Facebook’s In-app Browser on iOS Tracks ‘Anything You Do on Any Website’

 

source: threatpost.com  | image:  pixabay.com

 

Researcher shows how Instagram and Facebook’s use of an in-app browser within both its iOS apps can track interactions with external websites.

Users of Apple’s Instagram and Facebook iOS apps are being warned that both use an in-app browser that allows parent company Meta to track ‘every single tap’ users make with external websites accessed via the software.

Researcher Felix Krause, who outlined how Meta tracks users in a blog posted Wednesday, claims that this type of tracking puts users at “various risks”. He warns both iOS versions of the apps can “track every single interaction with external websites, from all form inputs like passwords and addresses, to every single tap” via their in-app browsers.

iOS users’ concerns over tracking were addressed by Apple’s 2021 release of iOS 14.5 and a feature called App Tracking Transparency (ATT). The added control was intended to require app-developers to get the user’s consent before tracking data generated by third-party apps not owned by the developer.

Krause said that both iOS apps Facebook and Instagram are using a loophole to bypassed ATT rules and track website activity within their in-app browsers via the use of a custom JavaScript code used in both in-app browsers. That means, when an iOS user of Facebook and Instagram click on a link within a Facebook and Instagram post (or an ad), Meta launches its own in-app browser which can then track what you do on external sites you visit.

Meta’s Use of a JavaScript Injection 

“The Instagram [and Facebook] app injects their JavaScript code into every website shown, including when clicking on ads. Even though pcm.js doesn’t do this, injecting custom scripts into third party websites allows them to monitor all user interactions, like every button & link tapped, text selections, screenshots, as well as any form inputs, like passwords, addresses and credit card numbers,” Krause wrote.

Continue reading “Facebook’s In-app Browser on iOS Tracks ‘Anything You Do on Any Website’”

What We’ve Been Reading About AI

source: CNN.com (contributed by FAN, Bill Amshey)  |  image: pixabay.com

Continue reading “What We’ve Been Reading About AI”

MacOS vs Windows: Which Desktop OS Is Safest?

source: pcmag.com  |  image: pexels.com

 

Still think Macs can’t get viruses? That outdated thinking puts you and your data at risk.

 

It’s a tale as old as computing itself: Macs can’t get viruses. It’s not true, but a new survey by security site All About Cookies(Opens in a new window) seems to indicate that far too many macOS users believe their systems are immune, even though they’re security-conscious about other aspects of computing—at least, compared with Windows users.

Continue reading “MacOS vs Windows: Which Desktop OS Is Safest?”

How Your Real Flight Reservation Can Be Used to Scam You

source: wired.com  |  image: pexels.com

 

Scammers use a booking technicality, traveler confusion, and promises of dirt-cheap tickets to offer hot deals that are anything but.

HOW DO YOU tell that your plane ticket is real? If it checks out on the airline’s website, you’re good to go, right? Don’t be sure. Fraudsters are abusing a little-known but decades-old technicality in how airline reservations work to con people out of their cash.

Mevonnie Ferguson, who lives in Kent in the UK, says she was scammed out of £994 ($1,267) by someone claiming to work at a travel agency called Infinity Global Travel. A single working mother of two daughters, Ferguson says she was sold what appeared to be a valid British Airways ticket from London to Kingston, Jamaica. When she looked up the reservation on BA’s website using the confirmation number and her last name, it showed up valid and fine. But about two weeks after purchasing this ticket from Infinity Global Travel, and just days before her scheduled departure date, the reservation disappeared from BA’s website without a trace.

Ferguson, who also relayed her story to the UK’s Channel 5, contacted the airline and explained her situation, but she was told there were no flights booked in her name. BA would not release information to Ferguson, as she was not the party who had directly booked the reservation with the airline, she says. After some persuasion, the BA representative ultimately told Ferguson that while the reservation code she provided was correct, there was no record of an e-ticket number.

Ferguson has since tried to get a refund from the supposed travel agent, who has neither returned her money nor responded to subsequent calls and emails. A BA spokesperson asked WIRED for additional details so they could investigate but did not otherwise respond to a request for comment.

This problem isn’t unique to British Airways or any one airline in particular. In fact, it’s an intentional part of the air travel industry’s reservation process that scammers can abuse. 

Hold Up

Like many travelers, Ferguson did not understand the difference between a “confirmed” and a “ticketed” reservation, travel industry jargon terms that are not synonymous. The system makes it possible to create what appears to be a valid flight reservation, but which is actually a mere temporary reservation “hold.” 

