Slashdot Deals: Cyber Monday Sale Extended! Courses ranging from coding to project management - all eLearning deals 20% off with coupon code "CYBERMONDAY20". ×

Airgap-Jumping Malware May Use Ultrasonic Networking To Communicate 265

Hugh Pickens DOT Com writes "Dan Goodwin writes at Ars Technica about a rootkit that seems straight out of a science-fiction thriller. According to security consultant Dragos Ruiu one day his MacBook Air, on which he had just installed a fresh copy of OS X, spontaneously updated the firmware that helps it boot. Stranger still, when Ruiu then tried to boot the machine off a CD ROM, it refused and he also found that the machine could delete data and undo configuration changes with no prompting. Next a computer running the Open BSD operating system also began to modify its settings and delete its data without explanation or prompting and further investigation showed that multiple variants of Windows and Linux were also affected. But the story gets stranger still. Ruiu began observing encrypted data packets being sent to and from an infected laptop that had no obvious network connection with—but was in close proximity to—another badBIOS-infected computer. The packets were transmitted even when the laptop had its Wi-Fi and Bluetooth cards removed. Ruiu also disconnected the machine's power cord so it ran only on battery to rule out the possibility it was receiving signals over the electrical connection. Even then, forensic tools showed the packets continued to flow over the airgapped machine. Then, when Ruiu removed internal speaker and microphone connected to the airgapped machine, the packets suddenly stopped. With the speakers and mic intact, Ruiu said, the isolated computer seemed to be using the high-frequency connection to maintain the integrity of the badBIOS infection as he worked to dismantle software components the malware relied on. It's too early to say with confidence that what Ruiu has been observing is a USB-transmitted rootkit that can burrow into a computer's lowest levels and use it as a jumping off point to infect a variety of operating systems with malware that can't be detected. It's even harder to know for sure that infected systems are using high-frequency sounds to communicate with isolated machines. But after almost two weeks of online discussion, no one has been able to rule out these troubling scenarios, either. 'It looks like the state of the art in intrusion stuff is a lot more advanced than we assumed it was,' says Ruiu. 'The take-away from this is a lot of our forensic procedures are weak when faced with challenges like this. A lot of companies have to take a lot more care when they use forensic data if they're faced with sophisticated attackers.'"

Computing Inside a Living Cell 41

First time accepted submitter Rozanne writes "The new issue of Stanford Medicine magazine has a story on Stanford professor Drew Endy's creation of microscopic computers out of biological components for use inside living cells. His work is a mash-up of molecular biology and computer engineering: Instead of a computer made of silicon, metal and plastic, it's a computer made of DNA, RNA and enzymes. Endy says biologists are typically confounded at first when he explains how the computers work and how they could be used."

Webcam-Equipped Remote-Controllable Halloween Haunt 24

Xmas2003 writes "Timothy asked yesterday what /.'ers are doing for Halloween and said "Maybe one year Alek Komarnitsky will switch to Hallowe'en instead of Christmas, and offer a webcam-equipped remote-controllable haunt." Turns out he actually has been doing that since 2005 ... and his Controllable Halloween Decorations allow you to turn 10,000 lights ON & OFF plus inflate/deflate the giant Frankenstein, Pumpkins, Grim Reaper, Skull, Headless Horseman, SpongeBob SquarePants, and Homer Simpson."

Self-Published Zombie Titles Have Doubled Since 2012 74

An anonymous reader writes "For the second year in a row, the number of self-published ebooks with the word zombie in their title has doubled. The annual check is performed on Halloween in Amazon's Kindle Store, and this year discovers 8,052 ebooks (with titles like 'Jesus Camp Zombie Bloodbath' and 'Never Slow Dance with a Zombie...') — more than 12 times the number that appear in the Library of Congress. 71-year-old literary author Joyce Carol Oates — twice nominated for a Pulitzer Prize — also named her 2009 novel about a serial killer 'Zombie (P.S.'", but most of the titles in the Kindle Store 'aren't as ambitious,' notes this article, which still applauds the self-published authors and their 'massive outpouring of new creativity, as people all around the globe start wondering what's going to happen in their own imaginary zombie scenarios...'"
United States

Tech Titans Oracle, Red Hat and Google To Help Fix 404

wjcofkc writes "The United States Government has officially called in the calvary over the problems with Tech titans Oracle, Red Hat and Google have been tapped to join the effort to fix the website that went live a month ago, only to quickly roll over and die. While a tech surge of engineers to fix such a complex problem is arguably not the greatest idea, if you're going to do so, you might as well bring in the big guns. The question is: can they make the end of November deadline?"

Ask Slashdot: Package Redirection Service For Shipping to Australia? 206

An anonymous reader writes "I've recently moved continents, and one of the things I've noticed is the lack of the latest technology, as well as high prices for books and other goods here in Australia. I'm looking at package redirection services from the US, and there's a bewildering array of offerings, at a wide range of prices. What should I look out for? I'm hoping to reduce overall shipping costs to, but obviously worried about costs to deliver mostly empty boxes (yes, I'm talking about you, Amazon), damage to electrical goods from rough handling, packages going missing (does everything have to be registered post or tracked?), import duties (I'm not buying anything that should attract import duty, but still...) and overall costs (I'm not going to be buying frequently, just occasionally). What have other slashdot readers used, and what would they recommend?"

