Slashdot Mirror

Sparrowvsrevolution writes "In defense of user privacy, Twitter filed a motion (PDF) yesterday in a New York state court asking a judge to block a subpoena that would force the company to turn over the data of one of its users, Malcolm Harris. Harris was arrested in an Occupy Wall Street protest on the Brooklyn Bridge in October for 'disorderly conduct.' The company's lawyers claim that the subpoena violates the fourth amendment and Twitter's terms of service, which says that users' tweets belong to them and thus can't be handed over to law enforcement without their consent."

taskforce writes "There are good reasons to think web services like Facebook won't be around forever. If Facebook ever were to go down there would be potentially huge costs to its users. We can all take individual steps to protect our data and social network, but is there anything we can do to our economy to mitigate the costs of the failure of these services? The Red Rock looks at the role open source, open standards, consumer cooperatives, and enterprise reform can play. The author concludes that all is not lost, and that there's a lot we can do to reduce both the cost and frequency of failure." His suggestions are pretty radical: "The first is draw up an Open Data Bill and pass it into law. This would (where applicable) mandate the use of open standards by firms, and also mandate that all data held about a user is downloadable by that user, in an open standard. ... The second is to reform the corporate structure of larger companies to include some directors elected by consumers, rather than just shareholders. Not all the directors, like in the Cooperative Group, and not even a majority, but just a small portion of the board — say one third."

Sparrowvsrevolution writes "Mozilla has taken a public stand against the controversial Cyber Intelligence Sharing and Protection Act, saying that it has a 'broad and alarming reach' that 'infringes on our privacy.' That makes it the first major tech firm to speak out against CISPA. Facebook, Microsoft, IBM, Intel, Oracle and Symantec are all included among the companies that support the bill, which passed the House late last month and is now being considered in the Senate. Google has so far declined to take a stand supporting or opposing the bill."

Sparrowvsrevolution writes "Tor developers Arturo Filasto and Jacob Appelbaum have released OONI-probe, an open-source software tool designed to be installed on any PC and run to collect data about local meddling with the computer's network connections, whether it be website blocking, surveillance or selective bandwidth slowdowns. Unlike other censorship tracking projects like HerdictWeb or the Open Net Initiative, OONI will allow anyone to run the testing application and share their results publicly. The tool has already been used to expose censorship by T-Mobile of its prepaid phones' browser and also by the Palestinian Authority, which was found to be blocking opposition websites. The minister responsible for the Palestinian censorship was forced to resign last week."

nonprofiteer writes "What has been left out of the CISPA debate thus far is the FBI's long time workaround for information sharing with private industry: 'In 1997, long-time FBI agent Dan Larkin helped set up a non-profit based in Pittsburgh that "functions as a conduit between private industry and law enforcement." Its industry members, which include banks, ISPs, telcos, credit card companies, pharmaceutical companies, and others can hand over cyberthreat information to the non-profit, called the National Cyber Forensics and Training Alliance (NCFTA), which has a legal agreement with the government that allows it to then hand over info to the FBI. Conveniently, the FBI has a unit, the Cyber Initiative and Resource Fusion Unit, stationed in the NCFTA's office. Companies can share information with the 501(c)6 non-profit that they would be wary of (or prohibited from) sharing directly with the FBI.'"

New submitter WIGFIELD7458 writes "This appears to be a major change in plans that will save the Computer Science Department. Thanks to everyone in the Gator Nation and beyond for speaking out! The battle isn't over yet, but this is very encouraging news. I would urge the students, faculty, and alumni of UF to continue to express your support for the essential academic mission of your university."

Sabbetus writes "Seattle based Bitcoin startup CoinLab secured a $500,000 investment from various investors such as Silicon Valley firm Draper Associates and angel investor Geoff Entress. CoinLab is an emerging umbrella group for cultivating and launching innovative Bitcoin projects. CEO Vessenes said 'if there is a currency that can trade around the world, it's semi-anonymous, it's instant, it's not controlled by government or bank, what's the total value of that currency? The answer to that is, if it works, it's gotta be in the billions. It just has to be for all the reasons you might want to send money around the world.' This type of talk is common from Bitcoin enthusiasts but apparently seasoned investors are starting to agree. Forbes explains the details of their business plan but in short it has to do with tapping the GPU mining potential of gamers, more specifically gamers of free-to-play games. This would add a new revenue stream for online game companies that are trying to provide free games profitably."

