By BeauHD from
Slashdot's prescription-glasses department:
The University of Texas at Austin and Cornell University are saying blurred or pixelated images are not as safe as they may seem. As machine learning technology improves, the methods used to hide sensitive information become less secure. Quartz reports: Using simple deep learning tools, the three-person team was able to identify obfuscated faces and numbers with alarming accuracy. On an industry standard dataset where humans had 0.19% chance of identifying a face, the algorithm had 71% accuracy (or 83% if allowed to guess five times). The algorithm doesn't produce a deblurred image -- it simply identifies what it sees in the obscured photo, based on information it already knows. The approach works with blurred and pixelated images, as well as P3, a type of JPEG encryption pitched as a secure way to hide information. The attack uses Torch (an open-source deep learning library), Torch templates for neural networks, and standard open-source data. To build the attacks that identified faces in YouTube videos, researchers took publicly-available pictures and blurred the faces with YouTube's video tool. They then fed the algorithm both sets of images, so it could learn how to correlate blur patterns to the unobscured faces. When given different images of the same people, the algorithm could determine their identity with 57% accuracy, or 85% percent when given five chances. The report mentions Max Planck Institute's work on identifying people in blurred Facebook photos. The difference between the two research is that UT and Cornell's research is much more simple, and "shows how weak these privacy methods really are."
Read Replies (0)
By BeauHD from
Slashdot's what-goes-around-comes-around department:
The sixth mass extinction will be an event triggered by people and will hit the biggest animals the hardest. "There is no past event that looks biologically like what's happening today," says lead study author Jonathan Payne of Stanford University. "Processes like warming and ocean acidification are not the dominant cause of threat in the modern ocean." Gizmodo reports: A paleontologist by training, Payne and his research group started compiling data on modern marine organisms several years back, in order to study how body size and ecological traits have changed over evolutionary time. Payne, who has studied the End Permian extinction event that wiped out more than 95 percent of all marine species 250 million years ago, soon realized that his dataset -- which included living and extinct members of nearly 2,500 marine genera -- could serve another purpose. By comparing the extinction threat faced by modern marine genera (as indicated by their official conservation status) with their ancestral counterparts, Payne and his colleagues discovered that modern extinction threat is more strongly associated with body size. Larger animals face a greater risk of disappearing than smaller animals. Today, the dominant driver of marine extinction is people, and people aren't terribly selective about which environments they pluck animals from. We go for the biggest game, fishing down the food web and removing top predators. Within species, too, we tend to hunt the largest individuals, which is why North Atlantic cod and Chesapeake oysters were historically much larger. "In a sense, we're driving evolution [toward smaller individuals]," Payne said. What's worth noting is that the Stanford researchers only looked at organisms whose extinction risk has been assessed by the International Union for the Conservation of Nature (IUCN), which creates a bias towards big, charismatic groups like fish, sea turtles, marine mammals, etc. The marine genera that were analyzed only had fossil counterparts, too. Gizmodo also notes that the study "excluded corals, which are currently in the midst of a catastrophic, global die-off."
Read Replies (0)
By BeauHD from
Slashdot's unlimited-data department:
An anonymous reader quotes a report from Motherboard: Jacob Ajit is 17 and he just hacked his way to getting free phone data, presumably so that he can do whatever it is that teens do online these days without alerting his parents with overage fees. According to a Medium post Ajit posted on Wednesday, he made his discovery while playing around with a prepaid T-Mobile phone with no service. The phone was still able to connect to the network, although it would only take him to a T-Mobile portal asking him to renew the prepaid phone plan. For some reason, though, Ajit wrote that his internet speed test app still worked, albeit through a T-Mobile server. Ajit figured out that he was able to access media sent from any folder labelled "/speedtest," possibly because T-Mobile whitelists media files from speed tests regardless of the host. He tested his theory by setting up a "/speedtest" folder on his own site and filled it with media, including a Taylor Swift music video, which he was able to access. Ajit writes that he then created a proxy server that allows users to access any site with this method. All a T-Mobile user has to do is go to this page and input any URL they want to visit. "Just like that, I now had access to data throughout the T-Mobile network without maintaining any sort of formal payments or contract," Ajit wrote on Medium. "Just my phone's radios talking to the network's radios, free of any artificial shackles."
