frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Hacking your PC using your speaker without ever touching it

https://blog.nns.ee/2026/06/03/katana-badusb/
111•xx_ns•1h ago

Comments

217•1h ago
Can't wait to see a video from a half sloppy channel about this on my youtube front page in roughly 4 business days
tarcon•44m ago
I guess you can still be first to Linkedin and get all of the fame.
exitb•17m ago
Do you know that if you turn off saving YouTube history, you can have no front page at all?
bradley13•1h ago
Good work, and fun to read.

It's crazy that companies just stick their head in the sand, when confronted with serious security issues.

hootz•1h ago
>Email from SingCERT stating vendor "do not consider this to be a vulnerability, as it does not present a cybersecurity risk."

So wirelessly writing custom firmware to someone else's device that is connected via USB to their computer without even needing to pair is not a security vulnerability. Yea.

3form•56m ago
AND being able to further reprogram the device to gain control of the PC.

This is negligence of the highest kind.

Uncle_Brumpus•54m ago
"You can just make it type words, what's the risk in that?"

Makes you wonder what other peripheral companies out there are also operating with seemingly no security team. There must be other vulnerabilities like this just waiting to be discovered.

My brother was awoken one morning at 2am because some neighborhood kids connected to his bluetooth speaker and blasted fart sounds on loop at max volume, and that's literally only the absolute tippy top of the malicious bluetooth use iceberg.

hootz•48m ago
Oh yeah, for some reason the companies with the highest risk products seem to be the ones that care less about security. Don't even get me started with "smart" bulbs and cameras that each individually connect to your local network and the Internet. You have 5 lightbulbs? That's 5 different devices you need to track, keep updated and trust the in the vendor firmware's security.
zahlman•1m ago
> "smart" bulbs

Thankfully I don't think I've seen these for sale.

What sensors would they have that could be exploited by an attacker?

rcxdude•44m ago
Probably most of them. It's not exactly an area with a great focus on quality, let alone security.
KurSix•49m ago
The fact that the author had to publish a third-party patch because the vendor didn't consider it a vulnerability is not a great look
awedisee•44m ago
Way cool. Thank you for sharing
brogapp•40m ago
Thanks for sharing this. It’s a bit concerning that a consumer soundbar can receive unauthenticated firmware over BLE and then act like a BadUSB-style HID on the host. I’m not sure I agree with the vendor’s "no cybersecurity risk" assessment, considering how much access a trusted keyboard interface typically has.
mminer237•6m ago
If you can "just type stuff", it is absolutely trivial to download absolutely any payload you want as long as you have network access and your antivirus doesn't stop it.
vessenes•37m ago
Having a guaranteed audio channel makes this so much cooler for exploits -- you can exfiltrate over audio!! I love it. I wonder how many of these were sold. I also imagine based on Creative's response (this is fine) that many other devices in the class have similar security models in place. Def scary.
xx_ns•34m ago
That would've been a cool PoC to work on as well, but seems a fair bit more complicated than the BadUSB-style attack I ended up doing. Would've had to do a lot more RE to figure out how to interact with the whole microphone subsystem, I think.
vessenes•12m ago
I guess you could just construct a wav file from the shell and then play it. Agreed doing it all on device sounds challenging.
SirFatty•37m ago
The real question remains: with this hack, did the OP gain full control of Dr. Sbaitso?
sciencejerk•28m ago
Great research. Thanks for sharing
nickdothutton•22m ago
It is quite common to find device manufacturers, even those of many years standing, who _appear to_ begin with the device and add the software as an afterthought. Paying little attention to security or even the software lifecycle (patches, updates, the changing landscape/ecosystem). I have even known it happen that the device brand subs out the software to a random small developer, who then closes up shop/dies/gets out of that business, and the device company doesnt even have the source code, let alone any ability to further improve/fix the software that drives their device. This leads to layers upon layers of subsequent middleware, UIs, shims etc.
cbdevidal•18m ago
Air-gapped attacks are the most fascinating. Change my mind
Klaus23•13m ago
Why think so small? Perhaps the speaker itself can be used as the attacker.

Any script kiddie with an LLM could write a worm that would spread through the supply chain, possibly even hacking speakers right on the factory floor and blasting Rickroll music or something similar.

It would be interesting to see if Creative would still claim that it "does not present a cybersecurity risk".

cluckindan•8m ago
Flash worm into device and RMA it. Boom.
KurSix•47m ago
The vendor response is the more worrying part
xnickb•40m ago
Yeah, but we already sold the device, so it's someone else's problem. Now if they were paying us a subscription fee..
riedel•34m ago
This quote on risk seems to completely misunderstand the concept of risk. First we have a vulnerability ( IMHO that is equals a hazard), then we assign both impact and probability and only then we get risk. By definition there are IMHO always vulnerabilities with low impact or low probability and thus low risk. While CVEs have some score, the actual risk and later accepting those risks before or after mitigations is up to the use case to define. No risk => no vulnerability is flawed reasoning by design. No vulnerability => no risk, I think is the only thing we can agree on.

