By BeauHD from
Slashdot's play-catch-up department:
An anonymous reader quotes a report from Ars Technica: With Firefox 50, Mozilla has rolled out the first major piece of its new multi-process architecture. Edge, Internet Explorer, Chrome, and Safari all have a multiple process design that separates their rendering engine -- the part of the browser that reads and interprets HTML, CSS, and JavaScript -- from the browser frame. They do this for stability reasons (if the rendering process crashes, it doesn't kill the entire browser) and security reasons (the rendering process can be run in a low-privilege sandbox, so exploitable flaws in the rendering engine are harder to take advantage of). Moreover, these browsers can all create multiple rendering engine processes and use different processes for different tabs. This means that the scope of a crash is narrowed even further, typically to a single tab. Internet Explorer and Chrome both implemented this long ago, in 2009. Firefox, however, has not offered a similar design. Although work on a multi-process browser was started in 2009, under the codename Electrolysis, that work was suspended between 2011 and 2013 as priorities within the organization shifted. In response, Mozilla started switching to a new extension system in 2015 that opened the door to a multi-process design. The first stage of Firefox's move to multi-process involves separating the browser shell from a single rendering process that's used by every tab. In Firefox 48, that feature was enabled for a small number of users who used no extensions. Firefox 49 was rolled out to include users running a limited selection of extensions. Now, in Firefox 50, a separate renderer process is used for most users and most extensions. Developers are now able to mark their extensions as explicitly multi-process compatible. Firefox 51 will extend this even further to cover all extensions, except those that are explicitly marked as incompatible. Mozilla says that, even with the limited changes made in Firefox 50, responsiveness of the browser has improved by 400 percent due to the separation between the renderer and the browser shell. During page loads, responsiveness will increase to 700 percent.
Read Replies (0)
By BeauHD from
Slashdot's smoke-screen department:
An anonymous reader writes: Last week, WordPress security firm WordFence revealed it detected over 1.65 million brute-force attacks originating from an ISP in Ukraine that generated more malicious traffic than GoDaddy, OVH, and Rostelecom, put together. A week later, after news of WordFence's findings came to light, Ukrainian users have tracked down the ISP to a company called SKS-Lugan in the city of Alchevs'k, in an area controlled by pro-Russian forces in eastern Ukraine. All clues point to the fact that the ISP's owners are using the chaos created by the Ukrainian civil war to host cyber-crime operations on their servers. Some of the criminal activities the ISP hosts, besides servers for launching brute-force attacks, include command-and-control servers for the Locky ransomware, [email, comment, and forum] spam botnets, illegal streaming sites, DDoS stressers, carding sites, several banking trojans (Vawtrack, Tinba), and infostealers (Pony, Neurevt).
Read Replies (0)
By BeauHD from
Slashdot's red-flag department:
An anonymous reader quotes a report from Reuters: Yahoo Inc's secret scanning of customer emails at the behest of a U.S. spy agency is part of a growing push by officials to loosen constitutional protections Americans have against arbitrary governmental searches, according to legal documents and people briefed on closed court hearings. The order on Yahoo from the secret Foreign Intelligence Surveillance Court (FISC) last year resulted from the government's drive to change decades of interpretation of the U.S. Constitution's Fourth Amendment right of people to be secure against "unreasonable searches and seizures," intelligence officials and others familiar with the strategy told Reuters. The unifying idea, they said, is to move the focus of U.S. courts away from what makes something a distinct search and toward what is "reasonable" overall. The basis of the argument for change is that people are making much more digital data available about themselves to businesses, and that data can contain clues that would lead to authorities disrupting attacks in the United States or on U.S. interests abroad. While it might technically count as a search if an automated program trawls through all the data, the thinking goes, there is no unreasonable harm unless a human being looks at the result of that search and orders more intrusive measures or an arrest, which even then could be reasonable. Civil liberties groups and some other legal experts said the attempt to expand the ability of law enforcement agencies and intelligence services to sift through vast amounts of online data, in some cases without a court order, was in conflict with the Fourth Amendment because many innocent messages are included in the initial sweep. But the general counsel of the Office of the Director of National Intelligence (ODNI), Robert Litt, said in an interview with Reuters on Tuesday that the legal interpretation needed to be adjusted because of technological changes.
Read Replies (0)
By BeauHD from
Slashdot's refusal-of-service department:
Gandalf_the_Beardy quotes a report from The Register: The Register reports on the story of Jim Giercyk, an amateur radio enthusiast who had his copy of the popular Ham Radio Deluxe (HRD) software revoked after posting a negative review. Other radio hams have followed up with us regarding claims that this was not an isolated incident and others may have had their license keys blacklisted for being publicly critical of the company. And just to be clear: by blackballing keys, installed copies of the software stop working. Giercyk, a professional musician in South Carolina, U.S., says that after his dealings with HRD Software (which has since reinstated his software key) and the statement made by the developer's co-owner Dr Michael Carper, he takes issue with claims made by the company. Giercyk, aka N2SUB, told us on Tuesday: "The issue is not the refusal of service, the issue is that HRD disabled my software, and then offered to enable it in exchange for the removal of an online review of their product. It's extortion, not refusal of service." Giercyk also said that since he went public about his blacklisting last week, he has received messages from other users who have stories of their software keys being revoked by HRD without their knowledge for speaking up about having a bad support experience. A number of other readers pointed out a collection of bad reviews posted on hobbyist site eHam by customers who had their license keys blacklisted. HRD told us some of those users could have written their assessments after requesting a refund and deactivating their software, thus their licenses will appear revoked. Meanwhile, Reddit threads and follow-up discussions to Giercyk's catalyst forum post reveal similar stories of keys being revoked after critical comments about Ham Radio Deluxe have appeared online. Other sources allege some amateur radio forums have in the past deleted posts critical of HRD.
Read Replies (0)
By BeauHD from
Slashdot's off-limits department:
Before the new administration takes over next month, President Obama took new action Wednesday to place large sections of the Arctic and the Atlantic Oceans off limits to oil drilling. NPR reports: The Arctic protections are a joint partnership with Canada. "These actions, and Canada's parallel actions, protect a sensitive and unique ecosystem that is unlike any other region on earth," the White House said in a statement. "They reflect the scientific assessment that, even with the high safety standards that both our countries have put in place, the risks of an oil spill in this region are significant and our ability to clean up from a spill in the region's harsh conditions is limited," the White House added. "By contrast, it would take decades to fully develop the production infrastructure necessary for any large-scale oil and gas leasing production in the region -- at a time when we need to continue to move decisively away from fossil fuels." Obama's action designates 31 Atlantic canyons "off limits to oil and gas exploration and development activity," totaling 3.8 million acres, according to the administration. It provides the same protections to much of the Arctic's waters, covering the "vast majority of U.S. waters in the Chukchi and Beaufort Seas," totaling 115 million acres. Canada is doing the same to "all Arctic Canadian waters," the joint statement adds. Obama took these actions by invoking a law called the Outer Continental Shelf Lands Act, which gives the president the authority to withdraw lands from oil and gas leases.
Read Replies (0)
By msmash from
Slashdot's what's-happening department:
An anonymous reader shares a report: Data from the builds on PCPartPicker show an interesting trend among the buyers of AMD CPUs. Of the 25,780 builds on PCPartPicker from the last 31 months with a price point between $450âS - $5,000, 19% included an AMD CPU. This is in-line with the Steam Hardware Surveys, but things have changed recently. Builds with AMD CPUs tend to be much less expensive than those with Intel CPUs. The builds with an AMD CPU were $967 on average versus the Intel CPU builds, which were on average $1,570. In the last 31 months, brand loyalty to AMD seemed to push AMD CPU builders to choose AMD graphics cards at a much higher rate than Intel CPU builders. 55% of machines with an AMD CPU also had an AMD GPU; whereas, only 19% of builds with an Intel CPU included an AMD GPU. In the last six months, AMD has started to lose even more ground to Intel and to Nvidia. On the CPU builds, only 10% of gamers building on PCPartPicker were opting to buy an AMD CPU. Among these, the percentage that decided to pair their AMD CPU with an AMD GPU dropped to 51%. The challenges that AMD is seeing in the overall GPU market are being felt even amongst their loyal supporters.
Read Replies (0)
By BeauHD from
Slashdot's time-to-call-the-Avengers department:
An anonymous reader quotes a report from Polygon: Netflix, Marvel and various Marvel-affiliated Twitter accounts became the latest victims of hacker group OurMine on Wednesday. On Wednesday morning, the group took over control of Netflix's twitter account, issuing a message to the company's 2.4 million followers about the lack of security Netflix had. The full message was followed by a secondary tweet that invited Twitter users to see how secure their accounts were by emailing the hacking group responsible, OurMine. Netflix was eventually able to regain control of its account and deleted the tweets, but OurMine didn't stop there. Around 12 p.m. ET today, OurMine took over control of Marvel's main Twitter account and those affiliated with the company. Accounts for Black Panther, Captain America, Iron Man, Ant-Man, Thor, Doctor Strange and Marvel Music were all compromised in the attack. Like the takeover Netflix suffered from earlier in the day, OurMine used the attack to post messages about security -- or lack thereof -- that major companies had when it came to their social media accounts. Marvel's main Twitter account has close to 4.4 million followers, nearly double Netflix's online following. It only took Marvel about ten minutes to regain control of its accounts and delete OurMine's tweets. Those tweets can no longer be seen on any of the affiliated accounts, but can still be found through Twitter searches thanks to people's screenshots.
Read Replies (0)
By msmash from
Slashdot's affinity-for-data department:
Facebook said Wednesday that government requests for user account data rose 27 percent in the first half of 2016, compared to the second half of last year, with U.S. law enforcement agencies topping the list. From a report on TechCrunch: According to the report, government requests for account data increased by 27 percent globally as compared with the last half of 2015. The number of requests grew from 46,710 to 59,229, Facebook said. The majority of the requests (56 percent) received from U.S. law enforcement contained a non-disclosure clause that prevented Facebook from notifying the user in question, the company noted. As with prior transparency reports, Facebook also detailed the number of content restriction requests -- that is, the requests from governments in response to postings that violate local laws. These actually decreased by 83 percent from 55,827 to 9,663. However, those figures don't point to a general decline in these sorts of requests from governments. Instead, the last cycle's numbers were elevated more than usual due to a sharp increase in requests related to a single image from the terrorist attacks in Paris last November.
Read Replies (0)
By msmash from
Slashdot's patent-war department:
Nokia today announced a number of patent infringement complaints against Apple in Europe and the U.S. courts. There are 32 patents in total that Nokia claims Apple infringed, covering technologies such as display, user interface, software, antenna, chipsets and video coding. From a report on MarketWatch: Nokia said Apple agreed to license a few of Nokia Technologies' patents in 2011, but has declined offers by Nokia since then to license other patents whose inventions have been used in Apple mobile devices, including the iPhone and iPad, and the Mac. The lawsuits, filed in a Munich, Germany, regional court and a district court in Texas, cover technologies such as display, user interface, software, antenna, chipsets and video coding. Nokia said it's in the process of filing further actions in other jurisdictions as well. "After several years of negotiations trying to reach agreement to cover Apple's use of these patents, we are now taking action to defend our rights," said Ilkka Rahnasto, head of patent business at Nokia.
Read Replies (0)
By msmash from
Slashdot's company-policies department:
An anonymous reader writes: A Google product manager has filed a lawsuit against the company for its confidentiality policies on the grounds they violate California labor laws. California labor laws give employees the right to discuss workplace issues with law enforcement, regulators, the media, and other employees. Google is accused of firing the employee for exercising his rights, then smearing his reputation in an internal email sent to the rest of the company. These policies are put in place to allegedly prevent the leaking of potentially damaging information to regulators or law enforcement. They in turn prohibit employees from speaking out about illegal activity within the company, even to its own lawyers, and encourage them to report other employees suspected of leaking information. The Verge has obtained a copy of the complaint, linked below in full. "Google's motto is 'don't be evil.' Google's illegal confidentiality agreements and policies fail this test," the lawsuit reads. One policy allegedly even prevents employees from writing a novel about working for a large Silicon Valley corporation -- like, for instance, Dave Eggers' dystopian novel, The Circle -- without first getting final draft approval from Google. The Information confirmed that this lawsuit was filed by the same individual, known in the suit only as "John Doe," who filed a complaint with the National Labor Relations Board earlier this year over many of the same confidentiality policies.
Read Replies (0)
By msmash from
Slashdot's fwiw department:
Twitter is "toast" as a company and the stock is not even worth $10, according to a research note published Tuesday, following the departure of another top executive at the social media service. From a report on CNBC: The microblogging platform's chief technology officer, Adam Messinger, tweeted that he would leave the company and "take some time off", while Josh McFarland, vice president of product at Twitter, also said he was exiting the company. Both executives announced their departure on Tuesday. Meanwhile, last month, Adam Bain stepped down as chief operating officer last month to be replaced by chief financial officer Anthony Noto, who has yet to be replaced. Twitter has also lost leaders from business development, media and commerce, media partnerships, human resources, and engineering this year. The departures prompted Trip Chowdhry, the managing director of equity research at Global Equities Research, and a noted "uber-bear" on tech stocks, to issue a note on Tuesday claiming Twitter is "toast" and "not even a $10 stock." "Many investors were foolishly building (an) investment thesis based on complete stupidity," Chowdhry wrote. The analyst said that Twitter's data quality is "horrible". Chowdhry said that many pollsters used Twitter data to predict a Hillary Clinton win in the U.S. election but the fact that Donald Trump won shows that data quality is poor. One reason for this is too many fake users on the platform, Chowdhry claims.
Read Replies (0)
By msmash from
Slashdot's fighting-back department:
"General and indiscriminate retention" of emails and electronic communications by governments is illegal, the EU's highest court has ruled, in a judgment that could trigger challenges against the UK's new Investigatory Powers Act -- the so-called snooper's charter. From a report on The Guardian: Only targeted interception of traffic and location data in order to combat serious crime -- including terrorism -- is justified, according to a long-awaited decision by the European court of justice (ECJ) in Luxembourg. The finding came in response to a legal challenge initially brought by the Brexit secretary, David Davis, when he was a backbench MP, and Tom Watson, Labour's deputy leader, over the legality of GCHQ's bulk interception of call records and online messages. Davis and Watson, who were supported by Liberty, the Law Society, the Open Rights Group and Privacy International, had already won a high court victory on the issue, but the government appealed and the case was referred by appeal judges to the ECJ. The case will now return to the court of appeal to be resolved in terms of UK legislation.
Read Replies (0)