Sorry, you need to enable JavaScript to visit this website.

Slashdot

Syndicate content Slashdot
News for nerds, stuff that matters
Updated: 12 min 21 sec ago

Report Claims That 18 Nation's Elections Were Impacted By Social Engineering Last Year

Fri, 17/11/2017 - 2:05am
sqorbit writes: Independent watchdog group Freedom House released a report that claims that 18 nation's elections were "hacked." Of the 65 countries that Freedom House monitors, 30 appear to be using social media in order to affect elections by attempting to control online discussions. The report covers fake news posts, paid online opinion writers and trolling tactics. Other items in the report speak to online censorship and VPN blocking that blocks information within countries to interfere with elections. The report says net freedom could be aided by: large-scale programs that showed people how to spot fake news; putting tight controls on political adverts; and making social media giants do more to remove bots and tune algorithms to be more objective.

Read more of this story at Slashdot.

Bluetooth Hack Affects 20 Million Amazon Echo, Google Home Devices

Fri, 17/11/2017 - 1:25am
In September, security researchers discovered eight vulnerabilities -- codenamed collectively as BlueBorne -- in the Bluetooth implementations used by over 5.3 billion devices. We have now learned that an estimated 20 million Amazon Echo and Google Home devices are also vulnerable to attacks leveraging the BlueBorne vulnerabilities. The Hacker News reports: Amazon Echo is affected by the following two vulnerabilities: a remote code execution vulnerability in the Linux kernel (CVE-2017-1000251); and an information disclosure flaw in the SDP server (CVE-2017-1000250). Since different Echo's variants use different operating systems, other Echo devices are affected by either the vulnerabilities found in Linux or Android. Whereas, Google Home devices are affected by one vulnerability: information disclosure vulnerability in Android's Bluetooth stack (CVE-2017-0785). This Android flaw can also be exploited to cause a denial-of-service (DoS) condition. Since Bluetooth cannot be disabled on either of the voice-activated personal assistants, attackers within the range of the affected device can easily launch an attack. The security firm [Armis, who disclosed the issue] notified both Amazon and Google about its findings, and both companies have released patches and issued automatic updates for the Amazon Echo and Google Home that fixes the BlueBorne attacks.

Read more of this story at Slashdot.

Virgin Hyperloop One Eyes India For Possible High-Speed Routes

Fri, 17/11/2017 - 12:45am
India is officially being added to the list of nations that have expressed interest in near-supersonic, tube-based travel. Virgin Hyperloop One "signed agreements with the governments of Maharashtra and Karnataka to begin studying the impact of a hyperloop in the region," reports The Verge. "The feasibility studies have implications for India's giant cities like Mumbai and Bangalore, as well as fast-growing urban centers like Pune and Nagpur." From the report: The agreements are signs that despite its lack of a commercial product or human-ready testing, Virgin Hyperloop One has shown a tenacity for securing agreements with willing government partners. The company recently announced 10 winning submissions in a long-running contest to find what it believes to be the best places to build the first hyperloop routes in the world. Ten teams across five countries (Mexico, India, the United States, the United Kingdom, and Canada) were picked from the original 2,600 submissions, and the routes range in size from about 200 to nearly 700 miles, depending on the location. Virgin Hyperloop One hasn't specified the length of the routes it would build in India -- to be sure, it remains possible that none of these proposed routes get built -- but it did tease some of the possibilities in terms of reduction in travel time. For example, it would take just 14 minutes to travel between Mumbai and the fast-growing city of Pune, a journey that currently takes up to three hours by car. Also, it could look at connecting Nagpur, which is in the easternmost part of Maharashtra, with Mumbai and Pune to vastly improve passenger and freight transportation.

Read more of this story at Slashdot.

FCC Repeals Decades-Old Rules Blocking Broadcast Media Mergers

Fri, 17/11/2017 - 12:03am
An anonymous reader quotes a report from The Washington Post (Warning: source may be paywalled; alternative source): Federal regulators rolled back decades-old rules on Thursday, making it far easier for media outlets to be bought and sold -- potentially leading to more newspapers, radio stations and television broadcasters being owned by a handful of companies. The regulations, eliminated in a 3-to-2 vote by the Federal Communications Commission, were first put in place in the 1970s to ensure that a diversity of voices and opinions could be heard on the air or in print. But now those rules represent a threat to small outlets that are struggling to survive in a vastly different media world, according to FCC Chairman Ajit Pai. One long-standing rule repealed Thursday prevented one company in a given media market from owning both a daily newspaper and a TV station. Another rule blocked TV stations in the same market from merging with each other if the combination would leave fewer than eight independently owned stations. The agency also took aim at rules restricting the number of TV and radio stations that any media company could simultaneously own in a single market. A major beneficiary of the deregulatory moves, analysts say, is Sinclair, a conservative broadcasting company that is seeking to buy up Tribune Media for $3.9 billion.

