[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
all.html malware-amazon.html malware-appliances.html proprietary-...
From: |
Diff Report |
Subject: |
all.html malware-amazon.html malware-appliances.html proprietary-... |
Date: |
Sun, 28 May 2023 00:08:28 -0400 |
Modified:
all.html
malware-amazon.html
malware-appliances.html
proprietary-insecurity.html
proprietary-interference.html
proprietary-surveillance.html
diff -rNU2 all.html all.html
--- all.html 2023-05-27 04:06:48.531867543 +0000
+++ all.html 2023-05-28 04:08:22.376828168 +0000
@@ -553,5 +553,5 @@
<!--#set var='ADD' value='2022-04-06' --><!--#set var='PUB' value='2022-01-29'
--><li><small class='date-tag'>Added: <span class="gnun-split"></span><!--#echo
encoding='none' var='ADD' --><span class="gnun-split"></span> — Latest
reference: <span class="gnun-split"></span><!--#echo encoding='none' var='PUB'
--></small>
- <p>“Smart” TV producers <a
+ <p>“Smart” TV manufacturers <a
href="https://www.theguardian.com/technology/2022/jan/29/what-your-smart-tv-knows-about-you-and-how-to-stop-it-harvesting-data">
spy on people using various methods</a>, and harvest their
@@ -1733,5 +1733,5 @@
<!--#set var='ADD' value='2020-06-22' --><!--#set var='PUB' value='2020-06-16'
--><li><small class='date-tag'>Added: <span class="gnun-split"></span><!--#echo
encoding='none' var='ADD' --><span class="gnun-split"></span> — Latest
reference: <span class="gnun-split"></span><!--#echo encoding='none' var='PUB'
--></small>
<p><a
-
href="https://www.wired.com/story/ripple20-iot-vulnerabilities/?bxid=5bd66d4c2ddf9c619437e4b8&cndid=9608804&esrc=Wired_etl_load&source=EDT_WIR_NEWSLETTER_0_DAILY_ZZ&utm_bran%5C">
+ href="https://www.wired.com/story/ripple20-iot-vulnerabilities/">
A disasterous security bug</a> touches millions of products in the
Internet of Stings.</p>
@@ -1908,12 +1908,4 @@
</li>
-<!--#set var='ADD' value='2019-12-17' --><!--#set var='PUB' value='2019-12-17'
--><li><small class='date-tag'>Added: <span class="gnun-split"></span><!--#echo
encoding='none' var='ADD' --><span class="gnun-split"></span> — Latest
reference: <span class="gnun-split"></span><!--#echo encoding='none' var='PUB'
--></small>
- <p>Some security breakers (wrongly referred in this article as <a
- href="/philosophy/words-to-avoid.html#Hacker">“hackers”</a>)
- managed to interfere the Amazon Ring proprietary system, and <a
-
href="https://www.theguardian.com/technology/2019/dec/13/ring-hackers-reportedly-watching-talking-strangers-in-home-cameras">access
- its camera, speakers and microphones</a>.</p>
- </li>
-
<!--#set var='ADD' value='2019-10-31' --><!--#set var='PUB' value='2019-10-13'
--><li><small class='date-tag'>Added: <span class="gnun-split"></span><!--#echo
encoding='none' var='ADD' --><span class="gnun-split"></span> — Latest
reference: <span class="gnun-split"></span><!--#echo encoding='none' var='PUB'
--></small>
<p>Safari occasionally <a
@@ -2599,5 +2591,5 @@
<!--#set var='ADD' value='2019-03-04' --><!--#set var='PUB' value='2019-02-27'
--><li><small class='date-tag'>Added: <span class="gnun-split"></span><!--#echo
encoding='none' var='ADD' --><span class="gnun-split"></span> — Latest
reference: <span class="gnun-split"></span><!--#echo encoding='none' var='PUB'
--></small>
- <p>The Ring (now Amazon) doorbell camera is designed so that the
+ <p>The Ring doorbell camera is designed so that the
manufacturer (now Amazon) can watch all the time. Now it turns out
that <a
@@ -3144,5 +3136,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2023/05/26 15:45:52 $
+$Date: 2023/05/27 14:35:01 $
<!-- timestamp end -->
</p>
diff -rNU2 malware-amazon.html malware-amazon.html
--- malware-amazon.html 2023-05-27 04:06:48.559867519 +0000
+++ malware-amazon.html 2023-05-28 04:08:22.480828306 +0000
@@ -125,4 +125,45 @@
</li>
+ <li id="M201902270">
+ <!--#set var="DATE" value='<small class="date-tag">2019-02</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>The Ring doorbell camera is designed so that the
+ manufacturer (now Amazon) can watch all the time. Now it turns out
+ that <a
+
href="https://web.archive.org/web/20190918024432/https://dojo.bullguard.com/dojo-by-bullguard/blog/ring/">
+ anyone else can also watch, and fake videos too</a>.</p>
