Month: February 2024
Popular video doorbells can be easily hijacked, researchers find | TechCrunch
submitted by /u/hasvvath_27 [link] [comments]
submitted by /u/hasvvath_27
[link] [comments]
Watch: World’s fastest camera drone races F1 champ Max Verstappen
Dutch Drone Gods and Red Bull have unveiled what they claim to be the world’s fastest camera drone. Capable of top speeds in excess of 350kph, the manually piloted first-person view (FPV) drone “could change how people watch Formula 1.” At least that’s what reigning F1 champion Max Verstappen said after the UAV successfully chased him on a full lap around the UK’s famous Silverstone circuit. All that while shooting the awesome 4K footage displayed in the video below: In early 2023, Red Bull presented the Netherlands-based drone video production company with a seemingly impossible task: to track and film…This story continues at The Next Web
Dutch Drone Gods and Red Bull have unveiled what they claim to be the world’s fastest camera drone. Capable of top speeds in excess of 350kph, the manually piloted first-person view (FPV) drone “could change how people watch Formula 1.” At least that’s what reigning F1 champion Max Verstappen said after the UAV successfully chased him on a full lap around the UK’s famous Silverstone circuit. All that while shooting the awesome 4K footage displayed in the video below: In early 2023, Red Bull presented the Netherlands-based drone video production company with a seemingly impossible task: to track and film…
This story continues at The Next Web
Roll1ng Thund3rz Unveils Web3War® v3.0: Pioneering the Future of Gaming with Skill2Earn Dynamics
Singapore, Singapore, February 29th, 2024, Chainwire In a monumental leap forward for the gaming industry, Roll1ng Thund3rz (RTz), the pioneering Web3 gaming company, proudly announces the launch of Web3War® v3.0. This latest iteration introduces game-changing features, with Skill2Earn taking center
The post Roll1ng Thund3rz Unveils Web3War® v3.0: Pioneering the Future of Gaming with Skill2Earn Dynamics first appeared on Tech Startups.
Singapore, Singapore, February 29th, 2024, Chainwire In a monumental leap forward for the gaming industry, Roll1ng Thund3rz (RTz), the pioneering Web3 gaming company, proudly announces the launch of Web3War® v3.0. This latest iteration introduces game-changing features, with Skill2Earn taking center […]
The post Roll1ng Thund3rz Unveils Web3War® v3.0: Pioneering the Future of Gaming with Skill2Earn Dynamics first appeared on Tech Startups.
Apple says it’ll ‘break new ground’ in generative AI – here’s what to expect
Apple will soon bring generative AI to its devices, which could mark a huge upgrade for Apple fans.
Tim Cook has spent the last few months preparing the Apple faithful for the company’s first foray into generative artificial intelligence (AI), and has repeatedly said the company is on the brink of launching its own AI tool to compete with the likes of ChatGPT. Now, the Apple boss has just dropped another huge hint of what we can expect to see.
Speaking at Apple’s annual shareholders meeting (via MacRumors), Cook claimed that the company will “break new ground” in the field of generative AI – and this wasn’t some vague pledge that we’ll have to wait years to see come to fruition, as Cook said it’s going to happen this year.
In early February 2024, the Apple CEO said there was “a huge opportunity for Apple with generative AI.” In his most recent call, he was in a similarly bullish mood when he announced that “We believe it will unlock transformative opportunities for our users.”
Of course, Cook didn’t go into detail on what exactly those opportunities will be – no doubt he would rather wait until Apple’s Worldwide Developers Conference (WWDC) in June to reveal that. But there are plenty of areas where we expect to see generative AI make its mark on Apple’s products.
Coming soon to iOS 18
(Image credit: Koshiro K via Shutterstock )
Much like how Microsoft has infused its Copilot AI into its suite of homegrown apps, we expect Apple will do something similar with its own AI model. Apps like Pages and Numbers could get a virtual assistant to make your work easier, while Apple Music might get a virtual DJ similar to what Spotify currently offers. This is all speculation at the moment, but it’s not hard to see how Apple might follow its rivals in these areas.
There’s a different rumor that has a bit more corroboration, though: AI could soon enhance Siri. Apple’s assistant has been lagging behind competitors for years now, and generative AI could give it the shot in the arm it so desperately needs. According to Bloomberg’s Mark Gurman – who has previously leaked highly accurate information about Apple’s future plans – Siri could get a “big upgrade” with this year’s iOS 18, which might be “one of the biggest iOS updates – if not the biggest – in the company’s history.”
