Slashdot Mirror

Buses and light rail cars make San Francisco's "Muni" fleet the seventh largest mass transit system in America. But yesterday its arrival-time screens just displayed the message "You Hacked, ALL Data Encrypted" -- and all the rides were free, according to a local CBS report shared by RAYinNYC: Inside sources say the system has been hacked for days. The San Francisco Municipal Transportation Agency has officially confirmed the hack, but says it has not affected any service... The hack affects employees, as well. According to sources, SFMTA workers are not sure if they will get paid this week. Cyber attackers also hit Muni's email systems.
Though the article claims "The transit agency has no idea who is behind it, or what the hackers are demanding in return," Business Insider reports "The attack seems to be an example of ransomware, where a computer system is taken over and the users are locked out until a certain amount of money is sent to the attacker." In addition, they're reporting the attack "reportedly included an email address where Muni officials could ask for the key to unlock its systems."

One San Francisco local told CBS, "I think it is terrifying. I really do I think if they can start doing this here, we're not safe anywhere."

An anonymous reader quotes a report from Ars Technica: A low-tech but cunning malware program is worrying security researchers after it started spreading rapidly in the past week through a new attack vector: by forcibly exploiting vulnerabilities in Facebook and LinkedIn. According to the Israeli security firm Check Point, security flaws in the two social networks allow a maliciously coded image file to download itself to a user's computer. Users who notice the download, and who then access the file, cause malicious code to install "Locky" ransomware onto their computers. Locky has been around since early this year, and works by encrypting victims' files and demands a payment of around half a bitcoin for the key. Previously, it had relied on a malicious macro in Word documents and spam e-mails, but Check Point says that in the past week there has been a "massive spread of the Locky ransomware via social media, particularly in its Facebook-based campaign." Users are advised not to open any file that has automatically downloaded, especially any image file with an unusual extension such as SVG, JS, or HTA -- though benign-looking images could exploit the way Windows hides file extensions by default.

Earlier this year, photographer Carol Highsmith received a $120 settlement demand from Getty Images after she used one of her own public domain images on her website (which is she had donated to the Library of Congress and made available to the public to reproduce and display for free). Highsmith responded with a $1bn lawsuit but after a few short months, as TorrentFreak reports, the case is all over, with neither side a clear winner. From the report: To begin, on October 28, US District Court Judge Jed S. Rakoff dismissed each of Carol Highsmith's federal copyright claims. "Defendants Getty Images (US), Inc., License Compliance Services, Inc., Alamy, including that Inc., and Alamy Ltd. collectively moved to dismiss all claims of plaintiffs Carol Highsmith and This is America!, Inc. under the Digital Millenium Copyright Act,... the Lanham Act,... New York General Business Law,... and New York common law of unfair competition," the Judge wrote. "Upon consideration, the Court grants defendants' motions,â he added. With the federal claims gone, three state law claims were including that Getty charged licensing fees for images when it shouldn't have and collected settlements from alleged infringers when it had no right. However, these claims have now also been dismissed, along with the rest of the case. "It is hereby stipulated and agreed, by and among the parties, that this action shall be dismissed with prejudice pursuant to Rule 41(a)(l)(A)(ii) of the Federal Rules of Civil Procedure, each party to bear its own costs and fees," the Judge wrote in his dismissal. Since the case was dismissed with prejudice, it is done and cannot be brought back to court.

"MongoDB is increasingly encroaching on Oracle's database lead -- with enterprises becoming more and more confident with the maturing NoSQL technology," according to Diginomica, citing this new interview with CEO Dev Ittycheria: 30% of our business is migration off existing workloads to us. Two years ago it was 5%. Ditching Oracle and others, but mainly Oracle... one of the nice benefits of being in this market is that Oracle has done a great job of alienating its customer base... if there are performance reasons, regulatory reasons, developer demand -- [people] will change... We have grown business by 2.5X over last two years. And our employee base has pretty much doubled.
One reason he cites is Oracle's higher prices on their top-line products, saying MongoDB's new customers include "a large bank, whose logo you would recognize instantly [with] a very sophisticated equities trading platform." Ittycheria says MongoDB is now a nine-figure business, and after they launched their new database-as-a-service product Atlas last June, "the growth in that business has been off the charts."

