A hacker in a restaurant

This article was originally published by Alexander Sverdlov on LinkedIn – https://www.linkedin.com/pulse/hacker-restaurant-alexander-sverdlov/

Day 1

A hacker comes into a restaurant and discovers that the salt shaker on the table can be unscrewed and one can pour anything into it. The hacker goes home and writes an angry letter to the manager of the restaurant: “I, meG@Duc, found a vulnerability in the salt shakers at your restaurant. An attacker can open them and pour poison inside! Take action immediately!”

Day 2

The manager, among other business letters, requests for food deliveries and courier receipts finds the notification letter and shrugs: “Who could even come up with this nonsense?”

Day 5

The hacker comes into the restaurant and pours poison in all the salt shakers. Three hundred people die, the manager is dragged three months in courts to prove the absense of a crime. The hacker writes a letter in the style of “Well, I told you!”.

Day 96

The manager orders his staff to buy specially designed salt shakers with a combination lock. Visitors of the restaurant feel like they are missing something very important in the meaning of life.

Day 97

The hacker discovers that the holes in the salt shakers pass salt in both directions. And not only salt, anything! He writes an angry letter to the manager after pissing in all the salt shakers. Three hundred people stop visiting the restaurant forever, thirty get admitted to the hospital with food poisoning.

The hacker sends an SMS to the restaurant manager: “How are you doing?” The manager is dragged through courts for three months and is released on probation.

The hacker discovers that the holes in the salt shakers pass salt in both directions. And not only salt, anything!

Day 188

The manager vows to no longer work in any kind of food establishment, and to peacefully cut timber in Siberia. Engineers are working on a new one-way valve for a salt shaker. Waitresses in the meantime withdraw all the old salt shakers and distribute the salt by hand.

Day 190

The hacker steals a salt shaker from the restaurant and carefully studies the device at home. He writes an angry letter to the manager: “I, meG@Duc, stole the salt shaker and I find this fact outrageous! Anyone can steal your salt shakers!” The previously fully sober manager goes home and drinks a bottle of vodka.

Day 193

The hacker discovers that all the salt shakers in the restaurant are chained and nailed to the table. He arrives at a hacker conference and reports on his progress, getting a well-deserved reward for the protection of the interests of society and consumers.

Fortunately, the manager never hears anything about it and will not die of alcohol poisoning, for now.

Day 194

As part of a diabolical, genius elaborate operation, BLACKHAT hackers break into the restaurant and pour all the salt from the salt shakers in their pockets. The hacker meG@Duc writes an indignant letter to the manager, alluding to the fact that there is no concern for the visitors in the restaurant as any criminal can deprive honest people from salt in an instant. A salt dispenser with a one-time authorisation is just necessary!

Engineers work in sweat on a new salt shaker, while waitresses hand out salt manually, again. The manager goes on vacation to the Seychelles and has dinner only in his room, avoiding any canteens, restaurants and bars.

Day 200

Visitors of the restaurant find in horror that in order to pour salt, they must go to the waitress, show their passport and get a special 8-digit one-time code to the shaker. For pepper they should repeat the procedure.


CoffeeMiner forces coffee shop visitors to mine for Monero

Bad guys can access all of the compute power connected to a particular public Wi-Fi network, all at once, to mine for cryptocurrency.

Posted on InfoSecurity | By Tara Seals

Surreptitious crypto-mining using unsuspecting victims’ computers has become a rapidly proliferating phenomenon – and now it has collided with coffee shop Wi-Fi hijacking.A software developer known as Arnau Code has developed a proof-of-concept for a man-in-the-middle (MiTM) attack, for use in coffee shops and other places where legions of students and teleworkers take advantage of free Wi-Fi. It shows how the bad guys can gain access not just to one victim’s CPU resources to mine for virtual currency but to all of the compute power connected to that particular Wi-Fi network, all at once.

Some weeks ago I read about this Starbucks case where hackers hijacked laptops on the WiFi network to use the devices computing power to mine cryptocurrency, and I thought it might be interesting perform the attack in a different way,” the developer explained in a blog, with the disclaimer that his research is “strictly for academic purposes.”

Appropriately named CoffeeMiner, the script allows for an autonomous attack on the Wi-Fi network to do just that. It’s the result of a multistep – but not challenging, according to Code – process.

Read entire article CoffeeMiner Forces Coffee Shop Visitors to Mine for Monero | InfoSecurity

Coffee shop Wi-Fi, the ‘most dangerous’ of them all

Unsurprisingly, Wi-Fi networks in airports and hotels are also extremely popular.

Hackers could intercept communications between two parties who believe they’re communicating directly with each other.

Consumers need to be more aware of the potential dangers of connecting to a public Wi-Fi network, a new security report has warned.

Wi-Fi networks in cafés and coffee shops are “high-risk”, according to the study, partly because of their popularity and convenience. Cyber criminals are targeting people who connect to public Wi-Fi networks, and can access their private data without them realising.

“Wherever there is an unsecured public Wi-Fi network, there is the threat of attack,” reads a new report from iPass. “However, coffee shops are seen as the most dangerous public Wi-Fi venue of all.”

Consumers need to be more aware of the potential dangers of connecting to a public Wi-Fi network.

Research involving 500 CIO and IT decision makers from the UK, US, Germany and France found that coffee shops are the most popular places to connect to a public Wi-Fi network, followed by airports and hotels.

“Our research shows that man-in-the-middle attacks are considered to be the greatest mobile security concern of using public Wi-Fi hotpots (69 percent),” the report explains.

“This is when a hacker secretly attacks the data flowing to and from the internet to the mobile device.”

RELATED: Please stop charging your phone in public ports

“Cafés and coffee shops are everywhere and offer both convenience and comfort for mobile workers, who flock to these venues for the free high speed internet as much as for the the coffee,” said iPass vice president of engineering, Raghu Konka.

“However, cafés invariably have lax security standards, meaning that anyone using these networks will be potentially vulnerable.”

Source: Independent

Read entire post grey  Related Training grey