Slashdot Mirror

A German man -- Norbert Blum -- who claimed that P is not equal to NP is seeing several challenges to his solution. From a report: Numerous mathematicians have begun to raise questions about whether the German mathematician solved it at all. Since Blum's paper was published, mathematicians and computer scientists worldwide have been racking their brains as to whether the Bonn-based researcher has, in fact, solved this Millennium Prize Problem. After an initially positive reaction, such as the one from Stanford mathematician Reza Zadeh, doubts are beginning to arise about whether Blum's reasoning is correct. In a forum for theoretical mathematics, a user named Mikhail reached out to Alexander Razborov -- the author of the paper on which Blum's proof is based -- to ask him about Blum's paper. Razborov purports to have discovered an error in Blum's paper: Blum's main argument contradicts one of Razborov's key assumptions. And mathematician Scott Aaronson, who is something of an authority in the math community when it comes to P vs. NP, said he would be willing to bet $200,000 that Blum's mathematical proof won't endure. "Please stop asking," Aaronson writes. If the proof hasn't been refuted, "you can come back and tell me I was a closed-minded fool." In the week since Aaronson's initial blog post, other mathematicians have begun trying to poke holes in Blum's proof. Dick Lipton, a computer science professor at Georgia Tech, wrote in a blog post that Blum's proof "passes many filters of seriousness," but suggested there may be some problems with it. A commenter on that blog post, known only as "vloodin," noted that there was a "single error on a subtle point" in the proof; other mathematicians have since chimed in and confirmed vloodin's initial analysis, and so the emerging consensus among many mathematicians is that a solve for P vs. NP remains elusive.

An anonymous reader quote The Verge: After four months of debate, the FCC is nearly ready to stop accepting feedback on its proposal to kill net neutrality. Final comments are due this Wednesday, August 30th, by end-of-day Eastern time. Once the comment period closes, the FCC will review the feedback it received and use it as guidance to revise its proposal, which if passed, would reverse the Title II classification that guaranteed net neutrality just two years ago. The commission is supposed to factor in all of the feedback it received when writing its final draft, so if you do have strong feelings on the matter, it's worth leaving a comment...

To leave a comment, you'll have to go to this site, click "+ Express," and then fill out the form it opens up to. Make sure you leave the proceeding number "17-108" in place, as that's what ties it to the net neutrality proposal. Also, be aware that everything filed is public, so others will be able to see your name and address.
"ISPs shouldn't be gatekeepers," wrote the EFF in a tweet sharing tips on the way to write effective comments. The number of comments matter because "the commission will very likely have to defend its changes in court," according to the article. And the commission has now received a record 22 million filings -- nearly six times the previous record of 3.7 million comments (when the net neutrality rules were first implemented).

An anonymous reader quote BuzzFeed: The vast majority of money raised to pay for the legal defense of beloved British cybersecurity researcher Marcus Hutchins was donated with stolen or fake credit card numbers, and all donations, including legitimate ones, will be returned, the manager of the defense fund says. Lawyer Tor Ekeland, who managed the fund, said at least $150,000 of the money collected came from fraudulent sources, and that the prevalence of fraudulent donations effectively voided the entire fundraiser. He said he'd been able to identify only about $4,900 in legitimate donations, but that he couldn't be certain even of those. "I don't want to take the risk, so I just refunded everything," he said.
Two days later, Hutchins posted the following on Twitter. "When sellouts are talking shit about the 'infosec community' remember that someone I'd never met flew to Vegas to pay $30K cash for my bail."

Hutchins is facing up to 40 years in prison, and at first was only allowed to leave his residence for four hours each week. Thursday a judge lifted some restrictions so that Hutchins is now allowed to travel to Milwaukee, where his employer is located. According to Bloomberg, government prosecutors complain Hutchins now "has too much freedom while awaiting trial and may skip the country."

Clickthrough for a list of the evidence government prosecutors submitted to the court this week.
According to BankInfoSecurity, this is the evidence submitted by government prosecutors.

• Statements made by Hutchins after he was arrested.
• A CD containing two audio recordings from a county jail in Nevada where he was apparently detained by the FBI.
• 150 pages of Jabber chats between the defendant and an individual.
• Business records from Apple, Google and Yahoo.
• Statements (350 pages) by the defendant from another internet forum, which were seized by the government in another district.
• Three to four samples of malware.
• A search warrant executed on a third party, which may contain some privileged information.

Hutchins' attorneys have requested 45-60 days to review evidence, and on October 13 both attorneys will then give the judge a proposed schedule for the actual trial.

An anonymous reader quotes GeekWire: The speediest team from SpaceX founder Elon Musk's first Hyperloop pod competition has done it again: WARR Hyperloop from Germany's Technical University of Munich won today's second contest by sending its magnetic-levitation pod through a nearly mile-long test tunnel at a peak speed of 201 mph [video]. Musk announced WARR's victory to a crowd in the stands at SpaceX's headquarters in Hawthorne, California, and in a tweet... This weekend's competition brought about two dozen teams to Hawthorne, including a student group from the University of Washington. Each of the teams developed a pod that was designed to test engineering approaches for Musk's Hyperloop rapid-transit concept, which calls for sending people and cargo through low-pressure tubes at near-supersonic speeds.
Musk also tweeted that it "might be possible to go supersonic" in the 0.8-mile test Hyperloop tube, though he conceded it would require an extremely high acceleration (and deceleration) because of the short distance.

"For passenger transport, this can be spread over 20+ miles, so no spilt drinks."

An anonymous reader quotes GeekWire: The speediest team from SpaceX founder Elon Musk's first Hyperloop pod competition has done it again: WARR Hyperloop from Germany's Technical University of Munich won today's second contest by sending its magnetic-levitation pod through a nearly mile-long test tunnel at a peak speed of 201 mph [video]. Musk announced WARR's victory to a crowd in the stands at SpaceX's headquarters in Hawthorne, California, and in a tweet... This weekend's competition brought about two dozen teams to Hawthorne, including a student group from the University of Washington. Each of the teams developed a pod that was designed to test engineering approaches for Musk's Hyperloop rapid-transit concept, which calls for sending people and cargo through low-pressure tubes at near-supersonic speeds.
Musk also tweeted that it "might be possible to go supersonic" in the 0.8-mile test Hyperloop tube, though he conceded it would require an extremely high acceleration (and deceleration) because of the short distance.

"For passenger transport, this can be spread over 20+ miles, so no spilt drinks."

An anonymous reader quotes GeekWire: The speediest team from SpaceX founder Elon Musk's first Hyperloop pod competition has done it again: WARR Hyperloop from Germany's Technical University of Munich won today's second contest by sending its magnetic-levitation pod through a nearly mile-long test tunnel at a peak speed of 201 mph [video]. Musk announced WARR's victory to a crowd in the stands at SpaceX's headquarters in Hawthorne, California, and in a tweet... This weekend's competition brought about two dozen teams to Hawthorne, including a student group from the University of Washington. Each of the teams developed a pod that was designed to test engineering approaches for Musk's Hyperloop rapid-transit concept, which calls for sending people and cargo through low-pressure tubes at near-supersonic speeds.
Musk also tweeted that it "might be possible to go supersonic" in the 0.8-mile test Hyperloop tube, though he conceded it would require an extremely high acceleration (and deceleration) because of the short distance.

