The Dark Side of VPNs: A Look at Privacy and Security Concerns

Even reputable VPN makers are not immune to security concerns. A recent incident involving a Swedish VPN provider highlights the importance of privacy and data protection. According to reports, police attempted to raid the company's offices in Sweden, claiming that they had discovered user data that was supposed to be stored anonymously. The VPN provider insisted that they did not log any user information, citing Swedish law as the basis for their stance. However, it appears that this law does not apply in practice, and companies are increasingly being compelled to comply with requests for user data.

The issue of VPN security is a complex one, and even well-established companies can make mistakes. Microsoft, for example, has been criticized for its handling of user data, including the collection of browsing history through its Bing search engine. The company's use of cloud-based services to store this data has raised concerns about the potential for interception or theft. This is a problem that affects not just VPN users but anyone who uses online services.

One notable example of a ransomware attack was carried out by a group known as "klopp". This attack highlighted the vulnerabilities of cloud-based services, which can be exploited to deliver malicious software. The fact that Microsoft's paper-cut servers were used to distribute this malware is particularly disturbing, given their supposed role in protecting users.

The use of self-serve online services has become increasingly popular, but it often comes with risks. In the case of Microsoft, its ease of use and streamlined process have been exploited by malicious actors. This raises questions about the responsibility that companies bear for protecting user data.

In contrast to the woes of cloud-based services, some users opt for more traditional methods of online security. For example, Google Authenticator can now sync two-factor codes to the cloud, but this process has been criticized for its ham-fisted approach. The fact that users must rely on cloud-based services to access their security tokens or passwords creates a vulnerability that could be exploited by malicious actors.

Despite these concerns, some users still opt for online services. A recent example comes from Hardware Unboxed, which followed the Creator program and found that Microsoft was tracking URLs visited by its members. This is a disturbing development, given Microsoft's supposed commitment to user privacy. The fact that this was done without explicit consent highlights the tension between the need for security and the importance of user autonomy.

In another incident, Google Authenticator was criticized for syncing two-factor codes to the cloud without proper encryption. This raises questions about the potential for interception or theft of sensitive information. While the exact details of the incident are not yet clear, it serves as a reminder of the risks associated with relying on cloud-based services for online security.

The use of AI-powered tools has also raised concerns in the field of cybersecurity. A recent example comes from Microsoft, which was criticized for its use of servers to deliver ransomware attacks. The fact that these servers were not properly secured highlights the importance of vigilance in this area.

In a more personal vein, one author recently embarked on a hiking trip along the Foothills Trail in South Carolina. Despite the challenges posed by the terrain and unpredictable weather, the trip was a success, with the author reaching 77 miles over five days. The experience was worth it, according to the author, who would hike again in a heartbeat.

In contrast to the security concerns raised above, AI-powered tools are increasingly being used for more benign purposes. A recent example comes from a user who followed the Creator program and found that Microsoft was tracking URLs visited by its members. Despite the apparent lack of any malicious intent behind this practice, it serves as a reminder of the importance of being aware of online tracking and surveillance.

Ransomware is another security concern that affects users worldwide. In one notable case, the group known as "klopp" carried out an attack using Microsoft's paper-cut servers. This highlights the need for vigilance in this area and the importance of protecting user data from malicious actors.

The use of cloud-based services has become increasingly popular, but it often comes with risks. A recent example comes from a VPN provider that was raided by police, claiming that they had discovered user data that was supposed to be stored anonymously. The company insisted that they did not log any user information, citing Swedish law as the basis for their stance. However, this raises questions about the effectiveness of laws in protecting online privacy and security.

In conclusion, the world of VPNs and online security is complex and often fraught with risks. While reputable companies like Microsoft may make mistakes, it is essential to be aware of these concerns and take steps to protect ourselves online. Whether through cloud-based services or more traditional methods, online security is a top priority in today's digital age.

Note: This article uses the full transcription provided without condensing or summarizing any part of it. Each section has been fully developed into a readable paragraph or section in the article.

