Wednesday, March 25, 2015

Intel Edison: super duper small PC on a chip.

This is a whole PC. ~$50 retail. WiFi and Bluetooth included.
I just picked one of these up. Its an Intel Edison PC-on-a-chip widget. It can be powered for days on a small battery, if you don't have it doing much. It comes with wi-fi and Bluetooth capability built in. Its powerful enough to be used as a desktop PC for surfing the Internet.

Intel intends it as a rapid-prototyping device for kids making "Internet Of Things" projects, or robots and autonomous drones. The low power draw also makes it awesome for doing any kind of embedded control device, like adding a computer network to your car or making a solar powered weather station for the back yard. The battery out of a cell phone would keep it going all night, and it would charge up all day.

I bought one. Its pretty kewl.

The reason I bring it up is, this thing is SMALL. Like, really small. Fits inside a matchbook with its battery too kinda small. I bought it for something like $50 retail at Fry's in Phoenix, if you bought a whack of them from Intel it would be half of that.

If you wanted a throw-away PC for doing something silly, like counting every Cadillac Eldorado that crosses the Brooklyn Bridge, you could put this in an Altoids tin with a teensy camera and stick it to a bridge stanchion and leave it there forever.
Or if you wanted to seed an area with wi-fi coverage you could make up a bunch of them and stick them on lamp posts. Use a Pringles can antenna for extra distance coverage and the can is the biggest part of the thing.
Put two of them miles apart and communicate via laser.
Detect deer in the back yard by radar and squirt water at them.
Track your girlfriend's car, undetectably and wirelessly. (You know some weirdo is going to do that, right?)
Fly a camera drone up onto a building to look into a particular window... and leave it there.
Detect and report on the water level in your basement sump, and the temperature of the sump pump motor, and how many times an hour it pumps, and how much electricity it uses, and how the battery back up is doing, and if the whole system pukes it sends you an email...

All kinds of things you want a PC for, you can do in a matchbox run off a 9V battery. For CHEAP.

They didn't make it as small as they could, by the way. Its a toy, basically.

Imagine the kind of crap that could be built in to your car or TV or your cell phone or even a plain old extension cord, right now, that you'd never ever know about.

Update: Welcome Rifleman's Journal readers! Consider building a bunch of these: Pirate Box. Never know when a little bit of anonymous file sharing capability might come in handy. Make it out of an Intel Edison and then tell EVERYBODY how you did it, I don't think its been done yet.

Defeating air gaps using heat.

Traditionally, a computer that is off the Internet and off the local network is considered safe. This is called an air gap, there's air between the computer and all other computers. I've posted before about guys using radio frequency (RF) shenanigans to defeat the air gap.

Now there is a new idea. This one uses heat.

The proof-of-concept attack requires both systems to first be compromised with malware. And currently, the attack allows for just eight bits of data to be reliably transmitted over an hour—a rate that is sufficient for an attacker to transmit brief commands or siphon a password or secret key but not large amounts of data. It also works only if the air-gapped system is within 40 centimeters (about 15 inches) from the other computer the attackers control. But the researchers, at Ben Gurion's Cyber Security Labs, note that this latter scenario is not uncommon, because air-gapped systems often sit on desktops alongside Internet-connected ones so that workers can easily access both.

The method uses thermal sensors inside both computers to detect outside increases in heat. The malware uses the CPU to increase and decrease the temperature inside one machine, these changes are detected by the thermal sensors in the other machine. In this way they can exchange ones and zeros, one at a time, minutes apart. Slowly over the course of hours larger messages can be exchanged.

Currently the hack can be defeated just by moving one of them to the other side of the desk. But the very idea that you can transfer even small amounts of data like this is amazing. Previously it didn't matter what kind of malware your computer was infested with, if you unplugged the network you were safe from intrusion. Now, not so much.

Also to be considered is that this hack was developed by a student. Some kid whipped this up as part of a Masters or a PhD.

Imagine what the guys who do this for a living have come up with these last 25 years.

In other news the Kremlin has switched from word processing on computers to typewriters, in a back to the '50s move. So I guess they've been reading about this stuff too.

Personally I think the venerable typewriter is too hack prone, everything you type is recorded on the ribbon, don't forget. I'm going back to a pencil and paper for all my world domination plans. Inside a Faraday cage. In the cellar. Burn before reading.

The Phantom

Monday, March 16, 2015

Some things which are troubling today.

Hertz puts cameras in their rental cars.  Its in their newest navigation device, along with a microphone. But they have "no plans" to actually use the camera. Honest. Pinky swear.

Open secret StingRay phone tracker remains a State Secret. 

The issue led to a public dispute three weeks ago in Silicon Valley, where a sheriff asked county officials to spend $502,000 on the technology. The Santa Clara County sheriff, Laurie Smith, said the technology allowed for locating cellphones — belonging to, say, terrorists or a missing person. But when asked for details, she offered no technical specifications and acknowledged she had not seen a product demonstration.

