Flipper Zero Furry Fest Attack - News Update!
Вставка
- Опубліковано 5 жов 2024
- The Midwest FurFest 2023, a Furry convention that took place in Rosemont, Illinois, is believed to the the first convention targeted by an deliberate BLE Spam Attack. The attack believed to have originated from a group using Flipper Zero devices disrupted Point-of-Sale terminals, Wireless Speakers, Hearing Aids, Heart Monitors, and even an Omnipod Insulin Pump.
Business enquiries please contact me here: contact@commandergateway.com
The insuline pump not working without a constant Bluetooth connection is concerning.
Yes, and this is FDA approved
Barnaby jack was gonna show us just how vulnerable they are until he was killed :(
HUAWEI Made NEARLINK for a while ago HUAWEIs NEARLINK is the future / no more bluetooth / HUAWEIs NEARLINK is WIFI + Bluetooth Just miles better🤟🏻
That news segment's scare tactics are just disgusting even given the subject.
I was just thinking the same thing, why would they even talk about guns on the same topic?? I hate the news and stopped watching them years ago.
HUAWEI Made NEARLINK for a while ago HUAWEIs NEARLINK is the future / no more bluetooth / HUAWEIs NEARLINK is WIFI + Bluetooth Just miles better🤟🏻
This is terrifying!, my thoughts go out to the person with the insulin pump.
They are lying trying to get sympathy. Those pumps have internal monitoring systems. The ble is just for the app on your phone. Do you actually believe they would design it so if your phone died or you forgot it in the other room your life would be in danger? Get a grip
@@BeWhoYouWant2 Somone morons design stuff....*cough cough apple*
@@BeWhoYouWant2 That's not how they work. Depending on the Pump and what tells it to release insulin (usually being tied with a blood reader that's also connected to the phone), were something to interfere with the information being fed to it, causing the pump to release far more insulin than it should, that could be incredibly bad. Turning off the pump entirely though should be perfectly safe, death from lack of insulin is something that takes months to perhaps weeks depending on the severity since it's far easier to go high for a long time before you die than going low.
@@wyattw9727 but that isn't now it works. Disconnecting bluetooth from the monitor isn't going to cause it to start pumping. Please do a little research 🙏
HUAWEI Made NEARLINK for a while ago HUAWEIs NEARLINK is the future / no more bluetooth / HUAWEIs NEARLINK is WIFI + Bluetooth Just miles better🤟🏻
I'm more concerned that medical devices don't fail safe with medical Bluetooth devices. do you die (or have to go back to manual injection) if your power goes out of a period of time?
I have an insulin pump and if it runs out of battery and i dont have/cant get a replacement battery i will have to go back to manual injection if thats what you mean. The problem with the bluetooth spam is that for example i couldnt check my glucose using my cgm and if i dont have a glucose meter on me im fucked.
That's not how these things work.. it's just like a dashboard for the device l. The pump will still monitor and do its job.
You'd have to go back to manual ejection but you wouldn't die lol, not unless your sugars were so high for so long that you'd be hospitalized anyway. The main danger with insulin is accidentally overdosing, whether taking too much manually or having a pump somehow release too much. It's a pain in the ass if the pump were interfered with, especially if it were brick (especially if it's say, a Friday and your endocrinologist of choice has a closed office), but it won't kill you. Unless you were able to somehow use a flipper to jack up the insulin released to the body by the pump but I don't know if that's possible without tampering.
HUAWEI Made NEARLINK for a while ago HUAWEIs NEARLINK is the future / no more bluetooth / HUAWEIs NEARLINK is WIFI + Bluetooth Just miles better🤟🏻
On one hand, it's horrible that these attacks are hitting random victims in crowded places. On the other hand, medical and financial device makers now have to own up to actual damages instead of being able to ignore the security researchers begging them to stop using unsecured, consumer-grade, non-redundant designs.
As Occupy The Web says here... "Radio hacking is the next level" ua-cam.com/video/GxkKszPVD1M/v-deo.htmlsi=px2VzeHrR9n4LQFu&t=4797
Medical device should not be relying solely on using unlicensed bands, terrible FCC job at regulation and security. Besides my youtube username, im well trained and experienced in network and security not just a former student athlete.
I do have a flipper, i do not have the attachment though. Soon...😅
What difference would a licensed / unlicesed band make to someone intent on causing interference?