DustyShadow writes "The University of Florida announced this past week that it was dropping its computer science department, which will allow it to save about $1.7 million. The school is eliminating all funding for teaching assistants in computer science, cutting the graduate and research programs entirely, and moving the tattered remnants into other departments. Students at UF have already organized protests, and have created a website dedicated to saving the CS department. Several distinguished computer scientists have written to the president of UF to express their concerns, in very blunt terms. Prof. Zvi Galil, Dean of Computing at Georgia Tech, is 'amazed, shocked, and angered.' Prof. S.N. Maheshwari, former Dean of Engineering at IIT Delhi, calls this move 'outrageously wrong.' Computer scientist Carl de Boor, a member of the National Academy of Sciences and winner of the 2003 National Medal of Science, asked the UF president 'What were you thinking?'"

Sparrowvsrevolution writes "Security firm Dr. Web released new statistics Friday showing that the process of eliminating Flashback from Macs is proceeding far slower than expected: On Friday the security firm, which first spotted the Mac botnet earlier this month, released new data showing that 610,000 active infected machines were counted Wednesday and 566,000 were counted Thursday. That's a slim decrease from the peak of 650,000 to 700,000 machines infected with the malware when Apple released its cleanup tool for the trojan late last week. Earlier in the week, Symantec reported that only 140,000 machines remained infected, but admitted Friday that an error in its measurement caused it to underestimate the remaining infections, and it now agrees with Dr. Web's much more pessimistic numbers."

Sparrowvsrevolution writes "Four years ago, security researcher Adam J. O'Donnell used game theory to predict in a paper for IEEE Security and Privacy when malware authors would start targeting Macs. Based on some rough assumptions and a little algebra, he found that it would only become profitable to target Apple's population of users when they reached 16% market share. So why are we now seeing mass attacks on Macs like the Flashback trojan when Apple only has 11% market share? O'Donnell says it turns out he may have underestimated the effectiveness of the antivirus used by most Windows users, which now makes overconfident Mac users a relatively vulnerable and much more appealing target. Based on current antivirus detection rates, O'Donnell's equations now show that victimizing Macs becomes a profitable alternative to PCs at just 6.5% market share."

nonprofiteer writes "A University of Texas-Dallas developmental psychology professor has used a $3.4 million NIH grant to purchase Blackberries for 175 Texas teens, capturing every text message, email, photo, and IM they've sent over the past 4 years.Half a million new messages pour into the database every month. The researchers don't 'directly ask' the teens about privacy issues because they don't want to remind them they're being monitored. So many legal and ethical issues here. I can't believe this is IRB-approved. Teens sending nude photos alone could make that database legally toxic. And then there's the ethical issue of monitoring those who have not consented to be part of the study, but are friends with those who have. When a friend texted one participant about selling drugs, he responded, 'Hey, be careful, the BlackBerry people are watching, but don't worry, they won't tell anyone.'" This sounds like an American version of the "Seven Up" series.

An anonymous reader writes "Following on the heels of the FCC and U.S. mobile carriers finally announcing plans to create a national database for stolen phones, a group of iPhone users filed a class action lawsuit against AT&T on Tuesday claiming that it has aided and abetted cell phone thieves by refusing to brick stolen cell phones. AT&T has '[made] millions of dollars in improper profits, by forcing legitimate customers, such as these Plaintiffs, to buy new cell phones, and buy new cell phone plans, while the criminals who stole the phone are able to simply walk into AT&T stories and 're-activate' the devices, using different, cheap, readily-available 'SIM' cards,' states their complaint. AT&T, of course, says the suit is 'meritless.'"

Sparrowvsrevolution writes "Now that it's being increasingly targeted by botnet herders, Apple has a thing or two to learn about cooperating with friendly security researchers. Boris Sharov, the CEO of Dr. Web, the Russian security company that first reported more than half a million Macs were infected with Flashback malware last week, says when his company alerted Apple to the botnet, it never responded to him. Worse yet, on Monday Apple asked a Russian registrar to take down a domain it said was being used to host a command and control server for Flashback, but in fact was a 'sinkhole' that Dr. Web had set up to observe and analyze the botnet. Sharov describes the lack of communication and cooperation as a symptom of a company that has never before had to work closely with the security industry. 'For Microsoft, we have all the security response team's addresses,' he says. 'We don't know the antivirus group inside Apple.'"

