Feed aggregator
Scotland's Forgotten Rainforest [video]
Article URL: https://www.youtube.com/watch?v=0x-WUKT5hUo
Comments URL: https://news.ycombinator.com/item?id=39860525
Points: 1
# Comments: 0
Show HN: AI Recruiting
Fully automated AI phone screens for busy hiring managers and startups.
Comments URL: https://news.ycombinator.com/item?id=39860520
Points: 2
# Comments: 0
The Chandler Visual Programming Model
Article URL: https://github.com/EternityForest/KaithemAutomation/wiki/The-Chandler-Visual-Programming-Model
Comments URL: https://news.ycombinator.com/item?id=39860509
Points: 2
# Comments: 1
Vultr Just Betrayed Us
Article URL: https://mwl.io/archives/23498
Comments URL: https://news.ycombinator.com/item?id=39860498
Points: 1
# Comments: 0
Facebook: We install a root CA on the device and MitM all SSL traffic
Article URL: https://www.documentcloud.org/documents/24514262-discovery-brief-in-facebook-case
Comments URL: https://news.ycombinator.com/item?id=39860486
Points: 5
# Comments: 1
FOSSY open source conference is back in Portland
Article URL: https://sfconservancy.org/news/2024/mar/28/fossy-2024/
Comments URL: https://news.ycombinator.com/item?id=39860465
Points: 1
# Comments: 0
Joan Shakespeare
Article URL: https://www.bristol.ac.uk/news/2024/march/joan-shakespeare.html
Comments URL: https://news.ycombinator.com/item?id=39860458
Points: 1
# Comments: 0
Hay for cattle consumes nearly half the water drawn from Colorado River, study
Article URL: https://www.latimes.com/environment/story/2024-03-28/alfalfa-hay-beef-water-colorado-river
Comments URL: https://news.ycombinator.com/item?id=39860427
Points: 3
# Comments: 0
The slow death of Twitter is measured in disasters like the Baltimore collapse
Article URL: https://www.vox.com/technology/24113765/twitter-x-misinformation-baltimore-bridge-collapse
Comments URL: https://news.ycombinator.com/item?id=39860426
Points: 4
# Comments: 0
Backslash History
Article URL: https://en.wikipedia.org/wiki/Backslash
Comments URL: https://news.ycombinator.com/item?id=39860402
Points: 1
# Comments: 0
MuMuPlayer Pro: Android emulator for Apple Silicon Mac
Article URL: https://www.mumuplayer.com/mac/
Comments URL: https://news.ycombinator.com/item?id=39860391
Points: 1
# Comments: 1
Restricting Flipper is a Zero Accountability Approach to Security: Canadian Government Response to Car Hacking
On February 8, François-Philippe Champagne, the Canadian Minister of Innovation, Science and Industry, announced Canada would ban devices used in keyless car theft. The only device mentioned by name was the Flipper Zero—the multitool device that can be used to test, explore, and debug different wireless protocols such as RFID, NFC, infrared, and Bluetooth.
While it is useful as a penetration testing device, Flipper Zero is impractical in comparison to other, more specialized devices for car theft. It’s possible social media hype around the Flipper Zero has led people to believe that this device offers easier hacking opportunities for car thieves*. But government officials are also consuming such hype. That leads to policies that don’t secure systems, but rather impedes important research that exposes potential vulnerabilities the industry should fix. Even with Canada walking back on the original statement outright banning the devices, restricting devices and sales to “move forward with measures to restrict the use of such devices to legitimate actors only” is troublesome for security researchers.
This is not the first government seeking to limit access to Flipper Zero, and we have explained before why this approach is not only harmful to security researchers but also leaves the general population more vulnerable to attacks. Security researchers may not have the specialized tools car thieves use at their disposal, so more general tools come in handy for catching and protecting against vulnerabilities. Broad purpose devices such as the Flipper have a wide range of uses: penetration testing to facilitate hardening of a home network or organizational infrastructure, hardware research, security research, protocol development, use by radio hobbyists, and many more. Restricting access to these devices will hamper development of strong, secure technologies.
When Brazil’s national telecoms regulator Anatel refused to certify the Flipper Zero and as a result prevented the national postal service from delivering the devices, they were responding to media hype. With a display and controls reminiscent of portable video game consoles, the compact form-factor and range of hardware (including an infrared transceiver, RFID reader/emulator, SDR and Bluetooth LE module) made the device an easy target to demonize. While conjuring imagery of point-and-click car theft was easy, citing examples of this actually occurring proved impossible. Over a year later, you’d be hard-pressed to find a single instance of a car being stolen with the device. The number of cars stolen with the Flipper seems to amount to, well, zero (pun intended). It is the same media hype and pure speculation that has led Canadian regulators to err in their judgment to ban these devices.
Still worse, law enforcement in other countries have signaled their own intentions to place owners of the device under greater scrutiny. The Brisbane Times quotes police in Queensland, Australia: “We’re aware it can be used for criminal means, so if you’re caught with this device we’ll be asking some serious questions about why you have this device and what you are using it for.” We assume other tools with similar capabilities, as well as Swiss Army Knives and Sharpie markers, all of which “can be used for criminal means,” will not face this same level of scrutiny. Just owning this device, whether as a hobbyist or professional—or even just as a curious customer—should not make one the subject of overzealous police suspicions.
It wasn’t too long ago that proficiency with the command line was seen as a dangerous skill that warranted intervention by authorities. And just as with those fears of decades past, the small grain of truth embedded in the hype and fears gives it an outsized power. Can the command line be used to do bad things? Of course. Can the Flipper Zero assist criminal activity? Yes. Can it be used to steal cars? Not nearly as well as many other (and better, from the criminals’ perspective) tools. Does that mean it should be banned, and that those with this device should be placed under criminal suspicion? Absolutely not.
We hope Canada wises up to this logic, and comes to view the device as just one of many in the toolbox that can be used for good or evil, but mostly for good.
*Though concerns have been raised about Flipper Devices' connection to the Russian state apparatus, no unexpected data has been observed escaping to Flipper Devices' servers, and much of the dedicated security and pen-testing hardware which hasn't been banned also suffers from similar problems.
An art collective Ship of Theseus-ed a bathroom sink from the MET
Article URL: https://www.instagram.com/mschf/reel/C5ETUMMu9l8/
Comments URL: https://news.ycombinator.com/item?id=39860389
Points: 1
# Comments: 0
Show HN: I made a website to waste your money as fast as possible
Hi HN, I made a website where you can say “fuck you” for one dollar each. It helps if you have a lot of “fuck you” money and don’t know where to waste it.
Comments URL: https://news.ycombinator.com/item?id=39860385
Points: 1
# Comments: 1
America Made a Bet on Sports Gambling. The Backlash Is Here
Article URL: https://www.wsj.com/sports/ohtani-sports-gambling-scandal-927fdd22
Comments URL: https://news.ycombinator.com/item?id=39860374
Points: 3
# Comments: 1
Arraymancer – Deep Learning Nim Library
Article URL: https://github.com/mratsim/Arraymancer
Comments URL: https://news.ycombinator.com/item?id=39860365
Points: 8
# Comments: 0
Binary Tetris
Article URL: https://marianoguerra.org/msite/binary-tetris/
Comments URL: https://news.ycombinator.com/item?id=39860336
Points: 2
# Comments: 0
Plant-heavy 'flexitarian' diets could help limit global heating, study finds
Article URL: https://www.theguardian.com/environment/2024/mar/27/flexitarian-diets-global-warming-climate-change
Comments URL: https://news.ycombinator.com/item?id=39860312
Points: 1
# Comments: 0