By BeauHD from
Slashdot's keep-your-eyes-on-the-road department:
An anonymous reader quotes a report from USA Today: The owner of a Tesla Motors Model S sedan in China reportedly said his vehicle crashed into a car on the side of the road while the vehicle's Autopilot system was engaged, but the automaker said the driver was using the system improperly. Luo Zhen, 33, of Beijing told Reuters that his vehicle collided with a parked car on the left side of a highway, damaging both vehicles but injuring no one. He criticized Tesla sales people for allegedly describing the vehicle as "self-driving." "The impression they give everyone is that this is self-driving, this isn't assisted driving," he told Reuters. In the new case in China, Tesla said the Model S was "following closely behind the car in front of it when the lead car moved to the right to avoid hitting the parked car." "The driver of the Tesla, whose hands were not detected on the steering wheel, did not steer to avoid the parked car and instead scraped against its side," Tesla said Wednesday in a statement. "As clearly communicated to the driver in the vehicle, Autosteer is an assist feature that requires the driver to keep his hands on the steering wheel at all times, to always maintain control and responsibility for the vehicle, and to be prepared to take over at any time."
Read Replies (0)
By BeauHD from
Slashdot's protected-speech department:
An anonymous reader quotes a report from The Verge: A lawsuit accusing Twitter of providing material support to ISIS has been dismissed by a California District Court. First filed in January, the lawsuit argued ISIS's persistent presence on Twitter constituted material support for the terror group, and sought to hold Twitter responsible for an ISIS-linked attack on that basis. Filed by the family of an American contractor named Lloyd Fields, the lawsuit sought damages from an ISIS-linked attack in Jordan that claimed Fields' life. The plaintiff's initial complaint alleged widespread fundraising and recruitment through the platform, attributing 30,000 foreign actors recruited through ISIS Twitter accounts in 2015 alone. The judge assigned to the case was ultimately not swayed by that reasoning, finding that the plaintiffs had not offered a convincing argument for holding Twitter liable. The plaintiff will have the chance to submit a modified version of the complaint within 20 days of the order, the second such modification ordered by the judge. The report adds: "Apart from the private nature of Direct Messaging, plaintiffs identify no other way in which their Direct Messaging theory seeks to treat Twitter as anything other than a publisher of information provided by another information content provider," the ruling reads. At the same time, even the private nature of Twitter's Direct Messaging feature "does not remove the transmission of such messages from the scope of publishing activity under section 230(c)(1)."
Read Replies (0)
By BeauHD from
Slashdot's system-to-system department:
An anonymous reader writes: In another installment of "Linux has malware too," security researchers have discovered a new trojan that targets Linux servers running Redis, where the trojan installs a cryptocurrency miner. The odd fact about this trojan is that it includes a wormable feature that allows it to spread on its own. The trojan, named Linux.Lady, will look for Redis servers that don't have an admin account password, access the database, and then download itself on the new target. The trojan mines for the Monero crypto-currency, the same one used by another worm called PhotoMiner, which targets vulnerable FTP servers. According to a recent Risk Based Security report from last month, there are over 30,000 Redis servers available online without a password, of which 6,000 have already been compromised by various threat actors.
Read Replies (0)
By BeauHD from
Slashdot's accidental-department-name department:
The acquisition of Jet.com by Walmart for $3 billion in cash appears to have made the founder of IdeaDash an "accidental millionaire." Fortune reports: "Martin, who is the founder of a startup called IdeaDash, won Jet.comâ(TM)s nationwide marketing competition -- Jet Insider -- in early 2015. The contest offered a reward of 100,000 shares of Jet stock to the contestant who got the most people to sign up for 6-month free trial 'insider' memberships to the membership shopping site, a sort of online Costco or Samâ(TM)s Club. According to his companyâ(TM)s website, Martin took first place out of the 350,000 people who participated, getting over 8,000 people to sign up. Martin spent $18,000 on online ads, Bloomberg reports, and now has a stake in Jet that is reportedly worth millions. Although Martin told Bloomberg that he is not sure exactly what his stake is worth, Fusion reported in February 2015 that his piece could be valued between $10 million and $20 million."
