Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Security

Submission + - Cameras Unravel a Homicide, Frame by Frame 3 3

Pickens writes: "For years, the United Arab Emirates has been using its oil wealth to build up a defense and security infrastructure with over 10,000 surveillance cameras that allows law enforcement to track anyone, from the moment they get off an airplane, to the immigration counter where their passport is scanned, through the baggage claims area to the taxi stand where cameras record who gets into what cars, which log their locations through the city's automated highway toll system, all the way to their hotels, which also have cameras. Now the Los Angeles Times reports that a team of 20 investigators pored over 648 hours of surveillance videos using facial recognition software to sketch out a picture of 27 suspects involved in the murder of a 50-year-old Hamas commander wanted by Israel in the kidnapping and killing of two Israeli soldiers. In the end, a mixture of high-tech razzle-dazzle and old-fashioned investigative work cracked the case. "Dubai police are very good at piecing together crimes," says Theodore Karasik, a security analyst at the Institute for Near East and Gulf Military Affairs. "I've seen it before when you had robberies or murders occur and you'll forget about the story and then six months later the guys are arrested via Interpol brought back here and then they disappear into the system." The case has generated what most analysts consider unwelcome fallout for Israel, which many suspect of being behind the attack but if Mossad agents were involved, the operation blew the identities of 27 agents. "They'll never be able to go outside of Israel again, even with disguises," says Karasik. "Biometrics means all of the contours of your face are on file.""
Security

Submission + - Google and NSA teaming up -> 1 1

i_frame writes: The Washington Post reports that "Under an agreement that is still being finalized, the National Security Agency would help Google analyze a major corporate espionage attack that the firm said originated in China and targeted its computer networks, according to cybersecurity experts familiar with the matter. The objective is to better defend Google — and its users — from future attack."
Link to Original Source

Submission + - LucidDB 0.9.2 Release->

SF:perfecthash writes: LucidDB is a new RDBMS purpose-built entirely for data warehousing and business intelligence. Its storage and query architecture supports high-performance OLAP against star schemas, and allows ETL operations to be expressed entirely as SQL statements. Find out more at http://www.luciddb.org/ 0.9.2 is a maintenance release containing bugfixes, HTTP client/server support, and catalog-based password authentication. Alexander Mekhrishvili has also created the PG2LucidDB bridge, enabling access to LucidDB from just about any client environment!
Link to Original Source

Submission + - MIT Researchers Develop Indoor Robocopter->

An anonymous reader writes: Researchers at MIT's Robust Robotics Group have developed a robotic helicopter capable of flying inside buildings, or other GPS-Denied environments. While the video talks about search and rescue or civil engineering applications, the brings somewhat scary reminders of Minory Report to my head. How long till I see one of these chasing me down a dark alley??
Link to Original Source
Security

Submission + - SPAM: Prototype security software blocks DDoS attacks

coondoggie writes: Researchers have come up with host-based security software that blocks distributed denial-of-service attacks without swamping the memory and CPU of the host machines.The filtering, called identity-based privacy-protected access control (IPCAF), can also prevent session hijacking, dictionary attacks and man-in-the-middle attacks, say researchers at Auburn University in their paper, "Modeling and simulations for Identity-Based Privacy-Protected Access Control Filter (IPCAF) capability to resist massive denial of service attacks."
[spam URL stripped]

Link to Original Source

Submission + - Dow to sell Solar Shingles->

CyberDong writes: Dow Chemical Co said on Monday it would begin selling a new rooftop shingle next year that converts sunlight into electricity. The new solar shingles can be integrated into rooftops with standard asphalt shingles, Dow said, and will be introduced in 2010 before a wider roll-out in 2011.
Link to Original Source

Submission + - Skills, Not Tools Are the Key to IT Security->

darthcamaro writes: There are a lot of decent automated web security tools now available, that make it seem as though all you need to do is point a tool at your web app and then presto you're secured. Reality is somewhat different. HP had a hacking challenge event and it proved that researchers actually need to know what they're doing as the tools themselves aren't good enough to entirely automate the hacking process.

"Most of our log-in challenges were designed to subvert tools," Matt Wood, senior security research at HP web security research group, told InternetNews.com. "The way they were designed, HP WebInspect or any other Web application scanning tool would not have been able to identify every single one of the hacks automatically."