"For passenger transport, this can be spread over 20+ miles, so no spilt drinks."

"Scientists possibly detected an entirely different type of gravitational wave [source]," writes schwit1. "Gossip over potential detection of colliding neutron stars has astronomers in a tizzy," reports Nature: Astrophysicists may have detected gravitational waves last week from the collision of two neutron stars in a distant galaxy -- and telescopes trained on the same region might also have spotted the event. Rumours to that effect are spreading fast online, much to researchers' excitement. Such a detection could mark a new era of astronomy: one in which phenomena are both seen by conventional telescopes and 'heard' as vibrations in the fabric of space-time. "It would be an incredible advance in our understanding," says Stuart Shapiro, an astrophysicist at the University of Illinois at Urbana-Champaign...

The Laser Interferometer Gravitational-Wave Observatory (LIGO) in Louisiana and Washington state has three times detected gravitational waves -- ripples in the fabric of space-time -- emerging from colliding black holes. But scientists have been hoping to detect ripples from another cosmic cataclysm, such as the merger of neutron stars, remnants of large stars that exploded but were not massive enough to collapse into a black hole.
One astronomer tweeted last week that "merging neutron-neutron star is the initial call," while Nature adds that the same rumor had already been circulating privately, according to "some astronomers who do not want to be identified."

Friday Ligo announced cautiously that "We are working hard to assure that the candidates are valid gravitational-wave events, and it will require time to establish the level of confidence needed to bring any results to the scientific community and the greater public. We will let you know as soon we have information ready to share."

To celebrate Linux's 26th anniversary, the Linux Foundation tweeted a picture of Tux on a birthday cake, and linked to an essay on OpenSource.com by FreeDOS founder Jim Hall: My first Linux distribution was Softlanding Linux System (SLS) 1.03, with Linux kernel 0.99 alpha patch level 11. That required a whopping 2MB of RAM, or 4MB if you wanted to compile programs, and 8MB to run X windows... To celebrate, I reinstalled SLS 1.05 to remind myself what the Linux 1.0 kernel was like and to recognize how far Linux has come since the 1990s.
"Getting X windows to perform was not exactly easy..." Hall writes, adding "the concept of a desktop didn't exist yet." Meanwhile Phoronix celebrated by republishing that fateful email Linus Torvalds sent on August 25, 1991. And Fossbytes shared the most recent statistics about modern-day Linux's 20 million lines of code from the Linux Foundation: During the period between the 3.19 and 4.7 releases, the kernel community was merging changes at an average rate of 7.8 patches per hour; that is a slight increase from the 7.71 patches per hour seen in the previous version of this report, and a continuation of the longterm trend toward higher patch volumes.

An anonymous reader writes: Neuralink, the startup co-founded by billionaire Elon Musk, has taken steps to sell as much as $100 million in stock to fund the development of technology that connects human brains with computers. The San Francisco-based company has already gotten $27 million in funding, according to a filing with the U.S. Securities and Exchange Commission. Musk said via Twitter on Friday that Neuralink isn't seeking outside investors. In June, Musk said Neuralink is a priority after much more demanding commitments to his automotive and rocket companies. "Boring Co. is maybe 2 percent of my time; Neuralink is 3 percent to 5 percent of my time; OpenAI is going to be a couple of percent; and then 90-plus percent is divided between SpaceX and Tesla," said Musk at the electric-car maker's annual shareholder meeting.

According to recent warnings issued by Avira, CSIS Security Group, and Kaspersky Lab, a virulent spam campaign has hit Facebook Messenger during the past few days. "The Facebook spam messages contain a link to what appears to be a video," reports Bleeping Computer. "The messages arrive from one of the user's friends, suggesting that person's account was also compromised." From the report: The format of the spam message is the user's first name, the word video, and a bit.ly or t.cn short-link. Users that click on the links are redirected to different pages based on their geographical location and the type of browser and operating system they use. It's been reported that Firefox users on Windows and Mac are being redirected to a page offering a fake Flash Player installer. Kaspersky says this file installs adware on users' PCs. On Chrome, the spam campaign redirects users to a fake YouTube page pushing a malicious extension. It is believed that crooks use this Chrome extension to push adware and collect credentials for new Facebook accounts, which they later use to push the spam messages to new users.

New submitter Kant shares a report: The codebase for popular Node.js JavaScript runtime has been forked again -- the second time in less than three years -- with a growing number of contributors charging that the Technical Steering Committee (TSC) leadership is ignoring repeated violations of the project's code of conduct. The new project, called Ayo will be managed under an open governance model. The complaints centered around ongoing behavior of NodeSource Director of Engineering, and Node.js TSC member Rod Vagg. The TSC received multiple complaints from Node.js members about a Tweet from Vagg promoting a Men's Rights Activist-slanted article, one that cast doubt on the validity of project Code-of-Conducts. In that Tweet, Vagg commented "If you've never considered the potential downsides of codes of conduct, here's a good place to start." [...] On August 21, The TSC voted on whether or not to remove Vagg from its ranks. Of the 10 TSC members who voted, 60 percent voted against removing Rod from the TSC and 60 percent voted against asking Rod to voluntarily resign. That the TSC voted to keep Vagg on the committee inflamed others in the project. One committee member, Myles Borins, resigned in protest. The decision to keep Vagg "undermines our Conduct Guidelines, drives away potential contributors, and in my opinion undermines the Committee's ability to govern," he wrote in a blog post. In a post further explaining the need for the forked Ayo project, developer Rudolf Olah explained that "Driving away contributors can be fatal in the open source world where most developers are essentially using their free time and volunteering to contribute. It is already difficult enough to attract contributors to smaller projects and larger projects, such as Node.js, need to be careful to make all contributors feel welcome."

"Back in June, Sony told Eurogamer that the company did not have 'a profound philosophical stance' against letting PS4 users play games with those on other platforms," reports Ars Technica. "That said, the company's continued refusal to allow for cross-console play between PS4 and Xbox One players has become an absolute and unmistakable trend in recent months." The latest game to be denied by Sony for cross-console play is Ark: Survival Evolved, which comes out of a two-year early access period next week on Windows, Mac, PS4, and Xbox One. From the report: In a Twitter response posted over the weekend, Ark lead designer and programmer Jeremy Stieglitz said that cross-platform play between PS4 and Xbox One is "working internally, but currently Sony won't allow it." This isn't a huge surprise, considering that the developers of Rocket League, Minecraft, and Gwent have made similar statements in recent months. Since Microsoft very publicly opened Xbox Live to easy cross-platform play back in March, Sony has said that it's "happy to have a conversation" about the issue, but it has failed to follow through by allowing any linkage between the two competing consoles (cross-platform play between the PS4 and PC has been available in certain games since the PS4's launch, though).

The question continues to be why, exactly, Sony seems so reluctant to allow any games to work between its own PlayStation Network and Microsoft's Xbox Live. Speaking with Eurogamer in June, Sony's Jim Ryan suggested that, in the case of Minecraft, Sony was wary to expose that game's young players to "external influences we have no ability to manage or look after." Ryan also told Eurogamer that cross-platform decisions were "a commercial discussion between ourselves and other stakeholders." That suggests there may be some financial issues between the parties involved that are preventing cross-console play from moving forward. Perhaps Sony wants someone else to pay for the work required to get its network talking to Microsoft's? The bottom line, though, might be that Sony just doesn't want to partially give away its sizable advantage in console sales by letting Microsoft hook into that vast network of players.

