* Posts by Dr.Flay

75 posts • joined 7 Nov 2015

Page:

Please, just stop downloading apps from unofficial stores: Android users hit with 'unkillable malware'

Dr.Flay

Re: "don't use unauthorized third-party stores at all."

Actually it isn't even an argument anymore. They have confirmed that so far they have never had to remove malware due to their stricter policy than google.

See the recent interview

https://forum.f-droid.org/t/f-droid-invited-to-be-on-twit-tvs-floss-weekly/8674

Confirmed. F-Droid is the safest app store.

Something something DANE cook: Microsoft pledges to wrap its email systems in secure anti-snooping protocol

Dr.Flay

Until browsers support DANE/TLSA and show status and errors, no amount of publicity will make people adopt it.

Cloudflare may have made DNSSEC available to all customers for free, but nobody bothers to configures their domain to use it due to (see above).

The one browser extension there was that let you see the status of the domain and cert is no longer possible with the current API access.

Mind you, using it just made you miserable as it showed how few site admin either give a crap, or have heard of it.

Internet Archive opens National Emergency Library with unlimited lending of 1.4m books for stuck-at-home netizens amid virus pandemic

Dr.Flay
Facepalm

Such a shame this collection is off-limits due to the Great Firewall of UK.

Active blocks by EE, O2, Three and Vodaphone (affects pay as you go customers)

https://www.blocked.org.uk/site/archive.org

Amazon, Apple, Google, IBM, Microsoft speech-to-text AI systems can't understand black people as well as whites

Dr.Flay
FAIL

The study is flawed as it assumes race creates an accent and speech patterns.

The researchers should have directed their attention to the many hilarious videos in youtube, of mostly white people in the UK that do not have a BBC English accent, where they are pleading, shouting, screaming and swearing at Alexa, Siri or Google.

Tens of millions of biz Dell PCs smacked by privilege-escalation bug in bundled troubleshooting tool

Dr.Flay

I can always tell if the support centre service has reenabled itself on my Dell laptop, because there is a huge chunk of RAM in use.

Yay lets waste over 600MB of your resources to do something a good shareware author could fit on a postage stamp.

40 million emoji-addicted keyboard app users left with $18m bill – after malware sneaks into Play Store yet again

Dr.Flay

Re: so glad google are keeping us safe.

This ^

Dr.Flay

Re: Why?

Q: Why ?

A: Emoji

Dr.Flay

Re: so glad google are keeping us safe.

Yes and no. The problem is more because of what google allow in apps.

F-Droid do not have a malware problem because they only allow apps they can build from public source, and do not allow certain SDKs including adverts.

1) the discourages people from making apps that only serve to create money

2) discourages people from prepackaging open source apps as their own to generate money

3) makes it difficult to hide any malware

Dr.Flay
FAIL

so glad google are keeping us safe.

"Anyone who is using the ai.type keyboard would be well advised to delete it ASAP. As it is no longer in the Play Store there is no risk of new infections there, but anyone using third-party services should avoid downloading the keyboard if they see it."

OK. lets pop over to the defacto second-party app store that is apparently now safe and see what people are downloading instead.

...oh that would be another one of the variants from the same author, so lets see what appbrain has to say about this bloatfest...

No surprise, equally stuffed full of SDKs and adverts. https://www.appbrain.com/app/ai-type-keyboard-plus-emoji/com.aitype.android.p

and a long term history of malware distribution it seems, going back to at least 2013 https://www.mywot.com/en/scorecard/aitype.com

Radio nerd who sipped NHS pager messages then streamed them via webcam may have committed a crime

Dr.Flay

Lesson learned

I happen to know the nerd in question. Oh how pleased they are going to be about being a news story.....*cough*

The individual in question is not a HAM operator but uses SDR kit to listen to interesting radio streams, such as air traffic control, passing satellites and apparently the local football stadium.

Publicly available software is used to listen to the same stuff you or I can tune in to any time we want.

The webcam feed was not intended for the public. It is not on a web domain, is not linked or shared on any web sites, and cannot be found with normal search engines.

You have to know the IP address to find the landing page for the home web-hub.

Apparently most of the time the camera shows flashing disco lights, oscilloscope visuals, or whatever retro project is in progress that needs monitoring.