+
+ <p>The third party vulnerability is presumably
+ unintentional and Amazon will probably fix it. However, we
+ do not expect Amazon to change the design that <a
+ href="/proprietary/proprietary-surveillance.html#M201901100">allows
+ Amazon to watch</a>.</p>
+ </li>
+
+ <li id="M201901100">
+ <!--#set var="DATE" value='<small class="date-tag">2019-01</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>Amazon Ring “security” devices <a
+
href="https://www.engadget.com/2019-01-10-ring-gave-employees-access-customer-video-feeds.html">
+ send the video they capture to Amazon servers</a>, which save it
+ long-term.</p>
+
+ <p>In many cases, the video shows everyone that comes near, or merely
+ passes by, the user's front door.</p>
+
+ <p>The article focuses on how Ring used to let individual employees look
+ at the videos freely. It appears Amazon has tried to prevent that
+ secondary abuse, but the primary abuse—that Amazon gets the
+ video—Amazon expects society to surrender to.</p>
+ </li>
+
+ <li id="M201411090">
+ <!--#set var="DATE" value='<small class="date-tag">2014-11</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>The Amazon “Smart” TV is <a
+
href="https://www.theguardian.com/technology/shortcuts/2014/nov/09/amazon-echo-smart-tv-watching-listening-surveillance">
+ snooping all the time</a>.</p>
+ </li>
+
<li id="M201212030.1">
<!--#set var="DATE" value='<small class="date-tag">2012-12</small>'
@@ -275,45 +316,18 @@
</li>
- <li id="M201912170">
- <!--#set var="DATE" value='<small class="date-tag">2019-12</small>'
+ <li id="M201911190">
+ <!--#set var="DATE" value='<small class="date-tag">2019-11</small>'
--><!--#echo encoding="none" var="DATE" -->
- <p>Some security breakers (wrongly referred in this article as <a
- href="/philosophy/words-to-avoid.html#Hacker">“hackers”</a>)
- managed to interfere the Amazon Ring proprietary system, and <a
-
href="https://www.theguardian.com/technology/2019/dec/13/ring-hackers-reportedly-watching-talking-strangers-in-home-cameras">access
- its camera, speakers and microphones</a>.</p>
- </li>
-
- <li id="M201902270">
- <!--#set var="DATE" value='<small class="date-tag">2019-02</small>'
- --><!--#echo encoding="none" var="DATE" -->
- <p>The Ring (now Amazon) doorbell camera is designed so that the
- manufacturer (now Amazon) can watch all the time. Now it turns out
- that <a
-
href="https://web.archive.org/web/20190918024432/https://dojo.bullguard.com/dojo-by-bullguard/blog/ring/">
- anyone else can also watch, and fake videos too</a>.</p>
-
- <p>The third party vulnerability is presumably
- unintentional and Amazon will probably fix it. However, we
- do not expect Amazon to change the design that <a
- href="/proprietary/proprietary-surveillance.html#M201901100">allows
- Amazon to watch</a>.</p>
- </li>
-
- <li id="M201901100">
- <!--#set var="DATE" value='<small class="date-tag">2019-01</small>'
- --><!--#echo encoding="none" var="DATE" -->
- <p>Amazon Ring “security” devices <a
-
href="https://www.engadget.com/2019-01-10-ring-gave-employees-access-customer-video-feeds.html">
- send the video they capture to Amazon servers</a>, which save it
- long-term.</p>
-
- <p>In many cases, the video shows everyone that comes near, or merely
- passes by, the user's front door.</p>
-
- <p>The article focuses on how Ring used to let individual employees look
- at the videos freely. It appears Amazon has tried to prevent that
- secondary abuse, but the primary abuse—that Amazon gets the
- video—Amazon expects society to surrender to.</p>
+ <p>Internet-tethered Amazon Ring had
+ a security vulnerability that enabled attackers to <a
+
href="https://www.commondreams.org/newswire/2019/11/07/amazons-ring-doorbells-leaks-customers-wi-fi-username-and-password">
+ access the user's wifi password</a>, and snoop on the household
+ through connected surveillance devices.</p>
+
+ <p>Knowledge of the wifi password would not be sufficient to carry
+ out any significant surveillance if the devices implemented proper
+ security, including encryption. But many devices with proprietary
+ software lack this. Of course, they are also used by their
+ manufacturers for snooping.</p>
</li>
@@ -326,12 +340,4 @@
it, the system has a grave security flaw.</p>
