Tag Archive for Texas Instruments

| July 26, 2019
Comments Off on Fix Your Dongle – Today

Fix Your Dongle – Today

Fix Your Dongle - TodayIf you use a Logitech (LOGI) wireless mouse, keyboard or other device fix your dongle! The Logitech wireless dongle (officially Unifying Receiver) is vulnerable to an issue discovered in 2016 as well as newly discovered vulnerabilities unless you’ve updated the firmware. Download and install the latest firmware update to protect against vulnerabilities.

Mousejack attach

Logitech logoAffected Logitech wireless devices are vulnerable to a hack called “Mousejack.” Mousejack, (CVE-2016-10761) was first reported in 2016 by IoT security firm Bastille Networks, Inc. The Mousejack attach works by sending malicious radio signals (packets) wirelessly to an unsuspecting user through Logitech Unifying wireless technology. Logitech only partially fixed the hole (Cert VU#981271) in 2016. Mousejack uses the vulnerable Logitech Unifying receiver to intercept and inject unencrypted signals within a range of about 100 meters.

Incomplete fix

Logitech did not recall the Unifying Receiver back in 2016 when Mousejack appeared. Four new vulnerabilities were discovered in 2019. The new vulnerabilities are based on the incomplete 2016 fix. Logitech will only fix two of the four vulnerabilities, the others will remain unpatched. The vulnerabilities are logged as:

Logitech will not fix the holes identified in CVE-2019-13052 or CVE-2019-13053, both of which impact all Logitech Unifying devices. A Logitech representative told the Verge:

Logitech evaluated the risk to businesses and to consumers and did not initiate a recall of products or components already in the market and supply chain.

Logitech wireless mouseLogitech plans to patch the security flaws in CVE-2019-13054 (impacts Logitech R500, Logitech SPOTLIGHT) and CVE-2019-13055 which affects all encrypted Unifying devices with keyboard capabilities.

All Logitech USB dongles

Marcus Mengs, the researcher who discovered these vulnerabilities, told ZDNet the vulnerabilities impact all Logitech USB dongles that use the company’s proprietary “Unifying” 2.4 GHz radio technology to communicate with wireless devices.

Unifying is a Logitech standard dongle radio technology, and has been shipping with a wide range of Logitech wireless gear since 2009. The dongles are often found with the company’s wireless keyboards, mice, presentation clickers, trackballs, and more.

  • Sniff keyboard traffic,
  • Inject keystrokes (even into dongles not connected to a wireless keyboard)
  • Take over the computer to which a dongle has been connected.
  • Steal the encryption key between the dongle and its paired device
  • Bypass a “key blacklist” designed to prevent the paired device from injecting keystrokes

Bastille Networks

Techsupportalert.com reports that many of the vulnerable dongles are still on the market even though Logitech started releasing updated dongles sold with mice, keyboards, and stand-alone receivers.

 Hard to find firmware update

firmware updateNot long after the discovery, Techsupportalert.com, says Logitech issued a firmware update but it was hard to find on the support site and wasn’t widely known. If you didn’t update the firmware then (and most of us didn’t know about it) now is an excellent time to update.

Even if you installed the Logitech drivers and configuration app that came with the device, you are not protected. The required firmware update is not included, it must be downloaded and installed separately.

Give credit to Logitech, their firmware can be updated, where other manufacturer’s wireless dongles cannot be updated. This includes products from Microsoft, Dell (DELL, HP (HPQ), and Lenovo (LNVGY). In fact, any device that uses the same Nordic Semiconductor or Texas Instruments (TXN) chips and firmware for wireless receivers is vulnerable. The NordicRF nRF chip is a common chip used in wireless keyboards, mice, and presentation tools, which are frequently found in non-Bluetooth wireless input devices.

If you use a wireless device from Logitech or the Lenovo 500 devices, Bastille recommends you update your firmware. Any other non-Bluetooth wireless devices should be disconnected and you should contact your vendor and ask what models are not vulnerable before you replace your current gear.

Lenovo’s announcement is here.

Logitech’s announcement is here.

Here are the direct download links to the Logitech Unifying Receiver firmware update for PC, Mac, and the gaming mouse:

  • Logitech PC firmware update (zip)
  • Logitech Mac firmware update (zip)
  • Logitech G900 gaming mouse firmware update (zip)

rb-

Logitech Unifying ReceiverYou probably have an affected device on your network. Logitech has sold well over a billion mice. Users can recognize if they’re using a vulnerable dongle if it has an orange star printed on one of its sides.