An anonymous reader quotes a report from The Next Web: Early Monday morning a U.S. Navy Destroyer collided with a merchant vessel off the coast of Singapore. The U.S. Navy initially reported that 10 sailors were missing, and today found "some of the remains" in flooded compartments. While Americans mourn the loss of our brave warriors, top brass is looking for answers. Monday's crash involving the USS John McCain is the fourth in the area, and possibly the most difficult to understand. So far this year 17 U.S. sailors have died in the Pacific southeast due to seemingly accidental collisions with civilian vessels.

Should four collisions in the same geographical area be chalked up to coincidence? Could a military vessel be hacked? In essence, what if GPS spoofing or administrative lockout caused personnel to be unaware of any imminent danger or unable to respond? The Chief of Naval Operations (CNO) says there's no reason to think it was a cyber-attack, but they're looking into it: "2 clarify Re: possibility of cyber intrusion or sabotage, no indications right now...but review will consider all possibilities," tweeted Adm. John Richardson. The obvious suspects -- if a sovereign nation is behind any alleged attacks -- would be Russia, China, and North Korea, all of whom have reasonable access to the location of all four incidents. It may be chilling to imagine such a bold risk, but it's not outlandish to think a government might be testing cyber-attack capabilities in the field.

An anonymous reader quotes a report from Ars Technica: The easiest way to get all your games to the new system, as outlined by Microsoft Vice President Mike Ybarra, will be to just put them on an external USB hard drive and then plug that drive into the new console. "All your games are ready to play" immediately after this external hard drive move, he said, and user-specific settings can also be copied via external hard drive in the same way. If you don't have an external drive handy, "we're going to let you copy games and apps off your home network instead of having to manually move them or redownload them off the Internet," Ybarra said. It's unclear right now if Microsoft will mirror the PS4 Pro and allow this kind of system-to-system transfer using an Ethernet cable plugged directly into both consoles. For those who want to see as many pixels as possible as quickly as possible when they get their Xbox One X, Ybarra says you'll be able to download 4K updates for supported games before the Xbox One X is even available, then use those updates immediately after the system transfer. Microsoft also released a list of 118 current and upcoming games that will be optimized for the Xbox One X via updates, a big increase from the few dozens announced back at E3.

Winamp was released more than 20 years ago, and last week marked the 15th anniversary of the release of Winamp3. An anonymous Slashdot reader tries to explain what finally happened to Winamp: AOL planned to discontinue Winamp in November of 2013, but instead sold it to the Belgian online radio service Radionomy. The last update on Winamp's Twitter account was September of 2015, though it announced that they were looking for a new senior C++ developer. Then in December of 2015 Vivendi Group became that company's majority shareholder, stirring hopes that the company might one day launch a revamped version of the classic mp3 player from 1997.

So did they? Radionomy's Winamp page is still showing download links -- though they now lead instead to a forum post which says "code licensed to the previous owner" is being removed or replaced. But that post has been updated five times -- as recently as last October -- with "info about the next Winamp release," each linking to a thread on Winamp's forums which offer tantalizing glimpses into a still-ongoing development process. And last October a Winamp dev posted on Twitter that "a Winamp 5.8 public beta release could be imminent," while the web page at Winamp.com still says "There's more coming soon," with a background image of a llama.
"There's no reason that Winamp couldn't be in the position that iTunes is in today if not for a few layers of mismanagement by AOL that started immediately upon acquisition," their first general manager told Ars Technica in 2012. (Winamp's developers had been earning $100,000 a month just from $10 shareware checks before AOL acquired the company in 1999 for $100 million.) In May TechRadar wrote that Winamp "is still a great media player...but it now relies on third-party extensions to add features found as standard in more modern players."

I still remember all the visualizations and custom skins -- but does this bring back any memories for anyone else? Leave your thoughts in the comments. And what mp3-playing software are you using today?

Winamp was released more than 20 years ago, and last week marked the 15th anniversary of the release of Winamp3. An anonymous Slashdot reader tries to explain what finally happened to Winamp: AOL planned to discontinue Winamp in November of 2013, but instead sold it to the Belgian online radio service Radionomy. The last update on Winamp's Twitter account was September of 2015, though it announced that they were looking for a new senior C++ developer. Then in December of 2015 Vivendi Group became that company's majority shareholder, stirring hopes that the company might one day launch a revamped version of the classic mp3 player from 1997.

So did they? Radionomy's Winamp page is still showing download links -- though they now lead instead to a forum post which says "code licensed to the previous owner" is being removed or replaced. But that post has been updated five times -- as recently as last October -- with "info about the next Winamp release," each linking to a thread on Winamp's forums which offer tantalizing glimpses into a still-ongoing development process. And last October a Winamp dev posted on Twitter that "a Winamp 5.8 public beta release could be imminent," while the web page at Winamp.com still says "There's more coming soon," with a background image of a llama.
"There's no reason that Winamp couldn't be in the position that iTunes is in today if not for a few layers of mismanagement by AOL that started immediately upon acquisition," their first general manager told Ars Technica in 2012. (Winamp's developers had been earning $100,000 a month just from $10 shareware checks before AOL acquired the company in 1999 for $100 million.) In May TechRadar wrote that Winamp "is still a great media player...but it now relies on third-party extensions to add features found as standard in more modern players."

I still remember all the visualizations and custom skins -- but does this bring back any memories for anyone else? Leave your thoughts in the comments. And what mp3-playing software are you using today?

An anonymous reader quotes the US Naval Institute News: Seventy-two years after two torpedoes fired from a Japanese submarine sunk cruiser USS Indianapolis (CA-35), the ship's wreckage was found resting on the seafloor on Saturday -- more than 18,000 feet below the Pacific Ocean's surface. Paul Allen, Microsoft co-founder and billionaire philanthropist, led a search team, assisted by historians from the Naval History and Heritage Command in Washington, D.C., to accomplish what past searches had failed to do -- find Indianapolis, considered the last great naval tragedy of World War II.

"To be able to honor the brave men of the USS Indianapolis and their families through the discovery of a ship that played such a significant role in ending World War II is truly humbling," said Allen in a statement provided to US Naval Institute News on Saturday... "I hope everyone connected to this historic ship will feel some measure of closure at this discovery so long in coming"... Allen's 13-person expedition team, on the R/V Petrel is in the process of surveying the full site and will conduct a live tour of the wreckage in the next few weeks. They are complying with U.S. law and respecting the sunken ship as a war grave, taking care not to disturb the site.
Paul Allen has shared some photos from the discovery on Twitter.

The ship had delivered components for the atomic bomb dropped on Hiroshima just four days before it was sunk. Only 317 of its 1,197-man crew survived, making it the worst at-sea disaster in the history of the U.S. Navy.

