Tag: security

Control, Alt, Google

Published on by BriAlys
Mountain View, CA/USA – May 21, 2018: Exterior view of a Googleplex building, the corporate headquarters complex of Google and its parent company Alphabet Inc.

There’s a popular keyboard shortcut <Control><Alt><Delete> that, generally speaking, interrupts or facilitates interrupting a function. For example, if a program on your computer hangs or crashes, you press this popular combination to force the program to close.

Today I’m coining a new term, <Control><Alt><Google>. In a nutshell, you can now tell Google to delete the data (or history) it has on / about you. In this post I want to cover three items: 1) What data is stored, 2) Why you should care about deleting it and 3) How to tell Google to delete your data.

What data does Google store (courtesy of my friends at Lifehacker)?

  • Web and app history. This includes voice and audio data from Google assistant and other apps; data collected from apps synced to your Google account; all Chrome browsing history.
  • YouTube search and watch histories
  • Google Maps history and GPS location data

Why should I care about deleting this information?

A more tangible reason is that deleting your data is helpful for up-to-date content (and ad) curation. People change, our tastes evolve, and periodically deleting your outdated content history is like giving your YouTube, Google Play, or even Google Podcast recommendations a refresh based on your current interests.

Deleting it means Google doesn’t always have enough information about you to make recommendations on what it thinks you’ll like, or where you might want to go. CNBC

How do I request Google to delete my data?

  1. Go to your Google activity dashboard.
  2. Click “Activity controls” from the left-hand sidebar.
  3. Scroll down to the data type you wish to manage, then select “Manage Activity.”
  4. On this next page, click on “Choose how long to keep” under the calendar icon.
  5. Select the auto-deletion time you wish (three or 18 months), or you can choose to delete your data manually.
  6. Click “Next” to save your changes.

Repeat the steps above for each of the types of data you want to be auto-deleted, the three noted above (Web and app history, YouTube search and watch histories and Google Maps history and GPS location data). For your Location History in particular, you’ll need to click on “Today” in the upper-left corner first, and then click on the gear icon in the lower-right corner of your screen.

Then, select “Automatically delete Location History,” and pick a time.

Feds & Technology

Published on by BriAlys

In the last few days, several reports have emerged outlining steps the United States Federal Government is taking in realm of (personal) technology. These accounts are in line with what I recently told you in a post about Smart Speakers. When it comes to technology, privacy/security trumps EVERYTHING and the three (3) reports below are proof that the contentious convergence of government and technology is here to stay.

Here’s what you need to know:

Amazon, Google, Microsoft… Selling face-snooping tech to the Feds (The Register)

  • Why should you care? More than 85 advocacy groups focused on a diverse set of social issues, including racial justice, religious liberty, civil rights, human rights, and immigrant rights have raised concerns about this practice, including the ACLU.
  • You can read the full text of their letter here.

“History has clearly taught us that the government will exploit technologies like face surveillance to target communities of color, religious minorities, and immigrants.”

Feds Can’t Force You To Unlock Your iPhone…. With Finger Or Face (Forbes)

  • Why should you care? The judge says all logins are equal. In the past, they couldn’t force you to give up your pass code, now fingerprints, facial recognition (or other future innovations… i.e. voice) are also included. Forcing you to do this could be the equivalent of forcing you to self incriminate.

“If a person cannot be compelled to provide a pass code because it is a testimonial communication, a person cannot be compelled to provide one’s finger, thumb, iris, face, or other biometric feature to unlock that same device,” the judge wrote.

Feds to allow drones to to fly over crowds at night… and make routine night flights (ABC)

  • Why should you care? Rogue drones have been used to carry bombs on battlefields, to deliver contraband to prisoners, to interfere with firefighters and, last month, to cripple the operations of a major airport.
  • Last year, Congress approved a measure that will let the government develop a system to identify and hack or shoot down drones that authorities deem threatening.
  • Do these statements make you feel safe?

