Joseph Cox, reporting for Motherboard: On Thursday, US authorities announced the seizure of the largest dark web marketplace AlphaBay. Europol and Dutch police also claimed seizure of Hansa, another popular market. In their dark web investigations, law enforcement have increasingly turned to hacking tools, including the deployment of browser exploits on a mass scale. But tracking down the alleged AlphaBay administrator was much more mundane, officials said. Alexandre Cazes, who US authorities say used the handle alpha02 as administrator of the site, allegedly left his personal email in a welcome message to new AlphaBay members, according to the forfeiture complaint published on Thursday. The news echoes the arrest of Ross Ulbricht, the convicted creator of the original Silk Road, who made a similar security mistake. "In December 2016, law enforcement learned that CAZES' personal email was included in the header of AlphaBay's 'welcome email' to new users in December 2014," the complaint reads. Users received this message once they signed up to AlphaBay's forum and entered an email address. Cazes' email address -- Pimp_Alex_91@hotmail.com -- was also included in the header of the AlphaBay forum password recovery process, the complaint adds. From there, investigators found the address was linked to an Alexandre Cazes, and discovered his alleged front company, EBX Technologies.

An anonymous reader shares a post: Chromium, the open source project behind Google Chrome, Opera and several other browsers, is going to support MP3. This would enable users and websites to play MP3 files in Chromium browser. A Chromium contributor informed about this, "We have approval from legal to go ahead and move MP3 into non-proprietary codecs list." The MP3 support in Chromium is targeted for version 62.

Jim Hall is celebrating the 23rd birthday of the FreeDOS Project, calling it "a major milestone for any free software or open-source software project," and remembering how it all started. An anonymous reader quotes Linux Journal: If you remember Windows 3.1 at the time, it was a pretty rough environment. I didn't like that you could interact with Windows only via a mouse; there was no command line. I preferred working at the command line. So I was understandably distressed in 1994 when I read via various tech magazines that Microsoft planned to eliminate MS-DOS with the next version of Windows. I decided that if the next evolution of Windows was going to be anything like Windows 3.1, I wanted nothing to do with it... I decided to create my own version of DOS. And on June 29, 1994, I posted an announcement to a discussion group... Our "PD-DOS" project (for "Public Domain DOS") quickly grew into FreeDOS. And 23 years later, FreeDOS is still going strong! Today, many people around the world install FreeDOS to play classic DOS games, run legacy business software or develop embedded systems...

FreeDOS has become a modern DOS, due to the large number of developers that continue to work on it. You can download the FreeDOS 1.2 distribution and immediately start coding in C, Assembly, Pascal, BASIC or a number of other software development languages. The standard FreeDOS editor is quite nice, or you can select from more than 15 different editors, all included in the distribution. You can browse websites with the Dillo graphical web browser, or do it "old school" via the Lynx text-mode web browser. And for those who just want to play some great DOS games, you can try adventure games like Nethack or Beyond the Titanic, arcade games like Wing and Paku Paku, flight simulators, card games and a bunch of other genres of DOS games.
On his "Open Source Software and Usability" blog, Jim says he's been involved with open source software "since before anyone coined the term 'open source'," and first installed Linux on his home PC in 1993. Over on the project's blog, he's also sharing appreciative stories from FreeDOS users and from people involved with maintaining it (including memories of early 1980s computers like the Sinclair ZX80, the Atari 800XL and the Coleco Adam). Any Slashdot readers have their own fond memories to share?

An anonymous reader quotes Neowin's report on the newest browser-usage figures from NetMarketShare: Microsoft Edge only commands a market share of 5.65% -- which is an increase of only 0.02 percentage points compared to last month... it only grew by 0.56% year-over-year. On the other hand, Google Chrome has continued its dominance with a market share of 59.49%. As a point of reference, this is a sizeable growth of 10.84 percentage points year-over-year... Data from another firm, StatCounter, depicts an even more depressing situation for Microsoft. According to the report, Edge sits at 3.89%... Chrome is the king of all browsers according to these statistics as well, with a market share of 63.21% -- a decrease of 0.14 percentage points compared to last month. Firefox, Internet Explorer, and Safari command 14%, 9.28%, and 5.16% respectively.
The firm also calculates that when it comes to desktop operating systems, Windows has 91.51% of all users, followed by MacOS at 6.12 and Linux at 2.36%.

