Review: GE Cync Full Colour Direct Connect Smart Bulb

Posted in Products with tags on November 13, 2024 by itnerd

For the last few years, I’ve had two of these smart bulbs in my den. But over the last week one would just randomly factory reset itself. After the third time that happened, I figured enough is enough and I replaced both. After doing some research, I finally settled on the GE Cync Full Color Direct Connect Smart Bulb. What led me two this bulb were two things:

  1. These were Matter compatible. Matter is a common standard for smart home devices. So if your smart home platform (Namely Apple HomeKit, Google Home, Amazon Alexa, or Samsung Smart Things for example) supports Matter, your latest smart home device should work. More on that later.
  2. The price which was $19.99 CDN for each bulb at my local Best Buy which for whatever reason seemed to be the only place that had them in stock.

Here’s a look at the packaging that this bulb comes in:

What’s interesting about this is that Apple HomeKit isn’t mentioned. In fact, looking around the box the only mention of Apple that I could find is a sentence where it says that it supports “Apple Home” which isn’t a thing. I guess GE didn’t pay Apple to use the HomeKit logo or something. That’s something that may dissuade less tech savvy consumers from buying this bulb unless they really take the time to read the box, or they see the Matter logo and automatically know it will work with Apple HomeKit.

Anyway, here’s the bulb:

It’s unremarkable really. But on the back side of the bulb is a sticker with the Matter pairing code and the associated QR code. So that should mean that I should be able to do the following:

  1. Screw the bulb into the light fixture’s socket.
  2. Open up the Home app and click on the “+” sign at the top right and choose “Add Accessory”
  3. Scan the Matter code
  4. Sit back and wait for it to be added to my HomeKit setup
  5. Repeat steps 1-4 for the second bulb as the second bulb as the light fixture had two bulbs.
  6. Declare victory and have a beer.

That’s not how it went down. I got as far as step three and after a couple of minutes I got an error that the bulb could not be added to HomeKit. I figured that it was a fluke so I tried it again and got the same error. Perplexed I picked up the box and read the instructions as I have to admit that I YOLO’ed things as I had made the assumption that this would be simple to add. That’s when the light bulb went on metaphorically speaking. This is a Matter device that requires a 2.4 Ghz WiFi connection. My iPhone is normally on the 5Ghz bands because I have two separate WiFi bands on my WiFi network. That’s to keep the “slower” devices on 2.4Ghz and the “faster” devices on 5Ghz. I reasoned that because my phone was on the 5Ghz band, it couldn’t talk to the bulb to connect the bulb which was on the 2.4 Ghz band. To address that, I connected my iPhone up to the 2.4Ghz band. Then tried to add the bulbs again. It took two tries for each bulb for whatever reason after I factory reset them using these instructions, but I got it to work.

This in a way illustrates the fact that smart home gear should be easy to install, but sometimes isn’t. In my case my issues were due to how my network is set up, which to be clear isn’t weird as a lot of people run separate WiFi bands as opposed to having a single network that encompasses both bands. So you think this would have been accounted for. But clearly not. And for a less tech savvy user, this might have resulted in them returning these bulbs to Best Buy. The take home message is that Matter clearly has teething pains that need to be addressed in order to make the user experience better.

Anyway in testing these bulbs, I found the response times to be quick. Be it just simply turning them off or on, changing the colour, or increasing the brightness. Speaking of the brightness, these bulbs can get insanely bright. The box says 800 lumens and I believe it. I’ve set them to 70% of that by default. But I’ve created HomeKit scenes that can boost them to full brightness or dim them to 40% of 800 lumens. In terms of colour range, that too is insane as you get a number of methods to dial in the colour of the bulbs:

I have them set to a cool white which works for my wife and I.

All of this is available in the Home app on my iPhone. But I assume that it is similar on other home automation platforms. The other thing that the Home app is supposed to handle firmware updates for these bulbs. That is a good thing as firmware updates aren’t just for functionality and bug fixes. They’re for security as well. And a lot of users don’t update their firmware leaving them open to something bad potentially happening to them.

