Thinking about taking your computer to the repair shop? Be very afraid

Not surprisingly, female customers bear the brunt of the privacy violations.

If you’ve ever worried about the privacy of your sensitive data when seeking a computer or phone repair, a new study suggests you have good reason. It found that privacy violations occurred at least 50 percent of the time, not surprisingly with female customers bearing the brunt.

Researchers at University of Guelph in Ontario, Canada, recovered logs from laptops after receiving overnight repairs from 12 commercial shops. The logs showed that technicians from six of the locations had accessed personal data and that two of those shops also copied data onto a personal device. Devices belonging to females were more likely to be snooped on, and that snooping tended to seek more sensitive data, including both sexually revealing and non-sexual pictures, documents, and financial information.
Blown away

“We were blown away by the results,” Hassan Khan, one of the researchers, said in an interview. Especially concerning, he said, was the copying of data, which happened during repairs for one from a male customer and the other from a female. “We thought they would just look at [the data] at most.”

The amount of snooping may actually have been higher than recorded in the study, which was conducted from October to December 2021. In all, the researchers took the laptops to 16 shops in the greater Ontario region. Logs on devices from two of those visits weren’t recoverable. Two of the repairs were performed on the spot and in the customer's presence, so the technician had no opportunity to surreptitiously view personal data.

In three cases, Windows Quick Access or Recently Accessed Files had been deleted in what the researchers suspect was an attempt by the snooping technician to cover their tracks. As noted earlier, two of the visits resulted in the logs the researchers relied on being unrecoverable. In one, the researcher explained they had installed antivirus software and performed a disk cleanup to “remove multiple viruses on the device.” The researchers received no explanation in the other case.

Here’s a breakdown of the six visits that resulted in snooping:

​​image.png​

The laptops were freshly imaged Windows 10 laptops. All were free of malware and other defects and in perfect working condition with one exception: the audio driver was disabled. The researchers chose that glitch because it required only a simple and inexpensive repair, was easy to create, and didn’t require access to users’ personal files.

Half of the laptops were configured to appear as if they belonged to a male and the other half to a female. All of the laptops were set up with email and gaming accounts and populated with browser history across several weeks. The researchers added documents, both sexually revealing and non-sexual pictures, and a cryptocurrency wallet with credentials.

The researchers also configured the laptops to run a custom logging app that used the Windows Steps Recorder utility in the background. The utility captured the screen on every mouse click and recorded each key pressed by the user. The researchers also enabled Windows Audit Policy to log access to any file on the device.

The researchers then brought the laptops to two national outlets, two regional ones, and four local ones. Half the customers were male, and the other half were female.

Besides finding widespread snooping, the study uncovered other problems. Among them: The vast majority of repair shops provide no privacy policy and those that do have no means of enforcing them. Even worse, repair technicians required a customer to surrender their login password even when it wasn’t necessary for the repair needed.

These findings came from a separate part of the study, in which the researchers brought an Asus UX330U laptop into 11 shops for a battery replacement. This repair doesn’t require a technician to log in to the machine, since the removal of the back of the device and access to the device BIOS (for checking battery health) is all that’s needed. Despite this, all but one of the repair service providers asked for the credentials to the device OS anyway.

When the customer asked if they could get the repair without providing the password, three refused to take the device without it, four agreed to take it but warned they wouldn’t be able to verify their work or be responsible for it, one asked the customer to remove the password, and one said they would reset the device if it was required.

In all, the findings from the study were:

• Privacy policies and the practice of communicating protocols and controls to protect customers’ data do not exist across service providers of all sizes.
• Service providers largely (10/11) require “all access” to the device, even when it is unnecessary.
• Technicians often snoop on customers’ data (6/16) and sometimes copy those to external devices (2/16).
• Technicians who violate privacy often do so carefully to not generate evidence (1/6) or remove such evidence (3/6).
• A significant proportion of broken devices (26/79, 33 percent) are not repaired due to privacy concerns. For the devices that get repaired, device owners are concerned about threats to their privacy but do not use the proper controls to protect their data.

The results likely confirm what many more experienced computer users already know: that their data is vulnerable to snooping or copying any time they surrender their device to an untrusted or unknown individual, particularly when the individual has their login password. But for a much larger percentage of people wanting to recover crucial data on a broken device, the findings are likely a wake-up call with few, if any, good solutions.

“Our investigation shows an absence of policies and controls to safeguard customers’ data across all types of repair service providers,” the researchers concluded. “Our work calls to action device manufacturers, OS developers, repair service providers, and regulatory bodies to take appropriate measures to safeguard customers’ privacy in the repair industry.”​

The gruesome WWI treatment that’s making a comeback on the NHS

Data show the use of larval therapy to treat hard-to-heal wounds has been rising steadily, despite the ‘yuck factor’

Previous research has shown maggot therapy is effective in treating hard-to-heal skin wounds, while other studies have shown it is a cost-effective method.

Maggot therapy was accepted for use by the NHS in 2004 and one UK firm – BioMonde, based in Bridgend, south Wales – rears thousands of green bottle blowflies every year to sell to the NHS and across Europe.

The firm sells 9,000 tea-bag style “biobags” full of larvae to the NHS every year.

‘Natural aversion to creepy crawlies’

The NHS Digital data show the technique has been gradually increasing since 2007, when records began. The figures dipped in 2019/20 to 1,190 treatments and 776 in 2020/21, likely as a result of the pandemic.

