Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
Privacy

Hacking the US Prescription System 78

Posted by timothy
from the quite-a-dose-you're-taking dept.
An anonymous reader writes: It appears that most pharmacies in the US are interconnected, and a breach in one leads to access to the other ones. A security advisory released [Friday] shows how a vulnerability in an online pharmacy granted access to prescription history for any US person with just their name and date of birth. From the description linked above: During the signup process, PillPack.com prompts users for their identifying information. In the end of the signup rocess, the user is shown a list of their existing prescriptions in all other pharmacies in order to make the process of transferring them to PillPack.com easier. ... To replicate this issue, an attacker would be directed to the PillPack.com website and choose the signup option. As long as the full name and the date of birth entered during signup match the target, the attacker will gain access to the target's full prescription history.
Piracy

Grooveshark Shuts Down 224

Posted by Soulskill
from the should-have-thought-that-through-a-bit-better dept.
An anonymous reader writes: Grooveshark, one of the most popular music streaming websites, has announced that they are shutting down immediately. Several lawsuits from the record companies pushed the company out of business. In a notice posted on the Grooveshark website, its two founders said, "[D]espite best of intentions, we made very serious mistakes. We failed to secure licenses from rights holders for the vast amount of music on the service. That was wrong. We apologize. Without reservation." All of their music has been deleted, and the site itself now belongs to the record companies. NewYorkCountryLawyer adds that according to the settlement (PDF), Grooveshark must pay $50 million, but no money judgment has been entered against individual defendants.
United Kingdom

UK High Court Orders Block On Popcorn Time 96

Posted by samzenpus
from the no-mocie-for-you dept.
An anonymous reader writes: Five ISPs have been given orders by the UK High Court to restrict access to sites offering downloads of popular movie streaming service Popcorn Time – a move which follows complaints from the Motion Picture Association referring to the software's use as a platform for viewing pirated content. According to the new regulation, Virgin, BT, Sky, EE and TalkTalk are now required to block access to popcorntime.io, flixtor.me, popcorntime.se and isoplex.isohunt.to – all sites which link to Popcorn Time downloads. In the High Court order, Justice Birss cites under Section 97A of the Copyright, Designs and Patents Act, that the 'Popcorn Time application is used in order to watch pirated content on the internet.' Popcorn Time operates as a BitTorrent client, despite its slick user interface, and is used mainly for illegal content – although, as its supporters argue, it is also a handy tool for streaming public domain films. It is unclear how successful the ban will be – the blocked sites are not the only places to find Popcorn Time online. Additionally, at ISP level, it will be challenging to monitor as there is not a single version or developer to seek out, with the code available as open source.
Security

Once a Forgotten Child, OpenSSL's Future Now Looks Bright 76

Posted by samzenpus
from the shot-in-the-arm dept.
Trailrunner7 writes: Rarely does anything have a defined turning point in its history, a single day where people can point and say that was the day everything changed. For OpenSSL, that day was April 7, 2014, the day that Heartbleed became part of the security lexicon. Heartbleed was a critical vulnerability in the venerable crypto library. OpenSSL is everywhere, in tens of thousands of commercial and homespun software projects. And so too, as of last April, was Heartbleed, an Internet-wide bug that leaked enough memory that a determined hacker could piece together anything from credentials to encryption keys.

"Two years ago, it was a night-and-day difference. Two years ago, aside from our loyal user community, we were invisible. No one knew we existed," says Steve Marquess, cofounder, president and business manager of the OpenSSL Foundation, the corporate entity that handles commercial contracting for OpenSSL. "OpenSSL is used everywhere: hundreds, thousands of vendors use it; every smartphone uses it. Everyone took that for granted; most companies have no clue they even used it." To say OpenSSL has been flipped on its head—in a good way—is an understatement.