Now I should mention that these bulbs to have their own iOS and Android app. But if you use one of the major home automation platforms, there’s no reason for you to use that app. Conversely, if you do want to use the app because you’re not on one of the major home automation platforms, setting up these bulbs and controlling them is insanely easy based on tests using a third bulb that I purchased for experimentation purposes. I didn’t encounter any of the issues that I did encounter via Matter.

So would I recommend these bulbs? They do work. The price is great. But you might have issues with the setup which have more to do with Matter than with the bulbs one suspects. So if you by them knowing that you may have to put in some more work than you planned on to get these bulbs operational, you won’t be disappointed.

Leave a comment »

75% of most visited websites in U.S. and Europe are not compliant with privacy regulations

Posted in Commentary with tags on November 13, 2024 by itnerd

Privacy solution provider Privado.ai released its 2024 State of Website Privacy Report, which reveals that 75% of the 100 most visited websites in the U.S. and Europe are not compliant with current privacy regulations. 

Despite stricter privacy enforcement in Europe, Privado found a surprising 74% of top websites in Europe do not honor opt-in consent as required by Europe’s General Data Protection Regulation (GDPR). 

Although top websites in the U.S. had a similar non-compliance rate of 76% for not honoring opt-out consent as required by the California Privacy Rights Act (CPRA), Privado found the median volume of compliance risks to be 3X higher in the U.S.

The State of Website Privacy Report is based on data from Privado’s consent monitoring solution collected in September 2024. Privado.ai decided to launch this solution and release this report in response to increasing privacy fines in both the U.S. and Europe. 

Six of the 20 largest GDPR fines since 2018 are due to consent compliance violations on websites, with Amazon receiving the second-largest GDPR fine to date, $888M, for targeting users with ads without proper consent in 2021.

In the US, at least 10 companies since 2022 have been fined for violating consent compliance on websites as regulated by CPRA, the FTC (Federal Trade Commission), or HIPAA (Health Insurance Portability and Accountability Act).

With fines mounting and consumers demanding greater privacy, personal data sharing from websites has become a major legal risk for companies worldwide.

State of Website Privacy Report Key Findings

  • 76% of the most visited websites in the US do not honor CPRA opt-out signals 
  • 74% of the most visited websites in Europe do not honor GDPR opt-in consent
  • The most visited websites share personal data with an average of 17 advertising 3rd parties in the US and 6 in Europe

Most websites do not honor consent as required by privacy regulations in the US and Europe

To comply with the CPRA amendment to CCPA (California Consumer Privacy Act), websites in the US must block personal data sharing with advertising third parties if the user opts out of data sharing. To comply with GDPR, websites in Europe must block personal data collection and sharing with third parties unless the user provides opt-in consent. Despite increasing privacy fines in the US and Europe, most websites are not honoring the consent requirements in the US or Europe. 

Non-compliant websites in the US average 3X more compliance risks than those in Europe

Privacy teams typically lack the visibility and controls to track what third parties are integrated with on their websites and whether they are honoring consent requirements. With teams using so many third parties to optimize marketing and website performance, privacy teams need comprehensive solutions to continuously monitor consent and data flows.  

Top websites in the US and Europe typically share data with over 20 3rd parties

Median 3rd Parties Integrated with Top Websites

Consent management platforms alone do not ensure consent compliance

Consent management platforms (CMPs) are effective at managing the complexity of implementing consent banners and data flows across websites, but CMPs can’t sufficiently monitor and validate consent compliance. Privacy teams need continuous website monitoring solutions to mitigate privacy risk at scale. The solutions should provide a real-time view of third parties integrated with their websites, each data element being sent to which third parties, and consent banner functionality. 

Privacy code scanning and consent management platforms together can ensure privacy compliance

Privacy code scanning should be used in conjunction with a consent management platform to implement best-in-class digital tracking governance for websites and mobile apps.

Consent management platforms are critical for collecting, acting on, and recording consent, but they lack the full visibility and governance to ensure personal data doesn’t improperly leak to advertising third parties. Privacy code scanning enables the complete and continuous visibility and governance needed to ensure compliance with today’s complex web of privacy regulations.

To see the complete findings and recommendations, download the State of Website Privacy Report.

Leave a comment »

Healthcare Under Siege: Ransomware in 2024 

Posted in Commentary with tags on November 13, 2024 by itnerd

Recently Safety Detective’s Research Team collected and analyzed data from the ransomware attacks focused on the healthcare industry during 2023 and for the first three quarters of 2024 and came up with some important data that they think may be interesting to see. 

