Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror

Submission + - The Elephant in the /. Room? (theregister.co.uk)

bbsguru writes: So, after a couple of days deprived of my hourly /. news fix, I figured the very first story to appear would be an explanation of the outage... And this is how I find out? Come on, Slashdot: how much of this Register article is accurate, and does it account for the absence of our favorite news site?

Submission + - New "Illusion Gap" Attack Bypasses Windows Defender Scans (bleepingcomputer.com)

An anonymous reader writes: Security researchers have discovered a new technique that allows malware to bypass Windows Defender, the standard security software that comes included with all Windows operating systems. The technique — nicknamed Illusion Gap — relies on a mixture of both social engineering and the use of a rogue SMB server.

The attack exploits a design choice in how Windows Defender scans files stored on an SMB share before execution. For Illusion Gap to work, the attacker must convince a user to execute a file hosted on a malicious SMB server under his control. This is not as complex as it sounds, as a simple shortcut file is all that's needed.

The problems occur after the user double-clicks this malicious file. By default, Windows will request from the SMB server a copy of the file for the task of creating the process that executes the file, while Windows Defender will request a copy of the file in order to scan it. SMB servers can distinguish between these two requests, and this is a problem because an attacker can configure their malicious SMB server to respond with two different files. The attacker can send a malicious file to the Windows PE Loader, and a benign file to Windows Defender. After Windows Defender scans the clean file and gives the go-ahead, Windows PE Loader will execute the malicious file without Windows Defender realizing they're two different things. Microsoft declined to patch the bug, considering it a "feature request."

Submission + - Amazon's Customer Service Issues Death Sentence to Local Library Fundraising

Presto Vivace writes: Naked Capitalism

I am getting to see the power of Amazon’s monopoly first hand. I volunteer for an organization that holds book sales to support the local library. We also sell books online – on Amazon. About a third of our sales are through Amazon. This summer, one of our two paid people, who fulfills online sales, went on vacation. He recommended that our Amazon store be shut down while he was gone, so that no mistakes would be made in his absence. His recommendation was not taken. In his absence, volunteers made a few mistakes; not big ones; trivial ones. And so, Amazon shut down the store: for real, permanently. And that is that. There is no recourse. There is no human to contact. There is no way of undoing this. Amazon doesn’t care; this is a trivial amount of money to them. They don’t want to deal with nuisances like imperfect humans, and they don’t have to.

Submission + - Slashdot backup after outage

Trax3001BBS writes: "The code repository for free and open-source software projects crashed yesterday morning (around 0645 Pacific Time) after unspecified "issues" hit its hosting provider's power distribution unit, redundancies failed, and its equipment was "completely fried," Logan Abbot, SourceForge president, told The Register today.

The site supremo said the damaged gear was replaced by staff, with the work completed by around midnight US West Coast time, returning the website to the internet. However, around 0645 PT today, the site stumbled offline again, seemingly from more power supply problems hampering connections to its servers.

"SourceForge is experiencing connectivity issues. We are working with our upstream provider," the crew tweeted about three hours ago. The site is back online as of right now, but all is not well: various pages are missing or not working."

https://www.theregister.co.uk/...

Submission + - More Guns Do Not Stop More Crimes, Evidence Shows (scientificamerican.com) 2

sandbagger writes: Scientific American reports that the claim that gun ownership stops crime is common in the U.S., and that belief drives laws that make it easy to own and keep firearms; but about 30 careful studies show more guns are linked to more crimes: murders, rapes, and others. Far less research shows that guns help. Interviews with people in heavily gun-owning towns show they are not as wedded to the crime defense idea as the gun lobby claims.

Submission + - The FCC has proposed to reduce the standard for broadband 1

pots writes: In 2015 the FCC raised the definition for what constitutes a broadband connection, from 4/1 to 25/3 Mbps. Doing so meant that a lot of people, 55 million people, now lacked internet service which qualified under the new standard. Since congress has delegated to the FCC the task of determining whether advanced telecommunications capability is being deployed to all Americans, and to take immediate regulatory action if it is not, this created a problem. Now in 2017 the FCC is proposing to solve that problem by redefining the standard again, from 25/3 to 10/1 Mbps.

Submission + - SPAM: Britain opens first subsidy-free solar power farm

AmiMoJo writes: Britain’s first solar power farm to operate without a government subsidy is due to open in eastern England on Tuesday, as a sharp fall in costs has made renewable energy much more economical. Britain needs to invest in new energy capacity to replace aging coal and nuclear plants that are due to close in the 2020s. But it is also trying to reduce subsidies on renewable power generation. The 10 megawatt (MW) solar farm, in Clayhill, Bedfordshire, can generate enough electricity to power around 2,500 homes and also has a 6 MW battery storage facility on site.
Link to Original Source

Submission + - ARCA's revolutionary aerospike engine completed and ready for testing (newatlas.com)

Eloking writes: ARCA Space Corporation has announced its linear aerospike engine is ready to start ground tests as the company moves towards installing the engine in its Demonstrator 3 rocket. Designed to power the world's first operational Single-Stage-To-Orbit (SSTO) satellite launcher, the engine took only 60 days to complete from when fabrication began.

Over the past 60 years, space launches have become pretty routine. The first stage ignites, the rocket lifts slowly and majestically from the launch pad before picking up speed and vanishing into the blue. Minutes later, the first stage shuts down and separates from the upper stages, which ignite and burn in turn until the payload is delivered into orbit.

Submission + - SPAM: Archaeologists solve the mystery of the Great Pyramid

schwit1 writes: New evidence proves that the ancient Egyptians constructed the Great Pyramid at Giza by transporting 170,000 tons of limestone in boats. It has long been known that the rock was extracted eight miles away in Tura and that granite used in the monumental structure was quarried 533 miles away in Aswan.

However, archaeologists have disagreed over how the material was transported to Giza, now part of modern-day Cairo, for construction of Pharaoh Khufu's tomb in 2600 BC. Now that mystery could be a step further to being solved after the discovery of an ancient scroll of papyrus, a ceremonial boat and a network of waterways.

The new evidence shows that thousands of laborers transported 170,000 tons of limestone along the River Nile in wooden boats built with planks and rope. The 2.5-ton blocks were ferried through a system of specially designed canals before arriving at an inland port built just yards away from the base of the Great Pyramid.

The papyrus scroll is the only firsthand record of how the pyramid was built, and was written by an overseer named Merer.

Link to Original Source

Submission + - CBS All Access Fails to Launch Star Trek Discovery!! 1

GuyverDH writes: Across the nation, Star Trek fans paid extra and tuned in to watch the live premiere of Star Trek Discovery in their local time zone only to have Oprah Winfrey and 60 Minutes show up with the "Star Trek Discovery" title on screen.

Complete and Utter Failure

Slashdot Top Deals

1 Mole = 25 Cagey Bees

Working...