Miscellaneous Tech News

scottalanmiller

@pete-s said in Miscellaneous Tech News:

@scottalanmiller said in Miscellaneous Tech News:

@mlnews said in Miscellaneous Tech News:

Norton antivirus adds Ethereum cryptocurrency mining

In a surprise move, one of the world's best-known anti-virus software makers is adding cryptocurrency mining to its products.
Norton 360 customers will have access to an Ethereum mining feature in the "coming weeks", the company said. Cryptocurrency "mining" works by using a computer's hardware to do complex calculations in exchange for a reward. It is not clear what the business model for Norton Crypto is, or if Norton will take a cut of earnings. The company pitched the idea as a safe and easy way to get into mining, an "important part of our customers' lives". In a press release, Norton LifeLock - once called Symantec - said: "For years, many coin miners have had to take risks in their quest for cryptocurrency, disabling their security in order to run coin mining."

So now instead of taking a small risk, they take a huge one by installing Norton products. WTF

Sound like they're dusting off an old idea.

There were a similar thing many years ago where the PC would do some kind of processing when it was idle in exchange for some kind of reward. Can't for the life of me remember what it was for though. But it was the first time I saw this. I think there are now others doing something similar.

I wonder if the average user realizes that they are paying for electricity and air conditioning when the PC is working hard.

SETI

scottalanmiller

https://www.newsweek.com/colonial-pipeline-hackers-used-unprotected-vpn-access-network-report-1597842

JaredBusch

@scottalanmiller said in Miscellaneous Tech News:

https://www.newsweek.com/colonial-pipeline-hackers-used-unprotected-vpn-access-network-report-1597842

It was not unprotected..

It was password protected.

The user reused a password from some other breach, since it was found for sale.

The company left it active after the employee did not need it.

The company did not use 2FA, while not good, few companies actually do. This in and of itself does not make the VPN unprotected.

This is simply bad IT management.

scottalanmiller

https://edition.cnn.com/2021/06/08/tech/internet-outage-fastly/index.html

1337

@scottalanmiller said in Miscellaneous Tech News:

https://edition.cnn.com/2021/06/08/tech/internet-outage-fastly/index.html

Fastly, the CDN that was down for an hour, also sponsors and powers the Debian mirror network. Or to be correct, not all the mirrors but actually the master http://deb.debian.org/ that all the local mirrors pull from.

But Debian also have Amazon Cloudfront as a secondary CDN. Why don't the services that went down use several CDN networks for redundancy?

mlnews

Websites begin to work again after major breakage

A major outage has affected a number of high profile websites including Amazon, Reddit and Twitch.
The UK government website - gov.uk - was also down as were the Financial Times, the Guardian and the New York Times. Cloud computing provider Fastly, which underpins a lot of websites, said it was behind the problems. The firm said there had been issues with its global content delivery network (CDN) which it was fixing. In a statement, it said: "We identified a service configuration that triggered disruption across our POPs (points of presence) globally and have disabled that configuration. A POP allows content to be sent from globally distributed servers that are close to the end user.

scottalanmiller

https://www.diyphotography.net/fuji-is-the-boss-refuses-to-pay-ransom-restores-network-from-backup-instead/

DustinB3403

@scottalanmiller said in Miscellaneous Tech News:

https://www.diyphotography.net/fuji-is-the-boss-refuses-to-pay-ransom-restores-network-from-backup-instead/

Good for Fuji

mlnews

Sun sets on Reddit Secret Santa

Reddit is "sunsetting" its annual Secret Santa gift exchange and Reddit Gifts, with this year's being the last.
The service allowed verified Reddit users to send a £20 gift to another randomly selected user. Celebrities such as SnoopDogg and Bill Gates participated in the secret seasonal exchange. Users have reacted angrily to the decision, which Reddit says is needed to focus on "user experience". One called it a "war on Christmas". Another popular post described the company's announcement as: "Translation - we weren't making enough money off this to be worth our time & effort". The Reddit tradition has seen more than 1.7 million gifts sent. Noteworthy presents have included a horned helmet from Bill Gates, a drawing of a cat by Arnold Schwarzenegger and embroidered slippers from SnoopDogg.

travisdh1

D***** Ohio, municipal broadband are the only outstanding options in the state. You better not ban it!

