Android

Sony Loses Class Action Lawsuit In Waterproof Claims For Original Xperia Z Line (xda-developers.com) 2

Sony has lost a class action lawsuit for claiming its Xperia phones were "waterproof," when in reality they were only "water resistant." If you happen to own one of the original Xperia Z smartphones, you may be owed up to $300. XDA Developers reports: Arguably, one of the pioneers in the consumer sector for more "rugged" devices (or at the very least IP certification) has to be Sony. Back in 2012, they introduced the Xperia Z line of the devices, which marked a turning point for Sony in most of its philosophy as well as its design language. They completely overhauled the look and feel of the devices they had in favor of the glass slab that they offer even in today's phones and tablets. Despite its fragile appearance, most of their offerings were drop-tested and were able to withstand a substantial amount of mistreatment. On top of all that, the Sony Xperia Z was the first commercially available phone from Sony to me, marketed as "water resistant" with an IP56 rating for water and dust ingress (which isn't really much, but at least it would keep your phone going in spite of an accidental drop in the beach or in the pool). However, the phone was advertised in such a way that it it looked as if the device was waterproof and not water resistant (there is a big difference). This led to a lot of water-damaged devices, which Sony did nothing about and eventually, a class action lawsuit was filed (and won) against Sony.

According to the settlement, there were 24 models affected (ironically, the original Z is not listed as being one of them) starting from the ZR, which was a close cousin of the original Z and going all the way to the Xperia Z5, along with a few tablets as well. The settlement goes on to state that there are a few things that, if you were affected, you can opt for: Warranty extension for up to a year if the device is within warranty period; Warranty extension for up to 6 months if the device is no longer under warranty; Up to 50% of MSRP as refund for compensation if the device is listed among the ones on the Sony lawsuit. If you are going for the cash alternative, you do have a deadline to meet, which is January 30, 2018. Whichever course of action you do decide to take, please make sure that you understand the entire lawsuit document before doing anything!

Crime

Iowa Computer Programmer Gets 25 Years For Lottery Scam (desmoinesregister.com) 16

An anonymous reader quotes a report from The Des Moines Register: Eddie Tipton, the Iowa brainpower behind a case of multi-state lottery fraud, will spend up to 25 years in prison for rigging "random" drawing jackpots. It's unknown how many years Tipton will actually spend in prison. He could be paroled within three or four years, his attorneys noted. Tipton, 54, was a longtime computer programmer in the Iowa offices of the Multi-State Lottery Association who installed software that allowed him to pick winning numbers in some of the nation's most popular lottery drawings. His scam began to unravel following unsuccessful attempts to anonymously collect a $16.5 million Hot Lotto ticket that was purchased at a Des Moines convenience store in 2010. "I certainly regret," Tipton said. "It's difficult even saying that. With all the people I know behind me that I hurt and I regret it. I'm sorry."
The Courts

Justice Department Walks Back Demand For Information On Anti-Trump Website (theverge.com) 34

After issuing a warrant to DreamHost for "all files" related to an anti-trump website, the Justice Department says it's scaling back a demand for information from hosting service DreamHost. The Verge reports: In a legal filing today, the Justice Department argues that the warrant was proper, but also says DreamHost has since brought up information that was previously "unknown." In light of that, it has offered to carve out information demanded in the warrant, specifically pledging to not request information like HTTP logs tied to IP addresses. The department says it is only looking for information related to criminal activity on the site, and says that "the government is focused on the use of the Website to organize, to plan, and to effect a criminal act -- that is, a riot." Peaceful protestors, the government argues, are not the targets of the warrant. The filing asks the court to proceed with the new, less burdensome request, which, apart from the carved-out sections, still requests "all records or other information, pertaining to the Account, including all files, databases, and database records stored by DreamHost in relation to that Account." It's unclear if DreamHost will continue to fight the new demand.
IBM

IBM To Trace Food Contamination With Blockchain (cnbc.com) 25

Thelasko shares a report from CNBC: IBM has been joined by a group of global food giants including the likes of Nestle, Unilever and Walmart in an effort to reduce food contamination by using blockchain. The corporation announced Tuesday that it would enable global food businesses to use its blockchain network to trace the source of contaminated produce. IBM said that the problem of consumer health suffering at the hands of toxic food could be solved using its distributed ledger technology, which maintains a digital record of transactions rather than a physical one. It would enable food suppliers to source information about the origin, condition and movement of food, and to trace contaminated produce in mere seconds.
Security

