By msmash from Slashdot's shape-of-things-to-come department
Joseph Cox, writing for Motherboard: U.S. government researchers believe it is only a matter of time before a cybersecurity breach on an airline occurs, according to government documents obtained by Motherboard. The comment was included in a recent presentation talking about efforts to uncover vulnerabilities in widely used commercial aircraft, building on research in which a Department of Homeland Security (DHS) team successfully remotely hacked a Boeing 737. The documents, which include internal presentations and risk assessments, indicate researchers working on behalf of the DHS may have already conducted another test against an aircraft. They also show what the US government anticipates would happen after an aircraft hack, and how planes still in use have little or no cybersecurity protections in place. "Potential of catastrophic disaster is inherently greater in an airborne vehicle," a section of a presentation dated this year from the Pacific Northwest National Laboratory (PNNL), a Department of Energy government research laboratory, reads. Those particular slides are focused on PNNL's findings around aviation cybersecurity. "A matter of time before a cyber security breach on an airline occurs," the document adds.Read Replies (0)
By msmash from Slashdot's big-picture department
An anonymous reader shares a report: Hurricanes are moving more slowly over both land and water, and that's bad news for communities in their path. In the past 70 years, tropical cyclones around the world have slowed down 10 percent, and in some regions of the world, the change has been even more significant, according to a study published Wednesday in the journal Nature. That means storms are spending more time hanging out, battering buildings with wind and dropping more rain. "The slowdown over land is what's really going to effect people," says James Kossin, the author of the study and a tropical cyclone specialist at the National Oceanic and Atmospheric Administration. He points to Hurricane Harvey's effect on Houston as an example of what slower storms can mean for cities. "Hurricane Harvey last year was a real outlier in terms of the amount of rain it dropped," he explains. "And the amount of rain it dropped was due, almost entirely, to the fact that it moved so slowly."Read Replies (0)
By msmash from Slashdot's check-mate department
EPA must produce the opposing body of science Administrator Scott Pruitt has relied upon to claim that humans are not the primary drivers of global warming, a federal judge has ruled. From a report: The EPA boss has so far resisted attempts to show the science backing up his claims. His critics say such evidence doesn't exist, even as Pruitt has called for greater science transparency at the agency. Now, a court case may compel him to produce research that attempts to contradict the mountain of peer-reviewed studies collected by the world's top science agencies over decades that show humans are warming the planet at an unprecedented pace through the burning of fossil fuels. Not long after he took over as EPA administrator, Pruitt appeared on CNBC's "Squawk Box," where he was asked about carbon dioxide and climate change. He said, "I would not agree that it's a primary contributor to the global warming that we see." The next day, Public Employees for Environmental Responsibility, or PEER, filed a Freedom of Information Act request seeking the studies Pruitt used to make his claims. Specifically, the group requested "EPA documents that support the conclusion that human activity is not the largest factor driving global climate change." On Friday, the chief judge of the U.S. District Court for the District of Columbia, Beryl Howell, ordered the agency to comply.Read Replies (0)
By msmash from Slashdot's security-woes department
Catalin Cimpanu, writing for BleepingComputer: The VPNFilter malware that infected over 500,000 routers and NAS devices across 54 countries during the past few months is much worse than previously thought. According to new research technical details published today by the Cisco Talos security team, the malware -- which was initially thought to be able to infect devices from Linksys, MikroTik, Netgear, TP-Link, and QNAP -- can also infect routers made by ASUS, D-Link, Huawei, Ubiquiti, UPVEL, and ZTE. The list of devices vulnerable to VPNFilter has seen a sharp jump from Cisco's original report, going from 16 device models to 71 -- and possibly more.Read Replies (0)
By msmash from Slashdot's more-you-know department
Scientists have determined that some 1.4 billion years ago, an Earth day -- that is, a full rotation around its axis -- took 18 hours and 41 minutes, rather than the familiar 24 hours. The Guardian reports: According to fresh calculations, a day on Earth was a full five hours and fifteen minutes shorter a billion or so years ago, well before complex life spread around the planet. Scientists used a combination of astronomical theory and geochemical signatures buried in ancient rocks to show that 1.4bn years ago the Earth turned a full revolution on its axis every 18 hours and 41 minutes. The number means that, on average, the length of the day on Earth has grown by approximately one 74 thousandth of a second per year since Precambrian times, a trend that is expected to continue for millions, if not billions, of years more.Read Replies (0)
By msmash from Slashdot's closer-look department
Speaking at a conference held at MIT, Donald Trump's chief technology advisor, Michael Kratsios, said this week that the U.S. government would release any data that might help fuel AI research in the United States, although he didn't specify immediately what kind of data would be released or who would be eligible to receive the information. From a report: Kratsios, who is deputy assistant to the president and deputy US chief technology officer, said the government is looking for ways to open up federal data to AI researchers. "Anything that we can do to unlock government data, we're committed to," Kratsios told MIT Technology Review. "We'd love to hear from any academic that has any insights." Data has been a key factor behind recent advances in artificial intelligence. For example, better voice recognition and image processing have been contingent on the availability of huge quantities of training data. The government has access to large amounts of data, and it's possible that it could be used to train innovative algorithms to do new things. "Anything we can do to figure that out, we will work very hard on," Kratsios added. The Trump administration has faced criticism for a more laissez-faire approach to artificial intelligence than many other countries have taken. Kratsios argued that the White House is quietly pushing an aggressive policy, pointing to examples of research projects that have received federal funding. When asked about the president's interest in artificial intelligence, Kratsios said, "The White House has prioritized AI, and he obviously runs the White House."Read Replies (0)
By BeauHD from Slashdot's do-not-upload department
An anonymous reader quotes a report from Motherboard: Until yesterday, rare Japanese PC game Labyrinthe, developed by Caravan Interactive, was long thought to be lost forever. That is until the almost mythical third game in the already obscure Horror Tour series was found on a 67GB folder of ROMs on a private forum. Other rare games from the folder are expected to become public soon. According to a YouTuber called Saint, who posted a video of him playing the game and a link to download it on Mega, Labyrinthe and as many as 70 other rare or never-before-released Japanese titles have been circulating in a file sharing directory on a private torrent site.