This was part of his raspberry pi powered home entertainment system.

The "general public" would never have seen it even if they tried looking, however shodan users can find it which is why it took a security bod to actually find it.

I suggested that the person limit IP access or use a password in future.

As touched on in the article we should however be using this incident to highlight the state of affairs concerning the UK tech infrastructure.

As already noted, you or I can access the same info without any restriction.

The term Ambulance-chasers was coined a long time ago because of journalists and creeps that monitor the emergency channels so they can beat others to a story or make money from misery.

This is still a thing.

We're great, boasts Huawei in founder's Little Red Book – but isn't that a video game screenshot?

Dr.Flay
FAIL

Long way round a short task.

Has nobody heard of reverse image searching ?

The oldest copy I found is from 2015 using Tineye. Yandex would probably find more.

https://www.tineye.com/search/c9ae041ab38859e184db9ac0f8c845e6ca437947?page=1&sort=crawl_date&order=asc

US military swoops into DEF CON seeking a few good hackers for debut aviation pwning village

Dr.Flay

Who still uses F-15s ?

It occurs to me that they have been allowed to hack the systems of an old plane the US don't use much anymore, and have mostly offloaded to other countries.

Other countries which may or may not (mostly not) get the same fixes (damn those supply chain issues eh).

If they want to be able to hack the planes they sold off to their "allies" years ago, this seems like a good way to get the advantage needed.

If they want to improve the security of the F-35 then the hackers should be hacking that.

However all anyone needs to do to scupper an F-35 is pick a fight in bad weather, make it fly "too fast", make them have to take off and land a few times and use up their tyres (damn those supply chain issues eh.), or hold up a mirror and just shame it into killing itself.

Police costs for Gatwick drone fiasco double to nearly £900k – and still no one's been charged

Dr.Flay

Agreed, I believe the most important aspect of this (seeing as there will be no conviction) is that £886,210 pocket money or whatever they have spent it on, needs some explaining.

Nothing to show so where is the money and what have they bought with it ?

Equipment ? Staff ? Lots of paperclips ?

They must keep accounts of some sort.

'Cockwomble' is off the menu: Uncle Bulgaria issues edict against using name in vain

Dr.Flay
Headmaster

It is not swearing, it is biology

Cock Womble = Male Womble

Hen Womble = Female Womble

Group noun: Jumble-sale.

Humans may be able to live on Mars within halls of aerogel – a wonder material that can trap heat and block radiation

Dr.Flay

Re: Aren't we missing something ?

Yes Mars has an atmosphere, however while your feet will be in the atmoasphere your head won't be if you are standing, it is so thin.

Mars is under constant bombardment and is pockmarked with lots of recent hits.

Recent footage and photos reveal the activity is much higher than on Earth.

Our atmosphere provides us with a light-show and sparks with few hitting the ground.

On Mars you will be as protected/unprotected as the ISS.

Micrometeorites are enough to kill people on the surface.

Dr.Flay
FAIL

Aren't we missing something ?

All the while we ignore the 1 major problem of life on mars.

It has no atmosphere so no protection from asteroids.

I hope this ultra light weight material can also withstand an asteroid impact.

Without living under come substantial protection all this is pointless, and at the point you are inside a protective metal dome, you won't be needing this material.

While we were raging about Putin's meddling and Kremlin hackers, Five Eyes were pwning Yandex, Russia's Google

Dr.Flay

Re: The Grand Game

OK. so lets get the maths of that right.

5 Countries in a group, probably do less hacking than 1 country on its own.

BTW. 5-Eyes is the original name and now there is 9-Eyes, and even 14-Eyes, so maybe they hack even less because there is even more of them ?

Vivaldi to give abusive sites the middle finger with built-in ad blocking

Dr.Flay

Re: Nice, but...

Go back to school.

The browser is responsible for everything you see.

Vivaldi lets you disable GIF animations, or set them to only play once.

"It is not rocket surgery".

Dr.Flay

Nope yer fine, it was broken temporarily for some users.

You'll probably get your chance to moan about something breaking, so hang in there.

Dr.Flay

Re: Not enough!

Yeah but your lists will include all regular ad-services. Even the standard easylist is way bigger than the google list.

Vivaldi are only blocking bad sites, not annoying sites, hence the use of the phrase "...on the very naughty list."

