Huh, my initial expectation was wrong! I figured (even until close to the end of the article) that the problem was a dramatic increase in the amount of wi-fi or other 2.4GHz traffic in the area leading to interference, some of which was blocked by rain thus allowing more stable local connections.
I still think that's actually what happened here. A tree in the middle of a 2.4 or 5ghz beam would have an effect, but its branches moving by a few inches would not have this much of an effect.
So I guess I should watch out for scams being sent to "soundcloud@" on a personal domain. Oh no, how will I distinguish them from my legitimate banking email???
Clever spammers (there are some!) see the presence of company@<domain> and assume the user will have similar emails for other accounts, so it might be worth trying ebays scams to ebay@<domain> or banking scams to chase@<domain> or boa@<domain>. Sending is cheap so why not, you're not trying to fool everyone, only a few.
I use a unique string per company but it's not guessable in advance, but it's obvious when looking at it and squinting a bit, for example (and these are not the exact ones I use): sundclod@<domain> or ebuy@<domain> or amzoon@<domain>
Sure I have to remember them but it's easy for me to check and my password manager is filling them in for me 99.99% of the time.
I can filter on those emails instead, and I also know that anything coming to soundcloud@<domain> or ebay@<domain> or amazon@<domain> is definitely spam as I've never used those addresses myself.
If sundclod@<domain> appears in a leak I can (hopefully) change my account email at Soundcloud to sondclud@<domain> and then confine sundclod@<domain> to /dev/null
I have three different generations of email addresses associated with United Airlines that all receive spam. Never any disclosed breaches AFAIK, but clearly email addresses got out at several points. At some point I stopped bothering to check.
As for Soundcloud, the password I had saved for it and a tiny bit of profile information tells me a lot - a manually created password saved into a password manager, probably in 2010 or 2011 and unused after grabbing a single track.
Addresses for services I actually care about also get what's basically peppering, and have all had updates much more recently than the days of Blackberry devices.
I can't imagine anyone spamming in such low quantities that they'll notice a pattern like company@<domain> and act on it.
I have regularly gotten spam emails without a to, cc, or bcc field though. So I can't tell which email they were sent to. (my host doesn't bounce/drop them for some reason)
I do regularly do misspellings of the company name though, since that often trips the "invalid email" check on signup. e.g. twitter.
We are the minority of users that had enough foresight to do this. I'd bet that _most_ people on this breach don't even know about the plus/dot trick with gmail (and I am sure other providers, too).
I think the Go stores mostly bit the dust after that reveal, but they were also mostly small convenience store operations. I actually saw one at the airport recently, that's a situation where I can see it making sense as an option.
The Fresh stores are basically a conventional grocery store, with electronic tags for every item and quirky pricing. They also have "smart carts" with built in weight sensing and multiple cameras so you can basically put open bags in, say "ready to go" then shop by scanning a UPC before placing each item in the cart. Unscanned item? Error. Weight mismatch? Probably an error but I've never tried. The carts are running what looks like a Linux-based UI with some stuff in docker, I grabbed a picture of a shutdown screen on one not too long ago.
The Fresh store near me that I stop in at seems to double as a warehouse for some of those delivery orders, so I wouldn't be surprised if some of them just stop having customer access and shift to entirely staffed pick-and-pack for delivery.
The Fresh stores are kind of a weird shopping experience with a mix of normal, overpriced and bizarrely cheap at different times.
I've gotten into the habit of stopping in to wander the aisles and check prices because of it (e.g. I stocked up on a bunch of canned soup when most (but not all) Progresso soups were $0.44 a month or two back, and I picked up some microwavable rice+quinoa pouches for my wife at $0.35 each a couple weeks ago, but the inconsistency and overall not great prices mean it can't be my go-to grocery destination.
I'm sure the one by me will be closing since there's a significantly larger Whole Foods just a few miles away.
There's certainly no reason for Canada to consider significant EV imports from the US - I wouldn't be surprised if Tesla was tainted based on Musk's association with Trump and there aren't really other major US EV producers. For international manufacturers it probably makes more sense to have direct trade agreements with Canada vs possible significant tariffs in response to whatever Cheetolini decides to do on any given day.
I feel like developing something that could actually pick locks including detecting binding pins, etc. is in the category of "not actually that hard if you devote the resources to it."
On the mechanical side there would certainly be some challenges (having to work within a key that's all the deepest cuts, using something that could push up to "shallowest cut" level without deforming, general structural strength problems) but once you had a viable insertable key portion built you might be able to read a lock based just on the amount of spring resistance at each pin. You could also provide tension while probing for pins under tension. If covert agencies don't already have pretty portable devices like that it's because they don't care enough to create them not because of some true technical problem with doing so.
I think the biggest problem is that the amount of tension you need to apply to hold the binding pins can vary quite a bit, and it's hard to build a mechanical device that can feel with enough fidelity to figure it out.
Not really, once you have any materials issues with the vertical portion ironed out you just need a fine but rigid shaft within the body of the 'key' to bring it all the way out to where you have plenty of space to work. You'd need to have the shaft in a tight channel, but that's purely mechanical and should work just fine over even several inches.
I think if you actually tried to build this, you'd find that highly sensitive strain gauges are not sufficient. The human hand is extremely sensitive, and for example can detect tiny clicks and vibrations that you're not going to get with a simple strain gauge.
I'm a bit surprised to not see mention in comments of "social vs sociable." There's often something nice about being around people that you're interacting with only minimally (sociable) vs being around people you're talking with (social). The shutdown in 2020 did away with a lot of options for"sociable."
It does not, however, use a cartoon dog in a room on fire.
reply