Submission + - First bicycle tax in nation (washingtontimes.com)

turkeydance writes: In Oregon, a state known for its avid bicycling culture, the state legislature’s approval of the first bike tax in the nation has fallen flat with riders.
Democratic Gov. Kate Brown is expected to sign the sweeping $5.3 billion transportation package, which includes a $15 excise tax on the sale of bicycles costing more than $200 with a wheel diameter of at least 26 inches.Even though the funding has been earmarked for improvements that will benefit cyclists, the tax has managed to irk both anti-tax Republicans and environmentally conscious bikers alike.

Submission + - Exploit Derived From EternalSynergy Upgraded to Target Newer Windows Versions (bleepingcomputer.com)

An anonymous reader writes: Thai security researcher Worawit Wang has put together an exploit based on ETERNALSYNERGY that can also target newer versions of the Windows operating system. ETERNALSYNERGY is one of the NSA exploits leaked by the Shadow Brokers hacking group in April this year. According to a Microsoft technical analysis, the exploit can allow an attacker to execute code on Windows machines with SMB services exposed to external connections. The exploit works up to Windows 8. According to Microsoft, the techniques used in the original ETERNALSYNERGY exploit do not work on newer platforms due to several kernel security improvements.

Wang says his exploit targets the same vulnerability but uses a different exploitation technique. His method "should never crash a target," the expert says. "Chance should be nearly 0%," Wang adds. Combining his exploit with the original ETERNALSYNERGY exploit would allow a hacker to target all Windows versions except Windows 10. This is about 75% of all Windows PCs. The exploit code is available for download from Wang's GitHub or ExploitDB. Sheila A. Berta, a security researcher for Telefonica's Eleven Paths security unit, has published a step-by-step guide on how to use Wang's exploit.

Submission + - Private Student Loan Debts May Be Wiped Away By Missing Paperwork (nytimes.com)

cdreimer writes: According to The New York Times: "Tens of thousands of people who took out private loans to pay for college but have not been able to keep up payments may get their debts wiped away because critical paperwork is missing. The troubled loans, which total at least $5 billion, are at the center of a protracted legal dispute between the student borrowers and a group of creditors who have aggressively pursued them in court after they fell behind on payments. Judges have already dismissed dozens of lawsuits against former students, essentially wiping out their debt, because documents proving who owns the loans are missing. A review of court records by The New York Times shows that many other collection cases are deeply flawed, with incomplete ownership records and mass-produced documentation. Some of the problems playing out now in the $108 billion private student loan market are reminiscent of those that arose from the subprime mortgage crisis a decade ago, when billions of dollars in subprime mortgage loans were ruled uncollectable by courts because of missing or fake documentation. And like those troubled mortgages, private student loans — which come with higher interest rates and fewer consumer protections than federal loans — are often targeted at the most vulnerable borrowers, like those attending for-profit schools."

Submission + - Comcast Says Should Be Able To Create Internet Fast Lanes For Self-Driving Cars (theverge.com)

An anonymous reader writes: Comcast filed comments in support of the FCC’s plan to kill the 2015 net neutrality rules today. And while pretty much everything in them is expected — Comcast thinks the rules are burdensome and hurt investment, yet it says it generally supports the principles of net neutrality — there’s one telling new quirk that stands out in its phrasing: Comcast now says it’s in support of a ban on “anticompetitive paid prioritization,” which is really a way of saying paid prioritization should be allowed. “The commission also should bear in mind that a more flexible approach to prioritization may be warranted and may be beneficial to the public,” Comcast says in its filing. The key qualification is “anticompetitive,” which is a term that could be interpreted in a lot of different ways depending on who’s defining it.

Comcast doesn’t just see paid fast lanes being useful for medicine, however. It also thinks they might be fair to sell to automakers for use in autonomous vehicles. “Likewise, for autonomous vehicles that may require instantaneous data transmission, black letter prohibitions on paid prioritization may actually stifle innovation instead of encouraging it,” the filing says. This makes Comcast’s position pretty confusing. Comcast says it opposes prioritizing one website over another. It even suggests the commission adopt a “strong presumption against” agreements that benefit an ISP’s own content over competitors’ work, but it’s not clear how benefiting one car company or telemedicine company over another is any different.

Submission + - US To Create the Independent US Cyber Command, Split Off From NSA (pbs.org)

An anonymous reader writes: After months of delay, the Trump administration is finalizing plans to revamp the nation’s military command for defensive and offensive cyber operations in hopes of intensifying America’s ability to wage cyberwar against the Islamic State group and other foes, according to U.S. officials. Under the plans, U.S. Cyber Command would eventually be split off from the intelligence-focused National Security Agency. The goal, they said, is to give U.S. Cyber Command more autonomy, freeing it from any constraints that stem from working alongside the NSA, which is responsible for monitoring and collecting telephone, internet and other intelligence data from around the world — a responsibility that can sometimes clash with military operations against enemy forces. Making cyber an independent military command will put the fight in digital space on the same footing as more traditional realms of battle on land, in the air, at sea and in space. The move reflects the escalating threat of cyberattacks and intrusions from other nation states, terrorist groups and hackers, and comes as the U.S. faces ever-widening fears about Russian hacking following Moscow’s efforts to meddle in the 2016 American election.

