New submitter wyattstorch516 writes "San Jose Mecury News reports that Jesse Jackson will lead a delegation to HP's next board meeting to discuss the hiring of technology companies in regard to African-Americans and Latinos. 'About one in 14 tech workers is black or Latino both in the Silicon Valley and nationally. Blacks and Hispanics make up 13.1 and 16.9 percent of the U.S. population, respectively, according to the most recent Census data.' Jackson sent a letter to HP, Apple, Google, Twitter, Facebook, and others about meeting to discuss diversity issues."

New submitter Matt.Battey writes "I was recently on-site with a client and in the execution of my duties there, I needed to access web sites like Google Maps and my company's VPN. The VPN connection was rejected (which tends to be common, even though it's an HTTPS based VPN service). However, when I went to Google Maps I received a certificate error. It turns out that the client is intercepting all HTTPS traffic on the way out the door and re-issuing an internally generated certificate for the site. My client's employees don't notice because their computers all have the internal CA pushed out via Windows Group Policy & log-on scripts.

In essence, my client performs a Man-In-The-Middle attack on all of their employees, interrupting HTTPS communications via a network coordinated reverse-proxy with false certificate generation. My assumption is that the client logs all HTTPS traffic this way, capturing banking records, passwords, and similar data on their employees.

My question: How common is it for employers to perform MITM attacks on their own employees?"

An anonymous reader writes "Ars Technica's Peter Bright reports on a Netware 3.12 server that has been decommissioned after over 16 years of continuous operation. The plug was pulled when noise from the server's hard drives become intolerable. From the article: 'It's September 23, 1996. It's a Monday. The Macarena is pumping out of the office radio, mid-way through its 14 week run at the top of the Billboard Hot 100, doing little to improve the usual Monday gloom...Sixteen and a half years later, INTEL's hard disks—a pair of full height 5.25 inch 800 MB Quantum SCSI devices—are making some disconcerting noises from their bearings, and you're tired of the complaints. It's time to turn off the old warhorse.'"

Trailrunner7 writes "Apple on Thursday released a large batch of security fixes for its OS X operating system, one of which patches a flaw that allowed Java Web Start applications to run even when users had Java disabled in the browser. There have been a slew of serious vulnerabilities in Java disclosed in the last few months, and security experts have been recommending that users disable Java in their various browsers as a protection mechanism. However, it appears that measure wasn't quite enough to protect users of some versions of OS X."

9to5Google cites "an extremely reliable source" in reporting that "Google is in the process of building stand-alone retail stores in the U.S. and hopes to have the first flagship Google Stores open for the holidays in major metropolitan areas. The mission of the stores is to get new Google Nexus, Chrome, and especially upcoming products into the hands of prospective customers. Google feels right now that many potential customers need to get hands-on experience with its products before they are willing to purchase. Google competitors Apple and Microsoft both have retail outlets where customers can try before they buy."

First time accepted submitter slartibartfastatp writes "Spreadsheets are very flexible tools for data analysis and transformations, the obvious options being MS Excel and LibreOffice. However, I found increasingly infuriating to deal with the VBA--dialect functions or (even worse) its translated versions. Is there any spreadsheet that allows usage of a decent programming language in its formulae? I found PySpread intriguing, but still very beta (judging from its latest release version 0.2.3). Perl or even javascript would be better options than =AVERAGE(). Do you know any viable alternatives?"

First time accepted submitter Rawlsian writes "Great Falls, Montana, television station KRTC issued a denial of an Emergency Alert System report that 'dead bodies are rising from their graves.' The denial surmises that 'someone apparently hacked into the Emergency Alert System...This message did not originate from KRTV, and there is no emergency.'"

Lucas123 writes "IronKey has released a thumb drive certified to be used as a bootable Windows 8 device, enabling users to use Windows To Go — an enterprise feature of Windows 8 — to deliver a fully portable desktop. While Imation doesn't promote this feature, users can also boot up this USB on any Intel-based Apple computer. The flash drive has its drawbacks. It's not yet FIPS certified, it can't be provisioned as storage, and it lacks admin management features. The IronKey Workspace drive comes in 32GB, 64GB and 128GB capacities. It offers either 128-bit or 256-bit full disk encryption. Users must purchase the Windows 8 software separately. According to Imation's specifications, the IronKey Workspace has a maximum average read speed of 300MB/sec. and an average write speed of 100MB/sec. to 200MB/sec. When I timed the boot-up times, the initial boot-up from the USB drive was slow — 3 minutes and 40 seconds — but the drive was configuring itself. Subsequent boot-ups took a mere 35 seconds. Shutdown is near instantaneous — about 2 seconds. The flash drive is priced from $129 to $389 depending on capacity."

