This excellent content from the Hackaday writing crew highlights recurring topics and popular series like Linux-Fu, 3D-Printering, Hackaday Links, This Week in Security, Inputs of Interest, Profiles in Science, Retrotechtacular, Ask Hackaday, Teardowns, Reviews, and many more.
I was rebuilding one of my 3D printers — again — and decided I needed a display upgrade. A color screen is nice, but there are some limitations. I also found there are ways around these limitations, so I wanted to share my thoughts on a dual-mode color touch screen LCD controller for your 3D printer. The screen in question is a TFT35 from BigTree Tech. It is similar to an MKS screen, but it can operate in two different modes, as you will see.
A few years ago, I picked up an Anet A8 which was very inexpensive, especially on sale. Not the best printer, though, because it has that cheap acrylic frame. No problem. A box full of aluminum extrusion later, the printer was reborn. Over time, I’ve completely reworked the extrusion system and the Y-axis, leaving only the motors, bearings, and the controller/display as the original.
That last part was what bothered me. The Anet board is actually pretty capable for a small cheap board. But it is just what the printer needs and nothing more. If you wanted to hack the printer there was very little memory left and only one spare pin for I/O. So it was time to replace the board and why not the controller, too?
That sound you may have heard in the wee hours of Christmas morning had nothing to do with Santa; rather, it was the sound of a million astronomers collectively letting out their breath around the world as the James Webb Space Telescope survived its fiery ride to space. And not only did it survive, but the ESA launch team did such a good job putting the Ariane rocket on course that NASA predicts the observatory now has enough fuel to more than double its planned ten-year mission. Everything about the deployment process seems to be going well, too, with all the operations — including the critical unfurling of the massive and delicate sunshield — coming off without a hitch. Next up: tensioning of the multiple layers of the sunshield. If you want to play along at home, NASA has a nice site set up to track where JWST is and what its current status is, including temperatures at various points on the telescope.
We got a tip from Mark about some dodgy jumper wires that we thought we should share. Low-quality jumpers aren’t really a new problem, but they can really put a damper on the fun of prototyping. The ones that Mark found could be downright dangerous. He got them with a recent dev board purchase; outwardly, they appear fine, at least at first. Upon closer inspection, though, the conductors have turned to powder inside the insulation. Even the insulation is awful, since it discolors when even slightly flexed. He suspects conductors are actually copper-plated aluminum; check out his pictures below and maybe look through your collection for similarly afflicted jumpers.
Speaking of dodgy hardware, if you love the smell of melting MOSFETs in the morning, then have we got a deal for you. It seems that a non-zero number of Asus Z690 Hero PC motherboards have suffered a fiery demise lately, stirring complaints and discontent. This led some curious types to look for the root cause, which led to the theory that an electrolytic cap had been installed with the wrong polarity on the dead boards. Asus confirmed the diagnosis, and is doing the right thing as they are “working with the relevant government agencies on a replacement program.” So if you’ve got one of these motherboards, you might want to watch the video below and see how the caps were installed.
If you’re in the mood for some engineering eye-candy, check out the latest video from Asianometry. They’ve got a finger on the pulse of the semiconductor industry, with particular attention paid to the engineering involved in making the chips we all have come to depend on. The video below goes into detail on the extreme ultraviolet (EUV) light source that fabrication machine maker ASML is developing for the next generation of chip making. The goal is to produce light with a mind-bending wavelength of only 13.5 nanometers. We won’t spoil the details, but suffice it to say that hitting microscopic droplets of tin with not one but two lasers is a bit of a challenge.
And finally, bad luck for 38 people in Tokyo who were part of a data breach by the city’s Metropolitan Police Department. Or rather, good luck since the data breach was caused by the loss of two floppy disks containing their information. The police say that there haven’t been any reports of misuse of the data yet, which is really not surprising since PCs with floppy drives are a little thin on the ground these days. You’d think that this would mean the floppies were left over from the 90s or early 2000s, but no — the police say they received the disks in December of 2019 and February of 2021. We’d love to know why they’re still using floppies for something like this, although it probably boils down to yet another case of “if it ain’t broke, don’t fix it.”
In the past two weeks, Log4j has continued to drive security news, with more vulnerable platforms being found, and additional CVEs coming out. First up is work done by TrendMicro, looking at electric vehicles and chargers. They found a log4j attack in one of the published charger frameworks, and also managed to observe evidence of vulnerability in the Tesla In-Vehicle Infotainment system. It isn’t a stretch to imagine a piece of malware that could run on both a charger, and an EV. And since those systems talk to each other, they could spread the virus through cars moving from charger to charger.
Log4j is now up to 2.17.1, as there is yet another RCE to fix, CVE-2021-44832. This one is only scored a 6.6 on the CVSS scale, as opposed to the original, which weighed in at a 10. 44832 requires the attacker to first exert control over the Log4j configuration, making exploitation much more difficult. This string of follow-on vulnerabilities demonstrates a well-known pattern, where a high profile vulnerability attracts the attention of researchers, who find other problems in the same code.
