Domain: slashdot.org
Stories and comments across the archive that link to slashdot.org.
Stories · 37,380
-
Malware Operator Barters With Security Researcher To Remove Open Source Ransomware Code (softpedia.com)
An anonymous reader writes: The author of the Magic ransomware strain has agreed to release all decryption keys for free if Utku Sen, a Turkish security researcher, takes down his Hidden Tear open-source ransomware project from GitHub. Sen has released multiple open source ransomware projects, which contained backdoors and encryption flaws. The flaws disrupted the plans of several ransomware operators. This particular ransomware author is Russian, while Sen is Turkish, so just like Putin and Erdogan, the two struggled to come to an agreement. Utku Sen finally agreed to take down the Hidden Tear repository in three days, while the author of the Magic ransomware will provide all the encryption keys for free for the next 15 days. -
Online Ad Czar Berates Adblockers As Freedom-Hating 'Mafia' (thestack.com)
An anonymous reader writes: Randall Rothenburg, the president and CEO of the Interactive Advertising Bureau (IAB) has made a speech branding the creators of Adblock Plus (who were banned from the conference where he made this keynote) as "rich and self-righteous," and accused adblockers of subverting freedom of the press. Speaking at the IAB's annual conference, Rothenburg characterized the Adblock Plus team as "operating a business model predicated on censorship of content." -
NSA Wants To Dump the Phone Records It Gathered Over 14 Years (thenextweb.com)
According to The Next Web, the NSA would like to get rid of something that a lot of people wish they'd never had in the first place: phone records that the agency has collected over a decade and a half (more, really) of mass surveillance. However, the EFF wants to make sure that the evidence of snooping doesn't get buried along with the actual recorded data. From the article: [T]he government says that it can't be sued by bodies like the EFF. The organization is currently involved in two pending cases seeking a remedy for the past 14 years of illegal phone record collection. EFF wrote a letter (PDF) to the secret Foreign Intelligence Surveillance Act court last December which it has now made public, explaining that it is ready to discuss options that will allow destruction of the records in ways that still preserve its ability to prosecute the cases. It'll be interesting to see how this pans out: if the government doesn't agree to a discussion about how to handle these phone records, it's possible that they will remain on file for years to come. Plus, it could allow the NSA to avoid being held accountable for its illegal mass surveillance. -
NSA Wants To Dump the Phone Records It Gathered Over 14 Years (thenextweb.com)
According to The Next Web, the NSA would like to get rid of something that a lot of people wish they'd never had in the first place: phone records that the agency has collected over a decade and a half (more, really) of mass surveillance. However, the EFF wants to make sure that the evidence of snooping doesn't get buried along with the actual recorded data. From the article: [T]he government says that it can't be sued by bodies like the EFF. The organization is currently involved in two pending cases seeking a remedy for the past 14 years of illegal phone record collection. EFF wrote a letter (PDF) to the secret Foreign Intelligence Surveillance Act court last December which it has now made public, explaining that it is ready to discuss options that will allow destruction of the records in ways that still preserve its ability to prosecute the cases. It'll be interesting to see how this pans out: if the government doesn't agree to a discussion about how to handle these phone records, it's possible that they will remain on file for years to come. Plus, it could allow the NSA to avoid being held accountable for its illegal mass surveillance. -
NSA Wants To Dump the Phone Records It Gathered Over 14 Years (thenextweb.com)
According to The Next Web, the NSA would like to get rid of something that a lot of people wish they'd never had in the first place: phone records that the agency has collected over a decade and a half (more, really) of mass surveillance. However, the EFF wants to make sure that the evidence of snooping doesn't get buried along with the actual recorded data. From the article: [T]he government says that it can't be sued by bodies like the EFF. The organization is currently involved in two pending cases seeking a remedy for the past 14 years of illegal phone record collection. EFF wrote a letter (PDF) to the secret Foreign Intelligence Surveillance Act court last December which it has now made public, explaining that it is ready to discuss options that will allow destruction of the records in ways that still preserve its ability to prosecute the cases. It'll be interesting to see how this pans out: if the government doesn't agree to a discussion about how to handle these phone records, it's possible that they will remain on file for years to come. Plus, it could allow the NSA to avoid being held accountable for its illegal mass surveillance. -
NSA Wants To Dump the Phone Records It Gathered Over 14 Years (thenextweb.com)
According to The Next Web, the NSA would like to get rid of something that a lot of people wish they'd never had in the first place: phone records that the agency has collected over a decade and a half (more, really) of mass surveillance. However, the EFF wants to make sure that the evidence of snooping doesn't get buried along with the actual recorded data. From the article: [T]he government says that it can't be sued by bodies like the EFF. The organization is currently involved in two pending cases seeking a remedy for the past 14 years of illegal phone record collection. EFF wrote a letter (PDF) to the secret Foreign Intelligence Surveillance Act court last December which it has now made public, explaining that it is ready to discuss options that will allow destruction of the records in ways that still preserve its ability to prosecute the cases. It'll be interesting to see how this pans out: if the government doesn't agree to a discussion about how to handle these phone records, it's possible that they will remain on file for years to come. Plus, it could allow the NSA to avoid being held accountable for its illegal mass surveillance. -
