GPS
Digital License Plates: Stupid, Pointless, Insecure
Richi Jennings | | API Attack, API Authentication, API Authorization, API security, Automotive Cyber Security, Automotive Security, California, digital license plate, digitalization, DMV, GPS, iot, Privacy, Reviver, Rplate, SB Blogwatch
Reviver’s Rplate digital license plates are insecure: Their design appears to be riddled with privacy holes (not to mention the daft nature of the product itself) ...
Security Boulevard
TikTok ‘Will’ Spy on US Citizens — Say Sources
Richi Jennings | | Bytedance, CCP, china, China saw how successful Russia was with Facebook, Forbes, GPS, location data, SB Blogwatch, spyware, Tik Tok, TikTok
TikTok parent ByteDance is planning to track the location of certain targeted individuals on U.S. soil, using a specialist Chinese team ...
Security Boulevard
Critical Vulnerabilities in GPS Trackers
This is a dangerous vulnerability: An assessment from security firm BitSight found six vulnerabilities in the Micodus MV720, a GPS tracker that sells for about $20 and is widely available. The researchers ...
Bipartisan Digital-Privacy Bill, Delete Your Data Before Selling Your Car, Firefox Total Cookie Protection
Tom Eston | | Car, Car Dealer, Congress, Cybersecurity, Data Brokers, Data Privacy, Digital Privacy, Episodes, Firefox, GPS, Information Security, Infosec, Mozilla, Navigation System, Podcast, Privacy, Privacy Legislation, security, technology, Total Cookie Protection, tracking, US Congress, Weekly Edition
A new bipartisan privacy bill, the American Data Privacy and Protection Act, “could” be the first privacy legislation in the US not doomed to fail, a story about why you should delete ...
Disable Time Sync NOW—Ugly GPSd Bug Brings Sunday FAILs
Richi Jennings | | GPS, gpsd, network time protocol, NTP, open source, SB Blogwatch, sit back and watch the fun from a safe distance
On Sunday, you might find some equipment thinks it’s 2002. Yet another case of critical open source code being maintained by a single unpaid volunteer ...
Security Boulevard
System Update: New Android Malware
Researchers have discovered a new Android app called “System Update” that is a sophisticated Remote-Access Trojan (RAT). From a news article: The broad range of data that this sneaky little bastard is ...
GPS Vulnerabilities
Really good op-ed in the New York Times about how vulnerable the GPS system is to interference, spoofing, and jamming — and potential alternatives. The 2018 National Defense Authorization Act included funding ...
The US Military Buys Commercial Location Data
Vice has a long article about how the US military buys commercial location data worldwide. The U.S. military is buying the granular movement data of people around the world, harvested from innocuous-seeming ...
Death by Ransomware, Strava Flyby, iOS 14 Privacy Improvements
Tom Eston | | Apple, Cybersecurity, Digital Privacy, Episodes, GPS, ios, iOS 14, Mobile, Podcast, Privacy, Ransomware, Strava, Weekly Edition
In episode 140 for September 28th 2020: Details on the first human death related to a ransomware attack, popular fitness app Strava is caught giving away your location data to strangers, and ...
Me on COVID-19 Contact Tracing Apps
Bruce Schneier | | baserate, bluetooth, covid19, falsenegatives, falsepositives, GPS, identification, Medicine, Privacy, surveillance, tracing
I was quoted in BuzzFeed: "My problem with contact tracing apps is that they have absolutely no value," Bruce Schneier, a privacy expert and fellow at the Berkman Klein Center for Internet ...