By now most infosec professionals are aware of various ways SMS text messaging can be hijacked. For example so-called “SIM Swap” attacks, SS7 attacks, Port-out fraud, etc. All of these attacks however do require some level of sophistication, whether it be high level access to SS7, or account information or social engineering to successfully port out the phone number to a new provider or swap the sim on the existing account.

There is however other vulnerabilities that are not particularly well known. For VoIP numbers in particular, which may be assigned to a CLEC or VoIP wholesaler, the SMS may…

In an NPRM the FCC released on August 26th, 2020 the FCC has proposed a “nominal fee” of $50.00 for all amateur radio applications with the exception of administrative updates for things like mail and name changes which they contend is “in the public interest to encourage licensees to update their information without a charge.”

The NPRM states, “We note that, while the statute previously limited the Commission’s authority to charge fees only for specific services listed in the Act, the RAY BAUM’S Act now requires the Commission to collect fees from several previously uncharged services. As such, several services…

I didn’t want to write about this but I see a lot of people getting the details wrong — that includes myself — due to a lot of speculation. I’m going to give a short timeline on what happened exactly. At about 3:30 PM Mountain time I started hearing about the hack as several people were submitting screenshots to the 2600 Facebook Group.

Some folks may not be aware but since Adrian’s passing, with permission and blessing from his father Mario I have controlled the majority of Adrian’s online accounts. I checked to see if Adrian Lamo’s old twitter account…

With the mid term elections approaching I’ve had several friends on Facebook recently praising automatic voter registration with Driver License applications/renewals and encouraging people to get registered to vote and get your voice out there. For some of us it’s not that simple. What people fail to realize often times is that voting records are public. The moment you register to vote your name, residential & mailing addresses, telephone number if provided, etc. all become public record. …

Update 10/3/2018: Thanks to everyone who read the article, listened to the phone call in it and shared and made noise. The ARRL is now in talks with the FCC! http://www.arrl.org/news/arrl-fcc-discussing-issue-of-uncertified-imported-vhf-uhf-transceivers

After I published yesterday’s correspondence with the FCC, Laura Smith reached out and stated that she misinterpreted what I wrote in my email. She wrote:

Lucky: I may have misunderstood your question and for that, I apologize. The bottom line here is that if the radios are compliant with our rules (have been certified in the non-amateur bands) an amateur can continue to use them in the amateur bands…

The FCC has backpedaled on everything in this article, please go here and read the new article: https://medium.com/@lucky225/fcc-back-peddles-all-transceivers-capable-of-transmitting-on-frequencies-that-require-40377a3722c5

Did the FCC just make Baofengs illegal?

On Monday, September 24th, 2018 the FCC issued Public Notice DA 18–980, Enforcement Advisory № 2018–03 that sent the Amateur Radio community into a frenzy across several Facebook groups. Hackaday went as far as to tell people to buy Baofengs while you still can. So did the FCC just make Baofengs illegal in the United States? Not quite.

The notice advises that the import, sale and marketing of 2-way radios that are capable of operating outside the band they are certificated for…

Over the past week in light of recent events in Charlottesville, many have called for the squelching of Neo-Nazi rhetoric or “hate speech.” The people calling for this action have the best of intentions (stopping fascism), but their intentions are logically flawed and ill-conceived.

“Hate Speech” — words are not bombs.

The white supremacist website Daily Stormer, or more specifically their domain name, was shut down by Godaddy and Google earlier this week and later when they registered a different .ru domain name, Cloudflare eventually turned off their DNS service. All of this was under the guise that the website was publishing “hate speech.” In reality, though…

Lucky225

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store