The Linkielist

Linking ideas with the world

Zoom sex party moderation: app uses machine-learning to patrol nudity – will it record them to put up on the web?

Posted on by Robin Edgar

As Rolling Stone reported, the app is now playing host to virtual sex parties,  “play parties,” and group check-ins which have become, as one host said, “the mutual appreciation jerk-off society.” According to Zoom’s “acceptable use” policy, users may not use the technology to “engage in any activity that is harmful, obscene, or indecent, particularly Read more about Zoom sex party moderation: app uses machine-learning to patrol nudity – will it record them to put up on the web?[…]

TalkTalk customers unable to opt out of ISP’s ad-jacking DNS – just like six years ago

Posted on by Robin Edgar

TalkTalk broadband users are complaining they can’t opt out of its Error Replacement Service, which swaps NXDomain DNS results with an IP address. And if that sounds familiar, it should. Users of the budget ISP complained about the very same issue back in 2014. The Error Replacement Service redirects links to DNS addresses that don’t Read more about TalkTalk customers unable to opt out of ISP’s ad-jacking DNS – just like six years ago[…]

Zoom’s Security Woes Were No Secret to Business Partners Like Dropbox – in 2018!

Posted on by Robin Edgar

One year ago, two Australian hackers found themselves on an eight-hour flight to Singapore to attend a live hacking competition sponsored by Dropbox. At 30,000 feet, with nothing but a slow internet connection, they decided to get a head start by hacking Zoom, a videoconferencing service that they knew was used by many Dropbox employees. Read more about Zoom’s Security Woes Were No Secret to Business Partners Like Dropbox – in 2018![…]

Bad news: Cognizant hit by ransomware Maze, which leaks customers’ data online after non-payment

Posted on by Robin Edgar

New Jersey IT services provider Cognizant has confirmed it is the latest victim of the Maze ransomware. The infection was disclosed to the public this weekend. Cognizant said the malware outbreak will likely disrupt service for some of its customers, and possibly put them in danger as well. Maze is unusual among ransomware strains in Read more about Bad news: Cognizant hit by ransomware Maze, which leaks customers’ data online after non-payment[…]

Oil & Gas Spearphishing Campaigns Drop Agent Tesla Spyware in Advance of Historic OPEC+ Deal

Posted on by Robin Edgar

Bitdefender researchers have recently found spearphishing campaigns, either impersonating a well-known Egyptian engineering contractor or a shipment company, dropping the Agent Tesla spyware Trojan. The impersonated engineering contractor (Enppi – Engineering for Petroleum and Process Industries) has experience in onshore and offshore projects in oil and gas, with attackers abusing its reputation to target the Read more about Oil & Gas Spearphishing Campaigns Drop Agent Tesla Spyware in Advance of Historic OPEC+ Deal[…]

US Judge rules Twitter can’t be transparent about amount of surveillance requests processed per year due to “national security” of the 4th Reich

Posted on by Robin Edgar

Six years ago, Twitter sued the US government in an attempt to detail surveillance requests the company had received, but a federal judge on Friday ruled in favor of the government’s case that detailing the requests would jeopardize the country’s safety. If Twitter revealed the number of surveillance requests it received each calendar quarter, it Read more about US Judge rules Twitter can’t be transparent about amount of surveillance requests processed per year due to “national security” of the 4th Reich[…]

Disney Plus’ butt cover-up hides a much bigger problem – corporations feel free to put out revisionist histories

Posted on by Robin Edgar

There’s a scene in Touchstone Pictures’ 1984 movie Splash where a young Tom Hanks watches a beautiful naked mermaid run off into the ocean from which she came. In the original version, the camera follows Hanks’ gaze, showing a brief glimpse of a naked butt. Splash received a PG rating because of the shot (and Read more about Disney Plus’ butt cover-up hides a much bigger problem – corporations feel free to put out revisionist histories[…]

For the First Time, a Robot Repaired a Satellite in Orbit

Posted on by Robin Edgar

Space.com calls it “the first commercial satellite servicing mission.” But more specifically, it’s being called “the first in-orbit rendezvous and docking of two commercial satellites” in a statement from Northrop Grumman Space Systems, which also notes their “subsequent repositioning of the two-spacecraft stack.” And it was all done using robotics floating 36,000km (22,369 miles) above Read more about For the First Time, a Robot Repaired a Satellite in Orbit[…]

