It's one of Madison, Wisconsin's three big "white flight" suburbs that have really expanded as Madison's demographics have shifted over the past twenty years (the two others are Fitchburg and Sun Prairie). The shooting happened at a string of offices just outside Madison city limits. Oddly enough, Middleton is the most techie of the three suburbs (odd because it's absolutely the farthest of any of them from the airport).
Not if you want to also do "streaming gaming". As for me, I'm happy I investing in MAME, Roms and standalone games early and often - the pay-as-you-go, loot box or online models seem like a PITA no one should have to deal with.
>> Investors and insiders have long cited Amazon's size and reach as reason to break the company up.
OK, I know journalists don't usually graduate at the top of the class, but it seems unlikely that people who own ("investors") or work for the company ("insiders") want Amazon broken up. I'd suspect the people who really want this to happen would be "competitors", "labor advocates" and most especially "attorneys".
Take a look at this analysis. It's for the similar attack on British Airways but it gives some more clues, such as corrupting a "standard, trusted 3rd party Javascript library" (like "modernizr"), and it also (through the path) suggests that there might be a vulnerable "CMS" on that machine (that could have let the hackers in).
It should also be pointed out that no one has heard a wiff of this through major news outlets because they've been consumed with made-for-TV hearings to appoint and/or tear down some guy to fill some other similar guy's post. It's almost like both sides of the aisle want that circus to avoid any light to shine on the bipartisan screw-the-little-guy crap (like this) they work out at the bar after the show is over for the day.
Now you've tumbled on a reason why a standing reward program has value to the company: they want the exploit info ASAP, and ASAP and "negotiate a contract" are on opposites sides of a time-to-fix spectrum.
>> having the hacker demonstrate the exploit to Apple, without revealing how the exploit works
I'm not sure if you're trolling, but in case you're not, I can tell you that just seeing someone exploit your code gives you a LOT of clues as to what the exploit actually is. As a software developer...I've been with >1 companies that get reporting researchers to show us the exploit (against heavily instrumented website/services/etc.) and then we've fixed it without paying/recognizing the researcher AT ALL. In these cases, having a standing reward system actually benefits the reporter, as in "I think I found some XSS vulnerabilities and I'd like to apply for the $1K XSS reward - can we agree to engage under this framework?"
>> I don't get my Weather information for the Weather channel anymore.
This is SlashDot. No one here even has the "Weather Channel" anymore: that went away (along with useless shit like ESPN) when we cut the cable years ago.
The latest models have red, yellow and green lights to let you know if your conversations align with acceptable domestic security guidelines. For example: Green: consuming Fortune 500 products, watching sports, discussing celebrities, Yellow: discussing taxes, social justice or foreign policy, Red: statements in support of fringe candidates (e.g., from Vermont), negative statements about taxes or fees, unflattering comments about incumbent politicians (or politicians from powerful families), discussion of election security or any foreign or domestic agency's influence on them, and citing of facts not previously vetted by a major TV news organization.
Get your smart speaker today, Citizen, for only 150 Visa credits!
>> Operations -- the actual running of buses and trains frequently enough to appeal to people with an alternative -- are perpetually starved for cash.
Here are some things to try (at least with bus systems): 1) Eliminate unions and pensions for drivers/maintenance. These are often quite expensive. 2) Thin the layers of management. Quite a few of these people exist for the purposes of fattening up their own pensions. 3) Optimize routes to actual use. Day-long routes are still quite common even though most of the time the busses are empty when the commute is not happening. 4) Replace the least-used bus routes with subsidized route sharing. Better service for customers, less fuel/pollution.
Urban above-ground trains are really quite pointless - see Seattle/Milwaukee/etc. but if you have a dense area subways are nice. (See DC, London, NYC, etc.) Here again, though, you can keep costs down by automating and avoiding staffing.
Let me know when you've tried all these and I'll be happy to help you get more cash!
Not quite. Back in the day, people's posts may have been moderated due to asshole-ism/name-calling/commercial-shilling, not the information they were conveying. The creepiness comes in when companies volunteer or invite regulation to start to nanny-izing posts based on the information (e.g., "fake news") they are conveying.
>> "intentionally stifling the free exchange of ideas on their platforms"
I like the 1990's-era hands-off, anything-goes approach to the Internet a lot better than creepy crap like this:
>> Facebook COO Sheryl Sandberg told the committee that the social media company is continuing to fight misinformation, fake news, and foreign interference
Slashdot Mirror
Did you miss Hillary's 2016 campaign then? (There's good reasons people are annoyed at both major parties.)
It's "rotate" not "roll" a key. Feel free to ask a tech before you write your next article.
It's one of Madison, Wisconsin's three big "white flight" suburbs that have really expanded as Madison's demographics have shifted over the past twenty years (the two others are Fitchburg and Sun Prairie). The shooting happened at a string of offices just outside Madison city limits. Oddly enough, Middleton is the most techie of the three suburbs (odd because it's absolutely the farthest of any of them from the airport).
Not if you want to also do "streaming gaming". As for me, I'm happy I investing in MAME, Roms and standalone games early and often - the pay-as-you-go, loot box or online models seem like a PITA no one should have to deal with.
>> Investors and insiders have long cited Amazon's size and reach as reason to break the company up.
OK, I know journalists don't usually graduate at the top of the class, but it seems unlikely that people who own ("investors") or work for the company ("insiders") want Amazon broken up. I'd suspect the people who really want this to happen would be "competitors", "labor advocates" and most especially "attorneys".
Take a look at this analysis. It's for the similar attack on British Airways but it gives some more clues, such as corrupting a "standard, trusted 3rd party Javascript library" (like "modernizr"), and it also (through the path) suggests that there might be a vulnerable "CMS" on that machine (that could have let the hackers in).
https://www.peerlyst.com/posts/inside-the-magecart-breach-of-british-airways-how-22-lines-of-code-claimed-380-000-victims-barrett-louie
Thank you for the link. It was much needed.
It should also be pointed out that no one has heard a wiff of this through major news outlets because they've been consumed with made-for-TV hearings to appoint and/or tear down some guy to fill some other similar guy's post. It's almost like both sides of the aisle want that circus to avoid any light to shine on the bipartisan screw-the-little-guy crap (like this) they work out at the bar after the show is over for the day.
Or it's trash.
Right.
>> few hours, with the total monetary negotiation taking not much longer
:)
You haven't ever negotiated a business contract, have you?
By Lazy Editors
Now you've tumbled on a reason why a standing reward program has value to the company: they want the exploit info ASAP, and ASAP and "negotiate a contract" are on opposites sides of a time-to-fix spectrum.
>> having the hacker demonstrate the exploit to Apple, without revealing how the exploit works
I'm not sure if you're trolling, but in case you're not, I can tell you that just seeing someone exploit your code gives you a LOT of clues as to what the exploit actually is. As a software developer...I've been with >1 companies that get reporting researchers to show us the exploit (against heavily instrumented website/services/etc.) and then we've fixed it without paying/recognizing the researcher AT ALL. In these cases, having a standing reward system actually benefits the reporter, as in "I think I found some XSS vulnerabilities and I'd like to apply for the $1K XSS reward - can we agree to engage under this framework?"
>> Apple Has (FINALLY) Started Paying Hackers for iPhone Exploits (,FOLLOWING THE FOOTSTEPS OF HUNDREDS OF OTHER TECH COMPANIES)
>> I don't get my Weather information for the Weather channel anymore.
This is SlashDot. No one here even has the "Weather Channel" anymore: that went away (along with useless shit like ESPN) when we cut the cable years ago.
Please also mandate/fund muncipal battery disposal drives; otherwise people will just take out the battery and toss separately.
>> The EU Could Vote To Wreck the Internet Tomorrow
Not unless it's Chrissy Teegan, or another starlet who regularly casts shade and claps back.
The latest models have red, yellow and green lights to let you know if your conversations align with acceptable domestic security guidelines. For example:
Green: consuming Fortune 500 products, watching sports, discussing celebrities, Yellow: discussing taxes, social justice or foreign policy, Red: statements in support of fringe candidates (e.g., from Vermont), negative statements about taxes or fees, unflattering comments about incumbent politicians (or politicians from powerful families), discussion of election security or any foreign or domestic agency's influence on them, and citing of facts not previously vetted by a major TV news organization.
Get your smart speaker today, Citizen, for only 150 Visa credits!
>> Operations -- the actual running of buses and trains frequently enough to appeal to people with an alternative -- are perpetually starved for cash.
Here are some things to try (at least with bus systems):
1) Eliminate unions and pensions for drivers/maintenance. These are often quite expensive.
2) Thin the layers of management. Quite a few of these people exist for the purposes of fattening up their own pensions.
3) Optimize routes to actual use. Day-long routes are still quite common even though most of the time the busses are empty when the commute is not happening.
4) Replace the least-used bus routes with subsidized route sharing. Better service for customers, less fuel/pollution.
Urban above-ground trains are really quite pointless - see Seattle/Milwaukee/etc. but if you have a dense area subways are nice. (See DC, London, NYC, etc.) Here again, though, you can keep costs down by automating and avoiding staffing.
Let me know when you've tried all these and I'll be happy to help you get more cash!
And open concept offices.
Since its unofficial tagline is, ya know, "spreadsheet online"
This is how you know Slashdot ain't really news for nerds anymore. Here are teh types of article that would be linked into TFsummary if it was:
https://www.darkreading.com/application-security/thoughts-on-the-latest-apache-struts-vulnerability-/a/d-id/1332716
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11776
You lost me.
Not quite. Back in the day, people's posts may have been moderated due to asshole-ism/name-calling/commercial-shilling, not the information they were conveying. The creepiness comes in when companies volunteer or invite regulation to start to nanny-izing posts based on the information (e.g., "fake news") they are conveying.
>> "intentionally stifling the free exchange of ideas on their platforms"
I like the 1990's-era hands-off, anything-goes approach to the Internet a lot better than creepy crap like this:
>> Facebook COO Sheryl Sandberg told the committee that the social media company is continuing to fight misinformation, fake news, and foreign interference