Lock-Screen Bypass Bug Quietly Patched In Handsets
Posted by News Fetcher on November 17 '18 at 02:30 AM
By BeauHD from Slashdot's behind-the-scenes department:
secwatcher shares a report from Threatpost: A design flaw affecting all in-display fingerprint sensors -- that left over a half-dozen cellphone models vulnerable to a trivial lock-screen bypass attack -- has been quietly patched. The flaw was tied to a bug in the popular in-display fingerprint reader technology used for user authentication. In-display fingerprint reader technology is widely considered an up-and-coming feature to be used in a number of flagship model phones introduced in 2019 by top OEM phone makers, according to Tencent's Xuanwu Lab which is credited for first identifying the flaw earlier this year. Impacted are all phones tested in the first half of 2018 that had in-display fingerprint sensors. That includes current models of Huawei Technologies' Porsche Design Mate RS and Mate 20 Pro model phones. Researchers said that many more cellphone manufacturers are impacted by the issue. The most popular phone in the U.S. that is impacted by this vulnerability is the OnePlus 6T. "[A]ll an attacker needs to carry out the attack is an opaque reflective material such as aluminum foil," reports Threatpost. "By placing the reflective material over a residual fingerprint on the phone's display the capacitance fingerprint imaging mechanism can be tricked into authenticating a fingerprint."

Read Replies (0)
NASA Decommissions the Kepler Space Telescope
Posted by News Fetcher on November 16 '18 at 11:50 PM
By BeauHD from Slashdot's end-of-an-era department:
Late last month, NASA announced that it would be retiring the Kepler space telescope after nearly ten years of service -- double its initial mission life. Now, as Space.com reports, the planet-hunting telescope has been officially decommissioned, "beaming 'goodnight' commands to the sun-orbiting observatory." From the report: "Kepler's team disabled the safety modes that could inadvertently turn systems back on, and severed communications by shutting down the transmitters," NASA officials wrote in a statement today (Nov. 16). "Because the spacecraft is slowly spinning, the Kepler team had to carefully time the commands so that instructions would reach the spacecraft during periods of viable communication."

The final commands were sent from Kepler's operations center at the University of Colorado Boulder's Laboratory for Atmospheric and Space Physics, NASA officials said. The commands got to the spacecraft via NASA's Deep Space Network, the system of big radio dishes the space agency uses to keep in touch with its far-flung probes.

Read Replies (0)
There Is No Link Between Insomnia and Early Death, Study Finds
Posted by News Fetcher on November 16 '18 at 07:51 PM
By BeauHD from Slashdot's music-to-my-ears department:
A new report published in the journal Science Direct says there is no link between insomnia and early death. The researchers reportedly "reviewed 17 studies, which covered close to 37 million people, to compile their results," the BBC notes. From the report: This new report goes against what the NHS says, which claims that as well as putting people at risk of obesity, heart disease and type 2 diabetes, that insomnia shortens life expectancy. The NHS recommends things like exercising to tire yourself out during the day and cutting down on caffeine. It also says smoking, eating too much or drinking alcohol late at night can stop you from sleeping well. Other recommendations include writing a list of things that are playing on your mind and trying to get to bed at a similar time every night. "There was no difference in the odds of mortality for those individuals with symptoms of insomnia when compared to those without symptoms," the study says. "This finding was echoed in the assessment of the rate of mortality in those with and without symptoms of insomnia using the outcomes of multivariate models, with the most complete adjustment for potential confounders, as reported by the individual studies included in this meta-analysis. Additional analyses revealed a tendency for an increased risk of mortality associated with hypnotic use."

Read Replies (0)
Paramount Continues To Work With Hasbro To Produce Transformers Movies
Posted by News Fetcher on November 16 '18 at 07:01 PM
By Silver Optimus from TFW2005:
<img width="600" height="300" src="http://news.tfw2005.com/wp-content/uploads/sites/10/2018/11/Hasbro-Paramount-Agreement-Transformers-G.I.-Joe.jpg" alt="" />

Thanks to a legal document submitted to the United States Securities & Exchange Commission yesterday, we have learned that Paramount Pictures will continue working with Hasbro to produce future Transformers movies. “Paramount has several multi-picture production, distribution and financing relationships, including its recently extended agreement with Skydance Productions (“Skydance”) and a new overall deal with Hasbro Inc. (“Hasbro”). Under the Skydance agreement, Paramount and Skydance will continue to work together to produce and finance certain Paramount films, and Paramount has a first look on Skydance-initiated projects, including animated films. Paramount’s agreement with Hasbro involves the production, financing and distribution of live » Continue Reading.

