Connect with us

Tech News

Your phone could be giving hackers all of the info they need

(TECH NEWS) A study in Newcastle UK has found that your phone data maybe be what sells you out to hackers.

Published

on

sensors etiquette influencers

How do you hold your phone?

Hackers can get hold of your cell phone pin numbers and other passwords just from the tilt of the device when you type it in, a new research study shows.

bar
The culprit: your smartphone’s motion sensors.

Newcastle’s new discovery

The study, by computer scientists and security experts at United Kingdom’s Newcastle University, is causing an uproar in the entire tech community for its alarming findings.

In a report released this week, the study found that hackers can analyze your motion sensors and figure out your four-digit PIN with very high accuracy.

Researchers could correctly guess the pin 74% of the time on their first attempt, which increased to 94% accuracy after three tries. With only five attempts, the accuracy of the team was 100%.

Hackers love loopholes

This theoretical hack is possible because of a loophole in how web browsers share data between smartphones and websites. While highly sensitive information, such as location require explicit user permission, other data, such as device orientation, or size of the device screen (not seen as sensitive information) is shared with websites freely so that webpages can be responsive and interactive.

As shown by the researchers, such information is enough for a malicious website to hack into your device and decode your PIN.

Of the 25 sensors found to be playing a part in this issue, only a few require user permission before activating for certain apps. The rest are always on by default.

The devices

Dr Maryam Mehrnezhad, a research fellow in the School of Computing Science, said: “On some browsers, we found that if you open a page on your phone or tablet which hosts of these malicious codes and then open [another one], then they can spy on every personal detail you eventually enter.”

“And worse still, in some cases, unless you close them down completely, they can even spy on you when your phone is locked.”

Not practical

The public need not worry too much about this latest news, however. It seems that the methods used by the experts in the study itself faces many significant hindrances “in real life,” that would make the hack unlikely to be successful in the real world.

For example, the researchers needed a lot of data to train its hacking system, an artificial neural network, to acceptable accuracy levels.

Each user had to type 50 known pin numbers in, five times over, before the system learned enough about how users hold their phones to guess a hidden pin with 70% accuracy—a very unlikely scenario in the real world.

Stopping hackers early

Research studies like these are usually welcome by the tech world, as loopholes can easily be fixed before malicious parties can take advantage of such web weaknesses.

In 2014, for instance, hackers at the Hamburg Chaos Communications Congress demonstrated how pin codes could be extracted by simply taking a video of the user’s cornea movements, dubbed the “corneal keylogger,” as they entered data. Similarly, Firefox had loopholes that allowed hackers to track user activities via their battery status.

The latest sensors scare, although overhyped, shall need a sophisticated solution.

There seems to be no practical solution readily available. Apple and Google have been contacted about the issues by the university researchers, but there has been no official statements from either company.

#Sensorscare

Barnil is a Staff Writer at The American Genius. With a Master's Degree in International Relations, Barnil is a Research Assistant at UT, Austin. When he hikes, he falls. When he swims, he sinks. When he drives, others honk. But when he writes, people read.

Continue Reading
Advertisement
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Tech News

For meetings that should be an email? There’s an app for that

(TECH NEWS) If you’re tired of having your precious work time taken up by useless meetings, there may be a solution.

Published

on

standupmeet

Have you ever attended a meeting that turned out to be a waste of time and set you back on your work? I’m going to go out on a limb here and assume that every person reading this article is nodding in agreement.

Meetings, if executed appropriately (and sporadically,) can be effective. However, having weekly (or even daily) meetings that are designed to catch-up or give reports can add up to a ton of wasted time.

Across the board, meetings are generally geared towards productivity, and oftentimes they are counterproductive. So, how can you still get that need for touching-base with employees while still being productive? StandupMeet might just have the answer for that.

StandupMeet is a tool designed to make meetings more productive and agile. According to their statistics, more than $37 billion per year are being spent on unproductive meetings.

The main features include: the digitization of meetings, the instantaneous sharing of minutes, and the ability to assign actions and keep track of progress.

By making the meetings digital, you organize meeting points in one place. Decisions, actions, and key points can be logged in real time and accessed before the meeting.

This makes projects more agile and helps to increase critical success factors.

With instantaneous sharing of minutes, you can collaborate and share minutes of the meeting, key result areas, and action points. This is also done in real time and is shared with colleagues to make sure that each person is on the same page.

Finally, by assigning actions and keeping track of projects helps to ensure data integrity and provides accountability to each team member. Automated reminders are available so that you can spend your time on the more valuable tasks first.

In addition, StandupMeet also offers: project wised meeting, customized meeting types, organized agendas, shareable meeting minutes, accountability, reminders to ensure time is being appropriately applied, recurring meetings, conflict-free meeting scheduling, locations, automated follow ups, automatically tracked action points, and flexibility across time zones.

