Aatube @ Aatube @kbin.social

[He/Him, Nosist, Touch typist, Enthusiast, Superuser impostorist, keen-eyed

---

Read more

Posts

54

Comments

1,155

Joined

2 yr. ago

My impression was it connects to log torque levels and receive torque levels

'twas the point: They'd never leave

The vulnerabilities, reported Tuesday by researchers from security firm Nozomi, reside in the Bosch Rexroth Handheld Nutrunner NXA015S-36V-B. The cordless device, which wirelessly connects to the local network of organizations that use it, allows engineers to tighten bolts and other mechanical fastenings to precise torque levels that are critical for safety and reliability. When fastenings are too loose, they risk causing the device to overheat and start fires. When too tight, threads can fail and result in torques that are too loose. The Nutrunner provides a torque-level indicator display that’s backed by a certification from the Association of German Engineers and adopted by the automotive industry in 1999. The NEXO-OS, the firmware running on devices, can be controlled using a browser-based management interface.

Nozomi researchers said the device is riddled with 23 vulnerabilities that, in certain cases, can be exploited to install malware. The malware could then be used to disable entire fleets of the devices or to cause them to tighten fastenings too loosely or tightly while the display continues to indicate the critical settings are still properly in place.

9 of these are improper neutralization of inputs, of which 4 are SQL injections. The post says the vulnerabilities could be used to ransom-lock the devices or secretly adjust the torque levels the wrench applies while the display reports a false number.

Never heard of Twilio... searched it up and still haven't got a clue. What do they do?

I didn't mean that all servers would require the central server lol. Unless I'm mistaken, the default is still the official server, and that server is still going to have to handle a ton of requests from people, which requires money to maintain.

Yes, but you still have an official server to maintain.

I can’t find anything wrong about St. Jude’s.

Everything is bound to have some bad examples. OpenAI and RedHat were also under open source models.

Why would they? They have all their production logistics in China.

CIA shell company? Hah, as if they’d base all their logistics in China. Nobody said the USA was better.

Prominent ones?

Same for everything, including open source models

How are y’all planning to sustain the server?

FApple is worse enough.

Nonprofits FTW

Plus, you can’t see it to everyone forever anymore; you can only do that for ten minutes.

I think it’s time to call management

megopie's claims seem to be consistent with the Wikipedia article (which mostly cites this Singaporean book), and my experience of it wasn't directly state-run either; we used the one from Alipay, and it was mainly about availability of and restriction against services.

While the website for that docu seems to be a bit too alarmist for my red flags, the trailer looks pretty good, so I think I'll give it a try sometimes. Note that my family has no dealings with human rights, so my account may not be accurate.

Also doesn't suggest "assassinate" and all of its forms except "assassin(s)"

These are all better options, but that'll require closing the road for a while and more money to spend, which have been gambled on leaving the EU from my American understanding of modern British history. Speed cameras are much cheaper, will not require road closure, and there have been studies indicating a 22% effectiveness after installation.

How so? Isn't knowing the consequence a form of prevention?