Follow Slashdot blog updates by subscribing to our blog RSS feed

 


Forgot your password?
Close
typodupeerror
×

Submission + - Business is Booming in the 'Zero-Day' Game

Submitted by HonorPoncaCityDotCom
HonorPoncaCityDotCom writes: Want to be a millionaire? Forget about writing the next killer Andriod app as Nicole Perlroth and David E. Sanger write in the NY Times that all over the world, from South Africa to South Korea, business is booming in “zero days,” the coding flaws in software like Microsoft Windows that can give a buyer unfettered access to a computer. The average attack persists for almost a year — 312 days — before it is detected, according to Symantec, the maker of antivirus software. Until then it can be exploited or “weaponized” by both criminals and governments to spy on, steal from or attack their target. Ten years ago, hackers would hand knowledge of such flaws to Microsoft and Google free in exchange for a T-shirt but increasingly the market for 0-day exploits, has begun to migrate into the commercial space (PDF) as the market for information about computer vulnerabilities has turned into a gold rush. Companies like Vupen charge customers an annual $100,000 subscription fee to shop through its catalog, and then charges per sale. to countries who want to use the flaws in pursuit of the kind of success that the United States and Israel achieved three summers ago when they attacked Iran’s nuclear enrichment program with a computer worm that became known as “Stuxnet.” Israel, Britain, Russia, India and Brazil are some of the biggest spenders but North Korea is also in the market, as are some Middle Eastern intelligence services. "If someone comes to you with a bug that could affect millions of devices and says, ‘You would be the only one to have this if you pay my fee,’ there will always be someone inclined to pay it," says Howard Schmidt, a former White House cybersecurity coordinator. “Unfortunately, dancing with the devil in cyberspace has been pretty common.”

Submission + - What Medical Tests Should Teach Us about the NSA Surveillance Program

Submitted by Davak
Davak writes: In many ways finding the small amount of terrorists within the United States is like screening a population of people for a rare disease. A physician explains why collecting excessive data is actually dangerous. Each time a test is run, the number of people incorrectly identified quickly dwarfs the correct matches. Just like in medicine, being incorrectly labelled has serious consequences.

Submission + - Whistleblowing IT Director Fired by FL State Attorney

Submitted by Anonymous Coward
An anonymous reader writes: Ben Kruidbos, the IT director for the Florida State Attorney's Office who'd spoken up when important cellphone evidence he'd extracted from Trayvon Martin's cellphone was withheld by the state from the defense, was fired by messenger at 7:30 PM, after closing arguments in the Zimmerman case. He was told that he could not be "trusted to set foot in this office," and that he was being fired for incompetence. Kruidbos had received a merit pay raise earlier this year. The firing letter also blames him for consulting a lawyer, an obvious sign of evil.

Comment Re:Patents cause progress stoppage (Score 2) 87

by t4ng* (#44162867) Attached to: FTC Chairwoman Speaks On Growing US Patent Problem

The music industry is a good example of that. With a single song you have a copyright for the owner of the musical score and a copyright for the owner of the lyrics (not necessarily the creators of the music and lyrics or the same owner for both). If anyone performs the song, you would need to pay a license fee to the owners for 75 years beyond the death of the author in some cases (often the owner had nothing to do with creating the music and none of the licensing fees go to the real artists or their families).

Next, you have a phonogram copyright on recordings of a performance (donated by a circle with a letter P inside it). This is the one that can go on forever. Record companies can release new copies of old music just before the old recording's copyright expires. The license fees to the owner of the song were already paid for the original performance, and since they are just re-releasing the same performance they don't have to pay another license fee. But they can claim a new extension to the phonogram copyright.

So, say you digitize a record whose copyright has expired and give it away for free on the internet. Record companies can muddy the waters enough to claim you just copied one of their re-releases instead of a public domain record. You are guilty until you can prove yourself innocent.

On the other hand, record collectors would say that without this behavior, old public domain recordings would be lost forever.

Comment Re:It's a about money. (Score 3, Interesting) 211

by t4ng* (#44162711) Attached to: A Case For Unilateral US Nuclear Warhead Reductions

In the early 1980's the BBC made a drama called "Threads" which had occasional narration interrupting the story to explain the science behind the effects of nuclear war. Anyone who thinks nuclear war is winnable, or that we've never had enough nukes to destroy the world should watch it... the entire thing.

