Please create an account to participate in the Slashdot moderation system


Forgot your password?
Slashdot Deals: Cyber Monday Sale! Courses ranging from coding to project management - all eLearning deals 25% off with coupon code "CYBERMONDAY25". ×

Submission + - Charles Schwab Picture Passwords Announced, Hacked

An anonymous reader writes: At the Internet Identity Workshop, Vidoop demonstrated a picture password scheme and announced that it will be used by Charles Schwab's online website. In August 2007, Charles Schwab customers will be able to login by choosing the correct images, such as a pizza or a car, from the Vidoop image grid. The company claims that the scheme is invulnerable to phishing, keyloggers and "all prevalent forms of hacking", according to their website and TV commercial on YouTube. At the same workshop, Harvard and Commercenet announced that Vidoop is vulnerable to a simple man-in-the-middle phishing attack, and they posted a video of the attack in progress. If Charles Schwab read Slashdot, they would already know about the related attack on Bank of America's SiteKey and the Harvard study showing how easily SiteKey users are phished, which we were talking about weeks ago...
Wireless Networking

Submission + - Mobile Ultrawideband Extended to Cell Phones

Helena Ronner writes: "Alereon, Inc., the ultrawideband (UWB) technology leader for mobile WiMedia and solutions based on Certified Wireless USB, and Stonestreet One, Inc., a leading wireless software company focused on complete solutions for local and personal area networks including WiMedia-based UWB, today announced a new wireless USB solution for Microsoft Windows Mobile and Windows Embedded CE platforms including PDA devices and cellular phones. Alereon and Stonestreet One are demonstrating this platform at WinHEC 2007 in Los Angeles.

The mobile phone solution consists of the Alereon AL4000 Certified Wireless USB chipset, the only native device solution currently certified for Wireless USB solutions by the USB-IF, powered by Stonestreet One's UltraSuite(TM) for Windows Mobile software and device drivers. Consumer and mobile electronics OEM devices which support compact flash (CF) and SDIO interfaces using Windows Mobile can now incorporate this advanced high speed wireless technology and connect with both legacy wired USB and Certified Wireless USB equipment and platforms, as specified by the USB Implementers Forum. The demonstration includes a Samsung i730 cellular phone with an embedded Certified Wireless USB chipset from Alereon running UltraSuite(TM) and WiCenter(TM) for Windows Mobile software, connected to a laptop running the Stonestreet UltraSuite(TM) and WiCenter(TM) PC software for Microsoft Windows.

Alereon and Stonestreet One are demonstrating their UWB solutions including this new capability at the USB-IF solutions showcase at the WinHEC show in Los Angeles, May 14-16, 2007."
The Internet

Submission + - DirecTV Exploring Powerline Broadband

Aaron writes: DirecTV is interested in conducting trials of broadband over powerline technology (BPL) in a major city, according to the company's CEO. The satellite TV provider has had a number of failed stints in the broadband arena, and has now turned its attention to a technology that has seen limited deployment and ample criticism for its tendency to cause radio interference. The company says they "aren't alone" in their talks with BPL hardware vendors, which could mean Echostar is also interested in pursuing BPL.

Microsoft Details FOSS Patent Breaches 576

CptRevelation writes "Microsoft has released more detailed information on the patents supposedly in breach by the open-source community. Despite their accusations of infringement, they state they would rather do licensing deals instead of any legal action. 'Open-source programs step on 235 Microsoft patents, the company said. Free Linux software violates 42 patents. Graphical user interfaces, the way menus and windows look on the screen, breach 65. E-mail programs step on 15, and other programs touch 68 other patents, the company said. The patent figures were first reported by Fortune magazine. Microsoft also said Open Office, an open-source program supported in part by Sun Microsystems Inc., infringes on 45 patents. Sun declined to comment on the allegation.'"

Submission + - DOD blocks worldwide access to 13 popular sites

tinahdee writes: "Bet you can guess which sites are restricted from any DOD access worldwide. The memo, a PDF linked to from, says home computers are exempt from the restriction, but that staffers should be careful not to forward links to any DOD servers, which could compromise security."

Submission + - US Senators take outsourcing firms to woodshed

coondoggie writes: "Two US Senators — -a Democrat and a Republican no less — are taking aim at nine prominent outsourcing companies demanding that they explain their use of the H-1B program. In letter mailed to the companies on Monday, Senators. Chuck Grassley, R-Iowa, and Dick Durbin, D-Ill., stated: "We have been concerned about reported fraud and abuse of the H-1B and L visa programs, and their impact on American workers. We are also concerned that the program is not being used as Congress intended." 8"
The Internet

Congress May Outlaw 'Attempted Piracy' 768

cnet-declan writes "Attorney General Alberto Gonzales is asking Congress to make 'attempted' copyright infringement a federal crime. The text of the legislation as well as the official press-release is available online. Rep. Lamar Smith, a key House Republican, said he 'applauds' the idea, and his Democratic counterpart is probably on board too. In addition, the so-called Intellectual Property Protection Act of 2007 would create a new crime of life imprisonment for using pirated software in some circumstances, expand the DMCA with civil asset forfeiture, and authorize wiretaps in investigations of Americans who are 'attempting' to infringe copyrights. Does this go too far?"

Submission + - Sidestepping Vista's UAC

Ron writes: "A security researcher has recently discovered a hole that could help Trojans bypass UAC on Windows Vista. According to his paper, and a Symantec security researcher, this effectively nullifies UAC's protection. The way it works is that the Trojan replaces shortcuts on a user's start menu or desktop with shortcuts to itself. Then, when a user thinks he's elevating his favorite program, such as World of Warcraft, he's actually elevating the malicious program. Cancel or allow?"

Leveraging always beats prototyping.