NSA Wants To Dump the Phone Records It Gathered Over 14 Years (thenextweb.com)
According to The Next Web, the NSA would like to get rid of something that a lot of people wish they'd never had in the first place: phone records that the agency has collected over a decade and a half (more, really) of mass surveillance. However, the EFF wants to make sure that the evidence of snooping doesn't get buried along with the actual recorded data. From the article: [T]he government says that it can't be sued by bodies like the EFF. The organization is currently involved in two pending cases seeking a remedy for the past 14 years of illegal phone record collection. EFF wrote a letter (PDF) to the secret Foreign Intelligence Surveillance Act court last December which it has now made public, explaining that it is ready to discuss options that will allow destruction of the records in ways that still preserve its ability to prosecute the cases. It'll be interesting to see how this pans out: if the government doesn't agree to a discussion about how to handle these phone records, it's possible that they will remain on file for years to come. Plus, it could allow the NSA to avoid being held accountable for its illegal mass surveillance. -
NSA Wants To Dump the Phone Records It Gathered Over 14 Years (thenextweb.com)
According to The Next Web, the NSA would like to get rid of something that a lot of people wish they'd never had in the first place: phone records that the agency has collected over a decade and a half (more, really) of mass surveillance. However, the EFF wants to make sure that the evidence of snooping doesn't get buried along with the actual recorded data. From the article: [T]he government says that it can't be sued by bodies like the EFF. The organization is currently involved in two pending cases seeking a remedy for the past 14 years of illegal phone record collection. EFF wrote a letter (PDF) to the secret Foreign Intelligence Surveillance Act court last December which it has now made public, explaining that it is ready to discuss options that will allow destruction of the records in ways that still preserve its ability to prosecute the cases. It'll be interesting to see how this pans out: if the government doesn't agree to a discussion about how to handle these phone records, it's possible that they will remain on file for years to come. Plus, it could allow the NSA to avoid being held accountable for its illegal mass surveillance. -
NSA Wants To Dump the Phone Records It Gathered Over 14 Years (thenextweb.com)
According to The Next Web, the NSA would like to get rid of something that a lot of people wish they'd never had in the first place: phone records that the agency has collected over a decade and a half (more, really) of mass surveillance. However, the EFF wants to make sure that the evidence of snooping doesn't get buried along with the actual recorded data. From the article: [T]he government says that it can't be sued by bodies like the EFF. The organization is currently involved in two pending cases seeking a remedy for the past 14 years of illegal phone record collection. EFF wrote a letter (PDF) to the secret Foreign Intelligence Surveillance Act court last December which it has now made public, explaining that it is ready to discuss options that will allow destruction of the records in ways that still preserve its ability to prosecute the cases. It'll be interesting to see how this pans out: if the government doesn't agree to a discussion about how to handle these phone records, it's possible that they will remain on file for years to come. Plus, it could allow the NSA to avoid being held accountable for its illegal mass surveillance. -
NSA Wants To Dump the Phone Records It Gathered Over 14 Years (thenextweb.com)
According to The Next Web, the NSA would like to get rid of something that a lot of people wish they'd never had in the first place: phone records that the agency has collected over a decade and a half (more, really) of mass surveillance. However, the EFF wants to make sure that the evidence of snooping doesn't get buried along with the actual recorded data. From the article: [T]he government says that it can't be sued by bodies like the EFF. The organization is currently involved in two pending cases seeking a remedy for the past 14 years of illegal phone record collection. EFF wrote a letter (PDF) to the secret Foreign Intelligence Surveillance Act court last December which it has now made public, explaining that it is ready to discuss options that will allow destruction of the records in ways that still preserve its ability to prosecute the cases. It'll be interesting to see how this pans out: if the government doesn't agree to a discussion about how to handle these phone records, it's possible that they will remain on file for years to come. Plus, it could allow the NSA to avoid being held accountable for its illegal mass surveillance. -
Uber's Smartphone-Based Gyrometer Monitoring Seems To Be the Future of Driving (thestack.com)
An anonymous reader writes: Uber has announced that it has been conducting trials in Houston, Texas, since late 2015 which use data from the gyrometer in drivers' smartphones, combined with accelerometer and GPS data, to perform forensic analysis on Uber journeys where the customer flagged up errant driving behavior such as speeding or tailgating. Uber's post also indicates that talking on a phone whilst driving may be included as a factor in safety-oriented trials. The auto-insurers' move from dedicated telematics technology to smartphone-based data provision was spearheaded by British insurer Aviva in 2012, with massive U.S. insurer Progressive now actively pursuing driver monitoring. However the premium reductions are diminishing as the practice heads from experimental, to default, to obligatory — or so many believe. -
Disney IT Workers Allege Conspiracy In Layoffs, File Lawsuits (computerworld.com)
