SlickWraps Was Hacked, But Hasn’t Done Anything About It

SlickWraps makes skins for iPhones and Androids. It was recently hacked, but fortunately by a white hat hacker without malicious intentions. The story behind it is fascinating, especially because the company has blocked him and so far has failed to do anything about it.

To say I went to great lengths to treat SlickWraps equitably would be an understatement. Candidly, after the staggering number of primitive security flaws exhibited by their administrators (e.g. the vulnerability to Dirty COW, an exploit which was patched in 2016), I question whether they deserved the leniency I am about to describe.

Update: Other people are hacking the company too. One of them sent emails to SlickWraps customers, telling them to tweet and email the company, which responded to the incident on Twitter.

Google Search Reveals Private WhatsApp Groups

Google indexes links to WhatsApp group invites that may be private, meaning people can find and join them.

Motherboard used a number of specific Google searches to find invite links to WhatsApp groups. Some of the groups appear to not be overly sensitive or for a particular audience. Many of the links on Google lead to groups for sharing porn.

But others appear to be catered to specific groups. Motherboard entered one WhatsApp group chat that described itself as being for NGOs accredited by the United Nations. After joining, Motherboard was able to see a list of all 48 participants and their phone numbers.

T-Mobile and Sprint Hope to Close Merger by April 1

T-Mobile and Sprint could complete their merger sooner than perhaps expected. The firms are aiming to finalize the deal by April 1, 2020, MacRumors reported.

T-Mobile and Sprint are aiming to finish their merger by April 1 now that all legal issues have been resolved and regulatory approval has been granted, the two companies announced today. In a press release, Sprint and T-Mobile announced an amended business combination agreement that has been approved by the Boards of Directors of T-Mobile and Sprint. Under the terms of the amendment, T-Mobile parent company Deutsche Telekom will get a slightly higher ownership stake in the new company.

FCC Forced to Get Public Opinion on Net Neutrality

A court order is forcing the FCC to once again ask the public’s opinion on whether gutting net neutrality was a good idea. And just like last time, the agency is doing everything possible to distract, deflect, and defend.

In a reminder of just how petty federal telecoms regulation has become, the FCC can’t even take this implicit rebuke professionally. And so it attempted to hide the reality of the situation by flooding its announcements website on Wednesday with suddenly important news and describing the public comment period in the most obscure terms possible.

Defense Information Systems Agency Suffers Data Breach

Between May and July 2019 sensitive data like Social Security Numbers were stolen from servers belonging to the Defense Information Systems Agency (DISA), a U.S. defense agency. Earlier this month it notified victims.

The Defense Information Systems Agency has begun issuing letters to people whose personally identifiable information may have been compromised in a data breach on a system hosted by the agency. While there is no evidence to suggest that any of the potentially compromised PII was misused, DISA policy requires the agency to notify individuals whose personal data may have been compromised.

AI Could Build the Next JPEG Image Codec

The Joint Photographic Experts Group (JPEG) is exploring methods to use machine learning to create the next JPEG image codec.

In a recent meeting held in Sydney, the group released a call for evidence to explore AI-based methods to find a new image compression codec. The program, aptly named JPEG AI, was launched last year; with a special group to study neural-network-based image codecs.

Twitter Tests Fake News Warning System

Twitter is testing a fake news warning system on its platform. Bright labels will appear under tweets with misinformation.

Twitter confirmed that the leaked demo, which was accessible on a publicly available site, is one possible iteration of a new policy to target misinformation it plans to roll out March 5.

In this version, disinformation or misleading information posted by public figures will be corrected directly beneath the tweet by fact-checkers and journalists who are verified on the platform, and possibly other users who will participate in a new “community reports” feature, which the demo claims is “like Wikipedia.”

I could see “community reports” abused by Twitter trolls mass-reporting anything they disagree with as fake news. Hopefully Twitter builds a good system.

Coronavirus Fear Leads to 800 Staff at Apple Supplier Staying Home

SK Hynix, which supplies Apple with RAM, told 800 of its staff to stay home. It happened after it emerged that one trainee had been in contact with someone who was infected with coronavirus, AppleInsider reported.

SK Hynix on Thursday said it had requested 800 of its workers to quarantine themselves to prevent the spread of the coronavirus as a preventative measure. The precaution was made after the discovery one trainee had met a patient in Daegu, a city in South Korea that is at the center of an outbreak of the virus. The trainee was tested alongside another with symptoms of pneumonia, Reuters reports, though while neither were found to have the virus under the first test, a second is being performed to make sure. The company has also closed its training center and hospital in Incheon.

More Details About Apple's Row With German App Store Manager Over 'Tell All' Book

I previously reported that Apple was attempting to stop the distribution of a book by a former German App Store manager, which purports to ‘tell-all’ about life at the company. Reuters offers more details about the row, and the legal arguments being made by both sides. The information largely comes courtesy of a letter by Ralph Oliver Graef, publisher Murmann’s lawyer.

“Apple is trying to obstruct the publication of a book that addresses its business practices, but is written very sympathetically,” Graef said. Murmann said a first print run of 4,000 copies was selling well and, rather than pulling the book, it was rushing out a second print run. “It’s No. 2 on the Amazon best-seller list in Germany – everyone is talking about it,” said Peter Felixberger, an executive at Murmann.

This Startup Wants to Build a “GitHub for Data”

A startup called Gretel wants to build a “GitHub for data” so developers can safely access sensitive data.

Often, developers don’t need full access to a bank of user data — they just need a portion or a sample to work with. In many cases, developers could suffice with data that looks like real user data.

This so-called “synthetic data” is essentially artificial data that looks and works just like regular sensitive user data. Gretel uses machine learning to categorize the data — like names, addresses and other customer identifiers — and classify as many labels to the data as possible. Once that data is labeled, it can be applied access policies. Then, the platform applies differential privacy — a technique used to anonymize vast amounts of data — so that it’s no longer tied to customer information.

 

This Company Sells Your Credit Card Data

Yodlee is the biggest financial data broker in the U.S., and it routinely sells your credit card data to investment and research firms.

The Yodlee document describes in detail what type of data its clients gain access to, how the company manages that data across its infrastructure, and the specific measures Yodlee takes to try and anonymize its dataset…Once logged into Yodlee’s server, clients download the data as a large text file, rather than interacting with the data in a dashboard or interface that stays solely within Yodlee’s control, according to the document.