By manishs from Slashdot's security-woes department
Forum of porn website Brazzers has been hacked, exposing the data of as many as 800,000 users, reports Motherboard. Though the data originated from the company's separate forum, the report adds, Brazzers users who never signed up to the forum may also find their details included in the dump. From the report: Motherboard was provided the dataset by breach monitoring site Vigilante.pw for verification purposes. The data contains 790,724 unique email addresses, and also includes usernames and plaintext passwords. (The set has 928,072 entries in all, but many are duplicates.) Troy Hunt, a security researcher and creator of the website Have I Been Pwned? helped verify the dataset by contacting subscribers to his site, who confirmed a number of their details from the data.Read Replies (0)
By EditorDavid from Slashdot's because-why-not? department
As America celebrates a national holiday honoring organized labor, long-time Slashdot reader itwbennett shares this story about the modern workplace:
Three years ago, talent management and human resources company Haufe U.S. created a workplace democracy in which C-level leadership is elected by the employees for a one-year term. In an interview with CIO, Kelly Max, who is currently serving as Haufe's CEO, explains how the company got to this point and what they've learned from the experience.
"If you're going to talk about how your employees 'own' the company, if you're going to tout how they all have a voice, why not go all the way and see what happens? Because why not? You already have people working for and with you who elect you every day, who either agree or disagree with you and follow you, so we wanted to make it very transparent," says Max.
This raises an inevitable question for Slashdot readers: would your own organization work as a democracy? So leave your answers here in the comments. Would your company's employees fire your CEO?Read Replies (0)
By EditorDavid from Slashdot's whither,-not-withered department
"Tor hasn't changed, it's the world that's changed," says Aaron Johnson, the lead researcher on a 2013 paper which reported that 80% of Tor users could be de-anonymized within six months, and that today's users may want protection from different threats. An anonymous Slashdot reader quotes Ars Technica:
The most probable future we face is a world in which Tor continues to offer a good-but-not-perfect, general-purpose anonymity system, while new anonymity networks arrive offering stronger anonymity optimised for particular use-cases, like anonymous messaging, anonymous filesharing, anonymous microblogging, and anonymous voice-over-IP. Nor is the Tor Project standing still. Tor today is very different from the first public release more than a decade ago, [Tor project cofounder Nick] Mathewson is quick to point out. That evolution will continue.
"It's been my sense for ages that the Tor we use in five years will look very different from the Tor we use today," he says. "Whether that's still called Tor or not is largely a question of who builds and deploys it first. We are not stepping back from innovation. I want better solutions than we have today that are easier to use and protect people's privacy."
The article lists five projects that are "breaking new ground in developing stronger anonymity systems," including the Dissent Project, the Aqua and Herd projects (for filesharing and voice over IP), Vuvuzela/Alpenhorn (for anonymous chat), Riffle (filesharing), and Riposte (anonymous microblogging). Tor project cofounder Nick Mathewson is urging anonymity developers to begin using their own software. "What you learn about software from running it is like what you learn from food by tasting it... You can't actually know whether you've made a working solution for humans unless you give it to humans, including yourself."Read Replies (0)
By EditorDavid from Slashdot's spying-on-spyware department
The New York Times continues their coverage of the commercial spytech industry, noting its services "are in higher demand now that companies like Apple, Facebook and Google are using stronger encryption to protect data in their systems, in the process making it harder for government agencies to track suspects... For the last six years, the NSO Group's main product, a tracking system called Pegasus, has been used by a growing number of government agencies to target a range of smartphones -- including iPhones, Androids, and BlackBerry and Symbian systems -- without leaving a trace...to extract text messages, contact lists, calendar records, emails, instant messages and GPS locations." Slashdot reader turkeydance quotes their article:
That will cost you $650,000, plus a $500,000 setup fee with an Israeli outfit called the NSO Group. You can spy on more people if you would like -- just check out the company's price list. The NSO Group is one of a number of companies that sell surveillance tools that can capture all the activity on a smartphone, like a user's location and personal contacts. These tools can even turn the phone into a secret recording device...
