loader from loading.io

Class-Action Suit Against Facebook, Vulnerable Business Applications and more on Tech Talk With Craig Peterson today on Maine's WGAN Saturday Show [10-26-19]

Craig Peterson - America's Leading Security Coach

Release Date: 10/25/2019

AS HEARD ON - The Jim Polito Show - WTAG 580 AM: Passwords, Data Collection, Big Tech and more show art AS HEARD ON - The Jim Polito Show - WTAG 580 AM: Passwords, Data Collection, Big Tech and more

Craig Peterson - America's Leading Security Coach

Welcome! Good morning, everybody. I was on with Mr. Jim Polito this morning and we discussed Passwords, huge databases, data collection by Big Tech and our schools, COPPA  and Google. So, here we go with Mr. Polito. For more tech tips, news, and updates visit - ---  Automated Machine Generated Transcript: Craig Now we've got the New Mexico Attorney General, who I'm sure will be joined by other attorneys general to file suit on this. We've got this children's online Privacy Protection Act, which has been around for quite a while that says any personal data for a child under the age...

info_outline
AS HEARD ON NH Today with Jack Heath WGIR-AM 610: The Technology and Spread of the Coronavirus and More show art AS HEARD ON NH Today with Jack Heath WGIR-AM 610: The Technology and Spread of the Coronavirus and More

Craig Peterson - America's Leading Security Coach

Welcome, Good Monday morning, everybody. Craig Peterson here. I was on with Jack Heath this morning. We discussed the Coronavirus, Covid-19 and its spread and how Technology is helping and hurting. Here we go with Jack. These and more tech tips, news, and updates visit -  ---  Automated Machine Generated Transcript: Craig So there we go this morning with Jack Heath Craig Peterson here, and let's get into it. We talked quite a bit about some different aspects of what's happening with technology and the Coronavirus, the Covid-19. Jack Joining us on the Autofair listener lines, our...

info_outline
Welcome!  Election and Voting and the use of Technology, Poorly written apps and Bad Chrome Extension and more on Tech Talk with Craig Peterson on WGAN show art Welcome! Election and Voting and the use of Technology, Poorly written apps and Bad Chrome Extension and more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Welcome!   We are going to hit a number of topics today from the world of Technology. Primaries and Caucuses are underway and with that always comes the topic of technology and security and it is no different this year.  Apps are being developed and brought to market without being fully tested.  Extensions are being created that have ulterior purposes and are being downloaded by thousands and even more, on Tech Talk With Craig Peterson today on WGAN.  It is a busy show -- so stay tuned. For more tech tips, news, and updates visit - CraigPeterson.com --- Related Articles: ...

info_outline
AS HEARD ON: WGAN Mornings with Ken and Matt: Election and Voting Technology, Phishing and Coronavirus Covid-19  show art AS HEARD ON: WGAN Mornings with Ken and Matt: Election and Voting Technology, Phishing and Coronavirus Covid-19

Craig Peterson - America's Leading Security Coach

Good morning everybody! I was on with Ken and Matt. We had a good discussion about the upcoming Nevada Caucus and if they will experience some of the same issues as in Iowa. We also discussed the cybercriminal phishing emails being sent out with the warnings about the Coronavirus that if clicked on will infect your machine and network and also why you should delete apps that you do not use to protect your privacy. These and more tech tips, news, and updates visit - CraigPeterson.com --- Automated Machine Generated Transcript: Craig saying, Wow, cool new technology is going to be great. Hey, I...

info_outline
AS HEARD ON - The Jim Polito Show - WTAG 580 AM: Apps, tracking, selling info and election security show art AS HEARD ON - The Jim Polito Show - WTAG 580 AM: Apps, tracking, selling info and election security

Craig Peterson - America's Leading Security Coach

Welcome! Good morning, everybody. I was on with Mr. Jim Polito this morning and as you know today is Primary Day in New Hampshire it is the Big Day for our State Sport - Politics.  That means it is the day to address voter manipulation, voter fraud, low tech solutions and why apps are not the answer. So, here we go with Mr. Polito. For more tech tips, news, and updates visit - ---  Automated Machine Generated Transcript: Craig You've got this free little cute little game, isn't this fun to play? Well, that game is tracking you everywhere you're going. They sell that information to...

