Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
9 Coolest Hacks Of 2015
Threaded  |  Newest First  |  Oldest First
johnl929
50%
50%
johnl929,
User Rank: Apprentice
12/22/2015 | 1:43:00 AM
Car Hacking
@Kelly Jackson Higgins 

I do see how it is "Cool" to hack a car, but i hope for everyone that the companies who make these car use security in them, or one day we will have a real issue on our hands. 
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
12/30/2015 | 10:48:03 AM
Re: Car Hacking
"... how it is "Cool" to hack a car ..."

I hear you. It is cool to hack a car as if you are remotely controlling a drone. Is that really not fun? :--)).
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
12/22/2015 | 8:52:05 AM
Awesome but dangerous
I thought the car hack to be most interesting...however it was a very dangerous way to prove a point in my opinion.

 
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
12/30/2015 | 10:49:46 AM
Re: Awesome but dangerous
"... however it was a very dangerous way to prove a point ..."

I agree. At the same time it would not have made the news if it was not dangerous, would it?
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
12/25/2015 | 11:22:46 AM
Old ways is best.
This, among other reasons, is why I drive an older car.  Not hackable.  :)
Kelly Jackson Higgins
50%
50%
Kelly Jackson Higgins,
User Rank: Strategist
12/30/2015 | 10:06:07 AM
Re: Old ways is best.
Not so fast, @JoeStanganelli. Did you read my story about the older police cruisers that were hacked, too? Bad guys with purpose and access can hack non-networked cars, too. =) (See the Coolest Hacks story for more deets).

 

 
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
12/30/2015 | 10:55:03 AM
Re: Old ways is best.
"... older police cruisers that were hacked, too? "

Wow, I was just writing and wondering when this would happen too. :--))
Kelly Jackson Higgins
100%
0%
Kelly Jackson Higgins,
User Rank: Strategist
12/30/2015 | 11:03:22 AM
Re: Old ways is best.
Nothing was sacred--not even police cars. 
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
1/16/2016 | 10:15:46 AM
Re: Old ways is best.
"Nothing was sacred--not even police cars."

Sounds like the opening line of a Ray Bradbury story.
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
1/16/2016 | 10:14:17 AM
Re: Old ways is best.
@Kelly: Okay, fine.  I *really* drive an older car because I'm conservative and frugal.  Happy?  ;)

Of course, I don't really consider a 2012 vehicle "older."  Until recently I was driving a 2004 model -- and I don't even consider that *that* old.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
12/30/2015 | 10:52:10 AM
Re: Old ways is best.
"Old ways is best."

Ture. You never know, they may figure out a way to hack the hardware, with this trend that we go through anything is possible. :--)))
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
12/30/2015 | 10:46:11 AM
Car hacking
My favorite was the car hacking in 2015. We have been talking about for years that cars intelligent so target for the bad guys bit nobody was listening, it made a little bit news in 2015.


Stop Defending Everything
Kevin Kurzawa, Senior Information Security Auditor,  2/12/2020
Small Business Security: 5 Tips on How and Where to Start
Mike Puglia, Chief Strategy Officer at Kaseya,  2/13/2020
5 Common Errors That Allow Attackers to Go Undetected
Matt Middleton-Leal, General Manager and Chief Security Strategist, Netwrix,  2/12/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
How Enterprises Are Developing and Maintaining Secure Applications
How Enterprises Are Developing and Maintaining Secure Applications
The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-7505
PUBLISHED: 2020-02-18
Stack-based buffer overflow in the gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LZW stream in a GIF file.
CVE-2015-7567
PUBLISHED: 2020-02-18
SQL injection vulnerability in Yeager CMS 1.2.1 allows remote attackers to execute arbitrary SQL commands via the "passwordreset&token" parameter.
CVE-2012-0718
PUBLISHED: 2020-02-18
IBM Tivoli Endpoint Manager 8 does not set the HttpOnly flag on cookies.
CVE-2019-10791
PUBLISHED: 2020-02-18
promise-probe before 0.10.0 allows remote attackers to perform a command injection attack. The file, outputFile and options functions can be controlled by users without any sanitization.
CVE-2009-5146
PUBLISHED: 2020-02-18
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.