LoTonah writes "Jack Tramiel, founder of Commodore Business Machines and later, the owner of Atari, died Easter Sunday. He was 83. He undoubtedly changed the computing landscape by bringing low cost computers to millions of people, and he started a price war that saw dozens of large companies leave the market. He also took a bankrupt Atari and managed to wring almost another decade out of it. The 6502 microprocessor would have withered on the vine if it weren't for Tramiel's support. Could anyone else have done all of that?"

retroworks writes "Crystal Cox, a Montana woman who calls herself an 'investigative journalist,' was slapped with a $2.5-million judgment last year for defaming an investment firm and one of its lead partners. Cox had taken control of the Google footprint of Obsidian Finance and its principal Kevin Padrick by writing hundreds of posts about them on dozens of websites she owned, inter-linking them in ways that made them rise up in Google search results; it ruined Obsidian's business due to prospective clients being put off by the firm's seemingly terrible online reputation. After Obsidian sued Cox, she contacted them offering her 'reputation services;' for $2,500 a month, she could 'fix' the firm's reputation and help promote its business. The Forbes Article goes on to describe how she tried to similarly leverage attorneys and journalists reputations. Finding some of her targets were too well established in google rank to pester or intimidate, Cox moved to family members, reserving domain names for one of her target's 3-year-old daughter. Forbes columnist Kashmir Hill makes the case that this clearly isn't journalism, and establishes a boundary for free speech online."

TaeKwonDood writes with a followup to the news we discussed over the weekend about tariffs being places on Chinese solar panels. He writes, "According to Forbes, 'Solar power is booming. Imports from China were a tepid $21 million in 2005, but in 2011 installations totaled nearly $2.7 billion. That's a huge win. And just as advocates for solar power had hoped, a larger market drove down prices. Solar energy cost has declined by two-thirds in the last four years, meaning it will soon start to close in on fossil fuels.' There's just one problem: now the government wants to kill it. The article continues, 'As the market was flooded by both silicon (from silicon producers) and thin-film panels (by Chinese manufacturers), the price for thin-film panels came crashing down – along with Solyndra’s business model. ... Yet that isn’t the only instance of mismanagement. The whole clean energy program remains flawed, even at the consumer level. The people who are the most likely to be impacted by high energy prices, the poor, are the least likely to benefit from the solar rebate scheme because they lack the capital to pay for the installation.'"

Sparrowvsrevolution writes "Micro Systemation, a Stockholm-based company, has released a video showing that its software can easily bypass the iPhone's four-digit passcode in a matter of seconds. It can also crack Android phones, and is designed to dump the devices' data to a PC for easy browsing, including messages, GPS locations, web history, calls, contacts and keystroke logs. The company's director of marketing says it uses an undisclosed vulnerability in the devices it targets to run a program on the phone that brute-forces its passcode. He says the company's business is 'booming' and that it's sold the devices to law enforcement and military customers in 60 countries. He says Micro Systemation's biggest customer is the U.S. military."

Sparrowvsrevolution writes "Forbes profiles Vupen, a French security firm that openly sells secret software exploits to spies and government agencies. Its customers pay a $100,000 annual fee simply for the privilege of paying extra fees for the exploits that Vupen's hackers develop, which the company says can penetrate every major browser, as well as other targets like iOS, Android, Adobe Reader and Microsoft Word. Those individual fees often cost much more than that six-figure subscription, and Vupen sells them non-exclusively to play its customers off each other in an espionage arms race. The company's CEO, Chaouki Bekrar, says Vupen only sells to NATO governments and 'NATO partners' but he admits 'if you sell weapons to someone, there's no way to ensure that they won't sell to another agency.'"

An anonymous reader writes "Forbes reports that a middle school teacher in South Carolina has been placed on administrative leave for reading sci-fi classic Ender's Game to his students. According to blogger Tod Kelly, '[A parent] reported him to the school district complained that the book was pornographic; that same parent also asked the local police to file criminal charges against the teacher. As of today, the police have not yet decided whether or not to file charges (which is probably a good sign that they won't). The school district, however, appears to agree with the parent, is considering firing the teacher and will be eliminating the book from the school.'"

New submitter peetm writes "Computing company D-Wave has announced they're selling a quantum computing system commercially, which they're calling the D-Wave One. The D-Wave system comes equipped with a 128-qubit processor designed to perform discrete optimization operations. A qubit is the basic unit of quantum information – analogous to a bit in conventional computing. For a broader understanding of how qubits work, check out Ars Technica's excellent guide."

