Too funny how Hollywood portrayed hacking in the 80s.
July 2026 S M T W T F S 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31
Too funny how Hollywood portrayed hacking in the 80s.
In December of 2013, US Senator Edward Markey sent a letter to car manufacturers in regards to securing vehicles against cyber-attacks.
There is a $30 hacking kit that can be used to steal BMW cars and there is a $20 gadget that can kill cars.
So far, Markey’s office has not released any information. There are 2 heroes, in my opinion, who can help save the day. In May, I posted an article about Car Hacking, where Dr. Charlie Miller and Chris Valasek took on the challenge of reverse engineering two vehicles and doing some real hacking. They will be at this upcoming Black Hat conference in August and though they are going to talk about wireless attack points in vehicles, they are also going to create an anti-hacking device that plugs into an OBD2 port. Why? To basically, openly challenge manufacturers to build one and throw it into their vehicles.
and awesome! Vijay Haripal created this horribly wonderful video. Very creative, right? No lie, I liked it.
I was in Hawaii on vacation from the 4th of July to the 17th. If you have an Android phone with GPS on, you can access your location history. Now of course, like most technology, this can be really cool, but at the same time, it can be data you can be worried about.
Should you have an easily guessed password or have not enabled two-factor authentication to access your Google stuffs, how easy could a technology savvy bad-guy stalk you? What if it is your child’s phone? What if technology savvy bad-guy is also a pedophile or murderer? The data that tracks you can be helpful, it can even be fun. Google photos creates storyboards with locations and timestamps. It’s a lot of fun. That same data can betray you. It will map where you sleep for 8 hours night after night, letting those who have access to know where you live. It will map where you spend your time from 8am-5pm, calling that place work. Said bad-guy will know when to rob your house, make your life a living hell, and where and when to be to avoid you.
Here is a link to Google’s 2-step verification page. http://www.google.com/landing/2step/. Your data can be worth more than the hassle of the extra steps of logging in.
We just got back from a 13 day vacation in Hawaii. We were in O’ahu and had a fairly busy schedule, but with so much time spent, we also had a couple of days where we didn’t do anything. That was nice. We had a great time and took many pictures. I wanted my family to have a great and memorable vacation and I think, Mission Accomplished!
It was really cool that we met up with Nestor, Sunshine, Andrew and his family, and even Kevin.
It was also very nice of Brandee and Brent to watch our house and for Pat and Courtney to take on the dogs.
We went everywhere we wanted to go, see?

Mom and I recreated an old picture!

I tried to give accurate reviews for the places we went and experienced. Check out my Yelping on Yelp.
I recommend watching the video, its quite enjoyable… then go to the pictures afterwards to peruse at your leisure.
Did you watch the video to the end? Can you believe you just saw 458 pictures in the last five minutes?
For the pictures, click here.

The definition of cyber risk is an exposure to the chance of injury or loss by means of computerized attack.
Here is a great article about the six trends of Cyber Risk for 2014.
A vulnerability was found by some white-hat hackers who researched how to obtain the wifi passwords of homes that had super cool lights that could be turned on, off, or dimmed by an app on a phone (both IOS and Android). This was possible by anyone within 30 feet of a bulb because the pre-shared key is never changed, thusly it is easier to determine what the password is. Researchers say “Armed with knowledge of the encryption algorithm, key, initialization vector, and an understanding of the mesh network protocol we could then inject packets into the mesh network, capture the Wi-Fi details, and decrypt the credentials, all without any prior authentication or alerting of our presence,” .

More details here.
In the not too distant past, Adam and Heather woke in the middle of the night to hear someone screaming at their baby through their Internet connected baby monitor.
. If I was a new parent with little to no knowledge of the Internet, that would freak me out. More about this story here.
This is why user awareness is a must. Even for those who have no interest in technology. We cyber-security minded folk must engage with those around us and educate them on possible threats. When devices are engineered, it should force the change of defaults and give depictions of why defaults should be changed to make people understand. Not just in text either, but with pictures or videos, or voice. The Internet of Things, where every device is connected to the Internet, will be a scary place.
According to this study, “Despite everything you’re read about cyber security, despite all the breaches in the news, the fact is well-intentioned business people are still surprisingly behind the times.”
Hackers aren’t the only ones to blame when a breach occurs, it usually is accompanied with the mishandling of information that should be getting protected. In short, companies need to have a better definition of a threat. Not mentioned in the article, but posted here for your enjoyment, is why my personal favorite way of calculating the threats when performing risk assessments, the Basel II event type categories. See below.
The event categories assist with expanding the basic idea of threats so management doesn’t limit their view to just the bad guys. While performing a risk assessment, create your listing of threats after each category and mark down their likelihood. For example, Damage to Physical Assets – Flood (very low likelihood).
For your reader, you may want a chart of your definition of what very low means. I base it on a year, so in a year, to me, very low can be defined as once in ten years.
Lorrie Faith Cranor studied thousands of real passwords to figure out the surprising, very common mistakes that users — and secured sites — make to compromise security. And how, you may ask, did she study thousands of real passwords without compromising the security of any users? That’s a story in itself. It’s secret data worth knowing, especially if your password is 123456. Lorrie is the creator of the password dress if you follow the news.
Chris Domas is a cybersecurity researcher, operating on what’s become a new front of war, “cyber.” In this engaging talk, he shows how researchers use pattern recognition and reverse engineering (and pull a few all-nighters) to understand a chunk of binary code whose purpose and contents they don’t know.