The IP Box costs less than £200 and can guess all possible four-digit passwords in 111 hours.
The device bypasses the secure wipe triggered by ten bad guesses by "aggressively cutting the power after each failed PIN attempt, but before the attempt has been synchronized to flash memory."
Further research suggests this could be the issue detailed in CVE-2014-4451 but this has yet to be confirmed. We plan to test the same attack on an 8.2 device and will update with our progress. In the mean time, our advice to all is ensure you have a sufficiently complex password applied to your device rather than a PIN.
Apple iOS Hardware Assisted Screenlock Bruteforce [Mdsec]
The city council of Riviera Beach, Florida has voted unanimously to pay $600,000 to criminals who seized control of the city's computers through a ransomware attack, after three weeks of being locked out of the city systems (the city has also voted to spend $1m replacing its computers).
Many large-scale data-breaches involve attackers gaining access to administrators' database logins; from there, they can clone the whole database and plunder it at will; but leading nosql database vendor Mongodb proposes to add another layer of security it's calling "Field Level Encryption" which encrypts the data in database fields with its own key -- possibly […]
Stalkerware -- spyware sold to people as a means of keeping tabs on their romantic partners, kids, employees, etc -- is a dumpster fire of terrible security (compounded by absentee management), sleazy business practices, and gross marketing targeted at abusive men who want to spy on women.
You want wireless earbuds to make an impact on your mood and workout, not the environment. If that’s the case, we’ve got a new contender for AirPod market share: Brio Phantom X7 True Wireless Earbuds. The features on these tiny, comfortable buds are impressive even without the environmental angle. Their Bluetooth 5.0 connectivity is good […]
We don’t ask for much out of our charging cables: Juice up our phone, do it fast and don’t break. It’s supposed to be simple, but keeping your phone plugged in for the night – as most of us do – can actually degrade the life of your battery by overheating it. That’s why one […]
Does your résumé need an upgrade? These online learning bundles teach everything from project management skills to music production, and they’re all on deep discount as part of our semi-annual sale. Take a gander: The Complete Learn to Code Master Class Bonus Bundle No matter what the program, this 11-course overview will have you fluent […]