Archive for 2020

« Older Entries
Newer Entries »

Rogers Ignite No Longer Uses Flash…. With Days To Spare

Posted in Commentary with tags , on December 22, 2020 by itnerd

Much earlier this year, as in the second of January, I highlighted the fact that Rogers was still using Flash in its Ignite TV web product. I found this to be weird as Flash was due to die in 2020 due to the fact that Flash was a security risk of epic proportions. Well, it’s taken most of the year, but this thread on DSL Reports indicates that Flash is finally dead when it comes to Ignite TV web. Though I will note that Rogers kind of cut it close as every major browser was going to kill Flash by the end of the year. But at least they, or rather Comcast as that’s who really makes the Rogers Ignite product got it done.

For the record, Flash was replaced with HTML5 which means that the Ignite TV product is now compliant with common web standards and should work with any browser. That is a good thing.

UPDATE: The Rogers Community Forum also has a confirmation. But it is interesting that Rogers themselves hasn’t said anything about this as you would think they would want to say something and put a positive spin on this. That I think says something.

Leave a comment »

Cisco AppDynamics Acquires Dashbase

Posted in Commentary with tags on December 22, 2020 by itnerd

Cisco AppDynamics today announced its intent to acquire enterprise software company, Dashbase for its logs and events analytics technology. Dashbase will add to AppDynamics observability capabilities and the integration of Dashbase’s logs and events analytics technology into the Cisco AppDynamics platform will enable customers to accelerate their digital transformation by unifying and taming the complexity of data across technology, user and business domains. 

To learn more, you can read this blog post by AppDynamics GM, Linda Tong.

Leave a comment »

The NSO Group Is Back With More State Sponsored Attacks On iOS Users

Posted in Commentary with tags on December 21, 2020 by itnerd

Researchers at Toronto’s Citizen Lab say they have found evidence that dozens of journalists had their iPhones silently compromised with spyware known to be used by nation states:

For more than the past year, London-based reporter Rania Dridi and at least 36 journalists, producers and executives working for the Al Jazeera news agency were targeted with a so-called “zero-click” attack that exploited a now-fixed vulnerability in Apple’s iMessage. The attack invisibly compromised the devices without having to trick the victims into opening a malicious link. Citizen Lab, the internet watchdog at the University of Toronto, was asked to investigate earlier this year after one of the victims, Al Jazeera investigative journalist Tamer Almisshal, suspected that his phone may have been hacked. In a technical report out Sunday and shared with TechCrunch, the researchers say they believe the journalists’ iPhones were infected with the Pegasus spyware, developed by Israel-based NSO Group. The researchers analyzed Almisshal’s iPhone and found it had between July and August connected to servers known to be used by NSO for delivering the Pegasus spyware. The device revealed a burst of network activity that suggests that the spyware may have been delivered silently over iMessage. Logs from the phone show that the spyware was likely able to secretly record the microphone and phone calls, take photos using the phone’s camera, access the victim’s passwords, and track the phone’s location.

This sounds like the exploit is similar to a jailbreak that was in iOS 13 that I wrote about recently. And we’ve seen this before. Specifically an exploit with iOS 9 which was also discovered by Citizen Lab and Apple had to rush out a patch to fix. And allegedly the NSO Group was behind that one as well. It will be interesting to see if Apple can do anything to stop this. In the meantime, this is major incentive for you to be on iOS 14.

Leave a comment »

Teksavvy Wants To Make Sure That Your Voice Is Heard Before It Is Too Late

Posted in Commentary with tags on December 21, 2020 by itnerd

Nearly 18 months ago the CRTC decided that Internet prices for millions of Canadian’s should be more affordable. Canada’s Big Telcos have used every tactic at their disposal to block that decision and keep prices high. Over 150,000 Canadians spoke up via a campaign started by Teksavvy to tell the government that Canadians deserve better. The fight for competitive choice is not over and the CRTC is reviewing their decision and deciding the future of internet prices NOW.

Teksavvy is asking Canadians to go to this page to be sure their voice is heard. That way it sends a message to the government and CRTC to uphold their decision.

Leave a comment »

Apple’s Adventures In India Is NOT Going Well

Posted in Commentary with tags on December 21, 2020 by itnerd

With everything that has been going on between China and the US not to mention a number of other countries, Apple has been trying to diversify where their stuff is made. Currently, a lot of it is made in China. But as of late, they have been branching out. Word on the street is that the new and overpriced AirPods Max are made in Vietnam for example. Though still by Chinese firms. And in the case of older iPhones, Apple made the decision to shift manufacturing to India via a firm called Wistron. Everything was great on that front, until workers rioted last weekend because of unpaid wages:

The authorities have vowed to crack down on workers who went on a violent rampage at a Taiwanese-run iPhone factory in southern India over allegations of unpaid wages and exploitation, with 100 people arrested so far.

Workers at Wistron Infocomm Manufacturing’s facility on the outskirts of Bangalore rioted on Saturday, with footage of the violence showing glass panels smashed and cars flipped on their sides. CCTV cameras, fans and lights were torn down, while a car was set on fire.