I would agree that a bigger list is in order, but trackerless ads should still be allowed.

Dr.Flay

Re: Nice, but...

You can disable GIF animations via the picture cache icon in the bottom-right of the browser.

Dr.Flay

No Vivaldi does not automatically download offensive sites.

Perhaps you should re-read the article. If that does not help, then the problem is you don't understand the things you are complaining about.

Dr.Flay

Companies don't drop everything for 1 individual that can't use the browser properly.

Whop-de-do they changed the icon several times (so have the other browsers). This affects the browser how ?

Drag-n-drop of bookmarks works just fine or the manager page would be rather pointless.

Vivaldi is nothing like Chrome to use. You are mistaking Chromium core for Chrome browser.

Email is coming and being tested internally. It is not a core browser component so has different priorities

"all kinds of Phillips hue colour nonsense". 1 optional GUI enhancement that was easy to add is hardly all kinds of nonsense, and oooh now there is Razer support so make that 2.

Yes a whole 2 of them !

WhatsApp oh dear, 1 (admittedly major) feature has been broken between updates. This is a common "feature" of the modern world of software, get over it.

If you think you can build a top-flight browser from scratch in 2019 you need a reality check.

Vivaldi is best for nerds, researchers and people that know what they are doing, rather than stroppy kids.

Do you have anything to contribute to the article topic ?

Google: We're not killing ad blockers. Translation: We made them too powerful, we'll cram this genie back in its bottle

Dr.Flay

Re: Executives are allowed to ignore anything they want because they deserve it.

Feel free. You will soon realise how often it fits.

Think of most politician and management meetings where the results leave everyone under them scratching their heads wondering why they feel like they just got scammed.

Dr.Flay

Re: Microsoft Edge Chromium

That is what Vivaldi will do if push comes to shove.

Dr.Flay

Re: Executives are allowed to ignore anything they want because they deserve it.

Not so true thankfully.

Install DNSCrypt which has DoH and DoT support, then import your block list into that.

DNSCrypt is also available for Rasbery Pi, Routers and Android, so those same block lists can be used where you need them.

Simply changing the OS to a resolver with DNSSec and DoH does not give you any way to authenticate the resolver.

No browsers test or display DNS validation errors so even if you think you are using the DoH resolver you set, you may not be.

Dr.Flay
Megaphone

Re: Executives are allowed to ignore anything they want because they deserve it.

...and another thing...

They are in a no-win situation. If it comes down to it we will just see the same level of accelerated interest in using HOSTS and Pi-hole blocking as we did with tracker and advert blocking extensions.

They are just pushing a bubble around the wallpaper. They cannot stop it, just make it less convenient.

Dr.Flay
Big Brother

Executives are allowed to ignore anything they want because they deserve it.

"42 per cent of malicious extensions use the Web Request API."

Of course they do, it is a common function. I bet they all use another common API just as much if not more.

100% of them use chrome and the google store.

Most of the malware use google adverts, so how about we restrict the functionality of adverts ?

Anyone else fancy slapping some random Venn diagrams on this ?

When it comes to DNS over HTTPS, it's privacy in excess, frets UK child exploitation watchdog

Dr.Flay
Facepalm

Too late to close the gate, that horse already bolted

If they are worried that they will not be able to block "exposure" to problem domains, it should be pointed out that they do have the choice of having the sites taken down.

Apparently leaving child exploitation sites running is fine, but we take down malware sites.

Why bother to actually remove a problem when you can just block a handful of people from accessing it ?

Ultimately, tough luck. Crying over spilled milk.

DNS over TLS has been around for a while, now we have DNS over HTTPS. We also have DNSCrypt, DNSSec, and the ability to choose any resolver we want.

Unless Governments force OS vendors remove the ability to change your DNS there is nothing they can do but cry about it.

Even without improved DNS, there is still nothing they can do, other than block all VPN nodes and offer a Chinese or Russian style state sanctioned VpN (small P as no privacy).

...or . . .they could take down the problem sites ?

Devs slam Microsoft for injecting tech-support scam ads into their Windows Store apps

Dr.Flay
Stop

Adware is Adware

disgruntled coder at GameFace.LLC. "How do you expect users to trust using any app on the Microsoft Store when they keep having a browser popped open with an obvious scam site?"

disgruntled user at Home. "How do you expect users to trust using any app on the Microsoft Store when they keep having adverts in them ?"

