Slashdot Mirror

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Unfortunately that's not a reality, even the Nexus phones don't provide that. We saw it with the Nexus S and with the Galaxy Nexus, with the latter you could get the OS update but not the latest version from Google, it was one put together by groups like Cyanogen.

"Microsoft becomes OpenBSD's first gold contributor"

July 9, 2015 -- 12:14 GMT (13:14 BST)

http://www.zdnet.com/article/m...

#

http://undeadly.org/cgi?action...

Microsoft Now OpenBSD Foundation Gold Contributor
Contributed by tbert on Tue Jul 7 16:03:41 2015 (GMT)

"Thats funny. Reminds me story with Darpa, when everyone was surprised like an infant after what happened.

Now, after fighting with closed drivers world and producing hours of pro-freedom songs - make a contract with Microsoft.

Hilarious :)" - by bluszcz (83.49.0.115) on Thu Jul 9 15:08:57 2015 (GMT)

"I just hope it's not another Microsoft "Embrace, Extend and Crush" move." - by Anonymous Coward (24.138.98.109) on Thu Jul 9 00:28:33 2015 (GMT)

"Accused of pushing Windows 10 rather aggressively"?

I have no idea what they are supposed to do more to deserve that epithet, they have just about done everything to make people install it except making it a mandatory forced upgrade. Hell they've even resorted to outright trickery to get people to "upgrade". That's plenty aggressive enough for me, and some would argue with quite a bit of success that this is crossing the line between the unethical and the illegal, depending on jurisdiction.

LulzSec frontman Sabu was FBI informant:

This kills me. Slashdot taken over by ???.
BS Propaganda will probably be the the main theme now.

http://www.zdnet.com/article/l...!

http://www.zdnet.com/article/l...!

http://boingboing.net/2012/03/...

LulzSec frontman Sabu was FBI informant:

This kills me. Slashdot taken over by ???.
BS Propaganda will probably be the the main theme now.

http://www.zdnet.com/article/l...!

http://www.zdnet.com/article/l...!

http://boingboing.net/2012/03/...

Probably not RT, since that was discontinued, but quite possibly Win10 IoT.

A few posters nailed it, this is a 'Fear campaign' against an OS that LEO's have never been able to penetrate. FACTS: 1. The core of the Blackberry 10 OS is QNX which is used for Aerospace/Defense systems. https://en.wikipedia.org/wiki/... 2. The current LEO issued "Smartphone Recovery Kit" as advertised does NOT support BB, but does crack iPhone & Android Smartphones http://www.npr.org/2014/03/20/... 3. Not one shred of ACTUAL/PHYSICAL evidence? Just numerous 'stories' or references to vague third-parts apps... 4. While other Gov. Officials in various countries have had their communications hacked, Obama (and the last few Pres) have NEVER had their phone compromised......guess what Obama himself uses? dun..dun...dun.........BLACKBERRY http://www.zdnet.com/pictures/... I feel sorry for BB as a company, there has been a coordinated campaign for years to discredit and destroy them, granted US consumers aren't smart enough to value security and chose Free Apps/Cheap Price (Android) and Hip/Youthful (Apple) which, in a word, sucks :( THIS IS MY FIRST POST TO /. I know this is a polarizing opinion argument, but I tried to post links where possible and hope this helps clear some misconceptions! 3 Slashdot

Shill #2, right on schedule.

A few posters nailed it, this is a 'Fear campaign' against an OS that LEO's have never been able to penetrate. FACTS: 1. The core of the Blackberry 10 OS is QNX which is used for Aerospace/Defense systems. https://en.wikipedia.org/wiki/... 2. The current LEO issued "Smartphone Recovery Kit" as advertised does NOT support BB, but does crack iPhone & Android Smartphones http://www.npr.org/2014/03/20/... 3. Not one shred of ACTUAL/PHYSICAL evidence? Just numerous 'stories' or references to vague third-parts apps... 4. While other Gov. Officials in various countries have had their communications hacked, Obama (and the last few Pres) have NEVER had their phone compromised......guess what Obama himself uses? dun..dun...dun.........BLACKBERRY http://www.zdnet.com/pictures/... I feel sorry for BB as a company, there has been a coordinated campaign for years to discredit and destroy them, granted US consumers aren't smart enough to value security and chose Free Apps/Cheap Price (Android) and Hip/Youthful (Apple) which, in a word, sucks :( THIS IS MY FIRST POST TO /. I know this is a polarizing opinion argument, but I tried to post links where possible and hope this helps clear some misconceptions! 3 Slashdot

Whatever happened to letting people decide how they manage their systems? Are we again dragging out the canard that developers or companies know more than the user considering every iteration of all three products don't simply fix bugs but break things, including the UI, or remove features people used.