That means Apple has a chance to finally catch up with its rivals when it comes to generative AI, and put right years of poor Siri performance. With just a few months to go until iOS 18 debuts at WWDC, we’re waiting with bated breath.
You might also like
Apple says AI features are coming to your iPhone ‘later this year’ – here’s what to expectiOS 18 tipped to debut Apple’s new generative AI – and that’s good news for SiriiOS 18: rumored features, predicted release date, and everything we want to see
$30 doorbell cameras have multiple serious security flaws, says Consumer Reports
Models still widely available on e-commerce sites after issues reported.
Enlarge / Consumer Reports’ investigation suggests that, should this delivery person press and hold the bell button and then pair using Eken’s app, he could see if other delivery people get such a perfunctory response. (credit: Eken)
Video doorbell cameras have been commoditized to the point where they’re available for $30–$40 on marketplaces like Amazon, Walmart, Temu, and Shein. The true cost of owning one might be much greater, however.
Consumer Reports (CR) has released the findings of a security investigation into two budget-minded doorbell brands, Eken and Tuck, which are largely the same hardware produced by the Eken Group in China, according to CR. The cameras are further resold under at least 10 more brands. The cameras are set up through a common mobile app, Aiwit. And the cameras share something else, CR claims: “troubling security vulnerabilities.”
Do You Still Need to File Your Taxes if the Government Shuts Down This Week? – CNET
If the IRS is part of a government shutdown, will you still need to file a tax return?
If the IRS is part of a government shutdown, will you still need to file a tax return?
This ‘Amazon’s Choice’ video doorbell could let just about anyone spy on you
An “Aiwit” doorbell camera. There are many like it. | Image via Amazon
Does your video doorbell look anything like the one in the picture? Perhaps you bought it for cheap at Amazon, Temu, Shein, Sears, or Walmart? Does it use the Aiwit app?
Consumer Reports is reporting the security on these cameras is so incredibly lax, anybody could walk up to your house, take over your doorbell, and permanently get access to the still images it captures — even if you take control back.
The cameras are sold by a Chinese company called Eken under at least ten different brands, including Aiwit, Andoe, Eken, Fishbot, Gemee, Luckwolf, Rakeblue and Tuck. Consumer Reports says online marketplaces like Amazon sell thousands of them each month. Some of them have even carried the Amazon’s Choice badge, its dubious seal of approval.
Yet Amazon didn’t even respond to Consumer Reports findings last we’d heard, much less pull the cameras off its virtual shelves. Here’s one of them on sale right now. Shopping app Temu, at least, told CR it would halt sales after hearing just how incredibly easy they are to hack.
Frankly, “hack” might be too strong a word
Not only do these cameras reportedly expose your public-facing IP address and Wi-Fi network in plaintext to anyone who can intercept your network traffic (hope you aren’t checking them on public Wi-Fi!), they reportedly broadcast snapshots of your front porch on web servers that don’t ask for any username or password.
One Consumer Reports security staffer was able to freely access images of a colleague’s face from an Eken camera on the other side of the country, just by figuring out the right URL.
Worse, all a bad actor would need to figure out those web addresses is the serial number of your camera.
Even worse, a bad actor could get that serial number simply by holding down your doorbell button for eight seconds, then re-pairing your camera with their account in the Aiwit smartphone app. And until you take control of your own camera again, they’ll get video and audio as well.
Worse still, that bad actor could then share those serial numbers with anyone else on the internet. Consumer Reports tells us that once the serial number is out in the wild, a bad actor can write a script that would just keep downloading any new images generated by the camera.
Image: Eken
“Your privacy is something that we value as much as you do,” reads Eken’s video doorbell website.
I guess you could say “Well, these cameras only face outdoors and I don’t care about that,” but Eken advertises indoor-facing cameras as well. (Consumer Reports tells us it hasn’t tested other Eken models yet.) I also really don’t want bad actors to know exactly when I leave my home.
You might say “Ah, this isn’t a big threat because a bad actor needs local access to the camera” — but that assumes they can’t figure out a way to randomly hit upon working serial numbers, or recruit porch pirates to canvas neighborhoods. At least the serial numbers seem to be randomized, not incremental, Consumer Reports tells us.
You also might say “Won’t Eken just stop hosting these images at freely accessible URLs?” That’d be good, but it apparently couldn’t be bothered to respond to Consumer Reports’ requests for comment.
