Shadowhammer, WPA3, And Alexa Is Listening: This Week In Computer Security

April 19, 2019 by 21 Comments

Let’s get caught up on computer security news! The big news is Shadowhammer — The Asus Live Update Utility prompted users to download an update that lacked any description or changelog. People thought it was odd, but the update was properly signed by Asus, and antivirus scans reported it as safe.

Nearly a year later, Kaspersky Labs announced they had confirmed this strange update was indeed a supply chain attack — one that attacks a target by way of another vendor. Another recent example is the backdoor added to CCleaner, when an unknown actor compromised the build system for CCleaner and used that backdoor to target other companies who were using CCleaner. Interestingly, the backdoor in CCleaner has some similarities to the backdoor in the Asus updater. Combined with the knowledge that Asus was one of the companies targeted by this earlier breach, the researchers at Kaspersky Lab suggest that the CCleaner attack might have been the avenue by which Asus was compromised.

Shadowhammer sits quietly on the vast majority of machines it infects. It’s specifically targeted at a pool of about 600 machines, identified by their network card’s MAC address. We’ve not seen any reporting yet on who was on the target list, but Kaspersky is hosting a service to check whether your MAC is on the list.

While we’re still waiting for the full technical paper, researchers gave a nearly 30 minute presentation about Shadowhammer, embedded below the break along with news about Dragonblood, Amazon listening to your conversations, and the NSA delivering on Ghidra source code. See you after the jump!
Continue reading “Shadowhammer, WPA3, And Alexa Is Listening: This Week In Computer Security”

All You Need To Know About I2S

April 18, 2019 by 24 Comments

Last month we marked the 40th birthday of the CD, and it was as much an obituary as a celebration because those polycarbonate discs are fast becoming a rarity. There is one piece of technology from the CD age that is very much still with us though, and it lives on in the standard for sending serial digital audio between chips. The protocol is called I2S and comes as a hardware peripheral on many microcontrollers. It’s a surprisingly simple interface that’s quite easy to work with and thus quite hackable, so it’s worth a bit of further investigation.

It’s A Simple Enough Interface

Don’t confuse this with the other Philips Semiconductor protocol: I2C. Inter-Integrated Circuit protocol has the initials IIC, and the double letter was shortened to come up with the “eye-squared-see” nomenclature we’ve come to love from I2C. Brought to life in 1982, this predated I2S by four years which explains the somewhat strange abbreviation for “Inter-Integrated Circuit Sound”.

The protocol has stuck around because it’s very handy for dealing with the firehose of serial data associated with high-quality digital audio. It’s so handy that you’ve likely heard of it being used for other purposes than audio, which I’ll get to in a little bit. But first, what does I2S actually do?

Continue reading “All You Need To Know About I2S”

Undertale Pinball Machine Is A Work Of Art

April 15, 2019 by 5 Comments

Undertale came out in 2015 and took the world by storm. With a heartwrenching story, compelling characters and a soulful soundtrack, it won legions of fans and became an indie gaming legend. Years later,  [Gornkleschnitzer] decided to begin a pinball machine build, and it became a tribute of epic proportions.

No expense was spared on getting the artwork professionally printed, and the results speak for themselves.

Yes, we’re talking about a living, clacking, and breathing Undertale pinball build. [Gornkleschnitzer] demonstrates not only a deep knowledge of the source content, but also a mastery of pinball construction. The build began with a design in Virtual Pinball, which allowed the basic design to be dialled in. This allows things like trick shots and other features to be tested before cutting real parts. With the design roughed out, the real work starts. Full sets of cabinet and playfield decals were professionally printed, flashers installed, and subway tunnels lasercut in steel. All manner of flippers, slingshots and ball troughs were installed, tested, and tweaked in the pursuit of perfection.

The attention to detail is where this machine really shines. The artwork is stunning, and the game is complete with the original soundtrack, including the death theme. There’s even hidden gems like the Tem Shop and bonuses galore to be had.

It’s a stunning pinball machine, and one we’re dying to play for ourselves. If you’re keen to get your feet wet, why not consider starting with a cardboard build? Video after the break. Continue reading “Undertale Pinball Machine Is A Work Of Art”

Only 90s Kids Want Heelys Made From Pallet Wood

April 14, 2019 by 7 Comments

The kids are simply cooler than you. While you’re walking around using your feet like an animal, kids have shoes with wheels in their heels. These are called Heelys, and here’s how you make wooden clogs, with wheels in the heels, out of pallet wood. If you have to ask why, you’ll never know.

This build started off with a fairly large maple log, which would be the traditional way to build clogs. After taking this log to the bandsaw and looking inside, [Jackman] found a bit of spalting, or arguably aesthetically pleasing fungal growth. Whether the spalting would look good or not is a matter for debate, but either way [Jackman] decided to change plans and moved over to creating pallet wood clogs. A word of warning about pallet wood: you shouldn’t make anything out of wood from discarded pallets unless you know what you’re doing, and even if you do know what you’re doing there will be someone in the comments telling you that you shouldn’t use wood from discarded pallets. You can check out the comments to this article to verify this fact.

