Firewalls Don't Stop Dragons Podcast

Hacking Your Honda

Listen Later

The “rolling code” technology used to remotely open and lock your car is supposed to prevent hacking. Unfortunately, Honda has a pretty serious vulnerability in their cars that apparently allows anyone with a little talent and cheap hacking tools to get into your car – and maybe even start it (though not actually drive it away). If correct, this vulnerability affects probably all Hondas made over the last 10 years. So far, Honda has denied that this is a problem, but many researchers have reproduced the hack.

In other news: cheap, Chinese-made GPS vehicle trackers are vulnerable to remote hacking; Chrome, Edge and Safari browsers fix serious 0-day bugs; Twitter data breach info on 5.4M users is up for sale on the dark web; Windows getting a crucial security update to make important security feature on by default; the Conti ransomware gang is attacking the entire country of Costa Rica; Facebook quickly bypasses Firefox’s URL tracking removal feature; Tor Browser adds a useful feature that will help people in repressive countries; Google appears ready to stop blocking political spam emails; Amazon admits to giving Ring video to law enforcement without consent or a warrant; a complicated, targeted web browser trick can be used to identify website visitors.

Article Links
  1. [U.S. News & World Report] Researchers: Chinese-Made GPS Tracker Highly Vulnerable https://www.usnews.com/news/business/articles/2022-07-19/researchers-chinese-made-gps-tracker-highly-vulnerable
  2. [Ars Technica] 0-day used to infect Chrome users could pose threat to Edge and Safari users, too https://arstechnica.com/information-technology/2022/07/exploit-seller-used-chrome-exploit-and-2-other-0-days-to-infect-journalists/
  3. [9to5mac.com] Twitter data breach exposes contact details for 5.4M accounts; on sale for $30k https://9to5mac.com/2022/07/22/twitter-data-breach/
  4. [ZDNet] Windows 11 is getting a new security setting to block ransomware attacks https://www.zdnet.com/article/windows-11-is-getting-a-new-security-setting-to-block-ransomware-attacks/
  5. [ThreatPost] Conti’s Reign of Chaos: Costa Rica in the Crosshairs https://threatpost.com/contis-costa-rica/180258/
  6. [Schneier Blog] Facebook Is Now Encrypting Links to Prevent URL Stripping https://www.schneier.com/blog/archives/2022/07/facebook-is-now-encrypting-links-to-prevent-url-stripping.html
  7. [None] Tor Browser Adds Automatic Censorship Circumvention https://www.infosecurity-magazine.com/news/tor-browser-automatic-censorship/
  8. [Inc. Magazine] Google Revealed Plans for a Big Change to Gmail That Almost Nobody Wants. You Have 19 Days to Object https://www.inc.com/bill-murphy-jr/google-revealed-plans-for-a-big-change-to-gmail-that-almost-nobody-wants-you-have-19-days-to-object.html
  9. [The Intercept] Amazon Admits Giving Ring Camera Footage to Police Without a Warrant or Consent https://theintercept.com/2022/07/13/amazon-ring-camera-footage-police-ed-markey/
  10. [The Drive] I Tried the Honda Keyfob Hack on My Own Car. It Totally Worked https://www.thedrive.com/news/i-tried-the-honda-keyfob-hack-on-my-own-car-it-totally-worked
  11. [WIRED] A New Attack Can Unmask Anonymous Users on Any Major Browser https://www.wired.com/story/web-deanonymization-side-channel-attack-njit/
  12. Tip of the Week: More Uses for Password Vaults: https://firewallsdontstopdragons.com/more-uses-for-password-vaults/
    13. Further Info
    • Amulet of Entropy!!: https://amuletofentropy.com/ 
    • Peppering your passwords: https://firewallsdontstopdragons.com/password-manager-paranoia/
    • Subscribe to the newsletter: https://firewallsdontstopdragons.com/newsletter/new-newsletter/
    • Check out my book, Firewalls Don’t Stop Dragons: https://www.amazon.com/gp/product/1484261887 
    • Become a Patron! https://www.patreon.com/FirewallsDontStopDragons 
    • Donate directly with Monero! https://firewallsdontstopdragons.com/contact/ 
      • Table of Contents

      Use these timestamps to jump to a particular section of the show.

      • 0:02:02: Bad Bugs in GPS Vehicle Trackers
      • 0:07:16: Zero-Day Bugs in Chrome, Edge, Safari
      • 0:12:47: Twitter data breach affect 5.4M users
      • 0:15:20: Windows new default RDP security setting
      • 0:19:11: Conti gang attacks Costa Rica
      • 0:23:40: Facebook defeats URL tracker removal technique
      • 0:26:31: new Tor Browser feature
      • 0:28:51: Google wants to allow political spam
      • 0:34:08: Ring video given to police without warrant or consent
      • 0:39:17: How to hack just about any modern Honda
      • 0:50:43: Targeted, sophisticated web tracking hack
      • 0:57:59: Tip of the Week
      • 1:08:01: Wrap-up, DEF CON
        • ...more
        View all episodesView all episodes
        Download on the App Store
        Firewalls Don't Stop Dragons PodcastBy Carey Parker
        • 4.9
        • 4.9
        • 4.9
        • 4.9
        • 4.9

        4.9

        64 ratings

        More shows like Firewalls Don't Stop Dragons Podcast

        View all
        Freakonomics Radio by Freakonomics Radio + Stitcher

        Freakonomics Radio

        32,010 Listeners

        WSJ What’s News by The Wall Street Journal

        WSJ What’s News

        4,338 Listeners

        Making Sense with Sam Harris by Sam Harris

        Making Sense with Sam Harris

        26,319 Listeners

        Security Now (Audio) by TWiT

        Security Now (Audio)

        2,010 Listeners

        Risky Business by Patrick Gray

        Risky Business

        372 Listeners

        Click Here by Recorded Future News

        Click Here

        418 Listeners

        Darknet Diaries by Jack Rhysider

        Darknet Diaries

        8,045 Listeners

        Your Undivided Attention by The Center for Humane Technology, Tristan Harris, Daniel Barcay and Aza Raskin

        Your Undivided Attention

        1,602 Listeners

        Techlore Surveillance Report by Techlore

        Techlore Surveillance Report

        105 Listeners

        The Ancients by History Hit

        The Ancients

        3,278 Listeners

        Hard Fork by The New York Times

        Hard Fork

        5,509 Listeners

        The Rest Is History by Goalhanger

        The Rest Is History

        15,249 Listeners

        Closed Network Privacy Podcast by Simon Walsh

        Closed Network Privacy Podcast

        20 Listeners

        The Peter Zeihan Podcast Series by Peter Zeihan

        The Peter Zeihan Podcast Series

        401 Listeners

        The 404 Media Podcast by 404 Media

        The 404 Media Podcast

        386 Listeners