Yup, that is all it takes. Eric Evenchick will present at Blackhat Asia a $60, open source, car hacking tool (see article). You have to provide your own USB and OBD2 cables. With Eric’s CANCard and his library of Python based scripts, you can hack around in your car (or maybe someone else’s) and see […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
A couple of months ago I wrote about an iPhone bug that allows users to unintentionally install rogue iPhone Apps (see post). Well now Android users are getting hit with a similar attack. Ars technica is reporting that they have found an Android Installer hijacker (see article). Like the iPhone bug, it only works if […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
Researchers at David Ben Gurion University in Israel have demonstrated controlling a toy rocket launcher attached to an air gapped computer by another computer nearby (see article). There are lots of limitations to this attack, but still it shows how a motivated attacker like the NSA or its competitors, can suck data out of a […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
I have to both harass and complement Hilton. Until recently, Hilton was offering Honors members 1,000 points to change their passwords. First the harassment: A security staffer at BancSec figured out that you could hijack any other Honors account by guessing or knowing the account number and making a small change to the site’s HTML. The […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
UPDATE: KARE11 in Minneapolis is reporting that if you include attorney’s fees and other costs, Target will be on the hook for around $25 million (see article) and that payments could begin as early as April 30th. NPR is reporting that Target has agreed to set up a $10 million fund for victims of last […]
Continue reading →
[DISPLAY_ACURAX_ICONS]
CSO Online wrote an article on how easy it is to compromise the controls that ISPs and domain registrars have put it place. I will describe it in more detail in a minute, but here is the short version: Businesses are much more concerned about keeping customers happy than they are about keeping customers secure. […]
Continue reading →
[DISPLAY_ACURAX_ICONS]