info_outline
Welcome!  Rampant Intellectual Property Theft by China, Scams - Airbnb, VRBO and CoronaVirus Phishing, ACLU and DHS and more on Tech Talk with Craig Peterson on WGAN show art Welcome! Rampant Intellectual Property Theft by China, Scams - Airbnb, VRBO and CoronaVirus Phishing, ACLU and DHS and more on Tech Talk with Craig Peterson on WGAN

Craig Peterson - America's Leading Security Coach

Welcome!   Today there is a ton of stuff going on in the world of Technology and we are going to hit a number of topics today. There are some scams that are getting more and more prevalent with Airbnb and VRBO that we will talk about. Also, phishing scams using the Coronavirus as a way to trick you into clicking.  The ACLU is filing suit against DHS. China is stealing our Intellectual Property.  Shadow IT becoming more and more of a problem and even more on Tech Talk With Craig Peterson today on WGAN.  It is a busy show -- so stay tuned. For more tech tips, news, and...

info_outline
AS HEARD ON - The Jim Polito Show - WTAG 580 AM: First in the Nation New Hampshire Primary Day and Election Hacking show art AS HEARD ON - The Jim Polito Show - WTAG 580 AM: First in the Nation New Hampshire Primary Day and Election Hacking

Craig Peterson - America's Leading Security Coach

Welcome! Good morning, everybody. I was on with Mr. Jim Polito this morning and as you know today is Primary Day in New Hampshire it is the Big Day for our State Sport - Politics.  That means it is the day to address voter manipulation, voter fraud, low tech solutions and why apps are not the answer. So, here we go with Mr. Polito. For more tech tips, news, and updates visit - ---  Automated Machine Generated Transcript: Craig You know, they don't release their source code, they hold everything close to the chest. They say, Well, you know, it's obscure people don't know what we're...

info_outline
AS HEARD ON: WGAN Mornings with Ken and Matt: Hacks, Deep Fakes, CEO, Business Email Compromise, IOWA caucuses and more show art AS HEARD ON: WGAN Mornings with Ken and Matt: Hacks, Deep Fakes, CEO, Business Email Compromise, IOWA caucuses and more

Craig Peterson - America's Leading Security Coach

Good morning everybody! I was on with Ken and Matt. We had a good discussion about The Iowa Caucus app fiasco, Business Email Compromise, and Deep Fakes what it is, who is at risk and what we can do about it. I went into detail about Passwords and Password Managers and even two-factor authentication and why you need to use them. So here we go with Ken and Matt. These and more tech tips, news, and updates visit - CraigPeterson.com --- Automated Machine Generated Transcript: Craig The problem we see this daily when I get notices from the FBI. It all boils down to personal hygiene, just keeping...

info_outline
AS HEARD ON - The Jim Polito Show - WTAG 580 AM: The problems with the Iowa Caucuses show art AS HEARD ON - The Jim Polito Show - WTAG 580 AM: The problems with the Iowa Caucuses

Craig Peterson - America's Leading Security Coach

Welcome! Good morning, everybody. I was on with Mr. Jim Polito this morning and we discussed the debacle that was the Iowa Caucuses and what it means to you as the election season moves forward. In short, test, test, test. So, here we go with Mr. Polito. For more tech tips, news, and updates visit - ---  Automated Machine Generated Transcript: Craig Tied into Hillary's campaign staffers that were paid 10s of thousands of dollars by the Iowa Democratic Party. $60,000 was paid to them by the Nevada Democratic Party, who was caucusing in a couple of weeks as well. Craig Morning everybody,...

info_outline
AS HEARD ON - The Jim Polito Show - WTAG 580 AM: The problems with the Iowa Caucuses show art AS HEARD ON - The Jim Polito Show - WTAG 580 AM: The problems with the Iowa Caucuses

Craig Peterson - America's Leading Security Coach

Welcome! Good morning, everybody. I was on with Mr. Jim Polito this morning and we discussed the debacle that was the Iowa Caucuses and what it means to you as the election season moves forward. In short, test, test, test. So, here we go with Mr. Polito. For more tech tips, news, and updates visit - ---  Automated Machine Generated Transcript: Craig Tied into Hillary's campaign staffers that were paid 10s of thousands of dollars by the Iowa Democratic Party. $60,000 was paid to them by the Nevada Democratic Party, who was caucusing in a couple of weeks as well. Craig Morning everybody,...

info_outline
 
More Episodes

Welcome Back!