Sparrowvsrevolution writes in with a link to a Forbes story about the lackluster code produced by government agencies."Humans aren't very good at writing secure code. But they're worst at it when they're paid to do it for the U.S. government, according to a study that will be presented at the Black Hat Europe security conference in Amsterdam later this week. Chris Wysopal, chief technology officer of bug-hunting firm Veracode plans to give a talk breaking down a vulnerability analysis of 9,910 software applications over the second half of 2010 and 2011. Government-built applications came out far worse than those created by the commercial software industry or the finance industry. Only 16% of government web applications were secure by OWASP standards, compared with 24% of finance industry software and 28% of commercial software. By SANS standards, only 18% of government apps passed, compared with 28% of finance industry apps and 34% of commercial software. Wysopal and others blame the difference on a lack of accountability of federal contract developers, who aren't held to security standards and are even paid extra to fix their bugs after creating them."

An anonymous reader writes "X-Prize Founder Peter Diamandis, speaking at SXSW, says he wants to set up a $10 million prize for fixing education — but he needs help figuring out how to target the problem. From the article: 'He said he has considered multiple directions that an Education X Prize could take, such as coming up with better ways to crowd-source education, or rewarding the creation of "powerful, addictive game" that promotes education. But he isn’t sure which way to go. There’s no shortage of high-tech visionaries and tycoons these days, running around with ideas about how to fix education. Many of them are finding, though, that technology alone isn’t enough. Exciting ideas founder quickly if they don’t sustain motivation in students who perform at widely different levels. Other challenges include the need to engage effectively with school districts, teachers and parents.'"

Sparrowvsrevolution writes "Boston Dynamics, a Waltham, Massachusetts technology firm and DARPA contractor, announced Monday that it's broken the speed record for running, legged robots. Its new four-legged creation is Cheetah, a robot that can run at 18 miles an hour, far faster than the 13.1 miles per hour record set by MIT in 1989. The video it's released shows Cheetah running on a treadmill, but the company hopes to both increase the robot's speed and take it onto outdoor terrain in the near future. Boston Dynamics rose to fame with its four-legged cargo robot Big Dog which showed an uncanny ability to walk over terrain and recover its footing even when it slips or is kicked. The firm followed up with Petman, a two-legged prototype that applies the same technology to human-style walking."

theodp writes "Apple, which is currently waging IP war on Android vendors, is no stranger to patent trolling. Citing the Steve Jobs bio, Forbes' Eric Jackson recalls how Steve Jobs used patents to get Bill Gates to make a 1997 investment in Apple. Recalled Jobs: 'Microsoft was walking over Apple's patents. I said [to Gates], "If we kept up our lawsuits, a few years from now we could win a billion-dollar patent suit. You know it, and I know it. But Apple's not going to survive that long if we're at war. I know that. So let's figure out how to settle this right away. All I need is a commitment that Microsoft will keep developing for the Mac and an investment by Microsoft in Apple so it has a stake in our success.' Next thing you know, BillG was lording over Jobs at Macworld Boston, as the pair announced the $150 million investment that breathed new life into then-struggling Apple. So, does Gates deserve any credit for helping create the world's most valuable company?"

RogueyWon writes "According to reports in Kotaku and Forbes, Sony is planning to ditch the Cell processor that powered the PlayStation 3 and may be planning to power the console's successor using a more conventional PC-like architecture provided by AMD. In the PS3's early years, Sony was keen to promote the benefits of its Cell processor, but the console's complicated architecture led to many studios complaining that it was difficult to develop for."

will_edit_for_food writes "Are you fed up with anti-piracy acts that use scorched-earth tactics, like SOPA and PIPA — or secretly negotiated agreements like ACTA? Do you wonder why we the people don't propose our own laws, rather than just react whenever these bills slouch toward Congress to be born? Wouldn't you like a place where you and a few like-minded amateur lawmakers could get together and do it right? Public Knowledge has debuted the Internet Blueprint, a site for those technologically and politically inclined to gather ideas...and eventually submit them to sympathetic politicians."

nonprofiteer writes "A profile of Facebook's CSO reveals that his 70-person security team includes 25 people dedicated solely to handling information requests from law enforcement. They get thousands of calls and e-mails from authorities each week, though Facebook requires police to get a warrant for anything beyond a subscriber's name, email and IP address. CSO Joe Sullivan says that some government agency tried to push Facebook to start collecting more information about their users for the benefit of authorities: 'Recently a government agency wanted us to start logging information we don't log. We told them we wouldn't start logging that piece of data because we don't need it to provide a good product. We talked to our general counsel. The law is not black-and-white. That agency thinks they can compel us to. We told them to go to court. They haven't done that yet.'"

