Become a fan of Slashdot on Facebook

 


Forgot your password?
Close
typodupeerror
×
Security

Large DDoS Attack Brings WordPress Pingback Abuse Back Into Spotlight 58

Posted by timothy from the pressure-cooker dept.
angry tapir writes "Attackers have abused the WordPress pingback feature, which allows sites to cross-reference blog posts, to launch a large-scale, distributed denial-of-service (DDoS) attack, according to researchers from Web security firm Sucuri. The attack involved over 162,000 legitimate WordPress websites being forced to send hundreds of requests per second to a popular WordPress site, preventing access to it for many hours. The attack exploited an issue with the XML-RPC (XML remote procedure call) implementation in WordPress that's used for features like pingback, trackback, remote access from mobile devices and others, and brought back into the spotlight the denial-of-service risks associated with this functionality that have been known since 2007."
United States

Embarrassing Stories Shed Light On US Officials' Technological Ignorance 299

Posted by samzenpus from the Is-this-thing-on? dept.
colinneagle writes "Speaking at the SXSW Conference recently, Dr. Peter W. Singer, director of the Center for 21st Century Security and Intelligence, recalled one U.S. official who was 'about to negotiate cybersecurity with China' asking him to explain what the term 'ISP' (Internet Service Provider) means. This wasn't the only example of this lack of awareness. 'That's like going to negotiate with the Soviets and not knowing what "ICBM" means,' Dr. Singer said. 'And I've had similar experiences with officials from the UK, China and Abu Dhabi.' Similarly, Dr. Singer recalled one account in which Janet Napolitano, the Secretary of the U.S. Homeland Security Department from 2009 to 2013, admitted that she didn't use email 'because she just didn't think it was useful.' 'A Supreme Court justice also told me "I haven't got round to email yet" — and this is someone who will get to vote on everything from net neutrality to the NSA negotiations,' Dr. Singer said."
NASA

NASA Wants To Go To Europa 216

Posted by samzenpus from the just-down-the-road dept.
MightyMartian writes "'NASA and the White House are asking Congress to bankroll a new intrastellar road trip to a destination that's sort of like the extraterrestrial Atlantis of our solar system — Jupiter's intriguing moon, Europa.' Since Europa seems one of the most likely worlds in the Solar System other than Earth where we have some hope of finding extant life, let's hope Congress gives the green light to this project."
Education

Jewish School Removes Evolution Questions From Exams 431

Posted by samzenpus from the everything-that's-fit-to-know dept.
Alain Williams writes "Religious sponsored ignorance is not just in the USA, a school in Hackney, England is trying to hide the idea of evolution from its pupils. Maybe they fear that their creation story will be seen for what it is if pupils get to learn ideas supported evidence. The girls are also disadvantaged since they can't answer the redacted questions, thus making it harder to get good marks."
Android

F-Secure: Android Accounted For 97% of All Mobile Malware In 2013 193

Posted by Soulskill from the going-for-the-high-score dept.
An anonymous reader writes "Back in 2012, Android accounted for 79 percent of all mobile malware. Last year, that number ballooned even further to 97 percent. Both those data points come from security firm F-Secure, which today released its 40-page Threat Report for the second half of 2013. More specifically, Android malware rose from 238 threats in 2012 to 804 new families and variants in 2013. Apart from Symbian, F-Secure found no new threats for other mobile platforms last year."
PHP

The New PHP 254

Posted by Soulskill from the less-filling-tastes-great dept.
An anonymous reader writes "This article at O'Reilly Programming suggests that PHP, a language known as much for its weaknesses as its strengths, has made steady progress over the past few years in fixing its problems. From the article: 'A few years ago, PHP had several large frameworks (e.g. CakePHP, CodeIgniter, and so on). Each framework was an island and provided its own implementation of features commonly found in other frameworks. Unfortunately, these insular implementations were likely not compatible with each other and forced developers to lock themselves in with a specific framework for a given project. Today the story is different. The new PHP community uses package management and component libraries to mix and match the best available tools. ... There are also exciting things happening with PHP under the hood, too. The PHP Zend Engine recently introduced memory usage optimizations. The memory usage in PHP 5.5 is far less than earlier versions.'"
Bitcoin

