By BeauHD from
Slashdot's jury-is-still-out department:
According to a Pew Research Center survey, 24% of rural adults say access to high-speed internet is a major problem in their local community. "An additional 34% of rural residents see this as a minor problem, meaning that roughly six-in-ten rural Americans (58%) believe access to high speed internet is a problem in their area," the report says. From the report: By contrast, smaller shares of Americans who live in urban areas (13%) or the suburbs (9%) view access to high-speed internet service as a major problem in their area. And a majority of both urban and suburban residents report that this is not an issue in their local community, according to the survey, conducted Feb. 26-March 11. Concerns about access to high-speed internet are shared by rural residents from various economic backgrounds. For example, 20% of rural adults whose household income is less than $30,000 a year say access to high speed internet is a major problem, but so do 23% of rural residents living in households earning $75,000 or more annually. These sentiments are also similar between rural adults who have a bachelor's or advanced degree and those with lower levels of educational attainment. There are, however, some differences by age and by race and ethnicity. Rural adults ages 50 to 64 are more likely than those in other groups to see access to high-speed internet as a problem where they live. Nonwhites who live in a rural area are more likely than their white counterparts to say this is a major problem (31% vs. 21%).
Read Replies (0)
By BeauHD from
Slashdot's if-there's-a-will-there's-a-way department:
An anonymous reader quotes a report from The Verge: Researchers at KU Leuven have figured out a way to spoof Tesla's key fob system, as first reported by Wired. The result would let an attacker steal a Tesla simply by walking past the owner and cloning his key. The attack is particularly significant because Tesla pioneered the keyless entry concept, which has since spread to most luxury cars. This particular attack seems to have only worked on Model S units shipped before June, and in an update last week, Tesla pushed out an update that strengthened the encryption for the remaining vehicles. More importantly, the company added the option to require a PIN password before the car will start, effectively adding two-factor to your car. Tesla owners can add the PIN by disabling Passive Entry in the "Doors & Locks" section of "Settings."
The attack itself is fairly involved. Because of the back-and-forth protocol, attackers would first have to sniff out the car's Radio ID (broadcast from the car at all times), then relay that ID broadcast to a victim's key fob and listen for the response, typically from within three feet of the fob. If they can do that back-and-forth twice, the research team found they can work back to the secret key powering the fob's responses, letting them unlock the car and start the engine.
Read Replies (0)
By BeauHD from
Slashdot's new-and-improved department:
Qualcomm has unveiled the long-awaited successor to its Snapdragon Wear 2100 smartwatch chipset, the Snapdragon Wear 3100. The new high-end chipset is "based on a brand-new architecture Qualcomm claims is the most efficient it's ever created, optimized for wearables-specific use cases like step tracking, heart rate monitoring, and always-on connectivity," reports VentureBeat. From the report: [T]he company's engineers stuffed the Snapdragon Wear 3100 with a four A7 cores and two secondary chips -- a digital signal processor (DSP) and an ultra-low power coprocessor (QCC1110) -- in what Qualcomm calls a "big-small-tiny" arrangement. The "big" A7 cores handle intensive, complex tasks like switching between apps, while the "small" and "tiny" DSP and coprocessor perform sensor fusion and other background chores. The way Pankaj Kedia, senior director and business lead at Qualcomm's Smart Wearable division, tells it, the coprocessor -- a diminutive 5.2mm x 4mm chip that's the product of more than five years of research -- is the inarguable showrunner. It taps a Qualcomm-designed memory module that draws a mere 0.6 volts of power, and it's altogether 20 times more power-efficient than the A7 cores.
