Engadget RSS Feed

Engadget RSS Feed http://www.engadget.com Engadget http://www.blogsmithmedia.com/www.engadget.com/media/feedlogo.gif Engadget http://www.engadget.com en-us Copyright 2013 AOL Inc. The contents of this feed are available for non-commercial use only. Blogsmith http://www.blogsmith.com/ <![CDATA[OS X Lion update accidentally outs user passwords in plain text, stumbles over FileVault]]> http://www.engadget.com/2012/05/06/os-x-lion-update-accidentally-outs-user-passwords-in-plain-text/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2012/05/06/os-x-lion-update-accidentally-outs-user-passwords-in-plain-text/ http://www.engadget.com/2012/05/06/os-x-lion-update-accidentally-outs-user-passwords-in-plain-text/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Are you an avid user of OS X's FileVault encryption and running a recently updated version of Lion? It may be time to consider changing your passwords. According to security researcher David Emry, users who used FileVault prior to upgrading to 10.7.3 may be able to find their password in a system-wide debug log file, stored in plain text outside of the encrypted area. This puts the password at risk of being read by other users or enterprising cyber criminals, Emry explains, and even opens the door for new flaw-specific malware. FileVault 2, on the other hand, seems to be unaffected by the bug. The community doesn't currently have a way to fight the flaw without disabling FileVault, so users rushing to change their password now may find it being logged as well. Obviously, we'll let you all know once we hear back from Apple regarding this matter.

]]> 10.7.3applecrackdataDavid EmryDavidEmrydecryptencryptFileVaultFilevault 2Filevault2hackinglionloginmacOSXosx lionosx updateOsxLionOsxUpdatepasswarepasswordpassword recoveryPasswordRecoverypasswordssecurity Sun, 06 May 2012 12:55:00 -0400 21|20232216 <![CDATA[Untethered jailbreak for new iPad shown on YouTube, not quite ready for download]]> http://www.engadget.com/2012/03/17/untethered-jailbreak-for-new-ipad-shown-on-youtube-not-quite-re/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2012/03/17/untethered-jailbreak-for-new-ipad-shown-on-youtube-not-quite-re/ http://www.engadget.com/2012/03/17/untethered-jailbreak-for-new-ipad-shown-on-youtube-not-quite-re/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Untethered jailbreak for new iPad shown on YouTube

Are we shocked to see an untethered iOS 5.1 jailbreak for the new iPad? Not so much. Are we surprised to see it arrive so quick? Hell, yes. The iPad 2's untethered jailbreak took an eternity, whereas this new tunnel seems to have been dug during one fleeting Friday night. The hacker to thank is i0n1c, aka Stefan Esser -- a man who moves so fast his YouTube clip reportedly had 28 likes before it had even finished uploading. Just leap that final fence, Stefan, by releasing your jailbreak to the public, and we shall re-christen you bi0n1c. (Unless you want to keep your current handle, which would also be fine.)

[Thanks, Brad]

Comments

]]> applecrackhacki0n1ciosios 5.1Ios5.1ipadipad 3gIpad3gjailbreakjailbreakingnew ipadNewIpadStefan EsserStefanEsseruntetheredvideo Sat, 17 Mar 2012 09:34:00 -0400 21|20195527 <![CDATA[NASA simulates fly through of ginormous crack in Antarctic glacier, takes you for virtual ride]]> http://www.engadget.com/2012/02/19/nasa-virtual-fly-through-of-glacier-crack-Antarctica/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2012/02/19/nasa-virtual-fly-through-of-glacier-crack-Antarctica/ http://www.engadget.com/2012/02/19/nasa-virtual-fly-through-of-glacier-crack-Antarctica/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

It's a trap! NASA uses The Force in virtual fly-through of ginormous Antarctic crack

Swooping through the trenches of the Death Star likely ranks high on every geek's bucket list, but even an earthbound version won't really do the trick. Fortunately, the folks at NASA have rigged up a passable alternative -- flying through a massive 19-mile crack across Antarctica's Pine Island Glacier. The crack was discovered last October and measures 60 yards wide and 50 yards deep, certainly more than enough clearance to accommodate adventurous fliers. Using data gathered by NASA's Operation IceBridge science flight team, the agency generated an animated fly through that, well, mostly flew over the crack -- but we're sure that was a defensive maneuver. After all, you just never know when a TIE fighter flown by someone's father might sneak up from behind. See the icy flyover yourself after the break.

