By EditorDavid from Slashdot's weasels-on-the-web department
An anonymous reader writes:
Three doctoral students at Stony Brook University spent eight months analyzing internet scammers who pose as remote tech support workers (usually pretending to be from Microsoft of Apple). Their research revealed more than 25,000 scam domains and thousands of different scam phone numbers. "Although victims of these scams can be anywhere, the researchers found that 85.4% of the IP addresses in these scams were located across different regions of India," reports On The Wire, "with 9.7% located in the United States and 4.9% in Costa Rica. Scammers typically asked users for an average of $291, with prices ranging from $70 to $1,000."
The researchers even called 60 of the con artists to study their technique, and concluded most were working in large, organized call centers. They use remote access tools, and in fact two popular tools were used in 81% of the scams, according to the paper. "We found that, on average, a scammer takes 17 minutes, using multiple social engineering techniques mostly based on misrepresenting OS messages, to convince users of their infections..."Read Replies (0)
By EditorDavid from Slashdot's doctor-doctor department
First, "A new study finds that nearly 9 in 10 people who go for a second opinion after seeing a doctor are likely to leave with a refined or new diagnosis from what they were first told," according to an article shared by Slashdot reader schwit1:
Researchers at the Mayo Clinic examined 286 patient records of individuals who had decided to consult a second opinion, hoping to determine whether being referred to a second specialist impacted one's likelihood of receiving an accurate diagnosis. The study, conducted using records of patients referred to the Mayo Clinic's General Internal Medicine Division over a two-year period, ultimately found that when consulting a second opinion, the physician only confirmed the original diagnosis 12 percent of the time. Among those with updated diagnoses, 66% received a refined or redefined diagnosis, while 21% were diagnosed with something completely different than what their first physician concluded.
But in a related story, Slashdot reader sciencehabit writes that four machine-learning algorithms all performed better than currently-used algorithm of the American College of Cardiology, according to newly-published research, which concludes that "machine-learning significantly improves accuracy of cardiovascular risk prediction, increasing the number of patients identified who could benefit from preventive treatment, while avoiding unnecessary treatment of others."
"I can't stress enough how important it is," one Stanford vascular surgeon told Science magazine, "and how much I really hope that doctors start to embrace the use of artificial intelligence to assist us in care of patients."Read Replies (0)
By EditorDavid from Slashdot's see-you-for-10-seconds-in-court department
"Saying it had 'nothing to hide,' the company behind Snapchat released an unredacted version of a lawsuit filed against it by a former employee that claims investors and advertisers were misled about usage data." And one allegation -- about a meeting with the company's 25-year-old CEO about flawed user metrics and low adoption in India in Spain -- is particularly embarrassing.
Pompliano, who had just been hired away from Facebook, contends that he presented methods to address the issue, but that Evan Spiegel, the company's CEO, abruptly cut him off. "This app is only for rich people," Spiegel said, according to Pompliano. "I don't want to expand into poor countries like India and Spain"... Pompliano claims that Spiegel then met with two other executives and determined that "Mr. Pompliano presented a risk to Snapchat's IPO."
It may have been a flip remark, but the lawsuit also alleges two data analysts confided to Pompliano that Snapchat had "an institutional aversion to looking at user data," where its efforts showed "utter incompetence". The former employee -- who was fired after three weeks -- alleges that Snapchat inflated the rate of completed registrations and the number of users who stayed longer than seven days.
Snap originally said the lawsuit should remain redacted because it contained damaging trade secrets that would help its competitors, but now Snap attorneys are accusing Pompliano and his attorneys of "just making things up... The simple fact is that he knows exactly nothing about Snap's current metrics." Variety reports that Pompliano's attorney "said that Snap withdrew its effort to seal the complaint because the company knew it would lose."Read Replies (0)
By EditorDavid from Slashdot's spaces-instead-of-tabs department
Researchers recently surveyed 2,200 software developers to calculate the distribution of unhappiness throughout the profession, and to identify its top causes, "incorporating a psychometrically validated instrument for measuring (un)happiness." An anonymous reader quotes Motherboard:
Daniel Graziotin and his team found their survey subjects via GitHub. Contact information was found by mining archived data for past public GitHub events, where email addresses are apparently more plentiful. They wound up with 33,200 records containing developer locations, contact information, and employers. They took a random sampling from this dataset and wound up with about 1,300 valid survey responses... According to survey results released earlier this month, software developers are on average a "slightly happy" group of workers...
Survey responses were scored according to the SPANE-B metric, a standard tool used in psychology to assess "affect," defined as total negative feelings subtracted from total positive feelings. It ranges from -24 to 24. The mean score found in the developer happiness survey was 9.05. Slightly happy. The minimum was -16, while the maximum was 24. So, even in the worst cases, employees weren't totally miserable, whereas in the best cases employees weren't miserable at all.