Read Replies (0)
By BeauHD from
Slashdot's off-the-shelf-electronics department:
An anonymous reader quotes a report from PC Magazine: Hacker George Hotz is gearing up to launch his automotive AI start-up's first official product. In December, the 26-year-old -- known for infiltrating Apple's iPhone and Sony's PlayStation 3J -- moved on to bigger things: turning a 2016 Acura ILX into an autonomous vehicle. According to Bloomberg, Hotz outfitted the car with a laser-based radar (lidar) system, a camera, a 21.5-inch screen, a "tangle of electronics," and a joystick attached to a wooden board. Nine months later, the famed hacker this week unveiled the Comma One. As described by TechCrunch, the $999 add-on comes with a $24 monthly subscription fee for software that can pilot a car for miles without a driver touching the wheel, brake, or gas. But unlike systems currently under development by Google, Tesla, and nearly every major vehicle manufacturer, Comma.ai's "shippable" Comma One does not require users to buy a new car. "It's fully functional. It's about on par with Tesla Autopilot," Hotz said during this week's TechCrunch Disrupt in San Francisco.
Read Replies (0)
By BeauHD from
Slashdot's intentionally-vague department:
An anonymous reader quotes a report from TorrentFreak: During his State of the Union address today, EU Commission President Jean-Claude Juncker announced several plans (PDF) to modernize copyright law in Europe. One of the suggestions that has a lot of people worried is Article 13, which requires online services to police pirated content. This means that online services, which deal with large volumes of user-uploaded content, must use fingerprinting and filtering mechanisms to block copyright infringing files. While the Commission stresses that small content platforms won't be subject to the requirement, the proposal doesn't define what "small" means. It also fails to define what "appropriate" or "effective" content recognition systems are, creating a fair bit of uncertainty. Commenting on the proposal, Digital rights group EDRi says that it will put many European companies at risk while endangering users' right to free speech. "The text that was launched today includes a proposal to potentially filter all uploads to the Internet in Europe. The draft text would destroy users' rights and legal certainty for European hosting companies," EDRi notes. The Commission, however, notes that the changes are needed to reinforce the negotiating position of copyright holders, so they can sign licensing agreements with services that provide access to user uploaded content.
Read Replies (0)
By BeauHD from
Slashdot's pseudoscience department:
Bank of America analysts have suggested that there is a 20 to 50 percent chance that the world around us is a "Matrix-style virtual reality." The report stated, "It is conceivable that with advancements in artificial intelligence, virtual reality, and computing power, members of future civilizations could have decided to run a simulation of their ancestors." The idea is certainly nothing new, as many influential visionaries have come to similar theories. What some may find most unusual about the report is who issued it. According to Business Insider, Merrill Lynch, Bank of America's wealth management company, sent out a briefing to investors outlining their Matrix theory. In response, Slashdot reader marmot7 writes: Personally, I'd like to see all that brain power go toward a better and more stable banking system, not toward the promoting the nihilistic and self-indulgent idea that this might be the Matrix. Don't worry that banks behave in ways that create instability, it's not real. Just relax and enjoy the ones and zeroes. I have no doubt there are good, well meaning people there. I just don't really need my bank weighing in on the mystery of reality any more than I need them to come up with a unified theory of physics at long last. Well, unless it's in their spare time then by all means.
Read Replies (0)
By BeauHD from
Slashdot's handshake-deal department:
An anonymous reader quotes a report from Ars Technica: New York City officials yesterday notified Verizon that the company is in default of an agreement to bring fiber connections to all households in the city and could file a lawsuit against the company. The road to a potential lawsuit has been a long one. In June 2015, New York released an audit that found Verizon failed to meet a commitment to extend FiOS to every household in the five boroughs by June 2014. City officials and Verizon have been trying to resolve the matter since then with no success, as Verizon says that it hasn't actually broken the agreement. The default letter (full text) sent yesterday by the city Department of Information Technology and Telecommunications (DoITT) says Verizon has failed to pass all residential buildings in the city with fiber. As of October 2015, there were at least 38,551 addresses where Verizon hadn't fulfilled installation service requests that were more than a year old, the letter said. "Moreover, Verizon improperly reduced, from $50 million to $15 million, the performance bond required [by] the Agreement on the basis of Verizon's incorrect representations that Verizon had met the prescribed deployment schedule, when in fact it had not," the letter said. City officials demanded that Verizon restore the bond and wants a response within 30 days. The default letter also accuses Verizon of failing to make records related to its provision of cable service available to the city during its audit. "Officials say they could sue Verizon unless the carrier shows clear plans for stepping up installations," and that the notice is the first step in that process, The Wall Street Journal reported. The citywide fiber agreement lets NYC seek monetary damages from Verizon if it fails to deliver on the fiber promises.
Read Replies (0)
By manishs from
Slashdot's good-things department:
With Windows 8, Microsoft introduced Windows Store, which consisted of "Metro / Modern UI" apps which worked best on touch capable devices. Since the release of Windows 8, many users complained that they wanted traditional apps -- the applications they had grown accustomed to -- to be included in Windows Store. This would have come in handy to especially Windows RT users, who couldn't easily get traditional applications installed on their devices. Well, guess, what, that's changing now. Though only for Windows 10 users who have gotten the Anniversary Update -- and guess what, many haven't and might not for another month and a half. At any rate, ArsTechnica elaborates: Until now, applications built for and sold through the Windows Store in Windows 10 have been built for the Universal Windows Platform (UWP), the common set of APIs that spans Windows 10 across all the many devices it supports. This has left one major category of application, the traditional desktop application built using the Win32 API, behind. Announced at Build 2015, codename Project Centennial -- now officially titled the Desktop App Converter -- is Microsoft's solution to this problem. It allows developers to repackage existing Win32 applications with few or no changes and sell them through the store. Applications packaged this way aren't subject to all the sandbox restrictions that UWP applications are, ensuring that most will work unmodified. But they are also given the same kind of clean installation, upgrading, and uninstallation that we've all come to expect from Store-delivered software. Centennial is designed to provide not just a way of bringing Win32 apps into the store; it also provides a transition path so that developers can add UWP-based functionality to their old applications on a piecemeal basis. Evernote, one of the launch applications, uses UWP APIs to include support for Live Tiles and Windows' notification system. In this way, developers can create applications that work better on Windows 10 but without having to rewrite them entirely for Windows 10.
Read Replies (0)
By manishs from
Slashdot's storm-is-coming department:
Some of the major companies that provide the basic infrastructure that makes the internet work have seen an increase in DDoS attacks against them, says Bruce Schneier. He adds that these attacks are of much larger scale -- including the duration -- than the ones we have seen previously. These attacks, he adds, are also designed to test what all defense measures a company has got -- and they ensure that the company uses every they have got, leaving them with no choice but to demonstrate their defense capabilities to the attacker. He hasn't specifically shared details about the organizations that are under attack, but what little he has elaborated should give us a chill. From his blog post: [...] This all is consistent with what Verisign is reporting. Verisign is the registrar for many popular top-level Internet domains, like .com and .net. If it goes down, there's a global blackout of all websites and e-mail addresses in the most common top-level domains. Every quarter, Verisign publishes (PDF) a DDoS trends report. While its publication doesn't have the level of detail I heard from the companies I spoke with, the trends are the same: "in Q2 2016, attacks continued to become more frequent, persistent, and complex." There's more. One company told me about a variety of probing attacks in addition to the DDoS attacks: testing the ability to manipulate internet addresses and routes, seeing how long it takes the defenders to respond, and so on. Someone is extensively testing the core defensive capabilities of the companies that provide critical Internet services. Who would do this? It doesn't seem like something an activist, criminal, or researcher would do. Profiling core infrastructure is common practice in espionage and intelligence gathering. It's not normal for companies to do that. Furthermore, the size and scale of these probes -- and especially their persistence -- points to state actors. It feels like a nation's military cybercommand trying to calibrate its weaponry in the case of cyberwar. It reminds me of the US's Cold War program of flying high-altitude planes over the Soviet Union to force their air-defense systems to turn on, to map their capabilities.
Read Replies (0)
By manishs from
Slashdot's faster-internet-promises department:
An anonymous reader writes: The European Commission has promised free Wi-Fi in every town, village, and city in the European Union, in the next four years. A new grant, with a total budget of 120 million euro, will allow public authorities to purchase state-of-the art equipment, for example a local wireless access point. If approved by the the European Parliament and national ministers the cash could be available before the end of next year. The commission has also set a target for all European households to have access to download speeds of at least 100Mbps by 2025, and has redefined Internet access as a so-called universal service, while removing obligations for old universal services such as payphones. It also envisions fully deploying 5G, the fifth generation of mobile communication systems, across the European Union by 2025. Commission president Jean-Claude Juncker made reference to many of these proposals while also promising to abolish roaming once and for all in his "State of the European Union" address on Wednesday morning.
Read Replies (0)