There's just not much you can blame Boeing for here.

Tire: airline maintenance
Engine: Boeing doesn't make or maintain the engines (though they presumably do only support a limited number of models)
Runway: could be pilot, tower, weather conditions, etc.

Also, with big jets, there's only two companies now: Boeing or Airbus. It's kind of hard for it not to be one of the two, unless it's a mid-size regional jet or smaller. As much as I am not impressed with Boeing these days (with their space stuff as much as their jets), I can't really put any special blame on them for this.

Mine just turned 2 - premature, but dodged NICU by a matter of hours. Also missed my birthday (and my mother-in-law's) by one day!

I don't see anything about what their radio frequency is. The Wikipedia page about the station does not say, and even the page for the station linked from Wikipedia doesn't mention a frequency (not that I could find), much less even what band it is in. I know I probably don't have the right equipment to receive it, and I'm not on the west coast anyhow, but if I did, what would I tune to?

"The Mandalorian & Grogu" is set to be .. the biggest blockbuster...

I'm glad to hear that this movie, which is about to start filming, has already been determined to be so popular with the public, that they will be lining up around the block to get into the theater.

I was working on code that talked to gas pumps back in 1997-2000, and at some point in 1998, I noticed that the code for leap year wouldn't be right for 2000. So I fixed it. And I didn't test it. And it was in assembly language. And I got the branch condition wrong. And it would break on all leap years. Fortunately all the Y2K mania meant that someone else did test it before it became a problem. But it would just have messed up the date on your receipt at worst.

Yep this is a problem with the place that handles the credit cards. Probably caused by an outsourced idiot, because local idiots are too expensive. I remember back then when I freaked out some of our contractors from India that were working on our cash acceptor project, by showing them a two-dollar bill.

Being "first to market" doesn't indicate something is unsafe or untested. Research into mRNA has been ongoing since the 1960s, and the first mRNA human vaccine trials started in 2001, with the first human clinical trials for a rabies mRNA vaccine starting in 2013.

In this case, "being first to market" is misleading, as mRNA vaccines already had 20 years of human testing by the time the first COVID-19 mRNA vaccines were approved.

Yaz

Hyundai’s keyfob does the same — but if you’ve parked at a mall (as one example) and are walking around with the keyfob in your pocket, the relay attack will work just fine (unless you’ve put the keyfob into a faraday pouch).

The motion sensor kill switch is great for when you’re at home and your key is in a drawer, but not otherwise.

Yaz

HOTP (and TOTP) wouldn’t help in this case, as it’s not that the authentication is being broken. The problem is that in allowing proximity alone to activate the authentication, you can create a simple RF bridge to fake the proximity portion. You don’t even need to parse the RF signal or bring it back into the digital domain — at their most basic, these devices aren’t snooping the authentication, nor doing a MITM attack — they just boost the signal from the keyfob, and relay signals from the car back to the fob, allowing the fob to authenticate even when it’s distant from the car.

The most mathematically perfect authentication in the world isn’t going to fix that. By allowing the convenience of allowing the car to unlock when the keyfob is apparently “near”, just by boosting the signal between fob and car when they’re not proximate allows those two devices to perform a normal authentication — and the device in the middle doesn’t even need to know how the authentication works, nor parse (nor try to hack/fake) the data being relayed. Better authentication doesn’t fix that — it’s an issue of the protocol making assumptions of proximity that are easily faked via basic signal boosting.

Hey, kinda like your post!

Yaz

The problem here is that the “real” key fob is still the one in this attack doing the authentication, so it will still work regardless.

The problem is that this authentication happens automatically based on proximity — and the attack fakes the proximity, and not the authentication. The authentication here is still real, and doesn’t need to be faked — they’re not doing a MITM attack, just providing a bridge such that the car thinks the fob is nearby, at which point they authenticate as expected.

Your proposed solution doesn’t fix this problem, as it’s not an authentication problem in the first place. The attackers aren’t faking the authentication, nor are they even providing it — they just provide an RF bridge to boost the signals such that the car and key think they are in proximity, at which point the car and key authenticate and unlock the vehicle.

Hyundai does at least have an automatic power-kill switch built into their fobs when they’re at rest; however I don’t know if this is in use in the UK (where it appears the majority of attacks of this sort against the IONIQ 5 are made).

Yaz

It is my understanding (as an IONIQ 5 owner) that Hyundai already has a partial solution in that once the fob is still for a few seconds, it effectively shuts itself off completely (and powers back up when it detects motion again).

This is great for a situation where you’re at home and your key is in a drawer, but isn’t as ideal in a situation where you’ve parked away from home and are walking around within relay distance with the key in your pocket — in which case it will remain powered on and can be relayed.

Yaz

Apparently they did have something better, but someone forgot to pull the safety disable switch (to keep its frickin' laser from shooting off by accident) before putting the lander on the rocket. I guess it didn't have one of those REMOVE BEFORE FLIGHT tags on it. Fortunately they noticed before landing (someone got bored and decided to test it before the final entry burn), and there was another frickin' laser in one of the payloads, which was already wired up. But it took some time to switch over, and they didn't land they way they planned.

Let's get turbo encabulated!

No idea on the men-vs-women thing.

But it seems absolutely crazy for the DRMed media sales industry to remind people that their media could Just Work and be normal, instead of requiring specific proprietary players (a different one for each media source). They shouldn't even mention piracy, because that just plants the seed that people could instead have standard format files, where things are much more convenient than the awkward situation with DRMed media.

If we want people to just accept that things are shitty and must always remain shitty, then it's probably best to not encourage people to think about the topic at all. Shhhh! Don't bring it up, and pretend that the idea of a convenient media library, where users have the choice to use whatever player software that they want on whatever device that they want, simply doesn't exist at all.

Science makes no such claim. Indeed, science has yet to fully encapsulate what it means to be “alive” in the first place.

So stop claiming that science says what you want it to say, just because that’s the result you desire. That in and of itself is not science.

Yaz

Their old 1% is still there, those are in addition to the regular rebate, so I don't know why you have such a problem with it. It's not like they took something away for that. It's just a few clicks on the web site, which I go to for paying the bill anyhow, and you can sign up a few weeks before the quarter begins.