Domain: ioactive.com
Stories and comments across the archive that link to ioactive.com.
Comments · 5
-
Re:USB
Expecting journalists to accurately report on technology-intensive topics was empirically shown to be unreasonable.
As Charlie Miller and Chris Valasek showed with their work culminating in sensational remote hacking of a Jeep Cherokee driven by a volunteering journalist, the key issue is that hackable infotainment units are capable of impacting other systems on the car's CAN bus. See Remote Exploitation of an Unaltered Passenger Vehicle for details.
That was a known issue in 2015. There is simply no excuses to still make the same mistakes in 2018. This is not unlike releasing a protocol library that is still vulnerable to Logjam. -
wtf
TFA was interesting; the shit-blog that was also linked can eat a dick. Yes, Michael Mimoso sucks cock.
-
First credible way to detect real 0day on your box
http://blockwatch.ioactive.com:8888/
It's pretty alpha, and you will need to use IE to install it. This tool compares software in memory against known signatures, allowing you to confirm what's running on the system is really what you think it is. It works with HyperV and VMWare.
It's free. Thanks IO Active!
-
Worm
I'm sure someone mentioned it already but it may be possible to shut off everyone's power at exactly the same time.
http://www.ioactive.com/services_grid_research.htmlImagine a worm spreading over the mesh setting all the smart meters in LA to pulse on and off...wonder what that would do...
-
He likes 'IO' in names, doesn't he?
Just saw that the Woz is also on the advisory board for IOActive, the guys who showed that your (RF)ID may be cloned off you from yards away...