jfruh - Slashdot User

Submission + - Taking the plunge: Enterprise IT firsts over the decades

Submitted by Esther Schindler on Thursday January 04, 2018 @01:15PM

Esther Schindler writes: Technology trailblazers are everywhere these days, but early on, big corporations were reluctant to gamble on unproven startups. Which brave businesses were the first to put technology to use? Josh Fruhlinger enumerates a few early tech pioneers. Here’s the first business website, the first person given the title of CIO, and other things that’ll make you say Hmmm.

Submission + - Threat Geography: Why Do Certain Countries Launch Specifi Kinds Of Cyberattacks? (csoonline.com)

Submitted by jfruh on Wednesday March 09, 2016 @12:40PM

jfruh writes: 419 scams come from Nigeria. Cyberextortion rings are based in the former USSR. China is responsible for attacks on defense contractors. These are stereotypes, but they have a basis in reality. But why? The answers, as they do for so many things, lie in history and economics.

Submission + - Intel Offers More Insight on its 3D Memory (itworld.com)

Submitted by itwbennett on Wednesday November 04, 2015 @12:58PM

itwbennett writes: When Intel and Micron Technology first announced the 3D XPoint memory in July, they promised about 1,000 times the performance of NAND flash, 1,000 times the endurance of NAND flash, and about 10 times the density of DRAM. At OpenWorld last week, Intel CEO Brian Krzanich disclosed a little more information on the new memory, which Intel will sell under the Optane brand, and did a demo on a pair of matching servers running two Oracle benchmarks. One server had Intel's P3700 NAND PCI Express SSD, which is no slouch of a drive. It can perform up to 250,000 IOPS per second. The other was a prototype Optane SSD. The Optane SSD outperformed the P3700 by 4.4 times in IOPS with 6.4 times less latency.

Submission + - Google Threatens Action Against Symantec After Botched Investigation

Submitted by itwbennett on Thursday October 29, 2015 @01:01PM

itwbennett writes: Through its acquisition of Verisign's authentication business unit in 2010, Symantec became one of the largest certificate authorities (CAs) in the world. In September of this year, Google discovered that Symantec had issued a pre-certificate for google.com without its knowledge. Symantec's initial investigation of the incident determined that 23 test certificates had been issued for domain names belonging to Google, Opera and three other unnamed organizations. But Google quickly found additional unauthorized certificates that Symantec missed. Now, Google wants Symantec to disclose all certificates issued by its SSL business going forward.

Submission + - Microsoft Doesn't Think Windows 10 Data Collection Violates Your Privacy (itworld.com)

Submitted by jfruh on Monday October 26, 2015 @01:26PM

jfruh writes: Windows 10 collects much more user data than previous versions of the OS, which resulted in unease from privacy advocates. But the company is still brushing aside complaints, saying that most data collection, while enabled by default, can be opted out of, and that the remainder is non-user-specific "telemetry" that Microsoft needs in order to improve its operating system.

Submission + - Australia Working On High-Tech Shark-Detection Systems (itworld.com)

Submitted by jfruh on Monday October 26, 2015 @01:20PM

jfruh writes: Even if you're a frequent ocean swimmer, you're much more likely to die in a car accident than from a shark attack — and yet sharks strike fear into people's hearts in ways that directly affect the economies of surf paradises like Australia. That's why the Australian government is working on a host of techologies to detect shark incursions on popular beaches, including drones and smart buoys that can identify potential predators.

Submission + - Researchers Warn Computer Clocks Can Be Easily Scrambled

Submitted by itwbennett on Thursday October 22, 2015 @08:44AM

itwbennett writes: Researchers from Boston University say they've found several flaws in NTP (Network Time Protocol), one of the oldest Internet protocols, published in 1985. These flaws could undermine encrypted communications and even jam up bit coin transactions. One of the problems they found is that it's possible for an attacker to cause an organization's servers to stopping checking the time altogether, and they didn't have to hunt through code to find it, said Sharon Goldberg, an associate professor at Boston University's computer science department. 'We discovered the KOD vulnerability by just reading the specifications of the [NTP] protocol,' she told Jeremy Kirk in a phone interview on Wednesday. 'We just saw this packet, and we were like 'Really? What can you do with this thing'?'

