Archive for November, 2023

« Older Entries
Newer Entries »

Sunbird Who Was Providing iMessage Compatibility To Nothing Has Shut Down “For Now” Due To Security Issues

Posted in Commentary with tags , on November 23, 2023 by itnerd

You might recall that last week, Nothing announced that it was going to bring iMessage compatibility to its phones via a partnership with a company called Sunbird. That was all fine and dandy until Nothing was forced to pull the app that brought this compatibility due to security concerns. Specifically, iMessages which are supposed to be end to end encrypted were visible in plain text. Which is of course a #fail. The knock on effect of that appears to be crippling for Sunbird:

Users in the r/Sunbird subreddit showed a notification where Sunbird explains that it has paused usage of the app “for now” as it investigates concerns – the same phrasing was sent via Nothing Chats today, but to Sunbird users on November 18.

Honestly, I don’t think that Sunbird will ever see the light of day again as a functioning company. I say that because if their service actually worked and was actually secure, Apple would likely blow them out of the water the first chance they got. Either via changing iMessage in some way to break what Sunbird was doing, or by suing them out of existence. Likely the latter. Even if you take that out of the equation, nobody on planet Earth will ever use Sunbird’s services again because of this security fiasco. Thus this company is dead as disco.

And what if you’re Nothing. They did a bit of a Hail Mary to break into the US smartphone market by partnering with Sunbird, and it blew up in epic fashion in their face. You have to wonder where they go from here as this fiasco affect them too.

And meanwhile at Apple Park, Tim Cook will be enjoying his Thanksgiving dinner knowing that Apple’s walled garden is still intact.

1 Comment »

NewsGuard Finds Israel/Hamas Misinformation Being Places Alongside Ads From Major Companies

Posted in Commentary on November 23, 2023 by itnerd

Elon Musk is currently rage suing Media Matters because they called Twitter out for the fact that Media Matters said it found that corporate advertisements by IBM, Apple, Oracle and Comcast’s Xfinity were being placed alongside antisemitic content. That led to a number of companies pulling their ads from Twitter. But Media Matters is not the only group who have found a connection between big brands having their ads being placed alongside antisemitic content. NewsGuard, to nobody’s surprise, have found misinformation related to the Israel/Hamas war being placed alongside ads on Twitter:

On X, programmatic advertisements for dozens of major brands, governments, educational institutions and non-profits are being displayed in the feeds directly below viral posts advancing false or egregiously misleading claims about the Israel-Hamas war, a NewsGuard analysis has found. Under the terms of a new advertising revenue sharing program that X introduced for its “creators,” a portion of the advertising income generated by these organizations would apparently be shared with these super-spreaders of misinformation. 

From Nov. 13 to Nov. 22, 2023, NewsGuard analysts reviewed programmatic ads that appeared in the feeds below 30 viral tweets that contained false or egregiously misleading information about the war. Programmatic ads are served via algorithms to target digital ads to online readers. Brands typically do not select where programmatic ads run and indeed are unaware of where their programmatic ads appear.

These 30 viral tweets were posted by ten of X’s worst purveyors of Israel-Hamas war-related misinformation; these accounts have previously been identified by NewsGuard as repeat spreaders of misinformation about the conflict. These 30 tweets have cumulatively reached an audience of over 92 million viewers, according to X data. On average, each tweet was seen by 3 million people. 

A list of the 30 tweets and the 10 accounts used in NewsGuard’s analysis is available here.

The 30 tweets advanced some of the most egregious false or misleading claims about the war, which NewsGuard had previously debunked in its Misinformation Fingerprints database of the most significant false and misleading claims spreading online. These include that the Oct. 7, 2023, Hamas attack against Israel was a “false flag” and that CNN staged footage of an October 2023 rocket attack on a news crew in Israel. Half of the tweets (15) were flagged with a fact-check by Community Notes, X’s crowd-source fact-checking feature, which under the X policy would have made them ineligible for advertising revenue. However, the other half did not feature a Community Note. Ads for major brands, such as Pizza HutAirbnbMicrosoftParamount, and Oracle, were found by NewsGuard on posts with and without a Community Note (more on this below).

