[syndicated profile] slashdot_feed

Posted by msmash

WikiLeaks said on Thursday morning it will release new documents it claims are from the Central Intelligence Agency which show the CIA had the capability to bug iPhones and Macs even if their operating systems have been deleted and replaced. From a report on Motherboard: "These documents explain the techniques used by CIA to gain 'persistenc'' on Apple Mac devices, including Macs and iPhones and demonstrate their use of EFI/UEFI and firmware malware," WikiLeaks stated in a press release. EFI and UEFI is the core firmware for Macs, the Mac equivalent to the Bios for PCs. By targeting the UEFI, hackers can compromise Macs and the infection persists even after the operating system is re-installed. The documents are mostly from last decade, except a couple that are dated 2012 and 2013. While the documents are somewhat dated at this point, they show how the CIA was perhaps ahead of the curve in finding new ways to hacking and compromising Macs, according to Pedro Vilaca, a security researcher who's been studying Apple computers for years. Judging from the documents, Vilaca told Motherboard in an online chat, it "looks like CIA were very early adopters of attacks on EFI."

Read more of this story at Slashdot.

[syndicated profile] slashdot_feed

Posted by msmash

German scientists are switching on "the world's largest artificial sun" in the hope that intense light sources can be used to generate climate-friendly fuel. From a report: The Synlight experiment in Julich, about 19 miles west of Cologne, consists 149 souped-up film projector spotlights and produces light about 10,000 times the intensity of natural sunlight on Earth. When all the lamps are swivelled to concentrate light on a single spot, the instrument can generate temperatures of around 3,500C -- around two to three times the temperature of a blast furnace. "If you went in the room when it was switched on, you'd burn directly," said Prof Bernard Hoffschmidt, a research director at the German Aerospace Center, where the experiment is housed in a protective radiation chamber. The aim of the experiment is to come up with the optimal setup for concentrating natural sunlight to power a reaction to produce hydrogen fuel.

Read more of this story at Slashdot.

[syndicated profile] slashdot_feed

Posted by msmash

An anonymous reader shares a report: For data and movie geeks, the MPAA's latest "Theatrical Market Statistics" report is a wealth of information about the health of the movie business. The big picture: 246 million people went to the movies in the United States and Canada last year, a 2% increase from the year before. But dig into the trends and things start to get a little more interesting. For instance, looking at per capita attendance broken down by age group shows 18- to 24-year-olds are hitting the big screen at lower rates than they were in 2012, although they saw an uptick last year.

Read more of this story at Slashdot.

[syndicated profile] bruce_schneier_feed

Posted by Bruce Schneier

Turkish hackers are threatening to erase millions of iCloud user accounts unless Apple pays a ransom.

This is a weird story, and I'm skeptical of some of the details. Presumably Apple has decided that it's smarter to spend the money on secure backups and other security measures than to pay the ransom. But we'll see how this unfolds.

[syndicated profile] slashdot_feed

Posted by msmash

Writing for The New Yorker, Jia Tolentino documents stories of several people -- a nine-month pregnant Lyft driver, for instance -- who contribute to companies that work on the model of gig economy. Through these tales, Tolentino underscores an increasingly growing pattern in the Silicon Valley (and elsewhere) where companies offer hard-labor contracts to people, pay them peanuts (with little liabilities), and yet find a reason to celebrate their business and encourage more to come onboard. From the article: Fiverr, which had raised a hundred and ten million dollars in venture capital by November, 2015, has more about the "In Doers We Trust" campaign on its Web site. In one video, a peppy female voice-over urges "doers" to "always be available," to think about beating "the trust-fund kids," and to pitch themselves to everyone they see, including their dentist. A Fiverr press release about "In Doers We Trust" states, "The campaign positions Fiverr to seize today's emerging zeitgeist of entrepreneurial flexibility, rapid experimentation, and doing more with less. It pushes against bureaucratic overthinking, analysis-paralysis, and excessive whiteboarding." This is the jargon through which the essentially cannibalistic nature of the gig economy is dressed up as an aesthetic. No one wants to eat coffee for lunch or go on a bender of sleep deprivation -- or answer a call from a client while having sex, as recommended in the video. It's a stretch to feel cheerful at all about the Fiverr marketplace, perusing the thousands of listings of people who will record any song, make any happy-birthday video, or design any book cover for five dollars. I'd guess that plenty of the people who advertise services on Fiverr would accept some "whiteboarding" in exchange for employer-sponsored health insurance. At the root of this is the American obsession with self-reliance, which makes it more acceptable to applaud an individual for working himself to death than to argue that an individual working himself to death is evidence of a flawed economic system. The contrast between the gig economy's rhetoric (everyone is always connecting, having fun, and killing it!) and the conditions that allow it to exist (a lack of dependable employment that pays a living wage) makes this kink in our thinking especially clear.