The post Paramount Continues To Work With Hasbro To Produce Transformers Movies appeared first on Transformer World 2005 - TFW2005.COM.

Read Replies (0)
A New Senate Bill Would Hit Robocallers With Up To a $10,000 Fine For Every Call
Posted by News Fetcher on November 16 '18 at 06:32 PM
By BeauHD from Slashdot's hit-em-where-it-hurts department:
Massachusetts Democratic Senator Ed Markey and South Dakota Republican Senator John Thune have introduced a bill on Friday that aims to ramp up the penalties on illegal robocalls and stop scammers from sending them. Gizmodo reports: The Telephone Robocall Abuse Criminal Enforcement and Deterrence (TRACED) Act, raises the penalty for robocalls from $1,500 per call to up to $10,000 per call, and allows the Federal Communications Commission (FCC) to take action on illegal robocalls up to three years after the calls are placed, instead of a year. The Act also aims to push the FCC to work along with the Consumer Financial Protection Bureau, Department of Justice, Department of Homeland Security, Federal Trade Commission (FTC), and other agencies to provide information to Congress about advancements in hindering robocall and prosecuting scammers. Perhaps most importantly for us highly annoyed Americans, the bill would also force phone service providers to use call authentication that filters out illegitimate calls before they go through to consumers.

Read Replies (0)
Mid-Range Google 'Pixel 3 Lite' Leaks With Snapdragon 670, Headphone Jack
Posted by News Fetcher on November 16 '18 at 06:32 PM
By BeauHD from Slashdot's budget-friendly department:
The first alleged images of the rumored "budget" Pixel 3 have been leaked. The Pixel 3 Lite, as it is being called, looks very similar to the Pixel 3, although it features a plastic build construction, slower processor, and a headphone jack. 9to5Google reports: Just like the standard Pixel 3, there's a display that's roughly 5.56-inches in size, but this time it's an IPS LCD panel at 2220x1080 rather than an OLED panel. Obviously, there's also no notch to be seen on this alleged Pixel 3 Lite. There's a single front-facing camera as well as one speaker above that display, relatively thick bezels on the top and bottom, and a speaker along the bottom of the device as well.

Perhaps most interesting when it comes to the hardware, though, is that there's a headphone jack on the top of the phone. That's certainly unexpected since the Pixel 2 dropped the jack and Google hasn't looked back since. Tests from Rozetked reveal some of the specifications running this device as well. That includes a Snapdragon 670 chipset, 4GB of RAM, and 32GB of storage. Previous reports have pointed to a Snapdragon 710. Battery capacity on this device is also reported at 2915 mAh and there's a USB-C port along the bottom. It is rumored to include the same 12MP and 8MP cameras found in the standard Pixel 3 and Pixel 3 XL, which will be a huge selling point for the affordable phone market. The price is expected to be around $400-500.

Read Replies (0)
Cheaper, Disc-Free Xbox One Coming Next Year, Report Says
Posted by News Fetcher on November 16 '18 at 05:11 PM
By BeauHD from Slashdot's disc-to-digital department:
An anonymous reader quotes a report from Ars Technica: Microsoft is planning to release a disc-free version of the Xbox One as early as next spring, according to an unsourced report from author Brad Sams of Thurrott.com (who has been reliable with early Xbox-related information in the past). The report suggests the disc-free version of the system would not replace the existing Xbox One hardware, and it would instead represent "the lowest possible price for the Xbox One S console." Sams says that price could come in at $199 "or lower," a significant reduction from the system's current $299 starting price (but not as compelling compared to $199 deals for the Xbox One and PS4 planned for Black Friday this year). Buyers will also be able to add a subscription to the Xbox Games Pass program for as little as $1, according to Sams. For players who already have games on disc, Sams says Microsoft will offer a "disc to digital" program in association with participating publishers. Players will be able to take their discs into participating retailers (including Microsoft Stores) and trade them in for a "digital entitlement" that can be applied to their Xbox Live account.

Read Replies (0)
MiSafes' Child-Tracking Smartwatches Are 'Easy To Hack'
Posted by News Fetcher on November 16 '18 at 05:11 PM
By BeauHD from Slashdot's not-so-safe-after-all department:
The location-tracking "MiSafe" smartwatch may not be as safe as the name proclaims. According to security researchers from Pen Test Partners, the watches are easy to hack as they do not encrypt the data they use or secure each child's account. The researchers found that they could track children's movements, surreptitiously listen in to their activities and make spoof calls to the watches that appeared to be from parents. The BBC reports: The MiSafes watch was first released in 2015. It uses a global positioning system (GPS) sensor and a 2G mobile data connection to let parents see where their child is, via a smartphone app. In addition, parents can create a "safe zone" and receive an alert if the child leaves the area. The adult can also listen in to what their offspring is doing at any time and trigger two-way calls.

