alphadogg writes "Five years after the disclosure of a serious vulnerability in the Domain Name System dubbed the Kaminsky bug, only a handful of U.S. ISPs, financial institutions or e-commerce companies have deployed DNS Security Extensions (DNSSEC) to alleviate this threat. In 2008, security researcher Dan Kaminsky described a major DNS flaw that made it possible for hackers to launch cache poisoning attacks, where traffic is redirected from a legitimate website to a fake one without the website operator or end user knowing. While DNS software patches are available to help plug the Kaminsky hole, experts agree that the best long-term fix is DNSSEC, which uses digital signatures and public-key encryption to allow websites to verify their domain names and corresponding IP addresses and prevent man-in-the-middle attacks. Despite the promise of DNSSEC, the number of U.S. corporations that have deployed this added layer of security to their DNS server is minuscule."

An anonymous reader writes "Mozilla on Tuesday announced a massive change to the way it loads third-party plugins in Firefox. The company plans to enable Click to Play for all versions of all plugins, except the latest release of Flash. This essentially means Firefox will soon only load third-party plugins when users click to interact with the plugin. Currently, Firefox automatically loads any plugin requested by a website, unless Mozilla has blocked it for security reasons (such as for old versions of Java, Silverlight, and Flash)."

snydeq writes "Microsoft's release of Office 2013 represents the latest in a series of makeover moves, this time aimed at shifting use of its bedrock productivity suite to the cloud. Early hands-on testing suggests Office 2013 is the 'best Office yet,' bringing excellent cloud features and pay-as-you-go pricing to Office. But Microsoft's new vision for remaining nimble in the cloud era comes with some questions, such as what happens when your subscription expires, not to mention some gray areas around inevitable employee use of Office 2013 Home Premium in business settings." Zordak points to coverage of the new Office model at CNN Money, and says "More interesting than the article itself is the comments. The article closes by asking 'Will you [pay up]?' The consensus in the comments is a resounding 'NO,' with frequent mentions of the suitability of OpenOffice for home productivity." Also at SlashCloud.

An anonymous reader writes "EA's latest SimCity game requires users to log on online even for single player. After being unable to log on for three hours, one of its users chimed in with his very polite $0.02 opinion, only to get himself banned by EA admins. Another great victory for DRM." Update: 01/29 18:00 GMT by S : The player's ban has been lifted, and it seems to have happened for an unrelated issue anyway.

An anonymous reader writes "Electronic devices are built to last, which make them very reliable. However, if during a hostile situation such a device has to be left behind or gets dropped, it will continue to function and could end up giving the enemy an advantage. With that in mind, DARPA has set about creating electronics that work for as long as necessary, but can be destroyed at a moment's notice. The project is called Vanishing Programmable Resources (VAPR). Its main aim is to develop so-called transient electronics that are capable of dissolving completely, or at the very least to the point where they no longer function. Destroying a VAPR device should be as easy as sending a signal to it or placing the device within certain conditions e.g. extreme heat or cold, that triggers the rapid destruction process."

noh8rz10 writes "Holy moly! iPad gets a heavyweight sibling, clicking in at 128GB. This places it in range of storage for Surface Pro and ultrabooks. It's clearly targeted at the professional market, as the press release cites X-rays and CAD files as reasons. Should Microsoft be afraid? Methinks so. Best part, pricing is growing by log 2. Just as the 32GB version is $100 more than the 16, and the 64 is $100 more than the 32, this new version is $100 more than the 64!" Update: 01/29 16:00 GMT by T : Here's Apple's announcement itself.

An anonymous reader writes "Boeing is currently dealing with a bit of a disaster as the company's 787 Dreamliner has been grounded due to safety concerns. Boeing is currently investigating the situation, but they aren't alone. Elon Musk, CEO of Tesla Motors and SpaceX, has stepped in to offer his help and technology if Boeing wants it. Musk has had to harness battery tech not only to run his Tesla Motors, but also to function flawlessly aboard SpaceX spacecraft as they travel both in and out of the Earth's atmosphere. If you need a battery to work at any altitude, you'd trust Musk to supply one, and that's exactly what he's offering Boeing."