“Drones can collect massive amounts of sensitive data from people and can be equipped with facial recognition technology as well as license plate reading software”

Suzette Kemp is the Federal Government’s Chief Information Officer (CIO) appointed by President Donald Trump. The federal CIO is charged with driving government wide technology policy, leading the federal CIO Council and often putting out unexpected IT fires. She has recently said her office is crafting legislation to provide the government with “guardrails” for how to incorporate the technologies and ensure they don’t possess bias that runs counter to the mission of agencies (FedScoop).

Smart Speakers

Published on by BriAlys

The smart speaker industry is expected to grow 63% in 2019 (Deloitte). I have not been an early adopter of smart speakers because I wanted to scope out the market, gauge user adoption and weigh pros/cons for each option. The most popular options being: Alexa (Amazon), Google Assistant (Google) and Siri (Apple). Apple is my go-to for hardware (phone, laptop, watch) and I tend to prefer Google for services (i.e. calendar, mail). Given my perception, I’m curious to know if it will hold up in the smart speaker arena.

Before we get started I have a few biases / perceptions about smart speakers to disclose:

  1. I’m ~75% paranoid that someone on the other end will be “listening” to what’s going on in my home (see also Enemy of the State).
  2. Amazon scares me – they are getting too big and too involved…. in everything. (VICE News). So much so that I recently cancelled by Prime subscription. (see also RWA Series – Subscriptions).
  3. Apple seems “safe”. Washington Post
  4. I’m not interested in having a smart speaker that makes it easier / encourages me to buy anything or hear ads…. ever.
  5. I feel pretty confident that when Apple launches something new that it’s fully vetted, well thought out, tested and ready to go. Others sometimes just want to be first to the market and will launch anything to get a dollar, whether it truly “works” correctly/ideally or not.
  6. Having a lot of choices on which options to “connect to/use” is not my cup of tea. As an IT professional, I prefer to keep my personal technology choices/life simple!

Now, back to business – the business of choosing a smart speaker (Alexa, Google Assistant and Siri). One tech reporter summarizes the decision this way, “You are choosing your tribe… This decision will shape how you get information, what appliances you purchase, where you shop and how you protect your privacy.” Washington Post  To be honest, this article itself wasn’t very helpful; but the comments (781) were: “Here are my top 3:

  1. Why would I “invite” any of these devices into the privacy of my home?  Really, the speaker delivered a family’s conversation to one of their “contacts”?  It is unfortunate that a technology with the potential to be true assistants to those with disabilities, is just being marketed to the general public as a way to build databases to sell more stuff.
  2. Just remember, with all of these products YOU’RE the product. If you think you’re inundated by ads now, just wait. With these devices, your every move is being tracked inside your home and is put up for sale.
  3. Interesting how Apple has solved the privacy/security question. Basically it generates a pseudo random ID when you ask it a question, and that is what goes back to the cloud. So there is no way to associate your account with the action/query. 

I find it pretty interesting that not once have I even mentioned (or thought about) the actual features/benefits of smart speakers. What can they actually do? To be honest, I have no idea other than the general things I’ve heard/read about: turn on/off lights, set the thermostat, play music/movies, lock the doors, etc. Do I really need any of that? Nope. Do I actually want any of that? Nope. I don’t even use Siri on my iPhone. At this point, I cannot think of a single reason/way these items would enhance my life. That is what technology is supposed to do, right?

As this point I just need to point out one (obvious) thing – sometimes we get so caught up in making a decision about which technology to embrace, we forget why we want/need it in the first place. If I HAD TO CHOOSE, it would be Apple Home (privacy/security trumps EVERYTHING); but, to be honest I’m not at all even remotely moved to add a smart speaker my collection. Maybe that will change in the next 6-12 months; but, for now… I’m good! In case you are curious / intrigued, see also Best Smart Speakers 2019

In summary, be sure to let your LIFESTYLE & NEEDS help dictate what technology you embrace (bring into your home) and fully weigh the pros/cons of all options! Bri’s Recommendation on Smart Speakers? Just say no!

