Slashdot is powered by your submissions, so send in your scoop


Forgot your password?
Slashdot Deals: Get The Fastest VPN For Your Internet Security Lifetime Subscription Of PureVPN at 88% off. ×

Greek Banks Under Cyberattack, Face Ransom Demands ( 23

An anonymous reader writes: Hackers have targeted three Greek banks for a third time in five days, demanding a ransom from each lender of 20,000 bitcoin (€7m), according to Greek police and the country's central bank. A group calling itself the Armada Collective demanded the bitcoin ransom after staging its first attacks last Thursday, and then threatened a full collapse of the unnamed banks' websites if they refused to pay up. These initial attacks took the form of a distributed denial of service — flooding the banks' websites with requests so that they crashed under the strain. On Thursday, they succeeded in disrupting electronic transactions at all three banks for a short period, but customer information was protected, a police official said.

Video Software Engineer Liz Bennett Talks About Being a Woman in a Nearly All Male Workplace (Video) 200

This conversation was generated by a post Eric S. Raymond published on his "Armed and Dangerous" blog that said, "...if you are any kind of open-source leader or senior figure who is male, do not be alone with any female, ever, at a technical conference. Try to avoid even being alone, ever, because there is a chance that a 'women in tech' advocacy group is going to try to collect your scalp." Eric later wrote a post about how Social Justice Warriors may be more of a problem than the problems they complain about.

Whoa! Predatory women in tech trying to entrap people like (and including) Linus Torvalds the way an old-time private eye got the goods on an errant husband as part of a divorce case? Scary! And worrying about thoughtcrime, too? Oh my! But Liz Bennett is an actual software engineer who works at Loggly in San Francisco. She writes for her company's blog when she's not writing Java code, has a (not very active) GitHub account, and plays bassoon. And her attitude is similar to the one espoused by ESR in the second post (above): write great code -- and if you do, they (for any value of they) have no right to be negative about you, period. And, she says, before you take a job you should be sure the company is a good "fit" for you and doesn't harbor people who will work to bring you down -- which is great advice for anyone, in any field of endeavor.

Pearson Credential Manager System Used By Cisco, IBM, F5 Has Been Breached 25

An anonymous reader writes with a report from Help Net Security that the credential management system used by Pearson VUE (part of education company and publisher Pearson) has been breached "by an unauthorized third party with the help of malware." Pearson VUE specializes in computer-based assessment testing for regulatory and certification boards. From the story: Over 450 credential owners (including IT organizations such as IBM, Adobe, etc.) across the globe use the company's solutions to develop, manage, deliver and grow their testing programs. The company is still assessing the scope of the breach, and says that they do not think that US Social Security numbers or full payment card information were compromised. But because the PMC is custom designed to fit specific customer requirements, they are still looking into how this incident affected each of their customers. According to a note on Pearson's site, the system remains down for the time being.

Comment Re:Its only SuperFish-like (Score 3, Interesting) 92

Heh, as pointed out at the bottom of that article someone in Dell marketing needs to eat some serious humble pie:
"Dell is serious about your privacy
Worried about Superfish? Dell limits its pre-loaded software to a small number of high-value applications on all of our computers. Each application we pre-load undergoes security, privacy and usability testing to ensure that our customers experience the best possible computing performance, faster set-up and reduced privacy and security concerns."



Dell Accused of Installing 'Superfish-Like' Rogue Certificates On Laptops ( 92

Mickeycaskill writes: Dell has been accused of pre-installing rogue self-signing root certificate authentications on its laptops. A number of users discovered the 'eDellRoot' certificate on their machines and say it leaves their machines, and any others with the certificate, open to attack. "Anyone possessing the private key which is on my computer is capable of minting certificates for any site, for any purpose and the computer will programmatically and falsely conclude the issued certificate to be valid," said Joe Nord, a Citrix product manager who found the certificate on his laptop. It is unclear whether it is Dell or a third party installing the certificate, but the episode is similar to the 'Superfish' incident in which Lenovo was found to have installed malware to inject ads onto users' computers.