WV Senator Calls For Ban On All Unregulated Cryptocurrencies 240

Posted by timothy from the and-you-can't-trade-with-your-neighbors-either dept.
An anonymous reader writes "Sen. Joe Manchin of West Virginia, a member of the Senate Banking Committee, has called for for heavily regulation of Bitcoin. Reached for comment, his staff confirmed Manchin is seeking a 'ban' that would apply to any cryptocurrency that's both anonymous and unregulated."
Apple

Apple Urges Arizona Governor To Veto Anti-Gay Legislation 917

Posted by Soulskill from the getting-involved dept.
Hugh Pickens DOT Com writes "According to NBC, Apple has confirmed that it urged Arizona Gov. Jan Brewer to veto a bill that would allow business owners with strongly held religious beliefs to deny service to gays and lesbians. Last November Tim Cook announced that Apple was building a sapphire glass plant in Mesa, AZ, that would bring 2,000 new jobs to the state. 'Apple is indisputably one of the world's most innovative companies and I'm thrilled to welcome them to Arizona,' said Gov. Brewer at the time. 'Apple will have an incredibly positive economic impact for Arizona and its decision to locate here speaks volumes about the friendly, pro-business climate we have been creating these past four years.' According to Philip Elmer-DeWitt, it sounds like Tim Cook may be having second thoughts about how 'friendly' and 'pro-business' the climate in Arizona really is."
Windows

Complete Microsoft EMET Bypass Developed 116

Posted by Unknown Lamer from the just-a-teeny-tiny-bug dept.
msm1267 writes "Researchers at Bromium Labs are expected to announce today they have developed an exploit that bypasses all of the mitigations in Microsoft's Enhanced Mitigation Experience Toolkit (EMET). Principal security researcher Jared DeMott is delivered a presentation at the Security BSides conference explaining how the company's researchers were able to bypass all of the memory protections offered within the free Windows toolkit. The work is significant given that Microsoft has been quick to urge customers to install and run EMET as a temporary mitigation against zero-day exploits targeting memory vulnerabilities in Windows or Internet Explorer. The exploit bypasses all of EMET's mitigations, unlike previous bypasses that were able to beat only certain aspects of the tool. Researchers took a real-world IE exploit and tweaked it until they had a complete bypass of EMET's ROP, heap spray, SEHOP, ASLR, and DEP mitigations."
Businesses

Exxon Mobile CEO Sues To Stop Fracking Near His Texas Ranch 317

Posted by samzenpus from the hoisting-with-his-own-petard dept.
Hugh Pickens DOT Com writes "Exxon Mobile's CEO Rex Tillerson's day job is to do all he can to protect and nurture the process of hydraulic fracturing—aka 'fracking'—so that his company can continue to rake in billions via the production and sale of natural gas. 'This type of dysfunctional regulation is holding back the American economic recovery, growth, and global competitiveness,' said Tillerson in 2012 of attempts to increase oversight of drilling operations. But now Rick Unger reports at Forbes that Tillerson has joined a lawsuit seeking to shut down a fracking project near his Texas ranch. Why? Because the 160 foot water tower being built next to Tillerson's house that will supply the water to the near-by fracking site, means the arrival of loud trucks, an ugly tower next door, and the general unpleasantness that will interfere with the quality of his life and the real estate value of his sizeable ranch. The water tower is being built by Cross Timbers Water Supply Corp., a nonprofit utility that has supplied water to the region for half a century. Cross Timbers says that it is required by state law to build enough capacity to serve growing demand. In 2011, Bartonville denied Cross Timbers a permit to build the water tower, saying the location was reserved for residences. The water company sued, arguing that it is exempt from municipal zoning because of its status as a public utility. In May 2012, a state district court judge agreed with Cross Timbers and compelled the town to issue a permit. The utility resumed construction as the town appealed the decision. Later that year, the Tillersons and their co-plaintiffs sued Cross Timbers, saying that the company had promised them it wouldn't build a tower near their properties. An Exxon spokesman said Tillerson declined to comment. The company 'has no involvement in the legal matter' and its directors weren't told of Mr. Tillerson's participation, the spokesman said."
Microsoft

