Here's a writeup of Evan Booth's Hack the Box conference presentation on making lethal weapons out of items bought in airport duty-free shops. It's pretty ingenious stuff (the video above is from a related presentation at CarolinaCon 2013).
The problem here is that legitimate purpose of airport security is not protecting passengers and flight attendants from harm. In reality, there's no way to accomplish that goal against a determined attacker. The real and legitimate purpose of airport security is to protect airplanes and cockpits from harm -- to stop people from hijacking and/or crashing airplanes (this is why the TSA correctly relaxed its rules about carrying small knives onto planes -- and why so many of their other rules are pointless and stupid). So long as none of these lethal weapons can crash an airplane or beat an armored, bolted cockpit door, they embody no new incremental threat to aviation -- on the other hand, the improvised battery-bombs are a real threat.
Besides a bomb knew Booth also easy to make a bow and arrow of stuff he had bought in a shop in an airport. For this he used an umbrella, hair dryer, socks, a leather belt and condoms. Too obvious things like a lighter and deodorant as alternative gas burner he did not elaborate.
Booth also made a crossbow of an umbrella, floss, grab a toy, a rolkoffertje, a straw and tape. With a straw, cotton and a piece of metal from a remote controlled helicopter he was able to make a blow gun for firing arrows.
Remarkable is also a club that he made a gift, what magazines, floss, a leather strap and tape. In a test showed that so firmly, that he with a single blow a coconut in several parts stores.
Onderzoeker maakt bom van artikelen luchthavenwinkels [Dutch, Nu.nl]
Researcher makes bomb Articles airport shops [Google Translate]
In 2012, Google rolled out Certificate Transparency, a clever system to spot corrupt “Certificate Authorities,” the entities who hand out the cryptographic certificates that secure the web. If Certificate Authorities fail to do their jobs, they put the entire electronic realm in danger — bad certificates could allow anything from eavesdropping on financial transactions to […]
Troy Hunt, proprietor of the essential Have I Been Pwned (previously) sets out the hard lessons learned through years of cataloging the human costs of breaches from companies that overcollected their customers’ data; undersecured it; and then failed to warn their customers that they were at risk.
A security researcher has published a vulnerability and proof-of-concept exploits in Google’s Internet of Things security cameras, marketed as Nest Dropcam, Nest Dropcam Pro, Nest Cam Outdoor and Nest Cam Indoor; these vulnerabilities were disclosed to Google last fall, but Google/Nest have not patched them despite the gravity of the vulnerability and the long months […]
You know the drill. You go to the dentist and they ask you how often you floss. You lie through your teeth and say, “every day!” (Bonus points if you have some cilantro or chives stuck in your gums from lunch). You don’t want to keep up the charade any longer, but rubbing that tiny strand […]
The Raspberry Pi Foundation has done outstanding work packing a fully capable desktop computer into a package the size of a deck cards—especially one that only costs $35. But if you already have a working laptop, why should you care? Oh, how much you have to learn. Besides operating well as a compact digital media hub, […]
Custom coffee vessels are the perfect piece of office flair, but it’s just a matter of time before your VOTE FOR PEDRO mug will start to lose its relevant wit. Why not have a new one every day, with whatever silly nonsense you want sticking off the sides? You can save big on your novelty […]