Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
Businesses

Staples: Breach May Have Affected 1.16 Million Customers' Cards 2

Posted by timothy
from the your-name-here dept.
mpicpp writes with this excerpt from Fortune: Staples said Friday afternoon that nearly 1.16 million customer payment cards may have been affected in a data breach under investigation since October. The office-supply retailer said two months ago that it was working with law enforcement officials to look into a possible hacking of its customers' credit card data. Staples said in October that it had learned of a potential data theft at several of its U.S. stores after multiple banks noticed a pattern of payment card fraud suggesting the company computer systems had been breached. Now, Staples believes that point-of-sale systems at 115 Staples locations were infected with malware that thieves may have used to steal customers' names, payment card numbers, expiration dates and card verification codes, Staples said on Friday. At all but two of those stores, the malware would have had access to customer data for purchases made between August 10 and September 16 of this year. At the remaining two stores, the malware was active from July 20 through September 16, the company said.

+ - Hackers Used Nasty "SMB Worm" Attack Toolkit Against Sony

Submitted by wiredmikey
wiredmikey (1824622) writes "Just hours after the FBI and President Obama called out North Korea as being responsible for the destructive cyber attack against Sony Pictures, US-CERT issued an alert describing the primary malware used by the attackers, along with indicators of compromise.

While not mentioning Sony by name in its advisory, instead referring to the victim as a “major entertainment company,” US-CERT said that the attackers used a Server Message Block (SMB) Worm Tool to conduct the attacks.

According to the advisory, the SMB Worm Tool is equipped with five components, including a Listening Implant, Lightweight Backdoor, Proxy Tool, Destructive Hard Drive Tool, and Destructive Target Cleaning Tool.

US-CERT also provided a list of the Indicators of Compromise (IOCs), which include C2 IP addresses, Snort signatures for the various components, host based Indicators, potential YARA signatures to detect malware binaries on host machines, and recommended security practices and tactical mitigations."

Google News Sci Tech: Google Sues Mississippi Over Campaign to Restrict Searches - Wall Street Journal->

From feed by feedfeeder

Fortune

Google Sues Mississippi Over Campaign to Restrict Searches
Wall Street Journal
Google Inc. sued Mississippi Attorney General Jim Hood on Friday, seeking to prevent him from enforcing a wide-ranging subpoena that has become entangled in a dispute between Google and Hollywood. Filed in U.S. District Court for Southern Mississippi,...
Google Says Mississippi Sales Probe Amounts to CensorshipBusinessweek
As Its Battle With Hollywood Returns, Google Takes Aim at Mississippi Attorney ... Wired
Google files lawsuit against Mississippi attorney general to block subpoenaCNET
Huffington Post-MediaPost Communications-WHLT22
all 132 news articles

Link to Original Source
Cellphones

T-Mobile To Pay $90M For Unauthorized Charges On Customers' Bills 23

Posted by timothy
from the oh-you-wanted-honesty dept.
itwbennett writes T-Mobile US will pay at least $90 million to settle a Federal Communications Commission (FCC) suit that alleged it looked the other way while third parties charged T-Mobile subscribers for services they didn't want. The settlement is the second largest ever for so-called 'cramming,' following one that the FCC reached with AT&T in October. It came just two days after the Consumer Financial Protection Bureau sued Sprint for the same practice.

+ - New data says volcanoes, not asteroids, killed dinosaurs

Submitted by schwit1
schwit1 (797399) writes "The uncertainty of science: A careful updating of the geological timeline has strengthened the link between the dinosaur extinction 66 million years ago and a major volcanic event at that time.

A primeval volcanic range in western India known as the Deccan Traps, which were once three times larger than France, began its main phase of eruptions roughly 250,000 years before the Cretaceous-Paleogene, or K-Pg, extinction event, the researchers report in the journal Science. For the next 750,000 years, the volcanoes unleashed more than 1.1 million cubic kilometers (264,000 cubic miles) of lava. The main phase of eruptions comprised about 80-90 percent of the total volume of the Deccan Traps’ lava flow and followed a substantially weaker first phase that began about 1 million years earlier.

