This Week in Security: It’s Con Season

#hackadaycolumns #news #securityhacks #blackhat #defcon #thisweekinsecurity #hackaday
posted by pod_feeder_v2

This Week In Security: It’s Con Season

It must be Blackhat/DEFCON season. Up first in the storm of named vulnerabilities, we have Downfall. The PDF has the juicy details here. It’s quite similar to the Zenbleed issue from last wee…

#Jailbreaking an Electric Vehicle in 2023 or What It Means to Hotwire #Tesla's x86-Based Seat Heater

source: https://www.blackhat.com/us-23/briefings/schedule/index.html#jailbreaking-an-electric-vehicle-in--or-what-it-means-to-hotwire-teslas-x-based-seat-heater-33049

In this talk, we will present an attack against newer #AMD -based infotainment systems (MCU-Z) used on all recent models. It gives us two distinct capabilities: First, it enables the first unpatchable AMD-based "Tesla Jailbreak", allowing us to run arbitrary software on the infotainment. Second, it will enable us to extract an otherwise vehicle-unique hardware-bound #RSA key used to authenticate and authorize a car in Tesla's internal service network.

#hack #hacker #blackhat #technology #freedom #software #hardware #news #car

Black Hat USA 2023

Black Hat USA 2023

This Week in Security: Huawei Gets the Banhammer, Lastpass, and Old Code Breaking

#currentevents #featured #blackhat #huawei #lastpass #thisweekinsecurity #hackaday
posted by pod_feeder_v2

This Week In Security: Huawei Gets The Banhammer, Lastpass, And Old Code Breaking

While many of us were enjoying some time off for Thanksgiving, the US government took drastic action against Huawei and four other Chinese companies. The hardest hit are Huawei and ZTE, as the ban …

The world is divided

into those who want war and lie and always see the fault with others. And those who make their own mistakes and work together. The former are considered the good guys and the latter the bad guys. I always preferred to be with the bad guys.

https://www.youtube.com/watch?v=SS02GeKuWQ4

#music #blackhat #evil #notgood

Originally posted at: https://word.undead-network.de/2022/11/02/the-world-is-divided/

The Hacking of #Starlink Terminals Has Begun

source: https://www.wired.com/story/starlink-internet-dish-hack/

Today, Lennert Wouters, a #security researcher at the Belgian university KU Leuven, will reveal one of the first security breakdowns of Starlink’s user terminals, the satellite dishes (dubbed Dishy McFlatface) that are positioned on people’s homes and buildings. At the #BlackHat security conference in Las Vegas, Wouters will detail how a series of #hardware vulnerabilities allow attackers to access the Starlink system and run custom code on the devices.

#internet #news #hack #hacker #vulnerability #software #infrastructure

The Hacking of Starlink Terminals Has Begun

It cost a researcher only $25 worth of parts to create a tool that allows custom code to run on the satellite dishes.

Recipe for SPAM in #patent #fakenews sites: "IAM Patent 1000: IAM’s analysis of the leading firms in Italy" ... analysis??? Really??? ...what they mean to say is, fake index you can manipulate for a fee, aka #marketing or #blackhat spam (fake directories) http://techrights.org/wiki/index.php/IAM

● NEWS ● #PortSwigger ☞ #BlackHat USA: HTTP/2 flaws expose organizations to fresh wave of request smuggling attacks https://portswigger.net/daily-swig/black-hat-usa-http-2-flaws-expose-organizations-to-fresh-wave-of-request-smuggling-attacks

Black Hat USA: HTTP/2 flaws expose organizations to fresh wave of request smuggling attacks

Security researcher James Kettle digs deep into the web stack to reveal some shiny new attack surface