Fake Amazon survey popup
I was reading a cool story on BoredPanda.com this afternoon when suddenly my mobile browser was redirected to a fake survey purporting to be from Amazon.com. I’d seen this once before so I thought right away to screenshot it and save a copy of the page.
First it put a pop-up that enticed me to click “OK.” I declined. 🙂 After moving past that dialog, the user is presented with brain-dead-easy survey questions, promising an iPhone X or a $1000 gift card as a reward:
Somebody needs to go to jail. Several somebodies, in fact.
Over the past decade, out-of-state drug companies shipped 20.8 million prescription painkillers to two pharmacies four blocks apart in a Southern West Virginia town with 2,900 people, according to a congressional committee investigating the opioid crisis.
The House Energy and Commerce Committee cited the massive shipments of hydrocodone and oxycodone — two powerful painkillers — to the town of Williamson, in Mingo County, amid the panel’s inquiry into the role of drug distributors in the opioid epidemic.
“These numbers are outrageous, and we will get to the bottom of how this destruction was able to be unleashed across West Virginia,” said committee Chairman Greg Walden, R-Ore., and ranking member Frank Pallone Jr., D-N.J., in a joint statement.
Source: Drug firms shipped 20.8M pain pills to WV town with 2,900 people | Health | wvgazettemail.com
Another spam email I got today. Not the only one, it seems.
In my opinion 330 usd is pretty enough for this little false!
Date: Mon, 29 Jan 2018 22:08:52 -0700
From: “Skylar_Moodie” firstname.lastname@example.org
Reply-To: “Skylar_Moodie” email@example.com
Ticket Details: WUV-273-205439
Camera ready,Notification: 30-01-2018 07:08:53
Status: Waiting for Reply 85xuHa8n4kjjbiu84mbeioi1j438Hu5_Priority: Normal
If u were more attentive while playing with yourself, I wouldn’t write dis message. I don’t think that playing with yourself is extremely bad, but when all colleagues, relatives and friends receive video record of it- it is awful news.
I placed virus on a web-site for adults (with porn) which was visited by you. When the target press on a play button, device begins recording the screen and all cameras on ur device begins working.
Moreover, my virus makes a dedicated desktop supplied with key logger function from your system , so I was able to get all contacts from your e-mail, messengers and other social networks. I’m writing on dis e-mail because It’s your working address, so you will read it.
Interesting. Glad to see the military conducting exercises without GPS, now that Russia has shown its willingness to jam it. In war we must be prepared to go without this incredibly-useful resource.
The year’s first iteration of the USAF’s premier set of aerial war games, known commonly as Red Flag, is kicking off today at Nellis Air Force Base just outside of Las Vegas, but this exercise will be different than any in the past. Not only is it the largest of its kind in the exercise’s 42 year history, but the USAF is going to blackout GPS over the sprawling Nevada Test and Training Range to challenge aircrews and their weaponry under realistic fighting conditions. The tactic will spill over throughout the region, with warnings being posted stating inconsistent GPS service could be experienced by aircrews flying throughout the western United States.
Source: USAF Is Jamming GPS In The Western U.S. For Largest Ever Red Flag Air War Exercise – The Drive
Bonus: Read more of the Navy’s rationale for blocking GPS.
Hackers hacking hackers. Reason #47,672 why I love the Dutch!
According to a report in the Dutch newspaper de Volkskrant, the General Intelligence and Security Service of the Netherlands (AIVD)—the Netherlands’ domestic intelligence service—had hacked into the network of a building at a Russian university in Moscow some time in the summer of 2014. The building housed a group running a hacking campaign now known as “Cozy Bear,” one of the “threat groups” that would later target the Democratic National Committee.
Russia’s hack of State Department was “hand-to-hand” combatAIVD’s intrusion into the network gave them access to computers used by the group behind Cozy Bear and to the closed-circuit television cameras that watched over them, allowing them to literally witness everything that took place in the building near Red Square, according to the report. Access to the video cameras in a hallway outside the space where the Russian hacking team worked allowed the AIVD to get images of every person who entered the room and match them against known Russian intelligence agents and officials.
Based on the images, analysts at AIVD later determined that the group working in the room was operated by Russia’s Foreign Intelligence Service (SVR). An information and technology sharing arrangement with the National Security Agency and other US intelligence agencies resulted in the determination that Cozy Bear’s efforts were at least in part being driven by the Russian Federation’s leadership—including Russian President Vladimir Putin.
Source: Candid camera: Dutch hacked Russians hacking DNC, including security cameras | Ars Technica
The Awl provides an in-depth look at the outrageous “suggested for you” news stories that are on many media sites (like the News and Observer).
This is a chumbox. It is a variation on the banner ad which takes the form of a grid of advertisements that sits at the bottom of a web page underneath the main content. It can be found on the sites of many leading publishers, including nymag.com, dailymail.co.uk, usatoday.com, and theawl.com (where it was “an experiment that has since ended.”)
The chumboxes were placed there by one of several chumvendors?—?Taboola, Outbrain, RevContent, Adblade, and my favorite, Content.ad?—?who design them to seamlessly slip into a particular design convention established early within the publishing web, a grid of links to appealing, perhaps-related content at the bottom of the content you intentionally came to consume. In return, publishers who deploy chumboxes receive money, traffic, or both. Typically, these publishers collect a percentage of the rates that the chumvendors charge advertisers to be placed inside the grids. These gains can be pocketed, or re-invested into purchasing the publisher’s own placements in similar grids on thousands of other sites amongst the chummy sea, reaping bulk traffic straight from the reeking depths of chumville.
Source: A Complete Taxonomy of Internet Chum – The Awl
This seems to cross the “don’t be evil” line, Google. Tracking people after the fact? Really?
When it comes to tracking the precise location of an Android user’s phone, Google appears to use every means available—including Bluetooth-based location information transmitted to the company when the user might think they have Bluetooth turned off entirely.
A Quartz investigation found that a user can turn Bluetooth off on their smartphone running Google’s Android software, and the phone will continue to use Bluetooth to collect location-related data and transmit that data to Google. It does this by sending Google, among other things, the unique identifier codes of Bluetooth broadcasting devices it encounters. Such devices, known as beacons, are often used in stores, museums, and other public places to help phones ascertain their locations within buildings. Alphabet-owned Google does the tracking in part so advertisers can target “more useful” digital ads to users, but Quartz discovered that the company taps into an array of signals that can yield an individual’s whereabouts even when the user thinks they’ve disabled such tracking.
Source: Google (GOOG) can still use Bluetooth to track your Android phone when Bluetooth is turned off — Quartz