Author Archives: Jonathan Bennett

Repairing a Vintage HP 9825 the Hard Way

Posted on May 19, 2021 by Jonathan Bennett

[CuriousMarc] is at it again, this time trying to undo the damage from a poorly designed power circuit, that fried the internals of his HP 9825 computer. (Video, embedded below.) …read more Continue reading Repairing a Vintage HP 9825 the Hard Way→

This Week in Security: Fragattacks, The Pipeline, Codecov, and IPv6

Posted on May 14, 2021 by Jonathan Bennett

Some weeks are slow, and the picking are slim when discussing the latest security news. This was not one of those weeks. First up is Fragattacks, a set of flaws …read more Continue reading This Week in Security: Fragattacks, The Pipeline, Codecov, and IPv6→

This Week in Security: BYOVD, Spectre Vx, More Octal Headaches, and ExifTool

Posted on May 7, 2021 by Jonathan Bennett

I learned a new acronym while reading about a set of flaws in the Dell BIOS update system. Because Dell has patched their driver, but hasn’t yet revoked the signing …read more Continue reading This Week in Security: BYOVD, Spectre Vx, More Octal Headaches, and ExifTool→

This Week in Security: Dan Kaminsky, Banned from Kernel Development, Ransomware, And The Pentagon’s IPv4 Addresses

Posted on April 30, 2021 by Jonathan Bennett

This week we’re starting off with a somber note, as Dan Kaminsky passed at only 42, of diabetic ketoacidosis. Dan made a name for himself by noticing a weakness in …read more Continue reading This Week in Security: Dan Kaminsky, Banned from Kernel Development, Ransomware, And The Pentagon’s IPv4 Addresses→

This Week in Security: NAME:WRECK, Signal Hacks Back, Updates, and More

Posted on April 23, 2021 by Jonathan Bennett

NAME:WRECK is a collection of vulnerabilities in DNS implementations, discovered by Forescout and JSOF Research. This body of research can be seen as a continuation of Ripple20 and AMNESIA:33, as …read more Continue reading This Week in Security: NAME:WRECK, Signal Hacks Back, Updates, and More→

This Week in Security: Pwn2own, Zoom Zero Day, Clubhouse Data, and an FBI Hacking Spree

Posted on April 16, 2021 by Jonathan Bennett

Our first story this week comes courtesy of the Pwn2own contest. For anyone not familiar with it, this event is held twice a year, and features live demonstrations of exploits …read more Continue reading This Week in Security: Pwn2own, Zoom Zero Day, Clubhouse Data, and an FBI Hacking Spree→

SV Seeker Is Recycling Batteries

Posted on April 14, 2021 by Jonathan Bennett

SV Seeker is a home-made boat currently being built by [Doug Jackson] just north of Tulsa, Oklahoma. It’s a bit different than what you might imagine as a typical DIY …read more Continue reading SV Seeker Is Recycling Batteries→

This Week in Security: The Facebook Leak, The YouTube Leak, and File Type Confusion

Posted on April 9, 2021 by Jonathan Bennett

Facebook had a problem, way back in the simpler times that was 2019. Something like 533 million accounts had the cell phone number associated with the account leaked. It’s making …read more Continue reading This Week in Security: The Facebook Leak, The YouTube Leak, and File Type Confusion→

This Week in Security: Ubiquity Update, PHP Backdoor, And Netmask

Posted on April 2, 2021 by Jonathan Bennett

Back in January, we covered the news that Ubiquiti had a breach of undisclosed severity. One reader pointed out the compromise of a handful of devices as potentially related. With …read more Continue reading This Week in Security: Ubiquity Update, PHP Backdoor, And Netmask→

This Week in Security: XcodeSpy, Insecure SMS, and Partial Redactions

Posted on March 26, 2021 by Jonathan Bennett

There seems to be a new trend in malware, targeting developers and their development and build processes. The appeal is obvious: rather than working to build and market a malicious …read more Continue reading This Week in Security: XcodeSpy, Insecure SMS, and Partial Redactions→