Facebook
Google
GitHub
Linkedin
Me too. All I have to do is reload the page a few times until it gets through.
Privacy lost...
- Thread starter cmartinez
- Start date
Yeah those Ad blocker blockers have become really annoying. Now we need an Ad blocker blocker blocker. Then once they catch on and use an Ad blocker blocker blocker blocker, we will need an Ad blocker blocker blocker blocker blocker, etc., etc, etc.
Reminds me of those Mad Magazine cartoons "Spy vs Spy".
You should write a rap song called "Block the blocker" ... or somet'n
I see this as a freedom thing:
I can choose to watch ads or not.
They can choose to require me to watch ads or not.
Neither of us is forcing the other. They want me to watch ads? I go elsewhere.
There are no monopolies on the internet.
Edit: if their content is compelling, I turn off the ad blocker.
Congratulations
It's nice to be occasionally recognized for one's achievements. Thanks.Congratulations
Oh you are certainly welcome
IMO, Not a mistake.
Have any brief description of what that video is saying?
I only watched a small portion of it, but from that it appears that what he is saying is that these cameras have such poor security features that if they are online in almost any way that it is pretty easy to access their feed without any kind of authentication at all.
Sadly, this is all too common with a large fraction of electronics. The people designing them have no grasp and no clue about what security is, let alone how to implement it. Or, worse, they think they do and so they roll there own. As a result, not only can a large fraction of things hanging on the Internet be compromised, but they often act as gateways into the networks they are a part of.
The problem is not really the actual cameras as they are hardwired (via non-public networking) to the concentrator that sends the combined video streams to the host for processing over public networks. The typical IPCAM has RTSP auth user/password capabilities and usually the ability to encrypt base64 encoded passwords but it's not very secure.
https://www.wowza.com/blog/rtsp-the-real-time-streaming-protocol-explained
Some IPCAMs do have SRTSP (useful if the direct camera feed is on a public network) but it's a mixed bag in most cases.
https://www.ipcamlive.com/secure-rtsp-streaming
The concentrator could possibly encrypt the data stream but there is no expectation of privacy to cars on the public street as anyone could setup a camera or drive with a camera and record cars and their plates. What's protected is the database that matches plates to a person and their private information from the DMV but that data not being transmitted here and is normally protected by people who have a clue, in most cases.
Last edited:
https://www.hackster.io/news/aedan-...0-s-security-subsystem-wide-open-a500925c7b35
Aedan Cullen Cracks the Raspberry Pi RP2350's Security Subsystem Wide Open
Voltage-glitch attack, demonstrated at the 38C3 event, seems to be in with a shot at winning Raspberry Pi's $20,000 CTF contest.
"I think one notable thing about this [is] it's not a very difficult attack at all," Cullen claims during his presentation. "It's just a normal power glitch. Just dropUSB_OTP_VDDfor 50μs or so across theCRIT0andCRIT1OTP PSMreads, which on my chips are around 220-250μs from the characteristic current spike that marks the beginning of the OTP PSM sequence."
The old school voltage glitching is back in fashion as it seems lessons from the past are being forgotten with some new hardware.
Aedan Cullen Cracks the Raspberry Pi RP2350's Security Subsystem Wide Open
Voltage-glitch attack, demonstrated at the 38C3 event, seems to be in with a shot at winning Raspberry Pi's $20,000 CTF contest.
"I think one notable thing about this [is] it's not a very difficult attack at all," Cullen claims during his presentation. "It's just a normal power glitch. Just dropUSB_OTP_VDDfor 50μs or so across theCRIT0andCRIT1OTP PSMreads, which on my chips are around 220-250μs from the characteristic current spike that marks the beginning of the OTP PSM sequence."
The old school voltage glitching is back in fashion as it seems lessons from the past are being forgotten with some new hardware.
https://www.texasattorneygeneral.gov/sites/default/files/images/press/Allstate and Arity Petition Filed.pdf
Texas Sues Allstate for Collecting Driver Data to Raise Premiums
https://gizmodo.com/texas-sues-allstate-for-collecting-driver-data-to-raise-premiums-2000549878
Texas Sues Allstate for Collecting Driver Data to Raise Premiums
SOB's .... I hope they hit them in their pockets ...
There have been known cases where FitBit tracking has allowed enemies to figure out where concealed posts were located because of soldiers not disabling them.
These kinds of breaches are definitely an issue, but they are far from new with the digital age, it's just that the digital age makes for an additional and much more fertile ground for them.
I remember an article that we had to read in AFJROTC back in the 1980 time frame about an intelligence gathering exercise conducted at a base in California in the 1970s. The operatives were told to determine if anything significant was happening at the base and their ground rules was that they could not enter the base or do anything illegal, such as wiretapping, and had to remain absolutely covert (so no bribing anyone). Essentially, they had to employ means that were effectively passive.
At first, they frequented bars and other places that personnel frequented hoping to overhear or guide conversations to leak information, and that was of limited utility. Then they picked a handful of businesses and had operatives get jobs there. One of these was a storage lot that stored automobiles. A few were places that supplied fresh foods to the base. Another was a department store and yet another at the local post office. There were several others. Since the community around the base was pretty small, a very significant fraction of the business was related to the base. Over another few months they detected changes in activity that let them conclude that the base was likely getting ready to make a major deployment to a cold-climate location that would likely last about two months and were able to predict the kick-off date about a week in advance. This was based on things like an increase in people putting their cars in storage, making purchases of cold-weather clothing, and having their mail held for two months. The time prediction resulted from a significant decrease in the orders of perishables for the base's dining halls. Their analysis was spot on.
I read about new data breaches almost every day now. Something is not working very well in the security sector.
What will they come up with next
Wait. The FBI doesn't encrypt their communications?
https://www.ibtimes.com/fbi-att-hacker-breach-3759795
https://www.ibtimes.com/fbi-att-hacker-breach-3759795
| Thread starter | Similar threads | Forum | Replies | Date |
|---|---|---|---|---|
|
Privacy and security tips for windows android and ios | Off-Topic | 0 | |
| B | Kindle privacy issue. | Off-Topic | 16 | |
|
Indeed and California's latest privacy law | Jobs & Career Advising | 0 | |
| S | Is this a wi-fi system? | General Electronics Chat | 5 | |
|
Internet Privacy Repeal, For or Against? | Off-Topic | 35 |
