Tuesday News: Amazon, the OED, Apple, and Letters Bookshop
Amazon’s customer service backdoor – A very frightening account of how customer service can give someone trying to get your personal information, including a credit card number, a “backdoor,” as long as they have enough details (name, email address) to provide to the customer service agent. One commenter notes that he had the same issue three years ago, and Amazon has apparently done nothing to fix it.
After being the victim of these attacks for months, I’d like to make some recommendations for services:
- NEVER DO CUSTOMER SUPPORT UNLESS THE USER CAN LOG IN TO THEIR ACCOUNT. The only exception to this, would be if the user forgot the password, and there should be a very strict policy. The problem is, 9999 times out of 10000 support requests are legitimate, agents get trained to assume they’re legitimate. But in the 1 case they’re not, you can completely fuck someone over.
- Show support agents the ip address of the person connecting. Is it a usual one? Is it a VPN/tor one? etc. Give them a warning to be suspicious.
- Email services should allow me to easily create lots of aliases. Right now the best defense against social engineering seems to be my fastmail account which allows me to create 1 email address alias per service. This makes it incredibly difficult for an attacker when they can’t even figure out your email. – Eric/Medium
Feminists attack Oxford Dictionary of English for ‘reinforcing sexist stereotypes’ – I know this is the most horrible title ever, but I refuse to link to The Guardian, and this article has a great summary of Michael Oman-Reagan’s tweets providing examples of what appear to be a pretty consistent gender bias in the OED. You can read Oman-Reagan’s full account here, (he’s an anthropologist of space, science, and social movements at Memorial University in Newfoundland), where he provides examples like “shrill,” “promiscuous,” and “grating,” which includes sentences featuring the pronoun “she,” and words like “research” and “doctor,” featuring sentences with the pronoun “he.” The OED’s basic defense seems to be that the sentences come from real media sources, ignoring the fact that they’ve actually selected those sentences rather than others.
According to the Oxford Dictionaries website, its example sentences are “extracted from the world’s newspapers and magazines, academic journals, fiction, and blogs.”
In what could be read as a premptive caveat to such criticisms, Oxford Dictionaries says: “There are hundreds of thousands of English headwords and senses in Oxford Dictionaries, and almost every one of these words, senses, and phrases has been linked to a selection of up to 20 extra examples from the databank. If a word or phrase has more than one meaning, each individual sense is linked to its own set of example sentences.
“Please note: All the examples sentences throughout the site are real examples of usage. They are taken from a huge variety of different sources, from all parts of the world where English is used, and they reflect a wide spectrum of views and levels of language. Opinions and views expressed in the usage examples are the views of the individuals concerned and are not endorsed by Oxford University Press.” – The Telegraph and Michael Oman-Reagan
Apple’s “Night Shift” Mode: How Smartphones Disrupt Sleep – As I sit in bed and type this, I know that I should not be sleeping anywhere near my smartphone and/or laptop. Because the light from these devices can apparently disrupt the circadian rhythms, which in turn can lead to chronic health problems. Apple will apparently be coming out with a feature called “Night Shift,” to mitigate this risk. As Penn State neuroscientist Ann-Marie Chang explains,
But exposure to artificial light at unusual times can cause similar shifts that disturb natural circadian rhythms. And Chang said human retinal ganglion cells are particularly sensitive to light with shorter wavelengths at the blue end of the spectrum, such as the light produced by smartphone, computer and TV displays.
While modern LED domestic lighting is often blue-light-enriched as well, the displays on many popular gadgets are more likely to have a negative effect, Chang said. “The reason for the focus on phones, laptops, tablets and other portable light-emitting devices as causing issues with circadian rhythms is that they are light sources that the user looks directly into, as opposed to an ambient light source,” she said. – Scientific American
Wonder of Thunder Bay: Look inside a gallery of overlooked books – This is just a lovely, and bittersweet, portrait of Canadian bookseller Nicky Drumbolis. Actually, “bookseller” isn’t an encompassing enough word for all that Drumbolis and his store represent. He is also a writer, a publisher, a writer’s advocate, and more. And his store, Letters Bookshop, represents 50 years of working, collecting, and caring for one-of-a-kind literary objects.
What’s most fascinating about Nicky Drumbolis and his one-of-a-kind collection isn’t its value, which he estimates is in the millions, or its size – although it includes roughly 50,000 titles, and fills the building, floor to ceiling – but the focus. He has devoted a great portion of his life and livelihood to work that, as he describes it, “slips through the cracks.” Pamphlets and hand-sewn chapbooks that were produced in minuscule print runs; novels and poetry collections published by the most obscure of presses; the work of authors whose names the world has forgotten, if it ever knew them.