Read more of this story at Slashdot.

[syndicated profile] slashdot_feed

Posted by BeauHD

New submitter omaha393 writes: A team of researchers at Harvard Medical School have developed a point-of-care microfluidic detector capable of determining sperm quality using the simple device and a standard smartphone. Typical male fertility screens require a team of trained laboratory professionals and a screening process taking days to weeks and incurring high costs. The alternative home sperm measuring kits rely on chemical probes and only give measurements of quantity, not quality.The new method offers an easier, cheaper approach, with processing time taking about 5 seconds with no sample processing or wash steps required. The team found their device meets WHO guidelines with 98% accuracy of sperm quality measurements and is comparable to clinical results. The new device uses 35 microliters of sample to accurately measure both concentration and motility at a manufacturing cost of less than $5 per device. The device must still undergo FDA evaluations before being available to consumers, and the technology has yet to be named. The results of the study were published in the journal Science Translational Medicine. Further reading: NPR, Ars Technica, Scientific American

Read more of this story at Slashdot.

Pravoslavlevia parva

Mar. 23rd, 2017 02:30 pm
andrzejn: (South Park)
[personal profile] andrzejn
Православлевия (лат. Pravoslavlevia parva) — мелкий горгонопс из поздней перми Архангельской области. Описана в 1927 году как вид иностранцевии. Не следует путать с родом фораминифер.

В этой фразе прекрасно примерно всё. Даже при том, что я понимаю её смысл.
kostya_moskowit: (Default)
[personal profile] kostya_moskowit
Моя первая версия - Вороненков нанял подставное лицо, которое согласилось быть убитым вместо него. После этого разыграна сцена убийства, в которой убийца и охранник стреляют друг в друга в упор и никто из двух не умер, их увозят с места преступления. Для того, чтобы были сложности с опознанием - выстрел убитому в упор в лицо. Ну да, а охраннику выстрелить в голову первому, чтобы потом добить депутата - не судьба. Смешно.

После этого миллиардер Вороненков с другим паспортом на другое имя уходит от российской слежки за границу с оставшимися деньгами.
[syndicated profile] slashdot_feed

Posted by BeauHD

frank249 writes: Elon Musk says that the new NASA authorization legislation "changes almost nothing about what NASA is doing. Existing programs stay in place and there is no added funding for Mars." From a report via Ars Technica: "Musk is absolutely correct on two counts. First, an 'authorization' bill does not provide funding. That comes from appropriations committees. Secondly, while Congress has been interested in building rockets and spacecraft, it is far less interested in investing in the kinds of technology and research that would actually enable a full-fledged Mars exploration program." In other news, SpaceNews reports that "SpaceX has been working with NASA to identify potential landing sites on Mars for both its Red Dragon spacecraft (starting in 2020) and future human missions." From the report: "Paul Wooster of SpaceX said the company, working with scientists at NASA's Jet Propulsion Laboratory and elsewhere, had identified several potential landing sites, including one that looks particularly promising -- Arcadia Planitia. Those landing sites are of particular interest, he said, for SpaceX's long-term vision of establishing a human settlement on Mars, but he said the company wouldn't rule out sending Red Dragon spacecraft elsewhere on the planet to serve other customers. 'We're quite open to making use of this platform to take various payloads to other locations as well,' he said. 'We're really looking to turn this into a steady cadence, where we're sending Dragons to Mars on basically every opportunity.' The Red Dragon spacecraft, he said, could carry about one ton of useful payload to Mars, with options for those payloads to remain in the capsule after landing or be deployed on the surface. 'SpaceX is a transportation company,' he said. 'We transport cargo to the space station, we deliver payloads to orbit, so we're very happy to deliver payloads to Mars.'" Fans of the book/movie "The Martian" would be happy if SpaceX does select Arcadia Planitia for their first landing site as that was the landing site of the Ares 3.

