By timothy from Slashdot's whose-izon-you? department
An anonymous reader writes "With recent action by the FTC against TRENDnet, the 'Internet of Things' has taken a sharp turn in the eyes of the public and government with regard to security. This week, Duo Security employee Mark Stanislav presented security research he did on the IZON IP camera from Stem Innovation. Through his testing, Mark found hardcoded credentials for Linux accounts (accessible by Telnet; Yes, — really), an undocumented web interface allowing for viewing a camera's stream (also with hardcoded credentials, user/user), and a variety of other failings including a lack of cryptography in most of the camera's functionality, including when uploading videos to Amazon Web Services's S3 storage."
According to the above-linked article, "Contacted by The Security Ledger, Stem Innovation CTO Matt McBeth said that the IZON firmware, server system and iOS applications tested by Stanislav have since been updated, and that the research contains “inaccurate and misleading information.” Stem did not provide specific information about any inaccuracies."Read Replies (0)
By timothy from Slashdot's arise-workers-and-throw-off-your-ah-what-the-hell department
Nerval's Lobster writes "In Boston, a number of UberX drivers reportedly planned to strike yesterday afternoon in response to a rate cut. (UberX is a low-cost program from Uber, which is attempting to "disrupt" the traditional cab industry via a mobile app that connects ordinary drivers in need of cash with passengers who want to go somewhere.) Uber tried to preempt the strike with a blog posting explaining that the rate cut actually translated into more customers and thus more revenue to drivers, but it needn't have bothered: according to local media (the same media that reported a strike was in the making) a strike failed to materialize. Many of the biggest firms of the so-called 'sharing economy,' such as Uber and Airbnb, are locked in battle with some combination of deeply entrenched industries and government regulators. But if the 'labor' that drives the sharing economy becomes more agitated about its compensation, it could create yet another interesting wrinkle. The Boston strike may have fizzled, but that doesn't mean another one, in a different city, won't enjoy more success."
Free (or freer) entry makes occupation-based roadblocks harder to enforce, though, so Uber and other crowd-sourcing matchmakers are tougher to pin down and disrupt in the way that more tightly controlled enterprises
are. (Not that city councils and other bodies aren't trying to corral crowd-sourced undertakings
into their regulatory purviews, putting a damper on some of that freewheeling disintermediation.)Read Replies (0)
By timothy from Slashdot's who-will-find-the-loopholes? department
First time accepted submitter jellie writes "According to Ars Technica, a new bill introduced by Rep. Bob Goodlatte (R-VA), the chairman of the House Judiciary Committee, has received bipartisan support and has a real chance of passing. In a press call, lawyers from the CCIA, EFF, and Public Knowledge had universal praise for the bill, which is called the Innovation Act of 2013. The EFF has a short summary of the good and bad parts of an earlier draft of the bill. The bill will require patent holders who are filing a suit to identify the specific products and claims which are being infringed, require the loser in a suit to pay attorney's fees and costs, and force trolls to reveal anyone who has a 'financial interest' in the case, making them possibly liable for damages."Read Replies (0)