Among other things, it was revealed an increase in active ransomware groups, an increase in the number of attacks and that 10% of those attacks targeted the healthcare sector. Furthermore, there is a worrying shift towards more sophisticated and coordinated cybercriminal activities, as evidenced by an average of 30 new variants of ransomware emerging each month. 

Take a look at their full report here: https://www.safetydetectives.com/news/healthcare-ransomware-2024/

Leave a comment »

Arelion Expands Partnership with NETSCOUT 

Posted in Commentary with tags on November 13, 2024 by itnerd

Arelion today announced it has expanded its partnership with NETSCOUT, a leading provider of performance management, cybersecurity and DDoS attack protection solutions, to strengthen the Internet carrier’s DDoS attack mitigation capabilities. This expanded partnership enables Arelion to support the network security requirements of global enterprises amid rising attacks on critical infrastructure. By enhancing its capabilities with NETSCOUT, Arelion improves network security across its #1 ranked global Internet backbone, empowering enterprise customers with resilient, high-performance connectivity services.

The expanded partnership significantly increases the density of Arelion’s network monitoring across its global Internet backbone, providing better protection for enterprises’ high-bandwidth applications. This enhancement empowers Arelion with more granular visibility of traffic patterns, enabling faster detection of anomalies and speedier threat responses. By augmenting its DDoS attack mitigation capabilities with Adaptive DDoS protection, Arelion also improves its defenses against newer DDoS attack vectors and techniques, including carpet bombing.

With this expanded partnership, Arelion provides its global customers with secure access to Arelion’s #1 ranked global Internet backbone. Arelion’s enhanced DDoS attack mitigation services are currently available for service providers, content providers and enterprises.

Leave a comment »

The Guardian Newspaper Will No Longer Post On Twitter…. But Does Elon Musk Care?

Posted in Commentary with tags on November 13, 2024 by itnerd

Elon Musk woke up to the news that one of the UK’s biggest newspapers The Guardian won’t be posting on Twitter anymore. And they didn’t pull any punches when they explained why:

We wanted to let readers know that we will no longer post on any official Guardian editorial accounts on the social media site X (formerly Twitter). We think that the benefits of being on X are now outweighed by the negatives and that resources could be better used promoting our journalism elsewhere.

This is something we have been considering for a while given the often disturbing content promoted or found on the platform, including far-right conspiracy theories and racism. The US presidential election campaign served only to underline what we have considered for a long time: that X is a toxic media platform and that its owner, Elon Musk, has been able to use its influence to shape political discourse.

X users will still be able to share our articles, and the nature of live news reporting means we will still occasionally embed content from X within our article pages.

That’s a pretty damming indictment of Twitter under Elon Musk. But not surprising as it is 100% true. The real question is if he will care. I think he does, but not for the reason you think. He may see The Guardian leaving as him winning against “legacy media” or “the woke mind virus” or whatever catchphrase that he’s using at the moment. Thus he will keep doing whatever he thinks will achieve the same result with other media outlets that he doesn’t like. Assuming that the don’t follow The Guardian out the door.

Oh yeah. In case you want an alternate place to get your fix of The Guardian, you can head over to their website. And perhaps even throw them a couple of bucks to support what they’re doing.

Leave a comment »

Other World Computing Launches New 240GB Capacity Atlas Pro CFexpress 4.0 Type A Memory Cards

Posted in Commentary with tags on November 13, 2024 by itnerd

 Other World Computing today announced the general availability launch of the latest addition to its OWC Atlas Pro family of memory cards – the 240GB OWC Atlas Pro CFexpress 4.0 Type A Card. Based on popular demand, this new capacity option combines the rocket-fast speeds users expect from OWC with a more accessible price point, making it the ideal choice for Sony users who require professional-grade performance without the need for maximum capacity.