hypnosec writes "The Linux Foundation's UEFI secure boot pre-bootloader is still in the works, and has been modified substantially so that it allows any Linux version to boot through UEFI secure boot. The reason for modifying the pre-bootloader was that the current version of the loader wouldn't work with Gummiboot, which was designed to boot kernels using BootServices->LoadImage(). Further, the original pre-bootloader had been written using 'PE/Coff link loading to defeat the secure boot checks.' As it stands, anything run by the original pre-bootloader must also be link-loaded to defeat secure boot, and Gummiboot, which is not a link-loader, didn't work in this scenario. This is the reason a re-write of the pre-bootloader was required and now it supports booting of all versions of Linux." Also in UEFI news: Linus Torvalds announced today that the flaw which was bricking some Samsung laptops if booted into Linux has been dealt with.

cylonlover writes "A team of engineering researchers at the University of Michigan has developed a nanoscale coating that causes almost all liquids to bounce off surfaces treated with it. Creating a surface structure that is least 95 percent air, the new 'superomniphobic' coating is claimed to repel the broadest range of liquids of any material in its class, opening up the possibility of super stain-resistant clothing, drag-reducing waterproof paints for ship hulls, breathable garments that provide protection from harmful chemicals, and touchscreens resistant to fingerprint smudges."

An anonymous reader writes "Game designer Tadhg Kelly writes at TechCrunch about a trend many gamers have noticed over the past decade: designers increasingly relying on statistics — and only statistics — to inform their design decisions. You know the type; the ones who'll change the background color if they think it'll eke out a few more players, or the ones who'll scrap interesting game mechanics in favor of making the game more easily understandable to a broader market. Naturally, this leads to homogenization and boring games. Kelly says, 'Obsessed with measuring everything and therefore defining all of their problems in numerical terms, social game makers have come to believe that those numbers are all there is, and this is why they cannot permit themselves to invent. Like TV people, they are effectively in search of that one number that will explain fun to them. There must, they reason, be some combination of LTV and ARPU and DAU and so on that captures fun, like hunting for the Higgs boson. It must be out there somewhere. ... Unlike every other major game revolution (arcade, console, PC, casual, MMO, etc.), social game developers have proved consistently unable to understand that fun is dynamic in this way. ... They are hunting for the fun boson, but it does not exist.'"

Barence writes "When Microsoft last year launched Outlook.com, the company carelessly left the SteveBallmer@Outlook.com address vacant. It was snapped up by the editor of PC Pro, giving an insight into the type of emails the public sends to the Microsoft CEO. Among the messages sent to the account are complaints about the Windows 8 interface, a plea from someone who was 'literally driven crazy' by Windows Server product keys, and someone who wants Windows Phone's calendar to remind him when he's being paid. There's also a more sinister complaint from someone who claims they were the victim of racial discrimination when applying for a job at a Microsoft Store."

SchrodingerZ writes "In an upcoming BBC Documentary, Dean Armstrong, the brother of astronaut Neil Armstrong, reveals when the world famous 'one small step for man, one giant leap for mankind' line originated. For years, people have argued over when Armstrong came up with the line, whether it was on the spot or planned years ahead. Also debated is whether Armstrong meant to include 'a' before man, making the indefinite article 'man,' which alludes to mankind, into a singular, 'a man,' himself. According to Dean Armstrong, the quote was shared to him over a board game, months before the mission began. He says, 'We started playing Risk and then he [Neil] slipped me a piece of paper and said "read that." I did. On that piece of paper there was "That's one small step for man, one giant leap for mankind." He says "what do you think about that?" I said "fabulous." He said "I thought you might like that, but I wanted you to read it." He then added: "It was 'that is one small step for A man.'"' Armstrong had always insisted that he had said 'a,' that it was lost in communication static. This new story however conflicts with what Neil told James Hansen for his biography, stating he came up with the quote on the lunar surface. More on the historic moon landing and the life of Neil Armstrong in the new documentary Neil Armstrong- First Man on the Moon, on BBC."

Koreantoast writes "After failing on numerous occasions, North Korea has finally put a satellite in orbit. But according to US officials, it is now 'tumbling out of control.' This is bad news, and more bad news, covered in a double layer of extra bad news. From the article: 'According to US officials, it appears that North Korea's new satellite has failed to achieve a stable orbit and is now "tumbling out of control." The greatest danger is the threat of it colliding with another satellite, adding to the growing debris field around the earth.' A separate Gizmodo article provides links for tracking the current location of the satellite."

An anonymous reader writes "Depending on where you are in the world, blank media may have a secondary tax applied to it. It seems ludicrous that such a tax even be considered, let alone be imposed, and yet an Austrian rights group called IG Autoren isn't happy with such a tax covering just physical media; it wants cloud storage included, too. At the moment, consumers in Austria only pay this tax on blank CDs and DVDs. IG Autoren wants to expand that to include the same range of media as Germany, but also feels that services like Dropbox, SkyDrive, Google Drive etc. all fall under the blank media banner because they offer storage, and therefore should carry the tax — a tax consumers would have to pay on top of the existing price of each service."