Catch up on stories from the past week (and beyond) at the Slashdot story archive

 


Forgot your password?
Close
typodupeerror
×
Android

Submission + - Android phone 'wipeout' security flaw exposed (bbc.co.uk)

Submitted by carvell
carvell writes: A weakness that can cause all the data stored on Android smartphone handsets to be erased has been found.

Websites tricked users into activating malicious code by clicking on-screen phone numbers, Ravi Borgaonkar, from the Technical University Berlin, said.

No Android could tell the difference between actual phone numbers and USSD codes recognised by handsets as instructions to re-set or wipe its memory card, he wrote in a blog post.

Android maker Google has issued a fix.

Mr Borgaonkar is urging Android phone owners to ensure they have the latest updates.

Comment Re:perhaps they want to examine packet logs? (Score 1) 107

by carvell (#38259282) Attached to: GCHQ Challenge Solution Explained
Why do people think this is anything other than a publicity stunt to generate internet-chatter and pimp their name about a bit?

The details of the challenge are almost certainly irrelevant - anyone can apply for GCHQ jobs directly with them, without having to complete a challenge.

The more their name is banded around forums and sites like slashdot the better, as they'll get more people applying for their jobs, which can only be good for them.

Comment Linux build is available (Score 3, Informative) 229

by carvell (#34106064) Attached to: Firesheep Author Reflects On Wild Week

A linux build is available here. It's an firefox addon file (xpi). I have it up and running on Ubuntu fine. You'll need libpcap installed obviously.

You need to make sure you run firesheep-backend --fix-permissions as root manually before it'll work. You'll find this in Firefox's plugins directory.

All info taken from here.

Submission + - Man jailed over computer password refusal (bbc.co.uk) 1

Submitted by carvell
carvell writes: A teenager has been jailed for 16 weeks after he refused to give police the password to his computer.

Oliver Drage, 19, of Liverpool, was arrested in May 2009 by police tackling child sexual exploitation.

Police seized his computer but could not access material on it as it had a 50-character encryption password.
Image

Thieves Use Vacuum To Siphon Cash From Safes Screenshot-sm 173

Posted by samzenpus from the gone-with-the-wind dept.
Tootech writes "A gang of thieves armed with a powerful vacuum cleaner that sucks cash from supermarket safes has struck for the fifteenth time in France. The burglars broke into their latest store near Paris and drilled a hole in the pneumatic tube that siphons money from the checkout to the strong-room. They then sucked rolls of cash totaling £60,000 from the safe without even having to break its lock. Police said the gang — dubbed the Vacuum Burglars — always raid Monoprix supermarkets and have hit 15 of the stores branches around Paris in the past four years. A spokesman added: 'They spotted a weakness in the company's security system and have been exploiting it ever since.'"

Comment Re:Quaint system... (Score 1) 334

by carvell (#32375926) Attached to: UK Home Office Set To Scrap National ID Cards
They don't check anything. I'm constantly requesting copies of birth certificates (genealogy) and I've never been asked anything. Just find the person whose certificate you're after, look them up in the BMD indexes and bingo bango, one officially approved birth certificate arrives in the post a week or so later.

Comment Re:Beware of fakes (Score 1) 270

by carvell (#32229070) Attached to: Any Open Source Solutions For DIY Auto Diagnostics?

My point was more that the cloned chips are using ripped off code with no guarantee that it's not been hacked about and will work properly. 9 times out of 10 the cloned chips will probably work fine. I'm just making people aware that the cheap ones do contain code that's been ripped off from another manufacturer and sold on for profit.

People can make up their own mind then as to what they want to do.

Comment Beware of fakes (Score 1) 270

by carvell (#32226910) Attached to: Any Open Source Solutions For DIY Auto Diagnostics?

I've looked into this a fair amount and one thing I will say is beware of fake ELM ICs.

The ELM327 IC is what the vast majority of these scanners will be based on. The ones at www.scantool.net will use genuine ELM ICs, but the ones like this one and this one will almost certainly use non-genuine ELM ICs.

The ELM327 chip is just a PIC with some custom firmware on it. A few years ago someone managed to get the firmware off one of these PICs and since then the fake ones have really taken off. Whereas the genuine ELMs have frequent updates, the fake ones obviously don't.

Slashdot Top Deals

He has not acquired a fortune; the fortune has acquired him. -- Bion

Close