https://www.govtech.com/policy/ohio-senate-republicans-move-to-bar-municipal-broadband

DustinB3403

@travisdh1 said in Miscellaneous Tech News:

D***** Ohio, municipal broadband are the only outstanding options in the state. You better not ban it!

https://www.govtech.com/policy/ohio-senate-republicans-move-to-bar-municipal-broadband

Of course they'll try and ban it, anything to help suppress the vote. Register to vote by online registration, nah... you can go to the DMV and wait in line for hours etc.

travisdh1

@dustinb3403 said in Miscellaneous Tech News:

@travisdh1 said in Miscellaneous Tech News:

D***** Ohio, municipal broadband are the only outstanding options in the state. You better not ban it!

https://www.govtech.com/policy/ohio-senate-republicans-move-to-bar-municipal-broadband

Of course they'll try and ban it, anything to help suppress the vote. Register to vote by online registration, nah... you can go to the DMV and wait in line for hours etc.

The Senator reported to be resisting the stupid is a Republican believe it or not.

scottalanmiller

https://www.theregister.com/2021/06/15/debian_cinnamon_maintainer_quits/

Cinnamon maintainer for Debian leaves to use KDE.

scottalanmiller

Teams vulnerability exposed user data.

https://portswigger.net/daily-swig/vulnerability-in-microsoft-teams-granted-attackers-access-to-emails-messages-and-personal-files

DustinB3403

@scottalanmiller said in Miscellaneous Tech News:

Teams vulnerability exposed user data.

https://portswigger.net/daily-swig/vulnerability-in-microsoft-teams-granted-attackers-access-to-emails-messages-and-personal-files

Who would use teams on a personal computer.... eww the hackers can have my company data

Dashrender

@scottalanmiller said in Miscellaneous Tech News:

Teams vulnerability exposed user data.

https://portswigger.net/daily-swig/vulnerability-in-microsoft-teams-granted-attackers-access-to-emails-messages-and-personal-files

Tons of vulnerabilities expose user data.

Key here in my mind is

Limitations

However, Grant pointed out, the malicious actor would have to be a member of the Microsoft Teams organization that they are attacking, meaning it would only work in the context of an insider threat attack.

DustinB3403

@dashrender said in Miscellaneous Tech News:

@scottalanmiller said in Miscellaneous Tech News:

Teams vulnerability exposed user data.

https://portswigger.net/daily-swig/vulnerability-in-microsoft-teams-granted-attackers-access-to-emails-messages-and-personal-files

Tons of vulnerabilities expose user data.

Key here in my mind is

Limitations

However, Grant pointed out, the malicious actor would have to be a member of the Microsoft Teams organization that they are attacking, meaning it would only work in the context of an insider threat attack.

This concept is fundamentally flawed as an attacker could easily setup an account within the tenant, and makes it seem as though this is only vulnerable to bad actors with the organization who otherwise are supposed to "be there".

dbeato

@dustinb3403 which is still not just a Microsoft thing, any other platform can have this happen but yes it is a vulnerability but lets not make it so bad like we haven't seen it before.

mlnews

Lina Khan: The 32-year-old taking on Big Tech

On Tuesday, 32-year-old Lina Khan was sworn in as chair of the US Federal Trade Commission (FTC).
The role is a hugely powerful one, which protects consumers from bad business practices and companies from unfair competition. And when it comes to unfair competition, there is one sector that has been singled out by Democrats and Republicans alike: Big Tech. Worryingly for technology giants, Ms Khan has been one of their most vocal critics. Ms Khan was born in the UK and moved to the US as a child. In an interview with BBC Hardtalk in January, she talked about how she started getting interested in competition law as a policy researcher after graduating.

mlnews

The relatives frozen in time on Google Street View

Social-media users are sharing Google Street View images featuring friends and relatives who have since died.
It was sparked by a post on the Twitter account Fesshole, which asks followers to submit anonymous confessions - many of which are explicit. The original poster said they had searched the map platform for images taken before their father had died. Launched in the US in 2007, Google Street View has since rolled out worldwide. The BBC's Neil Henderson shared an image of his late father at his front door. "I have literally hundreds of pics of my dad but the Google Street View is quite affecting, like he's still around," he wrote. Another tweeter showed an image of a couple holding hands in the street - his parents, he said, who had died several years ago.