<
article continued at Slashdot's new-and-improved department >
Read Replies (0)
By msmash from
Slashdot's closer-look department:
Nathaniel Popper, writing for The New York Times: When I moved to the Bay Area two years ago, it was with a sense of relief. Relief from New York winters and deteriorating subways, yes. But also relief after six years of covering Wall Street, an industry that had moved from one crisis to another after the financial crash of 2008, drawing the unending wrath of the public. In California I was joining a growing team of reporters covering Silicon Valley, which had quickly become the new engine of the economy. Just like Wall Street before it lost its luster, the tech industry had become the destination of choice for the top college graduates. I would be writing about a place where everyone was focused more on the future than on the past. Now, just two years after getting here, and a decade after the start of the financial crisis, I have a creeping sense of deja vu as I go about my job. Admiration of the tech world has, in the wake of a growing list of scandals, quickly soured into an intense suspicion that manages to cross partisan lines, similar to what Wall Street faced after 2008 [Editor's note: the link may be paywalled]. As I have watched the recent parade of tech executives being grilled by Washington lawmakers from across the political spectrum, it has been eerily reminiscent of the combative hearings the big banks faced back in 2009 and 2010. As was true after the financial crisis, the backlash against tech rises out of a public awakening to the integral role that these huge companies occupy in our society -- with Facebook, Uber and Twitter playing the part that Goldman Sachs and JPMorgan Chase did a decade ago.
Read Replies (0)
By msmash from
Slashdot's it-just-works department:
Ahead of Apple's big iPhone event later this week, the company appears to be grappling with a PR problem: Third-party apps on both its desktop and mobile app stores have been caught doing shady stuff. Last week, Apple pulled a top selling app from the App Store, a month after it was alerted about it, but only hours after it started making headlines. Since then, tens of new iOS apps have been caught indulging in a similar offense -- collecting and selling users data such as GPS coordinates, WiFi network IDs and more. Amid all of this, more desktop apps, curiously all from security service provider Trend Micro -- have been caught collecting browser history and information about users' computers. Apple has pulled Trend Micro's apps from the store. Do note that Trend Micro still has some apps -- both for desktop and mobile -- listed on the store. Would be interesting to learn what sort of conversations Trend Micro and Apple have had in the recent days. BleepingComputer: The apps are Dr. Antivirus, Dr. Cleaner, and Dr. Unarchiver, all under the developer account Trend Micro, Incorporated. Until removal, all products were top-sellers, with thousands of positive reviews that averaged their ratings between 4.6 and 4.9. The first public report of a Trend Micro product in the App Store engaging in shady activities came in late 2017 when user PeterNopSled told Malwarebytes forum members that "that his Mac was taken over by Open Any Files: RAR Support," and it did not let him open Word or Excel files. As security researcher Mikko Hypponen notes, "Bad day for Trend Micro. Most of their Mac OS X apps have been kicked out by Apple after it was discovered they were collecting and sending out private information."
Read Replies (0)
By msmash from
Slashdot's impressive-feat department:
Antarctica has become the best-mapped continent on Earth with a new high-resolution terrain map showing the ice-covered landmass in unprecedented detail. From a report: According to the scientists at Ohio State University and the University of Minnesota who created the imagery, Antarctica is now the best-mapped continent on Earth. The Reference Elevation Model of Antarctica (REMA) was constructed using hundreds of thousands of satellite images taken between 2009 and 2017, Earther reports. A supercomputer assembled the massive amounts of data, including the elevation of the land over time, and created REMA, an immensely detailed topographical map, with a file size over 150 terabytes. The new map has a resolution of 2 to 8 meters, compared to the usual 1,000 meters, says an Ohio State press release. According to The New York Times, the detail of this new map is the equivalent of being able to see down to a car, or smaller, when before you could only see the whole of Central Park. Scientists now know the elevation of every point of Antarctica, with an error margin of just a few feet.
