Facebook top 10 concert lists may be security risk

Facebook top 10 concert lists may be security risk

A new craze on Facebook is causing some cause for concern. The game is to list the top ten bands people have seen in concert – but with one false entry thrown in for friends to spot. The game seems harmless enough, but there are warnings that this craze could actually be a risk to online security.

The first gig you went to is often one of the security questions which banks and other organisations ask when setting up an account – and revealing that information online, even in an innocent online post, could make you more vulnerable to hackers.

Prof Alan Woodward, from the University of Surrey, said ‘It is difficult to tell people not to take part, as it is part of their normal social interaction. What I would say is to think very carefully about what you are putting into the public domain. The more personal information you put out there, the more likely it is to be used by hackers.’

Facebook’s top six security tips to keep your account safe are –

  • protect your password
  • use Facebook’s security features
  • make sure your email account(s) are secure
  • log out of Facebook when using a shared computer
  • think before you click on download anything

www.bbc.co.uk/technews (3rd May 2017)

Google hit by phishing e-mail

Google hit by phishing e-mail

A Google Docs scam began landing in users’ inboxes yesterday in what seemed to a sophisticated phishing or malware attack.

The deceptive invitation to edit a Google Doc – the popular app for sharing files – appeared to be spreading rapidly, with a subject line stating a contact ‘has shared a document on Google Docs with you.’ If users click the ‘Open in Docs’ button in the email, it takes them to a legitimate Google sign-in screen that asks to ‘continue in Google Docs’. Clicking on that link grants permission to a bogus third party app to possibly access contacts and email, which could allow the spam to spread to additional contacts.

Google has said it is aware of the issue and is investigating. They said that they had taken action to protect users against the email impersonating Google Docs, and have disabled offending accounts. A spokesperson said that they had removed the fake pages, pushed updates through Safe Browsing, and their abuse team was working to prevent this kind of spoofing from happening again.

Phishing scams typically involve emails, ads or websites that appear to be real and ask for personal information, such as usernames, passwords, social security numbers, bank account data or birthdays. Google said it does not send out emails asking for this type of information and encourages users not to click on any links and to report any suspicious messages.

Wednesday’s attack seemed to be more advanced than standard email phishing scams, because it doesn’t simply take users to a bogus Google page to collect a password, but is instead working within Google’s system with a third-party web app that has a deceptive name. If users have already granted permission through the phishing email, they can go to their settings and revoke the app.

Google said the scam had affected fewer than 0.1% of Gmail users – which works out to about one million people affected.

The Guardian (4th May 2018)

Levi’s and Google join forces

Levi’s and Google join forces

Levi’s and Google have partnered together to create a denim jacket with technology woven into the fabric. Once paired to a smartphone via Bluetooth allows the wearer to control key functions with just a brush or tap of the cuff. A double tap with two fingers, for example, starts or stops music.

www.bbc.co.uk/technews (14th March 2017)

The £280 jacket uses high-tech conductive fabric to connect to a smartphone. Named Jacquard after the Frenchman who invented a type of loom, the yarn structures combine thin, metallic alloys with natural materials such as cotton and silk. These tiny wires mean that it can send and receive signals to devices. A tag – the size of a button – connects the conductive yarns in the jacket’s cuff to an electronic device.

It’s the first commercial product created by a small Google team called Advanced Technology & Projects (ATAPs).

www.dailymail.co.uk (13th March 2017)

TV maker found unlawfully tracking viewing habits

TV maker found unlawfully tracking viewing habits

The US Federal Trade Commission has found that Vizio’s smart TV technology had captured data on what was being viewed on screen and transmitted it to the firm’s servers. The data was then being sold to third parties. The FTC said the data collection began in February 2014 and affected around 11 million televisions. Vizio has said the data could not be matched up to individuals. The FTC verified this by saying that Vizio ‘never paired viewing data with personally identifiable information such as name or contact information’.

The practices challenged by the government related only to the use of viewing data in the ‘aggregate’ to create summary reports measuring viewing audiences or behaviours.

FTC explained in a statement that the settlement stopped Vizio’s unauthorised tracking, and makes clear that smart TV makers should get people’s consent before collecting and sharing television viewing information. The company has been ordered to delete the data it collected.

www.bbc.co.uk/technews (7th February 17)

127 US Technology Firms Oppose Trump ban

127 US Technology Firms Oppose Trump ban

127 US technology firms have signed a brief opposing President Trump’s immigration ban. The legal document states that the ban ‘inflicts significant harm’ on their businesses.

The amicus brief allows parties to not directly involved in a case but who feel affected by it, to give a view. It was filed in Washington on Sunday and also includes Apple, Facebook and Microsoft as signatories.

Trump’s executive order halted the entire US refugee programme for 120 days, indefinitely banned Syrian refugees and suspended permission to enter the Us for all nationals from seven Muslim-majority countries. There is currently a nationwide temporary restraining order in place, which was issued on Friday by a federal judge in Washington.

www.bbc.co.uk/technews (7th February 17)

Skype users to Update by 1st March

Skype users to Update by 1st March

Microsoft has announced that users will have to update to the new version of Skype for desktop in order to continue using the program beyond February.

From the 1st March, people will no longer be able to log in to version 7.16 (and older builds) of Skype for Windows desktop, or version 7.18 (and older) of Skype for Mac. The update was only announced on the 3rd February.

In a blog post, Microsoft wrote, ‘At Skype, we’re committed to creating the best possible app experience for our users. This is why we’ve been focusing our efforts on transitioning Skype from peer-to-peer to a modern, mobile-friendly cloud architecture.’

www.independent.co.uk/technews (7th February 17)