Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Submission + - FCC Misplaced Around 600,000 Net Neutrality Comments

Presto Vivace writes: FCC States It Misplaced Around 600,000 Net Neutrality Comments

Just as net neutrality opponents were celebrating the claim that their outrage-o-matic form letter campaigns resulted in more FCC-filed comments than neutrality supporters, the FCC has announced that it somehow managed to lose roughly 600,000 net neutrality comments during processing. According to a blog post by the FCC, the agency says that the comments were misplaced due to the agency's "18-year-old Electronic Comment Filing system (ECFS)."

Submission + - jQuery.com Compromised To Serve Malware

An anonymous reader writes: jQuery.com, the official website of the popular cross-platform JavaScript library of the same name, had been compromised and had been redirecting visitors to a website hosting the RIG exploit kit and, ultimately, delivering information-stealing malware. While any website compromise is dangerous for users, this one is particularly disconcerting because of the demographic of its users, says James Pleger, Director of Research at RiskIQ.

Submission + - Defeating UEFI's SecureBoot (net-security.org)

An anonymous reader writes: UEFI is ment to replace the BIOS firmware interface. But is it secure enough? Or, at least, more resilient than BIOS? Corey Kallenberg, Security Researcher for the MITRE Corporation explains how he and his team have been able to circumvent that protection on roughly half of the computers that have it enabled, in order to install a malicious bootkit, and what this means for the future of UEFI.

Submission + - Oregon vs. Oracle: The Battle of Blame Heats Up

Rambo Tribble writes: The ongoing efforts to assign responsibility for the disastrous attempts to create the Cover Oregon health exchange, the primary contractor for which was Oracle Corporation, have entered a new round, with Governor John Kitzhaber calling on State Attorney General Ellen Rosenblum to initiate legal action against the firm. Kitzhaber has also sought the help of Washington D.C. in sanctioning Oracle, though Oregon's own management of the project and the terms of their contract with Oracle muddy the waters, considerably. Although the AG's office hasn't committed to filing suit, yet, AG Rosenblum has said, 'I share your determination to recover every dollar to which Oregon is entitled.' Although the outcome of this is uncertain, it is likely heads, both corporate and political, will roll.

Submission + - Satanists Propose Monument at Oklahoma Statehouse Next to Ten Commandments

Hugh Pickens DOT Com writes: The Tulsa World reports that in their zeal to tout their faith in the public square, conservatives in Oklahoma may have unwittingly opened the door to a wide range of religious groups, including satanists who are now seeking to put their own statue next to a Ten Commandments monument on the Statehouse steps. The Republican-controlled Legislature in Oklahoma authorized the privately funded Ten Commandments monument in 2009, and it was placed on the Capitol grounds last year despite criticism from legal experts who questioned its constitutionality. But the New York-based Satanic Temple saw an opportunity and notified the state's Capitol Preservation Commission that it wants to donate a monument too. "We believe that all monuments should be in good taste and consistent with community standards," Lucien Greaves wrote in letter to state officials. "Our proposed monument, as an homage to the historic/literary Satan, will certainly abide by these guidelines." Brady Henderson, legal director for ACLU Oklahoma, said if state officials allow one type of religious expression, they must allow alternative forms of expression, although he said a better solution might be to allow none at all on state property. "We would prefer to see Oklahoma's government officials work to faithfully serve our communities and improve the lives of Oklahomans instead of erecting granite monuments to show us all how righteous they are," says Henderson. "But if the Ten Commandments, with its overtly Christian message, is allowed to stay at the Capitol, the Satanic Temple's proposed monument cannot be rejected because of its different religious viewpoint."

Submission + - Sugar is toxic (plosone.org) 1

genericmk writes: "Using econometric models of repeated cross-sectional data on diabetes and nutritional components of food from 175 countries, this study found that every 150 kcal/person/day increase in sugar availability (about one can of soda/day) was associated with increased diabetes prevalence by 1.1% after testing for potential selection biases and controlling for other food types (including fibers, meats, fruits, oils, cereals), total calories, overweight and obesity, period-effects, and several socioeconomic variables such as aging, urbanization and income. As Mark Brittman points out in his NY Times blog This is as good (or bad) as it gets, the closest thing to causation and a smoking gun that we will see. The study demonstrates this with the same level of confidence that linked cigarettes and lung cancer in the 1960s."
Bug

Submission + - DLL hole now affects EXE files

Jazzbunny writes: It turns out that the DLL vulnerability (Binary Planting) under Windows was only the tip of the iceberg. DLL libraries aren't the only things that are seem to be vulnerable; EXE files also appear to be affected and the DLL workarounds proposed by Microsoft do not help.

In a security advisory for the recently updated Safari browser, security service provider ACROS explains the problem. Attackers first save an HTML file and a manipulated file called explorer.exe on a drive. When the victim opens the HTML file with Safari, nothing happens initially, but the file does contain a link to a URI that starts with "file://", which causes Windows to try to start Windows Explorer (explorer.exe). Unfortunately, Windows loads the explorer.exe within the containing folder (the network share) and executes it.

For further details, see ACROS' Binary Planting Goes EXE.

Slashdot Top Deals

God may be subtle, but he isn't plain mean. -- Albert Einstein

Working...