Filed under: Alt

]]> antarcticantarcticacrackexploreglacierglacier crackicebridgenasapine islandpine island glacier Sun, 19 Feb 2012 04:41:00 -0500 21|20174663 <![CDATA[Passware claims FileVault 2 can be cracked in under an hour, sells you the software to prove it]]> http://www.engadget.com/2012/02/02/passware-claims-firevault-2-can-be-cracked-in-under-an-hour-sel/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2012/02/02/passware-claims-firevault-2-can-be-cracked-in-under-an-hour-sel/ http://www.engadget.com/2012/02/02/passware-claims-firevault-2-can-be-cracked-in-under-an-hour-sel/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Lunch hours may never feel safe again. That is, if you have a Mac running Lion / FileVault 2, like leaving your computer around, or have unscrupulous colleagues. Data recovery firm Passware claims its "Forensic" edition software can decrypt files protected by FileVault 2 in just 40 minutes -- whether it's "letmein" or "H4x0rl8t0rK1tt3h" you chose to stand in its way. Using live-memory analysis over firewire, the encryption key can be accessed from FileVault's partition, gifting the pilferer privy access to keychain files and login data -- and therefore pretty much everything else. If you want to try this out for yourself, conveniently, Passware will sell you the software ($995 for a single user license) without so much as a flash of a badge.

Comments

]]> crackdatadecryptencryptFileVaultFilevault 2Filevault2firewirehackhackingkeychainlionlive-memoryloginOSXosx lionOsxLionpasswarepasswordpassword recoveryPasswordRecoverypasswordssecurity Thu, 02 Feb 2012 13:39:00 -0500 21|20162593 <![CDATA[RIM puts BlackBerry Playbook on massive sale; Android Market shoehorned onto rooted units]]> http://www.engadget.com/2012/01/02/blackberry-playbook-fire-sale-android-market-access-hack/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2012/01/02/blackberry-playbook-fire-sale-android-market-access-hack/ http://www.engadget.com/2012/01/02/blackberry-playbook-fire-sale-android-market-access-hack/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Research in Motion may not have found itself in a coveted spot as 2011 ended, but if it's learned anything from HP, there's a surefire way to rid itself of remaining BlackBerry PlayBook inventory: sell 'em for a loss. After the unloved slate went on sale in its native land, Americans can now save up to $400 on a PlayBook through February 4th. RIM's official webstore is offering the 16GB, 32GB and 64GB model for $299, leaving us to wonder who would ever choose the smaller two if all three remain in stock. In related news, those who take the company up on the offer can now gain access to the Android Market with a few choice moves. The fine folks over at CrackBerry have detailed the process, which requires a rooted PlayBook, WinSCP, the latest version of Cyanogen Google apps and a fair amount of patience. Naturally, not all Android apps will actually work on the device, but it's a lovely hack for a sure-to-be-sluggish week in your workshop. Hit the links below to learn more.

]]> androidandroid marketAndroidMarketapplicationappsblackberryblackberry playbookBlackberryPlaybookcrackfire saleFireSalegooglehackhackedjailbreakjailbrokenon saleOnSaleplaybookqnxrimrootrootedsaleslatetablet Mon, 02 Jan 2012 18:29:00 -0500 21|20138843 <![CDATA[ultrasn0w bumped to version 1.2.5, now unlocking even more iOS 5.0.1 devices]]> http://www.engadget.com/2011/12/21/ultrasn0w-bumped-to-version-1-2-5-now-unlocking-even-more-ios-5/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2011/12/21/ultrasn0w-bumped-to-version-1-2-5-now-unlocking-even-more-ios-5/ http://www.engadget.com/2011/12/21/ultrasn0w-bumped-to-version-1-2-5-now-unlocking-even-more-ios-5/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Given that you're out on Christmas break and all, isn't it about time you finally tried out that whole "unlocking" thing you've been hearing about? A new build of ultrasn0w just hit the Cydia app store, with v1.2.5 adding more support for iOS 5.0.1. Of note, novice jailbreakers may want to reach out to more experienced pals before embarking, as you'll need a a compatible baseband in order for the unlock to work. The iPhone 3GS (running iOS 5.0.1.) is supported with the following basements: 04.26.08 - 05.11.07 - 05.12.01 - 05.13.04 - 06.15.00. The iPhone 4 is supported if your baseband checks in as 01.59.00. If you're looking to upgrade from a dustier firmware, make sure you preserve your baseband before unlocking. Hit the source link for a few tips, and remember: friends don't let friends jailbreak before completing a backup.

Filed under: Mobile

]]> applebasebandcrackcrackedcydiahackiosios 5ios 5.0ios 5.0.1Ios5Ios5.0Ios5.0.1iphoneiphone 3gsiphone 4Iphone3gsIphone4jailbreakjailbreakingmobilepostcrossultrasn0wultrasnowunlock Wed, 21 Dec 2011 21:00:00 -0500 21|20133382 <![CDATA[iOS 5 beta 5 finally gets its jailbreak, rides home in a gangster limo]]> http://www.engadget.com/2011/08/09/ios-5-beta-5-finally-gets-its-jailbreak-rides-home-in-a-gangste/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2011/08/09/ios-5-beta-5-finally-gets-its-jailbreak-rides-home-in-a-gangste/ http://www.engadget.com/2011/08/09/ios-5-beta-5-finally-gets-its-jailbreak-rides-home-in-a-gangste/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Numero cinque took a lot longer to crack than the previous betas. Are the Dev-Team guys beginning to struggle, or are they just out enjoying the sunshine? Either way, it's still tethered-only and it won't work on an iPad 2, but it's a heck of a lot better than the exercise yard. Jailbreak app developers can get busy with redsn0w 0.9.8b5 via the source link.

