Tag Archive for: menu

Balmoral Pasture Menu Now Fraught With Data Risk – channelnews

/in


Mosman is well known for its price gouging no more at local coffee shops, who are now blaming COVID for a multitude of problems.

Local Balmoral Beach restaurant Pasture of Balmoral has not only lifted the price of a large offer to $5.90 they are also asking customers to QR code an order from their table.

Desperate for a solution to staff problems, Pasture moved to using the Menu data capture app, the only problem is that Menu is capturing more than one’s food order.

At Pasture when you tap to order they are collecting name and address, phone number, email address and you have to pay by either entering your credit card details, or using Google Pay or PayPal.

What they are doing is fraught with danger and risk and there is also no need for an app provider to collect so much personal data.

The first problem is the use of QR codes, according to Pasture management, “It’s because we are short staffed”.

When I asked what security was in place to protect my data management claimed they were “not collecting data” they were also unable to confirm where Menu was storing the data capture from a QR code now on every table.

When you sit down there is no waiter service despite the price rises, there is also no optional menu on the table.

The handy “quick response” barcodes can pull up a menu, a payment system, or any number of websites and widgets on your smartphone.

While they’ve been around since 1994, the pandemic prompted more businesses to adopt QR codes as a result we are seeing a major increase in security problems due to the growth in QR codes and data capture by apps used in cafes such as Pasture.

Meenu is capturing the data, they are building profiles on individuals with staff at the cafes and restaurants clueless as to what is happening with that data.

The convenience of QR Codes comes with security risks.

According to a survey of consumers conducted by MobileIron, 71 percent of respondents could not tell the difference between a malicious QR Code and a legitimate one.

Also, more than 51 percent of respondents did not have mobile security on their devices (or did not know if they did) to provide QR Code security in case of a QR Code-related attack.

My wife is…

Source…

Air Fryer Hacking On The Menu As Security Flaws Revealed

/in


Researchers from the Cisco Talos Intelligence Group have uncovered security vulnerabilities in a popular kitchen appliance, the Cosori Smart Air Fryer. The blog post confirming these vulnerabilities states that these could “hypothetically allow an adversary to change temperatures, cooking times and settings on the air fryer.” The remote code execution vulnerabilities, CVE-2020-28592 and CVE-2020-28593 could allow remote code injection by an attacker. Temperature and timer controls in the hands of a malicious attacker could prove dangerous in the extreme, but what is the real-world risk?

Vacuum cleaners, coffee machines and sex toys

The internet of not so smart things is a security and privacy nightmare, no doubt about that, but some vulnerabilities are more worrying than others.

Last year I reported on a robot vacuum cleaner that could be hacked to spy on the user. Out of the lab and in the real world, this would require a firmware update, access to the local network and the correct ambient light and sound levels to work.

There are, truth be told, much easier ways to use technology to eavesdrop on someone.

Smart lock issues, yep. Coffee machine ransomware, less so. Connected car hacking and even permanently locking an internet-connected chastity belt, well, yeah.

Air fryer hacking, not so much.

The problem with air fryer security vulnerabilities

Obviously, the ability to tamper with temperature and timer controls on a cooking device dangerous thing that, if successfully exploited, could potentially start a fire. So why am I not overly concerned about this one?

Well, to begin with, the researchers admit that the attacker “must have physical access to the air fryer for some of these vulnerabilities to work.” Given that there are only two vulnerabilities to begin with, the exploit opportunity has already shrunk considerably, it would seem to me.

OK, you have to allow for the ingenuity of persistent threat actors, which might see a scenario involving a stack of other exploits and malware to gain access to the local network and then the air fryer firmware. Still, it’s a bit of a stretch. At least as far as the average user, or rather risk to the average…

Source…

Declutter Your Menu Bar With This Mac App

/in

As you install more and more software on your Mac, your menu bar might start to get cluttered with extraneous icons. This not only looks messy, but it can make it a bit of a chore to access settings …
mac hacker – read more