The company is one of dozens of digital spying outfits that track everything a target does on a smartphone. They aggressively market their services to governments and law enforcement agencies around the world. The industry argues that this spying is necessary to track terrorists, kidnappers and drug lords. The NSO Group's corporate mission statement is "Make the world a safe place"... An ethics committee made up of employees and external counsel vets potential customers based on human rights rankings set by the World Bank and other global bodies....
< article continued at Slashdot's spying-on-spyware department
>Read Replies (0)
By EditorDavid from Slashdot's missed-connections department
An anonymous Slashdot reader writes:
TSA checkpoints caused 6,800 American Airlines passengers to miss their flights in just one week this spring, and the problem isn't improving. "Two years ago the Transportation Security Administration (TSA) offered $15,000 to anybody -- literally anybody -- who could come up with an idea to speed up airport security..." writes Popular Science. "They wouldn't say who won or for which idea, but since we're here two years later with longer wait times than ever, it's fair to say it hasn't lived up to the groundbreaking ideals of that call to action... Now in summer 2016, the TSA recommends arriving three hours early instead of a mere two."
So this spring the Seattle-Tacoma airport replaced many of the TSA staff with private screeners, although "Private security operates under strict direction from the TSA, and even those airports that heavily utilize private contractors still have a lot of TSA personnel in the back rooms..." according to the article. "The ability to do exactly what the TSA does, only faster and cheaper, seems to be the major draw." Now 22 U.S. airports are using private screeners, although the Seattle and San Francisco airports are the only ones with significant traffic.
The article also cites a Homeland Security report which discovered that investigators were able to smuggle a test bomb past security checkpoints in 67 out of 70 tests.Read Replies (0)
By EditorDavid from Slashdot's government-giving department
Finland is getting ready to launch their first pilot program with a Universal Basic Income -- one of several countries which are now testing the concept. An anonymous reader quotes a report from Futurism.com:
Finland is about to launch an experiment in which a randomly selected group of 2,000-3,000 citizens already on unemployment benefits will begin to receive a monthly basic income of 560 euros (approximately $600). That basic income will replace their existing benefits. The amount is the same as the current guaranteed minimum level of Finnish social security support. The pilot study, running for two years in 2017-2018, aims to assess whether basic income can help reduce poverty, social exclusion, and bureaucracy, while increasing the employment rate.
In January a basic income program will also begin testing in the Netherlands, according to the article, which points out that Y Combinator has also launched a test program in Oakland, California. And there's now also calls for a Universal Basic Income in India, where one social worker argues it's "sound social policy," while pointing out that it's already being implemented in other countries. "In Brazil, it targets the poor and has been a way out of poverty; in Iran, it has substituted for subsidies and citizens receive about $500 a year..."Read Replies (0)
By EditorDavid from Slashdot's ditching-the-dongles department
An anonymous Slashdot reader quotes a report from TechHive:
On Friday, HDMI Licensing announced a new cable standard that connects USB-C and HDMI devices... The idea, naturally enough, is to to develop an HDMI-to-USB Type-C cable that ties together the most common cabling protocols in both the PC and consumer electronics industries, eliminating the need for an adapter or special silicon. Source devices like PCs, tablets, and smartphones will be able to output HDMI video and multi-channel audio from a USB-C port, just as they can now with DisplayPort.
"The USB Type-C connector is gaining traction in the mobile and PC markets," said HDMI Licensing, LLC president Rob Tobias. "Consumers expect to easily connect these devices to displays with a USB Type-C to HDMI cable and utilize the capabilities and features of native HDMI. This specification will also result in more source devices incorporating HDMI," which already total about 6 billion, he said.
