By msmash from Slashdot's things-apple-does department
Last month, we covered a story about how turning off Wi-Fi and Bluetooth in iOS 11's Control Center doesn't really turn off Wi-Fi and Bluetooth. EFF has called the situation bad for user security. From the report: Instead, what actually happens in iOS 11 when you toggle your quick settings to "off" is that the phone will disconnect from Wi-Fi networks and some devices, but remain on for Apple services. Location Services is still enabled, Apple devices (like Apple Watch and Pencil) stay connected, and services such as Handoff and Instant Hotspot stay on. Apple's UI fails to even attempt to communicate these exceptions to its users. It gets even worse. When you toggle these settings in the Control Center to what is best described as "off-ish," they don't stay that way. The Wi-Fi will turn back full-on if you drive or walk to a new location. And both Wi-Fi and Bluetooth will turn back on at 5:00 AM. This is not clearly explained to users, nor left to them to choose, which makes security-aware users vulnerable as well. The only way to turn off the Wi-Fi and Bluetooth radios is to enable Airplane Mode or navigate into Settings and go to the Wi-Fi and Bluetooth sections. When a phone is designed to behave in a way other than what the UI suggests, it results in both security and privacy problems. A user has no visual or textual clues to understand the device's behavior, which can result in a loss of trust in operating system designers to faithfully communicate what's going on.Read Replies (0)
By msmash from Slashdot's marketing-dynamics department
An anonymous reader shares a Financial Post report: Beijing ByteDance Technology is the brainchild of entrepreneur Zhang Yiming. The company is best known for a mobile app called Jinri Toutiao, or Today's Headlines, which aggregates news and videos from hundreds of media outlets. In five years, the app has become one of the most popular news services anywhere, with 120 million daily users. Toutiao is on pace to pull in about US$2.5 billion in revenue this year, largely from advertising. It was just valued at more than US$20 billion, according to a person familiar with the matter, roughly the same as Elon Musk's SpaceX. In China, the Beijing company is controversial because of its recruiting. ByteDance hires top performers from such giants as Baidu and Tencent Holdings, sometimes raising salaries 50 per cent and tossing in stock options. "Our philosophy is to pay the top of the market to get the best," says the slight 34-year-old in an interview at the company's headquarters, his first with foreign media. "The company that wants to achieve the most, you need the best talent." Top performers can make US$1 million in salary and bonus a year, plus options, according to people familiar with its hiring. Total compensation can exceed US$3 million.Read Replies (0)
By msmash from Slashdot's denial-denial-denial department
Moscow-based cybersecurity firm Kaspersky Lab has hit back at a report in the Wall Street Journal which accused it of being involved in a Russian government hack of an NSA contractor in 2015. From a report: The paper reported on Thursday that the NSA contractor, a Vietnamese national who was working to create replacements for the hacking tools leaked by Edward Snowden, was hacked on his personal computer after he took his work home. There, the report says, the contractor's use of Kaspersky's antivirus software "alerted Russian hackers to the presence of files that may have been taken from the NSA." Once the machine was in their sights, the Russian hackers infiltrated it and obtained a significant amount of data, according to the paper. Calling the allegations "like the script of a C movie," Eugene Kaspersky, the infosec firm's founder, gave his own explanation of what might have happened. Mr Kaspersky vehemently denied that his company had played any active role in the breach, noting: "We never betray the trust that our users put into our hands. If we would do that a single time that would be immediately spotted by the industry and our business would be done." Instead, he implied that the root of the problem was that Kaspersky Lab had correctly identified the hacking tools the contractor was working on as malware -- perhaps through Kaspersky Lab's own research into the Equation Group, a "sophisticated cyber espionage platform" believed to be linked to the NSA.Read Replies (0)
By BeauHD from Slashdot's behind-the-scenes department
An anonymous reader quotes a report from Quartz: As the world focuses its attention on this year's recipients of the planet's most prestigious prize, the Nobel, it feels like something's missing from the list: technology. Swedish inventor Alfred Nobel established the prizes more than century ago with the instruction that his entire estate be used to endow "prizes to those who, during the preceding year, shall have conferred the greatest benefit to mankind." The categories laid out in his will -- physics, chemistry, physiology or medicine, and peace -- have remained the basis of the awards, and a prize for economics was added in 1968. So, what gives? Why only those five original fields? Nobel didn't say, revealing only that he made his choices "after mature deliberation."
< article continued at Slashdot's behind-the-scenes department
>Read Replies (0)
By BeauHD from Slashdot's new-and-improved department
After Puerto Rico was hit by hurricane Maria, Tesla quickly started shipping hundreds of its Powerwall batteries there to try and get power back on to some houses with solar arrays. Now, Tesla CEO Elon Musk took to Twitter to say that Tesla could rebuild Puerto Rico's power grid with batteries and solar on a bigger scale. Electrek reports: Puerto Rico's electricity rates were already quite high at around $0.20 per kWh and reliant on fossil fuels. After it was pointed out that Puerto Rico's destroyed grid is an opportunity to build a better one, Musk wrote on Twitter: "The Tesla team has done this for many smaller islands around the world, but there is no scalability limit so it can be done for Puerto Rico too. Such a decision would be in the hands of the Puerto Rico government, PUC (Public Utilities Commission), any commercial stakeholders and, most importantly, the people of Puerto Rico."