Trailrunner7 writes: A major privacy group has filed a lawsuit against the FBI to force the bureau to release all relevant documents about its plan to share a huge amount of biometric information with the Department of Defense. The lawsuit filed by EPIC (Electronic Privacy Information Center) concerns the FBI's Next Generation Identification (NGI) system, which comprises fingerprint, iris scan, and facial recognition data, and the bureau has been using it for several years... EPIC's lawsuit asks that the FBI be forced to release records about the plan to share NGI data with the Department of Defense under the Freedom of Information Act. EPIC filed a FOIA request about the plan last year and though the FBI said it has located 35 pages of records that are responsive to the request, it hasn't released any of those records.

An anonymous reader quotes a report from Bloomberg: Apple Inc. has big plans to outfit its next iPhone with vibrant, energy-sipping organic LED displays, seeking to entice consumers with new technology that's already been embraced by other high-end smartphone makers. The trouble is that the four main suppliers for such components won't have enough production capacity to make screens for all new iPhones next year, with constraints continuing into 2018, people familiar with the matter said, presenting a potential challenge for the Cupertino, California-based company. OLED screens are more difficult to produce, putting Apple at the mercy of suppliers that are still working to manufacture the displays in mass quantities, the people said. The four largest producers are Samsung Display Co., LG Display Co., Sharp Corp., and Japan Display Inc. While Samsung is on track to be the sole supplier for the new displays next year, the South Korean company may not be able to make enough due to low yield rates combined with increasing iPhone demand. The supply constraints may force Apple to use OLED in just one version of the next-generation iPhone, push back adoption of the technology or cause other snags. Apple plans to ship at least one new iPhone with an OLED screen next year, the 10th anniversary of the smartphone's debut, people with knowledge of the matter said. A pair of other new iPhone models will likely feature screens that use older LCD technology, partly because there won't be enough OLED displays to satisfy anticipated demand, according to KGI Securities analyst Ming-Chi Kuo. The OLED iPhone, at least, will have a new look that extends glass from the display to the device's back and edges, according to a person familiar with Apple's plans. This all-glass design will have a virtual Home button embedded in an edge-to-edge screen, rather than a physical button that can be pressed, the person added.

An anonymous reader quotes a report from Motherboard: In bitcoin-related investigations, authorities will often follow the digital trail of an illegal transaction or suspicious user back to a specific account at a bitcoin trading company. From here, investigators will likely subpoena the company for records about that particular user, so they can then properly identify the person suspected of a crime. The Internal Revenue Service, however, has taken a different approach. Instead of asking for data relating to specific individuals suspected of a crime, it has demanded bitcoin trading site Coinbase to provide the identities of all of the firm's U.S. customers who made transactions over a three year period, because there is a chance they are avoiding paying taxes on their bitcoin reserves. Coinbase has a total of millions of customers. According to court filings, which were first flagged by financial blogger Zerohedge on Twitter, the IRS has launched an investigation to determine the correct amount of tax that those who use virtual currencies such as bitcoin are obligated to pay. But according to the documents, the IRS is asking for the identities of any U.S. Coinbase customer who transferred crypto-currency with the service between 2013 and 2015. "The John Does whose identities are sought by the summons are United States persons who, at any time during the period January 1, 2013, through December 31, 2015, conducted transactions in a convertible virtual currency," reads a memorandum written by Department of Justice attorneys and filed on Thursday, November 17.

Jeremy Hellstrom, writing for PC Perspective (edited):Compared to Q2 2016, total GPU shipments including discrete and integral chips in the mobile and desktop markets increased by 20%; good but not enough to recover from the volume we saw in Q3 2015. Individually, total AMD sales increased by 15%, and Intel saw 18% boost, but it was NVIDIA that was the most successful with an impressive 39% increase. In AMD's case, it saw sales of its aging desktop APUs drop by 10% but that was quickly offset by a jump in discrete GPU sales of 34.7% and an increase in laptop demand by 19.1%. The discrete GPU market as a whole has grown by 35.6% compared to the last quarter and by 10.1% when compared to last year. This is not bad news for AMD or Intel but it is certainly NVIDIA which has the most to celebrate.

Zack Whittaker, reporting for ZDNet: The UK has just passed a massive expansion in surveillance powers, which critics have called "terrifying" and "dangerous." The new law, dubbed the "snoopers' charter," was introduced by then-home secretary Theresa May in 2012, and took two attempts to get passed into law following breakdowns in the previous coalition government. Four years and a general election later -- May is now prime minister -- the bill was finalized and passed on Wednesday by both parliamentary houses. Civil liberties groups have long criticized the bill, with some arguing that the law will let the UK government "document everything we do online." It's no wonder, because it basically does. The law will force internet providers to record every internet customer's top-level web history in real-time for up to a year, which can be accessed by numerous government departments; force companies to decrypt data on demand -- though the government has never been that clear on exactly how it forces foreign firms to do that that; and even disclose any new security features in products before they launch. Not only that, the law also gives the intelligence agencies the power to hack into computers and devices of citizens (known as equipment interference), although some protected professions -- such as journalists and medical staff -- are layered with marginally better protections. In other words, it's the "most extreme surveillance law ever passed in a democracy," according to Jim Killock, director of the Open Rights Group.