[Thanks, Jeff and Kyle]

]]> ApplecrackcydiaiOSiOS 5iOS 5 betaiOS 5 beta 5Ios5Ios5BetaIos5Beta5ipadiphoneipod touchIpodTouchjailbreakjailbrokenjailbroken iphoneJailbrokenIphoneredsnow Tue, 09 Aug 2011 09:22:00 -0400 21|20012993 <![CDATA[ShairPort emulator cracks open the door for more unofficial AirPlay streaming options]]> http://www.engadget.com/2011/04/11/shairport-emulator-cracks-open-the-door-for-more-unofficial-airp/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2011/04/11/shairport-emulator-cracks-open-the-door-for-more-unofficial-airp/ http://www.engadget.com/2011/04/11/shairport-emulator-cracks-open-the-door-for-more-unofficial-airp/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments There's already a few unofficial AirPlay applications out there, but looks like developer James Laird has now gotten right to the heart of the matter and enabled a whole host of new streaming possibilities. Here's apparently managed to crack the private key used by Apple in the AirPort Express (literally by ripping one open and dumping the ROM), and he's used that to build an emulator dubbed "ShairPort," which will let you stream music from iTunes to any third-party software -- or hardware, for that matter, if someone decided to go as far as to build a device that takes advantage of the private key. Have something in mind? You can download the emulator at the source link below.

]]> airplayairportairport expressAirportExpressairtunesapplecrackhackitunesJames LairdJamesLairdshairportstreaming Mon, 11 Apr 2011 12:34:00 -0400 21|19909224 <![CDATA[Sony releases statement on PS3 hacking, surprisingly comes out against it]]> http://www.engadget.com/2011/02/16/sony-releases-statement-on-ps3-hacking-surprisingly-comes-out-a/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2011/02/16/sony-releases-statement-on-ps3-hacking-surprisingly-comes-out-a/ http://www.engadget.com/2011/02/16/sony-releases-statement-on-ps3-hacking-surprisingly-comes-out-a/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

In the wake of recent developments in Sony's war on Geohot, the company has released an "Official Statement Regarding PS3 Circumvention Devices and Pirated Software," which reads, in part:

Consumers using circumvention devices or running unauthorized or pirated software will have access to the PlayStation Network and access to Qriocity services through PlayStation 3 system terminated permanently.

To avoid this, consumers must immediately cease use and remove all circumvention devices and delete all unauthorized or pirated software from their PlayStation 3 systems.

In other words: get caught with custom firmware, find yourself banished from the PlayStation Network forever. Seems rather reasonable. More reasonable than, say, filing a motion in court for the usernames and IP addresses of everyone who posted comments on Geohot's YouTube video. Read the entire statement at the source link.

]]> crackcrackinggeohothackhackingjailbreakjailbreakinglawlegalPlayStationPlaystation 3playstation networkPlaystation3PlaystationNetworkps3ps3 firmwarePs3Firmwaresonystatement Wed, 16 Feb 2011 14:11:00 -0500 21|19846720 <![CDATA[Verizon iPhone 4 (iOS 4.2.6) jailbreak now available for Mac and Windows, courtesy of greenpois0n]]> http://www.engadget.com/2011/02/07/verizon-iphone-4-ios-4-2-6-jailbreak-now-available-for-mac-and/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2011/02/07/verizon-iphone-4-ios-4-2-6-jailbreak-now-available-for-mac-and/ http://www.engadget.com/2011/02/07/verizon-iphone-4-ios-4-2-6-jailbreak-now-available-for-mac-and/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Aw, suki suki now! Merely hours after the first Verizon iPhone 4 units began to land in the hands of mere mortals, out pops two download links that you'll most certainly want to give a little consideration to. Chronic Dev Team has just pushed out greenpois0n RC5.4 for Mac and Windows machines, enabling those with iOS 4.2.6 devices to uncage their phone and mate it with Cydia. Hit the links below to get started (including a tutorial over at Quickpwn), but make sure you consider all possible outcomes before doing the deed. Will you life be forever altered for the worse? Will your Verizon iPhone suddenly have less coverage than your old AT&T iPhone? Will you find the always-elusive "true happiness?" Let us know how fate treats you in comments below.