Ummm, so if you download software from a developers own site and spams you with adverts, that is called Adware and blocked by AV.

But if you download it from an official appstore where they take a cut of the revenue, it is not Adware and so AV should not block it.

Isn't that called anti-competitive practice ?

We'll hack back at Russians, declare UK ministers in cyber-Blitz blitz

Dr.Flay

£22 Million for adverts and meetings

As ever our politicians think that saying they will throw a load of money away will change anything useful.

We can be sure most of the money will disappear in meetings, greasing already greasy palms, and funding Capita to do another bang up job of marketing a life of happy hackers all having fun.

GCHQ already have a problem attracting newbies. The past year we have seen many tie-ins with BBC shows to show the shiny friendly face of espionage.

Ah I know ! They are going to lure IT students with promises of wealth !

Being so brass-necked about hacking back at the drop of a hat, is a marvellous way to attract exactly that situation.

Well done you prize prat, the challenge is now issued. I hope our best bods are on the case.

WikiLeaks boss Assange acted as a foreign spy, Uncle Sam exclaims in fresh rap sheet

Dr.Flay

Who made him into a journalist ?

It seems that the more times you say he is a journalist the more true it apparently is.

He is not a journalist and never was, and he has not claimed as such.

Releasing information that other people hand you does not constitute journalism.

Tweeting about data dumps does not make you a journalist either.

Even if he was a regular blogger calling him a journo would be a thin stretch.

Huawei, Huawei. Huawei, Huawei. Feeling hot, hot, hot: US threatens to cut UK from intel sharing over Chinese tech giant

Dr.Flay

What happens if they do add backdoors ?

Considering we must assume that all top secret traffic between security agencies will be encrypted and sent via a VPN, what could the Chinese Gov collect ?

Well just ask the NSA how their project to collect all the encrypted data flows, in that massive and flammable data centre has worked out for them.

Would GCHQ, NSA or the CIA really be using unencrypted communication over their mobile phones, or use landlines and encryption ?

If there was an issue it would (or should) not effect them as long as they don't do things they currently should not do.

The Kaspersky case is a good comparison. The CIA operative took classified work home, and didn't think about all good modern AV will upload unknown files.

Maybe their concern is exactly this situation, that their dozy operatives will lead to China getting hold of secrets.

They seem to have not noticed there are several decent AV tools from China that are used all around the world. If the threat is credible, why not warn us all off using Chinese AV and security tools ?

Eggheads confirm: Rampant Android bloatware a privacy and security hellscape

Dr.Flay

2 easy (and free) no-ROOT options for removing bloatware

Both these will need a PC with the android drivers installed, and ADB access enabled in the phone.

You can avoid messing with CLI and downloading the ADB binaries as both come with the required files (feel free to update with newer versions)

The easiest to use for everyone is APK Installer.

http://apkinstaller.com/features

And for total control or for the more nerdy, a TotalComander / GhostCommander ADB plugin

http://uniqtec.eu/applications/android-adb.html

Happy de-bloat day \o/

US foreign minister Mike Pompeo to give UK a bollocking over Huawei 5G plans

Dr.Flay
Holmes

Please Pompeo point out parts pertaining to problems for patching in person, or piss off promptly.

When he gets here I hope they give him a tour of the GCHQ/Huawei center, and he can kindly point at the kit with the backdoors that we can't find, and show us where to look.

Maybe someone should present him with a list of Huawei CVEs and a list of Cisco CVEs, while covering the names at the top and ask him to choose which networking kit he would use ?

Skype-on-Linux graduates from Alpha to Beta status

Dr.Flay

Pidgin users will be wondering what all the fuss is about.

Why hop from client to client over the years when you can just stick with the same one that supports added protocols.

Pidgin has OTR/PGP which you can use with Skype to regain privacy.

Former Mozilla dev joins chorus roasting antivirus, says 'It's poison!'

Dr.Flay

Seriously ?

The given reasoning that MS AV must be good is because of the probable good quality of the company as a whole.

Seriously ?

No evidence given ?

Unfortunately some crappy AV and vendors are being used as the gauge to measure against.

