Twitter says reports of hundreds of leaked email addresses are unrelated to a 2021 breach.

Earlier this month, hackers shared a database with the usernames and email addresses of 200 million Twitter users, claiming the information came from breaches dating back to 2021.

“We conducted a thorough investigation, and there is no evidence that data recently being sold was obtained by exploiting a vulnerability of Twitter systems,” the company stated in a blog post.

Twitter says the data likely came together from public information that’s already available and “could not be correlated with the previously reported incident or any data originating from an exploitation of Twitter systems.”

Twitter updated its code in June 2021, resulting in a bug that would tell people what Twitter accounts were associated with specific email addresses and phone numbers. Twitter learned of the vulnerability in January 2022. While the bug impacted 5.4 million accounts in August 2022, no recent breaches of Twitter’s systems occurred.

Several cybersecurity analysts examined the breach, as The Verge reports, including Troy Hunt, the founder of Have I Been Pwned. The website allows people to search if their email addresses are part of data breaches.

Have I Been Pwned has now added the database to its website, and users can enter their emails to check if it’s part of the breach.

Even if the information on the 200 million accounts isn’t tied to a breach or includes any passwords, it is a cause for concern.

Twitter is asking its users to enable 2-factor authentication and remain observant of any emails. “Be wary of emails conveying a sense of urgency and emails requesting your private information, always double check that emails are coming from a legitimate Twitter source.”

Source: Twitter Via: The Verge

Samsung has announced a new software update for the Galaxy Buds 2 Pro and the Galaxy Watch series aimed at enhancing the content-capturing capabilities for Galaxy smartphone users.

Samsung’s Galaxy lineup of devices have always been known for their innovative photography and videography features, and the new Buds 2 Pro and Galaxy Watch series updates look to take those capabilities to the next level.

360 Audio Recording

The update to the Galaxy Buds 2 Pro brings 360 Audio Recording to the wireless earbuds, a feature that Samsung says will allow you to “Capture the World as You Hear it.”

By pairing the Galaxy Buds2 Pro with a Galaxy smartphone, your phone can use the microphone in each earbud to pick up 360-degree sound, allowing viewers of your video to experience a sense of immersion and true-t0-life audio that emulates an in-person experience.

The feature is made possible with LE audio, which is a new and advanced Bluetooth audio standard. “This new technology brings better audio quality as well as improved latency and battery life. Beyond providing better-sounding music, LE Audio also broadens the spectrum of audio experiences to deliver more complex and rich sound that can be shared with others,” wrote Samsung.

The feature will be available for the Galaxy Buds 2 Pro when they’re paired with a Galaxy phone running One UI 5.0 or above with LE Audio support. Devices compatible include the Galaxy Z Flip 4, Galaxy Z Fold 4 and upcoming Galaxy smartphones.

Camera Controller

The other significant feature is part of the Galaxy Watch series update. The Camera Controller application allows users control their Galaxy phone camera right from their wrist. Now, after the update, the application includes zoom capabilities, enabling users to remotely control their phone’s camera zoom with a simple pinch of the watch face or turn of the rotating bezel.

This eliminates the need to set timers, or handing over your phone to a stranger when taking the perfect zoomed-in group photo from a distance.

The updated Camera Controller zoom control feature will be available on the Galaxy Watch5, Watch5 Pro, Watch4, and Watch4 Classic beginning February 2023.

Samsung’s Galaxy Unpacked event, where the company will detail its new flagship smartphones and new features coming to its earbuds and wearables, is scheduled for February 1st. Expect to see the new ‘Camera Controller’ zoom feature and ‘360 Audio Recording’ in action at the event. Read more about Galaxy Unpacked here.

Source: Samsung

We’re now seeing alleged official renderings of the Samsung Galaxy S23 series.

These renders, shared by Roland Quandt, look a bit different from what we’ve seen in the past and kind of make the device look like an iPhone when looking at it from the side. The device sports a metal frame combined with a glass cover in all variants. Quandt suggests that Samsung used aluminum for S23 and S23+.

We also don’t see any images of the S23+ or the S23 Ultra, only the base version, the S23. The device comes in ‘Phantom Black,’ ‘Botanic Green,’ ‘Mystic Lilac,’ and ‘Cotton Flower (white).’

Looking at the device from the rear, Samsung has removed the camera bump, so all we see are the lenses protruding from the back panel.

Galaxy S23: This is Samsung's new flagship phone in official marketing pics (like actually from Samsung, not some very creative person on a forum and stuff, y'all know what I'm talking aboot) https://t.co/nL2STbmlX3

RTs much appreciated, kthxbye! #GalaxyS23 #SamsungUnpacked

— Roland Quandt (@rquandt) January 11, 2023

Quandt says that the device will sport a 6.11-inch OLED display with a full HD resolution and a Qualcomm Snapdragon 8 Gen 2 processor.