Read more of this story at Slashdot.

[syndicated profile] computerra_feed

Posted by Евгений Золотов

Для решения многих бытовых проблем не помешала бы помощь юриста, да вот только деньги «на кону» стоят небольшие, так что юристы за такие дела не берутся, и сами пострадавшие предпочитают не усложнять. До последнего времени надежды на улучшение не было никакой. Пока не пришли роботы!
[syndicated profile] slashdot_feed

Posted by BeauHD

sciencehabit writes from a report via Science Magazine: NASA's Curiosity rover has shot more than 500 movies of the clouds above Mars, including the first ground-based view of martian clouds shaped by gravity waves, researchers reported this week at the Lunar and Planetary Science Conference. The shots are the best record made so far of a mysterious recurring belt of equatorial clouds known to influence the martian climate. Understanding these clouds will help inform estimates of ground ice depth and perhaps recurring slope lineae, potential flows of salty water on the surface, says John Moores, a planetary scientist at York University in Toronto, Canada, who led the study with his graduate student, Jake Kloos. "If we wish to understand the water story of Mars's past," Moores says, "we first need to [separate out] contributions from the present-day water cycle." Using Curiosity's navigation camera, Moores and Kloos recorded eight-frame movies of this wispy cloud belt for two martian years. They've used two angles to capture the clouds: one pointed directly up, to see wind direction and speed, and another that keeps the rover's horizon in the frame, allowing a view into the clouds' depth. Given the limited water vapor, solar energy, and atmosphere, the martian clouds lack the variety of shapes seen on Earth. But during one day of cloud gazing -- Curiosity's 1302th martian day, to be precise -- the team got lucky and saw something unusual. That day, when Curiosity looked to the horizon, it saw a sequence of straight, parallel rows of clouds flowing in the same direction: the first ground-based view of a gravity wave cloud. Similar to the waves that follow a pebble tossed into a pond, gravity waves are created when some unknown feature of the martian landscape causes a ripple in the atmosphere that is then seen in clouds. Such waves are common at the edge of the martian ice caps, but thought to be less frequent over its equator.

Read more of this story at Slashdot.

Наши университеты.

Mar. 23rd, 2017 10:03 am
kostya_moskowit: (Default)
[personal profile] kostya_moskowit
Менеджеров по работе с клиентами сестер Марьям и Тамиллу Дадашевых взяли в автосалоне во время покупки нового Ferrari. Как считают следователи, за пару дней до этого они сняли и обналичили со счетов одного из клиентов 40 млн руб. При этом, по неподтвержденным данным, барышни планировали украсть до 4 млрд руб.

Надо отметить, что Марьям Дадашева является выпускницей Всероссийской академии внешней торговли, которую окончила в 2013 году. При этом на работу в Сбербанк она пришла еще за год до получения диплома бакалавра. Ее младшая сестра Тамилла училась в другом вузе, изучая экономику и право.

Ъ- http://www.kommersant.ru/doc/3249283


Молодые банковские клерки украли и обналичили 40 млн. рублей только с одного счета. Как украсть они уже научились. А вот уголовному праву их теперь научат на собственном примере.

Сбербанк - это всегда бардак, конечно. Но не до такой же степени, господа!

KDevelop 5.1.0

Mar. 23rd, 2017 09:33 am
[syndicated profile] linuxorgru_feed

Разработчики KDevelop анонсировали релиз новой версии кроссплатформенной IDE, предназначенной для работы над проектами на языках программирования C, C++, Python, PHP и JavaScript/QML. Код IDE распространяется под свободной лицензией и использует фреймворки KF 5 и Qt 5. Для тестирования возможностей нового KDevelop был приготовлен специальный AppImage-образ, который можно получить на странице загрузок.

