Youtube

YouTube Ditches Flash For HTML5 Video By Default 10

Posted by Soulskill
from the now-if-they-can-ditch-the-commenters dept.
An anonymous reader writes: YouTube today announced it has finally stopped using Adobe Flash by default. The site now uses its HTML5 video player by default in Google's Chrome, Microsoft's IE11, Apple's Safari 8, and in beta versions of Mozilla's Firefox browser. At the same time, YouTube is now also defaulting to its HTML5 player on the web. In fact, the company is deprecating the "old style" Flash object embeds and its Flash API, pointing users to the iFrame API instead, since the latter can adapt depending on the device and browser you're using.
GNU is Not Unix

Serious Network Function Vulnerability Found In Glibc 97

Posted by Soulskill
from the audits-finding-gold dept.
An anonymous reader writes: A very serious security problem has been found and patched in the GNU C Library (Glibc). A heap-based buffer overflow was found in __nss_hostname_digits_dots() function, which is used by the gethostbyname() and gethostbyname2() function calls. A remote attacker able to make an application call to either of these functions could use this flaw to execute arbitrary code with the permissions of the user running the program. The vulnerability is easy to trigger as gethostbyname() can be called remotely for applications that do any kind of DNS resolving within the code. Qualys, who discovered the vulnerability (nicknamed "Ghost") during a code audit, wrote a mailing list entry with more details, including in-depth analysis and exploit vectors.
Media

Ask Slashdot: Best Medium For Personal Archive? 202

Posted by timothy
from the but-with-8-tracks-you-can-still-lose-7 dept.
An anonymous reader writes What would be the best media to store a backup of important files in a lockbox? Like a lot of people we have a lot of important information on our computers, and have a lot of files that we don't want backed up in the cloud, but want to preserve. Everything from our personally ripped media, family pictures, important documents, etc.. We are considering BluRay, HDD, and SSD but wanted to ask the Slashdot community what they would do. So, in 2015, what technology (or technologies!) would you employ to best ensure your data's long-term survival? Where would you put that lockbox?
Communications

FCC Fines Verizon For Failing To Investigate Rural Phone Problems 77

Posted by timothy
from the shrugging-it-off dept.
WheezyJoe writes Verizon agreed to a $5 million settlement after admitting that it failed to investigate whether its rural customers were able to receive long distance and wireless phone calls. The settlement is related to the FCC's efforts to address what is known as the rural call completion problem. Over an eight-month period during 2013, low call answer rates in 39 rural areas should have triggered an investigation, the FCC said. The FCC asked Verizon what steps it took, and Verizon said in April 2014 that it investigated or fixed problems in 13 of the 39 areas, but did nothing in the other 26.

"Rural call completion problems have significant and immediate public interest ramifications," the FCC said in its order on the Verizon settlement today. "They cause rural businesses to lose customers, impede medical professionals from reaching patients in rural areas, cut families off from their relatives, and create the potential for dangerous delays in public safety communications." Verizon has been accused of letting its copper landline network decay while it shifts its focus to fiber and cellular service. The FCC is working a plan to protect customers as old copper networks are retired.
The Almighty Buck

Valve's Economist Yanis Varoufakis Appointed Greece's Finance Minister 223

Posted by timothy
from the finger-on-all-the-buttons dept.
eldavojohn writes A turnover in the Greek government resulted from recent snap elections placing SYRIZA (Coalition of the Radical Left) in power — just shy of an outright majority by two seats. Atheist, and youngest Prime Minister in Greek history since 1865, Alexis Tsipras has been appointed the new prime minister and begun taking immediate drastic steps against the recent austerity laws put in place by prior administrations. One such step has been to appoint Valve's economist Yanis Varoufakis to position of Finance Minister of Greece. For the past three years Varoufakis has been working at Steam to analyze and improve the Steam Market but now has the opportunity to improve one of the most troubled economies in the world.
Earth

"Mammoth Snow Storm" Underwhelms 311

Posted by timothy
from the blame-uber dept.
mi (197448) writes You heard the scare-mongering, you heard the governors and mayors closing public transit and declaring driving on public roads a crime. But it turned out to have been a mistake. Boston may have been hit somewhat, but further South — NYC and Philadelphia — the snowfall was rather underwhelming. Promised "2-3 feet" of snow, NYC got only a few inches. Is this an example of "better safe than sorry," or is government's overreach justified by questionable weather models exceeding the threshold of an honest mistake?
United States