Fourth US Navy Collision This Year Raises Suspicion of Cyber-Attacks (thenextweb.com) 167

An anonymous reader quotes a report from The Next Web: Early Monday morning a U.S. Navy Destroyer collided with a merchant vessel off the coast of Singapore. The U.S. Navy initially reported that 10 sailors were missing, and today found "some of the remains" in flooded compartments. While Americans mourn the loss of our brave warriors, top brass is looking for answers. Monday's crash involving the USS John McCain is the fourth in the area, and possibly the most difficult to understand. So far this year 17 U.S. sailors have died in the Pacific southeast due to seemingly accidental collisions with civilian vessels.

Should four collisions in the same geographical area be chalked up to coincidence? Could a military vessel be hacked? In essence, what if GPS spoofing or administrative lockout caused personnel to be unaware of any imminent danger or unable to respond? The Chief of Naval Operations (CNO) says there's no reason to think it was a cyber-attack, but they're looking into it: "2 clarify Re: possibility of cyber intrusion or sabotage, no indications right now...but review will consider all possibilities," tweeted Adm. John Richardson. The obvious suspects -- if a sovereign nation is behind any alleged attacks -- would be Russia, China, and North Korea, all of whom have reasonable access to the location of all four incidents. It may be chilling to imagine such a bold risk, but it's not outlandish to think a government might be testing cyber-attack capabilities in the field.

NASA

Getting NASA To Comply With Simple FOIA Requests Is a Nightmare (vice.com) 53

From a report on Motherboard: Freedom of Information Act requests are used by journalists, private citizens, and government watchdogs to acquire public documents from government agencies. FOIAing NASA, however, can be an exercise in futility. In one recent case, Motherboard requested all emails from a specific NASA email address with a specific subject line. Other government agencies have completed similar requests with no problems. NASA, however, said it was "unclear what specific NASA records you are requesting." Possibly the only way to be more specific is to knock on NASA's door and show them a printout of what an email is. JPat Brown, executive editor of public records platform MuckRock, explained similarly frustrating experiences with NASA. "Even in cases where we've requested specific contracts by name and number, NASA has claimed that our request was too broad, and added insult to injury with a form letter rejection that includes the sentence 'we are not required to hunt for needles in bureaucratic haystacks,'" Brown told Motherboard in an email. Brown added that NASA has refused to process records unless presented with a requester's home address, something that is not included in the relevant code; and makes it more difficult for requests to obtain 'media' status.
Transportation

Austria, Carmakers Agree To Update Software of 600,000 Diesel Cars (reuters.com) 5

An anonymous reader shares a report: Austria's Transport Minister Joerg Leichtfried said on Tuesday he had agreed with carmakers to update the software of 600,000 diesel cars to reduce pollution following a similar deal struck in Germany after a large-scale emissions scandal. Leichtfried said the deal also included extra payments to buyers of more environmentally friendly cars. He said that for potential buyers of electric cars all available financial help could add up to around 10,000 euros ($11,750) per vehicle. The exact amount of incentives, which will come in addition to existing government sweeteners for e-car buyers, will be decided and paid by the carmakers depending on the model of the vehicle exchanged for an old car, the spokesman of Austrian car importers association Guenther Kerle said.
The Courts

