Slashdot is powered by your submissions, so send in your scoop


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 internet speed test! ×

Submission + - SPAM: 1.37 Billion Data Records Compromised Globally In 2016

Orome1 writes: Gemalto’s Breach Level Index revealed that 1,792 data breaches led to 1.37 billion data records being compromised worldwide during 2016, an increase of 86% compared to 2015. Identity theft was the leading type of data breach in 2016, accounting for 59% of all data breaches. In addition, 52% of the data breaches in 2016 did not disclose the number of compromised records at the time they were reported.
Link to Original Source

Submission + - SPAM: IT Pros Spend Too Much Time Handling Emergencies

Orome1 writes: A 1E survey of 1,014 IT professionals, who together manage more than 21 million endpoints globally, centered on unplanned activities – how often they occur, what types are most common, and the time spent identifying and addressing issues. On average, IT workers spend 29 percent of every day reacting to unplanned incidents or emergencies. Based on a full-time work schedule of 1,700 hours per year, this equates to more than 14 weeks a year. The most common incidents are operations related – such as outages and performance issues. While nearly half of these incidents are discovered with an hour, the mean time to fix them is more than five hours.
Link to Original Source

Let There Be Light: Germans Switch on 'Largest Artificial Sun' ( 123

German scientists are switching on "the world's largest artificial sun" in the hope that intense light sources can be used to generate climate-friendly fuel. From a report: The Synlight experiment in Julich, about 19 miles west of Cologne, consists 149 souped-up film projector spotlights and produces light about 10,000 times the intensity of natural sunlight on Earth. When all the lamps are swivelled to concentrate light on a single spot, the instrument can generate temperatures of around 3,500C -- around two to three times the temperature of a blast furnace. "If you went in the room when it was switched on, you'd burn directly," said Prof Bernard Hoffschmidt, a research director at the German Aerospace Center, where the experiment is housed in a protective radiation chamber. The aim of the experiment is to come up with the optimal setup for concentrating natural sunlight to power a reaction to produce hydrogen fuel.

Submission + - SPAM: Malware Posing As Siemens PLC Software Is Hitting Industrial Environments

Orome1 writes: What kind of malware is hitting industrial control systems, and how worried should we and the operators of theses systems actually be? These are question that Ben Miller, Director of the Dragos Threat Operations Center, has took it upon himself to answer, by sifting through data regarding ICS incidents collected over the last 13+ years and available from public datasets. Miller’s analysis revealed that targeted ICS intrusions are rare. But, interestingly enough, variants of the same malware disguised as software for Siemens programmable logic controllers (PLCs) has been flagged 10 times over the last 4 years, and the latest occurrence was early this month.
Link to Original Source

Submission + - SPAM: Java And Flash Top List Of Most Outdated Programs On Users' PCs

Orome1 writes: 52% of the most popular PC applications, including Flash and Java, are out-of-date. People are exposing their PC and their personal data to risks, as malware targets older versions of software to exploit vulnerabilities. Topping this list of the least updated applications is Java, the popular framework for web and some desktop applications, with more than 24 million people running the outdated versions Java Runtime 6 and 7. This is closely followed by Flash, where 99% of users have yet to update this control for Internet Explorer; and Foxit Reader which sees 92% of users working with an old version of the application.
Link to Original Source

Submission + - SPAM: Lithuanian Arrested For $100 Million BEC Scams

Orome1 writes: Criminal charges were announced against Evaldas Rimasauskas for orchestrating a fraudulent business email compromise (BEC) scheme that induced two U.S.-based Internet companies to wire a total of over $100 million to bank accounts controlled by Rimasauskas. Rimasauskas is charged with one count of wire fraud and three counts of money laundering, each of which carries a maximum sentence of 20 years in prison, and one count of aggravated identity theft, which carries a mandatory minimum sentence of two years in prison.
Link to Original Source

Submission + - SPAM: How The Necurs Botnet Influences The Stock Market

Orome1 writes: After a three-months-long partial hiatus, the Necurs botnet is back to flinging spam emails left and right. ut unlike before the break, when it was mostly delivering the infamous Locky ransomware or the Dridex banking Trojan, the botnet is now engaged in distributing emails with no malicious attachment or link. According to Cisco Talost researchers, the botnet has been spotted firing off short-lasting but sizeable bursts of penny stock pump-and-dump emails.
Link to Original Source

Submission + - SPAM: Burglars Can Easily Make Google Nest Security Cameras Stop Recording