Read Replies (0)
By BeauHD from
Slashdot's adverse-side-effects department:
The closure of Silk Road -- a marketplace where internet users could purchase drugs and other illegal goods -- in 2013 has had little to no effect on drug sales. According to a new report from RAND, online drug sales have tripled since the site was shut down. NBC News reports: "Since then, an estimated 50 'cryptomarkets and vendor shops where vendors and buyers find each other anonymously to trade illegal drugs, new psychoactive substances, prescription drugs and other goods and services,' have emerged to fill the void, according to the report. The research, which was commissioned by the Netherlands Ministry of Security and Justice, examined data from January and found dealers in the United States had the largest market share with 35.9 percent, followed by the United Kingdom at 16.1 percent and Australia at 10.6 percent. Marijuana was the top seller in January, accounting for 33 percent of illicit drug sales online, followed by prescription medication at 19 percent and stimulants at 18 percent."
Read Replies (0)
By BeauHD from
Slashdot's conspiracy-theory department:
Okian Warrior quotes a report from Fox News: WikiLeaks founder Julian Assange implied in an interview that a murdered Democratic National Committee staffer was the source of a trove of damaging emails the rogue website posted just days before the party's convention. Speaking to Dutch television program Nieuswsuur Tuesday after earlier announcing a $20,000 reward for information leading to the arrest of Seth Rich's killer, Assange said the July 10 murder of Rich in Northwest Washington was an example of the risk leakers undertake. The Washington Post provides some details of the murder in its report: "Rich was shot twice in the back as he walked to his townhouse about 4:20 a.m. Nothing was taken, but police have said attempted robbery is their leading theory for a motive, noting a spike in robberies in the neighborhood in the preceding weeks. WikiLeaks released the trove of emails later that month, on July 22. Rich, 27, had worked for the DNC for two years and helped develop a computer program to make it easier for people to find polling places on Election Day. After his death, the DNCâ(TM)s then-chairwoman, Rep. Debbie Wasserman Schultz (Fla.), attended a vigil for Rich in front of his home, and Hillary Clinton, before she was nominated in her run for president, evoked his name during a speech in which she advocated for limiting the availability of guns."
Read Replies (0)
By BeauHD from
Slashdot's all-the-evidence-you-need department:
An anonymous reader quotes a report from Reason: Microsoft devices have a system that upon booting, will only function with operating systems that it authenticates. This means users cannot just install any other operating system on Windows tablets and phones and work them. As explained by The Register, Microsoft created "golden keys" for internal use only to allow programmers to disable or bypass this authentication process, most likely to test new operating system builds and updates without having to get them approved. But this method of bypassing Microsoft's booting process mistakenly got out of the hands of the company and into the clutches of a couple of hackers, who wrote a report explaining how it all worked here (trigger warning: MIDI music). The hackers are very blunt about their reasons for revealing how this works: They're trying to get people at the FBI and in Congress to understand that any attempt to require a "golden key" to allow officials to bypass encryption, even with the best of intentions, can and eventually will go terribly, terribly awry. They note: "About the FBI: are you reading this? If you are, then this is a perfect real world example about why your idea of backdooring cryptosystems with a 'secure golden key' is very bad! Smarter people than me have been telling this to you for so long, it seems you have your fingers in your ears. You seriously don't understand still? Microsoft implemented a 'secure golden key' system. And the golden keys got released from MS own stupidity. Now, what happens if you tell everyone to make a 'secure golden key' system? Hopefully you can add 2+2..."
