/mastodon/gutocarvalho @gutocarvalho

9 posts9 participants0 posts today

**The Linux Foundation** @linuxfoundation@social.lfx.dev · 1d

The Linux Foundation @linuxfoundation@social.lfx.dev

@zephyr RTOS is no longer just a contender, it’s the future of embedded
5x growth in contributors over 8 years
Built for modern DevSecOps workflows
Seen all over Embedded World 2025

Read more: https://www.beningo.com/the-biggest-takeaways-from-embedded-world-2025/
#LinuxFoundation #IoT #Zephyr

**Hacker News** @ycombinator@rss-mstdn.studiofreesia.com · 3d

Hacker News @ycombinator@rss-mstdn.studiofreesia.com

Jeff Geerling won't connect his dishwasher to your stupid cloud [video]
https://www.youtube.com/watch?v=5M_hmwBBPnc
#ycombinator #bosch #home_connect #wifi #iot #internet_of_things #internet_of_shit #enshittification #planned_obscolescence #consumer #rights #privacy #data #app #iphone #android #service #cloud #connected #devices #goods #dishwasher #adora #500 #800 #benchmark #consumer_reports #testing #review #installation

YouTubeI won't connect my dishwasher to your stupid cloudBy Level 2 Jeff

**Karl Voit** @publicvoit@graz.social · 3d

Karl Voit @publicvoit@graz.social

BSI-Bericht: Erhebliche Schwachstellen bei #Fitnesstrackern & Co.
https://www.heise.de/news/BSI-Bericht-Erhebliche-Schwachstellen-bei-Fitness-Trackern-Co-10285313.html?wt_mc=rss.red.ho.ho.atom.beitrag.beitrag

"Die Experten wählten demnach zehn Produkte für "eine detaillierte Sicherheitsuntersuchung" aus. Darunter waren sechs vernetzte Uhren wie #Smartwatches, drei #FitnessTracker und ein #SmartRing. Die Forscher deckten dabei insgesamt 110 Schwachstellen auf, die sie als "mittel" oder "hoch" einstuften. Keines der Geräte war komplett frei von #Sicherheitslücken."

Ist doch vollkommen egal, wohin man seine persönlichsten (Gesundheits-)Daten schickt. Oder?

heise online · Feb 17BSI-Bericht: Erhebliche Schwachstellen bei Fitness-Trackern & Co.By Stefan Krempl

#Sicherheit #Gesundheit #iot

Replied to David August

**Kevin Karhan** @kkarhan@infosec.space · 4d *

4d *

Kevin Karhan @kkarhan@infosec.space

@davidaugust nodds in agreement

EVERY SINGLE @internetofshit device ever!

The sad part is this isn't even absurd, and I'm convinced people want this garbage since people buy shit worse than #juicero!

YouTubeRechargeable ShoesBy penguinz0

#InternetOfShit #Enshittification #AI

Replied in thread

**Tinx** @tinx@jit.social · 5d

Tinx @tinx@jit.social

@FreeCAD
I made a simple two-part reed switch holder to smartify my gas meter

https://www.thingiverse.com/thing:7000619

Simple 3D rendered preview.

The bracket allows placement of a reed switch on the left and can be held in place via a screw on the right.

Photo of a gas meter with the attached reed switch holder.

#FreeCAD #FreeCADFriday #SmartHome

**Paul Houle** @UP8@mastodon.social · 5d

Paul Houle @UP8@mastodon.social

Novel Smart Glove for Ride Monitoring in Light Mobility

https://www.mdpi.com/2410-390X/9/1/6

#sensors #wearables #iot

Replied in thread

**Blackbird** @Blackbird@freiburg.social · 6d

Blackbird @Blackbird@freiburg.social

Zwecks Auffindbarkeit ein paar Hastags dazu:
Untersuchte Hersteller: #Huawei #Sungrow #GinlongSolis #Goodwatt #GoodWe #SMA
Allgemein: #PV #WR #Wechselrichter #Solar #Inverter #SunDown #Forescout #China #Hacker #SmartHome #IoT
https://www.forescout.com/research-labs/sun-down-a-dark-side-to-solar-energy-grids/
@bsi

Recommendations
Manufacturers
Development • Devices: holistic security architecture including secure boot, binary hardening, anti-exploitation features, permission separation etc
• Applications: proper authorization checks on web applications, mobile applications and cloud backends
Testing • Regular penetration testing on applications and devices • Consider bug bounty programs
Monitoring Web Application Firewalls Remember that a WAF does not protect against logical flaws

Users
Residential and commercial users • Change default passwords and credentials • Use role-based access control • Configure the recording of events in a log • Update software regularly • Backup system information • Disable unused features • Protect communication connections
Commercial and utility installations (in addition) •
Include security requirements into procurement considerations
• Conduct a risk assessment when setting up devices • Ensure network visibility into solar power systems • Segment these devices into their own sub-networks • Monitor those network segments

Empfehlungen für Besitzer und Hersteller von PV-Wechselrichtern

Zusammenfassung der Veröffentlichung über Cyber-Schwachstellen und Risiken bei PV-Wechselrichtern

Falschfarbenkarte: Anteil der Sonne an der erzeugten Elektrizität nach Ländern, 0-25%

**Armbian Linux** @armbian@fosstodon.org · 6d

Armbian Linux @armbian@fosstodon.org

GIVEAWAY ALERT!

Win a FriendlyElec NanoPi R3S – a dual Gbps router powered by Rockchip RK3566!