It actually was designated for medical use a long time ago. This is from Wiki: The ISM radio bands are portions of the radio spectrum reserved internationally for industrial, scientific, and medical (ISM) purposes. The IEEE 802.11 wireless networking protocols, the standards on which almost all wireless systems are based, use the ISM bands. Virtually all laptops, tablet computers, computer printers and cellphones now have 802.11 wireless modems using the 2.4 and 5.7 GHz ISM bands. Bluetooth is another networking technology using the 2.4 GHz band, which can be problematic given the probability of interference.
this is the most MFF thing I've ever seen
If your life depends on some unreliable wireless tech that is in public wireless hz range then you are unfortunately doing it wrong.
Firstly the insulin pump is supposed to survive without phone for a while since otherwise if your phone battery dies you also die / have to run to hospital?
For terminals, yes its anoying, but how about connecting them via usb, wifi and having them work just fine. If thats not an option then paying in cash should also be just fine.
The omnipod uses a modified android cell phone to connect and control the device.. When I first heard about this my mind went into papa bear mode because my daughter uses omnipod
Im a gay furry in cybersecurity, with both a flipper zero and a hackrf(A pentesting tool). And to see people doing this to others, especially with the device I love (Flipper zero) really hurts. The Flipper zero is supposed to be intended for testing and easier use of smart home devices etc. People have modded the flipper zeros firmware with applications that can maliciously send RF (Radio frequencies) that can do things outside of its intended use. The flipper zero is fun for home usage such as controlling smart lights and using it as an amiibo emulator (with amiibos I already have just programmed onto the flipper) I love the little device because it has such great usability, and it has a little dolphin friend on it that you can interact with. Seeing people do harm with it, especially at a place where everyone is just trying to have fun and meet new friends really hurts me because the device is not meant to be used for harm. People modified it to do so. I still dont understand why people think its funny to harm others with something that shouldn't be used for harm.
It's also possible that it wasn't even a Flipper being used for this attack. The BLE Spam attack can now also be run on multiple other devices like an ESP32, a Kali Linux cell phone, even a Raspberry Pi with a connected Bluetooth adapter.
Very true, but the easiest to operate and the most commonly available and bought device is the flipper zero. And since christmas just hit, im sure a bunch of kids got them as a part of their christmas presents. Its really really stupid how children want a device just to mess with others, I see kids all over tiktok with it using it to mess with other people.
@@peterfairlie2296
Why did you lead this with "I'm a gay furry in cyber"? Your background in cyber is somewhat relevant, and it was a furry con.. but why did anyone need to know your sexual preferences for this conversation?
Just to show it doesnt matter who you are, anyone can be a dick with something they own. Even the likes of someone in the common areas of the furry fandom.@@BeWhoYouWant2
@@cloudysensei but how does your sexual preference show that anyone can be a dick? Please understand I'm not trying to be rude but when you make being gay part of your personality and mention it when it's totally irrelevant you make us all look like Dicks
News networks always gotta go above and beyond with their scare tactics...
I've been to MFF 3 times and I'd take BLE spam over the ass hat who set off some sort of Chlorine gas device in a stair well resulting in the complete evacuation of the main hotel at around 3am. I narrowly avoided it because the main hotel was full and I had to stay in the hilton across the street but I'd turned my phone off because work kept spamming me with callout alerts and I turned my phone on the next morning to find a bunch of messages from my friends in the main hotel wanting to come and bed down in my room for the night because they were kicked out. The following day was pretty much a write off because everyone had been awake most of the night until fire crews could make it safe again. 9 people were hospitalised. I think it's important to realise that if you have medical devices that rely on things like bluetooth you need to carry a backup for use in the event that the primary doesn't work anymore for whatever reason. BLE attacks aside what if your phone gets stolen or broken? That shouln't have to involve a trip to the hospital. Bluetooth is convenient but I wouldn't want my life depending on it. I've also been to Furry Weekend Atlanta twice and the first time I was there it was at the Westin Peachtree Plaza and someone set off the firealarm in the middle of the night. I was on the 56th floor There's always some asshole who wants to cause drama and it's to be expected at an event of that size.
The fact that medical devices were effected is pretty scary
IT never gets old little do they know of course kids want one don't yours. Lol
Tell us more, Bob. Please, LMAO, that's my local news channel.
Yeah i saw it pop up a couple times on my phone when i was at the convention. I ended up turning off Bluetooth on my phone. But I heard it rebooting a few iPhones on people.
I was like furries, I ain't clicking that. Then I saw flipper zero attack. I was ok I'll click
Why not. Furries are perfectly fine. Most IT techs are furries.
@@troyBORG Most IT techs are furries?