Read Replies (0)
By manishs from
Slashdot's digital-hell-inc department:
Ever since James and Theresa Arnold moved into their rented 623-acre farm in Butler County, Kansas, in March 2011, they have seen "countless" law enforcement officials and individuals turning up at their farm day and night looking for links to alleged theft and other supposed crime. We covered this story on Slashdot a few months ago. All of these people are arriving because of a rounding error on a GPS location, which wrongly points people to their farm. ArsTechnica adds:In their lawsuit filed against MaxMind, the IP mapping firm, the Arnolds allege: "The following events appeared to originate at the residence and brought trespassers and/or law enforcement to the plaintiffs' home at all hours of the night and day: stolen cars, fraud related to tax returns and bitcoin, stolen credit cards, suicide calls, private investigators, stolen social media accounts, fund raising events, and numerous other events." James Arnold has even been "reported as holding girls at the residence for the purpose of making pornographic films."
Read Replies (0)
By manishs from
Slashdot's audible-sigh department:
Jacob Kastrenakes, writing for The Verge: The Federal Communications Commission's plan to let cities build their own broadband networks hit a major roadblock today, as a federal appellate court ruled that the commission was overstepping its authority. The United States Court of Appeals for the Sixth Circuit said today that the FCC is not able to, essentially, remove state laws that prevent the construction of municipal broadband networks, as it attempted to do in Wilson, North Carolina and Chattanooga, Tennessee last year. Both Wilson and Chattanooga had petitioned the FCC for permission to build out their own broadband networks -- a measure some cities are turning to in order to increase competition among internet providers, who often hold regional monopolies and more or less refuse to compete. State laws, however, prevented them from doing so; that's the case in 19 states in total, all of which could have been affected by future FCC orders had the court ruled in its favor.Ars Technica has more details.
Read Replies (0)
By manishs from
Slashdot's finally department:
It's been a while since Apple upgraded most of its computer lineups. It has come to a point, where it's being advised that the Cupertino-based company should stop selling the dated inventories. But the wait will be over later this year, says Mark Gurman, the reporter with the best track record in Apple's ecosystem. Reporting for Bloomberg, Gurman says that the company will be overhauling its MacBook Pro laptop line for the first time in over four years, packing it with a range of interesting features. From the report: The updated notebooks will be thinner, include a touch screen strip for function keys, and will be offered with more powerful and efficient graphics processors for expert users such as video gamers, said the people, who asked not to be named. The most significant addition to the new MacBook Pro is a secondary display above the keyboard that replaces the standard function key row. Instead of physical keys, a strip-like screen will present functions on an as-needed basis that fit the current task or application. The smaller display will use Organic Light-Emitting Diodes, a thinner, lighter and sharper screen technology, KGI Securities analyst Ming-Chi Kuo said earlier this year. Apple's goal with the dedicated function display is to simplify keyboard shortcuts traditionally used by experienced users. The panel will theoretically display media playback controls when iTunes is open, while it could display editing commands like cut and paste during word processing tasks, the people said. The display also allows Apple to add new buttons via software updates rather than through more expensive, slower hardware refreshes. [...] Apple is using one of AMD's "Polaris" graphics chips because the design offers the power efficiency and thinness necessary to fit inside the slimmer Apple notebook, the person said.
Read Replies (0)
By manishs from
Slashdot's please-take-my-money department:
Joseph Cox, writing for Motherboard: Last week, Apple finally joined other technology giants and announced a bug bounty programme, where hackers can submit details of previously unknown vulnerabilities in Apple systems and devices, and get paid for sharing them with the company. But Apple is not going to be without competition. On Wednesday, established bug-hunting company Exodus Intelligence launched its own new acquisition programme for both vulnerabilities and exploits. And when it comes to iOS bugs, the company is offering up to more than double Apple's maximum payout. While Apple's highest bounty is $200,000, Exodus is advertising a maximum of $500,000 for vulnerabilities affecting iOS 9.3 or above. Exodus provides details of vulnerabilities and working exploits to customers who pay a subscription fee of around $200,000 per year, according to Time. Those customers could be on the defensive side -- such as antivirus vendors who want to plug newly discovered holes -- or part of an offensive team using the exploit to target systems themselves. On its site, Exodus emphasises the former, writing that it "works with the research community to find these attacks first and make them available to security vendors and enterprises, allowing them to deploy defenses before their adversaries can attack."