Mr. Drumbolis describes himself, as do many others, as an outsider, and he has devoted himself to the literary equivalents. Walking into his bookstore is to be exposed to an alternate history of publishing, one in which the likes of Blew Ointment Press and Ganglia and grOnk are just as celebrated as McClelland & Stewart or Farrar, Straus and Giroux. . . .
“All of this is my memory,” Mr. Drombolis says. “Every single thing in here has some memorable factor about it, and every piece in here was scavenged from some experience. And that experience is still pregnant in these things. This is all the inside of my head, in a way.” – The Globe and Mail
I’m curious because I have a Galaxy, but don’t you turn your screens off at night and then put them face down? I have both my tablet and phone plugged in on the nightstand and once they’re turned face down, the screen doesn’t come on again. And I use flu.x on them as well as my laptop and that’s made a huge difference because as the days wanes, it cuts the amount of blue light emitting from the screen and it turns a more rosey hue. I know apple gave flu.x the boot after a few months, but I believe you can still find it and it will work though you’d probably have to sideload it at this point.
Apple’s finally doing something about this? Yay! The third app I tried to install on my iPad was f.lux, and I hated that the only way was to jailbreak. (Apple doesn’t allow apps that mess with appearence, I read somewhere).
Now I won’t be tempted to jailbreak any more.
Aside from medical reasons, there’s another positive effect I’ve noticed. I use twilight on my smartphone, and whenever I am out at night, I can actually see whatever’s around me, as I am not blinded by my phone.
From the Night Shift article: “This app will use the device’s clock and geolocation to determine what time the sun sets and will automatically shift the phone’s display color to the warmer, or redder, end of the light spectrum until the following morning.”
WHAT TIME THE SUN SETS… Bwahahahaha! As someone who lives Up North where the sun sets at 4pm in the winter (I has a SAD—get it? *wink wink*) and after 11pm in the summer (hello, Too Much Daylight mania!), I really really hope they take the clock more into account than sunset.
Anyway, that struck me as funny. Never mind me, it’s probably just a vitamin D deficiency… ;)
That Amazon one is rather alarming. Makes me glad I have to stick to gift cards and that there’s rarely more than $10 in my account for long periods.
@theo: I shouldn’t even be using my laptop in bed, because I’m sure it’s interfering with my body’s preparation for sleep.
@Lostshadows: You can also get a debit card that you only load with a small amount of money for use on sites like Amazon.
@Janet/Robin: I’m so bad. I don’t use mine in bed, but right up to the point where I close the lid and toddle off to bed. I have maybe three minutes of stuff to do and then I’m in bed. I really saw a huge difference with flu.x, but now I understand why Apple gave them the boot. They were coming up with their own version.
And I feel the need to qualify that difference. I slept really, really, REALLY bad! Half an hour at a time once the two hours it took me to fall asleep kicked in. Now, it only takes me an hour or so, sometimes less to fall asleep and I’ll sleep just really, really bad for a couple hours at a time before I wake up. So yes, it’s made a difference to work with the rose spectrum rather than the blue. But that’s just me.
Why do you refuse to link to The Guardian? It’s a much better newspaper than The Telegraph, which you did link to …
I stopped using laptop and phone for an hour or two before trying to sleep and have noticed a difference. I do have a light-shifting program on the laptop. I’d welcome one for the phone.
@Jean S.: I wondered the same thing.
@Jean S. and @Darlynne: I stopped linking to them after they posted the Kathleen Hale piece. Some background here: https://dearauthor.com/features/letters-of-opinion/poisoning-the-well/
Further to the Amazon security issue (lost internet access yesterday): When I installed Amazon Underground on my tablet, I was alarmed at how much personal and account information is shown in Settings. If I recall correctly–because I uninstalled the app immediately–I saw my full name, most or all of my home address, email address and the last four numbers of both credit cards attached to my account.
I’ve discussed this with Amazon customer service several times, on the phone and in writing, and their assurance that my information is safe is laughable. What’s so baffling is that, on my PC, I have to sign in with my password to see anything related to my account; similarly, the original Amazon App Store only displays who the device is registered to, nothing else.
I would advise everyone who has Underground to check their settings. Perhaps and hopefully things have changed since, well, November when I stumbled on this. It is irresponsible and insane for Amazon to open up bigger risks this way. What hacker needs a back door when, at least in my case, the information is served up on a tablet or phone?