Security Medium — Strava Heatmaps have Unintended Consequences
The popular exercise tracking app Strava regularly produces a really cool heat-map that shows where most people run, cycle, swim etc.. The data is anonymised, so it all seems like some innocent fun. The latest version of the heatmap was published back in November, and no one thought it was a problem.
In this mammoth episode, we’ve got some random CES observations, a review of the Avantree Bluetooth over-the-ear headset from George from Tulsa, a CES interview with an innovative hearing aid called Eargo, a story of Thunderbolt docks and USB-C from me, another CES interview about LiFi for Internet connectivity with OLEDcomm, a hot tip from Knightwise about how to reinstall Mac App Store apps using the command line, an augmented reality toothbrush from Kolibree called Magik from CES, and as if that weren’t enough content, we’ve got an out-of-band Security Bits update with Bart Busschots with the lates news about Spectre and Meltdown.
This problem affects all features that auto-fill usernames and passwords, whether or not they are native to the browser, or, provided by third-party plugins, so this affects everyone who saves passwords in their browser in any way.