Subhead:
Headline of the day.
August 15th, 2018Your loser update: pre-NFL edition.
August 15th, 2018Actually, this sits at the weird intersection of a couple of things:
You’ve stood by us through it all. We love you for it, and so does @budlight.
These special fridges will unlock celebratory beers when we get our first regular season “W”.#VictoryFridge pic.twitter.com/LgsGNabMpt
— Cleveland Browns (@Browns) August 14, 2018
Which do you suppose is going to happen first: a Browns win, or someone hacks the fridges? My money is on the latter.
Cleveland hackers, you’ve got at least 25 days to prove me right.
More from the Entertainment and Sports Programming Network.
And how about a little musical interlude? We haven’t had one in a while.
DEFCON 26/Black Hat updates: August 14, 2018.
August 14th, 2018I apologize that I wasn’t able to post more coverage over the weekend: as I expected, it turned out to be fun, but packed.
I intended to post this yesterday, but I wasn’t able to find many updates on my lunch hour. Then I got stuck in a gumption trap late in the day at work, and basically came home and collapsed.
In retrospect, that was better, because this story broke late in the afternoon: Caesars Palace security was (in the opinion of at least some DEFCON attendees) a little too aggressive about searching rooms. More from Defiant, a company that was at DEFCON. Statement from Marc Rogers.
Also: badge related coverage if you care. Personally, I don’t need a stinking badge.
Black Hat updates:
- Putting this here for my IBM mainframe friend: “Mainframe [z/OS] Reverse Engineering and Exploit Development” by Chad Rikansrud.
DEFCON 26 updates:
- Haven’t found slides yet, but reference material for “Building Absurd Christmas Light Shows” with Rob Joyce is here.
- Also no slides that I’ve found for “You’d better secure your BLE devices or we’ll kick your butts!” with Damien Cauquil. But: his Twitter feed has an interesting link to “Exploiting BLE Smart Bulb Security using BtleJuice: A Step-by-Step Guide“, a blog post by Vaibhav Bedi (I think). What’s interesting about this post is that it covers the whole process of installing and configuring BtleJuice, “a framework to perform MiTM attacks on BLE devices”. Also: GitHub repo for Btlejack, “everything you need to sniff, jam and hijack Bluetooth Low Energy devices”.
- I’m excited about this one, though I haven’t had time to go through all of it yet: “Ridealong Adventures—Critical Issues with Police Body Cameras” by Josh Mitchell. Slides. five_oh_noes, a body camera scanner. More body camera related stuff.
- GitHub repo for “Breaking Smart Speakers: We are Listening to You” with Wu HuiYu and Qian Wenxiang. At the moment, this includes the presentation slides and Amazon Echo exploit code.
Pilot error.
August 13th, 2018The Dallas Wings, who are a team in the WNBA, fired their head coach Fred Williams yesterday.
The root cause was apparently not that the Wings have lost eight games in a row: they are 14-17 so far this season, and could conceivably make the playoffs. The root cause appears to have been that Mr. Williams and the team president/CEO got into “a postgame altercation”. It isn’t clear to me if punches were thrown or exactly what the nature of the altercation was: either it was serious enough that CEO Greg Bibb felt compelled to fire Williams before the season ended, or (possibly) Mr. Bibb is just a little oversensitive.
In any case, the Wings are still one game ahead of…that’s right, the Las Vegas Aces.
(Apologies for linking to ESPN, but the Dallas paper was really obnoxious about ad blockers. I couldn’t find any mention of this in the Statesman or HouChron.)
Obit watch: August 13, 2018.
August 13th, 2018V.S. Naipaul, noted author.
Dr. Richard Jarecki. He was most famous for hacking roulette:
He and his wife honed his technique at dozens of casinos, including in Monte Carlo; Divonne-les-Bains, France; Baden-Baden, Germany; San Remo, on the Italian Riviera; and, briefly, Las Vegas. He became a regular in San Remo, where he had lucrative runs over several years.
By 1969 he had become “a menace to every casino in Europe,” Robert Lardera, the San Remo casino’s managing director, told The Morning Herald.
“I don’t know how he does it exactly, but if he never returned to my casino I would be a very happy man,” Mr. Lardera said.
