[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
malware-apple.html malware-games.html malware-google.html malware...
|
From: |
Diff Report |
|
Subject: |
malware-apple.html malware-games.html malware-google.html malware... |
|
Date: |
Wed, 10 Mar 2021 00:02:19 -0500 |
Modified:
malware-apple.html
malware-games.html
malware-google.html
malware-in-online-conferencing.html
malware-microsoft.html
malware-mobiles.html
proprietary.html
proprietary-insecurity.html
proprietary-interference.html
proprietary-surveillance.html
diff -rNU2 malware-apple.html malware-apple.html
--- malware-apple.html 2021-03-09 05:03:17.072505787 +0000
+++ malware-apple.html 2021-03-10 05:02:19.179422484 +0000
@@ -843,5 +843,5 @@
<p>The article mentions specific examples: Microsoft OneDrive,
- Intuitâs Mint, Nike, Spotify, The Washington Post, The Weather
+ Intuit's Mint, Nike, Spotify, The Washington Post, The Weather
Channel (owned by IBM), the crime-alert service Citizen, Yelp
and DoorDash. But it is likely that most nonfree apps contain
@@ -1147,5 +1147,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/01/18 12:55:50 $
+$Date: 2021/03/09 09:33:39 $
<!-- timestamp end -->
</p>
diff -rNU2 malware-games.html malware-games.html
--- malware-games.html 2021-03-09 05:03:17.124505787 +0000
+++ malware-games.html 2021-03-10 05:02:19.187422484 +0000
@@ -116,5 +116,5 @@
<!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
--><!--#echo encoding="none" var="DATE" -->
- <p>Riot Gamesâ new anti-cheat is malware; <a
+ <p>Riot Games' new anti-cheat is malware; <a
href="https://www.extremetech.com/gaming/309320-riot-games-new-anti-cheat-system-runs-at-system-boot-uses-kernel-driver";>runs
on system boot at kernel level</a> on Windows. It is insecure software
@@ -489,5 +489,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/01/31 17:19:33 $
+$Date: 2021/03/09 09:33:39 $
<!-- timestamp end -->
</p>
diff -rNU2 malware-google.html malware-google.html
--- malware-google.html 2021-03-09 05:03:17.124505787 +0000
+++ malware-google.html 2021-03-10 05:02:19.191422484 +0000
@@ -378,4 +378,15 @@
</li>
+ <li id="M202004301">
+ <!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>Proprietary programs Google Meet, Microsoft Teams, and WebEx <a
+
href="https://www.consumerreports.org/video-conferencing-services/videoconferencing-privacy-issues-google-microsoft-webex/";>are
+ collecting user's personal and identifiable data</a> including how long
+ a call lasts, who's participating in the call, and the IP addresses
+ of everyone taking part. From experience, this can even harm users
+ physically if those companies hand over data to governments.</p>
+ </li>
+
<li id="M201907210">
<!--#set var="DATE" value='<small class="date-tag">2019-07</small>'
@@ -690,5 +701,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/01/18 12:55:50 $
+$Date: 2021/03/09 11:35:32 $
<!-- timestamp end -->
</p>
diff -rNU2 malware-in-online-conferencing.html
malware-in-online-conferencing.html
--- malware-in-online-conferencing.html 2021-03-09 05:03:17.128505787 +0000
+++ malware-in-online-conferencing.html 2021-03-10 05:02:19.191422484 +0000
@@ -120,4 +120,15 @@
</li>
+ <li id="M202004301">
+ <!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>Proprietary programs Google Meet, Microsoft Teams, and WebEx <a
+
href="https://www.consumerreports.org/video-conferencing-services/videoconferencing-privacy-issues-google-microsoft-webex/";>are
+ collecting user's personal and identifiable data</a> including how long
+ a call lasts, who's participating in the call, and the IP addresses
+ of everyone taking part. From experience, this can even harm users
+ physically if those companies hand over data to governments.</p>
+ </li>
+
<li id="M202003260">
<!--#set var="DATE" value='<small class="date-tag">2020-03</small>'
@@ -192,5 +203,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/01/18 12:55:50 $
+$Date: 2021/03/09 11:35:32 $
<!-- timestamp end -->
</p>
diff -rNU2 malware-microsoft.html malware-microsoft.html
--- malware-microsoft.html 2021-03-09 05:03:17.132505787 +0000
+++ malware-microsoft.html 2021-03-10 05:02:19.195422484 +0000
@@ -206,4 +206,38 @@
<ul class="blurbs">
+ <li id="M202103050">
+ <!--#set var="DATE" value='<small class="date-tag">2021-03</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>At least 30 thousand organizations
+ in the United States are newly “<a
+ href="/philosophy/words-to-avoid.html#Hacker">cracked</a>” via <a
+
href="https://krebsonsecurity.com/2021/03/at-least-30000-u-s-organizations-newly-hacked-via-holes-in-microsofts-email-software/";>holes
+ in Microsoft's proprietary email software, named Microsoft 365</a>. It
