Tag: vulnerability

Google defeats multifactor authentication, Pixel Watch is unrepairable, Ring sells a pet collar, Toyota learns the value of IT, and yet another vulnerability in the Internet

Links

Retool MFA defeated by Google convenience
https://retool.com/blog/mfa-isnt-mfa/

Pixel Watches are unrepairable
https://www.theverge.com/23874281/google-pixel-watch-cracks-no-repairs-warranty

Ring Pet Tag
https://www.yahoo.com/lifestyle/ring-launches-brand-pet-tag-141824261.html

Toyota manufacturing goes down. Dude named Ben about to get fired.
https://www.techspot.com/news/100067-toyota-insufficient-disk-space-blunder-brings-car-manufacturing.html

Critical WebP vulnerability
https://stackdiary.com/critical-vulnerability-in-webp-codec-cve-2023-4863/

Tags 2fa, authenticator, google, pixel-watch, retool, right-to-repair, ring, toyota, vulnerability, webp

podcast

Angry Tech News #46: Nefarious Inefficiencies

Post author By Ryan Bemrose
Post date January 31, 2023

Podcast: Play in new window | Download (Duration: 35:25 — 23.4MB)

CES 2023 rundown, Another phone vulnerability, Xbox likes to think it’s green, and more EV stories than I meant to put in this show!

Also, angry thanks to Baron Spud the Mitey, whom I forgot to call out, but who still supports the show immensely.

Links:

Alexa smart toilet from Kohler
https://www.theverge.com/2022/12/19/23510864/kohler-numi-smart-toilet-alexa-ces-2022
CNET: Upcoming CES Products
https://www.cnet.com/tech/ces-products-coming-in-2023/
Earspy vulnerability
https://www.androidpolice.com/earspy-attack-eavesdrop-using-motion-sensors/
Consumer spending on apps dropped 2%
https://www.msn.com/en-us/news/technology/app-downloads-stagnant/ar-AA16Jjlo
Zenimax testers vote to unionize
https://www.reuters.com/business/microsoft-videogame-testers-form-companys-first-us-union-2023-01-03/
UK – EV charge costs more than petrol
https://www.autocar.co.uk/car-news/consumer/average-ev-fast-charging-costs-soar-above-petrol
US – EV charge costs more than gas
https://www.breitbart.com/politics/2023/01/30/nolte-cheaper-drive-gas-powered-car-100-miles-than-average-electric-car/
WY legislators introduce bill to ban gas-powered cars
https://www.msn.com/en-us/money/markets/wyoming-lawmakers-push-for-electric-car-ban-and-to-limit-sales-by-2035/ar-AA16rHNN
Heavier EVs raise safety concerns
https://techaeris.com/2023/01/13/ntsb-raises-concerns-that-evs-might-be-unsafe-as-curb-weights-rise/
Copper thieves stripping electric charging stations
https://evol.news/news/copper-thieves-have-new-target-electric-vehicle-charging-stations/
Xbox pretends they’re green
https://www.msn.com/en-us/lifestyle/shopping/xbox/ar-AA16ec2c

Tags apps, ces, electric-vehicles, microsoft, vulnerability, xbox

podcast

Angry Tech News #29: Supply Chain Advisor

Post author By Ryan Bemrose
Post date April 5, 2022

Podcast: Play in new window | Download (Duration: 18:05 — 11.4MB)

Malicious OSS, Netflix conjecture, A win in the right to repair fight, and yet another Chrome zero-day yawn

Links

node-ipc malicious update
https://www.wired.com/story/developer-altered-open-source-software-to-wipe-files-in-russia/
https://www.zdnet.com/article/corrupted-open-source-software-enters-the-russian-battlefield/
https://github.com/advisories/GHSA-97m3-w2cp-4xx6

Malicious Azure-targeting NPM packages
https://www.zdnet.com/article/malicious-npm-packages-target-azure-developers-to-steal-personal-data/

Netflix offers way to pay more if you share passwords
https://about.netflix.com/en/news/paying-to-share-netflix-outside-your-household

John Deere repair program
https://www.deere.com/en/news/all-news/john-deere-expands-access-to-self-repair-resources/

Yet another critical Chrome vulnerability
https://www.bleepingcomputer.com/news/security/emergency-google-chrome-update-fixes-zero-day-used-in-attacks/

Tags chrome, john-deere, netflix, npm, supply-chain-attack, vulnerability

podcast

Angry Tech News #12: Journalism Monopolist

Post author By Ryan Bemrose
Post date November 30, 2021

Podcast: Play in new window | Download (Duration: 16:24 — 10.2MB)

Windows 11 adoption numbers: real and imaginary, Windows All vulnerabilities, Amazon and Visa spat all over UK citizens, and Quad9 is forced into censorship

Links:

Windows 11 adoption numbers
https://www.techradar.com/news/barely-anyone-has-upgraded-to-windows-11-survey-claims
https://www.onmsft.com/news/windows-11-inches-closer-to-10-market-share-in-latest-adduplex-survey
https://docs.microsoft.com/en-us/lifecycle/products/windows-10-home-and-pro

Zero-day in Windows installer
https://www.pcmag.com/news/all-versions-of-windows-are-vulnerable-to-a-new-zero-day-exploit
https://www.forbes.com/sites/gordonkelly/2021/11/29/microsoft-windows-10-windows-11-warning-zero-day-hack-new-attack-update-windows/
https://finance.yahoo.com/news/satya-nadella-sells-half-microsoft-224436215.html

Amazon vs Visa
https://www.bbc.co.uk/news/business-59306200
https://techcrunch.com/2021/11/17/amazon-says-it-will-stop-accepting-uk-issued-visa-credit-cards-on-january-19th/

Quad9 and DNS censorship
https://torrentfreak.com/sony-wins-pirate-site-blocking-order-against-dns-resolver-quad9-210621/
https://www.quad9.net/news/press/german-court-rules-against/

Tags amazon, censorship, dns, microsoft, quad9, visa, vulnerability, windows 11

Recent Posts

Recent Comments

Archives

Categories