Search Results for: c

Facebook is Copying your Contacts

Finally upgraded my phone, and with it all apps including Facebook Messenger. Which really wants access to my contact list.

“Your contacts will be continuously synced with our servers.”

No no, and if you have little dossiers attached to a contact, bet those are copied too.

The app is aggressive, and about every 12th use it prompts.

Now begins the game of “it’s one slip of the finger and I accidentally hit okay…”

Then what, turn my phone off? That’s seconds, it’s likely done hoovering the list by now, or just pick up where it left off when the phone is turned back on.

Do you have a hard copy of your contact list?

Saved on a USB that’s tucked away safe?

How would you find your loved ones if you lost access to your account? Everything’s in the cloud and it fails? If your only copy of your contacts is stored in Facebook, please leave my blog.

Maybe it’s me. Maybe just give Facebook everything it wants, forget this all, and look at my new coat.

Blog tag = Facebook

 

 

Car Hacking Looks like This

Screenshots from the Black Hat presentation about the first remote hack of a passenger vehicle – a 2015 Jeep Cherokee (more here.)

It was these guys – Charlier Miller and Chris Valasek.

2 Biggest Takeaways for the Average Driver

1 – the attack they released no longer works

As of publishing of this post, the attack stopped working because Sprint closed the port they were using to enter the car (nice Sprint.)

If you own a Chrysler and were part of the 1.4 million recall, breathe a bit easier.

2 – update your car

This Jeep thing is a wakeup call – if your automaker issues an update, make it a priority. The industry is still in its infancy, the update will probably be inconvenient “pick up a USB from the dealership” DO IT.

Be mindful about how you connect your car to the internet (please never pair your car to public WiFi.)

From Black Hat 2015.

 

 

Vegas Decompression Complete

Above is Saturday night.

Below is Sunday night.

(didn’t achieve top score, he just let me put my name, kept tanking the putting)

What an over-stimulating environment, Vegas.

Don’t like the city, and coming up on 20 visits ugh; the blog tag is annoyingly large –Vegas (25).

It’s the extreme excess, and how people’s level of entitlement to it all severely increases… gross. 

But Black Hat ahhhh. Guys I learned so much.

Upcoming Security Posts

– car hacking stuff obvs
– defeating 80% of all proximity-keyed doors
– the “Avoid being Social Engineered” Series with Social-Engineer, Inc
update your Android phone NOW (really, don’t wait for the post – Google “libstagefright” and install ASAP)

Next Car Reviews

– 2015 Jaguar XJ & XJL
– 2015 Subaru Crosstrek
– 2015 Ford Focus ST

Plus the post: My Vegas Photos will Bore You

Three weeks left of summer, book stuff this week because we’ll blink and it’ll be September. Here’s to a strong start to your week!

xo Keri

 

 

Good to Meet You Black Hat, I’m Keri

We’ve maybe met before, this is my 4th Black Hat as media. Media.

Because to be clear: compared to you guys I’m a baby, a script kiddie at best. I’m okay at OSCINT and SE, it ends there.

I’m an auto journalist with Sun Media, a Canadian newspaper chain. I write the news, car reviews and a weekly column – Keri on Driving – 400 words about whatever I want. For a sample, read my 150th Anniversary column.

Been starting to specialize in auto security, which is why I’m here.

Blog tag = Auto Security (34), and I run the security section of the newspaper here.

About my blog’s security section

I doubt this section would much interest you, I write for the end user. It’s more for like, a housewife in Iowa.

Like my Blackberry security video:

Please don’t hack me! Really, it’d be like picking on the kid at recess wearing a helmet.

I’ll leave you something
only this crowd will appreciate

Despite everyone rolling their eyes when I tell them, it’s maybe the thing about my blog I’m most proud of, more than it making through bank filters

…. my blog and I have been flown around North America, gained access to some amazing places and tested almost $10 million in cars…. ready….

… all without an About Page! Nor a LinkedIn! And I kept my last name offline for 5 years.

Tada!

Find me fastest on Twitter @KeriBlog, if you see me say hi, and have a great conference!

Keri

Blog tag = Black Hat