According to the NYT, his technique basically amounted to painstaking long term observation of thousands of spins, looking for roulette wheels with biases, and then exploiting those biases.
DEFCON/Black Hat updates: round 2.
August 9th, 2018Another Ars story based on another Black Hat panel:
The presentation in question is “Understanding and Exploiting Implanted Medical Devices” by Billy Rios and Jonathan Butts. No slides or white paper yet, so I don’t want to comment very much. But: I do also want to point out this article, “The $250 Biohack That’s Revolutionizing Life With Diabetes“. Why? Well…
Some additional interesting looking work:
- “TRITON: How it Disrupted Safety Systems and Changed the Threat Landscape of Industrial Control Systems, Forever” by Andrea Carcano, Marina Krotofil, and Younes Dragoni. “In 2017, a sophisticated threat actor deployed the TRITON attack framework engineered to manipulate industrial safety systems at a critical infrastructure facility. This talk offers new insights into TRITON attack framework which became an unprecedented milestone in the history of cyber-warfare as it is the first publicly observed malware that specifically targets protection functions meant to safeguard human lives.” Slides. White paper.
- “There will be Glitches: Extracting and Analyzing Automotive Firmware Efficiently” by a whole bunch of people.
- And it just wouldn’t be a security conference in 2018 without a Tesla attack: “Over-the-Air: How we Remotely Compromised the Gateway, BCM, and Autopilot ECUs of Tesla Cars” by Ling Liu, Sen Nie, Wenkai Zhang, and Yuefeng Du. White paper is at the link: slides are broken.
That’s all I’ve been able to turn up today. More tomorrow, I hope.
Black Hat 2018/DEFCON 26 0 day updates.
August 9th, 2018Some of yesterday’s Black Hat presentations:
- “Stress and Hacking: Understanding Cognitive Stress in Tactical Cyber Ops” by Celeste Paul and Josiah Dykstra.
- “Reversing a Japanese Wireless SD Card – From Zero to Code Execution” by Guillaume Valadon. And here’s the GitHub repo.
- “Mental Health Hacks: Fighting Burnout, Depression and Suicide in the Hacker Community” by Christian Dameff and Jay Radcliffe.
- “Open Sesame: Picking Locks with Cortana“. “Exploiting the ‘Open Sesame’ vulnerability attackers can view the contents of sensitive files (text and media), browse arbitrary web sites, download and execute arbitrary executables from the Internet, and under some circumstances gain elevated privileges.”
Some others that I didn’t get to the first time around:
- “Software Attacks on Hardware Wallets” by Alyssa Milburn and Sergei Volokitin. “…we show how software attacks can be used to break in the most protected part of the hardware wallet, the Secure Element, and how it can be exploited by an attacker.” Slides. White paper.
- “Screaming Channels: When Electromagnetic Side Channels Meet Radio Transceivers” with a whole big bunch of folks. “…we show that it is possible to recover the original leaked signal over large distances on the radio. As a result, variations of known side-channel analysis techniques can be applied, effectively allowing us to retrieve the encryption key by just listening on the air with a software defined radio (SDR).” Slides. White paper.
Ars Technica has a story up in advance of Justin Shattuck’s “Snooping on Cellular Gateways and Their Critical Role in ICS” presentation later today:
There are a couple of other presentations from yesterday that sound interesting on second look, but the links to them are currently broken. Also, I haven’t had a chance to read through all of these yet: I did give a quick skim to “Stress and Hacking” and “Reversing a Japanese Wireless SD Card” and look forward to a more careful read of both.
I think I’m going to try to post a second update later this evening if the broken links are fixed and/or new content is available. We should also be getting close to the point where the DEFCON 26 media server has preliminary versions of the presentations up…
Edited to add: DEFCON 26 presentations are now live on the DEFCON media server.
You’re going down in flames, you tax-fattened hyena! (#51 in a series)
August 8th, 2018Personally, I kind of hope Rep. Collins turns out to be innocent, and it was a dingo who gave the stock tips.
This never happens.
August 7th, 2018But when it does, I can’t miss commenting on it.
Friday night, the Las Vegas Aces were scheduled to play a WNBA game against the Washington Mystics.