[Thanks to everyone who sent this in]

]]> 4.2.1appleChronic Dev TeamChronicDevTeamcrackgreenpois0nGreenpois0n RC5.4Greenpois0nRc5.4greenpoisonhackiosios 4.2.6Ios4.2.6ipadipad jailbreakIpadJailbreakiphoneiphone 4iphone jailbreakIphone4IphoneJailbreakipod touchipodtouchjail breakjailbreakjailbrokenjbp0sixninjaposixninjasoftwareverizonverizon iphoneverizon wirelessVerizonIphoneVerizonWirelesswindows Mon, 07 Feb 2011 16:40:00 -0500 21|19833567 <![CDATA[PS3 firmware 3.56 hacked in less than a day, Sony's lawyers look confused (update)]]> http://www.engadget.com/2011/01/29/ps3-firmware-3-56-hacked-in-less-than-a-day-sonys-lawyers-look/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2011/01/29/ps3-firmware-3-56-hacked-in-less-than-a-day-sonys-lawyers-look/ http://www.engadget.com/2011/01/29/ps3-firmware-3-56-hacked-in-less-than-a-day-sonys-lawyers-look/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Sony's taken some strong steps against PS3 cracking in the past week -- not only has it taken to the courts and won a temporary restraining order against Geohot and fail0verflow for cracking the console, but it also released firmware 3.56, which locked things down again. Unfortunately, that restraining order doesn't mean anyone else has to stop a-crackin', and wouldn't you know it: 3.56 was cracked open in less than a day by KaKaRoToKS, who was behind one of the first 3.55 custom firmwares. Now that the 3.56 signing keys are out, we'd guess updated custom firmware is soon to come -- and we'd bet Sony's lawsuit will just inspire an entirely new wave of people to jailbreak once those hit the scene. Way to put that genie back in the bottle, Sony.

Update: We're hearing that new custom firmware isn't on the table quite yet, because Sony changed most of the locks, and is reportedly actually storing the all-important ECDSA private key with random-number cryptography this time around. Be warned: if you upgrade to 3.56, there's no easy way back down. In related news, Github complied with a DMCA takedown notice to remove KaKaRoToKS's repositories, so you'll have to head on over to Gitorious (at our more coverage link) to get at the fail0verflow tools.

[Thanks, Tomi R]

]]> 3.56crackcrackinghackhackingjailbreakjailbreakingKaKaRoToKSPlayStationPlaystation 3playstation networkPlaystation3PlaystationNetworkps2ps3ps3 firmwareps3 firmware 3.56Ps3FirmwarePs3Firmware3.56sony Sat, 29 Jan 2011 14:35:00 -0500 21|19820676 <![CDATA[Galaxy Tab gets 1.2GHz overclock, very scary warning]]> http://www.engadget.com/2011/01/21/galaxy-tab-gets-1-2ghz-overclock-very-scary-warning/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2011/01/21/galaxy-tab-gets-1-2ghz-overclock-very-scary-warning/ http://www.engadget.com/2011/01/21/galaxy-tab-gets-1-2ghz-overclock-very-scary-warning/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Galaxy Tab gets 1.2GHz overclock, very scary warning

It's here, what looks to be the world's first attempt at overclocking a Samsung Galaxy Tab. User Bauxite at the always happening xda-developers forums has posted the way to boosting Samsung's hunk of burning Android up to 1.2GHz -- along with some seriously stern warnings:

THIS KERNEL MAY NOT WORK ON YOUR DEVICE, MIGHT DESTROY YOUR DEVICE, MIGHT PUNCH YOUR CHILDREN, I AM NOT RESPONSIBLE FOR ANY DAMAGE CAUSED BY THIS KERNEL, USE AT YOUR OWN RISK

Initial user reports are generally positive but, given the risk and the complexity here we think we'll be staying at the stock 1GHz speed. For now, anyway.

[Thanks, Alain]

]]> androidbauxitecrackgalaxygalaxy tabGalaxyTabhackoverclocksamsungtabletxdaxda-developers Fri, 21 Jan 2011 11:51:00 -0500 21|19810017 <![CDATA[Researchers eavesdrop on encrypted GSM call: all you need is a $15 phone and 180 seconds]]> http://www.engadget.com/2010/12/29/researchers-eavesdrop-on-encrypted-gsm-call-all-you-need-is-a/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/12/29/researchers-eavesdrop-on-encrypted-gsm-call-all-you-need-is-a/ http://www.engadget.com/2010/12/29/researchers-eavesdrop-on-encrypted-gsm-call-all-you-need-is-a/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

It's hardly a fresh idea -- researchers have claimed that GSM calls could be cracked and listened in on for years. But there's a difference between being able to do something with a $50,000 machine and a warrant, and being able to do the same thing with a few $15 Motorola phones, a laptop, open source software and 180 seconds of spare time. Security Research Labs researcher Karsten Nohl and OsmocomBB project programmer Sylvain Munaut recently spoke about a new GSM hack at the Chaos Communication Conference in Berlin, and they were able to walk the audience through the eavesdropping process in a matter of minutes. According to them, it's not terribly difficult to use a $15 handset to "sniff out" location data used to correctly route calls and texts, and once you've nailed that down, you could use modified firmware to feed raw data into a laptop for decryption. Using a 2TB table of precomputed encryption keys, a cracking program was able to break in within 20 seconds -- after that, you're just moments away from recording a live GSM call between two phones. Of course, speeches like these are made to encourage security officials to beef up the layers between you and ill-willed individuals, but it's hard to say what (if anything) will change. For now, we'd recommend just flying to each and every person you'd like to speak with. Unless you live in the Greater New York area -- you're probably better off risking a hacked conversation than heading out to LGA / JFK / EWR.