dcblogs writes with the latest in the laid off Disney IT worker saga. According to ComputerWorld: "Disney IT workers laid off a year ago this month are now accusing the company and the outsourcing firms it hired of engaging in a 'conspiracy to displace U.S. workers.' The allegations are part of two lawsuits filed in federal court in Florida on Monday. Between 200 and 300 Disney IT workers were laid off in January 2015. Some of the workers had to train their foreign replacements — workers on H-1B visas — as a condition of severance. The lawsuits represent what may be a new approach in the attack on the use of H-1B workers to replace U.S. workers. They allege violations of the Federal Racketeer Influenced and Corrupt Organizations Act (RICO), claiming that the nature of the employment of the H-1B workers was misrepresented, and that Disney and the contractors knew the ultimate intent was to replace U.S. workers with lower paid H-1B workers." -
Uber's Short-lived Helicopter Service In Utah Grounded (ksl.com)
New submitter captaindomon writes: It may come as no surprise that the Uber helicopter flights which debuted at the Sundance Film Festival were apparently illegal and quickly grounded. "Thanks to the support and partnership we have with Sundance and Park City Municipal Corporation, we were able to come to an agreement," said Summit County spokeswoman Katie Mullaly. "We are glad to have this issue resolved, not only for the safety of all those involved, but also for the wildlife of the area, affected residents and environmental concerns." -
US Regulators Find Serious Deficiencies At Theranos Lab (wsj.com)
An anonymous reader writes: 2016 has not started well for blood-testing startup Theranos. Already facing allegations of data manipulation, the Centers for Medicare and Medicaid Services have found problems with Theranos' laboratory in Newark, California, putting the company's relationship with the Medicare program in danger. WSJ reports: "It isn't clear exactly what regulators have faulted Theranos for in their latest inspection, which took several months. Adverse findings would be another regulatory setback for one of Silicon Valley's highest-profile startups, valued at about $9 billion in 2014. Theranos already has stopped collecting tiny samples of blood from patients' fingers for all but one of its tests while it waits for the Food and Drug Administration to review the company's applications for wider use of the proprietary vials called 'nanotainers.' In October, the FDA said it had determined that the nanotainers were an 'uncleared medical device.'" -
Microsoft Releases Its Deep Learning Toolkit On GitHub (microsoft.com)
An anonymous reader writes: Microsoft is moving its machine learning Computational Network Toolkit (CNTK) from its own hosting site, CodePlex, to GitHub. They're also putting it under the MIT open source license. The move marks an effort to make it easier for developers to collaborate on building their own deep learning applications using the CNTK. Under the CodePlex license, access was restricted to academics only, and it was wholly targeted to that audience. Now that it's opening the project to everyone, Microsoft hopes to attract a greater number of developers, and a wider variety as well. This follows similar releases from Google and Baidu. -
Microsoft Releases Its Deep Learning Toolkit On GitHub (microsoft.com)
An anonymous reader writes: Microsoft is moving its machine learning Computational Network Toolkit (CNTK) from its own hosting site, CodePlex, to GitHub. They're also putting it under the MIT open source license. The move marks an effort to make it easier for developers to collaborate on building their own deep learning applications using the CNTK. Under the CodePlex license, access was restricted to academics only, and it was wholly targeted to that audience. Now that it's opening the project to everyone, Microsoft hopes to attract a greater number of developers, and a wider variety as well. This follows similar releases from Google and Baidu. -
FortiGuard SSH Backdoor Found In More Fortinet Security Appliances (fortinet.com)
itwbennett writes: Earlier this month, an SSH backdoor was identified in Fortinet firewall appliances. Last week, the company said that the problem was not an intentional backdoor, but the result of a management feature which relied on an undocumented account with a hard-coded password. Now, it has found that the same issue also exists in some versions of FortiSwitch, FortiAnalyzer and FortiCache. They said, "In accordance with responsible disclosure, today we have issued a security advisory that provides a software update that eliminates this vulnerability in these products. This update also covers the legacy and end-of-life products listed above. We are actively working with customers and strongly recommend that all customers using [those] products update their systems with the highest priority." -
Is Blockchain the Most Important IT Invention of Our Age? (theguardian.com)
mspohr writes: This article makes a fairly persuasive argument for the utility of the blockchain. It discusses a wide variety of companies and government exploring blockchain to maintain secure records which cannot be altered. One interesting application is to use blockchain to maintain property records in many countries where these records are often incomplete and are easily corrupted (intentionally or unintentionally). A linked article in The Economist expands the thought and discusses changes to the blockchain to improve performance, reduce overhead and accommodate different uses. (See also this related poll.) -
Finally Calculated: All the Legal Positions In a 19x19 Game of Go (github.io)
Reader John Tromp points to an explanation posted at GitHub of a computational challenge Tromp coordinated that makes a nice companion to the recent discovery of a 22 million-digit Mersenne prime. A distributed effort using pooled computers from two centers at Princeton, and more contributed from the HP Helion cloud, after "many hiccups and a few catastrophes" calculated the number of legal positions in a 19x19 game of Go. Simple as Go board layout is, the permutations allowed by the rules are anything but simple to calculate: "For running an L19 job, a beefy server with 15TB of fast scratch diskspace, 8 to 16 cores, and 192GB of RAM, is recommended. Expect a few months of running time." More: Large numbers have a way of popping up in the game of Go. Few people believe that a tiny 2x2 Go board allows for more than a few hundred games. Yet 2x2 games number not in the hundreds, nor in the thousands, nor even in the millions. They number in the hundreds of billions! 386356909593 to be precise. Things only get crazier as you go up in boardsize. A lower bound of 10^{10^48} on the number of 19x19 games, as proved in our paper, was recently improved to a googolplex. (For anyone who wants to double check his work, Tromp has posted as open source the software used.) -
