LSC_115 Disclaimer: This transcript is auto generated and is not manually checked for errors.  It more than likely contains very significant errors. [00:00:00] Charles Current: Welcome to Lock Sportscast, your weekly horse for Lock sport news. This is episode 115 recorded August 22nd, 2022. I'm your host Charles current and in today's video, new keyless entry, vulnerability, Whitey Bulger's Lock. Pick another locksmith safety video. How to crack a cheap safe can you pick a Lock with compressed air and other podcasts and videos? [00:00:21] New products, meetups, criminals, sales, giveaways, and. [00:00:41] You can subscribe to the audio version of this show and most podcast apps and at the Lock Sportscast dot com, you can subscribe to video version on YouTube, Odyssey or apple podcasts. Links to stories discussed will be in the show notes. Some apps limit the link to show notes and the ability to post links, but you can find full show notes with all the links at the Lock Sportscast dot com. [00:00:59] First up in the news, we have an article that was posted in PC Meg written by max Eddie, who was entitled is your car key fob vulnerable to this simple replay attack. The article says that security researchers at black hat 2022 showed that they could unlock some vehicles by replaying old key fob command. [00:01:19] The standard system for locking and unlocking cars remotely was called, uh, remote keyless entry. Each button press is unique, which is supposed to keep you an attacker from simply recording you, hitting the unlock button and playing it back later. The systems use a rolling code, the key fob and the car each have a counter that increases each time a button is pressed that way. [00:01:41] A previously recorded button press is not supposed to be accept. But not all key presses, make it to your car, such as when you're out of range. These button presses move the counter on the key fob forward, but not the car to prevent these button presses from locking car owners, outta their cars. The system's reset to the lower counter number. [00:02:01] If they detect that a fob has more button presses than the car, the reset system assumes that as long as the counter number of the fob is higher than the car, it can't be a replay. This leads, the possibility that codes captured before the reset occurred, which never made it to the car would be accepted. [00:02:21] And this particular method was used by the roll jam attack. That was revealed seven years ago, by a different set of researchers, a roll jam device captures the KFO button signal, then jams the airwaves to capture a second button. With the jamming, the second signal never reaches the car and an attacker can reuse it later to unlock the vehicle. [00:02:45] However, in this most recent presentation, they showed that the process of jamming and replay may not be necessary for some vehicles. An attacker only needs to replay a few previously captured button presses to force a rollback on the car's counter. Even if those presses had already been detected by the. [00:03:04] After the reset further previously captured button presses would be accepted by the vehicle. And once a series of button presses has been recorded, the attack could be replicated well out in the future, the attacker can simply replay the button presses at any point, even after the car's owner had used to key fob repeatedly, and the car would accept the signals and. [00:03:26] A new video released after black hat showed replayed signals being used successfully over 100 days after original capture, instead of using a custom roll jam device, this attack used a standard Lenovo think pad attached to a hack RF software defined radio unit. The setup captured five button presses of a Kia key fob. [00:03:48] The car can be seen responding to all of them. The setup was then used to play back the first two, which were. But the following three were accepted by the vehicle and it gets worse since they submitted their paper to black hat. The team discovered that any sequential button presses could roll back the car's counter, a mix of sequential Lock and unlock signals is enough for rollback to work. [00:04:12] The good news is that not all vehicles tested were susceptible the team plans on releasing a full list of tested vehicles in which were found to be susceptible at some point in the future. An interesting attack. And it's really, if you watch the videos linked in the article, which will be linked in the show notes, it's really kind of scary how simple it seems to be record a series of key presses. [00:04:37] Like somebody walking through a mall park, not, you know, sit several times. If you capture those, then all you have to do is play them back one after another in sync. And it just resets its counter and starts accepting. And I have previously mentioned that the Hulu series only murders in the building contained a reasonably accurate Lock picking scene early on in the, the