Jun
12
2011
-

Ubertooth Bluetooth Sniffer now available to buy

Ubertooth – Bluetooth sniffing for under £100.

A Youtube presentation by the developer, Michael Ossmann.

Until now, sniffing and injecting packets into Bluetooth communication hasn’t been possible for the man in the street. Commercial Bluetooth packet sniffers cost $10,000 and were typically only bought by large companies for troubleshooting their own products. The firmware in a standard Bluetooth dongle doesn’t allow you to grab hold of the radio, in the way you can with a WiFi card.

The Ubertooth USB dongle will change this for under £100.

The Ubertooth device grabs a chunk of 2.4GHz spectrum and your PC processes it. Makes passive detection of Bluetooth devices possible without shelling out £1000 for a USRP. It will be possible to predict Bluetooth hopping pattern. It will also be possible to do man-in-the-middle attacks using two Ubertooths. The hardware is capable of both these things, but the software hasn’t been written yet. Be patient.

UK Buyers can pre-order from RFIDIOt.org.
US buyers can pre-order from HakShop

Ubertooth running a 2.4GHz Spectrum Analyser.

I just tested my own Ubertooth on Friday night. I’m running a standard PC with Ubuntu 10.10 installed. If you follow the guide by HarvestGardener (link below) you’ll have your Ubertooth tested in around 15 minutes:

www.backtrack-linux.org/forums/backtrack-5-how-tos/41552-installing-ubertooth-one-bt5.html

There is one typo in the guide mentioned above, line that reads:
tar xvf libbtb.0.5.tgz
should actually read:
tar xvf libbtbb.0.5.tgz

Useful links:
https://lists.sourceforge.net/lists/listinfo/ubertooth-general
http://ossmann.blogspot.com/
http://ubertooth.sourceforge.net/

Written by admin in: Bluetooth |
May
21
2011
0

Pirate Bay to be banned at ISP level in the UK

Seem to be lots of news reports today saying that Pirate Bay (and sites like it) will soon be banned at the ISP level in the UK.

I hope the music & movie industries aren’t expecting a sudden windfall of new customers when this takes place. I can’t see that happening at all.

Here’s what I see happening: Children exchanging USB memory sticks full of copyrighted material outside the school gates. Spivs going around industrial estates selling DVDs full of pirated movies & music. Invitation-only private networks for sharing files. People using secure web-proxies (VPN) to tunnel legitimately to servers in countries not affected by the ban – like Chinese Facebook users do now. All that will happen is that the means of doing all these things will just become common knowledge. Right now, with Pirate Bay, the music/movie cartel can monitor who’s downloading what, they’ll soon lose that ability completely.

If I was running a music company and wanted to reconnect with my customers I’d be focused on giving the customer something they can’t get with a pirate copy – so with every CD sold I’d include a ticket that might win you something really cool, something money alone can’t buy: backstage passes for gigs, chance to watch album recordings, meet the band, etc. Maybe a special access code for an invite-only Facebook friend hookup with the band – something you could brag about to friends. And also a load of little prizes, like the next album for free.

I read a short while ago that album sales are doing well in Japan because they make such a big deal about the artwork & packaging (like we did in the 70/80s with albums in the UK). After all, no one appreciates being given a CD-R with an inky scribble on it for Christmas or their birthday. They can borrow that idea for a TV ad campaign if they like – much better than ‘Copying stuff funds organised crime’, who gives a shit what funds organised crime – because nobody wants to be thought of as a cheapskate bastard.

When I was in my teens the ZX Spectrum home PC was the must have gadget. Kids in my class would use the newly released Amstrad tape-to-tape deck to copy the latest games releases from one tape to another. Because those tapes were analogue, the copy would degrade a little bit each time. You don’t have that problem with digital media, you get a perfect clone every time. Even with that piracy going on, the games companies still made packets of money by innovating constantly. Music tapes were copied in the same way. Many kids would record the Top 40 off the radio on a Sunday evening onto a tape. If I want to listen to ANY of those songs right now I need only go to Youtube.com (some of them even have the original video too). Sure, the quality is better from a CD, but haven’t we all got used to inferior MP3 anyway?

My final point would be that a lot of what the music industry now releases is complete crap. Go find a lot more people like Adele, Rumer, Paolo Nutini and you’ll sell loads of CDs to people like me in their 40s. Finding stuff like this on Youtube actually made me go and buy the CD from Amazon – so please don’t make Youtube your next target!

