Krebs Is Back Online Thanks To Google's Project Shield
Posted by News Fetcher on September 25 '16 at 09:01 AM
By EditorDavid from Slashdot's deeply-grateful department:
"After the massive 600gbps DDOS attack on KrebsOnSecurity.com that forced Akamai to withdraw their (pro-bono) DDOS protection, krebsonsecurity.com is now back online, hosted by Google," reports Slashdot reader Gumbercules!!.

"I am happy to report that the site is back up -- this time under Project Shield, a free program run by Google to help protect journalists from online censorship," Brian Krebs wrote today, adding "The economics of mitigating large-scale DDoS attacks do not bode well for protecting the individual user, to say nothing of independent journalists...anyone with an axe to grind and the willingness to learn a bit about the technology can become an instant, self-appointed global censor."

[T]he Internet can't route around censorship when the censorship is all-pervasive and armed with, for all practical purposes, near-infinite reach and capacity. I call this rather unwelcome and hostile development the "The Democratization of Censorship...." [E]vents of the past week have convinced me that one of the fastest-growing censorship threats on the Internet today comes not from nation-states, but from super-empowered individuals who have been quietly building extremely potent cyber weapons with transnational reach...

Akamai and its sister company Prolexic have stood by me through countless attacks over the past four years. It just so happened that this last siege was nearly twice the size of the next-largest attack they had ever seen before. Once it became evident that the assault was beginning to cause problems for the company's paying customers, they explained that the choice to let my site go was a business decision, pure and simple... In an interview with The Boston Globe, Akamai executives said the attack -- if sustained -- likely would have cost the company millions of dollars.

< article continued at Slashdot's deeply-grateful department >

Read Replies (0)
California Launches Mandatory Data Collection For Police Use-of-Force
Posted by News Fetcher on September 25 '16 at 09:01 AM
By EditorDavid from Slashdot's 12%-of-America department:
An anonymous Slashdot reader quotes the AP:

All 800 police departments in California must begin using a new online tool launched Thursday to report and help track every time officers use force that causes serious injuries... The tool, named URSUS for the bear on California's flag, includes fields for the race of those injured and the officers involved, how their interaction began and why force was deemed necessary.

"It's sort of like TurboTax for use-of-force incidents," said Justin Erlich, a special assistant attorney general overseeing the data collection and analysis. Departments must report the data under a new state law passed last November. Though some departments already tracked such data on their own, many did not... "As a country, we must engage in an honest, transparent, and data-driven conversation about police use of force," California Attorney General Kamala Harris said in a news release.

It's an open source tool developed by Bayes Impact, and California plans to share the code with other interested law enforcement agencies across the country. Only three other states currently require their police departments to track data about use-of-force incidents, "but their systems aren't digital, and in Colorado's case, only capture shootings."

Read Replies (0)
The Ig Nobel Awards Celebrate Their 26th First Annual Awards Ceremony
Posted by News Fetcher on September 25 '16 at 07:31 AM
By EditorDavid from Slashdot's first-again? department:
Thursday Harvard's Sanders Theatre hosted the 26th edition of the humorous research awards "that make people laugh, then think...intended to celebrate the unusual, honor the imaginative -- and spur people's interest in science, medicine, and technology." One of this year's winners actually lived as a goat, wearing prosthetic extensions on his arms and legs so he could travel the countryside with other goats. Long-time Slashdot reader tomhath

writes: The Journal of Improbable announced these winners:
REPRODUCTION PRIZE [EGYPT] -- The late Ahmed Shafik, for studying the effects of wearing polyester, cotton, or wool trousers on the sex life of rats, and for conducting similar tests with human males.
ECONOMICS PRIZE [NEW ZEALAND, UK] -- Mark Avis, Sarah Forbes, and Shelagh Ferguson, for assessing the perceived personalities of rocks, from a sales and marketing perspective...
PEACE PRIZE [CANADA, USA] -- Gordon Pennycook, James Allan Cheyne, Nathaniel Barr, Derek Koehler, and Jonathan Fugelsang for their scholarly study called 'On the Reception and Detection of Pseudo-Profound Bullshit'...
PERCEPTION PRIZE [JAPAN] -- Atsuki Higashiyama and Kohei Adachi, for investigating whether things look different when you bend over and view them between your legs.
The Improable Research site lists the rest of this year's 10 winners, as well as every winner for the previous 25 years.

Read Replies (0)
In Bob We Trust (Classic) - WHO'S THE BEST MARVEL VILLAIN?
Posted by News Fetcher on September 25 '16 at 06:31 AM
By moviebob from MovieBob:


Read Replies (0)
Review: ‘Moonshine’ #1
Posted by News Fetcher on September 25 '16 at 06:11 AM
By Michael Melchor from Panels on Pages:
Writer: Brian Azzarello

Artist: Eduardo Risso

So what happens when coupla fellers like Brian Azzarello an’ Eduardo Risso who’re great at tellin’ crime stories decide to tell ‘nother one set up in th’ mountains of West By God back in the prohibition days? An’ intr’duce monsters into th’ mix?