White House Drone Incident Exposes Key Security Gap 186

Posted by timothy
from the if-you-can-breathe-there's-a-security-gap dept.
HughPickens.com writes The Washington Post reports that the intrusion by a recreational drone onto the White House lawn has exposed a security gap at the compound that the Secret Service has spent years studying but has so far been unable to fix. Commercial technology is available that can use a combination of sensitive radar and acoustic trackers to detect small drones, though coming up with an effective way to stop them has been more elusive. "To do something about the problem, you have to find it, you have to track it, you have to identify it and you have to decide what to do with it," says Frederick F. Roggero. "But especially in an urban environment, it would be tough to detect and tough to defeat kinetically without shooting it down and causing collateral damage." Most recreational drones, like the one that crashed Monday, weigh only a few pounds and lack the power to do much harm. Larger models that can carry payloads of up to 30 pounds are available on the market and are expected to become more common. The FAA imposes strict safety regulations on drones flown by government agencies or anyone who operates them for commercial purposes. In contrast, hardly any rules apply to people who fly drones as a hobby, other than FAA guidelines that advise them to keep the aircraft below 400 feet and five miles from an airport. "With the discovery of an unauthorized drone on the White House lawn, the eagle has crash-landed in Washington," says Senator Charles Schumer. "There is no stronger sign that clear FAA guidelines for drones are needed."
United States

Researchers Tie Regin Malware To NSA, Five Eyes Intel Agencies 82

Posted by timothy
from the which-wolves-and-which-sheep dept.
Trailrunner7 writes Researchers at Kaspersky Lab have discovered shared code and functionality between the Regin malware platform and a similar platform described in a newly disclosed set of Edward Snowden documents 10 days ago by Germany's Der Spiegel. The link, found in a keylogger called QWERTY allegedly used by the so-called Five Eyes, leads them to conclude that the developers of each platform are either the same, or work closely together. "Considering the extreme complexity of the Regin platform and little chance that it can be duplicated by somebody without having access to its source codes, we conclude the QWERTY malware developers and the Regin developers are the same or working together," wrote Kaspersky Lab researchers Costin Raiu and Igor Soumenkov today in a published report. (Here is the Spiegel article.)
ch

Davos 2015: Less Innovation, More Regulation, More Unrest. Run Away! 308

Posted by Soulskill
from the can't-we-all-just-get-along dept.
Freshly Exhumed writes: Growing income inequality was one of the top four issues at the 2015 World Economic Forum meeting in Davos, Switzerland, ranking alongside European adoption of quantitative easing and geopolitical concerns. Felix Salmon, senior editor at Fusion, said there was a consensus that global inequality is getting worse, fueling overriding pessimism at the gathering. The result, he said, could be that the next big revolution will be in regulation rather than innovation. With growing inequality and the civil unrest from Ferguson and the Occupy protests fresh in people's mind, the world's super rich are already preparing for the consequences. At a packed session, former hedge fund director Robert Johnson revealed that worried hedge fund managers were already planning their escapes. "I know hedge fund managers all over the world who are buying airstrips and farms in places like New Zealand because they think they need a getaway," he said. Looking at studies like NASA's HANDY and by KPMG, the UK Government Office of Science, and others, Dr Nafeez Ahmed, executive director of the Institute for Policy Research & Development, warns that the convergence of food, water and energy crises could create a "perfect storm" within about fifteen years.
Education

Why Coding Is Not the New Literacy 183

Posted by Soulskill
from the pants-are-the-new-shirts dept.
An anonymous reader writes: There has been a furious effort over the past few years to bring the teaching of programming into the core academic curricula. Enthusiasts have been quick to take up the motto: "Coding is the new literacy!" But long-time developer Chris Granger argues that this is not the case: "When we say that coding is the new literacy, we're arguing that wielding a pencil and paper is the old one. Coding, like writing, is a mechanical act. All we've done is upgrade the storage medium. ... Reading and writing gave us external and distributable storage. Coding gives us external and distributable computation. It allows us to offload the thinking we have to do in order to execute some process. To achieve this, it seems like all we need is to show people how to give the computer instructions, but that's teaching people how to put words on the page. We need the equivalent of composition, the skill that allows us to think about how things are computed."