]]> 27c3Chaos Communication Conferencechaos communication congressChaos Computer ClubChaosCommunicationConferenceChaosCommunicationCongressChaosComputerClubcommunicationcrackeavesdroppingencryptedencryptiongsmhackhackerhackingmotomotorolanetworkprivacysecuritySecurity Research LabsSecurityResearchLabsspyspying Wed, 29 Dec 2010 09:17:00 -0500 21|19780162 <![CDATA[ElcomSoft turns your laptop into a one-touch WiFi cracking system]]> http://www.engadget.com/2010/09/25/elcomsoft-turns-your-laptop-into-a-one-touch-wifi-cracking-syste/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/09/25/elcomsoft-turns-your-laptop-into-a-one-touch-wifi-cracking-syste/ http://www.engadget.com/2010/09/25/elcomsoft-turns-your-laptop-into-a-one-touch-wifi-cracking-syste/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

It's been a few years since we checked in with Elcomsoft's Wireless Security Auditor WiFi cracking software. As you'd expect, things have become easier, much easier. Elcomsoft now has an all-in-one solution that will locate wireless networks, intercept data packets, and crack WAP/WPA2 PSK passwords from any modern laptop with a discrete ~~ATI~~ AMD or NVIDIA graphics card. Here's the quote IT nerds will surely we love:

Today, ElcomSoft is integrating a wireless sniffer into Elcomsoft Wireless Security Auditor. The integrated sniffer turns Elcomsoft Wireless Security Auditor into a one-button, all-in-one solution ready to be used by corporate security officers without specific experience in information security.

Call us crazy, but if you're a C-level security officer with no specific information security experience then maybe you shouldn't be sniffing people's data packets. Then again, we're sure ElcomSoft will happily sell their $1,199 pro software or $399 standard edition to any hacker willing to pay, white hat or not.

]]> amdaticrackcudadistributed password recoveryDistributedPasswordRecoveryelcomsoftelcomsoft distributed password recoveryElcomsoftDistributedPasswordRecoveryGPUGPU accelerationGpuAccelerationhacknvidiapassword crackPasswordCrackwifiwifi crackWifiCrackWireless Security AuditorWirelessSecurityAuditorwpawpa2 Sat, 25 Sep 2010 03:36:00 -0400 21|19647016 <![CDATA[iOS 4.1 jailbreak on the way after bootrom exploit discovery]]> http://www.engadget.com/2010/09/09/ios-4-1-bootrom-exploit-found-jailbreak-to-come/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/09/09/ios-4-1-bootrom-exploit-found-jailbreak-to-come/ http://www.engadget.com/2010/09/09/ios-4-1-bootrom-exploit-found-jailbreak-to-come/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

So let's see, how long has iOS 4.1 been out in the open for public consumption? We make it less than 24 hours, yet already some earnest jail busters have managed to liberate it from Apple's control freak clutches. It's still a fair distance away from an easily executable jailbreak, but it's looking like it'll work on iPhone 4, the latest-gen iPod touch, and the iPad, covering all the freshest bases of Apple hardware. Now it's just a matter of waiting it out.

]]> applebootromchronicchronic dev teamChronicDevTeamcrackexploitiosios 4ios 4.1Ios4Ios4.1ipadiphoneiphone 4Iphone4ipod touchIpodTouchjailbreakjailbroken Thu, 09 Sep 2010 06:48:00 -0400 21|19626653 <![CDATA[HTC EVO 4G suffering new calendar bug, cracked shells, broken dreams?]]> http://www.engadget.com/2010/08/16/htc-evo-4g-suffering-new-calendar-bug-cracked-shells-broken-dr/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/08/16/htc-evo-4g-suffering-new-calendar-bug-cracked-shells-broken-dr/ http://www.engadget.com/2010/08/16/htc-evo-4g-suffering-new-calendar-bug-cracked-shells-broken-dr/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

It wouldn't be the first time the EVO's been dinged for a manufacturing defect, but it seems that at least a few owners are reporting cracks near the power button. Fortunately, these cracks seem to be purely cosmetic without any effect on feel or any real danger of the case falling apart -- and seeing how other high-profile devices have suffered similar fates, we can certainly buy that there are high-stress points in the phone's case where this is prone to happen. We'll wait a moment to continue the story while you pull your EVO out of your pocket and check yours.

Alright, now that we have you back, the second issue is purely software -- and arguably quite a bit more troublesome than a tiny, harmless crack. Apparently, the recent Android 2.2 upgrade has introduced a bug whereby event descriptions are being overwritten by their locations when you open them, which basically means this is a legit data loss problem. No ETA yet on a fix, but considering that it's been filed and verified in Android's official tracking system, we're hopeful it's going to get patched up sooner rather than later.