Software Hall of Fame Member Ed Yourdon Dies (wikipedia.org)
New submitter andyjl writes: The software industry lost one of its pioneers on Tuesday, January 20, 2016 when Ed Yourdon died from post-operative complications. Ed was a pioneer of Structured Programming methodologies, and was a prodigious author of software-related books, including topics such as "death march" projects, and the problems of Y2K. He was also a personal friend and fellow forensic software analyst specializing in the analysis of failed software development projects and the lack of software development disciplines. He once told me that he read a item on the Internet (which I cannot find) that said, "whenever a programmer writes a GOTO statement, somewhere a Yourdon dies." I am forced to conclude that one of you programmers out there did indeed write a GOTO statement on Tuesday and I want to know who it was. Look at what you did! Did you really have to use a GOTO? Adds reader theodp: Yourdon was a successful author, whose Slashdot-reviewed books included Rise and Resurrection of the American Programmer, Death March: The Complete Software Developer's Guide to Surviving "Mission Impossible" Projects, Byte Wars: The Impact of September 11 on Information Technology, and Outsourcing: Competing in the Global Productivity Race. Yourdon's Time Bomb 2000!: What the Year 2000 Computer Crisis Means to You!, written with daughter Jennifer, was a Y2K best-seller. -
Software Hall of Fame Member Ed Yourdon Dies (wikipedia.org)
New submitter andyjl writes: The software industry lost one of its pioneers on Tuesday, January 20, 2016 when Ed Yourdon died from post-operative complications. Ed was a pioneer of Structured Programming methodologies, and was a prodigious author of software-related books, including topics such as "death march" projects, and the problems of Y2K. He was also a personal friend and fellow forensic software analyst specializing in the analysis of failed software development projects and the lack of software development disciplines. He once told me that he read a item on the Internet (which I cannot find) that said, "whenever a programmer writes a GOTO statement, somewhere a Yourdon dies." I am forced to conclude that one of you programmers out there did indeed write a GOTO statement on Tuesday and I want to know who it was. Look at what you did! Did you really have to use a GOTO? Adds reader theodp: Yourdon was a successful author, whose Slashdot-reviewed books included Rise and Resurrection of the American Programmer, Death March: The Complete Software Developer's Guide to Surviving "Mission Impossible" Projects, Byte Wars: The Impact of September 11 on Information Technology, and Outsourcing: Competing in the Global Productivity Race. Yourdon's Time Bomb 2000!: What the Year 2000 Computer Crisis Means to You!, written with daughter Jennifer, was a Y2K best-seller. -
Software Hall of Fame Member Ed Yourdon Dies (wikipedia.org)
New submitter andyjl writes: The software industry lost one of its pioneers on Tuesday, January 20, 2016 when Ed Yourdon died from post-operative complications. Ed was a pioneer of Structured Programming methodologies, and was a prodigious author of software-related books, including topics such as "death march" projects, and the problems of Y2K. He was also a personal friend and fellow forensic software analyst specializing in the analysis of failed software development projects and the lack of software development disciplines. He once told me that he read a item on the Internet (which I cannot find) that said, "whenever a programmer writes a GOTO statement, somewhere a Yourdon dies." I am forced to conclude that one of you programmers out there did indeed write a GOTO statement on Tuesday and I want to know who it was. Look at what you did! Did you really have to use a GOTO? Adds reader theodp: Yourdon was a successful author, whose Slashdot-reviewed books included Rise and Resurrection of the American Programmer, Death March: The Complete Software Developer's Guide to Surviving "Mission Impossible" Projects, Byte Wars: The Impact of September 11 on Information Technology, and Outsourcing: Competing in the Global Productivity Race. Yourdon's Time Bomb 2000!: What the Year 2000 Computer Crisis Means to You!, written with daughter Jennifer, was a Y2K best-seller. -
Software Hall of Fame Member Ed Yourdon Dies (wikipedia.org)
New submitter andyjl writes: The software industry lost one of its pioneers on Tuesday, January 20, 2016 when Ed Yourdon died from post-operative complications. Ed was a pioneer of Structured Programming methodologies, and was a prodigious author of software-related books, including topics such as "death march" projects, and the problems of Y2K. He was also a personal friend and fellow forensic software analyst specializing in the analysis of failed software development projects and the lack of software development disciplines. He once told me that he read a item on the Internet (which I cannot find) that said, "whenever a programmer writes a GOTO statement, somewhere a Yourdon dies." I am forced to conclude that one of you programmers out there did indeed write a GOTO statement on Tuesday and I want to know who it was. Look at what you did! Did you really have to use a GOTO? Adds reader theodp: Yourdon was a successful author, whose Slashdot-reviewed books included Rise and Resurrection of the American Programmer, Death March: The Complete Software Developer's Guide to Surviving "Mission Impossible" Projects, Byte Wars: The Impact of September 11 on Information Technology, and Outsourcing: Competing in the Global Productivity Race. Yourdon's Time Bomb 2000!: What the Year 2000 Computer Crisis Means to You!, written with daughter Jennifer, was a Y2K best-seller. -
How Have Large Donations Affected Education Policy In New York City?