You get the moody, atmospheric, hard-boiled tale of Lou Pirlo, sent to West Virginia by Joe “The Boss” Masseira to talk ol’ Hiram Holt into buying his operation and taking it to the big city. But Holt may not want a piece of that. Because there’s something more going on at Holt’s place than just making moonshine. And Prilo’s not sure he likes what he sees.

All sorts of praise has been lauded on the duo’s most well-known collaboration, 100 Bullets, and rightly so. A slew of pulp and noir comics hit the market as a result of Azzarello and Risso putting out something so damn good that it inspired that genre resurgence. It’s interesting, then, to see the team known for the most hard-boiled stories since Frank Miller’s Sin City take another run at it but freshen it up with a bent of horror. Azzarello’s knack for local dialects and mannerisms hasn’t lost a step with a sometimes-too-accurate portrayal of the mountaineers encountered by Pirlo.

< article continued at Panels on Pages >

Read Replies (0)
How ITT Tech Screwed Students and Made Millions
Posted by News Fetcher on September 25 '16 at 06:11 AM
By EditorDavid from Slashdot's money-for-nothing department:
An anonymous Slashdot reader shares "a grim story about a company that screwed poor people, military veterans, and taxpayers to turn a profit." Gizmodo reports:
By the time ITT Technical Institute closed its doors earlier this month, the for-profit college had been selling tenuous diplomas at exorbitant prices for more than 20 years...burying low-income and first-generation students in insurmountable debt, and evading regulators since the early 1990s...

ITT collected $178 million over two years just in federal education funding for veterans -- even while the company projected 33% of its students would ultimately default on their loans -- and last year 70% of the school's total revenue came directly from federal financial aid programs. Gizmodo spoke to one student who "will now spend the rest of his life paying back loans for a degree that is practically useless," after compounding interest turned his $70,000 loan into $200,000 in debt. "Like all of the former students interviewed by Gizmodo, he was placed in a job that did not require professional training" -- specifically, a game-testing position that didn't even require a high school diploma, while ITT "placed" another student in a $5.95-an-hour telemarketing job. Her assessment of ITT? "It was totally worthless."

Read Replies (0)
Game OverThinker (Remastered) - AN ANGRY BIRDS MOVIE!?
Posted by News Fetcher on September 25 '16 at 05:11 AM
By moviebob from MovieBob:


Read Replies (0)
Kentucky's Shotgun 'Drone Slayer' Gets Sued Again
Posted by News Fetcher on September 25 '16 at 04:50 AM
By EditorDavid from Slashdot's flying-feud department:
"Technology has surpassed the law..." argues a Kentucky man who fired a shotgun at a drone last year. An anonymous Slashdot reader reports:
The drone's owner has now filed for damages in Federal Court over the loss of his $1,800 drone, arguing that the shotgun blast was unjustified because his drone wasn't actually trespassing or invading anyone's privacy. The defendant -- who has dubbed himself 'the Drone Slayer' -- said the aerial vehicle was over his garden and his daughter, and the verdict could ultimately set a new precedent in U.S. law: who owns the air?

"Operators need to know where they can fly," argued the drone pilot's lawyer, "and owners must know when they can reasonably expect privacy and be free of prying eyes." He estimates a drone is shot from he skies about once a month, and "What happens typically is that law enforcement doesn't know what to do and civil suits are uncommon as most people don't want to get involved due to the costs."

The Drone Slayer was originally charged with felony counts of wanton endangerment and criminal mischief. But all of those charges were dismissed in October when a district judge ruled he "had a right to shoot at the aircraft."

Read Replies (0)
Street Fighter V Update Installed Hidden Rootkits on PCs
Posted by News Fetcher on September 25 '16 at 12:51 AM
By EditorDavid from Slashdot's gaming-your-system department:
Capcom's latest update for Street Fighter V was installing a secret rootkit on PCs. An anonymous Slashdot reader quotes The Register:
This means malicious software on the system can poke a dodgy driver installed by Street Fighter V to completely take over the Windows machine. Capcom claims it uses the driver to stop players from hacking...to cheat. Unfortunately, the code is so badly designed, it opens up a full-blown local backdoor... it switches off a crucial security defense in the operating system, then runs whatever instructions are given to it by the application, and then switches the protection back on

Friday Capcom tweeted "We are in the process of rolling back the security measures added to the PC version of Street Fighter V." This prompted one user to reply, "literal rootkits are the opposite of security measures."

