The problem with chips (EMV or RFID) is that the banks are pretending they're "secure" so any charge done by EMV/RFID is actually yours unless you can prove otherwise. Sure, the merchant will still eat the charges but it's a heck of a lot harder to dispute than a swipe.
Soon all those Windows vulnerabilities will be available on Linux too. Do they allow you to compile from source at least or is it a closed binary that needs root rights?
Regards the fraud, the statement was not about whether or not the merchant lost information on chip vs swipe, the duped cardholder still gets to charge back and the merchants still eat the full losses unless you are 'EMV certified' which is almost impossible to get (even with an EMV reader - see here: http://arstechnica.com/busines...).
The merchant is out of the product and fees regardless of a charge back being chip or swipe but the overhead of maintaining EMV connections, certifications, new terminals, technicians, it's simply not worth it to the retailers (EMV is only profitable to the banks and has seen serious holes poked at before they even made these card with chips in them). Although I've heard now card companies are charging EMV non-compliance fees - you get slightly higher fees if you're not EMV compliant. It's a complete money grab for a broken system, EMV chips can be quite successfully cloned.
Yes, they can and do. There are portions they can't store (your PIN) but your account number and name can be stored and used. MasterCard and Amex provide feeds of aggregate data and Oracle does too aggregate and sell transaction information.
1) wrong - the chip contains the same information as the mag stripe in unencrypted form and is just as easy to read out. Many large chains will read that info to match you against their databases for marketing purposes just like they do for magstripes (there was never any reason to keep track of any card info). I work with some small retailers, the chip continues to work even when their internet is down, the full info needed for a transaction resides on their POS, chip or swipe - unencrypted and employee accessible.
The only difference is that now the retailer is responsible for all losses and fraud committed with chip cards. This is a big reason retailers want you to continue swiping, a fraudulent swipe is at the loss of the banks, chip card fraud which is just as easy is at the loss of a retailer unless you can prove the chip card was fraudulent.
2) In many cases the chip won't work. If there is a mismatch in your payment processor configuration with what the chip or bank expects, it just doesn't let you swipe or chip unless you chip 3 times in a row. I have a business card which I requested to be fully encrypted (so it doesn't have the unencrypted data). The card doesn't work at large retailers like WalMart, Home Depot because they only use unencrypted data.
3) yes. But most retailers aren't willing to spend $1200 on the top of the line reader which is the cost (shakedown) a lot of payment processors are charging for an upgrade. Many of those don't allow BYOD so unless you're willing to switch banks, you're SOL, just upgrading to the cheapest chip reader costs $250 and up.
Most drunks are indeed on the lower end of the social curves, they spent all their money on booze and rarely if ever get caught. Most other people getting caught don't even recognize they are impaired, the limits are set so low in my state that you could get arrested after a single apple cider.
That's how DUI lawyers make their money though, you pay them $2k and you're pretty much off the hook if it's your first offense because there are so many loopholes and problems with the system. Second offenses will net you a 2y record and require state-sponsored religious classes (10 step program).
There have been plenty of improvements over the last few years, several covered here on Slashdot, they improve lifetime, storage capacity and safety usually by "incremental" changes, but these changes are happening at break neck speeds, no traditional factory, once operational, can catch up.
The only question is whether they will implement them right away (expensive short term but worth it long term) by modularizing their facility so changes can be implemented to the process or go for the quarterly profit and produce the cheapest possible battery.
What exactly is wrong about publishing everything? The CC should've been reported, cancelled and identity theft insurance provided the minute the DNC knew about the leak. The timing may be convenient but they gave them time to notify their customers, fix their infrastructure etc - had they published immediate, people like you would've been complaining about irresponsibility.
The fact is, the leaks happened. Nobody will die from it unlike Snowden's leak where full publish would've meant certain death to informants. It's a business hack vs a military intelligence hack. Nobody dies when Target loses CC, nobody dies when Microsoft loses source code.
I didn't get infected (exclusively Linux and a few Mac since 1995) but I got several attempts of sites downloading Windows scripts/binaries, some weird interaction with a custom Chromium build. I reported them to Google and submitted the sample to a few AV vendors, nobody cares, large sites (think CNN, WaPo,...) had the same ads attempting the same thing for weeks on end and the download never got recognized by AV. I stopped caring too, the ad sellers sell ads and that's all they care about. AV companies only care about the big threats because scary sells, some custom package that affects a few dozen of their customers doesn't matter.
No, we just end up with these large corporations splitting up in entities that are harder to control (and tax). Microsoft will just transfer it's "data assets" to Microsoft Farawayistan just like it does with it's taxes to Microsoft Ireland. We may end up with all of the major data centers in South America, Japan and Eastern Europe and thus a shift of both tech, brains and money to countries that don't put up with idiotic lawmakers.
The Hyperloop resembles a vactrain system but operates at approximately one millibar (100 Pa) of pressure. That is stratosphere-level vacuum where jet engines no longer work.
According to the Hyperloop people, the vacuum will be complete. Equivalent to the vacuum in outer space. If it were just a very light vacuum, it'd be cheaper to just not have the tubes and run a regular maglev.
A crash or compromise of the internal vehicle would expose the occupants to the vacuum, a crash or compromise of the outer shell would cause a rush of atmospheric air at the speed of sound to hit the vehicle. That is to say given you can even plausibly get a vacuum that large. It hasn't been done before and requires a lot of engineering including vacuum seals that don't even exist yet. The current design as marketed doesn't even account for the steel tubes expanding and contracting.
Doesn't matter which cinema you go to, with the right equipment your experience at home will be way better and cheaper. At the theater even the most silent sound has to overpower all chatter and noise from the ~100-400 people and the 4K image has to be projected onto a screen about 5-10x as large as your home, lowering the DPI significantly (so your comparative resolution is about 480-960p). Additionally the majority of people is sitting either in front or behind you causing continuous interruptions to your "experience" from both the audio and video perspective.
The key to resolving piracy is the Netflix model. I don't need to pirate if I have it available at low cost.
Isn't it obstruction if you prevent an officer from making an arrest? So if you prevent an officer from arresting you because you're not buying his coke voluntarily, it's obstruction but if you do buy the coke voluntarily it's not entrapment?
They just hiked rates on their plans and are kicking their less profitable customers out. They haven't invested in new technology or speed increases for decades only begrudgingly implementing 3G speeds and then marketing it as 4G.
Mayer has made herself unemployable by running this company further into the ground. Obviously she is going to stay until someone gives her enough money to quit, where else would she go? Perhaps a bid for republican nomi... oh...
Whose vote and whose people? The US elections are ran and decided by the ultra-rich. The Koch brothers and similar donors on one end and people like Zuckerberg, Clinton and Obama on the other.
The problem with chips (EMV or RFID) is that the banks are pretending they're "secure" so any charge done by EMV/RFID is actually yours unless you can prove otherwise. Sure, the merchant will still eat the charges but it's a heck of a lot harder to dispute than a swipe.
There is no risk to the bank either, only the merchants get to eat the fraud.
Soon all those Windows vulnerabilities will be available on Linux too. Do they allow you to compile from source at least or is it a closed binary that needs root rights?
Lettuce is easy to grow (unless you have rabbits in your garden), it seems the thing can plant pretty much anything side by side.
Regards the fraud, the statement was not about whether or not the merchant lost information on chip vs swipe, the duped cardholder still gets to charge back and the merchants still eat the full losses unless you are 'EMV certified' which is almost impossible to get (even with an EMV reader - see here: http://arstechnica.com/busines...).
The merchant is out of the product and fees regardless of a charge back being chip or swipe but the overhead of maintaining EMV connections, certifications, new terminals, technicians, it's simply not worth it to the retailers (EMV is only profitable to the banks and has seen serious holes poked at before they even made these card with chips in them). Although I've heard now card companies are charging EMV non-compliance fees - you get slightly higher fees if you're not EMV compliant. It's a complete money grab for a broken system, EMV chips can be quite successfully cloned.
https://www.quora.com/Can-busi...
Yes, they can and do. There are portions they can't store (your PIN) but your account number and name can be stored and used. MasterCard and Amex provide feeds of aggregate data and Oracle does too aggregate and sell transaction information.
1) wrong - the chip contains the same information as the mag stripe in unencrypted form and is just as easy to read out. Many large chains will read that info to match you against their databases for marketing purposes just like they do for magstripes (there was never any reason to keep track of any card info). I work with some small retailers, the chip continues to work even when their internet is down, the full info needed for a transaction resides on their POS, chip or swipe - unencrypted and employee accessible.
The only difference is that now the retailer is responsible for all losses and fraud committed with chip cards. This is a big reason retailers want you to continue swiping, a fraudulent swipe is at the loss of the banks, chip card fraud which is just as easy is at the loss of a retailer unless you can prove the chip card was fraudulent.
2) In many cases the chip won't work. If there is a mismatch in your payment processor configuration with what the chip or bank expects, it just doesn't let you swipe or chip unless you chip 3 times in a row. I have a business card which I requested to be fully encrypted (so it doesn't have the unencrypted data). The card doesn't work at large retailers like WalMart, Home Depot because they only use unencrypted data.
3) yes. But most retailers aren't willing to spend $1200 on the top of the line reader which is the cost (shakedown) a lot of payment processors are charging for an upgrade. Many of those don't allow BYOD so unless you're willing to switch banks, you're SOL, just upgrading to the cheapest chip reader costs $250 and up.
Most drunks are indeed on the lower end of the social curves, they spent all their money on booze and rarely if ever get caught. Most other people getting caught don't even recognize they are impaired, the limits are set so low in my state that you could get arrested after a single apple cider.
That's how DUI lawyers make their money though, you pay them $2k and you're pretty much off the hook if it's your first offense because there are so many loopholes and problems with the system. Second offenses will net you a 2y record and require state-sponsored religious classes (10 step program).
There have been plenty of improvements over the last few years, several covered here on Slashdot, they improve lifetime, storage capacity and safety usually by "incremental" changes, but these changes are happening at break neck speeds, no traditional factory, once operational, can catch up.
The only question is whether they will implement them right away (expensive short term but worth it long term) by modularizing their facility so changes can be implemented to the process or go for the quarterly profit and produce the cheapest possible battery.
What exactly is wrong about publishing everything? The CC should've been reported, cancelled and identity theft insurance provided the minute the DNC knew about the leak. The timing may be convenient but they gave them time to notify their customers, fix their infrastructure etc - had they published immediate, people like you would've been complaining about irresponsibility.
The fact is, the leaks happened. Nobody will die from it unlike Snowden's leak where full publish would've meant certain death to informants. It's a business hack vs a military intelligence hack. Nobody dies when Target loses CC, nobody dies when Microsoft loses source code.
I didn't get infected (exclusively Linux and a few Mac since 1995) but I got several attempts of sites downloading Windows scripts/binaries, some weird interaction with a custom Chromium build. I reported them to Google and submitted the sample to a few AV vendors, nobody cares, large sites (think CNN, WaPo, ...) had the same ads attempting the same thing for weeks on end and the download never got recognized by AV. I stopped caring too, the ad sellers sell ads and that's all they care about. AV companies only care about the big threats because scary sells, some custom package that affects a few dozen of their customers doesn't matter.
No, we just end up with these large corporations splitting up in entities that are harder to control (and tax). Microsoft will just transfer it's "data assets" to Microsoft Farawayistan just like it does with it's taxes to Microsoft Ireland. We may end up with all of the major data centers in South America, Japan and Eastern Europe and thus a shift of both tech, brains and money to countries that don't put up with idiotic lawmakers.
The Hyperloop resembles a vactrain system but operates at approximately one millibar (100 Pa) of pressure. That is stratosphere-level vacuum where jet engines no longer work.
According to the Hyperloop people, the vacuum will be complete. Equivalent to the vacuum in outer space. If it were just a very light vacuum, it'd be cheaper to just not have the tubes and run a regular maglev.
A crash or compromise of the internal vehicle would expose the occupants to the vacuum, a crash or compromise of the outer shell would cause a rush of atmospheric air at the speed of sound to hit the vehicle. That is to say given you can even plausibly get a vacuum that large. It hasn't been done before and requires a lot of engineering including vacuum seals that don't even exist yet. The current design as marketed doesn't even account for the steel tubes expanding and contracting.
Doesn't matter which cinema you go to, with the right equipment your experience at home will be way better and cheaper. At the theater even the most silent sound has to overpower all chatter and noise from the ~100-400 people and the 4K image has to be projected onto a screen about 5-10x as large as your home, lowering the DPI significantly (so your comparative resolution is about 480-960p). Additionally the majority of people is sitting either in front or behind you causing continuous interruptions to your "experience" from both the audio and video perspective.
The key to resolving piracy is the Netflix model. I don't need to pirate if I have it available at low cost.
I wonder if they copied the UEFI as well, if so, this could be a cheap Mac clone (given it doesn't have yesteryear's wifi and Bluetooth).
Europe has a better UBI than the US. In the US you're still expected to work at least once in a while, in return here in the US we pay way less taxes.
You work 7 days a week? Many people, especially millennials and beyond barely work part time.
Isn't it obstruction if you prevent an officer from making an arrest? So if you prevent an officer from arresting you because you're not buying his coke voluntarily, it's obstruction but if you do buy the coke voluntarily it's not entrapment?
Yahoo went the other way, they got fatter by buying 50+ startup companies and trying to fold them into Yahoo (Tumblr for 1B)
They just hiked rates on their plans and are kicking their less profitable customers out. They haven't invested in new technology or speed increases for decades only begrudgingly implementing 3G speeds and then marketing it as 4G.
Mayer has made herself unemployable by running this company further into the ground. Obviously she is going to stay until someone gives her enough money to quit, where else would she go? Perhaps a bid for republican nomi... oh...
DRM in Linux was an acronym before Windows and the MPAA started controlling what you can and can't see on your computer.
Whose vote and whose people? The US elections are ran and decided by the ultra-rich. The Koch brothers and similar donors on one end and people like Zuckerberg, Clinton and Obama on the other.