Firewalls Don't Stop Dragons Podcast

Hacking Your Honda

Listen Later

The “rolling code” technology used to remotely open and lock your car is supposed to prevent hacking. Unfortunately, Honda has a pretty serious vulnerability in their cars that apparently allows anyone with a little talent and cheap hacking tools to get into your car – and maybe even start it (though not actually drive it away). If correct, this vulnerability affects probably all Hondas made over the last 10 years. So far, Honda has denied that this is a problem, but many researchers have reproduced the hack.

In other news: cheap, Chinese-made GPS vehicle trackers are vulnerable to remote hacking; Chrome, Edge and Safari browsers fix serious 0-day bugs; Twitter data breach info on 5.4M users is up for sale on the dark web; Windows getting a crucial security update to make important security feature on by default; the Conti ransomware gang is attacking the entire country of Costa Rica; Facebook quickly bypasses Firefox’s URL tracking removal feature; Tor Browser adds a useful feature that will help people in repressive countries; Google appears ready to stop blocking political spam emails; Amazon admits to giving Ring video to law enforcement without consent or a warrant; a complicated, targeted web browser trick can be used to identify website visitors.

Article Links
  1. [U.S. News & World Report] Researchers: Chinese-Made GPS Tracker Highly Vulnerable https://www.usnews.com/news/business/articles/2022-07-19/researchers-chinese-made-gps-tracker-highly-vulnerable
  2. [Ars Technica] 0-day used to infect Chrome users could pose threat to Edge and Safari users, too https://arstechnica.com/information-technology/2022/07/exploit-seller-used-chrome-exploit-and-2-other-0-days-to-infect-journalists/
  3. [9to5mac.com] Twitter data breach exposes contact details for 5.4M accounts; on sale for $30k https://9to5mac.com/2022/07/22/twitter-data-breach/
  4. [ZDNet] Windows 11 is getting a new security setting to block ransomware attacks https://www.zdnet.com/article/windows-11-is-getting-a-new-security-setting-to-block-ransomware-attacks/
  5. [ThreatPost] Conti’s Reign of Chaos: Costa Rica in the Crosshairs https://threatpost.com/contis-costa-rica/180258/
  6. [Schneier Blog] Facebook Is Now Encrypting Links to Prevent URL Stripping https://www.schneier.com/blog/archives/2022/07/facebook-is-now-encrypting-links-to-prevent-url-stripping.html
  7. [None] Tor Browser Adds Automatic Censorship Circumvention https://www.infosecurity-magazine.com/news/tor-browser-automatic-censorship/
  8. [Inc. Magazine] Google Revealed Plans for a Big Change to Gmail That Almost Nobody Wants. You Have 19 Days to Object https://www.inc.com/bill-murphy-jr/google-revealed-plans-for-a-big-change-to-gmail-that-almost-nobody-wants-you-have-19-days-to-object.html
  9. [The Intercept] Amazon Admits Giving Ring Camera Footage to Police Without a Warrant or Consent https://theintercept.com/2022/07/13/amazon-ring-camera-footage-police-ed-markey/
  10. [The Drive] I Tried the Honda Keyfob Hack on My Own Car. It Totally Worked https://www.thedrive.com/news/i-tried-the-honda-keyfob-hack-on-my-own-car-it-totally-worked
  11. [WIRED] A New Attack Can Unmask Anonymous Users on Any Major Browser https://www.wired.com/story/web-deanonymization-side-channel-attack-njit/
  12. Tip of the Week: More Uses for Password Vaults: https://firewallsdontstopdragons.com/more-uses-for-password-vaults/
    13. Further Info
    • Amulet of Entropy!!: https://amuletofentropy.com/ 
    • Peppering your passwords: https://firewallsdontstopdragons.com/password-manager-paranoia/
    • Subscribe to the newsletter: https://firewallsdontstopdragons.com/newsletter/new-newsletter/
    • Check out my book, Firewalls Don’t Stop Dragons: https://www.amazon.com/gp/product/1484261887 
    • Become a Patron! https://www.patreon.com/FirewallsDontStopDragons 
    • Donate directly with Monero! https://firewallsdontstopdragons.com/contact/ 
      • Table of Contents

      Use these timestamps to jump to a particular section of the show.

      • 0:02:02: Bad Bugs in GPS Vehicle Trackers
      • 0:07:16: Zero-Day Bugs in Chrome, Edge, Safari
      • 0:12:47: Twitter data breach affect 5.4M users
      • 0:15:20: Windows new default RDP security setting
      • 0:19:11: Conti gang attacks Costa Rica
      • 0:23:40: Facebook defeats URL tracker removal technique
      • 0:26:31: new Tor Browser feature
      • 0:28:51: Google wants to allow political spam
      • 0:34:08: Ring video given to police without warrant or consent
      • 0:39:17: How to hack just about any modern Honda
      • 0:50:43: Targeted, sophisticated web tracking hack
      • 0:57:59: Tip of the Week
      • 1:08:01: Wrap-up, DEF CON

        • ...more
        View all episodesView all episodes
        Download on the App Store
        Firewalls Don't Stop Dragons PodcastBy Carey Parker
        • 4.9
        • 4.9
        • 4.9
        • 4.9
        • 4.9

        4.9

        64 ratings

        More shows like Firewalls Don't Stop Dragons Podcast

        View all
        Hidden Brain by Hidden Brain, Shankar Vedantam

        Hidden Brain

        43,628 Listeners

        Global News Podcast by BBC World Service

        Global News Podcast

        7,720 Listeners

        Hacked by Hacked

        Hacked

        190 Listeners

        This Week in Tech (Audio) by TWiT

        This Week in Tech (Audio)

        3,065 Listeners

        Security Now (Audio) by TWiT

        Security Now (Audio)

        2,009 Listeners

        The Daily by The New York Times

        The Daily

        112,263 Listeners

        Darknet Diaries by Jack Rhysider

        Darknet Diaries

        8,057 Listeners

        FT News Briefing by Financial Times

        FT News Briefing

        648 Listeners

        Surveillance Report: Weekly News For Digital Freedom by Techlore

        Surveillance Report: Weekly News For Digital Freedom

        109 Listeners

        Hard Fork by The New York Times

        Hard Fork

        5,561 Listeners

        The Ezra Klein Show by New York Times Opinion

        The Ezra Klein Show

        16,331 Listeners

        Closed Network Privacy Podcast by Simon Walsh

        Closed Network Privacy Podcast

        20 Listeners

        Watchman Privacy by Gabriel Custodiet

        Watchman Privacy

        75 Listeners

        The Weekly Show with Jon Stewart by Comedy Central

        The Weekly Show with Jon Stewart

        10,862 Listeners

        The 404 Media Podcast by 404 Media

        The 404 Media Podcast

        392 Listeners