Category Archives: Uncategorized

Your cellphone is a tracking device that lets you make calls

Your cellphone is a tracking device that lets you make calls:
Just in case you had any doubts about how much of a security risk your mobile phone presents, have a read of Jacob Appelbaum’s interview with N+. Jake’s with both the Tor and Wikileaks projects, and has been detained and scrutinized to a fare-thee-well.

Appelbaum: Cell phones are tracking devices that make phone calls. It’s sad, but it’s true. Which means software solutions don’t always matter. You can have a secure set of tools on your phone, but it doesn’t change the fact that your phone tracks everywhere you go. And the police can potentially push updates onto your phone that backdoor it and allow it to be turned into a microphone remotely, and do other stuff like that. The police can identify everybody at a protest by bringing in a device called an IMSI catcher. It’s a fake cell phone tower that can be built for 1500 bucks. And once nearby, everybody’s cell phones will automatically jump onto the tower, and if the phone’s unique identifier is exposed, all the police have to do is go to the phone company and ask for their information.

Resnick: So phones are tracking devices. They can also be used for surreptitious recording. Would taking the battery out disable this capability?

Appelbaum: Maybe. But iPhones, for instance, don’t have a removable battery; they power off via the power button. So if I wrote a backdoor for the iPhone, it would play an animation that looked just like a black screen. And then when you pressed the button to turn it back on it would pretend to boot. Just play two videos.

Resnick: And how easy is it to create something like to that?

Appelbaum: There are weaponized toolkits sold by companies like FinFisher that enable breaking into BlackBerries, Android phones, iPhones, Symbian devices and other platforms. And with a single click, say, the police can own a person, and take over her phone.

You may be saying here, “Huh, I’m sure glad that I’m not doing anything that would get me targeted by US spooks!” Think again. First, there’s the possibility that you’ll be incorrectly identified as a bad guy, like Maher Arar< who got a multi-year dose of Syrian torture when the security apparatus experienced a really bad case of mistaken identity.
But second, remember that whatever governments can do with technology, organized criminals can do too (this is doubly true of back-doors that governments mandate in telecoms equipment and software to make spying easier — they can be used by anyone, not just “good guys”).

And finally, remember that whatever the leet haxxors of the mafia are doing today on the cutting edge will be reduced to a short script that can be run by fatfingered noobie script kids tomorrow, in automated attacks that are indiscriminately ranged against tens of millions of devices in the hopes of finding a few that are vulnerable.

Or as Jake says:

The first response people have is, whatever, I’m not important. And the second is, they’re not watching me, and even if they were, there’s nothing they could find because I’m not doing anything illegal. But the thing is, taking precautions with your communications is like safe sex in that you have a responsibility to other people to be safe—your transgressions can fuck other people over. The reality is that when you find out it will be too late. It’s not about doing a perfect job, it’s about recognizing you have a responsibility to do that job at all, and doing the best job you can manage, without it breaking down your ability to communicate, without it ruining your day, and understanding that sometimes it’s not safe to undertake an action, even if other times you would. That’s the education component.

So security culture stuff sounds crazy, but the technological capabilities of the police, especially with these toolkits for sale, is vast. And to thwart that by taking all the phones at a party and putting them in a bag and putting them in the freezer and turning on music in the other room—true, someone in the meeting might be a snitch, but at least there’s no audio recording of you.

Leave Your Cellphone at Home

(via /.)

Jobs reincarnated

Jobs reincarnated: The late Apple co-founder and CEO Steve Jobs has been reincarnated as a handsome warrior-philosopher in a mystical palace floating over Cupertino, a state of affairs that the Wall Street Journal reports is “impossible to corroborate”.

Why oversimplified science news headlines may not be healthier for you

Why oversimplified science news headlines may not be healthier for you:

Here’s why I wish SEO didn’t factor into science news: the hunger for traffic encourages headline writers to tart up the findings of studies beyond recognition, and away from more boring truths. Case in point, this NPR item, forwarded to me by more than one friend: “Why Organic Food May Not Be Healthier For You.”
This headline is amplified by secondary and tertiary outlets, Facebooked and tweeted, each time diluting the actual science in the story to concentrations so weak, they might as well be labeled homeopathic tincture of news.
But let’s dig further. The study it references, published in the Annals of Internal Medicine, examined a number of existing studies and comes to a more nuanced conclusion than the viral headline suggests. Quote:

The published literature lacks strong evidence that organic foods are significantly more nutritious than conventional foods. Consumption of organic foods may reduce exposure to pesticide residues and antibiotic-resistant bacteria.

Oh, and,

Studies were heterogeneous and limited in number, and publication bias may be present.

So the meta-study of all these studies concludes that existing science shows consumption of organic produce is associated with lower levels of pesticide exposure. And, that there is no conclusive evidence from existing studies that, say, an organic apple will always be higher in nutrients than an apple grown with man-made chemical pesticides and the like.

Well, fine. I buy organic when possible not because I presume the organic apple has more vitamins, but because we don’t really know how chemical pesticide residues affect our bodies over longer periods of time (not to mention intergenerational DNA, or the bodies of farm workers, or our environment). It makes sense to me that the less of those chemicals we use and consume, the better.

I believe this in part because I do not have faith that the industry producing those chemicals has my best interest at heart, and in part because I don’t really know that our federal standards for food pesticides are as safe as they should be.
I grew up playing in crop fields sprayed with all kinds of chemicals, many of which are now banned. What is considered safe in one era (hello, cigarettes!) may be found unsafe the next.
But tedious common sense like that doesn’t tend to generate clicks any more than my crazy new diet secret: consume fewer calories, and burn more through exercise.

My conclusion? For optimum health, eat lots of fresh fruits and vegetables, and read the actual studies behind the news headlines your mom emails you.

* Yes, “organic” is a widely abused term, and not all chemical-pesticide-free farming is Certified Organic, and with food, things are always complicated. For the purposes of this blog post, we’re talking about food grown without the use of man-made chemicals for growth stimulation, pest control, and the like.

(Image: pesticide free, a Creative Commons Attribution Non-Commercial No-Derivative-Works (2.0) image from hciere’s photostream)

The [perhaps. -egg] best cat video on the Internet

The best cat video on the Internet:

That is a high claim, I know. But over Labor Day weekend, a combination of dedicated curation and popular vote resulted in Henri 2, Paw de Deux being named the best Internet cat video.

The Internet Cat Film Festival, sponsored by Minneapolis’ Walker Museum of Art, drew a live audience of more than 10,000 people last Thursday night. Videos were curated from a massive collection submitted online, and were grouped into thematic categories— foreign films, for instance, or comedies. Henri 2 took home the Golden Kitty, a People’s Choice award.

Bonus: If arguing about the merits of Henri 2 weren’t enough of a gift to your procrastination tendencies, you can also check out a full list of all the films screened at the festival, including links.