In total, NewsGuard analysts cumulatively identified 200 ads from 86 major brands, nonprofits, educational institutions, and governments that appeared in the feeds below 24 of the 30 tweets containing false or egregiously misleading claims about the Israel-Hamas war. The other six tweets did not feature advertisements. (On X, ads appear as “tweets” that are shown to users in feeds.) The ads NewsGuard found were served to analysts browsing the internet using their own X accounts in five countries: the U.S., U.K., Germany, France, and Italy.

I encourage you to read the full report as it gives additional details as well methodology. But what’s clear here is that despite what Elon says, Twitter has serious issues that would scare any advertiser off the platform. Not only that, it in a way validates what Media Matters says. Which means that Media Matters is likely about to validate their response to Elon. Which is that they will win Elon’s rage lawsuit.

Leave a comment »

Research From Lookout Warns Of ‘Significant Phishing Risk’ During The Holidays 

Posted in Commentary with tags on November 23, 2023 by itnerd

In the holiday spirit, Lookout Inc. is warning employees and businesses that phishing attacks across organizations and personal devices are expected to more than double this week, based on historical data. 

This week as the holiday shopping season kicks off, many employees will be working (and shopping) on their mobile devices, and, as this is part of a more modern business model, the mobile devices these employees use are traditionally neglected by corporate cyber security strategies. This creates a perfect environment for hackers to carry out socially engineered phishing attacks leading to credential theft and direct access to sensitive corporate data. 

Lookout surveyed 1,515 employees yielding the following notable data points: 

  • 63% admit that they are more distracted during Thanksgiving week  
  • 89% will capitalize on Black Friday and Cyber Monday sales  
  • 57% admit they are more likely to click on unfamiliar links in search of good deals 
  • 66% will shop on personal mobile phones  
  • 47% reported their employer provides no mobile security platform 

“As employees are distracted by shopping on their mobile device, CISOs face a significant phishing risk. But rather than just focusing on the particular methods attackers may use this Thanksgiving, businesses should take a data-centric approach and monitor for changes in user behavior and anomalous data transfers,” said David Richardson, Vice President of Endpoint and Threat Intelligence, Lookout.

George McGregor, VP, Approov Mobile Security had this to say:

   “Half the employees surveyed report that their employers provide no mobile security for their devices! 

   “Two types of security leaders should read this report with trepidation: Enterprise leaders must ensure the enterprise apps their employees use are protected, and e-commerce app owners must put in place effective mobile security to protect their apps.”

Emily Phelps, Director, Cyware follows with this:

   “Phishing emails are like those ugly holiday sweaters: unwanted and sometimes hard to identify. They might promise you a free PlayStation 5 or a lifetime supply of gingerbread cookies, but don’t take the bait and never click on mysterious links or attachments! Always check the legitimacy of websites. A missing padlock icon in the address bar is an indicator to dash away, dash away, dash away all!”

Phishing attacks are dangerous to begin with. But at this time of year, they are insanely dangerous. That means everyone needs to be more focused on spotting these sorts of attacks so that they don’t become a victim.

Leave a comment »

Flaws Uncovered in Windows Hello Fingerprint Authentication

Posted in Commentary with tags on November 22, 2023 by itnerd

A company called Blackwing Intelligence who is a cybersecurity firm was asked by Microsoft to look into the security of Windows Hello fingerprint authentication. That’s a ballsy move by Microsoft to see how secure their products are. The report from Blackwing on this doesn’t exactly paint Windows Hello fingerprint authentication in the best light after testing three laptops:

Microsoft’s Offensive Research and Security Engineering (MORSE) asked us to evaluate the security of the top three fingerprint sensors embedded in laptops and used for Windows Hello fingerprint authentication. Our research revealed multiple vulnerabilities that our team successfully exploited, allowing us to completely bypass Windows Hello authentication on all three laptops.

Well that’s not good. The issues vary between the laptops in question which were:

  • Dell Inspiron 15
  • Lenovo ThinkPad T14
  • Microsoft Surface Pro Type Cover with Fingerprint ID (for Surface Pro 8 / X)

If you have one of these laptops, it is worth your time to read the full report before you panic so that you can understand what the issues are. But to be frank, this has to raise questions about how secure Windows Hello fingerprint authentication is for users who rely on this form of authentication.

Leave a comment »

eBay And Amazon Collect The Most User Data Among Android Shopping Apps

Posted in Commentary with tags on November 22, 2023 by itnerd

To prepare for the busiest online shopping season of the year, it is important to understand how your data is being used on popular apps.