theodp writes: According to Chalkbeat, the expansion of charter schools, the movement to break New York City's large schools into smaller ones, and the push to teach computer science have something in common: the influence of philanthropy. Though contributions from big donors amount to only a fraction of New York City's education spending, they still have a real impact on public school policy, said Jeffrey Henig, the co-author of The New Education Philanthropy: Politics, Policy and Reform, which details how powerful individuals and organizations increasingly use donations to advance policies they support. Increasingly, Henig adds, some of those donors are paying more attention to advocacy, creating at least the appearance, if not the reality, of grassroots support. -
Blue Origin Launches and Lands the Same New Shepard That Few In November (blueorigin.com)
MarkWhittington writes: The commercial space race between Blue Origin and SpaceX got more interesting on Friday. In November, Blue Origin launched its New Shepard booster on a suborbital flight, and then successfully landed it afterward. On Friday, Blue Origin relaunched the same New Shepard spacecraft to a height of 101.7 kilometers, and then landed it a second time. Blue Origin has therefore accomplished a first by flying a vertical takeoff and landing rocket into space twice in a row. The company has taken another step toward its goal of taking the rich and adventurous on suborbital jaunts for fun and profit. -
Google Launches Free Course On Deep Learning (blogspot.com)
An anonymous reader writes: In November, Google open sourced TensorFlow, its machine learning platform. Now, the company is following up by teaching people how to use it. They've launched a free course at Udacity that "provides you with all the basic tools and vocabulary to get started with deep learning, and walks you through how to use it to address some of the most common machine learning problems." A series of lectures explains how to set up your data, build training models, and extend those models. It also touches on image recognition and how to use recurrent neural networks. The signup page notes that this is considered an intermediate-to-advanced level course, so you'll probably need some basic machine learning knowledge to get the most out of it. -
Mainstream Scientists Cashing In On Climate Wagers (reuters.com)
Layzej writes: Climate contrarians have long predicted imminent global cooling. A few have been willing to place wagers that mainstream scientists have been quick to accept. Often acceptance of the bet is followed by immediate retraction, as was the case when "Bastardi's Wager" was accepted by Joseph Romm or when Maurice Newman's $10,000 bet was accepted by physicist Brian Schmidt. In some cases, bets have been formalized and the terms of many of those wagers are coming to a close. It may not be surprising to learn that those who put their money on the side of mainstream science are the ones who are cashing in.
Reuters reports that British climate expert Chris Hope just won a 2,000 pound sterling ($2,830) wager made five years ago against two members of the Global Warming Policy Foundation, who had bet Hope that the Earth would be cooling by now. They also highlight a $10,000 bet made in 2005 between British climate modeler James Annan and two Russian solar physicists. The solar physicists had counted on waning solar output to halt warming. Annan will win if average global temperatures from 2013-17 are warmer than 2003-07. "Things are looking good for my bet," Annan said.
Keith Pickering reports on a series of three bets between Brian Schmidt and climate contrarian David Evans, who also believed that diminishing solar output would dominate the temperatures of the last decade and beyond. The wagers pay out in 2019, 2024, and 2029. Pickering concludes, "What Evans apparently doesn't realize is that because of the thermal inertia of the oceans, within narrow bounds we can already predict what global temperatures will be in 2019, 2024, and 2029. And David Evans is going to lose his shirt." -
Netflix's Doomed Battle Against VPNs Begins (venturebeat.com)
An anonymous reader writes: Australian unblocking service uFlix recently announced that Netflix has begun implementing its plans to block users who take advantage of web proxies and VPNs to get around location restrictions on content. Shortly afterward, the service rolled out a fix to restore service, despite Netflix's efforts. The article makes the case that Netflix is probably just fine with this: "Netflix, ultimately, is caught between a rock and a hard place. The company has gone on record many times criticizing the way content licensing deals are negotiated globally. Of course, Netflix would love to be able offer a consistent library of content around the world. But it also has to stay on-side with those who hold the rights to the content, otherwise they may threaten to pull shows and movies altogether. The result is that Netflix is going through the motions of blocking VPNs, even though it understand perfectly well that these measures are doomed to fail." -
At How Much Risk Is the US's Critical Infrastructure? (csoonline.com)
itwbennett writes: There is growing evidence that intrusions into the power grid and other critical infrastructure by hostile foreign nation states are real and happening. But there's "much less agreement over how much of a threat hackers are," writes Taylor Armerding. "On one side are those – some of them top government officials – who have warned that a cyber attack on the nation's critical infrastructure could be catastrophic,"writes Armerding. Others are crying FUD, including C. Thomas, a strategist at Tenable Network Security, who got some attention when he argued in an op-ed that the biggest threat to the U.S. power grid not a skilled hacker, but squirrels, are crying FUD. Who has it right? Agreement seems to coalesce around two points: 1) the cyber security of industrial control systems remains notoriously weak and 2) hostile hackers will improve their skills over time. So, while we haven't reached "catastrophe" yet, a properly motivated terrorist group could become a cyber threat. -
Metasploit Creator HD Moore To Launch Venture Fund (securityweek.com)
wiredmikey writes: Well known security expert HD Moore announced that he is leaving Boston-based security firm Rapid7 to help launch a new venture capital firm focused on helping early-stage security firms get to market faster. Moore is the creator of the open source penetration testing framework Metasploit, which Rapid7 acquired in 2009. Moore says he will continue to work on Metasploit and will remain active in the community even after he leaves Rapid7 on January 29. -
Microsoft Asks Node.js To Allow ChakraCore (Edge) Alongside Google's V8 Engine (softpedia.com)
campuscodi writes: Microsoft has submitted an official pull request to the Node.js project, through which it's asking the project's maintainers to enable support for ChakraCore, the JavaScript engine packed inside Microsoft's Edge browser, as an alternative to Node's built-in V8 engine, developed by Google. Earlier in December 2015, Microsoft open-sourced ChakraCore. Microsoft has also been one of the biggest companies to adopt Node.js early on, and is also part of the Node.js Foundation's Board o Directors. The main reason to add ChakraCore support in Node.js will help the IoT version of Windows 10 to run JS apps on IoT devices, just like Samsung is also thinking about. -
