Information Security

Хакеры под видом ЦБ атаковали российские банки

Your hacking tutorial - Thu, 11/15/2018 - 14:35

Мы сидим на нефтяной игле и даже Италия обогнала нас в ИКТ-секторе... Официально. Но в нелегальном секторе наши хакеры-- гении. Хакеры использовали подделанные сертификаты чтобы получить доступ к международным банковским сетям. Наши киберпреступники впереди всех, но вот киберзащита хромает. Уже 2 года как создали ГосСОПКу, а такие случаи до сих происходят...

submitted by /u/aleksandr9352
[link] [comments]
Categories: Information Security

Researchers Seek to Create the Digital Smell Interface

Hack a Day - Thu, 11/15/2018 - 14:30

We hear digital audio, we see digital video, and we feel digital haptic feedback. However, we don’t have an analog for the sense of smell. [Kasun] and his team of researchers from the Imagineering Institute in Malaysia are in the midst of changing that reality. Their project aims to transmit fragrances via electronic stimulation. Though it’s really more of a step toward creating a multi-sensory internet.

The team’s “electric smell machine” consists of a variable power supply connected to silver electrodes wrapped around an endoscopic camera. The camera is necessary to ensure contact with the user’s olfactory bulb as electric current pulses through the electrodes. The current values vary based upon the scent being replicated and are in the 0.2mA neighborhood. Early trials of the machine have revealed that around one-quarter of test subjects are able to identify the smells being replicated. They reported smells being fruity, sweet, and woody though all had a chemical-like odor attached.

The concept of “smell-o-vision” is not a new one, as it has been around longer than motion pictures with sound. Previous attempts at accompanying film and television with scent have been a result of chemical reactions. Devices from these types of experiments typically involved cartridges that would need to be replaced when the chemical substances were depleted. [Kasun]’s team approach is to avoid the chemical approach in favor of directly stimulating the olfactory receptors. Those interested in the gritty details can read the research paper on digitizing smell.

[Kasun] and his team uploaded a video on the project that you can view below. It’s all a work in progress at this point, but sign me up for a trial when they pinpoint the true essence of new car smell.

Of course if you were hoping to outsource some of the “not so great” smells in your life to the cloud, there’s this feature on using IOT devices to sniff out spoiled foods.

John McAfee is 'liable' for 2012 death of Belize neighbour, rules court

The Register - Thu, 11/15/2018 - 14:24
Default judgement for one-time antivirus bad boy

Infosec personality John McAfee has been found legally "liable" via a default judgment for the death of his neighbour, who was found dead from a gunshot wound to the head in his Belize home in 2012.…

With the death of Inbox By Gmail, I was reminded of one of my saved post of what made Inbox so great

Android - Thu, 11/15/2018 - 14:14

I'm a busy person. I do appreciate getting notifications for new emails, reminders for appointments and so on, or else my cluttered-up brain will just forget about them.

However, it doesn't help that these notifications just keep popping up instantly whenever anything happens. When I'm in the middle of something, I can't act on any new emails right away, so I don't need to be made aware of them immediately. And after work hours, I'd like all work-related and other non-essential notifications to go away until I'm back at it again.

Sadly, Android only presents us with an endless stream of instant push notifications, all day every day, serving no purpose other than to scatter our brains even more.

The sad/ironic part about this is that Google has already solved this problem in the Inbox for Gmail app:

  • Notifications are bundled in categories, and you can set custom notification policies per category: you can set notifications to arrive instantly, once a day at a pre-set time of day, or even once a week.

  • Notifications can be "snoozed": i.e. you can pre-set certain times of day when notifications are allowed to come through (e.g. at 7:00, 13:00 and 19:00), and anything that happens between these hours will have its notification delayed ("snoozed") until the next pre-set hour arrives. For example, if your lunch break is at 13:00, you can snooze notifications until that hour, so all your notifications will come through at that moment, when you can actually do something with them.

  • Inside the Inbox app, swiping one direction will "clear" the email (it will be "marked as done", i.e. archived), and swiping the other direction will snooze it (i.e. you will get another reminder for it at your pre-set time of day).

My ultimate wish for Android is that it would handle notifications in exactly the same way at system level:

  • Apps could be categorised to have their notifications come through instantly (e.g. phone and messaging apps), or only allowed to show up at pre-set times (e.g. emails and reminders).

