#this is also one of the main reasons why i don’t visit the [redacted] anime tag lmaoooooo | Explore Tumblr Posts and Blogs

cabbageminute · 5 years

Text

Big Security Everywhere Thread

#WEEK_ONE

Upgrade my house so it's unbreakable

The first lecture inspired me to look upon how I can break into my house and finding useful products to try and prevent it.

(Strategic Brute Force) Via doors -> I have a double door, where one probably is trying to prevent the entrance of mosquitos, and the other is for the main protection. Both are simple and standard locks. Both are a variation of Dealt bolt locks.

https://www.youtube.com/watch?v=zMqzjMrxNR0

According to that video, it's quite easy to open.

(Brute Force) Via window -> There's absolutely no protection whatsoever. Literally could smash it.

(Brute Force) Via Basement -> Can open padlock via brute force and crawl underneath and smash the floor of the ground level .

Learning types of locks: https://locksandsafes.com/what-are-the-different-kinds-of-locks/

Understanding picking a lock: https://www.artofmanliness.com/articles/how-to-pick-a-lock-pin-tumbler-locks/

My suggestion:

Biometric locks, downside: Can leave a physical footprint (with easy combination, easy to brute force to).

Cat-eye: can see who is visiting.

Better material of glass for window (or even barred)

#WEEK_TWO

Around suburb

This week I focused on looking at my neighbourhood and if I can gather any information on my secondary family rough schedules, this way we can analyse the data of their comings and goings, and apply an attack.

Monday

The garage door opened at 8:45am [REDACTED] & [REDACTED] leaves

The garage door opened at 9:20am [REDACTED] back

The garage door opened at 11:03am [REDACTED] & [REDACTED] leaves

The side door opened at 2:20pm [REDACTED] back

The garage door opened at 3:29pm[REDACTED] & [REDACTED] back

The garage door opened at 7:54pm [REDACTED] leaves

The garage door opened at 8:20pm [REDACTED] & [REDACTED] back

Tuesday

The garage door opened at 8:20am [REDACTED] & [REDACTED] & [REDACTED] leaves

The garage door opened at 8:45am [REDACTED] back

The garage door opened at 11:02am [REDACTED] & [REDACTED] & [REDACTED] leaves

The garage door opened at 2:19pm [REDACTED] & [REDACTED] & [REDACTED] back

The side door opened at 2:30pm [REDACTED] back

The garage door opened at 5:30pm [REDACTED] leaves

The garage door opened at 5:56pm [REDACTED] & [REDACTED] back

Wednesday

The garage door opened at 8:25am [REDACTED] & [REDACTED] leaves

The garage door opened at 8:50am [REDACTED] back

The garage door opened at 1:03pm [REDACTED] & [REDACTED] & [REDACTED] leaves

The side door opened at 2:20pm [REDACTED] back

The garage door opened at 4:29pm [REDACTED] & [REDACTED] & [REDACTED] back

The garage door opened at 6:54pm [REDACTED] leaves

The garage door opened at 7:20pm [REDACTED] & [REDACTED] back

Thursday

The garage door opened at 8:00am [REDACTED] & [REDACTED] leaves

The garage door opened at 8:20am [REDACTED] back

The garage door opened at 10:00am [REDACTED] & [REDACTED] & [REDACTED] leaves

The garage door opened at 1:29pm [REDACTED] & [REDACTED] & [REDACTED] back

The garage door opened at 7:24pm [REDACTED] leaves

The garage door opened at 7:40pm [REDACTED] & [REDACTED] back

Friday

The garage door opened at 8:25am [REDACTED] & [REDACTED] leaves

The garage door opened at 9:20am [REDACTED] back

The side door opened at 2:20pm [REDACTED] back

The garage door opened at 7:24pm [REDACTED] leaves

The garage door opened at 7:42pm [REDACTED] & [REDACTED] back

After a week of looking at them (some of them I had my extended family to log, but it’s the same if someone just observes them long enough), you can formulate a pattern, and base on the pattern we can implant a pattern. To change this we introduce a new variable in the system, random activities.

We can formulate their basic life plans just by observing...which extends to a side-channel attack!

#WEEK_THREE

Around the internet

I will have you know ... the weirdest thing happened to our family ... my mother got phished.

context: My mum’s business [REDACTED] usually have a lot of incoming and outgoing emails regarding price changes and new business models. This email came in and she pressed the attached documents, which windows started flashing asking for permission to access the windows/syswow64/regedit.exe.

