Software

Joker Malware Found In 24 Apps In Google Play Store

Security researcher Aleksejs Kuprins of CSIS cybersecurity services company has discovered 24 apps which have been available for download in the Google Play Store that contain ‘Joker’ malware.

What Is Joker Malware?

Joker malware is a spy and premium subscription bot that makes money by simulating clicks. If, for example, a Joker infected app is downloaded, the malware delivers a second-stage component which silently simulates the interaction with advertisement websites, and steals the victim’s SMS messages, their contact list and their device information.

One of the silent automated interactions with advertisement websites includes simulation of clicks and entering of the authorisation codes for premium service subscriptions.

One specific example of what Joker can do, given by Mr Kuprins on the CSIS tech blog is that in in Denmark, Joker can silently sign a victim up for a 50 DKK (6,71 EUR) per week service by automating interaction with a premium offer’s webpage, entering the offer code, waiting for a SMS message with a confirmation code and extracting it, and finally submitting the code to the offer’s webpage to authorise the premium subscription.

Which Apps?

The 24 apps harbouring the ‘Joker’ malware, which have been installed more than 472,000 times are: Advocate Wallpaper, Age Face, Altar Message, Antivirus Security – Security Scan, Beach Camera, Board picture editing, Certain Wallpaper, Climate SMS, Collate Face Scanner, Cute Camera, Dazzle Wallpaper, Declare Message, Display Camera, Great VPN, Humour Camera, Ignite Clean, Leaf Face Scanner, Mini Camera, Print Plant scan, Rapid Face Scanner, Reward Clean, Ruddy SMS, Soby Camera and Spark Wallpaper.

Only Targets Certain Countries

The good news is that ‘Joker’ malware only attacks targeted countries and that most of the infected apps contain a list of these targeted Mobile Country Codes (MCC) meaning that the victim has to be using a SIM card from one of these countries to receive the second stage payload.  The bad news is that the UK is one of those targeted countries.

Google On Top Of Things

Despite there being 24 apps identified so far, Mr Kuprins has reported that Google has stayed on top of things during his investigation and has been removing all the offending apps without the need for prompting.

Not The First Time

Back in January last year, Security researchers discovered 36 fake and malicious apps for Android that could harvest data and track a victim’s location, masquerading as security tools in the trusted Google Play Store.

What Does This Mean For Your Business?

Google Play is a trusted source for apps, and it’s worrying that hundreds of thousands of customers may have the affected apps from Google Play.  In this case, Google has responded relatively quickly and has deleted infected apps where they have been found.

The obvious advice to android phone users is to check the list of infected apps and delete any on your phone that match. If you think you may have been affected by Joker via an app it may be a good idea to check your Google Play account for any unauthorised subscriptions, check your credit card or bank statements as far back as June of this year, and let your contacts know that you may have been infected (because Joker steals your phone’s contact list).

To minimise the risk of falling victim to damage caused by fake apps, users should check the publisher of an app, check which permissions the app requests when you install it, delete apps from your phone that you no longer use, and contact your phone’s service provider or visit the high street store if you think you’ve downloaded a malicious/suspect app.

This latest discovery of infected apps on Google’s Play Store should prompt the company to make even greater efforts to police the apps that it offers there.

France Says ‘Non’ To Facebook’s Libra Cryptocurrency

France’s finance minister, Bruno Le Maire has said that the development of Facebook’s new Libra cryptocurrency will be blocked in Europe unless concerns over risks to consumers and to the monetary systems of countries can be addressed.

Libra – Announced in June

Announced in June this year and due to be launched in 2020, Libra is Facebook’s cryptocurrency which will enable payments to be made by a special phone app and by messaging services such as WhatsApp so that spending the new currency could be as easy and fast as texting.  Management of the currency, units of which can be purchased via Libra’s platforms and stored it in a digital wallet called “Calibra”.

In addition to Facebook, the Association has 27 other members/partners, all of whom will most likely have to accept Libra, including Mastercard, PayPal, eBay, Spotify, Uber, Vodafone, and a variety of charities such as Women’s World Banking.

For Use By The ‘Unbanked’

Facebook has promoted Libra as being targeted mainly at the 1.7 billion adults worldwide who do not have a bank account, and who use services such as payday loans although 1 million plus of these already have a smartphone, thereby enabling them to use the apps through which Libra can be operated.  This “unbanked” segment of the potential market contains mainly people from developing countries, a large proportion of which are women.