Read more of this story at Slashdot.

China Builds World's Fastest Hypersonic Wind Tunnel To Simulate Flight At 27,000 MPH

Thu, 16/11/2017 - 11:20pm
schwit1 quotes a report from South China Morning Post: China is building the world's fastest wind tunnel to simulate hypersonic flight at speeds of up to 12 kilometers per second (~27,000 miles per hour). Zhao Wei, a senior scientist working on the project, said researchers aimed to have the facility up and running by around 2020 to meet the pressing demand of China's hypersonic weapon development program. "It will boost the engineering application of hypersonic technology, mostly in military sectors, by duplicating the environment of extreme hypersonic flights, so problems can be discovered and solved on the ground," said Zhao. The world's most powerful wind tunnel at present is America's LENX-X facility in Buffalo, New York state, which operates at speeds of up to 10 kilometers per second -- 30 times the speed of sound. Hypersonic aircraft are defined as vehicles that travel at speeds of Mach 5, five times the speed of sound, or above. In the new tunnel there will be a test chamber with room for relatively large aircraft models with a wing span of almost three meters. To generate an airflow at extremely high speeds, the researchers will detonate several tubes containing a mixture of oxygen, hydrogen and nitrogen gases to create a series of explosions that can discharge one gigawatt of power within a split second, according to Zhao. The shock waves, channelled into the test chamber through a metallic tunnel, will envelope the prototype vehicle and increase the temperature over its body to 8,000 Kelvins, or 7,727 degrees Celsius, Zhao said. The new tunnel would also be used to test the scramjet, a new type of jet engine designed specifically for hypersonic flights. Traditional jet engines are not capable of handling air flows at such speeds.

Read more of this story at Slashdot.

Jack Dorsey Responds To Serial Killer Who Found His Victims Through Suicidal Twitter Posts

Thu, 16/11/2017 - 10:40pm
AmiMoJo shares a report from NHK WORLD: Twitter's CEO is reacting to a grisly case in Japan where a suspected serial killer allegedly found his victims through their suicidal posts on the social media platform. In an interview with NHK, Jack Dorsey said it is unrealistic and impossible to remove suicidal tweets. But he said he hoped Twitter could become a tool for prevention. Last month, the dismembered bodies of 9 people were found in 27-year-old Takahiro Shiraishi's apartment near Tokyo. Police say he admitted to the killings. They believe he preyed on people who posted about wanting to kill themselves on Twitter. Recently, Twitter updated its rules regarding posts about self-harm: "You may not promote or encourage suicide or self-harm. When we receive reports that a person is threatening suicide or self-harm, we may take a number of steps to assist them, such as reaching out to that person and providing resources such as contact information for our mental health partners."

Read more of this story at Slashdot.

New EU Consumer Protection Law Contains a Vague Website Blocking Clause

Thu, 16/11/2017 - 10:00pm
An anonymous reader quotes a report from Bleeping Computer: The European Union (EU) has voted on Tuesday, November 14, to pass the new Consumer Protection Cooperation regulation, a new EU-wide applicable law that gives extra power to national consumer protection agencies, but which also contains a vaguely worded clause that also grants them the power to block and take down websites without judicial oversight. The new law "establishes overreaching Internet blocking measures that are neither proportionate nor suitable for the goal of protecting consumers and come without mandatory judicial oversight," Member of the European Parliament Julia Reda said in a speech in the European Parliament Plenary during a last ditch effort to amend the law. "According to the new rules, national consumer protection authorities can order any unspecified third party to block access to websites without requiring judicial authorization," Reda added later in the day on her blog. This new law is an EU regulation and not a directive, meaning its obligatory for all EU states, which do not have to individually adopt it.

Read more of this story at Slashdot.