We are closing up today's show discussing the Class Action lawsuit against Facebook and why Business Applications are leaking information.

For more tech tips, news, and updates visit - CraigPeterson.com

---

Related Articles:

Plaintiffs in Facebook Class Action Awarded Standing 

Are your Apps Leaking? Unpatched Vulnerabilities Lead to Leaking Apps 
---

Automated Machine-Generated Transcript:

Craig Peterson
Hey guys, Craig Peterson back again. Welcome. Welcome to everybody. If you haven't heard me before, I am on the radio every Saturday from one till 3 pm here on WGAN. And we talk a lot about technology and my business is entirely based on technology, on networks and security and securing regulated businesses including financial businesses, medical businesses, and DFARs security for military contractor businesses as well. So that's what I do. Why do I talk a lot about security? Because I have been in the boat before where I didn't know what was happening. I got hacked, different type of technique. Basically I got hacked two decades ago. And I almost lost the business that I had been building because of this hack. I was all of a sudden the de facto security person in the business as the owner of the business, right, and as the owner, you have to wear a lot of hats. And then I started helping other business owners with it, and then started helping their people, the office managers, that's a very common title of the people that I work with, who are the de facto it and security people. So I, you know, I've been working with them over the years and I have found that almost to a person, they need some help because it's, it's so complicated. And so many people out there are lying to them, just like we talked about a couple of segments ago with VPN, how these VPN companies are building. Line line line online, which is really, really bad if you ask me. So I try and help straighten them out and straighten it out here on the show. We have a lot of home users, a lot of home listeners, a lot of retirees here who are listeners on the radio. And you guys are some of the biggest targets, believe it or not, because the huge, multi-billion dollar corporations, they can afford security. If you have less than 1000 employees, you can't. And the basic reason you can't is that you can't afford the security people that you need. You might be able to afford some of the equipment that you need. You probably can, but you can't afford to have the people that you need to design that to set it up and to run it. It's a full-time job for a staff of people. And so that's where we come in for those types of companies that really need really want the security but can't afford it, and can't do it themselves and really need help. So that's, that's my business side of things. And you know if you have any questions at all if we can help because this is complicated, let me know. Just email me at Craig Peterson dot com that'll come to me. And I answer pretty much every question that comes our way. Sometimes I answer them here on the radio, if particularly if it's a common question a lot of people have. Sometimes I will just go ahead and email you back. I also have a text number so that you can send questions to me, and my texting number is just 855-385-5553 you can text me anytime. If it's the middle of the night. I'm not going to answer for him in the meeting right. Not answer right away anyways. 855-385-5553 to be things right now. And we'll get to them because this is our last segment of the day. So I have to get to them right now. But I want to get to these. One again is from Ars Technica. Another one is from dark reading. So we got a couple of articles from each of these sites this week. This one is about Facebook. And this has been kind of everywhere online. If you go ahead and do some searches, you'll see this, but Facebook has facial recognition software. And if you go into your security controls on Facebook, you'll see right there that Facebook has a little checkbox that lets you turn off facial recognition. And the idea is with Facebook, hey, listen, we want to let you know when you're in a photo from a friend or a relative. Right And personally, I'd like to know if I'm in a photo from a friend or a relative, right. I think that'd be a great thing. Facebook will let you know.

