AAPL | Bach Seat

Tag Archive for AAPL

RB | December 11, 2019

Comments Off

Your Smart TV is Spying On You

Many people will find a smart TV under their tree this year. Smart TVs are like regular televisions but with an internet connection. The global smart TVs market is expected to reach 249.9M units by 2024. And all those smart TVs may be spying on you. A while ago I wrote about Vizio (VZIO) getting caught invading your privacy by collecting and selling your personal data. Despite the fact that Vizo had to pay a $2.2M fine, smart TV manufacturers continue to spy on their customers.

ZDNet reports that that smart TVs send user data to tech titans including Facebook (FB), Google (GOOG), and Netflix. These devices are spying on you even when they are idle. U.S. and UK researchers say smart television sets produced by popular vendors including Samsung (005930), Apple (AAPL), and LG (LGLD), alongside content and app streaming devices such as Amazon (AMZN) FireTV, and Roku, are sending out information potentially without the knowledge or consent of users.

Financial Times

Your Smart TV is Spying On You

In a paper titled, “Information Exposure From Consumer IoT Devices” (PDF), the team said that 34,586 controlled experiments found that 88% of devices send information to firms other than the device manufacturer; 56% of U.S. devices and 83.8% of UK devices send your info overseas. They also report every device they studied exposed some kind of information in plain-text.

The researchers from Northeastern University and Imperial College London found that 37% could “reliably inferred” user and device behavior from eavesdropping on the user’s interactions with television sets and other household IoT products.

The study found that almost half of the tested devices contacted Amazon. That includes devices not manufactured by Amazon. David Choffnes, one of the authors of the paper warns that Amazon has a lot of information about what you are doing in your home.

According to the paper location data and IP addresses were commonly sent by our IoT devices to third parties in the cloud including Netflix, Spotify, Microsoft (MSFT), Akamai (AKAM), and Google.

When it came to smart TVs, however, almost all of the devices included in the study would contact Netflix — whether or not a TV was configured with an account for the content streaming service. “This, at the very least, exposes information to Netflix about the model of [a] TV at a given location,” the paper reads.

Some of the tech titans collecting your data responded to the researchers.

Facebook said that it was “common” for services with Facebook integrated into them to send data to third-party services.
Netflix said that data transfers were “confined to how Netflix performs and appears on screen,” and
Google said user preferences and consent levels dictate how publishers “may share data with Google’s that’s similar to data used for ads in apps or on the web.”

Internet-connected smart TVs combined with streaming services like Netflix and Hulu seem to be a cord-cutter’s dream. But like anything else that connects to the internet, it opens up smart TVs to security vulnerabilities and hackers. But as is the case with most other internet-connected devices, manufacturers often don’t put security as a priority. Not only that, many smart TVs come with a camera and a microphone that attackers can access.

FBI warning

Because manufacturers don’t put security as a priority, the FBI issued a warning about the risks that smart TVs pose. The FBI warned that hackers can take control of your unsecured smart TV and in worst cases, take control of the camera and microphone to watch and listen in.

… TV manufacturers and app developers may be listening and watching you, that television can also be a gateway for hackers to come into your home … your unsecured TV can give him or her an easy way in the backdoor through your router.

TechCrunch notes that some of the biggest attacks targeting smart TVs were developed by the CIA, but were stolen. The files were later published online by WikiLeaks.

rb-

If you are interested in inspecting the IoT network traffic in your smart home, Princeton University has developed and released an open source tool called IoT Inspector. The software uses ARP spoofing to analyze what IoT devices are connected to the Internet, how much data is exchanged, and how often information is traded.

