of Smell Is Helping Scientists Find New Ways To
Diagnose Disease (npr.org)
MIT-based Team Works on Rapid Deployment of Open-source Low-cost Ventilator
(MIT News)
MIT Will Post Free Plans Online for an Emergency Ventilator That Can Be
Built for $100 (SciTechDaily via Lauren Weinstein)
A computer virus expert looks at CoVID-19 (Rob Slade)
Mathematics of life and death: How disease models shape national shutdowns
and other pandemic policies (Martin Enserink/Kai Kupferschmidt)
Coronavirus: Robots use light beams to zap hospital viruses (bbc.com)
Risks of extrapolation (Geoff Kuenning)
Coronavirus Reactions Creating Major Internet Security Risks
(Lauren Weinstein)
Seeking podcast contributors relating to Y2K (Peter de Jager)
Risks of Leap Years, and depending on WWVB (Rob Seaman)
Call for Cyberattack Use Cases (Sami Saydjari)
Re: What happens when Google loses your address? (Wendy M. Grossman)
Re: 911 operators couldn't trace the location of a dying student's
(John Levine)
RISKS 31.65 Thursday 9 April 2020
Problems With Zoom Are Mounting (TechCrunch)
Thousands of Zoom video calls left exposed on open Web (WashPost)
A Surge It Didn't Expect Has Zoom Rushing Fixes (NYTimes)
Zoom Meetings Do Not Support End-to-End Encryption (The Intercept)
Boeing 787s must power cycle every 51 days (The Register)
Can *Solid* Save The Internet? (Hackaday)
Turning Back the Clock on Aging Cells (NYTimes)
Online Credit Card Skimmers Are Thriving During the Pandemic (WiReD)
Marriott data breach, Millions of records spilled (CNBC)
Can artificial intelligence fight elderly loneliness? (bbc.com)
Autonomous weapons, AI and Facial Recognition, Pandemic priorities
(Diego Latella)
Cloudflare launches mass censorship product (Lauren Weinstein)
Domain Name Registration Data at the Crossroads (Interisle)
Content Delivery Networks and clouds join MANRS Internet security effort
(ZDNet)
A first-world 2020 issue... (geoff goodfellow)
David Reed comment on models (via Dave Farber)
Reminder on Planning for the Future (PGN)
Measurement units risk in those Open Source ventilators? (Tony Harminc)
Russia's Planned Coronavirus App is a State-Run Security Nightmare (Gizmodo)
How to Refuel a Nuclear Power Plant During a Pandemic (WiReD)
NJ's 40-year-old system increases delays for unemployment checks amid
coronavirus crisis (Philip L. Lehman)
Touch-screens in rental and other shared vehicles for COVID-19 (PGN)
U.S. government & tech industry discussing ways to use smartphone (WashPost)
Broadband engineers threatened due to 5G coronavirus conspiracies
(The Guardian)
An unprecedented wave of personal data could be heading to federal agencies
(FedScoop)
Re: Risks of Leap Years, and depending on WWVB (Bob Wilson)
Re: What happens when Google loses your address?
(Steve Golson, Dan Jacobson)
Re: MIT Will Post Free Plans Online for an Emergency Ventilator That Can Be
Built for $100 (Amos Shapir)
Re: Mathematics of life and death (Amos Shapir)
Re: A computer virus expert looks at CoVID-19 (Dan Jacobson, Dan Jacobson,
Rob Slade)
Masking the CoVID-19 problem (via PGN)
RISKS 31.66 Friday 10 April 2020
The ancient computers in the Boeing 737 Max are holding up a fix
(The Verge via Gabe Goldberg)
Boeing 787s must power cycle every 51 days (The Register via John Levine)
Privacy Cannot Be a Casualty of the Coronavirus (NYTimes)
FTC, FCC crack down on coronavirus robocall scams (WashPost)
What about contact lenses? (Paul Wexelblat)
Re: Firefox Cloudflare DNS (Dmitri Maziuk)
Re: A computer virus expert looks at CoVID-19 (Rob Slade)
RISKS 31.67 Saturday 11 April 2020 Contents:
COVID-19 needs some big-picture thinking (PGN)
Apple-Google Proposal for Contact Tracing (Marc Rotenberg)
Can Legislatures Safely Vote by Internet? (Andrew Appel)
Citing BGP hijacks and hack attacks, feds want China Telecom out of the U.S.
