The downside with offering APIs to interact with a car is that someone else's security problem might become your own. Getty Images A young hacker and computer security researcher has found a way to remotely interact with more than 25 Tesla electric vehicles in 13 countries, according to a Twitter thread he posted yesterday. David Colombo explained in the thread that the flaw "wasn't a vulnerability in Tesla's infrastructure. It's the owner's fault." He claimed to be able to remotely disable a car's camera system, unlock doors and open windows, and even start driving without a key. It could also determine the exact location of the car. However, Colombo has made it clear that it can't actually interact with Tesla's steering, throttle, or brakes, so at least we don't have to worry about an army of remote-control electric vehicles doing a Fate reenactment. Colombo says he reported the issue to Tesla's security team, which is investigating the matter. On a related note, early Wednesday morning, a third-party app called TezLab reported seeing “multiple thousand Tesla Authentication Tokens expiring at the same time.” The TezLab application uses Tesla's APIs which allow applications to perform operations such as accessing the car and activating or deactivating the anti-theft camera system, unlocking doors, opening windows, etc
Posted on: 14 January 2022 | 9:31 am
Representation of cryptocurrency Dogecoin is seen in this illustration taken November 29, 2021. REUTERS/Dado Ruvic/Illustration/File Photo Tesla Inc (TSLA.O) will accept the meme-based cryptocurrency dogecoin as payment for its products such as the "Giga Texas" belt buckle and mini electric vehicle models, CEO Elon Musk said on Friday in a tweet. The move which sent dogecoin prices up 14% higher, comes a month after Musk said Tesla would test the digital token as a payment option. Musk, a voucal of cryptocurrencies has heavily influenced dogecoin and bitcoin prices, and at one point said the company would accept bitcoin for the purchase of its cars before scrapping the plans. Tesla's products, which also include the recently launched "Cyberwhistle" and "Cyberquad for Kids," are a hit with its fans and typically sell out within hours of listing. "Some have noticed that goods for doge are depleting even faster than for dollars. This news is a good example of the continued penetration of cryptocurrencies into corporate culture," said Alex Kuptsikevich, senior financial analyst at FxPro. Musk on dogecoin's tweets, including one where he called it the "people's crypto," turned the once obscure digital currency that started as a social media joke into a speculator's dream. The price of the token has increased by around 4,000% in 2021. Tesla revealed last year that it purchased $1.5 billion worth of bitcoin, and Musk also claimed to own bitcoin and dogecoin. Tesla faces intense competition as legacy automakers like Ford Motor Co (FN) and startups such as Rivian Automotive (RIVN.O) are set to launch their electric car this year. Tesla's long-awaited Cybertruck will begin production in the first quarter of 2023, pushing its plan to start production to late 2022, Reuters reported.
Posted on: 14 January 2022 | 9:14 am
Image Credit: REUTERS/Valentyn Ogirenko/Illustration A massive cyber attack warning Ukrainians to "be afraid and expect the worst" hit government websites on Thursday night, leaving some websites inaccessible on Friday morning and prompting Kyiv to open an investigation. Ukrainian Foreign Ministry spokesman told Reuters it was too early to say who could be behind the attack, but said Russia had launched similar attacks in the past. The cyberattack, which affected the Foreign Ministry, the Cabinet of Ministers and the Security and Defense Council, among others, comes as Kyiv and its allies sound the alarm on a possible new Russian military offensive against Ukraine. "It's too early to draw conclusions, but there is a long history of (cyber) Russian attacks on Ukraine in the past," the Foreign Ministry spokesman told Reuters. The Russian foreign ministry did not immediately respond to a request for comment, and Russia has previously denied cyberattacks against Ukraine. "Ukrainian! All your personal data was uploaded to the public network. All data on the computer is destroyed, it is impossible to restore it," said a message visible on the hacked government websites, written in Ukrainian, Russian and Polish. "All information about you has become public, be afraid and expect the worst. This is for your past, present and future." After a wave of inconclusive talks this week on security in Europe, the United States on Thursday warned that the threat of a Russian military invasion of Ukraine was high. Russia said the dialogue continued but reached an impasse as it tried to persuade the West to prevent Ukraine from joining NATO and roll back decades of alliance expansion in Europe, demand that Washington has called "non-starters". Commenting on a cyber attack a senior Ukrainian security official told Reuters: "All cybersecurity subjects were aware of such possible provocations from the Russian Federation. Therefore, the response