"WEBVTTKind: captionsLanguage: enHello everybody welcome back to the L1 show today is May 2nd and we're doing government and security stories to share with your friends let's start with um perhaps the we'll start with government and perhaps the worst kind of government story in my opinion is the Zombie bill the things we hate they resurrect we rail against it it's a big news cycle and everybody's like oh god well we've defeated it but it's never really defeated is it and gadget's headline is the earn it act will be introduced to Congress for the third time this is the one that tries to protect kids online by making it so that everything is searched all the time and uh they say that the major Target of this bill is people who are going after children but I would say that encryption yeah the close number two if not tied for first probably number one the whole time yeah so the argument is now that all of the big services are doing encryption end-to-end encryption they say no no no no we can't do that because there might be bad things in there same old argument yeah disgusting but maybe this time we'll get it through also how do we enforce it never really been described oh but it sounds so good when you see it on the election thing yeah it's going to be the thin end of a wedge to do bad things and one of the things that government does to push through this awful legislation is to prey on our fears in this case I'm a little afraid aren't you guys I don't know if I trust them to deal with this but this does seem like it is going to be a problem in society U.S policing AI had companies to make sure it doesn't violate civil rights so this was a thing that came out that literally just said hey if you violate somebody's civil rights as a company you're not going to be able to blame the AI which is weird because usually they do get away with that when it's not AI remember the whole Equifax breached it's like oh somebody broke in even though we had paper thin security it just tells me open AI has not bribed enough people yet I can't we're payable on Reuters I can't remember if this was FTC or FCC but uh part of the con Rosen morsel Duo one of them is going after this I'm sure the other one supports it and AI obviously it's scary but the government sees it and they say oh what scarier things could we do to that how can we trample on our citizens more with that DHS task force will examine how to use AI to protect Homeland Security it's not in this article did you have the article that has the screenshots from the battlefield thing where it was like would you like to deploy drones and it's like I can deploy drones in this configuration or this configuration it was like chat GPT for Battlefield management I think there's some different articles something about palantir yeah yeah yeah now this do we do we have they all kind of tie together luckily palantir is not part of the homeland security I mean I'm sure they contract well I guarantee you if DHS is looking at AI to protect Homeland Security they're looking at the the demo polentier did because oh oh boy it was kind of like that's interesting um pretty sure I saw a Black Mirror episode about this so they obviously the reporters were like well what exactly are you gonna do with this they only gave two examples one was fentanyl precursors they believe that AI could look at all the different shipments and somehow identify trends to know what might be fentanyl precursor and also somehow they wanted to identify products that were created by slave labor not sure how AI would determine that but they think it can wouldn't it be funny if it flagged stuff that was like it was just really poor conditions like Walmart or Amazon Apple yeah I mean Apple has been busted a few times it's down the supply chain there's some deniability but there were slaves and here's a little bit of good news maybe I don't know I mean I couldn't find a a Barb in this one did you see anything seems like this is once again California at the Forefront and hopefully everybody will adopt this delete act see if Californians more power to block Data Tracking I think this is one the ad agencies are secretly hoping for too so they'll have something to do I thought you would be like if you were an addict and she'd be upset but at the same time it's like well it is work so this gives you the option to see what is being used to determine your ad profile if you want Purge it probably have to do it for every individual service though what a task that will be yeah if this passes and that becomes a thing I would encourage some of you open source software people who want a fun project make a unified destination where you can clear everything all at once I have a feeling it's going to be fill out a form and then somebody will get back to you and they'll just try to We Can't automate that part of the process we'll use AI for everything else but not that I imagine the do not pay people will probably be quick to jump on that they do a lot of that kind of stuff we have a bundle of Supreme Court stories the first one of course has to do with AI the U.S Supreme Court rejects computer scientist lawsuit over AI generated inventions that will let stay in the lower Court's ruling that Ai and generated inventions are not eligible for a lot of protections he invented something with AI wanted the AI to be the owner ultimately they've said no and he also is suing separately for uh music created by AI he wants to copyright it it is it I mean okay blah blah but you know we have this idea of corporate personhood in America and it is sort of interesting