(Ars Technica)
Should we teach children about quantum computing? (bbc.com)
Re: Boeing 787s must power cycle every 51 days (Amos Shapir)
Re: Masking the CoVID-19 problem (Gregory Carvalho, Amos Shapir,
Julian Bradfield)
RISKS 31.68 Friday 17 April 2020
US Senate tells members not to use Zoom (Ars Technica)
Over 500,000 Zoom Accounts Sold on the Dark Web and Hacker Forums
(MacRumors)
Man accidentally ejects himself from fighter jet during surprise flight
(The Guardian)
Do Some Surgical Implants Do More Harm Than Good? (The New Yorker)
Seeking Software That Hears Better (Scientific American)
Reese Witherspoon's Fashion Line Offered Free Dresses to Teachers
but Didn't Mean Every Teacher (NYTimes)
The Pentagon Hasn't Fixed Basic Cybersecurity Blind Spots (WiReD)
Interactive exhibit mapping corruption (Prospect)
Linux Security: Chinese State Hackers May Have Compromised 'Holy
Grail' Targets Since 2012 (Davey Winde)
The US Is Waging War on Digital Trade Barriers (WiReD)
California Allows Startup Nuro to Test Driverless Delivery Vehicles
(Reuters)
Couple Fined For Violating Lockdown After Posting Old Vacation Photos to
Facebook (Gizmodo)
Fertility apps can be 'misleading' for women, review finds (cnn.com)
Legit email/websites considered harmful, or RISKs in the time of COVID-19
(Cris Pedregal Martin)
Rotimatic -- the robotic roti-maker (Richard Stein)
Cell Network Outage - Baltimore/Washington DC Area (Gabe Goldberg)
Messaging App Signal Threatens to Dump US Market if Anti-Encryption
Bill Passes (PCMag)
Efficacy of location surveillance (Ross Anderson)
Keeping the DNS Secure During the Coronavirus Pandemic (ICANN)
Getting Back To Normal: Big Tech's SolutionDepends On Public Trust (npr.org)
COVID-Tech: Emergency responses to COVID-19 must not extend beyond the
crisis AND COVID-19 pandemic adversely affects digital rights
in the Balkans (EDRi-gram 18.7 via Diego Latella)
Your COVID-19 Internet problems might be COVID-19 Wi-Fi problems
(Ars Technica)
New CDC Study Shows Coronavirus Can Survive For Hours On Floors,
Walls, Shoes (Typer Durden)
How Coronavirus Is Eroding Privacy (WSJ)
Coronavirus Rumor Control (FEMA)
Risks of mass announcements in a Corona environment (danny burstein)
UK government using confidential patient data in coronavirus response
(The Guardian)
Error rates and CoVID-19 antibody tests (Rob Slade)
Re: Masking the CoVID-19 problem (Robert Weaver)
Re: Can Legislatures Safely Vote by Internet? (Chuck Petras)
Re: Should we teach children about quantum computing? (John Levine)
RISKS 31.69 Monday 20 April 2020 Volume 31 : Issue 69
A $1,300 smart crib was discovered to be vulnerable to a hack that would
rapidly rock babies back and forth (Business Insider)
Planned obsolescence: the outrage of our electronic waste mountain
(The Guardian)
ICANN delays .org sale again after scathing letter from California AG
(Ars Technica)
This Is No Time for an Internet Blackout (Slate)
Zoom's Security Woes Were No Secret to Business Partners Like Dropbox
(NYTimes)
Anti-Asian Zoombombing at Newton South High School (Village14)
Buyer beware--that 2TB-6TB "NAS" drive you've been eyeing might be SMR
(Ars Technica)
"ACM Reports Best Practices for Virtual Conferences" (HPCwire)
Is BGP Safe Yet? (WiReD)
COVID-19 Internet Usage Update (Jason Livingood)
Raspberry Pi-Powered Ventilator to Be Tested in Colombia (BBC)
Sipping from the Coronavirus Domain Firehose (Krebs on Security)
Australian Government proposes to distribute Coronavirus App (John Colville)
Rise in video conferencing use spells big trouble for ISPs
(Lauren Weinstein)
More states finally paying $600 extra in unemployment aide (apnews)
More on COVID-19 Digital Rights Tracker (Lauren Weinstein)
Capitalists or Cronyists? (Scott Galloway)
The world after coronavirus (Yuval Noah Harari)
Re: How Coronavirus Is Eroding Privacy (Amos Shapir)
Re: New CDC Study Shows Coronavirus Can Survive For Hours On (Rex Sanders)
RISKS 31.70 Tuesday 21 April 2020
Zoom's security woes were no secret to its business partners (NYTimes)
New Pressure on Voatz for false claims in Oregon (Politico)
2B phones cannot use Google and Apple contact-tracing tech
(Ars Technica)
Microsoft says the pandemic argues for a federal privacy law (WashPost)
Computer Fraud and Abuse Act (WashPost)
What do SHARP IoT devices and facial masks produced by its factory have in
common? (CNET Japan via Chiaki Ishikawa)
Re: Australian Government proposes to distribute Coronavirus App
(Michael Bacon)
Re: Internet Usage update (Stewart Fist)
Re: The world after coronavirus (3daygoaty)
RISKS 31.71 Wednesday 22 April 2020
Google's auto-complete for speech can cover up glitches in video call
(MIT Technology Review)
Nearly 25,000 email addresses and passwords allegedly from NIH, WHO, Gates
Foundation and others are dumped online (WashPost)
Zero-Day Warning: It's Possible to Hack iPhones Just by Sending Email
(The Hacker News)
How NASA does software testing and QA (Functionize)
Leaked pics from Amazon Ring show potential new surveillance features
(Ars Technica)
A notable quote for scientists and academics (Dave Farber)
You can now receive 3 free credit reports each week for the next year (CNBC)