Sean Michael Kerner, writing for eWeek: A browser hijacking operation initially reported to have 250 million victims by security firm Check Point isn't quite that large, according to a new analysis by Microsoft. On June 1, security firm Check Point reported that a browser hijacking operation called "Fireball" had already claimed 250 million victims. According to a Microsoft analysis published June 22, Check Point's estimate of the number of victims was "overblown" and the attack is not nearly as widespread as initially reported. The Fireball attack is a browser hijacking that is potentially able to download malware onto victims' systems, as well as manipulate pageviews and redirect search requests. Check Point's initial analysis claimed that Fireball was being bundled as part of free software downloads to unsuspecting users. "Indeed, we have been working with Microsoft on their analysis, feeding them with some additional data," Maya Horowitz, group manager of threat intelligence at Check Point, said in a statement sent to eWEEK. "We tried to reassess the number of infections, and from recent data we know for sure that numbers are at least 40 million, but could be much more."

From a report: During the past month, both Google and Mozilla developers have added support in their respective browsers for "headless mode," a mechanism that allows browsers to run silently in the OS background and with no visible GUI. [...] While this feature sounds very useful for developers and very uninteresting for day-to-day users, it is excellent news for malware authors, and especially for the ones dabbling with adware. In the future, adware or clickfraud bots could boot-up Chrome or Firefox in headless mode (no visible GUI), load pages, and click on ads without the user's knowledge. The adware won't need to include or download any extra tools and could use locally installed software to perform most of its malicious actions. In the past, there have been quite a few adware families that used headless browsers to perform clickfraud. Martijn Grooten, an editor at Virus Bulletin, also pointed Bleeping Computer to a report where miscreants had abused PhantomJS, a headless browser, to post forum spam. The addition of headless mode in Chrome and Firefox will most likely provide adware devs with a new method of performing surreptitious ad clicks.

An anonymous reader quotes a report from VentureBeat: Mozilla today launched a new browser for Android. In addition to Firefox, the company now also offers Firefox Focus, a browser dedicated to user privacy that by default blocks many web trackers, including analytics, social, and advertising. You can download the new app now from Google Play. Because Google isn't as strict as Apple, Android users can set Firefox Focus as their default browser. There are many use cases for wanting to browse the web without being tracked, but Mozilla offers a common example: reading articles via apps "like Facebook." On iOS, Firefox Focus is basically just a web view with tracking protection. On Android, Firefox Focus is the same, with a few additional features (which are still "under consideration" for iOS):

• Ad tracker counter -- Lists the number of ads that are blocked per site while using the app.
• Disable tracker blocker -- For sites that are not loading correctly, you can disable the tracker blocker to fix the issues.
• Notification reminder -- When Firefox Focus is running in the background, a notification will remind you so you can easily tap to erase your browsing history.

Reader x_t0ken_407 writes: Vivaldi, the successor to Opera 12.16 (Presto) in spirit, admittedly has a long way to go but continues to steadily mature with the release of version 1.10:

Releasing Vivaldi 1.10, we give you the power for making the Start Page more personal than ever before. You're the one who gets to decide how your Start Page looks, feels and performs. We've also added the much-requested ability to dock the Developer Tools.

Other new features and improvements include:
-Sorting of Downloads in the Side Panel by name, size, date added and date finished, as well as manually.
-Toggle image visibility from the View menu or via configurable keyboard shortcut.
-Quick Commands improvements for users that like to control everything in their browser from their keyboard. The Quick Commands menu lets users navigate to tabs, find search terms, filter lists of available commands and much more.
-Address Bar dropdown list can now exclude bookmarks and typed history.
-Controlling new tabs via third-party extensions with additional functionality, such as productivity tools or reminders.