+ is unclear whether there are other holes and vulnerabilities in the
+ program or not but history and experience tells us it wouldn't be
+ the last disaster with proprietary programs.</p>
+ </li>
+
+ <li id="M202102110">
+ <!--#set var="DATE" value='<small class="date-tag">2021-02</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>Researchers at the security firm SentinelOne discovered a <a
+
href="https://www.wired.com/story/windows-defender-vulnerability-twelve-years/";>security
+ flaw in proprietary program Microsoft Windows Defender that lurked
+ undetected for 12 years</a>. If the program was free (as in freedom),
+ more people would have had a chance to notice the problem, therefore,
+ it could've been fixed a lot sooner.</p>
+ </li>
+
+ <li id="M202004270">
+ <!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>The proprietary program Microsoft Teams' insecurity <a
+
href="https://www.forbes.com/sites/thomasbrewster/2020/04/27/your-whole-companys-microsoft-teams-data-couldve-been-stolen-with-an-evil-gif";>could
+ have let a malicious GIF steal user data from Microsoft Teams
+ accounts</a>, possibly across an entire company, and taken control
+ of “an organization's entire roster of Teams accounts.”</p>
+ </li>
+
<li id="M201705120">
<!--#set var="DATE" value='<small class="date-tag">2017-05</small>'
@@ -555,4 +589,15 @@
</li>
+ <li id="M202004301">
+ <!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>Proprietary programs Google Meet, Microsoft Teams, and WebEx <a
+
href="https://www.consumerreports.org/video-conferencing-services/videoconferencing-privacy-issues-google-microsoft-webex/";>are
+ collecting user's personal and identifiable data</a> including how long
+ a call lasts, who's participating in the call, and the IP addresses
+ of everyone taking part. From experience, this can even harm users
+ physically if those companies hand over data to governments.</p>
+ </li>
+
<li id="M201912160">
<!--#set var="DATE" value='<small class="date-tag">2019-12</small>'
@@ -902,5 +947,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/03/07 16:40:46 $
+$Date: 2021/03/09 11:38:08 $
<!-- timestamp end -->
</p>
diff -rNU2 malware-mobiles.html malware-mobiles.html
--- malware-mobiles.html 2021-03-09 05:03:17.136505787 +0000
+++ malware-mobiles.html 2021-03-10 05:02:19.199422484 +0000
@@ -757,5 +757,5 @@
<p>The article mentions specific examples: Microsoft OneDrive,
- Intuitâs Mint, Nike, Spotify, The Washington Post, The Weather
+ Intuit's Mint, Nike, Spotify, The Washington Post, The Weather
Channel (owned by IBM), the crime-alert service Citizen, Yelp
and DoorDash. But it is likely that most nonfree apps contain
@@ -875,5 +875,5 @@
gratis VPN apps in Google Play found that <a
href="https://www.top10vpn.com/free-vpn-android-app-risk-index/";>
- 25% fail to protect their usersâ privacy</a> due to DNS leaks. In
+ 25% fail to protect their users' privacy</a> due to DNS leaks. In
addition, 85% feature intrusive permissions or functions in their
source code—often used for invasive advertising—that could
@@ -1551,5 +1551,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/02/06 13:44:42 $
+$Date: 2021/03/09 09:33:39 $
<!-- timestamp end -->
</p>
diff -rNU2 proprietary.html proprietary.html
--- proprietary.html 2021-03-09 05:03:17.160505787 +0000
+++ proprietary.html 2021-03-10 05:02:19.223422484 +0000
@@ -187,4 +187,39 @@
<ul class="blurbs">
+ <li id="M202103050">
+ <!--#set var="DATE" value='<small class="date-tag">2021-03</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>At least 30 thousand organizations
+ in the United States are newly “<a
+ href="/philosophy/words-to-avoid.html#Hacker">cracked</a>” via <a
+
href="https://krebsonsecurity.com/2021/03/at-least-30000-u-s-organizations-newly-hacked-via-holes-in-microsofts-email-software/";>holes
+ in Microsoft's proprietary email software, named Microsoft 365</a>. It
+ is unclear whether there are other holes and vulnerabilities in the
+ program or not but history and experience tells us it wouldn't be
+ the last disaster with proprietary programs.</p>
+ </li>
+
+ <li id="M202102110">
+ <!--#set var="DATE" value='<small class="date-tag">2021-02</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>Researchers at the security firm SentinelOne discovered a <a
+
href="https://www.wired.com/story/windows-defender-vulnerability-twelve-years/";>security
+ flaw in proprietary program Microsoft Windows Defender that lurked
+ undetected for 12 years</a>. If the program was free (as in freedom),
+ more people would have had a chance to notice the problem, therefore,