An anonymous reader quotes the Electronic Frontier Foundation: Whistleblower and activist Chelsea Manning, Techdirt editor and open internet advocate Mike Masnick, and IFEX executive director and global freedom of expression defender Annie Game are the distinguished winners of the 2017 Pioneer Awards, which recognize leaders who are extending freedom and innovation on the electronic frontier. This year's honorees -- a whistleblower, an editor, and an international freedom of expression activist -- all have worked tirelessly to protect the public's right to know.

The award ceremony will be held the evening of September 14 at Delancey Street's Town Hall Room in San Francisco. The keynote speaker is Emmy-nominated comedy writer Ashley Nicole Black, a correspondent on Full Frontal with Samantha Bee who uses her unique comedic style to take on government surveillance, encryption, and freedom of information.
The EFF describes Chelsea Manning as "a network security expert, whistleblower, and former U.S. Army intelligence analyst whose disclosure of classified Iraq war documents exposed human rights abuses and corruption the government kept hidden from the public." Their annoncement also notes that Annie Game has led the IFEX network of 115+ journalism and civil liberties groups around the world for over 10 years, and that Mike Masnick coined the term "The Streisand Effect" -- and is currently being sued by that man who claims he invented email.

troublemaker_23 quotes ITWire: A security researcher says code has been discovered that was written by British hacker Marcus Hutchins that was apparently 'borrowed' by the creator of the banking trojan Kronos. The researcher, known as Hasherezade, posted a tweet identifying the code that had been taken from Hutchins' repository on GitHub.
Hasherezade also found a 2015 tweet where a then-20-year-old Hutchins first announces he's discovered the hooking engine he wrote for his own blog -- being used in a malware sample. ("This is why we can't have nice things," Hutchins jokes.) Hasherezade analyzed Kronos's code and concluded "the author has a prior knowledge in implementing malware solutions... The level of precision lead us to the hypothesis, that Kronos is the work of a mature developer, rather than an experimenting youngster."

Monday on Twitter Hutchins posted that "I'm still on trial, still not allowed to go home, still on house arrest; but now I am allowed online. Will get my computers back soon."

troublemaker_23 quotes ITWire: A security researcher says code has been discovered that was written by British hacker Marcus Hutchins that was apparently 'borrowed' by the creator of the banking trojan Kronos. The researcher, known as Hasherezade, posted a tweet identifying the code that had been taken from Hutchins' repository on GitHub.
Hasherezade also found a 2015 tweet where a then-20-year-old Hutchins first announces he's discovered the hooking engine he wrote for his own blog -- being used in a malware sample. ("This is why we can't have nice things," Hutchins jokes.) Hasherezade analyzed Kronos's code and concluded "the author has a prior knowledge in implementing malware solutions... The level of precision lead us to the hypothesis, that Kronos is the work of a mature developer, rather than an experimenting youngster."

Monday on Twitter Hutchins posted that "I'm still on trial, still not allowed to go home, still on house arrest; but now I am allowed online. Will get my computers back soon."

troublemaker_23 quotes ITWire: A security researcher says code has been discovered that was written by British hacker Marcus Hutchins that was apparently 'borrowed' by the creator of the banking trojan Kronos. The researcher, known as Hasherezade, posted a tweet identifying the code that had been taken from Hutchins' repository on GitHub.
Hasherezade also found a 2015 tweet where a then-20-year-old Hutchins first announces he's discovered the hooking engine he wrote for his own blog -- being used in a malware sample. ("This is why we can't have nice things," Hutchins jokes.) Hasherezade analyzed Kronos's code and concluded "the author has a prior knowledge in implementing malware solutions... The level of precision lead us to the hypothesis, that Kronos is the work of a mature developer, rather than an experimenting youngster."

Monday on Twitter Hutchins posted that "I'm still on trial, still not allowed to go home, still on house arrest; but now I am allowed online. Will get my computers back soon."

Android O is set to arrive on August 21, with a livestreamed unveiling event timed for 2:40 PM ET in NYC -- which is roughly when the maximum solar eclipse is set to occur for New York. TechCrunch reports: Android O will get a full reveal at that time, which seems like kind of a weird time to do it since a lot of people will be watching the NASA eclipse livestream that Google is also promoting, or staring at the sky (with the caveat, hopefully, that they have procured proper glasses for safe viewing). Google says that Android O will have some "super (sweet) new powers," most of which we know all about thanks to pre-release builds and the Android O teaser Google provided at its annual I/O developer event this past May. WE know, for instance, that the notification panel has been changed significantly, and there's new optimization software to improve battery life on all devices. While Android O's name has yet to be confirmed, the official consumer name is speculated to be "Oreo." Prolific leaker Evan Blass posted a picture of an Oreo to Twitter on Friday following the announcement of the reveal date and event.

AmiMoJo shares a report from Ars Technica: When right-wing trolls and outright racists get kicked off of Twitter, they often move to Gab, a right-wing Twitter competitor. Gab was founded by Andrew Torba, who says it's devoted to unfettered free expression online. The site also hosts controversial right-wing figures like Milo Yiannopoulos, Andrew 'weev' Auernheimer and Andrew Anglin, editor of the neo-Nazi site Daily Stormer. On Thursday, Gab said that Google had banned its Android app from the Google Play Store for violating Google's ban on hate speech. The app's main competitor, Twitter, hosts accounts like the American Nazi Party, the Ku Klux Klan, and the virulently anti-gay Westboro Baptist Church, yet the Twitter app is still available on the Google Play store. Apple has long had more restrictive app store policies, and it originally rejected the Gab app for allowing pornographic content to be posted on the service -- despite the fact that hardcore pornography is readily available on Twitter. In an email to Ars, Google explained its decision to remove Gab from the Play Store: "In order to be on the Play Store, social networking apps need to demonstrate a sufficient level of moderation, including for content that encourages violence and advocates hate against groups of people. This is a long-standing rule and clearly stated in our developer policies. Developers always have the opportunity to appeal a suspension and may have their apps reinstated if they've addressed the policy violations and are compliant with our Developer Program Policies."

According to iClarified, a hacker by name of "xerub" has posted the decryption key for Apple's Secure Enclave Processor (SEP) firmware. "The security coprocessor was introduced alongside the iPhone 5s and Touch ID," reports iClarified. "It performs secure services for the rest of the SOC and prevents the main processor from getting direct access to sensitive data. It runs its own operating system (SEPOS) which includes a kernel, drivers, services, and applications." From the report: The Secure Enclave is responsible for processing fingerprint data from the Touch ID sensor, determining if there is a match against registered fingerprints, and then enabling access or purchases on behalf of the user. Communication between the processor and the Touch ID sensor takes place over a serial peripheral interface bus. The processor forwards the data to the Secure Enclave but can't read it. It's encrypted and authenticated with a session key that is negotiated using the device's shared key that is provisioned for the Touch ID sensor and the Secure Enclave. The session key exchange uses AES key wrapping with both sides providing a random key that establishes the session key and uses AES-CCM transport encryption. Today, xerub announced the decryption key "is fully grown." You can use img4lib to decrypt the firmware and xerub's SEP firmware split tool to process. Decryption of the SEP Firmware will make it easier for hackers and security researchers to comb through the SEP for vulnerabilities.

Timothy B. Lee reports via Ars Technica: All week, the infamous hate site Daily Stormer has been battling to stay online in the face of a concerted social media campaign to shut it down. The site lost its "dailystormer.com" domain on Monday after first GoDaddy and then Google Domains blacklisted it from their domain registration services. The site re-appeared online on Wednesday morning at a new domain name, dailystormer.ru. But within hours, the site had gone offline again after it was dropped by Cloudflare, an intermediary that defends customers against denial-of-service attacks. Daily Stormer's Andrew Anglin reported Cloudflare's decision to drop the site in a post on the social media site Gab. His post was first spotted by journalist Matthew Sheffield.

Google Allo, the chat app that arrived on the iPhone and Android devices last year, now has a web counterpart. Head of product for Allo and video chat app Duo, Amit Fulay, tweeted: "Allow for web is here! Try it on Chrome today. Get the latest Allo build on Android before giving it a spin." Engadget reports: To give it a go, you'll need to open the Allo app on your device and use that to scan a QR code you can generate at this link. Once you've scanned the code, Allo pulls up your chat history and mirrors all the conversations you have on your phone. Most of Allo's key features, including smart replies, emoji, stickers and most importantly the Google Assistant are all intact here. In fact, this is the first time you can really get the full Google Assistant experience through the web; it's been limited to phones and Google Home thus far.

An anonymous reader quotes a report from Ars Technica: The administration of President Donald Trump is scoffing at a lawsuit by Twitter users who claim in a federal lawsuit that their constitutional rights are being violated because the president has blocked them from his @realDonaldTrump Twitter handle. "It would send the First Amendment deep into uncharted waters to hold that a president's choices about whom to follow, and whom to block, on Twitter -- a privately run website that, as a central feature of its social-media platform, enables all users to block particular individuals from viewing posts -- violate the Constitution." That's part of what Michael Baer, a Justice Department attorney, wrote to the New York federal judge overseeing the lawsuit Friday. In addition, the Justice Department said the courts are powerless to tell Trump how he can manage his private Twitter handle, which has 35.8 million followers.

"To the extent that the President's management of his Twitter account constitutes state action, it is unquestionably action that lies within his discretion as Chief Executive; it is therefore outside the scope of judicial enforcement," Baer wrote. (PDF) Baer added that an order telling Trump how to manage his Twitter feed "would raise profound separation-of-powers concerns by intruding directly into the president's chosen means of communicating to millions of Americans."

A popular video game chat service with over 25 million users announced today that it had shut down "a number of accounts" following violence instigated by white supremacists over the weekend. Discord, the service "which lets users chat with voice and text, was being used by proponents of Nazi ideology both before and after the attacks in Charlottesville, Virginia," reports The Verge. "We will continue to take action against Nazi ideology, and all forms of hate," the company said in a tweet. From the report: Discord declined to state how many servers had been affected, but said it included a mix of old accounts and accounts that were created over the weekend. Among the affected servers was one used by AltRight.com, a white nationalist news site. The site's homepage includes a prominent link to a Discord chat which is now broken. The company said it does not read private messages exchanged on its servers. Members of those groups reported messages in the chats for violating Discord's terms of service, the company said, and it took action. "When hatred like this violates our community standards we act swiftly to take servers down and ban individual users," the company said in a statement. "The public server linked to AltRight.com that violated those terms was shut down along with several other public groups and accounts fostering bad actors on Discord. We will continue to be aggressive to ensure that Discord exists for the community we set out to support -- gamers."

An anonymous reader quotes a report from Gizmodo: Benchmark Capital, one of Uber's largest investors, is trying to explain its legal feud with former CEO Travis Kalanick to the ride-sharing company's employees. Benchmark sued Kalanick for fraud last week, adding another controversy to the company's already disastrous summer. In an open letter to Uber employees, Benchmark slammed Kalanick's leadership of the company and said that he was purposely hindering the board's search for a replacement CEO. The firm also criticized Uber's slow response to the report compiled by Eric Holder and Tammy Albarran on harassment within Uber, and the stagnant search for a chief financial officer that has dragged on for more than two years.

"It has appeared at times as if the search was being manipulated to deter candidates and create a power vacuum in which Travis could return," the unsigned letter reads. "It's easy to reduce this situation to a battle of personalities. But this isn't about Benchmark versus Travis. It's about ensuring that Uber can reach its full potential as a company. And that will only happen if we get rid of the roadblocks and distractions that have plagued Uber, and its board, for far too long," Benchmark wrote in its letter. "Failing to act would have meant endorsing behavior that was utterly unacceptable in any company, let alone a company of Uber's size and importance." Kalanick has responded to Benchmark through a spokesperson via The New York Times: "Like many shareholders, I am disappointed and baffled by Benchmark's hostile actions, which clearly are not in the best interests of Uber and its employees on whose behalf they claim to be acting. Since 2009, building Uber into a great company has been my passion and obsession. I continue to work tirelessly with the board to identify and hire the best CEO to guide Uber into its next phase of growth and ensure its continued success."

An anonymous reader quotes the Verge: Tonight during Valve's yearly Dota 2 tournament, a surprise segment introduced what could be the best new player in the world -- a bot from Elon Musk-backed startup OpenAI. Engineers from the nonprofit say the bot learned enough to beat Dota 2 pros in just two weeks of real-time learning, though in that training period they say it amassed "lifetimes" of experience, likely using a neural network judging by the company's prior efforts. Musk is hailing the achievement as the first time artificial intelligence has been able to beat pros in competitive e-sports... Elon Musk founded OpenAI as a nonprofit venture to prevent AI from destroying the world -- something Musk has been beating the drum about for years.
"Nobody likes being regulated," Musk wrote on Twitter Friday, "but everything (cars, planes, food, drugs, etc) that's a danger to the public is regulated. AI should be too."

Musk also thanked Microsoft on Twitter "for use of their Azure cloud computing platform. This required massive processing power."

An anonymous reader quotes the Verge: Tonight during Valve's yearly Dota 2 tournament, a surprise segment introduced what could be the best new player in the world -- a bot from Elon Musk-backed startup OpenAI. Engineers from the nonprofit say the bot learned enough to beat Dota 2 pros in just two weeks of real-time learning, though in that training period they say it amassed "lifetimes" of experience, likely using a neural network judging by the company's prior efforts. Musk is hailing the achievement as the first time artificial intelligence has been able to beat pros in competitive e-sports... Elon Musk founded OpenAI as a nonprofit venture to prevent AI from destroying the world -- something Musk has been beating the drum about for years.
"Nobody likes being regulated," Musk wrote on Twitter Friday, "but everything (cars, planes, food, drugs, etc) that's a danger to the public is regulated. AI should be too."

Musk also thanked Microsoft on Twitter "for use of their Azure cloud computing platform. This required massive processing power."

An anonymous reader shares a report from NPR: In a 3,300-word document that has been shared across Google's internal networks, an engineer at the company wrote that "biological causes" are part of the reason women aren't represented equally in its tech departments and leadership. The document also cited "men's higher drive for status." The engineer's criticism of Google's attempts to improve gender and racial diversity has prompted two Google executives to rebut the lengthy post, which accused the company of creating an "ideological echo chamber" and practicing discrimination. Wide sharing of the document has highlighted struggles with gender equality and the wage gap in the tech industry and particularly at Google, which was sued by the federal government earlier this year for refusing to share compensation amounts and other data.

