dslreports logo
 
    All Forums Hot Topics Gallery
spc
uniqs
24

pnjunction
Teksavvy Extreme
Premium Member
join:2008-01-24
Toronto, ON

pnjunction to lugnut

Premium Member

to lugnut

Re: Software on rented PCs can spy on you

said by lugnut :

But the story is not about keyloggers. It's about webcam enabled spyware. A REAL invasion of privacy.

What...as embarrassing as it would be I'd rather someone have pictures of me picking my nose or whatever than have keylogged the logins to my bank and investment accounts.

The first would be embarrassing, the second could clean out all of my accounts.

lugnut
@communications.com

lugnut

Anon

said by pnjunction:

said by lugnut :

But the story is not about keyloggers. It's about webcam enabled spyware. A REAL invasion of privacy.

What...as embarrassing as it would be I'd rather someone have pictures of me picking my nose or whatever than have keylogged the logins to my bank and investment accounts.

The first would be embarrassing, the second could clean out all of my accounts.

Well considering that I've NEVER been stupid enough to do either my banking or my investing on my computer, PRIVACY IS my only real concern here.

urbanriot
Premium Member
join:2004-10-18
Canada

urbanriot

Premium Member

... if you think banking on a PC is stupid, how do you do your banking?

lugnut
@communications.com

lugnut

Anon

said by urbanriot:

... if you think banking on a PC is stupid, how do you do your banking?

Phone and fax telebanking secure landline only. No cordless...

Wolfie00
My dog is an elitist
Premium Member
join:2005-03-12

Wolfie00 to lugnut

Premium Member

to lugnut
said by lugnut :

Well considering that I've NEVER been stupid enough to do either my banking or my investing on my computer, ...

LOL!

Know what the biggest security risk is in today's world? Not understanding technology. I present the above-quoted statement as "Exhibit A" of a prime example.

TLS2000
Premium Member
join:2004-02-24
Elmsdale, NS
Ubiquiti UDM-Pro
Ubiquiti U6-LR
Ubiquiti UniFi UAP-nanoHD

TLS2000 to lugnut

Premium Member

to lugnut
said by lugnut :

said by urbanriot:

... if you think banking on a PC is stupid, how do you do your banking?

Phone and fax telebanking secure landline only. No cordless...

Secure landline? Are you joking?

lugnut
@communications.com

lugnut

Anon

said by TLS2000:

said by lugnut :

said by urbanriot:

... if you think banking on a PC is stupid, how do you do your banking?

Phone and fax telebanking secure landline only. No cordless...

Secure landline? Are you joking?

At least two or three orders of magnitude more secure than your packets bouncing from router to router, from botnet to botnet.
lugnut

lugnut to TLS2000

Anon

to TLS2000
BTW comedians, it takes considerably less effort to plant a web bug in an advertisement that exploits an unpatched, undocumented, windows vulnerability than it does to tap a home phone line for the sake of stealing personal info.

So Bite Me!
Expand your moderator at work

Black Box
join:2002-12-21

Black Box to lugnut

Member

to lugnut

Re: Software on rented PCs can spy on you


Coming!
With great pleasure!

LazMan
Premium Member
join:2003-03-26
Beverly Hills, CA

LazMan to lugnut

Premium Member

to lugnut
said by lugnut :

BTW comedians, it takes considerably less effort to plant a web bug in an advertisement that exploits an unpatched, undocumented, windows vulnerability than it does to tap a home phone line for the sake of stealing personal info.

So Bite Me!

So, keep your AV and anti-malware up to date, apply patches as they are released, and set your firewall to the most restrictive settings that still allow normal use? Online computing 101.

As for the webcam 'concern' you've got - it's entirely possible to order a laptop without a built in one, and add an external USB one when you want to use it; and then remove it again after...

I do find it a little strange, that of all the angles and positions to take on this story, the lack of a physical off switch or cover over the built in webcam making if the hardware manufacturer's fault - NEVER would have occured to me...

cpsycho
join:2008-06-03
Treadeu Land

cpsycho to lugnut

Member

to lugnut
You have made me laugh so hard today it's not funny. It's easier to go through your garbage and find out your details. Secure landline, that's a joke.

pnjunction
Teksavvy Extreme
Premium Member
join:2008-01-24
Toronto, ON

pnjunction to lugnut

Premium Member

to lugnut
said by lugnut :

At least two or three orders of magnitude more secure than your packets bouncing from router to router, from botnet to botnet.