Samsung will reveal all three models on February 1st.

Images credit: WinFuture

Source: Roland Quandt (@rquandt), WinFuture

Back in September 2022, a video came out that showed a Tesla driver taking a nap behind the wheel with their seat reclined while their vehicle was going faster than 100 km/hr on the Queen Elizabeth Way (QEW) in St. Catharines.

Similarly, a different Tesla Model S driver, in September 2020, was charged for being asleep behind the wheel while their vehicle was driving at speeds of 150 km/hr.

You’d imagine that Tesla drivers would be more careful, and avoid sleeping at the wheel after those instances, but you’d be wrong. Another Canadian Tesla driver has been filmed sleeping at the wheel, with full faith in their vehicle’s Autopilot feature.

https://www.instagram.com/p/CnQJ64nMt-X/

A video posted on Toronto-based Instagram account ‘Cara De Shaukeen,’ shows a lone male driver in a blue Tesla apparently asleep behind the wheel while driving on Highway 401 near Bayview Avenue in Toronto. The driver’s eyes are closed, and his head is tilted back as though he is asleep, while the car seems to be driving itself in the middle lane next to other vehicles.

The person behind the ‘Cara De Shaukeen’ account clarified that the video was shot by a passenger in another vehicle, and not by the account owner themselves, as reported by BlogTO.

Tesla’s Autopilot feature is meant to assist drivers in maneuvering through the road, not take over complete control. While the feature supports adaptive cruise control, lane keep assist, self-parking and more, drivers are supposed to stay attentive and have their hands on the steering wheel at all times when the mode is engaged.

Source: Cara De Shaukeen Via: BlogTO

Industrial operations with equipment running Siemens network-connected S7-1500 series programmable logic controllers (PLCs) are being warned to physically isolate the devices after the discovery of serious vulnerabilities.

According to researchers at Red Balloon Security, multiple architectural vulnerabilities exist in the Siemens SIMATIC and SIPLUS S7-1500 series PLCs that could allow attackers to bypass all protected boot features, resulting in persistent arbitrary modification of operating code and data.

The fundamental vulnerabilities — improper hardware implementations of the Root of Trust  (RoT) using a dedicated cryptographic-processor — are unpatchable and cannot be fixed by a firmware update, since the hardware is physically unmodifiable, say the researchers.

In an advisory, Siemens says an attacker would need physical access to the device to replace the boot image of the device and execute arbitrary code.

Because exploiting this vulnerability requires physical tampering with the product, Siemens recommends customers assess the risk of physical access to the device(s) and implement measures — such as placing the devices in locked control cabinets — to make sure that only trusted personnel have access to them.

Red Balloon also recommends IT pros implement runtime integrity attestation; add asymmetric signature check for firmware at bootup scheme; and encrypt the firmware with device-specific keys that are generated on individual devices.

The vulnerabilities have been named CVE-2022-38773, and a CVSS v3 score of 4.6 was assessed.

According to Siemens, SIMATIC S7-1500 CPU products are designed for discrete and continuous control in industrial environments such as manufacturing, food and beverages, and chemical industries.

The manufacturer has released new hardware versions for several CPU types of the S7-1500 product family in which this vulnerability is fixed, and is working on new hardware versions for remaining PLC types to address this vulnerability completely.

An attack scenario would look like this, says Red Balloon: An attacker with physical access to the device could either attach to the I2C communication bus or extract the physical ATECC chip from the PLC’s PCB to falsely authenticate and use it as an oracle to generate firmware decryption material. The Siemens ADONIS RTOS Firmware and bootloader integrity check is located in the firmware itself (chain of trust) which can be easily bypassed through the attacker’s tampered firmware.

The last step would be flashing the modified firmware onto the device either through NAND flash reprogram, or to chain it with an existing remote code execution vulnerability. By flashing malicious firmware on a target device, either physically or by exploiting an existing remote code execution vulnerability, attackers could persistently gain arbitrary code execution and potentially circumvent any official security and firmware updates, without the user’s knowledge.

The post Restrict physical access to certain Siemens PLCs, industrial admins warned first appeared on IT World Canada.

Koodo and Virgin Plus have upped the monthly cost of their unlimited talk and text plans by $1. At $33/mo now, the plans are even worse value than before.

The unlimited talk and text plans are exactly as they sound — subscribers get unlimited minutes and unlimited texting, but data is pay-per-use (read: expensive). These plans are great for people who just need access to calling and texting, but for a while, the plans cost $32/mo, an arguably high price for what’s on offer. (It’s worth noting that back in January 2022, these plans cost about $30/mo).

Back in August 2022, Koodo, Virgin, and Fido briefly lowered their respective unlimited talk and text plans to $27/mo, a more acceptable price but still pricier than comparable plans from other budget brands.

