Submission + - Is Google's New "Store Sales Measurement" System a Privacy Risk? (vortex.com)

Lauren Weinstein writes: Within hours of Google announcing their new “Store Sales Measurement” system, my inbox began filling with concerned queries. I held off responding on this until I could get additional information directly from Google. With that now in hand I feel comfortable in addressing this issue.

Submission + - UK Furious About US Intelligence Leaks

Oxygen99 writes: Further evidence of the dysfunctional nature of the Trump administration came to light today as the UK government expressed dismay at American leaks of intelligence related to the Manchester terrorist attack investigation. Sensitive information regarding identities and photos have both been leaked to the American press infuriating the British police. If you can't trust your supposed friends, who can you trust?

Submission + - Researchers Found Perfect Contraceptives From Traditional Chinese Medicine (inverse.com) 1

hackingbear writes: Researchers at U.C. Berkeley found a birth control that was hormone-free, 100 percent natural, resulted in no side effects, didn’t harm either eggs nor sperm, could be used in the long-term or short-term, and — perhaps the best part of all — could be used either before or after conception, from ancient Chinese folk medicine. In order to actually penetrate the egg, sperm need to whip their tails faster to pick up momentum. But there are two plant compounds that can prevent sperm from doing this, no matter how valiantly they may try — lupeol, found in mango and dandelion root, and pristimerin, from a plant called the “thunder god vine,” the leaves of which had been used as birth control in traditional Chinese medicine. The sperm and egg are never actually harmed; they’re just never able to meet, thus eliminate ethical concerns of pro-lifers. “Because these two plant compounds block fertilization at very, very low concentrations — about 10 times lower than levels of levonorgestrel in Plan B — they could be a new generation of emergency contraceptive we nicknamed ‘molecular condoms,’” team leader Polina Lishko.

Submission + - Vermont DMV Caught Using Illegal Facial Recognition Program (vocativ.com)

schwit1 writes: The Vermont Department of Motor Vehicles has been caught using facial recognition software — despite a state law preventing it.

Documents obtained by the American Civil Liberties Union of Vermont describe such a program, which uses software to compare the DMV’s database of names and driver’s license photos with information with state and federal law enforcement. Vermont state law, however, specifically states that “The Department of Motor Vehicles shall not implement any procedures or processes that involve the use of biometric identifiers.”

The program, the ACLU says, invites state and federal agencies to submit photographs of persons of interest to the Vermont DMV, which it compares against its database of some 2.6 million Vermonters and shares potential matches. Since 2012, the agency has run at least 126 such searches on behalf of local police, the State Department, FBI, and Immigrations and Customs Enforcement.

Submission + - Manchester attack could lead to Internet crackdown (independent.co.uk)

boundary writes: The UK government looks to be about to put the most egregious parts of the Investigative Powers Act into force 'soon after the election' (which is in a couple of weeks) in the wake of the recent bombing in Manchester. 'Technical Capability Orders' require tech companies to break their own security. I wonder who'll comply?

Submission + - Malware Network Communication Provides Early-Warning Signal (threatpost.com)

msm1267 writes: Research unveiled today challenges the industry’s current reliance on dynamic malware analysis as the best means of early detection of infections.

Instead, researchers from the Georgia Institute of Technology, the IMDEA Software Institute and EURECOM posit that a better approach would be an analysis of network traffic to suspicious domains that would potentially cut detection times down by weeks or even months.

Their paper, “A Lustrum of Malware Network Communication Evolution and Insights,” is scheduled to be presented Wednesday at the IEEE Security and Privacy Symposium in San Jose, Calif.

The researchers’ conclusions are based on a study of five years’ worth of network traffic from a large U.S.-based internet service provider, comprised of more than five billion network events. The group had more than 26 million malware samples at their disposal, and studied DNS server requests made by malware and potentially unwanted programs (PUPs), as well as the timing around the registration of expired domains.

The researchers concluded that attackers—including spammers and adware purveyors dabbling in PUPs—re-use infrastructure over and over and that provides a better early-detection signal than an exclusive study of malware and PUP domains. They found more than 300,000 malware samples were active for at least two weeks before they were submitted to a feed such as VirusTotal or picked up and analyzed in a vendor feed.

“When we looked at when malware samples actually showed up in malware feeds where they dynamically analyzed and network signal was extracted from them, we noticed that network signal was extracted in the feed often weeks or months after we saw the first resolutions for that domain in real network traffic from a major ISP in the U.S,” said Chaz Lever of Georgia Tech, one of the report’s coauthors.

