Now Canceled Crowdfunding Project Sent DMCA Notice Following Skeptical Review
Furnished content.
A few months back, I saw some news about a crowdfunding project on IndieGogo, called Titan Note. It was a little a cylindrical device that acted as a microphone, and the guys behind the project insisted that it could transcribe notes with fairly incredible levels of accuracy. The device got some press coverage -- including a quite reasonably skeptical piece at The Verge, entitled "No way this transcription gizmo is as good as it claims to be." There was a lot more skepticism around the project in the comments to the project as well. On top of that, the project's marketing pitch seemed... wrong. That is, it positioned the device as a thing that you could use to "stop taking notes" in classes and meetings in order to pay better attention and learn more. But... that's just wrong. Because the process of taking notes yourself actually helps you commit things to memory. That is, taking notes helps you pay better attention, and thus if you actually used the device the way it was advertised, you might get less out of lectures and meetings.All that said, here's a confession: I still backed it. I was already skeptical -- in part because of the mis-targeted marketing and because the video looked too good to be true, given the state of transcription products in the market, and I had read that Verge article. But, there was an early bird deal that made it pretty cheap, and I figured that even if it was just a so-so product, it could have some use, such as making it easier to transcribe videos and podcasts for posts here on Techdirt. Given the low price of the early bird, I figured maybe it was worth the risk that the product sucked... or didn't exist at all.Eventually, the product raised over $1.1 million -- as it announced in a press release. But, late last night I got an email from IndieGogo saying that the project had been shut down and all funds refunded. IndieGogo told the Verge that the project had violated its terms of service -- which could mean lots of things. If anything, I'm more relieved than anything else. I had kind of regretted backing it in the first place, given the skepticism I had over the product.But, that alone wouldn't make this much of a Techdirt story. Instead, what made this a Techdirt story is this, from the Verge:When we covered the Titan Note in March, we suggested the company was perhaps exaggerating the capabilities of its product. After all, we said, if Apple or Amazon can't produce transcription software as accurate and speedy as this, what chance does a company with no commercial history have? We later received a DMCA takedown notice for using of Titan Note's product imagery to illustrate our story. What a bunch of jerks. Sure, you can say that DMCA'ing the "images" rather than the actual story is marginally more defensible... but even that's not true. Those were marketing materials that the company released for the clear purpose of having the press promote the device. The only purpose behind a takedown notice was in anger over a skeptical report on the product. At the very least, that shows that Titan Note itself doesn't have much confidence in its own product. If I'd known it was a company that abused the DMCA to try to hit back at criticism I never would have backed it in the first place. Such companies are not trustworthy at all.
Permalink | Comments | Email This Story
Read more here
posted at: 12:00am on 13-May-2017
path: /Policy | permalink | edit (requires password)
Leaked NSA Hacking Tool On Global Ransomware Rampage
Furnished content.
Welp. What was that we were saying about the problems of the NSA creating hacking tools that leak, rather than helping patch security flaws? Oh, right. That it would make everyone less safe.And here we are. With a global ransomware rampage, referred to as "WannaCry" putting tons of people at risk, thanks to leaked NSA malware:Leaked alleged NSA hacking tools appear to be behind a massive cyberattack disrupting hospitals and companies across Europe, Asia and the U.S., with Russia among the hardest-hit countries.The unique malware causing the attacks which been spotted in tens of thousands of incidents in 99 countries, according to the cyber firm Avast have forced some hospitals to stop admitting new patients with serious medical conditions and driven other companies to shut down their networks, leaving valuable files unavailable. Specifically, it appears that the ransomware is using an NSA tool called ETERNALBLUE, which was leaked in April by Shadow Brokers. This was among those that were quietly patched by Microsoft back in March, but not everyone installs security patches in a timely manner. Indeed, as some are reporting, some of the victims -- including the National Health Service Hospitals in the UK -- are running ancient Windows XP, an operating system that is not even remotely secure, and is no longer supported.Thus, there's some debate online about whether the "problem" here is organizations who don't upgrade/patch or the NSA. Of course, these things are not mutually exclusive: you can reasonably blame both. Failing to update and patch your computers is a bad idea these days -- especially for large organizations with IT staff who should know better.At the same time, the fact that this hack is built off of a leaked NSA hacking tool highlights a couple of key points:- The NSA's dual-hatted offensive & defensive structure is damaging: The NSA plays both offense and defense on computer security. That is, it is supposed to hack into other systems, but also help protect our systems. But it's quite clear that the offensive capabilities are valued much more than the defensive ones -- and that's a problem. Once again, it appears that people in the intelligence community are not doing a clear cost-benefit analysis of the tools that they use. They like their toys, but they rarely seem to take into consideration what happens should those toys get out.
- Once again, this reinforces why we should not allow backdoors to encryption or any other such vulnerability. Over and over again, the proponents of backdooring encryption have insisted that it can be built in a "safe" way, where only government will get the backdoor access to encryption. The fact that some of the NSA's most powerful hacking tools have not only been leaked but are now wreaking havoc around the world, should put a complete end to the "going dark" debate. But it won't. It's not safe, but many in the law enforcement community, in particular, are in denial about this.
These problems are not new. Hell, we've been talking about both of them for the better part of a decade already. But this rapid spread of WannaCry is putting an exclamation point on those arguments. Unfortunately, the cynical side of my brain says this warning will still be ignored.
Permalink | Comments | Email This Story
Read more here
posted at: 12:00am on 13-May-2017
path: /Policy | permalink | edit (requires password)
|
|