Let Consumers Sue Companies (nytimes.com) 78

Richard Cordray, the director of the Consumer Financial Protection Bureau, writes: When a data breach at Home Depot in 2014 led to losses for banks nationwide, a group of banks filed a class-action lawsuit seeking compensation. Companies have the choice of taking legal action together. Yet consumers are frequently blocked from exercising the same legal right when they believe that companies have wronged them. That's because many contracts for products like credit cards and bank accounts have mandatory arbitration clauses that prevent consumers from joining group lawsuits, forcing them to go it alone. For example, a group lawsuit against Wells Fargo for secretly opening phony bank accounts was blocked by arbitration clauses that pushed individual consumers into closed-door proceedings. In 2010, the Consumer Financial Protection Bureau was authorized to study mandatory arbitration and write rules consistent with the study. After five years of work, we recently finalized a rule to stop companies from denying groups of consumers the option of going to court when they are treated unfairly. Opponents have unleashed attacks to overturn the rule, and the House just passed legislation to that end. Before the Senate decides whether to protect companies or consumers, it's worth correcting the record. First, opponents claim that plaintiffs are better served by acting individually than by joining a group lawsuit. This claim is not supported by facts or common sense. Our study contained revealing data on the results of group lawsuits and individual actions. We found that group lawsuits get more money back to more people. In five years of group lawsuits, we tallied an average of $220 million paid to 6.8 million consumers per year. Yet in the arbitration cases we studied, on average, 16 people per year recovered less than $100,000 total. It is true that the average payouts are higher in individual suits. But that is because very few people go through arbitration, and they generally do so only when thousands of dollars are at stake, whereas the typical group lawsuit seeks to recover small amounts for many people. Almost nobody spends time or money fighting a small fee on their own. As one judge noted, "only a lunatic or a fanatic sues for $30."
Bitcoin

Estonia Proposes Estcoin, a Government Backed Cryptocurrency, Issued Via an Initial Coin Offering After e-Residency Success (cityam.com) 35

Estonia is living up to its digital reputation and setting tongues wagging with its latest idea: its very own digital currency issued via an initial coin offering (ICO). From a report: The buzz word of the moment in the heady world of cyptocurrencies, ICOs, are being used to raise cash via a digital token that's issued to investors. What investors get back in return depends what the company offers, much like crowdfunding, but can be some sort of stake in the company or merely being able to use the blockchain-based software it's building. But what's on offer in a potential ICO of a nation state? That's exactly what Estonia wants to work out. The head of its innovative e-residency programme has said the country is considering what the issuance of "estcoin", the country's very own digital currency, would look like. In a blog post, Kaspar Korjus said: "Estcoins could be managed by the Republic of Estonia, but accessed by anyone in the world through its e-Residency programme and launched through an Initial Coin Offering (ICO)."
IOS

Popular Weather App AccuWeather Caught Sending User Location Data, Even When Location Sharing is Off (zdnet.com) 92

Zack Whittaker, reporting for ZDNet: Popular weather app AccuWeather has been caught sending geolocation data to a third-party data monetization firm, even when the user has switched off location sharing. AccuWeather is one of the most popular weather apps in Apple's app store, with a near perfect four-star rating and millions of downloads to its name. But what the app doesn't say is that it sends sensitive data to a firm designed to monetize user locations without users' explicit permission. Security researcher Will Strafach intercepted the traffic from an iPhone running the latest version of AccuWeather and its servers and found that even when the app didn't have permission to access the device's precise location, the app would send the Wi-Fi router name and its unique MAC address to the servers of data monetization firm Reveal Mobile every few hours. That data can be correlated with public data to reveal an approximate location of a user's device. We independently verified the findings, and were able to geolocate an AccuWeather-running iPhone in our New York office within just a few meters, using nothing more than the Wi-Fi router's MAC address and public data.
Data Storage

Ask Slashdot: What Are Some Cloud Backup Solutions That You Recommend? 158

New submitter OneHundredAndTen writes: After having used the services of CrashPlan for my backups for a few years now, I have just learned that CrashPlan is exiting the home backup business. Although this won't be happening for another 14 months, they have the chutzpah of recommending a provider (Carbonite) that does not support Linux. Looking in the net, there are not so many alternatives available -- unless you go with somebody that charges you $5/mo and up for a measly 100GB, or (occasionally) 1TB. Fine for a little phone, but not for the several TB worth of video I have shot over the years.