After the Black Friday deals and before the Boxing Week deals, the three flanker brands put the unlimited talk and text plan back up to $32, and now Telus’ Koodo and Bell’s Virgin have pushed the plans to $33/mo. Fido, for now, remains at $32/mo.

Of course, there’s absolutely no reason to pay more than $30/mo for these plans when other providers offer talk and text for less. Telus flanker brand Public Mobile, Rogers flanker brand Chatr Mobile, and Bell flanker brand Lucky Mobile all offer a $25/mo unlimited talk and text plan with 1GB of data capped at 3G speed (technically, Chatr and Lucky offer 500MB and a bonus 500MB to customers who sign up for automatic payments for a combined 1GB).

Now, 1GB of data capped at 3G speed isn’t a lot, but if the goal is unlimited talk and text for a reasonable price, these are among the best value out there.

You can view Koodo’s plans here and Virgin’s plans here.

Mohammad Qureshi has had a varied and interesting career that has led to his current position as Government of Ontario CIO and Associate Deputy Minister.

“I got my start with a clean water agency fixing laptops and PCs,” Qureshi told ITWC CIO Jim Love in a recent episode of the ITWC podcast series Leadership in the Digital Enterprise. “From there I got into programming, and then project management.”

“I got to do a bit of industrial automation back then,” he said. Qureshi learned a lot about water and wastewater in those days, and how communities – particularly Indigenous – that do not have access to clean drinking water are impacted. “That marked the beginning of my interest in social services, and in giving back to the community. It would eventually bring me into the core of government, where I have been ever since.”

This is the essence of Mohammad Qureshi. While his career has always involved technology, his primary focus, since the early days of his career, has been on serving others.

 

Essential Qualities

This care and concern for people carries over into Qureshi’s dealings with members of his team.

“You can’t do anything without people,” he said. “You can try to do it all yourself, but you’re not going to be very successful.” Leadership, he said, is about providing support for your team. And as no two people are the same, this support should be tailored.”

But good leaders, said Qureshi, do more than just support their people. They also give them the freedom they need to do the work they need to do – to the very best of their abilities. Don’t get in people’s way is the key lesson here. “Good leaders empower and drive ideas. But people need to be allowed to fail – it’s how they will learn and grow.”

Qureshi said you can do a great deal for people on your team when you remove obstacles and distractions from their progress.. “You can give your team a clearer purpose and [path forward] when you shield them from company noise, or remove that noise completely for them.”

Needful Things

The global pandemic tested Qureshi’s leadership skills in early 2020. He learned the importance of maintaining a healthy team – and continues to focus on this area.

“Mental health was top priority for us in those early days of the crisis,” he said. “When we first went to remote work, we had nonstop meetings. One day I had 33 meetings.”

Qureshi knew that this was not sustainable, and so looked for ways to relieve the stress of constant meetings. It’s important, he said, to ensure people are carving out time for the maintenance of their mental health. “We ended up instituting something called ‘recess time’ in which people could just drop in and discuss anything, like ‘Do you like pineapple on pizza?’” he said.

Good Things Come …

When asked what he has learned from the challenges he has faced in his time as Government of Ontario CIO, Qureshi stressed the importance of patience. That learning has paid off. “It takes time to move forward on certain things; but when you do push through, the result is massive.”

Another big learning for Qureshi was the difference between private and public organizations. “Coming into public service, my big learning was on the financial side. Government organizations don’t run like those in the private sector; they have a different way of doing their financials. Learning that was a challenge, as was how to get your ideas carried forward, organization-wide.” In all things, he said, patience was key.

Looking to the Future

Qureshi is excited about how new technologies can be leveraged by governments. He mentioned the promise of AI in government, particularly its application toward automating certain workloads and freeing people to devote themselves to higher-value work. Yet despite the promise of technology, Qureshi remains strongest on the power of networking and relationships.

Qureshi had some simple, down-to-earth but valuable advice for aspiring leaders that revealed his openness about who he is both as a leader and as a person.

“You really want to build trust in your relationships because this will help you move ideas and influence decision – really get your ideas out there. Me, I’m an introvert by nature, so it takes effort. If you’re not an extrovert, you need to practice building relationships, especially if you’re interested in a leadership role down the road.

“What you want as a leader is the perspective of others. Being a leader means taking in all the perspectives around you, and building that out into a key problem statement or solution that you can help resolve.”

Listen to the full interview with Mohammad Qureshi on the Leadership in the Digital Enterprise podcast.

The post Government CIO: Leadership is about patience and strong relationships first appeared on IT World Canada.

The University of Waterloo is working to develop secure 5G mobile networks that will aid Canada’s security and defence.

A team of computer scientists at the university is leading the project. It includes partners from École de technologie supérieure in Montréal, University of Regina, BlackBerry, NoviFlow, Rockport Networks and Rogers.