But things happened along the way. I can’t find specific details, but the general summary is that it took the Aces 26 hours to get from Las Vegas to Washington, D.C. They arrived around 3:45 PM on Friday. The game was scheduled to start at 8 PM Friday, so they’d been travelling all that time and had about four hours to rest and get ready for the game.
The team thought this was unacceptable. The Aces had already been in contact with the player’s union throughout the whole travel fiasco, trying to get the game delayed: but the WNBA schedule is so tight at the moment the league didn’t feel like they could delay.
So the Aces just refused to play.
The Aces felt like they could trust the league to make a decision. And the league decided today.
There was little precedent for the decision because the WNBA has never before canceled a game. There have been only a handful of instances over the past few decades in major sports in which teams have had to forfeit.
Most of those occurred because of fan involvement, notably the Chicago White Sox’s infamous Disco Demolition Night in 1979, when the field was so damaged the second game of a doubleheader could not be played.
As far as I can tell, while there is a Wikipedia page on forfeits in sport, and a seperate one for baseball specifically, I can’t tell if any basketball game – NCAA, NBA, or WNBA – has been forfeited before now. (The NCAA has voided wins, but that’s different.)
The last forfeit I know of in NCAA football – or in any other sport before now – was the Grambling State-Jackson State game in 2013. I welcome correction if anybody has a more recent example.
Edited to add: Ooops. Missed that California University of Pennsylvania forfeited one in 2014 after five players were charged with assault.
(“Don’t WNBA teams fly charter?” I think that’s covered in one of the links, but the short answer is: no, the league ordinarily doesn’t allow charter flights in order to keep a level playing field, since some teams have more resources than others. The league did give special permission to the Aces to arrange a charter while all of this was going on, but the team wasn’t able to arrange one on short notice.)
Obit watch: August 7, 2018.
August 7th, 2018Joël Robuchon, noted French chef.
Lawrence and I often joke about French cooking: “High prices. Small portions.” And I’ve never eaten at a Robuchon restaurant. But he sounds like someone who had the right ideas.
…
…
Paul Laxalt, former Senator.
Tom Heckert, former general manager of the Cleveland Browns. (Hattip: Lawrence.)
Amy Meselson. She was 46 years old, and had a reputation for defending immigrants to the United States. Her obit opens with a great story about her zealous advocacy for Amadou Ly, a Senegalese immigrant who was part of a winning robotics team at his high school.
…
…
Ms. Meselson earned her middle name by surviving a life-threatening respiratory disease. Besides dealing with depression, she had recently been given a diagnosis of attention deficit disorder and extreme anxiety — all aggravated when she traveled to Greece two years ago to volunteer at a camp for Syrian refugees, Sarah Meselson said at a memorial service.
At the service, she said she wanted to recount her daughter’s maladies for two reasons.
“One,” she said, “is to emphasize what everyone already knows — that it is not always possible to comprehend the level of suffering that others may be experiencing, especially when they appear to be successful and to excel to the extent that Amy did.
“The other,” she added, “is to applaud my daughter for all that she accomplished despite her mental illness.”
In that vein, this is hard as hell to read, but worth it. (Hattip: Popehat on the Twitter.)
Obit watch: August 6, 2018.
August 6th, 2018Edited to add: NYT obit now up.
DEFCON 26/Black Hat 2018 preliminary notes.
August 5th, 2018DEFCON 26 and Black Hat 2018 start up later this week. Again, I’m not going, but I do feel like I’m inching closer to making a return. Full-timers from my group have been sent to Black Hat in the past, so who knows what’s going to happen next year?
What would I do if I was there? A quick skim of the Black Hat briefings schedule doesn’t show a whole lot that really jumps out at me. I’d probably just be hitting targets of opportunity, with a few exceptions:
- “Stress and Hacking: Understanding Cognitive Stress in Tactical Cyber Ops” by Celeste Paul and Josiah Dykstra, because cognitive stress under pressure is something I’m interested in and has wider implications.
- “Reversing a Japanese Wireless SD Card – From Zero to Code Execution” by Guillaume Valadon.
- “Mental Health Hacks: Fighting Burnout, Depression and Suicide in the Hacker Community” by Christian Dameff and Jay Radcliffe, for obvious reasons.