Local media reported workers saying they had not been paid for up to four months and were being forced to do extra shifts.

And when the government investigated this, they found that the workers claims were valid:

Serious violations of labour laws were taking place at the iPhone manufacturing facility in India where a workers’ protest on Saturday turned violent and caused US$7 million worth of damage, a report by the Karnataka state government has found.

Exploitative practices such as underpayment of wages, irregular hours and poor working conditions were common at the Wistron Corporation assembling and manufacturing unit in the southern Indian state of Karnataka, as detailed by its Department of Factories, Boilers, Industrial Safety and Health.

This Week in Asia has seen a copy of the report, an internal document detailing preliminary investigations into the incident from the department, which is tasked with enforcing labour-related legislation to ensure workers’ safety.

And another report suggests that Apple is on the hook for this:

The Karnataka state government could make Apple a party to the inquiry into the violence at the Wistron factory that makes iPhones, people familiar with the matter said. Apple, which is also investigating the incident at the contract manufacturer’s plant, said its own review has found violations in the supplier code of conduct. The company is also checking if Wistron had sought its prior approval for extending working hours. 

“Apple could be asked to share details of its investigation with the labour authorities/court,” said one of the persons cited above, adding that a series of connected Supreme Court and high court rulings upheld that the primary employer’s responsibility. 

Apple is investigating this allegedly and has called out Wistron in regards to this incident:

Apple said Saturday it had placed Wistron on probation and the contract maker would not get any new business until it took corrective action. “Apple employees, along with independent auditors, will monitor their progress,” it added. 

Apple loves to talk about the fact that they enforce a code of conduct for their suppliers to make sure that stuff like this doesn’t happen. But it really seems to me that in reality, it talks the talk, but doesn’t walk the walk. Now I don’t want to bash India, but it is a challenging place to do business. You wold think that Apple would want to avoid India because of the potential headaches that this country is known for from a labor perspective. But the cynic in me says that Apple is more interested in keeping its profit margins up rather than making sure that stuff like this doesn’t happen. Which is why they keep going to countries with low wages like India. Thus while this story has a ways to go, you can be sure that Apple has a lot of questions that they will have to answer. And that’s not going to be pleasant for them. And I bet that Apple is reconsidering their adventure in India as you read this.

Leave a comment »

One Final Boxing Week Deal From Sonos

Posted in Commentary with tags on December 18, 2020 by itnerd

Sonos has just announced one final Boxing Week deal to cap off 2020. Enjoy $100 off Sub ($799 CAD) and Beam ($399 CAD) between Dec 24 – 31. You can visit the Sonos promotional offers page to confirm when this and other savings are live.

Leave a comment »

iRobot.ca Boxing Day Deals Go Live

Posted in Commentary with tags on December 18, 2020 by itnerd

Here’s some Boxing Day deals from iRobot Canada that are now available on iRobot.ca. Here’s what is on offer:

  • Roomba i3: Regular price = $499.99, Boxing Day promo = $399.99
  • Roomba i3+: Regular price = $749.99, Boxing Day promo = $599.99

Check them out on iRobot.ca.

UPDATE: The Roomba 675 was just marked down as well. 

  • Roomba 675: Regular price = $369.99, Boxing Day promo = $299.99

Leave a comment »

The SolarWinds Hack: Here’s A Run Down

Posted in Commentary with tags on December 18, 2020 by itnerd

You’ve likely heard a lot about the SolarWinds hack or an epic hack by presumably Russian actors of numerous US government departments. It’s kind of confusing to keep track of so I’ve decided to write up a quick summary of this hack.

This incident began last week when security firm FireEye said that a state-sponsored hacking group, likely Russians, accessed its internal network, stole pen-testing tools and tried to access documents on its government contracts. That was bad. But it got worse when while investigating the hack, FireEye found that the source of the hack to a malware-laced version of SolarWinds Orion, a network monitoring tool used inside large enterprise networks. SolarWinds was notified and admitted to the hack last week. But by that point, US government departments were hacked on a huge scale. On top of that SolarWinds admitted to getting everything from its internal networks to their Office365 accounts hacked. Along with their 18,000 or so of their customers.

On Wednesday, Microsoft took steps to protect users by taking over the web domain that the first-stage malware used to report to attackers. Together with GoDaddy and FireEye, Microsoft turned the domain into a kill switch in order to prevent the malware from pinging back to its creators and downloading second-stage payloads. Though by that point the damage has been done. I’m sure that there was some self interest there as one of the victims of this attack was Microsoft itself.

As for the Russians who are allegedly behind this, The Washington Post claimed that Russia’s APT29 hacking group is behind the SolarWinds hack, but no government or security firm has backed up the paper’s claim. Though this group has been behind other epic hacks and is linked to the Russian government. So this claim seems plausible.