He further suggests that if anything, the "new" literacy should be modeling — the ability to create a representation of a system that can be explored or used. "Defining a system or process requires breaking it down into pieces and defining those, which can then be broken down further. It is a process that helps acknowledge and remove ambiguity and it is the most important aspect of teaching people to model. In breaking parts down we can take something overwhelmingly complex and frame it in terms that we understand and actions we know how to do."
Businesses

Ubisoft Revokes Digital Keys For Games Purchased Via Unauthorised Retailers 381

Posted by Soulskill
from the there-is-no-entertainment-except-through-us dept.
RogueyWon writes: For the last several days, some users of Ubisoft's uPlay system have been complaining that copies of games they purchased have been removed from their libraries. According to a statement issued to a number of gaming websites, Ubisoft believes that the digital keys revoked have been "fraudulently obtained." What this means in practice is unclear; while some of the keys may have been obtained using stolen credit card details, others appear to have been purchased from unofficial third-party resellers, who often undercut official stores by purchasing cheaper boxed retail copies of games and selling their key-codes online, or by exploiting regional price differences, buying codes in regions where games are cheaper to sell them elsewhere in the world. The latest round of revocations appears to have triggered an overdue debate into the fragility of customer rights in respect of digital games stores.
Government

Comcast Ghost-Writes Politician's Letters To Support Time Warner Mega-Merger 172

Posted by Soulskill
from the where-the-money-lies dept.
WheezyJoe writes: As the FCC considers the merger between Comcast/Universal and Time-Warner Cable, which would create the largest cable company in the U.S. and is entering the final stages of federal review, politicians are pressuring the FCC with pro-merger letters actually written by Comcast. According to documents obtained through public records requests, politicians are passing letters nearly word-for-word written by Comcast as their own. "Not only do records show that a Comcast official sent the councilman the exact wording of the letter he would submit to the FCC, but also that finishing touches were put on the letter by a former FCC official named Rosemary Harold, who is now a partner at one of the nation's foremost telecom law firms in Washington, DC. Comcast has enlisted Harold to help persuade her former agency to approve the proposed merger."

Ars Technica had already reported that politicians have closely mimicked Comcast talking points and re-used Comcast's own statements without attribution. The documents revealed today show just how deeply Comcast is involved with certain politicians, and how they were able to get them on board.
Software

Windows 10 IE With Spartan Engine Performance Vs. Chrome and Firefox 141

Posted by Soulskill
from the attempting-to-battle-back dept.
MojoKid writes: In Microsoft's latest Windows 10 preview build released last week, Cortana made an entrance, but the much-anticipated Spartan browser did not. However, little did we realize that some of Spartan made the cut, in the form of an experimental rendering engine hidden under IE's hood. Microsoft has separated its Trident rendering engine into two separate versions: one is for Spartan, called EdgeHTML, while the other remains under its legacy naming with Internet Explorer. The reason Microsoft doesn't simply forego the older version is due to compatibility concerns. If you're running the Windows 10 9926 build, chances are good that you're automatically taking advantage of the new EdgeHTML engine in IE. To check, you can type 'about:flags' into the address bar. "Automatic" means that the non-Spartan Trident engine will be called-upon only if needed. In all other cases, you'll be taking advantage of the future Spartan web rendering engine. Performance-wise, the results with IE are like night and day in certain spots. Some of the improvements are significant. IE's Sunspider result already outperforms the competition, but it has been further improved. And with Kraken, the latency with the Spartan-powered Trident engine dropped 40%. Similar results are seen with a boost in the Octane web browser test as well.
United States

Plan C: The Cold War Plan Which Would Have Brought the US Under Martial Law 277

Posted by samzenpus
from the gentlemen-you-can't-fight-in-here-this-is-the-war-room dept.
v3rgEz writes with this story of a top secret Cold War plan which would have brought the U.S. under martial law. Starting on April 19, 1956, the federal government practiced and planned for a near-doomsday scenario known as Plan C. When activated, Plan C would have brought the United States under martial law, rounded up over ten thousand individuals connected to 'subversive' organizations, implemented a censorship board, and prepared the country for life after nuclear attack. There was no Plan A or B....Details of this program were distributed to each FBI field office. Over the following months and years, Plan C would be adjusted as drills and meetings found holes in the defensive strategy: Communications were more closely held, authority was apparently more dispersed, and certain segments of the government, such as the U.S. Attorneys, had trouble actually delineating who was responsible for what. Bureau employees were encouraged to prepare their families for the worst, but had to keep secret the more in-depth plans for what the government would do if war did break out. Families were given a phone number and city for where the relocated agency locations would be, but not the exact location.
Privacy

Omand Warns of "Ethically Worse" Spying If Unbreakable Encryption Is Allowed 382

Posted by samzenpus
from the don't-make-it-hard-for-us dept.
Press2ToContinue writes In their attempts to kill off strong encryption once and for all, top officials of the intelligence services are coming out with increasingly hyperbolic statements about why this should be done. Now, a former head of GCHQ, Sir David Omand has said: "One of the results of Snowden is that companies are now heavily encrypting [communications] end to end. Intelligence agencies are not going to give up trying to get the bad guys. They will have to get closer to the bad guys. I predict we will see more close access work." According to The Bureau of Investigative Journalism, which reported his words from a talk he gave earlier this week, by this he meant things like physical observation, bugging rooms, and breaking into phones or computers. "You can say that will be more targeted but in terms of intrusion into personal privacy — collateral intrusion into privacy — we are likely to end up in an ethically worse position than we were before." That's remarkable for its implied threat: if you don't let us ban or backdoor strong encryption, we're going to start breaking into your homes.
United States

