Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
Get HideMyAss! VPN, PC Mag's Top 10 VPNs of 2016 for 55% off for a Limited Time ×

Submission + - Hackers Find Security Gaps In Pentagon Websites (go.com)

An anonymous reader writes: High-tech hackers brought in my the Pentagon to breach Defense Department websites were able to burrow in and find 138 different security gaps, Defense Secretary Ash Carter said Friday. The white-hat hackers were offered various bounties if they could find vulnerabilities on five of the Pentagon's internet pages. The Pentagon says 1,410 hackers participated in the challenge and that the first gap was found just 13 minutes after the hunt began. Overall, 1,189 vulnerabilities were found, though only 138 were deemed valid and unique. The experiment cost $150,000, and about half of it was paid to the hackers as bounties. The "Hack the Pentagon" program will be followed by a series of initiatives, including a process that will allow anyone who finds a security gap in Defense Department systems to report it without fear of prosecution.

Submission + - FBI May Be Hiding Facial Recognition Databases From GAO

blottsie writes: A Government Accountability Office (GAO) report released this week revealed that the FBI is using images culled from driver’s licenses, as well as passport and visa applications, in its criminal facial recognition database, something civil liberties advocates find highly problematic.

Perhaps more worrisome, however, is that the GAO report only reveals what the FBI told GAO investigators—meaning the bureau may have far more facial recognition databases that it's hiding.

So how many libraries does the FBI have? “Oh, who knows,” FBI CJIS privacy attorney Roxane Panarella said, followed by some laughter. “There might be hundreds, or thousands, but there will only be some that are valuable to the FBI and some that are going to be legally allowed to be searched by us.”

Submission + - Would you trust medical data stored on AWS by CareMonkey? (caremonkey.com)

rolandw writes: My teenage daughter's school in the UK wants me to approve the storage of her full medical details in CareMonkey. CareMonkey say that this data is stored on AWS and their security page says that it is secured by every protocol ever claimed by AWS (apparenlty). As a sysadmin and developer who has used AWS extensively for non-secure information my alarm bells are sounding. Should I ignore them and say yes? Why would you refuse?

Submission + - Report says 99% of feds 'fully successful' or better at work. Is that credible? (washingtonpost.com)

schwit1 writes: Feds deserve much respect, but rating more than 99 percent as fully successful strains credibility. It diminishes the truly successful and could deny the less successful the assistance they need to improve. The report gives a boost to those who seek to overhaul the civil service system, which critics say is short on employee accountability. Federal employee unions have not been anxious to embrace civil service reform, though there are indications that is changing.

“The system is obviously not working in that it’s not providing meaningful differentiation between solid employees and truly exceptional ones,” said Max Stier, president and chief executive of the Partnership for Public Service, which studies the federal workforce. “It’s not being implemented consistently or with the original intent of what it means to be ‘outstanding’ or ‘fully successful.’”

Submission + - First Plex, then Emby, what next?

bluelip writes: When I came across Plex, I was in love. Soon, buying the app was no longer enough, Then Emby came around and was the cream of the crop. It didnt last long before they went they way of Plex. Yes, I can yank the BS code out and still use the service that was paid for, but I prefer to support honest developers. What are you folks using nowadays?

Submission + - Philadelphia Union Accused of Using Drones to Intimidate Enemies (heatst.com)

schwit1 writes: Hotel developer Mihir Wankawala clicked on the link a friend had sent him and watched in shock: Drone-shot video shows dozens of union protestors, the view rising to peer in the windows of the historic hotel property Wankawala was carefully refurbishing. The whole video, which the unions posted to YouTube, is ominously set to Rockwell’s “Somebody’s Watching Me.”

“I guess they were trying to show their power,” says Wankawala, who says he sought bids from union and non-union contractors and discovered that using solely organized labor would increase his costs by around 30 percent. “I’m the new kid on the block. This is my first project [in Philadelphia]. I think they were trying to send a message that you have to use union labor to get your project done.”

Such scare tactics are nothing new; for decades, Philadelphia’s construction unions have used violence, vandalism, harassment and intimidation to dominate the construction industry.

Submission + - Google Open Sources Nest 'Thread' IoT Networking Platform

Mickeycaskill writes: Google has made a play for smart home domination by open sourcing the 'Thread' software used by its Nest smart home division for the Internet of Things (IoT).

Thread is a networking protocol used for devices such as the Nest thermostat and is now available for anyone to build into their own smart home products. OpenThread, as the new software is called, is available to download from Github for free.

Any products will still need to be certified by the Thread Group and manufacturers will need to sign up as members to download the software.

“Thread makes it possible for devices to simply, securely, and reliably connect to each other and to the cloud,” said Greg Hu, head of Nest platform and Works with Nest.

"OpenThread will significantly accelerate the deployment of Thread in these devices, establishing Thread as one of the key networking technology standards for connected products in the home.”

Submission + - How Shari Steele Plans To Take Tor Mainstream

blottsie writes: Over her career, Shari Steel has taken on United States Department of Justice, the National Security Agency, and the Federal Bureau of Investigation. She built the Electronic Frontier Foundation into an international powerhouse for protecting online rights.

Today, she has a new mission, perhaps her heaviest challenge yet: Take the Internet’s most powerful privacy tool mainstream.

Slashdot Top Deals

"Stupidity, like virtue, is its own reward" -- William E. Davidsen

Working...