1. Forum
  2. Usenet
  3. COMP.RISKS

  • Risks Digest 33.53 (2/2)

    From RISKS List Owner@21:1/5 to All on Wed Nov 23 04:47:31 2022
    [continued from previous message]

    Subject: Smart Home Hubs Leave Users Vulnerable to Hackers (Leigh Beeson)

    Leigh Beeson, *UGA Today*, 15 Nov 2022, via ACM TechNews 21 Nov 2022

    The ChatterHub system developed by University of Georgia (UGA) researchers
    can expose smart home hub users to hackers by revealing the activity of
    various hubs nearly 90% of the time. UGA's Kyu Lee said, "We were able to
    use machine learning technology to figure out what much of the activity is without even having to decrypt the information." Lee said the information
    smart hubs send to individual devices can be deciphered by "using patterns,
    the size of the packet, and the timing of the packet." Hackers can acquire
    this information without positioning ChatterHub close to the hub, nor do
    they require prior knowledge of the types of smart devices to which it is connected or the hub's manufacturer to breach the system remotely.

    ------------------------------

    Date: Tue, 22 Nov 2022 14:42:36 -0800
    From: Lauren Weinstein <lauren@vortex.com>
    Subject: Twitter update (PGN-simmerized)

    Without warning Musk apparently disables Twitter SMS 2-factor authentication https://www.androidauthority.com/twitter-sms-2fa-3234698/ [14 Nov 2022]

    Musk publicly mocks the employees he has fired [15 Nov 2022]

    Musk mocks fired employee, saying that the person had "tragic case of adult onset Tourette's" [15 Nov 2022] https://twitter.com/elonmusk/status/1594500655724609536

    Facebook says now that he's a candidate, nothing Trump says will be fact checked.
    [I have a Truth-ache all the time lately, and the Authordontist can't
    help. Ground Truth seems to have forsaken us. See my rant in
    RISKS-33.51. PGN]

    Musk and NASA:
    It's well past time to be asking why NASA continues to rely on on a toxic
    and disgusting person like Musk. In the end, they will almost certainly come
    to regret it, given his escalating bizarre behavior. -L [15 Nov 2022]

    Fact check: 20 false and misleading claims Trump made in his
    announcement speech. He even lied about the price of turkeys. -L [16 Nov 2022] https://www.cnn.com/2022/11/15/politics/fact-check-trump-announcement-speech-2024/index.html

    Musk's ultimatum to Twitter employees [16 Nov 2022]:
    Let's look at Musk's Twitter ultimatum to employees last night logically. He gives them a link to click by Thursday if they agree to work long hours and
    be hardcore and (unwritten but assumed) not question his genius or motives
    or personality or obnoxiousness. If employees don't accept that, they're
    out with three months severance. Now, this is a binary choice. Choice one provides no assurance that Musk won't fire you on a whim for any reason whatsoever however fantastical or paranoid. On the other hand, choice two guarantees three months pay. In any normal environment, a myriad of factors would enter into this decision. But given Musk's temperament and behavior,
    the decision is considerably simplified. And it amounts to this: If you can manage it financially, take the three months pay and GET THE HELL OUT OF
    THERE NOW!

    He's just making up crap again: Elon Musk finally makes up his mind on
    Twitter Blue: You'll be an 'official' celeb or company if enough
    verified people follow you [16 Nov 2022] https://fortune.com/2022/11/16/elon-musk-makes-up-mind-twitter-blue-official-if-enough-verified-followers/

    It's being reported that at least 100s of employees decided to take up
    Musk on his "leave and get 3 months pay" offer, with scrambling to try
    keep crucial employees from leaving.
    Offices will reportedly be closed until the 21st. Rumor is there's paranoia
    of employee sabotage. [17 Nov 2022]

    Musk says hate tweets will no longer be taken down:
    In tweet, Musk says hate tweets will no longer be taken down, merely
    deboosted and demonetized, but findable. That spells the end of
    Twitter. Q.E.D. -L [18 Nov 2022]

    Elon and the app stores: If Musk leaves hate speech up on Twitter, even "unboosted" and unmonetized as he now says he's planning to do, he will most likely be violating the terms of the Apple App Store and Google (Android)
    Play Store, and of course various EU regulations. -L [18 Nov 2022]

    Report: Head of Twitter ad sales out of Twitter -- again:
    Robin Wheeler, who reportedly resigned as head of Twitter ad sales but was convinced by Elon to un-resign, apparently is out of the company (again)
    just over a week later. You can't make this stuff up. -L [18 Nov 2022]

    What do the app stores say about hate speech?
    If Elon plans to keep hate speech up on Twitter, no matter how he talks
    of not "boosting" it or making it harder to find, he will run up against
    not only EU regulations but also the iPhone and Android app stores.
    Let's see what Google says:

    "We don't allow apps that promote violence, or incite hatred against
    individuals or groups based on race or ethnic origin, religion,
    disability, age, nationality, veteran status, sexual orientation,
    gender, gender identity, caste, immigration status, or any other
    characteristic that is associated with systemic discrimination or
    marginalization." [19 Nov 2022]
    https://support.google.com/googleplay/android-developer/answer/9878810

    Musk posts obnoxious "semi-pornographic" NSFW Trump-related tweet [20 Nov] https://twitter.com/elonmusk/status/1594500655724609536

    Elon's Hellhole: Elon Musk's Twitter Reinstates Anti-Trans Activists
    on Same Weekend as Club Q Attacked https://www.vice.com/en/article/epz8jz/elon-musk-twitter-colorado-shooting-anti-trans-reinstated

    ------------------------------

    Date: Mon, 21 Nov 2022 10:48:05 PST
    From: Peter G Neumann <neumann@csl.sri.com>
    Subject: In Memoriam: Drew Dean

    One of our long-time younger RISKS contributors (since Feb 1996), Drew Dean passed away on 23 August 2022 at 52, while doing the recreational thing he loved most on his annual vacation -- wind-surfing. His funeral was on 17
    Nov 2022, and we held an very caring celebration of his life on 19 Nov 2022
    at SRI, for friends, colleagues, and Drew's sisters and their spouses. Drew was beloved by many of us. He made many important contributions to computer science and system trustworthiness -- and to our lives -- and will really
    be missed.

