Pinned toot


I've been on Mastodon over at
social.weho.st/@dazinism
I'm based in the UK and into food, land, tech and people collaborating to manage them.
I'm involved in a few projects -

ourfieldproject.org/ 40 people using online tools to collaborate managing a field

travellingtoolbox.org.uk/ is a mobile hackspace/workshop set up to help environmental & community projects build & fix tools and infrastructure

farmhack.org/wiki/soilhack-wik Soilhack is a peer 2 peer learning network

Spearphone: A Speech Privacy Exploit via Accelerometer-Sensed Reverberations from Smartphone Loudspeakers



In this paper, we build a speech privacy attack that exploits speech reverberations generated from a smartphone's inbuilt loudspeaker captured via a zero-permission motion sensor (accelerometer). We design our attack, called Spearphone2, and demonstrate that speech reverberations from inbuilt loudspeakers, at an appropriate loudness, can impact the accelerometer, leaking sensitive information about the speech. In particular, we show that by exploiting the affected accelerometer readings and carefully selecting feature sets along with off-the-shelf machine learning techniques, Spearphone can successfully perform gender classification (accuracy over 90%) and speaker identification (accuracy over 80%). In addition, we perform speech recognition and speech reconstruction to extract more information about the eavesdropped speech to an extent. Our work brings to light a fundamental design vulnerability in many currently-deployed smartphones, which may put people's speech privacy at risk while using the smartphone in the loudspeaker mode during phone calls, media playback or voice assistant interactions.

#Android #privacy #security #mobilesecurity

#^https://arxiv.org/abs/1907.05972

Spearphone

A New Side-Channel Attack Lets #Android Apps Eavesdrop On Loudspeaker Data Using Accelerometer Motion Sensorβ€”Without Requiring Any Device Permission.

Learn More ➀

thehackernews.com/2019/07/andr

[EN]We are looking for translators who can help us to translate our last blog note from French to English! Thanks!
[FR] On recherche des personnes pour traduire notre dernier billet de blog du français à l'anglais ! Merci !

mensuel.framapad.org/p/jhqvf3g

Amazon Show more

Hello, world!

This is the first toot from an official account for #Glimpse, a new fork of the GNU Image Manipulation Program.

Follow me for updates on this cool new project.

@yunohost

#YunoHost use case : YunoHost for non-profit organizations

The object of this page in the #YunoHost documentation is to present a specific use of #YunoHost for non-profit organizations.
And how centralized services can be replaced by #YunoHost

yunohost.org/#/use_case_non-pr

the privacy and security focused fork now has early support for the

A MiA2 running CalyxOS is probably now the most secure / private budget smartphone available

As it is an Android One phone it will get full monthly security updates from Xiaomi for another two years, Calyx will incorporate these and push them onto their users.

gitlab.com/calyxos/calyxos/iss

Maps Re-imagined: Digital, Informational, and Perceptional Experimentations in Progress

Tyng-Ruey Chuang, Chih-Chuan Hsu, Huang-Sin Syu

[An abstract prepared for and presented at "Digital Humanities 2019: Complexities", July 2019, Utrecht, the Netherlands.]

HTML: iis.sinica.edu.tw/~trc/public/

PDF: media.academia.tw/u/trc/m/maps

DH2019 Session: conftool.pro/dh2019/index.php?

If you read and enjoy my travel posts through my website or Mastodon* and you are planning to travel to somewhere I've been and you can't afford an actual travel agent and you find travel planning too stressful or time consuming to fit into your life, I would be delighted to share advice.

My specialties are land and sea (not air) transit, especially long distance European buses, and finding vegan food. I'm happy to also help with general stuff to do, and even more in-depth help with planning and realistic budgeting if you want because I actually love wasting away hours and days researching travel stuff.

#rhiarofreetravelagent

*or a feed reader you built yourself or another decentralised service

rhiaro.co.uk/2019/07/mastodon-

Workers at an Amazon warehouse in Minnesota will be striking during Prime Day, July 15! bloomberg.com/news/articles/20

In solidarity, don't order from Amazon, visit the site, or use the app.

🐘

My hours at work have been cut, I will have to start freelancing again or try to get more higher tier Patreon sponsors if I want to keep working on Pixelfed this much.

If you know anyone looking for a full stack laravel developer, let me know!

Patreon - patreon.com/dansup

Open Collective - opencollective.com/pixelfed

invite to Portland Tech Workers Coalition meeting Tuesday July 16th; boosts appreciated Show more

@privacylab "One recent study found that Amazon is the second most-trusted institution of any kind in the United States, ahead of Google, the police, and the higher-education system, and trailing only the U.S. military."

that's gotta be one of the most fucked up sentences I ever read

Hey Google, What Exactly Do Your Security Patches Tell Us? A Large-Scale Empirical Study on Android Patched Vulnerabilities
"we perform a comprehensive study of 2,470 patched Android vulnerabilities collected from data sources such as Android security bulletins, CVEDetails, Qualcomm Code Aurora, AOSP Git repository, and Linux Patchwork"

#^https://arxiv.org/abs/1905.09352

#Android #security #updates

@bstacey godd did you hear about the situation in germany? because it's incredible

basically, the German Conference of University Deans ("HRK"), in a moment of unlikely clarity, decided that they were Tired Of This Shit and told all the publishers that from now on all german universities would make one large agreement with them, on the universities terms, for access

elsevier and springer made offers so laughable that the HRK actually literally wrote a press release about how they should "come back to the table when they're ready to make a serious offer" and since then many universities have just kind of let access contracts expire

they recently came to an agreement with wiley, rest is still ? ? ? ? ?

it's fantastic because every day this goes on is a day more scientists learn about the greatest development in science access of this century, which, lets be quite honest, is scihub

Hey y'all, I'm putting together a compendium of interviews with members for the ed.coop site. Suggestions are appreciated (all content types welcome)

Kate Raworth's "doughnut" does a nice job of expressing the objectives of economic development in the , but says nothing about the "how," leaving a vague taste of global state and NGO campaign for reforms.

This is where I find @luisrazeto, and other theorists of useful. But I think we still need to re-articulate solidarity economy on the basis of the climate crisis: if it "changes everything", the changes need to be understood in solidarity economy, too.

Show more
social.coop

social.coop is a cooperatively-run corner of the Fediverse. The instance is democratically governed by its members, who generally share an interest in the co-op model, but topics of discussion range widely.

If you are interested in joining our community, please review our Bylaws and Code of Conduct. If you agree with them, you may apply for membership on our instance via this link

Our instance is supported by sliding scale contributions of $1-10/mo made via Open Collective. You must have an active Open Collective account to apply for membership; you may set one up here