Pen Test Partner's Ken Munro and Alan Monie learned of the product's existence when a friend bought one for his son earlier this year. Out of curiosity, they probed its security measures and found that easy-to-find PC software could be used to mimic the app's communications. This software could be used to change the assigned ID number, which was all it took to get access to others' accounts. This made it possible to see personal information used to register the product, including: a photo of the child; their name, gender and date of birth; their height and weight; the parents' phone numbers; and the phone number assigned to the watch's Sim card.

Read Replies (0)
PAX Unplugged Pin Quest!
Posted by News Fetcher on November 16 '18 at 04:21 PM
By Gabe@penny-arcade.com (Gabe) from Penny Arcade:
PARTNER PINS Bad Penny Pin [Asmodee] Play a demo of KeyForge at the Fantasy Flight Games booth #2801 to receive the pin. Mesozooic Pin [Asmodee] Play a demo of Mesozooic at the Z-Man Games booth #2701 to receive the pin. Bargain Quest Cat Pin [Bargain Quest Games] Available for purchase at the Bargain Quest booth #2935 and the Renegade Games booth #2713. 20th Anniversary Kobolds Ate My Baby Pin [9th Level Games] Available for purchase at the 9th Level Games booth #3048. Flumph Pin [The Role Initiative] Available for purchase at the D&D Adventurers League area in room #113. Anyone…

Read Replies (0)
Transformers UK Classics Volume 6 Cancelled by IDW
Posted by News Fetcher on November 16 '18 at 04:21 PM
By Sol Fury from TFW2005:
<img width="330" height="499" src="http://news.tfw2005.com/wp-content/uploads/sites/10/2018/11/Transformers-UK-Classics-Volume-6.jpg" alt="" />

Reports are coming in from a number of sources that IDW have cancelled their perennially delayed Transformers UK Classics Volume 6. Originally solicited two years ago in November 2016 for a January 2017 release, it was the sixth of eight planned volumes that would reprint the Marvel UK Transformers comics, covering issues 181–214.  We have seen correspondence from IDW’s store which has confirmed the cancellation – a likely outcome given what is now a two year delay coupled with the departure of James Roberts from IDW – James was working on additional bonus content for the collection. This also means the » Continue Reading.

The post Transformers UK Classics Volume 6 Cancelled by IDW appeared first on Transformer World 2005 - TFW2005.COM.

Read Replies (0)
Google Cloud Executive Who Sought Pentagon Contract Steps Down
Posted by News Fetcher on November 16 '18 at 03:51 PM
By BeauHD from Slashdot's another-one-bites-the-dust department:
Diane Greene, whose pursuit of Pentagon contracts for artificial intelligence technology sparked a worker uprising at Google, is stepping down as chief executive of the company's cloud computing business (Warning: source may be paywalled; alternative source). "Ms. Greene said she would stay on as chief executive until January. She will be replaced by Thomas Kurian, who oversaw product development at Oracle until his resignation in October. Ms. Greene will remain a board director at Google's parent company, Alphabet," reports The New York Times. From the report: The change in leadership caps a turbulent three years for Ms. Greene, who was brought on to expand Google's cloud computing business. Google Cloud has struggled to make major inroads in persuading corporate customers to use its computing infrastructure over alternatives like Amazon's A.W.S. and Microsoft's Azure. In a blog post published by the company, Ms. Greene said she had initially told friends and family that she was planning to run Google Cloud for only two years but stayed for three. Ms. Greene, a widely respected technologist and entrepreneur, said that after leaving Google Cloud, she planned to help female founders of companies by investing in and mentoring them. Ms. Greene joined Google in 2015 when it acquired Bebop, a start-up she had founded, for $380 million. Ms. Greene defended Google's pursuit of a Defense Department contract for the Maven program, which uses AI to interpret video images and could be used to improve the targeting of drone strikes. In March, she said it was a small contract worth "only" $9 million and that the technology would be used for nonlethal purposes.

Read Replies (0)
Trump Signs Bill That Creates the Cybersecurity and Infrastructure Security Agency
Posted by News Fetcher on November 16 '18 at 03:51 PM
By BeauHD from Slashdot's new-and-improved department:
An anonymous reader quotes a report from ZDNet: U.S. President Donald Trump signed today a bill into law, approving the creation of the Cybersecurity and Infrastructure Security Agency (CISA). The bill, known as the CISA Act, reorganizes and rebrands the National Protection and Programs Directorate (NPPD), a program inside the Department of Homeland Security (DHS), as CISA, a standalone federal agency in charge of overseeing civilian and federal cybersecurity programs. The NPPD, which was first established in 2007, has already been handling almost all of the DHS' cyber-related issues and projects.

