Become a fan of Slashdot on Facebook


Forgot your password?

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).


+ - U.S. Links North Korea to Sony Hacking->

Submitted by schwit1
schwit1 (797399) writes "Speaking off the record, senior intelligence officials have told the New York Times, CNN, and other news agencies that North Korea was "centrally involved" in the hack of Sony Pictures Entertainment (SPE).

It is not known how the US government has determined that North Korea is the culprit, though it is known that the NSA has in the past penetrated North Korean computer systems.

Analysis of code shows it used knowledge of Sony's Windows network to spread and wreak havoc.

Previous analysis of the malware that brought down Sony Pictures' network showed that there were marked similarities to the tools used in last year's cyber-attack on South Korean media companies and the 2012 "Shamoon" attack on Saudi Aramco. While there was speculation that the "DarkSeoul" attack in South Korea was somehow connected to the North Korean regime, a firm link was never published."

Link to Original Source

+ - Google Proposes to Warn People About non-SSL web sites

Submitted by mrspoonsi
mrspoonsi (2955715) writes "The proposal was made by the Google developers working on the search firm's Chrome browser. The proposal to mark HTTP connections as non-secure was made in a message posted to the Chrome development website by Google engineers working on the firm's browser. If implemented, the developers wrote, the change would mean that a warning would pop-up when people visited a site that used only HTTP to notify them that such a connection "provides no data security". Currently only about 33% of websites use HTTPS, according to statistics gathered by the Trustworthy Internet Movement which monitors the way sites use more secure browsing technologies. In addition, since September Google has prioritised HTTPS sites in its search rankings."

+ - Magic Leap Hires Sci-Fi Writer Neal Stephenson as Chief Futurist->

Submitted by giulioprisco
giulioprisco (2448064) writes "Magic Leap, a secretive Florida augmented reality startup that raised $542 million in October, hired renowned science fiction writer Neal Stephenson as its “Chief Futurist.” Stephenson offers hints at the company’s technology and philosophy: "Magic Leap is bringing physics, biology, code, and design together to build a system that is going to blow doors open for people who create things." According to the Magic Leap website, their Dynamic Digitized Lightfield Signal technology permits generating images indistinguishable from real objects."
Link to Original Source

+ - Over 9,000 PCs in Australia infected by TorrentLocker ransomware->

Submitted by River Tam
River Tam (3926677) writes "Cybercriminals behind the TorrenLocker malware may have earned as much as $585,000 over several months from 39,000 PC infections worldwide, of which over 9,000 were from Australia. If you're a Windows user in Australia who's had their files encrypted by hackers after visiting a bogus Australia Post website, chances are you were infected by TorrentLocker and may have contributed to the tens of thousands of dollars likely to have come from Australia due to this digital shakedown racket."
Link to Original Source

Comment: Have tried everything (Score 2) 205

by Stormcrow309 (#44249177) Attached to: How Do You Get Better Bug Reports From Users?

Hello everyone,

I have tried a bunch of ways. Trained the 'expert' users in the area on how to put in a better ticket. Sent tickets back to them because of lack of information. Judicious of cattle prods and a tack hammer... However, users will use what method is easiest to them, which tends to be:

  1. Calling someone they know directly
  2. Emailing someone they know directly
  3. Emailing the ticket capture email address with 'Call me'
  4. Calling the service desk
  5. Screaming at someone from IS in the hallway
  6. Emailing the ticket capture email address with a long email chain which tangentally mentions the issue somewhere in the middle
  7. Complaining to coworkers
  8. not doing anything
  9. Log into the ticket system and put in 'call me'

Comment: Stats (Score 1) 572

by Stormcrow309 (#30727010) Attached to: Why Programmers Need To Learn Statistics

I find tfa pretty clueless when it comes a real understanding on what is needed for performance testing and tweaking. A statistical analysis is nice, especially with monte carlo type analysis, like Bungie running Halo 3 on numerious xboxs simulating load and player interactions. However, I find that what is lacking with programmers is a basic understanding on the high levels of process analysis, such as network analysis, CPM, and PERT. Knowing a process has high levels of variance is nice, but not useful for understanding the why. Where is Zed's example of multivariant linear regression or ordered probit? Discussion on hypothesis testing? Anyone, anyone?

As a side note, Statistics in a Nutshell is the only book programmers really need on stats.

Comment: Re:Comparison (Score 1) 709

by Stormcrow309 (#30681214) Attached to: Office Work Ethic In the IT Industry?


I agree with your statement. IT does a bad job learning their customer's business. I think it has to do with the inherent IT ego. I work on some systems (Infor's SmartStream and BPA for example) where other customers can't believe that IT is so heavily involved in business process decisions. Many of our business process improvement projects are run by our systems department (were our IT project managers are) instead of the functional users. For a midcap organization, that seems to be unusual. (Observed phenomina that would make a good research article) However, it works for us.

Don't get me wrong, we still make spectacular screwups. Usually it is due to the lack of a rigourous project management methodology. I am the only person with the project management professional (PMP) certification and there is some resistance against my calls for a more formal process. (I don't want full PMI methodology, only an idiot wants to apply that willy nilly) Ends up that a good quarter to half of my projects start out as someone else's. It is my experience that the major issues tend to be lack of requirements analysis, cost control, and/or scope control being the major issues here. (Another observed phenomina that would make a good research article - should I start writing the problem statements for my fellow researcher too? Get busy) Better training and education would fix some of these issues.

Comment: Comparison (Score 2, Insightful) 709

by Stormcrow309 (#30671708) Attached to: Office Work Ethic In the IT Industry?

Let me make a comparison. I and another analyst are working similar projects with a similar timeframe. He has worked here for a year after college. I have worked for ten. We have four weeks to finish the project. I finish mine in two weeks at about four hours a day, five days a week. He takes all four weeks, working ten hour days, seven days a week. The difference between us is really experience. I will spend my time up front learning my users wants and needs, while he works on the rock methodology of requirements analysis. (User: I want a rock. Analyst: Is this the rock you want? User: No, find a different rock. Goto Beginning.) I take time every week to network with my users and learn their business processes and what their problems are. My cohort just is to busy showing everyone how smart he is and how hard he works. That is why I read the WSJ, Slashdot, Wired, the Economist, some industry rags (our core business, not IT), and Tech Review at work. It helps for me to understand what my customer needs are, sometimes before they do. Design iterations are quicker and more complete solution wise. Trying to explain it to a fresh face out of college who has been taught just to code is very difficult.

Comment: Re:They have a point (Score 1) 671

by Stormcrow309 (#30365866) Attached to: Google CEO Says Privacy Worries Are For Wrongdoers


You make a valid point. The discussion becomes what is private and what is not. Lets go to your example of pedophiles. First off, I agree with the bullet to the brainpan concept of handling pedophiles. However, I am think more of the implied children. My brother does not want pictures of his sons on the net while they are minors, especially when they are very young due to the preceived temptation it is to preditors. It is a valid point to encourgage better privacy. When we consider the number of complaints comming to light of Iran's intellegence services targeting expat dissidents, the argument becomes stronger. When we allow for information that can be sigificantly damaging to someone to become public domain, the World suffers in ways we might not anticipate.

"Freedom is still the most radical idea of all." -- Nathaniel Branden