[Thanks, Lee H. and Andrew]

Filed under: Mobile

]]> androidandroid 2.2Android2.2bugcalendarcrackevoevo 4gEvo4gfroyogooglehtcmobilesprint Mon, 16 Aug 2010 16:59:00 -0400 21|19595738 <![CDATA[Meganet's Dominator I snoops on four GSM convos at once, fits in your overnight bag]]> http://www.engadget.com/2010/05/10/meganets-dominator-i-snoops-on-four-gsm-convos-at-once-fits-in/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/05/10/meganets-dominator-i-snoops-on-four-gsm-convos-at-once-fits-in/ http://www.engadget.com/2010/05/10/meganets-dominator-i-snoops-on-four-gsm-convos-at-once-fits-in/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

"Dominator I" sounds more like a monster truck than a collection of small boxes that collectively erase 20 years of relatively secure wireless phone service, doesn't it? Alas, what you're looking at here is a convenient, plug-and-play solution for exploiting the hard work the world's hacking community has put into cracking the A5/1 encryption used on GSM networks in Europe and the US over the past few years. The system consists of two nondescript white boxes, two directional antennas that you'll point in the direction of your victim, and a laptop that you can use to get a glimpse at all of the phones currently connected to your nearest cell site and record up to four active calls simultaneously -- and if you're more of the text messaging type, Dominator I's got you covered there, too, with full access to SMS. The company claims that the system was "declassified only last week" and is completely undetectable both by the operator and the end user, putting it in this rare nexus of "awesome" and "completely terrifying." It can't do the 128-bit A5/3 used in UMTS, but now that it's been cracked in a somewhat practical way, we're sure the Dominator II can't be far behind. Follow the break for Meganet's video of the system in action.

]]> a5.1a51crackdominator iDominatorIencryptiongsmgsm encryptiongsmaGsmEncryptionhackmeganetvideo Mon, 10 May 2010 18:02:00 -0400 21|19471797 <![CDATA[iPhone SMS database hacked in 20 seconds, news at 11]]> http://www.engadget.com/2010/03/25/iphone-sms-database-hacked-in-20-seconds-news-at-11/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/03/25/iphone-sms-database-hacked-in-20-seconds-news-at-11/ http://www.engadget.com/2010/03/25/iphone-sms-database-hacked-in-20-seconds-news-at-11/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

It's a story tailor-made for the fear-mongering subset of news media. This week, a pair of gentlemen lured an unsuspecting virgin iPhone to a malicious website and -- with no other input from the user -- stole the phone's entire database of sent, received and even deleted text messages in under 20 seconds, boasting that they could easily lift personal contacts, emails and your naughty, naughty photos as well. Thankfully for us level-headed souls, those gentlemen were Vincenzo Iozzo and Ralf-Philipp Weinmann, security researchers performing for the 2010 Pwn2Own hacking contest, and their $15,000 first prize ensures that the winning formula will go to Apple (and only Apple) for further study. Last year, smartphones emerged from Pwn2Own unscathed even as their desktop counterparts took a beating, but this makes the third year in a row that Safari's gotten its host machines pwned. That said, there's no need for fear -- just a healthy reminder that the Apple logo doesn't give you free license to click links in those oh-so-tempting "beta-test the new iPad!" emails.

]]> ApplecrackcrackerscrackingexploitexploitedhackhackerhackershackingiPhoneMacmaliciousprizepwnpwn 2 ownPwn2ownpwnagepwnedRalf-Philipp WeinmannRalf-philippWeinmannSafarisecuritysecurity holesecurity holesSecurityHoleSecurityHolesSMStext messagingTextMessagingtxttxt messagesTxtMessagesVincenzo IozzoVincenzoIozzo Thu, 25 Mar 2010 02:36:00 -0400 21|19413532 <![CDATA[1024-bit RSA encryption cracked by carefully starving CPU of electricity]]> http://www.engadget.com/2010/03/09/1024-bit-rsa-encryption-cracked-by-carefully-starving-cpu-of-ele/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/03/09/1024-bit-rsa-encryption-cracked-by-carefully-starving-cpu-of-ele/ http://www.engadget.com/2010/03/09/1024-bit-rsa-encryption-cracked-by-carefully-starving-cpu-of-ele/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Since 1977, RSA public-key encryption has protected privacy and verified authenticity when using computers, gadgets and web browsers around the globe, with only the most brutish of brute force efforts (and 1,500 years of processing time) felling its 768-bit variety earlier this year. Now, three eggheads (or Wolverines, as it were) at the University of Michigan claim they can break it simply by tweaking a device's power supply. By fluctuating the voltage to the CPU such that it generated a single hardware error per clock cycle, they found that they could cause the server to flip single bits of the private key at a time, allowing them to slowly piece together the password. With a small cluster of 81 Pentium 4 chips and 104 hours of processing time, they were able to successfully hack 1024-bit encryption in OpenSSL on a SPARC-based system, without damaging the computer, leaving a single trace or ending human life as we know it. That's why they're presenting a paper at the Design, Automation and Test conference this week in Europe, and that's why -- until RSA hopefully fixes the flaw -- you should keep a close eye on your server room's power supply.

