Skip to Content

Massively has the latest Warhammer Online news, guides and analysis!
Holidash Blog
AOL Tech

Posts with tag black hat

Engadget

Hackers Figure Out How to Wirelessly Control Pacemakers

by Darren Murph, posted Aug 12th 2008 at 12:01PM

Defcon already delivered by exposing California's FasTrak toll system for the security hole that it is, but that's not nearly all that's emerging from the Las Vegas exploitation conference. For starters, a plethora of medical device security researchers have purportedly figured out a way to wirelessly control pacemakers, theoretically allowing those with the proper equipment to "induce the test mode, drain the device battery and turn off therapies." Of course, it's not (quite) as simple as just buzzing a remote and putting someone six feet under, but it's a threat worth paying attention to.

In related news, a trio of MIT students who were scheduled to give a speech on how to hack CharlieCards to get free rides on Boston's T subway were stifled by a temporary restraining order that the Massachusetts Bay Transit Authority snagged just before the expo. Don't lie, you're intrigued -- hit up the links below for all the nitty-gritty.

Update: MIT published the Defcon presentation in a PDF.

Read - Pacemaker hack
Read - Massachusetts Bay Transit Authority sues MIT hackers
Read - Restraining order on said hackers

Internet Addressing Flaw Fears Extend to E-Mail, Other Online Services

by Tim Stevens, posted Aug 7th 2008 at 9:52AMBreaking News

Internet Addressing Flaw Fears Extend to E-Mail, Other Online Services
Remember that ugly flaw in Internet addressing, or DNS, which was detected and fixed, but not by everyone and not in time? The man behind many of those warnings, security expert Dean Kaminsky, recently gave a presentation at the Black Hat conference in Las Vegas, elaborating on how the flaw not only affects Web pages, which has been most commonly reported on, but also could allow hackers to take over e-mail and FTP addresses, as well as other common online communication protocols.

Kaminsky even indicated that the Secure Socket Layer, or SSL, is also vulnerable. SSL certificates are what results in the "key" being displayed when you're shopping at a secure site, indicating to you that your data is being encrypted and secured as it travels over the wire. Not everyone is so concerned, however. VeriSign, one of the leaders in SSL certificates, is playing down those fears. A representative indicated that the company has known of this flaw for "many years" and has "basically engineered around [it]."

Why the company didn't bother to tell anyone else remains to be seen. Way to be a team player there, VeriSign. [Source: CNN, and BBC News]

    Most Commented On (7 days)

    Switched Video

     



    Featured Galleries

    BlackBerry Storm
    Death of Print
    30 Reasons a Girl Should Call It A Night - Facebook Group

    Switched Photo Galleries

    AOL Tech Network


    Latest Reviews from CNET.com

    CNET provides the latest tech news, unbiased reviews, videos, podcasts, software, and downloads, making tech products easy to find, understand and use.

    Top Product Reviews

    Weblogs, Inc. Network

    AOL News

    Other Weblogs Inc. Network blogs you might be interested in:

    Joystiq
    Download Squad
    The Unofficial Apple Weblog (TUAW)
    BloggingStocks
    Xbox 360 Fanboy
    Autoblog
    Big Download Blog
    Fanhouse Backporch