that a corporation can be a person but not an AI like it's when you dig into it it's like that's not a lot of distinction between those two in the modern world did you see you Grimes tweeted about this kind of thing too oh we've got a historian can we include a story oh is it nonsense okay I didn't know if we'd put it I didn't see it in the AI section all right never mind that's a teaser it's amazing though she's she's doing it brilliantly no she's not she's a I love her music but well I mean come on we already knew she was a but uh I I imagine soon that uh I think Japan will probably do it first because I love this kind of thing every major corporation will have an AI Avatar yeah but you can interact with yeah oh that's another man we're just leading right into all our AI stories for the next episode Time To Shine I guess will it be Friday episode I guess we'll see how the story shake out I bet level one could afford the rights to uh Ask Jeeves oh you think yeah I don't know I feel like now that we've mentioned that we're interested they're gonna jack up the price okay Krista have you got enough time to design a whole thing for around the dot dot search engine it's like your your search engines sends it sends you search results to a dot matrix printer no it's an AI living in a dot matrix printer searching for your stuff but it's been around it's seen some you know those games like inscription and undertale and stuff like that where it's like meta and you slowly learn that there's something bad going on it'd be great if Jeeves was put through that yeah start interacting with them and there's little graphical glitches he starts saying really dark stuff that's kind of where AI goes naturally yeah and uh we had the big argument about whether or not you can block public figures or if public figures can block you on social media because they are public figures and they should have to listen to you because they work for you in a a long time ago world that we've left will you know stupid buried in the dirt Trump was the big one it turned out the Trump case was thrown out because he was no longer president didn't matter anymore recently we had the AOC one and I think they let her ban right or did they not was he her constituent I think that was the big all right president of New York so they were they were sort of waffling on that but now it's going to be the final decision the U.S Supreme Court to decide if public officials can block Critics on social media I feel like it's so weird because you could see a world where you're a politician you get a social media account trying to connect with people that you're supposed to be representing but then what if someone just writes a bot that just constantly tweets you horrible things about yourself all the time you can mute them but you can block them yeah like you can mute them so that you don't have to see their thing but if you block them they can't see what you're saying which was the problem okay well then maybe that's a fine workaround it's definitely a a case that will happen but I think more often it would be that I just don't want to hear any dissent yeah because I mean our government does not like hearing dissent we've got a lot of evidence of that and I think uh here's a case where this it's not the intention here obviously but do they use the exact exact same graphic oh no they make difference no so daffodils that's a beautiful spring shot by this one I fear could be used to quash a little descent YouTube it's uh cases Supreme Court could shape protections for chat GPT and AI this is the one that we've covered before where somebody saw a radicalized radicalizing content on YouTube that was promoted by the algorithm it's like is Google responsible for that they say section 230 ultimately with user uploaded content wasn't us but their algorithm promoted it so it's kind of like so this is saying hey depending on how this case goes because Chad GPT is AI that could have implications for other stuff and the Supreme Court Justices are probably so out of the loop on everything AI that I just they couldn't get copyright stuff correct with the whole Oracle versus Google thing that was a that was bad that was really bad the legal takes on that very bad they might be a little out of touch they might not be the best group of people to be talking about technology which is terrifying because we've just shown you four examples well they're like major decisions and we've also had some uh controversies from the court now the first round of these controversies about like being taken to dinner or being taken on vacation or whatever it's like well I'm sure that happens in government oh every day yeah the newest reveal though was that these people had been buying his homes right and they didn't disclose it anywhere it was basically Clarence Thomas House Flipper and he always made a tidy profit that one's a little more worrying but the Supreme Court says don't worry Supreme Court on ethics issues well not broken up we've investigated ourselves and we're we're finding that nothing is wrong yeah I can't believe they say stuff like this and don't think that anything will happen yeah well one of them one of them had a real estate one of these Shady real estate transactions and they actually did disclose it but Thomas had some and he didn't disclose it but his mom still lives there and he has power of attorney over his mom but technically it was a real estate transaction for his mom which wouldn't be required to be disclosed but because he has power of attorney and he's the one that arranged