According to the research by the Atlas VPN team, eBay and Amazon Shopping collect the most user data out of the analyzed Android apps. eBay gathers 28 data points, while Amazon collects 25 data points spanning 11 data types, including personal, financial, and location data.

The “buy now, pay later” app Afterpay occupies the third spot, collecting 22 data points across 7 data types. Notably, Afterpay is the only app found not only to collect but also to share in-app messages, emails, SMS messages, and credit scores with third parties.

Home improvement retailer Lowe’s, health retailer iHerb, and secondhand marketplace Vinted each collect 21 data points. Similarly, home improvement giant Home Depot and Chinese e-commerce site Alibaba.com both gather 20 data points across 9 data types.

Out of all 60 apps analyzed, the Kohl’s app, belonging to the department store retail chain, stands out for not collecting any data on users.

Cybersecurity writer at Atlas VPN, Vilius Kardelis, shares his thoughts on shopping app data collection:

“In today’s digital age, your personal information is being extensively collected by apps and shared with countless firms. This holiday season, approach all apps aware your data is being collected. Take the time to carefully read privacy policies, be mindful of the permissions you grant, and prioritize safe shopping practices to safeguard your personal information.”

3 out of 4 apps share your data

The privacy issues with Android shopping apps extend far beyond data collection.

Out of the 60 analyzed apps, 75% share your data with third parties. Not all collected and shared data types pose a serious threat to your privacy.

Nevertheless, 58% of shopping apps were found to share personal information with third parties, such as your name, email address, phone number, or even your home address.

More than a third (37%) of apps also reveal financial information to third parties, including payment information and purchase history. Additionally, 28% of shopping apps share precise or approximate location.

Even photos and videos are exchanged with third parties by 18% of the apps. Some apps (7%) go as far as to share in-app and SMS messages or emails.

To read the full article, head over to: https://atlasvpn.com/blog/ebay-and-amazon-collect-the-most-user-data-among-android-shopping-apps

ebay-and-amazon-collect-the-most-user-data-among-android-shopping-apps

Leave a comment »

The White House Now Has Threads Accounts For The President And VP Among Others…. Elon Musk Now Has A Serious Problem To Deal With

Posted in Commentary with tags on November 22, 2023 by itnerd

Elon Musk can claim that he’s not antisemitic, or he’s not racist or whatever. And he can also claim that Twitter isn’t a cesspool of hate., But what’s becoming clear is less and less people believe him. And the latest example of that is the news that The White House has set up accounts for the President and the VP among other people on Twitter competitor Threads:

The White House on Monday joined the social media platform Threads, the Meta rival to Elon Musk’s X social media platform.

The move, which the White House says was in the process for several weeks, comes just days after the White House and others criticized Musk for the amplification and endorsement of an anti-Semitic post.

Major media companies, including Comcast, The Walt Disney Co. and Warner Bros. Discovery, announced that they were pausing ads on X, formerly known as Twitter.

And:

The White House launched its own official account, as well as accounts for the president, First Lady, vice president, and second gentleman. Additionally, a spokesperson for President Joe Biden’s re-election campaign told CNN that the president, as well as Vice President Kamala Harris, would launch personal accounts on Threads as well.

A White House spokeswoman, Robyn Patterson, said the reason for the move is because “we are committed to meeting people where they are.”

Elon has got to be freaking right now. If the leader of the free world has joined Threads, that instantly gives the platform a whole lot of credibility that it didn’t have before this move by The White House. And yes, I know Threads is owned by the same guy that owns Facebook and Instagram which both make you the product. But that’s irrelevant at the moment because a lot of people will join Threads simply because President Joe Biden is there.

I’m calling it now, there’s going to be another wave of people leaving Twitter. If it hasn’t started already. And you have to wonder how badly Elon will react to that.

Leave a comment »

Paris Hilton Has More Integrity Than The NFL As The Former Pulls Ads From Twitter While The Latter Is Fine With Being On Twitter

Posted in Commentary with tags on November 22, 2023 by itnerd

I never thought I would write that headline. But these are the times we live in at the moment. Let’s start with Paris Hilton. Some have seen her as an airhead. But clearly she isn’t as she’s pulled ads from the dumpster fire that is Twitter:

Paris Hilton’s entertainment company 11:11 Media has pulled an advertising campaign from Elon Musk’s X just one month after announcing an exclusive partnership with the platform, becoming the latest brand to halt ad spending on the site formerly known as Twitter over concerns about antisemitism and pro-Nazi content on the site.