Freaked out by the FBI’s smart TV warning? Here’s what you should do (Digital Trends)

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedIn, Facebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: 2019, AAPL, AKAM, Akamai, Amazon, AMZN, Apple, Data leak, Facebook, FB, FBI, GOOG, Google, IOT, Microsoft, MSFT, NFLX, Privacy, Security, Smart TV

RB | August 1, 2019

Comments Off

The Secret to F-Keying at Work

We use keyboards at home, work and the car. The first keyboard to feature function keys was the 1965 Singer/Friden 2201 Flexowriter Programmatic as a standalone word processing system. Each of the function keys was programmable. The familiar 12 F-Keys were introduced in 1984 with the second generation Model M keyboard for the original IBM PC. It had 12 function keys in 3 blocks of 4 at the top of the keyboard. Over the years, various operating systems and applications have made use of function keys in different ways.

After you learn this list of F-Key secrets, you can improve your fun at work by F-Keying around in your cube as you work on your project.

• F1 – Universal – Opens a help or support menu in most programs.
• F1 – Apple macOS X – Reduces the screen’s brightness.
• F1 – Some computers – Used it to enter BIOS setup during startup.
• F1+WIN – Microsoft Windows – Opens the Microsoft Windows help and support center.

—

• F2 – Microsoft Windows – Renames a highlighted icon, file, or folder.
• F2 – Microsoft Excel – Edits the active cell.
• F2 – Apple macOS X – Increases the screen’s brightness.
• F2 – Some computers – Used it to enter BIOS setup during startup (Acer, Asus, Dell, eMachines, Gateway, Lenovo, Sony).
• F2+CRTL – Microsoft Word – Displays the print preview window.
• F2+ALT+CTRL – Microsoft Office – Opens the Documents Library.

—

• F3 – Microsoft Windows – Opens desktop search feature.
• F3 – MS-DOS or Windows command line – Repeats the last command entered.
• F3 – Browsers (Firefox, Chrome and IE) – Launches the Find bar.
• F3 – Apple macOS X – Opens Mission Control.
• F3 – Other programs – Will find the next search value after an initial search is performed.
• F3+CTRL – Microsoft Word – will lowercase any highlighted text.
• F3+SHIFT – Microsoft Word – Toggles between capitalizing each word, lower case and upper case for the selected text.
• F3+WIN – Microsoft Outlook – Opens the Advanced find window.

—

• F4 – Microsoft Windows 95 to XP – Open find window in Windows Explorer and Internet Explorer.
• F4 – Apple macOS X – Accesses dashboard.
• F4+ALT – Boss key – Microsoft Windows – Immediately closes the current program without saving. It can be used in an emergency to close browser windows you don’t want others to see.
• F4+ALT – Microsoft Windows – When no program is running it launches the Shutdown dialog box.
• F4+CTRL – Microsoft Word – Repeat the last action performed.
• F4+WIN – Closes the open window or tab in the active window.

—

• F5 – Microsoft Windows – Reload the page, document, or contents list in a folder.
• F5 – Microsoft Office – Open the find, replace, and go to window.
• F5 – Microsoft PowerPoint – Starts a slideshow in PowerPoint.
• F5 – Browsers (Firefox, Chrome, and IE) – Refreshes a web page from the cache.
• F5 – Apple macOS X – Increases the keyboard backlight.
• F5+CTRL – Browsers (Firefox, Chrome, and IE) – Forces a hard refresh of the web page from the server instead of the browser cache.
• F5+CTRL+SHIFT – Microsoft Word – inserts a bookmark in Word doc.

—

• F6 – Microsoft Windows desktop – Tabs from desktop files to the taskbar and the system tray icons.
• F6 – Browsers (Firefox, Chrome, and IE) – Move the cursor to the address bar.
• F6 – Apple macOS X – Decreases the keyboard backlight.
• F6 – Reduce laptop volume (on some laptops).
• F6+CTRL+SHIFT – Microsoft Office – Opens to another document.

—

• F7 – Microsoft Office Suite – Spell and grammar check a document.
• F7 – Mozilla Firefox – Places a moveable cursor in web pages, allowing you to select text with the keyboard (Caret browsing).
• F7 – Apple macOS X – Can be used to rewind media content.
• F7 – Increase speaker volume (on some laptops).
• F7+SHIFT – Microsoft Office Suite – Runs a Thesaurus check on the word highlighted.

