|
Bulgogi Hoagie posted:in other news awful dumb biometric security system turns out to be exactly that Ugh its "my voice is my passport" not password get it right hsbc HSBC is a clown shoes org so not surprised
|
#
?
May 19, 2017 20:32
|
|
|
|
| # ? Jun 1, 2024 18:58 |
|
|
I met just the other day with a company that's doing high-quality voice transformations and synthesis. I look forward to their future $1.99 toy app breaking into HSBC.
|
|
#
?
May 19, 2017 21:10
|
|
|
Subjunctive posted:I met just the other day with a company that's doing high-quality voice transformations and synthesis. I look forward to their future $1.99 toy app breaking into HSBC. it's not that one that made that awkward, possibly-fake couple clips of obama and trump is it
|
|
#
?
May 19, 2017 21:13
|
|
|
it's them, but it's newer stuff
|
|
#
?
May 19, 2017 21:16
|
|
|
guys, help, what do I do?
|
|
#
?
May 19, 2017 21:25
|
|
|
https://twitter.com/willmanduffy/status/865667195577217026 logging onto apple stuff is one of the worst experiences I've had logging into anything, not sure how they make it so bad
|
|
#
?
May 19, 2017 21:46
|
|
|
every time I get a new iphone I clone it off a backup of my previous one this means that the last 3 or 4 phones I've had all have the same name the old apple login UI let you choose which device the 2fa prompt would be sent to but it only showed device name in the list and not type at least once I picked the wrong phone enough times to get locked out for a while
|
|
#
?
May 19, 2017 21:49
|
|
|
for some reason apple dont sync your list of devices you own with the list of devices you have enabled 2fa codes to be sent to, so i was sending codes to my old iphone for ages and wondering why it never worked and i had to use sms instead
|
|
#
?
May 19, 2017 21:50
|
|
|
apparently some fuckers are trying to kill wcry's kill switch: https://www.wired.com/2017/05/wannacry-ransomware-ddos-attack/
|
|
#
?
May 19, 2017 23:51
|
|
|
Why are people still publishing MalwareTechLab's name? Still seems an incredibly lovely thing to do, to continue to propagate that information or refer to him by his actual name in reference to the research he did.
|
|
#
?
May 20, 2017 00:13
|
|
|
haveblue posted:every time I get a new iphone I clone it off a backup of my previous one this is also a problem for systems authorized to use iTunes you have a limit of five, im maxed out, and three of them are named "James's iPhone" and I don't know which isn't used anymore
|
|
#
?
May 20, 2017 00:30
|
|
|
minivanmegafun posted:this is also a problem for systems authorized to use iTunes iOs and tvOS devices don't count to your limit of 5. It's only the iTunes app on Windows or Mac that count. I currently have two Apple TVs, two iPads, my iPhone, work computer and home laptop and I'm only using 2 of 5.
|
|
#
?
May 20, 2017 00:40
|
|
|
it doesn't tell you what time the device connected last?
|
|
#
?
May 20, 2017 00:42
|
|
|
anthonypants posted:it doesn't tell you what time the device connected last? Actually I went into my account to check. It shows the time it was 1st associated with the account. Turns out tvOS doesn't even show up on the list, so I was wrong on that. Only iOS and computers. All devices show a "remove" button, and for iOS the most recent active iPhone and iPad the "remove" is greyed out. Seems like it's pretty easy to ID and remove old orphan authorized devices.
|
|
#
?
May 20, 2017 00:51
|
|
|
i think the date connected and being able to remove devices ad-hoc is a newer feature. iirc you used to have to nuke everything and reauth your devices when you maxed it out
|
|
#
?
May 20, 2017 00:57
|
|
|
minivanmegafun posted:i think the date connected and being able to remove devices ad-hoc is a newer feature. iirc you used to have to nuke everything and reauth your devices when you maxed it out This is true, I had to do that more than once in the past. IIRC, the limit was in place due to the licensing agreements they had with music and movie industry.
|
|
#
?
May 20, 2017 01:02
|
|
|
the google play store calls them by their model number, which i thought was uselessly opaque because who knows what an sg-1727r is but the apple version manages to be worse somehow?
|
|
#
?
May 20, 2017 01:03
|
|
|
flakeloaf posted:the google play store calls them by their model number, which i thought was uselessly opaque because who knows what an sg-1727r is They're all dumpster fires.
|
|
#
?
May 20, 2017 01:04
|
|
|
Migishu posted:guys, help, what do I do?
|
|
#
?
May 20, 2017 02:54
|
|
|
flakeloaf posted:the google play store calls them by their model number, which i thought was uselessly opaque because who knows what an sg-1727r is it's the same model number that would show up in "about" in the settings at least, so there's something you can go check when you have the phone handy. you can also manually rename the phone in that area, which will get synced to google shortly after and then instead of saying "sarnsumg butt84x" it says "my dead gay phone" or whatev
|
|
#
?
May 20, 2017 04:35
|
|
|
Malcolm XML posted:Ugh its "my voice is my passport" not password get it right hsbc "my voice is my password" is what stebe said when they're introduced voice verification for macs
|
|
#
?
May 20, 2017 10:02
|
|
|
Chris Knight posted:"my voice is my password" is what stebe said when they're introduced voice verification for macs https://m.youtube.com/watch?v=-zVgWpVXb64
|
|
#
?