Read Replies (0)
By manishs from
Slashdot's security-blues department:
In a world where thermostats, and smart locks can be hacked, and companies covertly record information, why should sex toys remain unaffected. Fusion is reporting that the We-Vibe 4 Plus, a popular vibrator sends a range of intimate data to its manufacturer. The sex toy uses a smartphone app, which lets a use control the vibration among other things. From the report: When the device is in use, the We-Vibe 4 Plus uses its internet connectivity to regularly send information back to its manufacturer, Standard Innovations Corporation. It sends the device's temperature every minute, and lets the manufacturer know each time a user changes the device's vibration level. The company could easily figure out some seriously intimate personal information like when you get off, how long it takes, and with what combinations of vibes. This was revealed on Friday at hacker conference Defcon in Las Vegas by two security researchers, who wish to be called only by their handles @gOldfisk and @rancidbacon. The two examined the app's code and the information being sent by the device over Bluetooth. In a statement sent by email, Standard Innovation Corporation's president Frank Ferrari confirmed that the company collects this information. [...]
Read Replies (0)
By manishs from
Slashdot's changing-culture department:
The days of two developers making games in a shed are over, an article on The Guardian says. Spend any time with your grandparents and at some stage the age-old phase "they don't make them like they use to" will pop up as nostalgia gets the better of them. Usually it's just the rose-tinted glasses talking, but for video games it's a fact: they quite literally don't make them like they used to. Back in the 1980s, when the industry was in its infancy, games were often created by two-person teams consisting of one programmer and one artist. In the 1990s, sprites gave way to 3D modelling, and development teams mushroomed in size, hoovering up specialists in disciplines across animation, level design, character modelling and artificial intelligence. Today, creating the most advanced, triple-A games has become too big a task for a single developer leading to the rise of what is best described as a modular approach, where different developers work on different parts of a single game. The article adds: One developer that is pioneering the modern modular approach is no spring chicken. Set up in 1984, Newcastle-based Reflections swiftly established a reputation for bringing cutting-edge graphics to side-scrollers such as Shadow of the Beast and the gloriously named Brian the Lion. It then morphed into a driving-game specialist, thanks primarily to the Destruction Derby and Driver franchises. French publisher Ubisoft acquired the studio in 2006, expanding its remit way beyond its previous practice of churning out a new Driver game every three years or so. Reflections is crafting the vehicle components of the upcoming Watch Dogs 2 and Ghost Recon Wildlands and has just finished the Underground downloadable content (DLC) pack for The Division. It's finishing Grow Up, the sequel to 2015's Grow Home -- ironically, a small, innovative download game made by a 90s-style 10-person team.
Read Replies (0)
By manishs from
Slashdot's security-woes department:
Reader cloud.pt writes: In another case of serious programmer impairment, the DOTA 2 official forums have been hacked, making available to the perpetrators around 2 million emails, usernames, and MD5 hashed passwords. [...] From the report: The hack was carried out last month on July 10. The copy of the leaked database was provided to breach notification site LeakedSource.com, which allows users to search their usernames and email addresses in a wealth of stolen and hacked data. The hacker took advantage of an SQL injection vulnerability used by the older vBulletin forum software, which powers the community. That allowed them to access the database of limited user data, such as username, email, IP address of the user. The data also includes the user's hashed password -- which uses the MD5 algorithm, which is widely considered insecure by today's standards, alongside the salt, used to scramble the password further. A member of the LeakedSource group told me that 1.54 million of the passwords -- or about 80 percent -- have already been unscrambled using rudimentary and run-of-the-mill cracking tools.
Read Replies (0)