Read Replies (0)
By msmash from
Slashdot's privacy-woes department:
Researchers have uncovered vulnerabilities in popular virtual private network (VPN) software, ProtonVPN and NordVPN, which can lead to the execution of arbitrary code by attackers. From a report: Last week, Cisco Talos security researchers said the security flaws, CVE-2018-3952 and CVE-2018-4010, permit code execution by attackers on Microsoft Windows machines. The vulnerabilities are similar to a Windows privilege escalation security flaw uncovered by VerSprite, which is tracked as CVE-2018-10169. Security patches were applied in April by both clients to resolve the original security hole, but according to Talos, "despite the fix, it is still possible to execute code as an administrator on the system." The initial vulnerability was caused by similar design issues in both clients. The interface for both NordVPN and ProtonVPN execute binaries with the permission of a logged-in user, and this includes the selection of a VPN configuration option, such as a desired VPN server location. This information is sent to a service when "connect" is clicked by way of an OpenVPN configuration file. However, VerSprite was able to create a crafted OpenVPN file which could be sent to the service, loaded, and executed.
Read Replies (0)
By msmash from
Slashdot's creating-a-monster department:
The proliferation of affordable smartphones, dwindling data prices, and apps and services that are designed to work swiftly on such patchy infrastructure have changed how people in developing markets marred with poor literacy level such as India communicate, do business, and get their education. But it has also come at a cost. In the recent months we have learned about Facebook's struggle to contain violence in Myanmar, BuzzFeed News has a chilling story on how rumors circulated through WhatsApp, which is also owned by Facebook, are causing real violence in India, the world's second largest internet market. From the report: WhatsApp, a Facebook-owned messaging service, is used by more than 200 million people in India, its largest market. It's become an inextricable part of the country's culture and social fabric, widely used by younger and older generations alike. It's one of Facebook CEO Mark Zuckerberg's crown jewels, an app he acquired for $19 billion in 2014 that began as a messaging platform but is now evolving into something more, with a new payments feature already being tested in India. Lately, however, WhatsApp has been getting Indians killed. In June, rumors about child kidnappers shared on the service inspired a mob of hundreds to lynch a 29-year-old man and his friend who were passing through a village in Karbi Anglong, a district in the eastern part of the country. In July, two weeks after the Rainpada incident, hundreds of people hurled stones at an IT worker who was visiting the South Indian village of Murki, killing him. Since May, there have been at least 16 lynchings leading to 29 deaths in India where public officials say mobs were incited by misinformation on WhatsApp. As Facebook wrangles an ongoing crisis of public confidence over its role in spreading misinformation throughout the 2016 US presidential election, the company is grappling with a different kind of problem in places like Rainpada, where its products have abetted flesh-and-blood harm. In attempting to fulfill Facebook's current mission -- to "give people the power to build community and bring the world closer together" -- Zuckerberg and his team of Silicon Valley-based executives failed to foresee its malignant applications: misinformation, propaganda, rumor, hate.
Read Replies (0)
By msmash from
Slashdot's closer-look department:
Mark Lowenstein, writing for Techpinions: As we head toward Apple's annual device announcement-palooza, it's an interesting exercise to consider where we are in Steve Jobs' vaunted, much quoted 'Post-PC Era.' The fact of the matter is, that era never fully arrived, and it doesn't look like it will, in the near- to medium- term future. [...] Tablets have had a good run, but sales have tailed off of late. I'd say they've had greater influence on the evolution of the smartphone and the PC, rather than leading to a significantly different nomenclature for what most of us carry around today. My Techpinions colleague Ben Bajarin says that Creative Strategies surveys indicate that only about 10% of tablet users have 'replaced their PC' -- a number that has held steady for several years. And that 10% is concentrated in a handful of industries, such as real estate and construction. PC sales aren't exactly surging, but they're steady. Your average white collar professional today still carries around a smartphone and a laptop, with the tablet being an ancillary device, used primarily for media/content consumption. Tablets have had a significant influence on the design of smartphones and PCs. They ushered in an era of smartphone screen upsizing, led primarily by Samsung, and now reinforced by the iPhone X and the expected announcement next week of a 6.5 inch iPhone model. For those who don't want to swing both a smartphone and tablet, we have 'Phablets,' most personified in the successful Galaxy Note series, and alternative-to-keyboard input devices such as the S Pen and the Apple Pencil. We've also seen the development of some hybrid tablet/PC devices, the most innovative and successful of which is Microsoft's Surface line. But that product is competing more in the tablet category than in the PC category, with the exception of a few market segments.