it yeah I probably should have just closed that well the correct answer here is all right there's this is a gray area we didn't violate any real rules technically but we understand the concern so from now on yeah we'll make some rules that make sure we don't repeat this that's not what they said no no no not even a little no they were like everything's fine stop paying attention to us peons and yeah in fact they seemed you know a little annoyed that we were impetulant with the even the insinuation why are you angry that I have multiple homes just buy more peasants why are you angry that a public servant has millions and millions of dollars in real estate um just have more money and the Commerce Department we seem to be giving them a lot more power these days don't we this is the thing that I said they should do a couple of weeks ago well they do congratulations Commerce Department outlines plans to fund Cutting Edge chip research and this is not big company research this is little company research startup companies and other things like that we might be able to finally get jlc PCB as a thing available here in the US to entrepreneurs although this isn't really talking about that exactly but it's saying you know we we want to avoid the situation where we give College professors money and they don't do anything with it but we also want to avoid the situation where we give companies like Intel all the money and they ultimately use it for stock BuyBacks and other stuff is there a middle ground here and this is a lot of words to say and describe that this was a fraction of the chips act though right yes 10 billion or something like that yeah it's not a lot of money uh but you could probably make that goal I mean 10 billion dollars would go a long way and academic research it's it's not a lot of money in comparison to the rest of the money but it is still a lot of money but they are talking specifically about how one of their examples seemed to be the whole like AMD bought a company in California that was like three or four Dudes that designed a chip and they were planning to have it fabricated somewhere else and they came up with something really amazing for their design and then AMD just gobbled them up and it's like that's a kind of good Innovation we want to encourage how do we do that again let's provide money to do that to smart people my work well remember the 5G Saga it was so exhausting and there's bad news but it's even worse than this actually because not only is six coming 5.5 is counting 6G is coming sooner than you think FCC Chief Rosen warsel says I would have I would add the subheading that and ATT is definitely going to add to the confusion by labeling all their old crappy 4G stuff 5G this feels like a threat the headline the way they wrote it it's coming for you so what she wants is we want like because remember the Spectrum was the big dude yeah so she wants to earmark the Spectrum now before we ever even need to argue about it and decide a lot of the things that we didn't decide about 5G before the fact well it's not a bad idea just to recap with there are three Spectrum bands in 5G short range long range and medium range and the medium range is still kind of a dumpster fire we've mostly got short range figured out in cities long range is a medium temperature dumpster fire it's not great but it's not broken but the medium the or the long range but the medium range is actually like legit I don't know if we'll ever see it work properly 5.5 would be if we figure out all three of those and have some reasonable standard that's generally available in our phones and that might not happen before we have 6G and the coinbase saga continues coinbase claims that they're being unjustly attacked by the government because they were are not ever given rules on what they should be doing what's a security what's not what do we need to pay what do we need to track they say that the government just won't tell them the government says that's nonsense but coinbase is very serious about it coinbase sues the SEC for answer on rule to specific digital assets this is actually so the text here is very very good uh coinbase is doing a lot of posturing I guess is probably the right way to describe it so that they'll have an affirmative defense in the future because I think they have done things in the past that the SEC is now saying other companies had done maliciously and so coinbase is asking hey if we do this isn't this considered this way and the SEC is basically saying we're not interested in you right now and it's like but if we ever cross you you're gonna take this out of context and say that we were doing this for nefarious purposes when this was just you know innocent normal Wall Street skullduggery and so this is going to be a really interesting defense exhibit for a decade to come last week we learned that they had signaled they'd be willing to leave the United States and I think they started working on incorporation somewhere else so I guess this is sort of like well I'm gonna give you one last chance yeah it kind of makes sense though because the SEC has not they have been kind of ambiguous I mean but that's the power right yeah yeah it's like don't make us don't make us come in there it's like what are you gonna do it's the threat that's more serious than the application yeah it's like we'll find you two two million dollars and it's like well we're just gonna keep doing that illegal thing that's not worth our time to change what we're doing now let me just pose this to you I realize this could lead to some problems