to these incidents is being carried out in accordance with the government. The government later claimed that he had restored most of the affected sites and that no personal data had been stolen. Many other government websites were suspended to prevent the attack from spreading, it said . Relations between Ukraine and Russia collapsed after Moscow's annexation of Crimea in 2014 and the outbreak of war between the same year. Kyiv forces and Russian-backed separatists in eastern Ukraine. The United States said on Thursday that Russia could try to create a pretext to launch a new military assault on Ukraine by comparing the situation with the circumstances of 2014. Russia warned of possible "catastrophic consequences" if there was no agreement on what the Kremlin called the security red lines, but said Moscow had not abandoned diplomacy and would even speed it up. The Russian comments reflect a trend in which Moscow claims to want to pursue diplomacy but rejects calls to reverse the training of its troops near Ukraine and warns of unspecified consequences for Western security if its demands are not heard. Ukraine has suffered a series of cyberattacks since 2014, which have cut power, frozen supermarket checkouts and forced authorities to back the hryvnia currency after the bank's computer systems crashed. Ukraine believes the attacks are part of what it calls Russia's "hybrid war" against Ukraine and its allies. In 2017, a virus called NotPetya by some experts hit Ukraine and spread around the world, crippling thousands of machines as it spread to dozens of countries. The Kremlin has denied any involvement, dismissing "general unfounded accusations".
Posted on: 14 January 2022 | 8:59 am
Image Credit:Jeenah Moon/Reuters Tesla Inc (TSLA.O) aims to start initial production of its long-awaited Cybertruck by the end of the first quarter of 2023, pushing plans to start production later this year, a person familiar with the matter told Reuters on Thursday. He said the delay comes when Tesla changes the features and functions of the electric pickup to make it a compelling product as competition heats up in the segment. Tesla is expected to produce a limited production of the Cybertruck in the first quarter of 2023 before ramping up production, the source said. Tesla did not immediately respond to a request for comment. Tesla, the world's largest electric car maker, produces electric sedans and SUVs, but has lost the pickup truck segment, which is profitable and hugely popular in America. Ford Motor Co (FN) and Rivian Automotive (RIVN.O). are ahead of Tesla in launching electric pickups. Ford said early this month it will nearly double annual production capacity for its red-hot F-150 Lightning electric pickup to 150,000 vehicles ahead of its arrival this spring at U.S. dealers. Ford's market value topped $ 100 billion for the first time on Thursday, when Tesla shares fell 6.7% and Rivian's shares fell 7.1%. CEO Elon Musk, who unveiled the futuristic vehicle in 2019, had already delayed production from late 2021 to late 2022. Musk said he would provide an updated product roadmap during the earnings call for the Tesla on January 26. “Oh man, this year has been such a nightmare for the supply chain and it's not over yet!” He tweeted in late November when asked about the Cybertruck. Tesla recently removed a reference to its production schedule from its Cybertruck orders website. Last month, the website said, "You will be able to complete your setup as production nears in 2022." Now "in 2022" has been omitted. Tesla plans to produce the Cybertruck at its plant in Texas, which is slated to begin production of Model Y cars earlier this year.
Posted on: 14 January 2022 | 8:36 am
Microsoft is working on a new update for Windows 11 that will make the new operating system (OS) run better on dated and inexpensive hardware. Windows 11 Build 22526 has currently been made available to members of the Insider early access programme with multiple enhancements and fixes, Techradar reported. It is yet not clear when the update will be rolled out to the public. Though most of the new features are minor, the software giant is using this update to try out a new file location indexing system, hoping that the build will enable users to find out important files even faster using File Explorer. The File Explorer of the recently released Windows 11 works very slow and is still prone to frequent crashes. Users often have to suffer due to the slowness of the Search functionality. It takes a long time to return relevant searches if users have stored a huge number of files in the built-in hard drive. The new update could help you cruise through large number of files more quickly. More importantly, it will be very helpful for users who are running Windows 11 on cheap and dated devices that suffer lengthy load times affecting performance. Other upgrades that will be released in the upcoming Windows 11 update include wideband speech support which will improve the audio quality of voice calls if you are using products such as Apple Airpods. There will also be a new “windowed” system to the popular Alt + Tan functionality.
