By EditorDavid from Slashdot's artisanal-phishing department
An anonymous reader writes: Facebook has awarded this year's Internet Defense Prize worth $100,000 to a team of researchers from the University of California, Berkeley, who came up with a new method of detecting spear-phishing attacks in closely monitored enterprise networks. The team created a detection system -- called DAS (Directed Anomaly Scoring) -- that identifies uncommon patterns in emails communications. They trained DAS by having it analyze 370 million emails from one single large enterprise with thousands of employees, sent between March 2013 and January 2017. "Out of 19 spearphishing attacks, our detector failed to detect 2 attacks," the research team said. "Our detector [also] achieved an average false positive rate of 0.004%," researchers added, pointing out that this is almost 200 times better than previous research. Honorable mentions went two other projects, one for using existing static analysis techniques to find a large number of vulnerabilities in Linux kernel drivers, and another for preventing specific classes of vulnerabilities in low-level code.Read Replies (0)
By EditorDavid from Slashdot's gonna-be-the-future-soon department
An anonymous reader brings news about one of Slashdot's long-time favorite musicians: In April, musician Jonathan Coulton released Solid State, a sci-fi concept album that represented a significant departure -- both from Coulton's wry, bright, tuneful back catalog and from any conventional understanding of what a sci-fi concept album sounds like... On first listen, with its shout-outs to futurist Ray Kurzweil, comment-section trolls, thinkpiece-gluts, and hack memes, Solid State seems a caustic critique of the internet -- which would be, as Coulton notes, "a little-off brand for me." Spend a bit more time with it, however, and its muted, melancholy songs reveal their true target: the toxic culture of glibness and hot takes that's leaching from the internet into every aspect of our lives.
The album features multiple perspectives and timelines, but its soundscape is allusive and impressionistic, resisting strict narrative. For that, Coulton turned to writer Matt Fraction and artist Albert Monteys, who with Coulton's input have taken some of the album's words, images and thematic preoccupations and crafted a graphic novel set largely in a future that will seem familiar to any reader of science fiction: a corporate-owned dystopia where humans have become dutiful, unthinking, unfeeling worker bees attending to menial tasks amid a culture engineered to keep them unthinking and unfeeling...These three creators believe that the roots of this dystopic future are all around us, but we're collectively choosing to ignore them in precisely the same way we blithely click past online Terms and Conditions agreements without bothering to read them. The official music video for one of the songs takes the form of a text adventure.Read Replies (0)
By EditorDavid from Slashdot's calling-Mr.-Limpet department
schwit1 shares an article from the U.S. Naval Institute's Proceedings magazine. It includes this warning from the Coast Guard's chief of fisheries law enforcement:
Nearly two decades into the 21st Century, it has become clear the world has limited resources and the last area of expansion is the oceans. Battles over politics and ideologies may be supplanted by fights over resources as nations struggle for economic and food security. These new conflicts already have begun -- over fish... In 1996, Canada and Spain almost went to war over the Greenland turbot. Canada seized Spanish vessels it felt were fishing illegally, but Spain did not have the same interpretation of the law and sent gunboats to escort its ships. In 1999, a U.S. Coast Guard cutter intercepted a Russian trawler fishing in the U.S. exclusive economic zone. The lone cutter was promptly surrounded by 19 Russian trawlers. Fortunately, the Russian Border Guard and the Coast Guard drew on an existing relationship and were able to defuse the situation...
Japan protested 230 fishing vessels escorted by seven China Coast Guard ships entering the waters of the disputed Senkaku Islands. Incidents in the South China Sea between the Indonesian Navy and Chinese fishing vessels and China Coast Guard have escalated to arrests, ramming, and warning shots leading experts to suggest only navies and use of force can stop the IUU fishing... The United States needs to show it is serious about protecting sustainable fisheries and international rule of law. It needs a fleet that not only will provide a multilateral cooperation platform, but also take action against vessels and fleets that are unwilling to cooperate... If cooperation cannot be achieved, the United States should prepare for a global fish war.
When I read "fish war," I was imagining it more like this.Read Replies (0)
By EditorDavid from Slashdot's ring-around-the-planet department
An anonymous reader quotes Space.com:
After orbiting Saturn for more than 13 years, NASA's Cassini spacecraft is getting ready to say goodbye. On Monday (August 14), Cassini made the first of five passes through Saturn's upper atmosphere, kicking off the last phase of the mission's "Grand Finale." After completing those five dives, Cassini will come back around again one last time, plunging into Saturn's atmosphere on September 15. This will be a suicide maneuver: Cassini will burn up in the ringed planet's thick air, turning into a meteor in the Saturn sky...
Cassini's radar will be able to look into the atmosphere and see features as small as 16 miles (25 km) wide, about 100 times smaller than what it could see from its usual orbital positions. The Grand Finale will include one final swing by Saturn's largest moon, Titan, on Sept. 11. Titan's gravity will slow Cassini's orbit around Saturn and bend its path to send the spacecraft toward its September 15 encounter with the planet... Cassini will keep sending back data on September 15 until it gets to an altitude where atmospheric density is about twice what it encountered during its final five passes, NASA officials said. At that point, mission controllers will lose contact with the probe because its thrusters won't be able to keep Cassini's antenna pointed toward Earth; there will simply be too much air to push against.
The second dip happens this weekend, and NASA has created a special web page tracking Cassini's current location for its final 28 days.Read Replies (0)
By EditorDavid from Slashdot's phoning-it-in department
An anonymous reader quotes Liliputing:
Buy an iPhone and you might get 4-5 years of official software updates. Android phones typically get 1-3 years of updates... if they get any updates at all. But there are ways to breathe new life into some older Android phones. If you can unlock the bootloader, you may be able to install a custom ROM like LineageOS and get unofficial software updates for a few more years. The folks behind postmarketOS want to go even further: they're developing a Linux-based alternative to Android with the goal of providing up to 10 years of support for old smartphones...
Right now postmarketOS is a touch-friendly operating system based on Alpine Linux that runs on a handful of devices including the Samsung Galaxy Nexus, Google Nexus 4, 5, and 7 (2012), and several other Samsung, HTC, LG, Motorola, and Sony smartphones. There are also ports for some non-Android phones such as the Nokia N900 and work-in-progress builds for the BlackBerry Bolt Touch 9900 and Jolla Phone. Note that when I say the operating system runs on those devices, I basically mean it boots. Some phones only have network access via a USB cable, for instance. None of the devices can actually be used to make phone calls. But here's the cool thing: the developers are hoping to create a single kernel that works with all supported devices, which means that postmarketOS would work a lot like a desktop operating system, allowing you to install the same OS on any smartphone with the proper hardware.
< article continued at Slashdot's phoning-it-in department
>Read Replies (0)
By EditorDavid from Slashdot's staring-at-screens department
For years Maine has been offering laptops to high school students -- but is it doing more harm than good? An anonymous reader writes:
One high school student says "We hardly ever use paper," while another student "says he couldn't imagine social studies class without his laptop and Internet connection. 'I don't think I could do it, honestly... I don't want to look at a newspaper. I don't even know where to get a newspaper!'" But then the reporter visits a political science teacher who "learned what a lot of teachers, researchers and policymakers in Maine have come to realize over the past 15 years: You can't just put a computer in a kid's hand and expect it to change learning."
"Research has shown that 'one-to-one' programs, meaning one student one computer, implemented the right way, increase student learning in subjects like writing, math and science. Those results have prompted other states, like Utah and Nevada, to look at implementing their own one-to-one programs in recent years. Yet, after a decade and a half, and at a cost of about $12 million annually (around one percent of the state's education budget), Maine has yet to see any measurable increases on statewide standardized test scores."
The article notes that Maine de-emphasized teacher training which could've produced better results. One education policy researcher "says this has created a new kind of divide in Maine. Students in larger schools, with more resources, have learned how to use their laptops in more creative ways. But in Maine's higher poverty and more rural schools, many students are still just using programs like PowerPoint and Microsoft Word."Read Replies (0)
By EditorDavid from Slashdot's crowdfunding-code department
It's in the interest of the open-source community to make open-source development as profitable as possible. One potential means of making money from open source is crowdfunding, [but] proprietary vendors aren't likely to be enthusastic about using their flagship product to try out a relatively untested business model. Crowdfunding the open source release of legacy technologies of historical significance could provide a low-risk way for vendors to experiment with making money by crowdfunding: The product has already turned them a profit.
With that, I'd like to ask Slashdot readers, what would you pay to see open sourced?
Slashdot reader jonwil left a comment suggesting old games ("where the game is no longer being developed/worked on and where the engine/tech is no longer being used for anything"). But the sky's the limit here, so leave your own best answers in the comments. What would you pay to see open sourced?Read Replies (0)
By EditorDavid from Slashdot's watching-in-Washington department
An anonymous reader quotes CyberScoop:
The FBI has been briefing private sector companies on intelligence claiming to show that the Moscow-based cybersecurity company Kaspersky Lab is an unacceptable threat to national security, current and former senior U.S. officials familiar with the matter tell CyberScoop... The FBI's goal is to have U.S. firms push Kaspersky out of their systems as soon as possible or refrain from using them in new products or other efforts, the current and former officials say.
The FBI's counterintelligence section has been giving briefings since beginning of the year on a priority basis, prioritizing companies in the energy sector and those that use industrial control (ICS) and Supervisory Control and Data Acquisition (SCADA) systems. In light of successive cyberattacks against the electric grid in Ukraine, the FBI has focused on this sector due to the critical infrastructure designation assigned to it by the Department of Homeland Security... The U.S. government's actions come as Russia is engaged in its own push to stamp American tech giants like Microsoft out of that country's systems.
Meanwhile Bloomberg Businessweek claims to have seen emails which "show that Kaspersky Lab has maintained a much closer working relationship with Russia's main intelligence agency, the FSB, than it has publicly admitted" -- and that Kaspersky Lab "confirmed the emails are authentic."
Kaspersky Lab told ZDNet they have not confirmed the emails' authenticity. A representative for Kaspersky Lab says that the company does not have "inappropriate" ties with any government, adding that "the company does regularly work with governments and law enforcement agencies around the world with the sole purpose of fighting cybercrime."Read Replies (0)
By EditorDavid from Slashdot's Chrome-come-calling department
In April Chrome began marking HTTP pages as "not secure" in its address bar if the pages had password or credit card fields. They're about to take the next step. An anonymous reader quotes SearchEngineLand:
Last night, Google sent email notifications via Google Search Console to site owners that have forms on web pages over HTTP... Google said, "Beginning in October 2017, Chrome will show the 'Not secure' warning in two additional situations: when users enter data on an HTTP page, and on all HTTP pages visited in Incognito mode."
Google warned in April that "Our plan to label HTTP sites as non-secure is taking place in gradual steps, based on increasingly broad criteria. Since the change in Chrome 56, there has been a 23% reduction in the fraction of navigations to HTTP pages with password or credit card forms on desktop, and we're ready to take the next steps..."
"Any type of data that users type into websites should not be accessible to others on the network, so starting in version 62 Chrome will show the 'Not secure' warning when users type data into HTTP sites."Read Replies (0)
By EditorDavid from Slashdot's Redmond-vs-Reno department
theodp writes: The Official Microsoft Blog hopes a letter from a Nevada middle schooler advising Microsoft President Brad Smith to "keep up the good work running that company" will "inspire you like it did us." Penned as part of a math teacher's assignment to write letters to the businesses that they like, Microsoft says the letter prompted Smith to visit the Nevada school to meet 7th-grader Sky Yi in person as part of the company's effort to draw attention to the importance of math and encourage students and teachers who are passionate about STEM (science, technology, engineering and math) education. In an accompanying video of the surprise meeting, Smith presents Yi with a new Surface Laptop that comes with Windows 10 S, a version of the OS that has been streamlined with schools in mind. "Not bad for a little letter," the Microsoft exec says. Speaking of Microsoft, Nevada, and education, Bing Maps coincidentally shows the school Smith visited is just a 43-minute drive from the software giant's Reno-based Americas Operations Center. According to the Seattle Times, routing sales through the Reno software-licensing office helps Microsoft minimize its tax bills (NV doesn't tax business income) to the detriment, some say, of Washington State public schools.
Microsoft's state and local taxes will drop to just $30 million for the last year (from an average of $214 milion over the previous 14 years) according to the Seattle Times. "A Microsoft spokesman said the decline in 2017 was caused by the company's deferring taxes on some income to future years and the winding down of the company's smartphone business."Read Replies (0)
By EditorDavid from Slashdot's not-for-self-but-for-country department
An anonymous reader quotes the US Naval Institute News:
Seventy-two years after two torpedoes fired from a Japanese submarine sunk cruiser USS Indianapolis (CA-35), the ship's wreckage was found resting on the seafloor on Saturday -- more than 18,000 feet below the Pacific Ocean's surface. Paul Allen, Microsoft co-founder and billionaire philanthropist, led a search team, assisted by historians from the Naval History and Heritage Command in Washington, D.C., to accomplish what past searches had failed to do -- find Indianapolis, considered the last great naval tragedy of World War II.
"To be able to honor the brave men of the USS Indianapolis and their families through the discovery of a ship that played such a significant role in ending World War II is truly humbling," said Allen in a statement provided to US Naval Institute News on Saturday... "I hope everyone connected to this historic ship will feel some measure of closure at this discovery so long in coming"... Allen's 13-person expedition team, on the R/V Petrel is in the process of surveying the full site and will conduct a live tour of the wreckage in the next few weeks. They are complying with U.S. law and respecting the sunken ship as a war grave, taking care not to disturb the site. Paul Allen has shared some photos from the discovery on Twitter.
The ship had delivered components for the atomic bomb dropped on Hiroshima just four days before it was sunk. Only 317 of its 1,197-man crew survived, making it the worst disaster in the history of the U.S. Navy.Read Replies (0)
By EditorDavid from Slashdot's taking-up-a-collection department
By EditorDavid from Slashdot's digital-rights-awards department
An anonymous reader quotes the Electronic Frontier Foundation:
Whistleblower and activist Chelsea Manning, Techdirt editor and open internet advocate Mike Masnick, and IFEX executive director and global freedom of expression defender Annie Game are the distinguished winners of the 2017 Pioneer Awards, which recognize leaders who are extending freedom and innovation on the electronic frontier. This year's honorees -- a whistleblower, an editor, and an international freedom of expression activist -- all have worked tirelessly to protect the public's right to know.
The award ceremony will be held the evening of September 14 at Delancey Street's Town Hall Room in San Francisco. The keynote speaker is Emmy-nominated comedy writer Ashley Nicole Black, a correspondent on Full Frontal with Samantha Bee who uses her unique comedic style to take on government surveillance, encryption, and freedom of information.
The EFF describes Chelsea Manning as "a network security expert, whistleblower, and former U.S. Army intelligence analyst whose disclosure of classified Iraq war documents exposed human rights abuses and corruption the government kept hidden from the public." Their annoncement also notes that Annie Game has led the IFEX network of 115+ journalism and civil liberties groups around the world for over 10 years, and that Mike Masnick coined the term "The Streisand Effect" -- and is currently being sued by that man who claims he invented email.Read Replies (0)
By EditorDavid from Slashdot's runtime department
An anonymous reader quotes InfoWorld:
Oracle wants to end its leadership in the development of enterprise Java and is looking for an open source foundation to take on the role. The company said Thursday that the upcoming Java EE (Enterprise Edition) 8 presents an opportunity to rethink how the platform is developed. Although development is done via open source with community participation, the current Oracle-led process is not seen as agile, flexible, or open enough. "We believe that moving Java EE technologies to an open source foundation may be the right next step, to adopt more agile processes, implement more flexible licensing and change the governance process," Oracle said in a statement...
Despite its desire to retreat from Java EE leadership, Oracle said it plans to continue participating in the evolution of Java EE technologies. "But we believe a more open process, that is not dependent on a single vendor as platform lead, will encourage greater participation and innovation, and will be in best interests of the community"... Oracle's goals for offloading Java EE would have Oracle not lead the project as it still effectively does with Java SE.
Red Hat's senior principal product manager called this "a very positive move," while Eclipse's executive director said that moving Java EE to a vendor-neutral open source foundation "would be great for both the platform and the community," adding "If asked to so, the Eclipse Foundation would be pleased to serve as the host organization."Read Replies (0)
By EditorDavid from Slashdot's speaking-of-government-shutdowns department
An anonymous reader quotes USA Today:
The U.S. State Department's email system underwent a worldwide outage Friday, affecting all its unclassified communications within and outside of the department.
The system was fully restored by Friday afternoon [after 12 hours], said a State Department official briefed on the incident who was not authorized to speak publicly and requested anonymity.
It was not clear what caused the early morning outage, but spokeswoman Heather Nauert told reporters it was not "any external action or interference."Read Replies (0)
By BeauHD from Slashdot's mission-accomplished department
A new communications hub has been successfully deployed in space today thanks to the United Launch Alliance Atlas 5 rocket. "TDRS is a critical national asset have because of its importance to the space station and all of our science missions, primarily the Hubble Space Telescope and Earth science missions that use TDRS," said Tim Dunn, NASA's TDRS-M launch director. Spaceflight Now reports: With its main engine running at full throttle, the Atlas 5 booster lifted off at 8:29 a.m. EDT (1229 GMT) from Complex 41 at Cape Canaveral. The 191-foot-tall rocket, generating 860,000 pounds of thrust, aimed eastward and accelerated out of the atmosphere with NASA's TDRS-M spacecraft. Within just five minutes, the rocket had shed 92 percent of its liftoff weight and transitioned to the high-energy Centaur upper stage. An elliptical parking orbit was achieved within 18 minutes of takeoff, beginning a 90-minute quiescent coast higher through space to reach the optimum conditions for the second burn by Centaur. That minute-long boost over the Indian Ocean propelled the 7,610-pound payload into a customized high-perigee geosynchronous transfer orbit. The spacecraft was deployed by the launcher at T+plus 1 hour, 53 minutes to cheers and handshakes all around. The $408 million TDRS-M was built and launched with the sole purpose to extend the useful life of NASA's constant communications infrastructure, supporting the astronauts around-the-clock aboard the International Space Station, supplying contact with the Hubble Space Telescope and transmitting the data from almost 40 science spacecraft studying Earth's environment and space.Read Replies (0)