An anonymous reader quotes a report from The Guardian: Sir Richard Branson on Tuesday heralded the rebirth of supersonic passenger flights with the unveiling of a prototype aircraft promising 3.5-hour flights from London to New York for an "affordable" $5,000 return. The billionaire Virgin Group founder said his Spaceship company would help Denver-based startup Boom build a new generation of supersonic jets and reintroduce transatlantic flight times unseen since Concorde was scrapped. Branson is partnering with Blake Scholl, a pilot and former Amazon executive, who will later on Tuesday unveil a prototype of the new jet in a hangar in Denver, Colorado. While several other companies, including Boeing and Lockheed Martin, are developing new supersonic jets, Scholl said his plan was likely to beat them to market as it does not require any new technology that would need approval by regulators. Scholl said test flights would begin in southern California, with plans to launch the first commercial departures in 2023. If the plans stick to schedule, Boom flights will launch 20 years after British Airways and Air France decommissioned Concorde. He said Boom would succeed where Concorde failed because developments in technology and lighter materials meant tickets would be much cheaper. Boom will have just 45 to 50 seats, compared with Concorde's 92 to 128. Scholl reckons the demand for affordable supersonic flights could make this a $100 billion market. He said his plane could work on 500 different routes, but would concentrate initially on London to New York, San Francisco to Tokyo, and Los Angeles to Sydney.

An anonymous reader reports that Donald Trump's upcoming presidency raises a few concerns for the security industry: "Some of his statements that industry professionals find troubling are his calls for 'closing parts of the Internet', his support for mass surveillance, and demands that Apple should have helped the FBI break the encrypted communications of the San Bernardino shooter's iPhone," writes SC Magazine. One digital rights activist even used Trump's surprise victory as an opportunity to suggest President Obama begin "declassifying and dismantling as much of the federal government's unaccountable, secretive, mass surveillance state as he can -- before Trump is the one running it... he has made it very clear exactly how he would use such powers: to target Muslims, immigrant families, marginalized communities, political dissidents, and journalists."

Edward Snowden's lawyer says "I think many Americans are waking up to the fact we have created a presidency that is too powerful," and the Verge adds that Pinboard CEO Maciej Ceglowski is now urging tech sites to stop collecting so much data. "According to Ceglowski, the only sane response to a Trump presidency was to get rid of as much stored user data as possible. 'If you work at Google or Facebook,' he wrote on Pinboard's Twitter account, 'please start a meaningful internal conversation about giving people tools to scrub their behavioral data.'"
Could a Trump presidency ultimately lead to a massive public backlash against government surveillance?

Does Ethernet need new features like "stream reservation" and time synchronization to make sure time-sensitive data isn't delayed on the network? coondoggie quotes Network World: The demand from Internet of Things, automotive networking and video applications are driving changes to Ethernet technology that will make it more time-sensitive. Key to those changes are a number of developing standards but also a push this week from the University of New Hampshire InterOperability Laboratory to set up three new industry specific Ethernet Time-Sensitive Networking consortiums -- Automotive Networking, Industrial Networking, and ProAV Networking aimed at developing deterministic performance within standard Ethernet for real-time, mission critical applications. "Standards-based precise time, guaranteed bandwidth, and guaranteed worst-case latency in a converged Ethernet network is a game-changer to many industries," said Bob Noseworthy, Chief Engineer, UNH-IOL.
The article also acknowledges the work of the Avnu Alliance, which is also trying to build an ecosystem of "low-latency, time-synchronized, highly reliable synchronized networked devices using open standards through certification."

Donald Trump's historic victory in the U.S. presidential elections has pushed up prices for the digital currency bitcoin. As the results for the election began to trickle in, the cryptocurrency quickly began to rise at around 2 a.m. London time. From a report on CNBC: The price for bitcoin was around 3.5 percent higher at 11:00 a.m. London time Wednesday at $733.84. Since November 4, the cryptocurrency has been stuck around the $700-709 trading band. The weakening dollar may have added to the rise, but the digital currency is also higher when priced in other currencies like the Chinese yuan, sterling and the euro. Charles Hayter, CEO and founder of Crypto Compare, said that the price is rising on safe-haven demand in reaction to the uncertainty created as a result of Trump's victory.