Written by admin in: Uncategorized |
May
17
2011
0

O2 suffers network problems in London on 17th May

According to The Register, O2 are having network problems in North & East London, as well as Sussex & Kent today.

Tesco & GiffGaff mobile users may also be affected.

The Register report

GiffGaff map of problems

Written by admin in: 3G,GSM,Masts,Uncategorized |
May
15
2011
0

Council of Europe & Russia want to revise mobile phone exposure limits

Looking at Powerwatch’s News Updates this evening, I see that The Council of Europe and Russia are keen to press for new exposure standards for mobile phones.

You can read more about it here and here.

The Council of Europe are keen that:

8.3.
concerning the protection of children:
8.3.1.
develop within different ministries (education, environment and health)
targeted information campaigns aimed at teachers, parents and children to alert
them to the specific risks of early, ill-considered and prolonged use of mobiles and
other devices emitting microwaves;
8.3.2.
ban all mobile phones, DECT phones or WiFi or WLAN systems from
classrooms and schools, as advocated by some regional authorities, medical associations and civil society organisations;

Written by admin in: Uncategorized |
May
08
2011
0

Secure communications for your Android Phone

Would you like to have a firewall running on your Android phone that lets you see which apps are using your internet connection?

Would you like to be able to send secure SMS text messages?

Would you like to be able to hold secure conversations?

You need Whisper System’s Mobile Security Suite

Written by admin in: 3G,GSM |
Apr
19
2011
0

Interesting new products: Ubertooth, Funcube Dongle Pro and Sparkfun IOIO for Android.

Ubertooth, Funcube Dongle Pro and Sparkfun IOIO for Android.

Three brand new innovative products, all coming out around the same time. All in limited supply, and all completely brilliant!

 

Ubertooth – Bluetooth sniffing for under £100.



Until now sniffing and injecting packets into Bluetooth communication hasn’t been possible for the man in the street.

The Ubertooth USB dongle will change this for under £100.

The USB adapter just grabs a chunk of 2.4GHz spectrum and your PC processes it. Makes passive detection of Bluetooth devices possible without shelling out £1000 for a USRP. It will be possible to predict Bluetooth hopping pattern. It will also be possible to do man-in-the-middle attacks using two Ubertooths.

UK Buyers can pre-order from RFIDIOt.org. US buyers can pre-order from HakShop

 

FUNcube Dongle Pro – all frequency audio scanner for under £100.


 

Another USB dongle featuring three SMD chips to perform a custom task. This dongle is very different from the Ubertooth, but in some ways more amazing.

It can grab up to a 80KHz chunk of radio spectrum from anywhere between 64MHz and 1700MHz (although there is a dead spot between 1100MHz and 1270MHz). It will basically do most things your fancy-pants £1000+ standalone radio scanner will do, for just £100. Basically good for speech & data, but not really video. Works with Windows. Mac OSX & Linux. Appears to PC as a USB audio device & a HID device. Plenty of open source software available to drive it. Interestingly the FUNcube Pro is mentioned on the Osmocom Tetra page.

The only downside is that each batch the designer has made are currently selling out in 2 minutes, when he releases them. Find out more at FUNcube Dongle

 

Sparkfun IOIO for Android – attach anything to your Android smartphone for under £50.

A really simple way to attach almost any electronic component to your Android Smartphone or Tablet. Thousands of uses will be found. Things will be invented!

This board consists of a USB to Everything adapter & a library of script & device drivers (a bit like an Arduino sketch but in Java). All the computing power & sensors in your Android smartphone available to motors, LEDs, weather stations, robots, PIRs, analog sensors, digital sensors. Just imagine the possibilities. Runs on Android 1.5 & up, so even all those sub-£50 used Android phones will work with it.

www.SparkFun.com

Written by admin in: 3G,Bluetooth,GPS,GSM,Tetra,Uncategorized,WiFi |
Mar
28
2011
0

Can Mobile Phones Really Rot Your Bones?

According to Thinq.co.uk they can:

Newly-published research suggests that mobile phones can reduce the mineral content of the bones they hang out around.

Researchers at the the National University of Cuyo, in Mendoza, Argentina, looked at that strange breed – men who wear mobile phones on their hip. They discovered evidence to suggest that the proximity of the mobile phone caused a reduction in bone mineral content (BMC) and bone mineral density (BMD) in the men who wore the phones over a 12-month period, compared to a control group that didn’t.

