Hackers say they breached Russian contractor, got details on IoT hacking project for Russia spy agency

• 'Fronton' is the FSB's IoT botnet project

Podcast: The case for ... cities that aren't dystopian surveillance states

For my latest podcast, I read my Guardian Cities column, "The case for ... cities that aren't dystopian surveillance states," which was the last piece ever commissioned for the section. Read the rest

Unauthorized Charcoal: GE fridges won't dispense ice or water unless your filter authenticates as an official ($55!) component

@ShaneMorris: "My fridge has an RFID chip in the water filter, which means the generic water filter I ordered for $19 doesn't work. My fridge will literally not dispense ice, or water. I have to pay @generalelectric $55 for a water filter from them." Read the rest

Radicalized is a Canada Reads finalist, will be a graphic novel, and is eligible for the Hugo Award!

My 2019 book Radicalized has been named one of the five finalists for Canada Reads, the CBC's annual book prize -- Canada's leading national book award, alongside of the Governor General's award! Read the rest

Inventive students detach IoT car-immobilizers, use their SIMs to power free wifi hotspots

The "Barnacle" is a networked car-immobilizer that parking guards stick over the windshield of your illegally parked car; you pay the fine online and the Barnacle gets an over-the-air signal to release itself from your car so you can remove it and put it in a nearby deposit bin. Read the rest

Google 'disabling Xiaomi integrations on our devices' after Nest Hub user picked up random pics from strangers' feeds

“Among the eight or so examples initially provided to Reddit are a handful of disturbingly clear images showing a sleeping baby, a security camera's view of an enclosed porch, and a man seemingly asleep in a chair.” Read the rest

Nulledcast: a podcast where hackers play live audio of themselves breaking into Ring cameras and tormenting their owners

Nulledcast is a realtime podcast streamed on a Discord channel for the hacking forum Nulled: the hosts break into Ring and Nest cameras in realtime, blare sirens at the owners, then torment them with insults and racist slurs, livestreaming their responses to hundreds of listeners. Read the rest

Talking with the Left Field podcast about Sidewalk Labs's plan to build a surveilling "smart city" in Toronto

We've been closely following the plan by Google sister company Sidewalk Labs to build a surveilling "smart city" in Toronto; last week, I sat down with the Out of Left Field podcast (MP3) to discuss what's going on with Sidewalk Labs, how it fits into the story of Big Tech, and what the alternatives might be. Read the rest

Amazon secretly planned to use facial recognition and Ring doorbells to create neighborhood "watch lists"

Ring is Amazon's surveillance doorbell division, and a big part of their sales strategy involves terrifying people about the possibility of crime, partnering with police to assist in terrorizing Ring owners, and to provide police with warrantless, permanent, shareable access to surveillance doorbell footage (something the company has repeatedly lied about). Hundred of police departments have now partnered with Ring and they act as buzz-marketing teams for the company in exchange for freebies and access. Read the rest

A woman's stalker compromised her car's app, giving him the ability to track and immobilize it

An Australian woman's creepy, violent ex-boyfriend hacked her phone using stalkerware, then used that, along with her car's VIN number, to hack the remote control app for her car (possibly Landrover's Incontrol app), which allowed him to track her location, stop and start her car, and adjust the car's temperature. Read the rest

My review of Sandworm: an essential guide to the new, reckless world of "cyberwarfare"

For years, I've followed Andy Greenberg's excellent reporting on "Sandworm," a set of infrastructure-targeted cyberattacks against Ukraine widely presumed to be of Russian origin, some of which escaped their targeted zone and damaged systems around the world. Read the rest

Griefer terrorizes baby by taking over their Nest babycam...again

Nest is a home automation company that Google bought in 2014, turned into an independent unit of Alphabet, then re-merged with Google again in 2018 (demonstrating that the "whole independent companies under Alphabet" thing was just a flag of convenience for tax purposes); the company has always focused on "ease of use" over security and internecine warfare between different dukes and lords of Google meant that it was never properly integrated with Google's security team, which is why, over and over again, people who own Nest cameras discover strangers staring at them from their unblinking camera eyes, sometimes shouting obscenities. Read the rest

Assessing the security of devices by measuring how many difficult things the programmers tried to do

The Cyber Independent Testing Lab is a security measurement company founded by Mudge Zadko (previously), late of the Cult of the Dead Cow and l0pht Heavy Industries and the NSA's Tailored Access Operations Group; it has a unique method for assessing the security of devices derived from methods developed by Mudge at the NSA. Read the rest

Surveillance camera hallucinates face in the snow, won't shut up about it

A beauty from last February: Kyle McDonald tweeted redacted social media screenshots from a surveillance camera owner that emitted a steady stream of alerts because it saw a face in the garden -- a face that was just a random assortment of grime and snow that only vaguely resembled a face, but still triggered the facial recognition algorithm. In the end, the only way to shut up the camera was to stomp around in the snow until the "face" was erased. Read the rest

Bruce Sterling on Boris Johnson's bizarre, cyberpunk dystopia address to the UN

This week's bizarre speech to the UN by the UK's clownish, authoritarian Prime Minister pro tem Boris Johnson has sparked a lot of talk, especially among science fiction readers who recognise the difference between cautionary tales about hi-tech dystopias and suggestions for public technology policy (unlike PM Johnson). Read the rest

Guy returns his "smart" light bulbs, discovers he can still control them after someone else buys them

You know what's great about putting wifi-enabled, Turing-complete computers into things like lightbulbs? Not. A. Single. Fucking. Thing. Read the rest

Ring: "We don't use facial recognition"; also Ring: "We have a head of facial recognition research"

One of the most obvious facts I've learned in covering the unfolding scandal of the secret deals between Amazon's Ring surveillance doorbell group and hundreds of US police departments is that Amazon loooooves to play word-games. Read the rest

More posts