Submission + - GOP congress calls climate change a 'national security threat,' (newsweek.com)

Layzej writes: The majority-Republican House of Representatives declared Friday that climate change is a national security threat while passing a defense spending bill, according to reports. It's a stunning turn for a party that has for a long time distanced itself from climate science in favor of business interests.

The surprising section calls global warming “a direct threat to the national security” and instructs the Pentagon to create a report on how climate change could affect the military. It asks for a list of 10 bases that could be susceptible to phenomena such as increased flooding and rising oceans.

Submission + - Free Digital Certificates Come with a Cost (threatpost.com)

msm1267 writes: Let’s Encrypt is the largest certificate authority by volume doling out more than 100,000 free domain certificates a day. The non-profit fulfills a noble mission of securing website communications that is applauded across the internet; it has raised the bar on SSL and TLS security, issuing 100 million HTTPS certificates as of June 2017.

However, despite industry accolades by privacy activists and praise from those in the security community for its mission, some critics are sounding alarm bells and warning that Let’s Encrypt might be guilty of going too far, too fast, and delivering too much of a good thing without the right checks and balances in place.

Submission + - U.S. Has An Infrastructure Problem In Antarctica (nytimes.com)

cdreimer writes: According to The New York Times: "The American research station on the edge of this frozen continent may look like a mining camp in the wilderness, but it is actually one of the glories of American science. At McMurdo Station, black volcanic dust boils off unpaved roads, sticking to trucks and buildings. People eat canned vegetables, sleep in windowless rooms and routinely wear 20 pounds of clothes to survive temperatures far below freezing. From its origin as a collection of Navy huts six decades ago, the station here has grown into a small town with more than a thousand residents during peak months. It has long been the main hub for the most ambitious Antarctic research program run by any nation. Hundreds of scientists cycle through every year to study the perils of collapsing ice caps, the mating habits of penguins, the deep history of the Earth and the great mysteries of the cosmos. Now, in an era when the Trump administration is seeking to slash federal spending, the fate of Antarctic research is an open question."

Submission + - Atari Back In The Hardware Business, Uveils Ataribox (hothardware.com)

MojoKid writes: Atari CEO Fred Chesnais confirmed the company was working on a brand new console back in June this year at E3, but today the company has officially unveiled the product. The new Ataribox console draws on some of the classic styling of the original Atari 2600 console but with a modernized flare, though still sporting that tasty wood grain front panel. Atari is also looking to make the Ataribox a bit more user-friendly and expandable than its Nintendo rivals through the addition of an SD card slot and four USB ports (in addition the requisite HDMI port). The new console will be based on PC component technologies but will be available with a number of classic games to let you bask in the early days of console gaming. However, Atari will also be bringing what is being billed as "current content" to the console as well. So, we can expect to see brand new licensed games for the Ataribox, although it's hard to say, given just its size to go on, what sort of horsepower is lurking under the Ataribox's hood. "We know you are hungry for more details; on specs, games, pricing, timing," said Atari in a statement sent via email. "We're not teasing you intentionally; we want to get this right, so we've opted to share things step by step as we bring this to life, and to listen closely to the Atari community feedback as we do so."

Submission + - UK plans age verification for porn websites from 2018 (bbc.co.uk)

Ralph Yarro writes: People in the UK will have to prove they are 18 before being allowed to access pornography websites from next year. Websites will be legally required to install age verification controls by April 2018 as part of a move to make the internet safer for children.

Submission + - What to do when someone else is using your email address? 7

periklisv writes: So, I was one of the early lucky people that registered a gmail address using my lastname@gmail.com. This has proven pretty convenient over the years, as it's simple and short, which makes it easy to communicate over the phone, write down on applications etc. However, over the past 6 months, some dude in Australia (I live in the EU) who happens to have the same last name as myself, is using it to sign up to all sorts of services. I daily receive emails from adult dating sites, loan services, government agencies, online retailers etc, all of them either asking me to verify my account, or, even worse, having signed me up to their service (especially dating sites), which makes me really uncomfortable, my being a married man with children.

I tried to locate the person on facebook, twitter etc and contacted a few that seemed to match, but I never got a response. So the question is, how do you cope with such a case, especially nowadays that sites seem to ignore the email verification for signups?

Slashdot Top Deals