Link to Original Source
Microsoft

Submission + - Hotmail Accounts Hacked->

i_frame writes: BBC is reporting that thousands of Hotmail accounts have been compromised in a phishing attack, an a list of more than 10,000 e-mail accounts and password have been posted online. A Microsoft spokeperson stated that "upon learning of the issue, we immediately requested that the credentials be removed and launched an investigation to determine the impact to customers".
A consultant at Sophos told the BBC News "We still don't know the scale of the problem"

Link to Original Source

Submission + - Pentagon: Our cloud is better than Google's->

bednarz writes: "At a press conference Monday, the Defense Information Systems Agency (DISA) announced that it's allowing military users to run applications in production mode on its new RACE cloud computing platform. Henry Sienkiewicz, technical program director, says RACE is more secure and stable than commercial cloud services. Google, for example, has suffered from frequent service outages including high-profile Gmail and Google News outages http://www.networkworld.com/news/2009/090209-google-outage-if-this-is.html in September. "We achieve 99.999% availability at all times," Sienkiewicz says. In contrast, Google claims 99.9% availability for Google Apps."
Link to Original Source
Linux

Submission + - NETGEAR WNR3500L Open Source Router Announced->

MyOpenRouter writes: NETGEAR has announced the WNR3500L, a brand new, open source, wireless-N gigabit router which is customizable with third party firmwares.

MyOpenRouter is the dedicated source for NETGEAR open source routers, with the full scoop including a review with screenshots, how-to's, tutorials, firmware downloads, and more.

Announcement:
http://www.myopenrouter.com/blog/entry/13896/NETGEAR-Announces-WNR3500L-Open-Source-Gigabit-Router-Development-Partner-Program/

Review:
http://www.myopenrouter.com/article/12912/

Downloads:
http://www.myopenrouter.com/download/list?sort=date

Link to Original Source
Intel

Submission + - WARF and Intel settle patent suit over Core 2 Duo->

reebmmm writes: The Wisconsin Alumni Research Foundation and Intel have settled their patent suit over technology developed by Gurindar Sohi, a computer science professor at the University of Wisconsin — Madison.

Professor Sohi developed technology that was ultimately patented by WARF using money he received from Intel. Last month, Judge Barbara Crabb found that the funding agreement was ambiguous, but that e-mails revealed that the money was an unrestricted gift and carried with it no obligation to license or assign any inventions to Intel.

Trial was scheduled to begin today. The terms of the settlement were not disclosed.

At issue is the 5,781,752. A copy of WARF's original complaint is here.

Link to Original Source
Mozilla

Submission + - New Firefox security tech blocks Web attacks->

CWmike writes: Mozilla has released a test build of Firefox that adds new technology designed to stymie most Web-based attacks including so-called clickjacking, it said Sunday. The technology, dubbed "Content Security Policy" (CSP), is a Mozilla-initiated specification targeted at Web site and application developers, who will be able to define which content on the site or in the online application is legitimate. That would block any script or malicious code that's been added by hackers who manage to compromise the site or app. Such attacks are generally tagged with the label of cross-site scripting (XSS). Preview editions of the test build are available for developers. "This isn't a single trick that's meant to counter a single kind of attack," said Johnathan Nightingale, the manager of the Firefox front-end development team. "This helps sites solve cross-site scripting, but it's more than that. They now have a way to shut everything dynamic off, so that no matter what content gets added to a site, if it's on the page and they've sent us policy instructions in its header, we shut it down." Firefox is passing the baton to site and application developers, who will be able to separate the legitimate from the illicit content. With CSP in place, Firefox will allow the former but will automatically block the latter. "It is in some ways similar to NoScript," said Brandon Sterne, Mozilla's security program manager.
Link to Original Source
Novell

Submission + - Die Hard: SCO is up for another round

i_frame writes: According to LinuxInsider a U.S. appeals court is considering that: "A judge erred in 2007 by granting the copyright of the UNIX OS to Novell", which means that "Novell may have to get in the ring yet again with SCO... SCO says the appellate panel's ruling reinstates the company's claims against IBM as well".

Get hold of portable property. -- Charles Dickens, "Great Expectations"

Working...