If your system isn't connected to a network and ultimately the internet it doesn't make much difference. If it is then things change - events on your system can impact other systems. That doesn't really happen in your lock changing scenario, does it?

SQL Slammer worm wreaks havoc on Internet

http://www.theregister.co.uk/2...
http://www.theregister.co.uk/2..." ADD_DATE="1449501567" LAST_VISITED="0">Lock up your top-of-racks, says Cisco, theres a bug in the USB code â The Register
http://www.theregister.co.uk/2...
http://www.theregister.co.uk/2...
http://www.theregister.co.uk/P...
http://www.wired.com/threatlev...
http://www.zdnet.com.au/cisco-...
http://www.zdnet.com/cisco-fix...
http://yro.slashdot.org/commen...
http://yro.slashdot.org/story/...
http://yro.slashdot.org/story/...
http://yro.slashdot.org/story/...
https://isc.sans.edu/forums/di...
https://nakedsecurity.sophos.c...
https://nakedsecurity.sophos.c...

APK

P.S.=> So much for your faith in routers alone stupid (225 in total, 15 posts with 15 items each)... apk

I'm wondering if this fits in with this story about a quantum computing grant for IBM, as well: http://www.zdnet.com/article/i...

Trivial.. and one of many

http://www.zdnet.com/article/m...

"Admitting to its mistake, and adding that it would "comply immediately" with the European authorities, the software giant knew it would face an all but inevitable fine for failing to include the settlement-assured "browser choice" screen."

The other components are under the license I originally referenced. Specifically, it's pretty useless without things like the Microsoft HTTP Client Libraries, Microsoft.Bcl.Compression, Microsoft BCL Portability Pack, Microsoft Async, Microsoft BCL Build Components,

Of course they didn't open source everything at once. That would have been a legal nightmare. Sun didn't open source Java all at once either. They open sourced the core in 2006, and then started the OpenJDK project to open source the toolset and standard libraries. The OpenJDK didn't eliminate the last proprietary code until the very end of 2010. But Sun was a good company, and MS is an evil one right? So we should shit on MS even if they do exactly what Sun did.

Also, having something available as source, doesn't magically port it to your platform.

Microsoft to Open Source More of .NET and Bring it to Linux, Max OS. Seriously, why don't you take five seconds to google something before you spew nonsense all over this comments section?

Someone else in this thread mentioned patents. Several parts of .NET have been released under the Apache 2 license, which contains a patent grant. Additionally, a lot of the software is released with a Patent Promise.

There are a few issues with USB serial ports to be aware of.

1. The standard Windows driver is terrible. It locks up, can't handle unexpected disconnects and reconnects etc. In Windows 10 it is supposed to be better, but I have not tested it. The best option is to get an adapter that uses an FTDI chip. Yes, FTDI are evil, but their driver is pretty good.

2. Latency over USB is very different to latency on a real USB port. This has two effects.
2a. Stuff that relies on timing, such as GPS time sync, won't work very well.
2b. Signals can get out of order, e.g. the app sets DTR and then sends a character, but the port emits the character before setting DTR.

3. The cheap ones often have poor input protection, making them prone to premature death.

Intriguing.

Your comment prompted me to search for references for this (I searched for "linus systemd freebsd", if you're curious). The first I pulled up was this, which quotes him saying:

I don't actually have any particularly strong opinions on systemd itself. I've had issues with some of the core developers that I think are much too cavalier about bugs and compatibility, and I think some of the design details are insane (I dislike the binary logs, for example), but those are details, not big issues.

The second is this, a mailing list thread in which Linus expresses his dearly-held opinion on Kay Sievers and his attitude to systemd bugs. Sounds like Kay isn't the most pleasant developer to work with), though that's hardly an indictment of systemd-the-project.

The third is this, a Slashdot story from a few months ago, where Linus says this:

I have to say, I don't really get the hatred of systemd. I think it improves a lot on the state of init, and no, I don't see myself getting into that whole area.

Yeah, it may have a few odd corners here and there, and I'm sure you'll find things to despise. That happens in every project. I'm not a huge fan of the binary logging, for example. But that's just an example. I much prefer systemd's infrastructure for starting services over traditional init, and I think that's a much bigger design decision.

Yeah, I've had some personality issues with some of the maintainers, but that's about how you handle bug reports and accept blame (or not) for when things go wrong. If people thought that meant that I dislike systemd, I will have to disappoint you guys.

