Forgot your password?
typodupeerror

+ - Android botnet evolves, could pose threat to corporate networks->

Submitted by angry tapir
angry tapir (1463043) writes "An Android Trojan program that's behind one of the longest running multipurpose mobile botnets has been updated to become stealthier and more resilient. The botnet is mainly used for instant message spam and rogue ticket purchases, but it could be used to launch targeted attacks against corporate networks because the malware allows attackers to use the infected devices as proxies, according to security researchers."
Link to Original Source

+ - If Philae were nuclear powered, it'd still be alive today

Submitted by StartsWithABang
StartsWithABang (3485481) writes "After successfully landing on a comet with all 10 instruments intact, but failing to deploy its thrusters and harpoons to anchor onto the surface, Philae bounced, coming to rest in an area with woefully insufficient sunlight to keep it alive. After exhausting its primary battery, it went into hibernation, most likely never to wake again. We’ll always be left to wonder what might have been if it had functioned optimally, and given us years of data rather than just 60 hours worth. The thing is, it wouldn’t have needed to function optimally to give us years of data, if only it were better designed in one particular aspect: powered by Plutonium-238 instead of by solar panels."

+ - In major shift, Firefox to use Yahoo search by default in US->

Submitted by mpicpp
mpicpp (3454017) writes "Google's 10-year run as Firefox's default search engine is over. Yahoo wants more search traffic, and a deal with Mozilla will bring it.

In a major departure for both Mozilla and Yahoo, Firefox's default search engine is switching from Google to Yahoo in the United States.

"I'm thrilled to announce that we've entered into a five-year partnership with Mozilla to make Yahoo the default search experience on Firefox across mobile and desktop," Yahoo Chief Executive Marissa Mayer said in a blog post Wednesday. "This is the most significant partnership for Yahoo in five years."

The change will come to Firefox users in the US in December, and later Yahoo will bring that new "clean, modern and immersive search experience" to all Yahoo search users. In another part of the deal, Yahoo will support the Do Not Track technology for Firefox users, meaning that it will respect users' preferences not to be tracked for advertising purposes.

With millions of users who perform about 100 billion searches a year, Firefox is a major source of the search traffic that's Google's bread and butter. Some of those searches produce search ads, and Mozilla has been funded primarily from a portion of that revenue that Google shares. In 2012, the most recent year for which figures are available, that search revenue brought in the lion's share of Mozilla's $311 million in revenue."

Link to Original Source

+ - Medieval Times: Congress Suggests Moat to Protect White House->

Submitted by PolygamousRanchKid
PolygamousRanchKid (1290638) writes "Acting Secret Service director Joseph Clancy on Wednesday faced a number of tough questions from the House Judiciary Committee about the fence jumper who made it deep into the White House. But along with the tough questions, Clancy fielded a couple eyebrow raising suggestions on how to better protect the president’s home.

“Would a moat, water six feet around, be kind of attractive and effective?” Rep. Steve Cohen, D-Tenn., asked with trepidation.

What is likely to happen, though, is that the 7 foot 6-inch fence currently circling the White House gets heightened, Clancy said. Renderings of the new fence are expected in the next few months.

Until then, the Secret Service is relying on a low-tech solution.

“We have a bike rack there now, which we know is not going to prevent someone from jumping the fence, but it’s going to allow us to have a little more time to react,” Clancy said.

C'mon Slashdotters . . . surely we have wackier ideas than a moat . . . ?"

Link to Original Source

+ - Obama Posts Net Neutrality Petition

Submitted by Bob9113
Bob9113 (14996) writes "President Obama has posted a petition for net neutrality, targeted at the FCC. The page reads: Stand up for net neutrality President Obama is taking a stand to keep the internet open and free. Add your name to tell the FCC you support the President's plan to protect net neutrality."

+ - Nasty Code Execution Bug Found in Android

Submitted by Trailrunner7
Trailrunner7 (1100399) writes "There is a vulnerability in Android versions below 5.0 that could allow an attacker to bypass ASLR and run arbitrary code on a target device under certain circumstances. The bug was fixed in Lollipop, the newest version of the mobile OS, released earlier this week.

The vulnerability lies in java.io.ObjectInputStream, which fails to check whether an object that is being deserialized is actually a serialized object. Security researcher Jann Horn discovered the vulnerability and reported it to Google earlier this year.

Horn said via email that the exploitability of the vulnerability is difficult to judge.

“An attacker would need to get a malicious app onto the device in order for this to work. The app would need no permissions,” he said. “However, I don’t have a full exploit for this issue, just the crash PoC, and I’m not entirely sure about how predictable the address layout of the system_server really is or how easy it is to write a large amount of data into system_server’s heap (in order to make less accurate guesses for the memory position work). It might be necessary to crash system_server once in order to make its memory layout more predictable for a short amount of time, in which case the user would be able to notice the attack, but I don’t think that’s likely.”"

Comment: Re:Can someone expolain what's so great about HTML (Score 1) 131

by NotInHere (#48418013) Attached to: HTML5: It's Already Everywhere, Even In Mobile

In firefox, you have various options to disable parts of HTML5:
webgl.disabled: https://bugzilla.mozilla.org/s...
network.websocket.enabled
full-screen-api.enabled ...
And if there is demand to disable HTML5 for certain websites on a click-to-play basis, either somebody will write an addon or the browser does it already itself. For example getusermedia asks for your permission before giving access to the camera.

Comment: Re:Can someone expolain what's so great about HTML (Score 4, Insightful) 131

by NotInHere (#48408791) Attached to: HTML5: It's Already Everywhere, Even In Mobile

but the platform was intentionally designed to make it impossible for security reasons.

Perhaps thats true for some technologies, but as user agents didn't add those features to the web, all of those shiny features landed in flash or silverlight and ended up being less secure and more broken than before. Soon every website told you to install flash because it was so new and so cool.

So browser vendors had the choice: either add the features to the browsers themselfes, or rely on one company (Adobe, silverlight came later) and their "Browser inside a Browser".

Of course HTML5 is less secure, and especially WebGL allows the web (traditionally a very dangerous place) to access the graphics card without a dense safety net. But otherwise you would have unity web player or other technologies, which are basically punching holes exactly there where you build your safety net.

HTML5 isn't less secure because people wanted it to be less secure. They wanted to obsolete plugins, but still meet the Web's users demands. Do you have flash installed?

Comment: Re:Municipal WiFi (Score 1) 106

by NotInHere (#48408009) Attached to: NYC To Replace Most of Its Payphones With Free Gigabit WiFi In 2015

VPN is a good idea whenever using a public Internet service, since not all sites are encrypted and you don't really know who you're connecting to.

And you know your VPN better? You know and trust every of the stations appearing on the traceroute list when run on your VPN-ed network interface?

"Atomic batteries to power, turbines to speed." -- Robin, The Boy Wonder

Working...