Avira has never given me any problems since swapping to it, and never seems to show in the lists of vendors doing stupid things.

Microsoft are not virus experts. Just like Symantec they bought into the AV scene and have failed to impress or progress with their AV products.

Not 1 AV comparison site shows Defender or MSE as being any better than low-average.

Microsoft themselves have said that their AV should be considered "Baseline".

The baseline is not the bar you are aiming to climb to, it is the lowest you should ever fall to.

I often have to repair people PCs that rely on only MS protection, and know that the AV I then use to fix it, would have protected it if they used it.

MS AV does not stop people going to bad sites, and does not scan web-page content unless you use MS browsers.

It does not even have a sandbox like all good AV, so unknown files are still allowed to run

Yes education is the key, but it is not happening so throw that idea out unless you are actively doing something about it.

Do you trust your Mum to retain the nerd-info you gave her enough to spot a phishing site ?

I don't and I am glad my Mum has Avira keeping her virus-free for the past 5 years (and yes I regularly scan with a standalone).

I am now trialling an AV that also notifies about, and blocks keylogging and webcam activation.

Which part of MS security does that ?

People need to stop comparing how geeks protect themselves, to the needs of the majority users who cannot be bothered with white-lists or regular audits.

They want a MacOS style world where you push a button and it works.

You can teach them to be secure, but it will not last.

AV are never going to be the perfect solution, but as the rate of viri and hacks continues to rise, the sheer stupidity of advising people ditch good AV and rely on only "Baseline" is an act of criminal insanity.

Good tech support means you have tested the options and give evidence based recommendations.

Just because VW did some stupid things with their tests, does that mean all other car makers are as crap and guilty ?

Whould you recommend people stop using seat-belts in all cars, if only some car makers had faulty seat-belts ?

CIA: Russia hacked election. Trump: I don't believe it! FAKE NEWS!

Dr.Flay

...and the proof is...

The CIA very recently explained their criteria for establishing blame.

1) if hackers ask for money they are criminals (bad actors)

2) if hackers give it away they are state sponsored actors.

Case closed.

No room for the vast majority of mischief makers and vandals or those hacker types that join Anonymous, or just do it because of the challenge.

Wonderful to have such a black and white view of hackers.

Shame people have forgotten how Venn diagrams work.

Germany warns Moscow will splash cash on pre-election propaganda and misinformation spree

Dr.Flay

Missinformation of missinformation

Released hacked data is blamed on "State actors" because it is not offered for sale.

It suits the Governments to put hackers into 2 brackets, either Criminals or State actors.

This leaves out the majority of hackers that simply hack for fun and knowledge.

If Russia were truly so well equipped and constantly hacking, why are they so low in the hacking list ?

http://www.securityweek.com/many-web-attacks-come-united-states-sucuri

Surely they can do better than that ?

What went wrong at Tesco Bank?

Dr.Flay

Tesco Tech support is stuck at XP SP1

in 2008 I captured the Tesco tech support page because I was shocked at it being 2 years out of date.

The drivers on the site are obsolete version 1s, and intended for XP SP1 or earlier.

http://wayback.archive.org/web/20080116201557/http://direct.tesco.com/content/specials/technika.aspx

They were obsolete when they were posted, as upon investigation I found the chipsets to be EOL by their own manufacturers, but they had driver updates for newer OSs.

https://vivaldi.net/userblogs/entry/technika-webcam

In 2013 they finally updated the site !

....and still had the same drivers.

It is now almost 2017 and guess what ?

Yes 10 years down the line Tesco are still only offering drivers for products they no longer sell, and almost nobody can use.

http://ttselectrical.custhelp.com/app/answers/detail/a_id/2791/~/technika-drivers

Tesco do the bare minimum they can get away with to tick a legal box.

Customers shrug and put up with it.

Customer and technical support have no idea who made the Technika products, or if they contain any vulnerabilities, so if they did, no way to offer any solutions.

Heaven forbid any mug buys a Technika brand IoT device.

User danger declines as two thirds of Chromistas now use HTTPS

Dr.Flay

... therfore other browsers must be HTTP only

Are you reporting that SSL is not available outside the googleverse ?

...or can we assume that this statistic applies for all browsers that correctly support TLS.

