Year: 2019

This Week In Security: Zeroconf Strikes Again, Lastpass Leaks Your Last Password, And All Your Data Is Belong To Us

September 20, 2019 by 18 Comments

VoIP cameras, DVRs, and other devices running the Web Services Dynamic Discovery (WSDD) protocol are being used in a new type of DDoS attack. This isn’t the first time a zeroconf service has been hijacked as part of a DDoS, as UPnP has also been abused in similar ways.

Feel like alphabet soup yet? A Denial of Service attack is one where the target is simply made unavailable, rather than actually compromised. The classic example of this is the SYN flood, where an attacker would open hundreds of connections to a web server at once, exhausting the server’s resources and interrupting legitimate use of that server. As mitigations for these attacks were developed (SYN Cookies, for example), DoS attacks were replaced by Distributed Denial of Service (DDOS) attacks. Rather than attack a weakness on the target machine, like available RAM or CPU cycles, a DDoS generally targets available network bandwidth by hitting the target website from many, many locations at once. No clever software tricks can help when your Internet connection is fully saturated with junk traffic. Continue reading “This Week In Security: Zeroconf Strikes Again, Lastpass Leaks Your Last Password, And All Your Data Is Belong To Us”

3D Printed VirtuScope Is A Raspberry Pi 4 Cyberdeck With A Purpose

September 20, 2019 by 23 Comments

William Gibson might have come up with the idea for the cyberdeck in 1984, but it’s only recently that technology like desktop 3D printing and powerful single board computers have enabled hackers and makers to assemble their own functional versions of these classic cyberpunk devices. Often the final product is little more than a cosplay prop, but when [Joe D] (better known on the tubes as [bootdsc]) started designing his VirtuScope, he wanted to create something that was actually practical enough to use. So far, it looks like he’s managed to pull it off.

Many of the cyberdeck builds we see are based around the carcass of a era-appropriate vintage computer, which looks great and really helps sell the whole retro-future vibe. Unfortunately, this can make the projects difficult and expensive to replicate. Plus there’s plenty of people who take offense to gutting a 30+ year old piece of hardware just so you can wear it around your neck at DEF CON.

[bootdsc] deftly avoided this common pitfall by 3D printing the entire enclosure for the VirtuScope, and since he’s shared all of the STLs, he’s even made it so anyone can run off their own copy. The majority of the parts can be done on any FDM printer with a 20 x 20 x 10cm build area, though there are a few detail pieces that need the resolution of an SLA machine.

Under the hood the VirtuScope is using the Raspberry Pi 4, which [bootdsc] says is key to the build’s usability as the latest version of the diminutive Linux SBC finally has enough computational muscle to make it a viable for daily computing. Granted the seven inch LCD might be a tad small for marathon hacking sessions, but you could always plug in an external display when you don’t need to be mobile. For your wireless hacking needs, the VirtuScope features an internal NooElec SDR (with HF upconverter) and a AWUS036AC long-range WiFi adapter; though there’s plenty of room to outfit it with whatever kind of payload you’d find useful while on the go.

Documentation for this project is still in the early stages, but [bootdsc] has already provided more than enough to get you started. He tells us that there are at least two more posts coming that will not only flesh out how he built the VirtuScope, but explain why it’s now become his portable SDR rig of choice. We’re excited to see more details about this build, and hope somebody out there is willing to take on the challenge of building their own variant.

In the past we’ve seen partially 3D printed cyberdecks, and at least one that also went the fully-printed route, but none of them have been quite as accessible as the VirtuScope. By keeping the geometry of the printed parts simple and utilizing commonly available components, [bootdsc] may well have laid the groundwork for hackerdom’s first “mass produced” cyberdeck.

Continue reading “3D Printed VirtuScope Is A Raspberry Pi 4 Cyberdeck With A Purpose”

British Cops Catch Shooter-Printing Villain

September 20, 2019 by 84 Comments

It’s a perennial of breathless British tabloid scare reporting that 3D printers will unleash a tide of weapons upon the streets. But perhaps it might actually be time for Brits lock up their children, because London’s Metropolitan Police have announced their first prosecution for 3D printing a handgun. The gun pictured appears to be a Repringer 5-shot .22 revolver, and was found by police during a drugs raid.

The UK has significantly restrictive firearms legislation and shooting incidents are extremely rare in the country, so while this might not raise any eyebrows on the other side of the Atlantic it’s an extremely unusual event for British police. It appears that the builder was not the type of libre firearms enthusiast who has made the news with similar work in the USA, so it has to be assumed that it was printed purely as a means to secure an illegal firearm however rough-and-ready or indeed dangerous it might be.

Stepping aside from the firearm aspect of the story, it should be of concern for any British 3D printer enthusiasts. As we’ve reported over the years with respect to drone incidents they can sometimes throw reason to the wind when faced with unfamiliar technology, indeed we’ve already seen them imagining RepRap parts to be for a firearm. We’d counsel all parties to keep sane heads, and hope that both the sentence for today’s criminal proves to be a suitable deterrent, and that no clueless fool decides to download and print another weapon for the hell of it. As always, we’ll bring you developments as they happen.

