Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!



New App Detects Government Stingray Cell Phone Trackers

terbo Re detecting/creating (71 comments)

The primary methods of detecting IMSI-Catchers and Fake BTS's is described here (pdf), and due to the variety of manufacturers' baseband interfaces, there wasn't an easy way to uniformly detect these devices.

IMSI-Catcher doesn't seem to work on my old, non-GSM Android, but I've also found OsmocomBB to be interesting; it's an open source GSM broadband implementation that seems to work on some older, cheap phones, like some motorola candy bars; check out Catcher Catcher for more info.

In terms of the IMSI Catcher devices themselves, I've seen estimations of $20 to $1500 to make one, from using cheap RTL-SDR devices to a full SDR (~$400-1500) to run a full fake GSM BTS.

The legal usage of IMSI-Catchers doesn't seem clear to me. It is essentially a MiTM attack, which at least android devices seem to go out of their way to ignore. The law enforcement usage seems worded in ways that would just confuse 50+ year old judges. And they have to go far out of the way to make sure that you don't notice an interruption in service, by forwarding any on-going communications to their intended recipients and tunneling them back, if they go are run over time and don't disassociate.

I haven't seen any estimation on how often these things are used. Besides, hacked femtocell's are probably also responsible for a lot of these rogue BTS's; I wonder if that would be discovered with such detection methods?

about three weeks ago

Researchers Forecast the Spread of Diseases Using Wikipedia

terbo Re:Take that Educators! (61 comments)

The teachers might not know about 'Talk Pages', 'Revisions', and 'What Links Here':
things that make wikipedia much more advanced than traditional encyclopedias.

about 2 months ago

Breaching Air-Gap Security With Radio

terbo PDF (80 comments)

AirHopper: Bridging the Air-Gap between Isolated Networks and Mobile Phones using Radio frequencies - https://cdn.anonfiles.com/1414...

But now theres an app for that ...

about 3 months ago

Austin Airport Tracks Cell Phones To Measure Security Line Wait

terbo Re:Who cares (168 comments)

Modern IOS versions randomize the MAC used for passive wifi scans. I'd imagine android is also doing the same.

Its been said that this is how they have changed IOS 8, however
I've only noticed that they have decreased the number of beacons it sends greatly;
the same MAC is used for the probes; and given the ability to profile devices passivly [pdf],
the MAC may not be the only thing to worry about.

If you have a wireless card that can go into monitor (radio promisc) mode,
you can see all of the probes constantly travelling around us:

tshark -i mon0 -R 'wlan.fc.type_subtype eq 4' -T fields -e wlan.sa -e wlan_mgt.ssid -e radiotap.dbm_antsignal -e frame.time -E separator=, -E quote=d

Thing is the penetration of these monitoring techniques is difficult to
ascertain, I've been looking for them when I visit big retailers, but
according to people like Glenn Wilkinson and Brendan O'Connar,
these may be fairly easy to setup and in wide use surreptitiously.
(Authors of Snoopy and CreepyDOL)

about 3 months ago

DoT Proposes Mandating Vehicle-To-Vehicle Communications

terbo Sounds good... (261 comments)

But also sounds like the bridge that connects one of the major avenues of exploitation from the movie Dragon Day ...

about 5 months ago

Study: People Are Biased Against Creative Thinking

terbo Re:The problem: (377 comments)

You realise that it is unscientific to prove or disprove a god right? You simply cannot have a scientific concensus on the matter outside of a god isn't needed to explain the world. If it is more then that, it simply isn't scientific because you cannot test supernatural beings or events.


about a year ago

Death and the NSA: A Q&A With Bruce Schneier

terbo Re:false flag? (149 comments)

The snowden leaks almost seem like a false flag type situation.

Obvious troll. Snowden is infallable. We must believe in him.

about a year ago

Death and the NSA: A Q&A With Bruce Schneier

terbo Re: the children of men (149 comments)

Totally sent me on a tangent to study Ecclesasties.

about a year ago

Why It's Bad That Smartphones Have Banished Boredom

terbo Not such a good replacement. (351 comments)

You stare at your Iphone.

I'll stare at the fire.

Thanks, though.

more than 2 years ago

How Long Do You Want To Live?

terbo Life, the lesson (813 comments)

I'd say getting to see my grand kids would be the ultimate.
Telling them a few of the things I had seen first hand.

Beyond that, immortality seems silly, some come here
to learn lessons, but want to stay in school, apparently.

Health and longevity have been simple, good thoughts,
good diet, good exersize, and good company.

more than 2 years ago

Chinese Military Admits Existence of Cyberwarfare Unit

terbo Duh (153 comments)

30 units of units..

more than 3 years ago

US Citizen Visiting Thailand Arrested For Blog Posting

terbo Re:Note to self: (456 comments)

the revolution where everyone understands that the map is not the territory?

more than 3 years ago

New Malware Simulates Hard Drive Failure

terbo TLD4 Variant? (294 comments)

I think this is a TLD4 variant, I've had to remove it several times
over the past several months, pretty persistent but the usual.

more than 3 years ago

McDonald's Hacked and Customer Data Stolen

terbo How many did they say? (178 comments)

"McDonald's did not disclose how many people were impacted .."

I saw a sign that said, "99 Million customers hacked".

QOTD: "He's on the same bus, but he's sure as hell got a different ticket."

more than 4 years ago

The Economics of Federal Cloud Computing Analyzed

terbo Re:Ask the experts: what is cloud computing? (85 comments)

"That term is so vague, or shall we say nebulous, that it can't be used for meaningful statements."
"Don't pay attention to who has your data, or who controls all of the computing you do, just ignore it."

Thanks a lot for the video and link/post. I wonder why googling 'a free digital society'
does not find it. Not even the FSF page has much info on the talk.

more than 5 years ago

Repulsive Force Discovered In Light

terbo Nice. But. (176 comments)

While discovering new properties of old phenomena is interesting,
does anyone ever question the 'bravado' of the wording of such

Does it inhibit later discoveries, in creating artificial limitations
through language and subsequently expectation?

more than 5 years ago

Epic Sticking With Classic Controllers For Now

terbo Re:Hope they don't .. (64 comments)

The fact that this post is modded as flamebait shows how these ideas
are merely being censored, instead of discussed.

But, maybe you don't want to know that you *may* be supporting war and
murder with your way of life, so you can play video games and use ipods.

Either way. It will come to an end.

more than 5 years ago



Google users sue company over 'deceptive' privacy changes

terbo terbo writes  |  more than 2 years ago

terbo writes "Three Google users have filed a lawsuit against Google Inc. over changes to its privacy policy that combines user information across a number of company services." A Google blog post responds "our updated Privacy Policy makes our privacy practices easier to understand, and it reflects our desire to create a seamless experience for our signed-in users.", “The rapid innovation in technology, which is wonderful, must not also become an open invitation to violate people’s privacy .." voiced a Senator calling for a privacy change.
".. it was revealed that Android Apps can copy photos without explicit user permission, iphone and now google android phones give access to users photo libraries when given access to the locational services. ", "The reasoning behind Android’s ability to let app developers access personal smartphone photos without permission is understandable, but it actually goes against a core Android design principle." says a blog addressing the problem."

Link to Original Source



r u a dreamr

terbo terbo writes  |  more than 6 years ago

are you? some people dont remember their dreams. i dont remember when im awake. but i know what goes on when i dream.



terbo terbo writes  |  more than 11 years ago

Spoke on #slashdot. Commence cyclical-slashdot effect.


In a dream dreaming you dreaming me dreaming us, whose lucid?

Slashdot Login

Need an Account?

Forgot your password?