]]> crackcrackingcracksDATE 2010Date2010encryptionexploithackhackingOpenSSLpentium 4Pentium4public keypublic key encryptionPublicKeyPublicKeyEncryptionRSASPARCSSLssl encryptionSslEncryptionUniversity of MichiganUniversityOfMichigan Tue, 09 Mar 2010 02:47:00 -0500 21|19388881 <![CDATA[Windows 7 Activation Technologies Update now live, ready to be dodged]]> http://www.engadget.com/2010/02/24/windows-7-activation-technologies-update-now-live-ready-to-be-d/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/02/24/windows-7-activation-technologies-update-now-live-ready-to-be-d/ http://www.engadget.com/2010/02/24/windows-7-activation-technologies-update-now-live-ready-to-be-d/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Remember that polarizing Windows 7 Activation Technologies Update we told you about? You know, the one that helps you to "verify that the copy of Windows 7 that is running on your computer is activated correctly and is genuine?" It's available for download now through Windows Update, and it's not particularly easy to spot. The main label simply says "Update for Windows 7," though we'd be sure to avoid KB971033 if you weren't up for having this thing looking into your business. Your call, though.

[Thanks, Elijah and bighap]

]]> activationactivation technologies updateActivationTechnologiesUpdatecrackexploithackhackedhackerillegalmicrosoftoperating systemOperatingSystemospiracypirateupdateWindowsWindows 7Windows7 Wed, 24 Feb 2010 08:47:00 -0500 21|19371379 <![CDATA[Windows 7 Activation Technologies Update coming down the pike, will tell you things you (should) already know]]> http://www.engadget.com/2010/02/11/windows-7-activation-technologies-update-coming-down-the-pike/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/02/11/windows-7-activation-technologies-update-coming-down-the-pike/ http://www.engadget.com/2010/02/11/windows-7-activation-technologies-update-coming-down-the-pike/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Wondering why your PC has been infested with malware, random popups, intermittent shut downs and all sorts of other atypical garbage since the day you installed that downloaded copy of Windows 7? In case you aren't capable of determining that your copy of Windows isn't genuine (as in, you didn't buy it from a legitimate source), Microsoft is about to lend you a serious hand. In the "coming days," the software behemoth will be pushing out a new update for Windows Activation Technologies, which will look for over "70 known and potentially dangerous activation exploits." It sounds as if the update is intended to alert folks who purchased complete PCs from the back of their local White Van that they may have gotten ripped off, but either way, we're not particularly stoked about having yet another item running in the background, consuming system resources and telling us that we've been naughty. Thankfully it's a voluntary update, but keep your eyes peeled if you don't want to okay the installation accidentally.

[Thanks, Troy]

]]> activationactivation technologies updateActivationTechnologiesUpdatecrackexploithackhackedhackerillegalmicrosoftoperating systemOperatingSystemospiracypirateupdateWindowsWindows 7Windows7 Thu, 11 Feb 2010 20:59:00 -0500 21|19355235 <![CDATA[3G GSM encryption cracked in less than two hours]]> http://www.engadget.com/2010/01/15/3g-gsm-encryption-cracked-in-less-than-two-hours/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2010/01/15/3g-gsm-encryption-cracked-in-less-than-two-hours/ http://www.engadget.com/2010/01/15/3g-gsm-encryption-cracked-in-less-than-two-hours/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Looks like all that GSM code-cracking is progressing faster than we thought. Soon after the discovery of the 64-bit A5/1 GSM encryption flaw last month, the geniuses at Israel's Weizmann Institute of Science went ahead and cracked the KASUMI system -- a 128-bit A5/3 algorithm implemented across 3G networks -- in less than two hours. If you must know, the method applied is dubbed 'related-key sandwich attack' where multiple values of known differentials are processed through the first seven rounds of KASUMI, then using resulting quartets that are identified sharing key differences, subkey materials can be obtained in round eight to build up the 128-bit key. Sure, it's hardly snooping-on-the-go at this speed, but worryingly this was only an 'unoptimized implementation... on a single PC.' At the same time, the paper condemns the presumably red-faced GSM Association for moving from MISTY -- a more computationally-expensive but much stronger predecessor algorithm -- to KASUMI. Guess we'll just have to stick with Skype.