Federal Extreme Vetting Plan Castigated By Tech Experts

Thu, 16/11/2017 - 9:15pm
An anonymous reader shares an Associated Press report: Leading researchers castigated a federal plan that would use artificial intelligence methods to scrutinize immigrants and visa applicants, saying it is unworkable as written and likely to be "inaccurate and biased" if deployed. The experts, a group of more than 50 computer and data scientists, mathematicians and other specialists in automated decision-making, urged the Department of Homeland Security to abandon the project, dubbed the "Extreme Vetting Initiative." That plan has its roots in President Donald Trump's repeated pledge during the 2016 campaign to subject immigrants seeking admission to the United States to more intense ideological scrutiny -- or, as he put it, "extreme vetting." Over the summer, DHS published a "statement of objectives" for a system that would use computer algorithms to scan social media and other material in order to automatically flag undesirable entrants -- and to continuously scan the activities of those allowed into the U.S.

Read more of this story at Slashdot.

Firefox Will Block Navigational Data URIs as Part of an Anti-Phishing Feature

Thu, 16/11/2017 - 8:35pm
Catalin Cimpanu, writing for BleepingComputer: Mozilla will soon block the loading of data URIs in the Firefox navigation bar as part of a crackdown on phishing sites that abuse this protocol. The data: URI scheme (RFC 2397) was deployed in 1998 when developers were looking for ways to embed files in other files. What they came up with was the data: URI scheme that allows a developer to load a file represented as an ASCII-encoded octet stream inside another document. Since then, the URI scheme has become very popular with website developers as it allows them to embed text-based (CSS or JS) files or image (PNG, JPEG) files inside HTML documents instead of loading each resource via a separate HTTP request. This practice became hugely popular because search engines started ranking websites based on their page loading speed and the more HTTP requests a website made, the slower it loaded, and the more it affected a site's SERP position.

Read more of this story at Slashdot.

Hollywood Strikes Back Against Illegal Streaming Kodi Add-ons

Thu, 16/11/2017 - 7:50pm
An anonymous reader shares a report: An anti-piracy alliance supported by many major US and UK movie studios, broadcasters and content providers has dealt a blow to the third-party Kodi add-on scene after it successfully forced a number of popular piracy-linked streaming tools offline. In what appears to be a coordinated crackdown, developers including jsergio123 and The_Alpha, who are responsible for the development and hosting of add-ons like urlresolver, metahandler, Bennu, DeathStreams and Sportie, confirmed that they will no longer maintain their Kodi creations and have immediately shut them down.

Read more of this story at Slashdot.

Apology After Japanese Train Departs 20 Seconds Early

Thu, 16/11/2017 - 7:05pm
Several readers share a BBC report: A rail company in Japan has apologised after one of its trains departed 20 seconds early. Management on the Tsukuba Express line between Tokyo and the city of Tsukuba say they "sincerely apologise for the inconvenience" caused. In a statement, the company said the train had been scheduled to leave at 9:44:40 local time but left at 9:44:20. Many social media users reacted to the company's apology with surprise. "Tokyo train company's apology for 20-second-early departure is one of the best things about Japan," a user wrote. The mistake happened because staff had not checked the timetable, the company statement said.

Read more of this story at Slashdot.

Amazon Key Flaw Could Let Rogue Deliverymen Disable Your Camera

Thu, 16/11/2017 - 6:26pm
Security researchers claim to have discovered a flaw in Amazon's Key Service, which if exploited, could let a driver re-enter your house after dropping off a delivery. From a report: When Amazon launched its Amazon Key service last month, it also offered a remedy for anyone who might be creeped out that the service gives random strangers unfettered access to your home. That security antidote? An internet-enabled camera called Cloud Cam, designed to sit opposite your door and reassuringly record every Amazon Key delivery. Security researchers have demonstrated that with a simple program run from any computer in Wi-Fi range, that camera can be not only disabled, but frozen. A viewer watching its live or recorded stream sees only a closed door, even as their actual door is opened and someone slips inside. That attack would potentially enable rogue delivery people to stealthily steal from Amazon customers, or otherwise invade their inner sanctum. And while the threat of a camera-hacking courier seems an unlikely way for your house to be burgled, the researchers argue it potentially strips away a key safeguard in Amazon's security system. When WIRED brought the research to Amazon's attention, the company responded that it plans to send out an automatic software update to address the issue later this week.

Read more of this story at Slashdot.