- “Open Sesame: Picking Locks with Cortana“, with Amichai Shulman, Ron Marcovich, Tal Be’ery, and Yuval Ron. The lockpicking in this case looks less like actual physical lock sport: “In this presentation, we will reveal the “Open Sesame” vulnerability, a much more powerful vulnerability in Cortana that allows attackers to take over a locked Windows machine and execute arbitrary code.”
- “Applied Self-Driving Car Security” because Charlie Miller and Chris Valasek.
What about DEFCON 26? After the jump…
The Washington Post makes me testy again.
August 2nd, 2018Headline:
The provocative Mike Daisey is a straight-shooter in his solo show about guns.
Dear WP:
The words you were looking for in that headline were “known liar“. “Known. Liar.”
You’re welcome.
Obit watch: August 1, 2018.
August 1st, 2018Captain Lawrence E. Dickson passed away on December 23, 1944.
On Dec. 23, 1944, Captain Dickson got into a P-51 Mustang fighter plane at Ramitelli Air Base in Italy for a reconnaissance mission. Later, as he piloted the plane during the return flight, it experienced engine failure, the agency said.
Ms. Andrews said she learned from a wingman who flew alongside her father that two other planes flew alongside Captain Dickson’s plane as it descended until it disappeared.
Some witnesses told officials that they saw the plane crash and roll over, the canopy jettisoned.
Officials from D.P.A.A. said Captain Dickson was not seen ejecting from the plane.
(Note: as far as I am aware, the P-51 in 1944 did not have ejection seats.)
Captain Dickson was one of the Tuskegee Airmen. The crash site was not found until 2012, remains were not recovered from the site until 2017, and DNA analysis was not completed until last Friday.
Obit watch: July 30, 2018.
July 30th, 2018Yesterday was a bad day for wrestling.
Nikolai Volkoff (an alias for Josip Nikolai Peruzovic) passed away on Sunday. He was 70.
Peruzovic, who was inducted into the WWE Hall of Fame in 2005, was best known in the world of professional wrestling for his over-the-top Soviet/Russian character during his time in the World Wide Wrestling Federation (later the WWF) in the 1960s, ’70s, ’80s and ’90s. In reality, Peruzovic was born in what was then Yugoslavia and now stands as part of Croatia.
Peruzovic’s most famous run came as part of the then-WWF’s explosion in popularity in the mid-1980s, as he teamed with the Iron Sheik to form one of the most successful heel teams in the history of pro wrestling while being managed by the legendary “Classy” Freddie Blassie. He famously sang the Soviet Union’s national anthem while the Iron Sheik taunted and stoked the anger of crowds around the world by playing upon real-life conflicts.
Volkoff and the Iron Sheik won the tag team championship in 1985.
Brian Christopher Lawler, son of Jerry Lawler, who wrestled as “Brian Christopher” also died on Sunday. Apparently, he was in jail on a DWI charge and committed suicide in his cell.
Ron Dellums, former Congressman.
Two obits that I thought made an interesting juxtaposition:
Mary Ellis, who died at 101.
…
…
Oksana Shachko, who the paper of record describes as “a Ukrainian artist and a founder of Femen, a women’s rights group famous for its topless political protests”.
Together with the Pussy Riot punk group in Russia, Femen became part of a post-Soviet protest phenomenon that sometimes drew a violent reaction. In 2011, Femen said that Ms. Shachko and other activists had been abducted in Minsk, the capital of Belarus, after campaigning in front of the K.G.B. headquarters there. Several members were beaten up in Kiev, Ukraine’s capital, in 2013 ahead of a visit by President Vladimir V. Putin of Russia.
Ms. Shachko and several other activists from the university town of Khmelnytsky, Ukraine, founded Femen in 2008. After a few conventional protests, they decided to demonstrate topless, often with political slogans written on their bodies.
…
In 2013, members of Femen ran topless in front of Mr. Putin as he visited Germany, drawing a grin and two thumbs up from him before guards wrestled the activists to the ground.
Ms. Shachko, along with several other Femen members, moved to Paris that same year and was granted political asylum by the French authorities. She maintained that the group’s members had been pursued by Russian special services and that the agents had planted a grenade in Femen’s office in Kiev, along with a photograph of Mr. Putin.
Ms. Shachko was 31. According to the NYT obituary, her death is being investigated as a suicide.