Labyrinthe, alongside other rare titles including Cookie's Bustle, Yellow Brick Road and Link Devicer 2074 were in a folder called "DO NOT UPLOAD." Members of the private forum hesitated to upload Labyrinthe in the fear that the private collector would take down the folder and leave the collection out of reach once again. This hesitation demonstrates the often tense relationship between game preservationists and private collectors. According to a screenshot uploaded by Saint, the private collector threatened to pull the entire folder of content from the directory and stop uploading games altogether if anyone leaked Labyrinthe. In uploading the game to Mega, it's possible the folder will be pulled from the internet. But in doing so, the person advanced the interests of game preservationists worldwide by leaking the this game and others.Read Replies (0)
By msmash from Slashdot's no-escape department
Sarah Krouse, reporting for WSJ: Caller ID is feeding one of the very problems it was developed to stop: junk calls. Illegitimate robocallers, or outfits that flood American landlines with marketing calls, use the decades-old identification system to make money, even when no one picks up. While scammers' biggest paydays come from tricking victims into handing over credit card or bank account information, many robocallers make incremental cash along the way, thanks to little-known databases that try to identify who is calling. Each time a caller's name is displayed, phone companies pay small fees -- typically fractions of pennies -- to databases that store such records. Some of these fees are handed back to the caller. With millions of automated calls a day, the amounts can add up. "It's slow nickels, not fast dimes" for scammers, but it helps offset the costs of making the calls, said Aaron Woolfson, president of TelSwitch, a company that licenses out telecommunications-billing software.Read Replies (0)
By BeauHD from Slashdot's surprise-findings department
Artem Tashkinov writes: It needs more sigmas, but Fermilab boffins in America are carefully speculating that they may have seen evidence of a new fundamental particle: the sterile neutrino. The suggestion follows tests conducted by the MiniBooNE (Mini Booster Neutrino Experiment) instrument, located near Chicago. Its mission is to detect neutrino mass through their oscillations. In the Standard Model of physics, neutrinos, like all particles, are initially assumed to be massless, but some observations, like neutrino oscillation, suggest there's mass there. The experiment that possibly detected sterile neutrinos collected 15 years of data from its commissioning in 2002, and the results have only now reached pre-press outlet arXiv.
Over 15 years, MiniBooNE detected a few hundred more electron neutrinos than were predicted in Standard Model theory. The extra particles suggests there is a fourth, heavier flavor. The findings bring the MiniBooNE team tantalizingly close to a "result" -- it's a 4.8 sigma result, when "discovery" demands 5 sigma.Read Replies (0)
By BeauHD from Slashdot's all-in-one department
If you're using an Apple TV as your main streaming box, you will be happy to know several big improvements are coming to the platform. Macworld reports of what's new in tvOS 12: With tvOS 12, Dolby Atmos comes to the Apple TV 4K. All you need for full 3D immersive audio is an Atmos-supporting sound bar or receiver. This makes Apple TV 4K the only streaming media box to be certified for both Dolby Vision and Dolby Atmos.
One of the best features of tvOS 11 is called Single Sign-on. You add your TV provider's login information to your Apple TV device. If an app supports Single Sign-on, you can log in with your TV provider with just a few taps. It's a big step forward, but still a little bit of a pain. With tvOS 12, Apple makes the whole process totally seamless with Zero Sign-on. Here's how it works: If your TV provider is your Internet provider (a very common occurrence here in the United States), and your Apple TV is connected to the Internet through that provider, you sign in automatically to any Apple TV app your provider gives you access to. Just launch the app, and you're signed in, no passwords or configuration needed at all.
Apple's breathtaking 4K video screensavers, called "Aerials," is one of those minor delights that Apple TV 4K users can't get enough of. In tvOS 12, they get better. You can tap the remote to see the location at which the Aerial was filmed. A new set of Aerials is the star of the show, however. Called "Earth," these are stunning videos from space, taken by astronauts at the International Space Station. Furthermore, the TV app will provide live content from select TV providers; Charter Spectrum will support the app with live channels and content later this year. Apple is also now allowing third-party home control systems' remotes to control your Apple TV (including Siri).Read Replies (0)
By BeauHD from Slashdot's heads-up department
Yhcrana writes: Considering the video in the story makes it pretty simple, this is not something I would like to have happen. Apparently it is a flaw in the libraries that are being used by Oracle, Apache, and others. The Register reports: "Booby-trapped archive files can exploit vulnerabilities in a swath of software to overwrite documents and data elsewhere on a computer's file system -- and potentially execute malicious code. Specifically, the flaws, dubbed "Zip Slip" by its discoverers at security outfit Snyk, is a path traversal flaw that can potentially be exploited to perform arbitrary code execution attacks. It affects .zip, .bz2, .tar, .xz, .war, .cpio, and .7z archives.
The bugs, according to Snyk, lie in code that unpacks compressed archives, hence the "Zip Slip" title. When software does not properly check and sanitize file names within the archive, attackers can set the destination path for an unpacked file to an existing folder or file elsewhere on a system. When that file is extracted, it will overwrite the existing data in that same path."Read Replies (0)