Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Trust the World's Fastest VPN with Your Internet Security & Freedom - A Lifetime Subscription of PureVPN at 88% off. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. ×

Submission + - Detecting PLC Malware In Industrial Control Systems (helpnetsecurity.com)

Orome1 writes: How can attackers load programmable logic controllers (PLC) with destructive malware, and how can the operators of industrial control systems (ICS) detect it? According to a group of researchers from the International Institute of Information Technology, Hyderabad, and Singapore University of Technology and Design, the trick is not to attempt to change the PLC’s firmware, but to deploy ladder logic bombs (i.e. malware written in ladder logic).
Businesses

Former Engineer Says Uber Is a Nightmare of Sexism; CEO Orders Urgent Investigation (susanjfowler.com) 761

An anonymous reader shares a report on The Verge: A former Uber engineer has published an explosive account of sexism and power struggles in the workplace, with allegations beginning from her very first official day with the company. The engineer, Susan Fowler (who left Uber in December and now works for Stripe), posted the account to her blog on Sunday, calling it a "strange, fascinating, and slightly horrifying story." It is indeed horrifying. Sexism is a well-documented problem in Silicon Valley, but the particulars of Fowler's account are astounding. She says problems began on day one, when her manager accosted her with details of his sex life: "In my first official day rotating on the team, my new manager sent me a string of messages over company chat. He was in an open relationship, he said, and his girlfriend was having an easy time finding new partners but he wasn't. He was trying to stay out of trouble at work, he said, but he couldn't help getting in trouble, because he was looking for women to have sex with. It was clear that he was trying to get me to have sex with him, and it was so clearly out of line that I immediately took screenshots of these chat messages and reported him to HR. When I reported the situation, I was told by both HR and upper management that even though this was clearly sexual harassment and he was propositioning me, it was this man's first offense, and that they wouldn't feel comfortable giving him anything other than a warning and a stern talking-to. Upper management told me that he "was a high performer" (i.e. had stellar performance reviews from his superiors) and they wouldn't feel comfortable punishing him for what was probably just an innocent mistake on his part. The things only get worse for Fowler. Read the full account of her story here. In the meanwhile, Uber CEO Travis Kalanick said the company would "conduct an urgent investigation" into the allegations, and promised to fire anyone who "behaves this way or thinks this is OK."

Journalist Paul Carr summing up the situation, says, "Uber's ability to be on the wrong side of every moral and ethical issue is bordering on magical."

Submission + - The Dangers That Come With Buying Pre-Owned IoT Devices (helpnetsecurity.com)

Orome1 writes: When you buy a second-hand connected car, can you be sure that it is not still not reachable by its former owner? Similarly, when you sell your own connected car, how can you be sure that it will not leak the personal information you fed it to the next owner? Charles Henderson, Global Head of IBM’s X-Force Red, told the RSA Conference 2017 crowd about his own experience when selling a much loved convertible car.
NASA

NASA Scientist Revive 10,000-Year-Old Microorganisms (bbc.com) 99

"Scientists have extracted long-dormant microbes from inside the famous giant crystals of the Naica mountain caves in Mexico -- and revived them," reports the BBC. An anonymous reader writes: "The organisms were likely to have been encased in the striking shafts of gypsum at least 10,000 years ago, and possibly up to 50,000 years ago," according to the BBC, which calls the strange lifeforms "another demonstration of the ability of life to adapt and cope in the most hostile of environments." With no light, extremophile species must "chemosynthesise," deriving all their energy by extracting minerals from rocks. These ancient microbes "are not very closely related to anything in the known genetic databases," according to the new director of NASA's Astrobiology Institute, who helped conduct the research, and believes that the microbes could help suggest what life might look like on other planets. The BBC adds that many other scientists "suspect that if life does exist elsewhere in the Solar System, it is most likely to be underground, chemosynthesising like the microbes of Naica."
First Person Shooters (Games)

'Counter-Strike' Gets Invaded By An Unblockable Chat-Bot (kotaku.com) 96

An anonymous reader writes: "At least one intruder is taking advantage of a Counter-Strike: Global Offensive exploit to flood lobbies (even private ones) with text from chat bots that can't be kicked," writes Engadget. The attack "allegedly comes from one person," according to Kotaku, which reports that "It's a similar exploit to one found a few weeks ago, where typing messages into a lobby allowed users to rank up and down as they chose." The chat bot's text includes various complaints about Counter-Strike which it claims motivated the attack, including cheaters, hackers and "bugs that break the game," and it urges a one-day boycott "to proof [sic] them that we care about the game and want them to fix it."
Piracy

