https://www.facebook.com/277841802422332/

Geek Garage, NIT Patna

Home
India
Patna
Geek Garage, NIT Patna

Geek Garage is a revolutionary club and community of CS/IT/EC geek(one who is just obsessed with tech) at NITP that thrives to make INNOVATION A CULTURE

A geek is a guy or a gal who is just obsessed with computers and tech, an expert and enthusiast who loves playing and experimenting with computers (hardware and software). So, 'Geek Garage' is a technical club and community at NITP for CS/IT/EC engineers, which gives common platform to such geeks to come close, built some new innovative stuff and share their expertise and opinion................in a nutshell "make innovation a culture"

07/02/2016

The Internet was made for everyone but is being hijacked by big corporations that are turning people into products without their knowledge or consent. Check ...

10/09/2015

The 'MaliciousCard' vulnerability
A newly found vulnerability in WhatsApp Web, the Web-based interface of the popular instant messaging client, allows attackers to trick users into executing arbitrary code on their computers, a security firm reports. The vulnerability affects more than 200 million people who use WhatsApp Web. WhatsApp has since updated its Web client to patch the bug in the latest version.

The 'MaliciousCard' vulnerability can be exploited by simply sending a vCard contact card containing malicious code to a victim's account, reports security firm Check Point. Once the victim opens the alleged contact, it starts to distribute bots, ransomware, and other malware files.

Since the business contact card looks perfectly legitimate, it is impossible for a user to know if the contact is riddled with malicious code.

The security firm noted that it informed WhatsApp about the vulnerability, and the messaging service issued an update on August 21 that fixes the bug. WhatsApp Web v0.1.4481 or later are not affected with the vulnerability.

The vulnerability lies in the improper filtering of contact cards sent in the vCard format in older versions of WhatsApp. The attacker can inject a command in the name attribute of the vCard file, separated by the ampersand character. Windows would automatically try to run all lines in the code. It is not known whether Mac users are affected by the vulnerability.

WhatsApp fails to validate the vCard format and the contents of the file, the firm further noted. One could send an executable file and WhatsApp wouldn't be able to flag or block it.

WhatsApp, which is available across multiple platforms, recently announced that it reached 900 million monthly active users. WhatsApp Web, which offers several of the mobile app's functionalities including the ability to send and receive text and audio notes, is used by more than 200 million users.
WhatsApp for web works like its mobile version, allowing messages including images, videos, audio files, locations and contact cards.

The problem, according to Check Point researchers, lies in the 'vCard' format containing contact information.

whatsapp

Security researcher Kasif Dekel said hackers could target computers by disguising dangerous code as a vCard.

Since there is no way to differentiate between the flawed and real versions of these cards, victims could easily click and download ransomware and other types of malware.

All a hacker would need is a person's phone number.
Check Point alerted WhatsApp to the problem on August 21 and they responded on August 27 with a fix.

“Thankfully, WhatsApp responded quickly and responsibly to deploy an initial mitigation against exploitation of this issue in all web clients, pending an update of the WhatsApp client” said Oded Vanunu, Security Research Group Manager at Check Point.

Earlier this month, WhatsApp said it had hit 900 million monthly users.

07/02/2015

After a bit goggling into Facebook insights, came across a wonderful application (rather side effect) of Facebook API (Application programming interface). An API allows user to get some data back in jason (JavaScript Object Notation) format and integrate that data into user’s application. Type the following in your browser’s URL bar

graph.facebook.com/username

And hit enter. You’ll get some insight of your account rather of the user. So anyone can know about this information of any user.
Like here are the results of Facebook co-founder Mark Zuckerberg (Stop following wrong ones.)

graph.facebook.com/zuck

{
"id": "4",
"first_name": "Mark",
"gender": "male",
"last_name": "Zuckerberg",
"link": "https://www.facebook.com/zuck",
"locale": "en_US",
"name": "Mark Zuckerberg",
"username": "zuck"
}

Means Mark’s account isn’t the first account on Facebook rather it is 4th. So whose accounts were the first third accounts???????????
Well, here is the truth, Mark set up 3 test accounts before setting his account (Indeed a wise decision). Now check yours……………and thank Facebook API.

16/01/2015

Exclusively for geeks ….
SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs).
In open SSL there is a heartbeat feature whereby a client like a browser can send a message or payload which is really just a string like saying hello to the server. In addition to that payload it sends a number which should be the length of the payload. Unfortunately the bug in open SSL operated as it blindly trusted that number without checking the length of valid string you provided and so if an attacker sends a valid string of 15 bytes and set the number to be 100. Game over. The affected server will blindly respond to it outputting 100 bytes of information. Means attacker is getting extra 85 bytes of random information (maybe your password, server’s security certificates, secret keys too). Hence if an attacker continually asks for 64k memory chunks he may retrieve your important information.
Around 66% servers in the world, including those of Google, Amazon, Gmail, YouTube, Yahoo, Twitter, Github and many more (Facebook hasn’t disclosed yet), were running with this bug.
So moral of the story is although this bug has been fixed now, however it is recommended to change your passwords particularly those are sensitive to you. Because you might be affected directly (I personally don’t think so) or indirectly. And there is no way to check whether you were affected.

The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the I…

05/01/2015

A hacker, a college dropout and ultimately a technepreneur; its his story but there can be yours too............

It's an unlikely portrait of a hacker, a college dropout and ultimately a technepreneur. For Shashank Chourey grew up with indulgent parents

24/12/2014

this one dedicated to web developers

23/12/2014

Any gamer out there!!!

The Nintendo Wii U hasn't been out that long, but the Japanese gaming giant is already hard at work on it's next home console, and the legendary...