What I'm taking home from those first three hits is that:

1) Linus doesn't hate systemd;
2) Linus hates having to work with Kay Sievers;
3) Linus isn't abandonding Linux or moving to FreeBSD, certainly due to systemd.

Do you have other references that would refute point 1) or 3)? I'm not saying you're wrong, but I'm skeptical, and would like to see some evidence for your claim.

we are a geek site...

50kg air-to-ground Hellfire rockets cost an eye-watering $115,000 each

source: http://www.zdnet.com/article/h...

we can fire 130 hellfire missiles and have money to spare or about half as many if we cover the cost of actually sending the drones to do so and do not lose any of the drones due to mishaps. at one missile per drone we can send 62 but the drone that would likely be used can carry two so we'd be able to fire 86 of them with one left over and have money for beer afterwards!

High Security? Only time can tell. Until the router has been out in the wild for a bit and people have had a chance to look for vulnerabilities, it's impossible to say whether or not the router is actually secure. It's similar to the "Blackphone" which was touted for people who wanted a very secure phone. Once they released it, they found all sorts of security problems with it.

Not gonna happen, in fact they are gonna keep shooting themselves in the face. They are gonna go with the big double barrel for the next one by remove XUL and thus remove the extensions from Firefox leaving a half hearted crippled system no better than in Chrome. Remember extensions AKA the only fucking reason anybody uses Firefox anymore? Yeah they are gonna kill them and run off the devs, smart huh?

For those of us that have said loud and clear the current direction is a DO NOT WANT there is a very good clear alternative, and that is Pale Moon. You don't want Australis? No worries as they are forked away and will never bring that shit in. Want extensions? No worries as they have announced they WILL be keeping them and have reached out to devs to support PM and for the extensions that don't they are compiling their own versions. Want 64 bit? A Linux version? Need a browser that supports XP? No worries, no worries, no worries..

If you are tired of watching Mozilla destroy itself like a slow motion trainwreck? Come on over to Pale Moon. I've been using it for a couple years and its rock solid, well maintained, its like what Firefox USED to be before they started becoming a shitty ersatz Chrome.

Indeed. There's also speculation that this is why Windows 10 is in the state that it's in. The smart people turn off telemetry and tracking, so the only data Microsoft gets back are the ones from the dumb people, hence, why Windows is catering to the dumb people.

Of course, some (like me!) might argue that developing software based solely or mostly on telemetry information is a brain-dead approach, but I don't work for Microsoft or Mozilla, so what do I know?

The logic of authoritarians:

Thanks to Snowden's revelations, terrorists started using unbreakable encryption!!!!!!!

Right. Except they didn't.

That was pre-Snowden. Terrorists didn't know about encryption before that.

Right again. Except they did.

So, you see-- Snowden has "blood on his hands" for making terrorists aware of encryption, which they knew about for decades, so they could use it, which they didn't. And thank goodness for that, because if they had used encryption, the attacks might have been successful, which they were.

Got it.

Who really expected the same or better performance at this point?

I do.

Or even if it can't be directly broken or circumvented just flash a new firmware for the disk that will install some malware on the system at a later stage when the user has actually entered the password..

Best security-practice is that nothing sensitive (code or data) should ever leave the CPU, but since most CPU's don't support ram-encryption or being able to validate that the BIOS has not been tampered with it's quite hard..

- Software encrypted harddrive:
Encrypting all data being written to the harddrive in software within the CPU (embedded keys in the CPU would be nice, programmable keys of course)..

Fixes: Injecting code/data into a system at a later stage - http://www.wired.com/2015/02/n...

- Encrypted/Obfuscated RAM
Each boot the CPU would generate a random key the RAM would be encrypted with. To obfuscate it a bit more randomizing the layout (4k blocks or so) would make it a bit harder to break. Each 4k page would be encrypted with a sha256 of key + page-id.

Fixes: Dumping the RAM of a running system - http://www.zdnet.com/article/c...

- Encrypted+signed firmware.
All firmware's (BIOS or even the internal USB connected camera) should be encrypted and signed.

Fixes: Injecting code/data into a system at a later stage - http://www.wired.com/2015/03/r...

- After resume all insecure ports (thunderbolt, usb-ports(?), networking) that could potentially be used to compromise the system should be disabled until after the user has authenticated.

Fixes: Injecting code/data into a running system
https://trmm.net/Thunderstrike
https://en.wikipedia.org/wiki/...

Disclamer : Links are from the first page of a google-search.. Have not been read by me.. If they contain bad info please research the issue yourself.

-

Some flaws the audits missed were discovered a month ago, at least on Windows:

http://www.zdnet.com/article/t...