The results support the idea that the Deccan Traps played a role in the K-Pg extinction, and challenge the dominant theory that a meteorite impact near present-day Chicxulub, Mexico, was the sole cause of the extinction. The researchers suggest that the Deccan Traps eruptions and the Chicxulub impact need to be considered together when studying and modeling the K-Pg extinction event.

The general public might not know it, but the only ones in the field of dinosaur research that have said the asteroid was the sole cause of the extinction have been planetary scientists."

Google News Sci Tech: Google Says Mississippi Sales Probe Amounts to Censorship - Businessweek->

From feed by feedfeeder

Variety

Google Says Mississippi Sales Probe Amounts to Censorship
Businessweek
Google Inc. (GOOG:US) sued to block what it called overly broad demands by Mississippi in its investigation of online contraband sales, after accusing the state's attorney general of doing Hollywood's bidding. The lawsuit was filed today in federal court in...
Sorry Google, This Isn't About SOPA, It's About YouHuffington Post
Google Asks Court To Prohibit Miss. A.G. From Suing Over 'Illegal' ContentMediaPost Communications
Mississippi Attorney General Dares Reporters To Find Any Evidence Of ... Techdirt
Vancouver Sun-Business Insider-New York Times
all 123 news articles

Link to Original Source

Google News Sci Tech: ISS astronaut needs a wrench, NASA successfully 'emails' him one - CNET->

From feed by feedfeeder

CNET

ISS astronaut needs a wrench, NASA successfully 'emails' him one
CNET
An astronaut aboard the International Space Station needed a socket wrench, so NASA engineers emailed him designs for 3D-printing one. What a world we're living in. by Anthony Domanico @ajdomanico; 19 December 2014 9:46 pm GMT. comments. 0.
3-D Printer System Beams Up a New Tool to Space StationNBCNews.com
The One-Year Crew: Twin NASA Astronauts Scott And Mark Kelly To Reveal ... International Business Times
This Is How You Email A Wrench Into SpaceJalopnik

all 37 news articles

Link to Original Source

+ - Staples: Breach may have affected 1.16 million customers' cards->

Submitted by mpicpp
mpicpp (3454017) writes "The office-supply retailer gave new details about a breach at more than 100 of its stores.

Staples said Friday afternoon that nearly 1.16 million customer payment cards may have been affected in a data breach under investigation since October.

The office-supply retailer said two months ago that it was working with law enforcement officials to look into a possible hacking of its customers’ credit card data. Staples said in October that it had learned of a potential data theft at several of its U.S. stores after multiple banks noticed a pattern of payment card fraud suggesting the company computer systems had been breached.

Now, Staples believes that point-of-sale systems at 115 Staples locations were infected with malware that thieves may have used to steal customers’ names, payment card numbers, expiration dates and card verification codes, Staples said on Friday. At all but two of those stores, the malware would have had access to customer data for purchases made between August 10 and September 16 of this year. At the remaining two stores, the malware was active from July 20 through September 16, the company said."

Link to Original Source
Education

Ask Slashdot: Resources For Kids Who Want To Make Games? 72

Posted by Soulskill
from the building-blocks-of-fun dept.
Mr. Jones writes: My 11-year-old son is fascinated by games — game mechanics in particular. He has been playing everything from Magic to WarFrame since he was 5 years old. He seems mostly interested in creating the lore and associated mechanics of the games (i.e. how a game works). If it was only programming I could help him, but I am lost when it comes to helping him learn more formal ways of developing and defining gameplay. I really see a talent for this in him and I want to support it any way I can. Can you suggest any conferences, programs, books, websites, etc. that would help him learn?
Transportation