series and full disclosure. [00:05:06] I don't watch the series. I don't actually watch TV much at all. Uh, my wife does watch the series, but anyway, a couple of people sent in notes letting me know that in. A more recent episode. It looks like episode seven in the current season, there is also a scene where one of the characters, bumps a Lock. [00:05:30] I asked my wife to pull up that particular episode when we watched that particular scene, all in all in that bad, you don't know for sure if it's an actual bump key or regular key that he is trying to use. And I don't see them reset the key in any way between. Hitting it with a, a screwdriver. He's wrapping it with a screwdriver, which works. [00:05:51] I know that works. I've done it, but I don't see him resetting the key. And I also don't see any kind of ring on there to do the rapid fire bumping. It looks like the key's just sitting in the Lock. He's smacking it a few times. So that part is, uh, is not completely accurate as far as I can tell, but really all in all, not bad. [00:06:12] Looks like somebody who is doing the series. Probably has a knowledge of Lock picking. And I, but I'm guessing that either they don't have full knowledge or a producer is scared to let them show the actual full process. And over on Twitter, uh, I Fisk shared a tweet by at Kimmy girl from the, it was a picture from the mob museum says how fancy is Bulger's fancy Lock, picking tool at the mob museum and the. [00:06:43] Picture is of a pretty traditional, uh, Lock, picking pen style. I forget the, the exact brand name, but I think a few different people make copies of that now. And it's a, the tag underneath says Bulger's Lock, picking tool. This Lock picking device was among the possessions federal agents recovered from Whitey Bulger's apartment in Santa Monica, California. [00:07:06] After his capture in 2011. No indication how well used it was and, uh, how proficient he might have been with it. Anyway, there will be a link in the show notes. If you wanna head over and check that out. And last week on the extraordinary league of Pickers, discord, dark arts Lock picking, put up a, a post saying I've added a podcast slash interview channel to the voice. [00:07:31] My plan is to record some video chats and interview stuff on it to upload to my YouTube channel. So if you're interested in joining a recording session, let me know. They will be in regards to a preset topics. If you're interested in interviews might be a good idea to stay tuned to dark arts Lock, pickings, YouTube channel. [00:07:53] Um, I have a feeling with my scheduling conflicts here again at the end of this year, I'm probably not gonna. Much of any interviews done at all this year. I apologize for that. But while I was checking out that post on the extraordinary league of Pickers discord, I noticed a few posts later. One of which was by Illa, which was a link to a video called DEFCON 30 app sec village interview. [00:08:26] And the comment was Lock, picking pen testing. The second half of the video contains a song by O um, sulfur and in 80 called a line quick search for that song. Title led to the official DEFCON 30 soundtrack on band camp. So if anybody is interested in that, I will have a link in the show notes. It is a free slash pay. [00:08:52] What you can donation based release where 100% of the generated revenue will go straight to the electronic frontier found. Which is a 5 0 1 C3, not for profit dedicated to protecting internet freedoms and privacy. That's something you're interested in link in the show notes. Of course. And while we're on the subject of audio here, the Glasgow crime stories podcast recently released an episode on Johnny Romanski, AKA gentleman, Johnny, or gentle Johnny. [00:09:26] I covered Johnny back in episode 17, uh, interesting person, a career burglar, and safecracker who also used his skills to surface country in world war II and was, um, known as gentle Johnny or gentleman Johnny, because he never resorted to any violence. So that is their episode. Number 31, the safecracker extraordinaire who used his criminal skills during world war II. [00:09:52] And, uh, just follow the link in the show notes. If you wanna check. In videos here, CLK supplies posted a new video called avoid dangerous situations for locksmith. If you work with Lock and keys, your work matters and sodas, your safety PJ brings on hashtag Lock boss, community member locksmith, and former police officer Russell Davies to discuss safety on the job. [00:10:20] Get some ideas, tips and know what to look for on the job. So if you're in the locksmithing business or you're, uh, potentially thinking about getting into it, sure. To stay tuned to the CLK supplies, check out this video and their previous one and, uh, stay tuned in case they do any more coverage on this. I think it's important what they're doing there. [00:10:40] There's been a lot of, uh, bad news, uh, locksmith getting in