Security

How Hackers Are Targeting the Shipping Industry (bbc.com) 8

An anonymous reader shares a report: When staff at CyberKeel investigated email activity at a medium-sized shipping firm, they made a shocking discovery. "Someone had hacked into the systems of the company and planted a small virus," explains co-founder Lars Jensen. "They would then monitor all emails to and from people in the finance department." Whenever one of the firm's fuel suppliers would send an email asking for payment, the virus simply changed the text of the message before it was read, adding a different bank account number. "Several million dollars," says Mr Jensen, were transferred to the hackers before the company cottoned on. After the NotPetya cyber-attack in June, major firms including shipping giant Maersk were badly affected. In fact, Maersk revealed this week that the incident could cost it as much as $300 million in profits. But Mr Jensen has long believed that that the shipping industry needs to protect itself better against hackers -- the fraud case dealt with by CyberKeel was just another example. The firm was launched more than three years ago after Mr Jensen teamed up with business partner Morten Schenk, a former lieutenant in the Danish military who Jensen describes as "one of those guys who could hack almost anything." They wanted to offer penetration testing -- investigative tests of security -- to shipping companies. The initial response they got, however, was far from rosy.
United States

Trump Adviser Steve Bannon is Leaving White House Post (nytimes.com) 143

President Donald Trump's chief strategist Steve Bannon left his position on Friday (alternative source) as the newly minted chief of staff John Kelly sought to bring order to a White House riven by infighting and power struggles, more than a dozen news outlets report. Maggie Haberman, reporting for The New York Times: The president and senior White House officials were debating when and how to dismiss Mr. Bannon. The two administration officials cautioned that Mr. Trump is known to be averse to confrontation within his inner circle, and could decide to keep on Mr. Bannon for some time. As of Friday morning, the two men were still discussing Mr. Bannon's future, the officials said. A person close to Mr. Bannon insisted the parting of ways was his idea, and that he had submitted his resignation to the president on Aug. 7, to be announced at the start of this week, but the move was delayed after the racial unrest in Charlottesville, Va.
Google

Bing is 'Bigger Than You Think', Says Microsoft (onmsft.com) 132

Microsoft said this week that Bing is "bigger than you think" and provided some numbers that could be a surprise to many. The company claims that fully one-third of searches in the US are powered by Bing, either directly or through Yahoo or AOL (both of which provide results generated by Microsoft). From a report: With 9% market share worldwide and 12 billion monthly searches, almost half of that (5 billion) comes from the United States where Bing has 33% market share.
Patents

E-Commerce To Evolve Next Month As Amazon Loses the 1-Click Patent (thirtybees.com) 90

An anonymous reader shares an article: Next month e-commerce will change forever thanks to Amazon. September 12 marks 20 years since Amazon filed for their 1-Click patent. This means that the patent will expire and the technology behind it will be free to be used by any e-commerce site. Starting next month more and more sites will be offering a one click checkout experience. Most major sites have already started development with plans to launch soon after the patent expires. Amazon applied for the 1-Click patent in September of 1997, the actual patent was granted in 1999. The whole idea behind the patent is when you store a user's credit card and address you only need a single click to order a product. For the last 20 years Amazon has kept a tight hold on this technology, they have only licensed it to one company: Apple. No one knows what Apple paid to license the technology, but the value of the patent has been assessed at 2.4 billion dollars by sources. Over the last 20 years Amazon has defended the validity of the patent in several cases, even having to revise the patent at one point. But, now the wait is almost over and this technology is about to make it into the open market.
Businesses

Kit Kat Accused of Copying Atari Game Breakout (bbc.com) 93

An anonymous reader shares a report: Kit Kat's maker Nestle has been accused of copying Breakout, the 1970s computer game, in a marketing campaign. Atari, the company behind some of the most popular early video games, has filed a suit alleging Nestle knowingly exploited the game's look and feel. The advert showed a game similar to Breakout but where the bricks were replaced with single Kit Kat bars. Nestle said it was aware of the lawsuit and would defend itself "strongly" against the allegations. Breakout was created as a successor to "Pong" by Apple founders, Steve Wozniak and Steve Jobs. In the advert, which is titled "Kit Kat: Breakout", a row of people, of varying ages and appearance, share a sofa and play a video game during their work break. In the game depicted, a primitive paddle moves side-to-side to bounce a ball into a collision with the horizontal bars ranged across the top of the screen.
Security

Secret Chips in Replacement Parts Can Completely Hijack Your Phone's Security (arstechnica.com) 51