Anti-lockdown protester who said it was a 'political ploy' is killed by
coronavirus (Metro)
Chinese Agents Spread Messages That Sowed Virus Panic in U.S. (NYTimes)
Las Vegas Mayor: Assume everyone has COVID-19, reopen the casinos,
and let the chips fall where they may (WashPost)
TN Anti-lockdown protester spotted with vile poster saying 'Sacrifice the
weak' to coronavirus (Metro)
Coronavirus is largely spread by people without symptoms (Inquirer)
Spam filter censoring COVID content (Henry Baker)
Lego is producing 13,000 face visors a day for healthcare workers amid
coronavirus pandemic (USA Today)
Re: Australian Government proposes to distribute Coronavirus App
(Amos Shapir, Michael Bacon)
Re: More on COVID-19 Digital Rights Tracker" (Chris Drewe)
Re: Internet Usage update (Martin Ward, Dmitri Maziuk, Barry Gold,
JCHolleran)
Re: Anti-Asian Zoombombing at Newton South High School (Phil Nasadowski)
RISKS 31.72 Saturday 25 April 2020
Zoom 5.0 update will bring much-needed security upgrades (Engadget)
A critical iPhone and iPad bug that lurked for 8 years may be under
active attack (Ars Technica)
Security Vulnerability Discovered in iOS Mail App (LifeWire)
Facebook agreed to censor posts after Vietnam slowed traffic (Reuters)
Cox email creation policy change I'd missed! (Gabe Goldberg)
An ESPN Commercial Hints at Advertising's Deepfake Future (NYTimes)
Twitter Bans 5G Conspiracy Theorists From Sharing Harmful Misinformation
(TechCrunch)
Israel stops using phone tracking to enforce COVID-19 quarantines (Engadget)
Internet online voting, once again (WashPost editorial)
New York payments startup exposed millions of credit-card numbers
(TechCrunch)
To Understand the Medical Supply Shortage, It Helps to Know How the U.S.
lost the lithium battery (Propublica)
'Pandemic drone' test flights are monitoring social distancing
(The Boston Globe)
Free online threat blocker launched in Canada as successful COVID-19 scams
multiply (CBC News via Jose Maria Mateos)
Coronavirus Antibody Tests: Can You Trust the Results? (NYTimes)
Nearly 50% of Twitter Accounts Talking about Coronavirus Might Be Bots
(Vice)
Re: asymptomatic coronavirus (Dmitri Maziuk)
Re: Computer Fraud and Abuse Act (Kelly Bert Manning)
Re: Internet Usage update (Chris Drewe, Paul Edwards)
RISKS 31.73 Sunday 26 April 2020
The illusion of certainty (Spectator)
That no-click iOS Zero-day reported to be under exploit doesn't exist,
Apple says (Ars Technica)
The Untold Story of the Birth of Social Distancing (NYTimes)
Germany changes course on contact tracing app, abandoning PEPP-PT (Politico)
Inexpensive, portable detector identifies pathogen in minutes
(Lois Yoksoulian)
Re: Coronavirus Antibody Tests: Can You Trust the Results? (PGN)
Re: Cox email creation policy change I'd missed! (John Levine)
Re: e-postage, Internet Usage update (John Levine)
Re: Zoom 5.0 update will bring much-needed security upgrades (John Levine,
Monty Solomon)
RISKS 31.74 Monday 27 April 2020
Why a Data-Security Expert Fears U.S. Voting Will Be Hacked
(Alexandra Wolfe WSJ)
Principle of the Day (Ray Dalio)
Emissions Are Way Down. No, That's Not All Good News for the Environment
(Mother Jones)
Coronavirus detected on particles of air pollution (NIH via geoff goodfellow)
"Recommendation: Do Not Install or Use Centralized Server Coronavirus
COVID-19 Contact Tracing Apps" (Lauren Weinstein)
'No evidence' that recovering from Covid-19 gives people immunity, WHO says
(geoff goodfellow)
Re: Coronavirus Antibody Tests: Can You Trust the Results (Rich Klawiec)
Re: Spam filter censoring COVID content (Henry Baker)
Re: e-postage, Internet Usage update (Paul Edwards)
RISKS 31.75 Tuesday 28 April 2020
States Expand Internet Voting Experiments Amid Pandemic, Raising
Security Fears (Miles Parks via PGN)
Attackers exploit 0-day code-execution flaw in the Sophos firewall
(Ars Technica)
Windows virus files on a Mac lead to weeks of problems (Rex Sanders)
After prolonged service outage, Petnet shuts down, citing coronavirus
(Ars Technica)
Re: Spam filter censoring COVID content (John R. Levine)
Re: How NASA does software testing and QA (Martin Ward)
Re: Google's auto-complete for speech can cover up glitches in video
(Martin Ward)
RISKS 31.76 Wednesday 29 April 2020
Online voting is too vulnerable (The Economist)
No-password Access to Britain's Road Surveillance Camera Data (The Register)
Democratising mass surveillance, one snafu at a time (The Register)
Washington Post-University of Maryland poll finds a problem for
Apple-Google coronavirus app (WashPost)
Malicious Android apps (WiReD)
Nine million logs of Brits' road journeys spill onto the Internet
from password-less number-plate camera dashboard (The Register)
Amazon Smart Oven Review: Don't Let It Anywhere Near Your Kitchen (WiReD)
Disney claims May the 4th (Rob Slade)
Ross Anderson course videos online (Rob Slade)
Re: 'No evidence' that recovering from Covid-19 gives people immunity,
WHO says (Arthur Flatau)
RISKS 31.77 Friday 1 May 2020
Red-Flagging Misinformation Could Slow the Spread of Fake News on
Social Media (NYU)
Statistics and protection (Rob Slade)