robbed and, uh, And I'm one of my favorite electronics channels. The E E V blog on YouTube. He posted a video called five ways to crack a cheap, safe. The description says five different, easy methods to crack a cheap Sandford safe found in the dumpster without using physical force, including a bonus six method that doesn't work on this one, but works on a lot of the cheap ones. [00:11:13] Don't buy a cheap hardware store safe. They are garbage. Also advice on what to look for in a good quality home, safe and TDR safes, plus some Lock picking. Anyway, check it out. Link in the show notes he goes through and points out a bunch of different vulnerabilities on this poor little safe. It's really quite embarrassing, how easy it is for him to open it. [00:11:36] Even when he accidentally locks himself out during part of the video, he , he just quickly gets himself back in so he can finish demonst. And Lock, picking legend, put up a video, how to pick locks with compressed air. And, uh, it's a video addressing the fact that there are lots of social media posts and quick videos showing people, supposedly being able to pick a Lock with nothing but compressed air. [00:12:03] And in this video he addresses those and, uh, his thoughts on that. So anyway, worth checking out, I think. And on the product front, we have locksmith samurai gear. This was brought to my attention by Chirael on Twitter and it's locksmith samurai. I'm gonna butcher this Oki, uh, gear. They have a hoodie, sweatshirt and long sleeve t-shirt long and short sleeve t-shirts with a, uh, traditional kind of samurai artwork. [00:12:38] But instead of a sword, he's holding a. Anyway. Interesting. And might be something some of you are interested in. So if it sounds interesting, check it out and see if it's up your alley. Moving on to meetups. Um, nothing new. I don't think this week we have Lock con is taking place. Looks like this weekend. [00:13:00] Um, from Thursday to Sunday, the 25th through the 28th of August, besides new castle is taking place September 1st through September 3rd. The Issa LA's 12th annual security summit takes place September 20th through the 22nd, besides Augusta will be taking place October 1st and St. Con October 25th through the 28th links to all of those, of course, in the show notes. [00:13:39] We have a few new Lock Pickers, United belts to announce Cajun Lock pick has earned the rank of brown belt. Congratulations to you. And at red belt, I don't know how to say this. Person's Reddit or YouTube name since it's a series of numbers. Um, got a binary number anyway. Their YouTube channel that they posted their proof videos to is called fatal error. [00:14:07] So congratulations to you. And we have a new black belt announcement. So everyone I'm gonna read the way it was posted on the Lock Pickers, United announcement on the discord. It says, everyone, please Fasten your seatbelts and flip up your trays because this pilot is taking off to black belt. Please welcome RC 13 to the ranks of black. [00:14:31] In order to fly his way to the dojo. He picked the multi Lock Mt. Five plus Eva three Ks asset, 700 asset twin V 10 asset twin 6,000. And on top of it, he picked the urban Alps stealth key. So congratulations to, uh, all of you very well done, and, uh, welcome to the ranks of black belt to RC 13. For anyone else, not already familiar with the Lock Pickers United belt system links in the show notes. [00:15:01] For all of the explanation you're gonna need on how the system works and why it's, uh, fun and something you might wanna consider taking. Part of now's the part of the show where I say thank you to the people that made this episode possible. We'll start with the Patreon subscribers. We have Jimmy longs Meddler. [00:15:17] Panda-Frog Michael Gilchrist. Starrylock Williams brain Dave DB decipher Liibans Lock sport attorney pat from uncensored tactical three records in a coat. Chirael AKA Anthony, Dr. Hog master Clayton Howard AKA. Cool tune MOG John Lock rat. Yo Mr. Picker, cranky Lock Pickers, J HP picking bear bones Lock, picking deadbolt cafe N NWA Lock picker, snake, um, chief content producer for this episode again is I Fisk other content, producers, bear bones Lock picking Chirael dark arts Lock picking Holly Jeff Moss, Joshua Gonzalez Knox Lock mad Jack 8 2 1. [00:15:50] Prince reign. Cilla three Reone in a coat and Tony Reley. Thank you to all of you for your support and information really makes this show a lot easier to produce. And remember that this show is only possible because of that support. So if you value the podcast, please help support it by sending in your news links, events, give away information, anything you have that you think the C. [00:16:14] Should know about or would like to know about, send it to podcast at the Lock Sportscast dot com or any of the other methods listed in these show notes. Don't forget to share the show with your Lock picking friends. You can leave a review