Lumia Phones Leaking Private Data To Microsoft 110

Posted by samzenpus from the like-a-sieve dept.
New submitter Albietta writes "Two independent sources inside Nokia have confirmed that Nokia Lumia phones send private information to Nokia and Microsoft servers around the world. Location data, SMS-messages and browser identification is uploaded. The Nokia leadership has known about the privacy violation since 2011 when the Lumia phones were introduced. In spring 2013, after suspicions of leaks and during the negotiations for selling off the mobile phone branch to Microsoft, the Finnish state communications department sent an inquiry to Nokia regarding leaking of private data, asking Nokia to assure that users' private data is not leaked. Nokia did not want to (or could not) provide an assurance due to the delicate business negotiations. After two more inquiries with narrower demands, Nokia assured that the phone, excluding third-party software such as the operating system, did not violate Finnish privacy laws. Microsoft is apparently also following Lumia user accounts. On one occasion a parent's Lumia account was closed without warning when they uploaded pictures from the phone displaying their kids playing naked on the beach at their summer cottage."
Google

FFmpeg's VP9 Decoder Faster Than Google's 101

Posted by timothy from the healthy-competition dept.
An anonymous reader writes "A VP9 video decoder written for FFmpeg, FFvp9, now holds the title of being the world's fastest VP9 video decoder. FFvp9 is faster than Google's de facto VP9 decoder found in libvpx, but this doesn't come as too much of a surprise given that FFmpeg also produced a faster VP8 video decoder than Google a few years back with both single and multi-threaded performance."
Windows

Microsoft Said To Cut Windows Price 70% For Low Cost Devices 178

Posted by timothy from the prices-convey-information dept.
kc123 writes with this except from Bloomberg News: "Microsoft is cutting the price of Windows 8.1 by 70 percent for makers of low-cost computers and tablets as they try to fend off cheaper rivals like Google's Chromebooks, people familiar with the program said. Manufacturers will be charged $15 to license Windows 8.1 and preinstall it on devices that retail for less than $250, instead of the usual fee of $50. The discount will apply to any products that meet the price limit, with no restrictions on the size or type of device."
Earth

UAE Clerics' Fatwa Forbids Muslims From Traveling To Mars 363

Posted by timothy from the limited-jurisdiction dept.
PolygamousRanchKid writes "The Khaleej Times of Dubai reports that a fatwa committee has forbidden Muslims from taking a one-way trip to the Red Planet. At the moment, there is no technology available that would allow for a return trip from Mars, so it is truly a one-way ticket for the colonists, who may also become reality TV stars in the process. The committee of the General Authority of Islamic Affairs and Endowment in the United Arab Emirates that issued the fatwa against such a journey doesn't have anything against space exploration, Elon Musk's Mars visions, or anything like that. Rather, the religious leaders argue that making the trip would be tantamount to committing suicide, which all religions tend to frown upon."
Earth

How Well Do Our Climate Models Match Our Observations? 560

Posted by timothy from the models-meta-models-and-mega-ultra-super-models dept.
bunratty writes "According to recent articles by Roy Spencer and John Christy, our climate models have done a poor job of predicting warming due to humans burning fossil fuels. They claim that we've observed only a fraction of the warming they predict. But when I look at the source they claim to use, the State of the Climate in 2012, I see that it shows a warming of 0.7 degrees Celsius worldwide since 1980, close to the 0.8 degrees Celsius warming predicted by the climate models. Take a look at the data for yourself. How well do our predictions match our observations?"

Slashdot Top Deals

The Macintosh is Xerox technology at its best.

Close