Sale of .Org Registry Stalled for a few weeks After California AG Steps In

Posted on by Robin Edgar

The Internet Corporation for Assigned Names and Numbers (ICANN) has delayed a decision on whether to allow the sale of the organization that controls .org registrations to a band of private equity ghouls after the California attorney general’s office issued a warning Domain names with .org suffix are used by countless nonprofits, in part because Read more about Sale of .Org Registry Stalled for a few weeks After California AG Steps In[…]

Buyer beware—that 2TB-6TB “NAS” drive you’ve been eyeing might be SMR – and won’t work in your NAS

Posted on by Robin Edgar

Storage vendors, including but reportedly not limited to Western Digital, have quietly begun shipping SMR (Shingled Magnetic Recording) disks in place of earlier CMR (Conventional Magnetic Recording) disks. SMR is a technology that allows vendors to eke out higher storage densities, netting more TB capacity on the same number of platters—or fewer platters, for the Read more about Buyer beware—that 2TB-6TB “NAS” drive you’ve been eyeing might be SMR – and won’t work in your NAS[…]

Security lapse exposed creepy Clearview AI source code

Posted on by Robin Edgar

Since it exploded onto the scene in January after a newspaper exposé, Clearview AI quickly became one of the most elusive, secretive and reviled companies in the tech startup scene. The controversial facial recognition startup allows its law enforcement users to take a picture of a person, upload it and match it against its alleged Read more about Security lapse exposed creepy Clearview AI source code[…]

Samsung ‘s TV Boxes Can Now Be Easily Upcycled Into Cat Houses

Posted on by Robin Edgar

Taking a cue from anyone under 10 years old who can come up with endless imaginative uses for an empty cardboard box, Samsung is now making it easy for anyone to recycle or upcycle its TV packaging into other useful household items like magazine racks and fancy cat houses. As competition between flat screen TV Read more about Samsung ‘s TV Boxes Can Now Be Easily Upcycled Into Cat Houses[…]

That critical VMware vuln allowed anyone on your network to create new admin users, no creds needed

Posted on by Robin Edgar

A critical vulnerability in VMware’s vCenter management product allowed any old bod on the same network to remotely create an admin-level user, research by Guardicore Labs has revealed. The astonishing vuln (CVE-2020-3952), details of which were quite spare when VMWare issued a patch last week, was rated by VMware itself as CVSS v3 10.0, the Read more about That critical VMware vuln allowed anyone on your network to create new admin users, no creds needed[…]

ESO Telescope Sees Star Dance Around Supermassive Black Hole, Proves Einstein’s Theory of Relativity

Posted on by Robin Edgar

Observations made with ESO’s Very Large Telescope (VLT) have revealed for the first time that a star orbiting the supermassive black hole at the centre of the Milky Way moves just as predicted by Einstein’s general theory of relativity. Its orbit is shaped like a rosette and not like an ellipse as predicted by Newton’s Read more about ESO Telescope Sees Star Dance Around Supermassive Black Hole, Proves Einstein’s Theory of Relativity[…]

India says ‘Zoom is a not a safe platform’ and bans government users

Posted on by Robin Edgar

India has effectively banned videoconferencing service Zoom for government users and repeated warnings that consumers need to be careful when using the tool. The nation’s Cyber Coordination Centre has issued advice (PDF) titled “Advisory on Secure use of Zoom meeting platform by private individuals (not for use by government offices/officials for official purpose)”. The document Read more about India says ‘Zoom is a not a safe platform’ and bans government users[…]

The secret behind “unkillable” Android backdoor called xHelper has been revealed

Posted on by Robin Edgar

In February, a researcher detailed a widely circulating Android backdoor that’s so pernicious that it survives factory resets, a trait that makes the malware impossible to remove without taking unusual measures. The analysis found that the unusual persistence was the result of rogue folders containing a trojan installer, neither of which was removed by a Read more about The secret behind “unkillable” Android backdoor called xHelper has been revealed[…]

