Yesterday I reported that people were having millions of PC Optimum points stolen from their accounts, which as I noted has happened before and is the latest issue with the rewards program run by Loblaws which has been plagued by problems since the company merged multiple rewards programs into one. What become abundantly clear is that Loblaws not only botched the rollout of this program earlier this year, but because members of the program have been hacked twice and their points stolen, it’s also clear that Loblaws lacks sufficient levels of security when it comes to whatever back-end systems that makes their rewards program work. The latter is of great concern because if Loblaws cannot protect you from being pwned by hackers, you have to take matters into your own hands to protect the points that you earn.
Here’s the problem. There may be not much that you can do to protect yourself. I say that because Loblaws has been far from transparent about this issue. It isn’t clear if they know how these hacks are happening. Of if they can stop it from happening in the future seeing as it has happened at least twice that we know of. Which means it is possible that there are more instances of this that they’re not talking about. And any comments that the company has made leaves you with the impression that they really don’t want to admit that they have a serious problem. That’s not good and Loblaws really needs to do better on that front for reasons that I will get to in a bit.
In the meantime, the only thing that you could do that might protect you is to use a unique password for your PC Optimum account (and as an aside, this advice also applies to ANY online account) that is a combination of letters, numbers, and ideally has at least one upper case character and one special character (eg: # $ % &). Also, it should not be tied to you in any way. By that I mean it shouldn’t be a license plate number, or the name of your dog or kids. In the absence of any root cause analysis from Loblaws, that’s really the best that you can do.
Loblaws needs to do better job in terms of being up front about these issues and how they are going to get them remedied because people make a conscious decision to shop at Loblaws, or Shoppers Drug Mart, or any other store that allows them to collect PC Optimum points so that they can get rewarded with free stuff weeks or months later. And to these people, my wife and I included, these points are like money. And we’re trusting Loblaws to manage those points and your personal information similar to your bank protecting your bank account and personal information from fraud, or just managing them period. So far, Loblaws has done a craptastic job of showing that they can do any of that with any level of competence. That needs to change and change quickly. Otherwise you will see people like my wife and I adjust where and how we shop accordingly. Which will include shopping with retailers that aren’t associated with Loblaws.
Sonos Decides To #DeleteFacebook By Suspending Ads On Facebook Among Other Places
Posted in Commentary with tags Facebook, Sonos on March 23, 2018 by itnerdA few minutes ago, I got a statement from Sonos which I will reprint below:
At Sonos, we believe all people have the right to know how their data is being collected and used, and that each of us has an obligation to honor the commitments we make to our customer’s privacy. In response to the recent revelations about Cambridge Analytica and Facebook, we’ve decided to temporarily suspend all of our digital advertising on Facebook, Instagram, Google, YouTube and Twitter. We will also go dark on our Facebook and Instagram social accounts next week in solidarity with those seeking to build a healthier, more consumer-friendly tech ecosystem.
Instead, we’ll be contributing additional support to our Listen Better grantee Access Now for RightsCon, one of the only forums where tech companies engage directly with activists on equal terms, enabling solutions that can help forge a healthier technology ecosystem that works for everyone.
We think it’s important for those involved in creating tech to listen to the voices of those that are impacted by it, including the most marginalized, such as human rights defenders, LGBT people, and people of color. RightsCon is a forum that enables exactly that type of listening—and ultimately, action.
You can learn more about what we’re doing on our blog. Visit here: http://blog.sonos.com/en/facebook-internet-privacy/
Now, I called this an ad suspension. But it’s much deeper than that quite clearly as Sonos is sending a message here that I hope the companies that are mentioned above are paying attention to. Particularly Facebook as clearly the fallout from the Facebook data leak is very different than any other issue the platform has had to face. And requires immediate, sustained and transparent action to fix.
Leave a comment »