Cybersecurity Awareness Month

October is national Cybersecurity Awareness Month here in the US. One of the four key themes this year is Recognizing and Reporting Phishing. We just discussed this at length with Nick Oles, but I wanted to give my perspective and tell you how to report phishing emails to the proper authorities.

In other news: cheap Android TV boxes come laced with malware and fraud software; 23andMe investigating massive data breach; US agencies caught using location data illegally; Meta proposes subscription plans in Europe for Facebook and Instagram; FBI warns of ‘phantom hacker’ scams targeting elderly; new Microsoft AI tool can simulate any voice with just 3 seconds of audio; attackers don’t bother brute-forcing long passwords; free upgrade from Windows 7/8 to 10 is going away soon; FCC details plans to reinstate net neutrality; how to turn off Google’s new Topics tracking system; new app from Consumer Reports to delete personal data; new privacy-respecting URL shortening tool from Panquake.

Article Links

1. [WIRED] Your Cheap Android TV Streaming Box May Have a Dangerous Backdoor https://www.wired.com/story/android-tv-streaming-boxes-china-backdoor/
2. [cyberscoop.com] DNA testing service 23andMe investigating theft of user data https://cyberscoop.com/23andme-user-data-theft/
3. [404media.co] ICE, CBP, Secret Service All Illegally Used Smartphone Location Data https://www.404media.co/ice-cbp-secret-service-all-broke-law-with-smartphone-location-data/
4. [9to5mac.com] Meta proposing ad-free Facebook and Instagram plans for up to $17/month https://9to5mac.com/2023/10/03/facebook-instagram-no-ads-plan/
5. [BleepingComputer] FBI warns of surge in ‘phantom hacker’ scams impacting elderly https://www.bleepingcomputer.com/news/security/fbi-warns-of-surge-in-phantom-hacker-scams-impacting-elderly/
6. [futurism.com] New Microsoft AI Can Clone Your Voice From Three Seconds of Audio https://futurism.com/the-byte/new-microsoft-ai-clone-your-voice
7. [therecord.media] Attackers don’t bother brute-forcing long passwords, Microsoft engineer says https://therecord.media/attackers-dont-bother-brute-forcing-long-passwords-microsoft-engineer-says/
8. [TechRadar] Been putting off that free Windows 11 or 10 upgrade? Windows 7 and 8 diehards need to move fast https://www.techradar.com/computing/windows/been-putting-off-that-free-windows-11-or-10-upgrade-windows-7-and-8-diehards-need-to-move-fast
9. [Ars Technica] FCC details plan to restore the net neutrality rules repealed by Ajit Pai https://arstechnica.com/tech-policy/2023/09/fcc-details-plan-to-restore-the-net-neutrality-rules-repealed-by-ajit-pai/
10. [Electronic Frontier Foundation] How To Turn Off Google’s “Privacy Sandbox” Ad Tracking—and Why You Should https://www.eff.org/deeplinks/2023/09/how-turn-googles-privacy-sandbox-ad-tracking-and-why-you-should
11. [CNET] This App Can Delete Your Personal History from Websites. And It’s Simple https://www.cnet.com/tech/services-and-software/this-app-can-delete-your-personal-history-from-websites-and-its-simple-heres-how-to-use/
12. [talkliberation.substack.com] NOW SERVING: An early release of the Panquake Pie! https://talkliberation.substack.com/p/panquake-early-release-pnqk-now-available
13. Tip of the Week: Catching Phish: https://firewallsdontstopdragons.com/how-to-catch-a-phish/ 

Further Info

• Win a copy of “How to Catch a Phish”! https://fdsd.me/catchaphish 
• National Cybersecurity Awareness Month: https://www.cisa.gov/cybersecurity-awareness-month 
• Microsoft’s VALL-E voice-gen tool: https://www.microsoft.com/en-us/research/project/vall-e-x/ 
• Panquake URL shortener: https://pnqk.me/ 
• Give the gift of privacy and security: https://fdsd.me/coupons 
• Send me your questions! https://fdsd.me/qna 
• Support our mission! https://fdsd.me/support 
• Subscribe to the newsletter: https://fdsd.me/newsletter 
• Check out my book, Firewalls Don’t Stop Dragons: https://fdsd.me/book 
• Generate secure passphrases! https://d20key.com/#/ 

Table of Contents

Use these timestamps to jump to a particular section of the show.

• 0:00:21: iOS update, book giveaway
• 0:01:17: News rundown
• 0:03:33: Your Cheap Android TV Streaming Box May Have a Dangerous Backdoor
• 0:07:03: DNA testing service 23andMe investigating theft of user data
• 0:10:53: ICE, CBP, Secret Service All Illegally Used Smartphone Location Data
• 0:15:32: Meta proposing ad-free Facebook and Instagram plans for up to $17/mo
• 0:19:26: FBI warns of surge in ‘phantom hacker’ scams impacting elderly
• 0:24:07: New Microsoft AI Can Clone Your Voice From Three Seconds of Audio
• 0:33:34: Attackers don’t bother brute-forcing long passwords
• 0:38:08: Free upgrade to Windows 10 about to be cut off
• 0:41:05: FCC details plan to restore the net neutrality rules
• 0:45:13: How To Turn Off Google’s “Privacy Sandbox” Ad Tracking
• 0:51:05: This App Can Delete Your Personal History from Websites
• 0:56:09: Panquake releases free URL shortening tool
• 0:59:33: Tip of the Week: Recognizing & Reporting Phish
• 1:05:42: Wrap-up