Hasta La Gadget!

The 27th annual Chaos Communication Conference already hacked encrypted GSM calls with a $15 cellphone, but there was a second surprise in store this morn — the souls who unlocked the Nintendo Wii’s homebrew potential (and defended it time and again) claim to have broken into the PlayStation 3 as well. Last we left the black monolith, Sony had won a round, forcing the community to downgrade their firmware for any hope at hacking into the console. Well, the newly formed fail0verflow hacking squad says that won’t be a problem any longer, because they’ve found a way to get the PS3 to reveal its own private cryptography key — the magic password that could let the community sign its very own code.

So far, the team hasn’t provided any proof that the deed’s been done, but they have provided quite an extensive explanation of how they managed the feat: apparently, Sony didn’t bother generating any random numbers to secure the blasted thing. (We don’t really know how it works, but we have it on good authority that dead cryptography professors are rapidly spinning in their graves.) The group intends to generate a proof-of-concept video tomorrow, and release the tools sometime next month, which they claim should eventually enable the installation of Linux on every PS3 ever sold. Catch the whole presentation after the break in video form, or skip to 33:00 for the good stuff.

Update: The proof-of-concept vid is a bit underwhelming — fail0verflow had to SSH into a PS3 over ethernet — but it’s here nonetheless. See it after the break, and find the team’s full set of presentation slides at our more coverage link. [Thanks, Paolo S.]

Continue reading Hackers obtain PS3 private cryptography key due to epic programming fail? (update)

Hackers obtain PS3 private cryptography key due to epic programming fail? (update) originally appeared on Engadget on Wed, 29 Dec 2010 19:48:00 EDT. Please see our terms for use of feeds.

Permalink Joystiq  |  PSX-Scene, @fail0verflow (Twitter)  | Email this | Comments

This article was written on March 30, 2007 by CyberNet.

Firefox is known for having its inline spell checker that underlines misspelled words as you type them. I truly believe that this feature in Firefox has helped the Internet as a whole become more readable by reducing the number of misspellings in even the simplest things, like comments.

Mozilla does provide multiple languages for their dictionaries, but Opera also gets some of its own Ajaxy goodness with a script that has been made up to support spell checking in 27 different languages. Here is everything the script has to offer:

• It’s blazing fast since JavaScript is stored locally
• Inline and dynamic
• AJAX is used to send and receive data
• Support for 27 languages
• Ability to switch language dynamically

If it sounds like something you would like to use just follow these simple steps:

1. Download the files here and put them in a folder such as My Documents/OperaScripts.
2. In Opera go to Tools > Preferences > Advanced > Content > JavaScript Options > Choose… and select the folder from Step 1.
3. Click OK, and then load a page with a text field in it. Click in that field and you should see the spell checker button similar to what is pictured below.

I had it installed in my Opera within 10 or 15 seconds, and at first I was wondering where the heck the spell checker was. Of course, being a computer geek I never feel like reading instructions or anything so I kept trying to figure out why the spell checker wasn’t showing up! Ahh, then I realized that you have to click in a text field and then a little tab will show up below that field, and clicking on the two-way arrow initiates the spell check:

It is still nice to have the inline spell check in Firefox, but this is definitely a step in the right direction for current Opera users. There is also a preferences file that you can download and use with the script so that you can choose to use the spell checker from Gmail (you have to be logged in), Orangoo, or fearphage. Also, if you only enable one language in the preferences then the drop-down box will be completely removed. That way it doesn’t take up quite so much room.

Maybe when Opera 10 rolls around it too will have inline spell check built-in, but until that time this is one script that I will definitely keep installed! Hopefully Opera 10 will also have a management screen for scripts that you currently have installed.

Source: Opera Watch

Copyright © 2010 CyberNet | CyberNet Forum | Learn Firefox

Related Posts:

IE7Pro: Inline Spell Checking and Statusbar WeatherOpera 9 Leads The Way With New AJAX TechnologyCyberNotes: “Owed to a Spelling Checker”Internet Explorer Users Can Get Spell Check, TooOn-the-Go Dictionary Definitions in Your Browser

It was only a matter of time before Microsoft’s continually-hacked Kinect became embroiled in a VR simulation of some sort, and while we’re not riding light cycles quite yet, enterprising developer Nao_u has managed to put himself in the shoes (and short skirt) of a Japanese virtual pop icon. Mapping his every move onto the virtual skeleton of Vocaloid’s Miku Hatsune probably won’t impress you much at this stage of the game, but there’s the little matter of what Nao_u did next: he hooked up a pair of Vuzix VR920 LCD glasses to see through the digital diva’s eyes, too. Find the terribly cutesy video after the break, and fast-forward to 4:30 to watch Nao attempt to walk a narrow beam set atop a virtual skyscraper.