Chris Hickman, chief security officer at digital identity security vendor Keyfactor (www.keyfactor.com) had this to say about the hack and how the bad actors were able to pull it off:

“Code signing is one component of the SolarWinds breach, but not because of a stolen certificate. Attackers were able to inject malware into the build process, which is difficult to detect. They were able to compromise certificates allowing them to fabricate fake tokens for network access, transversing that to cloud access and subsequently manage network access and user permissions.

Lovely. And it is likely we have not heard the last of this story. Stay tuned for updates as this story evolves.

Leave a comment »

Google Sued By States for Abuse of Search-Market Dominance

Posted in Commentary with tags on December 17, 2020 by itnerd

A bipartisan coalition of states sued Alphabet’s Google Thursday alleging broad antitrust violations in the online search market, marking the third U.S. case against the search giant in two months:

The lawsuit, led by Colorado, Iowa and other states, marks the latest escalation of the antitrust battle against Google. It comes a day after 10 Republican state attorneys general led by Texas sued the company for anticompetitive practices, and follows an October complaint by the Justice Department. “Combined with the other recent lawsuits filed against Google, never before have so many states and the federal government come together to challenge a company with such power,” Iowa Attorney General Tom Miller said a statement. “Google has more data on consumers, and more variety of information, than perhaps any entity in history.” The lawsuit, filed by 38 attorneys general, accuses Google of illegally monopolizing internet search and search advertising through a series of anticompetitive contracts and conduct, hurting consumers and advertisers in the process.

Clearly the US Government is on an all out mission to go after big tech and anything that big tech does. That means that this lawsuit won’t be the last one that you will see. And it’s a safe bet that this isn’t going to change under the incoming Biden Administration.

1 Comment »

Assassin’s Creed Valhalla’s Yule Season Begins Today With Free Content

Posted in Commentary with tags on December 17, 2020 by itnerd

Today, Ubisoft announced that Assassin’s Creed® Valhalla’s first Season named “Yule Season” is available, lasting for three months with exclusive narrative content and in-game events accessible to all players for free. Starting today, players can celebrate winter as part of the Yule Festival with new challenges and rewards.

Seasons are coming to Assassin’s Creed Valhalla to extend the post-launch experience throughout 2021, delivering a variety of new free content for all players focused on gameplay and world evolution, with updates coming in at different points during the Season.

The first Seasonal content of Assassin’s Creed Valhalla, the Yule Season, invites players to discover the Yule Festival, an in-game event active until January 7 in a dedicated area of the settlement. During the Yuletide celebration, players can join in the festivities with a new Drinking game, an Archery mini-game, a Fist Fight tournament, and two new character quests available in the settlement. In addition, players can earn exclusive rewards including a new gear set, settlement decorations, and more.

To experience the Yule Festival, players must reach England and complete one of the first narrative arcs, either Grantebridgescire or Ledecestrescire. The festival will then be triggered automatically when players visit the settlement.

The real-life Ravensthorpe (population 498) is also celebrating the in-game Season 1 launch, with the Lord of the Manor, Charlie Reeve, declaring a week-long Valhalliday. From now until December 24, the local Chequers Pub & Village Shop, the village hub, will offer an Assassin’s Creed Valhalla-themed takeaway menu to patrons. Finally, a donation of $5,000 from Ubisoft will go towards supporting Ravensthorpe’s playground project, as well as other community projects.

A second update will add more content for the Yule Season in February:

  • River Raids: a new game mode building on the core raiding mechanic will be introduced, delivering a dynamic, challenging, and highly replayable raid experience. As the River Raids rely heavily on the Jomsviking recruits, players can hire Jomsviking from their friends online to take on an entire crew. The River Raids game mode features raids with higher stakes and different difficulty levels. 
  • Ranks for Jomsviking: In the Yule Season, an update to the Jomsviking feature will allow players’ Jomsviking to earn XP and rank up – the higher the rank, the more silver players can earn when their Jomsviking are recruited by other players
  • Additional new abilities and rewards

With development led by Ubisoft Montreal, Assassin’s Creed Valhalla offers players the captivating experience of playing as Eivor, a legendary Viking warrior, driven from Norway by endless wars and dwindling resources in ninth century AD. Players can relive the ruthless fighting style of Viking warriors with a revamped dual-wielding combat system and experience new gameplay features such as raids, assaults, and the settlement, as well as a revamped progression and gear upgrade system. Political alliances, combat decisions and dialogue choices can influence the world of Assassin’s Creed Valhalla, so players must choose wisely to protect their clan’s home and their future.

Assassin’s Creed Valhalla is available on Xbox Series X | S, Xbox One consoles, PlayStation®5, PlayStation®4, the Epic Games Store and Ubisoft Store on Windows PC, as well as on Stadia, Amazon Luna and Ubisoft’s subscription service, Ubisoft+.

For more information about Assassin’s Creed Valhalla, please visit: assassinscreed.com

For the latest news on Assassin’s Creed Valhalla and other Ubisoft games, visit news.ubisoft.com.

Leave a comment »

« Older Entries
Newer Entries »