Citation needed before you get doo doo on your mursuit
@@PhonePhone-sf8te Systems Engineer / bunny here. Also a ham. I sat my FCC technician class ham radio exam at MFF 2016. There are often ham radio events like fox hunts at furry cons. I'd say at least a third of us work in some kind of technical role. My furry friends consists of IT / infosec types, software developers and engineers of just about every dicipline. One of my furry friends is a doctor of nuclear astrophysics. I was in a furry hams telegram group at one point but it became a bit overwhelming because there was well over a thousand of us in there.
Funny...the people who are quick to assume people who are Furries, Autistic etc are the scum of the earth....will soon realise how wrong they were when the entire world Litterally ceases to function
@@lukedavis436 I love how entitled furries are on this matter. No, the world wouldn't stop if they disappear suddenly, but maybe it'll make an average IT guy slightly more mentally stable.
Most hearing aids have Bluetooth now, so anyone with hearing aids is also vulnerable to these :/
Elon Musk's Neuralink Brain implant chip will also use Bluetooth. So we can now use the Flipper to cause Brain Seizures too LOL!
First and foremost I am not trying to defend the attacker in any way. With that said I believe no medical device should be reliant on bluetooth or a phone to operate. people lose, break or have their phone's die all the time. A medical device should be able to run on its own without the need of another device, and bluetooth should only be used for monitoring. Also companies that develop medical devices should take these kinds of things in to consideration, but it is not surprising that they do not as most hospitals usually have outdated networks and server systems hence why they are hacked and targeted pretty frequently.
I am glad nobody was injured or required the hospital due to these attacks.
News media being news media is disgusting
And this is why we can't have nice things, some entities loves to ruin it for everyone.
Siri, play Drake God's Plan
🤣
I used to be okay with furries but now the community is a hot mess
All communities are like that to a point and it only takes a few to spoil it for everyone elese. There's a lot of dirty old mysogonists and racists in the ham radio clubs I've been part of but try not to tar us all with the same brush.
@@binky_bun the fact you used the words "misogynist and racists" make me not take you seriously. The terms have been watered down due to social media, and makes me think that you actually proved my point as to why furries are not great anymore.
@@techguy348why? are you dumb?
@@techguy348 oh I'm sorry would you prefer I call them dirty old men. There's a good reason females are few and far between in the ham community and dirty letchy old men hitting on them at every opportunity perhaps has something to do with that. If you have a problem with those sorts of terms perhaps you're part of the problem. Curious how you'd feel about a 75 year old radio club chairman making suggestive comments to your 14 year old daughter because I've seen exactly that.
so if that guy ever forgets his phone at home he's dead
Honestly this is pretty good. There's nothing special about the Flipper except that it's easy enough for idiots to use compared to ESP32s or whatever. So now we have idiots making a lot of smart people mad, meaning all of these newly discovered vulnerabilities will be patched quickly. The damages and risks of injury sucked, but in terms of coordinating an effective response this is one of the best places it could have happened, compared to like, a hospital
These are not in any way shape or form new vulnerabilities. This is all stuff you could do with much cheaper devices for years, in some cases decades. The only thing flipper is doing is packaging it for tiktok kids.
TV 'interview with computer guy' segment was soooo cringe
Reminds me of our IT teacher in highschool
I’m not a furry anymore. I used/tried to be. But I’m already a therian (I’m 39). So that’s enough of a struggle. I’ve been to conventions. I do my best to not bother others. Especially something like this that could possibly cause loss of life, and issues with other BTLE devices. I’d like a Flipper Zero, but not for these reasons.
you and me both bro. I still like costuming but I separate myself from the furry stuff now.
Mood dude, the furry fandom used to be so much better and now it's gone to shit, some of the art is cool and there's still a lot of people but really I don't associate with the community much, even if a lot of people now (weirdly) are coming out as furries
HUAWEI Made NEARLINK for a while ago HUAWEIs NEARLINK is the future / no more bluetooth / HUAWEIs NEARLINK is WIFI + Bluetooth Just miles better🤟🏻
This shit is the reason i do most things wired only and dont use bluetooth
🤔🤨
My bad guys
That is awsome
Wonder if any of the furries were using lovesense toys that are now susceptible to btle attacks with the new firmware.. 😂🤣
That probably wouldn't have made the news.
@@gotmilkbutt actually it has 2 modes. On full, or can't turn on..
I use bluetooth ANC headphones when I'm at risk of overstimulating, but I may have to switch to physical earplugs for conventions because of this... yikes
@@acmhfmggru try having autism and get back to me
Cables > radio
Finnaly a reall enemy got hitten
lmao
barf
Furry conference hacked HAHAHAHAHAHAHA!!
LOL