Tesla About To Start Battery-Swap Pilot Program 78

Posted by Soulskill
from the not-free-of-charge dept.
cartechboy writes: Remember 18 months ago when Tesla promised it was going to launch battery-swap stations? Well, it's finally happening, sort of. It seems Tesla's about to announce a battery-swap pilot program that will launch next week. The swap site will be located across the street from a Tesla Supercharger site in Harris Ranch, California — 184 miles south of San Francisco and about 200 miles north of Los Angeles. The pilot program will involve an unspecified number of Model S electric-car owners, who will be invited to take part in the test. For now, the battery-swap service will be offered by appointment only, at a cost of roughly a tank of gas in a premium sedan. Tesla's using words to describe this pilot program like "exploratory work" and "intended to test technology and assess demand" for a swapping service. While originally pitched that the battery swap would take less time than it would to take to refill the gas tank of a comparable luxury sedan, the company says now that "for this specific iteration" the swap process will take "approximately 3 minutes" — though it adds Tesla has "the ability to improve that time with future iterations." Is this test going to show that battery swapping is or isn't a realistic initiative?

+ - T-Mobile To Pay $90M for Unauthorized Charges On Customers' Bills->

Submitted by itwbennett
itwbennett (1594911) writes "T-Mobile US will pay at least $90 million to settle a Federal Communications Commission (FCC) suit that alleged it looked the other way while third parties charged T-Mobile subscribers for services they didn’t want. The settlement is the second largest ever for so-called 'cramming,' following one that the FCC reached with AT&T in October. It came just two days after the Consumer Financial Protection Bureau sued Sprint for the same practice."
Link to Original Source

+ - Deepest Dwelling Creatures On Earth Discovered By College Students->

Submitted by mpicpp
mpicpp (3454017) writes "Whitman biology professor Paul Yancey and students Anna Downing '16 and Chloe Weinstock '17 have returned from the first detailed study of the Mariana Trench aboard Schmidt Ocean Institute's research vessel Falkor.

The Mariana Trench — located in the Western Pacific near Guam — has been the focus of high-profile voyages to conquer Challenger Deep, the deepest place on Earth. This recent expedition to the Trenchonboard Research Vessel Falkor targeted multiple depths and found active thriving communities of animals. The expedition set many new records, including the deepest rock samples ever collected and the discovery of new fish species at the greatest depths ever recorded.

New species were discovered on this expedition that will provide insight into the physiological adaptations of animals to this high-pressure environment. This research is being conducted in the lab of Whitman College'sProfessor of Biology Paul Yancey. In the past, Yancey and his students, working on animals from moderate depths, discovered certain organic molecules that protect the cells of deep-sea animals from the effects of high pressure, which distorts proteins such as enzymes. These kinds of protective molecules are also being tested to treat human diseases that are caused by malformed proteins, such as cystic fibrosis. Additionally, his work on protective molecules in fishes predicted that fish would not be able to live below about 8,200 meters (27,060 feet). Prior to this expedition, the deepest documented fish was from 7,700 meters (25,410 feet).

The expedition also broke several records for the deepest living fish either caught or seen on video. Setting the record at 8,143 meters, (26,872 feet) was a completely unknown variety of snail fish, which stunned scientists when it was filmed several times during sea floor experiments. The white translucent fish had broad wing-like fins and an eel-like tail, and slowly glided over the bottom."

Link to Original Source
Sony

Schneier Explains How To Protect Yourself From Sony-Style Attacks (You Can't) 247

Posted by Soulskill
from the just-look-less-hackable-than-the-schmuck-next-to-you dept.
phantomfive writes: Bruce Schneier has an opinion piece discussing the Sony attack. He says, "Your reaction to the massive hacking of such a prominent company will depend on whether you're fluent in information-technology security. If you're not, you're probably wondering how in the world this could happen. If you are, you're aware that this could happen to any company." He continues, "The worst invasion of privacy from the Sony hack didn’t happen to the executives or the stars; it happened to the blameless random employees who were just using their company’s email system. Because of that, they’ve had their most personal conversations—gossip, medical conditions, love lives—exposed. The press may not have divulged this information, but their friends and relatives peeked at it. Hundreds of personal tragedies must be unfolding right now. This could be any of us." Related: the FBI has officially concluded that the North Korean government is behind the attack.

Science and religion are in full accord but science and faith are in complete discord.

Working...