As part of the DHS, the NPPD was the government entity in charge of physical and cyber-security of federal networks and critical infrastructure, and oversaw the Federal Protective Service (FPS), the Office of Biometric Identity Management (OBIM), the Office of Cyber and Infrastructure Analysis (OCIA), the Office of Cybersecurity & Communications (OC&C), and the Office of Infrastructure Protection (OIP). As CISA, the agency's prerogatives will remain the same, and nothing is expected to change in day-to-day operations, but as a federal agency, CISA will now benefit from an increased budget and more authority in imposing its directives. "Elevating the cybersecurity mission within the Department of Homeland Security, streamlining our operations, and giving NPPD a name that reflects what it actually does will help better secure the nation's critical infrastructure and cyber platforms," said NPPD Under Secretary Christopher Krebs. "The changes will also improve the Department's ability to engage with industry and government stakeholders and recruit top cybersecurity talent."

Read Replies (0)
Linux 4.20 is Running Slower Than 4.19 On Intel CPUs
Posted by News Fetcher on November 16 '18 at 02:31 PM
By msmash from Slashdot's closer-look department:
Freshly Exhumed writes: An intentional kernel change in Linux kernel 4.20 for enhanced Spectre mitigation is unfortunately causing Intel Linux performance to be much slower than with 4.19. That change is 'STIBP' (Single Thread Indirect Branch Predictors), which allows for preventing cross-hyperthread control of decisions that are made by indirect branch predictors. It affects Intel systems that have up-to-date microcode and CPU Hyper Threading enabled. Phoronix gives the evidence.

Read Replies (0)
Air Quality in San Francisco is So Bad that Uber Drivers Are Selling Masks Out of Their Cars
Posted by News Fetcher on November 16 '18 at 02:31 PM
By msmash from Slashdot's tough-times department:
California's devastating wildfires are causing unhealthy air conditions for locals breathing in harmful fumes. From a report: In San Francisco, which currently has the second-worst-rated air quality out of any city in the world, one driver was spotted selling N95 respirator masks for $5 apiece. That's significantly above market rate. Right now you can buy a 10-pack of similar masks for about $13 on Amazon. But considering the masks are sold out at many local stores, riders may be willing to dish out the cash for immediate access to the protective gear. Further reading: California needs to reinvent its fire policies, or the death and destruction will go on.

Read Replies (0)
Radio Active
Posted by News Fetcher on November 16 '18 at 01:41 PM
By Tycho@penny-arcade.com (Tycho) from Penny Arcade:
I like Fallout a lot, and I have for a long time; I also have a pretty robust history of bouncing hard off the genre I conceptualize as “Steam Survival Darlings.” It’s pretty clear that this isn’t meant to be “the next fallout game” in anything but the most literal sense, i.e. it’s not Fallout 5, no matter how hard you might want that to be the case. You will be incredibly unhappy trying to map that desire over Fallout 76 - so unhappy, in fact, that it might just not be for you. Gabriel the Younger loves the game, which I find…

Read Replies (0)
Amazon Has Everything it Needs To Make Massively Popular Algorithm-Driven Fiction
Posted by News Fetcher on November 16 '18 at 01:11 PM
By msmash from Slashdot's unprecedented-reach department:
Thu-Huong Ha, writing for Quartz: Amazon's power in books extends way beyond its ability to sell them super cheap and super fast. This year, a little over 40% of the print books sold in the US moved through the site, according to estimates from Bookstat, which tracks US online book retail. (NPD, which tracks 85% of US trade print sales, declined to provide data broken out by retailer.) In the US, Amazon dominates ebook sales and hosts hundreds of thousands of self-published ebooks on its platforms, many exclusively. It looms over the audiobook scene, in retail as well as production, and is one of the biggest marketplaces for used books in the US. Amazon also makes its own books -- more than 1,500 last year.

All that power comes with great data, which Amazon's publishing arm is well positioned to exploit in the interest of making books tailored exactly to what people want -- down to which page characters should meet on or how many lines of dialogue they should exchange. Though Amazon declined to comment specifically on whether it uses data to shape or determine the content of its own books, the company acknowledged that authors are recruited for their past sales (as is common in traditional publishing). "Amazon Publishing titles are thoughtfully acquired by our team -- made up of publishing-industry veterans and long-time Amazonians -- with many factors taken into consideration," says Amazon Publishing publisher Mikyla Bruder, "including the acquiring editor's enthusiasm, the strength of the story, quality of the writing, editorial fit for our list, and author backlist/comparable titles' sales track."

