Samsung Smart TVs vulnerable to hacks, Apple’s iBoot firmware source code leaked and dealing with Device Addiction

Last week was a good one. Here’s some things I’ve found. I’m dumping them here for future reference.

Security Weekly has some great content on YouTube and on its own wiki. I’d highly recommend this as a source for information security professionals and anyone interested in computer security. The shows are generally hosted by Paul Asadoorian

Apple’s top secret iBoot firmware source code ended up on Github this week. According to The Register, “the source was swiftly taken down following a DMCA complaint by Apple, which means the code must be legit or else Cupertino would have no grounds to strip it from the website. However, at least one clone of the software blueprints has remerged on GitHub, meaning you can find it if you look hard enough.”

Consumer Reports found that millions of smart TVs are vulnerable to hacks via rudimentary security flaws. Consumer Reports “found that a relatively unsophisticated hacker could change channels, play offensive content, or crank up the volume, which might be deeply unsettling to someone who didn’t understand what was happening. This could be done over the web, from thousands of miles away. (These vulnerabilities would not allow a hacker to spy on the user or steal information.)”

Some of the easiest ways to protect yourself from Samsung TV vulnerabilities include:

  • avoid using Samsung’s remote app
  • completely disable the Wi-Fi in the TV and connect a separate streaming device

 

Michael Bazzell has some great content about Open Source Intelligence Techniques and in fact has authored a book by the same name. He also hosts Computer Crime Info website and hosts a variety of training materials related to cyber-security and online privacy.

Cert.org has some great material related to Cyber Risk and Resilience Management, Incident Management and Vulnerability Analysis just to name a few of the work areas.

ClamAV is an open source anti-virus application that runs from the command line. Wikipedia describes ClamAV as “a free, cross-platform and open-source antivirus software toolkit able to detect many types of malicious software, including viruses. One of its main uses is on mail servers as a server-side email virus scanner. The application was developed for Unix and has third party versions available for AIX, BSD, HP-UX, Linux, macOS, OpenVMS, OSF (Tru64) and Solaris. As of version 0.97.5, ClamAV builds and runs on Microsoft Windows. Both ClamAV and its updates are made available free of charge.”

For anyone that has problems related to smartphone and device addiction there may be a cure. Try browsing to the accessibility options for your device and turning off the colour. This has been reported by a number of people to improve their productivity and alleviate creative block. As a creative myself I find that removing colours when using devices enhances my experience in the “real world” AKA the world outside devices. In fact there’s a website dedicated to “going gray” here. I can definitely say that as a photographer, going gray has made a huge difference as I can now find more photo opportunities. I’m considering a focus on black and white photography exclusively as that was my main draw to enter the world of photography back in 1989.

And finally don’t forget Malwarebytes which also has a Mac version to protect your computer from vulnerabilities.

 

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

w

Connecting to %s