Quantum hackers have performed the first ‘invisible’ attack on two commercial quantum cryptographic systems. By using lasers on the systems — which use quantum states of light to encrypt information for transmission — they have fully cracked their encryption keys, yet left no trace of the hack.
via Hackers blind quantum cryptographers : Nature News.
The iPhone Spy Data Recovery Stick is the ultimate recovery tool for anyone who wants to capture deleted information from any iPhone (running iOS to 3.x). The iPhone Spy Data Recovery Stick makes it easy to recover deleted text messages, contacts, call and web history, as well as photos, voice memos and calendar appointments — giving you a unique look into exactly what the user has been searching for, who they’ve been talking to, and even the types of pictures they’ve taken. With features like saved map search history, web searches, and text messages, the iPhone Data Recovery Stick is the only tool you need to catch a cheating spouse, monitor your kids, or backup your own iPhone data.
via iPhone SPY Data Recovery Stick | Read ALL Her Deleted Texts & MORE…?.
And only $199,-
Haystack. The anti-censorship software is built on a sophisticated mathematical formula that conceals someone’s real online destinations inside a stream of innocuous traffic. You may be browsing an opposition Web site, but to the censors it will appear you are visiting, say, weather.com. Heap tends to hide users in content that is popular in Tehran, sometimes the regime’s own government mouthpieces. Haystack is a step forward for activists working in repressive environments. Other anti-censorship programs—such as Tor, Psiphon, or Freegate—can successfully hide someone’s identity, but censors are able to detect that these programs are being run and then work to disable the communication. With Haystack, the censors aren’t even aware the software is in use. “Haystack captures all outgoing connections, encrypts them, and then masquerades the data as something else,” explains Heap. “If you want to block Haystack, you are gonna block yourself.”
via Computer Programmer Takes On the World’s Despots – Newsweek.
Using the method you can use the sticky keys and a repair disk to reset your password. There’s also a link to using an Ubuntu CD to reset the password.
Hack the Sticky Keys Feature to Reset a Forgotten Windows Password.
This cracks the encryption or forces a mobile to drop the encryption much much faster than traditional methods.
This is a comprehensive guide to installing and setting up DD-WRT on your old wireless router.
Turn Your Old Router into a Range-Boosting Wi-Fi Repeater.
The Apple / Adobe Flash spat has reached a new level, with Adobe having a good laugh: The best selling iPad App, Wired’s June Edition, it turns out, was built using Adobe’s new Adobe Digital Publishing Technologies.
“Bwahaha!” says Adobe. “We Were Behind Wired’s iPad Magazine All Along!”.
The Digital Publishing Platform being developed by Adobe allows publishers and advertisers to create immersive onscreen experiences that combine the visual impact of print design, the immediacy of touch interaction, and the engagement of interactive elements such as video, audio, animated infographics, 360° views, and more. Because this platform builds on the foundation of Creative Suite 5, it lets magazine design, editorial, and production teams use familiar tools and skills to efficiently create versions for print and a wide range of screens. Integrated analytics will enable publishers to plan editorial content and provide advertisers with accurate, detailed insight into how readers are interacting with stories and ads.
Digital Publishing Platform for magazines, books, newspapers and retail catalogs
Of course, the platform Adobe used, incorporates Flash.
Mainly they used InDesign CS5 and will be releasing the technology later.
This site has quite a few examples of social engineering as well as links to a toolkit that allows you to easily clone sites for use as harvesting mechanisms of information.
Prevention of Influence, Deception, Identity Theft and Phishing Through Education.
This distro is being distributed together with a thumbdrive / wifi USB card in China in order to easily hack into WEP / WPA protected WiFi networks.
French researchers have found it very easy using just a normal pc and internet connection, to track exactly what IPs where seeding and downloading what files. 30% of all bittorrent traffic is generated by only around 100 IP adresses.
And if you’re behind Tor, you’re not safe either.
Researchers spy on BitTorrent users in real-time • The Register.
This guy has gone all out – he’s mapped his Emotiv headset commands to Rovio commands, which are sent out via skype to the robot.
Emotiv Headset Controls Rovio Robot Via Brainwaves – Rovio emotiv hack – Gizmodo.
A pair of security researchers has discovered a number of new attack vectors that give them the ability to not only locate any GSM mobile handset anywhere in the world, but also find the name of the subscriber associated with virtually any cellular phone number, raising serious privacy and security concerns for customers of all of the major mobile providers.
via Researchers Hijack Cell Phone Data, GSM Locations | threatpost.