If you have any extra Logitech wireless dongles around (I have several) you may want to update them.

You should also check back in with Logitech support, to see if the promised additional fixes will be forthcoming in August 2019.

Related Posts

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , , , , , , , ,
| June 5, 2012
Comments Off on Tablet Notes

Tablet Notes

Tablet computer ownership will lead the industry over the coming 12 months as all-in-one devices continue to grow in popularity according to the CEA.

Windows 8 Tablets in November

Windows 8 Tablets in NovemberExpect the first wave of Windows 8 tablets to land in retail stores in November, according to CNET. A secret source deep within Intel (INTC) says the Intel-based Microsoft (MSFT) Windows 8 tablets will use Intel’s upcoming Clover Trail Atom chip. DailyWirless says that Clover Trail is Intel’s first dual-core Atom design based on its 32-nanometer process technology.

The author says the tablets will fall into two basic sizes: pure 10-inch tablets and hybrid 11-inch designs with physical keyboards. Windows 8, like Windows 7 before it, will be powered by chips from Intel and AMD (AMD) and will be able to run older, so-called “legacy” applications.

A separate release from Microsoft, Windows RT, will land on devices powered by ARM (ARMH) chip suppliers NVidia (NVDA), Qualcomm (QCOM), and Texas Instruments (TXN). RT will not run older Windows applications.

Chinese Tablet PCs Peel Away at Apple

Chinese Tablet PCs Peel Away at AppleApple Inc may find it harder to keep market share in China because homegrown tablet PC brands will win over more customers says a report on China Daily.com. Sun Peilin with Analysys International, told China Daily, Apple’s (AAPL) market share will shrink to about 70 percent, “Chinese tablet PC makers are trying to form a stronger echelon behind Apple by taking over the market share that belonged to small copycat manufacturers.

Apple’s iPad and iPad 2 took 78.3 percent of the market share in China in Q1 2012, distantly followed by Samsung’s (005930) 5.1% and ErenEben’s 4.5% according to the article. AI’s data indicates tablet PC sales in China are expected to break 4.5 million units. Companies including Lenovo (LNVGY), Acer (ACEIY) and home appliance giant Haier Group, are releasing their own tablet PCs.

Sun from Analysys states in the blog the biggest obstacle Chinese brands face is how to come up with a different marketing angle against Apple, to avoid head-on competition with the iPad. “There are two separate markets for tablets: You can either go entertainment or business. The iPad is a big competitor in terms of entertainment, so Chinese companies should be different from iPad,” Sun suggested. Some Chinese companies have already differentiated their tablets. Beijing ErenEben Information Technology Co, a business tablet PC maker, won a government contract to provide tablets to the police department in the Guangxi Zhuang autonomous region.

According to Fang Liyong, COO of ErenEben, the company sold nearly 150,000 units of its first two generations of products in 2010, making it the biggest homegrown tablet PC brand by sales volume. “We are now selling nearly 30,000 units every month in 2011,” he said.

With a touchscreen developed by Japanese graphics-tablets maker Wacom Co Ltd, the ErenEben tablets were designed to offer an experience similar to writing on real paper. The COO boosts, “ErenEben has great growth potential, because China’s tablet market is so big, and Apple cannot take it all.”

iPad Suit

iPad SuitMohan’s Custom Tailors of New York is taking the boring and basic out of the word “suit” by designing a new and improved version for the modern man. According to their website, as men are dressing up and going out to dinner dates, museum galleries, and lounges in fine style, Mohan’s is creating contemporary and handsome designs to fit their needs. Mohan’s has introduced the fashion of the future with their new tech offerings, including pockets for your Research In Motion (RIMM) Blackberry, Apple (AAPL) iPod, iScribe, Bluetooth, and more. Most recently, they have revealed the first-ever iPad pocket in menswear, creating a fashion rush for “techies” around the world.

iPad Bacon Case

iPad Bacon CaseAt Antje Schmitt’s storefront at Etsy, the famous handcrafted Bacon Case for the Apple (AAPL) iPad 3 is now available. The Bacon Case is also available for older iPads, MacBooks, Netbooks, and Notebooks.

ZD.net – “The undisputed king of the weird category however, is the iPad bacon case ($59, pictured), which I’m ordering immediately.”

Gizmodo – “It’s $59, but who cares? Bacon iPad cases are what money was invented for, people. Well, that, and both actual bacon and actual iPads.”