Hugh Pickens writes "For decades, Target has collected vast amounts of data on every person who regularly walks into one of its stores. Now the NY Times Magazine reports on how companies like Target identify those unique moments in consumers' lives when their shopping habits become particularly flexible and the right advertisement or coupon can cause them to begin spending in new ways. Among life events, none are more important than the arrival of a baby, and new parents are a retailer's holy grail. In 2002, marketers at Target asked statisticians to answer an odd question: 'If we wanted to figure out if a customer is pregnant, even if she didn't want us to know, can you do that?' Specifically, the marketers said they wanted to send specially designed ads to women in their second trimester, which is when most expectant mothers begin buying all sorts of new things, like prenatal vitamins and maternity clothing. 'We knew that if we could identify them in their second trimester, there's a good chance we could capture them for years,' says statistician Andrew Pole. 'As soon as we get them buying diapers from us, they're going to start buying everything else too.' As Pole's computers crawled through the data, he was able to identify about 25 products that, when analyzed together, allowed him to assign each shopper a 'pregnancy prediction' score and he soon had a list of tens of thousands of women who were most likely pregnant. About a year after Pole created his pregnancy-prediction model, a man walked into a Target outside Minneapolis and demanded to see the manager. He was clutching coupons that had been sent to his daughter, and he was angry. 'My daughter got this in the mail!' he said. 'She's still in high school, and you're sending her coupons for baby clothes and cribs? Are you trying to encourage her to get pregnant?' The manager apologized and then called a few days later to apologize again but the father was somewhat abashed. 'It turns out there's been some activities in my house I haven't been completely aware of. She's due in August. I owe you an apology.'"

Sparrowvsrevolution writes "In the wake of news that the iPhone app Path uploads users' entire contact lists without permission, Forbes dug up a study from a group of researchers at the University of California at Santa Barbara and the International Security Systems Lab that aimed to analyze how and where iPhone apps transmit users' private data. Not only did the researchers find that one in five of the free apps in Apple's app store upload private data back to the apps' creators that could potentially identify users and allow profiles to be built of their activities; they also discovered that programs in Cydia, the most popular platform for unauthorized apps that run only on 'jailbroken' iPhones, tend to leak private data far less frequently than Apple's approved apps. The researchers ran their analysis on 1,407 free apps (PDF) on the two platforms. Of those tested apps, 21 percent of official App Store apps uploaded the user's Unique Device Identifier, for instance, compared with only four percent of unauthorized apps."

Sparrowvsrevolution writes "Ahead of the anniversary of Iran's revolution, the country's government has locked down its already-censored Internet, blocking access to many services and in some cases cutting off all encrypted traffic on the Web of the kind used by secure email, social networking and banking sites. In response, the information-freedom-focused Tor Project is testing a new tool it's calling 'obfsproxy,' or obfuscated proxy, which aims to make SSL or TLS traffic appear to be unencrypted traffic like HTTP or instant messaging data. While the tool currently only disguises SSL as the SOCKS protocol, in future versions it will aim to disguise encrypted traffic as any protocol the user chooses. Tor executive director Andrew Lewman says the idea is to 'make your Ferrari look like a Toyota by putting an actual Toyota shell over the Ferrari.'" Reader bonch adds: "A thread on Hacker News provides first-hand accounts as well as workarounds."

Cutting_Crew writes "As we all know brick and mortar stores have been closing left and right recently. We had CompUSA, Borders and Circuit City all close their doors within the last 4 years. According to an article on Forbes.com, it is spelled out pretty clearly why Best Buy is next in line to shut its doors for good. Some of the reasons highlighted include a 40% drop is Best Buy stock in 2011, lack of vision regarding their online services, management too concerned with store sales instead of margins and blatant disregard for quality customer service."

nonprofiteer writes "With a program called Screenwise, Google is offering a total of $25 in Amazon gift cards to anyone willing to install a Chrome browser extension that will let the search giant track every website the user visits and what they do there over a year-long period. Google says it will study this in order to improve its products and services. Forbes points out that $25 in Amazon credits isn't quite enough to buy a six pack of Marshmallow Fluff ($26.75)." The money isn't much as a pure trade for privacy, but I suspect that many people would like to have their preferences be among those that shape how Google — and other companies, too — actually organize their interfaces. (Note that the tracking can be selectively turned off by the user.)