Why Does France Object?

In Bruno Le Maire’s speech at the OECD Global Blockchain Policy Forum 2019 he identified several reasons why France would consider blocking Libra in Europe, the main one being that monetary sovereignty of countries may be at stake from a possible privatisation of money e.g. because Facebook is a sole actor (company) with more than 2 billion users on the planet. Mr Le Maire also expressed concern that Libra’s digital credits could facilitate money laundering and terrorism.

Other concerns about Libra’s introduction include:

  • Possible risks to consumers (their personal data) in the light of Facebook’s sharing of user data with Cambridge Analytica.
  • Consumers may turn to cryptocurrencies like Libra during a time of national crisis, which could make it more difficult for governments to stabilise their economies, thereby making matters worse.
  • The need for Libra to meet regulations for consumer protection, money laundering and financing terrorism.
  • Libra uses blockchain, which many banks still consider to be an emerging technology that should be approached with caution.

Highlights The Need To Work Together

According to the head of policy and communications at the Libra Association, the concerns expressed by Bruno Le Maire highlight the need for the project’s backers to work together with regulators to make the implementation of the Libra project safe, transparent and consumer focused.

What Does This Mean For Your Business?

For Facebook, Libra is an opportunity to monetise another of its services, and an opportunity to diversify.  Even though Facebook has promoted Libra as a currency for use by the 1.7 billion people without bank accounts, it is more likely that Libra will gain more users with bank accounts in developed countries more quickly.  Also, some more sceptical commentators have noted that Libra may be less about money and blockchain but more about gathering more information about the identity of clients.

Even though Libra users are not intended to be businesses, if Libra does help the ‘unbanked’ this could have a knock-on effect in helping that segment of society to buy more goods and services, thereby helping businesses and the economy.

Libra looks set to face more scrutiny and attempts to make sure that it meets the regulation of countries that are worried by the possible shift in control from governments and central banks to big business that Libra could bring. This shift in control could have a number of effects on the business environment and the economies of countries if Libra proves to be popular.

Tech Tip – Canva

If you’d like a free, graphic design app that can help you to improve your business and social media communications then Canva may be the app for you.

Canva is a versatile graphic design app: full editor, Instagram story maker, video maker, video editor, logo maker and poster maker, enabling you to easily stay on brand and create some very professional logo and poster designs with your photos and videos.

Canva also provides a great way to design your Instagram Highlight cover and create a logo and banner for social networks (Facebook, Pinterest and Twitter).

You can get Canva on the Google Play Store and Apple’s App Store.

AI Mimics CEO’s Voice To Steal Over £200,000

A recent Wall Street Journal report has highlighted how, in March this year, a group of hackers were able to use AI software to mimic an energy company CEO’s voice in order to steal £201,000.

What Happened?

Reports indicate that the CEO of an unnamed UK-based energy company received a phone call from someone that he believed to be the German chief executive of the parent company.  The person on the end of the phone ordered the CEO of the UK-based energy company to immediately transfer €220,000 (£201,000) into the bank account of a Hungarian supplier.

The voice was reported to have been so accurate in its sound, that the CEO of the energy company even recognised what he thought was the subtleties of the German accent of his boss, and even “melody” of the accent.

The call was so convincing that the energy company made the transfer of funds as requested.

Fraudster Using AI Software

The caller, who was later discovered to have been a fraudster using AI-base voice-altering software to simulate the voice of the German boss, called 3 times.  In the first call, the fraudster requested the transfer, in the second call they (falsely) claimed that the transfer had been reimbursed, and in the third call the fraudster requested an additional payment. It was this third call that aroused suspicion, partly based on the fact that the telephone number appeared to indicate that the caller was in Austria and not Hungary.

Money To Hungary, Mexico and Beyond

Unfortunately, the money had already been transferred to a Hungarian account after the first call, and it has since been discovered that money was immediately transferred from the alleged supplier’s Hungarian bank account to an account in Mexico, and then further disbursed to accounts in other locations, thereby making it very difficult for authorities to follow the trail.

What Sort of Software?