Moon Elevator Could Be Sooner Than You Think

September 19, 2019 by 56 Comments

The big expense in getting people to orbit or the moon or any other space destination is the cost of escaping the Earth’s gravity. One often-proposed solution involves building a giant space elevator from some point on the Earth to orbit. That sounds great, but the reality is the materials needed to make a giant stalk reaching from the ground to orbit don’t exist today. Cables or other structures for such an elevator would have to be so impossibly thick as to break under their own weight. However, a recent paper from a researcher at Cambridge and another at Columbia suggest that while you can’t build an elevator from the Earth’s surface to orbit, we may have the technology to build a tunnel that anchors on the moon and lets out in Earth’s orbit.

Before you dismiss the idea out of hand, have a look at the paper. A classic space elevator proposal has one point on Earth and the far end balanced with a counterweight keeping the cables under tension. The proposed lunar elevator would minimize these problems by having most of the bulk in space and on the moon.

Continue reading “Moon Elevator Could Be Sooner Than You Think”

Tiny Vacuum Cleaner Sucks (In A Good Way)

September 19, 2019 by 14 Comments

Sometimes something is remarkable not for its content, but for its size. A ball of yarn isn’t exciting for example, unless it’s a giant ball of yarn. At the other end of the scale writing your name is a quotidian event, but put it on a grain of rice and that’s ten bucks at the mall. [Toby Bateson] has been making vacuum cleaners since he was 8 years old — and he looks considerably older than that now. In of itself that’s not a big deal, but his machines are tiny. In fact, he has the Guinness Book of World Records entry for the smallest vacuum cleaner. His latest exploit? A vacuum in an Altoid’s tin!

Electronically, this is just a switch, a battery, and a motor. But if you are looking for a Dremel tool project, you are in luck. Check out the video of the diminutive device, below. Besides the Altoids tin, there is a metal pipe and some bits of a cut-up soda can.

Continue reading “Tiny Vacuum Cleaner Sucks (In A Good Way)”

Analog Gauges Keep An Eye On Computer Performance

September 19, 2019 by 15 Comments

Keeping an eye on your computer’s resource utilization can be useful, particularly if you’re regularly doing computationally intensive tasks. While it’s entirely possible to achieve this with software tools, creating a dedicated hardware monitor can be cool too. [Sasa Karanovic] did just that, with a set of old-school analog gauges.

The build uses an STM32 microcontroller to drive a series of four galvanometers through an MCP4728 digital-to-analog converter. Data on CPU, memory, network and GPU utilization is collected by a Python script, and sent over a USB serial connection. This data drives the four-channel DAC, which in turn creates the voltages which control the needle position on the gauges. Aesthetically, the build features a few nice touches, including custom gauge faces and a 3D printed enclosure with a tasteful matte finish. A custom PCB keeps the electronics and wiring neat and tidy.

[Sasa] does a great job of explaining the basic theory of the device, as well as practical considerations for working with galvanometer-based gauges. It would make a great weekend project for anyone seeking to add some vintage charm to their desktop rig. There’s also scope to monitor other variables, like hard drive usage or CPU temperature. There’s bonus points if you integrate this into a laptop; the tip line would love to know. We’ve seen LED-based monitoring systems before, too. Video after the break.

Continue reading “Analog Gauges Keep An Eye On Computer Performance”

Riding The Nostalgia Train With A 6502 From The Ground Up

September 19, 2019 by 44 Comments

In the very early days of the PC revolution the only way to have a computer was to build one, sometimes from a kit but often from scratch. For the young, impoverished hobbyist, leafing through the pages of Popular Electronics was difficult, knowing that the revolution was passing you by. And just like that, the days of homebrewing drew to a close, forced into irrelevance by commodity beige boxes. Computing for normies had arrived.

Many of the homebrewers-that-never-were are now looking back at this time with the powerful combination of nostalgia and disposable income, and projects such as [Ben Eater]’s scratch-built 6502 computer are set to scratch the old itch. The video below introduces not only the how-to part of building a computer from scratch, but the whys and wherefores as well. Instead of just showing us how to wire up a microprocessor and its supporting chips, [Ben] starts with the two most basic things: a 6502 and its datasheet. He shows what pins do what, which ones to make high, and which ones get forced low. Clocked with a custom 555 circuit that lets him single-step and monitored with an Arduino Mega-based logic analyzer, we get a complete look at the fetch and execute cycle of a simple, hard-wired program at the pin level.

This is one of those rare videos that was over too soon and left us looking for more. [Ben] promises a follow-up to add a ROM chip and a more complex program, and we can’t wait to see that. He’s selling kits so you can build along if you don’t already have the parts. There seems to be a lot of interest in 6502 builds lately, some more practical than others. Seems like a good time to hop on the bandwagon.

Continue reading “Riding The Nostalgia Train With A 6502 From The Ground Up”