Hugh Pickens writes "David S. Miller writes that when Facebook goes public later this year, Mark Zuckerberg plans to exercise stock options worth $5 billion of the $28 billion that his ownership stake will be worth and since the $5 billion he will receive will be treated as salary, Zuckerberg will have a tax bill of more than $2 billion making him, quite possibly, the largest taxpayer in history. But how much income tax will Zuckerberg pay on the rest of his stock that he won't immediately sell? Nothing, nada, zilch. He can simply use his stock as collateral to borrow against his tremendous wealth and avoid all tax. That's what Lawrence J. Ellison, the chief executive of Oracle, did, reportedly borrowing more than a billion dollars against his Oracle shares to buy one of the most expensive yachts in the world. Or consider the case of Steven P. Jobs who never sold a single share of Apple after he rejoined the company in 1997, and therefore never paying a penny of tax on the over $2 billion of Apple stock he held at his death. Now Jobs' widow can sell those shares without paying any income tax on the appreciation before his death — only on the increase in value from the time of his death to the time of the sale — because our tax system is based on the concept of "realization." Individuals are not taxed until they actually sell property and realize their gains and the solution to the problem is called mark-to-market taxation. According to Miller, mark-to-market would only affect individuals who were undeniably, extraordinarily rich, only publicly traded stock would be marked to market, and a mark-to-market system of taxation on the top one-tenth of 1 percent would raise hundreds of billions of dollars of new revenue over the next 10 years."

Sparrowvsrevolution writes "Hackers linked with Anonymous leaked another 1.26 gigabytes of Symantec's data Monday night, what they say is the source code company's PCAnywhere program. More interestingly, also posted a long private email conversation that seems to show a Symantec exec offering the hackers $50,000 to not leak the company's data and to publicly state they had lied about obtaining it. Symantec has responded by revealing that in fact, the $50,000 offer had been a ruse, and the 'Symantec exec' was actually a law enforcement agent trying to trace the hackers. It adds that all the information the hackers have released, including a 2006 version of Norton Internet Security, is outdated and poses no threat to the company or its customers. Symantec says the Anonymous hackers began attempting to extort money from the company in mid-January, and it responded by contacting law enforcement, though it won't comment on the results of the fake payoff sting while the investigation is still ongoing."

First time accepted submitter creativeHavoc writes "Forbes author Tomio Geron takes a look at data accrued by mobile app monitoring startup Crittercism. After looking at normalized data of crashes over the various mobile operating system versions he compares crash rates of apps on the two platforms. He also breaks it down further to look how the top apps compare across the competing mobile operating systems. The results may not be what you expect."

scottbomb writes "This is perhaps the best op-ed I've read about the whole SOPA/PIPA controversy. The author challenges Hollywood to re-think their entire business model. It will undoubtedly fall on deaf ears, for now. But sooner or later, they will have no choice but to adapt. From the article: 'Now that the SOPA and PIPA fights have died down, and Hollywood prepares their next salvo against internet freedom with ACTA and PCIP, it's worth pausing to consider how the war on piracy could actually be won. It can't, is the short answer, and one these companies do not want to hear as they put their fingers in their ears and start yelling.'"

bonch writes "After taking heat over allegations of copying hit indie game Tiny Tower, Zynga founder Mark Pincus wrote an internal memo justifying the company's strategy of cloning competing titles, citing the Google search engine and Apple iPod as successful products which weren't first in their markets. Pincus infamously told employees: 'I don't want f*cking innovation. You're not smarter than your competitor. Just copy what they do and do it until you get their numbers.'"

Sparrowvsrevolution writes with this excerpt from a Forbes piece recounting a scary demo at the just-ended Shmoocon: "[Security researcher Kristin] Paget aimed to indisputably prove what hackers have long known and the payment card industry has repeatedly downplayed and denied: That RFID-enabled credit card data can be easily, cheaply, and undetectably stolen and used for fraudulent transactions. With a Vivotech RFID credit card reader she bought on eBay for $50, Paget wirelessly read a volunteer's credit card onstage and obtained the card's number and expiration date, along with the one-time CVV number used by contactless cards to authenticate payments. A second later, she used a $300 card-magnetizing tool to encode that data onto a blank card. And then, with a Square attachment for the iPhone that allows anyone to swipe a card and receive payments, she paid herself $15 of the volunteer's money with the counterfeit card she'd just created. (She also handed the volunteer a twenty dollar bill, essentially selling the bill on stage for $15 to avoid any charges of illegal fraud.) ... A stealthy attacker in a crowded public place could easily scan hundreds of cards through wallets or purses."