Dan Goodin, writing for ArsTechnica: People with cracked touch screens or similar smartphone maladies have a new headache to consider: the possibility the replacement parts installed by repair shops contain secret hardware that completely hijacks the security of the device. The concern arises from research that shows how replacement screens -- one put into a Huawei Nexus 6P and the other into an LG G Pad 7.0 -- can be used to surreptitiously log keyboard input and patterns, install malicious apps, and take pictures and e-mail them to the attacker. The booby-trapped screens also exploited operating system vulnerabilities that bypassed key security protections built into the phones. The malicious parts cost less than $10 and could easily be mass-produced. Most chilling of all, to most people, the booby-trapped parts could be indistinguishable from legitimate ones, a trait that could leave many service technicians unaware of the maliciousness. There would be no sign of tampering unless someone with a background in hardware disassembled the repaired phone and inspected it. The research, in a paper presented this week (PDF) at the 2017 Usenix Workshop on Offensive Technologies, highlights an often overlooked disparity in smartphone security. The software drivers included in both the iOS and Android operating systems are closely guarded by the device manufacturers, and therefore exist within a "trust boundary."
Encryption

How Security Pros Look at Encryption Backdoors (helpnetsecurity.com) 44

An anonymous reader shares a report: The majority of IT security professionals believe encryption backdoors are ineffective and potentially dangerous, with 91 percent saying cybercriminals could take advantage of government-mandated encryption backdoors. 72 percent of the respondents do not believe encryption backdoors would make their nations safer from terrorists, according to a Venafi survey of 296 IT security pros, conducted at Black Hat USA 2017. Only 19 percent believe the technology industry is doing enough to protect the public from the dangers of encryption backdoors. 81 percent feel governments should not be able to force technology companies to give them access to encrypted user data. 86 percent believe consumers don't understand issues around encryption backdoors.
Google

Google Researchers Made An Algorithm To Delete Watermarks From Photos (venturebeat.com) 57

"Researchers at Google have found a vulnerability in the way watermarks are used by stock imagery sites like Adobe Stock that makes it possible to remove the opaque stamp used to protect copyright," writes Khari Johnson via VentureBeat. "The consistent nature in which the watermarks are placed on photos can be exploited using an algorithm trained to recognize and automatically remove watermarks." From the report: Changing the position or opacity of a watermark do not impact the algorithm's ability to remove watermarks from images with copyright protection. Randomization, the researchers say, is required to keep images from being stolen. In results presented at the Computer Vision and Pattern Recognition conference last month, subtle modifications to each watermark can make it harder to remove watermarks. With these warped watermarks, attempts to get rid of watermarks with an algorithm or photo editing software leaves noticeable marks, rendering an image useless. "As often done with vulnerabilities discovered in operating systems, applications or protocols, we want to disclose this vulnerability and propose solutions in order to help the photography and stock image communities adapt and better protect its copyrighted content and creations," research scientists Tali Dekel and Michael Rubenstein wrote in a blog post today. "From our experiments much of the world's stock imagery is currently susceptible to this circumvention." You can learn more about the different types of randomization that can be done to combat watermark removal and see more example images in Google's blog post. The full report and research is available via the project's GitHub page.
IOS

iOS 11 Has a Feature To Temporarily Disable Touch ID (cultofmac.com) 114

A new feature baked into iOS 11 lets you quickly disable Touch ID, which could come in handy if you're ever in a situation where someone (a cop) might force you to unlock your device. Cult of Mac reports: To temporarily disable Touch ID, you simply press the power button quickly five times. This presents you with the "Emergency SOS" option, which you can swipe to call the emergency services. It also prevents your iPhone from being unlocked without the passcode. Until now, there were other ways to temporarily disable Touch ID, but they weren't quick and simply. You either had to restart your iPhone, let it sit idle for a few days until Touch ID was temporarily disabled by itself, or scan the wrong finger several times. The police, or any government agency, cannot force you to hand over your iPhone's passcode. However, they can force you to unlock your device with your fingerprint. That doesn't work if your fingerprint scanner has been disabled.
Medicine

New Immunotherapy Trial Cures Kids of Peanut Allergy For Up To Four Years (theguardian.com) 135

Using a new kind of immunotherapy treatment, Australian researchers have managed to cure a majority of the children in their study suffering from a peanut allergy. "The desensitization to peanuts persisted for up to four years after treatment," reports The Guardian. From the report: Tang, an immunologist and allergist, pioneered a new form of treatment that combines a probiotic with peanut oral immunotherapy, known as PPOIT. Instead of avoiding the allergen, the treatment is designed to reprogram the immune system's response to peanuts and eventually develop a tolerance. It's thought that combining the probiotic with the immunotherapy gives the immune system the "nudge" it needs to do this, according to Tang. Forty-eight children were enrolled in the PPOIT trial and were randomly given either a combination of the probiotic Lactobacillus rhamnosus with peanut protein in increasing amounts, or a placebo, once daily for 18 months. At the end of the original trial in 2013, 82% of children who received the immunotherapy treatment were deemed tolerant to peanuts compared with just 4% in the placebo group. Four years later, the majority of the children who gained initial tolerance were still eating peanuts as part of their normal diet and 70% passed a further challenge test to confirm long-term tolerance. The results have been published in the Lancet Child & Adolescent Health.
Earth

The Health Benefits of Wind and Solar Exceed the Cost of All Subsidies (arstechnica.com) 325

New submitter TheCoroner writes: A paper in Nature Energy suggests that the benefits we receive from moving to renewables like wind and solar that reduce air pollution exceed the cost of the subsidies required to make them competitive with traditional fossil fuels. Ars Technica reports: "Berkeley environmental engineer Dev Millstein and his colleagues estimate that between 3,000 and 12,700 premature deaths have been averted because of air quality benefits over the last decade or so, creating a total economic benefit between $30 billion and $113 billion. The benefits from wind work out to be more than 7 cents per kilowatt-hour, which is more than unsubsidized wind energy generally costs.