An anonymous reader quotes a report from Digital Trends: The tax debate between Apple, Ireland, and the European Union may escalate in the next few months. According to recent reports, the Irish Finance Minister, Michael Noonan, will bring the debate to the EU court, a move that could trigger a years-long court battle. The battle stems from a European Commission finding that Ireland had been giving Apple tax breaks, something that has attracted a number of multinational employers to Ireland. The EU, however, has ordered the practices to change. After a three-year probe into Ireland's relationship with Apple, the European Commission ordered Ireland to collect $14.5 billion in back taxes from the company. That is the largest state-aid payback demand in history. The decision has been the subject of criticism, particularly from this side of the Atlantic. The U.S. Treasury Department says the decision is a threat "to undermine foreign investment, the business climate in Europe, and the important spirit of economic partnership between the U.S. and the EU." Apple has also vowed to fight against the EU decision, and those appeals will follow the ones already pending in Luxembourg, where the EU is headquartered. Those pending appeals include cases against Starbucks.

LeEco is a giant conglomerate in China. The company offers a range of services -- from online streaming service, to smartphones, to TV, to electric cars. On top of that, the company has been aggressively expanding into different markets with India and the United States being the two notable ones. How does it make so much cash? You wonder. It doesn't actually, according to the CEO, who has informed the employees that the company is quickly running out of cash. An anonymous reader shares a Bloomberg report: The billionaire chairman of China's LeEco has admitted his technology empire is running out of cash to sustain a headlong rush into businesses from electric cars to smartphones. In a lengthy letter to employees, company co-founder Jia Yueting apologized to shareholders and pledged to slash his income to 1 yuan (15 cents), slow LeEco's madcap pace of expansion, and move the company toward a more moderate phase of growth. LeEco is the umbrella holding company for a sprawling family of businesses that includes sports media, automobiles, smartphones and TVs. The company known for its LeTV streaming service has aggressively pursued funding and placed bets on new ventures, from an electric car plant in Nevada to a $2 billion acquisition of California TV maker Vizio Inc. "No company has had such an experience, a simultaneous time in ice and fire," Jia wrote in a letter, obtained by Bloomberg News, describing LeEco's rise and subsequent issues. "We blindly sped ahead, and our cash demand ballooned. We got over-extended in our global strategy. At the same time, our capital and resources were in fact limited."

Since 2005, U.S. satellite manufacturers have been prohibited from hiring India's space agency to launch their equipment. Private American launch companies, such as SpaceX, are quite happy with this arrangement, which was intended to protect them. But the ban is not only wrong in principle -- it's actually impeding an exciting new American industry, according to Bloomberg. From the article: Last month, under pressure from satellite operators and manufacturers, U.S. trade officials began reviewing the decade-old policy. They should heed the pressure and overturn it. Emerging India may seem like an unlikely competitor for Silicon Valley rocket companies. Yet since 1969, the Indian Space Research Organization has consistently punched above its modest weight class, racking up a series of cheap and practical achievements. One of its most important feats was the development of the Polar Satellite Launch Vehicle, which was designed to carry satellites for monitoring agriculture and water resources, among other things. What made the PSLV unique was that it was designed to launch small satellites. And that's a good niche to occupy at the moment. Over the past few years, the small-satellite market has boomed as advances in miniaturization made space accessible to governments and companies that might never have considered it. The uses for such gear seem almost limitless, from shoebox-sized climate-monitoring devices to Samsung's plan to use thousands of micro-satellites to provide global internet access. Some $2.5 billion has been invested in the industry over the past decade. But getting all those satellites into space is now proving to be a problem, and U.S. policy is partly to blame.The article adds that apart from SpaceX, no other U.S. company has offered a rocket for small satellite launches, even though the demand has surged. This in turn, has resulted in American satellite companies with few choices. Though the U.S. Trade Representatives has offered occasional waivers from the moratorium, India continues to offer a far cheaper reliable option, and it's not even being considered.

To offer more context, India's Mars mission has a budget of $73 million -- making it far cheaper than comparable missions including NASA's $671 million Maven satellite. Further reading on Vox.com, "India's mission to Mars cost less than the movie Gravity."