The consortium will create AI systems, among other technologies, to detect cyberattacks on 5G slices in real-time and respond to ensure the network stays secure.

“The goal of the consortium is to deploy 5G network slices that not only have high performance, flexibility and reliability but also have increased security levels required for critical applications,” Dr. Raouf Boutaba, the principal investigator for the project, said.

Funding for the $1.5 million project is provided by the Department of National Defence.

Image credit: Shutterstock 

Source: University of Waterloo

If you’re looking to drown out the noise while you workout, or at home or on the way to work, Apple is having a rare sale on its AirPods lineup.

You can now score the Apple AirPods Max for $728.40, which brings $50 back into your pocket. While these were released in 2020, it’s a great piece of tech that has impressive sound and a great build quality. Check out our review here.

In addition, a standard today for in-ear earbuds, the AirPods (2nd Generation) is at a low price of $147, which is a savings of 18 percent.

Check out these deals and others from Amazon here.

MobileSyrup utilizes affiliate partnerships. These partnerships do not influence our editorial content, though we may earn a commission on purchases made via these links that helps fund the journalism provided free on our website.

Source: Amazon Canada

House Republicans hold a panel to grill Big Tech about censorship and government collusion accusations, bosses are giving phoney managerial titles to workers to avoid paying overtime, and flights within, into and out of the U.S. are delayed or cancelled after a ‘computer glitch’.

That’s all the tech news that’s trending right now. Welcome to Hashtag Trending. It’s Thursday, January 12 and I’m your host, Samira Balsara.

U.S. House Republicans could soon launch an investigative panel, called the Select Subcommittee on the Weaponization of the Federal Government to investigate the ways federal government agencies collect information on U.S. citizens, Gizmodo reported. The main, longstanding allegation to be addressed and that will see committee members grill Big Tech is regarding conservative censorship and government collusion. The ‘Weaponization’ committee could also demand tech platforms like Meta and Twitter to fork over copies of emails, memos and other communications it had with the White House as part of the investigation to reveal alleged collusion. Reportedly, the committee’s interest in tech companies stems partially from the alleged internal documents revealed by Elon Musk, in the so-called ‘Twitter Files’

Source: Gizmodo

A new study shows that firms of all sizes and types are giving workers phoney managerial titles in order to avoid paying overtime, which researchers are perceiving as an exploitation of federal labour laws, Vice reported. The Fair Labor Standards Act set overtime pay rules to discourage overwork, encourage hiring and allow workers to benefit from logging in extra hours. But this also allowed firms to avoid paying overtime to salaried managers whose pay exceeded a set threshold. The creation of the law was influenced by the fact that managers were a special class of employee impacting a company’s success. However many such workers are managers in name only, and the national threshold is only $455 a week, or under $24,000 a year, Vice reported. It seemed to the researchers that there was a systemic issue at play. Companies, it appeared, were often doling out fancy-sounding titles to salaried employees and then paying them just enough to legally shirk overtime rules.

Source: Vice

The Federal Aviation Administration (FAA) said it was working to restore its Notice to Air Missions (NOTAM) systems which alerts pilots of potential hazards along a flight route, after some 4948 flights within, into or out of the U.S. have been delayed while 868 were cancelled yesterday. Since then, air traffic operations have started resuming gradually across the U.S. The FAA claimed that a computer glitch caused the NOTAM to fail. Press secretary of President Joe Biden said that while there was no evidence of a cyberattack behind the glitch, the president has directed to conduct a full investigation into the causes.

Source: Sky News

According to a report by Wall Street Journal, Moderna is considering raising the price of its Covid-19 vaccine by 400 per cent– from $26 per dose to between $110 and $130 per dose.The plan, if realized, would match the previously announced price hike for Pfizer’s rival COVID-19 vaccine. Now that the federal government is backing away from distributing the vaccines, their makers are moving to the commercial market—with price adjustments, Ars Technica reported. Lawmakers have already condemned the steep price increases by Pfizer and Moderna. The revelation that Moderna may match Pfizer’s price increase comes just a day after Moderna announced that its COVID-19 vaccine sales in 2022 totaled approximately $18.4 billion.

Source: Ars Technica

That’s all the tech news that’s trending right now. Hashtag Trending is a part of the ITWC Podcast network. Add us to your Alexa Flash briefings or your Google Home daily briefing. Make sure to sign up for our Daily IT Wire newsletter to get all the news that matters directly in your inbox every day. Also, catch the next episode of Hashtag Tendances, our weekly Hashtag Trending episode in French, which drops every Thursday morning. If you have a suggestion or a tip, drop us a line in the comments or via email. Thank you for listening, I’m Samira Balsara.

The post Hashtag Trending Jan 12- House Republicans to grill Big Tech; Phony managerial titles to avoid paying overtime; Flights grounded first appeared on IT World Canada.