Hacking your PC using your speaker without ever touching it

https://blog.nns.ee/2026/06/03/katana-badusb/
112•xx_ns•1h ago•26 comments

Every Byte Matters

https://fzakaria.com/2026/06/01/every-byte-matters
47•ingve•1h ago•10 comments

Show HN: Edsger – A handwritten Clojure REPL for the reMarkable 2

https://handwritten.danieljanus.pl/2026-06-01-edsger.html
98•nathell•17h ago•19 comments

1-Click GitHub Token Stealing via a VSCode Bug

https://blog.ammaraskar.com/github-token-stealing/
492•ammar2•20h ago•70 comments

Nabokov's pale fire: the lost 'father of all hypertext demos'? (2011)

https://dl.acm.org/doi/pdf/10.1145/1995966.1996008
19•aragonite•2d ago•0 comments

PlayStation Architecture

https://www.copetti.org/writings/consoles/playstation/
29•gregsadetsky•1h ago•2 comments

Piramidal (YC W24) – Software Engineers – NYC Onsite

1•dsacellarius•19m ago

Show HN: I reverse-engineered the world maps of Test Drive III (1990 DOS game)

https://github.com/s-macke/Test-Drive-3-Maps
131•s-macke•3d ago•32 comments

Use your Nvidia GPU's VRAM as swap space on Linux

https://github.com/c0dejedi/nbd-vram
351•tanelpoder•13h ago•92 comments

MAI-Code-1-Flash

https://microsoft.ai/news/introducingmai-code-1-flash/
489•EvanZhouDev•17h ago•219 comments

The Unreasonable Redundancy of Nature's Protein Folds

https://research.ligo.bio/posts/unreasonable-redundancy-of-natural-protein-folds/
112•ray__•8h ago•31 comments

AI outperforms law professors in Stanford Law study

https://law.stanford.edu/press/ai-outperforms-law-professors-in-stanford-law-study/
292•berlianta•12h ago•239 comments

DIY Bipedal Robot Used Pneumatic "Air-Muscles" Instead of Motors

https://spectrum.ieee.org/shadow-walker-biped-humanoid-robot
32•sohkamyung•2d ago•9 comments

Pluto.jl 1.0 release – reactive notebook for Julia

https://discourse.julialang.org/t/pluto-1-0-release/137296
156•fons-p•13h ago•19 comments

Leiden Declaration on Artificial Intelligence and Mathematics

https://leidendeclaration.ai/
17•zvr•5h ago•4 comments

My thoughts after using Clojure for about a month

https://www.acdw.net/clojure/
238•speckx•16h ago•117 comments

Jonathan Franzen on Talent, Theatre, and His Next Novel

https://www.newyorker.com/books/this-week-in-fiction/jonathan-franzen-06-08-26
14•samclemens•1d ago•2 comments

U of T researchers demonstrate AI worm could target any online device

https://www.utoronto.ca/news/u-t-researchers-demonstrate-ai-worm-could-target-any-online-device
62•shscs911•8h ago•15 comments

Capstone – multi-platform, multi-architecture disassembly framework

https://www.capstone-engine.org/
69•gregsadetsky•10h ago•2 comments

OpenRidingController – DIY horse riding controller for the PC

https://github.com/Squalius-cephalus/OpenRidingController
16•zdw•3d ago•5 comments

CT scans of BYD car parts

https://www.lumafield.com/scan-of-the-month/byd
414•viasfo•15h ago•266 comments

Roku LT Operating System open source distribution

https://blog.roku.com/developer/roku-lt-os
85•dpmdpm•11h ago•26 comments

HP re-releases classic computer science calculator: The HP-16C

https://hpcalcs.com/product/hp-16c-collectors-edition/
186•dm319•17h ago•113 comments

Words of Type

https://wiki.wordsoftype.com/
81•tobr•2d ago•12 comments

How we index images for RAG

https://www.kapa.ai/blog/how-we-index-images-for-rag
159•mooreds•20h ago•22 comments

Gmail thinks I'm stupid, so I left

https://moddedbear.com/gmail-thinks-im-stupid-so-i-left
1023•speckx•16h ago•679 comments

Open Repair Data Standard

https://openrepair.org/open-data/open-standard/
138•cassepipe•16h ago•11 comments

Writing Portable ARM64 Assembly (2023)

https://ariadne.space/2023/04/12/writing-portable-arm-assembly.html
31•luu•2d ago•11 comments

Recovering Eric Graham's 1987 Amiga Juggler raytracer source code

https://alphapixeldev.com/recovering-eric-grahams-1987-amiga-juggler-raytracer-source-code/
20•mariuz•6h ago•6 comments

Preparing for KDE Plasma's Last X11-Supported Release

https://blog.davidedmundson.co.uk/blog/596/
204•jandeboevrie•22h ago•278 comments