http://www.databreaches.net/?p=13130
CO: Waitress charged with felony possession of skimmer
August 11, 2010 by admin
Making possession of tools a felony opens up new prosecutorial possibilities:
A Greeley waitress from China, arrested last week for allegedly “skimming” customers’ credit cards, has been charged with a felony — possession of identity theft tools.
Yu Lin, 22, was arrested last week and released on $5,000 bond. She was arrested after the owners of the Ambrosia Asian Restaurant in west Greeley first videotaped Lin, then reported the skimming incident to police.
[...]
This case has a bit of a twist to it, it seems:
Lin allegedly purchased the device from a company that promised to raise her credit limit if she used the device to copy credit card information and then return the device to the company.
Although police said she admitted copying 50 to 60 customers’ cards in July, none of the information was passed on to other devices.
Read more in the Greeley Tribune.
Even Psychologists are crazy sometimes... When you contemplate using an unfamiliar technology, you should also consider asking someone who is familiar how it should be used.
http://www.pogowasright.org/?p=12759
InPsych app is a privacy threat – psychologist
August 11, 2010 by Dissent
Psychologist John Grohol of Psych Central posts this warning on his site:
I’m off to attend the annual meeting of the American Psychological Association (APA) in San Diego today, but before I go, I do have two APA-related news items to post. The first is about the APA’s social networking application it deployed for this year’s convention, called InPsych. It’s a great idea with one fatal flaw that makes it not only something I suggest you avoid, but something I recommend the APA disable access to immediately.
The idea behind the social networking app is a good one — help people plan their convention schedule and meet up with other psychologists or psychology students while in San Diego. It’s a big convention with over 10,000 attendees every year, so it’s nice to have some way of keeping the information organized and at your fingertips.
Sadly, however, the APA outsourced this application to a third party. And in doing so, they apparently either didn’t review how the application handles security and logins, or reviewed the application and thought that exposing members’ personal information to anyone who’s interested in it is okay. That’s right — anyone can login to your account and view all of the personal information the APA has on file for you (your mailing address, phone number and email address). If you’ve already filled out the demographic form or talks you’d like to attend, they can view that information too.
All of which is readily available by using the 4- or 5-digit code (or any 4 or 5 digits) to login. That’s right — that’s the same 4- or 5-digit code that is helpfully displayed on the front of everybody’s convention badge.
[...]
Tomorrow, I’ll discuss how the APA is using an undisclosed technology to track your attendance at the convention.
Read more on PsychCentral.
Who gets to name these things anyway?
http://tech.slashdot.org/story/10/08/11/128244/Touchscreens-Open-To-Smudge-Attacks?from=rss
Touchscreens Open To Smudge Attacks
Posted by CmdrTaco on Wednesday August 11, @08:58AM
"The smudges left behind on touchscreen devices could be used to decipher passwords to gain access, according to researchers at the University of Pennsylvania. The report tested the idea out on Android phones, which use a graphical pattern that the user traces to unlock the handset. The researchers took photos of the smudge trails left on the screen and bumped up the contrast, finding they could unlock the phone 92% of the time. While they noted Android 2.2 also offers an alphanumeric password option, the researchers claimed such a smudge attack could be used against other touchscreen interfaces, including bank machines and voting machines. "In future work, we intend to investigate other devices that may be susceptible, and varied smudge attack styles, such as heat trails caused by the heat transfer of a finger touching a screen," they said."
Gags outlive the cause?
http://www.pogowasright.org/?p=12748
Plaintiff who challenged FBI’s national security letters reveals concerns
August 10, 2010 by Dissent
Ellen Nakashima reports:
For six years, Nicholas Merrill has lived in a surreal world of half-truths, where he could not tell even his fiancee, his closest friends or his mother that he is “John Doe” — the man who filed the first-ever court challenge to the FBI’s ability to obtain personal data on Americans without judicial approval.
[...]
On a cold February day in 2004, an FBI agent pulled an envelope out of his trench coat and handed it to Merrill, who ran an Internet startup called Calyx in New York. At the time, like most Americans, he had no idea what a national security letter was.
The letter requested that Merrill provide 16 categories of “electronic communication transactional records,” including e-mail address, account number and billing information. Most of the other categories remain redacted by the FBI.
Read more in the Washington Post. Kim Zetter of Threat Level also reports on an interview they obtained with Merrill.
[From the article:
Now, following the partial lifting of his gag order 11 days ago as a result of an FBI settlement, Merrill can speak openly for the first time about the experience, although he cannot disclose the full scope of the data demanded.
… The FBI withdrew its letter to Merrill in November 2006.
Surely there is more to this than a conviction for bragging?
http://www.cbc.ca/canada/toronto/story/2010/08/10/facebook-speeding-conviction658.html
Speeder convicted after bragging online
A 19-year-old man from a Toronto suburb has pleaded guilty to careless driving after boasting online that he drove 100 kilometres an hour over the speed limit on a residential street.
And interesting slide show full of quotable statistics.
http://www.bespacific.com/mt/archives/024916.html
August 10, 2010
News Consumption 2010: A portrait of "local news enthusiasts"
Understanding the Participatory News Consumer: Local News Enthusiasts - presentation by Kristen Purcell, Associate Director, Research/Pew Internet
"Roughly four in ten adults say there is currently not enough news coverage of their neighborhood or local community (38%) or that there is not enough coverage of their state (39%). These “local news enthusiasts” are slightly younger and more mobile than other adults, and are more engaged in social network site use and in commenting on and sharing news they find online."