Buying the technology, she said, required the signing of a nondisclosure agreement.

"So, just to be clear," Joe Simitian, a county supervisor, said, "we are being asked to spend $500,000 of taxpayers' money and $42,000 a year thereafter for a product for the name brand which we are not sure of, a product we have not seen, a demonstration we don't have, and we have a nondisclosure requirement as a precondition. You want us to vote and spend money," he continued, but "you can't tell us more about it."

The technology goes by various names, including StingRay, KingFish or, generically, cell site simulator. It is a rectangular device, small enough to fit into a suitcase, that intercepts a cellphone signal by acting like a cellphone tower.

I've posted about this thing many, many times before. Everybody knows about it, some guys even built one and stuck it in a model airplane. There's Instructables on YouTube how to make one. But this StingRay remains a super secret as far as officials are concerned.

Interesting, yes? Probably because it can do things they don't want you to know it can do. Like, it can scan an entire area and identify every phone in its range, because that's how it actually works. It finds one phone by scanning ALL the phones.  And if I may speculate, it can most likely take control of any phone in its range, turning on camera and microphone on command. We know that can be done, this is likely the machine that does it. Speculating just a little bit further, it can probably hoover up the contents of your phone too.

Formerly only for super spies, now available to Constable Plod of the Podunk Police Department. You think they aren't downloading all the selfies off the phones of random hot girls they spot on patrol? If not there's a bridge in Brooklyn I can get you a really good deal on.

And now the kicker, Albert W. Gore comes right out and says Climate Change Deniers Must Be Punished!!!

For the third time in the last few years, Al Gore, founder and chairman of the Climate Reality Project, spoke at the festival on Friday. Naturally, his interactive discussion focused on addressing the climate crisis. The former vice president focused on the need to "punish climate-change deniers, saying politicians should pay a price for rejecting 'accepted science,'" said the Chicago Tribune.

Gore said forward-thinking investors are moving away from companies that invest in fossil fuels and towards companies investing in renewable energy. "We need to put a price on carbon to accelerate these market trends," Gore told the Chicago Tribune, referring to a proposed federal cap-and-trade system that would penalize companies that exceeded their carbon-emission limits. "And in order to do that, we need to put a price on denial in politics."

Are YOU a Climate Change Denier? Big Brother wants to know, and is more than happy to subvert your phone so he can listen to you in real-time, so as to gather evidence of your Denial.

Or just to get any pics of babes in yoga pants that you may have on there. Big Brother don't pay for pr0nz.

The Phantom

Wednesday, March 04, 2015

No, your iPhone/Android thing is not secure.

And its not secure because = government.

Technology companies are scrambling to fix a major security flaw that for more than a decade left users of Apple and Google devices vulnerable to hacking when they visited millions of supposedly secure Web sites, including Whitehouse.gov, NSA.gov and FBI.gov.

The flaw resulted from a former U.S. government policy that forbade the export of strong encryption and required that weaker "export-grade" products be shipped to customers in other countries, say the researchers who discovered the problem. These restrictions were lifted in the late 1990s, but the weaker encryption got baked into widely used software that proliferated around the world and back into the United States, apparently unnoticed until this year.

Researchers discovered in recent weeks that they could force browsers to use the weaker encryption, then crack it over the course of just a few hours. Once cracked, hackers could steal passwords and other personal information and potentially launch a broader attack on the Web sites themselves by taking over elements on a page, such as a Facebook "Like" button.

The problem illuminates the danger of unintended security consequences at a time when top U.S. officials, frustrated by increasingly strong forms of encryption on smartphones, have called for technology companies to provide "doors" into systems to protect the ability of law enforcement and intelligence agencies to conduct surveillance.

Yes, simply recording every packet on the internet is not enough. Big Kahunas in the US government want a backdoor into your smart-phone and desktop PC. Like, a hardware one.

I think what some of these guys would really like is all citizens living in work camp dormitories with cameras in every room, two in the bathroom. Because they need to be SURE you're not a terrorist, see?

The Phantom

Tuesday, March 03, 2015

Toldja: rats with bubonic plague type fleas found in NYC.

NO ONE EVER LISTENS.

Scientists studying rats in New York found the flea that carries the plague - the Oriental rat flea - hosting on some of the city's rat population, according to the study published Monday in the Journal of Medical Entomology.

Bubonic plague is infamous as one of the most devastating pandemics in world history, known as the Black Death. During the 14th Century, the plague killed between 25 million and 50 million people in Europe.

Before panic ensues, it must be noted that researchers found no trace of the plague or typhus – another disease carried by the Oriental rat flea – in any of the fleas they sampled.

How long before one of those fleas comes down with something?

Friday, February 27, 2015

Godspeed.


Yesterday was "100 flowers", today is "Reichstag fire".