Read Replies (0)
Transformers 5 News Roundup: Controversies
Posted by News Fetcher on September 25 '16 at 12:11 AM
By Silver Optimus from TFW2005:


Michael Bay movies always manage to raise eyebrows. This is especially true when it comes to his Transformers Live Action Movies. Almost every one of them got into some sort of controversy. Some say it’s a curse but we’ll leave myths out of it at the moment. The latest “scandal” was using Blenheim Palace; the historic house of Winston Churchill as a Nazi stronghold. Although the director responded to criticism, War Veterans were left with anger and disappointment since Churchill opposed the Nazis in the first place. The scene may involve the Nazi looking for Cybertronian Tech very much like » Continue Reading.

The post Transformers 5 News Roundup: Controversies appeared first on Transformer World 2005 - TFW2005.COM.

Read Replies (0)
Tuesday Was Microsoft's Last Non-Cumulative Patch
Posted by News Fetcher on September 24 '16 at 08:41 PM
By EditorDavid from Slashdot's batch-Tuesday? department:
There was something unique about this week's Patch Tuesday. An anonymous Slashdot reader quotes HelpNetSecurity:
It was the last traditional Windows Patch Tuesday as Microsoft is moving to a new patching release model. In the future, patches will be bundled together and users will no longer be able to pick and choose which updates to install. Furthermore, these new 'monthly update packs' will be combined, so for instance, the November update will include all the patches from October as well. Last month a Slashdot reader asked for suggestions on how to handle the new 'cumulative' updates -- although the most common response was "I run Linux."

Read Replies (0)
In Bob We Trust (Classic) WILL WARCRAFT BE ANY GOOD?
Posted by News Fetcher on September 24 '16 at 07:40 PM
By moviebob from MovieBob:


Read Replies (0)
Game OverThinker (Remastered) - MAKE MORE MAKERS!
Posted by News Fetcher on September 24 '16 at 07:40 PM
By moviebob from MovieBob:


Read Replies (0)
97% of the Top Companies Have Leaked Credentials Online
Posted by News Fetcher on September 24 '16 at 05:51 PM
By EditorDavid from Slashdot's passed-along-passwords department:
Apparently lots of people have been use both their work email address and work password on third-party sites -- suggesting a huge vulnerability. Trailrunner7 quotes On The Wire: The last few years have seen a number of large-scale breaches at popular sites and companies, including LinkedIn, Adobe, MySpace, and Ashley Madison, and many of the credentials stolen during those incidents have ended up online in various places... [R]esearch from Digital Shadows found that the most significant breach for the global 1,000 companies it looked at was the LinkedIn incident... Digital Shadows found more than 1.6 million credentials online for the 1,000 companies it studied. Adobe's breach was next on the list, with more than 1.3 million credentials.
"For Ashley Madison alone, there were more than 200,000 leaked credentials from the top 1,000 global companies," the researchers report, noting they also found many leaked credentials from breaches at other dating and gaming sites, as well as Myspace. Their conclusion? "The vast majority of organizations have credentials exposed online..."

Read Replies (0)
Cisco Blamed A Router Bug On 'Cosmic Radiation'
Posted by News Fetcher on September 24 '16 at 04:31 PM
By EditorDavid from Slashdot's I-blame-outer-space department:
Network World's news editor contacted Slashdot with this report: A Cisco bug report addressing "partial data traffic loss" on the company's ASR 9000 Series routers contended that a "possible trigger is cosmic radiation causing SEU [single-event upset] soft errors." Not everyone is buying: "It IS possible for bits to be flipped in memory by stray background radiation. However it's mostly impossible to detect the reason as to WHERE or WHEN this happens," writes a Redditor identifying himself as a former [technical assistance center] engineer...

"While we can't speak to this particular case," Cisco wrote in a follow-up, "Cisco has conducted extensive research, dating back to 2001, on the effects cosmic radiation can have on our service provider networking hardware, system architectures and software designs. Despite being rare, as electronics operate at faster speeds and the density of silicon chips increases, it becomes more likely that a stray bit of energy could cause problems that affect the performance of a router or switch."
Friday a commenter claiming to be Xander Thuijs, Cisco's principal engineer on the ASR 9000 router, posted below the article, "apologies for the detail provided and the 'concept' of cosmic radiation. This is not the type of explanation I would like to see presented to the respected users of our products. We have made some updates to the DDTS [defect-tracking report] in question with a more substantial data and explanation. The issue is something that we can likely address with an FPD update on the 2x100 or 1x100G Typhoon-based linecard."

Read Replies (0)
US Panel Extends Nuclear Power Tax Credit
Posted by News Fetcher on September 24 '16 at 03:11 PM
By EditorDavid from Slashdot's going-nuclear department:
Slashdot reader mdsolar quotes The Hill:
The House Ways and Means Committee voted Wednesday to remove a key deadline for a nuclear power plant tax credit... The credit was first enacted in 2005 to spur construction of new nuclear plants, but it has gone completely unused because no new plants have come online since then...