They use the caller ID database which is pretty much open to everyone, because all the providers need to get at it.
A student has studied openCV for his masters thesis and determined how face detection algorythms should work. By putting dark makeup around your eyes and cheekbones, you should be able to break the detection and make the system think you’re something else.
Reverse-engineering artist busts face detection tech • The Register.
The guy who got Linux running on the iPhone has managed to set up his iphone 2G to dual boot into iphone OS or Android. Android is still pretty alpha and he’s had to hack around a bit to handle the lack of buttons on the unit, but it works and he’s released all the stuff needed.
Linux on the iPhone: Android running on iPhone!.
This is a comprehensive look at how to hack into Open EEG, Force Trainer, Mind Flex and Mind Set, in order to get some more output from them than the designers intended.
How to Hack Toy EEGs | Frontier Nerds.
Hardly surprisingly, it turns out that the Electronische Patienten Database is unsafe and offers unfettered access to your private details to almost anyone and their dog.
Onderzoek: beveiliging EPD fundamenteel zwak | Webwereld.
Fortunately you can opt out here (PDF)
This pdf has a couple of fun bash shell tricks, such as using find, replacements for the up arrow, cut, sed, awk and a few more in a very readable format.
Unix_Command-Line_Kung_Fu_ SANS .pdf application/pdf Object.
This guy started stealing at 6 and never looked back. Banks, jewelry, skimming, scamming, he’s done it all. Using high-tech gadgets and doing parachuting in or using air ducts, he got in anywhere. A gripping read of a real life Pink Panther style master thief, who made a few too many mistakes and got caught.
Art of the Steal: On the Trail of World’s Most Ingenious Thief | Magazine.
The way the tool works is that you first take some aluminum foil and make a ‘U shaped’ form using the special tool to do so and make small incisions on pre-determined positions. Next thing you do is put the foil over a special blank that already has the profile of your target lock. The clever thing about this tool is that the ‘U shaped foil tube’ is wrapped around some sort of needle, and the foil can not be pushed in when entering the lock! Once the key is inserted, the needle is taken out from the back of the tool, and the pins are now resting on the foil. Because of the cuts in the foil, each pin will stand on it’s own ‘island’ of foil, and when it is pushed in will not disturb the neighboring pin!
This technique will open most locks and you can buy a kit for around $58,- or a simpler model for $21,-
via Advanced foil impressioning « Blackbag, Barry’s weblog.
Showing there is little unity and policy when it comes to cyber warfare in the US, the military took down a website used to gather intelligence on extremists. In the process of doing so they took down around 300 servers around the world and pissed off all the other intelligence gathering agencies that were covertly monitoring the site to gain information on the identities and plans of terrorist extremists.
Dismantling of Saudi-CIA Web site illustrates need for clearer cyberwar policies.
This wiki has guides showing you how to get OSX Snow Leopard installed on a PC using Intel or AMD chips.
Cambridge University security researchers have demonstrated how it might be possible to trick the card into thinking it’s doing a chip-and-signature transaction while the terminal thinks it’s authorised by chip-and-PIN. The flaw creates a means to make transactions that are “Verified by PIN” using a stolen uncancelled card without knowing the PIN number. Fraudsters would insert a “wedge” between the stolen card and terminal tricking the terminal into believing that the PIN was correctly verified
via Chip and PIN security busted • The Register.
GSM encryption is falling apart at the seams! Using an unoptimised implementation of a proof of concept on a PC, Israeli researchers managed to break the KASUMI system in under 2 hours.
3G GSM encryption cracked in less than two hours — Engadget.
It looks like the Iranians have found out that the video feeds from Predator drones are in some cases unencrypted and can be tapped into using a $26,- program called Skygrabber.
FOXNews.com – Iranian-Backed Insurgents Hack U.S. Drones.
Now it turns out that the ROVER system, a hand held video system for infantry, also recieves unencrypted video from all kinds of airborne sources, from U2’s to Harriers, Tornado’s, F-15’s, F-16’s, etc. And can be tapped in the same way.
Now this is nothing new – some guy was tapping into unencrypted military satellite feeds during the Iraqi wars – and is due in part to bandwidth limitations: the militaries are huge bandwidth hogs and there just isn’t enough to go around for all the tasks they’d like to use, let alone if it was all encrypted.
The question is, can Skygrabber tap targetted drones or is it a haphazard affair?