But in contrast, the document's author -- whose identity hasn't been publicly released but who claims to work at the company's Mountain View, Calif., headquarters -- accused Google of having "a politically correct monoculture that maintains its hold by shaming dissenters into silence." Not enough has been done, the engineer said, to encourage a diversity of viewpoints and ideologies at Google. The author also faulted the company for offering mentoring and other opportunities to its employees based on gender or race. The engineer began the document by stating, "I value diversity and inclusion, am not denying that sexism exists, and don't endorse using stereotypes." The message ended with a similar sentiment -- but with the added notion, "Stereotypes are much more accurate and responsive to new information than the [company's] training suggests." In addition to the responses made from Google's VP of Diversity, Integrity and Governance, Danielle Brown, former engineer Yonatan Zunger, and Google VP of Engineering Ari Balogh, senior developer Sarah Mei wrote: "This guy almost certainly thinks of himself as a 'computer scientist,' but he does exactly what you're not supposed to do as a scientist. He draws a conclusion favorable to his ego, and then works backwards from there, constructing an argument to justify it. [...] This google dude literally works at the company that made it _trivially easy_ to locate relevant social science research."

schwit1 quotes a Bloomberg column by Virginia Postrel: What makes Musk's Hyperloop plan seem like fantasy isn't the high-tech part. Shooting passengers along at more than 700 miles per hour seems simple -- engineers pushed 200 miles-per-hour in a test this week -- compared to building a tunnel from New York to Washington. And even digging that enormously long tunnel -- twice as long as the longest currently in existence -- seems straightforward compared to navigating the necessary regulatory approvals... The eye-rolling comes less from the technical challenges than from the bureaucratic ones.

With his premature declaration, Musk is doing public debate a favor. He's reminding us of what the barriers to ambitious projects really are: not technology, not even money, but getting permission to try. "Permits harder than technology," Musk tweeted after talking with Los Angeles mayor Eric Garcetti about building a tunnel network. That's true for the public sector as well as the private... SpaceX and its commercial-spaceflight competitors can experiment because Congress and President Barack Obama agreed to protect them from Federal Aviation Administration standards. usk is betting that his salesmanship will have a similar effect on the ground. He's trying to get the public so excited that the political pressures to allow the Hyperloop to go forward become irresistible. He seems to believe that he can will the permission into being. If he succeeds, he'll upend not merely intercity transit but the bureaucratic process by which things get built. That would be a true science-fiction scenario.

TheSync writes: The Syrian open source developer, blogger, entrepreneur, hackerspace founder, and free culture advocate Bassell Khartabil was swept up in a wave of military arrests in March 2012. A CBC report states that his wife wrote on Facebook late Tuesday that she has received confirmation that security services executed Khartabil in October 2015 after torturing him in prison. Before his arrest, his most recent work included a 3D virtual reconstruction of the ancient city of Palmyra in Syria.
At the time of his arrest, Khartabi was 30 years old -- after which he started a blog called "MeInSyrianJail" and a Twitter account called "Live from my cell." Though he spent the last three and half years of his life in prison, he once tweeted that "Jail is not walls, not the executioner and guards. It is the hidden fear in our hearts that makes us prisoners." The latest tweet on his feed says "Rest in power our friend."

Thursday the Creative Commons nonprofit described the developer as "our friend and colleague," and announced the Bassel Khartabil Memorial Fund, "which will support projects in the spirit of Bassel's work."

TheSync writes: The Syrian open source developer, blogger, entrepreneur, hackerspace founder, and free culture advocate Bassell Khartabil was swept up in a wave of military arrests in March 2012. A CBC report states that his wife wrote on Facebook late Tuesday that she has received confirmation that security services executed Khartabil in October 2015 after torturing him in prison. Before his arrest, his most recent work included a 3D virtual reconstruction of the ancient city of Palmyra in Syria.
At the time of his arrest, Khartabi was 30 years old -- after which he started a blog called "MeInSyrianJail" and a Twitter account called "Live from my cell." Though he spent the last three and half years of his life in prison, he once tweeted that "Jail is not walls, not the executioner and guards. It is the hidden fear in our hearts that makes us prisoners." The latest tweet on his feed says "Rest in power our friend."

Thursday the Creative Commons nonprofit described the developer as "our friend and colleague," and announced the Bassel Khartabil Memorial Fund, "which will support projects in the spirit of Bassel's work."

TheSync writes: The Syrian open source developer, blogger, entrepreneur, hackerspace founder, and free culture advocate Bassell Khartabil was swept up in a wave of military arrests in March 2012. A CBC report states that his wife wrote on Facebook late Tuesday that she has received confirmation that security services executed Khartabil in October 2015 after torturing him in prison. Before his arrest, his most recent work included a 3D virtual reconstruction of the ancient city of Palmyra in Syria.
At the time of his arrest, Khartabi was 30 years old -- after which he started a blog called "MeInSyrianJail" and a Twitter account called "Live from my cell." Though he spent the last three and half years of his life in prison, he once tweeted that "Jail is not walls, not the executioner and guards. It is the hidden fear in our hearts that makes us prisoners." The latest tweet on his feed says "Rest in power our friend."

Thursday the Creative Commons nonprofit described the developer as "our friend and colleague," and announced the Bassel Khartabil Memorial Fund, "which will support projects in the spirit of Bassel's work."

pizzutz writes: Chrome's popular Web Developer plugin was briefly hijacked on Wednesday when an attacker gained control of the author's Google account and released a new version (0.49) which injected ads into web pages of more than a million users who downloaded the update. The version was quickly replaced with an uncompromised version (0.5) and all users are urged to update immediately.
Lauren Weinstein has a broader warning: While the browser firms work extensively to build top-notch security and privacy controls into the browsers themselves, the unfortunate fact is that these can be undermined by add-ons, some of which are downright crooked, many more of which are sloppily written and poorly maintained. Ironically, some of these add-on extensions and apps claim to be providing more security, while actually undermining the intrinsic security of the browsers themselves. Others (and this is an extremely common scenario) claim to be providing additional search or shopping functionalities, while actually only existing to silently collect and sell user browsing activity data of all sorts.
Lauren also warns about sites that "push users very hard to install these privacy-invasive, data sucking extensions" -- and believes requests for permissions aren't a sufficient safeguard for most users. "Expecting them to really understand what these permissions mean is ludicrous. We're the software engineers and computer scientists -- most users aren't either of these. They have busy lives -- they expect our stuff to just work, and not to screw them over."

schwit1 quotes TheBlaze: Digital gold from Blizzard's massive multiplayer online game "World of Warcraft" is worth more than actual Venezuelan currency, the bolivar, according to new data. Venezuelan resident and Twitter user @KalebPrime first made the discovery July 14 and tweeted at the time that on the Venezuela's black market -- now the most-used method of currency exchange within Venezuela according to NPR -- you can get $1 for 8493.97 bolivars. Meanwhile, a "WoW" token, which can be bought for $20 from the in-game auction house, is worth 8385 gold per dollar. According to sites that track the value of both currencies, KalebPrime's math is outdated, and WoW gold is now worth even more than the bolivar.
That tweet has since gone viral, prompting @KalebPrime to joke that "At this rate when I publish my novel the quotes will read 'FROM THE GUY THAT MADE THE WOW GOLD > VENEZUELAN BOLIVAR TWEET.'"