</li>
-
- <li id="M201411090">
- <!--#set var="DATE" value='<small class="date-tag">2014-11</small>'
- --><!--#echo encoding="none" var="DATE" -->
- <p>The Amazon “Smart” TV is <a
-
href="https://www.theguardian.com/technology/shortcuts/2014/nov/09/amazon-echo-smart-tv-watching-listening-surveillance">
- snooping all the time</a>.</p>
- </li>
</ul>
</div>
@@ -385,5 +391,5 @@
Information document, www.gnu.org/prep/maintain. -->
-<p>Copyright © 2014-2022 Free Software Foundation, Inc.</p>
+<p>Copyright © 2014-2023 Free Software Foundation, Inc.</p>
<p>This page is licensed under a <a rel="license"
@@ -395,5 +401,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2022/04/19 07:20:32 $
+$Date: 2023/05/27 14:55:23 $
<!-- timestamp end -->
</p>
diff -rNU2 malware-appliances.html malware-appliances.html
--- malware-appliances.html 2023-05-27 04:06:48.639867452 +0000
+++ malware-appliances.html 2023-05-28 04:08:22.500828332 +0000
@@ -197,5 +197,5 @@
<!--#set var="DATE" value='<small class="date-tag">2022-01</small>'
--><!--#echo encoding="none" var="DATE" -->
- <p>“Smart” TV producers <a
+ <p>“Smart” TV manufacturers <a
href="https://www.theguardian.com/technology/2022/jan/29/what-your-smart-tv-knows-about-you-and-how-to-stop-it-harvesting-data">
spy on people using various methods</a>, and harvest their
@@ -315,5 +315,5 @@
--><!--#echo encoding="none" var="DATE" -->
<p><a
-
href="https://www.wired.com/story/ripple20-iot-vulnerabilities/?bxid=5bd66d4c2ddf9c619437e4b8&cndid=9608804&esrc=Wired_etl_load&source=EDT_WIR_NEWSLETTER_0_DAILY_ZZ&utm_bran%5C">
+ href="https://www.wired.com/story/ripple20-iot-vulnerabilities/">
A disasterous security bug</a> touches millions of products in the
Internet of Stings.</p>
@@ -333,12 +333,10 @@
</li>
- <li id="M201912170">
- <!--#set var="DATE" value='<small class="date-tag">2019-12</small>'
+ <li id="M202001290">
+ <!--#set var="DATE" value='<small class="date-tag">2020-01</small>'
--><!--#echo encoding="none" var="DATE" -->
- <p>Some security breakers (wrongly referred in this article as <a
- href="/philosophy/words-to-avoid.html#Hacker">“hackers”</a>)
- managed to interfere the Amazon Ring proprietary system, and <a
-
href="https://www.theguardian.com/technology/2019/dec/13/ring-hackers-reportedly-watching-talking-strangers-in-home-cameras">access
- its camera, speakers and microphones</a>.</p>
+ <p>The Amazon Ring app does <a
+
href="https://www.theguardian.com/technology/2020/jan/29/ring-smart-doorbell-company-surveillance-eff-report">
+ surveillance for other companies as well as for Amazon</a>.</p>
</li>
@@ -404,5 +402,5 @@
<!--#set var="DATE" value='<small class="date-tag">2019-02</small>'
--><!--#echo encoding="none" var="DATE" -->
- <p>The Ring (now Amazon) doorbell camera is designed so that the
+ <p>The Ring doorbell camera is designed so that the
manufacturer (now Amazon) can watch all the time. Now it turns out
that <a
@@ -1421,5 +1419,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2023/05/26 09:35:22 $
+$Date: 2023/05/27 14:35:01 $
<!-- timestamp end -->
</p>
diff -rNU2 proprietary-insecurity.html proprietary-insecurity.html
--- proprietary-insecurity.html 2023-05-27 04:06:49.091867072 +0000
+++ proprietary-insecurity.html 2023-05-28 04:08:23.548829717 +0000
@@ -488,5 +488,5 @@
--><!--#echo encoding="none" var="DATE" -->
<p><a
-
href="https://www.wired.com/story/ripple20-iot-vulnerabilities/?bxid=5bd66d4c2ddf9c619437e4b8&cndid=9608804&esrc=Wired_etl_load&source=EDT_WIR_NEWSLETTER_0_DAILY_ZZ&utm_bran%5C">
+ href="https://www.wired.com/story/ripple20-iot-vulnerabilities/">
A disasterous security bug</a> touches millions of products in the
Internet of Stings.</p>
@@ -515,14 +515,4 @@
</li>
- <li id="M201912170">
- <!--#set var="DATE" value='<small class="date-tag">2019-12</small>'
- --><!--#echo encoding="none" var="DATE" -->
- <p>Some security breakers (wrongly referred in this article as <a
- href="/philosophy/words-to-avoid.html#Hacker">“hackers”</a>)
- managed to interfere the Amazon Ring proprietary system, and <a
-
href="https://www.theguardian.com/technology/2019/dec/13/ring-hackers-reportedly-watching-talking-strangers-in-home-cameras">access
- its camera, speakers and microphones</a>.</p>