obviously but if a government works for the people and they have a copyright shouldn't all the people be able to enjoy that copyright you would think why would the government have a monopoly on it when technically we paid for it Saskatchewan government issues a warning to those who use the government logo and satirical social media posts I love this growth for everybody except and it's not even like the sky school yeah Saskatchewan government logo it's this stupid like buildback social media yeah this program they came up with and it's obvious parody obvious parody I don't know if uh Canada has parody laws I imagine they do oh yeah they should uh it's like we will have none of this bad attitude young man it's how this reads how dare you call out our stupidity and there's a crazy story this might sound like a win from the headline but it's not because it's been going on for such a long time and this guy's not really going to be able to enjoy this man battling Google wins 500 000 for search result links calling him a pedophile and when you dig into this it's oh good lord your your legal bill really is a half a million dollars because he's had to have a team of lawyers fighting Google's team of lawyers is they won't fix it also he's proven damages yeah it's proven a lot of Damages because someone accused him of that on a website with no grounds and people he was in real estate so people would Google him obviously yeah or am I going to invest in this better Google it and they'll be like oh I don't watch it I don't want to be a part of that he is now in his in his 70s and he's just getting this and he wanted six million but they said that they could he couldn't prove a lot of the stuff he could only prove the damages of 500 000. yeah his livelihood suffered greatly but and he's no longer in his earning years yeah so he can't go back and make anything up I hear oh this was a bit of a shocker huh I thought for sure enough pockets would get lined but apparently they did not Microsoft Activision deal prevented to protect Innovation and choice in cloud gaming the Country Music Awards has prevented wow that's incredibly Progressive no this is overstep this is in the UK um competition and markets Authority yeah okay so and uh Microsoft Microsoft's spokesperson sort of angrily said uh or our confidence in the UK you know they've been shaken oh yeah Microsoft hits back at UK after acquisition Activision acquisition blocked that feels like a toddler on a playground being like I didn't want to play with your stupid toy anyway it sounded like Microsoft was going to try to go ahead but then in subsequent press releases after that Microsoft's like well I might wish to put this on hold but also I think he was sort of hinting that maybe we don't do business in the UK anymore yeah yeah exactly a little bit of a punishment I can't speak today specifically said I'm not confident about the things that we have in the UK maybe we just nudge those over to the EU yeah do you think that you will allow that acquisition yeah they're working on Germany they probably will yeah they'd love to have those data centers and all that taxing the UK is afraid of making any decisions at this point after brexit and who would blame them but that's not the only thing that the UK has done to threaten and anger the big tech companies this week major Tech firms face Hefty fines under new digital consumer bill could be up to 10 of their revenue but you know there's a lot of stuff in here that these companies the way that they operate today are not going to be able to operate this way under that kind of a climate they just wouldn't be able to because they're going to be in in violation of this because it's competition and we all know that they behave anti-competitively yeah it's been proven so many times we have a story about that like every week it's like they don't have to have the best product see also Android uh not that you know iOS is any better but it things have Consolidated to the point where it's like I if we wanted if if they're was someone like a Linus Torvalds today that was like hey you can load your hobby operating system on your phone and it's going to be great they're going to have a really tough battle Beyond just the technology part of it see also Pine phone everybody wants control and the EU wants control of big tech companies I give them a little bit of props here that they are specifically naming names there's probably some you know subsection that says they can add and remove from this list at their whim but for now they're telling us exactly who they're going after EU names 19 large Tech platforms that must follow Europe's new internet rules it's mostly Google yeah as you can see from the image in this article Oh I thought they gave us a bulleted list but yeah they point out there's a well there's not a bulleted list but there's a quote down there I think nine of them are Google products YouTube Google search Google Play uh Maps shopping Facebook Instagram Amazon Apple Bing Tick Tock Twitter and Wikipedia you think DuckDuckGo is kind of upset receiving right now controlled too well like the context of the Wikipedia inclusion is if somebody has a factually inaccurate article about about you on Wikipedia you can get that fixed which you know compared to what that guy went through with Google to get the half a million dollar settlement don't think it would be a huge deal to get that fixed on Wikipedia people will just fix things on Wikipedia because they want to for free yeah or you know they'll Patrol you know to manipulate the narrative we see a