But that this facial recognition technology is far from perfect. And it's been used by the Chinese socialist government to track people and penalize them if they don't do what the government tells them to do. And it's being used in London the most surveilled city in the world. It's being used there to track people. And it's being used, as I mentioned by Facebook. So another landmark lawsuit underway here of federal court declined to hear another appeal to stop a $35 billion class-action lawsuit against Facebook. That's real money. Well, it's real money to you and me, you know, not so much for Facebook, right. But in San Francisco last week, the US Circuit Court of Appeals for the Ninth Circuit, which means it's almost always Going to be overturned. It is the most overturned district Circuit Court in the country. But I think this particular ruling might stand. But the US court of appeals to the Ninth Circuit denied Facebook's protection petition for an unborn Karen in the case. So usually appeals cases are heard by three judges that are picked within the district court. And so they were looking to try and get a larger group of judges, maybe all of them to hear. So in the Ninth Circuit, there's 11 of the 29 judges, judges that would sit for the unbanked punk cases, and the court said none on the three-judge panel was enough. So this class acts as a class action suit that can now move forward includes these three different Illinois residents who filed suit against Facebook back in 2015. That's how long these things take. Okay? The suits that were rolled together into one class action complaint argue that Facebook's collection of users faces for tagging proposes violates the Illinois biometric Information Privacy Act. And that's a law that requires businesses to gather consent from residents of Illinois before the biometric data is used or even collected. Ok. So the Facebook find in Illinois be five grand for each nine violation. There are about 7 million Facebook users in Illinois, hence the $35 billion that they're going for. A very, very big one. Massachusetts brands branch of the ACLU. This week also released results of a test it ran on Amazon's recognition software, in which it mistakenly match many New England professional athletes to mug shots from a database. So fascinating, isn't it? absolutely fascinating. These facial recognition systems not only don't do well with Caucasian faces, but they are horrible. with Chinese, many of the Asian faces, they can't tell them apart. The very bad with African faces. And it's there. There's just a lawsuit potential all over the place for people that are arrested or detained or charged, based on facial recognition, particularly if they are air quotes here, minorities, right? so fascinating stuff there, Facebook's in more trouble. Now, this is from a company called Veracode. You might have heard of them. I've talked about them before on the code. They've got this annual State of software security report. And what they found I thought was very, very interesting. There's something in the software business called regression testing. Now, if you've known me for a while, you know, I was involved very heavily in what's called Colonel software, I helped to develop windows in the kernel, various versions of Unix, in the kernel, various network protocols again in the colonel, and I've done it for some of the biggest names in the world. Okay, absolutely.

So we would always do regression tests. In other words, we fixed a bug. Well, before we fix a, you know, and release that, that fix for the bug, we have to test it. And then we put that test into a series of what are called regression tests. So let's say a year or two years from now, there, somebody else has made some changes and, and it might have not touched our code. It might have touched the code that I fixed, right? But it's been a few years. So what happens is, the good companies will do a regression test and they'll make sure that That bug fixed two years ago, did not reappear. Well, it turns out that businesses aren't doing regression tests. And the more at least many of them aren't. Because according to this, many enterprise organizations are to increase breach risk because of aging unaddressed application security flaws. And this isn't just applications like apps that might be on your phone. These are applications that might be web apps, they might be applications that are used to run anything from a green screen through a Mac or Windows computer. They did security tests on more than 85,000 applications and found that on average, companies fix just 56% of all software security issues they discover between the initial and final scans. Most of the flaws that are fixed tend to be newly discovered ones well older previously discovered issues are neglected and allowed to accumulate dangerously. So very codes calling this security debt. It's increasing breach risks that many organizations. And when you get right down to it, those older flaws are usually the easiest for the bad guys to breach. Because it's well known how to breach using those flawed vectors. Very interesting. So, bottom line, pull up your socks companies out there that are developing any sort of software. And don't think that just because you're using a cloud vendor for part of it, are you using various API's to go to various cloud vendors to put your overall business operations together? Don't think that makes you safe because it doesn't. And what we're finding now is more and more, that's actually a dangerous, more dangerous way to do it, than writing the code yourself. Then there's all the open-source code and the problems people have had with that. So anyhow, hopefully, you guys, you were attended my security summer this year. We went through a lot of great security stuff that was absolutely free. My master class this week on VPN, hopefully, you attended that. It was absolutely free. had a lot of great questions that we answered. I also want to remind you of coming up this week, the masterclasses about mobile devices coming up probably Thursday afternoon. Sign up now Craig Peter song.com slash masterclass. Okay, Craig Peterson calm. You'll see it on my homepage as well. Have a great week. You've been listening to me on WGAN and online as well.

Sorry I got a frog in my throat just in time.

Transcribed by https://otter.ai

 

---

More stories and tech updates at:

www.craigpeterson.com

Don't miss an episode from Craig. Subscribe and give us a rating:

www.craigpeterson.com/itunes

Follow me on Twitter for the latest in tech at:

www.twitter.com/craigpeterson

For questions, call or text:

855-385-5553