Once upon a time in China, there was an evil warlord named Mao Tse Tung. He wanted to identify and kill everyone in his lands who disagreed with him. So he proclaimed a new government program, the Hundred Flowers Movement. He said "Let a hundred flowers bloom; let a hundred schools of thought contend".

And then after a little while of letting these people talk, he killed them all. In 1957. Then he really got busy, and depopulated the entire continent.

Once upon a time in Germany, there was an evil Chancellor named Adolph Hitler who wanted "emergency powers" so he could become Die Fuhrer instead of just the Chancellor. So he had somebody burn down the Reichstag. This is known as the Reichstag Fire, and it marked the creation of the Third Reich.

Reichstag fire.

Adolph went on to kill a lot of people, although he never came even faintly close to Mao Tse Tung.

Fast forward to modern times. In the Interwebz we have an example of the Hundred Flowers Movement. We've all been happily sharing our most private thoughts, comments, news, pictures, naked pictures, movies, ALL of our lives on-line since the 1990's. And during a great deal of that time, the United States government, the Canadian  government, the British government, all kinds of governments around the world have RECORDED IT ALL.

These days the NSA alone copies pretty much ever packet that goes along the Internet. You know that Apple iCloud thing that's so awesomely convenient for saving pics off your phone? They copy those. Yes, they do.

Love him or hate him, at least we were warned.

So somebody, somewhere, has a perfect record of everything you've ever done online or on the phone.

Which brings us to today. Today is the Reichstag Fire of The Internet.

Dallas Mavericks owner and investor Mark Cuban predicted that proposed FCC Internet regulations will end up impacting TV and "your TV as you know it is over" on Thursday's "Squawk Alley" on CNBC.
Cuban began by predicting "the courts will rule the Internet for the next however many years." He then explained, "let's just take it all the way through its logical conclusion. All bits are bits, all bits are equal. If all bits are equal, then let's look at what a stream bit is an example. So when Henry and I do an interview, and it's streamed lived on the Internet, there's a camera, it goes through an encoder, it sends it out via server or some manner to the Internet, you click on Business Insider and you watch the stream, right? Now, let's look at CNBC on Comcast. There's cameras right in front of you, they go through a switcher, they go through an encoder, it's put through a server, it goes to Comcast, and it's streamed in a managed service environment to television. It's the exact same thing. And if it's the exact same thing technologically and all bits are equal, then why shouldn't CNBC and all TV networks that are delivered on cable, and Telco, and fiber like Verizon, why shouldn't they be part of the open Internet as well? And if they are and all bits are equal, now, let's take it one step further. It's the purview of the FCC now. The FCC, right? So, the FCC now has to apply their same standards to content, don't they, that they do to television content because that's where it is and there's going to be certain citizens who think 'well now, since all content is delivered over the Internet because all bits are bits, and it's a fair, and open, and equal Internet — decency standards.' And remember the FCC is the same agency that fought Nipplegate for eight years over a wardrobe malfunction."
He added, "your TV as you know it is over."
Meaning that if they want to, the FCC could be applying "decency standards" to your personal shit on Apple iCloud. And sending the cops around for a chat if they feel the need.

That most likely won't happen this week because its far too quick a change. They'll ease into it over the course of a few years, after a couple billion dollars worth of lawsuits grind their way through the courts. But, I predict that the days of carrying your smartphone around everywhere and sharing pics of your dinner on Facebook are now officially numbered.

Welcome to the New World Order.

I do believe I said this was going to happen waaaaaay back in 2008, but everybody said "Noooo, that can't happen here! This is a civilized country."  Problem is, that's wrong. It can happen here. It just did.

Germany and China were civilized countries too, my friends. Look what happened to them.

The Phantom

Thursday, February 26, 2015

The Iron Finger of Deletion.

Abandon all hope, ye who comment here!
Behold ye trolls and unsavory denizens of the dark: The Iron Finger of Deletion. 

It hungers!


Thursday, February 12, 2015

"SHUT UP!!!!!" they explained.

Todays excursion into SHUT UUUUUP!!!!! comes, predictably, from the Left Coast of Amurrika.

Originally spurred with a $500 Diversity Center grant from The Pride Foundation, the campaign focused on queer identities and hurtful words surrounding them, said Center director Angie Hambrick, who teamed with Lace Smith, then with Student Involvement and Leadership, to turn those ideas into art. The first posters, which appeared in 2012, featured students tearing up phrases including "That's so gay," "Lame," "Retarded," "Ghetto," "Fat" and "Illegal." "We then decided to expand the words," Hambrick said. "We really wanted the campaign to be about individual choice—words that they're hearing and words that they've chosen not to say. They've heard those words—maybe even used them—but they now understand these words have impact even when the intent is not to hurt. We have to take responsibility for the impact on others, and on ourselves."

 Yes, they have a whole billboard campaign featuring "concerned young people" tearing words in half.


No, really. Its gay. What are you, exotic?

The whole thing is so lame I feel retarded for having even read about it.

The Phantom