schwit1 quotes TheBlaze: Digital gold from Blizzard's massive multiplayer online game "World of Warcraft" is worth more than actual Venezuelan currency, the bolivar, according to new data. Venezuelan resident and Twitter user @KalebPrime first made the discovery July 14 and tweeted at the time that on the Venezuela's black market -- now the most-used method of currency exchange within Venezuela according to NPR -- you can get $1 for 8493.97 bolivars. Meanwhile, a "WoW" token, which can be bought for $20 from the in-game auction house, is worth 8385 gold per dollar. According to sites that track the value of both currencies, KalebPrime's math is outdated, and WoW gold is now worth even more than the bolivar.
That tweet has since gone viral, prompting @KalebPrime to joke that "At this rate when I publish my novel the quotes will read 'FROM THE GUY THAT MADE THE WOW GOLD > VENEZUELAN BOLIVAR TWEET.'"

Earlier this week, Amazon suspended budget phone maker BLU from selling its phones on the site, citing a "potential security issue." A few days have passed and BLU has made its defense. SlashGear reports: AdUps, the Chinese company that provides affordable firmware update software to countless budget Android phones, is not spyware and not even Kryptowire, the security firm that broke the news last year, called it that, insists BLU. To be fair, Kryptowire really didn't. In its 2016 report, it simply described AdUps' OTA software as "FIRMWARE THAT TRANSMITTED PERSONALLY IDENTIFIABLE INFORMATION (PII) WITHOUT USER CONSENT OR DISCLOSURE." Curiously, that is more or less how the FTC defines spyware (PDF). In its 2017 follow-up, it did drop the second part of that phrase and simply reported on "mobile devices for Personally Identifiable Information (PII) collection and transmission to third parties." While BLU, and a few other OEMs, was caught unaware by the first report, it's insisting on its innocence in this second instance. Its defense stems from the argument that it is doing nothing that violates its Privacy Policy and, therefore, doesn't constitute any wrongdoing. Yes, that privacy policy that barely anyone reads, which can't legally be blamed on manufacturers anyway.

In other words, when you agreed to use BLU's devices, you basically agreed that such PII could possibly be transmitted to a third party outside the US. In this particular case, that does apply to the situation with AdUps. Interestingly, the policy's copyright dates back to 2016, when the AdUps issue first came up. The Internet Archives doesn't seem to have any version of that page before April this year. And so we come to BLU's second arguments: everybody's doing it. The data that AdUps collects is the same or even just a fraction of what other OEMs are collecting. Google is hardly the bastion of privacy and other OEMs are also collecting such data and sending it to servers in China, as is the case with Huawei and ZTE. Finally, BLU says that Kryptowire's new report really only identifies the Cubot X16S, from a Chinese OEM, as the only smartphone really spying on its users. UPDATE: BLU has confirmed that its devices "are now back up for sale on Amazon."

Danny Hakim reports via The New York Times (Warning: article may be paywalled; alternate source): Documents released Tuesday in a lawsuit against Monsanto raised new questions about the company's efforts to influence the news media and scientific research and revealed internal debate over the safety of its highest-profile product, the weed killer Roundup. The active ingredient in Roundup, glyphosate, is the most common weed killer in the world and is used by farmers on row crops and by home gardeners. While Roundup's relative safety has been upheld by most regulators, a case in federal court in San Francisco continues to raise questions about the company's practices and the product itself.

The documents underscore the lengths to which the agrochemical company goes to protect its image. Documents show that Henry I. Miller, an academic and a vocal proponent of genetically modified crops, asked Monsanto to draft an article for him that largely mirrored one that appeared under his name on Forbes's website in 2015. Mr. Miller could not be reached for comment. A similar issue appeared in academic research. An academic involved in writing research funded by Monsanto, John Acquavella, a former Monsanto employee, appeared to express discomfort with the process, writing in a 2015 email to a Monsanto executive, "I can't be part of deceptive authorship on a presentation or publication." He also said of the way the company was trying to present the authorship: "We call that ghost writing and it is unethical." Mr. Miller's 2015 article on Forbes's website was an attack on the findings of the International Agency for Research on Cancer, a branch of the World Health Organization that had labeled glyphosate a probable carcinogen, a finding disputed by other regulatory bodies. In the email traffic, Monsanto asked Mr. Miller if he would be interested in writing an article on the topic, and he said, "I would be if I could start from a high-quality draft." The article appeared under Mr. Miller's name, and with the assertion that "opinions expressed by Forbes Contributors are their own." The magazine did not mention any involvement by Monsanto in preparing the article.

Intel's upcoming Coffee Lake CPUs won't work with existing 200-series motherboards that support Kaby Lake, a manufacturer confirmed on Wednesday. In a Twitter post by Asrock last Saturday, the company confirmed the news when asked if "the Z270 Supercarrier [will] get support for the upcoming @intel Coffee Lake CPUs." Their response: "No, Coffee Lake CPU is not compatible with 200-series motherboards." PCWorld reports: According to at least one reliable source outside of Intel, the new Coffee Lake CPU will indeed not be compatible with Z270 boards, even though the chipsets with the upcoming Z370 appear to be the same, PCWorld was told. The source added that there are hopes in the industry that Intel will change its mind on compatibility. Tomshardware.com said it had independently confirmed the news with Asrock officials as well.

Why this matters: The vast majority of new CPU sales are in new systems, and they likely won't be impacted by the incompatibility. However, there's also a very large and very vocal crowd of builders and upgraders who still swap out older, slower CPUs for newer, faster CPUs to maximize their investment. An upgrade-in-place doesn't sell an Intel chipset, but it at least keeps them on the Intel platform. If consumers are forced to dump an existing Z270 motherboard for a newer Z370 to get a six-core Coffee Lake CPU, Intel risks driving them into the arms of AMD and its Ryzen CPUs.

Zack Whittaker, reporting for ZDNet: A security researcher who in May stopped an outbreak of the WannaCry ransomware has been arrested and detained after attending the Def Con conference in Las Vegas. Marcus Hutchins, 23, a British national, was arrested at Las Vegas airport on Wednesday by US Marshals, several close friends confirmed to ZDNet. A friend told ZDNet that he was "was pulled by Marshals at the lounge" after clearing security. He was briefly detained in a federal facility in Nevada until he was moved. "We went to see him this morning and we had already been moved," said the friend. Hutchins is now understood to be in custody at an FBI field office in the state. Motherboard first broke the story on Thursday. Update: A Motherboard reporter tweets, "Here's the indictment accusing @MalwareTechBlog of running the Kronos banking malware."
Update 2: New DOJ statement: Gregory J. Haanstad, United States Attorney for the Eastern District of Wisconsin, announced that on July 11, 2017, following a two-year long investigation, a federal grand jury returned a six-count indictment against Marcus Hutchins, also known as "Malwaretech," for his role in creating and distributing the Kronos banking Trojan.

