Archives 2020

A Microsoft program to transcribe and vet audio from Skype and Cortana, its voice assistant, ran for years with “no security measures,” according to a former contractor who says he reviewed thousands of potentially sensitive recordings on his personal laptop from his home in Beijing over the two years he worked for the company.

The recordings, both deliberate and accidentally invoked activations of the voice assistant, as well as some Skype phone calls, were simply accessed by Microsoft workers through a web app running in Google’s Chrome browser, on their personal laptops, over the Chinese internet, according to the contractor. Workers had no cybersecurity help to protect the data from criminal or state interference, and were even instructed to do the work using new Microsoft accounts all with the same password, for ease of management, the former contractor said. Employee vetting was practically nonexistent, he added.

“There were no security measures, I don’t even remember them doing proper KYC [know your customer] on me. I think they just took my Chinese bank account details,” he told the Guardian. While the grader began by working in an office, he said the contractor that employed him “after a while allowed me to do it from home in Beijing. I judged British English (because I’m British), so I listened to people who had their Microsoft device set to British English, and I had access to all of this from my home laptop with a simple username and password login.” Both username and password were emailed to new contractors in plaintext, he said, with the former following a simple schema and the latter being the same for every employee who joined in any given year.

The last five years on Earth have been hotter than at any time since the industrial revolution kicked off almost two centuries ago.

That’s the conclusion of Europe’s Copernicus Climate Change Service, which published data on Wednesday showing that global average temperatures since 2015 were some 1.2 degrees Celsius (2.2 degrees Fahrenheit) higher than when steam engines began powering industry. Last year was the second warmest on record after 2016.

2019 was Europe’s warmest year, marginally higher than temperatures in 2014, 2015 and 2018. Global average temperatures in 2019 were 0.6 degrees Celsius warmer than the 1981 to 2010 average. Atmospheric carbon dioxide concentration increased by about 2.3 parts per million in 2019, to the second-highest level on record.

Amazon-owned home security camera company Ring has fired employees for improperly accessing Ring users’ video data, Motherboard reported Wednesday, citing a letter the company wrote to Senators. The news highlights a risk across many different tech companies: employees may abuse access granted as part of their jobs to look at customer data or information. In Ring’s case this data can be particularly sensitive though, as customers often put the cameras inside their home. “We are aware of incidents discussed below where employees violated our policies,” the letter from Ring, dated January 6th, reads. “Over the last four years, Ring has received four complaints or inquiries regarding a team member’s access to Ring video data,” it continues. Ring explains that although each of these people were authorized to view video data, their attempted access went beyond what they needed to access for their job.

AI startups are selling images of computer-generated faces that look like the real thing, offering companies a chance to create imaginary models and “increase diversity” in their ads without needing human beings. One firm is offering to sell diverse photos for marketing brochures and has already signed up clients, including a dating app that intends to use the images in a chatbot. Another company says it’s moving past AI-generated headshots and into the generation of full, fake human bodies as early as this month. The AI software used to create such faces is freely available and improving rapidly, allowing small start-ups to easily create fakes that are so convincing they can fool the human eye. The systems train on massive databases of actual faces, then attempt to replicate their features in new designs. But AI experts worry that the fakes will empower a new generation of scammers, bots and spies, who could use the photos to build imaginary online personas, mask bias in hiring and damage efforts to bring diversity to industries. The fact that such software now has a business model could also fuel a greater erosion of trust across an Internet already under assault by disinformation campaigns, “deepfake” videos and other deceptive techniques.

So-called “smart” security cameras have had some pretty dumb security problems recently, but a recent report regarding a Xiaomi Mijia camera linked to a Google Home is especially disturbing. One Xiaomi Mijia camera owner is getting still images from other random peoples’ homes when trying to stream content from his camera to a Google Nest Hub. The images include sills of people sleeping (even an infant in a cradle) inside their own homes. This issue was first reported by user /r/Dio-V on Reddit and affects his Xiaomi Mijia 1080p Smart IP Security Camera, which can be linked to a Google account for use with Google/Nest devices through Xiaomi’s Mi Home app/service. It isn’t clear when Dio-V’s feed first began showing these still images into random homes or how long the camera was connected to his account before this started happening. He does state that both the Nest Hub and the camera were purchased new. The camera was noted as running firmware version 3.5.1_00.66.