Musk is referring to solar and battery projects that Tesla recently deployed on other islands, like Tesla's visually stunning Powerpack and solar project in Kauai. Those projects power grids for much smaller populations, but Musk has always said that it's scalable to support much larger islands, like Puerto Rico, and ultimately entire continents, which are just like big islands to a certain degree. The thing is that those systems are still reliant on power lines for larger communities and devices, like solar panels and wind turbines, that are still subject to problems with natural disasters. The advantage of Tesla's solution is that it has the potential to be distributed, which increases the odds of at least some systems staying online or bringing some back online quicker.Read Replies (0)
By BeauHD from Slashdot's bad-news-for-bees department
An anonymous reader quotes a report from The Verge: About three quarters of all honey worldwide is contaminated with pesticides known to harm bees, according to a new study. Though the pesticide levels were below the limit deemed safe for human consumption, there was still enough insecticide in there to harm pollinators. The finding suggests that, as one of the study authors said, "there's almost no safe place for a bee to exist." Scientists analyzed 198 honey samples from all continents, except Antarctica, for five types of pesticides called neonicotinoids, which are known to harm bees. They found at least one of the five compounds in most samples, with the highest contamination in North America, Asia, and Europe. The results are published today in the journal Science.
To get a better sense of just how widespread neonic contamination is, Mitchell and his colleagues analyzed 198 worldwide honey samples collected as a citizen science project between 2012 and 2016. They found that 75 percent of honey contained at least one of the five tested neonics, and 45 percent of samples had two or more. Honey from North America, Asia, and Europe was most contaminated, while the lowest contamination was in South America. Neonic concentrations were relatively low: on average, 1.8 nanograms per gram in contaminated honey -- below the limits set as safe for people by the EU.Read Replies (0)
By BeauHD from Slashdot's coming-soon department
It's official: Facebook will be investing $1 billion in a new data center in Henrico County, which is just outside Richmond, Virginia. According to CNNMoney, Facebook is putting $750 million into construction and $250 million to multiple solar facilities that will power the data center. From the report: The investment is expected to create 100 full-time jobs. Facebook will receive about $19 million in state tax exemptions through 2035, according to the Virginia Economic Development Partnership.
Facebook already has data centers in Oregon, North Carolina and Iowa. Centers in Fort Worth, Texas; Los Lunas, New Mexico; and New Albany, Ohio are currently under construction. "One of the many important factors in our search for a new data center location is being able to source clean and renewable energy. We also look for great partnerships within the local community, robust infrastructure ... and a strong pool of local talent," Rachel Peterson, Facebook's director of data center strategy, said in a statement.Read Replies (0)
By BeauHD from Slashdot's slow-and-steady department
An anonymous reader quotes a report from Ars Technica: Americans bought more electric vehicles in September than any other month this year. According to Inside EV's monthly sales report, 21,325 battery EVs and plug-in hybrid EVs found homes last month. That's 20 percent more than this time last year and the second highest number ever. 2017 looks like it will be a record year; a total of 159,614 EVs were sold, a figure that should easily be eclipsed by the end of October. Tesla leads the pack, thanks to healthy increases in both Model S and Model X sales this month. Tesla may suffer some good-natured teasing about frequently missed deadlines, but you could set your watch by the regularity of its quarter-ending jump in deliveries. Barring some unforeseen circumstance, the Model S will remain the best-selling EV for the third year running. Like the overall trend, sales for the startup EV maker are up compared to last year, and even if the Model 3 continues to frustrate, we expect it to break the 50,000 car barrier by year-end.