]]> 3ga53algorithmcallsciphercodecrackcrackedcracked codeCrackedCodedeciphereddecodeddigitalencryptiongsmgsm associationGsmAssociationisraelKASUMIMISTYprivacyprivacy algorithmPrivacyAlgorithmsecuritysnoopingspyingvoice callsVoiceCallsWeizmannWeizmann Institute of ScienceWeizmannInstituteOfSciencewireless Fri, 15 Jan 2010 06:45:00 -0500 21|19317869 <![CDATA[GSM call encryption code cracked, published for the whole world to see]]> http://www.engadget.com/2009/12/29/gsm-call-encryption-code-cracked-published-for-the-whole-world/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2009/12/29/gsm-call-encryption-code-cracked-published-for-the-whole-world/ http://www.engadget.com/2009/12/29/gsm-call-encryption-code-cracked-published-for-the-whole-world/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Did you know that the vast majority of calls carried out on the 3.5 billion GSM connections in the world today are protected by a 21-year old 64-bit encryption algorithm? You should now, given that the A5/1 privacy algorithm, devised in 1988, has been deciphered by German computer engineer Karsten Nohl and published as a torrent for fellow code cracking enthusiasts and less benevolent forces to exploit. Worryingly, Karsten and his crew of merry men obtained the binary codes by simple brute force -- they fed enough random strings of numbers in to effectively guess the password. The GSM Association -- which has had a 128-bit A5/3 key available since 2007, but found little takeup from operators -- has responded by having a whinge about Mr. Nohl's intentions and stating that operators could just modify the existing code to re-secure their networks. Right, only a modified 64-bit code is just as vulnerable to cracking as the one that just got cracked. It's important to note that simply having the code is not in itself enough to eavesdrop on a call, as the cracker would be faced with just a vast stream of digital communications -- but Karsten comes back to reassure us that intercepting software is already available in customizable open source varieties. So don't be like Tiger, keep your truly private conversations off the airwaves, at least for a while.

]]> a51algorithmcallschaos communication congressChaosCommunicationCongresscodecrackcrackedcracked codeCrackedCodedeciphereddecodeddigitalencryptiongsmgsm associationGsmAssociationkarsten nohlKarstenNohlprivacyprivacy algorithmPrivacyAlgorithmsecuritysnoopingspyingvoice callsVoiceCallswireless Tue, 29 Dec 2009 04:18:00 -0500 21|19296484 <![CDATA[Dev finds Windows Marketplace DRM severely lacking, easily circumventable]]> http://www.engadget.com/2009/10/08/dev-finds-windows-marketplace-drm-severely-lacking-easily-circu/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2009/10/08/dev-finds-windows-marketplace-drm-severely-lacking-easily-circu/ http://www.engadget.com/2009/10/08/dev-finds-windows-marketplace-drm-severely-lacking-easily-circu/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Microsoft's Windows Phones just left the chute a few days ago, and already it seems that ye old DRM is getting talked about -- and not in a good way. According to one Chainfire over at XDA-Developers, the so-called "copy protection" involved in keeping applications in place rather than strewn across a neighborhood of handsets is a pitiful joke, requiring just five minutes of tinkering to save the CAB files that the Marketplace app downloads to a separate folder. In other words, that relocated CAB file could be distributed to all of your friends, turning a single purchase into freeware for as many people as you know (or don't know, even). So, Marketplace devs -- does that make you feel all warm and fuzzy on the inside, or what?

[Thanks, GreeKNastY]

Filed under: Software, Windows Mobile, Mobile

]]> appapplicationscrackcrackedDRMmarketplacemobilesoftwarewindowswindows marketplacewindows mobileWindowsMarketplaceWindowsMobile Thu, 08 Oct 2009 20:36:00 -0400 21|19189788 <![CDATA[Dev finds Windows Marketplace DRM severely lacking, easily circumventable]]> http://www.engadget.com/2009/10/08/dev-finds-windows-marketplace-drm-severely-lacking-easily-circu/?utm_medium=feed&utm_source=Feed_Classic&utm_campaign=Engadget http://www.engadget.com/2009/10/08/dev-finds-windows-marketplace-drm-severely-lacking-easily-circu/ http://www.engadget.com/2009/10/08/dev-finds-windows-marketplace-drm-severely-lacking-easily-circu/?utm_source=Feed_Classic&utm_medium=feed&utm_campaign=Engadget#comments

Microsoft's Windows Phones just left the chute a few days ago, and already it seems that ye old DRM is getting talked about -- and not in a good way. According to one Chainfire over at XDA-Developers, the so-called "copy protection" involved in keeping applications in place rather than strewn across a neighborhood of handsets is a pitiful joke, requiring just five minutes of tinkering to save the CAB files that the Marketplace app downloads to a separate folder. In other words, that relocated CAB file could be distributed to all of your friends, turning a single purchase into freeware for as many people as you know (or don't know, even). So, Marketplace devs -- does that make you feel all warm and fuzzy on the inside, or what?

[Thanks, GreeKNastY]

Filed under: Cellphones, Software

]]> appapplicationscrackcrackedDRMmarketplacesoftwarewindowswindows marketplacewindows mobileWindowsMarketplaceWindowsMobile Thu, 08 Oct 2009 20:36:00 -0400 21|19189775