An anonymous reader writes: Mozilla today launched Firefox 54 for Windows, Mac, Linux, and Android. The new version includes the next major phase of multi-process support, which streamlines memory use, improving responsiveness and speed. The Electrolysis project, which is the largest change to Firefox code ever, is live. Firefox now uses up to four processes to run webpage content across all open tabs. This means that complex webpages in one tab have a much lower impact on responsiveness and speed in other tabs, and Firefox finally makes better use of your computer's hardware.

Youenn Fablet, software engineer at Apple, writes: Today we are thrilled to announce WebKit support for WebRTC, available on Safari on macOS High Sierra, iOS 11, and Safari Technology Preview 32. [...] Currently, Safari supports legacy WebRTC APIs. Web developers can check whether their websites conform to the latest specifications by toggling the STP Experimental Features menu item "Remove Legacy WebRTC API". Legacy WebRTC APIs will be disabled by default on future releases. Websites that need to accommodate older implementations of the WebRTC and Media Capture specifications can take advantage of polyfill libraries like adapter.js. Peer5, a startup that offers serverless CDN for massively-scaled video streaming, writes in a blogpost: This is HUGE news for the computing industry. Since its introduction in 2011, WebRTC has become an incredibly important part of everyone's favorite platforms and applications. It is at the core of a few services that you might have heard of, including Google Hangouts, Facebook Messenger, Snapchat and Slack. WebRTC is also supported natively by most major web browsers, including Chrome, Firefox and Opera. But there were 2 big holdouts -- Microsoft's Edge browser and Apple's Safari. This meant that people using those browsers couldn't access WebRTC-based services without installing some type of plug-in. Well, those days are over given the WWDC news and Microsoft's announcement back in January regarding WebRTC support in Edge. Developers can now create compelling browser-based applications that incorporate real-time audio and video (and maybe even a peer-to-peer component) and know that 99% of the world's Web surfers will be able to use their services without having to install any plug-ins or additional software. This newfound ubiquity for WebRTC might even make a developer question whether he has to build a native iOS or Android app to deliver his service to end-users.

An anonymous reader shares a report: Some of the Internet's biggest names are banding together for a "day of action" to oppose the Federal Communications Commission (alternative source), which is working to undo regulations for Internet providers that it passed during the Obama administration. Among the participants are Etsy, Kickstarter and Mozilla, the maker of the popular Firefox Web browser. Also joining the day of protest will be Reddit, the start-up incubator Y Combinator, and Amazon. On July 12, the companies and organizations are expected to change their websites to raise awareness of the FCC effort, which is aimed at deregulating the telecom and cable industries. Mozilla, for example, will change what users see on their screens when they open a new browser window. Other participants include Demand Progress, Etsy, Vimeo, Private Internet Access, Fight for the Future, EFF, DreamHost, Creative Commons, BitTorrent, American Library Association, ACLU, GreenPeace, Open Media, and Patreon. Find more details here.

Responding to Firefox marketing head Eric Petitt's blog post from earlier this week, Andreas Gal, former chief technology officer of Mozilla (who spent seven years at the company) offers his insights. Citing latest market share figures, Gal says "it's safe to say that Chrome is eating the browser market, and everyone else except Safari is getting obliterated." From his blog post (edited and condensed for length): With a CEO transition about 3 years ago there was a major strategic shift at Mozilla to re-focus efforts on Firefox and thus the Desktop. Prior to 2014 Mozilla heavily invested in building a Mobile OS to compete with Android: Firefox OS. I started the Firefox OS project and brought it to scale. While we made quite a splash and sold several million devices, in the end we were a bit too late and we didn't manage to catch up with Android's explosive growth. Mozilla's strategic rationale for building Firefox OS was often misunderstood. Mozilla's founding mission was to build the Web by building a browser. [...] Browsers are a commodity product. They all pretty much look the same and feel the same. All browsers work pretty well, and being slightly faster or using slightly less memory is unlikely to sway users. If even Eric -- who heads Mozilla's marketing team -- uses Chrome every day as he mentioned in the first sentence, it's not surprising that almost 65% of desktop users are doing the same. [...] I don't think there will be a new browser war where Firefox or some other competitor re-captures market share from Chrome. It's like launching a new and improved horse in the year 2017. We all drive cars now. Some people still use horses, and there is value to horses, but technology has moved on when it comes to transportation. Does this mean Google owns the Web if they own Chrome? No. Absolutely not. Browsers are what the Web looked like in the first decades of the Internet. Mobile disrupted the Web, but the Web embraced mobile and at the heart of most apps beats a lot of JavaScript and HTTPS and REST these days. The future Web will look yet again completely different. Much will survive, and some parts of it will get disrupted.