Kim Dotcom Can Be Extradited, Rules A New Zealand Court (reuters.com) 177

Kim Dotcom -- and Megaupload's programmers Mathias Ortmann and Bram van der Kolk, as well as its advertising manager Finn Batato -- could soon be in a U.S. courtroom. A New Zealand judge just ruled they can all be extradited to the U.S. An anonymous reader quotes Reuters: The Auckland High Court upheld the decision by a lower court in 2015 on 13 counts, including allegations of conspiracy to commit racketeering, copyright infringement, money laundering and wire fraud, although it described that decision as "flawed" in several areas. Dotcom's lawyer Ron Mansfield said in a statement the decision was "extremely disappointing" and that Dotcom would appeal to New Zealand's Court of Appeal.

U.S. authorities say Dotcom and three co-accused Megaupload executives cost film studios and record companies more than $500 million and generated more than $175 million by encouraging paying users to store and share copyrighted material. High Court judge Murray Gilbert said that there was no crime for copyright in New Zealand law that would justify extradition but that the Megaupload-founder could be sent to the United States to face allegations of fraud.

"I'm no longer getting extradited for copyright," Dotcom commented on Twitter. "We won on that. I'm now getting extradited for a law that doesn't even apply.
Linux

Linux Kernel 4.10 Officially Released With Virtual GPU Support (softpedia.com) 89

"Linus Torvalds announced today the general availability of the Linux 4.10 kernel series, which add a great number of improvements, new security features, and support for the newest hardware components," writes Softpedia. prisoninmate quotes their report: Linux kernel 4.10 has been in development for the past seven weeks, during which it received a total of seven Release Candidate snapshots that implemented all the changes that you'll soon be able to enjoy on your favorite Linux-based operating system... Prominent new features include virtual GPU (Graphics Processing Unit) support, new "perf c2c" tool that can be used for analysis of cacheline contention on NUMA systems, support for the L2/L3 caches of Intel processors (Intel Cache Allocation Technology), eBPF hooks for cgroups, hybrid block polling, and better writeback management. A new "perf sched timehist" feature has been added in Linux kernel 4.10 to provide detailed history of task scheduling, and there's experimental writeback cache and FAILFAST support for MD RAID5... Ubuntu 17.04 (Zesty Zapus) could be the first stable OS to ship with Linux 4.10.
It required 13,000 commits, plus over 1,200 merges, Linus wrote in the announcement, adding "On the whole, 4.10 didn't end up as small as it initially looked."

Submission + - Virtual Reality Kills 22,000 Arcades In China (allyoucanarcade.com)

All You Can Arcade writes: VR is looking less like a boom and more like a bust in Asia. Over the last 12 months, it's estimated that there have been 35,000 VR arcades that have opened up in China. A year later 22,000 of them have already closed. As arcade operators are taking on debt to invest in the latest fad, it appears that it's turning around and killing their businesses. The problem . . . people simply aren't willing to pay cinema and bowling alley prices, to play in public. With the VR industry pushing the hard sale on North American operators right now, we could see even more arcades closing down, if operators can't recoup their investments.
Government

This Blog Is Republishing All the Animal Welfare Records the USDA Deleted (vice.com) 91

Last year, thousands of animal welfare records were removed from the web by the Department of Agriculture. Now, a government transparency blog is on a mission to recover and republish as many of these records as possible. From a report on Motherboard: "Whenever there are documents that were online, but got pulled offline, they're automatically important," said Russ Kick, who runs the blog The Memory Hole 2, where many of the documents have already been re-published. "Nobody's going to go through the trouble to delete something that doesn't matter." The documents, which were removed by the USDA's Animal and Plant Health Inspection Service (APHIS) late last week, included inspection records and annual reports made under the Animal Welfare Act and the Horse Protection Act. The USDA indicated that removing the documents was in response to a court decision, but a spokesperson contacted by Motherboard would not specify what court case. The records were typically used by animal welfare groups to keep tabs on how well these laws were being enforced, but were also used by the general public to research the inspection records of everything from dog breeders to circuses and zoos. "I've learned that if I see something and think 'I'm really surprised the government posted this,' I need to download it," Kick told me. "So when I found these reports, I thought 'this is surprising,' and I downloaded them."