OnePlus 5T Featuring 6-inch AMOLED Display, 3.5mm Headphone Jack Launched

Thu, 16/11/2017 - 5:38pm
Chinese smartphone maker OnePlus, which has been lauded by consumers for offering phones with top-of-the-line specs at a reasonably affordable price range, on Thursday at an event in New York announced its newest flagship smartphone. Called the OnePlus 5T, the handset sports a 6.01-inch AMOLED screen (screen resolution 1080 x 2160) manufactured by Samsung in a body that is roughly of the same size as the 5.5-inch display-clad predecessor OnePlus 5. The secret sauce is, much like Samsung, LG and Apple, OnePlus has moved to a near bezel-less design. The company is not getting rid of the fingerprint scanner though, which it has pushed to the back side. The front-facing camera, additionally, OnePlus says, can be used to unlock the device. Other features include a 3,300mAh battery with the company's proprietary Dash Charge fast-charging tech (no wireless charging support -- the company says at present wireless charging doesn't really add much value to the device), top-of-the-line Qualcomm Snapdragon 835 processor with Adreno 540, 6GB of RAM with 64GB of storage (there is another variant of the phone which offers 8GB of RAM with 128GB of space). As for camera, we are looking at a dual 16-megapixel and 20-megapixel setup in the back. One more thing: the phone has a headphone jack and it runs Android 7.1 out of the box. The OnePlus 5T will go on sale in Europe, India, and the United States starting November 21st, with the base model priced at Euro 499, INR 32,999, and $499, respectively. The high-end variant is priced at Euro 559, INR 37,999, and $559. Wired has more details.

Read more of this story at Slashdot.

OnePlus 5T Featuring a 6-inch AMOLED Display, 3.5mm Headphone Jack Launched

Thu, 16/11/2017 - 5:38pm
Chinese smartphone maker OnePlus, which has been lauded by consumers for offering phones with top-of-the-line specs at a reasonably affordable price range, on Thursday at an event in New York announced its newest flagship smartphone. Called the OnePlus 5T, the handset sports a 6-inch AMOLED screen (screen resolution 1080 x 2160) manufactured by Samsung in a body that is roughly of the same size as the 5.5-inch display-clad OnePlus 5, which was launched earlier this year. The secret sauce is, much like Samsung, LG and Apple, OnePlus has moved to a near bezel-less design. The company is not getting rid off the fingerprint scanner though, which it has pushed on the back side. The front-facing camera, additionally, OnePlus says, can be used to unlock the device. Other features include a 3,300mAh battery with the company's proprietary Dash Charge fast-charging tech (no wireless charging support -- the company says at present wireless charging doesn't really add much value to the device), top-of-the-line Qualcomm Snapdragon 835 processor with Adreno 540, 6GB of RAM with 64GB of storage (there is another variant of the phone which offers 8GB of RAM with 128GB of space). As for camera, we are looking at a dual 16-megapixel and 20-megapixel setup in the back. No word on how powerful the front-facing camera is, yet. One more thing: the phone has a headphone jack and it runs Android 7.1 out of the box. The OnePlus 5T will go on sale in Europe, India, and the United States starting November 21st, with the base model priced at Euro 499, INR 32,999, and $499, respectively. The high-end variant is priced at Euro 559, INR 37,999, and $559.

Read more of this story at Slashdot.

Phone Companies Get New Tools To Block Spam Calls

Thu, 16/11/2017 - 4:51pm
An anonymous reader shares a report: Phone companies will have greater authority to block questionable calls from reaching customers as regulators adopted new rules to combat automated messages known as robocalls. Rules adopted Thursday by the Federal Communications Commission represent the latest tools against "robocalls," which pester consumers, sometimes multiple times each day, and often push scams. Phone companies can already block some calls that trick consumers by showing up on Caller ID with fake numbers. The new rules make clear that they can block additional calls that are likely scams, such as numbers that start with a 911 area code, or one that isn't currently assigned to anyone.

Read more of this story at Slashdot.

