How Best To Get Your Project On Hackaday

April 27, 2021 by 34 Comments

We’re blessed to have such a great community at Hackaday. Our tipline often overfloweth with all manner of projects and builds of all stripes. We see it all here, from beginners just starting out with their first Arduino to diehard hackers executing daringly complex builds in their downtime, and everything in between.

If you’re sitting there in the grandstands, watching in awe, you might wonder what it takes to grace these hallowed black pages. In life, nothing is guaranteed, but I’ve been specially authorised to share with you a few tips that can maximise your chances of seeing your project on Hackaday.

Continue reading “How Best To Get Your Project On Hackaday”

This Week In Security: Ubiquity Update, PHP Backdoor, And Netmask

April 2, 2021 by 11 Comments

Back in January, we covered the news that Ubiquiti had a breach of undisclosed severity. One reader pointed out the compromise of a handful of devices as potentially related. With no similar reports out there, I didn’t think too much of it at the time. Now, however, a whistleblower from Ubiquiti has given Krebs the juicy details.

The “third party cloud provider” the original disclosure referred to was Amazon Web Services (AWS). According to the whistleblower, just about everything was accessible, including the keys to log in to any Ubiquiti device on the internet, so long as it was cloud enabled. The attackers installed a couple of backdoors in Ubiquiti’s infrastructure, and sent a 50 bitcoin blackmail threat. To their credit, Ubiquiti ignored the blackmail and cleaned up the mess.

To the claim that there was no evidence attackers had accessed user accounts, it seems that the database in question simply has no logging enabled. There was no evidence, because nothing was watching. So far, I’ve only seen the one report of device compromise that was potentially a result of the attack. If you had a Ubiquiti device go rogue around December 2020 – January 2021, be sure to let us know. Continue reading “This Week In Security: Ubiquity Update, PHP Backdoor, And Netmask”

Google Calls It Quits With VR, But Cardboard Lives On

March 30, 2021 by 16 Comments

Google giving up on one of their projects and leaving its established userbase twisting in the wind hardly counts as news anymore. In fact, it’s become something of a meme. The search giant is notorious for tossing out ideas just to see what sticks, and while that’s occasionally earned them some huge successes, it’s also lead to plenty of heartache for anyone unlucky enough to still be using one of the stragglers when the axe falls.

So when the search giant acknowledged in early March that they would no longer be selling their Cardboard virtual reality viewer, it wasn’t exactly a shock. The exceptionally low-cost VR googles, literally made from folded cardboard, were a massive hit when they were unveiled back in 2014. But despite Google’s best efforts to introduce premium Cardboard-compatible hardware with their Daydream View headset two years later, it failed to evolve into a profitable business.

Google Cardboard

Of course if you knew where to look, the writing had been on the wall for some time. While the Daydream hardware got a second revision in 2017, and Google even introduced a certification program to ensure phones would work properly with the $100 USD headset, the device was discontinued in 2019. On the software side, Android 7 “Nougat” got baked-in VR support in 2016, but it was quietly removed by the time Android 11 was released in the fall of 2020.

With Cardboard no longer available for purchase, Google has simply made official what was already abundantly clear: they are no longer interested in phone-based virtual reality. Under normal circumstances, anyone still using the service would be forced to give it up. Just ask those who were still active on Google+ or Allo before the plug was pulled.

But this time, things are a little different. Between Google’s decision to spin it off into an open source project and the legions of third party viewers on the market, Cardboard isn’t going down without a fight. The path ahead might be different from what Google originally envisioned, but the story certainly isn’t over.

Continue reading “Google Calls It Quits With VR, But Cardboard Lives On”

Hackaday Links Column Banner

Hackaday Links: March 28, 2021

March 28, 2021 by 17 Comments

If you thought the global shortage of computer chips couldn’t get any worse, apparently you weren’t counting on 2021 looking back at 2020 and saying, “Hold my beer.” As if an impacted world waterway and fab fires weren’t enough to squeeze supply chains, now we learn that water restrictions could potentially impact chip production in Taiwan. The subtropical island usually counts on three or four typhoons a year to replenish its reservoirs, but 2020 saw no major typhoons in the region. This has plunged Taiwan into its worst drought since the mid-1960s, with water-use restrictions being enacted. These include a 15% reduction of supply to industrial users as well as shutting off the water entirely to non-industrial users for up to two days a week. So far, the restrictions haven’t directly impacted chip and display manufacturers, mostly because their fabs are located outside the drought zone. But for an industry where a single fab can use millions of gallons of water a day, it’s clearly time to start considering what happens if the drought worsens.

Speaking of the confluence of climate and technology, everyone problem remembers the disastrous Texas cold snap from last month, especially those who had to endure the wrath of the unusually brutal conditions in person. One such victim of the storm is Grady, everyone’s favorite YouTube civil engineer, who recently released a very good post-mortem on the engineering causes for the massive blackouts experienced after the cold snap. In the immediate aftermath of the event, we found it difficult to get anything approaching in-depth coverage on its engineering aspects — our coverage excepted, naturally — as so much of what we found was laden with political baggage. Grady does a commendable job of sticking to the facts as he goes over the engineering roots of the disaster and unpacks all the complexity of the infrastructure failures we witnessed. We really enjoyed his insights, and we wish him and all our friends in Texas the best of luck as they recover.