Such a simple concept. How many years did it take us to figure out a “Secure AND temporary category?
New Toshiba Drives Wipe Data When Turned Off
Posted by CmdrTaco on Tuesday August 10, @04:51PM
"Toshiba on Tuesday introduced a new hard drive feature that can wipe out data after the storage devices are powered down. The Wipe feature in Toshiba's SED (Self-Encrypting Drives) will allow for deletion of secure data prior to disposing or re-purposing hard drives, Toshiba said. The technology invalidates a hard-drive security key when a system's power supply is turned off. The new Wipe capability will go into future versions of the SED drives, for which no timeframe was given. Beyond use in PCs, Toshiba wants to put this feature on storage devices in copiers and printers."
A useful tool for understanding risk.
http://yro.slashdot.org/story/10/08/10/1352244/Schneiers-Revised-Taxonomy-of-Social-Data?from=rss
Schneier's Revised Taxonomy of Social Data
Posted by CmdrTaco on Tuesday August 10, @10:41AM
Jamie noted that over at Schneier's blog, he has a worthwhile entry on the data in the social networks. He writes
"Lately I've been reading about user security and privacy — control, really — on social networking sites. The issues are hard and the solutions harder, but I'm seeing a lot of confusion in even forming the questions. Social networking sites deal with several different types of user data, and it's essential to separate them."
[From the article:
Service data is the data you give to a social networking site in order to use it. Such data might include your legal name, your age, and your credit-card number.
Disclosed data is what you post on your own pages: blog entries, photographs, messages, comments, and so on.
Entrusted data is what you post on other people's pages. It's basically the same stuff as disclosed data, but the difference is that you don't have control over the data once you post it -- another user does.
Incidental data is what other people post about you: a paragraph about you that someone else writes, a picture of you that someone else takes and posts. Again, it's basically the same stuff as disclosed data, but the difference is that you don't have control over it, and you didn't create it in the first place.
Behavioral data is data the site collects about your habits by recording what you do and who you do it with. It might include games you play, topics you write about, news articles you access (and what that says about your political leanings), and so on.
Derived data is data about you that is derived from all the other data. For example, if 80 percent of your friends self-identify as gay, you're likely gay yourself.
For students who have far more artistic talent than I do. (i.e. All of them)
DeviantArt’s Muro Drawing App Is Pure HTML5 Awesomeness
Muro works in all modern browsers, and you can dive in and start drawing on a blank canvas, all without Flash or any other plug-in. There are several brushes available to everyone, but to access the more advanced features, you’ll need to create a DeviantArt account and log in.
… Muro is reminiscent of other browser-based drawing tools like Odosketch, which uses Flash, and Sketchpad, which, like Muro, uses only web standards. But Muro is cleaner and more of a joy to use than any other HTML5-based sketching app I’ve seen.
(Related)
http://www.makeuseof.com/tag/build-virtually-explore-3d-design-google-sketchup/
Design & Build 3D Virtual Buildings & Objects With Google SketchUp
Tools & Techniques Occasionally I assign podcasts or videos as homework
http://www.makeuseof.com/tag/transcribe-audio-video-files-text-express-scribe/
How To Transcribe Audio & Video Files Into Text With The Help Of Express Scribe
Express Scribe can help
Not only can it slow down the audio files while maintaining constant pitch, it will also give you playback shortcuts that you can use from within your word processor. This amazing software is available for Mac, Windows and Linux; and it’s totally free.
Tools & Techniques For my Presentation students
http://www.makeuseof.com/dir/presentationmagazine-free-presentation-speeches/
PresentationMagazine: Free Presentation Speeches, Articles, Tips & Templates
Download over 300 power point templates.
Links to presentation utilities and tools.
Free clip-art images for several categories.
Similar tools: SlideServe, PresentationsETC, SlideSix and TemplatesWise.
(Related)
http://www.makeuseof.com/dir/iorad-make-instruction-manual/
Iorad: Easily Make Instruction Manual For Any App
Iorad is a web service that lets you create comprehensive instruction manual for any application. It is more like a web-based version of PowerPoint but with lots of extra features. You can capture and insert screenshots and video clips, insert text boxes, buttons, roll overs, mouse symbols, arrows and captions to images.
Totally web-based, no downloads or scripts needed.
Add screenshots and video clips.
Publish on the web or download as PPT, PDF or Doc.
Tools & Techniques Collect videos for later viewing? Now I have a single link to all those math videos I share with my students!
http://www.killerstartups.com/Video-Music-Photo/radbox-me-a-tool-for-saving-retrieving-videos
Radbox.me - A Tool For Saving & Retrieving Videos
This is one for those who watch YouTube for hours on end. To put it in simple words, Radbox will empower them to store all the videos that they come across and like in one centralized location, and then recall them whenever they want.
This is accomplished through a bookmarklet that can be used at no cost, and which works with all the most popular video services available today - YouTube, Vimeo, Hulu, CNN, College Humor…
No comments:
Post a Comment