An Argentinian TV show accidentally invited a urologist instead of a ufologist on and asked him about aliens.
โIโm a urologist, not a ufologist. It sounds similar, but itโs not the same.โ
To be honest it sounds close enough to me.
https://t.co/s06DXL7f47
Italian efficiency when it comes to coffee should be studied.
In Italy:
- Walk into a bar and look at the guy
- Un caffe
- 30 seconds later itโs ready
- Shoot it
- Leave โฌ1
- Walk out
In the US:
- Join a line
- Wait
- Order coffee
- Answer 12 questions: Size? Milk? Roast? Sugar? Temperature? Colombia beans? Name? How do you spell it?
- $12.34
- Ask for a 20% tip. Click 5 times on a ipad to have a custom tip
- Tap phone
- ask where to send the invoice
- Wait again on a different line
- Someone call a name that sounds similar to mine
- get the coffee
- too hot, can't drink it
- finally at temperature
taste like shit
Hacking the #EU#AgeVerification app in under 2 minutes.
During setup, the app asks you to create a PIN. After entry, the app *encrypts* it and saves it in the shared_prefs directory.
1. It shouldn't be encrypted at all - that's a really poor design.
2. It's not cryptographically tied to the vault which contains the identity data.
So, an attacker can simply remove the PinEnc/PinIV values from the shared_prefs file and restart the app.
After choosing a different PIN, the app presents credentials created under the old profile and let's the attacker present them as valid.
Other issues:
1. Rate limiting is an incrementing number in the same config file. Just reset it to 0 and keep trying.
2. "UseBiometricAuth" is a boolean, also in the same file. Set it to false and it just skips that step.
Seriously @vonderleyen - this product will be the catalyst for an enormous breach at some point. It's just a matter of time.