There are no lone-wolf heroes or other typical US movie industry bullcrap, just cold, stark, depressing realism. You can watch it for free on YouTube....

http://www.youtube.com/watch?v=_MCbTvoNrAg

Comment Re:first world problems (Score 1) 532

by t4ng* (#44127643) Attached to: Ask Slashdot: Does LED Backlight PWM Drive You Crazy?
If you think I sound resentful, that is your own perception. I am stating the fact that there are numerous reasons for eye strain in work environments and this guy made no indication that he had positively identified the source of his eye strain to be his monitor. If you are trying to solve a problem, it makes sense to try to isolate the source of the problem.

Comment Re:go work for drone manufacturer (Score 0) 207

I have also heard the same from manager types in private sector, non-military companies. They had told me in no uncertain terms that they equate ex-military with slackers that have an endless variety of ways of getting out of doing any meaningful work. They claimed this was based entirely on past experience of hiring ex-military.

In my own experience I can remember only three times were I worked with ex-military guys (probably only 3 because I've always worked in the private sector, except for one brief job with a military contractor). One guy was my manager, and he was an unnecessary-forms-and-reports generator machine. When I approached him with ideas for simplified reporting that killed fewer trees, his response was that he wanted tons of paperwork for two reasons, one was to make it look like a lot of work was getting done, the other was to obfuscate what was being done so in case something went wrong he could cover his ass.

The other two were tech level employees both of whom had endless stories about how guys in the military would get out of doing work. So maybe there is something to what those managers were saying.

Comment Re:They don't care that you don't care (Score 1) 99

by t4ng* (#44116457) Attached to: New World Record For Electric Car Speed: 204.2 MPH

(incidentally, all of the above (minus exotic materials) would be solved by using fuel cells in an EV car, if they can get them to not gunk up after a while and bring down the cost).

My impression of fuel cells is that they aren't very energy efficient when you take into consideration the energy required to make them and/or the electrolyte they use. They are just compact and light weight for special applications, such as near earth space craft. For example, the energy required to produce the hydrogen needed for a hydrogen fuel cell, usually by breaking bonds in H2O, is much greater than the energy you get out of the fuel cell in using that hydrogen. It's more efficient to just directly use the energy that would have gone in to producing the hydrogen. Fuel cells have been around since the early 1800's. If they were such a great primary energy source, wouldn't they be in use everywhere after 175 years?

Comment Re:first world problems (Score 3, Interesting) 532

by t4ng* (#44064003) Attached to: Ask Slashdot: Does LED Backlight PWM Drive You Crazy?

...or maybe his problem with eye strain have something to do with staring, wide-eyed, at a single object, in a florescent light, dry, air-conditioned environment for 8 hours a day while on a steady diet of diuretics like sugary caffeinated substances.

I did not see anything in the summary to indicate that jones_supa had positively identified the LED backlight as the source of his problems to the exclusion of all else.

Comment Re:That reminds me (Score 1) 205

by t4ng* (#44033927) Attached to: State Photo-ID Databases Mined By Police
Hmmm, a friend of mine works as a programmer at a software company that makes facial recognition software. They recently did an experiment among the employees where people with beards shaved them off and those without beards grew one. The software failed to recognize them just after a change in facial hair.

Comment Re:Farmer types, a question for you (Score 1) 128

by t4ng* (#43931795) Attached to: GM Crop Producer Monsanto Using Data Analytics To Expand Its Footprint

Manual labor wouldn't have an effect on corn and squash. Both of those are mechanized crops. Illegals are used to pick labor intensive crops like berries.

Not in this case. This family farms on several separate fields that vary in size from 1 to 5 acres, which they lease from the landowners. They use machinery to plow, fertilize, and spray. But I've never seen them use machinery to harvest. Usually it's just a few laborers pulling up in a pickup truck with a bunch of cardboard boxes and going at it.

They never harvest one corn field near a public road. Instead, they let it dry out, and in Oct/Nov turn it into a corn maze that they charge admission to.

So unless it's subsides or a money laundering operation, I have no idea how they've stayed in business for so many generations.

Slashdot Top Deals

"Don't try to outweird me, three-eyes. I get stranger things than you free with my breakfast cereal." - Zaphod Beeblebrox in "Hithiker's Guide to the Galaxy"

Close