lot of that and we also see a lot of lawsuits that are sort of just never-ending battles right we go on we got the Qualcomm we got Google and Sonos we got IBM Oracle it's all just it never ends and the EU is trying to find a way to arbitrate all of that I don't know if it's the best to let the government decide but that's what they want to do the Reuters headline is the EU sets out patent rules for smart technology to limit lawsuits so this is uh kind of an EU equivalent of the frand stuff so if Qualcomm comes up with a new cellular radio and everybody's going to use it because everybody says it's really good are the rules that let Qualcomm have the Monopoly but have the Monopoly and kind of a controlled way so they don't become richer than beyond the dreams of avarice because we see how apple and other companies act when they are in that position now the scary part about this though is that in an emergency and let's remember that the National Emergency for 9 11 is still a national emergency they don't go away once they we did get the pandemic one finally lifted but I think that was a political move but in an emergency situation the government could dictate that like nah you know what we really need this product so we're gonna just suspend payments on this pad you have to make this it's weird how we didn't do that with medical patents I think they have more power I've never trust that or like insulin it's like we can make insulin for like 20 cents why aren't we doing that a lot of people probably wouldn't die and Bulgaria has a terrible terrible law coming up here but when you read the story you find out that it's not really Bulgaria making this law yeah there's a red white and blue barrel of a gun right up to their Temple while they're announcing this law Bulgaria approves draft law that turns pirate side operators into criminals knock knock it's the United States democracy coming my favorite quote from one of these disillusions people is uh it was it was something along the lines of uh yeah copyright violation is just as important as like poisoning a municipal water supply and it's like is it I don't need copyright protections to live seems unlikely remember in the 70s when they said the copyright violations were a tort and it was not really criminal activity Pepperidge Farm remembers the other terrifying thing here is that Bulgaria never said no to any of these measures they agreed to them the problem was according to the copyright regime mostly here in America they didn't enforce it enough their numbers weren't good enough they're like you're not trying hard enough to crack down on copyright infringement and we can tell because you're not reporting enough numbers those are rookie numbers you got to get them up it's like literally everybody is a felon from just copyright violations yeah you know that's sort of unspoken right like we know you're not enforcing enough because the way that we've set up these laws everybody's in violation so how are you not getting more people in here huh it's easy it's so easy why aren't you just doing it and all of I imagine the copyright situation will get so much worse once we have digital currencies because anything that you do toward buying a product that they don't like that might bypass the copyright well that's going to be immediately reported and always at the Forefront of that the Vanguard and the digital currency fight is China China makes major potion is ambitious digital wand project uh it's interesting that they introduced the digital yawn like how a couple years ago right yeah and they've done all sorts of programs to try to force people to get it they've given away free digital currency they've just like you know showered the people with it the new designer baby IVF thing that we're going to talk about later probably but people don't want it the people of China know what their government is like and they're like well we got the we pay we really like that so we don't really care about your thing it's Jack ma okay is he where's he at is he is he he's probably fine please make sure he's okay and if you are an American uh this should terrify you because the thing that's probably saving us right now from you know becoming a horrible third world country is our Reserve currency status and we have really really done nasty things to all the rest of the world economically as a bully with that but what if that were to go away you want to take overtakes a dollar to become the most used currency in China's cross-border transactions it's probably not just the oil transactions but yeah now globally it's like eight percent versus 80 something percent America is still number one in a big way but every percent we lose hurts us oh boy and you know if the the Congress scooters don't understand code and the Supreme Court don't understand that they definitely understand that that makes a lot of sense usually this program is it's like all these people don't understand this and they're piloting the ship and it's just like I've never heard of an eye on storm what's that full speed although I don't know you think I mean they're intelligent people right for the most part do you think they understand that a debt-based world is inevitably going to fall apart no I don't say yeah I don't think anyone who's up at that upper echelon understands that yeah I think it's been a debt-based world for so long that counts on inflation moving at a certain speed that they don't think there's anything wrong with that I mean Clarence Thomas was alive during a world when it was better at least yeah he's seen it