Best Buy is actually one of the worst and slowest websites from any large retailer. I cannot believe how bad it is. It's like they set out to make it pretty and accidentally stepped in molasses.
The thing that prevents a TV mfg from bricking your device is that they'd be instantly (and successfully) sued. In fact, there have already been many such class actions, ie with printer inks.
The downside is that it's sometimes easier and cheaper to just pay off the class and keep doing it.
They didn't just outperform "normal" congress critters.. they also outperformed nearly every hedge fund on the planet. But they (meaning, of course, just one person and their spouse) are obviously geniuses.
There are a lot of smart TV's (name-brand ones!) that will try to connect to any open wifi. Monetizing from analytics and telemetry are literally priced into the cost of the gadget. A lot of smart TV's will even ship with their cameras turned on. And Hyundai/Kia and Subaru literally disabled certain in-car features for people in Massachusetts after the repair bill passed (https://www.wired.com/story/right-to-repair-cars-hackers/)
Given that, I hardly think that 'decoy sims' are much of a stretch.
Too bad Userify is too expensive for a lot of VPS-style projects (free for less than five instances, but we blow through that pretty fast most of the time)
> Is “don’t buy stuff with TSMC chips” really a valid option we have?
Not sure that TSMC would want to do that either! We're probably their biggest market, even allowing for China.
> Isn’t that basically “stop buying high technology” to a large degree?
I think you're right, to an extent, at leastt in the near term.
However, we do have (and especially used to have) various fabbing here in the States, from Samsung to Intel. Especially the latter has been neglected, but these changes would probably accelerate on-shoring and perhaps bring some of it back here.
Don't forget that TSMC is in a country that is probably going to go through some significant instability in the next few years. From a business continuity perspective, we'd need to consider availability and supply chain management with the strong possibility of a major vendor being located in the middle of a hot warzone.
Most people will have to sync their passwords (generally strong and unique, given that it's for github) to the same device where their MFA token is stored, rendering it (almost) completely moot, but at a significantly higher risk of permanent access loss (depending on what they do with the reset codes, which, if compromised, would also make MFA moot.) (a cookie theft makes it all moot as well.)
The worse part is that people think they're more protected, when they're really not.