comment or thumbs up on your listening platform of choice. Don't forget to subscribe on that platform. [00:16:32] And if you want, you can, uh, donate on PayPal or subscribe on Petre. If you support the show with a donation or information, uh, that I use in the show, I will give you credit in the show and in the show notes, just like people you mentioned previously, sometimes I think I'm a broken record here going over this over and over again. [00:16:49] But, um, You're also welcome to send feedback or stories that you want shared on the show. Uh, just make sure they're reasonable length, polite work, family safe, no politics, not just drama. You can send those either via email or go to the Lock Sportscast dot com slash contact. To get those to me, moving on to criminals, just one story. [00:17:11] This week, our CMP sees weapons arrest woman after suspicious vehicle. So the story says that on August 12th, 2022 RCMP responded to the Cooperstown promenade parking lot in relation to a suspicious vehicle complaint, they located a 2003 BMW car occupied by a female. The female was arrested on a traffic safety act warrant held by Calgary police service. [00:17:36] A search of the vehicle resulted in several weapons and ammunition being found. The weapons included a shotgun crossbo knife and hatch. Stolen government identification and tools commonly used in break-ins were also found they had P bars, bolt cutters, snap gun, and Lock picks. The license plate of the vehicle was also found to have been forged. [00:17:58] The suspect has been charged with the following criminal offenses. It says possession of break in instruments, times two, unlawful possession of an identity. Possession of weapon for dangerous purpose, unauthorized possession of a firearm possession of unauthorized firearm, possession of firearm in an unauthorized place. [00:18:21] Uttering forged document, possession of property obtained by crime. Uh, under $5,000 times three, and the suspect was remanded into custody and will appear in the provincial court on August 20. Moving on to sales. We have some new items on the south or sales collection page. So a link to that specific page will be in the show notes. [00:18:49] One of the new things on sale is their new version of their tubular Lock. Pick the one with the removable pin. So if you were interested in that at all, might be the time to pick it up as it's on. And for law Lock tools, we have the review guru discount over on Twitter. If you follow the link in the show notes, it'll take you to the post where review guru posted a 10% discount link. [00:19:15] Uh, also listed on that is a 25% off summer items, coupon code. I don't know how long either one of those are good for if anybody tries it and it doesn't work. Be sure to let me know and I can remove it from the. Over at bear bones Lock picking, you can use the code M Oz 10 on anything except law Lock tools, products, and that expires at the end of August 3d Lock sport. [00:19:41] You can save 10% off with the code LS cast 10 that's 3d Lock sport.com for all your favorite 3d printed Lock sport accessories. Make a Lock dot com 15% off. If you use the code by ma. And UK Lock Pickers dot co.uk, 10% off. If you use the code gift, same giveaways as last week, we have average life of prints. [00:20:07] 100 subscriber giveaway on YouTube that ends at the end of August, Knox Lock, still continuing the biweekly giveaways on his channel just recently released the week three video. So be sure to check that out. I'll have a link to that video in the show notes. So you can get in on that. And CLK supplies. [00:20:29] Their hashtag Lock boss giveaway runs, uh, pretty much every week and lots of good prizes over there. Thank you to everyone for continuing to listen. I apologize to those of you who try to communicate with me online and have to wait forever for me to reply. I am, uh, not very good at keeping up on online communication, especially when I'm busy and stressed out with work. [00:20:52] So I apologize, but. I'm I'm an introvert. So communicating with people is stressful for me to begin with, for some reason, online where I don't get any facial clues or body language is twice is stressful. So I agonize over every word I type online. It's just a, a personal thing. Anyway. Uh, so if I'm stressed out, I quite often don't even look at my online communications, cuz it just, it adds to the. [00:21:22] So, I apologize again, for those of you that I haven't, uh, immediately replied back to, but thank you everyone for your continued support and, uh, listening to the show and everything that everyone does. All the nice words on comments that I get on YouTube and in email. I really appreciate it. Um, that's what keeps me going here is just knowing that, uh, people are enjoying what I'm doing and find value in it. [00:21:49] Feel free to reach out to me just to understand. I might not get back right away and remember to keep it legal.