HDMI Licensing expects to see products launching with this new technology "early next year".Read Replies (0)
By EditorDavid from Slashdot's friend-requests department
An anonymous Slashdot reader writes:
"A fugitive in Florida has been arrested by police after he used a wanted poster adorned with his mug shot for his Facebook profile picture," writes the International Business Times. After investigating reports of a disturbance, police discovered the 41-year-old's Facebook profile, which revealed the man was already wanted for six months for violating his parole after two counts of battery.
"Police say that as they arrested Yearwood a bag of marijuana fell out of his pocket. They charged him with possession of cannabis under 20 grams and are continuing to investigate the battery complaint."
One Twitter user jokingly suggested that the suspect should also be charged with copyright infringement -- for using the police department's photo without their permission.Read Replies (0)
By EditorDavid from Slashdot's Sunday-driving department
Slashdot reader chicksdaddy quotes an article from Security Ledger:
The Federal Trade Commission is warning consumers to beware of new 'connected car' features that allow rental car customers to connect their mobile phone or other devices to in-vehicle infotainment systems. "If you connect a mobile device, the car may also keep your mobile phone number, call and message logs, or even contacts and text messages," the FTC said in an advisory released on Tuesday. "Unless you delete that data before you return the car, other people may view it, including future renters and rental car employees or even hackers."
The Commission is advising renters to avoid syncing their mobile phones to their rental car, or to power devices via a USB port, where settings on your device may allow automatic syncing of data. Consumers who do connect their device should scrutinize any requests for permissions.
Security researchers have also discovered another car-related vulnerability. The software connecting smartphones to in-vehicle "infotainment" systems could also make cars vulnerable to remote attacks.Read Replies (0)
By EditorDavid from Slashdot's ready-for-the-red-planet department
NASA will land a new probe on Mars on November 26, 2018, "paving the way toward an ambitious journey to send humans to the Red Planet," according to one NASA official. The $828 million project will investigate how the planet was formed, NASA announced Friday, calling it "an unparalleled opportunity to learn more about the internal structure of the Red Planet."
Meanwhile, long-time Slashdot reader taiwanjohn shares an editorial published by Ars Technica the same day, titled "We love you SpaceX, and hope you reach Mars. But we need you to focus." Noting that SpaceX receives the majority of its funding from NASA, the site's senior space editor writes that the company's business model requires that they ultimately deliver a reusable launch system.
"I understand SpaceX has a master plan -- the company wants to colonize Mars... But at some point you have to focus on the here and now, and that is the Falcon 9 rocket... if there is no Falcon 9, there is no business."
In a related story, Saturday NASA's history office shared a photograph from the Viking 2's landing on the surface of Mars -- which happened exactly 40 years ago.Read Replies (0)
By EditorDavid from Slashdot's secret-search-subpoenas department
An anonymous Slashdot reader quotes BetaNews about new legal documents filed Friday:
Microsoft is fighting the US Justice Department in an attempt to quash a law that prevents companies informing customers that the government is requesting their data. The technology giant has the backing of other tech companies as well as media outlets. Amazon, Apple, Google, Fox News, Electronic Frontier Foundation and Mozilla are among those offering their support to Microsoft. The lawsuit says that blocking companies from keeping their customers informed is unconstitutional, and it comes at a time when tech companies in particular are keen to be as open and transparent as possible about government requests for data....
As EFF Senior Staff Attorney Lee Tien puts it: "Whether the government has a warrant to rifle through our mail, safety deposit boxes, or emails stored in the cloud, it must notify people about the searches. When electronic searches are done in secret, we lose our right to challenge the legality of law enforcement invasions of privacy. The Fourth Amendment doesn't allow that, and it's time for the government to step up and respect the Constitution."
Mozilla argues transparency "is critical to our vision of an open, trusted, secure web that places users in control of their experience online," in a blog post announcing that they'd joined a brief filed by Apple, Twilio, and Lithium Technologies.
And a statement from an EFF staff attorney argues that notifying the targets of searches "provides a free society with a crucial means of government accountability."Read Replies (0)
By EditorDavid from Slashdot's beat-the-clock-speed department
"Researchers at the University of Wisconsin-Madison are the first to have fabricated carbon nanotube transistors (CNTs) that outperform the current-density of conventional semiconductors like silicon and gallium arsenide," reports NanotechWeb.
Slashdot reader wasteoid
shares the site's interview with one of the researchers:
"When the transistors are turned on to the conductive state (meaning that current is able to pass through the CNT channel) the amount of current traveling through each CNT in the array approaches the fundamental quantum limit," he tells nanotechweb.org.
"Since the CNTs conduct in parallel, and the packing density and conductance per tube are very high, the overall current density is very high too -- at nearly twice that of silicon's. The result is that these CNT array FETs have a conductance that is seven times higher than any previous reported CNT array field-effect transistor."
The research was funded in part by the U.S. Army and Air Force, as well as the National Science Foundation. "The implication here is that by replacing silicon with a CNT channel, it should be possible for us to make either a higher performing device or one that works at lower power." In other news, Fujitsu announced this week that it's joining an effort to release a 256-megabyte 55-nanometer carbon nanotube-based NRAM by 2018.Read Replies (0)
By EditorDavid from Slashdot's join-us-now-and-hide-the-payments department
Long-time Slashdot reader mspohr writes:
The Guardian has an opinion piece by Richard Stallman which argues that we should be able to pay for news anonymously. From the article: "Online newspapers and magazines have come to depend, for their income, on a system of advertising and surveillance, which is both annoying and unjust... What they ought to do instead is give us a truly anonymous way to pay."
He also (probably not coincidentally) has developed a method to do just that. "For the GNU operating system, which was created by the free software movement and is typically used with the kernel Linux, we are developing a suitable payment system called GNU Taler that will allow publishers to accept anonymous payments from readers for individual articles."
Publishers "can profit from defending privacy rather than from exposing their readers," argues Stallman, ending his article with a simple plea. "Publishers, please let me pay you -- anonymously!"Read Replies (0)
By EditorDavid from Slashdot's your-money's-no-good-here department
An anonymous reader quotes Softpedia: Anthony Di Iorio, founder of Jaxx, a crypto-currency wallet, claims that an Apple representative revealed to him the six crypto-currencies allowed on the App Store, during a private phone conversation... Di Iorio had this conversation with the Apple employee after the company removed his Jaxx iOS app from the store. The Apple employee told Di Iorio that they had to remove his app because it featured support for Dash, another blockchain technology, touted as an alternative to Bitcoin. During the conversation, Di Iorio asked what crypto-currencies Apple approves of, so he'd know what to remove from Jaxx's iOS version and get his app back on the App Store. Di Iorio says that Apple is comfortable approving apps on its App Store that handle only six crypto-currencies: Bitcoin, Dogecoin, Litecoin, Ethereum, the DAO and Ripple. Reaction to Apple's list of approved crypto-currencies wasn't positive, at least on Twitter. Most users criticized Apple's decision to limit the list to only six, which they considered might thwart the evolution of other, lesser-known crypto-currencies.
Vitalik Buterin, who helped create Ethereum with Di lorio, tweeted "For the record: despite being a beneficiary of this instance of (private) regulatory protectionism, I oppose it."Read Replies (0)
QtCon Opens In Berlin
Posted by News Fetcher on September 03 '16 at 06:43 PM
By EditorDavid from Slashdot's Qt-community department
Long-time Slashdot reader JRiddell writes: A unique coming together of open source communities is happening in Berlin over the next week. QtCon brings together KDE, Qt, VLC and FSF-E to discuss free software, open development, community management and proprietary coding. Live streams of many of the talks are available now. The opening keynote spoke of open data and collaborative coding freeing accessibility information. 13 tracks of talks cover Community, Web, Best practices, Automotive, Mobile and Embedded, Let's talk business, Tooling, QtQuick, Multithreading, OpenGL and 3D.Read Replies (0)