After Thursday's net neutrality vote, two security guards pinned a reporter against a wall until FCC Commissioner Michael O'Rielly had left the room, the Los Angeles Times reports. The Writers Guild of America calls the FCC's 2-to-1 vote to initiate a repeal of net neutrality rules a "war on the open internet," according to The Guardian. But the newspaper now predicts that online activists will continue their massive campaign "as the month's long process of reviewing the rules begins." The Hill points out that Mozilla is already hiring a high-profile tech lobbyist to press for both cybersecurity and an open internet, and in a blog post earlier this week the Mozilla Foundation's executive director sees a larger movement emerging from the engagement of millions of internet users. Today's support for net neutrality isn't the start of the Internet health movement. People have been standing up for an open web since its inception -- by advocating for browser choice, for open source practices, for mass surveillance reform. But net neutrality is an opportunity to propel this movement into the mainstream... If we make Internet health a mainstream issue, we can cement the web as a public resource. If we don't, mass surveillance, exclusion and insecurity can creep into every aspect of society. Hospitals held hostage by rogue hackers can become the status quo.
Meanwhile, The Guardian reports that it's not till the end of the FCC's review process that "a final FCC vote will decide the future of internet regulation," adding that however they vote, "court challenges are inevitable."

Opera says it has been working on a complete redesign of its desktop browser for a few months. Codenamed "Reborn", the new version of the browser focuses on one feature that it thinks many people desire in 2017: a way to stay connected with friends and be able to swiftly share things. The Verge adds: The latest addition is a messaging sidebar built directly into the browser interface. From the sidebar, users can log into their WhatsApp, Facebook Messenger, and Telegram accounts, and chat with friends and family without ever leaving Opera itself. [...] But as with previous updates, there's a lingering feeling that this new feature is a little bit too superficial. While it is nice to have access to chat apps in the browser window, their inclusion makes for a crowded interface.

Last week, Microsoft unveiled Windows 10 S, a new variant of its desktop operating system aimed largely at the education space. While time will tell how this new edition of Windows fares, if early reactions from enthusiasts are anything to go by, Windows 10 S is in for a tough ride ahead. For one, Windows 10 S only permits installation of applications from the Windows Store. If that wasn't a deal-breaker, several popular applications including Google's Chrome are missing from the Store. Amid all of this, reporter and columnist Peter Bright has an op-ed up on ArsTechnica in which he argues that despite the walled-garden offering, people should want Windows 10 S to succeed as it could make Windows better for everyone else. From his article: This [forbidding execution of any program that wasn't downloaded from the Windows Store] positions Microsoft as a gatekeeper -- although its criteria for entry within the store is for the most part not stringent, it does reserve the right to remove software that it deems undesirable -- and means that the vast majority of extant Windows software can't be used. This means that PC mainstays, from Adobe Photoshop to Valve's Steam, can't be used on Windows 10 S. [...] Some of the arguments against this are bizarre. Notably, the complaint that Microsoft has now erected a paywall -- "you have to pay $50 to run Steam!" -- is very peculiar when one considers that, in general, Windows licenses have never been free. [...] The Windows Store makes bad parts of Windows better: I'd argue, however, that Windows users should want Windows 10 S to succeed. Windows 10 S isn't for everybody, and Windows 10 S may not be for you, but if Windows 10 S succeeds, it will make Windows 10 better for everyone. The Store in Windows RT required developers to write their apps from scratch. With negligible numbers of users, developers were uninterested in doing this work. The Store in Windows 10 has Centennial. In principle, Centennial should make it easy to package existing Win32 apps and sell them through the Store, and if developers of Windows apps adopt Centennial en masse then the Store restriction shouldn't be particularly restrictive. Widespread adoption will be good for Windows users of all stripes.