Submission + - Microsoft to Pay up to $15K for Bugs in Two Visual Studio Tools (itworld.com) 1

Submitted by itwbennett on Thursday October 22, 2015 @08:33AM

itwbennett writes: Yesterday, Microsoft started a three-month bug bounty program for two open source tools that are part of Visual Studio 2015. The program applies to the beta versions of Core CLR, which is the execution engine for .NET Core, and ASP.NET, Microsoft's framework for building websites and web applications. Bounties range from $500 to $15,000, although Microsoft will reward more 'depending on the entry quality and complexity.' The highest reward will go to researchers who've found a remote code execution bug with a functioning exploit and an accompanying, high-quality white paper. On the low end, cross-site scripting or cross-site request forgery bugs with a low-quality report will get $500.

Submission + - Oracle Fixes Java Vulnerability Used By Russian Cyberspies (itworld.com)

Submitted by itwbennett on Wednesday October 21, 2015 @10:57AM

itwbennett writes: Oracle said Tuesday that it has fixed Oracle fixed 154 security flaws in Java and a wide range of its other products, including one that Russian cyberespionage group Pawn Storm used to launch stealthy attacks earlier this year. The vulnerability, tracked as CVE-2015-4902, was being used by the Pawn Storm attackers to enable the execution of a malicious Java application without user interaction.

Submission + - Irish Government Investigating Whether Facebook Let US Spy On User Data (itworld.com)

Submitted by jfruh on Tuesday October 20, 2015 @11:54PM

jfruh writes: Ireland's Data Protection Commissioner (DPC) has agreed to investigate allegations that Facebook exposes its users' personal data to mass snooping by U.S. intelligence services, following a ruling of the High Court of Ireland on Tuesday. An Austrian Facebook user filed a coplaint with the DPC in 2013 that was originally rejected as "frivolous," but the nation's highest court has mandated an investigation.

Submission + - Flaws Found In Western Digital Self-Encrypting Hard Drives (itworld.com)

Submitted by jfruh on Tuesday October 20, 2015 @11:50PM

jfruh writes: Western Digital's external hard drives with built-in hardware encryption have proven popular with the security-conscious. But now security researchers are saying that the drives have flaws and vulnerabilities, including "backdoor-like features".

Submission + - There May Finally Be Intel Inside the iPhone (itworld.com)

Submitted by itwbennett on Tuesday October 20, 2015 @10:38AM

itwbennett writes: Intel's 'purchase of Infineon four years ago may be ready to pay off,' writes Andy Patrizio in a blog post today. 'Infineon made modem chips, which are used in every cell phone to make the connection to a cellular tower. At the time, it seemed like the $1.4 billion purchase was a smart move because Intel could pair its Atom chips for smartphones with the Infineon mobile chip and sell them as a set. Well, it won't be getting that with Apple but it looks like Apple is set to pick up the Infineon LTE modem for a future iPhone, perhaps as soon as the iPhone 7.'

Submission + - Is It Still Possible To Do Phone Phreaking? Yes, With Android On LTE (itworld.com)

Submitted by itwbennett on Tuesday October 20, 2015 @09:10AM

itwbennett writes: Researchers from the Korea Advanced Institute of Science and Technology's (KAIST) say they've found several weaknesses in VoLTE networks in the U.S. and South Korea that would make it possible to spoof phone calls, conduct denial-of-service attacks and overbill customers. They also found it would be possible for a malicious Android app to make secret phone calls in the background due to a flaw in the mobile OS. T-Mobile, Verizon and AT&T were notified of the issues in May, according to an advisory updated on Monday from Carnegie Mellon University's CERT. CERT's alert also said each operator's problems are different and will require them to apply their own updates, which may take time. For its part, Google said it is working on a software patch for Android that will be released next month.

Comment this summary is priceless (Score 1) 174

by jfruh on Monday October 19, 2015 @10:17AM (#50757861) Attached to: Disruptive Bloodwork Startup May Offer Mostly Vaporware

he spends the whole summary being FURIOUS that Quest Diagnostics and your doctor aren't being "disrupted," rather than the fact that ... this "stealth startup" seems to have pulled a billion-dollar scam on investors?

Submission + - New Linux Foundation Video Shows How Lost You Would Be In a World Without Linux (itworld.com)

Submitted by itwbennett on Friday October 16, 2015 @12:41PM

itwbennett writes: Last week, the Linux Foundation released the first in a series of videos to promote Linux awareness depicting 2 hapless characters trying to navigate the modern world without the Linux-driven services we've become used to. The latest installment of the series just went live (you can watch it here) and shows how hard it was to get from point A to point B in the days when paper maps ruled — days which many of us actually remember quite fondly.

Slashdot Top Deals