Follow Slashdot blog updates by subscribing to our blog RSS feed

 


Forgot your password?
Close
typodupeerror
×

Submission + - Superfish security certificate password cracked, creating new attack vector (thestack.com)

Submitted by Anonymous Coward
An anonymous reader writes: Robert Graham at Errata Security has published an article [http://blog.erratasec.com/2015/02/extracting-superfish-certificate.html] announcing his success in extracting the SuperFish self-signed security certificate from the adware which has caused Chinese computer manufacturer Lenovo such embarrassment in the last day. Since SuperFish is already capable of carrying out man-in-the-middle attacks over secure connections on the Lenovo machines which use the certificate, the disclosure of the certificate's password presents hackers with a 'a pre-installed hacking environment' which would be difficult to arrange by other means. The password, 'komodia', is also the name of the Komodia Redirector framework [http://www.komodia.com/products/komodia-redirector/], which allows its clients to manipulate TCP/IP network sessions 'with a few simple clicks'.

Comment The governments and corporations have failed us... (Score 1) 2

by webanish (#48923891) Attached to: CSE tracks millions of downloads daily: Snowden documents

It's time to take this war (that's what it is) to the next level. People of the world unite! Lets use the internet to reclaim the internet. Here's how to get started.

Submission + - CSE tracks millions of downloads daily: Snowden documents (www.cbc.ca) 2

Submitted by Advocatus Diaboli
Advocatus Diaboli writes: Canada's electronic spy agency sifts through millions of videos and documents downloaded online every day by people around the world, as part of a sweeping bid to find extremist plots and suspects, CBC News has learned. Details of the Communications Security Establishment project dubbed "Levitation" are revealed in a document obtained by U.S. whistleblower Edward Snowden and recently released to CBC News. Under Levitation, analysts with the electronic eavesdropping service can access information on about 10 to 15 million uploads and downloads of files from free websites each day, the document says.

Submission + - CIA source of NY Times reporter James Risen convicted on circumstial evidence (nytimes.com) 2

Submitted by webanish
webanish writes: The New York Times reports:

Jeffrey A. Sterling, a former Central Intelligence Agency officer, was convicted of espionage Monday on charges that he told a reporter for The New York Times about a secret operation to disrupt Iran’s nuclear program.

The case revolved around a C.I.A. operation in which a former Russian scientist provided Iran with intentionally flawed nuclear component schematics. Mr. Risen revealed the operation in his 2006 book, “State of War,” describing it as a mismanaged, potentially reckless mission that may have inadvertently aided the Iranian nuclear program.

While this comes as no surprise given the Obama administration's record on going after whistleblowers releasing secrets in public interest, the ramifications of these building cases could be twofold.

  • Legitimate issues which should be discussed in public are withheld out of fear
  • Leakers might not always act so benevolently to go to reputed press institutions

To an outsider, it seems there is widespread support for Snowden and responsible whistleblowing laws. Why is there no momentum for this in the government?

Submission + - Major Terrorist Attack Strikes France (bbc.co.uk)

Submitted by Anonymous Coward
An anonymous reader writes: Terrorist gunmen claiming to be from the Islamic State of Iraq and Syria have stormed the building of a French publication Charlie Hebdo that had recently published a cartoon of ISIS leader Abu Bakr al-Baghdadi. The gunmen are known to have killed eleven hostages so far and the situation is still ongoing. Currently, the BBC has the most information out of English news outlets. French speakers can consult the headline at Le Monde for more current news.

Comment Raise a stink and vote with your poket (Score 4, Insightful) 61

by webanish (#48678853) Attached to: India Faces Its First Major Net Neutrality Issue
As a soon-to-be ex-customer of this telecom giant, I'm doing the two things I can: Raising an almighty stink in all the channels I know, and obviously voting with my pocket by ditching them. Any other ideas would be welcome. I fear this is just the level-1 boss we're fighting against in the war against internet equality.

Comment Future chrome browser warning (Score 1) 396

by webanish (#48622779) Attached to: Google Proposes To Warn People About Non-SSL Web Sites
*Warning, insecure content!* This website doesn't have a NSA backdoor, and hence we cannot verify the americanness of the content. Terrorists may be hatching a plot to blow up something here. Or even worse, normal people might be talking how we fucked the web up. >OMFG! Take me out of hereI understand the risks

Submission + - G.fast receives ITU approval; paves way for 500Mbps to 1Gbps speeds over copper (techienews.co.uk)

Submitted by hypnosec
hypnosec writes: International Telecommunications Union (ITU) has formally approved the G.fast standard that intends to deliver broadband speeds between 500Mbps to 1Gbps over traditional copper cables found between fibre-equipped street cabinets and homes / businesses. Cheaper than fibre to the premises (FTTP), the G.fast standard provides the means to use existing infrastructure to deliver greater broadband speeds. One of the major drawbacks of the technology is that as the distance increases the download and upload speeds decrease just as ADSL and VDSL. Despite the decline in speeds, the technology does offer far greater speeds as compared to its counterparts. ITU said in a statement that G.fast will enable implementation of bandwidth-intensive applications and services including IPTV, 4K video streaming, advanced cloud-based storage solution, HD video conference among others.

Submission + - Uber banned in New Delhi (hindustantimes.com)

Submitted by webanish
webanish writes: Uber has been banned by the transport department in New Delhi after a driver allegedly raped the passenger traveling in one of it's cabs. This has ignited fierce debate about Uber's safety and driver screening standards. It does not help Uber's case that the driver had been indicted in the rape case once before, as per news reports. Additionally, as per the report:

The department also alleged Uber had flouted transport rules and "misled" the passenger with its app. "M/s Uber also misled the commuter about the nature of the taxi service offered by the "Uber App," it said.

Comment Re:Rocket science is called so for a reason (Score 2) 71

by webanish (#48523159) Attached to: Technical Hitches Delay Orion Capsule's First Launch
Fully agree. In the many years and billions spent to reach this day, a 24 hr delay (or even a 48hr or more) is a fraction of a peanut. But the fact that they were willing to manually override the auto wind triggers suggests that they either felt pressured with the closing of the launch window, or didn't trust enough in the reliability of those automated systems. If it's the former, then it's a scary prospect. The purpose of this mission I guess is to test the capsule and the upper launch stages. The DIVH is going to be replaced by a different system in the future (SLS) anyway, so having a failure in this part of the mission would be characterized so. Having in a failure while in orbit or on the way back would be 'extremely useful test data' and NOT a failure.

Slashdot Top Deals

So you think that money is the root of all evil. Have you ever asked what is the root of money? -- Ayn Rand

Close