HomePod's firmware has revealed several new features coming to the upcoming iPhone, such as a tap to wake function, facial expression and attention detection, and virtual home button. "Apple accidentally released the firmware over the weekend resulting in a frenzy of analysis about previously unknown features," reports The Verge. From the report: Developers including Steve Troughton-Smith and Guilherme Rambo have been tweeting their findings, notably the discovery of the new iPhone's bezel-less screen design. They've also concluded that the resolution for the iPhone 8 could be as much of a visual leap forward from current-generation iPhones as the iPhone 4's Retina display was from the original iPhone. Apple is using codenames for both its face recognition feature and the bezel-less phone, called "Pearl ID" and "D22" respectively. A potential "attention detection" feature is also mentioned in the code, with some speculating that may mean the phone will remain silent for notifications if it knows you're looking at the screen already. Facial references such as "mouthstretch," "mouthsmile," and "mouthdimple" were also found, which are most likely a nod to Apple's rumored facial recognition feature that can even detect faces in the dark using infrared. A tap to wake feature has also been discovered, and should be similar to the Windows Phone function that allows users to double-tap the screen to wake the phone.

HomePod's firmware has revealed several new features coming to the upcoming iPhone, such as a tap to wake function, facial expression and attention detection, and virtual home button. "Apple accidentally released the firmware over the weekend resulting in a frenzy of analysis about previously unknown features," reports The Verge. From the report: Developers including Steve Troughton-Smith and Guilherme Rambo have been tweeting their findings, notably the discovery of the new iPhone's bezel-less screen design. They've also concluded that the resolution for the iPhone 8 could be as much of a visual leap forward from current-generation iPhones as the iPhone 4's Retina display was from the original iPhone. Apple is using codenames for both its face recognition feature and the bezel-less phone, called "Pearl ID" and "D22" respectively. A potential "attention detection" feature is also mentioned in the code, with some speculating that may mean the phone will remain silent for notifications if it knows you're looking at the screen already. Facial references such as "mouthstretch," "mouthsmile," and "mouthdimple" were also found, which are most likely a nod to Apple's rumored facial recognition feature that can even detect faces in the dark using infrared. A tap to wake feature has also been discovered, and should be similar to the Windows Phone function that allows users to double-tap the screen to wake the phone.

Apple may have just revealed the features you could expect in the next iPhone. Last week, the company released the firmware of the HomePod, a smart speaker which it will begin selling later this year. In the code, the company has accidentally spilled some features about at least one of the iPhone models. Developer Steve Troughton-Smith looked at the code to find that the next iPhone is going to feature facial recognition and a brand new "bezel-less" design. From a report: The near bezel-less design has long been expected, with leaks and rumours suggesting that Apple was following Samsung's design moves with the Galaxy S8 and producing a smartphone that resembles Android-creator Andy Rubin's upcoming Essential phone. Apple is not the first company to use IR-based face recognition as a means of unlocking devices and authenticating users. Microsoft's Windows Hello IR-based face recognition is found in its Surface line as well as Windows 10 computers from other manufacturers.

In a piece describing the paranoid vibe in Las Vegas during the DEFCON convention, CNET reported Friday that the Wet Republic web site "had two images vandalized" with digital graffiti. But their reporter now writes that "my paranoia finally got the best of me, and it turned out to be an ad campaign."

The images included a scribbled beard and eye patch on a photo of bikini model, along with the handwritten message "It's all out war." CNET's updated story now reports that "It looked like a prank you'd see from a mischievous hacker..." When I spotted the vandalism on the Wet Republic site Friday morning, it looked like other attacks I'd seen throughout the week, such as a Blue Screen of Death on a bus ticket machine... Hakkasan, which hosts the event at MGM Grand, said the "vandalism" was part of the cheeky advertisements for a seasonal bikini contest it's been running since 2015. The "all-out war" is between the models in the competition, not between hackers and clubs. Hakkasan's spokeswoman said nothing on its network has been compromised.

So maybe not everything online in Las Vegas is getting hacked this week, and this n00b learned to calm down the hard way.
For that matter, maybe that blue screen of death was also just another random Windows machine crashing.

CNET's reporter made one other change to his article. He removed the phrase "when hackers are in town for Defcon, everything seems to be fair game."

An anonymous reader quotes The Hill: Hackers at at a competition in Las Vegas were able to successfully breach the software of U.S. voting machines in just 90 minutes on Friday, illuminating glaring security deficiencies in America's election infrastructure. Tech minds at the annual "DEF CON" in Las Vegas were given physical voting machines and remote access, with the instructions of gaining access to the software. According to a Register report, within minutes, hackers exposed glaring physical and software vulnerabilities across multiple U.S. voting machine companies' products. Some devices were found to have physical ports that could be used to attach devices containing malicious software. Others had insecure Wi-Fi connections, or were running outdated software with security vulnerabilities like Windows XP.
Though some of the machines were out of date, they were all from "major U.S. voting machine companies" like Diebold Nixorf, Sequoia Voting Systems, and WinVote -- and were purchased on eBay or at government auctions. One of the machines apparently still had voter registration data stored in plain text in an SQLite database from a 2008 election, according to event's official Twitter feed.

By Saturday night they were tweeting video of a WinVote machine playing Rick Astley's "Never Gonna Give You Up."

An anonymous reader quotes The Hill: Hackers at at a competition in Las Vegas were able to successfully breach the software of U.S. voting machines in just 90 minutes on Friday, illuminating glaring security deficiencies in America's election infrastructure. Tech minds at the annual "DEF CON" in Las Vegas were given physical voting machines and remote access, with the instructions of gaining access to the software. According to a Register report, within minutes, hackers exposed glaring physical and software vulnerabilities across multiple U.S. voting machine companies' products. Some devices were found to have physical ports that could be used to attach devices containing malicious software. Others had insecure Wi-Fi connections, or were running outdated software with security vulnerabilities like Windows XP.
Though some of the machines were out of date, they were all from "major U.S. voting machine companies" like Diebold Nixorf, Sequoia Voting Systems, and WinVote -- and were purchased on eBay or at government auctions. One of the machines apparently still had voter registration data stored in plain text in an SQLite database from a 2008 election, according to event's official Twitter feed.

By Saturday night they were tweeting video of a WinVote machine playing Rick Astley's "Never Gonna Give You Up."

schwit1 shares a report: San Diego Comic-Con has become so much more than just a comic book convention. But comic books remain the heart and soul of Comic-Con. In addition to attendees being there to buy comic books, vendors flock to Comic-Con to sell their comic books as well. That's why participants in Comic-Con were shocked to find a notice waiting for them at the San Diego airport after Comic-Con: "COMIC-CON ATTENDEES: REMOVE ALL BOOKS FROM CHECKED BAGS." On Twitter, United Airlines confirmed the ban: "The restriction on checking comic books applies to all airlines operating out of San Diego this weekend and is set by the TSA. ^MD" Consumerist reached out to TSA and were told by a spokeswoman that the warnings about not allowing comic books -- or any kind of book -- in checked bags were simply not true. There is "no restriction on anything related to putting comics or any type of books" in baggage, and TSA never put out any guidance to that effect, she said. "In fact, they are allowed in both checked and carry-on baggage," the spokeswoman told Consumerist, adding that there were no delays in the processing of checked bags out of San Diego yesterday.