Read Replies (0)
By BeauHD from
Slashdot's dirty-jobs department:
A nonprofit has deployed a multimillion-dollar floating boom designed to corral plastic debris littering the Pacific Ocean (Warning: source may be paywalled; alternative source). The 2,000-foot-long structure left San Francisco Bay on Saturday. According to The New York Times, Ocean Cleanup "aims to trap up to 150,000 pounds of plastic during the boom's first year at sea." From the report: Within five years, with the creation of dozens more booms, the organization hopes to clean half of the Great Pacific Garbage Patch. Over the next several days, the boom will be towed to a site where it will undergo two weeks of testing. If everything goes as planned, the boom will then be brought to the garbage patch, nearly 1,400 miles offshore, where it is expected to arrive by mid-October, said Boyan Slat, 24, the Dutch inventor and entrepreneur who founded Ocean Cleanup.
The cleanup system is supposed to work like this: After the boom detaches from the towing vessel, the current is expected to pull it into the shape of a "U." As it drifts along, propelled by the wind and waves, it should trap plastic "like Pac-Man," the foundation said on its website. The captured plastic would then be transported back to land, sorted and recycled. The boom has an impenetrable skirt that hangs nearly 10 feet below to catch smaller pieces of plastic. The nonprofit said marine life would be able to pass underneath.
Read Replies (0)
By BeauHD from
Slashdot's vulnerable-to-attacks department:
An anonymous reader writes: "A team of security researchers has raised the alarm about some cryptography-related issues with the newly released WebAuthn passwordless authentication protocol," reports ZDNet. "The new WebAuthn protocol will allow users of a device -- such as a computer or a smartphone -- to authenticate on a website using a USB security key, a biometric solution, or his computer or smartphone's password." But researchers say that because WebAuthn uses weak algorithms for the operations of registering a new device, they can pull off some attacks against it. "If converted into a practical exploit, the ECDAA attacks discussed in the article would allow attackers to steal the key from a [server's] TPM, which would allow attackers to effectively clone the user's hardware security token remotely," Arciszewski, one of the researchers, told ZDNet. "The scenarios that follow depend on how much trust was placed into the hardware security token," he added. "At minimum, I imagine it would enable 2FA bypasses and re-enable phishing attacks. However, if companies elected to use hardware security tokens to obviate passwords, it would allow direct user impersonation by attackers." Attacks aren't practical, and experts say the root cause relies in badly written documentation that may fool some implementers into supporting the old algorithms instead of newer and more solid ones. The FIDO Alliance was notified and has started work on updating its docs so it won't look like it's recommending ECDAA or RSASSA-PKCS1-v1_5. "PKCS1v1.5 is bad. The exploits are almost old enough to legally drink alcohol in the United States," Arciszewski said.
Read Replies (0)
By BeauHD from
Slashdot's not-working-properly department:
Apple is recalling a "small percentage" of iPhone 8 devices due to an issue with the logic board. The affected devices may suddenly freeze or restart -- symptoms that may show up at any time. Digital Trends reports: Apple has launched a repair program for the iPhone 8, and whether your device is exhibiting issues or not, it may be a part of the recall. It's important to note that only iPhone 8 models are being recalled here -- the iPhone 8 Plus seems to have sidestepped the issue completely. Specifically, it seems like some iPhone 8 models manufactured between September 2017 and March 2018, and sold in the U.S., New Zealand, Australia, China, India, and Japan, are affected by the issue. If you bought your phone during that time and in one of those regions, you may well be affected. If you have an iPhone 8, you can copy and paste the serial number in Apple's iPhone 8 checker tool. There are a few ways to get your device fixed if it is affected. "First, you could go to an Apple Authorized Service Provider -- you can find one here," reports Digital Trends. "Second, you could go straight to an Apple Store. Last but not least, you could contact Apple Support, and they'll send you a prepaid shipping box for you to send in your iPhone for repair."
Read Replies (0)