Watching rust get blasted off of metal is always satisfying. It must be even more satisfying to do it, particularly when you’re using a self-made sandblaster. DIY’er Adam Fleisch figured out how to make one for under six bucks, using an airgun and a soda bottle, and the darn thing actually works:
Tag: figured-out-how
Hackers can take control of your Segway hoverboard
We can list so many reasons why you should never set foot on a hoverboard . Now, we’ve got yet another: Cybersecurity company IOActive has figured out how to hijack the Segway MiniPro ” self-balancing personal transporter ” through its Bluetooth connection. It seems like only yesterday that we were discussing how hoverboards had a tendency to spontaneously combust and wondering who exactly was actually buying these products. But clearly some of you out there are interested, because Segway has kept cranking them out. The MiniPro, which retails for $600, allows for remote control of the hoverboard-scooter hybrid (seriously, who thought this was a good idea?) through a Bluetooth app. And there’s no way to turn off the Bluetooth if your hoverboard is hacked. While people can’t cause battery explosions (I guess we should be thankful for the little things), “an attacker could bypass safety systems and remotely take control of the device, including changing settings, pace, direction, or even disabling the motor and bringing it to an abrupt and unexpected stop while a rider is in motion, ” says the press release . Hackers could even track and discover the location of the hoverboard user through this exploit. IOActive did let Segway know about these issues (they discovered them last year; results were partially released today), and they have patched some of the vulnerabilities in the product. Still, this is an increasing problem as devices are becoming more connected . Without proper security (or let’s be honest: even with it), these devices and their users are incredibly vulnerable. At this point, not implementing security for connected devices is shoddy at best and dangerous at worst. Via: CNet Source: IOActive
Read this article:
Hackers can take control of your Segway hoverboard
Yahoo confirms new security breach affecting over one billion accounts
Yahoo just revealed that in August 2013, someone stole data linked to more than one billion accounts. Back in September, the company announced a 2014 security breach affecting some 500 million users, however, it believes these two incidents are “likely distinct.” Additionally, the company says that it believes the same hackers from the 2014 breach dug into its code and figured out how to forge cookies to target specific accounts. It has invalidated the forged cookies and notified holders of the accounts they were used to access in 2015 or 2016. Need a spreadsheet or a chart to keep track of all the ways your Yahoo account info is probably floating around right now? There is an FAQ to try and help users figure out what has been stolen, when and how they might be affected. Still, the massive size of this breach means that for Yahoo users information including “names, email addresses, telephone numbers, dates of birth, hashed passwords (using MD5) and, in some cases, encrypted or unencrypted security questions and answers” is potentially out there. The company is reaching out to potentially affected users, so there should be a message coming your way soon, while the security questions and answers have been invalidated. Of course, if you’ve used the same information for a security answer somewhere else, then whoever has it could use those answers against you — change them. Yahoo’s ongoing security investigation and users left scrambling to reset passwords and security questions (again) is just one part of the puzzle. It’s unclear how these new revelations affect its $4.83 billion acquisition by (Engadget and AOL parent company) Verizon . Previous reports indicated the carrier could be looking for a discount or way out of the deal altogether , and this bad news probably won’t help. Source: Yahoo , FAQ
Read the article:
Yahoo confirms new security breach affecting over one billion accounts