Anybody aware of decent cloud backup solutions that support Linux, and that offer a maximum backup capacity that is not ridiculously small?
Reader cornjones asks a similar question: My use case:
Backups for several computers, both at my house and scattered family machines
Encrypted locally by a key I set, only encrypted bits are stored offsite
I have a copy of my data onsite. I primarily want to protect against lost drives or fire (or ransomware attack)
Ideally, I would be able to point it at a NAS, which I don't have now.
The plan I was on was 10 computers, unlimited data, for 4 years @ $429. Lower is better, but I am willing to pay in that range.
Across my machines, I probably have about 1TB of bulk storage and 10 or so machines w/, say, 60GB backups each.
The Internet

Code42 Says Crashplan Backup Service Will Discontinue All Personal Backup Plans (crashplan.com) 95

Reader amxcoder writes: Code42, the company behind the popular Crashplan online backup service has announced that will be discontinuing all of its personal and family backup plan offerings to focus on business backup service plans only. In the letter sent to existing personal plan customers, it says that next year will be the cutoff date for personal plans and all existing personal plan holders will have to upgrade their subscriptions to more expensive business plans or leave for another provider after current subscription runs out. Crashplan personal and family services were one of the best (and most affordable) options available for online backup, providing features that other rivals do not, including backup options for cloud, external local drives, and to other friends/family member's drives (trusted offsite). Looking at Carbonite services (who Code42 is recommending existing personal subscribers switch to), does not offer many of the options and features in their backup software, including multiple backup sets, unlimited deleted file retention, the trusted offsite options and any type of 'family subscription' offerings. Here is a statement from the Code42 CEO Joe Payne.
Power

People Are Using Recycled Laptop Batteries To Power Their Homes (vice.com) 132

New submitter gooddogsgotoheaven writes: DIY Powerwall builders from around the world are harvesting old laptop batteries and turning them into powerful batteries capable of supplying energy to their entire homes. "It's the future. It's clean, simple, efficient and powerful," Jehu Garcia, one of the most popular powerwall builders, told me. He and people like him are deciding for themselves what the future of alternative energy will look like, instead of waiting for technology companies to shape it for them. "The end result is being able to rely on something I not only built myself but understand the ins and outs of to power some or all of my electricity in my home. That is inspiring," Joe Williams, another powerwall builder, told me.
Privacy

Sonos Says Users Must Accept New Privacy Policy Or Devices May Cease To Function (zdnet.com) 249

An anonymous reader writes: Sonos has confirmed that existing customers will not be given an option to opt out of its new privacy policy, leaving customers with sound systems that may eventually "cease to function". It comes as the home sound system maker prepares to begin collecting audio settings, error data, and other account data before the launch of its smart speaker integration in the near future. A spokesperson for the home sound system maker told ZDNet that, "if a customer chooses not to acknowledge the privacy statement, the customer will not be able to update the software on their Sonos system, and over time the functionality of the product will decrease. The customer can choose to acknowledge the policy, or can accept that over time their product may cease to function."
Bitcoin

Two-Factor Authentication Fail: Identity Thieves Hijack Cellphone Accounts to Go After Virtual Currency (nytimes.com) 70

Reader Cludge shares an NYT report: Hackers have discovered that one of the most central elements of online security -- the mobile phone number -- is also one of the easiest to steal. In a growing number of online attacks, hackers have been calling up Verizon, T-Mobile U.S., Sprint and AT&T and asking them to transfer control of a victim's phone number to a device under the control of the hackers. Once they get control of the phone number, they can reset the passwords on every account that uses the phone number as a security backup -- as services like Google, Twitter and Facebook suggest. "My iPad restarted, my phone restarted and my computer restarted, and that's when I got the cold sweat and was like, 'O.K., this is really serious,'" said Chris Burniske, a virtual currency investor who lost control of his phone number late last year. A wide array of people have complained about being successfully targeted by this sort of attack, including a Black Lives Matter activist and the chief technologist of the Federal Trade Commission. The commission's own data shows that the number of so-called phone hijackings has been rising. In January 2013, there were 1,038 such incidents reported; by January 2016, that number had increased to 2,658. But a particularly concentrated wave of attacks has hit those with the most obviously valuable online accounts: virtual currency fanatics like Mr. Burniske. Within minutes of getting control of Mr. Burniske's phone, his attackers had changed the password on his virtual currency wallet and drained the contents -- some $150,000 at today's values. Most victims of these attacks in the virtual currency community have not wanted to acknowledge it publicly for fear of provoking their adversaries. But in interviews, dozens of prominent people in the industry acknowledged that they had been victimized in recent months.

Slashdot Top Deals