May 20, 2017 11:19
|
|
|
https://twitter.com/bofa_tips/status/864131825291210757
|
|
#
?
May 20, 2017 14:29
|
|
|
Migishu posted:guys, help, what do I do? Rewind the cassette tape.
|
|
#
?
May 20, 2017 15:42
|
|
|
apple actually uses 2 different kinds of multifactor auth. they first did what they called two-step verification as a hasty response to a surge in security issues. it was replaced later with proper two-factor authentication once they had time to go back and build it into every supporting device and service. the latter is much nicer and the former I think is the one I had the unidentified phone issue with also the detailed list of phones to remove the old ones is behind a login every time for obvious reasons so once I realized I had hosed up I still had to wait to fix it haveblue fucked around with this message at 17:16 on May 20, 2017 |
|
#
?
May 20, 2017 16:58
|
|
|
flakeloaf posted:the google play store calls them by their model number, which i thought was uselessly opaque because who knows what an sg-1727r is that's still more useful because you can copy and paste it into Google and get a picture of it unless you go through phones so fast you have more than one of the same model in which case, well, you need to learn how to close your hand on an object I guess
|
|
#
?
May 20, 2017 17:14
|
|
|
the former two-step may even be more secure than two-factor because it used a proper recovery key instead of a "trusted" phone number
|
|
#
?
May 20, 2017 17:15
|
|
|
when people refer to sms as being a poor way to deliver a login pin, is this mainly because it's possible for a determined attacker to intercept the message, or because it then places security for that number in the hands of a call center worker at verizon?
|
|
#
?
May 20, 2017 17:24
|
|
|
Thanks Ants posted:when people refer to sms as being a poor way to deliver a login pin, is this mainly because it's possible for a determined attacker to intercept the message, or because it then places security for that number in the hands of a call center worker at verizon? Yes.
|
|
#
?
May 20, 2017 17:48
|
|
|
haveblue posted:the latter is much nicer and the former I think is the one I had the unidentified phone issue with the latter is clumsy as gently caress if you have someone trying to log into an account where you aren't (like tvOS at home while you're at work). if you dismiss the pop up it invalidates the code, so you can't text it to them. you have to be on an active voice call already, or find another device. (and then sometimes it punts back to the primary u/p dialog without an error message of any kind so  try again I guess)
|
|
#
?
May 20, 2017 18:03
|
|
|
Volmarias posted:Yes. also cant basically any telecom operator spoof device registrations and get all text messages forwarded through them since ss7 is such a poo poo protocol? i remember reading about that a while ago fake edit: yep
|
|
#
?
May 20, 2017 18:16
|
|
|
Mr.Radar posted:also cant basically any cell network operator spoof device registrations and get all text messages forwarded through them since ss7 is such a poo poo protocol? i remember reading about that a while ago pretty sure the iranian govt has been doing this for a while now to track activists and such
|
|
#
?
May 20, 2017 18:17
|
|
|
Subjunctive posted:the latter is clumsy as gently caress if you have someone trying to log into an account where you aren't (like tvOS at home while you're at work). if you dismiss the pop up it invalidates the code, so you can't text it to them. you have to be on an active voice call already, or find another device. sometimes when I'm helping people with their iCloud the GeoIP lookup gets it wrong and the person loses their poo poo for and says they're being hacked when they're sent a message going HEY A LOGIN REQUEST HAS BEEN MADE FROM <city 200 miles away> despite being told 'gonna send a confirmation message' seconds earlier.
|
|
#
?
May 20, 2017 18:19
|
|
|
Subjunctive posted:the latter is clumsy as gently caress if you have someone trying to log into an account where you aren't (like tvOS at home while you're at work). if you dismiss the pop up it invalidates the code, so you can't text it to them. you have to be on an active voice call already, or find another device. it also is only useful if you fill your life with apple devices and those apple devices are presently functioning properly. as I found out when the touch sensing on my iPhone shat itself and I was unable to set up a Genius Bar appointment because when I tried to log into my apple account using my desktop it sent a notification to the iPhone which I couldn't unlock to display the code.
|
|
#
?
May 20, 2017 19:07
|
|
|
https://twitter.com/MalwareTechBlog/status/865940879261003778 (supposedly The Sun is the newspaper in question)
|
|
#
?
May 20, 2017 20:09
|
|
|
Meat Beat Agent posted:https://twitter.com/MalwareTechBlog/status/865940879261003778 unsurprising. when people say daily hail is the worst of the british press, they just havent opened the sun even once
|
|
#
?
May 20, 2017 20:12
|
|
|
Jimmy Carter posted:sometimes when I'm helping people with their iCloud the GeoIP lookup gets it wrong and the person loses their poo poo for and says they're being hacked when they're sent a message going HEY A LOGIN REQUEST HAS BEEN MADE FROM <city 200 miles away> despite being told 'gonna send a confirmation message' seconds earlier. happens if the login device is on a VPN too
|
|
#
?
May 20, 2017 20:13
|
|
|
the entire british tabloid press needs to be burnt to the ground
|
|
#
?
May 20, 2017 20:13
|
|
|
except the sunday sport, they can stay they probably have the most integrity of the lot anyway
|
|
#
?
May 20, 2017 20:30
|
|
|
|
| # ? Jun 1, 2024 18:58 |
|
|
what's the point of printing his address?
|
|
#
?
May 20, 2017 20:38
|
|