The kind of software used in this attack may have been similar in its output to that demonstrated by researchers from Dessa, an AI company based in Toronto.  Dessa has produced a video of how this kind of software has been able to produce a relatively accurate simulation of the voice of popular podcaster and comedian Joe Rogan – see: https://www.youtube.com/watch?time_continue=1&v=DWK_iYBl8cA

What Does This Mean For Your Business?

It is known that cybercriminals, deterred by improved and more robust enterprise security practices have decided to look for human error and concentrate more on social engineering attacks, a category that this voice simulation attack (via phone calls) fits into. The fact that this attack has taken place and been successful shows that some cybercriminals are already equipped with the computing power and most up-to-date machine-learning AI technology that they are clearly capable of using.

This means that companies and organisations (particularly larger ones), may now be at risk of facing more sophisticated deception and phishing attacks. The AI company Dessa has suggested that organisations and even individuals could expect to face future threats such as  spam callers impersonating relatives or spouses to obtain personal information, impersonations intended to bully or harass, persons trying to gain entrance to high security clearance areas by impersonating a government officials, and even an ‘audio deepfake’ of a politician being used to manipulate election results or cause a social uprising.

Companies should try to guard against social engineering attacks by educating all staff to the risks and having clear verification procedures (and not just relying on phone calls), tests, and chain of command authorisation in place for any requests for funds.

Microsoft’s Phone App Challenge to iMessage and FaceTime

Reports from online tech commentators indicate that Microsoft will soon be enhancing its Your Phone app with the ability to make phone calls from a desktop PC, thereby making the app a serious challenger to Apple’s iMessage and FaceTime.

The Your Phone App

Microsoft’s Your Phone desktop App connects your phone to your PC thereby giving you access to your phone’s notifications, photos and texts while working on your PC. Giving the desktop Phone App the details of your phone (Android or Apple, phone number) means that you receive a download link to the ‘Phone Companion’ via SMS text.

Installing the Phone Companion on your mobile enables you to sync your phone with your PC e.g. an Android phone with Windows 10 PC.  This gives instant access to your phone on your PC so that you can reply to texts at your PC and instantly receive photos on your PC that have been taken on the phone.

Making Calls – Challenging Apple’s iCloud Integrations

The addition of being able to dial a number, search your phone contacts and make a call directly from your PC is an important enhancement that could make Microsoft’s Your Phone desktop App a serious challenger to Apple’s iCloud integrations on macOS.

Apple Mac users can currently use these to send messages from their desktop using iMessage and can also make voice and video calls using FaceTime.

‘Use Phone’ Button

The enhanced Your Phone App from Microsoft will include a ‘Use Phone’ button that can send a call back from the PC (microphone and speakers) to the handset,  thereby enabling more privacy and/or shutting out any distracting background noise e.g. keyboard noises and noises from home working.

Who?

A full-feature Your Phone App would most likely be of maximum value to those workers who need to be in front of the desktop for long periods of time with minimal distractions although, arguably, messages and notifications popping up on the screen could be less easy to ignore than if they’d been quietly arriving on the phone in corner.

The Your Phone app could also be of use to workers in a situation where too much obvious interaction with their handset in the workplace is frowned upon and where visual monitoring and supervision is particularly intense.

What Does This Mean For Your Business?

For Microsoft, this improvement to the Your Phone desktop App, which has been around for some time, gives it much greater potential value to users and gives Microsoft another way to seriously compete with its rival Apple.

For any business users who are typically tied to the PC for most of the time the ability to handle all phone matters on the desktop adds value in terms of convenience, possible time savings, and fewer distractions.

Student Textbooks Malware Threat

Kaspersky’s blog is warning students who are about to go back after the summer holidays to beware of the risk of malware that’s masked as textbooks and essays online.

Students Targeted

According to Kaspersky, K-12 and college students who may want to save money on textbooks by seeking online essays and study materials may end up unwittingly downloading malware instead.

A study by the security company of school and student-related filenames over the past academic year has revealed that out of 356,000 attempted attacks on Kaspersky users, 233,000 cases involved malicious essays that were downloaded to computers owned by more than 74,000 people (which the company claims its software blocked).

Kaspersky’s figures indicate that 122,000 of those attacks were by malware disguised as textbooks which more than 30,000 users tried to open.

Targeted Popular and Less Popular Subjects

The study revealed that cybercriminals haven’t just been focusing on popular subjects for attacks. For example, even though English textbooks hiding malware had 2,080 attempted downloads and maths textbooks hiding malware had 1,213 downloads, malicious textbooks for natural sciences also manage to fool 18 users.

