J.D. - Slashdot User

Submission + - Attorney held liable for using "generic" E-Mail?

Submitted by bbsguru on Friday June 17, 2016 @04:46PM

bbsguru writes: An attorney in New York is being sued for using an AOL email account. The plaintiffs accuse their Real Estate attorney of "negligently using a "notoriously vulnerable" AOL email account that was hacked by cybercriminals who then stole nearly $2 million".
Aside from this possible risk, what does it tell you when your [attorney | broker | accountant | financial advisor] has a generic email account?

Submission + - Would you trust medical data stored on AWS by CareMonkey? (caremonkey.com)

Submitted by rolandw on Thursday June 16, 2016 @05:42PM

rolandw writes: My teenage daughter's school in the UK wants me to approve the storage of her full medical details in CareMonkey. CareMonkey say that this data is stored on AWS and their security page says that it is secured by every protocol ever claimed by AWS (apparenlty). As a sysadmin and developer who has used AWS extensively for non-secure information my alarm bells are sounding. Should I ignore them and say yes? Why would you refuse?

Submission + - The NSA's delightfully D&D-inspired guide to the Internet (muckrock.com)

Submitted by v3rgEz on Saturday May 28, 2016 @10:48AM

v3rgEz writes: In 2007, two NSA employees put together “Untangling the Web,” the agencies official guide to scouring the World Wide Web. The 651-page guide cites Borges, Frued, and Ovid — and that’s just in the preface. MuckRock obtained a copy of the guide under an NSA Freedom of Information request, and has a write up of all the guide's amazing best parts.

Submission + - Attackers Exploiting Critical SAP Flaw Since 2013 (threatpost.com)

Submitted by msm1267 on Wednesday May 11, 2016 @12:59PM

msm1267 writes: Three dozen global enterprises have been breached by attackers who exploited a single, mitigated vulnerability in SAP business applications.

The attacks were carried out between 2013 and are ongoing against large organizations owned by corporations in the United States, United Kingdom, Germany, China, India, Japan, and South Korea, spanning 15 critical industries, researchers at Onapsis said today.

The severity of these attacks is high and should put other organizations on notice that are running critical business processes and data through SAP Java apps.

The issue lies in the Invoker Servlet, which is part of the standard J2EE specification and enables developers to test custom Java applications. When it is enabled, developers and users can call these servlets over the Internet directly without authentication or authorization controls. Attackers, however, can take advantage of this same functionality to exploit these business critical systems.

Submission + - Win 10 Forced Upgrade Locks Users Out 2

Submitted by JustAnotherOldGuy on Wednesday May 11, 2016 @12:41PM

JustAnotherOldGuy writes: For those of you that insist Microsoft doesn't force unrequested upgrades to Win 10 on people, you're flat out wrong. My Windows 7 laptop was set to manually approve upgrades, but it went ahead and performed an unrequested "upgrade" to Windows 10. After rebooting it now asks for a non-existent Windows Login password. No password was ever set for this laptop, and there appears to be no way to override this or access the machine in order to try and downgrade it or change the password. I am effectively locked out of my own PC with no solution in sight. For those of you that claim this simply doesn't happen, I'm living proof that it does. All my files are inaccessible, hidden behind a Microsoft Login which does not exist. Thanks for royally screwing me over, Microsoft.

Submission + - Man says Tesla car started on its own, crashed into trailer (ksl.com)

Submitted by Mr.Intel on Wednesday May 11, 2016 @11:19AM

Mr.Intel writes: A Utah County man is calling for a deeper investigation into what went wrong after his Tesla Model S appeared to start up on its own and crash into the back of a trailer. “I think it behooves them to figure out what happened, what happened with the vehicle, address it,” Jared Overton said Tuesday. “Just fix it.”

Overton reported the issue to Tesla, and a week later received a letter from the company suggesting it was his fault. “Tesla has reviewed the vehicle’s logs, which show that the incident occurred as a result of the driver not being properly attentive to the vehicle’s surroundings while using the Summon feature or maintaining responsibility for safely controlling the vehicle at all times,” the letter signed by a regional service manager read.

Submission + - Devuan Beta 1 Review from a Cranky Sysadmin (wordpress.com)

Submitted by crhylove on Saturday May 07, 2016 @05:30PM

crhylove writes: Basically I love it! Which is saying something, because I'm a grumpy curmudgeon.

Submission + - Tucows download site goes ad-free (tucows.com)

Submitted by Anonymous Coward on Wednesday May 04, 2016 @08:43AM

An anonymous reader writes: Tucows has been online since before the Internet was really a thing. We started out offering software with the Tucows Downloads site. Back in the day, we called it shareware.

Then came the download dark days of flashing ads, hidden download buttons and ride-along toolbars. No download site was immune. Not even the seminal tucows.com/downloads. Well, no more. Tucows Downloads is blissfully ad-free.

In the 23 years since the Tucows downloads site first came online in a public library in Flint, MI in 1993, we've branched out. You're probably familiar with Ting, our mobile phone service (ting.com) and maybe you've heard of our efforts to bring crazy fast fiber Internet to smaller cities in the US (ting.com/internet). We're a big player in the domain name space: We have 13 million domain names under management with 13,000 reseller partners with OpenSRS.com. Our retail domain brand, hover.com, continues to kill it.

Those successes are why we're in a position to walk away from the revenue tucows.com/downloads generated.

