Uber, U-Haul & Rockstar Breaches, Apple Features, and Disney AR Movies

September 23, 2022 by
Uber, U-Haul & Rockstar Breaches, Apple Features, and Disney AR Movies
Lighthouse IT Solutions, Matthew Almendinger

The Lighthouse IT Podcast - September 23rd, 2022

This week, Matt & Griff discuss security breaches at Uber, Rockstar Games, and U-Haul, Apple's newest phone features, Twitter in court, Disney trying AR, and TikTok copying others' homework.

Listen here!

News

Disney releases New Augmented Short Film, "Remembering" to Disney+

  • This sounds cool. The AR app combines with the content to provide additional experiences to the film. It does so by listening into the audio for specialized cues then providing a 10 second countdown to position your device in front of the film.
  • It's cool but you can't really interact with the film. And it's iOS only at this time. But still... it's sweet.

READ MORE

18-Year Old "Hacks" Uber's Network

  • So this kid figures out an engineer at Uber's password right (social engineering via WhatsApp)? But the VPN and whatnot is all protected by MFA that uses Push notifications. The 18 YO then spams the credentials for about an hour before the compromised SE (getting push notifications incessantly on his/her phone) finally just clicks "Approve"
  • No data seems to have been extricated, nor does it appear to be financially motivated. The "hacker" announced Uber's internal slack that Uber drivers are underpaid.

READ MORE

U-Haul & Rockstar Games Also Breached

  • Rockstar Games confirmed via Twitter that they were breached, but the only thing that they have found affected was game footage of their upcoming GTA release.
  • U-Haul, however, said "hold my beer" to all of these so-called breaches and announced that someone gained access to their company database, but that we shouldn't be too worried as the threat actors 'only' had access to specific Customer data... Specifically your Name, Driver's License, or, if applicable, State Identification Number. If you're playing at home, that information includes your address, DoB, license number, and other sensitive data. NBD

READ MORE & READ MORE

Patreon lays off everyone in security except some juniors

  • This may actually concern me a lot. I use Patreon for a few content subscriptions and we're finding out that nearly all of Patreon's security team was let go last week. Scorned by their previous employer, they've all shared that it's a mess over there and you shouldn't trust them with your data. They've also shared that the only people left are a couple of junior-level Security Engineers with not much experience to be running a show that size.

READ MORE

"Mudge" Testifies in Congress

  • Peiter Zatko, the former security exec from Twitter now turned whistleblower, took his statements to Congress and shared what was going on behind closed doors.

READ MORE

Apple launches Satellite Service with iPhone 14

  • Different than what we thought (as the marketing seemed interesting based upon the Starlink/T-Mo news we've been following), Apple is building out Emergency SoS capabilities. Also interesting? Apple is partnering with Globalstar, not Starlink AND dropping $450 million of their own money to build out the infrastructure.
  • We also learned that new iPhones will get the service free for 2 years, after that - you're gonna have to pony up.

READ MORE

For the first time ever, there are more iPhones in use in the US than any other type of smartphone.

  • The Financial Times reports the iPhone overtook the entire Android ecosystem in June to claim 50 percent of US market share.
  • In terms of the global smartphone market, Google's mobile operating system has been the dominant force, claiming more than 70 percent market share as of 2022, according to Statcounter.
  • Showing no signs of slowing down, Apple may be able to replicate this in other countries.

READ MORE

iOS 16 with customizable Lock Screens

  • Among the many changes and updates with iOS 16, Apple has revamped the Lock Screen, allowing users to customize how their iPhone appears while locked.
  • Users can add widgets to quickly convey information, customize font and text color, and intelligently add photos that appear to seamlessly blend into the user interface.
  • For iPhone 14 Pro users, the Lock Screen will intelligently dim into an always-on mode when face up and not in use.
  • This just strengthens the theory that the lock screen and dashboard on your phone will soon be your primary social media platform.

READ MORE

  • Top Widgets' soars to No. 1 on the App Store as Apple starts allowing Widgets on lock screen
  • As iOS 16 customization takes off, so do the apps expanding it's features.
  • An iPhone personalization app called Top Widgets has soared to the No. 1 spot on the U.S. App Store's top free apps list, displacing BeReal.
  • This allows you to download and use custom widgets and a number of other interesting features.
  • The app gained 1.3 million downloads in just the two days following Monday's iOS 16 launch.
  • App Store's Top Charts algorithm seems to be regularly manipulated by TikTok-based marketing efforts. Based on number of views on only a handful of viral videos featuring the widget, you can assume TikTok is behind many of Top Widgets' new U.S. installs these past few days.

READ MORE

TikTok Now, a BeReal clone, just launched

  • Speaking of BeReal getting it's spotlight stolen, TikTok has created a new feature to directly compete with BeReal, called TikTok Now.
  • Instagram and Snapchat have already launched versions of this, but TikTok straight up copy/pasted BeReal into their app.
  • "TikTok Now invites you and your friends to capture what you're doing in the moment using your device's front and back camera. You'll receive a daily prompt to capture a 10-second video or a static photo to easily share what you're up to."

READ MORE