The US imprisons more people than any other country in the world. At the end of 2016, nearly 2.2 million adults were being held in prisons or jails, and an additional 4.5 million were in other correctional facilities. Put another way, 1 in 38 adult Americans was under some form of correctional supervision. The nightmarishness of this situation is one of the few issues that unite politicians on both sides of the aisle.

Under immense pressure to reduce prison numbers without risking a rise in crime, courtrooms across the US have turned to automated tools in attempts to shuffle defendants through the legal system as efficiently and safely as possible. This is where the AI part of our story begins. Police departments use predictive algorithms to strategize about where to send their ranks. Law enforcement agencies use face recognition systems to help identify suspects. These practices have garnered well-deserved scrutiny for whether they in fact improve safety or simply perpetuate existing inequities.

Researchers and civil rights advocates, for example, have repeatedly demonstrated that face recognition systems can fail spectacularly, particularly for dark-skinned individuals — even mistaking members of Congress for convicted criminals. But the most controversial tool by far comes after police have made an arrest. Say hello to criminal risk assessment algorithms.

A 1-minute power glitch on Tuesday, December 31, partially shut down Samsung chip production at its Hwaseong chip complex in South Korea for “two or three days”. DRAM and NAND lines were affected. Preliminary inspections show “no major damage” but losses are still expected to be in the millions.

An ongoing internet blackout in Indian-controlled Kashmir is now the longest ever in a democracy — at more than 135 days — according to Access Now, an advocacy group that tracks internet freedom. Only the autocratic governments of China and junta-era Myanmar have cut off access for longer… Kashmiris have been without internet access for so long that WhatsApp has reportedly begun deleting their accounts for inaction… India’s increased internet censorship has been greeted with delight in China, however, where state-run media pointed to it as an endorsement of Beijing’s own authoritarian approach. The People’s Daily said this week that India’s example showed “shutting down the internet in a state of emergency should be standard practice for sovereign countries….”

African states have also embraced the tactic, with Zimbabwe, the Democratic Republic of Congo, Chad and Ethiopia all cutting off internet access in an attempt to rein in anti-government protests. This is in line with a general pattern of increased online censorship. It’s partly due to the spread of more sophisticated technology that makes it easier, and cheaper, to monitor and filter traffic online. It’s also influenced by a shifting perception of internet censorship, which once used to be seen as something of a losing battle. China’s Great Firewall, however, has proved beyond doubt that not only can the internet be controlled, but that doing so can help prop up the regime and prevent opposition movements from getting off the ground…

Shutdowns give police a freer hand to reign in unrest without the type of hyper-scrutiny on social media that has become common in highly-connected societies, and enable the government to ensure that its message is the only one heard on a particular topic. In 2018, there were 196 internet shutdowns globally — mainly in Asia, Africa and the Middle East — according to Access Now. In the first half of this year alone, there were 128, and 2019 looks to be the worst year on record. According to Freedom House, a Washington-based NGO, almost half of the world’s population lives in a country “where authorities disconnected internet or mobile networks, often for political reasons.”

Amazon filed a patent for technology that could identify you by scanning the wrinkles in the palm of your hand and by using a light to see beneath your skin to your blood vessels. The resulting images could be used to identify you as a shopper at Amazon Go stores. It was previously reported that the Seattle-based tech giant might install these hi-tech scanners in Whole Foods grocery stores. However, the U.S. Patent and Trademark Office published an application on Thursday that suggests the e-commerce behemoth sets its sites on Amazon Go stores…

While fingerprint scanners have been around for years, Amazon hopes to innovate by developing a personal identification system that you don’t have to touch. Imagine hovering your hand in front of an infrared light as a camera snaps two images — one from the surface, and one that looks for “deeper characteristics such as veins.” An internal computer system would then identify you based on that information.