Trust in experts has increased quite substantially over the last
(geoff goodfellow)
Footstep Sensors Identify People by Gait (Scientific American)
How AI Steered Doctors Toward Possible Coronavirus Treatment (Cade Metz)
States Made It Harder to Get Jobless Benefits. Now That's Hard to Undo
(NYTimes)
Would you have fallen for this phone scam? (Krebs via geoff)
Re: Online voting is too vulnerable (3daygoaty)
Re: After prolonged service outage, Petnet shuts down (Martin Ward)
RISKS 31.78 Saturday 2 May 2020
Artificial Intelligence Outperforms Human Intel Analysts In a Key Area
(Defense One)
Drones, robots, and super sperm: the future of farming (Youtube)
Farmers Are Hacking Their Tractors Because of a Repair Ban (Youtube)
Ultra-rare footage from robot spy gorilla shows giant apes singing (The Sun)
What Is Fleeceware, and How Can You Protect Yourself? (WiReD)
Tech Giants Are Using This Crisis to Colonize the Welfare System (Jacobin)
Bezos could face House subpoena in antitrust probe (WashPost)
Canadians have lost more than $1.2 million to COVID-19 scams (CBC News)
Technology once used to combat ISIS propaganda .. (WashPost)
Why dangerous conspiracy theories about the virus spread so fast --
and how they can be stopped. (WashPost)
`Splinternet' Nearer Than We Think? (The Telegraph)
RISKS 31.79 Monday 4 May 2020
Tesla Data Leak- Old Components With Personal Info Find Their Way
(geoff goodfellow)
Apple, Google announce new privacy protection rules for contact tracing apps
(Steven Overly)
macOS Image Capture Bug More Pervasive Than Originally Thought (MacRumors)
Life Inside the Extinction (Scientific American)
A Prophet of Scientific Rigor -- and a Covid Contrarian (WiReD)
Quote of The Day (John Adams)
Why the Coronavirus Is So Confusing (The Atlantic)
What the Coronavirus Crisis Reveals About American Medicine (The New Yorker)
Re: Online voting is too vulnerable (Dick Mills)
RISKS 31 80 Wednesday 6 May 2020
Circumventing Censorship (Fenello)
Brit cyber-spies drop 'whitelist' and 'blacklist' -- political correctness
gone mad? (The Register)
Tracking your browsing using HTML canvas fingerprinting (Web Informant)
UK finds itself almost alone with centralized virus contact-tracing
app that probably won't work well, asks for your location, may be illegal
(The Register)
Visualization shows droplets from one cough on an airplane infecting large
number of passengers, researchers say (FoxNews)
Social Distancing Informants Have Their Eyes on You (NYTimes)
BSides (World Netwide Online via Rob Slade)
Re: Online voting is too vulnerable (Mark E. Smith)
Re: statistics and protection - Remdesevir (David Alexander)
Re: Big Rigs Begin to Trade Diesel for Electric Motors (Richard Stein)
RISKS 31.81 Friday 8 May 2020
U.S. government plans to urge states to resist 'high-risk' Internet voting
(Kim Zetter)
Trading computer can't handle negative numbers (Henry Baker)
Nearly 20,000 Georgia Teens Are Issued Driver's Licenses Without a Road Test
(NYTimes)
Risk of Misinterpreting Hydrogen Peroxide Indicator Colors for Vapor
Sterilization: Letter to Health Care Providers (FDA)
GitHub Takes Aim at Open Source Software Vulnerabilities (WiReD)
Snake ransomware targeting healthcare now claims to steal unencrypted files
before encrypting computers on a network (BleepingComputer]
China's Military Is Tied to Debilitating New Cyberattack Tool (NYTimes)
Coronavirus Proves Only Structural Changes Can Avert Climate Apocalypse
(IEA)
Which COVID-19 models should we use to make policy decisions? (MedixlXpress)
COVID SW model is a steaming pile ... (Whistleblower via Henry Baker)
German contact-tracing app to be rolled out in mid-June (Politico)
Digital immunity passport is `the lesser of two evils' (Politico)
Flu vs. COVID-19 (geoff goodfellow)
Re: Visualization shows droplets from one cough on an airplane (Amos Shapir)
Re: What the Coronavirus Crisis Reveals... (Chris Drewe)
RISKS 31.82 Wednesday 13 May 2020
All California voters will receive mail-in ballots for November (NYTimes)
Agencies warn states: Internet voting is ``High Risk'' (Politico)
7 New Flaws Affect All Thunderbolt-equipped Computers Sold in the Last 9
Years (WiReD)
Teen Hacker and Crew of Evil Geniuses Accused of $24 Million Crypto Theft
(Bloomberg)
How a Facebook Bug Took Down Spotify, TikTok, and Other Major iOS Apps
(WiReD)
The Year the Internet Thought She Was MacKenzie Bezos (WiReD)
Federal agencies' quiet warning on Internet voting gets a tepid response
from state officials (Eric Geller)
Beware of these futuristic background checks (vox.com)
Microsoft and Intel Think They Can Identify Malware By Its Looks (Lifewire)
Patch Tuesday (Threatpost)
Neuralink Will Do Human Brain Implants in CLess Than a Year (Elon Musk)
A Portal Between Digital and Physical Worlds? It's Close to Reality
(Hollywood Reporter)
As we shelter in place in the pandemic, more employers are using
software to track our work -- and us (NYTimes)
COVID-19 expert- Coronavirus will rage 'until it infects everybody it
possibly can' (USA Today)
Re: COVID SW model is a steaming pile ... (Wol)
Re: Coronavirus New York Shock- Two-Thirds Of Recent Patients