There are now reports of Log4j being used in Conti ransomware campaigns. Additionally, a Marai-based worm has been observed. This self-propagating attack seems to be targeting Tomcat servers, among others.
You know how when you’re working on a project, other side quests pop up left and right? You can choose to handle them briefly and summarily, or you can dive into them as projects in their own right. Well, Uri Shaked is the author of Wokwi, an online Arduino simulator that allows you to test our your code on emulated hardware. (It’s very, very cool.) Back in the day, Arduino meant AVR, and he put in some awesome effort on reverse engineering that chip in order to emulate it successfully. But then “Arduino” means so much more than just AVR these days, so Uri had to tackle the STM32 ARM chips and even the recent RP2040.
Arduino runs on the ESP32, too, so Uri put on his reverse engineering hat (literally) and took aim at that chip as well. But the ESP32 is a ton more complicated than any of these other microcontrollers, being based not only on the slightly niche Xtensa chip, but also having onboard WiFi and its associated binary firmware. Reverse engineering the ESP32’s WiFi is the side-quest that Uri embarks on, totally crushes, and documents for us in this standout Remoticon 2021 talk. Continue reading “Remoticon 2021: Uri Shaked Reverses The ESP32 WiFi”→
Bluster around the advent of self-driving cars has become a constant in the automotive world in recent years. Much is promised by all comers, but real-world results – and customer-ready technologies – remain scarce on the street.
Today, we’ll dive in and take a look at the current state of play. What makes a self-driving car, how close are the main players, and what can we expect to come around the corner?
At the time of this writing, the James Webb Space Telescope was perched upon its ride to space, ready for its much-delayed launch from the ESA spaceport in French Guiana. The $10 billion space observatory suffered one final delay (knocks on wood) when predictions of high winds aloft pushed it back from a Christmas Eve launch to a Christmas Day departure, at 12:20 UTC. Given the exigencies of the day, we doubt we’ll be able to watch the launch live — then again, past experience indicates we’ll still be wrapping presents at 4:20 PST. Either way, here’s hoping that everything comes off without a hitch, and that astronomers get the present they’ve been waiting many, many Christmases for.
In other space news, things are getting really interesting on Mars. The ESA announced that their ExoMars Trace Gas Orbiter has detected signs of water in the Valles Marineris. The satellite found a large area of increased hydrogen concentration in the top meter of Martian soil; the assumption is that the hydrogen comes from water, meaning that as much as 40% of the material in the region scanned may be water. If so, that’s a huge find, as we thought most of Mars’ water was locked in the polar regions. The Mariner Valley stretches more than 4,000 km just below the equator, and so may prove to be an important resource for future explorers.
Meanwhile, in Jezero crater, Perseverance has decided to upstage its rotorcraft sidekick for a change by finding signs of organic molecules on Mars. It’s not the first time organic compounds have been found — Perseverance’s cousin Curiosity found some too, ESA’s Mars Express mission spotted methane from on high, and then there were the equivocal but intriguing results from the Viking missions in the 1970s. But the latest evidence is really great news for the scientists who picked Jezero crater as a likely place to search for signs of past life on Mars. The organics found are not proof of life by any means, as there are many ways to make organic molecules abiotically. But then again, if you’re going to find evidence of life on Mars, you’ve got to start with detecting organics.
Back on Earth, getting your laptop stolen would be bad enough. But what if it got yoinked while it was unlocked? Depending on who you are and what you do with that machine, it could be a death sentence. That’s where BusKill could come in handy. It’s a hardware-software approach to securing a laptop when it — or you — suddenly goes missing. A dongle with a breakaway magnetic lanyard gets plugged into a USB port, and the other end of the lanyard gets attached to your person. If you get separated from your machine, the dongle sends customizable commands to either lock the screen or, for the sufficiently paranoid, nuke the hard drive. The designs are all up on GitHub, so check it out and think about what else this could be useful for.
If you like the look of low-poly models but hate the work involved in making them, our friend and Hack Chat alumnus Andrew Sink came up with a solution: an online 3D low-poly generator. The tool is pretty neat; it uses three.js and runs completely in-browser. All you have to do is upload an STL file and set sliders to get rid of as many triangles as you want. Great stuff, and fun to play with even if you don’t need to decimate your polygons.
And finally, what have you done with your oscilloscope for the last three years? Most of us can’t answer that except in the vaguest of terms, but then there’s DrTune, who took three years’ worth of screencaps from this Rigol DS1054z and strung them together into a 60-second movie. He swears he didn’t purposely sync the video to the soundtrack, which is “Flight of the Bumblebee” by Rimsky-Korsakov, but in some places it’s just perfect. See if you can guess what DrTune has been working on by watching the waveforms fly by. And watch for Easter eggs.
It’s a holiday weekend, and the Podcast is taking a break until 2022. But that can’t stop Hackaday’s Elliot Williams from giving out a t-shirt to the winner of last week’s What’s That Sound.