The Mile Markers of Moore's Law Are Meaningless 156

szotz writes "Keeping up the pace of Moore's Law is hard, but you wouldn't know it from the way chipmakers name their technology. The semiconductor industry's names for chip generations (Intel's 22nm, TSMC's 28nm, etc) have very little to do with actual physical sizes, says IEEE Spectrum. And the disconnect is only getting bigger. For the first time, the "pay us to make your chip" foundries are offering a new process (with a smaller-sounding name) that will produce chips that are no denser than their forbears. The move is not a popular one."

GPUs Keep Getting Faster, But Your Eyes Can't Tell 291

itwbennett writes "This brings to mind an earlier Slashdot discussion about whether we've hit the limit on screen resolution improvements on handheld devices. But this time, the question revolves around ever-faster graphics processing units (GPUs) and the resolution limits of desktop monitors. ITworld's Andy Patrizio frames the problem like this: 'Desktop monitors (I'm not talking laptops except for the high-end laptops) tend to vary in size from 20 to 24 inches for mainstream/standard monitors, and 27 to 30 inches for the high end. One thing they all have in common is the resolution. They have pretty much standardized on 1920x1080. That's because 1920x1080 is the resolution for HDTV, and it fits 20 to 24-inch monitors well. Here's the thing: at that resolution, these new GPUs are so powerful you get no major, appreciable gain over the older generation.' Or as Chris Angelini, editorial director for Tom's Hardware Guide, put it, 'The current high-end of GPUs gives you as much as you'd need for an enjoyable experience. Beyond that and it's not like you will get nothing, it's just that you will notice less benefit.'"

Ars: Cross-Platform Malware Communicates With Sound 245

An anonymous reader writes "Do you think an airgap can protect your computer? Maybe not. According to this story at Ars Technica, security consultant Dragos Ruiu is battling malware that communicates with infected computers using computer microphones and speakers." That sounds nuts, but it is a time-tested method of data transfer, after all.

Android KitKat Released 358

First time accepted submitter taxtropel was one of many readers to note that Google has officially released its newest version of Android. taxtropel extracts from the announcement: "Today we are announcing Android 4.4 KitKat, a new version of Android that brings great new features for users and developers. The very first device to run Android 4.4 is the new Nexus 5, available today on Google Play, and coming soon to other retail outlets. We'll also be rolling out the Android 4.4 update worldwide in the next few weeks to all Nexus 4, Nexus 7, and Nexus 10 devices, as well as the Samsung Galaxy S4 and HTC One Google Play Edition devices." Reader SmartAboutThings adds: "Almost all of the features that the Nexus 5 comes with are not a surprise, since they were heavily leaked before. Still, for those that have obediently waited this day, here are some of its most important specs: 2.2Ghz quad-core Snapdragon 800 and 2GB of RAM, 4.95-inch 1080p display, Wireless charging, 2,300 mAh battery, LTE, Bluetooth 4.0, 802.11ac WiFi and NFC; Gorilla Glass 3, Front 1.3-megapixel camera and 8-megapixel sensor on the back with optical image stabilization (OIS)."

Video David Craddock and Two Blizzard North Co-Founders Answer Your Questions (Video) 40

In this video, we talk with author David Craddock about his investigation into the early days of game studio Blizzard for his new book, Stay Awhile and Listen. He's joined by Dave Brevik and Max Schaefer, two of the co-founders of Blizzard North. They talk about some of the ways in which making video games was different back in the early '90s -- and the ways it's similar to making games today. They also discuss the importance of having lively debates, and how one of those arguments led to Diablo being a real-time action game, instead of being turn-based. (This is the first half of an extended interview -- part 2 will be available on Monday.

Google Chrome Is Getting Automatic Blocking of Malicious Downloads 138

An anonymous reader writes "Google today announced Chrome is getting an automatic download blocking feature for malware. Google has already added the new functionality to the latest build of Chrome Canary. All versions of Chrome will soon automatically block downloads and let you know in a message at the bottom of your screen. You will be able to "Dismiss" the message, although it's not clear if you will be able to stop or revert the block."

Book Review: Stay Awhile and Listen 66

Many of today's adult video gamers grew up with a gaming industry that was still trying to figure itself out. In the early-to-mid 1990s, most of the gaming genres we're familiar with today were still indistinct, half-formed concepts waiting for that one game necessary to define them. Thus, many players sat up and took notice when a relatively unknown company named Blizzard managed to exemplify not one, but two separate types of game in quick succession. Warcraft: Orcs and Humans put real-time strategy on the map, and Diablo set the standard for action RPGs. The two games immediately elevated Blizzard to the top of the industry, and many gamers wondered how one studio could put out two games like these so quickly. As it turns out, it wasn't one studio; it was a blending of two very different but extremely creative groups who had a passion for making video games. In Stay Awhile and Listen, author David Craddock lays out the history of the two groups, from how they first got into the gaming business to their eventual success launching now-legendary games. Read on for our review of the book.

Artificial Blood Made In Romania 232

First time accepted submitter calinduca writes "Artificial blood that could one day be used in humans without side effects has been created by scientists in Romania. The blood contains water and salts along with a protein known as hemerythrin which is extracted from sea worms. Researchers from Babe-Bolyai University in Cluj-Napoca, Romania, hope it could help end blood supply shortages and prevent infections through donations." Wikipedia's entry on hemerythrin explains its unusual oxygen binding mechanism.