The Four Most Popular Types of Malware

Kaspersky lists the four most popular types of Malware attacks disguised as online study materials as:

1. School spamming using the Stalk worm

This has claimed the greatest number of victims and is the preferred method by which the Worm.Win32 Stalk.a worm is spread.  Once downloaded to a school computer Stalk penetrates all devices that are connected to it, will infect USB sticks used by students, will spread across the whole network, can spread to the email contacts of students, and can download other malicious applications to the infected device

2. Win32.Agent.ifdx malware downloader

This downloader program is disguised as textbooks or essays in DOC, DOCX or PDF formats. Once launched it opens a text file so that the victim does not realise that anything suspicious is going on, but it is designed to download many other bad things onto the victim’s computer which can be modified to become cryptominers, banking trojans (to steal; bank details) and ransomware.

3. The WinLNK.Agent.gen downloader

WinLNK.Agent.gen downloader is hidden in archives e.g. zip or rar files and uses a shortcut to a text file to open the document itself and launch the attached malware components. This can result in cryptominers, adware, and more damaging programs being loaded onto and slowing down the victim’s computer.

4. The MediaGet torrent application downloader

This is disguised by ‘Free Download’ buttons and will download a torrent client that the user does not need.

What Does This Mean For Your Business?

Colleges and schools are known to be popular targets for cybercriminals because they have large numbers of users spread across many different departments, and sometimes across different facilities, making admin and IT security very complicated.  Also, valuable intellectual property, student and staff personal data, and the chance to use the processing power of many computers within their systems can make schools and colleges tempting targets for cybercriminals.

Part of the prevention of the kinds of attacks identified by Kaspersky can be achieved by educating students (and staff) about threats, and how to spot them and deal with them, as well as making sure that antivirus protection and patches are all up to date across school and college systems.

Kaspersky’s advice to students for avoiding the malware threat includes searching for in books you need in physical or online libraries, paying attention to what type of site is hosting the textbook download, not using outdated versions of operating systems and other software, being wary of email attachments (even those sent from acquaintances), and paying attention to the download file extensions e.g. don’t open .exe files.

BBC to Launch Own ‘Beeb’ Digital Voice Assistant Next Year

The BBC has announced that it will be launching its own digital voice assistant ‘Beeb’ next year to work on all smart speakers, TVs, and mobile devices.

Accents

The new digital (AI) voice assistant, which is being developed by an in-house team, will be trained to have a good understanding of the many different UK regional accents.  This has meant that BBC staff from around the UK have been invited to record their voices to help train the programme.

Competing?

Even though the BBC has not said that ‘Beeb’ will be sold with its own hardware device (smart speaker), as an AI digital voice assistant it will essentially be in broad competition with Amazon, Google and Apple, all of which have already been in the market for some time with their own voice assistants.

That said, in addition to not being released in a bundle with a home smart speakers to compete on the shelves with other general smart speakers, Beeb is different because it has been designed, rather like the iPlayer, as a means to provide easier access to the BBC’s own content, programmes and services.  It is thought that ‘Beeb’, being a BBC product that’s specifically designed with the purpose of accessing BBC content, will mean that it is trusted and used by BBC customers.

Voice-Activated Future

As a public services broadcaster, the BBC sees ‘Beeb’ as an important step to keep up with the times in what it describes as a “voice-enabled future”.  For example, 20% of British households already use voice assistants (Guardian).

Criticism

Some critics have pointed out that having a single syllable word such as ‘Beeb’ as the wake-word could lead to mistakes being made by the assistant, but the BBC says that ‘Beeb’ is still just a working title.

No More BBC on TuneIn

From the end of September, the BBC’s radio stations will no longer be available through the TuneIn radio app (as used by Alexa) because it has been reported that Amazon will not share information about listeners of BBC stations.

What Does This Mean For Your Business?

The new digital voice assistant is a way in which the BBC can give its customers a more convenient and modern way to access its content, in the same way that some competitors are using  Netflix uses Amazon voice controls on Fire TVs, and at a time when people are used to using other voice assistants. Also, Beeb is a part of the BBC’s move to push users towards its own products, and crucially, to find out more information about its users.  This has been shown, for example, by the need to sign-up to view programmes on iPlayer, and by the impending removal of BBC stations from TuneIn app over a lack of information-sharing.  The BBC’s own digital assistant will mean that it can have information-gathering systems built-in.  This, in turn, helps the BBC to better target its services and to compete more effectively in the wider marketplace, while at the same time, help it to improve and add value to its public service broadcasting.

