worldkey.io is one of the many independent Mastodon servers you can use to participate in the fediverse.
Discussion of Disney history, theme parks, music, movies, and related topics.

Administered by:

Server stats:

99
active users

#iot

10 posts10 participants0 posts today

i have a 84505R Liftmaster garage door opener and they've fscked with the MyQ API so much that i can't use #HomeKit via MyQ and need to go with a #RATGDO device or similar, but because my opener is a 84505R and therefore has a "yellow learn button" (lol?) i am told i need An Adapter but not what Adapter that might be.

this is the hanging chad of my #householdIT that persists and i am determined to figure it out without buying a new opener. and you can help! if you have any ideas lmk 🙏 #iot
guh

‘Critical concerns’ about internet of things security

“GlobalData’s Internet of Things report outlines that the fragmented security standards landscape and the weak security of many internet of things (IoT) devices could hold back further adoption of the technology. Furthermore, it suggests that existi ...continues

See gadgeteer.co.za/critical-conce

A person seated in a cosy living room interacts with smart home devices, showcasing modern technology and a relaxed atmosphere. There are connecting lines going out from the person's smartphone to the various devices, indicating their phone is connected to the devices.
GadgeteerZA · ‘Critical concerns’ about internet of things security“GlobalData’s Internet of Things report outlines that the fragmented security standards landscape and the weak security of many internet of things (IoT)

It's easy to get scared when headlines combine terms like "backdoor", "Bluetooth", and "a billion devices".

Should you be worried? No.

The "attack" for ESP32 chips in some Internet of Things devices is some undocumented commands that are likely to be for testing by the manufacturer, Espressif, the in the factory. It cannot spread from one device to another like a virus/worm, and it takes a lot more than being within Bluetooth range -- it requires physical access to I/O pins on the chip itself or access to a USB port (if one is present). That's just the standard way to flash the firmware. It should go without saying that if a malicious person has physical access to the inside of your device then you may have more security concerns.

It's been fascinating to watch the propagation of fear and misinformation in a niche where I have dabbled enough to develop a bit of technical proficiency.

My interpretation of events is that Tarlogic Security is spreading panic to gain attention or notoriety.

Undocumented "backdoor" found in Bluetooth chip used by a billion devices:
bleepingcomputer.com/news/secu

NIST (National Institute of Standards and Technology) has a CVE:
nvd.nist.gov/vuln/detail/CVE-2

Edit to update:

Espressif’s Response to Claimed Backdoor and Undocumented Commands in ESP32 Bluetooth Stack
espressif.com/en/news/Response

BleepingComputer · Undocumented backdoor found in Bluetooth chip used by a billion devicesBy Bill Toulas

This seems like nothing special overall. Not something that can be taken advantage of remotely, and would require an attacker somehow to load firmware of its own (and on ESP32, no less) or have physical access. Mostly sounds like a classic "If you have root access you can do things as root" notice which is not all that novel.

bleepingcomputer.com/news/secu

BleepingComputer · Undocumented backdoor found in Bluetooth chip used by a billion devicesBy Bill Toulas

There are things out there like the Works With Home Assistant badging program for things that work with #hass but we also want to know what doesn't work so we don't waste time and money on them.

If you've run across a IOT device that doesn't work with Home Assistant, or works poorly with it (like requiring a cloud service to control a device on your home LAN), please submit it to github.com/unixorn/internet-of so I can add it to the list.

Thanks!

#IOT #homeassistant @homeassistant @iot

GitHubGitHub - unixorn/internet-of-trash: A list of IOT devices that are garbageA list of IOT devices that are garbage. Contribute to unixorn/internet-of-trash development by creating an account on GitHub.

I need to find a plug that I can remotely operate via the internet. It should work via wifi. It would be nice if it were actually secure and not some massive security hole in the network. It would be used to power cycle a Raspberry Pi periodically when the Raspberry Pi crashes and I can't get to it in person for weeks at a time.

We're very excited to announce that Apollo Automation have joined the Works With Home Assistant - the first @esphome-based devices to receive this certification! 🎉

Check out how Apollo got started building devices with ESPHome and which ones have been certified on our blog 👇🏼

#HomeAutomation #SmartHome #ESPHome #DIY #IoT
home-assistant.io/blog/2025/02

Home AssistantApollo joins the Works With Home Assistant ProgramAdding three devices, including their community favorite presence and air quality multisensors.

That guy hacked his air purifier, reversed part of the Android app, then the PCB, downloaded the firmware and reversed everything .. to integrate it to HomeAssistant! :o

Didn't know about MessagePack nor esp32knife.

jmswrnr.com/blog/hacking-a-sma

James Warner · Hacking a Smart Home DeviceHow I reverse engineered an ESP32-based smart home device to gain remote control access and integrate it with Home Assistant.

Valentine's Day Giveaway
Win beta #RK3588AIModule7 A low - power #AI module compatible with Nvidia Jetson Nano. Great for high - performance computing and high - density servers.Get your hands on it early and share your thoughts!
To enter:
1、Repost and share your use case and desired features. docs.armsom.org/armsom-aim7
2、Subscribe to our crowdfunding:
crowdsupply.com/armsom/rk3588-

Winners announced Feb 14th at 5 PM (Beijing Time).#opensource #linux #iot #hardware #machinelearning #llm #tech @itsfoss

Should we release PoCs publicly - after they have been fixed? or should we not?

While releasing a PoC is positive for research and awareness, there's no denying it increases the vulnerability's exploitation in the wild.

- CVE-2024-41710 fixed on July 17, 2024
- Two weeks later: PoC published on Github
- Jan 2025: Aquabot v3 noticed "using a payload almost identical to the PoC"

Ref: akamai.com/blog/security-resea

#botnet #phone #entreprise #mirai #IoT #CVE-2024-41710

Hi!

I'm Adrian, a FullStack #Developer looking for a job either in #Québec (or from it if you allow for remote work), with a permanent and open visa

I have experience building and maintaining web apps and APIs, designing systems, doing #DevOps and a bit of #BigData, #MachineLearning and #IoT

I'm experienced using #Elixir, #Phoenix, #LiveView, #NodeJS, #TypeScript, #Fastify, #Express and #Python ; and on the DevOps side in CI/CD pipelines (either #GithubActions and Gitlab CI/CD), #Docker and a bit of #Kubernetes

I was tasked with a lot of the #innovation happening in my previous company, researching tools, librairies, patterns or general technologies either for our own #DeveloperExperience or for our products

I also wrote a lot of technical and non technical documentation and internal presentations, and even participated in a few meetups. You can read some of my writing on my blog: blog.adrianc.eu

You might also have seen me on a few Elixir-related Discord servers, or even Bluesky (@adrianc.eu) and Twitter ; either sharing tech news, helping people, reading in book clubs or just chatting

I’m open to full-time right now, contracting work can be discussed.

I'm looking for any developer position, not only #ElixirLang, even though it represents most of my experience. And if the technology you're using isn't on my resume, give me a chance! I'm a fast learner and I might anyway have studied it in class :P

DM me for more info, like github link, my resume or anything :)

Boosts, responses and DM welcome, of course!

AdrianCAdrianCCuriosity propelled

Hello Friends, my current contract role wraps up at the end of January, so I am looking to get #FediHired FT or PT in the arena of Internet of Things #IoT , Embedded Systems, and Making Friends With The Robot Overlords When They Were Babies.

I have an electronics and advanced manufacturing lab in Brisbane, so am ideally placed to assist businesses who need a "hardware wizard on retainer".