Google Fixes Zero-Day Kernel Flaw, Says Effect on Android Not Really That Bad (csoonline.com)
itwbennett writes: Google has developed a patch for Android in response to a flaw in the Linux kernel and has shared it with device manufacturers. That doesn't mean the patch will hit users' phones right away, though. It might take weeks. But that's ok, says Google, because most Android devices are unlikely to run vulnerable kernel versions, and those that do are protected by SELinux. -
Theoretical Evidence For a Ninth Planet Beyond Pluto May Be Premature (forbes.com)
An anonymous reader writes: Earlier today, the team of Pluto-killer Mike Brown and Konstantin Batygin announced that they had found evidence of a ninth planet in our Solar System beyond the orbit of Pluto, larger and more massive than even Earth. However, a closer inspection of the work shows that they predict a few things that haven't been observed, including a population of Kuiper belt objects with large inclinations and retrograde orbits, long-period Kuiper belt objects with opposite ecliptic latitudes and longitudes, and infrared data showing the emission from such an outer world. There are many good reasons to be skeptical, and not conclude that there's a ninth planet without more (and better) evidence. -
High-Tech Attack Alert For 2016 Super Bowl (thestack.com)
An anonymous reader writes with news about a Homeland Security memo concerning potential technological attacks during the Super Bowl. The forthcoming Super Bowl event on 7th February could be at risk of a high-tech attack against fans both inside and outside the San Francisco 49ers Stadium. A security memo issued by the FBI and the Department of Homeland Security has warned that the annual game could be a target not just at the stadium, but at other commemorative events taking place in San Francisco and in the Silicon Valley. One of the chief concerns is the various sabotages committed against fibre cables in the area. As the fibre optic cable networks function as back up communication systems in emergency situations, these are a possible target for the attackers. By destroying these cables, response times could be slowed down. -
Open-Source GPU Used For Research (binghamton.edu)
Theovon writes: For quite some time now, "open hardware" enthusiasts have had access to a number of open source CPUs, including OpenRISC. However, it wasn't until recently that there has been any kind of open source GPU. In 2014, the Vertical Research Group at the University of Wisconsin-Madison announced MIAOW. MIAOW is in many ways a clone of the AMD Southern Islands architecture and can even run some of the same binary code. Unfortunately, MIAOW is missing some key components such as video and memory systems, making it not currently possible to implement fully in hardware. For this, Nyuzi comes to the rescue. Nyuzi (formerly Nyami) has been in development since 2010 and is a fully functional open source GPU inspired by Larrabee. Although architecturally different from the SIMT architectures from AMD and Nvidia, researchers at Binghamton University and several other places have already used it to conduct research on GPUs. A paper (PDF) was published in March 2015 about this processor (one of the authors was the original founder of the Open Graphics Project), and Nyuzi (homepage) can be downloaded from GitHub. -
New Mersenne Prime Discovered, Largest Known Prime Number: 2^74,207,281 - 1 (mersenne.org)
Dave Knott writes: The Great Internet Mersenne Prime Search (GIMPS) has discovered a new largest known prime number, 2^74,207,281-1, having 22,338,618 digits. The same GIMPS software recently uncovered a flaw in Intel's latest Skylake CPUs, and its global network of CPUs peaking at 450 trillion calculations per second remains the longest continuously-running "grassroots supercomputing" project in Internet history. The prime is almost 5 million digits larger than the previous record prime number, in a special class of extremely rare prime numbers known as Mersenne primes. It is only the 49th known Mersenne prime ever discovered, each increasingly difficult to find. -
Samsung Begins Mass Production of World's Fastest DRAM (hothardware.com)
MojoKid writes: Late last year marked the introduction of High Bandwidth Memory (HBM) DRAM courtesy of AMD's Fury family of graphics cards, each of which sports 4GB of HBM. HBM allows these new AMD GPUs to tout an impressive 512GB/sec of memory bandwidth, but it's also just the first iteration of the new memory technology. Samsung has just announced that it has begun mass production of HBM2. Samsung's 4GB HBM2 package is built on a 20 nanometer process. Each package contains four 8-gigabit core dies built on top of a buffer die. Each 4GB HMB2 package is capable of delivering 256GB/sec of bandwidth, which is twice that of first generation HBM DRAM. In the example of NVIDIA's next gen GPU technology, code named Pascal, the new GPU will utilize HBM2 for its frame buffer memory. High-end consumer-grade Pascal boards will ship with 16GB of HBM2 memory (in four, 4GB packages), offering effective memory bandwidth of 1TB/sec (256GB/sec from each HMB2 package). Samsung is also reportedly readying 8GB HBM2 memory packages this year. -
GM Buys Failed Uber Rival Sidecar (bloomberg.com)
An anonymous reader writes: The major automakers have several new technologies to fear, ridesharing services and self-driving technology chief among them. Both of these could dramatically affect how consumers buy cars. So it's perhaps not surprising that after investing $500 million in Lyft, GM has now purchased the assets of Sidecar, a ridesharing service that failed at the end of last year. GM wants to use Sidecar's assets to bolster Lyft — presumably in an attempt to keep Uber from becoming too big. "Sidecar helped introduce the concept of peer-to-peer car-sharing when it launched in 2012 and essentially allowed anyone who passed a background check to offer rides to smartphone-toting passengers." GM will certainly keep the gained knowledge for themselves, as well: "GM is preparing to introduce its own set of transportation services, which it has dubbed Maven, the source familiar with the matter said. The initiative may allow owners of GM vehicles to give rides to other passengers who are commuting in the same direction." -
SCADA "Selfies" a Big Give Away To Hackers (csmonitor.com)
chicksdaddy writes: The world's governments are on notice that their critical infrastructure is vulnerable after an apparent cyberattack darkened 80,000 households in three regions of Ukraine last month. But on the question of safeguarding utilities, operators of power plants, water treatment facilities, and other industrial operations might do well to worry more about Instagram than hackers, according to a report by Christian Science Monitor Passcode. Speaking at a gathering of industrial control systems experts last week, Sean McBride of the firm iSight Partners said that social media oversharing is a wellspring of information that could be useful to attackers interested in compromising critical infrastructure. Among the valuable information he's found online: workplace selfies on Instagram and Facebook that reveal details of supervisory control and data acquisition, or SCADA, systems.