The paper -- titled "On the Unhappiness of Software Developers" -- found that the top cause of unhappiness was being stuck while solving a problem, followed by "time pressure," bad code quality/coding practices, and "under-performing colleague."
And since happiness has been linked to productivity, the researchers write that "Our results, which are available as open data, can act as guidelines for practitioners in management positions and developers in general for fostering happiness on the job...unhappiness is present, caused by various factors and some of them could easily be prevented."Read Replies (0)
By EditorDavid from Slashdot's way-back-machines department
We've recently seen stories about old computers and sys-ops resurrecting 1980s BBS's, but now an anonymous reader has a question for all Slashdot readers:
Whenever I meet geeks, there's one question that always gets a reaction: Do you remember your first home computer? This usually provokes a flood of fond memories about primitive specs -- limited RAM, bad graphics, and early versions of long-since-abandoned operating systems. Now I'd like to pose the same question to Slashdot's readers.
Use the comments to share details about your own first home computer. Was it a back-to-school present from your parents? Did it come with a modem? Did you lovingly upgrade its hardware for years to come? Was it a Commodore 64 or a BeBox?
It seems like there should be some good stories, so leave your best answers in the comments. What was your first home computer?Read Replies (0)
By EditorDavid from Slashdot's militarized-zone department
First, an anonymous reader quotes Inverse:
On Saturday, the North Korean military paraded an unprecedented array of weapons through Kim Il-sung Square in the center of Pyongyang... "We're totally floored right now," Dave Schmerler of the Middlebury Institute of International Studies in Monterey, California, tells the Wall Street Journal. "I was not expecting to see this many new missile designs." Schmerler tells The Journal that the large missiles -- the "frankenmissiles," as he calls them -- in the parade appear to be hybrids of the North Korean KN-08 and KN-14 missiles, both of which are ICBMs.
But at least one arms control expert noted that while the parade included ICBM-sized canisters, "what's inside is anyone's guess" -- and there's still mixed results for the country's missile program. "An attempted missile launch by North Korea on Sunday failed, US and South Korean defense officials told CNN... At this point, US military officials don't believe the missile had intercontinental capabilities, a US defense official told CNN." The official said there was limited data -- because the missile blew up so quickly -- prompting CNN.com to run the story under the headline "Show of Strength a Flop."
Update: Slashdot reader Dan Drollette is a science writer/editor and foreign correspondent for Bulletin of the Atomic Scientists, and contacted us earlier today to share his recently-published analysis "to delve into what has been happening lately...and to discredit some common tropes in the media, such as the idea that 'North Korea is about to collapse,' 'China has a lot of influence over North Korea,' 'North Korea can credibly threaten the United States right now,' 'North Korea has no reason to feel threatened,' or 'The North can be completely denuclearized.'"Read Replies (0)
By EditorDavid from Slashdot's red-lights-in-the-steering-wheel department
Using LIDAR sensors, Cadillac mapped 160,000 miles of U.S. highways "within five centimeters of accuracy" to give its hands-free-on-the-highway cars the ability to better anticipate the roads ahead -- and to know when a human driver should take over. An anonymous reader writes:
"The car can see farther than the sensors on the car with the map..." says the chief engineer for Cadillac's new "Super Cruise" hands-free driving option for highways, "so if we have a sharp curve, we can anticipate that." The system also gives Cadillac's vehicles a safety check not available to Tesla, which can't stop drivers from using Tesla's semi-autonomous Autopilot even when they're not on a highway. "We know where the car is because of the LIDAR map and the other data in the car," says a product communications manager at Cadillac. "Therefore we have the ability to geofence it." In addition,
The Verge reports that if drivers look away for more than 30 seconds, "the car will know thanks to an infrared camera attached to the top of the steering column. Eyes closed? The car will know and start a sequence of alerts to get the driver's focus back on the road. It can even see through UV-blocking sunglasses." While the camera doesn't record or store data, it will flash a strip of red LED lights embedded in the top of the steering wheel "if the driver is caught not paying attention."
Cadillac plans to create and transmit an updated map every year, and will also regularly update its map by "constantly" checking the database from the Transportation Department, and deploying own trucks to draw new maps of construction areas.Read Replies (0)
By EditorDavid from Slashdot's town-hall-tempests department
Wisconsin congressman F. James Sensenbrenner Jr. defended his decision to help repeal broadband privacy rules by telling a constituent, "Nobody's got to use the Internet." An anonymous reader quotes the 73-year-old congressman:
"And the thing is that if you start regulating the Internet like a utility, if we did that right at the beginning, we would have no Internet... Internet companies have invested an awful lot of money in having almost universal service now. The fact is is that, you know, I don't think it's my job to tell you that you cannot get advertising for your information being sold. My job, I think, is to tell you that you have the opportunity to do it, and then you take it upon yourself to make that choice... That's what the law has been, and I think we ought to have more choices rather than fewer choices with the government controlling our everyday lives."
"The congressman then moved on to the next question," reports The Washington Post, but criticism of his remarks appeared on social media. One activist complained that the congressman's position was don't use the internet if you don't want your information sold to advertisers -- drawing a clarification from the congressman's office. "Actually he said that nobody has to use the Internet. They have a choice. Big difference."Read Replies (0)
By EditorDavid from Slashdot's vulnerabilities-from-Vimeo department
An anonymous reader quotes ThreatPost:
A popular version of the open source Magento ecommerce platform is vulnerable to a zero-day remote code execution vulnerability, putting as many as 200,000 online retailers at risk... According Bosko Stankovic, information security engineer at DefenseCode, despite repeated efforts to notify Magento, which began in November 2016, the vulnerability remains unpatched despite four version updates since the disclosure. Affected versions of the Magento Community Edition software include v. 2.1.6 and below. DefenseCode did not examine Magento Enterprise, the commercial version of the platform, but warns both share the same underlying vulnerable code... The remote code execution (RCE) vulnerability is tied to the default feature in Magento Community Edition that allows administrators to add Vimeo video content to product descriptions.
DefenseCode says the exploit can be mitigated by enforcing Magento's "Add Secret Keys To URLS" feature, warning in a paper that the hole otherwise "could lead to remote code execution and thus the complete system compromise including the database containing sensitive customer information such as stored credit card numbers and other payment information." Magento has confirmed the exploit, says they're investigating it, and promises they'll address it in their next patch release.Read Replies (0)
By EditorDavid from Slashdot's authors-vs-languages department
Andy Hunt is one of the 17 software developers who wrote the Agile Manifesto, and he co-authored The Pragmatic Programmer. Now Slashdot reader cerberusss writes:
Andy writes that he also likes Elixir, talks about Agile, reveals how he survived his most challenging project, and says the biggest advancement in programming has been the open source movement. ("Imagine trying to study chemistry, but the first half of the elements were patent-protected by a major pharma company and you couldn't use them...") And he also answered an interesting follow-up question on Twitter: "Do you feel validated in an age of Node and GitHub? Some of your best chapters (scripting and source control) are SOP now!"
Andy's reply? "We've made some great progress, for sure. But there's much to be done still. E.g., You can't ship process."Read Replies (0)
By EditorDavid from Slashdot's box,-mouse,-and-network department
"Any way you look at it, from kick-starting the Internet to launching the personal computer revolution, Bob Taylor was a key architect of our modern world," says a historian at Stanford's Silicon Valley Archives. An anonymous reader quotes the New York Times:
The Internet, like many inventions, was the work of many inventors. But perhaps no one deserves more credit for that world-changing technological leap than Mr. Taylor. The seminal moment of his work came in 1966. He had just taken a new position at the Pentagon -- director of the Information Processing Techniques Office, part of the Advanced Research Projects Agency, known as Arpa -- and on his first day on the job it became immediately obvious to him what the office lacked and what it needed. At the time, Arpa was funding three separate computer research projects and using three separate computer terminals to communicate with them. Mr. Taylor said, No, we need a single computer research network, to connect each project with the others, to enable each to communicate with the others... His idea led to the Arpanet, the forerunner of the Internet.
A half-decade later, at Xerox's storied Palo Alto Research Center, Mr. Taylor was instrumental in another technological breakthrough: funding the design of the Alto computer, which is widely viewed as the forerunner of the modern personal computer. Mr. Taylor even had a vital role in the invention of the computer mouse. In 1961, at the dawn of the Space Age, he was about a year into his job as a project manager at NASA in Washington when he learned about the work of a young computer scientist at Stanford Research Institute, later called SRI International... Mr. Taylor decided to pump more money into the work, and the financial infusion led directly to Engelbart's invention of the mouse, a computer control technology that would be instrumental in the design of both Macintosh and Microsoft Windows-based computers.
< article continued at Slashdot's box,-mouse,-and-network department
>Read Replies (0)
By EditorDavid from Slashdot's see-you-in-court department
"The Electronic Frontier Foundation has sued an Australian company that it previously dubbed as a 'classic patent troll' in a June 2016 blog post entitled: Stupid Patent of the Month: Storage Cabinets on a Computer." An anonymous reader quotes Ars Technica:
Last year, that company, Global Equity Management (SA) Pty. Ltd. (GEMSA), managed to get an Australian court to order EFF to remove its post -- but EFF did not comply. In January 2017, Pasha Mehr, an attorney representing GEMSA, further demanded that the article be removed and that EFF pay $750,000. EFF still did not comply. The new lawsuit, filed in federal court in San Francisco on Wednesday, asks that the American court declare the Australian ruling unenforceable in the U.S.
GEMSA's attorneys reportedly threatened to have the EFF's post de-indexed from search engine listings -- on the basis of the Australian court order -- so now the EFF "seeks a court order declaring the Australian injunction 'repugnant' to the U.S. Constitution and unenforceable in the United States."
The Register reports that GEMSA has already sued 37 companies, "including big-name tech companies Airbnb, Uber, Netflix, Spotify, and eBay. In each case, GEMSA accused the company's website design of somehow trampling on the GUI patent without permission." But things were different after the EFF's article, according to Courthouse News. "GEMSA said the article made it harder to enforce its patents in the United States, citing its legal opponents' 'reduced interest in pursuing pre-trial settlement negotiations.'"Read Replies (0)
By EditorDavid from Slashdot's artificial-data department
According to the BBC there is growing concern in the machine learning community that as their algorithms are deployed in the real world they can be easily confused by knowledgeable attackers. These algorithms don't process information in the same way humans do, a small sticker placed strategically on a sign could render it invisible to a self driving car.
The article points out that a sticker on a stop sign "is enough for the car to 'see' the stop sign as something completely different from a stop sign," while researchers have created an online collection of images which currently fool AI systems. "In one project, published in October, researchers at Carnegie Mellon University built a pair of glasses that can subtly mislead a facial recognition system -- making the computer confuse actress Reese Witherspoon for Russell Crowe."
One computer academic says that unlike a spam-blocker, "if you're relying on the vision system in a self-driving car to know where to go and not crash into anything, then the stakes are much higher," adding ominously that "The only way to completely avoid this is to have a perfect model that is right all the time." Although on the plus side, "If you're some political dissident inside a repressive regime and you want to be able to conduct activities without being targeted, being able to avoid automated surveillance techniques based on machine learning would be a positive use."Read Replies (0)
By EditorDavid from Slashdot's robot-roll-call department
Launched in 1988, Mystery Science Theater 3000 ran for ten seasons on Comedy Central and The Sci-Fi Channel, with its last episode airing in August of 1999. But now Slashdot reader #5844 ewhac writes:
17 years later, Season 11 of MST3K debuted Friday on Netflix. A full season has been produced, including a stretch-goal Christmas special, funded by the highest-earning Kickstarter Film & Video campaign to date ($5.76 million) -- thousands of contributors are listed in the show's end credits, spread across all fourteen episodes. The show remains true to its low-budget roots, relying almost exclusively on models and practical effects, including a very inventive new door sequence. The backstory for the new season is very swiftly established in the opening to Experiment 1101, as Jonah Heston (played by co-producer Jonah Ray) is abducted by the evil mad scientist Kinga Forrester (Felicia Day) and her sidekick Max a/k/a TV's son of TV's Frank (Patton Oswalt). Together with Gypsy (Rebecca Hanson), Tom Servo (Baron Vaughn), and Crow (Hampton Yount), Jonah quips his way through a barrage of bad movies, including Reptilicus, Starcrash, The Loves of Hercules, and The Christmas That Almost Wasn't.
In 2008 MST3K's original creator Joel Hodgson answered questions from Slashdot's readers, and said he was fascinated by the popularity of Creative Commons licenses. "For most of the public domain titles that we've used, it's a matter of the garbage not being taken out. Basically, they forgot to apply for a copyright so it in fact lapsed into the public domain."Read Replies (0)
By EditorDavid from Slashdot's rooting-routers department
"Back in the days, Cisco fixed the vulnerability, but we are not sure about all other router vendors and models because there are too many of them," writes the DefenseCode team. Orome1 quotes a new report from Help Net Security:
Back in January 2013, researchers from application security services firm DefenseCode unearthed a remote root access vulnerability in the default installation of some Cisco Linksys (now Belkin) routers. The flaw was actually found in Broadcom's UPnP implementation used in popular routers, and ultimately the researchers extended the list of vulnerable routers to encompass devices manufactured by the likes of ASUS, D-Link, Zyxel, US Robotics, TP-Link, Netgear, and others. Since there were millions of vulnerable devices out there, the researchers refrained from publishing the exploit they created for the flaw, but now, four years later, they've released their full research again, and this time they've also revealed the exploit.
The researchers pointed out that most users don't update their router's firmware -- meaning many routers may still be vulnerable.Read Replies (0)