Internal Kaspersky Investigation Says NSA Worker's Computer Was Infested with Malware

Thu, 16/11/2017 - 4:12pm
A reader shares a report: The personal computer of an NSA worker who took government hacking tools and classified documents home with him was infected with a backdoor trojan, unrelated to these tools, that could have been used by criminal hackers to steal the US government files, according to a new report being released Thursday by Kaspersky Lab in response to recent allegations against the company. The Moscow-based antivirus firm, which has been accused of using its security software to improperly grab NSA hacking tools and classified documents from the NSA worker's home computer and provide them to the Russian government, says the worker had at least 120 other malicious files on his home computer in addition to the backdoor, and that the latter, which had purportedly been created by a Russian criminal hacker and sold in an underground forum, was trying to actively communicate with a malicious command-and-control server during the time Kaspersky is accused of siphoning the US government files from the worker's computer. Costin Raiu, director of the company's Global Research and Analysis Team, told Motherboard that his company's software detected and prevented that communication but there was a period of time when the worker had disabled his Kaspersky software and left his computer unprotected. Raiu says they found evidence that the NSA worker may have been infected with a second backdoor as well, though they saw no sign of it trying to communicate with an external server so they don't know if it was active on his computer.

Read more of this story at Slashdot.

China Cyber Watchdog Rejects Censorship Critics, Says Internet Must Be 'Orderly'

Thu, 16/11/2017 - 3:25pm
China's top cyber authority on Thursday rejected a recent report ranking it last out of 65 countries for press freedom, saying the internet must be "orderly" and the international community should join it in addressing fake news and other cyber issues. From a report: Ren Xianliang, vice minister of the Cyberspace Administration of China (CAC), said the rapid development of the country's internet over two decades is proof of its success and that it advocates for the free flow of information. "We should not just make the internet fully free, it also needs to be orderly... The United States and Europe also need to deal with these fake news and rumors," Ren told journalists without elaborating.

Read more of this story at Slashdot.

37% of Netflix Subscribers Say They Binge-Watch While at Work

Thu, 16/11/2017 - 2:45pm
On-demand video streaming service Netflix has found that more people than ever are watching video outside their homes. About 67% of people now watch movies and TV shows in public, according to an online survey it commissioned of 37,000 adults around the world. The survey also found that about 37% of Netflix's US subscribers binge-watch shows and movies while at work.

Read more of this story at Slashdot.

Foreign Students Have Begun To Shun the United States

Thu, 16/11/2017 - 2:06pm
In a potential threat to future U.S. innovation, new international enrollment at U.S. colleges is down for the first time in more than a decade, according to a new report. From the report: It is the first hard sign that the Trump administration's rhetoric may be frightening away some of the world's best and brightest who traditionally have been drawn to settle and work in the U.S. Why it matters: "The Chinese whiz kid, if he can find a way to America, he'll come here. If you're good, you can make a lot of money," Anthony Carnevale, director of Georgetown University's Center on Education and the Workforce, tells Axios. "That whole set of incentives has always been tied to the immigrant stream, and we're severing that connection." By the numbers: The findings are from the Institute of International Education's annual Open Doors report and its smaller joint "snapshot" report on international enrollment. It found that new international student enrollment dropped by 3.3% for the 2016-2017 academic year, and by a far higher 6.9% in the Fall 2017 semester.

Read more of this story at Slashdot.

The Brutal Fight To Mine Your Data and Sell It To Your Boss

Thu, 16/11/2017 - 1:00pm
An anonymous reader shares a report from Bloomberg, explaining how Silicon Valley makes billions of dollars peddling personal information, supported by an ecosystem of bit players. Editor Drake Bennett highlights the battle between an upstart called HiQ and LinkedIn, who are fighting for your lucrative professional identity. Here's an excerpt from the report: A small number of the world's most valuable companies collect, control, parse, and sell billions of dollars' worth of personal information voluntarily surrendered by their users. Google, Facebook, Amazon, and Microsoft -- which bought LinkedIn for $26.2 billion in 2016 -- have in turn spawned dependent economies consisting of advertising and marketing companies, designers, consultants, and app developers. Some operate on the tech giants' platforms; some customize special digital tools; some help people attract more friends and likes and followers. Some, including HiQ, feed off the torrents of information that social networks produce, using software bots to scrape data from profiles. The services of the smaller companies can augment the offerings of the bigger ones, but the power dynamic is deeply asymmetrical, reminiscent of pilot fish picking food from between the teeth of sharks. The terms of that relationship are set by technology, economics, and the vagaries of consumer choice, but also by the law. LinkedIn's May 23 letter to HiQ wasn't the first time the company had taken legal action to prevent the perceived hijacking of its data, and Facebook and Craigslist, among others, have brought similar actions. But even more than its predecessors, this case, because of who's involved and how it's unfolded, has spoken to the thorniest issues surrounding speech and competition on the internet.

Read more of this story at Slashdot.