21/10/2014

nailed it.....
......Geek VS Nerd

04/10/2014

Insanely Great!

Heard no Steve Jobs fan ever. Huh.

The legendary Steve Jobs had everything. He was charming, handsome, amazingly smart, famous, and of course rich. But the faith turned hard on him when he was diagnosed with cancer in 2003, and then 8 years later, the day 5 Oct` 2011 marked the sad demise of this eminent person.

Today, on the third anniversary of his death, Geek Garage salutes this incredible man thanking him for all of his remarkable contribution to the field of technology and business. Revolutionary products like iPad, iPhone, iTunes etc are just half of a drop of his legacy which will never let this immortal soul die in our heart even centuries from now.

He changed the world and made his contributions in pushing the human race forward. Jobs is like a mentor and a god to the entrepreneurs, and will always have a stunning influence on the techies like us.

Steve, iLove you. Rest In Peace

25/09/2014

GW #3

This week's GEEK OF THE WEEK is John Mayer.
He was attending NYU where his mom is a professor. But he dropped. He’s been writing apps since his freshman year in high school. He’s making so much money writing iPhone apps that during his first year of college he could afford to live alone, pay NYU tuition while bootstrapping Fresco News.

Last week, 19-year-old John Meyer dropped out of a prestigious university computer science program to work full-time on his tech startup, Fresco News.
His parents weren't happy at first. He was attending NYU where his mom is a professor, he told Business Insider.

But they eventually came around to support him, because they had to admit: Meyer is already a successful independent computer programmer. He's been writing apps since his freshman year in high school, 2008, after teaching himself the programming language Objective C.

And he's been making money at it since his sophomore year of high school, he says.

"Money-wise, I've been pretty fortunate. I've been able to support myself since just a year after I got started," he said.

He's making so much money writing iPhone apps that during his first year of college he could afford to live alone, pay NYU tuition while bootstrapping Fresco, he told Business Insider. Fresco News is a sort of intersection between Instagram, Twitter and Flipboard that turns photos from ordinary people on the scene of big news events into news stories.

We pressed him to reveal his income but promised not to share it. Let's just say it's on par with what software engineers earn at some of the best tech companies.

Despite his young age, Meyer's app portfolio is impressive. He's written about 40 apps, mostly through his app company TapMedia, he says.

This includes the popular iPhone 4 flashlight app Just Light (which may have been the very first flashlight app). It went nuts, downloaded about 2 million times, he said. Apple now includes a flashlight app with the iPhone.

He's just had another huge hit called Perfect Shot, too, released about a year ago for iOS 7. It was downloaded 60,000 times in the first four days and is now at over 1 million, he says.

It uses the smile and eye detection features in the iPhone camera for taking the perfect group photo. Hold the phone up and wait. The app takes the shot in the perfect millisecond when everyone is smiling, no one is blinking. A very smart idea.

So smart, that Meyer nabbed the attention of Apple. The company asked him to become an intern, he says. That's a dream come true for most students. And it pays. Apple interns can make $5,723 a month.

But he turned Apple down.

"I get emails from recruiters all the time, and this past summer an offer to intern at Apple," he says. But, he explains,"I am, at heart, an entrepreneur. I won't be happy working for someone else."

He's not worried about missing the chance of a lifetime. "If I wanted to, I'm sure they would offer me another internship," he says.

That's not just the bravado of being 19. "I've been close with a lot of people at Apple, from going to Apple's developer conference every year," he says. "I'm in a field where I've done a lot of things already, an expansive portfolio of projects I've worked on."

He's actually been attending the developer's conference since he was 16, sneaking in the first time with his dad's help. His dad flew him to San Francisco, registered himself for the conference, then handed the pass to his son to attend.

"I was 16 and anyone under 18 wasn't allowed. It was right after the successful flashlight app. My dad got the ticket from Apple, flew back home and left me in San Francisco," he laughs.

Since then, Apple has created a teen program at the conference he says. It's been great for meeting other programmers his age, he says.

If all that wasn't impressive enough, Meyer was also a finalist in the Thiel Fellowship, he says. That's a program by billionaire venture capitalist Peter Thiel in which gifted young people drop out of school to start companies. Only 40 people become finalists, flown to the Valley for mingling. 20 are accepted, and Meyer wasn't one of them.

That doeesn't bother him at all. He's focused on turning Fresco into a money maker, talking to potential clients for it like New York Times and Wall Street Journal.

And he hasn't ruled going back to college some day. But for now, he's writing apps for fun and profit.

11/09/2014

GW #2

This week’s GEEK OF THE WEEK is Anudeep Nekkanti.
Anudeep Nekkanti was a student of a private engineering college in his home city who got placement in Google. He surely challenged the convention that “There is no scope of doing B.tech from a private college” and proved that nothing can substitute talent and dedicated hard work. He attributed practice as the key of his success. To know what all did this geek do hit the following link:
http://www.toptalent.in/blog/2014/05/20/top-college-no-top-talent-yes-anudeep-cracks-google-with-a-1-44cr-package/

Not only that he is successful he is also humble and helping. You can add him as your friend from here:
https://www.facebook.com/anu2011?fref=ts
Blessed we are all to have known a guy like him.

Anudeep cracks Google with a 1.44Cr Package

05/09/2014

Seems odd but true.........
TechFact: One Google search uses 1 kJ of energy, or the equivalent of 0.2 grams of CO2.
Leaving a computer on for 24 hours costs almost US$2.

Address

Ashok Rajpath
Patna
800005

Website

facebook.com

Alerts

Be the first to know and let us send you an email when Geek Garage, NIT Patna posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.