Secret Service Investigating Small Drone On White House Grounds 143

Posted by samzenpus
from the a-little-off-course dept.
An anonymous reader sends word that the Secret Service is investigating a "device," described as a small drone, found on the grounds of the White House. "A small drone was found on the White House grounds overnight, two law enforcement sources told ABC News, but White House Press Secretary Josh Earnest said the situation 'does not pose any sort of ongoing threat.' The Secret Service is investigating the device, Earnest said. Police, fire and other emergency vehicles swarmed around the White House in the pre-dawn hours, with several clustered near the southeast entrance to the mansion. The White House was dark and the entire perimeter was on lockdown until around 5 a.m., when pass holders who work in the complex were allowed inside."
Google

Google Handed To FBI 3 Wikileaks Staffers' Emails, Digital Data 189

Posted by timothy
from the why-there-oughtta-be-a-constitution dept.
Ariastis writes Google took almost three years to disclose to the open information group WikiLeaks that it had handed over emails and other digital data belonging to three of its staffers to the FBI under a secret search warrant issued by a federal judge. WikiLeaks were told last month of warrants which were served in March 2012. The subjects of the warrants were the investigations editor of WikiLeaks, the British citizen Sarah Harrison; the spokesperson for the organisation, Kristinn Hrafnsson; and Joseph Farrell, one of its senior editors. When it notified the WikiLeaks employees last month, Google said it had been unable to say anything about the warrants earlier as a gag order had been imposed.
Security

Ed Felten: California Must Lead On Cybersecurity 79

Posted by timothy
from the so-goes-the-nation dept.
An anonymous reader writes In a Sacramento Bee op-ed, (in)famous computer security researcher Ed Felten responds to the State of the Union cybersecurity proposal. He doesn't mince words: "The odds of clearing Congress: low. The odds of materially improving security: even lower. "What he suggests as an alternative, though, is a surprise. "California," he writes, "could blaze a trail for effective cybersecurity policy." He calls for the state government to protect critical infrastructure and sensitive data, relying on outside auditors and experts. It's an interesting idea. Even if it doesn't go anywhere, at least it's some fresh thinking in this area of backward policy. From Felten's essay: Critical infrastructure increasingly relies on industrial automation systems. And those systems are often vulnerable – they keep a default password, for instance, or are accessible from the public Internet. These are not subtle or sophisticated errors. Fixing them requires basic due diligence, not rocket science. Requiring the state’s critical infrastructure providers to undergo regular security audits would be straightforward and inexpensive – especially relative to the enormous risks. Areas of sensitive data are also low-hanging cyber fruit. In health care, education and finance, California already imposes security and privacy requirements that go beyond federal law. Those legal mandates, though, are mostly enforced through after-the-fact penalties. Much like critical infrastructure, sectors that rely upon sensitive data would benefit from periodic outside auditing. Of any state government's, California's policies also have the chance to help (or harm) the most people: nearly 39 million people, according to a 2014 U.S. Census estimate.
Government

SpaceX, US Air Force Settle Spy Sat Dispute 80

Posted by timothy
from the show-elon-what-you're-wearing dept.
hypnosec writes The US Air Force and private space flight company SpaceX have settled their dispute involving the military's expendable rocket program, thereby paving the way for SpaceX to join the spy satellite launch program known as Evolved Expendable Launch Vehicle (EELV). The settlement opens doors for SpaceX to compete with United Launch Alliance (ULA) for launch of spy satellites. ULA is a joint Boeing-Lockheed venture – the only private player to have received clearance for launching black ops satellites.
Earth

Fish Found Living Half a Mile Under Antarctic Ice 77

Posted by timothy
from the we're-going-to-need-a-lot-more-line dept.
BarbaraHudson (3785311) writes "Researchers were startled to find fish, crustaceans and jellyfish investigating a submersible camera after drilling through nearly 2,500 feet (740 meters) of Antarctic ice. The swimmers are in one of the world's most extreme ecosystems, hidden beneath the Ross Ice Shelf, roughly 530 miles (850 kilometers) from the open ocean. "This is the closest we can get to something like Europa," said Slawek Tulaczyk, a glaciologist at the University of California, Santa Cruz and a chief scientist on the drilling project. More pictures here."