What is ‘techno-optimism’? 
Tesla Model 3 Performance Eligible for $7,500 Tax Credit, Launches at $53K 
Post-Halving Surge: Standard Chartered Predicts Bitcoin to Hit $150K on Reduced Market Leverage 
Critical Update: Samsung Expands Network Band Support in Europe – Update Now for Uninterrupted Access 
Tesla Cybertruck Hits 1,000-Unit Weekly Production Amid Q1 Financial Shortfalls 
Qualcomm Responds to Snapdragon X Elite Benchmark Cheating Claims 
Shiba Inu's Burn Rate Surges 2200%, Fuels Bullish Sentiment and Speculation on Future Price Gains 
Shiba Inu Announces Shibarium Hardfork: New Capabilities Teased, SHIB Price Jumps 3.2% 
IBM Acquires HashiCorp, Giving Its Hybrid-Cloud Business a Boost 
Samourai Wallet Founders Arrested, Crypto Markets Tumble Amid Regulatory Heat 
Binance Reassures Filipino Users Amid SEC App Removal Request, Urges Balanced Review by Google and Apple 
Bitcoin Price Alert: Potential Drop to $59K Seen as Prime Buying Opportunity for Savvy Investors 
SHIB Community Ignites Burn Rate by 2,076% Following Major Announcement 
AI-powered ‘deep medicine’ could transform healthcare in the NHS and reconnect staff with their patients 
Banning TikTok won’t solve social media’s foreign influence, teen harm and data privacy problems 
Mercedes-Benz to Release Luxury Electric Van in China 
BlackRock Bitcoin ETF Sees Zero Inflows; SEC Delays Ether ETF Decision 
Tapplock is rolling out much-needed updates after it was learned that the padlock that uses fingerprint authentication can be hacked.
Security researchers at Pen Test Partners revealed on Wednesday that the Tapplock software can be hacked, thus allowing unauthorized people to open it to steal whatever valuable things it is supposed to be keeping safe.
Andrew Tierney of Pen Test Partners said in a blog post that the accompanying Tapplock app transmits data through an HTTP server, which simply means no encryption is applied. During the researchers’ test, they observed that each time the lock establishes a connection to the app through Bluetooth Low Energy (BLE), it sends “a string of ‘random’-looking data” necessary for the lock to respond to the app’s commands.
However, the researchers found that these strings of data do not change even at different times that the lock is accessed through the app. “A couple of lines of commands in gatttool and it was apparent that the lock was vulnerable to trivial replay attacks,” the researcher said.
It was also found that the lock and its app do not use factory reset options, meaning all data used can be recovered even when a user unlinks the lock from the app. Additionally, Pen Test Partners revealed that app lets the lock be used by someone else.
“I shared the lock with another user, and sniffed the BLE data. It was identical to the normal unlocking data. Even if you revoke permissions, you have already given the other user all the information they need to authenticate with the lock, in perpetuity,” Tierney wrote.
Shortly after Pen Test Partners’ discovery, Tapplock said it will be rolling out the necessary firmware update to address the serious flaw, according to CNET. The said patch will be automatically installed on the padlock once it is available.
The digital security issue was found just weeks after the widely followed YouTube channel JerryRigEverything demonstrated how easy it was to physically open a Tapplock by only using a suction cup and a GoPro mount. Tapplock responded to this by saying the YouTuber’s Tapplock units were just defective.