Gearfuse – “Bacon and Apple products go together like peas and carrots. Or lamb and tuna fish. They’re both the perfect byproducts of their respective categories. Pimp your iPad with pork with the custom-made Bacon iPad case. It might not be actual bacon, but it’s realistic design is enough to make you wish you had a side of eggs to go with your balanced breakfast of pork and tablet.”

Clueful Scans Your iOS Apps For Privacy Behavior

Clueful by BitdefenderSecurity firm Bitdefender has introduced Clueful, an app that scans your Apple (AAPL) iOS apps lets you see what information other applications installed on your iDevice might have access to. Once downloaded and installed (iTunes), the $3.99 app scans your iPad 3, iPhone 4s or other iOS Apple products to see what’s installed and puts it in a list that can be filtered based on the various kinds of behavior. This includes things like:

  • Apps that can track location
  • Apps that can read the address book
  • Apps that might drain battery
  • Apps that use iPhone’s unique ID
  • Apps that display ads
  • Apps that gather analytics

These behaviors are listed in the results and explained on each app’s detail page. However, Clueful doesn’t log how often these behaviors happen. Clueful also notes if your data is encrypted, and if app makers anonymize you as a user, CNET News.Com reported.

Besides scanning what you have downloaded, the article explains that the software is designed to let you research what kinds of information an application wants to use before you buy it from the App Store. However, the author says, ” this appeared to be a work in progress, it is slow and unable to pick up a handful of big name games and apps.”

Bitdefender maintains all the data behind the privacy analysis, and users can ask to have apps that are not a part of that system analyzed. CNet states that Clueful comes some three months after Apple came after fire for the fourth time over how iOS and apps log and send user information to third parties.

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Tablet computing | Tags: , , , , , , , , , , , , , , , , ,
| March 14, 2009
Comments Off on Wireless Electricity Charging Up

Wireless Electricity Charging Up

Wireless Electricity Charging UpIntel (INTC) demonstrated has demonstrated wireless electricity. The wireless electric power system that could revolutionize modern life by eliminating chargers, wall outlets and batteries by 2050. Intel chief technology officer Justin Rattner demonstrated a Wireless Energy Resonant Link at Intel’s 2008 developer’s forum.

Intel logoDuring the demo electricity was sent wirelessly to a lamp on stage, lighting a 60 watt bulb. The bulb used more power than a typical laptop computer. Most importantly, the electricity was transmitted without zapping anything or anyone that got between the sending and receiving units. “The trick with wireless power is not can you do it; it’s can you do it safely and efficiently,” according to Intel researcher Josh Smith. “It turns out the human body is not affected by magnetic fields; it is affected by elective fields. So what we are doing is transmitting energy using the magnetic field not the electric field.

Intel did not develop wireless electricity

Examples of potential applications include airports, offices or other buildings. They could be rigged to supply power to laptops, mobile telephones or other devices toted into them. The technology could also be built into plugged in computer components. Monitors could broadcast power to devices left on desks or carried into rooms, according to Mr. Smith.

Intel did not develop this idea. In the 1890’s scientist and engineer Nikola Tesla envisioned a world, in which all electricity is transferred wirelessly. The idea was abandoned and highly efficient copper cables became the basis for modern electricity infrastructure. Researchers at MIT demonstrated the technology in 2007.

Inductive coupling

Nikola TeslaAda, Michigan based, Fulton InnovationseCoupled technology, uses inductive coupling and combining it with communications and control properties to deliver on Tesla’s vision of wireless electrical distribution. eCoupled supplies power and communication through an inductively coupled power circuit. The circuit dynamically seeks resonance. This allows the primary supply circuit to adapt its operation to match the needs of the eCoupled-enabled devices it recognizes.

Energizer is using eCoupled technology. The Energizer Hard Case Professional eCoupled Swivel Light waterproof flashlight that never needs new batteries will go on sale this year. At CES 2009, Tool manufacturer Bosch brought prototypes that can charge on the workbench or inside their carrying case when the case is placed on a charging surface. The wireless charger could be in a workshop or even fitted inside a truck ensuring that cordless tools are always ready to go.

Wireless electricity applications

Texas Instruments is also utilizing the eCoupled technology. Masoud Beheshti, director of battery charge solutions in TI’s battery management solutions group, added: “We look forward to supporting eCoupled-based solutions using our extensive portfolio of charge and power management solutions for all types of portable applications.

Wireless electrical products are already on the market. Colorado based Wild Charge is licensing their wireless electrical charging systems. They have products available for sale on their website for Blackberry and Motorola phones.

Related article

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers and anything else that catches his attention since 2005. You can follow him at LinkedInFacebook and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , ,