Slashdot

Syndicate content Slashdot
News for nerds, stuff that matters
Updated: 30 min 52 sec ago

British Companies Are Selling Advanced Spy Tech To Authoritarian Regimes

8/26/2016 6:00pm
An anonymous reader quotes a report from Motherboard: Since early 2015, over a dozen UK companies have been granted licenses to export powerful telecommunications interception technology to countries around the world, Motherboard has learned. Many of these exports include IMSI-catchers, devices which can monitor large numbers of mobile phones over broad areas. Some of the UK companies were given permission to export their products to authoritarian states such as Saudi Arabia, the United Arab Emirates, Turkey, and Egypt; countries with poor human rights records that have been well-documented to abuse surveillance technology. In 2015, the UK's Department for Business, Innovation and Skills (BIS) started publishing basic data about the exportation of telecommunications interception devices. Through the Freedom of Information Act, Motherboard obtained the names of companies that have applied for exportation licenses, as well as details on the technologies being shipped, including, in some cases, individual product names. The companies include a subsidiary of defense giant BAE Systems, as well as Pro-Solve International, ComsTrac, CellXion, Cobham, and Domo Tactical Communications (DTC). Many of these companies sell IMSI-catchers. IMSI-catchers, sometimes known as "Stingrays" after a particularly popular brand, are fake cell phone towers which force devices in their proximity to connect. In the data obtained by Motherboard, 33 licenses are explicitly marked as being for IMSI-catchers, including for export to Turkey and Indonesia. Other listings heavily suggest the export of IMSI-catchers too: one granted application to export to Iraq is for a "Wideband Passive GSM Monitoring System," which is a more technical description of what many IMSI-catchers do. In all, Motherboard received entries for 148 export license applications, from February 2015 to April 2016. A small number of the named companies do not provide interception capabilities, but defensive measures, for example to monitor the radio spectrum.

Read more of this story at Slashdot.

Hillary Clinton Used BleachBit To Wipe Emails

8/26/2016 5:20pm
An anonymous reader quotes a report from Neowin: The open-source disk cleaning application, BleachBit, got quite a decent ad pitch from the world of politics after it was revealed lawyers of the presidential hopeful, Hillary Clinton, used the software to wipe her email servers. Clinton is currently in hot water, being accused of using private servers for storing sensitive emails. "[South Carolina Representative, Trey Gowdy, spoke to Fox News about Hillary Clinton's lawyers using BleachBit to wipe the private servers. He said:] 'She and her lawyers had those emails deleted. And they didn't just push the delete button; they had them deleted where even God can't read them. They were using something called BleachBit. You don't use BleachBit for yoga emails or bridesmaids emails. When you're using BleachBit, it is something you really do not want the world to see.'" Two of the main features that are listed on the BleachBit website include "Shred files to hide their contents and prevent data recovery," and "Overwrite free disk space to hide previously deleted files." These two features would make it pretty difficult for anyone trying to recover the deleted emails. Slashdot reader ahziem adds: The IT team for presidential candidate Hillary Clinton used the open source cleaning software BleachBit to wipe systems "so even God couldn't read them," according to South Carolina Rep. Trey Gowdy on Fox News. His comments on the "drastic cyber-measure" were in response to the question of whether emails on her private Microsoft Exchange Server were simply about "yoga and wedding plans." Perhaps Clinton's team used an open-source application because, unlike proprietary applications, it can be audited, like for backdoors. In response to the Edward Snowden leaks in 2013, privacy expert Bruce Schneier advised in an article in which he stated he also uses BleachBit, "Closed-source software is easier for the NSA to backdoor than open-source software." Ironically, Schneier was writing to a non-governmental audience. Have any Slashdotters had any experience with BleachBit? Specifically, have you used it for erasing "yoga emails" or "bridesmaids emails?"

Read more of this story at Slashdot.

SpaceX Dragon Returns Home From ISS

8/26/2016 4:40pm
An anonymous reader quotes a report from Florida Today: A SpaceX Dragon capsule that helped prepare the International Space Station for future commercial astronaut flights has returned to Earth after a stay of more than month-long mission. A robotic arm released the unmanned capsule packed with 3,000 pounds of cargo at 6:11 a.m. EDT, then fired thrusters several times to move a safe distance away from the station orbiting about 250 miles up. The departure began a less than six-hour journey that culminated in a Pacific Ocean splashdown at 11:47 a.m. EDT, about 300 miles southwest of Baja, California. The Dragon launched from Cape Canaveral early July 18 on a Falcon 9 rocket and berthed at the station two days later. Among the cargo brought back from space Friday were a dozen mice from a Japanese science experiment -- the first brought home alive in a Dragon. Samples from mice euthanized as part of an experiment by pharmaceutical company Eli Lilly also were on board. Results were returned from an experiment that studied the behavior of heart cells in microgravity, and from research into the composition of microbes in the human digestive system, NASA said. Findings from both could help keep astronauts healthy during deep space exploration missions. SpaceX plans to launch a Falcon 9 rocket from Cape Canaveral Air Force Station next Saturday, Sept. 3.

Read more of this story at Slashdot.

Sprint Charging 'Unlimited' Users $20 More for Unthrottled Video

8/26/2016 4:01pm
Sprint has a new "unlimited" data plan for users that want to watch videos in full-HD (1080p) screen resolution. Dubbed "Unlimited Freedom Premium" plan, it offers the same features as the "Unlimited Freedom" plan with the bonus of allowing users to stream videos in full-HD. Also, it costs $20 extra. DSLReports points out the obvious:Last week we noted that Sprint unveiled its new Unlimited Freedom plan, which provides unlimited text, voice and data for $60 a month for one line, $40 a month for a second line, and $30 a month for every line thereafter (up to a maxiumum of 10). But the plan also, following on T-Mobile's heels, throttles all video by default to 480p, a move that has raised the hackles of net neutrality advocates.

Read more of this story at Slashdot.

Amazon Is Testing a 30-Hour, 75% Salary Workweek

8/26/2016 3:21pm
Amazon is planning a pilot program in which a select group of workers will need to work for 30 hours a week, instead of the usual 40 to 70 hours, and make 75 percent of the salary + benefits (alternate source). From the report:Currently, the pilot program will be small, consisting of a few dozen people. These teams will work on tech products within the human resources division of the company, working Monday through Thursday from 10 a.m. to 2 p.m., with additional flex hours. Their salaries will be lower than 40-hour workers, but they will have the option to transition to full-time if they choose. Team members will be hired from inside and outside the company. As of now, Amazon does not have plans to alter the 40-hour workweek on a companywide level, the spokesman said.

Read more of this story at Slashdot.

Belgians Are Hunting Books, Instead Of Pokemon

8/26/2016 2:42pm
An anonymous reader shares a Reuters report:Inspired by the success of Pokemon Go, a Belgian primary school headmaster has developed an online game for people to search for books instead of cartoon monsters, attracting tens of thousands of players in weeks. While with Pokemon Go, players use a mobile device's GPS and camera to track virtual creatures around town, Aveline Gregoire's version is played through a Facebook group called "Chasseurs de livres" ("Book hunters"). Players post pictures and hints about where they have hidden a book and others go to hunt them down. Once someone has finished reading a book, they "release" it back into the wild. "While I was arranging my library, I realized I didn't have enough space for all my books. Having played Pokemon Go with my kids, I had the idea of releasing the books into nature," Gregoire told Reuters. Though it was only set up a few weeks ago, more than 40,000 people are already signed up to Gregoire's Facebook group.

Read more of this story at Slashdot.

Alphabet's Nest Wants to Build a 'Citizen-Fueled' Power Plant

8/26/2016 2:00pm
Mark Chediak, reporting for Bloomberg:Alphabet Inc's Nest Labs is looking to enlist enough customers in California to free up as much power as a small natural gas-fired plant produces, helping alleviate potential energy shortages in the region following a massive gas leak that has restricted supplies. Nest, which supplies digital, wireless thermostats, is partnering with Edison International's Southern California Edison utility to get households enrolled in a state-established energy conservation program. The company wants to attract 50,000 customers through next summer that could shrink their total demand by as much as 50 megawatts when needed, Ben Bixby, Nest's director of energy businesses at Nest, said by phone. "We are building a citizen-fueled clean power plant," he said.

Read more of this story at Slashdot.

Dropbox Is Urging Users To Reset Their Passwords

8/26/2016 1:20pm
Dropbox is forcing a number of users to change their passwords after the cloud storage company found some account details linked to an old data breach. "The next time you visit dropbox.com, you may be asked to create a new password. We proactively initiated this password update prompt for Dropbox users who meet certain criteria," the company writes on its website. Fortune reports: The popular cloud storage said the move was related to the theft of an old set of Dropbox credentials, dating back to 2012. So the users the company has contacted are those who created Dropbox accounts before mid-2012 and have not updated their passwords since that time. Dropbox disclosed in July 2012 that some users were getting spammed, and the cause appeared to be the theft of usernames and passwords from other websites. As is often the case, some people reuse their usernames and passwords across different web services. (If it still needs saying, you really shouldn't reuse your passwords, ever.)

Read more of this story at Slashdot.

Robot Babies Not Effective Birth Control, Australian Study Finds

8/26/2016 12:40pm
An anonymous reader writes: Girls given imitation babies to look after in an effort to deter teenage pregnancy could actually be more likely to get pregnant, according to a study. Researchers in Australia found 8% of girls who used the dolls were expecting by the age of 20, compared with 4% of those who did not. The number of girls having at least one abortion was also higher among girls given the dolls: 9% compared to 6%. 'Baby Think It Over' dolls were used in a Virtual Infant Parenting (VIP) programme which began in 57 schools in Western Australia in 2003. During the three-year study, published in The Lancet, 1267 girls aged 13 to 15 used the simulators -- which need to be fed and changed, while 1567 learned the normal health curriculum. The idea originated in the United States and is used in 89 countries. Researchers from the Telethon Kids Institute in Western Australia are now warning that such programmes may be a waste of public money.

Read more of this story at Slashdot.

The Slashdot Interview With VideoLAN President and Lead VLC Developer Jean-Baptiste Kempf

8/26/2016 12:00pm
You asked, he answered! VideoLan President and Lead Developer of VLC Jean-Baptiste Kempf has responded to questions submitted by Slashdot readers. Read on to find out about the upcoming VideoLAN projects; how they keep VLC sustainable; what are some mistakes they wish they hadn't made; and what security challenges they face, among others!

Read more of this story at Slashdot.

Ask Slashdot: Do You Still Use Optical Media?

8/26/2016 11:19am
The other day at an event, public relation officials were handing out press kit (it usually contains everything the company announced, photos from the event, and contact information of the company) to journalists. When I reached office and opened the kit, I found a CD in it. Which was weird because it's been two to three years since I had a computer with an optical drive. And all these years I didn't need one. Which brings up the question: Does your work require dealing with CDs and DVDs anymore? An anonymous reader asks the same question: I still use optical discs for various backup purposes, but recently I developed doubts as to the reliability of the media to last a reasonable amount of time. I have read a review on Amazon of the TDK DVDs, in which somebody described losing 8000 (sic!) DVDs of data after 4 years of storage. I promptly canceled my purchase of TDKs. So, do you still use opticals for back-up -- Blu-Rays, DVDs, CDs? -- and if so, how do you go about it?I do buy Blu-Ray discs of movies, though. So my life isn't optical disc free yet. What about yours?

Read more of this story at Slashdot.

Second Confirmed Death In Japan Involving Pokemon Go

8/26/2016 10:45am
An anonymous reader writes: The Japan Times reports another death. This time a 20 year old woman has died after being hit by a car while riding her bicycle. The man driving the car claimed he was distracted changing the battery because it was nearly flat from playing Pokemon Go. Police have already charged him with negligence resulting in injury. The penalty for causing death is a maximum 7 years jail. The Japanese National Police agency said there have been 79 bicycle and car accidents linked to the game. Another death was reported yesterday

Read more of this story at Slashdot.

Facebook's WhatsApp Data Gambit Faces Federal Privacy Complaint

8/26/2016 10:05am
Sam Gustin, writing for Motherboard: Facebook's decision to begin harvesting data from its popular WhatsApp messaging service provoked a social media uproar on Thursday, and prompted leading privacy advocates to prepare a federal complaint accusing the tech titan of violating US law. On Thursday morning, WhatsApp, which for years has dined out on its reputation for privacy and security, announced that it would begin sharing user phone numbers with its Menlo Park-based parent company in an effort "to improve your Facebook ads and products experiences." Consumer privacy advocates denounced the move as a betrayal of WhatsApp's one billion users -- users who had been assured by the two companies that "nothing would change" about the messaging service's privacy practices after Facebook snapped up the startup for a whopping $19 billion in 2014. "WhatsApp users should be shocked and upset," Claire Gartland, Consumer Protection Counsel at the Electronic Privacy Information Center, a leading US consumer advocacy group, told Motherboard. "WhatsApp obtained one billion users by promising that it would protect user privacy. Both Facebook and WhatsApp made very public promises that the companies would maintain a separation. Those were the key selling points of the deal."

Read more of this story at Slashdot.

Amazon, NVIDIA and The CIA Want To Teach AI To Watch Us From Space

8/26/2016 9:00am
An anonymous reader quotes a report from MIT Technology Review: Satellite operator DigitalGlobe is teaming up with Amazon, the venture arm of the CIA, and NVIDIA to make computers watch the Earth from above and automatically map our roads, buildings, and piles of trash. MIT Technology Review reports: "In a joint project, DigitalGlobe today released satellite imagery depicting the whole of Rio de Janeiro to a resolution of 50 centimeters. The outlines of 200,000 buildings inside the city's roughly 1,900 square kilometers have been manually marked on the photos. The SpaceNet data set, as it is called, is intended to spark efforts to train machine-learning algorithms to interpret high-resolution satellite photos by themselves. DigitalGlobe says the SpaceNet data set should eventually include high-resolution images of half a million square kilometers of Earth, and that it will add annotations beyond just buildings. DigitalGlobe's data is much more detailed than publicly available satellite data such as NASA's, which typically has a resolution of tens of meters. Amazon will make the SpaceNet data available via its cloud computing service. Nvidia will provide tools to help machine-learning researchers train and test algorithms on the data, and CosmiQ Works, a division of the CIA's venture arm In-Q-Tel focused on space, is also supporting the project." "We need to develop new algorithms for this data," says senior vice president at DigitalGlobe, Tony Frazier. He goes on to say that health and aid programs are to benefit from software that is able to map roads, bridges and various other infrastructure. The CEO of Descartes Labs, Mark Johnson, a "startup that predicts crop yields from public satellite images," says the data that is collected "should be welcome to startups and researchers," according to MIT Technology Review. "Potential applications could include estimated economic output from activity in urban areas, or guiding city governments on how to improve services such as trash collections, he says."

Read more of this story at Slashdot.

Intel Launches Flurry of 3D NAND-Based SSDs For Consumer and Enterprise Markets

8/26/2016 6:00am
MojoKid writes: Intel launched a handful of new SSD products today that cover a broad spectrum of applications and employ 3D NAND technology. The SSD 600p Series is offered in four capacities ranging from 128GB, to 256GB, 512GB and 1TB. The drivers are targeted at consumer desktops and notebooks and are available in the M.2 form-factor. The entry-level 128GB model offers sequential reads and writes of up to 770 MB/sec and 450 MB/sec respectively. At higher densities, the multi-channel 1TB model offers sequential reads and writes that jump to 1,800 MB/sec and 560 MB/sec respectively. The 128GB SSD 600p weighs in at $69, while the 1TB model is priced at $359, or about .36 cents per GiB. For the data center, Intel has also introduced the DC P3520 and DC S3520 Series SSDs in 2.5-inch and PCIe half-height card form-factors. Available in 450GB to 2TB capacities, the range-topping 2TB model offers random reads/writes of 1,700 MB/sec and 1,350 MB/sec respectively. Finally, Intel launched the SSD E 6000p (PCIe M.2) and SSD E 5420s Series (SATA). The former supports Core vPro processors and is targeted at point-of-sale systems and digital signage. The latter is aimed at helping customers ease the transition from HDDs to SSDs in IoT applications.

Read more of this story at Slashdot.

NASA's Voyager 2 Flew By Saturn 35 Years Ago Today

8/26/2016 3:00am
An anonymous reader quotes a report from Space.com: Thirty-five years ago today, a NASA spacecraft got an up-close look at beautiful, enigmatic Saturn. On Aug. 25, 1981, the Voyager 2 probe zoomed within 26,000 miles (41,000 kilometers) of the ringed planet's cloud tops. The discoveries made by Voyager 2 -- and by its twin, Voyager 1, which had flown past Saturn nine months earlier -- reshaped scientists' understanding of the Saturn system and planted the seed for NASA's Cassini mission, which began orbiting the ringed planet in 2004, NASA officials said. Voyager 1 and Voyager 2 launched a few weeks apart in 1977, tasked with performing a "grand tour" of the solar system's big planets -- Jupiter, Saturn, Uranus and Neptune. The two spacecraft accomplished that goal, eyeing all four gaseous worlds up close, and also studying 48 of their moons. (Voyager 1 flew past Jupiter and Saturn, while Voyager 2 had close encounters with all four planets.) The Voyagers weren't the first spacecraft to fly by Saturn; that distinction belongs to NASA's Pioneer 11 probe, which did so in 1979. But the Voyagers broke a lot of new ground; they discovered four new Saturn moons, for example, and revealed an incredible diversity of landscapes on satellites such as Dione, Tethys and Iapetus, NASA officials said. August 25th appears to be a good day for nerds. You can view some out-of-this-world photos from NASA's Voyager 1 and 2 probes here.

Read more of this story at Slashdot.

Linus on Linux's 25th Birthday

8/25/2016 11:30pm
The creator of Linux, Linus Torvalds, posted his famous message announcing Linux on August 25, 1991, claiming that it was "just a hobby, won't be big and professional like gnu." ZDNet's Steven J. Vaughan-Nichols caught up with Linus Torvalds and talked about Linux's origins in a series of interviews: "SJVN: What's Linux real birthday? You're the proud papa, when do you think it was? When you sent out the newsgroup post to the Minix newsgroup on August 25, 1991? When you sent out the 0.01 release to a few friends? LT: I think both of them are valid birthdays. The first newsgroup post is more public (August 25), and you can find it with headers giving date and time and everything. In contrast, I don't think the 0.01 release was ever announced in any public setting (only in private to a few people who had shown interest, and I don't think any of those emails survived). These days the way to find the 0.01 date (September 17) is to go and look at the dates of the files in the tar-file that still remains. So, both of them work for me. Or either. And, by the way, some people will argue for yet other days. For example, the earliest public semi-mention of Linux was July 3: that was the first time I asked for some POSIX docs publicly on the minix newsgroup and mentioned I was working on a project (but didn't name it). And at the other end, October 5 was the first time I actually publicly announced a Linux version: 'version 0.02 (+1 (very small) patch already).' So you might have to buy four cakes if you want to cover all the eventualities." Vaughan-Nichols goes on to pick Linus' brain about what he was doing when he created Linux. In honor of Linux's 25th birthday today, let's all sing happy birthday... 1... 2... 3...

Read more of this story at Slashdot.

The Big Short: Security Flaws Fuel Bet Against St. Jude

8/25/2016 9:25pm
chicksdaddy writes: "Call it The Big Short -- or maybe just the medical device industry's 'Shot Heard Round The World': a report from Muddy Waters Research recommends that its readers bet against (or 'short') St. Jude Medical after learning of serious security vulnerabilities in a range of the company's implantable cardiac devices," The Security Ledger reports. "The Muddy Waters report on St. Jude's set off a steep sell off in St. Jude Medical's stock, which finished the day down 5%, helping to push down medical stocks overall. The report cites the 'strong possibility that close to half of STJ's revenue is about to disappear for approximately two years' as a result of 'product safety' issues stemming from remotely exploitable vulnerabilities in STJ's pacemakers, implantable cardioverter defibrillator (ICD), and cardiac resynchronization therapy (CRT) devices. The vulnerabilities are linked to St. Jude's Merlin at home remote patient management platform, said Muddy Waters. The firm cited research by MedSec Holdings Ltd., a cybersecurity research firm that identified the vulnerabilities in St. Jude's ecosystem. Muddy Waters said that the affected products should be recalled until the vulnerabilities are fixed. In an e-mail statement to Security Ledger, St. Jude's Chief Technology Officer, Phil Ebeling, called the allegations 'absolutely untrue.' 'There are several layers of security measures in place. We conduct security assessments on an ongoing basis and work with external experts specifically on Merlin at home and on all our devices,' Ebeling said." More controversial: MedSec CEO Justine Bone acknowledged in an interview with Bloomberg that her company did not first reach out to St. Jude to provide them with information on the security holes before working with Muddy Waters. Information security experts who have worked with the medical device industry to improve security expressed confusion and dismay. "If safety was the goal then I think (MedSec's) execution was poor," said Joshua Corman of The Atlantic Institute and I Am The Cavalry. "And if profit was the goal it may come at the cost of safety. It seems like a high stakes game that people may live to regret."

Read more of this story at Slashdot.

US Unveils Charges Against KickassTorrents, Names Two More Defendants

8/25/2016 8:45pm
A total of three men are said to be operators of file-sharing site KickassTorrents (KAT), according to U.S. prosecutors. Last month, federal authorities arrested the 30-year-old Ukrainian mastermind of KAT, Artem Vaulin, and formally charged him with one count of conspiracy to commit criminal copyright infringement, one count of conspiracy to commit money laundering, and two counts of criminal copyright infringement. Two other Ukrainians were named in the new indictment (PDF): Levgen (Eugene) Kutsenko and Oleksander (Alex) Radostin. While only Vaulin has been arrested, bench warrants have been issue for the arrest of all three men. Ars Technica reports: "Prosecutors say the three men developed and maintained the site together and used it to 'generate millions of dollars from the unlawful distribution of copyright-protected media, including movies, [...] television shows, music, video games, computer software, and electronic books.' They gave out 'Reputation' and 'User Achievement' awards to users who uploaded the most popular files, including a special award for users who had uploaded more than 1,000 torrents. The indictment presents a selection of the evidence that the government intends to use to convict the men, and it isn't just simple downloads of the copyrighted movies. The government combed through Vaulin's e-mails and traced the bitcoins that were given to him via a 'donation' button."

Read more of this story at Slashdot.

Apple Patenting a Way To Collect Fingerprints, Photos of Thieves

8/25/2016 8:05pm
An anonymous reader quotes a report from Apple Insider: As published by the U.S. Patent and Trademark Office, Apple's invention covering "Biometric capture for unauthorized user identification" details the simple but brilliant -- and legally fuzzy -- idea of using an iPhone or iPad's Touch ID module, camera and other sensors to capture and store information about a potential thief. Apple's patent is also governed by device triggers, though different constraints might be applied to unauthorized user data aggregation. For example, in one embodiment a single failed authentication triggers the immediate capture of fingerprint data and a picture of the user. In other cases, the device might be configured to evaluate the factors that ultimately trigger biometric capture based on a set of defaults defined by internal security protocols or the user. Interestingly, the patent application mentions machine learning as a potential solution for deciding when to capture biometric data and how to manage it. Other data can augment the biometric information, for example time stamps, device location, speed, air pressure, audio data and more, all collected and logged as background operations. The deemed unauthorized user's data is then either stored locally on the device or sent to a remote server for further evaluation.

Read more of this story at Slashdot.

novalug.com