Horrifying macOS Bug Lets Anyone Become Admin With No Password

New bug found on macOS giving Admin Access to anyone without password input

All the users with a Mac should note that a new bug has been discovered on the latest version of macOS High Sierra. This particular bug can jeopardise your security as it allows anyone to get into the system that also as an administrator by simply typing ‘root’ in the username section. This bug is so dangerous after giving up the name as ‘root’ users are not even required to put in the password.
 

Taking the Twitter by storm

 
This dangerous bug has been found by a software engineer going by the name Lemi Orhanm Ergin. He claimed that this bug has the ability to grant admin access to anyone of any mac system within few seconds. The most horrifying thing about this bug is that it even allows anyone to login to the system just after the reboot. He described his finding in a series of tweets which were picked by a number of tech enthusiasts and soon the Twitter was flooded within huge number of users replicating the acts of the bugs.

It became apparently clear to millions of macOs High Sierra users that simply typing the ‘root’ in the username will help in bypassing the Apple security in no time. Some of the experts had stated that this bug is eerily similar to the Apple’s very own ‘root user’ login feature. It seems like this bug is actively making use of this feature which happens to enabled by default on the macOS. If you are whether your system is affected by this bug or then check your macOS by giving a click on the Apple logo present on the left top left corner of the screen. Now select the option “About this Mac” to know your device macOS version.
 

Bringing updates in quick time intervals

 
Apple has claimed that its macOS is simply the most secure operating system in the world but that doesn’t mean it is free of bugs. Apple is known to offers patches and fixes as quickly as possible which isn’t the case with other operating systems where users have to wait for months to get the incremental updates.

Just a few weeks ago Apple brought a massive supplemental update for the macOS High Sierra which helped in fixing a wide range of bugs along with improving the installer robustness and along with other issues. Some of the major issues resolved with this update include the fixing of the graphical problem associated with Adobe InDesign and issue related to addressed in the Yahoo accounts.

Apple has been quick at coming up with the fix as well this time around. Apple has even issued a statement where it stated that security is always been a top priority for every Apple product. It even clarified that the Apple engineers have found this issue in the Tuesday afternoon and they had started immediately working on patching up the security hole.

Now this big has been squashed in the macOS High Sierra for good and it shows why a huge number of are fan of the Apple products.

Paper Signals: Cute Voice Experiment Lets You Track World

Google experiment allows the construction of interactive paper signals

Have you ever thought about building your own functional and interactive speech recognition device? Know that Google is turning this unlikely possibility into reality. And most interesting of all, the objects are practically all made out of paper which is called as interactive paper signals. Google surprises us from time to time with very curious experiments demonstrating that technology can be used in very different ways and without the need for many resources. A recent example: cardboard glasses for virtual reality. Now they surprise us with a nice application to take advantage of Google Assistant.

This is an experiment of the company that besides having a rather unusual proposal, visually it is quite curious. They are paper structures that respond physically to voice commands. Paper Signals is a kit that allows us to make paper cutouts, connect them to Adafruit and move them when we do a specific search through Assistant. For example, we can create an umbrella-shaped one that opens when we ask if it's going to rain, a rocket that takes off when NASA launches a real one or see if there are variations in the Bitcoin's price.



Among the possibilities of utensils that can be built we have a weather alert, timer, signal for pauses, alert for low or high Bitcoin, or even a warning that shows when NASA is launching a rocket into space. All paper signals can be checked in the video below.

For the assembly of the paper signals it is necessary the Paper Signals starter kit, which includes an Adafruit plate, all necessary cables and the servo motor that gives life to the structures. Added to that, there will also be a need for a device that has access to Google Assistant - it has gained a function to find services like plumber and electrician recently - a printer and a lot of patience.

This is a great design to pass the time and have fun with the montage. We cannot fail to mention that Google kept the experiment code open, meaning anyone can create any kind of wizard. Do you have any favorite Paper Signals? Do not stop commenting.

Samsung: Graphene Balls Boost Battery Charging Speed by 500 Percent

Graphene Balls to Charge your phone Faster

Have you ever stepped out of your house and then realized that your phone is dead and charging could mean another hour or so when you don’t really have the time? Well, all that is going to change with Samsung’s 12 minute charge time. I don’t mean 12 minutes for just a bit of charge either but a full charge cycle.

In smartphones, a number of hardware has undergone changes to not only make the phone more efficient but also to make it more capable. But one of the things that has taken a backseat or which has not developed at the same rate, is the battery used in these smartphones.
 

How can a phone get a full charge in 12 minutes with Graphene balls?

 
Previously, or even now, smart phones had/have lithium-ion batteries. With today’s smartphones doing more than before, they also take up a lot of juice and this requires a lot of charge as well as the time it takes also increases.

Researchers have been looking for alternatives to these lithium-ion batteries but nothing seems to be promising until now.

A new study by Samsung has found, Graphene balls which is supposed to increase battery capacity by 45% and what is the greatest yet- it can increase charging time by a whopping 500%.
 

Why are Graphene Balls so great?

 
Samsung Advanced Institute of Technology or SAIT for short, has discovered this novel method of charging. But coming to the question of why are Graphene balls so great?

The answer is simple, with Graphene balls, the batteries not only have a higher capacity but also a faster charge time than ever before. Earlier, other solutions could either have a higher capacity or a faster charge time but not both.

Getting the ingredients for these graphene ball batteries is neither expensive nor difficult to find and another major advantage is that Samsung can incorporate Graphene balls into the batteries without majorly altering its manufacturing Equipment which otherwise could have been an expensive venture. So it means that the battery will still be able to give its best and at, hopefully a reasonable price for customers.
 