Those packets are all encrypted. You do know that all someone needs to do is connect a phone to your line and they can hear everything loud and clear right?

I also laugh when you mention no cordless. The scrambled digital signal of a modern cordless phone would be much harder to crack than to just splice your 'secure' phone line and listen.
Expand your moderator at work
peterboro (banned)
Avatars are for posers
join:2006-11-03
Peterborough, ON

peterboro (banned) to Wolfie00

Member

to Wolfie00

Re: Software on rented PCs can spy on you

said by Wolfie00:

Know what the biggest security risk is in today's world? Not understanding technology.

In that case I'm screwed.

On the other hand my family can't laugh at me anymore for putting electrical tape over any laptops lenses we get for all these years.

Wolfie00
My dog is an elitist
Premium Member
join:2005-03-12

Wolfie00

Premium Member

said by peterboro:

On the other hand my family can't laugh at me anymore for putting electrical tape over any laptops lenses we get for all these years.

And we thank you for it. What the world does not need is any risk of seeing peterboro See Profile with no pants.
peterboro (banned)
Avatars are for posers
join:2006-11-03
Peterborough, ON

peterboro (banned)

Member

Little chance of that as fortunately my head, including eyeballs, was installed at the opposite end of my body meaning my legs and gotchies would not be visible on a laptop cam.

That of course does not preclude the fact you may use a laptop in an unconventional means not replicated my myself.

pnjunction
Teksavvy Extreme
Premium Member
join:2008-01-24
Toronto, ON

pnjunction to peterboro

Premium Member

to peterboro
said by peterboro:

On the other hand my family can't laugh at me anymore for putting electrical tape over any laptops lenses we get for all these years.

While effective and foolproof there are ways to make sure it is disabled in software. For example if the driver is not installed, or the device is disabled in device manager.

Devanchya
Smile
Premium Member
join:2003-12-09
Ajax, ON

Devanchya to lugnut

Premium Member

to lugnut
lug, you are going a bit far not using Internet Banking.

Because you know what? That secure land line is going to someone in a bank who is filling in forms on a local network that is connected almost the SAME way as you are on your computer.

lugnut
@communications.com

lugnut

Anon

If the bank's network gets hacked THEY eat the loss.

If MY network gets hacked I'M left holding the bag.

And I openly laugh at the misplaced faith people put into software security measures and malware scanners which require hourly updates to even try and stay current.

TLS2000
Premium Member
join:2004-02-24
Elmsdale, NS
Ubiquiti UDM-Pro
Ubiquiti U6-LR
Ubiquiti UniFi UAP-nanoHD

TLS2000

Premium Member

I openly laugh at someone who thinks that it's more secure to use a telephone than a computer with encryption. You're not willing to trust your own ability to keep your computer secure, but you're willing to trust the phone company to make sure that an unencrypted phone line is secure from the point you initiate the phone call, until it gets to the bank.

I'd rather trust myself to keep my computer secure than trust Bell to keep my line "secure".

lugnut
@communications.com

lugnut

Anon

Can you explain to me how encryption is going to help you when a rootkit has already implanted a keylogger on your machine and is phoning every keypress home to mother Russia or a Chinese botnet?

Seriously, if Revenue Canada and Pentagon contractors can't keep their networks secure how big an ego do you have to think yours is not compromised?
lugnut

lugnut to TLS2000

Anon

to TLS2000
Again I challenge anyone who thinks DIY home network security is better than Gov't and industry servers to look at some sobering numbers.

The US alone loses $190 BILLION A YEAR just to online credit card fraud.

»www.forbes.com/sites/hay ··· n-jumio/

But you think your $40 a year Kaspersky subscription makes your system safer than the Pentagon's, Revenue Canada and the big banks? Yeah right. I have a bridge I want to sell you

Wolfie00
My dog is an elitist
Premium Member
join:2005-03-12

Wolfie00

Premium Member

You continue to demonstrate an appalling lack of understanding of the issues and where the vulnerabilities are. Blind fear and pathological paranoia is not going to keep you safe. Most of us find particular humour in your avoidance of Internet banking but cheerfully yapping all your banking information on the phone.