( Основные изменения )

 , , ,

kostya_moskowit: (Default)
[personal profile] kostya_moskowit
Итоги оружейного экспорта за 2016 год Владимир Путин подвел на заседании комиссии по военно-техническому сотрудничеству (ВТС). Напомнив, что Россия по этому показателю "уверенно удерживает второе место в мире" (уступая лишь США), он заявил, что в прошлом году экспортные поставки превысили $15 млрд (против $14,5 млрд в 2015 году).

Из контрактов, заключенных в 2016 году, стоить отметить соглашения с Китаем на поставку авиадвигателей АЛ-31Ф и Д-30КП2 (на сумму свыше $1,2 млрд). Главный редактор журнала "Экспорт вооружений" Андрей Фролов говорит, что в 2016 году не было ни одного серьезного контракта на поставку боевых самолетов, на морскую технику и на системы ПВО.

Ъ - http://www.kommersant.ru/doc/3249489


Операция в Сирии должна была стать витриной, показавшей успехи русского оружия потенциальным покупателям. Но пока этого так и нет. Может дело в том, что успехов-то и нет? Ведь это наши самолеты были сбиты, разбиты, утонули. Система ПВО не перехватила ни одного израильского или турецкого самолета. Подводная лодка не засекла ни одного корабля с оружием для ИГИЛ. Так витрины не делают...

Домашние любимцы

Mar. 23rd, 2017 08:18 am
andrzejn: (Default)
[personal profile] andrzejn
Домашние любимцы должны быть тихими, покладистыми и необременительными.

[syndicated profile] slashdot_feed

Posted by BeauHD

According to a recent indictment from the U.S. Department of Justice, a 48-year-old Lithuanian scammer named Evaldas Rimasauskas managed to trick two American technology companies into wiring him $100 million. He was able to perform this feat "by masquerading as a prominent Asian hardware manufacturer," reports The Verge, citing court documents, "and tricking employees into depositing tens of millions of dollars into bank accounts in Latvia, Cyprus, and numerous other countries." From the report: What makes this remarkable is not Rimasauskas' particular phishing scam, which sounds rather standard in the grand scheme of wire fraud and cybersecurity exploits. Rather, it's the amount of money he managed to score and the industry from which he stole it. The indictment specifically describes the companies in vague terms. The first company is "multinational technology company, specializing in internet-related services and products, with headquarters in the United States," the documents read. The second company is a "multinational corporation providing online social media and networking services." Both apparently worked with the same "Asia-based manufacturer of computer hardware," a supplier that the documents indicate was founded some time in the late '80s. What's more important is that representatives at both companies with the power to wire vast sums of money were still tricked by fraudulent email accounts. Rimasauskas even went so far as to create fake contracts on forged company letterhead, fake bank invoices, and various other official-looking documents to convince employees of the two companies to send him money. Rimasauskas has been charged with one count of wire fraud, three counts of money laundering, and aggravated identity theft. In other words, he faces serious prison time of convicted -- each charge of wire fraud and laundering carries a max sentence of 20 years. The court documents don't reveal the names of the two companies. Though, one could surely think of a few candidates that would fit the descriptions provided in the court documents.

Read more of this story at Slashdot.

[syndicated profile] slashdot_feed

Posted by BeauHD

An anonymous reader quotes a report from Ars Technica: The silicon-based cells that make up a solar panel have a theoretical efficiency limit of 29 percent, but so far that number has proven elusive. Practical efficiency rates in the low-20-percent range have been considered very good for commercial solar panels. But researchers with Japanese chemical manufacturer Kaneka Corporation have built a solar cell with a photo conversion rate of 26.3 percent, breaking the previous record of 25.6 percent. Although it's just a 2.7 percent increase in efficiency, improvements in commercially viable solar cell technology are increasingly hard-won. Not only that, but the researchers noted in their paper that after they submitted their article to Nature Energy, they were able to further optimize their solar cell to achieve 26.6 percent efficiency. That result has been recognized by the National Renewable Energy Lab (NREL). In the Nature Energy paper, the researchers described building a 180.4 cm2 cell using high-quality thin-film heterojunction (HJ) -- that is, layering silicon within the cell to minimize band gaps where electron states can't exist. Controlling heterojunctions is a known technique among solar cell builders -- Panasonic uses it and will likely incorporate it into cells built for Tesla at the Solar City plant in Buffalo, and Kaneka has its own proprietary heterojunction techniques. For this record-breaking solar cell, the Kaneka researchers also placed low-resistance electrodes toward the rear of the cell, which maximized the number of photons that collected inside the cell from the front. And, as is common on many solar cells, they coated the front of the cell with a layer of amorphous silicon and an anti-reflective layer to protect the cell's components and collect photons more efficiently.