  • The notification shade should allow you to swipe one way to "clear" a notification (also marking it as "read", because this action is meant for notifications you don't need to act on anymore!), or swipe the other way to "snooze" the notification (i.e. the notification will show up again later, at your pre-defined time of day, so you can act on it then).

  • We already have DND settings in Android, but if these were to be expanded with system-wide "snooze times", we could have very fine control over which notifications are allowed to come through at which times of day. For example, when I'm working away between 8:00 and 13:00, I don't need to have my mail or calendar apps annoy me between those hours, I'd like to get their notifications when I'm on my lunch break. In the evening, I could have these apps show me notifications again at 19:00, and everything after that would be delayed until 7:00 the next day. Add in automatic DND "Priority" mode at night, and I can sleep easy after a hard day's work.

I'm very much hoping Google will consider moving in this direction with notifications. Being connected constantly and instantly has been one of the greatest revolutions of the modern day, but I feel the next step should be to organise and de-clutter the mess of constant interruptions that has resulted from that revolution.

If there are apps in existance that can achieve the above, I would be all ears to hear about them. However, I'm still hoping Google will implement something like this at system level in Android. It would be such an elegant solution to give us more control over all these daily interruptions, and hopefully it might even take the entire tech industry in the direction of "un-cluttering" all our minds a little bit.

submitted by /u/threesixeight
[link] [comments]

Spotify app broken when started by Tasker while phone locked

Tasker: Total Automation for Android - Thu, 11/15/2018 - 13:53

I've got a task ( ) that starts Spotify, adjusts the BT volume, and tells it to play when I connect to my car's BT system. This has been working for a while (since Jan 2017 across multiple phones: Moto X Pure, Pixel 2, and now Pixel 3), but yesterday it started messing up. If the task runs while my screen is locked, Spotify doesn't start properly and when I unlock the phone it's just a black screen until eventually I get a "Spotify is not responding" popup. If I run the task manually while the screen is unlocked, it works fine. If I add a wait to the start of my task and kick it off manually, then lock the screen, it fails in the same way that it does when fired automatically, so it really seems like an issue with the screen being locked.

I suspect that the change coincides with the Spotify update to that my phone installed yesterday (even though the Play store says the last update was Nov 8), but I have not yet tried to find an older APK to install over the current one to see if that fixed it.

Anyone else seeing this or have any hints that might help fix it?

submitted by /u/PiratesSayMoo
[link] [comments]

Red Hat talks upgrades and bare metal with its new OpenStack Platform

The Register - Thu, 11/15/2018 - 13:33
Just don't mention those three Big Blue letters, OK?

Red Hat used this week's OpenStack Summit to announce the impending arrival of its OpenStack Platform 14. We had a chat with Red Hat's Nick Barcet about cadence, Kubernetes, and most definitely not IBM.…

Phone App Dark Mode v26 (no mod)

Android - Thu, 11/15/2018 - 13:23

Just got the push for v26 Public Beta and after installing it switched to dark mode based on theme settings.

Version Number

EDIT: I'll try to pull APK if I get a chance.

submitted by /u/HuaHua_Pup
[link] [comments]

Sorry, Mr Zuckerberg isn't in London that day. Or that one. Nope. I'd give up if I were you

The Register - Thu, 11/15/2018 - 13:18
Facebook boss delays, denies and deflects more invitations to international committee

"Delay, deny and deflect." Turns out Facebook's strategy for dealing with major threats works pretty well for small fry too because Mark Zuckerberg has once again turned down MPs' advances.…

An In-Depth Look at Dexter, the Robotic Arm

Hack a Day - Thu, 11/15/2018 - 13:01

Dexter, a really great robot arm project, just won top honors in the 2018 Hackaday Prize, and walked away with $50,000 toward continuing their project. As a hat tip to Hackaday and the community, Haddington Dynamics, the company behind Dexter, agreed to open-source their newest version of Dexter as well. As James Newton said when accepting the trophy during the award ceremony, “because of your faith in us, because of this award, we have been moved to open-source the next generation of Dexter.” Some very clever work went into producing Dexter, and we can’t wait to see what further refinements have been made!