Video Labelling Causes Problems

Google has already been criticised by some for not calling out China over disinformation about Hong Kong, but despite disabling 210 YouTube channels with suspected Chinese state links, Google’s new move to label Hong Kong YouTube videos hasn’t gone down well.

Big Social Media Platforms Act

Facebook and Twitter recently announced that they have banned a number accounts on their platforms due to what the popular social media platforms are calling “coordinated influence operations”. In other words, Chinese state-sponsored communications designed to influence opinion (pro-Beijing viewpoints) and to spread disinformation.  Twitter and Facebook are both blocked in mainland China anyway by the country’s notorious firewall but both platforms can be accessed in Hong King and Twitter recently suspended over 900 accounts believed to originate in China. The reasons for the suspensions included spam, fake accounts and ban evasion.

Google Labels Videos

Google’s response, which some critics have seen as being late anyway has been to add information panels to videos on its Hong Kong-facing site saying whether the video has been uploaded by media organisations that receive government funding or public funding.  The panels, which are live in 10 regions, were intended to give viewers an insight into whether the videos are state-funded or not.

Problem

Unfortunately, Google did not consider the fact that some media receives government funding, but are editorially independent, and the labelling has effectively put them in the same category as media that purely spreads government information.

Google and China

Many commentators have noted an apparent reluctance by Google to distance itself from the more repressive side of the Chinese state.  For example, Google has been criticised for not publicly criticising China over the state’s disinformation campaign about the Hong Kong protests.  Also, Google was recently reported to have a secret plan (Project Dragonfly) to develop a censored search engine for the Chinese market and it’s been reported that Google has an A.I research division in China.

Disinformation By Bot? Not

There have been fears that just as bots can be a time and cost-saving way of writing and distributing information, they could also be used to write disinformation and could even reach the point soon where they are equal in ability to human writers.  For example, the text generator, built by the research firm OpenAI, has (until recently) been considered to be too dangerous to make (the ‘trained’ version) public because of the potential for abuse in terms of using it to write disinformation.  In tests (the BBC, AI experts, and a Sheffield University professor) however, it proved to be relatively ineffective at generating meaningful text from input headlines, although it did appear able to reflect news bias in its writing.

What Does This Mean For Your Business?

The influence via social media in the last US presidential election campaign and the UK referendum (with the help of Cambridge Analytica) brought the whole subject of disinformation into sharp focus, and the Chinese state media’s response to the Hong King demonstrations has given more fuel to the narrative coming from the current US administration (Huawei accusations and trade war) that China should be considered a threat.  Google’s apparent lack of public criticism of Chinese state media disinformation efforts is in contrast to the response of social media giants Facebook and Twitter, and this coupled with reports of the company trying to develop a censored search engine for China to allow it to get back into the market over there means that Google is likely to be scrutinised and criticised by US state voices.

It is difficult for many users of social media channels to spot bias and disinformation, and although Google may have tried to do the right thing by labelling videos, its failure to take account of the media structure in China has meant more criticism for Google.  As an advertising platform for businesses, Google needs to take care of its public image, and this kind of bad publicity is unlikely to help.

Audible’s ‘Captions’ Subtitles Feature Attracts Lawsuit From Publishers

The Amazon-owned producer of spoken audio entertainment ‘Audible’ is facing a lawsuit from the Association of American Publishers (AAP) on the grounds that its new “Audible Captions” speech-to-text subtitles feature may violate copyright law.

Audible Captions 

Audible Captions, which was announced by the largest producer of audiobooks via a YouTube video back in July, is a feature that allows text captions to appear on-screen and progressively highlights the words as a novel is narrated. The feature also highlights and gives definitions for certain words in the captions and allows the user to translate text into other languages.

Objections – Lawsuit 

Audible’s plans to roll-out the Captions feature attracted almost immediate complaints and concerns by authors, publishers and literary agents on social media over possible copyright law violations, along with accusations that Captions appears to make quite a few mistakes per book. Eventually, a lawsuit was filed at the District Court for the Southern District of New York by the Association of American Publishers (AAP) which includes seven of the top US publishing companies, such as Penguin Random House, and HarperCollins Publishers.