Read more of this story at Slashdot.

[syndicated profile] slashdot_feed

Posted by BeauHD

Earlier this month, a Slashdot reader asked fellow Slashdotters what they recommended regarding the use of password managers. In their post, they voiced their uncertainty with password managers as they have been hacked in the past, citing an incident in early 2016 where LastPass was hacked due to a bug that allowed users to extract passwords stored in the autofill feature. Flash forward to present time and we now have news that three separate bugs "would have allowed a third-party to extract passwords from users visiting a malicious website." An anonymous Slashdot reader writes via BleepingComputer: LastPass patched three bugs that affected the Chrome and Firefox browser extensions, which if exploited, would have allowed a third-party to extract passwords from users visiting a malicious website. All bugs were reported by Google security researcher Tavis Ormandy, and all allowed the theft of user credentials, one bug affecting the LastPass Chrome extension, while two impacted the LastPass Firefox extension [1, 2]. The exploitation vector was malicious JavaScript code that could be very well hidden in any online website, owned by the attacker or via a compromised legitimate site.

Read more of this story at Slashdot.

W3C Erects DRM As Web Standard

Mar. 23rd, 2017 12:05 am
[syndicated profile] slashdot_feed

Posted by BeauHD

The World Wide Web Consortium (W3C) has formally put forward highly controversial digital rights management as a new web standard. "Dubbed Encrypted Media Extensions (EME), this anti-piracy mechanism was crafted by engineers from Google, Microsoft, and Netflix, and has been in development for some time," reports The Register. "The DRM is supposed to thwart copyright infringement by stopping people from ripping video and other content from encrypted high-quality streams." From the report: The latest draft was published last week and formally put forward as a proposed standard soon after. Under W3C rules, a decision over whether to officially adopt EME will depend on a poll of its members. That survey was sent out yesterday and member organizations, who pay an annual fee that varies from $2,250 for the smallest non-profits to $77,000 for larger corporations, will have until April 19 to register their opinions. If EME gets the consortium's rubber stamp of approval, it will lock down the standard for web browsers and video streamers to implement and roll out. The proposed standard is expected to succeed, especially after web founder and W3C director Sir Tim Berners-Lee personally endorsed the measure, arguing that the standard simply reflects modern realities and would allow for greater interoperability and improve online privacy. But EME still faces considerable opposition. One of its most persistent vocal opponents, Cory Doctorow of the Electronic Frontier Foundation, argues that EME "would give corporations the new right to sue people who engaged in legal activity." He is referring to the most recent controversy where the W3C has tried to strike a balance between legitimate security researchers investigating vulnerabilities in digital rights management software, and hackers trying to circumvent content protection. The W3C notes that the EME specification includes sections on security and privacy, but concedes "the lack of consensus to protect security researchers remains an issue." Its proposed solution remains "establishing best practices for responsible vulnerability disclosure." It also notes that issues of accessibility were ruled to be outside the scope of the EME, although there is an entire webpage dedicated to those issues and finding solutions to them.

Read more of this story at Slashdot.

Profile

vitus_wagner: My photo 2005 (Default)
vitus_wagner

March 2017

S M T W T F S
    1 234
5 6 7 89 10 11
12 1314 1516 17 18
19 20 21 22 232425
262728293031 

Most Popular Tags

Page Summary

Style Credit

Expand Cut Tags

No cut tags
Page generated Mar. 23rd, 2017 04:26 pm
Powered by Dreamwidth Studios