Yep - this is the core issue that made the vulnerability so bad. And if you use a subdomain for a third-party service, make sure your main app auth cookies are scoped to host-only. Better yet, use a completely different domain like you would for user-generated content (e.g. discorddocs.com).
Pretty simple fix: require more data to look up a citation, like the number, issue date and plate/VIN (this is how my city does it). Technically doesn't make the scraping impossible if you wanna try every permutation of a license plate, but makes it mostly infeasible.
Currently it just requires the sequential citation number [1], which is how the data is being scraped so easily.
Google is down because Google Cloud is down, Antrophic is down because Google Cloud is down, and OpenAI isn't down but some of their SSO providers are down because Google Cloud is down.
Not exactly the same, but in the same vein, Reddit has a "Random" button that takes you to a random subreddit. Google has "I'm Feeling Lucky" which gives you a random search. A "random" button seems like a relatively common little easter egg.
> They harvest emails that you punch in for email receipts at checkout for marketing purposes. etc. etc.
Really? I've been using a unique email (i.e. homedepot@my.domain) at checkout for the last 2 years and haven't received any emails at that inbox except for my receipts.
TBF they may have stopped - I do the same thing with unique emails, and just checked my email history - I actually wrote to Home Depot's privacy line in January 2021 to complain about that practice, and AFAIK haven't noticed any of their marketing emails since. (Though I had manually unsubscribed as well.)
Visually, it looks a lot less like a copy of a BlackBerry keyboard, so that helps.
The first patent quoted in that lawsuit article has expired [1]. The second patent is still active [2], but is related to a "ramped-key keyboard" (essentially curved), which this new product is not AFAICT.
The third, a design patent [3], is still active, but would appear to only apply to a complete handheld device that includes an attached keyboard, not a separate accessory... Not a lawyer or patent expert by any means though.
I guess we'll see - none of that stops anyone from suing them.
Typo's keyboard was very much a copy and probably infringed on even more then was listed.
I can't think of any of their design patents this would interfere with. There's a small chance of some internal mechanical or light guide related patents, but that would be pretty unlikely. Even more unlikely would be BlackBerry having anyone around still that would even know what to look for.
That's what you'd think, but people rarely pay that much attention. The fullscreen prompt only shows up for a few seconds.
For example, recently a family member clicked on a fake YouTube link from an ad in Google's search results. Clicked the search bar and it immediately turned their whole screen into a "call apple support" popup.
They called me up because they thought it was a virus, but really it was just a fullscreen webpage, and being not very technologically inclined, they didn't even try Esc, Cmd+Tab, Cmd+Q, etc.
That's why I've installed adblock on every relative/friend's browser. Also disabled browser's notifications.
Then one day one of them blindly followed instructions to remove it so they can access an online newspaper. The only time they could actually follow instructions, it was actually malicious.
Some cars use "indirect TPMS," which means instead of a sensor in the tire's valve stem, it measures the speed of each wheel and uses some fancy math to determine if the pressure is low.
I'm not sure if the Kia Ceed is one of such cars, but if it is, there may be some wackiness in their indirect TPMS system. Especially considering the OP says it only happens after prolonged driving at high speeds.
We've verified with three tire pressure readers that all the tires are the exact same pressure (within ~0.5 PSI). We've manually done the magic to reset the computer.
The TPMS system light still comes on after a few minutes of driving. Dealer service department has no idea what's wrong.
It's not an issue specific to USB-C. There are also plenty of USB-A/Micro-USB cables that don't have the data pins connected. Typically this is only an issue with super cheap electronics that only use USB-C as a connector for power and don't really follow the spec.
I haven't heard of a phone coming with a charge-only cable. Especially because that cable is usually used for syncing to a computer (iOS)/transferring data from an old phone (Android).
I'd love one for the airport, so I didn't have to trust that the public charging points weren't hacking my machines on behalf of the local government or criminal syndicate or whatever.
USB-C to C cables to spec need the data pins for USB 2 and to support 30W. Beyond that it is cable-specific.
Unless an included cable came with a hard disk, monitor or eGPU, you can be reasonably sure it is USB 2 speeds. If it didn’t ship with a computer either, it is probably 30W max.