According to an abstract from the study to be published in the Journal of Craniofacial Surgery, wearers of a mobile phone had “significantly lower right BMD at the trochanter and significantly lower right BMC at both trochanter and total hip”.

None of these differences were found in non users, the study notes.

Non users had a higher BMC at the right femoral neck (at the top of the thigh). The right-left difference in femoral neck BMD of non users was marginally non-significant. In users, there was no femoral neck right-left difference of BMC at the femoral neck. Right-left asymmetries in femoral neck BMC were significantly different between both groups, the study notes.

Study leader Dr Fernando D Sravi writes: “The different patterns of right-left asymmetry in femoral bone mineral found in mobile cell phone users and non users are consistent with a non-thermal effect of electromagnetic radio-frequency waves not previously described.”

The study measured BMC and BMD in the left and right hips of two groups of healthy men – 24 who did not use cell phones and 24 who carried their cell phone on their right hip, for at least 12 months.

According to the researchers, few studies have looked at whether electromagnetic fields emitted by cell phones could affect bone mineralisation. They suggest that with rapid uptake of mobile phones, any significant effect on BMD could have a substantial effect on the osteoporosis rate in the population.

Osteoporosis is a systemic skeletal disease characterised by low bone mass and microarchitectural deterioration that leads to increased bone fragility and increased risk of fracture .

Dr Sravi says more research is needed to follow up his study, particularly in women, who  generally have higher rates of osteoporosis, and children, who may have a long life of mobile phone use ahead of them.

Sravi writes that, while the actual energy emission by modern mobile cell phones is well below the limits set by current standards, precluding significant thermal effects, a growing body of evidence suggests that non-ionizing electromagnetic radiation in the frequency range of mobile cell phones may cause non-thermal biologic effects. Many of these non-thermal biologic effects “might be relevant for human health,” the study notes.

Read more:
 http://www.thinq.co.uk/2011/3/28/mobile-phones-rot-your-bones/#ixzz1HvusYGtI.

Written by admin in: General,GSM |
Mar
18
2011
0

Richard Stallman: iPhones and Androids are ‘Big Brother’ tracking devices

Richard Stallman: iPhones and Androids are ‘Big Brother’ tracking devices

I was just looking at the Slashdot website and started reading a piece on Networkworld.com about Richard Stallman’s views on various topics.

Stallman (the open-source software movement is basically his idea) says he won’t own a mobile phone as they’re glorified tracking devices, which can also be used to eavesdrop on you remotely. This of course is all perfectly true, and if you’re of interest to the NSA or UK security services that might bother you (I’m thinking of Julian Assange or anyone who ever stood in a 5 meter perimeter of him). But if the only insight someone might gain into your personal life is that you’re using Sainsburys rather than Tescos for your shop this week, then who really cares?

I only use my Android smartphone for internet access, I don’t make any calls or send any texts. Stallman states that unless you remove the battery ( he actually says all batteries!) you don’t know what your phone is doing. Well I know what my phone is doing… I own an Electrosmog Detector (now sold out but available on eBay and other sites), which turns RF transmissions into audible noise – I’ve also got a couple of spare 9v rechargeable batteries, so I can leave it on whenever I want – and if my phone is transmitting I can hear it.

If you own an Electrosmog Detector & you’re remotely bothered about being monitored, you could just make fart noises every time the phone transmits when you aren’t talking on it! This is much more fun than being paranoid about what it is or maybe isn’t doing. Of course a smart phone with Facebook & Gmail installed will be transmitting regularly, so turn off all those auto-sync services if you want to know when it shouldn’t be transmitting.

If you don’t want to be tracked, then just leave your phone at home half the time, or swop with a big group of friends if you’re a member of any kind of protest group, or just don’t use one. Remember that swoping Sim cards isn’t enough, your mobile also contains a unique IMEI number, and either of those will let you be tracked. You need a new PAYG phone & sim to vanish. (and as soon as you use it to contact an old target you’ll re-appear again).

If you use the internet look into using Tor, or signing up for a secure VPN.

And another thing… I own several laptops & an iMac. I was looking at them recently and must have pre-empted Richard Stallman’s views. I took a big blob of blu-tak and stuck it over each built-in webcam & mic… Well you never know who might have been listening or watching, and they bloody well aren’t now! And one final thing, assume everything you do and look at on the internet is monitored, because it is…

Peace & Love

Written by admin in: 3G,GSM,Masts,Uncategorized |
Mar
12
2011
0

Jamming and Spoofing GPS – New Scientist Magazine – David Hambling – 12th March 2011

There’s an interesting article on GPS in the New Scientist this week – issue 12th March 2011, page 44.