Enter here: http://forum.armbian.com/raffles/raffle/27-friendlyelec-nanopi-r3s/

Boost

#NanoPi #Giveaway #IoT

**Benjamin Carr, Ph.D.** @BenjaminHCCarr@hachyderm.io · Apr 2

Apr 2

Benjamin Carr, Ph.D. @BenjaminHCCarr@hachyderm.io

#Microsoft used its #AI-powered #SecurityCopilot to discover 20 previously unknown vulnerabilities in the #GRUB2, #UBoot, and #Barebox #opensource #bootloaders.
GRUB2 (GRand Unified Bootloader) is the default boot loader for most #Linux distributions, including Ubuntu, while U-Boot and Barebox are commonly used in embedded and #IoT devices.
https://www.bleepingcomputer.com/news/security/microsoft-uses-ai-to-find-flaws-in-grub2-u-boot-barebox-bootloaders/ #ITSec

**Banana Pi Open Source Hardware** @bananapi@mastodon.social · Apr 1

Apr 1

Banana Pi Open Source Hardware @bananapi@mastodon.social

Banana Pi BPI-CM6 with SpacemiT K1 8 core RISC-V chip,8/16G RAM and 8/16/32G eMMC
https://www.banana-pi.org/en/core-board-and-kit/197.html
#riscv #bananapi #raspberrypi #cm4 #orangepi #iot #industry #automobile

**The New Oil** @thenewoil@mastodon.thenewoil.org · Mar 31

Mar 31

The New Oil @thenewoil@mastodon.thenewoil.org

Your TV is watching you

https://www.vox.com/technology/405879/roku-amazon-netflix-moana-disney

Vox · Mar 27The spy in your living roomBy Adam Clark Estes

#advertising #privacy #streaming

**Unixorn - 90% Snark by weight** @unixorn@hachyderm.io · Mar 30

Mar 30

Unixorn - 90% Snark by weight @unixorn@hachyderm.io

OH on Slack:

PSUs are basically pressure vessels for magic smoke

#maker #hardware #electronics #iot @makers @maker @electronics @iot

Replied in thread

M. @mmol@mastodon.social · Mar 30

Mar 30

M. @mmol@mastodon.social

@t3n Dafür verkauft #bosch Spülmaschinen, bei denen teilweise (Grund-)Funktionen nur per App und Extra-Account über einen Cloudservice genutzt werden können...

Falsch verstandenes #iot und Industrie 4.0.

**IT News** @itnewsbot@schleuss.online · Mar 29

Mar 29

IT News @itnewsbot@schleuss.online

Open Source Framework Aims to Keep Tidbyt Afloat - We recently got a note in the tips line from [Tavis Gustafson], who is one of the ... - https://hackaday.com/2025/03/29/open-source-framework-aims-to-keep-tidbyt-afloat/ #customfirmware #softwarehacks #homehacks #tidbyt #hub75 #iot

Hackaday · Mar 29Open Source Framework Aims To Keep Tidbyt AfloatWe recently got a note in the tips line from [Tavis Gustafson], who is one of the developers of Tronbyt — a replacement firmware and self-hosted backend that breaks the Tidbyt smart display f…

**Koen Hufkens, PhD** @koen_hufkens@mastodon.social · Mar 29

Mar 29

Koen Hufkens, PhD @koen_hufkens@mastodon.social

"Usefulness is only a byproduct of privacy invasion."

On the "The candid naivety of geeks" by @ploum

https://ploum.net/2025-03-28-geeks-naivety.html

ploum.netThe candid naivety of geeks

More from

ploum

#tech #technology #IoT

**Miguel Afonso Caetano** @remixtures@tldr.nettime.org · Mar 27

Mar 27

Miguel Afonso Caetano @remixtures@tldr.nettime.org

"[A] team of researchers recently set out to determine just how much companies like Amazon, Apple and Google are using the data gathered through their voice assistants to profile us –– track and monitor our behavior –– across the internet.
(...)
The study focused on the behaviors of the three biggest voice assistant platforms: Amazon’s Alexa, Apple’s Siri and Google Assistant. What researchers found was that how concerned you should be about your smart assistant profiling you varies greatly depending on which device you use.

But in order to figure this out, they had to essentially trick voice assistants into profiling them.

They downloaded publicly available information that Google compiles on every user based on their searches, like gender, age range, relationship status and income bracket. Using those labels, they were able to design questions that could easily convince the platforms that they were, for example, married, had children or were a homeowner not a renter.

The researchers then recorded themselves asking these questions and replayed the audio to voice assistants over and over again. Over the course of 20 months, they conducted 1,171 experiments involving nearly 25,000 queries.
(...)
What they ended up finding was that Alexa exhibits the most straightforward kind of profiling behavior: It’s all based on your interest in products.
(...)
However, with Siri and Google Assistant, things are more complicated.

After reaching out to Apple to get their data, the company insisted “they had no data on us,” Choffnes says, “which means we couldn’t even test anything or prove any hypothesis about whether there was any profiling happening.”
(...)
Meanwhile, Google Assistant was the strangest of the bunch. The researchers found that it was clearly profiling its users but often incorrectly."
https://news.northeastern.edu/2025/03/17/voice-assistant-profiling-research/

Northeastern Global News · Mar 17Your voice assistant is profiling you, just not in the way you expect, new research findsBy Cody Mello-Klein

#VoiceAssistants #IoT #SmartObjects