—

• F8 – Microsoft Windows – Enter the Windows Start Menu, to access Windows Safe Mode (if pressed during the boot process).
• F8 – Apple macOS X – Can be used to pause media content.
• F8 – Used by some computers to access the Windows recovery system, but may require a Windows installation CD.

—

• F9 – Microsoft Word – Refresh document.
• F9 – Microsoft Outlook – “Send and Receive All folders” email.
• F9 – Reduce laptop screen brightness (on some laptops).
• F9 – Apple macOS X – Can be used to fast forward media content.

—

• F10 – Microsoft Windows – Activates the menu bar of an open application.
• F10 – Browsers (Firefox and IE) – Shows the Menu bar.
• F10 – Apple macOS X – Can be used to mute the speaker.
• F10 – Some computers – Increase laptop screen brightness.
• F10 – Some computers – Used it to enter BIOS setup during startup (Compaq, HP).
• F10+SHIFT – Microsoft Windows – The same as right-clicking on a highlighted icon, file, or Internet link pops out the context menu.

—

• F11 – Microsoft Windows Explorer – Enter and exit full-screen mode.
• F11 – Microsoft Excel – Adds a graph of highlighted cells.
• F11 – Browsers (Firefox, Chrome, and IE) – Enter and exit full-screen mode.
• F11 – Apple macOS X – Can be used to decrease the speaker volume.
• F11+CTRL – Microsoft Excel – Adds a new macro to the workbook.
• F11 – Used to access the hidden recovery partition when pressed during boot (Compaq, HP, Dell, eMachines, Gateway, and Lenovo).
• F11+SHIFT – Microsoft Excel – Adds a new sheet to the workbook.

—

• F12 – Microsoft Office – Open the Save as window.
• F12 – Browsers (Firefox, Chrome, and IE) – Opens browser debug tool.
• F12 – • F11 – Apple macOS X – Can be used to increase the speaker volume.
• F12 – Used to access the list of bootable devices on a computer when pressed during boot, allowing you to select a different device to boot from (e.g., hard drive, CD or DVD drive, floppy drive, USB drive, and network).
• F12+CTRL – Microsoft Word – opens a document.
• F12+SHIFT – Microsoft Word – Saves the Microsoft Word document (like Ctrl+S).
• F12+CTRL+SHIFT – Microsoft Office – Prints a document (Like Ctrl+P).

—

Newer Apple keyboards have F13, F14, and F15 keys for even more F-Keying around – in place of the Print Screen, Lock key, and the Pause key. They also have F16 – F19 keys above the number pad. Early IBM keyboards had F13 through F24 keys, but these keyboards are no longer used.

To access all the fun of F-Keying you may need to access Fn Lock key or the “Fn key”+“Fn Lock” key to strike F-Keying gold.

rb-

There’s nothing like F-Keying at work to make you more efficient. It may feel somewhat strange the first time you try to control your computer from the keyboard since we’re so used to navigating with the mouse. But, you can’t beat the ability to keep your hands on the keyboard.

Keyboard Viruses (Bach Seat)

Category: Uncategorized | Tags: 2019, AAPL, Acer, Apple, Business, Chrome, Dell, eMachine, F Key, Firefox, Flexowriter Programatic, Gateway, HP, Keyboard, MacOS, Microsoft, PowerPoint, Shortcut, Windows, Word

RB | June 9, 2018

Comments Off

PC’s Meh

We are almost midway through 2018 Q2 and the 2018 Q1 PC sales numbers were meh. The good news is that IDC called the PC market flat. That’s good news because they had predicted a 1.5% decrease for the quarter. IDC reports worldwide 60.4 million PC’s sold in the January-to-March period driven mostly by businesses moving to Windows 10.

Gartner (IT) is less meh and more blah. Gartner saw slightly more PC’s shipped in 2018 Q1 at 61.7 million units for a 1.4% decline. The PC market experienced a 14th consecutive quarter of decline, dating back to the second quarter of 2012.

Gartner Principal Analyst Ms. Mikako Kitagawa affixed the blame primarily to the Chinese market. “The major contributor to the decline came from China, where unit shipments declined 5.7 percent year over year.” Ms.Kitagawa continued, “This was driven by China’s business market, where some state-owned and large enterprises postponed new purchases or upgrades, awaiting new policies and officials’ reassignments after the session of the National People’s Congress in early March.”

The top three Gartner vendors — Dell, HP, and Lenovo — accounted for 56.9% of global PC shipments in Q1 of 2018. Up slightly compared with 54.5% of shipments in Q1 of 2017. Dell experienced the strongest growth rate among the top six vendors worldwide, as its shipments increased 6.5%.

HP‘s (HPQ) worldwide PC shipments increased 2.8% in the first quarter of 2018 versus the same period last year. In EMEA, HP Inc. recorded double-digit growth in both desktop and mobile PCs. Gartner says HP Inc. was adversely affected by declining demand in the U.S., which generally accounts for one-third of its total shipments.

Lenovo’s (LNVGY) global PC shipments remained flat in the first quarter of 2018. Lenovo achieved 6 percent growth in EMEA and double-digit shipment growth in Latin America. However, in Asia/Pacific (its largest market), PC shipments declined 4 percent.

After record holiday sales for consumer and gaming products in the fourth quarter of 2017, Dell continued to do well in the first quarter of 2018. With double-digit shipment increases in EMEA, North America, and Latin America, Dell grew in all regions except Asia/Pacific. Desktop and mobile PCs grew in equal measures, showing Dell’s strength in the business segment according to Gartner.

In the U.S., PC shipments totaled 11.8 million units in the first quarter of 2018, a 2.9% decrease from the first quarter of 2017 according to Gartner. Dell moved into the No. 1 position in the U.S. based on shipments, as its market share increased to 29.1%. HP Inc. moved into second place as its shipments declined 4.8%, and its market share totaled 28.4%in the first quarter of 2018.

2018 Q1 - Gartner Global PC Shipments

Company	2018 Q1 Shipments	2018 Q1 Market Share (%)
Dell	3,440	29.1
HP Inc.	3,363	28.4
Lenovo	1,632	13.8
Apple	1,491	12.6
Acer Group	321	2.7
Others	1,586	13.4
Total	11,833	100.0

Notes: Data includes desk-based PCs, notebook PCs and ultramobile premiums (such as Microsoft Surface), but not Chromebooks or iPads. All data is estimated based on a preliminary study. Final estimates will be subject to change. The statistics are based on shipments selling into channels. Numbers may not add up to totals shown due to rounding.. Thousands of Units.Source: Gartner (April 2018)

PC shipments in EMEA totaled 18.6 million units in the first quarter of 2018, a 1.7% increase. driven by Enterprise shipments increased as many Windows 10 projects and the fast approach of the compliance deadline for the General Data Protection Regulation (GDPR) in Europe.

PC shipments in Asia/Pacific totaled 21.9 million units in the first quarter of 2018, a 3.9% decline from the first quarter of 2017. As previously mentioned, the PC market in China drove the decline in Asia/Pacific.

IDC says the U.S. market saw a promising opening quarter for the year with almost all major vendors reporting increases in notebook sales. Overall, total PC shipments for 2018 Q1 stood at 13.5 million units.

IDC reports that HP Inc. maintained a comfortable lead over all others in the market with its eighth consecutive quarter of overall growth (up 4.3% year on year) and growth in all regions except Latin America.

Lenovo saw a flat quarter in 2018 Q1, the third consecutive quarter in which the company saw year-on-year volume stabilize with flat global growth and a slower pace of decline in the U.S. Dell Inc. posted the strongest year-on-year growth out of all the major companies, growing 6.4% and buoyed by strong performances in nearly every region.

Acer (TPE:2353) held onto fourth place. Its ongoing expansion into gaming and continued investments in Chromebooks have paid dividends for the company but also caused some tough going in other areas. Apple (AAPL) finished the quarter in fifth place with a year-on-year decline in shipments of 4.8%.

2018 Q1 - IDC Global PC Shipments

Company	2018 Q1 Shipments	2018 Q1 Market Share (%)
HP Inc.	13,676	22.6
Lenovo	12,305	20.4
Dell Inc.	10,190	16.9
Acer Group	4,085	6.8
Apple	4,000	6.6
Others	16,128	26.7
Total	60,383	100.0

Preliminary results. Shipments are in thousands of units. Source: IDC Quarterly Personal Computing Device Tracker, April 11, 2018

rb-

PC’s used to be a leading indicator of the health of the tech sector. That is not the case anymore. Economic stress has lengthened the life span of PCs from 3 years to nearly 5 years in many firms and even longer in the home market. Increased smartphones capability and cloud-based applications and storage have taken another bite out of the PC market.

But looking into the tea leaves, many think PCs are on the rebound. Driving the PC market is a demand for premium notebooks in the mainstream and commercial markets. Gaming systems are also part of the equation. IDC expects overall smartphone shipments to decline by 0.2% in 2018 after falling 0.3% last year, the thought is that those dollars would be used to upgrade their PCs.

Mmmm – we’ll see. I say not likely. Can you say “new normal?”

Related article

The future of PCs and Macs is expensive (The Verge)

Category: Uncategorized | Tags: 2018, AAPL, Acer, Apple, China, Dell, GDPR, Hardware, HP, HPQ, IDC, Lenovo, PC

RB | December 6, 2017

Comments Off

OMG Texting b 25 !

This week marks the 25th birthday of text messages. Texting is more properly known as SMS. On Dec. 3, 1992, 22-year-old Sema Group software architect Neil Papworth typed the first SMS (Short Message Service) message, “Merry Christmas” on a computer and sent it over a GSM network in the UK, to an Orbitel 901 handset owned by then-Vodafone director Richard Jarvis.

In 1993, a year after the first text message was sent, Nokia (NOK) set up the first commercial SMS service in Finland. Nokia was the first handset manufacturer whose total GSM phone line supported users sending SMS text messages. In 1997, Nokia became the first manufacturer to produce a mobile phone with a full keyboard: the Nokia 9000i Communicator.

Texting adoption

SMS adoption was slow at first, with only 0.4 text messages sent per month in 1995. The fact that UK users could only send SMS messages to those on the same network was a big problem until the restriction was lifted in 1999. However, as smartphone technology developed and text messages became easier to use, SMS popularity ballooned. As mobile phones became more popular, texting skyrocketed. By 2007, the Brits were sending 66 billion SMS messages a year and in 2012, they sent 151 billion texts.

In the U.S. SMS was slower to catch on, mainly because mobile operators charged more for texts and less for voice calls, and because of the popularity and availability of PC-to-PC instant messaging or IM. However, in the United States, 45 billion text messages were sent per month in 2007, a figure that became 167 billion per month in 2011. In June 2017, 781 billion text messages were being sent in the United States per month according to the experts.

U.S. Texts Sent

Month	Number of Text Messages Sent Each Month	Increased Number of Text Messages Sent YoY	% Increased Number of Text Messages Sent YoY
June 2017	781.000,000,000	147,000,000,000	431.3%
June 2016	634,000,000,000	73,000,000,000	768.5%
June 2014	561,000,000,000	63,000,000,000	790.5%
June 2013	498,000,000,000	75,000,000,000	564.0%
June 2012	423,000,000,000	56,000,000,000	655.4%
June 2011	367,000,000,000	126,000,000,000	205.8%
June 2010	247,000,000,000	86,000,000,000	187.2%
June 2009	161,000,000,000	86,000,000,000	87.2%
June 2008	78,000,000,000	30,000,000,000	150.0%
June 2007	45,000,000,000	32,500,000,000	38.5%
June 2006	12,500,000,000	5,250,000,000	138.1%
June 2005	7,250,000,000	4,390,000,000	65.1%
June 2004	2,860,000,000	1,660,000,000	72.3%
June 2003	1,200,000,0002	270,000,000	344.4%
June 2001	33,000,000	21,000,000	57.1%
June 2000	12,000,000

Text Message Statistics – United States from Statistic Brain (www.statisticbrain.com)

With 25 years under its belt, many people wonder if the end of the line is near for SMS. This is because apps such as Apple‘s (AAPL) iMessage, Google‘s (GOOG) Hangouts, Facebook‘s (FB ) Messenger, WhatsApp, and SnapChat have become very popular.

Closed systems

These new chat applications also marked a more fundamental shift away from an open standard that anyone could use (even if your operator charged you) to closed messaging systems controlled by technology giants. Text messages, however, might not be going away soon. SMS is a very practical and easy-to-use communication method, especially for areas and countries that do not have reliable internet connections.

Related article

12 Signal App Tips for Secure Chats (PCMag)

Category: Uncategorized | Tags: 2017, AAPL, AOL, Apple, Facebook, FB, GOOG, Google, GSM, Hangouts, iMessage, Instant messaging, Messenger, NOK, Nokia, SMS, Snapchat, Texting, Vodafone, WhatsApp, Wireless

RB | June 15, 2017

Comments Off

Scary SS7 Flaw Strikes Banks

Lost in last month’s hubbub over WannaCry ransomware was the revelation that hackers had successfully exploited the SS7 “flaw” in January 2017. In May reports surfaced that hackers were able to remotely pilfer German bank accounts by taking advantage of vulnerabilities in Signaling System 7 (SS7). SS7 is a standard that defines how the public phone system talks to itself to complete a phone call.

The high-tech heist was initially reported by the German newspaper Süddeutsche Zeitung (auf Deutsch). The attack was a sophisticated operation that combined targeted phishing emails and SS7 exploits to bypass two-factor authentication (2FA) protection. This is the first publicly known exploit of SS7 to intercept two-factor authentication codes sent by a bank to confirm actions taken by online banking customers.

How hackers get in

According to ars Technica, the attack began with traditional bank-fraud trojans. These trojans infect account holders’ computers and steal the passwords used to log in to bank accounts. From there, attackers could view account balances, but were prevented from making transfers without the one-time password the bank sent as a text message. After stealing the necessary login details via phishing emails, the perpetrators leveraged the SS7 flaw to intercept the associated mTAN (mobile transaction authentication numbers) authentication codes sent to the victims — messages notifying them of account activity — to validate the transactions and remain hidden, investigators say.

German Telecommunications giant O2-Telefonica confirmed details of the SS7-based cyberattacks to the newspaper. Ars says, in the past, attackers have obtained mTANs by obtaining a duplicate SIM card that allows them to take control of the bank customer’s phone number. SS7-facilitated compromises, by contrast, can be done remotely on a much larger quantity of phone numbers.

O2 Telefonica confirmed to Help Net Security that the attackers were able to gain access to the network of a foreign mobile network operator in January 2017. The attackers likely purchased access to the foreign telecommunications provider – this can apparently be done for less than 1,000 euros – and have set up a call and SMS forwarding.

Two-factor authentication

Two-factor authentication (2FA) is a security process in which the user provides two authentication factors to verify they are who they say they are. 2FA provides an extra layer of security and makes it harder for attackers to gain access to a person’s devices and online accounts because knowing the victim’s password alone is not enough to pass the authentication check. Two-factor authentication has long been used to control access to sensitive systems and data, and online services are increasingly introducing 2FA to prevent their users’ data from being accessed by hackers who have stolen a password database or used phishing campaigns to get users’ passwords.

News of the incident prompted widespread concern online. Security advocates railed against the popular and continuous use of text messages to authenticate account information while growing evidence suggests that SS7 is an unsafe channel to deliver such data. Security experts told ars that the same SS7-centric hacking techniques used against German banks will become increasingly prevalent in the future, forcing organizations to reconsider how they authenticate user activity.

The end of 2FA?