An anonymous reader writes: Microsoft is in the testing stage of a new feature in its Edge browser for Windows 10 that is malware-proof as it partitions the browser window from the rest of the computer. This will be a welcome addition for users who are worried about the legitimacy of sites they want to visit. The new feature, catchily dubbed Windows Defender Application Guard, is part of the recently launched Windows Insider Previews. In order to access it you'll need to be a member of Microsoft's business service Enterprise, and have your settings calibrated so you're in the testing group called Fast Ring. Application Guard works by creating a virtual PC that is entirely separate from all storage, other apps, and the Windows 10 Kernel, meaning that the browser should be completely impervious to malware.

Google says it will automatically upgrade the version of Chrome that some Windows users are running, in what it describes as a bet to improve stability, performance, and security. From a report on ZDNet: In a blog post on Tuesday, the search engine giant explained that Chrome users running 64-bit Windows with 4GB or more of memory will be automatically migrated to the 64-bit version of Chrome if they are running the 32-bit version.

BrianFagioli quotes a report from BetaNews: If developers do start leveraging the Windows Store, the Windows 10 S experiment could take off, as users won't find a need to install legacy programs. This will largely depend on web browsers being available there, as many users dislike Edge. Thankfully, Microsoft is allowing third-party browser installs from the Windows Store. Unfortunately, there is a big catch -- you cannot change the default. Buried in the Windows 10 S FAQ, the following question is presented -- "Are there any defaults that I cannot change on my Windows 10 S PC?" Microsoft provides the answer: "Yes, Microsoft Edge is the default web browser on Microsoft 10 S. You are able to download another browser that might be available from the Windows Store, but Microsoft Edge will remain the default if, for example, you open an .htm file. Additionally, the default search provider in Microsoft Edge and Internet Explorer cannot be changed."

An anonymous reader writes: "Over the past decade, ambient light sensors have become quite common in smartphones, tablets, and laptops, where they are used to detect the level of surrounding light and automatically adjust a screen's intensity to optimize battery consumption... and other stuff," reports Bleeping Computer. "The sensors have become so prevalent, that the World Wide Web Consortium (W3C) has developed a special API that allows websites (through a browser) to interact with a device's ambient light sensors. Browsers such as Chrome and Firefox have already shipped versions of this API with their products." According to two privacy and security experts, Lukasz Olejnik and Artur Janc, malicious web pages can launch attacks using this new API and collect data on users, such as URLs they visited in the past and extract QR codes displayed on the screen. This is possible because the light coming from the screen is picked up by these sensors. Mitigating such attacks is quite easy, as it only requires browser makers and the W3C to adjust the default frequency at which the sensors report their readings. Furthermore, the researcher also recommends that browser makers quantize the result by limiting the precision of the sensor output to only a few values in a preset range. The two researchers filed bug reports with both Chrome and Firefox in the hopes their recommendations will be followed.

Google has reached a $7.8 million antitrust settlement with Russian watchdog group FAS. According to BGR, the company will loosen restrictions on Android's built-in search engines to allow for Russian competitors to take a share of the pie. From the report: Android's heavy reliance on Google services is to be expected, but in 2015 the Russian antitrust group -- officially the Federal Antimonopoly Service -- ruled that Google was breaking the law by forcing users to lean on Google for search. The ruling was the result of a complaint filed by Yandex, a Russian competitor to Google that runs the largest search engine in the country as well as web mail, news, maps, and other services. Google's settlement of the issue comes with the condition that Android will no longer lock down the search engine to Google, and must allow users the ability to change it if they want from within the Chrome web browser. Google will also loosen its exclusivity of the default apps on Android devices sold in Russia, potentially allowing for Yandex and other regional competitors to muscle in and replace the built-in apps with their own versions, depending on user preference.