Black Hat 2008: Dan Kaminsky releases DNS information
[Dan Kaminsky]‘s much anticipated talk on his DNS findings finally happened at Black Hat 2008 in Las Vegas today. [Dan] has already uploaded the complete slides from his talk as well as posted a short...
View ArticleDan Kaminsky’s DNS Black Hat video
Black Hat has published the media from Dan Kaminsky’s infamous DNS vulnerability talk. You can get the full video (101MB) or just the audio. The full archive of slides and white papers from this year...
View ArticleApple finally fixes DNS bug
With today’s release of Security Update 2008-006 Apple has finally addressed this summer’s DNS bug. In their previous update they fixed BIND, but that only affects people running servers. Now, they’ve...
View ArticleD-Link adds captcha to routers
D-Link is adding captcha support to its line of home routers. While default password lists have been abundant for many years, it was only recently that we started seeing the them implemented in...
View ArticleHome power monitoring
Reader [john] finished up his home power monitor over the holiday weekend. It uses a pair of current transducers clamped onto the mains. These output 0-3V and are read by the Arduino’s ADC. The...
View ArticleAsk HackADay: Network Security Camera
Today we received the question, “How to control a web cam via internet, i want to use it for security reasons, always out of the house and my PC connected want to open the cam from time to time to...
View ArticleSiri proxy adds tons of functionality, doesn’t require a jailbreak
[Pete] has an iPhone 4s and loves Siri, but he wishes she had some more baked-in capabilities. While the application is technically still in beta and will likely be updated in the near future, [Pete]...
View ArticleRemotely Controlling Automobiles Via Insecure Dongles
Automobiles are getting smarter and smarter. Nowadays many vehicles run on a mostly drive-by-wire system, meaning that a majority of the controls are electronically controlled. We’re not just talking...
View ArticleDNS Tunneling: Getting The Data Out Over Other Peoples’ WiFi
[KC Budd] wanted to make a car-tracking GPS unit, and he wanted it to be able to phone home. Adding in a GSM phone with a data plan would be too easy (and more expensive), so he opted for the hacker’s...
View ArticleYou Might Not Be Able To Read This
Early today, some party unleashed a massive DDoS attack against Dyn, a major DNS host. This led to a number of websites being completely inaccessible. DNS is the backbone of the Internet. It is the...
View ArticleControl Your Web Browser Like It’s 1969
Imagine for a moment that you’ve been tasked with developing a device for interfacing with a global network of interconnected devices. Would you purposely design a spring-loaded dial that can do...
View ArticleThis Week in Security: Is RSA Finally Broken? The Push for Cloud Accounts,...
Ever wondered what “cyberwar” looks like? Apparently it’s a lot of guessing security questions and changing passwords. It’s an interesting read on its own, but there are some interesting clues if you...
View ArticleDNS-over-HTTPS Is the Wrong Partial Solution
Openness has been one of the defining characteristics of the Internet for as long as it has existed, with much of the traffic today still passed without any form of encryption. Most requests for HTML...
View ArticleHackaday Links: March 1, 2020
Talk about buried treasure: archeologists in Germany have – literally – unearthed a pristine Soviet spy radio, buried for decades outside of Cologne. While searching for artifacts from a Roman empire...
View ArticleLinux-Fu: Your Own Dynamic DNS
It is a problem as old as the Internet. You want to access your computer remotely, but it is behind a router that randomly gets different IP addresses. Or maybe it is your laptop and it winds up in...
View ArticleHackaday Links: October 10, 2021
We have to admit, it was hard not to be insufferably smug this week when Facebook temporarily went dark around the globe. Sick of being stalked by crazy aunts and cousins, I opted out of that little...
View ArticleRun Your Own Server for Fun (and Zero Profit)
It seems there’s a service for everything, but sometimes you simply learn more by doing it yourself. If you haven’t enjoyed the somewhat anachronistic pleasures of running your own server and hosting...
View ArticlePie Stop For Emergency DNS Needs
The war on Internet ads rages on, as the arms race between ad blockers and ad creators continues to escalate. To make a modern Internet experience even remotely palatable, plenty of people are turning...
View ArticlePunycodes Explained
When you’re restricted to ASCII, how can you represent more complex things like emojis or non-Latin characters? One answer is Punycode, which is a way to represent Unicode characters in ASCII. However,...
View ArticleThis Week in Security: WinRAR, DNS Disco, and No Silver Bullets
So what does WinRAR, day trading, and Visual Basic have in common? If you guessed “elaborate malware campaign aimed at investment brokers”, then you win the Internet for the day. This work comes from...
View Article