TORONTO – Researchers at a Toronto-based tech laboratory have uncovered security vulnerabilities and censorship frameworks in an app all 2022 Beijing Olympics attendees must use.
The Citizen Lab, a research institute at the University of Toronto’s Munk School of Global Affairs and Public Policy that studies spyware, found a “simple but devastating” flaw in the MY2022 app that makes audio files, health and customs forms transmitting passport details, and medical and travel history vulnerable to hackers.
Researcher Jeffrey Knockel found MY2022 does not validate some SSL certificates, digital infrastructure that uses encryption to secure apps and ensures no unauthorized people can access information as it is transmitted.
This failure to validate means the app can be deceived into connecting with malicious hosts it mistakes as being trusted, allowing information the app transmits to servers to be intercepted and attackers to display fake instructions to users.
“The worst case scenario is that someone is intercepting all the traffic and recording all the passport details, all the medical details,” said Knockel, a research associate, who investigated the app after a journalist curious about its security functions approached him.
Olympic organizers have required all games attendees, including athletes, spectators and media members, to download and start using the MY2022 app for submitting health and customs information like COVID-19 test results and vaccination status at least 14 days ahead of their arrival in China.
” MY2022 does not validate some SSL certificates, digital infrastructure that uses encryption to secure apps and ensures no unauthorized people can access information as it is transmitted “. SSL = secure socket layer “does not validate some SSL certificates” = doesn’t check that the SSL is actually valid. That means someone could provide a fake certificate, which is then not checked, and the app continues on anyway. Explain this to students
What is your advice to Olympic Athletes, who are required to download this app to be able to be at the Olympics? Answer: burner phone and burner laptop – and don’t use it for anything you don’t want to be publicly shared.
Microsoft is the dominant force in business software, and a giant player in cloud computing. On Tuesday, the company made clear that its ambitions were even bigger, saying it planned to buy the powerhouse video game player Activision Blizzard for nearly $70 billion, in a deal meant to position the company for the next generation of the internet.
The acquisition, Microsoft’s largest ever, would catapult the company into a leading spot in both the video game industry and could strengthen its hand in the nascent world of virtual and augmented reality.
$70 billion for a gaming company. Why does this make sense for Microsoft?
” The deal could also give Microsoft a significant boost against Facebook, which is considered the leader in the so-called metaverse, the name given to the virtual world. The metaverse is more of a buzzword than a thriving business, but companies are putting huge sums of money and talent behind the idea. ” What’s going on here?
Two years into a pandemic, with a new variant whittling away what little hope anyone had left, and it’s hard to find reason for cheer, even in December.
Still, we can at least find solace in how good Zoom calls are. Right?
Forgive me: I shouldn’t poke at a sore spot. But as a COVID-weary world drags itself into a third year of lockdowns and online meetings, it does strike one as a bit strange that a fundamental thing like video calls are still so bad, often plagued by poor picture quality, stuttering connections and low quality sound.
This week, some hope arrived in the form of an expensive new webcam. Made by a new company called Opal, the C1 uses both tech from high-end cameras and software smarts to finally produce a webcam that produces a great picture. Tech sites posted glowing write-ups, with The Verge saying the C1’s image “look(s) far better in multiple lighting scenarios than any webcam” they had tested so far.
For $300 (U.S.), so it well should. But the stark difference between the Opal C1 and other webcams also highlights the fact that, too often in tech, a basic problem that affects millions goes unaddressed simply because focus lies elsewhere.
” in forever keeping its eyes on the horizon, tech also has allowed day-to-day issues — the sorts of things people need to make the material circumstances of their lives better — fall to the wayside ” Is this a fair and accurate statement?
” Facebook is busy creating a metaverse that it’s possible no one wants, while the problems of misinformation and polarization on the platform linger. ” Is this a fair and accurate statement?
This “technology” doesn’t look like much more than a version of social network mapping, which just shows the connections between people and things, combined with project management software. How might you put this to other uses?
Does it make sense to use this sort of technology to write college papers?
Grocery delivery startup Tiggy is a new player in the Canadian quick commerce space, announcing Friday $6.35 million in seed funding to get its dark stores up-and-running to accommodate 15-minute deliveries.
If you are dreading having to cook your family’s Christmas Day dinner then you are definitely not alone.
But for future Christmases there is now a new alternative – get a robot chef to do everything.
A number of tech firms are now developing robots that can cook and plate up entire meals, both for commercial and domestic kitchens.
One of those at the forefront is London-based Moley Robotics, which is due to release its product, the Moley Robotic Kitchen, next year.
Attached to rails fitted to the ceiling, two robotic arms hang down over your oven and hob, and can cook more than 5,000 different recipes. You just pick the dish in question on a touch screen, add the ingredients it tells you to the built-in containers, and it does everything else.
It can turn on the oven and hob, pick up and put down saucepans and spatulas, stir, whisk and flip.
If you’re out and about in Toronto and you pass by a Geoffrey, the little pink delivery bots that residents of have come to know and love, you might want to snap one last picture or blow one last kiss, because soon, his kind may be off city streets for good.
In a motion that came as news to many, organizations and local politicans are asking that delivery robots and other types of sidewalk-bound A.I. be banned from the city due to them being potentially problematic for people with disabilities.
For those who are vision or mobility impaired in particular, the bots can provide a tripping hazard or physical obstacle, groups like the Accessibility for Ontarians with Disabilities Act Alliance argue, calling tools like Geoffrey a “a substantial and worrisome new disability barrier impeding people with disabilities in their safe use of public sidewalks and other paths of travel.”