Injunction

The lawsuit, which seeks a preliminary injunction to stop the September launch of Audible Captions argues that the feature could give Audible a competitive advantage over other audio-book providers who aren’t in a position to utilise speech-to-text technology, and that displaying the text of Audible books may amount to illegal reproduction and distribution of those books, thereby potentially breaching copyright laws and adversely affecting publishers’ profits. The AAP members also appear to be angry that the mistakes (transcription errors) made by the AI aspect of Captions could add up to the equivalent of 18 pages of inaccuracies in 300-page book. The AAP’s legal action has also attracted the support of the US Authors Guild. Executive Director, Mary Rasenberger, makes the point that “Text and audio are different book markets, and Audible is licensed only for audio. It has chosen to use its market power to force publishers’ hands by proceeding without permission in clear violation of copyright in the titles.”

What Does Audible Say? 

Amazon-owned Audible has argued that Audible Captions are an educational and accessibility innovation, and that the Captions, which allow listeners to simply follow along with a few lines of machine-generated text as they listen to the audio are not and were never intended to be a book, and therefore, can’t be judged like one (with copyright law).

What Does This Mean For Your Business? 

In addition to their anger over allegedly not being consulted by Audible about using the feature, the big publishers and Authors Guild appear to see Captions as a competitive advantage that represents a threat to their existing benefits, profits, and market positions. For Amazon, a company that has grown and diversified and made major inroads into multiple markets, the lawsuit is not only another dose of bad publicity e.g. following recent concerns by China Labour Watch (CLW) about possible child labour being used in the manufacture of the Amazon Echo, but it’s a reminder that there are still other powerful players in the publishing market and that laws regarding copyright need to be studied and adhered to, no matter how big the market player. It is not clear when Captions will be released but it is unlikely that Amazon’s Audible would want to be delayed too long in releasing a value-adding feature that could provide a competitive advantage.

Grammar Correction Capabilities For Gmail and G Suite

Google has announced that it is rolling out new real-time, AI-powered spelling and grammar correction capabilities for G Suite users and personal Gmail accounts.

Real-Time, As-You-Type

The real-time, as-you-type spelling autocorrection is now available to all G Suite users and personal Gmail accounts, but the Grammar suggestion feature is only available to G Suite users.

Autocorrection Spelling

The new features use AI to spot and highlight mistakes with spelling and grammar, and even the use of tenses.

The autocorrection spelling feature uses coloured (red) squiggly underlines to highlight spelling mistakes, the mistakes can be auto-corrected, and the changes are temporarily underlined in grey so that you can see the difference between the two.

Grammar

The AI-powered grammar correction feature, which has previously been available in Google Docs, uses a squiggly blue line to highlight errors in grammar, and pop-ups appear to help make changes to the grammar and allow the user to mark them as correct or switch them back to how they were.

Default

The autocorrect spell-check feature has been added as a default and if users want to turn it off, they can do so by going to Gmail’s Settings > General and then turn off Grammar, Spelling, and Autocorrect.

Benefits

The benefits to users could be the ability to work smarter and faster, make a better impression with their communications, and learn more about correct spelling and grammar and use the knowledge to feel more confident in their writing over time.

Competition

These new features are, however, in competition with, and could affect profits for other third-party spelling and grammar services e.g. Grammarly which relies upon users opting to use an upgrade to a freemium service.

Texting To Blame?

Ofcom figures showing that teenagers, young adults and adults chose text-based communications as their preferred way of communication highlight one of the reasons why many people believe that mobile phone usage, with its reliance on auto-correct, is partly to blame for a decline in the standards of spelling and grammar that has necessitated a further need for more sophisticated AI-based tools.

What Does This Mean For Your Business?

For third-party spelling and grammar apps such as Grammarly, this move by Google could reduce the value of (and the perceived need for) their services.

For business users of Google’s services (G Suite and Gmail) these kinds of tools could help save time and improve the quality and consistency of their communications which in turn could positively reflect on their brands.

For Google, these new features could provide an improved experience for their users and add more loyalty and perceived value to Google’s range of services.

Some critics have, however, noted that these features could homogenise the way that we write, could raise privacy concerns, and that the AI technology could also be subject to bias in its suggestions.