Posted on: 13 January 2022 | 8:57 am
A man holds a laptop computer as cyber code is projected on him in this illustration picture taken on May 13, 2017. REUTERS/Kacper Pempel/Illustration The White House will meet with executives from major tech companies, including Alphabet-owned Google (GOOGL.O), Apple Inc (AAPL.O) and Amazon.com Inc, , to discuss software security after the United States have suffered several major cyber attacks last year. In December, White House National Security Advisor Jake Sullivan sent a letter to CEOs of tech companies after a security vulnerability was discovered in open source software called Log4j that organizations around the world are using. to save data in their applications. In the letter, Sullivan noted that this open source software is widely used and maintained by volunteers and is a "major national security problem." Thursday's meeting, which will be hosted by the Deputy National Security Advisor for Information Technology and Emerging Technologies. discuss concerns about the security of open source software and how it can be improved, the White House said in a statement. Other top tech companies in attendance at the meeting will include IBM (IBM.N), Microsoft Corp (MSFT.O), Meta Platforms Inc (FB.O) which owns Facebook and Oracle Corp (ORCL.N). Government agencies, including the Department of Homeland Security, Department of Defense and the Commerce Department, will also be in attendance. Cybersecurity has been a top priority for the Biden administration after several major cyberattacks last year, which exposed thousands of records held by companies and government agencies to hackers. One hack, which the U.S. government has said was likely orchestrated by Russia, breached software made by SolarWinds (SWI.N) and gave hackers access to thousands of companies and government offices that used its products. The hackers got access to emails at the U.S. Treasury, Justice and Commerce departments, and other agencies.
Posted on: 13 January 2022 | 8:20 am
A test tube labelled with the Vaccine is seen in front of AstraZeneca logo in this illustration taken, September 9, 2020. REUTERS/Dado Ruvic/Illustration AstraZeneca said on Thursday that preliminary data from a trial showed that its COVID-19 shot, Vaxzevria, generated an increase in antibodies against the Omicron and other variants when given as a third booster dose. The increased response, also against the Delta variant, was seen in a blood analysis of people who were previously vaccinated with either Vaxzevria or an mRNA vaccine, the drugmaker said, adding that it would submit this data to regulators worldwide given the urgent need for boosters. AstraZeneca has developed the vaccine with researchers from the University of Oxford, and lab studies conducted by the university last month already found a three-dose course of Vaxzevria boosted antibody levels in the blood against the rapidly spreading Omicron variant. The brief statement on Thursday, which did not include specific data, was the first by AstraZeneca on the protective potential of Vaxzevria as a booster shot following a two shot-course of either an mRNA based vaccine or Vaxzevria. Vaccines base on mRNA technology are made by BioNTech-Pfizer and Moderna. The company said the findings “add to the growing body of evidence supporting Vaxzevria as a third dose booster irrespective of the primary vaccination schedules tested”. The data on Vaxzevria’s potential as a booster came from a comparative analysis in a trial testing a redesigned vaccine which uses the vector technology behind Vaxzevria but targeting the now-superseded Beta variant. AstraZeneca is trying to show the Beta-specific vaccine has potential also against other variants and more trial data is expected during the first half of the year. Separately, Oxford University and AstraZeneca last month started work on a vaccine specifically targeting Omicron though Astra – as well as other vaccine makers in similar development projects – have said it was not yet clear whether such an upgrade was needed.A major British trial in December found that AstraZeneca’s shot increased antibodies when given as a booster after initial vaccination with its own shot or Pfizer’s, but that was before the explosive spread of the Omicron variant. However, the study at the time concluded that mRNA vaccines made by Pfizer and Moderna gave a biggest boost to antibodies when given as a third dose. AstraZeneca and its contract manufacturing partners have supplied over 2.5 billion doses globally of its vaccine, even though it is not approved in the United States, while BioNTech-Pfizer have shipped about 2.6 billion doses. Source: ARY News
Posted on: 13 January 2022 | 7:53 am