Secure transactions over the Internet are encrypted on an end-to-end session layer with 128-bit public key encryption that is essentially impossible to crack. End-to-end means just what it says -- you can even do your banking over unsecured wireless and it's still protected. Whereas the phone system has no privacy protection whatsoever. The core PSTN technology has been mostly digital since as far back as the 60's, and while it's technically circuit-switched rather than packet-switched technology, those little DS0 packets bouncing from switch to switch are just like data packets bouncing from router to router, except there is no end-to-end encryption and there is a predetermined path for the session, making it ever so much easier to listen in! The PSTN over the long term is going to be indistinguishable from VoIP -- and the convergence with the Internet is what's going to make it more secure. For added fun, the local loop is usually pure analog. More importantly, people throughout the carrier systems and the end-points of transactions will always be potential crooks. You need to understand the vulnerabilities, and also balance that with practicality.

Do you also put a blankie over your TV set at night so the people on TV can't see you?
Expand your moderator at work

lugnut
@communications.com

lugnut to Wolfie00

Anon

to Wolfie00

Re: Software on rented PCs can spy on you

Oh, and btw, the only information anyone's gonna find by dumpster diving my trash is confetti shredded paper if anything has my name or address on it...

pnjunction
Teksavvy Extreme
Premium Member
join:2008-01-24
Toronto, ON

pnjunction to lugnut

Premium Member

to lugnut
said by lugnut :

But you think your $40 a year Kaspersky subscription makes your system safer than the Pentagon's, Revenue Canada and the big banks?

LOL haven't run anything like that for years. By the time scanners like that find something you've already goofed up. Let's just say the average user of my systems is smarter than those at any drone-stuffed organization.

If you want to say that dumb people should stay away from doing their banking online in between things like surfing sketchy porn sites and running their.exe 'video codecs', I'll completely agree.

Also you want to know one of the easiest ways to get some people's account info? Call them up on the good old 'secure' phone line and ask them. Idiocy can compromise any security.

TLS2000
Premium Member
join:2004-02-24
Elmsdale, NS
Ubiquiti UDM-Pro
Ubiquiti U6-LR
Ubiquiti UniFi UAP-nanoHD

TLS2000 to lugnut

Premium Member

to lugnut
said by lugnut :

But you think your $40 a year Kaspersky subscription makes your system safer than the Pentagon's, Revenue Canada and the big banks? Yeah right. I have a bridge I want to sell you

Do you really think that I depend on an ANTIVIRUS suite to keep me safe? There are no root kits or key loggers on my system. I'm well aware of the source of anything that goes on my computer and they are trusted sources. Keep telling yourself that the phone line that ANYONE can tap into is safer than my system with end to end encryption.

Putting a tin foil hat on like you seem to be doing is not only making you more vulnerable, but it's making you lose this argument in the eyes of about everyone who's reading it.
TLS2000

TLS2000 to lugnut

Premium Member

to lugnut
said by lugnut :

Can you explain to me how encryption is going to help you when a rootkit has already implanted a keylogger on your machine and is phoning every keypress home to mother Russia or a Chinese botnet?

Seriously, if Revenue Canada and Pentagon contractors can't keep their networks secure how big an ego do you have to think yours is not compromised?

You mean Revenue Canada and the Pentagon where they have people with your lack of knowledge of computers using them every day? Those same places where those people will open any email that says "click here" or where they browse the internet and click on OK to everything that comes up on their screen?

99% of computer malware is successful due to USER ERROR.
Tig
join:2006-06-29
Carrying Place, ON

Tig to lugnut

Member

to lugnut
FWIW, I first saw an inductive phone tap demonstrated in the 60s. I've not considered phone lines secure since then.
Here's a link to a science fair project that demonstrates the concept for a few bucks.
»www.unterzuber.com/tap.html
I'm not offering any opinion on comparative security, just wanted to contribute some historical information on phone security.
We're all secure until someone targets us.
I was once advised by someone in the business to always turn my webcam down on the desk when not in use. I do cover my laptop cam lens. Probably should defeat the mic also. Never assume privacy or security.