ICANN’s founding CEO and chair accuse biz of abandoning principles in push for billion-dollar .org sale

Posted on by Robin Edgar

ICANN has been accused by its founding CEO and original chair of abandoning the organization’s core principles and accepting commitments it knows it cannot enforce in order to push through the sale of the .org registry later this week. In a furious letter [PDF] from Mike Roberts and Esther Dyson to the attorney generals of Read more about ICANN’s founding CEO and chair accuse biz of abandoning principles in push for billion-dollar .org sale[…]

Linksys forces password reset for Smart Wi-Fi accounts after router DNS hack pointed users at COVID-19 malware

Posted on by Robin Edgar

Router biz Linksys has reset all its customers’ Smart Wi-Fi account passwords after cybercrims accessed a bunch and redirected hapless users to COVID-19 themed malware. The mass reset took place after all user accounts were locked on 2 April, following infosec firm Bitdefender revealing that malicious persons were pwning Linksys devices through cred-stuffing attacks. Hackers Read more about Linksys forces password reset for Smart Wi-Fi accounts after router DNS hack pointed users at COVID-19 malware[…]

60,000 Eastern Europeans to be flown in to pick fruit and veg – turns out they weren’t stealing jobs then, brexit!

Posted on by Robin Edgar

Air Charter Service has told the BBC that the first flight will land on Thursday in Stansted carrying 150 Romanian farm workers. The firm told the BBC that the plane is the first of up to six set to operate between mid-April and the end of June. Government department Defra said it was encouraging people Read more about 60,000 Eastern Europeans to be flown in to pick fruit and veg – turns out they weren’t stealing jobs then, brexit![…]

Over 500,000 Zoom accounts sold on hacker forums, some being given away for free

Posted on by Robin Edgar

Over 500,000 Zoom accounts are being sold on the dark web and hacker forums for less than a penny each, and in some cases, given away for free. These credentials are gathered through credential stuffing attacks where threat actors attempt to login to Zoom using accounts leaked in older data breaches. The successful logins are Read more about Over 500,000 Zoom accounts sold on hacker forums, some being given away for free[…]

Medical Device ‘Jailbreak’ Could Help Solve the Dangerous Shortage of Ventilators

Posted on by Robin Edgar

Security researcher Trammell Hudson analyzed the AirSense 10 — the world’s most widely used CPAP — and made a startling discovery. Although its manufacturer says the AirSense 10 would require “significant rework to function as a ventilator,” many ventilator functions were already built into the device firmware. Its manufacturer, ResMed, says the $700 device solely Read more about Medical Device ‘Jailbreak’ Could Help Solve the Dangerous Shortage of Ventilators[…]

Apple: We respect your privacy so much we’ve revealed a little about what we can track when you use Maps

Posted on by Robin Edgar

Apple has released a set of “Mobility Trends Reports” – a trove of anonymised and aggregated data that describes how people have moved around the world in the three months from 13 January to 13 April. The data measures walking, driving and public transport use. And as you’d expect and as depicted in the image Read more about Apple: We respect your privacy so much we’ve revealed a little about what we can track when you use Maps[…]

‘Crime against humanity’: Trump (the man who mismanaged Corona most in!) condemned for WHO funding freeze

Posted on by Robin Edgar

Leading health experts have labelled Donald Trump’s decision to cut funding to the World Health Organization (WHO) as a “crime against humanity” and a “damnable” act that will cost lives. The move also drew a rebuke from the head of the United Nations, who said the WHO was “absolutely critical to the world’s efforts to Read more about ‘Crime against humanity’: Trump (the man who mismanaged Corona most in!) condemned for WHO funding freeze[…]

Foreign Spies Target Zoom, U.S. Intel Officials Say

Posted on by Robin Edgar

As much of the world works from home, an explosion of video conference calls has provided a playground not just for Zoombombers, phishermen and cybercriminals, but also for spies. Everyone from top business executives to government officials and scientists are using conferencing apps to stay in touch during the new coronavirus lockdowns and U.S. counterintelligence Read more about Foreign Spies Target Zoom, U.S. Intel Officials Say[…]