The construction of the clogs started with a few pieces of one inch stock glued up into a gigantic block, then several pieces of half inch stock resawn into quarter inch stock and laminated onto the sole of the clog. This was then shaped using a variety of tools from Arbortech; of note, we have the Turbo Plane, a wood shaping tool for a grinder that sounds more dangerous than it is, the Turbo Shaft, a plunge router or mortiser-sort-of-thing for a grinder that’s much cooler than it sounds, and the Power Chisel, something we can’t even believe exists and hold on here’s all our money.

These tools couldn’t get all the way into the toe of the clog, which meant [Jackman] had to saw down the middle and hollow everything out that way, but this did give him a nice flat surface on the inside to install the Heely wheels. This turns the clogs into something nine-year-olds simultaneously desire and don’t appreciate, because they’re kids.

Continue reading “Only 90s Kids Want Heelys Made From Pallet Wood”

Televox: The Past’s Robot Of The Future

April 12, 2019 by 23 Comments

When I read old books, I like to look for predictions of the future. Since we are living in that future, it is fun to see how they did. Case in point: I have a copy of “The New Wonder Book of Knowledge”, an anthology from 1941. This was the kind of book you wanted before there was a Wikipedia to read in your spare time. There are articles about how coal is mined, how phonographs work, and the inner workings of a beehive. Not the kind of book you’d grab to look up something specific, but a great book to read if you just want to learn something interesting. In it there are a few articles about technology that seemed ready to take us to the future. One of those is the Televox — a robot from Westinghouse poised to usher in an age of home and industrial mechanical servants. Robots in 1941? Actually, Televox came into being in 1927.

If you were writing about the future in 2001, you might have pictured city sidewalks congested with commuters riding Segways. After all, in 2001, we were told that something was about to hit the market that would “change everything.” It had a known inventor, Dean Kamen, and a significant venture capitalist behind it. While it has found a few niche markets, it isn’t the billion dollar personal transportation juggernaut that was predicted.

But technology is like that. Sometimes things seem poised for greatness and disappear — bubble memory comes to mind. Sometimes things have a few years of success and get replaced by something better. Fax machines or floppy drives, for example. The Televox was a glimpse of what was to come, but not in any way that people imagined in 1941. Continue reading “Televox: The Past’s Robot Of The Future”

Cambridge Mini Uncon: Robots, Light Boxes, PCB Watches, And Retro Computers

April 5, 2019 by 9 Comments

At Hackaday, we are nothing without our community. We meet up at conferences, shows, and camps, but one of our favourite way to congregate is with the Unconference format. It’s an event where you can stand up and give an eight-minute talk about what is important to you, and what you are working on.

Thank you to the Cambridge Makespace for hosting our most recent a Mini Unconference. Let’s take a look at the excellent talks and demos that highlighted the day!

Continue reading “Cambridge Mini Uncon: Robots, Light Boxes, PCB Watches, And Retro Computers”

Teardown Of A 50 Year Old Modem

March 29, 2019 by 82 Comments

A few years ago, I was out at the W6TRW swap meet at the parking lot of Northrop Grumman in Redondo Beach, California. Tucked away between TVs shaped like polar bears and an infinite variety of cell phone chargers and wall warts was a small wooden box. There was a latch, a wooden handle, and on the side a DB-25 port. There was a switch for half duplex and full duplex. I knew what this was. This was a modem. A wooden modem. Specifically, a Livermore Data Systems acoustically coupled modem from 1965 or thereabouts.

The Livermore Data Systems Modem, where I found it. It cost me $20

The probability of knowing what an acoustically coupled modem looks like is inversely proportional to knowing what Fortnite is, so for anyone reading this who has no idea what I’m talking about, I’ll spell it out. Before there was WiFi and Ethernet and cable modems and fiber everywhere, you connected to the Internet and BBSes via phone lines. A modem turns digital data, in this case a serial connection, into analog data or sound. Oh yeah, we had phone lines, too. The phone lines and the phones in your house were owned by AT&T. Yes, you rented a phone from the phone company.

90s kids might remember plugging in a US Robotics modem into your computer, then plugging an RJ-11 jack into the modem. When this wooden modem was built, that would have been illegal. Starting with the communications act of 1934, it was illegal to attach anything to the phone in your house. This changed in 1956 with Hush-A-Phone Corp v. United States, which ruled you could mechanically attach something to a phone’s headset. (In Hush-A-Phone’s case, it was a small box that fit over a candlestick phone to give you more privacy.)

The right to attach something to AT&T’s equipment changed again in 1968 with Carterphone decision that allowed anyone to connect something electronically to AT&T’s network. This opened the door for plugging an RJ-11 phone jack directly into your computer, but it wasn’t until 1978 that the tariffs, specifications, and certifications were worked out. The acoustically coupled modem was the solution to sending data through the phone lines from 1956 until 1978. It was a hack of the legal system.

This leaves an ancient modem like the one sitting on my desk in an odd position in history. It was designed, marketed and sold before the Carterphone decision, and thus could not connect directly to AT&T’s network. It was engineered before many of the integrated chips we take for granted were rendered in silicon. The first version of this modem was introduced only a year or so after the Bell 103 modem, the first commercially available modem, and is an excellent example of what can be done with thirteen or so transistors. It’s time for the teardown, so let’s dig in.

Continue reading “Teardown Of A 50 Year Old Modem”