Infected While Staying At Home (geoff goodfellow)
Re: Models (Roderick Rees)
Re: Trading computer can't handle negative numbers (John Levine)
RISKS 31.83 Saturday 16 May 2020
Massachusetts uses same license plate numbers for diff vehicle types (WHDH)
Feds Suspect Vast Fraud Network Is Targeting U.S. Unemployment Systems
(NYTimes)
Australia's largest steel producer shut down by ransomware attack (ABC AU)
China is capable of shutting down Europe's 5G network regardless
of whether Huawei equipment is included in it (UI.SE)
Meaningless "review" of Imperial COVID codebase (Wordpress)
Virginia Will No Longer Include Antibody Tests In Overall Test Data (DCist)
Stimulus check delays when accounts were overdrawn! (Propublica)
App Shows Promise in Tracking New Coronavirus Cases, Study Finds (NYTimes)
From asymptomatic to lethal:- Coronavirus discrepancies puzzle scientists
(WashTimes)
Apple and Google clash with health officials over virus-tracking apps
(WashPost)
The Prophecies of Q (The Atlantic)
DHS to advise telecom firms on preventing 5G cell tower attacks linked to
coronavirus conspiracy theories (WashPost)
Poll -- US believers see message of change from God in virus (AP)
Re: COVID SW model is a steaming pile ... (Erling Kristiansen)
Re: Coronavirus New York Shock: Two-Thirds Of Recent Patients Infected
While Staying At Home (Jay Elinsky)
Re: Risks in signature verification for mail-in ballots (Paul Burke)
RISKS 31.84 Wednesday 20 May 2020
Piper and Garmin Certify Autoland on Halo M600SLS (Julie Boatman)
The ultimate Turing test (Henry Baker)
The FBI Just Unlocked an iPhone Without Apple's Help (Lifewire)
Fairfax schools' switch to Google didn't stop harassment (WashPost)
Florida scientist fired for refusing to 'manipulate' COVID-19 data
(USA Today)
Being offline is the new luxury (Matthew Kruk)
AI gets the attention, but biotechnology is poised to change the world
(Axios)
Humans are complicated; do we need behavioral science to get through this
(Ars Technica)
Wall Street traders fight over milliseconds in mmWave transmission battle
(Light Reading)
China's New Outbreak Shows Signs the Virus Could Be Changing (Bloomberg Law)
Why the coronavirus hits kids and adults so differently (The Atlantic)
The Chaos of Asynchronous Grief (Allegra)
Quarantine and a monitoring bracelet for Hong Kong returnees (Fox5NY)
How the ‘Plandemic’ Movie and Its Falsehoods Spread Widely Online (NYTimes)
Covidiots: R_nought's are naughty not nice (Henry Baker)
Re: Stimulus check delays when accounts were overdrawn! (John Levine)
Re: Coronavirus New York Shock: Two-Thirds Of Recent Patients
Infected While Staying At Home (David Lesher)
Re: Meaningless "review" of Imperial COVID codebase (Chiaki Ishikawa,
Henry Baker, William Brodie-Tyrrell, Henry Baker)
RISKS 31.85 Friday 21 May 2020 Volume 31 : Issue 85
A Case for Cooperation Between Machines and Humans (John Markoff)
Scammers steal > $100m in Wash. State unemployment fraud (Seattle Times)
Satellites and spacecraft malfunction as Earth's magnetic field
mysteriously weakens (Sky)
Microsoft: Beware this massive phishing campaign using malicious Excel
macros to hack PCs (ZDNet)
Ransomware deploys virtual machines to hide itself from antivirus software
(ZDNet)
Students are failing AP tests because the College Board can't handle iPhone
photos (The Verge)
How Do Astronauts Escape When a Space Launch Goes Wrong? (WiReD)
How a Chinese AI Giant Made Chatting -- and Surveillance -- Easy (WiReD)
90-Day Security Plan Progress Report: May 20 (Zoom Blog)
How the CDC is misreporting COVID-19 testing data (The Atlantic)
Re: COVID codebase [D Maziuk)
Re: The ultimate Turing test (Arthur Flatau)
Re: Teen Hacker and Crew of Evil Geniuses Accused of $24 Million Crypto
Theft (Gabe Goldberg)
Re: The FBI Just Unlocked an iPhone Without Apple's Help (Keith Medcalf)
Re: AI gets the attention, but biotechnology is poised to change the world
(Dan Jacobson)
RISKS 31.86 Sunday 24 May 2020
Map Reveals Distrust in Health Expertise Is Winning Hearts, Minds Online
(GW Today)
A Vote-by-Mail Nightmare (WSJ)
Cannonball Run record is broken *seven* times over five weeks after illegal
racers took to the empty streets during coronavirus lockdown to drive
from NYC to LA in under 26 hours (Daily Mail)
The Fate of Elevators in the Post-Pandemic City (CityLab)
Risks of immunity passports (The New Yorker)
Can We Track COVID-19 and Protect Privacy at the Same Time? (The New Yorker)
Re: A Case for Cooperation Between Machines and Humans (Richard Stein)
Re: The ultimate Turing test (Amos Shapir)
Re: Satellites and spacecraft malfunction as Earth's magnetic field
mysteriously weakens (David Lesher)
RISKS 31.87 Monday 25 May 2020
Tesla owner locked thief in car with his iPhone app (Facebook)
See Boston Dynamics' robodog herd sheep and explore in New Zealand
(Mashable)
Inside the NSA's Secret Tool for Mapping Your Social Network
(Barton Gellman)
Nobel laureates and science groups demand NIH review decision to kill
coronavirus grant (Science)
Doctors tweet about coronavirus to make facts go viral (WSJ)
Re: IS: Cannonball Run record is broken SEVEN times over ...
