Hasta La Gadget!

The emergency contacts (ICE) menu is proving to be a Pandora’s Box of lock screen vulnerabilities on several Samsung Galaxy handsets. Users are finding ways to exploit this weak point and the latest flaw that’s come to our attention employs the pop-up browser on the Note II as an accomplice. It requires the information ticker to be active (found in lock screen settings) so news bites and such are displayed on the screen you encounter when waking the device. Touch upon something to find out more and you’re sent to the lock screen; from there, head to the ICE menu to find a pop-up browser window containing the item you chose in the ticker. Within that window, anyone can access the handset’s clipboard or point the browser to sites holding personal data. Sure, it isn’t as bad as the bug that completely disables the lock screen — identified on the Galaxy S III, but also found to work on the Note II — but is just another reason to hope the mythical box is almost empty and at the bottom lies a fix.

Filed under: Cellphones, Software, Mobile, Samsung

Comments

Source: Ganesh’s Blog

It turns out that Colin Powell’s Facebook hack wasn’t just an isolated incident performed by a 13-year old with good password-guessing skills. The hacker, who is known as Guccifer, is also the same hacker who breached e-mail accounts belonging to over a dozen of George W. Bush’s friends and family members. He obtained “interesting e-mails”, photos, list of home addresses, cell phone numbers, and more. The hacker even obtained the gate code to Bush’s home.

Guccifer took over Colin Powell’s Facebook and made posts that were vulgar, juvenile, and in all caps. Guccifer had also uploaded various private photos to Colin Powell’s Facebook as well. One of the photos showed George H. W. Bush lying in a hospital bed, another showed George W. Bush “wearing” a Ku Klux Klan hat, and there were a few self-portraits of Bush in a bath, taking a shower, and attending church.

There were many references made on Powell’s Facebook page that claimed George W. Bush was affiliated with the Ku Klux Klan, and that the entire Bush family were “puppets of the Illuminati.” Guccifer posted on Powell’s wall, “Kill the Illuminati! Tomorrow’s world will be a world free of Illuminati or will be no more.” The hacker has stated that he has no intentions of stopping his attacks on the Bush administration.

There has been a federal criminal investigation on Guccifer ever since he breached Bush’s e-mail accounts back in early February. Along with those e-mail accounts, Guccifer had also accessed the accounts of U.S. Senator Lisa Murkowski, a senior UN official, security contractors in Iraq, and several former FBI agents. Colin Powell’s hack is the latest attack in this case, and judging from the timing of the attacks, there may be another hit within the next 2-3 weeks.

[via The Smoking Gun]

Colin Powell’s Facebook hacker also breached Bush Family e-mail accounts is written by Brian Sin & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

Xbox hacker and EFF Pioneer Award winner Andrew “bunnie” Huang has waded into the Aaron Swartz controversy, making his ebook Hacking the Xbox free to highlight the important role tinkerers and explorers play. The book, which details Huang’s exploits of the original Xbox console, and subsequent legal battle with Microsoft, was first published in 2003, and had a troubled release with the first publisher pulling out at the last minute over fears of courtroom reprisals.

It’s that arduous legal process that has motivated bunnie to release the free ebook in association with No Starch Press. Swartz, who committed suicide in January, was the target of a lawsuit around computer hacking, and faced a potential $1m in fines and up to 35 years in prison.

“Without the right to tinker and explore, we risk becoming enslaved by technology; and the more we exercise the right to hack, the harder it will be to take that right away” Andrew “bunnie” Huang

The threat of the lawsuit was widely believed to have contributed in no small part to Swartz’s suicide, though the US Attorney strongly denies pressuring the code expert. For Huang, the issue is made particularly personal by the involvement of MIT, accused of hanging Swartz out to dry in the courts, and something he himself had experience of when Microsoft took issue with his console hacking.

“In this book, you will find the story of when I was an MIT graduate student, extracting security keys from the original Microsoft Xbox” Huang writes. “You’ll also read about the crushing disappointment of receiving a letter from MIT legal repudiating any association with my work, effectively leaving me on my own to face Microsoft.”

Physical copies of Hacking the Xbox remain on sale, but the free ebook can be downloaded in PDF format. Huang suggests the EFF, Demand Progress, and GiveWell as suitable donation recipients should readers want to reward his generosity.

Xbox hacker “bunnie” Huang makes book free in Aaron Swartz tribute is written by Chris Davies & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

Google has shown off another one of its creative projects that, sadly, will not be making it to the market place. At SXSW, Google showed off its talking shoe. The modified shoe is part of a pair of Adidas high tops. It is customized with accelerometers, gyroscopes, pressure sensors, and a microphone attached to its tongue. This shoe could be your best friend or worst enemy when it comes to exercising.

The talking shoe speaks to you and provides you feedback based on your movements. The shoe has its on personality which is customized by a series of if-and statements, and it communicates to your Android device through Bluetooth. The shoe demonstrated by Google’s representative encouraged athletic activity. If you aren’t moving, it will say things like, “I’m snoring”, or “In case you forgot, it’s left right left right.” However, some shoes may encourage laziness, and complain when you make any movement.

The shoe experiment is part of Google’s way to encourage creativity and entice more of the young folk at SXSW to get into computer technology and software development. It’s part of the Art, Copy & Code project Google has launched to improve online advertising and get readers interested. The project is meant to create experiments so Google and its partners can see what concepts interests consumers the most. Google says its “a series of experiments to re-imagine advertising.”

The Art, Copy & Code project was the main part of Google’s set-up at SXSW. It was across the street from the Austin Convention Center, and it was sports themed. There was a basketball court and an obstacle course inside. While Google is mainly trying to get people interested in development, it’s nice that they are also encouraging physical activity at their SXSW ‘Playground’. The shoes won’t be making it to a store near you, however Google may open-source the information on the experiment so you (or someone) can make your own.

[via Engadget]

Google shows off hacked shoes at SXSW is written by Brian Sin & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

Google’s Pwnium challenge followed a familiar pattern in its first two years, with white hat hackers invariably finding a Chrome vulnerability and prompting a round of patches that ultimately made the software stronger. For the Chrome OS-focused Pwnium 3, there’s been a slight hiccup: there were no hacks to patch. Despite Google offering a total of $3.14159 million in bounties, entrants couldn’t demonstrate a working exploit on the Series 5 550 target machine. That may be a testament to Google’s steady security improvements, but it doesn’t help discover what holes are left. We’d add that few were left unscathed at the Pwn2Own competition running in tandem — the regular Chrome browser, Firefox and Internet Explorer all came tumbling down, and Safari may have escaped only because contestants didn’t register in advance. Even so, the Chrome OS results may have Chromebook Pixel owners feeling better about their purchases.

Filed under: Internet, Software, Apple, Microsoft, Google

Comments

Source: Geek.com, eSecurity Planet