Cris Thomas, a strategist at Tenable Network Security warns in the article:

While this is not the end of 2FA, it may be the end of 2FA over SS7, which comprises a majority of 2FA systems … Vulnerabilities in SS7 and other cellular protocols aren’t new. They have been presented at security conferences for years … there are other more secure protocols available now that systems can switch to…

Cybersecurity researchers began issuing warnings about this flaw in late 2014 about dangerous flaws in SS7. I wrote about the SS7 flaw in September of 2016 and in March 2107. Maybe this will be the wake-up call for the carriers. One industry insider quipped:

This latest attack serves as a warning to the mobile community about what is at stake if these loopholes aren’t closed … The industry at large needs to go beyond simple measures such as two-factor authentication, to protect mobile users and their data, and invest in more sophisticated mobile security.

SS7 allows voice networks to interoperate

In 2014 security researchers first demonstrated that SS7 could be exploited to track and eavesdrop on cell phones. This new attack is essentially a man-in-the-middle attack on cell phone communications. It exploits the lack of authentication in the communication protocols that run on top of SS7.

Developed in 1975, today, over 800 telecommunications companies around the world, including AT&T (T) and Verizon (VZ), use This technology has not kept up with modern times. In May 2017, Wired published an article that explains some of the ways to secure SS7. Overcoming SS7 insecurity requires implementing a series of firewalls and filters that can stop the attacks. Researchers Wired spoke to suggest that adding encryption to SS7 would shield network traffic from prying eyes and bolster authentication. Both of these changes are unpopular with the carriers because they cost money and can impact the network core, so don’t expect any network changes to address the SS7 flaw anytime soon.

The Register reports that the FCC’s Communications Security, Reliability and Interoperability Council found that the proposed replacement for SS7 on 5G networks, dubbed the Diameter protocol has security holes too.

In March 2017, Oregon Sen. Ron Wyden and California Rep. Ted Lieu sent a letter to Homeland Security’s John Kelly requesting that DHS investigate and provide information about the impact of SS7 vulnerabilities to U.S. companies and governmental agencies. Kelly has not responded to the letter, according to the Wired article.

Of course, the TLA’s would never use this “flaw” in SS7 to spy on us.

What can you do?

The Guardian says that given that the SS7 vulnerabilities reside on systems outside of your control, there is very little you can do to protect yourself beyond not using the services.

They recommend for text messages, avoiding SMS instead of using encrypted messaging services such as Apple’s (AAPL) iMessage, Facebook‘s (FB) WhatsApp or the many others available will allow you to send and receive instant messages without having to go through the SMS network to protect your messages from surveillance.

For calls, the Guardian recommends using a service that carries voice over data and not through the voice network. This will help prevent your calls from being snooped on. Messaging services including WhatsApp permit calls. Silent Circle’s end-to-end encrypted Phone service or the open-source Signal app also allows secure voice communications.

Your location could be being tracked at any stage when you have your mobile phone on. The only way to avoid it is to turn off your phone or turn off its connection to the mobile phone network and rely on Wi-Fi instead.

Related articles

Privacy hawks in Congress call on Homeland Security to warn Americans of SS7 hacking threat (TechCrunch)

Category: Uncategorized | Tags: 2017, AAPL, Apple, AT&T, Authentication, Cell phone, Diameter protocol, Encryption, Facebook, FB, FCC, Firewall, Malware, man-in-the-middle attack, MITM, Mobile, Ron Wyden, Security, SS7, T, Ted Lieu, Telephony, Trojan Horse, Verizon, Vulnerability, VZ, WannaCry, WhatsApp, Wi-Fi

« Older Entries Recent Entries »

Bach Seat

Tag Archive for AAPL

Your Smart TV is Spying On You

Your Smart TV is Spying On You

FBI warning

Related Posts

The Secret to F-Keying at Work

Related Posts

OMG Texting b 25 !

Texting adoption

U.S. Texts Sent

Closed systems

Scary SS7 Flaw Strikes Banks

How hackers get in

Two-factor authentication

The end of 2FA?

SS7 allows voice networks to interoperate

What can you do?

Meta