This study ambitiously tries to estimate the benefits from emissions that were avoided because of the increase in wind and solar energy from 2007 through 2015, and to do so for the whole of the U.S. Millstein and colleagues looked at carbon emissions, as well as sulphur dioxides, nitrogen oxides, and particulate matter, all of which contribute to poor air quality. There are other factors that also need to be considered. A rise in renewables isn't the only thing that has been changing in the energy sector: fuel costs and regulation have also played a role. How much of the benefit can be attributed to wind and solar power, and how much to other changes? The researchers used models that track the benefits attributable to renewable power as a proportion of the total reduction in emissions.

Media

Video Is Coming To Reddit (variety.com) 69

An anonymous reader shares a report from Variety: Videos are coming to Reddit, thanks to a new feature that allows users to upload video clips directly to the service. Reddit rolled out the new video feature Tuesday after testing it with around 200 communities over the past couple of weeks. Reddit users are now able to upload videos of up to 15 minutes in length, with file sizes being limited to 1 gigabyte. Users will be able to upload videos via Reddit's website and its mobile apps for iOS and Android, with the latter offering basic trimming functionality as well. And, in keeping with the spirit of the site, Reddit is also offering a conversion tool to turn videos into animated Gifs. Videos are being displayed persistently, or pinned, meaning that users can scroll through the comments while the video keeps playing in the corner of their screen. And community moderators can opt not to allow videos in their Subreddits at all, with Le arguing that some discussion-heavy Subreddits may decide that the format just doesn't work for them.
Operating Systems

PlayStation 4 Update 5.0 Officially Revealed (gamespot.com) 30

After the PlayStation 4's 5.0 update was leaked last week, Sony decided to officially reveal what's coming in the update. GameSpot highlights the new features in their report: Some of the enhancements center around streaming using the PS4's built-in broadcasting capabilities. PS4 Pro users will be able to stream in 1080p and 60 FPS, provided their connection is strong enough, and PSVR users will be able to see new messages and comments coming through while broadcasting. PSVR is also adding 5.1ch and 7.1ch virtual surround sound support. Next up, the PS4's Friends List is being updated with greater management tools, such as the ability to set up separate lists of friends. You'll be able to create a list of all the people you play Destiny with and send them all an invite, for example. This feature replaces the old Favorite Groups tab. In another move to help reduce the amount of time spent in menus, the Quick Menu is being updated to have more options. For example, you'll be able to check on download progress and see new party invites. You can also leave a party from within that menu and see your current Spotify playlist. Notifications are also being improved when watching films and TV, as you can now disable message and other notification pop-ups while watching media. You can also change how much of a message is displayed, as well as its color, when playing or watching any form of content.

Finally, Parental Control features are being overhauled in favor of what Sony calls "Family on PSN." This replaces the old Master/Sub account system; instead, one user is deemed the Family Manager, and they can set up other accounts and appoint them as a Parent/Guardian, Adult, or Child. Parents or Guardians can restrict Child accounts in their "use of online features and communication with other players, set restrictions for games, restrict the use of the internet browser, and set spending limits for PlayStation Store." Note that Sony says the first time any North American user tries to set up an Adult account, they will be charged $0.50 "to verify that you are an adult."

Government

Ukraine Hacker Cooperating With FBI In Russia Probe, Says Report (thehill.com) 187

schwit1 shares a report from The Hill: A hacker in Ukraine who goes by the online alias "Profexer" is cooperating with the FBI in its investigation of Russian interference in the U.S. presidential election, The New York Times is reporting. Profexer, whose real identity is unknown, wrote and sold malware on the dark web. The intelligence community publicly identified code he had written as a tool used in the hacking of the Democratic National Committee ahead of last year's presidential election. The hacker's activity on the web came to a halt shortly after the malware was identified. The New York Times, citing Ukrainian police, reported Wednesday that the individual turned himself into the FBI earlier this year and became a witness for the bureau in its investigation. FBI investigators are probing Russian interference efforts and whether there was coordination between associates of President Trump's campaign and Moscow. Special counsel Robert Mueller is heading the investigation.
Patents

Motorola Patents a Display That Can Heal Its Own Cracked Screen With Heat (theverge.com) 35

An anonymous reader quotes a report from The Verge: A patent published today explains how a phone could identify cracks on its touchscreen and then apply heat to the area in an effort to slightly repair the damage. The process relies on something called "shape memory polymer," a material that can apparently become deformed and then recovered through thermal cycling. Thermal cycling involves changing the temperature of the material rapidly. This material could be used over an LCD or LED display with a capacitive touch sensor layered in, as well. Although the phone could heat the polymer in order to restore it, a user's body heat can be used, too.

Slashdot Top Deals