Okian Warrior writes with word that, as of Monday evening, multiple police agencies and the military were "conducting training exercises over Miami and elsewhere in the county. The exercise includes military helicopters firing machine-gun blanks while flying over highways and buildings. This YouTube video shows helicopters strafing highways with blank rounds near the Adrian Arts center. There are reports of similar actions in Houston From the Houston article: 'if you see the helicopters or hear gunfire, it's only a drill.'" Note: this time, it's not in The Onion.

hydrofix writes "On Thursday TorrentFreak broke the story (verified by BBC) that the government of Antigua and Barbuda, a tiny island nation on the Caribbean, was planning to launch a legal 'pirate' website selling movies, music and software without paying a penny to U.S. copyright holders. Now, the World Trade Organization has given its final approval for the Antigua government to launch the website. The decision follows from long-running trade dispute between the countries, related to online gambling, which was ruled in Antigua's favor in 2005. After the United States refused to compensate, the WTO granted Antigua the right to 'suspend' U.S. copyrights for up to $21 million annually." From the article: "The Antiguan government further reiterated today that the term 'piracy' doesn’t apply in this situation, as they are fully authorized to suspend U.S. copyrights. It is a legal remedy that was approved by all WTO members, including the United States."

snydeq writes "Deep End's Paul Venezia waxes philosophical about Perl stagnancy in IT. 'A massive number of tools and projects still make the most out of the language. But it's hard to see Perl regaining its former glory without a dramatic turnaround in the near term. As more time goes by, Perl will likely continue to decline in popularity and cement its growing status as a somewhat arcane and archaic language, especially as compared to newer, more lithe options. Perhaps that's OK. Perl has been an instrumental part of the innovation and technological advancements of the last two decades, and it's served as a catalyst for a significant number of other languages that have contributed heavily to the programming world in general.'"

tukang writes "According to a report in the Massachusetts Lawyers Weekly, State prosecutors had planned to let Swartz off with a warning and Swartz would not have faced any criminal proceedings or prison time had it not been for the decision of Carmen Ortiz's office to intervene and take over the case." Although the CNET article focuses on Aaron Swartz's particular case, the original article calls attention to general abuse of power within the DOJ: "It seems never to have occurred to Ortiz, nor to the career prosecutors in her office in charge of the prosecution, Stephen Heymann and Scott Garland, that there is something wrong with overcharging, and then raising the ante, merely to wring a guilty plea to a dubious statute. Nor does it occur generally to federal prosecutors that there’s something wrong with bringing prosecutions so complex that they are guaranteed to bankrupt all but the wealthiest. These tactics have become so normal within the Department of Justice that few who operate within the bowels of this increasingly corrupt system can even see why it is corrupt. Even most journalists, who are supposedly there to tell truth to power, no longer see what’s wrong and even play cheerleader."

sciencehabit writes "Researchers have identified three genetic mutations that appear to have helped humans survive in the frigid climate of Siberia over the last 25,000 years. One helps the body's fat stores directly produce heat rather than producing chemical energy for muscle movements or brain functions, a process called 'nonshivering thermogenesis.' Another is involved in the contraction of smooth muscle, key to shivering and the constriction of blood vessels to avoid heat loss. And the third is implicated in the metabolism of fats, especially those in meat and dairy products—a staple of the fat-laden diets of Arctic peoples."

Sparrowvsrevolution writes with news of some particularly insecure security cameras. From the article: "Eighteen brands of security camera digital video recorders are vulnerable to an attack that would allow a hacker to remotely gain control of the devices to watch, copy, delete or alter video streams at will, as well as to use the machines as jumping-off points to access other computers behind a company's firewall, according to tests by two security researchers. And 58,000 of the hackable video boxes, all of which use firmware provided by the Guangdong, China-based firm Ray Sharp, are accessible via the Internet. Early last week a hacker who uses the handle someLuser found that commands sent to a Swann DVR via port 9000 were accepted without any authentication. That trick would allow anyone to retrieve the login credentials for the DVR's web-based control panel. To compound the problem, the DVRs automatically make themselves visible to external connections using a protocol known as Universal Plug And Play, (UPnP) which maps the devices' location to any local router that has UPnP enabled — a common default setting. ...Neither Ray Sharp nor any of the eighteen firms have yet released a firmware fix."