If you’re into the demoscene, chances are pretty good that you already know about the upcoming Revision 2021, the year’s big demoscene party. Like last year’s Revision, this will be a virtual gathering, but it seems like we’re all getting pretty used to that by now. The event is next weekend, so if you’ve got a cool demo, head over and register. Virtual or not, the bar was set pretty high last year, so there should be some interesting demos that come out of this year’s party.

Many of us suffer from the “good enough, move on” mode of project management, leaving our benches littered with breadboarded circuits that got far enough along to bore the hell out of us make a minimally useful contribution to the overall build. That’s why we love it when we get the chance to follow up on a build that has broken from that mode and progressed past the point where it originally caught our attention. A great example is Frank Olsen’s all-wood ribbon microphone. Of course, with magnets and an aluminum foil ribbon element needed, it wasn’t 100% wood, but it still was an interesting build when we first spied it, if a bit incomplete looking. Frank has fixed that in grand style by continuing the wood-construction theme that completes this all-wood replica of the iconic RCA Model 44 microphone. It looks fabulous and sounds fantastic; we can’t help but wonder how many times Frank glued his fingers together with all that CA adhesive, though.

Continue reading “Hackaday Links: March 28, 2021”

Code Talkers: Programming With Voice

March 28, 2021 by 18 Comments

IEEE Spectrum had an interesting post covering several companies trying to sell voice programming interfaces. Not programming APIs for speech recognition, but the replacement of the traditional text editor to produce programs.

The companies, Serenade and Talon, have very different styles. Serenade has fairly normal-sounding language, whereas Talon has you use very specific phrases and can even use eye tracking to figure out what you are looking at when you issue a command. There’s also mention of two open-source products (Aenae and Caster) that require you to use a third-party speech engine.

For an example of Talon’s input, imagine you want this line of code in your program:

name=extract_word(m)

You’d say this out loud: “Phrase name op equals snake extract word paren mad.” Not exactly how Star Trek envisioned voice programming.

For accessibility, this might be workable. It is hard for us to imagine a room full of developers all talking to make their computers enter C or Python code. Until we can say, “Computer, build a graphic using the data in file hackaday-27,” we think this is not going to go mainstream.

The actual speech recognition part is pretty much a commodity now. Making a reasonable set of guesses about what people will say and what they mean by it is something else. It seems like this works best when you have a very specific and limited vocabulary, like operating a 3D printer.

The $50 Ham: WSPR-ing Around The World

March 25, 2021 by 18 Comments

Everybody has a bucket list,  things to be accomplished before the day we eventually wake up on the wrong side of the grass. Many bucket-list items are far more aspirational than realistic; very few of us with “A trip to space” on our lists are going to live to see that fulfilled. And even the more realistic goals, like the trip to Antarctica that’s been on my list for ages, become less and less likely as your life circumstances change — my wife hates the cold.

Luckily, instead of going to Antarctica by myself — and really, what fun would that be? — I’ve recently been getting some of the satisfaction of world travel through amateur radio. The last installment of “The $50 Ham” highlighted weak-signal digital modes using WSJT-X; in that article, I mentioned a little about the Weak Signal Propagation Reporter, or WSPR. It’s that mode that let me test what’s possible with very low-power transmissions, and allowed me to virtually visit six continents including Antarctica and Sweden-by-way-of-Alaska.

Continue reading “The $50 Ham: WSPR-ing Around The World”

Hey Google, Is My Heart Still Beating?

March 23, 2021 by 18 Comments

University of Washington researchers studying the potential medical use of smart speakers such as Amazon’s Echo and Google’s Nest have recently released a paper detailing their experiments with non-contact acoustic heartbeat detection. Thanks to their sensitive microphone arrays, normally used to help localize voice commands from the user, the team proposes these affordable and increasingly popular smart home gadgets could lead a double life as unobtrusive life sign monitors. The paper goes so far as to say that even with multiple people in the room, their technique can be used to monitor the heart and respiratory rate of a specific target individual.

Those are some bold claims, but they aren’t without precedent. Previous studies performed at UW in 2019 demonstrated how smart speaker technology could be used to detect cardiac arrest and monitor infant breathing. This latest paper could be seen as the culmination of those earlier experiments: a single piece of software that could not just monitor the vitals of nearby patients, but actually detect a medical emergency. The lifesaving potential of such a program, especially for the very young and elderly, would be incredible.

So when will you be able to install a heart monitor skill on the cheap Echo Dot you picked up on Prime Day? Well, as is often the case with this kind of research, putting the technique to work in the real-world isn’t nearly as easy as in the laboratory. While the concept is promising and is more than worthy of further research, it may be some time before our lowly smart speakers are capable of Star Trek style life-sign detection.

Continue reading “Hey Google, Is My Heart Still Beating?”