Sunday, September 27, 2020

Security? We don’t need no stinking security!”

https://www.databreaches.net/when-coffee-makers-are-demanding-a-ransom-you-know-iot-is-screwed/

When coffee makers are demanding a ransom, you know IoT is screwed

Dan Goodin reports:

With the name Smarter, you might expect a network-connected kitchen appliance maker to be, well, smarter than companies selling conventional appliances. But in the case of the Smarter’s Internet-of-things coffee maker, you’d be wrong.

As a thought experiment, Martin Hron, a researcher at security company Avast, reverse engineered one of the $250 devices to see what kinds of hacks he could do. After just a week of effort, the unqualified answer was: quite a lot. Specifically, he could trigger the coffee maker to turn on the burner, dispense water, spin the bean grinder, and display a ransom message, all while beeping repeatedly. Oh, and by the way, the only way to stop the chaos was to unplug the power cord.

Read more on Ars Technica.





Just as “No good deed goes unpunished,” so too “No new technology goes unabused.”

https://www.zdnet.com/article/pastebin-adds-burn-after-read-and-password-protected-pastes-to-the-dismay-of-the-infosec-community/?&web_view=true

Pastebin adds 'Burn After Read' and 'Password Protected Pastes' to the dismay of the infosec community

Pastebin, the most popular website where users can share small snippets of text, has added two new features today that cyber-security researchers believe are going to be widely and wildly abused by malware operators.

Named "Burn After Read" and "Password Protected Pastes," the two new features allow Pastebin users to create pastes (pieces of text) that expire after a single read or pastes that are protected by a password.





I guess you need to consider what teachers see beyond the kids face…

4th grader suspended for having a BB gun in his bedroom during virtual learning

On September 19, I posted a link to a model opt-out letter provided by the Rutherford Institute for parents to use to preserve their child’s and their family’s privacy rights during virtual learning. Now Gisela Crespo reports another situation that makes such discussions and letters necessary:

A 9-year-old Louisiana student was suspended after a teacher reported seeing a gun in the boy’s bedroom during a virtual class.

The attorney representing the child’s family said it was a BB gun and the school went too far — applying its on-campus weapons policy without considering the privacy of the child and his family.

Louisiana Attorney General Jeff Landry announced Friday his office is investigating.

Read more on CNN.





AI & the law?

https://upjournals.co.za/index.php/SAPL/article/view/6979

The Dark Side of Artificial Intelligence: Challenges for the Legal System

The development of artificial intelligence has the potential to transform lives and work practices, raise efficiency, savings and safety levels, and provide enhanced levels of services. However, the current trend towards developing smart and autonomous machines with the capacity to be trained and make decisions independently holds not only economic advantages, but also a variety of concerns regarding their direct and indirect effects on society as a whole. This article examines some of these concerns, specifically in the areas of privacy and autonomy, state surveillance, and bias and algorithmic transparency. It concludes with an analysis of the challenges that the legal system faces in regulating the burgeoning field of artificial intelligence.





Faces are different in the EU?

https://tidsskrift.dk/nnjlsr/article/download/122165/169414/

Police use of facial recognition technology and the right to privacy and data protection in Europe

This article examines the human rights challenges of police use of facial recognition technology from a European perspective. Based on both international human rights law, the European Convention on Human Rights and EU law, the article argues that the technology challenges human rights. The focus of the article is on the right to privacy and data protection, as this right is fundamentally at risk by the technology. Acknowledging that other rights and guarantees are also negatively impacted by the use of facial recognition technology, the article makes reference to the risk of discrimination, and the unregulated cooperation between State and the surveillance technology industry. However, a central point in the article is that irrespective of whether the technology can be refined to eliminate risk of discrimination, and even if sufficient safeguards for cooperation between State and the industry are put in place, fundamental challenges remain in relation to the right to privacy and data protection. The technology captures the unique facial features of an individual known as biometric data which is highly sensitive data and creates an interference with the right to privacy and data protection. By allowing facial recognition, society allows for an entirely new type of intensive surveillance. The use of the technology also entails a risk of chilling effect on e.g. freedom of assembly which furthers negative implications on human rights. The article concludes that when it comes to police use of facial recognition technologies, States should tread carefully and ensure that a sufficient human rights-based regulatory framework and adequate safeguards are in place before considering using the technology.



Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)