“11:11 Media made the decision to immediately pull the campaign from the platform,” Bruce Gersh, 11:11 Media’s president and chief operating officer, told CNN on Tuesday.

The decision by Hilton’s company to pull its advertising is a blow to X and the platform’s chief executive, Linda Yaccarino, who announced a major promotional partnership with Hilton just last month. The deal, which was touted by Yaccarino as a long-term, “official partnership” between Hilton, 11:11 Media, and X, aimed to create “a launchpad for new initiatives in video and live video, live commerce, Spaces, and so much more.” The deal also established a revenue-sharing agreement between the parties.

Yaccarino, a former NBCUniversal advertising chief who has been tasked with wooing wary advertisers back to X despite Musk’s tumultuous leadership, declared Hilton the “queen of pop culture” and described the partnership as “a new era” that would reside exclusively on X.

A spokesperson for Hilton declined to comment on whether the suspension of 11:11’s ad campaign also meant the end of Hilton’s partnership with X. A spokesperson for X also did not immediately respond.

This is a huge blow to Elon and Twitter CEO Linda Yaccarino as it shows that the advertising exodus isn’t slowing. In fact it appears to be accelerating. But at least they have one advertiser that isn’t going anywhere. That’s advertiser is the National Football League:

The National Football League is sticking with X, formerly known as Twitter, as Elon Musk’s site faces an advertiser revolt over hate speech and antisemitism on the platform.

“I think X is in a very difficult business because of the content moderation that they have to deal with,” Brian Rolapp, the NFL’s media and business chief, told CNBC’s Julia Boorstin. “We continue to work with them because our fans are clearly there.”

The league did not provide further comment on the matter.

In a way I’m not surprised because the NFL does not have a great history on being on the right side of issues like this. And I fully expect that the NFL may face some blowback over this decision. Whether the NFL cares about that is another story entirely. If I could give the NFL some advice, they should perhaps take some integrity lessons from Paris Hilton as clearly she has more integrity than the NFL does.

Leave a comment »

Guest Post: It’s cuffing season: how advertisers can leverage connected TV to take advantage of Canadians coupling up & comfort watching TV

Posted in Commentary with tags on November 22, 2023 by itnerd

It’s safe to say we’re currently in peak ‘cuffing season.’ 

If you haven’t heard the term before, ‘cuffing season’ defines the phenomenon of people looking for partners during the fall and winter. The trend is discernible enough to be recognized by relationship therapistsdating apps and Merriam-Webster but it’s the resulting behaviours of ‘cuffing season’ that digital advertisers should take advantage of. Namely, an increased volume of couples cuddling up on the couch. 

Thermoregulation is tied to our evolution, so it’s natural for humans to cuddle more during cold weather – and what goes perfectly with a cold day, cuddled up on the couch? Streaming comfort TV content like rom-coms, sitcoms, holiday and rewatching old favourites. 

In fact, according to a recent Roku survey, 45 per cent of TV streamers love spending time watching shows and movies they’ve watched before. Moreover, while Canadians watch almost 22 hours of television a weekoverall streaming begins to spike at this time of year, and weekend streaming increases by 10 per cent across October and November in comparison to an average day. 

With increased streaming time comes increased watching of advertising video on demand (AVOD). In general, an average of 4 in 10 (41 per cent) Canadians are watching AVOD or broadcaster video on-demand (BVOD) services every month. 

Nowadays, we have extraordinary technology at our disposal to reach audiences during an under-the-radar period like cuffing season. Not only that, but with ad tech tools available via streaming, there are opportunities to reach viewers in much more unique and personalized ways with messages that appeal to them (and their loved ones’) needs. 

Consider the call-to-action for greater engagement  

TV streamers are more likely to engage with ads compared to non-streamers (70 per cent of TV streamers vs. 54 per cent of non-TV streamers). For instance, after seeing an ad, TV streamers are more likely to visit a brand’s website or online shop (38 per cent), search for more information on a product (36 per cent), or place items in an online basket to buy later (25 per cent) – all while continuing to stream their favourite shows and movies. 

Given this, call-to-actions that are reflective of the cuffing season trend, such as demonstrating where a person can pick up their cozy movie-night in essentials, are the key to making the most of the TV streaming environment.  It is also a great environment for food delivery and QSR clients to be top of mind and make it easy for consumers to order in and enjoy at home, further enhancing the at home experience.