So I started researching about the attack:

Article_one: which tells me not to worry about it.

Article_two: “This program allows users to perform several functions including creating, manipulating, renaming and deleting registry keys, importing and exporting .REG files, bookmarking user-selected registry keys as Favorites, and the ability to remotely edit the registry on another networked computer”

So to solve the problem I restored the computer at a specific checkpoint and ran a malware detection program. And nothing seems wrong.

Then I started researching the company themselves. Well, first of all, the email is extremely suspicious. and secondly, my mother never had any relation with anyone named Sue Kepp.

#WEEK_FOUR

The vulnerability of Social Media.

How often do you geotag where you are at a particular place, and really how can this affect your life. This week I focus on the vulnerability of the act of tagging where you are at a certain place. or better yet, YOU ARE subconsciously being tracked.

VIDEO_ONE | VIDEO_TWO | VIDEO_THREE... well so these guy uses Instagram to stalk someone by using the geotags they have in a nearby. They have their information just with one small outlet.

My suggestion ... maybe just not use geotag ... .. . . .... I’ve been doing this since year 8 so I’m quite clean tbh.

#WEEK_FIVE

Our university is not perfect ... yet

The other day I was walking in university and I was thinking ... How many of these people are actually UNSW students because literally, no one knows each other, and the privilege of walking into a door is guarded by a single card most of the time.

I brought my best friend to UNSW the other day, and he requested that he wants free wifi for using my internet (I said yes). Obviously, it’s fine because he is working on school work.

But there are so many people in university that could just ask for a login to steal lecture notes and even your personal information.

Someone let me access into a lab, just because they can hold the door ... . .. ..

#WEEK_SIX

Opal ... or oNO.

Transportation is always a big part of a lot of people’s life.

But the thing is, we have so many flaws, people can just jump over the gate and avoid paying

People can not tap on while going on the bus (because no one really checks, fact-checked with my uncle’s colleague -> he is a bus driver)

Your opal balance can go negatively which you can simply change for a new card. According to THIS article, opal makes a $2.6 million loss annually. Not saying that I’m can have 2.6 million, but I could save up to $36.5 if my balance is -.10 for 5 days a week.

Also -> transit officers can’t check credit card tap-ons according to THiS

Okay, so why do I care about this, well for one it’s taking $25 out of my pocket every week, so life is not good. Well secondly, NSW transit officers really made me angry the other day for stopping me and made me late for work (another incident they fined my friend who is a student but forgot their card for $200), so I put on my attacker hat on and wanted to see if there is a way to avoid paying without getting caught.

The first thing I looked through is, what powers do the new NSW transit officers have

The power to direct people to leave trains and railway stations.

The power to demand names and addresses from people who they had reasonable grounds to suspect had committed a railway offence.

The power to request to inspect tickets and concession cards.

The power to issue infringement notices and on the spot fines to those who had been caught committing railway offences.

Well, now I want to refer you to this article.

So now how do we evict to pay ... >:)

I think my suggestion would be

Get off at a specific location where there is no gate.

Use a Woolworths temporary credit card, and claim that you’re using the credit card.

If you haven't paid, they'll use your card details to charge you the default maximum fare and record your card details in their database.

if you then present the same card again on a subsequent check, they'll find you for fare evasion. Curiously, it says if this happens more than twice with the same card, they will also blacklist that card from being used to pay for fares for 12 months.

#WEEK_SEVEN

Articles that I found last few weeks

Robert Downey Jr. has vowed to use robotics and AI to significantly clean up the Earth in the next decade

There is a degree of the irony of relying on AI to help them clean up when the human responsible creating it are the one that created the chaos.

Cat filter accidentally used in Pakistani minister’s live press conference

Maybe consider not have a man in charge of these live vids, or even better have an option for serious manners and whatnot.

China Is Forcing Tourists to Install Text-Stealing Malware at its Border

Consider maybe doing an extensive search before letting people into the country instead of doing mass surveillance.

Amazon confirms it keeps your Alexa recordings basically forever

Don’t be lazy and search using your hand. This recording is allowing everyone to listen to you indefinitely.

Japan approves first human-animal embryo experiments

HELLO JURASSIC PARK!

#securityeverywhere #cs6441blog

0 notes