At this point I'm more angry at article writers that don't include screenshots of the things they're writing articles about than I am at the issues they're writing about.
A decent amount of the time once the issue is in a bit of context, my reaction is vastly different than what the writer was trying to get me to feel.
I wish there was a way to easily mark or denote articles written by certain authors when loading a page (especially across sites since many of these people write for multiple places) so I don't waste my time reading things from people I've found to have irresponsible or questionable reporting.
I was fully expecting this to be some blown-out-of-proportion nonsense, like a "Sign up" button next to a switch or slider in the settings menu for something that would pertain to Game Pass. Nope, it's a full block of the window dedicated just to an ad, not pertinent to any surrounding settings. Hella egregious.
I've used up to 10 actually, mostly in VMs otherwise all that shit is disabled by the university. It does pester you to sign in if you're not. I've never signed in. I used 8 way back when it came out.
The ad doesn’t actually deliver the malware, just directs people to a malicious download that mimics the Arc Browser. Users then have to follow onscreen instructions to install the malicious application in a non-standard way that allows it to bypass built-in protections in macOS to make it harder to install unsigned apps.
I’m curious how successful this campaign would be. It requires a lot of bad behavior by the victim to succeed. First, they’d have to decide to download a new web browser just from one banner ad, without doing any research on the browser; just click the link in the ad to go directly to the malicious download and install it directly from there. Second, they’d have to convince the user to right-click and select “Open” instead of simply double-clicking the installer or dragging it to the Applications folder like every other Mac application; otherwise the OS blocks it. I’m sure there are users dumb enough to do either step, but the subset of users dumb enough to do both steps and be on macOS and see this ad, I’m thinking they might only nab a few hundred victims tops, if that. I suspect this might be a proof of concept more than anything; probably most of the downloads were security researchers or potential customers testing it out. It sounds like the security researchers were following the malware seller, then found the ad, not the other way around. And of course, the ad has been taken down by Google now.
Like most other large advertising networks, Google Ads regularly serves malicious content that isn’t taken down until third parties have notified the company. Google Ads takes no responsibility for any damage that may result from these oversights. The company said in an email it removes malicious ads once it learns of them and suspends the advertiser and has done so in this case.
Earlier in the article they said Google had “vetted” the company that bought the ad. It seems their process sucks and this policy is a cop-out, and all of that just to net Google, what, a couple bucks on this short-lived fraudulent campaign?
Another consideration: changing email providers. Any email address using your custom domain can travel with you to other providers, where you can just set up another catch-all address. Aliases are specific to your email provider, so if you want to switch, you'd need to manually go to every site and update each login to a new alias.
And you can always get two domains--one for your more sensitive stuff, and a cheap generic one for the rest. A lot of domains are dirt cheap if you don't care what the TLD is.
Catch-alls are more easily traceable, yes, but depending on your privacy concerns vs convenience (and your fear of getting locked out of an account if your alias becomes unavailable, for example), it might be worth it for you.
I’ve worked for companies that used at least some Macs since 2013. Those Macs have always had antivirus software on them in addition to the base protection from the OS. I think the days of “Macs don’t get viruses” are long gone for anyone who pays attention, and was really probably never true.
Yes keep restating a PR ad from 2006, nearly TWENTY goddamn years ago. Are you aware Mac OS has changed significantly just like literally every other main OS?
Well, the company said it 18 years ago and it’s no longer true, they must be fucking liars
It's great for emails on account's where they know you, like banks and doctors offices. It also lets you make em up on the fly instead of using the site or app. I've never had spam issues, but it does make the email less anonymous. So it's a situational thing, but nice to just use [email protected] when at the dentist or whatever.
If this report is true, it would reflect poorly on Apple and Google more than Temu.
iOS does have protections in place that prevent an App from modifying its own executable code; the current argument about Emulators in the EU is showing that Apple is very strict when it comes to this sort of thing.
Even if the App was able to reconfigure itself to access data it does not have permission to access, it still needs to ask for permission.
I assume Google have similar protections in Android.
Yep, also Grizzly Research is a short seller, and this lawsuit was filed by an Arkansas attorney general. Arkansas makes really bad decisions like weakening child labor protection laws, don't trust anything that comes out of that state.
Privacy
Newest
This magazine is not receiving updates (last activity 0 day(s) ago).