Microsoft Open-Sources Visual Studio Code ( 158

An anonymous reader writes: Microsoft today unleashed a torrent of news at its Connect(); 2015 developer event in New York City. The company open-sourced code editing software Visual Studio Code, launched a free Visual Studio Dev Essentials program, pushed out .NET Core 5 and ASP.NET 5 release candidates, unveiled Visual Studio cloud subscriptions, debuted the Visual Studio Marketplace, and a lot more. The source for Visual Studio Code is available at GitHub under the MIT license. They've also released an extension (preview) for Visual Studio that facilitates code debugging on Linux.

Could a Change In Wording Attract More Women To Infosec? ( 291

itwbennett writes: "Information security is an endeavor that is frequently described in terms of war," writes Lysa Myers. "But what would the gender balance of this industry be like if we used more terms from other disciplines?" Just 14 percent of U.S. federal government personnel in cybersecurity specialties are women, a number startlingly close to the 14.5 percent of active duty military members who are women (at least as of 2013). By comparison, women are well represented in other STEM fields: "As of 2011, women earn 60 percent of bachelor-level biology degrees. Women also earn between 40 and 50 percent of chemistry, mathematics and statistics, and Earth sciences undergraduate degrees," writes Myers. Why the difference? Myers points to a comment from someone who taught a GenCyber camp for girls: "He found that one effective way to get girls to feel passionate about security was to create an emotional connection with the subject: e.g. the shock and distress of seeing your drone hacked or your password exposed," writes Myers.

Comment Re:Good Lord... (Score 2) 146

Slashdot: "Let's talk about something important. Put. That coffee. Down. Coffee's for closers only. You think I'm fucking with you? I am not fucking with you. I'm here from downtown. I'm here from And I'm here on a mission of mercy. Your name's Timothy? You call yourself a salesman you son of a bitch?"

Timothy: "I don't gotta sit here and listen to this shit."

Slashdot: "You certainly don't pal, 'cause the good news is - you're fired. The bad news is - you've got, all of you've got just one week to regain your jobs starting with tonight. Starting with tonight's submissions. Oh? Have I got your attention now? Good. 'Cause we're adding a little something to this month's sales contest.

As you all know first prize is a Cadillac El Dorado. Anyone wanna see second prize? Second prize is a set of steak knives. Third prize is you're fired. Get the picture? You laughing now? You got Black Friday deals. Brad's Deals paid good money, get their deals to sell them, you can't close the deals you're given you can't close shit. You ARE shit. Hit the bricks, pal, and beat it 'cause you are going OUT."

Timothy: "Brad's Deals are weak."

Slashdot: "Brad's Deals are weak? Fucking deals are weak. You're weak. I've been in this business 15 years..."

Timothy: "What's your name?"

Slashdot: "Fuck you. That's my name."

Comment Re:Will this work in the ticket in ticket out syst (Score 1) 79

it's really just causing the barcode reader to do what it was built for, the problem is the software is trusting uncontrolled user input (the barcode) without sanitizing it first, and also most of these units are set up with the barcode reader connected as a keyboard with access to do things it should not be allowed to do (i.e. if you unplug the scaner and hook a keyboard up you can do the same "BAD STUFF"

Boot Camps Introducing More Women To Tech ( 196

Nerval's Lobster writes: A new study from Course Report suggests that boot camps are introducing more women to the tech-employment pipeline. Data for the study came from 769 graduates from 43 qualifying coding schools (a.k.a. boot camps). Some 66 percent of those graduates reported landing a full-time job that hinged on skills learned at the boot camp. Although the typical "bootcamper" is 31 years old, with 7.6 years of work experience, relatively few had a job as a programmer before participating in a boot camp. Perhaps the most interesting data-point from Course Report, though, is that 36 percent of "bootcampers" are women, compared to 14.1 percent coming into the tech industry via undergraduate programs. Bringing more women and underrepresented groups into the tech industry is a stated goal of many companies. Over the past few years, these companies' diversity reports have bemoaned how engineering and leadership teams skew overwhelmingly white and male. Proposed strategies for the issue include adjusting how companies recruit new workers; boot camps could also quickly deepen the pool of potential employees with the right skills.

The clothes have no emperor. -- C.A.R. Hoare, commenting on ADA.