Please create an account to participate in the Slashdot moderation system


Forgot your password?
Slashdot Deals: Cyber Monday Sale Extended! Courses ranging from coding to project management - all eLearning deals 20% off with coupon code "CYBERMONDAY20". ×

Facebook Caught Exposing Millions of Credentials 159

fysdt writes "Facebook has leaked photographs, profiles and other personal information for millions of its users because of a years-old bug that overrides individual privacy settings, researchers from Symantec said. The flaw, which the researchers estimate has affected hundreds of thousands of applications, exposed user access tokens to advertisers and others. The tokens serve as a spare set of keys that Facebook apps use to perform certain actions on behalf of the user, such as posting messages to a Facebook wall or sending RSVP replies to invitations. For years, many apps that rely on an older form of user authentication turned over these keys to third parties, giving them the ability to access information users specifically designated as off limits."

India To Ban .xxx Domain 257

An anonymous reader writes "The Indian government have said they will introduce measures to block the newly approved .xxx domain from the country. The Economic Times reports that 'India along with many other countries from the Middle East and Indonesia opposed the grant of the domain in the first place, and we would proceed to block the whole domain, as it goes against the IT Act and Indian laws.'"

Porn Sites More Infected Than Thought 170

nk497 writes "Porn sites are five times as likely to host malware as previously thought, with 3.6% offering up a digital infection of some sort, according to a researchers who set up their very own adult sites for a new study. One reason for the high rate of malware is that the online porn industry makes use of affiliate programs, where one site will drive traffic to another in exchange for links, cash, or simply free pornographic material to use. Because such programs don't check who they're doing business with, and sites use disguised links and other clandestine methods to drive people to different pages, it's easy for criminals to abuse the system to spread malware. Researcher Gilbert Wondracek said, 'They inadvertently have created an ecosystem that can easily be abused on a large scale by cyber criminals, and that's worrying.'"
The Almighty Buck

"Hidden" PayPal Fees Inciting Community Unrest 309

Several sites are reporting on the addition of extra fees to PayPal that are just starting to become common knowledge. While PayPal has certainly had their fair share of controversy, the new "transaction fees" that promise to affect the entire customer base are already well on their way to becoming another. "For example, a personal account sending another personal account money for a one-time payment for, say, mowing your lawn was not previously charged any fees on either side, but is now charged the usual transaction fee (the sender gets to decide who pays). The only way to avoid this is by selecting 'gift' when making the transfer — something you can't do if you're following through on a purchase or invoice from someone. And, if you fall into this category (which many people do), it's likely that you had no idea about the changes until just now."

Browser Vendors Force W3C To Scrap HTML 5 Codecs 640

snydeq writes "Major browser vendors have been unable to agree on an encoding format they will support in their products, forcing the W3C to drop audio and video codecs from HTML 5, the forthcoming W3C spec that has been viewed as a threat to Flash, Silverlight, and similar technologies. 'After an inordinate amount of discussions on the situation, I have reluctantly come to the conclusion that there is no suitable codec that all vendors are willing to implement and ship,' HTML 5 editor Ian Hickson wrote to the whatwg mailing list. Apple, for its part, won't support Ogg Theora in QuickTime, expressing concerns over patents despite the fact that the codec can be used royalty-free. Opera and Mozilla oppose using H.264 due to licensing and distribution issues. Google has similar reservations, despite already using H.264 and Ogg Theora in Chrome. Microsoft has made no commitment to support <video>."

The first version always gets thrown away.