Internet of Things That Lie: the future of regulation is demonology


Volkswagen's cars didn't have a fault in their diesel motors -- they were designed to lie to regulators, and that matters, because regulation is based on the idea that people lie, but things tell the truth. Read the rest

VW con produced as much extra air pollution as all UK power generation, industry, ag & vehicles


Volkswagen's intentional fraud resulted in an extra 1,000,000 metric tons of air pollution being spewed into the skies over America; if they'd extended the con to Europe (where there are far more diesels), it would have been orders of magnitude worse. Read the rest

Mobile ad

Empty Epson "professional" inkjet cartridges are still 20% full

If you've wondered why it matters that the Internet of Things is being born with the inkjet printer business model, here's why. Read the rest

Dear Internet of Things: human beings are not things

My new Locus column is What If People Were Sensors, Not Things to be Sensed? Read the rest

Your baby monitor is an Internet-connected spycam vulnerable to voyeurs and crooks

Researchers revealed ten major vulnerabilities in Internet-of-Things babycams from a variety of vendors ranging from spunky startups like Ibaby Labs to rock-ribbed (and deep-pocketed -- attention, class actioneers!) giants like Philips. Read the rest

Samsung fridges can leak your Gmail logins

Researchers at Pen Test Partners took up the challenge to hack a smart fridge at Defcon's IoT Village, and discovered that they could man-in-the-middle your Google login credentials from Samsung fridges. Read the rest

Windows 10 EULA: Microsoft can killswitch your unauthorized hardware and pirate games

When you click through the Windows 10 "agreement," you agree to let Microsoft subject your games and hardware to authenticity tests and to shut down anything it doesn't like the looks of. Read the rest

Mobile ad

Self-aiming sniper rifle can be pwned over the Internet

The $13,000 Trackingpoint sniper rifle is vulnerable to wifi-based attacks that allow your adversary to redirect bullets to new targets of their choosing. Read the rest

Chrysler has to recall its cars due to security vulnerabilities

Chrysler, whose Jeep Cherokees were demonstrated to be vulnerable to Internet-based attacks on their steering and brakes (as well as radios, air conditioning and other systems) has recalled 1.4M cars due to software vulnerabilities. Read the rest

Hackers can pwn a Jeep Cherokee from the brakes and steering to the AC and radio

A zero-day exploit for Jeep Cherokees allows hackers to control everything from the engine to the air-conditioning over the Internet, overriding the driver at the dashboard. Read the rest

UK schools' "anti-radicalisation" software lets hackers spy on kids

The spyware that Impero supplies to UK schools -- which searches kids' Internet use for "jihadi" terms -- uses "password" as its default password, and the company has threatened brutal legal reprisals against the researcher who repeatedly demonstrated their total security negligence. Read the rest

Computer scientists on the excruciating stupidity of banning crypto

A paper from some of the most important names in crypto/security history scorchingly condemns plans by the US and UK governments to ban "strong" (e.g. "working") crypto. Read the rest

Chrome update turns browsers into covert listening tools

The default behavior of hotword, a new, black-box module in Chrome (and its free/open cousin, Chromium) causes it to silently switch on your computer's microphone and send whatever it hears to Google. Read the rest

GCHQ hacking squad worried about getting sued for copyright violation

The British spy-agency targeted anti-virus software and other common applications in reverse-engineering projects aimed at discovering and weaponizing defects in the code. Read the rest

Navy openly solicits for 0-day bugs to weaponize

A solicitation on FedBizOpps from the Navy asks security researchers to sell them their "vulnerability intelligence, exploit reports and operational exploit binaries affecting widely used and relied upon commercial software." Read the rest

More posts