Heartbleed made the tech world realize that the status quo wasn't healthy to the security and privacy of ecommerce transactions and communication worldwide. Shortly after Heartbleed, the Core Infrastructure Initiative was created, uniting The Linux Foundation, Microsoft, Facebook, Amazon, Dell, Google and other large technology companies in funding various open source projects. OpenSSL was the first beneficiary, getting enough money to hire Dr. Steve Henson and Andy Polyakov as its first full-timers. Henson, who did not return a request to be interviewed for this article, is universally known as the one steady hand that kept OpenSSL together, an unsung hero of the project who along with other volunteers handled bug reports, code reviews and changes.
Books

Obama Announces e-Book Scheme For Low-Income Communities 126

Posted by samzenpus
from the you-get-a-book-and-you-get-a-book-and-you-get-a-book dept.
An anonymous reader writes: The White House has today launched an initiative encouraging top book publishers to supply $250 million worth of free e-books to low-income students. Partnering with local governments and schools nationwide, President Obama hopes that the e-book scheme will support low-income households who significantly trail the national average for computer ownership and digital connectivity. At Anacostia Library in Southeast Washington, D.C., Obama announced that libraries and schools in poorer communities would be supported by the scheme and efforts would be made to increase internet access at these establishments. Publishers involved in the program include Penguin Random House, Macmillan, Bloomsbury, HarperCollins and Simon & Schuster. NGOs, such as book donation charity Firstbook, and public libraries will also be working together to develop apps to support the digital reading program.

Comment: Capitalism is doomed (Score -1) 99

by For a Free Internet (#49585875) Attached to: Microsoft Announces Windows Holographic Platform

Under capitalism, all these inventions will only be used against the workers. Only under COMMUNISM will the productive forces be liberated from the chains of private property. Now, man is ruled by the products of his own hand as if by an uncontrollable alien force. Under COMMUNISM, for the first time in history, man will consciously direct his social life.

Bug

Tattoos Found To Interfere With Apple Watch Sensors 399

Posted by timothy
from the clashing-hipsterisms dept.
An anonymous reader writes: A number of early Apple Watch adopters have complained that their tattoos cause interference with many of the new product's key features. According to multiple tattooed sources, inked wrists and hands can disrupt communication with the wearable's sensors installed in the underside of the device leading to malfunction. Owners of Apple Watch have taken to social media to voice their frustration using the hashtag #tattoogate and sharing their disappointment over the newly discovered Apple flaw. One user reported that the Watch's lock system did not disable as it should when the device was placed on a decorated area of skin – forcing those affected to constantly enter their security pins. A further source suggested that notification alerts would fail to 'ping' as they are supposed to, and that heart rate monitoring differed significantly between tattooed and non-tattooed wrist readings.
Microsoft

Internet Explorer's Successor, Project Spartan, Is Called Microsoft Edge 153

Posted by samzenpus
from the a-rose-by-any-other-name dept.
An anonymous reader writes: At its Build 2015 developer conference today, Microsoft announced Project Spartan will be called Microsoft Edge. Joe Belfiore, Microsoft's corporate vice president of the operating systems group, announced the news on stage, adding that Edge will have support for extensions. Edge is Microsoft's new browser shipping on all Windows 10 devices (PCs, tablets, smartphones, and so on). Belfiore explained the name as referring to "being on the edge of consuming and creating."
Transportation

Crashing iPad App Grounds Dozens of American Airline Flights 263

Posted by Soulskill
from the have-you-tried-pushing-the-button dept.
infolation writes: American Airlines was forced to delay multiple flights on Tuesday night after the iPad app used by pilots crashed. Introduced in 2013, the cockpit iPads are used as an "electronic flight bag," replacing 16kg (35lb) of paper manuals which pilots are typically required to carry on flights. In some cases, the flights had to return to the gate to access Wi-Fi to fix the issue.
Education

Ask Slashdot: How Should I Build a Maker Space For a Liberal Arts College? 167

Posted by Soulskill
from the build-it-out-of-LEGO dept.
XxtraLarGe writes: I work for a small liberal arts college, and have been asked to research makerspaces. I have done a bunch of initial research which tells me a lot about equipment being used, as well as location, etc., but what I'm not finding are what to know before you start, or what it takes to make the effort worthwhile.

I'd be interested in hearing from other educators, staff, students and other maker community members on Slashdot that had makerspaces at their schools or community — can be any level — and what was the experience like? 3D printer, 3D scanner & Laser cutting machines seem to be a given, so I'd like to hear what kinds of think-outside-the-box equipment/materials did you have? We are considering putting it in our library, which seems to be a popular choice with most schools. There's also the possibility of having it somewhere in town that it could be more accessible to members of the community, maybe even as a co-op.

We are experiencing system trouble -- do not adjust your terminal.

Working...