An anonymous reader quotes a report from Ars Technica: The Department of Justice today sued DirecTV and its owner, ATT, saying the satellite TV company colluded with competitors during contentious negotiations to broadcast Los Angeles Dodgers games. Dodgers games have been blacked out in much of Los Angeles because pay-TV providers have been unwilling to pay the price demanded by SportsNet LA, the Dodgers channel operated by the baseball franchise and Time Warner Cable. But the DOJ's antitrust division placed the blame for this situation on ATT and DirecTV. In a complaint filed in U.S. District Court in California, it alleges that DirecTV was a "ringleader" in a coordinated scheme with cable companies Cox and Charter, according to a DOJ announcement. ATT completed its purchase of DirecTV in July 2015, but the complaint covers a dispute that began before the merger and continues to this day. The Dodgers channel owners offered carriage licenses to the pay-TV companies in January 2014, but the channel is still not available on DirecTV, Cox, or ATT's wireline TV service. (Games are now available on Charter, which purchased Time Warner Cable this year.) The lawsuit "alleges that DirecTV unlawfully exchanged competitively-sensitive information with Cox, Charter, and ATT during the companies' negotiations for the right to telecast the Dodgers Channel," the DOJ announcement said. "Specifically, the complaint alleges that DirecTV and each of these competitors agreed to and did exchange non-public information about their companies' ongoing negotiations to telecast the Dodgers Channel, as well as their companies' future plans to carry -- or not carry -- the channel." The companies used this strategy "to obtain bargaining leverage and to reduce the risk that they would lose subscribers if they decided not to carry the channel but a competitor chose to do so." The information these companies learned from each other "through these unlawful agreements" was a major factor in their decision not to carry the Dodgers channel, the complaint said. ATT said it will fight the lawsuit and blamed Time Warner Cable for charging unreasonably high prices. The asking price was reportedly about $5 a month per subscriber regardless of how many people watch the games.

An anonymous Slashdot reader quotes ComputerWorld: In the next decade, the mining industry may lose more than half of its jobs to automation, according to a new report... This industry is adopting self-driving trucks, automated loaders and automated drilling and tunnel-boring systems. It is also testing fully autonomous long-distance trains, which carry materials from the mine to a port...

A broader question is whether mining is a bellwether for other industries. There's no clear answer, but what Aaron Cosbey, a development economist and a report author, can say is this: "Where you can find robotic replacements for human labor you tend to do it." Cosbey estimates that automation will replace 40% to 80% of the workers at a mine...
Driverless technology can increase output up to 20%, while decreasing fuel consumption up to 15%, according to the article. "This will increase demand for people with IT skills who can set up and operate the automation systems -- but at far smaller numbers than the people automation displaces."

Comma.ai founder George Hotz, who has spent the good part of his past year criticizing competitors and their technologies, sent out a series of tweets Friday, saying that Comma.ai, a startup that aimed at offering semi-autonomous driving system, will be pulling out of the U.S. market in response to requests from federal regulators. From a Reuters report: The intervention, by the U.S. National Highway Traffic Safety Administration, came before Comma.ai began marketing its device. It is the latest signal that regulators want more control over the development and deployment of self-driving vehicle systems by vehicle manufacturers and suppliers, after a period in which they took a largely hands-off approach. The NHTSA on Friday disclosed an Oct. 27 letter to Comma.ai stating that the agency is investigating whether the company's device, called Comma One, complies with federal regulations. The letter and an accompanying special order demanded that Comma.ai provide the agency with information about the device and warned that the agency could prohibit the sale of the system if it were found to be defective.

It looks like we're going to have to wait even longer for CBS's upcoming Star Trek Discovery series, as the production's showrunner, Bryan Fuller, is stepping back. He will however still remain the show's executive producer. Variety reports: The decision was made late last week to hand the day-to-day showrunning reins to "Star Trek" exec producers Gretchen Berg and Aaron Harberts as "Discovery" gears up for the start of filming next month and a May 2017 premiere date. Fuller, who will remain an executive producer, will still be involved in breaking stories, and the show will continue to follow his vision for the universe that this latest "Trek" series will inhabit. Writer-director Akiva Goldsman is also expected to join "Discovery" in a top creative role. He's envisioned as serving as producing support for Berg and Harberts, Fuller and exec producer Alex Kurtzman as they juggle the demands of the series that CBS is counting on to be the marquee selling point for subscriptions to its CBS All Access SVOD service. Sources said there had been some strain between "Star Trek" producer CBS Television Studios and Fuller over the progress of production on the show, as Fuller is also juggling the final weeks of shooting and post-production duties on Starz's upcoming drama "American Gods" and prepping a reboot of "Amazing Stories" for NBC. Fuller has penned the first two scripts for "Discovery" and has hammered out the broader story arc and mythology for the new "Trek" realm. But it became clear that he couldn't devote the amount of time needed for "Discovery" to make its premiere date and with production scheduled to start in Toronto next month.