Continue reading “How Your Real Flight Reservation Can Be Used to Scam You”

Michigan Tech Researchers Develop ‘Smart’ Deep Brain Stimulation Systems for Parkinson’s Patients

source: mfu.edu  |  image: pixabay.com

Researchers at Michigan Technological University are applying neuromorphic computing to improve the effectiveness and energy efficiency of deep brain stimulation systems used to treat Parkinson’s disease.

 

Currently incurable, Parkinson’s disease is a neurodegenerative disorder that affects millions worldwide. Deep brain stimulation (DBS) is an alternative to medications that are effective but lose effectiveness as patients develop drug resistance. Over time, larger doses of medication become necessary to control the condition and with them come potentially serious side effects. DBS is one alternative.

Making Deep Brain Stimulation Systems Better for Patients

DBS systems function like a pacemaker for the brain. They suppress the motor symptoms of Parkinson’s disease, including slowed or delayed movements (called bradykinesia), tremors and stiffness. An electrode, implanted into a specific target in the brain, emits electrical impulses using a battery-powered device in the chest. 

DBS systems can be life-changing for people diagnosed with Parkinson’s disease. But battery life is a challenge. Current devices use an implantable pulse generator (IPG), surgically inserted in the chest or abdomen, to send stimulation signals to the brain at a constant frequency, regardless of the clinical state of the patient. Nonchargeable batteries last approximately two to five years. Battery replacement can be disruptive for patients; it requires a surgical procedure. And there can be unwanted side effects caused by the IPG’s continuous stimulation.

Continue reading “Michigan Tech Researchers Develop: Systems for Parkinson’s Patients”

 

What is a QR Code + How Does It Work?

Everything Marketers Should Know

 

source: blog.hubspot.com, contributed by FAN, Steve Jones. |  image: pixabay.com

 

I’ll never forget the first time dining at a restaurant after my pandemic-induced hibernation. Before I could ask for a menu, the waitress nodded towards a piece of paper with a barcode on it. “Open your phone camera and scan it. The menu should pop up.”

QR codes have become a common sight almost overnight — from cereal boxes and billboards to even employee uniforms. With a 94% increase in interactions from 2018 to 2020, there’s no denying QR codes are seeing an epic revival in a new touch-free world.

Let’s explore the origins of the QR code, learn how it works, and discuss ways it can refresh your marketing strategy.

What is a QR code?

Short for quick response, QR codes are scannable barcodes that store data. In the marketing sphere, they’re commonly used to redirect users to landing pages, websites, social media profiles, or store coupons.

For instance, someone can place a QR code on the back of their business card to direct you to their LinkedIn profile. A QR code on a billboard may send you to a landing page.

QR codes vary in design and function, and primarily fall into one of the following categories — static or dynamic.

Static vs. Dynamic QR Codes

A static QR code contains information that cannot be modified once it’s live. This means any typo or misstep will require you to create a brand new one. The good news is that static codes don’t expire — so once the content is set, your work is done.

Static QR codes are ideal for storing fixed or sensitive info — think Wi-Fi passwords, employee ID numbers, or access codes. But they’re not so helpful if you need to update your data regularly.

Dynamic QR codes allow you to change your info as many times as you want. This is because the information isn’t ingrained into the code itself. Instead, it redirects users to a specific URL that can be changed at any time. For example, a restaurant can redirect users to a menu on their website.

A major benefit of dynamic QR codes is the ability to gather scanning metrics. While you can’t access personal information from users, you can see the time, location, and device used for each scan. And as marketers, we know these metrics are crucial to gauging campaign effectiveness.

How do QR codes work?

A QR code works similarly to barcodes at the supermarket. Each QR code consists black squares and dots which represent different pieces of information. When scanned, the unique pattern on the barcode translates into human-readable data. This transaction happens in seconds.

Users must scan the code with a QR reader or scanner, although nowadays most people scan QR codes with smartphones. On the off chance your phone doesn’t have the capability, there are plenty of free apps for QR scanning like NeoReader and QuickMark Barcode Scanner.

Continue reading “What is a QR Code + How Does It Work?”