The crux of the article is this: while we’re all using GPS in Smartphones & TomToms to find out where we are, it’s also being used in lots of mission-critical infrastructure hardware these days to get accurate atomic clock time & date stamps. Some of these other uses: GSM cell towers to synchronise clocks, signing stock market financial transactions, bank ATM timestamps, the United States power grid to sync 5000 suppliers, some airports use GPS-based landing systems to assist in poor visibility. In the future the US Federal Railroad Administration plans to rely on GPS for smart management of rail traffic. GPS is also used to locate cars, boats & cargo.

Jammers for GPS are now being manufactured in large numbers in Chinese factories, and can be bought over the internet using Paypal direct from the Far East – along with jammers for every other radio system you can imagine – just Google it. Like all these other jammers they are illegal to use. So who uses them? They are used by truckers to hide from their snooping bosses, criminals who steal cars with trackers fitted and people who want to avoid some GPS enabled road toll systems.

The problem is that GPS signals are derived from satellites in space that only transmit on low power. If you turn on a GPS jammer you not only block your own device, but also all GPS devices for hundreds of metres around you. The article mentions a trucker who used to drive past Newark Liberty International Airport, and his jammer shut down their new GPS assisted landing system, sometimes twice a day. It took them several months to discover the trucker in question.

Potentially far worse though, it’s also possible to spoof a GPS system, making it think it’s somewhere it isn’t. It’s also theoretically possibly to spoof the atomic clock timings that Stockbrokers and ATMs depend upon. If you could manipulate the time-stamp on stock market buy & sell orders you could make millions. Professor Todd Humphreys at the University of Texas has done a lot of research into GPS spoofing.

GPS is one of the few systems that security researchers armed with USRP software radios have yet to turn their attention to. The USRP radio peripheral can be made to mimic almost any radio system. So far they’ve gone after Bluetooth, WiFi, Dect & GSM. This year they’ve started a project to build a fully functioning Tetra radio (albeit without the encryption the Police use). GPS is a next logical target for man-in-the-middle spoofing attacks using USRP & other custom transceivers.

The article goes on to mention the development of eLORAN, which is a ground based GPS type navigation system, which can use higher power transmitters to overcome some of GPS’s limitations. Also, as Atomic Clocks become cheaper, any appliance will be able to figure out where it is (relative to a known starting point) using just digital compasses, accelerometers & gyroscopes. In fact, some of these sensors are already in iPhone & Android smartphones.

Another possible way of knowing if your GPS is being spoofed is to cross-reference using a 2nd technology. This could be the WiFi router MAC address database that Google compiled while mapping our roads for Streetview – useful on smartphones that have GPS & WiFi built in. Or you could make a database of all the cellphone sites in the UK using a laptop running OsmocomBB Cell_Log, a £10 Motorola C115 phone & a GPS receiver – accuracy is good to 100 metres, and any cellphone that can issue a RACH request can use the answers to locate itself from the Timing Advance value returned from multiple cell sites – this would be useful on a laptop only. I think Holland may have produced a similar map already.

Ettus Research, the maker of the USRP, announced on February 14th their own GPSDO add-on board ($750 each) for the USRP N200/N210. This will allow USRP radios at different sites to sync with each other accurately, just like the aforementioned cell towers do.

Written by admin in: GPS,Masts | Tags: , ,
Jan
07
2011
0

27C3 Hacking Conference Brilliant, Once Again.

If you didn’t know, every year between Christmas & New Year thousands of computer hackers converge on Berlin to showcase their latest electronic hardware exploits at the Chaos Computer Club conference. I got interested two years ago when some German students demonstrated their £30 Dect phone laptop ‘debugger’ in a talk at 25C3.

The great thing about the yearly CCC conference is, even if you can’t make it there in person, you can watch live streams of the various talks online. This years highlights for me:

Index of talks here

Wideband GSM sniffing here

The Baseband Apocalypse here

Running your own GSM stack on a phone. here

27C3 main wiki index here

27C3 Videos

Written by admin in: DECT,GSM,Uncategorized |

Theme: TheBuckmaker.com Premium WordPress Themes | InMotion, Gesundheit