Continue reading Kinect paired with Vuzix VR920 shades, creates zany virtual reality game (video)

Kinect paired with Vuzix VR920 shades, creates zany virtual reality game (video) originally appeared on Engadget on Tue, 21 Dec 2010 21:53:00 EDT. Please see our terms for use of feeds.

Permalink Adafruit  |  Nao_u Diary  | Email this | Comments

This article was written on February 19, 2007 by CyberNet.

In my opinion it is a no brainer that not changing your default password on your router will increase the chances that you might lose control of the router. Think about how many times you have come across an unsecured wireless router and have been very tempted to try and login to it using the default username/password.

If you were really mean you could even go and block the person from being able to access their own router, and if that person was smart enough they would just use the reset button typically located on the back of the unit. Where’s the problem though? If the person doesn’t realize that they should be using any kind of wireless security or know to change the default password, then they will probably not notice that they can reset the router to see if that works.

A new threat discussed over at CNet can really take advantage of anyone who still has the default username/password set on their router. Here’s how it works:

The researchers found that it is possible to change the DNS, or Domain Name System, settings of a router if the owner uses a connected PC to view a Web page with the JavaScript code. This DNS change lets the attacker divert all the Net traffic going through the router. For example, if the victim types in “www.mybank.com,” the request could be sent to a similar-looking fake page created to steal sensitive data.

A researcher from Symantec said that he was able to get this to work on Linksys, D-Link, and Netgear routers without any trouble. He fears that phishers could start using this to inadvertently trick users into thinking that they are visiting a safe site.

I think the reason most people still have the default passwords set is because they have never been prompted to change them. Some routers will come with “installation” CD’s that will walk you through creating a password and WEP key for wireless protection, but others a lot of people (like myself) will just plug the router in and configure it via its IP address. My guess is that a large portion of people plug the router in and say “hey, it already works so why read the manual?” Then the user doesn’t even bother to setup any wireless protection and they don’t even think twice about changing the password.

I do have to admit that finding unsecured wireless networks is becoming increasingly hard, even though WEP and WAP protection is crackable. Out of the 12 wireless networks that I currently have access to at this location, only 2 of them are unsecured (1 is unsecured and has the default “Netgear” router name, so I’m sure I could access that one in a matter of seconds). Sometimes I wonder if I would be better off logging into the unsecured routers and making my own password so that other people can’t break into it. I’m sure if people still have all of the defaults set on their router then they wouldn’t notice if I create my own password to protect them, after all they could just reset the router later on if they want access to it.

Copyright © 2010 CyberNet | CyberNet Forum | Learn Firefox

Related Posts:

Huge List Of Default Passwords For RoutersFree Mac Exposé Clone For WindowsLifeHacker Shows You How To Hack Your Linksys RouterMy Review: Linksys WRT54GX2 Wireless MIMO SRX200 RouterCyberNotes: Share Your EVDO Wireless Connection With An EVDO Router

What do you get when you cross an HTC HD7 with a Mondrian ROM? Or a Schubert ROM? (‘Elephino… wait, that’s not right.) Nothing too crazy, we imagine, but in doing so, xda-developers patron ansar.ath.gr has provided a proof of concept that custom ROMs can be implemented on Windows Phone 7 devices. In more technical terms, “this proves that the imgfs.bin can be used from any branded device to any other branded device.” It’s okay, you don’t have to know what an imgfs.bin is, but if you’re the sort who likes to tweak phones well beyond what’s in the settings menu / user manual, just be patient and know there’s at least a few brilliant coders who’ll capitalize on this freshly laid groundwork.

HTC HD7 gets its .bins all in a tizzy, custom ROMs up next? originally appeared on Engadget on Fri, 17 Dec 2010 19:40:00 EDT. Please see our terms for use of feeds.

Permalink Pocketnow  |  xda-developers  | Email this | Comments