Xiaomi Electric Scooters Vulnerable to Life-Threatening Remote Hacks

Smart devices definitely make our lives easier, faster, and more efficient, but unfortunately, an insecure smart device can also ruin your day, or sometime could even turn into the worst nightmare of your life.

If you are an electric scooter rider, you should be concerned about yourself.

In a report shared with The Hacker News in advance, researchers from mobile security firm Zimperium said to have discovered an easy-to-execute but serious vulnerability in M365 Folding Electric Scooter by Xiaomi that could potentially putting riders life at risk.

Xiaomi e-Scooter has a significant market share and is also being used by different brands with some modifications.

Google Created Faster Storage Encryption for All Low-End Devices

Google has launched a new encryption algorithm that has been built specifically to run on mobile phones and smart IoT devices that don't have the specialized hardware to use current encryption methods to encrypt locally stored data efficiently.

Encryption has already become an integral part of our everyday digital activities.

However, it has long been known that encryption is expensive, as it causes performance issues, especially for low-end devices that don't have hardware support for making the encryption and decryption process faster.

Researchers Release Tool That Finds Vulnerable Robots on the Internet

A team at a robot cybersecurity startup has released a free, open-source tool for information security professionals to help them easily 'footprint' and detect unprotected robots, not only connected to the Internet, but also to the industrial environments where they operate.

Dubbed "Aztarna," the framework has been developed by Alias Robotics, a Spanish cybersecurity firm focused on robots and is capable of detecting vulnerable industrial routers and robots powered by ROS (Robot Operating System), SROS (Secure ROS) and other robot technologies.

Written in Python 3, Aztarna is basically a port scanning tool with a built-in database of fingerprints for industrial routers (including Westermo, Moxa, Sierra Wireless, and eWON), and robotic technologies and components, as well as patterns that power the tool to test those devices against various known vulnerabilities and security misconfigurations.

Critical RCE Flaw in Linux APT Allows Remote Attackers to Hack Systems

Just in time…
Some cybersecurity experts this week arguing over Twitter in favor of not using HTTPS and suggesting software developers to only rely on signature-based package verification, just because APT on Linux also does the same.

Ironically, a security researcher just today revealed details of a new critical remote code execution flaw in the apt-get utility that can be exploited by a remote, man-in-the middle attacker to compromise Linux machines.

The flaw, apparently, once again demonstrates that if the software download ecosystem uses HTTPS to communicate safely, such attacks can easily be mitigated at the first place.

Endgame for Assange

Julian Assange looks very pale. "Pale" isn't quite accurate; his skin looks like parchment, almost translucent. He hasn't seen the sun for almost seven years. He sits opposite to me in the so-called Meeting Room of the Ecuadorian Embassy in London, the snow-white hair, his trademark, is shoulder-length and he wears a long beard. We joke about him looking like Santa. He wears a thick down jacket and eats a piece of the sushi I brought for lunch. It is cold in the room and I regret that I left my winter coat at the reception.

It is just before Christmas, and Julian Assange has probably just had the worst time of his stay at the embassy. Since March 2018 he was de facto in isolation, no telephone, no internet and no visits. The internet ban must be particularly difficult for him; it was not only his field of work, but his only access to the world.

The mood in the embassy is tense; the new ambassador is due to arrive. They have turned off the heating and taken the bed, he sleeps on a yoga mat. I cannot help the impression that everything possible is being done to make his stay so difficult that he finally gives in and leaves the embassy voluntarily. But what will await him then?

Huawei P30 shows up in renders

That'd be a welcome first

After Huawei’s P20 and Mate 20 lines were met with near-universal praise last year, Huawei is getting ready to return with the P30 this year. Today we got our best glimpse of what the device may look like yet, thanks to a render created by OnLeaks and 91 Mobiles.

Keep in mind this render is of the P30, not the P30 Pro. The biggest change is the vastly shrunken notch. Gone is the iPhone X-style wide cutout, replaced by a small waterdrop version as on the OnePlus 6T.

Hackers Leak Personal Data from Hundreds of German Politicians On Twitter

Germany has been hit with the biggest hack in its history.

A group of unknown hackers has leaked highly-sensitive personal data from more than 100 German politicians, including German Chancellor Angela Merkel, Brandenburg’s prime minister Dietmar Woidke, along with some German artists, journalists, and YouTube celebrities.
The leaked data that was published on a Twitter account (@_0rbit) and dated back to before October 2018 includes phone numbers, email addresses, private chats, bills, credit card information and photos of victims' IDs.

Although it is yet unclear who perpetrated this mass hack and how they managed to perform it, the leaked data appears to be collected unauthorizedly by hacking into their smartphones.
The hack targeted all of Germany's political parties currently represented in the federal parliament, including the CDU, CSU, SPD, FDP, Left party (Die Linke) and Greens, except for the far-right Alternative for Germany (AfD).