This can save time and increase productivity for on-site workers and can also be beneficial for teams that are remote.

Continue Reading

Business Finance

Personal finance steps every freelancer must take to avoid ruin

(FINANCE) The government shutdown showcased financial instability, but what do people that have no paycheck guarantee need to do to be secure?

Published

on

personal finance

In light of the recent government shutdown, there has been a lot of attention in regards to how missing paychecks impacts the average American. Most Americans don’t have a regular savings account and could not handle a $1,000 emergency, let alone miss practically a month of pay.

While things look positive for the backpay of those government workers, we all could benefit from some careful reflection about the precarious nature of our personal finances.

Particularly those of us who don’t receive a regular paycheck.

Entrepreneurs and those invested in the gig economy have volatile incomes, and literally no promise of a paycheck ever – that can impact your personal finances in a number of ways.

Variable incomes are normal for this group and can impact entrepreneurs in ways as simple as handling debt.

If this is you – here a few things to keep in mind that can help you deal with the volatility of living on a variable income and handling your personal finances.  

  • Set up an emergency fund. Start with 500 if you have too, and remember this an emergency fund for your personal expenses, not your business. If you have an emergency fund, make sure you identify what an emergency is and also be prepared to put money back when it comes out. If you have a hard time not spending money in front of you, put your money in a local bank or CU that you don’t have immediate access too.
  • Stick to a budget. when you can’t forecast your income appropriately, controlling expenses is so critical it’s the few things that are in your control.
  • Don’t mix business with personal. While you may be pouring your personal energy and time into your start up or gig, be careful about mixing expenses for two reasons: First, it messes up your budget. You need to have separate budgets for personal and business. Second, there could be tax challenges – consult a tax professional for more information. Here’s a little primer to get you started.
  • Save for retirement. There are tax benefits and come on, don’t wait till you can’t work anymore. Also, an IRA IS NOT AN EMERGENCY FUND.
  • Practice good financial behaviors. Automate bill pay. Online statements. Digital receipt tracking. The more you can automate your life, the better you are. You already have so many demands on your time, reduce that so you can spend more time doing what you love and what matters.
  • Consider diversifying your income. Either ensure you have multiple strings or a backup gig (even if it’s just uber driving); or be prepared to do temporary or contract labor during your slow seasons.

The path to entrepreneurship is rough. What we can learn from the very struggles of the federal employees and the government shutdown is that if the government can be unstable, those of you who work in the world of startups, gigs, and entrepreneurship, need to be even more on our toes. The “normal recommendation” for saving is 10% of your income, but normal may not be enough for you. Be prepared and save (more).

Disclaimer: I am neither a tax or investment professional. This is personal financial advice and I encourage you to visit a professional if you need more specific plans of action.

Continue Reading

Business Finance

Delivery startups skim customer tips to pay employees #wth

(FINANCE) Grocery delivery startups are flourishing, but stealing from employees isn’t a sustainable move…

Published

on

theft delivery startups

Popular grocery app Instacart has been using customers’ tips to pay its guaranteed $10/hour rate to employees, rather than using the tips as, you know, bonus money paid to workers on top of their normal pay. The way that you’d expect something called a “tip” to work.

According to the report, “Instacart confirmed that when its payment algorithm determines a driver should be paid below that guaranteed $10, the company uses the customer’s predelivery, ‘up front’ tip to cover the difference. The ‘up front’ tip is automatically set to 5% on the Instacart app; if the customer removes the tip, and the payout would be below $10, Instacart itself covers the cost.”

In this system, the customer’s tip for the deliverer subsidizes the company’s commitment to its employees. Once the change to the tipping policy was announced in workers began complaining about how it affected their earnings in 2017.

Even though the app’s customers have taken to social media to compare the policy to wage theft, the practice is actually legal. Because Instacart and other apps in the gig economy classify their workers as contractors instead of employees, they do technically still get 100 percent of the tips in their wages (even if the company doesn’t supply the same percentage of the wage they’d give the worker without the customer throwing in).

This kind of payment structure may be familiar to you if you’ve ever working in restaurants, bars, or another establishment that uses subminimum wages.

Sadly, Instacart is not the only grocery app that uses a dodgy tipping system. Shipt, DoorDash, and others have similar tipping policies. And they aren’t interested in changing them after all this week’s backlash.

If you’re concerned about making sure that you’re supporting the contractors for these grocery delivery services, some of the contracted workers have requested that you provide the tip in cash instead of tipping through the app and activating its algorithm.

Continue Reading
Advertisement

Our Great Partners

The
American Genius
news neatly in your inbox

Subscribe to our mailing list and get interesting stuff and updates to your email inbox.

Emerging Stories