Hasta La Gadget!

Allegations of misleading advertising practices among Canada’s big telecom companies has been a recurring subject for some time, and it’s now been brought to the fore once again in the form of a multi-million dollar lawsuit. The country’s Competition Bureau announced today that, after a five-month investigation, it has decided to sue all three carriers and the industry group that represents them over ads that promote so-called premium texting services. In addition to demanding that such ads stop, the government agency is seeking full customer refunds for any charges incurred and a $10 million penalty from each carrier, plus an additional $1 million from the Canadian Wireless Telecommunications Association. For its part, the CWTA has unsurprisingly taken issue with the lawsuit, saying in a statement that it reached out to the Bureau last year to discuss the issue, and that its actions today “could disrupt the text message services, such as severe weather alerts, charitable donations, flight status updates or sports scores, on which millions of Canadian consumers depend.” You can find that full statement, and the Competition Bureau’s announcement of the lawsuit, at the links below.

Filed under: Cellphones, Mobile

Canada’s Competition Bureau sues Bell, Rogers and Telus over alleged misleading advertising originally appeared on Engadget on Fri, 14 Sep 2012 16:40:00 EDT. Please see our terms for use of feeds.

Permalink   |  Competition Bureau, CWTA  | Email this | Comments

If you’re an iPhone owner, you may want to use good judgment before responding to any out-of-the-blue text messages in the near future. French jailbreak developer and security researcher pod2g finds that every iPhone firmware revision, even iOS 6 beta 4, is susceptible to a flaw that theoretically lets a ne’er-do-well spoof the reply address of outbound SMS messages. As Apple is using the reply-to address of a message’s User Data Header to identify the origin rather than the raw source, receiving iPhone owners risk being fooled by a phishing attack (or just a dishonest acquaintance) that poses as a contact or a company. A proof of concept messaging tool is coming to the iPhone soon, but pod2g is pushing for an official solution before the next iOS version is out the door. We’ve asked Apple for commentary and will get back if there’s an update. In the meantime, we wouldn’t panic — if the trickery hasn’t been a significant issue since 2007, there isn’t likely to be a sudden outbreak today.

Filed under: Cellphones

iPhone reportedly vulnerable to text message spoofing flaw originally appeared on Engadget on Fri, 17 Aug 2012 12:53:00 EDT. Please see our terms for use of feeds.

Permalink   |  pod2g  | Email this | Comments

Call the Power Pwn the champion of white hat hacking. Underneath that Clark Kent power strip exterior, there’s a Superman of full-scale breach testing that can push the limits of just about any company network, whether it takes 3G, Ethernet or WiFi to get there. Pwnie Express’ stealthy sequel to the Pwn Plug ships with a Debian 6 instance of Linux whose handy hacking tools are as easy to launch as they are tough to detect. There’s just one step needed to create a snoop-friendly Evil AP WiFi hotspot, and the box dodges around low-level NAC/802.1x/RADIUS network authentication without any help; in the same breath, it can easily leap into stealth mode and keeps an ongoing encrypted link to give do-gooders a real challenge. The hacker doesn’t even need to be in the same ZIP code to crack a firewall or VPN — the 3G link lets the Power Pwn take bash command-line instructions through SMS messages and doles out some of its feedback the same way. While the $1,295 device can theoretically be used for nefarious purposes, DARPA’s blessing (and funding) should help keep the Power Pwn safely in the hands of security pros and thwart more than a few dastardly villains looking for weak networks.

Filed under: Networking, Internet

DARPA-backed Power Pwn is power strip by day, superhero hack machine by night originally appeared on Engadget on Sun, 22 Jul 2012 07:54:00 EDT. Please see our terms for use of feeds.

Permalink Wired  |  Pwnie Express  | Email this | Comments

When one of your main services throws up a pretty embarrassing bug, you’re going to want to squash that quick. Skype has stepped up and done just that, according to its blog. The hotfix will be rolling out for version 5.10 for Windows, 5.8 for Mac, 4.0 for Linux and 1.2 for Windows Phone. Skype was also quick to point out that not all clients (and therefore users) were affected. If you were on 5.9 for Windows, version 2.8 for Android or Skype 4.0 for iOS, then the firm assures you that you won’t be affected. The official line is that the fix should start arriving in the next couple of days, so still best to keep a lid on those office gossip chats for now. Let us know if you start getting the update in the comments below.

Filed under: Internet

Skype confirms fix rolling out for instant messaging bug originally appeared on Engadget on Tue, 17 Jul 2012 09:28:00 EDT. Please see our terms for use of feeds.

Permalink The Next Web  |  Skype  | Email this | Comments