"No SCADA selfies!" said Mr. McBride at the S4 Conference in Miami Thursday. "Don't make an adversary's job easier." iSight has found examples of SCADA selfies at sensitive facilities and warns that such photos may unwittingly reveal critical information that operators would prefer to keep secret. The firm's researchers have also discovered panoramic pictures of control rooms and video walk-throughs of facilities. Corporate websites can divulge valuable information to adversaries like organization charts or lists of employees — valuable sources of information for would-be attackers, says McBride. That kind of slip-up have aided critical infrastructure attacks in the past. Photographs published in 2008 by former Iranian President Mahmoud Ahmadinejad's press office provided western nuclear analysts with detailed views of the insides of the Natanz facility and Iran's uranium enrichment operation – what an expert once described as "intel to die for." -
Opel Dealers Accused of Modyfing the Software of Polluting Cars (deredactie.be)
An anonymous reader writes: Belgian public broadcasting station VRT has discovered that GM Opel dealerships in Belgium seem to be updating engine management code when Zafira cars equipped with the 1.6 litre CDTI diesel engine are brought in for service. After the software change, the nitrogen oxides (NOx) emissions drop sharply, at the cost of reduced power output. Bern University of Applied Sciences and environmental lobby club DUH previously found this model to pass European emissions standards only when the rear wheels are not rotating. When the rear wheels are made to spin along, NOx emissions increase to several times the limit set by European regulations. General Motors denied using defeat devices as well as the update program that seems to be taking place. However, an anonymous mechanic at an Opel dealership states that GM started pushing updates shortly after the Dieselgate scandal broke. -
Apple Releases 2015 EEO-1 Diversity Data Over Weekend (qz.com)
theodp writes: Just days after it came under fire for dismissing a call for diversity as "unduly burdensome and not necessary," Apple quietly released its 2015 EEO-1 diversity report (dated 10/6/2015, reflects the 8/1 payroll). Like other tech companies' diversity disclosures, Apple's EEO-1 raw numbers can't really be reconciled to the percentages based on undisclosed raw numbers that grace the infographic-heavy diversity progress narrative CEO Tim Cook spoke to last August. As to why they keep two sets of diversity books, Apple explains, "The EEO-1 has not kept pace with changes in industry or the American workforce over the past half century. We believe the information we report elsewhere on this site is a far more accurate reflection of our progress toward diversity." Taking this stance allows Apple CEO Tim Cook to boast that "in the United States, we hired more than 2,200 Black employees — a 50 percent increase over last year," while ignoring Apple's EEO-1 report, which indicates that Black employees showed a year-over-year net increase of only 1,475 employees and accounted for only 1.9% of the 4,333 YOY net increase in "Professionals" at Apple (White employees accounted for 50.6%, Asian for 42.1%). If you want to check the math, Apple's EEO-1 data (typed in from the content-copy-not-allowed 2015 and 2014 PDFs) and additional charts can be found in this Tableau workbook. -
Apple Releases 2015 EEO-1 Diversity Data Over Weekend (qz.com)
theodp writes: Just days after it came under fire for dismissing a call for diversity as "unduly burdensome and not necessary," Apple quietly released its 2015 EEO-1 diversity report (dated 10/6/2015, reflects the 8/1 payroll). Like other tech companies' diversity disclosures, Apple's EEO-1 raw numbers can't really be reconciled to the percentages based on undisclosed raw numbers that grace the infographic-heavy diversity progress narrative CEO Tim Cook spoke to last August. As to why they keep two sets of diversity books, Apple explains, "The EEO-1 has not kept pace with changes in industry or the American workforce over the past half century. We believe the information we report elsewhere on this site is a far more accurate reflection of our progress toward diversity." Taking this stance allows Apple CEO Tim Cook to boast that "in the United States, we hired more than 2,200 Black employees — a 50 percent increase over last year," while ignoring Apple's EEO-1 report, which indicates that Black employees showed a year-over-year net increase of only 1,475 employees and accounted for only 1.9% of the 4,333 YOY net increase in "Professionals" at Apple (White employees accounted for 50.6%, Asian for 42.1%). If you want to check the math, Apple's EEO-1 data (typed in from the content-copy-not-allowed 2015 and 2014 PDFs) and additional charts can be found in this Tableau workbook. -
Interviews: Ask David Peterson About Inventing Languages
samzenpus writes: David J. Peterson is a language creator and author. He created the Dothraki and Valyrian languages for HBO's Game of Thrones, and more recently has created languages for the CW's The 100 and MTV's The Shannara Chronicles. His new book, The Art of Language Invention, details how to create a new language from scratch, and goes over some of the specific choices he made in creating the languages for Game of Thrones and Syfy's Defiance. David has agreed to give us some of his time to answer any questions you may have. As usual, ask as many as you'd like, but please, one question per post. -
Interviews: Ask David Peterson About Inventing Languages
samzenpus writes: David J. Peterson is a language creator and author. He created the Dothraki and Valyrian languages for HBO's Game of Thrones, and more recently has created languages for the CW's The 100 and MTV's The Shannara Chronicles. His new book, The Art of Language Invention, details how to create a new language from scratch, and goes over some of the specific choices he made in creating the languages for Game of Thrones and Syfy's Defiance. David has agreed to give us some of his time to answer any questions you may have. As usual, ask as many as you'd like, but please, one question per post. -