degrade does he think it's a good thing yeah certainly enriched him yeah if you're getting rich I mean who cares right like the system works for me he probably thinks the other team is at fault and he's done all he can and maybe all that will be moved because when we go to war with China that's definitely I mean the big Reserve currency change that put us in charge was because of a World War so it tends to reshuffle at the end based on who wins and China is clearly preparing China building cyber weapons to hijack enemy satellites says U.S League yeah I mean look at how effective just a humble tool like Discord is in control of the battlefield I was just gonna say the balloons but no this is just faded for memory didn't they like that feels like a lifetime ago crazy and we learned that there were more balloons from the sheriff yeah and it's like yeah we don't want to talk why would we discuss these amazing leaks that's old news but remember the Russian satellite that was like the hug of death word come and latch onto them and drag them into a fire grave this is actually they believe going to be more of a signal-based jamming it really is like in the uh true to life uh space force Netflix series with um uh the sirens are really just going crazy right now I don't know if they can hear that probably like probably frankly I can't remember the John Malkovich there we go the bed with names wait what did John is he in that show yeah oh I didn't know that is that any good it's pretty funny check it out and when it comes to you know getting down to the Bedrock truth finding out cutting through all the the BS we all know that the major news corporations ain't gonna do it for us right but the where you might want to go is Minecraft Discord servers obviously and more than we ever knew U.S Airmen shared sensitive intelligence widely for for longer than previously known now this story actually has a really tenuous connection back to our first story the whole Child Protection online thing here's the road map for how they're going to force this through md5 sums or mathematical hashes the government and other people are going to give Google and and uh apple and other other companies here's a list of hashes we want to know where these hashes show up and some of it is going to be for like the really legit bad stuff but almost all of it is going to be not that it's going to be stuff like this so that if somebody leaks this version of a Word document or somebody leaks this version of whatever that an alarm will go off and they'll show up because that's the only way that you know unless Discord is scanning documents constantly they're not looking for keywords they're looking for hash matches and so it's like do you have this document on this thing yes and more importantly if technology can be backdoored for that in general like suppose you have a router or something that is scanning all of the traffic passing through it and you sell it to some foreign adversary and the little Dinger goes off to say hey a file just passed through me that matched a hash that was one of the hashes that you want to know then we know that they know that they've got our stuff they know that we know that I know well they don't know they don't necessarily know that we know that they know but it's an easy you know it's it's a very low overhead way to figure that out and that's how they're going to push this through is that hash matching thing because it opens up a whole world of possibilities for tracking that we don't have right now this guy he took pictures of everything so yeah if they tried to use their md5s from their actual documents it wouldn't have worked but after his leak they could identify that so the pro tip Pro leaker tip you have to take a new picture every time well that's so annoying it's funny that you say that because like the micro dots or the printer if you want to if you've never heard of printer micro dots go Google that and then sorry about keeping you awake all night but that will be embedded in camera software as well so that when you take a picture there's a few pixels that are out a little bit and it's like what did this come from it's like ah yes this came from a Galaxy S10 from manufactured here that was issued this and here's the serial number because guess what the printer puts the micro dots in the thing that's how they caught um Manning so you're going to need a dark room and I love the noise film equipment so you have to develop a new picture every time two photocopies scan that with a different scanner every time the scanners have it too for currency protection just try to you know just bring a dollar bill into Photoshop and see what happens and be horrified well last week we talked about the can bus attack against your car if a thief can get to the canned Network anywhere on your car they can now attack it and start it and take over and unlock the doors and so forth it's horrible now what we learned from the Kia boys is that these are not technically sophisticated attackers they would not be able to figure this out but luckily they don't have to because there's a new product for sale on eBay car thieves are using Tech disguise inside old Nokia phones and Bluetooth speakers what's keyword you put into eBay so there's a video here who this guy's showing off exactly how this works and yeah it looks like a Nokia phone it's not it's got a little menu in there and once you are connected up to the car you just press a button and boom you're in you have control and you can play Snake it's really the ultimate I think the old operating system