OWC CFexpress 4.0 Type A Atlas Pro cards are perfect for pro filmmakers and extreme action photographers who want to dramatically speed up their offloads while retaining full compatibility with existing devices. Users experience double the speeds of CFexpress 2.0 cards with 1850MB/s read speeds through OWC Atlas USB4 CFexpress 4.0 card reader while providing 1700MB/s write speed for current and future cameras that can take advantage of such performances. OWC’s Atlas CFexpress 4.0 Type A cards are VPG200 certified, ensuring they work seamlessly with all existing Sony camera modes. Like the 480GB to 960GB cards, the new 240GB capacity cards are:

  • Lightning Fast – Up to 1700MB/s write and 1850MB/s read speeds for the most advanced use cases of professional content creators, including fast burst RAW image sequences and high bitrate video recording up to 8K
  • Dependable – Delivers 400MB/s minimum sustained write speed
  • Compatible – Designed for use in Sony Alpha and FX cameras, including a9 III, a1, a7SIII, a7IV, a7rV, FX3, FX6, FR7, and FX30, as well as CFexpress Type A memory card readers and reader slot-equipped devices
  • Supportive – VPG200 certified to work with all Sony camera modes and enable the highest allowable settings in Sony Alpha, FX, and FR7 cameras
  • Compliant – Fully compliant with CFexpress Type A 4.0 specification and meets Type A 2.0 specifications
  • Versatile – Includes Type A to Type B adapter to obtain maximum speed when paired with an OWC Atlas USB4 CFexpress 4.0 Card Reader
  • Tough – Impact, bend, shock, ESD, UV ray, and X-ray resistant

The 240GB capacity Atlas CFexpress Type A cards are now generally available for $199.99. Please visit: https://www.owc.com/solutions/atlas-pro-cfexpress-cards/4.0-type-a to learn more and purchase.

Leave a comment »

Horizon3.ai Launches NodeZero For Kubernetes

Posted in Commentary with tags on November 12, 2024 by itnerd

Horizon3.ai announced the release of NodeZero Kubernetes Pentesting, a powerful new capability available to all NodeZero users. Designed to deploy directly within Kubernetes clusters, this solution equips organizations with the unique ability to identify and exploit vulnerabilities from an attacker’s perspective, uncovering weaknesses that could jeopardize entire infrastructures.

Kubernetes has become foundational to modern environments, offering flexibility to scale containerized applications. However, as adoption of managed Kubernetes distributions like AWS Elastic Kubernetes Service (EKS), Google Kubernetes Engine (GKE), and Azure Kubernetes Service (AKS) grows, the risks from complex and distribution-specific weaknesses increases as well. NodeZero’s offensive approach prioritizes real-time security testing at the runtime level, revealing the “blast radius” attackers could achieve by chaining Kubernetes-specific vulnerabilities with cloud and on-premises infrastructure weaknesses.

NodeZero Kubernetes Pentesting differentiates itself through advanced runtime security testing and ease of deployment, allowing organizations to achieve the continuous security assurance demanded by today’s threat landscape. Unlike traditional security tools focused on compliance or control plane analysis, NodeZero tests in real time, uncovering vulnerabilities like container escapes and RBAC misconfigurations that attackers exploit to move laterally, escalate privileges, and compromise underlying infrastructures.

The release underscores a shift in cybersecurity toward offensive-based assessments that employ adversarial techniques. Traditional compliance-driven assessments often miss critical gaps that attackers could exploit, leaving organizations exposed. With NodeZero’s use of real-world tactics, techniques, and procedures (TTPs) that mimic attacker behavior within Kubernetes environments, security teams can prioritize the most pressing threats and address exploitable vulnerabilities before they become gateways for adversaries.

Designed for any Kubernetes distribution, including EKS, GKE, and AKS, NodeZero’s pentesting capabilities provide advanced protection across both cloud and on-premises clusters. This solution underscores Horizon3.ai’s commitment to proactive, high-impact cybersecurity innovation, helping organizations navigate and secure the complexities of Kubernetes at scale.

Leave a comment »

Cyware Achieves FedRAMP Ready Status

Posted in Commentary with tags on November 12, 2024 by itnerd

Cyware, the leading provider of threat intelligence management, low-code/no-code automation, and cyber fusion solutions, today announced that it has achieved Federal Risk and Authorization Management Program (FedRAM®) Ready status.