    The published obituary:
    https://www.dignitymemorial.com/obituaries/san-diego-ca/richard-dean-10922443 The program for last Saturday's SRI event, and A Chronological Timeline of
    Drew's professional life:
    http://www.csl.sri.com/neumann/Drew-handout.pdf

    A Kudoboard for Drew, which already has some wonderful contributions that
    are much more personally diverse than anything else that might be
    included in RISKS. It will be particularly meaningful to those of you
    who knew Drew:
    https://www.kudoboard.com/boards/7EwhehOU

    ------------------------------

    Date: Mon, 21 Nov 2022 12:03:24 -0500 (EST)
    From: ACM TechNews <technews-editor@acm.org>
    Subject: In Memoriam: Frederick P. Brooks Jr. (Steve Bellovin)

    Steven Bellovin, CircleID, 19 Nov 2022, via ACM TechNews 21 Nov 2022

    Computer scientist Frederick P. Brooks Jr., who passed away on 17 Nov 2022, earned the ACM A.M. Turing Award in 1999 for his landmark contributions to computer architecture, operating systems, and software engineering. Columbia University's Steven Bellovin recalled Brooks' time at IBM, where he led the design of the S/360 mainframes, which comprised five models with distinct performance characteristics, sharing a common architecture-defined
    instruction set. At the University of North Carolina at Chapel Hill, Brooks focused on computer graphics and protein modeling, and pioneered virtual reality by using a remote manipulator arm to "grab" and move atoms with accompanying force feedback.

    [Fred was a natural leader and wise person (e.g., The Mythical Man Month).
    I remember the day his Harvard PhD thesis came back from the printer,
    uncollated, very close to the submission deadline. He organized every
    able body in the basement of the Computing Lab to contribute to manual
    collation, the first copy of which was indeed submitted only minutes
    before the 5pm deadline. While still a grad student, Fred was coauthor
    with Bill Wright, Albert Hopkins and me on our work for the late Anthony
    Oettinger's statistical linguistics course. Fred and Bill had done a
    Markovian analysis of eighth-note digrams up to octograms of 37
    common-meter hymn tunes, and a year later Albert and I synthesized over
    600 new hymn tunes for varying length Markoff chains, cranked out on the
    Harvard Mark IV: An Experiment in Musical Composition, IRE Transactions on
    Electronic Computers, September 1957, EC-6, pp. 175-182:
    http://www/csl.sri.com/neumann/Experiment-in-musical-composition.pdf
    (Oettinger was a pioneer in translating Russian into English.) When Fred
    was later Chairman of the department at UNC Chapel Hill, he had four chess
    clocks in his office, one for each of administration, teaching,
    students/office hours, and afternoon naps. PGN]

    ------------------------------

    Date: Mon, 1 Aug 2020 11:11:11 -0800
    From: RISKS-request@csl.sri.com
    Subject: Abridged info on RISKS (comp.risks)

    The ACM RISKS Forum is a MODERATED digest. Its Usenet manifestation is
    comp.risks, the feed for which is donated by panix.com as of June 2011.
    SUBSCRIPTIONS: The mailman Web interface can be used directly to
    subscribe and unsubscribe:
    http://mls.csl.sri.com/mailman/listinfo/risks

    SUBMISSIONS: to risks@CSL.sri.com with meaningful SUBJECT: line that
    includes the string `notsp'. Otherwise your message may not be read.
    *** This attention-string has never changed, but might if spammers use it.
    SPAM challenge-responses will not be honored. Instead, use an alternative
    address from which you never send mail where the address becomes public!
    The complete INFO file (submissions, default disclaimers, archive sites,
    copyright policy, etc.) is online.
    <http://www.CSL.sri.com/risksinfo.html>
    *** Contributors are assumed to have read the full info file for guidelines!

    OFFICIAL ARCHIVES: http://www.risks.org takes you to Lindsay Marshall's
    searchable html archive at newcastle:
    http://catless.ncl.ac.uk/Risks/VL.IS --> VoLume, ISsue.
    Also, ftp://ftp.sri.com/risks for the current volume/previous directories
    or ftp://ftp.sri.com/VL/risks-VL.IS for previous VoLume
    If none of those work for you, the most recent issue is always at
    http://www.csl.sri.com/users/risko/risks.txt, and index at /risks-33.00
    ALTERNATIVE ARCHIVES: http://seclists.org/risks/ (only since mid-2001)
    *** NOTE: If a cited URL fails, we do not try to update them. Try
    browsing on the keywords in the subject line or cited article leads.
    Apologies for what Office365 and SafeLinks may have done to URLs.
    Special Offer to Join ACM for readers of the ACM RISKS Forum:
    <http://www.acm.org/joinacm1>

    ------------------------------

    End of RISKS-FORUM Digest 33.53
    ************************

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)