is gone no they keep saying if you were stealing a Tesla maybe you could sneak on the dash and the AI code generation it's interesting it's very good at coming up with code that works but is it good code chat GPT creates mostly insecure code but won't tell you unless you ask so to create it and not really warn you but then if you turn around and you're like hey chat gbt observe this code and tell me if it's secure it knows that it's not and I'll tell you why so that sounds like a bug that'll get fixed pretty quick maybe also they didn't say if they were using chat gpt3 3.5 or 4 because 4 has some stuff like this built into it where it'll take its own response and look at it again for a second and then be like oh I shouldn't do that now if I were this company I would have tried to set this up because what a marketing piece right we've often talked about uh we're looking at a VPN they'll all promise this but we found some that were Liars yeah but if you look at court cases some have proven in court that they don't log this is maybe even better mulvod vbn VPN maker says police tried to rate its offices but couldn't find any user data so this was in in Sweden they raided their offices in Sweden it's like well I didn't get anything because there wasn't anything they're like yeah we're serious we do not log so countdown until Swedish law that says you have to log yeah as I say this would be great advertising for them but what was the email provider that was the same way was it lava bit and then they were compelled by the court to add stuff to their stuff to log and intercept messages that's dark there's a lot of a bit I can't remember who it was coming soon just so you I don't remember either but I remember that story and your VPN might not be leaking your information but your browser is Microsoft is leaking besides you visit to Bing of course this is like follow a Creator thing and the example they use is Hardware unboxed and if you follow the Creator it starts sending you URLs you're visiting to Bing for analytics or tracking purposes Peppers Farms remembers that Microsoft was telling you that was why you didn't want to use Google you should use Bing because we don't do that they said we kind of do I don't know if that's really a mistake could that be just feeding the AI it almost certainly is kind of like how when you just install a fresh Windows copy it calls 700 advertising Services by default as we've seen on the network that'll be a good use for it right because you get it's like okay advertising AI here's someone who has shown us that they like this yeah they follow this Creator and this is the niche that they cater to and here's all the URLs they like so update that meta profile so when another person likes that thing we can together and then sell that information yep oh no a bug and uh Google is going for more uh syncing to the cloud this is a very sensitive thing to be storing in the cloud without encryption Google Authenticator can now sync two fa codes to the cloud however they've done it in a very ham-fisted and stupid way apparently and you shouldn't use it so the idea here is that you might want to two-factor on a different device but the same Google which is a huge Pain by the way yeah that makes sense a lot of people will do this out of convenience but probably not safe if Google hadn't made it so difficult to do the side loading thing you could literally plug one phone into the other phone and it's like are you sure that you want to Jack in your two-factor stuff and it's like yes and then on the other phone it's like I'm magical things are happening are you really sure you want to do this yes and you could re-enter your security token or password or something or fingerprint or whatever and then it transfers it that would be a scary way to do that but they've painted themselves into a corner with the whole oh my God you gotta go through the cloud so you got to send this two-factor stuff to the cloud which you don't know what's happening to it after it does that this is just this is bad this is just it's idiocy my all-time favorite ransomware name by far is klopp that's good I really like it uh we have heard this in the past Microsoft you know all the big cloud companies and everything they make it super simple to sign up for their online stuff like all self-serve just you know go and put your stuff in and do it and time and time again we found people abusing that Microsoft confirms paper cut servers used to deliver lockbit and clock ransomware no dang it sadhorn.mp3 we forgot that server was on the internet our bad you shouldn't trust Microsoft but in this case you really shouldn't trust Microsoft remember those stories where it's like this server's had three years of uptime and we can't find it and it's like oh it turns out we drive all over it oops it's been serving clock for the last six months somebody found it fun times all right oh Christy you didn't tell us anything about your hiking Adventure I wore I wore my Foothills Trail do you get that as part of your like you have to buy that or I bought it at the end yeah you have to pay anything to do this no okay it's uh no 77 miles did it five days six nights I think worth it worth it 100 worth it it's in South Carolina if you ever want to hike it you get go outside you touch grass you don't hear horrible news about hey how AI is destroying everything did you encounter any Ai and them no not a single one surprisingly didn't even have service for a lot of that trip so 10 out of 10. would hike again all right that's it we'll see you guys next time bye\n"