First time accepted submitter foozie writes "Many credible sources, including Forbes and CBS, say that Facebook will finally IPO next week, raising about $10 billion and valuating at $75 billion, almost three times the valuation of Google at the point of their IPO in 2004. This shift raises questions about how the new ownership will affect the company's ability to innovate and remain on the forefront of social media."

Sparrowvsrevolution writes "At the Shmoocon security conference, researcher Brendan O'Connor plans to present the F-BOMB, or Falling or Ballistically-launched Object that Makes Backdoors. Built from just the disassembled hardware in a commercially-available PogoPlug mini-computer, a few tiny antennae, eight gigabytes of flash memory and some 3D-printed plastic casing, the F-BOMB serves as 3.5"-by-4"-by-1" spy computer. With a contract from DARPA, O'Connor has designed the cheap gadgets to be spy nodes, ready to be dropped from a drone, plugged inconspicuously into a wall socket, (one model impersonates a carbon monoxide detector) thrown over a barrier, or otherwise put into irretrievable positions to quietly collect data and send it back to the owner over any available Wi-Fi network. O'Connor built his prototypes with gear that added up to just $46 each, so sacrificing one for a single use is affordable."

Sparrowvsrevolution writes "With much of the web upset over about Google's latest privacy policy changes, it's helpful to remember it could be much worse: A search engine called Skipity offers the world's worst privacy policy (undoubtedly tongue-in-cheek), filled with lines like this: 'You may think of using any of our programs or services as the privacy equivalent of living in a webcam fitted glass house under the unblinking eye of Big Brother: you have no privacy with us. If we can use any of your details to legally make a profit, we probably will.' The policy gives the company the right to sell any of your data that it wants to any and all corporate customers, send you limitless spam, track your movements via GPS if possible, watch you through your webcam, and implant a chip in your body that is subject to reinstallation whenever the company chooses."

wasimkadak sends this quote from an article at Forbes: "Facebook's 27-year-old founder, Mark Zuckerberg, isn't usually mentioned in the same breath as Ben Bernanke, the 58-year-old head of the Federal Reserve. But Facebook's early adventures in the money-creating business are going well enough that the central-bank comparison gets tempting. ... Initially, the Credits-based economy was confined to the virtual world’s trifles. Credits could be spent to buy imaginary gold bars for aficionados of Mafia Wars, or bouquets of virtual flowers for birthday postings on friends’ Facebook accounts. This new form of digital money was cute but essentially useless for mainstream activities. Lately Credits have become more intriguing. Warner Brothers this summer offered movie-goers a chance to watch Harry Potter and The Dark Knight for 30 Credits apiece. Miramax and Paramount countered with film-viewing offers, too. In a provocative post this week on Inside Facebook, guest blogger Peter Vogel argues that Credits in the next few years will become more of a true currency. Facebook's 800 million worldwide users represent a lot of buying power. He figures Credits could evolve into commercial mainstays for digital movies and music."

nonprofiteer writes "The New York Times claims that the hot new trend among teenagers in love is to share passwords to their email and Facebook accounts, as the ultimate form of trust. According to Pew, 33% of teens surveyed say they do this. One expert says the pressure to share passwords is akin to the pressure to have sex. Forbes says don't do it! 'There is something pure and romantic about the idea of sharing everything, and having no secrets from one another. But it's romantic the same way that Romeo and Juliet is romantic, in a tragic, horrible, everyone-is-miserable-and-dies-at-the-end kind of way.' Sam Biddle at Gizmodo writes about which passwords are okay to share (like Netflix), but says to stay away from handing over email or Facebook passwords. 'We all need whatever scraps of privacy we have left, and your email is just that.'"

Hugh Pickens writes writes "Andrei Chikatilo, 'The Butcher of Rostov,' was one of the most prolific serial killers in modern history committing at least 52 murders between 1978 and 1990 before he was caught, tried, and executed. The pattern of his murders, though, was irregular with long periods of no activity, interrupted by several murders within a short period of time. Hoping to gain insight into serial killings to prevent similar murders, Mikhail Simkin and Vwani Roychowdhury at UCLA built a mathematical model of the time pattern of the activity of Chikatilo and found the distribution of the intervals between murders follows a power law with the exponent of 1.4. The basis of their analysis is the hypothesis that 'similar to epileptic seizures, the psychotic affects, causing a serial killer to commit murder, arise from simultaneous firing of large number of neurons in the brain.' In modeling the behavior the authors didn't find that 'the killer commits murder right at the moment when neural excitation reaches a certain threshold. He needs time to plan and prepare his crime' so they built delay into their model. The killings eventually have a sedative effect, pushing the neuronal activity below the 'killing threshold' – which is why there are large intervals of time between groups of murders. 'There is at least qualitative agreement between theory and observation [PDF],' conclude the authors. 'Stats can't tell you who the perp is, but they're getting better and better at figuring out where and when the next crime might happen,' writes criminal lawyer Nathaniel Burney adding that 'catching a serial killer by focusing resources based on when and where he's likely to strike next is a hell of a lot better than relying on the junk science of behavioral profiling.'"