(Winston Goodfellow)
Re: The ultimate Turing test (Henry Baker)
Misinformation (Peter Ladkin)
RISKS 31.88 Tuesday 26 May 2020
Map Reveals Distrust in Health Expertise Is Winning Hearts, Minds Online
(J. Vilkaitis)
The `Liberal Leaning' Media Has Passed Its Tipping Point (WSJ)
Parts of the Arctic are hotter than Washington, with temperatures nearly 40
degrees above average (WashPost)
If you type the word `coronavirus' on @Facebook and post it, they
immediately censor and delete your message. (Twitter)
Re: Misinformation (Dmitri Maziuk)
Re: Tesla owner locked thief in car with his iPhone app (Martin Ward)
RISKS 31.89 Wednesday 27 May 2020
Faulty Equipment, Lapsed Training, Repeated Warnings: How a Preventable
Disaster Killed Six Marines (Propublica)
A Case for Cooperation Between Machines and Humans (NYTimes)
COVID-19: 'Evidence Fiasco' (John P.A. Ioannidis)
The Pandemic Is Exposing the Limits of Science (Bloomberg)
COVID-19: Half of Canadians think their governments are deliberately hiding
information (CA National Post)
White House and Twitter (sundry sources)
Re: Map Reveals Distrust in Health Expertise Is Winning ... (anthony)
Re: Misinformation (Amos Shapir)
RISKS 31.90 Thursday 28 May 2020
Let's fix 'em before they break -- or are broken (Lali-Larrauri via PGN)
Sorry, media: You're not victims no matter how much abuse you take --
Did you know that? (NYPost)
Concerns as rise of connected cars coincides with sharp increase in
cyber-attacks (Auto Express)
How Automated Background Checks Freeze Out Renters (NYTimes)
Riding the State Unemployment Fraud Wave (Krebs)
Election Integrity in RISKS (PGN)
We Don’t Even Have a COVID-19 Vaccine, and Yet the Conspiracies Are Here
(The Atlantic)
Re: The Pandemic Is Exposing the Limits of Science (Bob Wilson)
Risk of Polarisation (Anthony Thorn)
Re: Ioannidis (Martin Ward)
Re: misinformation (Dmitri Maziuk, Henry Baker)
More on the Tweeter and the Tweetee (PGN-pruned from LW and retitled)
Re: Vitamin C (David Broadbeck)
RISKS 31.91 Friday 29 May 2020
The robots that can pick kiwi-fruit (bbc.com)
Google warns against catch-all rules for high-risk AI (Politico)
Smart home assistants have a staggering environmental cost (CBC Docs POV)
New Android Flaw Affecting Over 1 Billion Phones Let Attackers Hijack Apps
(The Hacker News)
GRU aiming at root access vuln in Unix-based email servers (NSA)
Programming Languages: Developers Reveal What They Love, Loathe, and What
Pays Best (ZDNet)
Politico is aggregating reports re contact tracing (Politico)
China's Virus Apps May Outlast the Outbreak, Stirring Privacy Fears
(NYTimes)
Your immunity passport future begins to materialize as airlines call for
digital ID tracking systems (activistpost)
Temperature Checks and Desk Shields: CDC Suggests Big Changes to Offices
(NYTimes)
The art of the distraction (via Dave Farber)
Executive order on social media (The White House and Rob Slade)
Twitter hides two Trump tweets glorifying violence behind warning notice
(CNN)
Trump Is Doing All of This For Zuckerberg (The Atlantic)
New ComRAT Malware Uses Gmail to Receive Commands and Exfiltrate Data
(The Hacker News)
Re: Misinformation (Andy Walker)
Re: More on the Tweeter and the Tweetee (Amos Shapir)
Re: The Pandemic Is Exposing the Limits of Science (R. G. Newbury)
Re: Vitamin C (R. G. Newbury, Amos Shapir, Andre Carezia)
RISKS 31.92 Saturday 30 May 2020
Russian hackers exploiting bug that gives control of U.S. servers
(Ars Technica)
Google cautions EU on AI rule-making (techxplore)
Walmart Employees Are Out to Show Its Anti-Shoplifting AI Doesn't Work
(WiReD)
The GitHub Arctic Code Vault (Archiveprogram via Dan Jacobson)
The mobile testing gotchas you need to know about (Functionize)
You're sold on load testing. But for what "unreasonable" load should you
test? (Functionize)
SaltStack authorization bypass (f-secure)
Dangerous SHA-1 crypto function will die in SSH linking millions of
computers (Ars Technica)
Choosing 2FA authenticator apps can be hard. Ars did it so you don't have to