It would likely benefit two reactors under construction at Southern Co.'s Vogtle Electric Generating Plant in Georgia and another two at Virgil C. Summer Nuclear Generating Station in South Carolina. Both projects are at risk of missing the 2020 deadline... "When Congress passed the 2005 act, it could not have contemplated the effort it would take to get a nuclear plant designed and licensed," said representative Tom Rice (R-S.C.).

Although one Democrat criticized the extension by arguing that nuclear power "does better in a socialist economy than in a capitalist one, because nuclear energy prefers to have the public do the cleanup, do the insurance, cover all of the losses and it only wants the profits."

Read Replies (0)
Japanator Live: Fortune Summoners' magic school is about to get cleansed
Posted by News Fetcher on September 24 '16 at 03:02 PM
By Salvador G Rodiles from Japanator:
[The stream starts at 9 p.m. Central Standard Time.]

We're back to our usual schedule and it's time for us to find Fortune Summoners' final adversary and show her that it's rude to turn innocent people into stone. Seriously, you have to be some sort of cold-hearted person to just walk up to someone and change their body into a statue.

Of course, the game still loves to throw baddies that can confuse people, so it might be a struggle for us to complete this last dungeon. At least we managed to awaken Arche's elemental stone; thus giving us access to even more moves than before.

No matter what happens, I'm confident that we'll take down the game's final boss tonight. Hopefully, I'll remember the location of the trap chests that cause players to teleport to a different area. That way, this run won't be too painful.



Read more...

Read Replies (0)
Malware Evades Detection By Counting Word Documents
Posted by News Fetcher on September 24 '16 at 01:41 PM
By EditorDavid from Slashdot's I-see-you-are-trying-to-evade-infection department:
"Researchers have found a new strain of document-based macro malware that evades discovery by lying dormant when it detects a security researcher's test environment," reports Threatpost, The Kaspersky Lab security news service. Slashdot reader writes:

Once a computer is compromised, the malware will count the number of Word documents stored on the local drive; if it's more than two, the malware executes. Otherwise, it figures it's landed in a virtual environment or is executing in a sandbox and stays dormant.

A typical test environment consists of a fresh Windows computer image loaded into a VM. The OS image usually lacks documents and other telltale signs of real world use [according to SentinelOne researcher Caleb Fenton]. If no Microsoft Word documents are found, the VBA macro's code execution terminates, shielding the malware from automated analysis and detection. Alternately, if more than two Word documents are found on the targeted system, the macro will download and install the malware payload.

Read Replies (0)
Poor Scientific Research Is Disproportionately Rewarded
Posted by News Fetcher on September 24 '16 at 01:41 PM
By EditorDavid from Slashdot's granted-for-taking department:
A new study calculates a low probability that real effects are actually being detected in psychology, neuroscience and medicine research paper -- and then explains why.
Slashdot reader ananyo writes:

The average statistical power of papers culled from 44 reviews published between 1960 and 2011 was about 24%. The authors built an evolutionary computer model to suggest why and show that poor methods that get "results" will inevitably prosper. They also show that replication efforts cannot stop the degradation of the scientific record as long as science continues to reward the volume of a researcher's publications -- rather than their quality.

The article notes that in a 2015 sample of 100 psychological studies, only 36% of the results could actually be reproduced. Yet the researchers conclude that in the Darwin-esque hunt for funding, "top-performing laboratories will always be those who are able to cut corners." And the article's larger argument is until universities stop rewarding bad science, even subsequent attempts to invalidate those bogus results will be "incapable of correcting the situation no matter how rigorously it is pursued."

Read Replies (0)
A New Programming Language Expands on Google's Go
Posted by News Fetcher on September 24 '16 at 12:21 PM
By EditorDavid from Slashdot's Have-at-you department:
"One sure sign your language is successful: When people build other languages that transpile into it." An anonymous Slashdot reader quotes a report from InfoWorld:

The Have project uses Go's toolchain, but sports a different syntax and makes key additions to the language... Previously, a language named Oden worked with Go's toolchain to add features that Go didn't support. Now Polish developer Marcin Wrochniak has introduced Have, a language that transpiles to and expands on Go.

In the blog post that introduces the project to Go developers, Wrochniak describes Have as a hobby project, with the goal of becoming a "companion" to Go that addresses some of its common "landmines"... Go uses curly braces in the manner of C/C++, while Have uses block indents, like Python... The way that variable declaration, structs, and interfaces work have all been modified in Have to be more consistent with each other and to avoid internal inconsistencies that Wrochniak feels are a common source of bugs.

Read Replies (0)