Image Credit:CIPhotos via Getty Images More than half of Europe's population could become infected with omicron within weeks at current transmission speeds, a World Health Organization official said.The fast-spreading variant represents a "west-to-east tsunami sweeping the region," Hans Kluge, WHO regional director for Europe, said in a briefing Tuesday. He cited the Institute for Metrics and Health Assessment forecast that most Europeans could take it within the next six to eight weeks. The latest Covid surge has resulted in fewer symptomatic cases and lower death rates than in previous waves, fueling optimism that the pandemic may subside. However, the WHO has repeatedly warned against underestimating the Omicron strain as mild. Kluge said hospital admission rates are increasing. In Europe, it puts pressure on health systems. On the flip side, another WHO official said it was too early to consider COVID-19 is entering an endemic phase, an issue the Spanish government has proposed to discuss. An endemic phase would see "stable spread of the virus at a predictable level", but what we are currently seeing for 2022 is nowhere near that, "said Catherine Smallwood, WHO Europe Chief Emergency Officer." We still have great uncertainty. We still have a virus that evolves pretty quickly and brings new challenges, "he said." We are certainly not at the point where we can call it endemic.
Posted on: 11 January 2022 | 9:00 am
This morning, Microsoft's 365 Defender research team released details of a new macOS "Powerdir" vulnerability that allows an attacker to bypass transparency, consent, and control technology to gain unauthorized access to protected data. Apple has already fixed vulnerability CVE-2021-30970 in the macOS Monterey 12.1 Update released in December, so users who have upgraded to the latest version of Monterey are protected. Those who haven't should update. Apple in its Security Release Notes for Update 12.1 confirmed the vulnerability of TCC and attributed its discovery to Microsoft. According to Microsoft, the "Powerdir" security vulnerability could allow the installation of a fake TCC database. TCC is a long-lasting macOS feature that allows users to configure the privacy settings of their apps, and with the fake database, an attacker could hijack an app installed on a Mac or install their own malicious app by gaining access to the microphone and the camera to obtain confidential information. Microsoft has a detailed description of how the vulnerability works, and the company says its security researchers continue to "monitor the threat landscape" for new vulnerabilities and attack techniques affecting macOS and other non-Windows devices. "Software vendors like Apple, security researchers, and the larger security community, need to continuously work together to identify and fix vulnerabilities before attackers can take advantage of them," wrote Microsoft's security team.
Posted on: 11 January 2022 | 8:49 am
An email sent to customers warning them about the change. Image:Pottermore If you've purchased Harry Potter eBooks from Pottermore, you may want to re-download your copies before the option is gone for good at the end of the month. The site sends an email to its customers to inform them that the books will no longer be available for a new download after January 31, since it was withdrawn from sale in September of last year. When it launched in 2012, Pottermore was the only official way to download digital copies of the Harry Potter books. Despite department stores like Amazon running promotions for titles, which are among the best-selling books of all time, stores would route customers to Pottermore to finalize the sale (retailers like Amazon would have gotten a discount anyway. ). But income of the e-books reportedly declined over the years, and in 2015 they have been made to be had at once from different online shops. Digitally better editions released on Apple’s e-books store in October 2015, and releases on different digital shops like Amazon accompanied later that year. Pottermore subsequently morphed into WizardingWorld.com in 2019. Although the option to redownload current book purchases from Pottermore will disappear for appropriate on the quit of the month, it shouldn’t be too difficult to maintain on in your current virtual copy. On Twitter, Ryan C. Gordon notes that current downloads include a DRM-free .epub document, that you must be capable of switch to any new e-readers withinside the future (aleven though you need to convert the .epub document to make it readable on a Kindle). Just make certain to stash the document someplace secure in case you don’t need to pay once more for books you already very own withinside the future.
Posted on: 11 January 2022 | 8:37 am