(Ars Technica)
Twitter's decision to label Trump's tweets was two years in the making
(WashPost)
The Underground Nuclear Test That Didn't Stay Underground (Atlas Obscura)
Re: Misinformation (Henry Baker, Andy Walker)
Re: Zoom security / updates / crypto (Monty Solomon)
RISKS 31.93 Monday 1 June 2020
Dealing with the Internet's split personality (WashPost)
In virus-hit South Korea, AI monitors lonely elders (WashPost)
How to Protest Safely in the Age of Surveillance (WiReD)
Resuscitate The Internet Fairness Doctrine (The Hill)
An advanced and unconventional hack is targeting industrial firms
(Ars Technica)
Minnesota is now using contact tracing to track protestors, as
demonstrations escalate (BGR)
Do Not Install/Use Centralized Server COVID-19 Contact Tracing Apps
(Lauren Weinstein)
Critical 'Sign in with Apple' Bug Could Have Let Attackers Hijack Anyone's
Account (The Hacker News)
Erik Prince Recruits Ex-Spies to Help Infiltrate Liberal Groups (NYTimes)
Anonymous is back (PGN)
How To Create A Culture of Kick-Ass #DevSecOps Engineers That Advocates
Security Automation & Monitoring Throughout the #Software Development
Life-cycle (The Hacker News)
Live EPIC online policy panel: Privacy and the Pandemic (Diego Latella)
Risks to Elections in the COVID-19 Era (Diana Neuman)
Death or Utopia in the Next Three Decades (Brian Berg)
New Research Paper: "Privacy Threats in Intimate Relationships
(Bruce Schneier)
Re: Tesla owner locked thief in car with his iPhone app (Carlos Villalpando)
Re: The GitHub Arctic Code Vault (Amos Shapir)
Re: Choosing 2FA authenticator apps can be hard. Ars did it so you don't
have to (John Levine)
Re: Vitamin C (R. G. Newbury)
RISKS 31.94 Wednesday 3 June 2020
REvil Ransomware Gang Starts Auctioning Victim Data (Krebs)
Misinformation About George Floyd Protests Surges on Social Media (NYTimes)
America is awash in cameras, a double-edged sword for protesters and police
(WashPost)
Australian Federal Government's automated debt recovery 'Robodebt' was
illegal. A$721M to be refunded and compensation case underway. (ABC)
Just Stop the Superspreading (NYTimes)
The Militarization of Artificial Intelligence (UNODA, Stanley Center,
Stimson Center)
Limits on Autonomy in Weapon Systems (SIPRI)
White nationalist group posing as antifa called for violence on twitter
(NBC News)
Re: Minnesota is now using contact tracing to track protestors, as
demonstrations escalate (Vox)
Re: Resuscitate The Internet Fairness Doctrine (Richard Stein)
RISKS 31.95 Friday 5 June 2020
Lawsuit over online book lending could bankrupt Internet Archive
(Ars Technica)
MIT Researchers: If Chips Can't Get Smaller, Programmers Must Get Smarter
(Srividya Kalyanaraman)
Programming Languages: Rust Enters Top 20 Popularity Rankings for the First
Time (Liam Tung)
Pressure on ZOOM Mounts to Provide End-to-End Encryption (Politico)
What does cyber-arms control look like? (Andrew Futter)
Handcrafted phish emails (Dan Jacobson)
Re: Misinformation About George Floyd Protests Surges on Social Media
(Amos Shapir)
Re: Australian Federal Government's automated debt recovery 'Robodebt' was
illegal (Rodney Parkin)
Re: REvil Ransomware Gang Starts Auctioning Victim Data (Paul Edwards)
Surgisphere: governments and WHO changed Covid-19 policy based on suspect
data from tiny US company (The Guardian)
UK Failed to Conduct Data COVID Track/Trace Data Protection Impact
(Politico)
Re: Just Stop the Superspreading (Peter Ladkin, Henry Baker)
RISKS 31.96 Sunday 7 June 2020
The Results Are in for Remote Learning: It Didn't Work (MSN)
Complex Debate Over Silicon Valley's Embrace of Content Moderation (NYTimes)
Engineering screwup turns Golden Gate Bridge into creepy wind siren
(BoingBoing)
Robot dog hounds Thai shoppers to keep hands virus-free (yahoo)
Singapore plans wearable virus-tracing device for all (Reuters)
Even Scientists Funded by Zuckerberg Are Dragging Facebook for Its Hypocrisy
(Gizmodo)
Re: Australian Federal Government's automated debt recovery (Attila ...)