Our full press release can be seen on the Tucows site at http://www.tucows.com/tucows-c...

If you'd like to speak to someone on the Tucows team or if we can provide any further information, please email press@ting.com.

Submission + - Artist Prince Dies at 57 (nydailynews.com)

Submitted by astrodoom on Thursday April 21, 2016 @01:45PM

astrodoom writes: The much-beloved musical genius passed away today, surprising many. No immediate details were available as to the cause of death. The artist had been hospitalized last week with what was reported as the flu, but had appeared at a party on Saturday, quieting the speculation on his health.

Submission + - Broadcom sues SpaceX

Submitted by schwit1 on Tuesday March 29, 2016 @01:04PM

schwit1 writes: A computer chip manufacturer has sued SpaceX, accusing it of stealing both its engineers and the computer chips they were designing.
Broadcom's co-founder and chief technology officer Henry Samueli met with SpaceX CEO Elon Musk in October 2015 in attempts to solidify an agreement, at which time Musk insisted Broadcom keep its "A-team" on the project, according to the complaint.

But even as Samueli and Musk were meeting, other SpaceX representatives were attempting to uncover the identities of the "A-team" engineers working on the Space X project, Broadcom says in its complaint. Five Broadcom engineers — all of whom worked on the SpaceX project — resigned their positions with the company effective March 11, and refused to disclose their new employer, according to the complaint. Broadcom says SpaceX confirmed they hired the five engineers on March 9, saying nothing prevented them from hiring other Broadcom engineers.

For its part, SpaceX says the Broadcom engineers — all named as defendants in Broadcom's complaint — approached them. "SpaceX did not pursue or lure engineers from Broadcom," a SpaceX spokesman said. "On the contrary, these engineers reached out to SpaceX anticipating significant layoffs at the Broadcom Irvine location."

Submission + - Hotel Experience With Android Lightswitches (dreamwidth.org)

Submitted by jones_supa on Saturday March 12, 2016 @06:49AM

jones_supa writes: The hotel in which Matthew Garrett was staying at, had decided that light switches are unfashionable and replaced them with a series of Android tablets. In his tour to the system, one was quickly met with a glitch message "UK_bathroom isn't responding". Anyway, two of the tablets had convenient-looking Ethernet cables plugged into the wall, so MacGyver began hacking. He managed to borrow a couple of USB Ethernet adapters, set up a transparent bridge and then stuck his laptop between the tablet and the wall. Tcpdump showed traffic, and Wireshark revealed that it was Modbus over TCP. Modbus is a pretty trivial protocol, and does not implement authentication. The Pymodbus tool could be used to control lights, turn the TV on/off and even close and open the curtains. Then he noticed something. His room number was 714. The IP address he was communicating with was 172.16.207.14. They wouldn't, would they? Indeed, he could access the control systems on every floor and query other rooms to figure out whether the lights were on or not, which strongly implies that he could control them as well.

Submission + - Email inventor Ray Tomlinson dies at 74 (techrepublic.com)

Submitted by vikingpower on Sunday March 06, 2016 @10:52AM

vikingpower writes: ARPAnet pioneer and networking legend Ray Tomlinson, who is best known for his contributions in developing email standards, has died, as reported by TechRepublic..
Tomlinson is supposed to have told a colleague, shortly after showing him his invention: "Don't tell anyone! This isn't what we're supposed to be working on.", according to Sasha Cavender quoting Tomlinson in a Forbes article titled "Legends". May Ray rest in peace in /dev/null.

Submission + - Apple versus FBI: Public Opinion

Submitted by MatthiasF on Tuesday February 23, 2016 @01:06PM

MatthiasF writes: Pew Research recently announced a public survey showing 51% of respondants sided with the FBI's position in the San Bernardino iPhone case. The survey was broken down by age, smartphone ownership and political leanings but no effort on actual technology or computer competency.

http://www.people-press.org/20...

Should Slashdot offer a poll to get an opinion from readers on the issue for comparison? I expect the average Slashdot user is more technologically competent than the average smartphone user, so should be an interesting comparison.

Submission + - The FCC is going to war over set-top boxes (engadget.com)

Submitted by Mr D from 63 on Thursday January 28, 2016 @08:42PM

Mr D from 63 writes: From the Article; The FCC is preparing to propose rule changes that'll loosen cable companies' stranglehold on the set-top box market. According to the Wall Street Journal, Tom Wheeler is planning to give consumers far more choice over what hardware they can use. Right now, if you're a Comcast user, then you're expected to rent a Comcast box, or shell out for a TiVo and pay for it to be installed. The FCC, however, wants you to be able to choose whatever damn box you wanna use, so long as it's fit for purpose.

I hope this is successful. Cable companies have found ways to marginalize the usefulness of cable cards, and so there are no or very limited simple choices for consumers.

Submission + - NSA Hacker Chief Explains How To Keep Him Out Of Your System. (wired.com) 1

Submitted by Anonymous Coward on Thursday January 28, 2016 @04:43PM

An anonymous reader writes: Rob Joyce, the nation’s hacker-in-chief, took up the ironic task of telling a roomful of computer security professionals and academics how to keep people like him and his elite corps out of their systems.

Joyce himself did little to shine a light on the TAO’s classified operations. His talk was mostly a compendium of best security practices. But he did drop a few of the not-so-secret secrets of the NSA’s success, with many people responding to his comments on Twitter.

Slashdot Top Deals