Submission + - JSON Feed Announced as Alternative to RSS (jsonfeed.org)

Anubis IV writes: With Slashdot recently asking whether we still use RSS, it may come as a surprise that something interesting has happened in the world of news feeds this week. JSON Feed was launched as an alternative to RSS and Atom, eschewing the XML they rely on—which is frequently malformed and difficult to parse—in favor of a human readable JSON format that reflects the decades of combined experience its authors have in the field.

The JSON Feed spec is a simple read that lays out a number of pragmatic benefits the format has over RSS and Atom, such as eliminating duplicate entries, adding the ability to paginate feeds so that old entries remain available, and reducing the need for clients to scrape sites to find images and other resources. Given that it's authored by the developers behind one of the earliest, popular RSS clients and a recently Kickstarted blogging platform, the format is intended to address the common pain points currently faced by developers when producing and parsing feeds.

While it remains to be seen whether JSON Feed will escape the chicken-and-egg stage of adoption, several clients have already added support for the fledging format in the week since its announcement, including Feedbin, Inoreader, and NewsBlur.

Submission + - Defcon Hacker Conference To Target Voting Machines (politico.com)

An anonymous reader writes: Hackers will target American voting machines — as a public service, to prove how vulnerable they are. When over 25,000 of them descend on Caesar’s Palace in Las Vegas at the end of July for DEFCON, the world’s largest hacking conference, organizers are planning to have waiting what they call “a village” of different opportunities to test how easily voting machines can be manipulated. Some will let people go after the network software remotely, some will be broken apart to let people dig into the hardware, and some will be set up to see how a prepared hacker could fiddle with individual machines on site in a polling place through a combination of physical and virtual attacks. With all the attention on Russia’s apparent attempts to meddle in American elections—former President Barack Obama and aides have made many accusations toward Moscow, but insisted that there’s no evidence of actual vote tampering—voting machines were an obvious next target, said DEFCON founder Jeff Moss.

Submission + - Politicians want to leave you voicemail — without ever ringing your cellph (recode.net)

bricko writes: It’s part of a push by groups, including the U.S. Chamber, to relax the FCC’s robocalling rules.

Under current federal law, telemarketers and others, like political groups, aren’t allowed to launch robocall campaigns targeting cellphones unless they first obtain a consumer’s written consent.

But businesses stress that it’s a different story when it comes to “ringless voicemail” — because it technically doesn’t qualify as a phone call in the first place. In their eyes, that means they shouldn’t need a customer or voter’s permission if they want to auto-dial mobile voicemail inboxes in bulk pre-made messages about a political candidate, product or cause. And they want the FCC to rule, once and for all, that they’re in the clear.

Their argument, however, has drawn immense opposition from consumer advocates.

Submission + - DJI threatens to 'brick' its copters unless owners agree to share their details (thesun.co.uk)

schwit1 writes: DJI drones – which cost between £1,000 and £3,000 – won’t be able to fly to their full potential or beam back footage if their owners don’t sign up next week, the company warned.

Those who splashed out for the snazzy gadgets will find they are limited to a teensy 50m radius and it won’t be flying higher than 30m if they don’t play ball.

Submission + - World's best Go player flummoxed by Google's 'godlike' AlphaGo AI (theguardian.com)

Eloking writes: A Google algorithm has narrowly beaten the world’s best player in the ancient Chinese board game of Go, reaffirming the arrival of what its developers say is a groundbreaking new form of artificial intelligence.

AlphaGo took the first of three scheduled games against the brash 19-year-old Chinese world number one Ke Jie, who after the match anointed the program as the new “Go god”.

AlphaGo stunned the Go community and futurists a year ago when it trounced South Korean grandmaster Lee Sedol four games to one. That marked the first time a computer program had beaten a top player in a full contest and was hailed as a landmark for artificial intelligence.

Submission + - Apple and Nokia end all litigation, sign patent license and partnership (betanews.com) 1

Mark Wilson writes: Apple is dropping its lawsuit against Nokia. The iPhone manufacturer and the Finnish company reached an agreement to not only bring the intellectual property dispute to an end, but also to start a multi-year patent license.

Described as a "meaningful agreement", details of the new arrangement are confidential, at least for the time being, but Apple does shed a little light on what's going to be happening moving forward. Apple will receive network infrastructure product and services from Nokia, and the company will also resume carrying the Withings health products Nokia bought.

Slashdot Top Deals