More about Graphene balls…

 
Graphene is a highly advanced substance which is a hexagonal lattice of carbon. SAIT used this lattice structure to create a Graphene ball with the help of silica. These Graphene balls will be located as a protective layer on the cathode and anode ends of the battery. The location is also deliberate as this point allows for greater charging capacity and faster speeds.

With the Graphene balls high stability, ability to act as a semi- conductor and its good thermal conductivity, it is proving to be a really good substitute for those lithium-ion batteries.

Everyone remembers the note 7 fiasco; this time around Samsung is taking no chances with the graphene balls. The graphene balls will allow the battery to charge without getting too hot.

When I’m talking increased capacity with the graphene balls, I mean a tablet’s worth of charging capacity that is 5000-6000mAh at a charge time of a mere 12 minutes.

Santa’s Village is Back in Business

Santa-Tracker: Google's Interactive Advent Calendar is Back

Google has built the Santa's Village and now The Santa Tracker is back: As every year, Google has again gathered a series of entertaining games in Santa's Village an interactive Advent calendar. This time kids can even program visually.
 

Santa-Tracker: From a misprint in 1955 into the Internet age

 
This Santa's Village has a long tradition at Google. Already in 2004, the search engine showed for the first time children on Google Maps the supposed course of Santa's journey from Santa's Village on Christmas Eve. The tradition is actually much older and was long before Google or the Internet. In fact, the Santa Tracker was created by a misprint in 1955.

At that time, the US mail order company Sears printed an advertisement that asked children to call Santa Claus from Santa's Village. However, instead of connecting to Sears, the number led to the North American Air and Space Defense Command (NORAD). In order not to disappoint the calling children, the local soldiers were ordered to give them the alleged position of Santa Claus. This is how a tradition emerged that, in cooperation with Google, spilled over into the Internet from 2004 onwards and it created Santa's Village.

In 2012, however, NORAD decided to monitor Santa Claus no longer with Google but with Microsoft's help. Obviously, after eight years, the search giant did not want to break with tradition anymore, so there are now two Santa trackers: Santa from Santa's Village created by Google and the original NORAD.
 
Google's Santa Tracker 2017: This year too with Coding Games
 
Google's Santa from Santa's Village has long been more than a preparation for Santa's fictive itinerary. It's now an interactive Advent calendar, featuring a range of Christmas games and informational materials. Kids learn, for example, how the Christmas traditions in different countries of the world look like.

In this beautiful Santa's Village, we particularly like the Coding game available since December 2nd. Here children have to program a virtual plotter so that a snowflake comes out of it. This is done using a visual programming language modeled on Scratch. This Santa's Village from Google is available as in previous years as a website and Android app.
 
The original: Santa Tracker by NORAD supports Alexa and Cortana
 
NORAD's original Santa tracker will also be available again in 2017. Here, too, children can learn about Christmas celebrations from all over the world. There are also different games. Unlike Google, however, the NORAD site makes no effort to deduce the desired language from your source. Children therefore have to manually switch to the various languages via a drop-down menu.

Interestingly, the Santa Tracker makers have not overslept the current hype about voice-controlled assistance systems. On Dec. 24th, according to the creators, you can ask Alexa and Microsoft's Cortana where Santa is currently in, and then get an answer from Santa's tracker.

What is KRACK Hack vulnerability

What is Krack

Krack is said to be an abbreviation for Key reinstallation attack which tends to involve an attacker utilising a one-time key which has been provided to the device of a client intending to connect to Wi-Fi network.

According to KU Leuven’s Mathy Vanhoef the researcher who discovered the vulnerability, his discoveries had been reported by tech site Ars Technica recently. He states that in some of the instances, hackers tend to exploit Krack in order to inject malware like ransomware in websites.

Vanhoef, informs that on doing so, the hacker has the potential to decrypt information which has been swapped from the access point with the client device wherein the personal details such as credit card numbers, together with messages and password can be exposed. It is here that the process of the hack can take place as described on the website of Vanhoef.

This latest discovered vulnerability can permit attackers to seize sensitive data which is transmitted between Wi-Fi access point and a computer or a mobile device which can be encrypted. This error is known as Krack that affects WPA2 which is a security protocol extensively utilised in the up-to-date Wi-Fi devices.
 

Four-Way Process Handshake

 
When a device tends to connect with a protected Wi-Fi network, there is a four-way process handshake for Krack , which occurs wherein this handshake warrants that both the client and the access point have the precise login authorisations for the network.

This tends to generate a new encryption key in order to protect web traffic wherein the encryption key is installed at step three of the four-way handshake. However the access point at times tends to resend the same key if it considers that the message could have been misplaced.

 Research of Vanhoef has discovered that the attackers could force the access point in order to install the identical encryption key which the intruder could utilise to attack the encryption protocol and decrypt the data. Vanhoef cautions that any device that seems to support Wi-Fi could probably be affected by Krack though Linux-based devices together with Android devices running version 6.0 or higher of the Android operating system are likely to be in danger. Presently it would comprise of over 40% of Android devices.

 

Update Wi-Fi Devices

 
Proof of the concept had been displayed by Vanhoef portraying how exploitation utilising the Krack technique was possible. He cautioned on his website that he was not in a position to determine if such attacks had been actively utilised.

Vanhoef also mentioned that in order to protect the user from Krack attacked, it was essential to update Wi-Fi devices such as the smartphones, laptops and tablets no sooner the updates are made available. Users are also cautioned to update their firmware of router. A security update addressing the issue had also been released by Microsoft according to the reports of The Verge.

Wi-Fi Alliance which is a network of companies making Wi-Fi devices, defining Wi-Fi standards and programs had informed that platform providers have begun organizing patches for the purpose of addressing the problem.