Posted in digital audio hacks Tagged firmware, handheld audio recorder, voice recorder PIC-based Voice Recorder Not bad for a two-fold improvement in the recording capability of a handheld audio recorder. After that, it’s a simple matter of upgrading his TEAC and getting the ability to record at 96kHz.Ī very, very simple hack that’s really just flipping a few bits. The solution to improving the bitrate for the TEAC VR-20 was as simple as copying the first 20 bytes from the TEAC firmware over to the first 20 bytes of the Tascam firmware. Both of these sets of firmware were exactly the same size, and after downloading a hex editor, found a huge difference in the first 20 bytes of the firmware – the portion that tells the microcontrollers what it actually is. #VOICE RECORDEE TOY MOD#The mod began by downloading the firmware for both the TEAC VR-20 and the Tascam DR-08. #VOICE RECORDEE TOY UPGRADE#It’s essentially the same thing, but the Tascam unit can record at 96kHz, whereas the TEAC can only record at 48kHz. figured out a way to upgrade his less capable but cheaper VR-20 to record at a higher bit rate with just a simple firmware hack. This model was recently replaced by the Tascam DR-08 audio recorder. It’s the action that follows up which defines your character.Just bought a really nice TEAC VR-20 audio recorder, a very capable recorder perfect for recording your thoughts or just making concert bootlegs. I have been ringing so many doorbells,” said researcher Victor Gevers to Motherboard. “They were very irresponsible because they had to know about this. The company used Amazon’s cloud servers, and it was easy to spoof the URL where a message would be be - again, without requiring authentication from anyone who wanted to view them. #VOICE RECORDEE TOY HOW TO#The voice messages weren’t actually in the database, but CloudPets made it trivially easy to figure out how to access them. That database contains information on 821,396 registered users and 2,182,337 voice messages. Per Motherboard, the database is currently being passed around the seedier corners of the internet. One of Hunt’s contacts made three separate attempts to alert the company.įour, CloudPets failed to notify parents once they discovered what was going on - and a tremendous number of people could be affected. Motherboard’s Franceschi-Bicchierai had someone contact him about the security flaw in late December, while also attaching an email they had sent to the company warning them. Three, CloudPets ignored four separate attempts to contact them about the security hole. Eventually, CloudPets hid its database from view, but it’s incredibly likely that ransomware authors accessed the database before this - thousands of sites using MondoDB were attacked with ransomware around the beginning of the year. Forensic evidence shows that there were many others out there accessing the CloudPets database. Of course, Hunt wasn’t the only one to figure this out. #VOICE RECORDEE TOY CRACK#So while CloudPets did take measures to obscure people’s passwords, users could use passwords as simple as “qwe” or that ol’ standby, “password.” Security researcher Troy Hunt ran the obscured passwords through a tool that tested them against the most commonly used passwords and was able to quickly crack many of them. Two, CloudPets didn’t require users to use a strong password. Anyone using a site like Shodan, which searches for devices connected to the internet, could have discovered it - and it appears that many did. First, the company was using MongoDB, an open-source database platform, and left its entire database out in the open, not even requiring a user to authenticate before gaining access. The sins of CloudPets boil down to four key errors. Motherboard writer Lorenzo Franceschi-Bicchierai has a lengthy post detailing the major lapses in security that left hundreds of thousands of users exposed and over two million recordings between children and their parents in the open. It wasn’t, unfortunately, a message that was very well protected. As a commercial for the device promised, it was a “message you could hug.” Kids could then upload and send back a message of their own. The idea was simple: Parents would record a voice message on their phone, CloudPets would upload it to the cloud (thus the toys’ name) and then send it to their kids’ plush toy to be played from a built-in speaker. CloudPets: a message you can hug, but probably shouldn’t.ĬloudPets offered up a way for parents to keep in touch with kids, even when they were away from the house.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |