By EditorDavid from Slashdot's hardened-hardware department
"If the PC is tampered with, it will trigger an alert and erase the PC's encryption key, making the data totally inaccessible." Last month Design SHIFT began crowdfunding an elaborate "open source, physically secure personal computer" named ORWL (after George Orwell). "Having exceeded its $25,000 funding goal on Crowd Supply, the super-secure PC is in production," reports PC World, in an article shared by Slashdot reader ogcricket about the device which tries to anticipate every possible attack:
The encryption key to the drive is stored on a security microcontroller instead of the drive... The ORWL's makers say the wire mesh itself is constantly monitored... Any attempts to trick, bypass, or short the wire mesh will cause the encryption key to be deleted. The unit's security processor also monitors movement, and a user can select a setting that will wipe or lock down the PC's data if it is moved to another location... The RAM is soldered to the motherboard and can't be easily removed to be read elsewhere...
Your ORWL unlocks by using a secure NFC and Bluetooth LE keyfob. Pressing it against the top of the ORWL and entering a password authenticates the user. Once the user has been authenticated, Bluetooth LE is then ensures that the user is always nearby. Walk away, and the ORWL will lock.Read Replies (0)
By EditorDavid from Slashdot's how-to-brute-force-a-passcode department
"Remember the San Bernardino killer's iPhone, and how the FBI maintained that they couldn't get the encryption key without Apple providing them with a universal backdoor?" Slashdot reader LichtSpektren quotes Bruce Schneier:
Many of us computer-security experts said that they were wrong, and there were several possible techniques they could use. One of them was manually removing the flash chip from the phone, extracting the memory, and then running a brute-force attack without worrying about the phone deleting the key. The FBI said it was impossible. We all said they were wrong. Now, Sergei Skorobogatov has proved them wrong.
Sergei's new paper describes "a real world mirroring attack on the Apple iPhone 5c passcode retry counter under iOS 9."
The process does not require any expensive and sophisticated equipment. All needed parts are low cost and were obtained from local electronics distributors. By using the described and successful hardware mirroring process it was possible to bypass the limit on passcode retry attempts... Although the process can be improved, it is still a successful proof-of-concept project.Read Replies (0)
By BeauHD from Slashdot's tight-knit-industry department
An anonymous reader quotes a report from Los Angeles Times: 21st Century Fox on Friday filed a lawsuit against Netflix, accusing the streaming video giant of illegally recruiting two of its executives who were under contract. The suit, which was filed Friday in California Superior Court in Los Angeles, says Netflix engaged in a "brazen campaign to unlawfully target, recruit, and poach valuable Fox executives by illegally inducing them to break their employment contracts with Fox to work at Netflix." The lawsuit was sparked following the exits of two Fox executives: Marcos Waltenberg, who made the jump to Netflix earlier this year, previously worked as a marketing executive at Twentieth Century Fox Film; Tara Flynn, who made the move to Netflix just last week, had been the vice president of creative affairs at Fox 21 TV Studios. Fox alleges that Netflix pursued and hired the executives even though it knew they each had employment contracts that were still in effect, according to the complaint. The Century City-based studio is seeking an injunction to prevent Netflix from interfering with its employment contracts, as well as compensatory and punitive damages. A Netflix spokesperson said in a statement: "We intend to defend this lawsuit vigorously. We do not believe Fox's use of fixed term employment contracts in this manner are enforceable. We believe in employee mobility and will fight for the right to hire great colleagues no matter where they work."Read Replies (0)
By EditorDavid from Slashdot's plane-that-ate-the-Pentagon department
An anonymous Slashdot reader quotes the Washington Post:
Less than two months after declaring the controversial F-35 Joint Strike Fighter ready for combat, the Air Force on Friday announced that it was temporarily grounding 15 of the jets after it discovered that insulation was "peeling and crumbling" inside the fuel tanks. The setback is the latest for the $400 billion system, the most expensive in the history of the Pentagon. The problem comes as the program, which for years faced billions of dollars in cost overruns and significant schedule delays, had begun to make strides.
The insulation problem affects a total of 57 aircraft, the Air Force said, 42 of which are still in production... In a statement, Lockheed Martin said that "the issue is confined to one supplier source and one batch of parts." It emphasized that "this is not a technical or design issue; it is a supply chain manufacturing quality issue..." It is unclear how long the aircraft would be grounded, how long the problem would take to fix or what the larger affect on the program would be.
âoeWhile nearing completion, the F-35 is still in development, and challenges are to be expected," said an Air Force spokeswoman, adding "The F-35 program has a proven track record of solving issues as they arise, and we're confident we'll continue to do so."Read Replies (0)
Pluto Is Emitting X-Rays
Posted by News Fetcher on September 17 '16 at 02:11 AM
By BeauHD from Slashdot's new-discovery department
An anonymous reader quotes a report from Digital Trends: Scientists have noticed the tiny trans-Neptunium object emitting X-rays, which, if it is confirmed, is both a baffling and exciting discovery. Carey Lisse and Ralph McNutt from Johns Hopkins University Applied Physics Laboratory and a team of colleagues detected the X-rays by pointing the Chandra X-Ray Obervatory telescope in Pluto's direction four different times between February 2014 and August 2015. Seven photons of X-ray light were detected during these observations, confirming the team's hypothesis that the dwarf planet is detectable on the X-ray spectrum, potentially due to the presence of an atmosphere. Their findings have been published in the scientific journal Icarus. Why is this such a big deal? First of all, it would challenge what scientists have previously believed to be true of Pluto's nature. Until now, the popular description of the dwarf planet is as a tiny ball of frozen rock slowly meandering around the sun some 3.6-billion miles away. One of the possible explanations for why Pluto is emanating X-rays would be that the high energy particles emitted by the sun are stripping away and reacting with Pluto's atmosphere, producing the X-rays that are visible to Chandra. There are other potential explanations, such as haze particles in Pluto's atmosphere scattering the sun's X-rays are possible, though unlikely given the temperature of the X-rays observed. It is also possible that these X-rays are actually bright auroras produced by the atmosphere, but that would require Pluto to have a magnetic field -- something that would have been detected during New Horizon's flyby, yet no evidence of one was found.Read Replies (0)
By BeauHD from Slashdot's equal-rights department
An anonymous reader quotes a report from Washington Post: When the Arab Spring spread across the Middle East and North Africa, the internet was considered to have been one of the main facilitators of the revolutions, and while the Arab Spring has since become a source of frustration to many of those who fought for it, the assumption that the internet will facilitate future uprisings has rarely been questioned. A new study, however, now raises doubts about to what extent the internet plays a role in fostering democracy. In fact, it may make some people more equal than others. To voice discontent online, groups first need access to the internet, but too often, that is precisely what they lack, according to the report which was published by the academic journal Science. Those findings could force Western governments and nongovernmental organizations engaged in pro-democracy initiatives to rethink how they spread their message. Comparing the accessibility of internet in certain regions and taking into account the existence of minority communities, the authors found "a strong and persistent political bias in the allocation of internet coverage across ethnic groups worldwide [...] an effect that cannot be explained by economic or geographic factors." Around 500 minority groups worldwide were included in the study, with consistent findings of what the authors called "digital discrimination." The 10 worst-affected minorities mostly come from Russia and Malaysia, said researcher Nils B. Weidmann.Read Replies (0)
By BeauHD from Slashdot's better-late-than-never department
We've seen a number of entities announce plans to operate with 100% renewable energy over the years. Costa Rica, for example, has gone 76 straight days using 100% renewable electricity. General Motors is the latest company to release a roadmap to achieving 100% renewable energy. The catch? It won't be until 2050. CleanTechnica reports: American multinational General Motors, or GM, has committed to generating or sourcing 100% of the electricity for its operations across 59 countries from 100% renewable energy by 2050. GM made the announcement on Wednesday, revealing that it planned to generate or source all its electrical power needs for its 350 operations in 59 countries with 100% renewable energy such as wind, solar, and landfill gas, by 2050. In turn, the company has joined the 100% renewable energy campaign RE100, lending its considerable global business weight to an already important and successful campaign. "Establishing a 100% renewable energy goal helps us better serve society by reducing environmental impact," said Mary Barra, GM Chairman and CEO. "This pursuit of renewable energy benefits our customers and communities through cleaner air while strengthening our business through lower and more stable energy costs."Read Replies (0)
By BeauHD from Slashdot's serious-crimes department
An anonymous reader quotes a report from BBC: An autistic man suspected of hacking into U.S. government computer systems is to be extradited from Britain to face trial, a court has ruled. Lauri Love, 31, who has Asperger's syndrome, is accused of hacking into the FBI, the U.S. central bank and the country's missile defense agency. Mr Love, from Stradishall, Suffolk, has previously said he feared he would die in a U.S. prison if he was extradited. Earlier, his lawyer said his alleged hacking had "embarrassed" U.S. authorities. Tor Ekeland said the U.S. government "had very, very bad security and these hacks utilized exploits that were publicly-known for months." Mr Love's lawyers said he could face up to 99 years in prison if convicted of the hacking offenses. Mr Love's defense team argues his depression and Asperger's syndrome mean he should not be sent abroad, but U.S. prosecutors say he is using his mental health issues as an excuse to escape justice.Read Replies (0)
By BeauHD from Slashdot's unorthodox department
Some of the United States' biggest cities have resorted to using dry ice to kill rats. Since dry ice (frozen carbon dioxide) turns into a gas, sanitation officials simply need to drop chunks of it into rat infested burrows and let science do the rest. Longtime Slashdot reader mi writes: USA Today reports: "Earlier this week, USA TODAY observed Chicago sanitation department workers at one of the city's oldest parks scoop chunks of smoking dry ice into a burrow before quickly covering the entry and exit holes with dirt and newspaper to stop any rats from escaping as the -109.3-degree Fahrenheit gas dissipated. Sanitation workers say they treat burrows during morning hours, when rats are less active and most likely to be huddled inside the burrows. The asphyxiated dead rats then decompose in place and out-of-sight of city denizens who count the disease-carrying vermin among the vilest of indignities of urban living. 'We are seeing 60% fewer burrows in areas where we are using the dry ice,' said Charles Williams, Chicago's streets and sanitation commissioner. 'It's more environmentally friendly, and it's very humane on the rodents as well.'" Humane or not, what is so especially "undignified" about rats? What makes them worse, than, for example, cats, deer or wild horses?Read Replies (0)
By BeauHD from Slashdot's pure-love department
An anonymous reader quotes a report from Ars Technica: Yesterday, software developer John Brooks released what is clearly a work of pure love: the first update to an operating system for the Apple II computer family since 1993. ProDOS 2.4, released on the 30th anniversary of the introduction of the Apple II GS, brings the enhanced operating system to even older Apple II systems, including the original Apple ][ and ][+. Which is pretty remarkable, considering the Apple ][ and ][+ don't even support lower-case characters. You can test-drive ProDOS 2.4 in a Web-based emulator set up by computer historian Jason Scott on the Internet Archive. The release includes Bitsy Bye, a menu-driven program launcher that allows for navigation through files on multiple floppy (or hacked USB) drives. Bitsy Bye is an example of highly efficient code: it runs in less than 1 kilobyte of RAM. There's also a boot utility that is under 400 bytes -- taking up a single block of storage on a disk. The report adds: "In addition to the Bitsy Boot boot utility, the ProDOS 2.4 'floppy' includes a collection of utilities, including a MiniBas tiny BASIC interpreter, disk imaging programs to move files from physical floppies to USB and other disk storage, file utilities, and the 'Unshrink' expander for uncompressing files archived with Shrinkit."Read Replies (0)
By BeauHD from Slashdot's breach-of-security department
An anonymous reader quotes a report from Motherboard: Typically, cops don't like talking about IMSI catchers, the powerful surveillance technology used to monitor mobile phones en masse. In a recent case, the New York Police Department (NYPD) introduced a novel argument for keeping mum on the subject: Asked about the tools it uses, it argued that revealing the different models of IMSI catchers the force owned would make the devices more vulnerable to hacking. The New York Civil Liberties Union (NYCLU), an affiliate of the ACLU, has been trying to get access to information about the NYPD's IMSI catchers under the Freedom of Information Law. These devices are also commonly referred to as "stingrays," after a particularly popular model from Harris Corporation. Indeed, the NYCLU wants to know which models of IMSI catchers made by Harris the police department has. "Public disclosure of this information, and the amount of taxpayer funds spent to buy the devices, directly advances the Freedom of Information Law's purpose of informing a robust public debate about government actions," the NYCLU writes in a court filing. The group has requested documents that show how much money has been spent on the technology. After the NYPD withheld the records, the FOI request was escalated to a lawsuit, which is where the NYPD's strange argument comes in (among others). "Public disclosure of the specifications of the CSS [cell site simulator] technologies in NYPD's possession from the Withheld Records would make the software vulnerable to hacking and would jeopardize NYPD's ability to keep the technologies secure," an affidavit from NYPD Inspector Gregory Antonsen, dated August 17, reads. Antonsen then imagines a scenario where a "highly sophisticated hacker" could use their knowledge of the NYPD's Stingrays to lure officers into a trap and ambush them.Read Replies (0)
By manishs from Slashdot's truth-is-out-there department
Not long ago, Apple CEO Tim Cook explained why the company felt a need to remove the headphone jack from the new iPhones -- the iPhone 7 and iPhone 7 Plus. He said, "that jack takes up a lot of space in the phone, a lot of space. And there's a lot of more important things we can provide for the consumer than that jack." His colleague Phil Schiller cited "courage" for the same. As people learn to live in a world where they have to use a dongle to use their existing pair of headphones, gadget repair community iFixit found today that Apple isn't really using that "extra space" it got after getting rid of the headphone jack. BusinessInsider reports: "In place of the headphone jack, we find a component that seems to channel sound from outside the phone into the microphone... or from the Taptic Engine out," they write. Yep -- in the place where the headphone jack used to be there's a piece of molded plastic. "No fancy electronics here, just some well-designed acoustics and molded plastic," iFixit writes.iFixit adds, "Closer inspection shows a new, second lower speaker grille that leads ... nowhere? Interesting." Update: 09/16 21:21 GMT by M : Apple says it's a "barometric vent." The Verge reports: Apparently adding all the waterproofing to the iPhone 7 and 7 Plus meant that it was more of a sealed box, and so to be able to have an accurate and working barometer, Apple used that space. The barometer is the thing that allows a phone to measure altitude, and Apple points out that on the iPhone 7 it can measure even minor changes like climbing a flight of stairs.Read Replies (0)
By manishs from Slashdot's things-to-come department
The idea behind the internet was to make a massive, decentralized system that wasn't under control of anyone, but that is increasingly changing, according to Matthew Prince, CEO of web security company CloudFlare. His statements come at a time when Google and Facebook and other companies are increasingly building new products and services and locking in users to their respective walled gardens. From a CNBC report: "More and more of the internet is sitting behind fewer and fewer players, and there are benefits of that, but there are also real risks," said Matthew Prince, chief executive officer of web security company CloudFlare, in an interview with CNBC. His comments came at CloudFlare's Internet Summit -- a conference featuring tech executives and government security experts -- on Tuesday in San Francisco. "If everything sits behind Facebook and you can't publish pictures like that, is the world a better place? Probably not," said Prince. "Before you know it, you could wake up and find more of the internet sits behind a small number of gate-keepers," said Prince. Putting that sort of power in the hands of a small number of people and companies "might not be the best thing," he said. Still, the wave of consolidation among the major internet companies is likely to continue, at least for now, he said.Read Replies (0)
By manishs from Slashdot's affinity-for-Linux-laptops department
Attention Linux enthusiasts. Your OS of your choice can finally work on laptops with Intel's Kaby Lake chips. Dell is releasing three new models of slick XPS 13 Developer Edition that will be available with Ubuntu OS and 7th Generation Core processors in the U.S. and Canada starting on Oct. 10, reports PCWorld. From the article:Prices for XPS 13 DE will start at $949. Dell also announced the XPS 13 model with Kaby Lake and Windows 10, which will ship on Oct. 4 starting at $799. Dell didn't share details on what version of Ubuntu desktop OS will be preloaded. It officially supports Ubuntu 14.04 in existing laptops, but could pre-load version 16.04 on the new XPS 13 DE. Dell has remained committed to Linux while major PC vendors shift to Windows 10 on PCs. Intel made a major commitment to supporting Windows 10 with its new Kaby Lake chips but hasn't talked much about Linux support. XPS 13 DE is perhaps the sexiest and thinnest Linux laptop available, with an edge-to-edge screen being a stand-out feature. It is the latest in Dell's Project Sputnik line of laptops, and it is targeted at computer enthusiasts who want a Windows or Mac alternative. A knock against Linux is that the OS has lagged behind Windows on driver development and on supporting the latest technologies like USB-C ports, 4K screens, and Thunderbolt. Project Sputnik started four years ago as an effort between Dell and the open-source community to bridge that gap, and since then, the resulting laptops have achieved cult status among Linux enthusiasts. A Dell XPS 13 with a Core i5 chip will have a full HD screen, 8GB of RAM, and a 128GB SSD. Another configuration will have a 3200 x 1800-pixel screen, Core i5, and a 256GB SSD. A fully loaded model will have a Core i7 chip, a 512GB SSD, 16GB of RAM, and a 3200 x 1800-pixel screen.Read Replies (0)