General Motors is the only other company within reach of Tesla, whether we're talking about range or sales volume. The Chevrolet Bolt EV is now on sale in all 50 states and finding traction -- 2,632 sold in September and more than 14,000 on the road in 2017 so far. That still only gets it to fifth overall on the score chart, and there are three months left to go. The Chevy Volt, the Bolt's plug-in hybrid EV stablemate, is still the second-most popular EV among American buyers, but its sales have leveled off for the last few months. Toyota is the only other OEM to make the top five, less than 300 units behind the Volt.Read Replies (0)
By BeauHD from Slashdot's new-and-improved department
bigwophh writes: The upheaval of the high-end desktop processor segment continues today with the official release of Intel's latest Coffee Lake-based 8th Generation Core processors. The flagship in the new lineup is the Core i7-8700K. It is a 6C/12T beast, with a base clock of 3.7GHz, a boost clock of 4.7GHz, and 12MB of Intel Smart Cache. The Core i5-8400 features the same physical die, but has only 9MB of Smart Cache, no Hyper-Threading, and base and boost clocks of 2.8GHz and 4GHz, respectively. The entire line-up features more cores, support for faster memory speeds, and leverages a fresh platform that's been tweaked for more robust power delivery and, ultimately, more performance. The Core i7-8700K proved to be an excellent performer, besting every other processor in single-threaded workloads and competing favorably with 8C/16T Ryzen 7 processors. The affordably-priced 6-core Core i5-8400 even managed to pull ahead of the quad-core Core i7-7700K in some tests. Overall, performance is strong, especially for games, and the processors seem to be solid values in their segment.Read Replies (0)
By msmash from Slashdot's stranger-things department
To improve functionality between Uber's app and the Apple Watch, Apple allowed Uber to use a powerful tool that could record a user's iPhone screen, even if Uber's app was only running in the background, security researchers told news outlet Gizmodo. From a report: After the researchers discovered the tool, Uber said it is no longer in use and will be removed from the app. The screen recording capability comes from what's called an "entitlement" -- a bit of code that app developers can use for anything from setting up push notifications to interacting with Apple systems like iCloud or Apple Pay. This particular entitlement, however, was intended to improve memory management for the Apple Watch. The entitlement isn't common and would require Apple's explicit permission to use, the researchers explained. Will Strafach, a security researcher and CEO of Sudo Security Group, said he couldn't find any other apps with the entitlement live on the App Store. "It looks like no other third-party developer has been able to get Apple to grant them a private sensitive entitlement of this nature," Strafach said. "Considering Uber's past privacy issues I am very curious how they convinced Apple to allow this."Read Replies (0)
By msmash from Slashdot's to-the-future department
An anonymous reader shares a report: Scientists have been working on creating synthetic blood for years now. The hope is that this substance will have a longer shelf life than human blood -- which can only be refrigerated for 42 days -- and eventually can be packaged and stored for use in emergencies. If this works, thousands of lives could be saved every year. "People can't show up fast enough and then the system can't draw their blood fast enough to meet the need," said Allan Doctor, a physician and researcher at the Washington University in St. Louis. Doctor's lab has been working to create a blood substitute called ErythroMer, comprised of human hemoglobin, sourced from the red blood cells in expired blood at blood banks, and a synthetic polymer. This synthetic blood is actually a dehydrated powder, which would allow it to be stored for years, rather than weeks, and easily transported. Doctor envisions that it could eventually be packaged along with purified water so that doctors or EMTs could mix it when they needed to use it on a patient. ErythroMer is still in the planning stages. It has only been tested on animals, and Doctor predicts that the team is about three to five years from the first human trials. Following that, it will need FDA approval, and then healthcare workers will need to be trained to use it properly to avoid infections. "It's important for us to have a bulletproof delivery system," Doctor told me. He predicts that it will be available in six to 10 years if the trials are successful, and if they can make a cost-effective formula. There are different approaches to creating synthetic blood, which is technically just a way of transporting oxygen in the body. In 2013, a team in Romania announced that they were making it with albumin, a liver protein, and hemerythrin, a protein extracted from worms. In the UK, scientists with the National Health Service have been testing lab-grown red blood cells.Read Replies (0)
By msmash from Slashdot's growing-pattern department
An anonymous reader shares a report: Amazon, disrupter of industries from book selling to grocery shopping, has found its latest sector to upend -- recruiting at the nation's elite business schools. The Seattle-based retail giant is now the top recruiter at the business schools of Carnegie Mellon University, Duke University and University of California, Berkeley. It is the biggest internship destination for first-year M.B.A.s at the University of Michigan, Massachusetts Institute of Technology, Dartmouth College and Duke. Amazon took in more interns from the University of Chicago's Booth School of Business than either Bain & Co. or McKinsey & Co., which were until recently among the school's top hirers of interns, according to Madhav Rajan, Booth's dean. All told, Amazon has hired some 1,000 M.B.A.s in the past year, according to Miriam Park, Amazon's director of university programs -- a drop in the bucket for a company that plans to add 50,000 software developers in the next year. But Amazon's flood-the-zone approach to recruiting and hiring future M.B.A.s -- in some cases before they have taken a single business-school course -- is feeding the career frenzy on campus and rankling some rival recruiters. The talent wars begin even before classes do. This past June, Amazon sponsored an event at its Seattle headquarters for 650 soon-to-be first-year and returning women M.B.A. students, some of whom left the event with internship offers for summer 2018.Read Replies (0)
By msmash from Slashdot's ignorance-is-bliss,-not department
Catalin Cimpanu, writing for BleepingComputer: A security researcher has found nearly 700 Brother printers left exposed online, allowing access to the password reset function to anyone who knows what to look for. Discovered by Ankit Anubhav, Principal Researcher at NewSky Security, the printers offer full access to their administration panel over the Internet. Anubhav has provided Bleeping Computer with a list of exposed printers. Accessing a few random URLs, Bleeping has discovered a wide range of Brother printer models, such as DCP-9020CDW, MFC-9340CDW, MFC-L2700DW, or MFC-J2510, just to name a few. The cause of all these exposures is Brother's choice of shipping the printers with no admin password. Most organizations most likely connected the printers to their networks without realizing the admin panel was present and wide open to connections. These printers are now easy discoverable via IoT search engines like Shodan or Censys.Read Replies (0)