Comets Can't Explain Weird 'Alien Megastructure' Star After All (newscientist.com)
schwit1 sends the latest news about KIC 8462852, the star that that led many to learn what a Dyson Sphere is. New Scientist reports: "The weirdest star in the cosmos just got a lot weirder. And yes, it might be aliens. Known as KIC 8462852, or Tabby's star, it has been baffling astronomers for the past few months after a team of researchers noticed its light seemed to be dipping in brightness in bizarre ways. Proposed explanations ranged from a cloud of comets to orbiting 'alien megastructures'. Now an analysis of historical observations reveals the star has been gradually dimming for over a century, leaving everyone scratching their heads as to the cause. Bradley Schaefer of Louisiana State University saw the same century-long dimming in his manual readings, and calculated that it would require 648,000 comets, each 200 kilometres wide, to have passed by the star — completely implausible, he says. 'The comet-family idea was reasonably put forth as the best of the proposals, even while acknowledging that they all were a poor lot,' he says. 'But now we have a refutation of the idea, and indeed, of all published ideas.' 'This presents some trouble for the comet hypothesis,' says Boyajian. 'We need more data through continuous monitoring to figure out what is going on.' What about those alien megastructures? Schafer is unconvinced. 'The alien-megastructure idea runs wrong with my new observations,' he says, as he thinks even advanced aliens wouldn't be able to build something capable of covering a fifth of a star in just a century. What's more, such an object should radiate light absorbed from the star as heat, but the infrared signal from Tabby's star appears normal, he says." -
Comets Can't Explain Weird 'Alien Megastructure' Star After All (newscientist.com)
schwit1 sends the latest news about KIC 8462852, the star that that led many to learn what a Dyson Sphere is. New Scientist reports: "The weirdest star in the cosmos just got a lot weirder. And yes, it might be aliens. Known as KIC 8462852, or Tabby's star, it has been baffling astronomers for the past few months after a team of researchers noticed its light seemed to be dipping in brightness in bizarre ways. Proposed explanations ranged from a cloud of comets to orbiting 'alien megastructures'. Now an analysis of historical observations reveals the star has been gradually dimming for over a century, leaving everyone scratching their heads as to the cause. Bradley Schaefer of Louisiana State University saw the same century-long dimming in his manual readings, and calculated that it would require 648,000 comets, each 200 kilometres wide, to have passed by the star — completely implausible, he says. 'The comet-family idea was reasonably put forth as the best of the proposals, even while acknowledging that they all were a poor lot,' he says. 'But now we have a refutation of the idea, and indeed, of all published ideas.' 'This presents some trouble for the comet hypothesis,' says Boyajian. 'We need more data through continuous monitoring to figure out what is going on.' What about those alien megastructures? Schafer is unconvinced. 'The alien-megastructure idea runs wrong with my new observations,' he says, as he thinks even advanced aliens wouldn't be able to build something capable of covering a fifth of a star in just a century. What's more, such an object should radiate light absorbed from the star as heat, but the infrared signal from Tabby's star appears normal, he says." -
The Best of The Worst Hollow Copyright Claims (medium.com)
tiltowait writes: Slashdot readers should be familiar with most if not all of these, but the list of 20 Hollow Copyright Claims is a somber reminder of the current sorry state of intellectual property laws in the United States--as anyone who's encountered a paywall or a takedown notice (or remembers Slashdot's run-in with Scientology) can attest. It serves as a call to arms that we not lose sight of the benefits to sharing knowledge. -
SpaceX Successfully Launches Jason-3 Satellite, Rocket Landing Partial Success (theverge.com)
An anonymous reader writes: SpaceX successfully launched a Falcon 9 rocket today carrying the Jason-3 ocean monitoring satellite. "Jason-3 data will be used for monitoring global sea level rise, researching human impacts on oceans, aiding prediction of hurricane intensity, and operational marine navigation," NASA said. Unfortunately Space X reports that the attempt to land the Falcon 9 on a drone platform was only a partial success. According to the company twitter page: "First stage on target at droneship but looks like hard landing; broke landing leg." Update: 01/18 04:16 GMT by S : Here's a brief video of the landing attempt (somewhat loud). -
Microsoft Announces R Tools For Visual Studio (technet.com)
theodp writes: A year after its acquisition of Revolution Analytics, Microsoft announced a slew of R-related product offerings, and noted that Revolution R Open is giving up her maiden name and will henceforth be known as Microsoft R Open. Tucked away in the announcement was the news that R is coming to Visual Studio. Microsoft has released a teaser video for R Tools for Visual Studio (RTVS) and is taking sign-ups for early access. -
Apple May Owe $8 Billion To the EU After Tax Ruling (bloomberg.com)
Robotron23 writes: An investigation by the EU Commission may make Apple liable for up to $8 billion in back taxes. Bloomberg Intelligence estimates Apple has paid only 1.8% tax on profits between 2004 and 2012 — this ruling increases their liability to 12.5%. This decision comes hot on the heels of a tax avoidance settlement Apple reached with Italy last month for $347 million.