An anonymous reader writes: "The Tor Project is preparing a fix for a bug that has been abused for the past years to launch DDoS attacks against dark web (.onion) websites," reports ZDNet. "Barring any unforeseen problems, the fix is scheduled for the upcoming Tor protocol 0.4.2 release." The bug has been known to Tor developers for years, and has been used to launch Slow Loris-like attacks on the web servers that run the Tor service supporting an .onion site. It works by opening many connections to the server and maxing out the CPU. Since Tor connections are CPU intensive because of the cryptography involved to support the privacy and anonymity of the network, even a a few hundreds connections are enough to bring down dark web portals. A tool to exploit the bug and to automate DDoS attacks has been around for four years, and has been used by hackers to extort dark web marketplaces all spring. At least two markets selling illegal products have shut down after refusing to pay attackers. To get the bug fixed, members of a dark web forum banded together and donated to the Tor Project to sponsor the bug's patch.

Since you're reading this here, you're probably already aware that in the early hours of Monday, lots of DNS calls are going to fail as the FBI turns off servers from which Windows machines infected with DNSChanger have been served. New submitter SuperCharlie adds a reminder of the impending shutdown, and adds: "The FBI has a step-by-step method for you to see if you are infected in this PDF document, or you can go to dcwg.org for an automated check if you are so inclined."

OverTheGeicoE writes "The Electronic Privacy Information Center received more FOIA documents from the U.S. Department of Homeland Security regarding mobile x-ray scanners (a.k.a. Z Backscatter Vans). We've discussed these devices before. Perhaps the most interesting part is slide #11 ('Disclaimer About Scanning People') on page 6 of this PDF explaining that the radiation output of these devices is too high to comply with ANSI N43.17. In other words, they output too much radiation even by TSA's questionable standards for airport body scanners. Regardless, the slide ends with the author stating that the ANSI standard 'is not applicable to covert operations.' What might that assertion have meant to the presentation's intended audience?"

Off the Rails writes "The BBC reports that evidence has been found for both water vapour and carbon dioxide on a planet 63 light years away. The planet is a 'hot Jupiter' with a surface temperature of 1173K and an orbital period of just 53 hours. The gases were found spectroscopically once its orbit had been deduced from observation. NASA hailed the news as proof that Kepler will be able to do its job of finding planets capable of supporting life." Wikipedia also has an entry on the planet, dubbed HD 189733b.

theraindog writes "We've already seen Intel's first X25-M solid-state drive blow the doors off the competition, and now there's a new X25-E Extreme model that's even faster. This latest drive reads at 250MB/s, writes at 170MB/s, and offers ten times the lifespan of its predecessor, all while retaining Intel's wicked-fast storage controller and crafty Native Command Queuing support. The Extreme isn't cheap, of course, but The Tech Report's in-depth review of the drive suggests that if you consider its cost in terms of performance, the X25-E actually represents good value for demanding multi-user environments."