The Deepfake Dangers Ahead

source: wsj.com, contributed by Artemus Founder, Bob Wallace  |  image: pexels.com

 

AI-generated disinformation, especially from hostile foreign powers, is a growing threat to democracies based on the free flow of ideas

 

By Daniel BymanChris Meserole And V.S. Subrahmanian

Feb. 23, 2023 9:58 am ET

Bots, trolls, influence campaigns: Every day we seem to be battling more fake or manipulated content online. Because of advances in computing power, smarter machine learning algorithms and larger data sets, we will soon share digital space with a sinister array of AI-generated news articles and podcasts, deepfake images and videos—all produced at a once unthinkable scale and speed. As of 2018, according to one study, fewer than 10,000 deepfakes had been detected online. Today the number of deepfakes online is almost certainly in the millions.

We can hardly imagine all the purposes that people will find for this new synthetic media, but what we’ve already seen is cause for concern. Students can have ChatGPT write their essays. Stalkers can create pornographic videos featuring images of the people they are obsessed with. A criminal can synthesize your boss’s voice and tell you to transfer money.

Deepfakes risk leading people to view all information as suspicious.

Continue reading “The Deepfake Dangers Ahead”

Protect your privacy: A guide to avoiding drone surveillance

source: foxnews.com  |  image: pexels.com

It’s difficult to learn who owns a drone; some have their registration numbers visible, usually in case the owner loses sight of it.

I share a ton of tips to protect your privacy online. Do this quick 30-second check to keep your Google and Facebook accounts safe if you haven’t yet.

What about when you leave your home? Just about everywhere you go, you’re being watched. 

Not all cameras are out in the open, either. I once found more than a dozen cameras in an Airbnb I rented. Here are my best tips for spotting hidden cams in a rental, new apartment, home, or hotel room. But now we have drones to deal with.

The internet is a dangerous place. Join over 400,000 people and stay updated with my free daily newsletter.

I spy with my eye a drone in the sky

The other day, I heard a familiar buzz while swimming in my backyard pool. Sure enough, a drone hovered overhead and quickly vanished when I shooed it away with my hand. That’s how I got the idea for this post.

Continue reading “Protect your privacy: A guide to avoiding drone surveillance”

Cybersecurity trends in 2023 that will directly impact everyday life

source: cybersecuritydive.com  |  image: Pixabay.com

 

The scale of cyberthreats are growing, spilling into the mainstream. In 2023, expect the spotlight to add pressure to businesses that have underinvested in security.

 

There are a few certainties in cybersecurity: ransomware will cause headaches for companies; third parties will spark cyber incidents; and every December, cybersecurity analysts will put together lists of their predictions and trends they believe will have an impact in the coming year. 

Most of the predictions are designed to help organizations build out their security programs, but every so often a trend will build slowly over time until its impact is clear.

Sometimes these trends will reach far beyond an individual company and impact society at large. 

Here are some of the biggest trends Cybersecurity Dive is watching this year. Are there any security patterns you are watching closely? Email us at cybersecurity.dive.editors@industrydive.com.

The global impact of state-sponsored activities

State-sponsored threats trend every year, but as we begin 2023, those threats have a different, more menacing, feel to them. The countries responsible for much of the state-sponsored activity — Russia, China and Iran — are embroiled in conflict. 

“In the past year, we’ve seen [Russia’s] invasion of Ukraine; a worsening of the relationship between China and the West combined with tightening control by Xi Jinping and further pressure on Taiwan; and a growing concern in Iran about dissident activity and pressures on the regime both internally and abroad,” said Mike McLellan, director of intelligence for the Secureworks Counter Threat Unit. 

Continue reading “Cybersecurity trends in 2023 that will directly impact everyday life”

5 scientific breakthroughs in 2022 that should give you hope for the future

 

source: fastcompany.com  |  image: Pixabay.com

 

It’s been a challenging year on many fronts, but where science is concerned, the future is brighter than it is bleak.

While there was no shortage of upsetting news in 2022, researchers and science enthusiasts can point to a number of uplifting advancements and discoveries to revive hope in humanity. This year, the brightest minds in STEMs brought us steps closer to a revolutionary future, with breakthroughs in energy production, space exploration, and planet protection. Here are five scientific breakthroughs from 2022 to reflect on how far we’ve come. 

WE HIT A NUCLEAR-FUSION MILESTONE

It took 70 years, but physicists at the National Ignition Facility (NIF) finally had more output than energy input. Although commercial production of fusion energy is still a pipe dream, researchers at NIF in California have done what a similar project in France has yet to do. The hope for the future is more energy gains from nuclear fusion, which can provide an infinite source of clean energy that’s carbon-free and doesn’t emit radioactive waste. 

Continue reading “5 scientific breakthroughs in 2022…”