Do the Aiwit servers do anything at all to prevent hackers from just randomly trying URLs until they find images from people’s cameras? If so, Consumer Reports hasn’t seen it yet.
“I have made tens of thousands of requests without any defense mechanisms triggering,” Consumer Reports’ privacy and security engineer Steve Blair tells The Verge via a spokesperson. “In fact, I was purposely noisy (hundreds of requests at once, from a single IP/source, repeated every couple of minutes) to try to determine if any defenses were present. I did not see any limitations.”
At least Consumer Reports isn’t yet suggesting this has been exploited in the wild.
We didn’t independently confirm these flaws, but we did read through the vulnerability reports that CR shared with Eken and another brand named Tuck. And it wouldn’t be the first time a “security” camera company has neglected basic security practices and misled customers.
Image: Eken
Eken sells a wide variety of video doorbells under an even wider variety of brands. Consumer Reports points out that the buttons and sensor spacing are similar, though.
Anker admitted its always-encrypted Eufy cameras weren’t always encrypted after my colleagues and I were able to access an unencrypted live stream from across the country, using an address that, like Eken, consisted largely of the camera’s serial number.
Meanwhile, Wyze recently let at least 13,000 customers briefly see into a stranger’s property — the second time it’s done that — by sending camera feeds to the wrong users. And that was after the company swept a different security vulnerability under the rug for three whole years.
But the Eken vulnerability might even be worse, because it sounds far easier to exploit, and because they’re white-labeled under so many different brands that it’s harder to protest or police.
Consumer Reports says that even after Temu pulled some of the worrying doorbells, it kept selling others — and that as of late February, despite its warnings to retailers, most of the products it found were still on sale.
An “Aiwit” doorbell camera. There are many like it. | Image via Amazon
Does your video doorbell look anything like the one in the picture? Perhaps you bought it for cheap at Amazon, Temu, Shein, Sears, or Walmart? Does it use the Aiwit app?
Consumer Reports is reporting the security on these cameras is so incredibly lax, anybody could walk up to your house, take over your doorbell, and permanently get access to the still images it captures — even if you take control back.
The cameras are sold by a Chinese company called Eken under at least ten different brands, including Aiwit, Andoe, Eken, Fishbot, Gemee, Luckwolf, Rakeblue and Tuck. Consumer Reports says online marketplaces like Amazon sell thousands of them each month. Some of them have even carried the Amazon’s Choice badge, its dubious seal of approval.
Yet Amazon didn’t even respond to Consumer Reports findings last we’d heard, much less pull the cameras off its virtual shelves. Here’s one of them on sale right now. Shopping app Temu, at least, told CR it would halt sales after hearing just how incredibly easy they are to hack.
Not only do these cameras reportedly expose your public-facing IP address and Wi-Fi network in plaintext to anyone who can intercept your network traffic (hope you aren’t checking them on public Wi-Fi!), they reportedly broadcast snapshots of your front porch on web servers that don’t ask for any username or password.
One Consumer Reports security staffer was able to freely access images of a colleague’s face from an Eken camera on the other side of the country, just by figuring out the right URL.
Worse, all a bad actor would need to figure out those web addresses is the serial number of your camera.
Even worse, a bad actor could get that serial number simply by holding down your doorbell button for eight seconds, then re-pairing your camera with their account in the Aiwit smartphone app. And until you take control of your own camera again, they’ll get video and audio as well.
Worse still, that bad actor could then share those serial numbers with anyone else on the internet. Consumer Reports tells us that once the serial number is out in the wild, a bad actor can write a script that would just keep downloading any new images generated by the camera.
Image: Eken
“Your privacy is something that we value as much as you do,” reads Eken’s video doorbell website.
I guess you could say “Well, these cameras only face outdoors and I don’t care about that,” but Eken advertises indoor-facing cameras as well. (Consumer Reports tells us it hasn’t tested other Eken models yet.) I also really don’t want bad actors to know exactly when I leave my home.
You might say “Ah, this isn’t a big threat because a bad actor needs local access to the camera” — but that assumes they can’t figure out a way to randomly hit upon working serial numbers, or recruit porch pirates to canvas neighborhoods. At least the serial numbers seem to be randomized, not incremental, Consumer Reports tells us.
You also might say “Won’t Eken just stop hosting these images at freely accessible URLs?” That’d be good, but it apparently couldn’t be bothered to respond to Consumer Reports’ requests for comment.