< article continued at Slashdot's unprecedented-reach department >

Read Replies (0)
Most ATMs Can Be Hacked in Under 20 Minutes
Posted by News Fetcher on November 16 '18 at 01:11 PM
By msmash from Slashdot's security-woes department:
An extensive testing session carried out by bank security experts at Positive Technologies has revealed that most ATMs can be hacked in under 20 minutes, and even less, in certain types of attacks. From a report: Experts tested ATMs from NCR, Diebold Nixdorf, and GRGBanking, and detailed their findings in a 22-page report published this week. The attacks they tried are the typical types of exploits and tricks used by cyber-criminals seeking to obtain money from the ATM safe or to copy the details of users' bank cards (also known as skimming). Experts said that 85 percent of the ATMs they tested allowed an attacker access to the network. The research team did this by either unplugging and tapping into Ethernet cables, or by spoofing wireless connections or devices to which the ATM usually connected to. Researchers said that 27 percent of the tested ATMs were vulnerable to having their processing center communications spoofed, while 58 percent of tested ATMs had vulnerabilities in their network components or services that could be exploited to control the ATM remotely.

Read Replies (0)
Prime 1 Studios MMTFM-24: Bumblebee Statue (Bumblebee 2018 Film) Stock Images
Posted by News Fetcher on November 16 '18 at 12:21 PM
By Black Convoy from TFW2005:
<img width="600" height="424" src="http://news.tfw2005.com/wp-content/uploads/sites/10/2018/11/Prime-1-Studio-Bumblebee-Movie-Statue-01.jpg" alt="" />

Prime 1 Studio has uploaded, via their Facebook account, an impressive gallery of their upcoming Prime 1 Studios MMTFM-24: Bumblebee Statue (Bumblebee 2018 Film). As usual with Prime 1 Studios, you can expect and impressive statue with top finishing and several accessories. This Bumblebee statue will include two interchangeable Right-arm options, LED Light function on the eyes, the chest headlights and the stinger blaster. The Stinger Sword will be only available for the exclusive version. The statue comes ready to display with a special Autobot branded base. One important thing to notice is that you will have the option to display Bee with » Continue Reading.

The post Prime 1 Studios MMTFM-24: Bumblebee Statue (Bumblebee 2018 Film) Stock Images appeared first on Transformer World 2005 - TFW2005.COM.

Read Replies (0)
IDW Optimus Prime #25 Full Preview
Posted by News Fetcher on November 16 '18 at 12:21 PM
By Black Convoy from TFW2005:
<img width="390" height="600" src="http://news.tfw2005.com/wp-content/uploads/sites/10/2018/11/00-Optimus-Prime-25-Preview.jpg" alt="" />

Courtesy of adventuresinpoortaste.com we finally have a look at the IDW Optimus Prime #25 Full Preview. This 5-page preview of the final issue of Optimus Prime brings us some flashbacks of Optimus Prime’s first days and the aftermath of the battle against Unicron. As we can see, not all humans are happy to have so many Transformers on Earth, but it is not a problem for some of our heroes. Optimus Prime #25 END OF THE ROAD! The battle is over. Heroes have fallen. Worlds have died. Now Optimus Prime faces his final ordeal–as past, present, and future collide. Who will stand » Continue Reading.

The post IDW Optimus Prime #25 Full Preview appeared first on Transformer World 2005 - TFW2005.COM.

Read Replies (0)
Microsoft is Testing Ads in Mail App For Windows 10 in Select Markets
Posted by News Fetcher on November 16 '18 at 11:51 AM
By msmash from Slashdot's shape-of-things-to-come department:
Mark Wilson writes: Ads in your inbox. Sounds like something you'd expect from the likes of Google or Yahoo, but Microsoft appears to be about to get in on the act as well. And we're not talking about online ads in your Outlook.com account -- we're talking about ads in the Mail app that's included with Windows 10. A new report says that Microsoft is currently testing ads with Windows Insiders, so it could be just a matter of time before they spread wider. In a support page, spotted first by news outlet Thurrott, Microsoft says, "Consistent with consumer email apps and services like Outlook.com, Gmail, and Yahoo Mail, advertising allows us to provide, support, and improve some of our products. We're always experimenting with new features and experiences. Currently, we have a pilot running in Brazil, Canada, Australia, and India to get user feedback on ads in Mail." Update: ZDNet reports that Calendar app for Windows 10 is getting the same treatment.

Read Replies (0)