Dexter isn’t the only robotic arm in town, by any means. But in terms of hobbyist-level robotics, it’s by far the most complete robot arm that we’ve seen, and it includes a couple of design features that make both its positional accuracy and overall usability stand out above the rest. This is a robot arm with many of the bells and whistles of a hundred-thousand dollar robot, but on a couple-thousand dollar budget.

Moreover, many of the design innovations can be taken piecemeal and used in your own project. For instance, our judges particularly liked Dexter’s clever encoder design. Optical encoders usually use a disk with holes in it; shine a light through the disk onto a sensor and you can determine the position by counting the number of resulting pulses.

Dexter takes this a step further, using the analog value of the light sensor, allowing it to track a few thousand positions per hole, multiplying the usable resolution. This means that, with a 3D printed encoder wheel and some serious math to transform this into a position, Dexter’s encoder can resolve over a million positions per revolution. That’s mind-blowing precision, and it’s available relatively cheaply due to advances in computing power.

Specifically, an FPGA and some custom “gateware” logic code runs the conversion of encoder data to arm position. That’s right, they’re dedicating an embedded Linux computer with FPGA peripherals doing the heavy lifting to calculate two joints’ position. You might think that this is overkill, but with an arm like this any small angular error in the first joint that sits on the table is multiplied by the reach of the arm. You want positional accuracy of 0.1 mm at the end of a half-meter arm, you’re looking at 0.01 degree angular resolution. Getting that resolution with a 3D-printed encoder wheel and some heavy computation is a great innovation.

Combine such detailed positional feedback with some good software and you can design an arm that’s both compliant, strong, and easily trainable just by moving it around. Dexter uses harmonic drives for some of the axes, and while you don’t normally want to force a harmonic drive, the extreme resolution of the positional sensor lets the robot know when it’s being pushed out of position and either apply more force to hold position, or drive the motors in the direction of the motion if it’s trying to learn a new move. This makes for easy training, much in the style of Baxter, the robot that has obviously inspired Dexter, but costs significantly more and isn’t open source.

At the pointy end of the stick, Dexter has an expandable set of end effectors connected by a simple 3D-printed locking-collar-and-pogo-pin arrangement. Whether you need a vacuum, scissors, or a gripper at the end of your robot arm, Dexter has you covered.

If there’s one flaw in Dexter, it’s that the FPGA code to run the encoders was written in a proprietary hardware description language, Viva. So while the Dexter folks can provide us with a bitstream to flash into our own FPGAs, we can’t tweak the encoders’ algorithms. That’s a shame, but Haddington Dynamics’ position is that they can’t afford to re-engineer the FPGA code in order to become fully open source.

In the end, though, Dexter is significantly more than the sum of its parts. Haddington Dynamics has applied what our judge Quinn Dunki called “true hacker spirit” to making the build more affordable wherever possible, but still retaining high quality. If you’re at all interested in building a robot arm, there are a ton of lessons to learn here, and if you need a high-class solution on a hacker’s budget, this is where we’d start. We can’t wait to see what’s been updated in the newest version!

Congratulations, Dexter and Haddington Dynamics!

The HackadayPrize2018 is Sponsored by:

HPE Aruba's 510 line of campus routers support 802.11ax. Which in plain English is Wi-Fi 6, duh

The Register - Thu, 11/15/2018 - 12:30
Of course they've crammed some AI in there too

HPE Aruba today released a line of wireless routers supporting next year's 802.11ax/Wi-Fi 6 standard – and then immediately sullied them by applying the AI marketing buzzword.…

[HELP] Getting a number from a JSON

Tasker: Total Automation for Android - Thu, 11/15/2018 - 12:29

I'm trying to run a task to convert between any currency to USD, but the variable output of the JSON file always changes depending on the currencies being converted.

How can I use REGEX or something similar to be able to pull the number out of the output:


Here is the link to the API

submitted by /u/andanao
[link] [comments]

Bluetooth Jammer?

Your hacking tutorial - Thu, 11/15/2018 - 12:21

Is it possible to jam a bluetooth speaker? Some dickhead on the bus is blasting his bad music. Is there any way to jam his speaker?

submitted by /u/ando_04
[link] [comments]
Categories: Information Security