Article note: Touchscreens have always been a UX disaster, at least we're finally having to admit it and change course because touchscreen suck is _literally killing people_ in cars (and Naval controls the US DOD got taken on).
Honda has done what no other car maker is doing, and returned to analogue controls for some functions on the new Honda Jazz.
While most manufacturers are moving to touchscreen controls, identifying smartphone use as their inspiration – most recently seen in Audi’s latest A3 – Honda has decided to reintroduce heating and air conditioning controls via a dial rather than touchscreen, as in the previous-generation Jazz.
Unlike what the introduction states, Honda joins fellow Japanese car maker Mazda in not just blindly using touchscreens for everything inside cars. This is a good move, and definitely takes some guts, since I’ve seen countless car reviewers – including my standout favourite, Doug DeMuro – kind of blindly assuming that any car without 100% touchscreen control is outdated, without questioning the safety consequences.
Article note: Eeeh. Not _that_ bad, it's a MITM on the package system because HTTP transport and Checksums was fine in past decades and grossly inadequate now.
For almost three years, OpenWRT—the open source operating system that powers home routers and other types of embedded systems—has been vulnerable to remote code-execution attacks because updates were delivered over an unencrypted channel and digital signature verifications are easy to bypass, a researcher said.
OpenWRT has a loyal base of users who use the freely available package as an alternative to the firmware that comes installed on their devices. Besides routers, OpenWRT runs on smartphones, pocket computers and even laptops and desktop PCs. Users generally find OpenWRT to be a more secure choice because it offers advanced functions and its source code is easy to audit.
Security researcher Guido Vranken, however, recently found that updates and installation files were delivered over unencrypted HTTPs connections, which are open to attacks that allow adversaries to completely replace legitimate updates with malicious ones. The researcher also found that it was trivial for attackers with moderate experience to bypass digital-signature checks that verify a downloaded update as the legitimate one offered by OpenWTR maintainers. The combination of those two lapses makes it possible to send a malicious update that vulnerable devices will automatically install.
Article note: Zoom, like so many pieces of technology, is a total shit show that got thrust into widespread use when it was _entirely_ unprepared, and it's the modern era tech so a lot of the lack of shit-together is valley-bro data safety hubris.
I'm pretty impressed that it's holding up as well as it has technically, and glad they're getting held accountable for policy.
We have several more weeks, if not several more months, to go in this sudden era of Everything from Home. Work from home, school from home, funerals from home, church from home, happy hour from home—you name it, and we as a society are trying as best as we can to pull it off remotely. Tech use as a result is up all over, but arguably the biggest winner to date of the "Oh, crap, where's my webcam" age is videoconferencing platform Zoom.
Zoom's ease of use, feature base, and free service tier have made it a go-to resource not only for all those office meetings that used to happen in conference rooms but also for teachers, religious services, and even governments. The widespread use, in turn, is shining a bright spotlight on Zoom's privacy and data-collection practices, which apparently leave much to be desired.
The challenge is particularly pronounced in the health care and education sectors: Zoom does offer specific enterprise-level packages—Zoom for Education and Zoom for Healthcare—that have compliance with privacy law (FERPA and HIPAA, respectively) baked in. Many users in those fields, however, may be on the free tier or using individual or other types of enterprise licenses that don't take these particular needs into consideration.