+ it could've been fixed a lot sooner.</p>
+ </li>
+
+ <li id="M202004301">
+ <!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>Proprietary programs Google Meet, Microsoft Teams, and WebEx <a
+
href="https://www.consumerreports.org/video-conferencing-services/videoconferencing-privacy-issues-google-microsoft-webex/";>are
+ collecting user's personal and identifiable data</a> including how long
+ a call lasts, who's participating in the call, and the IP addresses
+ of everyone taking part. From experience, this can even harm users
+ physically if those companies hand over data to governments.</p>
+ </li>
+
<li id="M202004270">
<!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
@@ -194,5 +229,5 @@
have let a malicious GIF steal user data from Microsoft Teams
accounts</a>, possibly across an entire company, and taken control
- of âan organizationâs entire roster of Teams accounts,â</p>
+ of “an organization's entire roster of Teams accounts.”</p>
</li>
@@ -210,56 +245,4 @@
users to defenselessly do whatever Microsoft tells them to do.</p>
</li>
-
- <li id="M202102200">
- <!--#set var="DATE" value='<small class="date-tag">2021-02</small>'
- --><!--#echo encoding="none" var="DATE" -->
- <p>The proprietary program Clubhouse
- is malware and a privacy disaster. Clubhouse <a
-
href="https://www.theguardian.com/commentisfree/2021/feb/20/why-hot-new-social-app-clubhouse-spells-nothing-but-trouble";>collects
- people's personal data such as recordings of people's
- conversations</a>, and, as a secondary problem, does not encrypt them,
- which shows a bad security part of the issue.</p>
-
- <p>A user's unique Clubhouse ID number and chatroom ID are transmitted
- in plaintext, and Agora (the company behind the app) would likely
- have access to usersâ raw audio, potentially providing access to
- the Chinese government.</p>
-
- <p>Even with good security of data transmission, collecting personal
- data of people is wrong and a violation of people's privacy rights.</p>
- </li>
-
- <li id="M202102180">
- <!--#set var="DATE" value='<small class="date-tag">2021-02</small>'
- --><!--#echo encoding="none" var="DATE" -->
- <p>Microsoft is <a
-
href="https://uk.pcmag.com/operating-systems/131798/microsoft-starts-automatically-removing-flash-from-windows";>forcibly
- removing the Flash player from computers running Windows 10</a>, using
- <a href="/proprietary/proprietary-back-doors.html#windows-update">a
- universal backdoor in Windows</a>.</p>
-
- <p>The fact that Flash has been <a
- href="/proprietary/proprietary-back-doors.html#M202012020">disabled
- by Adobe</a> is no excuse for this abuse of power. The nature of
- proprietary software, such as Microsoft Windows, gives the developers
- power to impose their decisions on users. Free software on the other
- hand empowers users to make their own decisions.</p>
- </li>
-
- <li id="M202102190">
- <!--#set var="DATE" value='<small class="date-tag">2021-02</small>'
- --><!--#echo encoding="none" var="DATE" -->
- <p>The Prodigy maths game played in schools
- at no cost entices students to play it at home, where <a
-
href="https://www.theguardian.com/technology/2021/feb/19/maths-app-targeting-uk-schools-is-criticised-over-premium-model";>
- the company tries to lure them into paying for a premium
- subscription</a> in exchange for mere cosmetic features that, at
- school, underline the socioeconomic gap between those who can afford
- it and those who can't.</p>
-
- <p>The strategy of <a href="/education/edu-schools.html">using
- schools as a fishing pool for customers</a> is a common practice
- traditionally adopted by nonfree software companies.</p>
- </li>
</ul>
@@ -324,5 +307,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/03/08 09:41:37 $
+$Date: 2021/03/09 11:38:08 $
<!-- timestamp end -->
</p>
diff -rNU2 proprietary-insecurity.html proprietary-insecurity.html
--- proprietary-insecurity.html 2021-03-09 05:03:17.168505787 +0000
+++ proprietary-insecurity.html 2021-03-10 05:02:19.227422484 +0000
@@ -77,4 +77,28 @@
<ul class="blurbs">
+ <li id="M202103050">
+ <!--#set var="DATE" value='<small class="date-tag">2021-03</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>At least 30 thousand organizations
+ in the United States are newly “<a
+ href="/philosophy/words-to-avoid.html#Hacker">cracked</a>” via <a
+
href="https://krebsonsecurity.com/2021/03/at-least-30000-u-s-organizations-newly-hacked-via-holes-in-microsofts-email-software/";>holes
+ in Microsoft's proprietary email software, named Microsoft 365</a>. It
+ is unclear whether there are other holes and vulnerabilities in the
