I can almost understand why some find it easier just to accept everything bad happens because Illuminati. Before long we'll all be begging for barcode tattoos or RFID chips just to make it stop.
For various reasons, I revisited my internet security recently, and I realised just how insecure everything is, and one of the weakest links was the lack of variety in my passwords. The University forces me to change theirs every few months, and no repetition is allowed, so it ends up being changed slightly, but more or less variations on a theme.
But one of the reasons was partly to do with reading up on, or watching videos about cyber security, and seeing just how easy it's getting to hack Wi-Fi. I even have a 4G wireless router, and live in a densely populated modern inner-city area.
Really, no matter how good these password systems are, you still need a password to log into them, and a password for your WiFi, and Internet Router, and so a man-in-the-middle type attack, or key-logger would make all of it pointless. In that respect a password manager is less secure. But I'm just getting too old and muddled to keep mental track of them all.
Just leaving your router at the default settings makes it surprisingly vulnerable, especially if it's one of the ones that defaults to the standard IP address with the default 'admin/admin' user/pass combo. Leaving Bluetooth on all the time also has its problems.
But with cellular networks involved, reading up on the SS7 flaw/exploit is an eye-opener. It's surprisingly easy for someone even a little techy to create a spoof phone tower and make your devices think they're logging into the real one. If they do that, they can access everything — calls, texts, basically anything you do or use the network for, and all networks still use SS7.
A guy at a hacker conference in 2014 showed how he'd kitted his Jeep out with a DIY "Stingray" type set up , basically like law enforcement use, that does something similar ("IMSI catchers"), for about $5k US, and he provided a PDF of instructions. Four years is a long time in technology, it's probably a lot cheaper and easier now even. Pretty sure a Raspberry Pi was part of it, and the most expensive components were single purpose things like signal amplifiers.
I think maybe all the NSA/Snowden stuff maybe got people thinking it's all about government spying, which can then maybe lead on to a kind of complacent "oh well, nothing i can really do about it, and I'm not very interesting and have nothing to hide" for most, but the far, far bigger problem is how accessible it's becoming for anyone else to get a hold of. And the thing with hackers is they don't necessarily hack you and immediately act on it, they might install something invisible and slowly collect data, then (for example) if you start visiting a lot of Bitcoin related sites, or doing something similarly interesting, you go up a notch on the automated list of potential targets.
Long story short, it's all so complicated and annoying, most of us pay nowhere near enough attention to this, and it's probably going to get a lot worse before we do.
Urghhh So When Is Live 11 Coming?
Re: Urghhh So When Is Live 11 Coming?
Last edited by Forge. on Sat Feb 24, 2018 3:40 am, edited 4 times in total.
Re: Urghhh So When Is Live 11 Coming?
And then there's things like this:
It’s Possible to Hack a Phone With Sound Waves
"...in 2011, a group from the Massachusetts Institute of Technology and the Georgia Institute of Technology demonstrated the use of an accelerometer in a smartphone to decode roughly 80 percent of the words being typed on a nearby computer keyboard by capturing vibrations from the keyboard."
"...there are other, darker possibilities. If an accelerometer was designed to control the automation of insulin dosage in a diabetic patient, for example, that might make it possible to tamper with the system that controlled the correct dosage.
Dr. Fu has researched the cybersecurity risks of medical devices, including a demonstration of the potential to wirelessly introduce fatal heart rhythms into a pacemaker.
He said the current research was inspired by a discussion in his group about a previous study in which drones were disabled with music."
— see, it's all on us. Those phat beatz can do real damage. With great power comes great responsibility.
It’s Possible to Hack a Phone With Sound Waves
"...in 2011, a group from the Massachusetts Institute of Technology and the Georgia Institute of Technology demonstrated the use of an accelerometer in a smartphone to decode roughly 80 percent of the words being typed on a nearby computer keyboard by capturing vibrations from the keyboard."
"...there are other, darker possibilities. If an accelerometer was designed to control the automation of insulin dosage in a diabetic patient, for example, that might make it possible to tamper with the system that controlled the correct dosage.
Dr. Fu has researched the cybersecurity risks of medical devices, including a demonstration of the potential to wirelessly introduce fatal heart rhythms into a pacemaker.
He said the current research was inspired by a discussion in his group about a previous study in which drones were disabled with music."
— see, it's all on us. Those phat beatz can do real damage. With great power comes great responsibility.
Re: Urghhh So When Is Live 11 Coming?
Tuesday, innit?
Re: Urghhh So When Is Live 11 Coming?
Live 11 is going to take some time because it is being recoded from the ground up to be fully analog.