FedRAMP is the government-wide program supporting the adoption of secure cloud services across the federal government through a standardized approach to security and risk assessment for cloud technologies and federal agencies. FedRAMP Ready Status confirms that a third-party assessment 3PAO attests to Cyware’s readiness for the comprehensive, meticulous authorization process, having met additional recently introduced and rigorous requirements issued by The Joint Authorization Board (JAB).

Cyware’s threat-driven automation is designed to ensure that actionable cyber threat intelligence (CTI) promptly reaches individuals and teams who can act on it to swiftly identify, understand, and mitigate threats. Cyware’s Cyber Fusion Center (CFC) simplifies and substantially advances intelligence actioning – breaking through the barriers that have long prevented or delayed intelligence-sharing across entities.

Cyware delivers an innovative approach to cybersecurity that unifies threat intelligence, automation, threat response, and vulnerability management with data insights gleaned from assets, users, malware, attackers, and vulnerabilities. Cyware’s Cyber Fusion platform integrates SOAR and TIP technology, enabling collaboration across siloed security teams. Cyware is widely deployed by enterprises, government agencies, and MSSPs and is the leading threat-intelligence sharing platform for global ISACs and CERTs.

Leave a comment »

Epic Holiday Gifting with Epson’s NEW Portable Smart Laser Projector

Posted in Commentary with tags on November 12, 2024 by itnerd

Epson’s recently launched EpiqVision Mini EF22 portable laser projector offers big entertainment in a small package and can make any event a truly epic experience. From a cozy movie night-in to a busy holiday get-together, the EpiqVision Mini EF22 is the perfect sidekick to help keep everyone entertained. 

Spoil your loved ones this holiday season with the NEW Epson EpiqVision Mini EF22 Portable Smart Laser Projector (MSRP: $1,299.99 CAD) – a gift the whole family can enjoy. Get ready for a truly epic viewing experience with a screen size reaching up to 150”, full HD HDR picture quality and stereo speakers with Dolby audio. The Epson EpiqVision Mini is also portable, so you can easily set it up in any room of your house – or bring it with you on the road! Its new 360-degree swivel-stand with tilt ability maximizes your viewing options so you can always get the best picture. Hosting a holiday movie marathon? Stream all your favourites seamlessly with the projector’s built-in HDMI and Google TV with access to Netflix .   

For more information, check Epson.ca for weekly specials and even more savings! 

Leave a comment »

Review: UGREEN 4-in-1 USB 3.0 SD Card Reader

Posted in Products with tags on November 12, 2024 by itnerd

I am in the midst of finalizing my new desk setup having made some major changes. I’ll be sharing the final result with you in the coming weeks. But right now, I’m here to talk about one of those changes. Which is the UGREEN 4-in-1 USB 3.0 SD Card Reader/

So the reason why I need this is that I am redoing my desk setup to support having my MacBook Pro in clamshell mode. As in the lid is closed and connected to an external monitor. So I wanted to either replicate on enhance the ability to read SD cards and the like. I went the enhance route and got this at Memory Express for $22.99 CDN. One the front, there’s a Compact Flash card slot at the top and a Sony Memory Stick Card slot on the bottom. I don’t have any of those and I don’t know who else would have any of those. But if you have one of those, it’s there.

On the right side there’s a SD Card slot at the top and a Micro SD card slot at the bottom. Short of doing CF Express cards which I don’t have any, I’m covered for most situations. One thing that I should point out is that this card reader is a fingerprint magnet. Though it’s not visible in the picture, there’s also a blue light that seems to only indicate that it is plugged into a USB-A port and getting power. The light isn’t all that bright so you can leave it connected without lighting up a dark room.

In terms of performance, I plugged it into a USB 3.1 Gen 1 port that does 5 Gbps, and used a SD card that was rated for 95 MB/s read speeds and got this result:

91.14 MB/s validates that this card reader is performing very close to expectations and the card reader along with the USB bus isn’t really holding it back all that much if at all.

One cool feature is that each card slot appears to act independently. For example, if I pop in a Micro SD card and an SD card, both will appear on the desktop of my Mac and I can copy items between them. I don’t know when I would need such functionality, but it’s handy to know that I could do that if I needed to.

Honestly, I have no complaints or drawbacks about this card reader. It does the job by supporting a number of card type, it’s fast, and doesn’t break the bank. I highly recommend it.

Leave a comment »

« Older Entries
Newer Entries »