 

Ransomware & Bitcoins

Published on by BriAlys

Ok ladies, it’s time for some heavy lifting! So let’s get right to it:

  • Question: What is Ransomware?
  • Answer: Ransomware is a type of malware that prevents or limits users from accessing their system. It forces its victims to pay the ransom through certain online payment methods in order to grant access to their systems, or to get their data back. (Trend Micro)

Let me give you a real life example to help you relate. If a criminal kidnaps a child, like in the popular Denzel movie, Man on Fire, they often demand cash in exchange for returning the person to their relative/loved one. During the time of the kidnapping, the family has no access to the child – they cannot even see the child or perform everyday tasks like eating dinner together or talking about what happened at school that day. Imagine that the child got their report card on the day they were kidnapped – the family would not be able to see what was on the report card – not the child’s name, not their grades, nothing. Access to the child and everything the child has is completely cut off. No family member can get to the child or access to the information they may hold until the ransom is paid and the child is returned. #InThatOrder

Ransomware is technical jargon; but, it basically means the same situation as described above; but, in this case the kidnapper is a computer hacker and the kidnapee is a computer systemA hospital in Southern California, Hollywood Presbyterian, is under a ransomware attack as we speak. Their computer system is completely shut down and workers do not have access to patient information, records, etc. Patient  registration, notes, medical records and conditions are all being handled the old way – by pen and paper. This is serious: the FBI has been called in to investigate and help!

The ransom being demanded is 9,000 bitcoins (or 3.4 million dollars). In exchange, the hackers would send back the key code to restore the system.

video.yahoofinance.com@8dfea102-b1a8-362e-9e14-5554f85eab4c_FULLBitcoins are a sort to encrypted virtual currency – think of it as electronic money (they are not real dollars) that can be transferred between entities or people digitally and ANONYMOUSLY. Your bank keeps track of everything you send/receive but that’s not possible with Bitcoins. Users simply have a Wallet ID and that’s it. You can “never” know who the buyer or seller is. This virtual currently is not ensured by the FDIC and this industry, praised by Bill Gates and others, is largely unregulated.

Screen Shot 2016-02-15 at 5.23.03 PM

Today, it’s a hospital, tomorrow maybe it’ll be the Social Security Administration or your bank. Then what? Sure, those agencies/companies spend millions of dollars fighting cyber attacks – President Obama recently announced that he wants$3 billion from Congress to to fight such crimes as these, cyberattacks; but, we, very much live in a digital world and it only takes one lucky attempt or try for a hacker to do “virtual” damage.

Ransomware is not just for companies, individuals can be targeted as well. Even you! So, what can you do? Don’t open email from people you don’t know, especially attachments. Don’t click on UNKNOWN links – seriously, if the sender’s email address is something like “info@yourbank.com” this should a RED FLAG. If you haven’t paid attention to that before, spend 5 seconds to look NOW! Don’t download FREE software you think is going to solve your problem (i.e. my computer is slow software X claims to be able to fix it”, etc.) Don’t play games online that require you to DOWNLOAD something. PERIOD. FREE != GOOD != SAFE… I just taught you a bit of computer programming there 🙂 And finally, get a Mac. Seriously… read more here.

I included a few videos below in case you want to learn more about Ransomware or Bitcoins. #StaySafeOnline

Screen Shot 2016-02-15 at 5.43.17 PM

Screen Shot 2016-02-15 at 5.47.44 PM

Wireless-Enabled Deadbolt Lock

Published on by BriAlys

Kevo | Smart Phone Mobile App Lock - Keyless EntryKevo DeadboltYour Smartphone is now your key with the Kwikset Kevo Wireless-Enabled Deadbolt Lock! With this device, you can now keep your phone in your pocket or purse. For $219.95 per lock, no more fumbling for your keys… just touch the lock to open for the ultimate in convenience. People who own homes and typically enter their through the garage may not find this useful. But, if you’re a runner and would rather not drag your keys with you, it could be helpful! I also can’t see how landlords would allow renters to install this sort of device so I’m really questioning the market at this point. You may think this would be perfect for kids, but they lose cell phones (and even loan them to friends) all the time. Then a bigger security question comes into play. But I suppose that’s true with almost everything these days (see Apple Pay).

This technology has not yet become mainstream, as indicated by the price, but if you are an early adopter and can find a valid use, go for it!  (I’d wait until Black Friday, though, to see if there are any deals).