Ashcon Mohseninia’s Rust-Based Open Vehicle Diagnostics Aim to Break the Manufacturer Stranglehold

Written in Rust, Open Vehicle Diagnostics aims to reach feature-parity with expensive manufacturer-specific ECU management solutions.

Undergraduate student Ashcon Mohseninia has released a Rust-based open source tool, created for a final year project at the University of Reading, designed to offer engine control unit (ECU) diagnostics: Open Vehicle Diagnostics (OVD).

“I know there are some open source diagnostic software suites out there that work on Linux,” Mohseninia writes of the project. “However they are focused on the ELM327 adapter and OBD2, whereas this is focused more on the more advanced diagnostics, essentially building a utility which could have feature parity to OEM diagnostics software such as Daimler’s Veidmao/Xentry/Das or VW VAG software.”

Read more…

PasswordPump v2.0 Can Manage Credentials for Up to 250 Accounts

The USB device is outfitted with a pair of removable EEPROM chips that store credentials using AES-256 encryption.

It’s not uncommon for most PC users to have multiple accounts and passwords for a host of different sites and applications. Trying to remember all of those credentials can be a pain or a downright disaster if passwords are forgotten, not to mention hackers could steal any sensitive information. To that end, the safest and easiest way to manage website passwords and other credentials are to store that information offsite, rather than locally or in the cloud.

Read more…

LensLok – Early 80’s Anti-Piracy that frustrated | MVG

In 1985, in an effort to combat software piracy. ASAP Developments invented the LensLok – a plastic lens in a foldaway frame.The LensLok device was essentially a row of prisms arranged vertically in a plastic holder. In this video we take a closer look at the LensLok to understand how it works, and why it ultimately failed as an anti-piracy device.

Spying Robot Vacuums Really Suck

LidarPhone exploits the LiDAR sensor in robotic vacuums to eavesdrop on your private conversations.

Just when you thought you had all your bases covered for privacy, it turns out that even your seemingly innocent robot vacuum may be spying on you. And all this time you thought it was only collecting dirt from the floor.

A team in Singapore took advantage of the LiDAR sensor typically found onboard robotic vacuums for navigation purposes, and repurposed it to capture sound with an exploit that they call LidarPhone. Laser microphones, in which laser beams reflected off of vibrating objects are converted into audio, are not a new idea. However, laser microphones require sophisticated setups and fine-tuning that is not possible with a stock vacuum cleaner. Getting a vacuum to work as a laser microphone took some clever thinking.

Read more…

Pwnagotchi – Pwn all the wifi

Pwnagotchi is a modern day take on the Tamagatchi of the 90s, but with a Cyber Security twist. This digital pet derives his happiness by sniffing WPA and WPA2 handshakes which can then be run through hashcat to guess the password. Two or more Pwnagotchis in range of each other will communicate and split the workload. The Pwnagotchi can also send its stats back to the internet to rank your Pwnagotchi against other Pwnagotchis from around the world.