Orome1 writes: Google Nest’s Dropcam, Dropcam Pro, Nest Cam Outdoor and Nest Cam Indoor security cameras can be easily disabled by an attacker that’s in their Bluetooth range. The vulnerabilities are present in the latest firmware version running on the devices (v5.2.1). They were discovered by researcher Jason Doyle last fall, and their existence responsibly disclosed to Google, but have still not been patched.
Link to Original Source

Windows 10 Will Download Some Updates Even Over a Metered Connection ( 320

Reader AmiMoJo writes: Until now Windows 10 has allowed users to avoid downloading updates over metered (pay-per-byte) connections, to avoid racking up huge bills. Some users were setting their ethernet/wifi connections as metered in order to prevent Windows 10 from downloading and installing updates without their permission. In its latest preview version of the OS, Microsoft is now forcing some updates necessary for "smooth operation" to download even on these connections. As well as irritating users who want to control when updates download and install, users of expensive pay-per-byte connections could face massive bills.

In 18 Years, A College Degree Could Cost About $500,000 ( 374

An anonymous reader shares a report: People worried about college affordability today can at least take this to heart: it could get much, much worse. Tuition has been rising by about 6% annually, according to investment management company Vanguard. At this rate, when babies born today are turning 18, a year of higher education at a private school -- including tuition, fees, and room and board -- will cost more than $120,000, Vanguard said. Public colleges could average out to $54,000 a year. That means without financial aid, the sticker price of a four-year college degree for children born today could reach half a million dollars at private schools, and a quarter million at public ones. That's for a family with one kid; those with more could be facing a bill that reaches seven figures.

Submission + - SPAM: Hijacking Windows User Sessions With Built-In Command Line Tools

Orome1 writes: Did you know that by using built-in command line tools, any user with system rights and permissions (usually a local administrator) can hijack the session of any logged-in Windows user without knowing that user’s password? He or she can perform the action if they have physical access to the target’s machine, but also remotely via Remote Desktop Protocol (RDP).
Link to Original Source

Submission + - SPAM: U.S. Charges Russian FSB Officers For Hacking Yahoo, Millions Email Accounts 1

Orome1 writes: A grand jury in the Northern District of California has indicted four defendants, including two officers of the Russian Federal Security Service (FSB), for computer hacking, economic espionage and other criminal offenses in connection with a conspiracy, beginning in January 2014, to access Yahoo’s network and the contents of webmail accounts. "People rightly expect that their communications through Silicon Valley internet providers will remain private, unless lawful authority provides otherwise. We will not tolerate unauthorized and illegal intrusions into the Silicon Valley computer infrastructure upon which both private citizens and the global economy rely,” said U.S. Attorney Brian Stretch for the Northern District of California.
Link to Original Source

Hundreds of Verified Twitter Accounts Compromised, Post Swastikas, Pro-Erdogan Content ( 289

From a report on Bloomberg: At least 25 verified international Twitter accounts (Editor's note: other outlets are saying the number is in hundreds) have posted content supporting Turkish President Recep Tayyip Erdogan in his feud with Germany and the Netherlands, with hashtags reading, in Turkish, "NaziGermany" and "NaziHolland." The accounts that were hacked include international news organizations such as the German newspaper Die Welt, Forbes Magazine, BBC North America, and Reuters Japan. It also targeted the Twitter accounts of the European Parliament, French politicians like Alain Juppe, Sprint Corp's CEO and President Marcelo Claure, among others. Gizmodo adds:It was an incredibly bad week for Dutch-Turkish relations. Turkish voters go to the polls next month on April 16th to decide whether President Erdogan should be given more powers. In the lead up to this vote, Turkish diplomats in the Netherlands had been speaking at Dutch rallies to Turkish ex-pats in support of the referendum. But Dutch officials prevented the Turkish ministers from speaking, causing a dust-up between the two countries. [...] Even where some of the tweets have been deleted, the banner image of the Turkish flag sometimes remains, like on the account for Starbucks Argentina.Twitter said in a statement, "We are aware of an issue affecting a number of account holders this morning. Our teams are working at pace and taking direct action on this issue. We quickly located the source which was limited to a third party app. We removed its permissions immediately."

Submission + - SPAM: Vulnerability In WhatsApp And Telegram Allowed Complete Account Takeover

Orome1 writes: Check Point researchers today revealed a new vulnerability on WhatsApp and Telegram’s online platforms – WhatsApp Web & Telegram Web. By exploiting this vulnerability, attackers could completely take over user accounts, and access victims’ personal and group conversations, photos, videos and other shared files, contact lists, and more. Check Point disclosed this information to the WhatsApp and Telegram security teams on March 8, 2017. WhatsApp and Telegram acknowledged the security issue and developed fixes for worldwide web clients.
Link to Original Source

Slashdot Top Deals

You are in a maze of little twisting passages, all different.