Do the Aiwit servers do anything at all to prevent hackers from just randomly trying URLs until they find images from people’s cameras? If so, Consumer Reports hasn’t seen it yet.
“I have made tens of thousands of requests without any defense mechanisms triggering,” Consumer Reports’ privacy and security engineer Steve Blair tells The Verge via a spokesperson. “In fact, I was purposely noisy (hundreds of requests at once, from a single IP/source, repeated every couple of minutes) to try to determine if any defenses were present. I did not see any limitations.”
At least Consumer Reports isn’t yet suggesting this has been exploited in the wild.
We didn’t independently confirm these flaws, but we did read through the vulnerability reports that CR shared with Eken and another brand named Tuck. And it wouldn’t be the first time a “security” camera company has neglected basic security practices and misled customers.
Image: Eken
Eken sells a wide variety of video doorbells under an even wider variety of brands. Consumer Reports points out that the buttons and sensor spacing are similar, though.
Anker admitted its always-encrypted Eufy cameras weren’t always encrypted after my colleagues and I were able to access an unencrypted live stream from across the country, using an address that, like Eken, consisted largely of the camera’s serial number.
Meanwhile, Wyze recently let at least 13,000 customers briefly see into a stranger’s property — the second time it’s done that — by sending camera feeds to the wrong users. And that was after the company swept a different security vulnerability under the rug for three whole years.
But the Eken vulnerability might even be worse, because it sounds far easier to exploit, and because they’re white-labeled under so many different brands that it’s harder to protest or police.
Consumer Reports says that even after Temu pulled some of the worrying doorbells, it kept selling others — and that as of late February, despite its warnings to retailers, most of the products it found were still on sale.
Apple’s iPod Hi-Fi Launched 18 Years Ago – and Lasted Just 554 Days
Reflecting on the iPod Hi-Fi, launched 18 years ago, many long-time readers may remember it as Apple’s ambitious foray into the home audio market, long before smart speakers were a thing.
Priced at $349, it promised audiophile-quality sound within a compact design, offering home audio without the clutter of traditional stereo components. It featured a built-in Universal Dock for iPods, providing a seamless integration that allowed users to charge their device while playing music.
With its capability to produce a wide frequency range and room-filling sound without distortion, the iPod Hi-Fi combined Jony Ive’s minimalist design aesthetic and high-quality audio performance. Its versatility was further highlighted by the inclusion of an Apple Remote, and the option for AC or battery power, making it portable.
Many products in the iPod series achieved remarkable success, but the iPod Hi-Fi wasn’t one of them. The device was praised for its big rich sound, bass response, and ease of use, but its high price was a turn-off for many Apple device users. Also, the connector prominently positioned atop the speaker unit exposed docked iPods to potential knocks and damage.
Despite its innovative features, the iPod Hi-Fi remained a niche product in Apple’s lineup, and the combination iPod dock/speaker system never took off. Apple discontinued it on September 5, 2007, just 554 days after its launch.This article, “Apple’s iPod Hi-Fi Launched 18 Years Ago – and Lasted Just 554 Days” first appeared on MacRumors.comDiscuss this article in our forums
Reflecting on the iPod Hi-Fi, launched 18 years ago, many long-time readers may remember it as Apple’s ambitious foray into the home audio market, long before smart speakers were a thing.
Priced at $349, it promised audiophile-quality sound within a compact design, offering home audio without the clutter of traditional stereo components. It featured a built-in Universal Dock for iPods, providing a seamless integration that allowed users to charge their device while playing music.
With its capability to produce a wide frequency range and room-filling sound without distortion, the iPod Hi-Fi combined Jony Ive’s minimalist design aesthetic and high-quality audio performance. Its versatility was further highlighted by the inclusion of an Apple Remote, and the option for AC or battery power, making it portable.
Many products in the iPod series achieved remarkable success, but the iPod Hi-Fi wasn’t one of them. The device was praised for its big rich sound, bass response, and ease of use, but its high price was a turn-off for many Apple device users. Also, the connector prominently positioned atop the speaker unit exposed docked iPods to potential knocks and damage.
Despite its innovative features, the iPod Hi-Fi remained a niche product in Apple’s lineup, and the combination iPod dock/speaker system never took off. Apple discontinued it on September 5, 2007, just 554 days after its launch.
This article, “Apple’s iPod Hi-Fi Launched 18 Years Ago – and Lasted Just 554 Days” first appeared on MacRumors.com
Discuss this article in our forums