Mastercard goes TITSUP in US, UK: There are some things money can't buy – like uptime

Found on The Register on Thursday, 12 July 2018
Browse Various

"Couldn’t pay for petrol. It’s a disgrace you can’t trust cards to pay when you need them to work. Doesn’t say much for the resilience of digital payments."

Mastercard customers have been protesting loudly on Twitter that their pieces of plastic are certainly not fantastic.

Last month, Visa suffered a major outage in Europe at a particularly unfortunate time. Millions of Friday night payments were unable to be completed, and settling the bar tab after the traditional Friday night booze up proved problematic.

Now if someone would only invent an alternative that's resistant against downtimes and outages. Maybe, just maybe, it would be possible to use paper and metal to create different units representing a monetary value which can be exchanged between people.

iPhone crashing bug likely caused by code added to appease Chinese gov’t

Found on Ars Technica on Wednesday, 11 July 2018
Browse Technology

Wardle, who is now a macOS and iOS security expert at Digital Security, said he was perplexed when a friend first reported her fully patched, non-jailbroken device crashed every time she typed Taiwan or received a message with a Taiwanese flag.

He eventually found that the crashes were being caused by code that classified messages based on emojis they contained. He also noticed that the error seemed to be triggered when iOS had country codes that included China or language settings including Chinese (his friend’s phone specified the region as the US and the language as English, followed by Chinese.)

Remember, big corporations will happily bend over for a dictatorship as long as they can make money by selling their products there, while their PR divisions try to uphold the fake image of morals and ethics.

PayPal told customer her death breached its rules

Found on BBC News on Tuesday, 10 July 2018
Browse Legal-Issues

PayPal wrote to a woman who had died of cancer saying her death had breached its rules and that it might take legal action as a consequence.

It said that Mrs Durdle owed the company about £3,200 and went on to say: "You are in breach of condition 15.4(c) of your agreement with PayPal Credit as we have received notice that you are deceased... this breach is not capable of remedy."

Well how does she dare to die before paying every cent back to PayPal first? Honestly, it's better to stay away from that bank company and keep a safe distance.

Researchers find that owning an iPhone or iPad is the number-one way to guess if you’re rich or not

Found on Business Insider on Monday, 09 July 2018
Browse Various

"Across all years in our data, no individual brand is as predictive of being high-income as owning an Apple iPhone in 2016," the researchers wrote.

The iPhone is a luxury product that is usually priced higher than competing smartphones. While some low-end Android phones retail for as little as $100 or less, Apple recently raised the price of its highest-end iPhone to $999 or more.

Maybe they are rich, but they are definatively pitiful if they feel the need to use brands to define and represent themselves.

You Can Bypass Authentication on HPE iLO4 Servers With 29 "A" Characters

Found on Bleeping Computer on Sunday, 08 July 2018
Browse Various

The vulnerability is an authentication bypass that allows attackers access to HP iLO consoles. Researchers say this access can later be used to extract cleartext passwords, execute malicious code, and even replace iLO firmware.

Because of its simplicity and remote exploitation factor, the vulnerability —tracked as CVE-2017-12542— has received a severity score of 9.8 out of 10.

That's one pretty exploit. Simple and easy.

Facial recognition trial in London results in zero arrests, Metropolitan Police confirm

Found on Independent on Saturday, 07 July 2018
Browse Legal-Issues

Scotland Yard had hailed the pilot in Stratford, which The Independent revealed to be one of several planned across London this year, as a method of identifying wanted violent criminals and cracking down on attacks.

Opponents argue that the software currently being used by British police forces is “staggeringly inaccurate” and has a chilling effect on society, while supporters see it as a powerful public protection tool with the ability to help track terrorists, wanted criminals and vulnerable people.

Let's not forgot that London is the most observed place, with cameras everywhere. If there are good chances for finding a needle in a haystack, it should be there.

YouTuber in row over copyright infringement of his own song

Found on BBC News on Friday, 06 July 2018
Browse Legal-Issues

Paul had been contacted by YouTube to advise him that one of his videos had been flagged for copyright infringement, but in his own words, "this was a little different".

The copyright he had apparently infringed upon was his own.

Paul had been accused of plagiarising his own music - and worse, all the money that video was earning would now be directed towards the person who copied his content.

At the heart of the controversy is YouTube's Content ID system - the automatic process which decides whether a video contains copyright infringement.

The entire copyright system is a total mess anyway and it needs a complete rewrite, but without the lobbying agenda of those industries who keep pushing for longer and longer copyright durations.

"Stylish" browser extension steals all your internet history

Found on Robert Heaton on Thursday, 05 July 2018
Browse Internet

Unfortunately, since January 2017, Stylish has been augmented with bonus spyware that records every single website that I and its 2 million other users visit. Stylish sends our complete browsing activity back to its servers, together with a unique identifier. This allows it’s new owner, SimilarWeb, to connect all of an individual’s actions into a single profile.

Stylish’s transition from visual Valhalla to privacy Chernobyl began when the original owner and creator of Stylish sold it in August 2016. In January 2017 the new owner sold it again, announcing that “Stylish is now part of the SimilarWeb family”. The SimilarWeb family’s promotional literature lists “Market Solutions To See All Your Competitors’ Traffic” amongst its interests.

That's one of the problems with the entire plugin ecosystem: everybody can release plugins, and everybody can install them. However, users won't get any notifications about owner changes or new "features". That's why it's best to keep the plugin-list as short and trusted as possible.

Gmail messages 'read by human third parties'

Found on BBC News on Wednesday, 04 July 2018
Browse Internet

Google has confirmed that private emails sent and received by Gmail users can sometimes be read by third-party app developers, not just machines.

When linking an account to an external service, people are asked to grant certain permissions - which often include the ability to "read, send, delete and manage your email".

The companies said they had not asked users for specific permission to read their Gmail messages, because the practice was covered by their user agreements.

Why would somebody with a little bit of brain left even remotely consider to allow some random company to have access to the mailbox? Stupidity really has no limits.

Namecheap users rage at domain transfer pain, but their supplier Enom blames... er, GDPR?

Found on The Register on Tuesday, 03 July 2018
Browse Internet

"The original registrar rightly cannot control it and as Namecheap can't control it either, the end user has to go cap in hand to Nominet and pay a £12 ransom to change the IPS-TAG a second time back to their original supplier," the punter said.

For its part, Enom's status page has detailed the issues under the heading "GDPR implementation", although it isn't clear how Europe's General Data Protection Regulation is at fault for this specific issue.

Sounds like a game of "blame someone else".