To treat wounds that won’t heal with antibiotics, or as a “last resort” in a patient’s treatment, the “tea bag” full of larvae, which are no bigger than 1mm, is placed on top of the open tissue, covered with a dressing and left for up to four days.

The maggots then feed on the dead tissue and, as some research suggests, secrete antimicrobial molecules which disinfect the wound.

Yamni Nigam, professor of healthcare science at Swansea University, told BBC Radio 4 Today: “Then they drink all that slurry and soup back up, through the bag, and then you remove the bag full of all the process of the wound.”

A survey of nurses’ attitudes towards the treatment, carried out by Prof Nigam, found that specialist wound nurses are highly in favour of the therapy after seeing its benefits and effectiveness.

“Whereas non-specialist wound nurses, and general staff nurses, don’t really want to use maggots,” she said.

“Certainly everybody, I think, has a natural aversion to creepy crawlies and most people tend to have an inherent disgust as far as maggots are concerned,” she added.

A previous survey, cited in her study and published in the Journal of Wound Care, found that health professionals were more likely to be disgusted by the thought of using maggots than their patients.

There was a “lack of confidence” on the part of professionals, which could be alleviated by training and education, she said.

“The yuck factor can be overcome through the enthusiasm of the innovators and early adopters who, as influencers, are championing the use of maggots,” the study concluded.

Maggot therapy on the NHS has surged by almost 50 per cent as the treatment becomes a key tool in the fight against antibiotic resistance.

Data from NHS Digital show the number of treatments given in England increased from 886 in 2008/9 to 1,305 a decade later in 2018/19.

Modern use of medical maggots dates back to the First World War, when a surgeon discovered soldiers’ wounds healed faster when they were “colonised” by maggots.

But use of the treatment dwindled in the 1940s with the rise of antibiotics.

However, because the rise of antibiotic resistance has made wounds harder to treat, medics are being forced to return to the out-of-fashion approach.

Mexico is poised to scrap daylight saving time and return to “God’s clock” after government officials argued there were health, personal safety and energy-saving benefits.

The country’s senate approved the measure with a 59-25 vote, after it already passed the lower house of congress. It will now go to President Andres Manuel Lopez Obrador to be signed into law before Sunday - when the clocks would go back for the last time.

Jorge Alcocer, the health secretary, said Mexico should return to “God’s clock”, or standard time, arguing that setting the hours back or forward damages people’s health.

Changing the time twice a year disrupts people’s circadian rhythm, which is closely linked to sunlight, resulting in more people feeling tired.

Mexico City is currently five hours behind the UK. It would be six hours behind in the summer.

The measure would mean an earlier sunrise and darkness falling an hour earlier on summer evenings.

Advocates argue that people would be safer on their way to work in the morning.

While there appear to be energy-saving benefits by switching to daylight saving, the Mexican government says they are minimal and can be countered.

In 2021, the savings were only 537GWh, which is equivalent to 0.16 per cent of national consumption and savings of £49 million, the government said.

“This new law seeks to guarantee the human right to health and increase safety in the mornings, procure the well-being and productivity of the population, and contribute to saving electric energy,” the Senate said on Twitter.

The change will not apply to northern border states, however, so as not to disrupt trade and the flow of people.

However, some economists have argued that going back to standard time might cause trouble for financial markets in Mexico by putting US East Coast markets so far ahead.

Businesses such as restaurants that have become accustomed to staying open later may have to close earlier as many crime-wary Mexicans often try to be off the streets after dark.

North Carolina woman cited by police for shooting Mountain Dew cans in backyard: 'Don't DEW this'

A North Carolina woman was issued a criminal citation this week for shooting at cans of Diet Mountain Dew in her backyard.

Gastonia Police Department officers responded to reports of shots fired in the neighborhood and found a 64-year-old woman who said she was firing a revolver at the soda cans because she didn’t approve of her father drinking them, the department said on Facebook.

"We totally understand that not everybody is a fan of the Dew but we can’t stress enough how dangerous this is!" the department said.

It continued, "There are much safer alternatives to disposing of beverages that you don’t like instead of using the full bottles as target practice…in your backyard… in your neighborhood… surrounded by other homes and people."

The department added, "guns and Diet Mountain Dew don’t mix!"

The woman was cited with discharging a firearm within the city limits.

"From the just when you think you’ve heard it all file," one commenter wrote on the post.

"Come on people, this is Gastonia. SUN DROP ONLY," another added.

"I would fully understand if it had been dr. Pepper," a third quipped.​

A 65-year-old woman who police say was videotaped swinging a pickaxe to smash windows at a Pasadena home was charged Wednesday, Oct. 26, with felony vandalism.

Beverly Ann Baker caused an estimated $20,000 in damage to the eight windows Monday at a home in the 1700 block of Asbury Drive, Pasadena police Lt. Rudy Lemos said.

Baker is due to enter a plea on Friday in Superior Court in Pasadena, said Matthew Krasnowski, a spokesman for the Los Angeles County District Attorney’s Office.

Police had no motive for the attack on the home, which was reported at about 4:50 p.m. The video showed the vandal, wearing a flowing green dress, taking a few swings, leaving and then returning to inflict more damage.

The vandal was gone when police arrived, but a resident helped police track the woman to the 1600 block of Casa Grande Street. That’s when Baker was arrested. She was being held at Century Regional Detention Facility in Lynwood in lieu of $20,000 bail.



​