When a data breach happens, the data that is collected does not just disappear. Often times, it is collected and sold to the highest bidder. Sometimes, that bidder can make the information publicly available, usually for a fee. One of the sites that collects and disseminates this information is LeakedSource, which makes the information searchable with a recurring membership. The site, and others like it, claim that they make the information available so that people can search to see what information is available about themselves.
Unfortunately, as soon as the information is searchable, it is available. Instead of searching for yourself, for example, you could search for Alphabet CEO Larry Page. Maybe he used a credit card at Home Depot or Target, or once had a Yahoo email account, whose password might still be in use on another service. If someone with nefarious intentions were to perform that search, it's possible that they could accomplish their goals with the information found.
This week, the site vanished, and the smart money is on a raid by law enforcement, looking for evidence of illicit behavior from the company. Management has been silent on social media, not indicating that the site is even offline, let alone raided. Once such behavior that might be in question, according to "Keen" who operates another notification service, is the purchase of stolen data. Rather than collecting publicly, or semi-publicly, available data sources, Keen claims that LeakedSource has been exclusively purchasing stolen data.
Obviously, paying for data in this manner for a site that makes the data available, encourages others to do it for the profit. Keen's evidence of this behavior is the existence of data from the E-Sports Entertainment Association (ESEA) breach, which was never made public. In fact, only the original hacker and the site had the data. That is pretty incriminating evidence against the site, no matter how circumstantial.
Obviously data breaches are something that will not go away any time soon, but to create an environment where it is easily profitable for a hacker to make the attempt is not just criminal, it's unbelievably stupid. There was no way that this would be left alone, and prison is not a place that treats cyber criminals kindly.
$2 billion purchase of Oculus in 2014, the move has been questioned. What was Facebook's interest in getting into the VR market? Did they do their due diligence in researching the company? Would they be able to make anything out of Oculus or would they blunder the company's hype and lead?
The last question has been answered by Microsoft, HTC, Samsung, Sony and others, who have come into the space and successfully beaten the excitement out of Oculus, with the HTC Vive being the generally agreed upon leader. The due diligence question seems to have been answered, as well, with the lawsuit between Oculus and ZeniMax making its way to a jury, and a lot of information making its way to the world.
ZeniMax built VR technology, Rage VR, which never quite took off. While Oculus was getting off the ground, and before the purchase by Facebook, Oculus engineers engaged John Carmack, the founder of id Software, creators of
Doom, and involved with the Rage VR test bed and the Doom BFG Edition demo for the platform. The problem is that the information Carmack shared was covered by NDA and could not be shared with Oculus engineers without compensation. This is ZeniMax's version of the story.
Oculus tells a different version, however. In fact, they claim that co-founder Palmer Luckey was responsible for the technology powering Rift. ZeniMax insists, however, that Luckey is a "hobbyist" and could not have been responsible for the complex work taking place within the engineering division. Oculus says that the technology that was used that is similar to Rage was publicly available, to which the question of why only Oculus had is was raised.
The jury is in deliberations, likely to last into the next week. ZeniMax is asking for $2 billion in damages and another $2 billion in compensation for the information. This could be a big problem for Facebook and investors, as well as anyone who is invested in the Oculus ecosystem, which could suddenly have a very large bill to pay.
Any time security is involved, there are certain sacrifices that must be made. For example, to prevent people from stealing your money at the ATM, you have both an identification card and a PIN that must be presented. It's not a massive inconvenience, but it does add a little annoyance to the process. The same can be said for mobile devices - if you want a truly secure phone, like a Blackphone, you are going to have to pay for it.
Some people, however, thought they would shortcut the process and, instead of buying the devices directly from Silent Circle or one of their partners, bought them on eBay. Now, if you know anything about eBay, you know that electronics that sell for far below the retail price are either used, stolen or fake - usually the latter. Obviously you do not want to purchase a fake phone that is designed for security, because you can ensure that the
myriad of illicit apps and exploits will be present on that device.
Unfortunately for these buyers, that is exactly what is at stake, as the devices being sold on eBay are absolutely fraudulent. To protect consumers who have been duped by a combination of their own poor thinking and semi-crafty criminals, Silent Circle has released an update to their Silent OS, version 3.0.8, which essentially disables the device and presents a message to device owners informing them of the scam in which they've gotten involved.
While some people would be pleased to find out that the company that is being falsely represented is looking out for the safety and security of people who don't even own one of their devices, some people have gotten upset with the move. Whether they like it or not, these people own fake devices which are a danger to both the consumer and the brand, and are officially bricked.
My recommendation for future purchases of security products is to avoid the potential of being scammed and buy the product from a legit source.
The usage of live video has grown rapidly in the past 2 years. Between specialty services like Livestream and Twitch, and general services like Periscope and Facebook Live, consumers have encouraged the growth of the medium. The addition of professionally produced content, like NBC's
Hairspray Live and FOX's Grease: Live on television have brought attention from producers and has brought the idea of live content to movie theaters.
It would appear that what is either the next logical step, or possibly the bazar conclusion to the process, is Woody Harrelson producing what he is calling a live movie production. The movie, titled
Lost in London, is a telling of Harrelson's personal experiences being arrested in London in 2002. The movie will be live streamed to 550 movie theaters nationwide on January 19, 2017.
It will, obviously star Woody Harrelson, but will also include big name participants like Owen Wilson and Willie Nelson. But, how does this production separate itself from an NBC live musical? Apparently it will be the overall scale of the production. Unlike
Hairspray Live, which took place entirely on Universal's Hollywood backlot, Lost in London will be shot in 14 locations across London with a continuous shot.
The real question that must be asked here is why is this happening? The idea of bringing live theater to your living room makes sense; it allows people outside of New York and other big cities to experience live theater. What does a live movie streamed to movie theaters bring to the world? Other than the danger of something going wrong, or schadenfreude, it seems like there is no benefit.
Is this idea one that seems destined to create a new genre, or a one-off vanity project? Let us know your thoughts in the comments.
After the election, a surprisingly high number of people blamed Trump's win on social media and what is currently being called "fake news" shared, particularly, on Facebook. The complaining has been enough that Facebook has been forced to respond to the issue, continuously reminding people that they neither create nor promote this content, and it is, instead, brought to them care of their friends.
After weeks of pleading from users, Facebook has been bullied into responding in a different way, implementing a fact-checking system for content shared on their network. The system will work similar to its other reporting platforms, like fake profiles or offensive ads. You will mark a post as inaccurate, and it will be flagged to Facebook. From there, it will be run through a 3rd party fact checking system and, if the link is found to be inaccurate, it will be marked as such on Facebook. This initiative will be head up by a new hire, whose job title will be Head of News.
The issue here is, who believes that it should be Facebook's responsibility to determine the validity content written by a non-Facebook controlled website and shared by a non-Facebook employee on their network? The idea of inaccurate content is not a new concept. For decades, while checking out at the grocery store, you can read about Elvis's secret performances from beyond the grave, or proof that *insert celebrity name here* is actually an alien, yet no one has ever blamed Kroger's for the belief in bigfoot.
In fact, people used a skill that the internet seems to have diminished called critical thinking to determine that these types of stories were obviously nonsense. For example, using critical thinking, anyone would know that Hillary Clinton was not holding children as sex slaves inside of a pizza parlor, or that the Pope had endorsed Trump. These are the kinds of stories that a generation ago would have been easily identifiable.
Rather than trying to force Facebook to police the content created by people outside of their network, people should actually be concerned about the educational system that has produced people who are unable to discern between obvious nonsense and potential reality.