Re: Misinformation About George Floyd Protests Surges on Social Media
(Bob Wilson, Atilla ...)
Re: Just Stop the Superspreading (Martin Ward, Henry Baker)
RISKS 31.97 Tuesday 9 June 2020
Democracy Live Internet voting: unsurprisingly insecure, and surprisingly
insecure (Specter and Halderman, with Andrew Appel's comments via PGN)
More on Internet e-voting: Swiss Post purchases Scytl (SwissInfo)
Report Details New Cyber Threats to Elections From Covid-19 (Maggie Miller)
IBM ends all facial recognition business as CEO calls out bias and
inequality (TechCrunch)
Cox slows an entire neighborhood's Internet after one person's'excessive
use' (Engadget)
Environmentalists Targeted Exxon Mobil. Then Hackers Targeted Them. (NYTimes)
Big brands bring the fight to Big Tech (Politico)
System Security Integration Through Hardware and Firmware (DARPA via
Richard Stein))
2018 War Game Scenario has Gen Z Revolting (Skullcap SaVant via goodfellow)
A Million-Mile Battery From China Could Power Your Electric Car (Bloomberg)
I wrote this law to protect free speech. Now Trump wants to revoke it.
(Ron Wyden via CNN)
Programming 'language': Brain scans reveal coding uses same regions as
speech (Medical Express)
Cisco's Warning: Critical Flaw in IOS Routers Allows 'Complete System
Compromise' (Liam Tung)
False Negative Tests for SARS-CoV-2 Infection -- Challenges and Implications
(NEJM)
Re: Just Stop the Superspreading (Atilla, Wol, Amos Shapir, Rob Slade)
RISKS 31.98 Friday 12 June 2020
Election fiasco: Georgia on my mind (NYTimes via PGN)
Babylon Health app error allowed UK users to watch videos of other
patients' private doctor visits (CBC-CA)
How his photo ended up breaking Android phones (BBC News)
Unusual rodent engine problem has suddenly become 'super common' (Freep)
Honda confirms its network has been hit by cyber-attack (ZDNet)
New CrossTalk attack impacts Intel's mobile, desktop, and server CPUs
(ZDNet)
Australian beverage company hit by cyber-attack (SHM-AU)
UPnP flaw exposes millions of network devices to attacks over the Internet
(Ars Technica)
IoT Security Is a Mess. Privacy 'Nutrition' Labels Could Help (WiReD)
Apple publishes free resources to improve password security (ZDNet)
Satellites Are Capturing the Protests, and Just About Everything Else on
Earth (Bloomberg)
Multiple US agencies have purchased this mysterious mobile eavesdropping
device (TechRadar)
Telecom security firm flags 'potentially huge' vulnerabilities in Internet
infrastructure (Laurens Cerulus)
FBI warns hackers are targeting mobile banking apps (The Hill)
OpenAI's Text Generator Is Going Commercial (WiReD)
Zoom disables accounts of former Tiananmen Square student leader (FT)
Amazon bans police use of face recognition tech for one year (CNBC)
Data from 15M phones shows some Americans are gathering at pre-pandemic
levels (NBC News)
The hidden detectors looking for guns and knives (BBC)
Trump Order Confronts Big Tech Bias (White House)
------------------------------
Date: Mon, 1 Jun 2020 11:11:11 -0800
From: RISKS-request@csl.sri.com
Subject: Abridged info on RISKS (comp.risks)
The ACM RISKS Forum is a MODERATED digest. Its Usenet manifestation is
comp.risks, the feed for which is donated by panix.com as of June 2011.
=> SUBSCRIPTIONS: The mailman Web interface can be used directly to
subscribe and unsubscribe:
http://mls.csl.sri.com/mailman/listinfo/risks
=> SUBMISSIONS: to risks@CSL.sri.com with meaningful SUBJECT: line that
includes the string `notsp'. Otherwise your message may not be read.
*** This attention-string has never changed, but might if spammers use it.
=> SPAM challenge-responses will not be honored. Instead, use an alternative
address from which you never send mail where the address becomes public!
=> The complete INFO file (submissions, default disclaimers, archive sites,
copyright policy, etc.) is online.
<http://www.CSL.sri.com/risksinfo.html>
*** Contributors are assumed to have read the full info file for guidelines!
=> OFFICIAL ARCHIVES: http://www.risks.org takes you to Lindsay Marshall's
searchable html archive at newcastle:
http://catless.ncl.ac.uk/Risks/VL.IS --> VoLume, ISsue.
Also, ftp://ftp.sri.com/risks for the current volume
or ftp://ftp.sri.com/VL/risks-VL.IS for previous VoLume
If none of those work for you, the most recent issue is always at
http://www.csl.sri.com/users/risko/risks.txt, and index at /risks-31.00
ALTERNATIVE ARCHIVES: http://seclists.org/risks/ (only since mid-2001)
*** NOTE: If a cited URL fails, we do not try to update them. Try
browsing on the keywords in the subject line or cited article leads.
Apologies for what Office365 and SafeLinks may have done to URLs.
==> Special Offer to Join ACM for readers of the ACM RISKS Forum:
<http://www.acm.org/joinacm1>
------------------------------
End of RISKS-FORUM Digest 31.00 (99)
************************