- </li>
-
<li id="M201911190">
<!--#set var="DATE" value='<small class="date-tag">2019-11</small>'
@@ -613,5 +603,5 @@
<!--#set var="DATE" value='<small class="date-tag">2019-02</small>'
--><!--#echo encoding="none" var="DATE" -->
- <p>The Ring (now Amazon) doorbell camera is designed so that the
+ <p>The Ring doorbell camera is designed so that the
manufacturer (now Amazon) can watch all the time. Now it turns out
that <a
@@ -1365,5 +1355,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2023/05/26 13:22:58 $
+$Date: 2023/05/27 14:35:01 $
<!-- timestamp end -->
</p>
diff -rNU2 proprietary-interference.html proprietary-interference.html
--- proprietary-interference.html 2023-05-27 04:06:49.103867062 +0000
+++ proprietary-interference.html 2023-05-28 04:08:23.652829855 +0000
@@ -254,14 +254,4 @@
</li>
- <li id="M201912170">
- <!--#set var="DATE" value='<small class="date-tag">2019-12</small>'
- --><!--#echo encoding="none" var="DATE" -->
- <p>Some security breakers (wrongly referred in this article as <a
- href="/philosophy/words-to-avoid.html#Hacker">“hackers”</a>)
- managed to interfere the Amazon Ring proprietary system, and <a
-
href="https://www.theguardian.com/technology/2019/dec/13/ring-hackers-reportedly-watching-talking-strangers-in-home-cameras">access
- its camera, speakers and microphones</a>.</p>
- </li>
-
<li id="M201908150">
<!--#set var="DATE" value='<small class="date-tag">2019-08</small>'
@@ -545,5 +535,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2023/05/26 09:35:23 $
+$Date: 2023/05/27 14:35:01 $
<!-- timestamp end -->
</p>
diff -rNU2 proprietary-surveillance.html proprietary-surveillance.html
--- proprietary-surveillance.html 2023-05-27 04:06:49.211866972 +0000
+++ proprietary-surveillance.html 2023-05-28 04:08:24.116830468 +0000
@@ -2364,5 +2364,5 @@
<!--#set var="DATE" value='<small class="date-tag">2022-01</small>'
--><!--#echo encoding="none" var="DATE" -->
- <p>“Smart” TV producers <a
+ <p>“Smart” TV manufacturers <a
href="https://www.theguardian.com/technology/2022/jan/29/what-your-smart-tv-knows-about-you-and-how-to-stop-it-harvesting-data">
spy on people using various methods</a>, and harvest their
@@ -2595,4 +2595,20 @@
<ul class="blurbs">
+ <li id="M201902270">
+ <!--#set var="DATE" value='<small class="date-tag">2019-02</small>'
+ --><!--#echo encoding="none" var="DATE" -->
+ <p>The Ring doorbell camera is designed so that the
+ manufacturer (now Amazon) can watch all the time. Now it turns out
+ that <a
+
href="https://web.archive.org/web/20190918024432/https://dojo.bullguard.com/dojo-by-bullguard/blog/ring/">
+ anyone else can also watch, and fake videos too</a>.</p>
+
+ <p>The third party vulnerability is presumably
+ unintentional and Amazon will probably fix it. However, we
+ do not expect Amazon to change the design that <a
+ href="/proprietary/proprietary-surveillance.html#M201901100">allows
+ Amazon to watch</a>.</p>
+ </li>
+
<li id="M201901100">
<!--#set var="DATE" value='<small class="date-tag">2019-01</small>'
@@ -2805,20 +2821,4 @@
</li>
- <li id="M201911190">
- <!--#set var="DATE" value='<small class="date-tag">2019-11</small>'
- --><!--#echo encoding="none" var="DATE" -->
- <p>Internet-tethered Amazon Ring had
- a security vulnerability that enabled attackers to <a
-
href="https://www.commondreams.org/newswire/2019/11/07/amazons-ring-doorbells-leaks-customers-wi-fi-username-and-password">
- access the user's wifi password</a>, and snoop on the household
- through connected surveillance devices.</p>
-
- <p>Knowledge of the wifi password would not be sufficient to carry
- out any significant surveillance if the devices implemented proper
- security, including encryption. But many devices with proprietary
- software lack this. Of course, they are also used by their
- manufacturers for snooping.</p>
- </li>
-
<li id="M201907210">
<!--#set var="DATE" value='<small class="date-tag">2019-07</small>'
@@ -3801,5 +3801,5 @@
<p class="unprintable">Updated:
<!-- timestamp start -->
-$Date: 2023/05/26 15:45:53 $
+$Date: 2023/05/27 14:35:01 $
<!-- timestamp end -->
</p>
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- all.html malware-amazon.html malware-appliances.html proprietary-...,
Diff Report <=