+ program or not but history and experience tells us it wouldn't be
+ the last disaster with proprietary programs.</p>
+ </li>
+
+ <li id="M202102110">
+ <!--#set var="DATE" value='<small class="date-tag">2021-02</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>Researchers at the security firm SentinelOne discovered a <a
+
href="https://www.wired.com/story/windows-defender-vulnerability-twelve-years/";>security
+ flaw in proprietary program Microsoft Windows Defender that lurked
+ undetected for 12 years</a>. If the program was free (as in freedom),
+ more people would have had a chance to notice the problem, therefore,
+ it could've been fixed a lot sooner.</p>
+ </li>
+
<li id="M202101110">
<!--#set var="DATE" value='<small class="date-tag">2021-01</small>'
@@ -194,5 +218,5 @@
have let a malicious GIF steal user data from Microsoft Teams
accounts</a>, possibly across an entire company, and taken control
- of âan organizationâs entire roster of Teams accounts,â</p>
+ of “an organization's entire roster of Teams accounts.”</p>
</li>
@@ -200,5 +224,5 @@
<!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
--><!--#echo encoding="none" var="DATE" -->
- <p>Riot Gamesâ new anti-cheat is malware; <a
+ <p>Riot Games' new anti-cheat is malware; <a
href="https://www.extremetech.com/gaming/309320-riot-games-new-anti-cheat-system-runs-at-system-boot-uses-kernel-driver";>runs
on system boot at kernel level</a> on Windows. It is insecure software
@@ -1034,5 +1058,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/03/08 09:41:37 $
+$Date: 2021/03/09 11:38:08 $
<!-- timestamp end -->
</p>
diff -rNU2 proprietary-interference.html proprietary-interference.html
--- proprietary-interference.html 2021-03-09 05:03:17.172505787 +0000
+++ proprietary-interference.html 2021-03-10 05:02:19.231422484 +0000
@@ -121,5 +121,5 @@
<!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
--><!--#echo encoding="none" var="DATE" -->
- <p>Riot Gamesâ new anti-cheat is malware; <a
+ <p>Riot Games' new anti-cheat is malware; <a
href="https://www.extremetech.com/gaming/309320-riot-games-new-anti-cheat-system-runs-at-system-boot-uses-kernel-driver";>runs
on system boot at kernel level</a> on Windows. It is insecure software
@@ -406,5 +406,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/03/07 16:40:46 $
+$Date: 2021/03/09 09:33:39 $
<!-- timestamp end -->
</p>
diff -rNU2 proprietary-surveillance.html proprietary-surveillance.html
--- proprietary-surveillance.html 2021-03-09 05:03:17.188505787 +0000
+++ proprietary-surveillance.html 2021-03-10 05:02:19.247422484 +0000
@@ -537,5 +537,5 @@
<p>A user's unique Clubhouse ID number and chatroom ID are transmitted
in plaintext, and Agora (the company behind the app) would likely
- have access to usersâ raw audio, potentially providing access to
+ have access to users' raw audio, potentially providing access to
the Chinese government.</p>
@@ -680,5 +680,5 @@
<p>The article mentions specific examples: Microsoft OneDrive,
- Intuitâs Mint, Nike, Spotify, The Washington Post, The Weather
+ Intuit's Mint, Nike, Spotify, The Washington Post, The Weather
Channel (owned by IBM), the crime-alert service Citizen, Yelp
and DoorDash. But it is likely that most nonfree apps contain
@@ -1403,5 +1403,5 @@
gratis VPN apps in Google Play found that <a
href="https://www.top10vpn.com/free-vpn-android-app-risk-index/";>
- 25% fail to protect their usersâ privacy</a> due to DNS leaks. In
+ 25% fail to protect their users' privacy</a> due to DNS leaks. In
addition, 85% feature intrusive permissions or functions in their
source code—often used for invasive advertising—that could
@@ -3248,4 +3248,15 @@
</li>
+ <li id="M202004301">
+ <!--#set var="DATE" value='<small class="date-tag">2020-04</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>Proprietary programs Google Meet, Microsoft Teams, and WebEx <a
+
href="https://www.consumerreports.org/video-conferencing-services/videoconferencing-privacy-issues-google-microsoft-webex/";>are
+ collecting user's personal and identifiable data</a> including how long
+ a call lasts, who's participating in the call, and the IP addresses
+ of everyone taking part. From experience, this can even harm users
+ physically if those companies hand over data to governments.</p>
+ </li>
+
<li id="M201905281">
<!--#set var="DATE" value='<small class="date-tag">2019-05</small>'
@@ -3353,5 +3364,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2021/02/25 15:39:35 $
+$Date: 2021/03/09 11:35:32 $
<!-- timestamp end -->
</p>
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- malware-apple.html malware-games.html malware-google.html malware...,
Diff Report <=