Sparrowvsrevolution writes "At the Shmoocon security conference later this month, Danny Quist plans to demo a new three-dimensional version of a tool he's created called Visualization of Executables for Reversing and Analysis, or VERA, that maps viruses' and worms' code into intuitively visible models. Quist, who teaches government and corporate students the art of reverse engineering at Los Alamos National Labs, says he hopes VERA will make the process of taking apart and understanding malware's functionality far easier. VERA observes malware running in a virtual sandbox and identifies the basic blocks of commands it executes. Then those chunks of instructions are color-coded by their function and linked by the order of the malware's operations, like a giant, 3D flow chart. Quist provides a sample video showing a model of a section of the Koobface worm."

Sparrowvsrevolution writes "James Gross, a resident of Washington State, filed what he intends to be a class action lawsuit against Symantec in a Northern District California court Tuesday, claiming that Symantec defrauds consumers by running fake scans on their machines, with results designed to bully users into upgrading to a paid version of the company's software. 'The scareware does not conduct any actual diagnostic testing on the computer,' the complaint reads. 'Instead, Symantec intentionally designed its scareware to invariably report, in an extremely ominous manner, that harmful errors, privacy risks, and other computer problems exist on the user's PC, regardless of the real condition of the consumer's computer.' Symantec denies those claims, but it has a history of using fear mongering tactics to bump up its sales. A notice it showed in 2010 to users whose subscriptions were ending in 2010 warned that 'cyber-criminals are about to clean out your bank account...Protect yourself now, or beg for mercy.'"

Sparrowvsrevolution writes "Apple has patented a power charger that also serves as a password recovery backup. If a user forgets his Macbook's password, for instance, he simply plugs in the cord, and it would provide a unique ID number stored in a memory chip in the adapter that acts as a decryption key, unscrambling an encrypted copy of the password stored on the machine. The technique, according to the patent, incentivizes better password use by avoiding traditional password recovery techniques that annoy users and lead to disabled or easily-guessed passwords. The new technique is only secure, the patent admits, in cases where the user leaves a mobile device's charger at home. So the idea may make the most sense for long-battery-life devices like iPods, iPads and iPhones rather than laptops, at least until laptop batteries last long enough that users don't take their power adapters with them and expose them to theft."

nonprofiteer writes "The Supreme Court is currently deciding whether or not law enforcement needs a warrant before they put a GPS tracker on a person's car. A judge in St. Louis doesn't seem to care about that, though. He ruled last week (PDF) that the FBI didn't need a warrant to track the car of a state employee they suspected was collecting a paycheck without actually going to work. (Their suspicions were confirmed.) While in favor of corrupt government employees being caught, it's a bit disturbing that a federal judge would decide a warrant wasn't needed while the Supreme Court has said the issue is unclear."

symbolset writes "TheNextWeb is reporting that the first official jailbreak for Windows Phone 7, ChevronWP7, has 'sold out' of tokens to enable homebrew application support. Only 10,000 tokens to jailbreak Windows Phones were ever granted. According to an announcement through ChevronWP7's Twitter feed, they're discussing whether they will ask Microsoft to make more available. With Lumia falling flat in Europe Microsoft needs all the enthusiastic modding fans they can get."

smitty777 writes "Forbes is running an intriguing story on a new 'Superphone' under development by the folks at Microsoft. According to this leaked MS roadmap document, the plan is to build the Apollo-based phone in the 4th quarter of 2012. FTA: 'In the end, however, none of this matters. Microsoft's "peek into the future" is barely a glimpse into what the company may or may not have planned for 2012. While the "superphone" bullet is worth noting, it is not the confirmation of a revolutionary new product. At best, it indicates that Microsoft wishes to compete with Apple by offering a product that is, well, super.' It's also interesting that Sony and AT&T also appear to be working on superphones of their own."