Rethinking the ad formats to drive audience engagement

To capitalize on more streaming time during ‘cuffing season,’ I recommend advertisers and marketers explore and experiment with new ad formats and creative. 

Video Action Ads, for example, are a form of interactive video ad tech that are rising in popularity  and becoming more commonplace in Canada. These ads allow consumers to engage directly with campaigns through their remote. Streamers can opt to download an app, receive a coupon, or sign up for more information via their remote, making the user experience for an audience already primed to engage with ads much simpler. 

For brands, they can also measure engagement on their campaigns – not just reach – which is quickly becoming a key measurement in the digital ad and marketing space. 

Leveraging ad-tech for deeper insights 

When it comes to cuffing season, the content consumers are viewing shifts. It may not be exclusively holiday content (at least maybe not in November), but it could be rewatching favourite movies or TV shows while bundled up and escaping the cold, which, in general, is the way in which streamers spend 18 per cent of their viewing time. 

With shifting viewing habits comes the need for ad tech targeting capabilities that capitalize on content, not just demographics or psychographics. That’s where Automatic Content Recognition (ACR) technology comes in – a key benefit of the TV streaming ecosystem. 

ACR identifies TV content played on smart devices and matches it with metadata, such as genre and TV channels, to help advertisers optimize their screen investments. Content can be anything from linear to streamed TV, to gaming content and even advertisements themselves. 

ACR enables advertisers to analyze content consumption behaviours through video ‘fingerprints’ (with an explicit consumer opt-in, of course), which are then matched to an extensive catalogue of linear channels, advertisements, and games. On a second-by-second basis, ACR tech gives advertisers and marketers unprecedented insight into the type of content audiences watched on linear TV, or what ads they saw, and how much of that ad they watched. Overall, with the ability to control reach, optimize frequency of display, and enhanced targeting based on time frames, ACR tech is a key measurement tool advertisers and marketers can leverage to maximize ROI in TV streaming during ‘cuffing season,’ to get the most bang for their buck, and ensure it all plays nicely into omnichannel campaigns. 

Cuffing season may have begun as a light-hearted, internet trend, but thanks to ad tech, we’re seeing that this ‘meme,’ is more grounded in tangible data than we may have thought. For advertisers and marketers, leveraging creative, interactive ad formats and ad tech tools that come with streaming platforms, like Roku, is a great way to extend reach during this untraditional advertising period, and maximize ROI to audiences just before the crowded holiday advertising season. 

Leave a comment »

Here’s Some Retail Cybersecurity Best Practices from Flashpoint

Posted in Commentary on November 22, 2023 by itnerd

As the holidays approach and certain retail events happen (i.e. Black Friday, cyber Monday, cyberattacks, etc.) here’s some security expertise from the experts at Flashpoint. They published a blog all about what we can expect to see.

The blog post is called Guide to Retail Security: Protecting Against Cyber and Physical Threats During the Holiday and is well with your time to read as it speaks to a range of trends and threats that they’re observing in the broader retail and holiday shopping landscape, as well as on Black Friday specifically.

Leave a comment »

Black Friday Buy-One-Give-One Promotion from TELUS

Posted in Commentary on November 21, 2023 by itnerd

TELUS has some news today about a uniquely Canadian promotion that flips a traditional BOGO on its head with a Buy One Give One offer.

This Black Friday weekend, TELUS is asking Canadians to help make this holiday season, and the New Year ahead, a little brighter for those who need it most. Beginning this Friday, for every new customer who buys a phone (online, through calling-in, or at select stores), TELUS will give a free phone and mobility plan to a Canadian youth leaving foster care to help them stay connected. 

This Buy One, Give One offer, which runs from November 24-27th, operates through TELUS’ Mobility for Good program, which provides free or discounted phones and rate plans to youth aging out of foster care, government assisted refugees and Indigenous women at risk of violence. 

While Black Friday shopping is typically centred around grabbing the season’s biggest deals for holiday shopping, TELUS is instead inviting Canadians to purchase with purpose by giving the gift of connection to those in need. Whether you’re shopping for yourself or a loved one, by simply purchasing a device and joining TELUS, your gift has double the impact and helps make this holiday season a little lighter for Canada’s most vulnerable citizens.

Leave a comment »

« Older Entries
Newer Entries »