Submission + - Simple Gmail Spoofing Leaves Users Open To Targeted Attacks (helpnetsecurity.com)

Orome1 writes: Gmail shows no warning as it delivers legitimate-looking spoofed emails seemingly coming from an existing Gmail.com address, even though they come from a non-Gmail server. This fact can be misused by attackers who want to trick their targets into clicking on a malicious link or download a malicious attachment, as the likelihood of them doing so rises considerably if the spoofed email seems to have been sent from a known sender.
Sony

If You Owned a PC With a DVD Drive You Might Be Able To Claim $10 (theverge.com) 99

If you owned a PC with a DVD drive more than 10 years ago, you're probably owed $10. From a report on The Verge: A class-action lawsuit is now accepting claims after Sony, NEC, Panasonic, and Hitachi-LG were accused of inflating the prices of optical drives sold to PC makers like Dell and HP. If you bought a PC with a DVD drive between April 1st 2003 and December 31st 2008, you'll be able to claim $10 for each drive as part of the class-action lawsuit. It appears you don't need to provide any proof of purchase -- the settlement administrators are simply collecting names, email addresses, and the number of drives owned at the moment. You'll need to submit a claim before July 1st, and the money won't be released until other defendants in the litigation have settled.
Businesses

'Fundraising Rounds Are Not Milestones' (ycombinator.com) 70

Michael Seibel, a partner at Y Combinator, writes in a blog post: I'd like to make the point that success isn't the same as raising a round of financing. Quite the opposite: raising a round should be a byproduct of success. Using fundraising itself as a benchmark is dangerous for the entire community because it encourages a culture of optimizing for short term showmanship instead of making something people want and creating lasting value. I believe founders, investors, and the tech press should fundamentally change how they think about fundraising. By deemphasizing investment rounds we would have more opportunity to celebrate companies who develop measurable milestones of value creation, focus on serving a customer with a real need, and generate sustainable businesses with good margins.
Businesses

Facebook Shareholders Urge Company To Replace Mark Zuckerberg With 'Independent' Board Chair (venturebeat.com) 182

An anonymous reader shares a VentureBeat report: Facebook is being pressured by a group of shareholders seeking the removal of company chief executive Mark Zuckerberg from the board of the directors. A proposal has been put forward claiming that an independent chairperson would be better able to "oversee the executives of the company, improve corporate governance, and set a more accountable, pro-shareholder agenda." The idea for Zuckerberg's board ousting comes from Facebook shareholders who are members of the consumer watchdog group SumOfUs. The organization bills itself as an online community that campaigns to hold corporations accountable on a variety of global issues such as climate change, workers' rights, discrimination, human rights, corruption, and corporate power grab.

Submission + - Politics Have Turned Facebook Into a Steaming Cauldron of Hate (backchannel.com) 1

mirandakatz writes: America has never been more divided, and on social media, people are blocking, muting, and unfriending each other left and right. At Backchannel, Jessi Hempel argues that Facebook is the last place we should be having political discussion right now: "We know the “filter bubble” about which Eli Pariser first wrote back in 2011 is part of the problem—it limits the viewpoints we see to those that reflect the opinions we already have. And yet we double down on that bubble, muting and blocking and unfriending people who think differently from us, if they make it into our social streams at all. We hate ourselves a tiny bit for this. And yet, if we do the opposite—engage on social media with people who hold different viewpoints—it almost always goes sideways." If you really want to understand people who don't think the same way as you? Get off of Facebook, and into the real world.

Submission + - Your Web Browsing History Can Be Linked To Your Social Media Accounts (helpnetsecurity.com)

Orome1 writes: Your web browsing history contains enough information for third parties to be able to link it to your social media profile (Twitter, Facebook, Reddit), Stanford and Princeton researchers have found. They tested their approach first on simulated browsing histories containing links originating from Twitter, then in practice with the help of 374 individuals who chose to participate in the research and “donate” their browsing histories. The result of that last test? Over 70 percent of the individuals were correctly tied to their Twitter accounts.

Slashdot Top Deals

Some of my readers ask me what a "Serial Port" is. The answer is: I don't know. Is it some kind of wine you have with breakfast?

Working...