• n3m37h@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    ·
    10 months ago

    Let’s ban a product instead of solving the issue at hand… Seriously? I hate my country more and more as each day passes

    • sab@kbin.social
      link
      fedilink
      arrow-up
      0
      ·
      10 months ago

      While this is seems a bit incompetent, it is easier for them to make technology less available than to fix the underlying issues here. They might set out to do both, but solving the underlying issues will take more time.

      At least they’re trying to do the right thing, and they’re making an effort to deal with a problem that affects real people. Good on them.

      • edric@lemm.ee
        link
        fedilink
        English
        arrow-up
        1
        ·
        10 months ago

        This is like banning usb cables so Hyundai/Kia cars won’t be stolen, instead of forcing the car manufacturer to just install an actual immobilizer on affected vehicles. Seeing Hyundai/Kia do everything but install immobilizers is infuriating as well. They’re rolling out software updates, giving out wheel locks, installing cages on the ignition panel, etc. Literally everything but fix the problem.

        • BossDj@lemm.ee
          link
          fedilink
          English
          arrow-up
          0
          arrow-down
          1
          ·
          10 months ago

          This is like banning usb cables

          If USB cables were used almost exclusively for illegal and just generally anti social behavior.

          I’d never heard of this thing, and it does sound fun, but this was the use case list from the paragraph calling it a “humble hobbyist device” doesn’t come across as very defensible:

          People can use them to change the channels of a TV at a bar covertly, clone simple hotel key cards, read the RFID chip implanted in pets, open and close some garage doors, and, until Apple issued a patch, send iPhones into a never-ending DoS loop.

          But also agreed on fuck those car companies that just don’t care and would rather weaponize the government than try to fix anything (without a subscription fee of course). Anti social behavior forced Kia to change their shitty grift of a product so 🤷

          • edric@lemm.ee
            link
            fedilink
            English
            arrow-up
            0
            ·
            10 months ago

            exclusively for illegal and just generally anti social behavior.

            Except they aren’t. These devices are used for various non-illegal purposes and are actually helpful for pentesters so we can learn about potential vulnerabilities on wireless systems before they can be exploited by bad actors. The same way a usb cable is useful for transferring data and at the same time can be used for illegal stuff (like literally any hack where you connect to a device via usb). The worst part (and the article mentions it), is that it doesn’t even work on security systems on cars built since the 90’s. So they’re banning something that isn’t even a problem in the first place.

            • BossDj@lemm.ee
              link
              fedilink
              English
              arrow-up
              0
              arrow-down
              1
              ·
              10 months ago

              I totally get and agree this is a dumbfuck response to the problem they allege to be fixing, and hopefully their committee it whatever concludes the same, but the article didn’t mention any redeeming values for the device as you did

  • Treczoks@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    9 months ago

    If the flipper can help you stealing a car, the flipper is not the problem, but the neglect and incompetence of the car company is.

  • fmstrat@lemmy.nowsci.com
    link
    fedilink
    English
    arrow-up
    1
    ·
    10 months ago

    Read everyone, this is hype, and Canada is being dumb on this one.

    The Flipper Zero is also incapable of defeating keyless systems that rely on rolling codes, a protection that’s been in place since the 1990s that essentially transmits a different electronic key signal each time a key is pressed to lock or unlock a door.

    Most of this reaction is due to staged videos on TikTok and politicians not understanding technology. Maybe they’ll stop a few joyriding kids, but car thiefs aren’t using F0s.

  • Obinice@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    10 months ago

    The device only gives easy access to already extremely weak/non existent security systems. That’s literally it.

    It’s just something that’s existed forever, but put into a convenient package and marketed well enough that suddenly normal people are realising how insecure their electronic systems actually are.

    Kinda like how they used to make pacemakers hackable because they never thought to add any security at all. I bet many of them still don’t.

    Anyway, the issue lies not with this device, which can’t “hack” anything with any actual security, the issue is with manufacturers making devices that literally leave the door wide open to anybody with an extremely basic electronic sniffer/cloner device.

    • mesamune@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      10 months ago

      Yep you can do the same operations with a RTLSDR (20-40$) and a signal repeater (20ish) and raspberry pi/netbook. It’s somewhat harder to do if you don’t know the software but it really just exposes very insecure hardware. Companies should put a semblance of security and it would take care of things. These kind of devices are everywhere not just the flipper. Flipper just made it a tiny bit more friendly.

  • cheet@infosec.pub
    link
    fedilink
    English
    arrow-up
    1
    ·
    10 months ago

    Im a security professional who works to harden medical devices. I use the flipper zero to easily test many different protocols that would be a pain in the ass to do “manually”.

    The flipper makes it easy for me to verify IR, sub GHz, USB, SPI, and many other protocols while being able to walk around the devices I test.

    Without the flipper I could totally do these checks with homebrew tools, a pi and an rtlsdr (unless thats gonna be illegal too?) But it would take me writing new tools and procedures rather than the ease of the flipper.

    Anybody in the know can tell you that the hardware isn’t anything special, and like many others have said, its like making a swiss army knife illegal cause the toothpick can be used to pick a lock.

    This isn’t gonna stop anybody, if pentest tools are showing flaws in your product, maybe we should send flippers to the car manufacturers and tell them to fix their shit. You shouldn’t be allowed to sell a car that can be wirelessly hacked like this, just like how the FDA doesn’t let you sell medical devices that can be hacked like that.

    You don’t just put the cat back in the bag…

  • jonw@links.mayhem.academy
    link
    fedilink
    English
    arrow-up
    1
    ·
    13 days ago

    The problem, of course, is distinguishing between harmless and harmful use. There are painfully few things that are objectively good or bad.

    • Hey, I’ve seen your deleted post about trying to seed your instance.
      You seem to be the admin of a new instance.
      By default, your instance won’t see any remote communities content until someone subscribes.
      Which is kind of a catch 22, because you kinda have to know about it to subscribe.
      To browse for communities:
      https://lemmyverse.net/communities
      You can then use your instance’s search bar to fetch it initially in order to subscribe to it yourself.
      Which you’ve likely already done for this one.

      There’s also a tool that can do this for you:
      https://lemmy-federate.com/ (which was formerly known as communityboost)
      Then again it may subscribe to things you aren’t interested in, so that may or may not be for you.

      Cheers, welcome and good luck.