How about the fact that Firefox has extensions that Google do not allow, that add extra SSL robustness and multi-party validation, so HTTPS is possibly even safer than in Chrome.

Google are simply taking credit for other people upgrading their sites.

Adblock overlord to Zuckerberg: Lay down your weapons and surrender

Dr.Flay

Re: Simple solution...

What a wonderful way to automate the task of installing malvertising hacks.

Openreach split could damage broadband investment, says BT's chief exec

Dr.Flay

BT created Openreach so they could remove Cable and Wireless from the picture.

BT put out an open tender as they are required to do, but low and behold Openreach offer the best price, so get the contracts every time.

They always run over time and over budget, because they promise things they cannot deliver, such as "Genuine Super Fast".

When customers try to complain to BT about poor internet, they are told "That is not us, BT Openreach is a different company".

All ISPs that are unlucky enough to lease their lines from BT, are all kept at lower speeds than BT, so BT can claim they are the fastest amongst a list of knobbled ISPs.

Once BT and Openreach are split, BT may actually start giving contracts to other cable companies with a better record.

End all the 'up to' broadband speed bull. Release proper data – LGA

Dr.Flay

Actually it does show the service when you do a speed test yourself.

Dr.Flay

Re: Street-stats

The site has been around for several years and changed a few times

UK oversight body tipped to examine phone snooping tech in prisons

Dr.Flay

IMSI-Catcher Detector

Android owners can monitor for these devices.

You only have 2 options, but it is 2 more than Apple.

https://opensource.srlabs.de/projects/snoopsnitch

https://cellularprivacy.github.io/Android-IMSI-Catcher-Detector/

Dr.Flay

To "triangulate" needs contact with multiple bases (hence triangulation), 1 fancy box can't do it.

and by their nature are not direct-able or selective.

The filtering is done after data collection.

McAfee's back! Intel flogs security software biz, pockets $3.1bn

Dr.Flay

Re: A captive set of succkers? BUY IT NOW !!!

Yes indeed, I never said Mcafee was ever good, and I tar Symantec with the same brush.

Buy a big brand name and some average software, put them together and, bingo.

Peter Norton went from being the premier name in disk tools, to being Norton a brand of self-destroying crapware, with a friendly looking man on the cover, who never coded a single line of the contents.

Software so average, they have to pay other companies to trick you into installing it, or starting with it.

Microsoft bought a "reputedly" big (Giant) anti-spyware and kept it as average as it ever was. At least Microsoft admit that their current shoddy AV is considered the baseline and you should go no lower in protection (some people think baseline means good, not "base"line).

Then intel decided they wanted a slice of lucrative AV pie, so bought McAfee thinking only of the captive barrel-fish, not about the fact they bought a turd that needed a lot of fixes and maintenance, hence was on the market.

Without a background in AV, and the same McAfee team, there was never any hope of intel improving their turd.

All they could do was polish that turd within an inch of its life, and continue to buy or trick their way into peoples PCs, until they find a mug to offload it to.

When other companies try to give you extras with a download, we call it "Adware" and "Potentialy Unwanted Program".

Adobe and Oracle are as guilty as McAfee, Symantec and Google for using delivery methods commonly blocked by most AV.

Oh the irony.

Dr.Flay

A captive set of succkers? BUY IT NOW !!!

"Given McAfee's leading global market position, loyal customer base, and trusted technology, we see a compelling opportunity to invest in a highly strategic platform that is growing consistently and addressing significant and evolving market demand."

...or in plain English;

"Given that it is pre-installed by OEMs, and non-technical people always install it with Java or Flash, we think this massive barrel of blind fish will make fine pickings."

Companies that buy-in to security software or anti-virus to gain a foot-hold in that territory (eg. intel and microsoft) do not have the specialist background needed, and so continue to degrade whatever software they bought until some other suckers buy it.

Obama says USA has world's biggest and best cyber arsenal

Dr.Flay

Lead by example

Considering over a third of the worlds hacking comes from the USA, shouldn't it be the rest of the world telling them to stop it ?

http://www.securityweek.com/many-web-attacks-come-united-states-sucuri

https://blog.sucuri.net/2016/07/browser-os-statistics-from-half-billion-blocked-exploit-attempts.html

Page:

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020