fbpx

Tag Archive for hacking

Yet Another Security Flaw

August 13, 2015 future, Writing Comments Off on Yet Another Security Flaw

 

http://www.theverge.com/2015/8/11/9130203/wireless-hack-corvette-brakes-insurance-dongle

“‘We acquired some of these things, reverse engineered them, and along the way found that they had a whole bunch of security deficiencies,’ says Stefan Savage, the University of California at San Diego computer security professor who led the project. The result, he says, is that the dongles ‘provide multiple ways to remotely…control just about anything on the vehicle they were connected to.'”

So how paranoid does the average consumer really have to be?  Well, the truth is, not all that paranoid.  Right now, attacks like this have to be focussed, you have to know who you are going after, there has to be a personal connection of some kind.  They take research and consideration (they have to find your car, they have to figure out what kind of device you have implanted, if any, they then have to do some work to get access to that specific device, etc) so these are not “off-the’cuff” style hacks that can be thrown out willy-nilly like some *sshat firing off pepper-spray into a crowd of Black Friday shoppers.

The real risk will come when you get an enterprising soul who finds a way to hack 10,000 cars at once, then you are into hostage taking/hush money territory.  THAT’s when you have to worry about whether or not you should get the “good driver” discount by adding that wireless dongle to your dashboard.

It’s too late for the current crop of devices that are out there.  They are int he wild already, the security flaws have already been laid bare.  The real value in exposures like this is in encouraging companies to make sure they have at least passable security up front (many of these hacks are discovering close to NO security, security through obscurity, as it were), rather than adding the locks after the horse is already out of the barn.

The Problem is the People

February 25, 2014 Uncategorized Comments Off on The Problem is the People

Today, Mt. Gox, reportedly the largest and best trusted of the Bitcoin exchanges, vanished entirely.  They didn’t just halt trading, they took everything offline and the name on the url seems to have been sold.

http://www.coindesk.com/mt-gox-loses-340-million-bitcoin-rumoured-insolvent/

And over 340 million has gone missing along the way.  Needless to say, the price of Bitcoin has tumbled (don’t expect that to last, however) and a lot of people seem to be rethinking their decision to jump on the Bitcoin Bandwagon.

The problem, however, isn’t with Bitcoin itself.  The virtual currency is itself sound, still (as far as I know) un-hackable and non-counterfeit-able.  The problem is with the exchanges and the techniques used to store, trade and sell Bitcoin.  Much of it is probably due to the speed with which Bitcoin has gone viral.  You’re seeing it mentioned in TV shows (even ones targeted at older ladies with cats, like Castle) on the news, the cat is out of the bag and what previously was a niche trading market is now going the way that baseball cards, comic books and that creepy old vase you found in great-auntie Aida’s attic.  It’s gone insane.  Millions of dollars are being shoveled into Bitcoin exchanges and (for better or worse) the common-man investors are entering the market, bringing with them a limited understanding of how Bitcoin works.  The exchanges that might have been able to slowly upgrade themselves and their security to accommodate a slow, reasonable adoption of Bitcoin as a currency, are now beset from both sides, from buyers clamoring to sign up and from malicious opportunists looking to exploit the flaws in the system.

This type of aggressive exploitation is not unique to Bitcoin either.  A quick stroll through the history of currency and exchanges in general will reveal that we are just seeing updated versions of the kinds of scams and hacks that have plagued every new transnational method.  These kinds of problems have been solved before, and when the Bitcoin exchanges solve their generations issues, then the currency will be ready for global adoption.