This is an older article, but according to the research, 68% of IT projects fail.

I'm not surprised. The more people involved and the more moving parts you have, the less likely anything will ever come to completion.

SAP projects are a perfect example of this. Those clowns could fuck up a guestbook script, all 30 lines of it. By the time they got does it would be 550 megs of object oriented code (java, C++, Oracle, COBOL, and maybe some perl just to help make it unreadable).

This is an older article, but according to the research, 68% of IT projects fail.

It would be better if you could stick with an older, faster version of iOS and just get security updates like you can with Android.

Except even on Nexus devices you can only get security updates for 3 years. On anything else you're lucky to get them after one year, let alone two. And when you do get them they arrive months late.

Android "security" is an absolute joke.

iOS users are definitely not safe

But Android users are fucked.

And, yet, it apparently works. As in people have done it before. And, if dropping them in the parking lot doesn't work, stamp a logo on them, put them in a package with official looking marketing glossy, and send them as targeted attacks.

See, the problem is the humans are always the weak links in your chain.

Of course, you can't target what machines might be impacted. But if the general plan is mayhem, that's always easy to achieve.

They are so hilariously wrong so often you could build a successful career out of assuming they will be wrong about everything. A selection of their idiocies:

• Apple Should License the Mac to Dell
• Windows Phone to beat iPhone by 2015 (thanks to Nokia)
• Why does the IT industry continue to listen to Gartner?

I'm one of the maintainers of the docs for a well-known DBMS product. About once a year, I have to explain to someone that:

1. "Master" and "slave" have been standard terms in cybernetics for nearly a century.

2. We use these terms in our replication functionality and documentation (and have for about 20 years) precisely on account of (1).

3. If you go back far enough, you'll discover that everybody's ancestors were slaves of someone else's ancestors at some point in time. Including some of mine.

4. Anybody who still think they're offended by these terms needs to get over themselves. Seriously.

5. No, we're *not* going to make thousands of non-trivial changes in our products and we're *not* going to update thousands of pages of documentation to match because someone is (4) because they've never bothered to do a little reading and thus learn about (3) and maybe even (1).

Should the printer manufacturer be required to change its name to "Sister"?

Neither of these cases is anything like the libupskirt/Misaka business where the author of a package was apparently making a concerted effort to be an asshole, and using ".bro" as a file extension isn't, either.

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://news.slashdot.org/story...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://news.slashdot.org/story...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

"Microsoft confirmed Wednesday that a suspicious-looking update pushed out to Windows machines globally in the early hours was nothing more than a test gone errant."

http://www.zdnet.com/article/m...

See e.g. http://www.huffingtonpost.com/... and http://www.zdnet.com/article/y...

People are (at last) getting tired of facebook. That means: less growth, a user-base that isn't rejuvenating at the same rate as it could, and the spectre of *gasp* declining numbers of acebook users.

Bad news for a company that just supplies a fashionable fad (as opposed to something that people actually need) and which derives revenues from advertising and resale of its users'(private) information for marketing purposes don't you think?

So it's time for a little executive involvement in keeping those warm bods signing up.

"We're getting a smaller slice of the cake? Well then .. let's make the cake bigger!"

Aha! We need more Internet users!

Cue Zuckerberg's public appeal to the UN: "more Internet users please, it's practically a Human Right!"

Besides, it's the easiest way to get more Facebook users and it doesn't cost Facebook a dime (it's supposed to be tax money that pays for increased Internet access you see).

Seen this way it's the most natural thing for mr. Zuckerberg to do. And food, shelter and healthcare? Meh. He's not active in those markets, is he?

Here's a SMALL partial only sample of OpenBid/realtime bidding & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

* REPOSTING A 3rd time VS. ABUSED DOWNMODS ON THIS SAME POST here http://tech.slashdot.org/comme... AND here http://tech.slashdot.org/comme...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk

Here's a SMALL partial only sample of OpenBid & other ad networks malware makers have taken advantage of to infect you with:

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

http://www.wired.com/techbiz/m...

http://news.cnet.com/8301-1023...

http://www.itworld.com/securit...

http://nakedsecurity.sophos.co...

http://www.zdnet.com/ad-exec-o...

http://search.slashdot.org/sto...

http://nakedsecurity.sophos.co...

http://www.securityweek.com/ea...

http://yro.slashdot.org/story/...

http://www.theregister.co.uk/2...

http://www.theregister.co.uk/2...

APK

P.S.=> See subject & those links (+ ads not only INFECT US, but STEAL BANDWIDTH & SPEED WE PAY FOR MONTHLY+ track us too)

... apk