Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Submission + - More Than 50% of All Pages in Chrome are Loaded Over HTTPS Now

Trailrunner7 writes: After years of encouraging site owners to transition to HTTPS by default, Google officials say that the effort has begun to pay off. The company’s data now shows that more than half of all pages loaded by Chrome on desktop platforms are served over HTTPS.

Google has been among the louder advocates for the increased use of encryption across the web in the last few years. The company has made significant changes to its own infrastructure, encrypting the links between its data center, and also has made HTTPS the default connection option on many of its main services, including Gmail and search. And Google also has been encouraging owners of sites of all shapes and sizes to move to secure connections to protect their users from eavesdropping and data theft.

That effort has begun to bear fruit in a big way. New data released by Google shows that at the end of October, 68 percent of pages loaded by the Chrome browser on Chrome OS machines were over HTTPS. That’s a significant increase in just the last 10 months. At the end of 2015, just 50 percent of pages loaded by Chrome on Chrome OS were HTTPS. The numbers for the other desktop operating systems are on the rise as well, with macOS at 60 percent, Linux at 54 percent, and Windows at 53 percent.

Submission + - SPAM: Researchers Demo How Adjacent IoT Devices Can Infect Each Other and Spread

penciling_in writes: A team of researchers have released a report detailing a new type of threat in which adjacent IoT devices, such as Internet-connected light bulbs, will infect each other with a worm that will spread explosively over large areas in a kind of nuclear chain reaction. The research group from Israel's Weizmann Institute of Science and Dalhousie University in Halifax, Nova Scotia, Canada in their paper 'IoT Goes Nuclear' show video footage of their experiment taking control of building lights using an attack kit mounted on a drone flown near the building. They also provide extensive detail of the threat in their paper.
Link to Original Source

Submission + - Indictments Likely In Clinton Scandals, 99% Certain Server Breached By Spies (dailycaller.com) 13

cold fjord writes: Journalist Bret Baier has been digging into the FBI investigations of the Clinton email server and Clinton foundations that involves at least four FBI field offices. His FBI sources are telling him that baring obstruction it is almost certain that there will be indictments coming. It is now thought to be 99% certain that Clinton's email server was breached by five foreign intelligence agencies. The cache of 650,000 emails on Anthony Weiner's laptop is reported to be yielding emails previously unseen by investigators and is resulting in diverging interests between Huma Abedin, Anthony Weiner, and Hillary Clinton. There seems to be evidence of lying by Cheryl Mills and Hillary Clinton which might be part of what is behind the reports that at least some of the previously granted immunity to much of Clintons inner circle is now void. All of this is taking place against the backdrop of a four month old IRS investigation into the Clinton Foundation.

Submission + - SPAM: Hacking Smartphones Via Voice Commands Hidden In YouTube Videos

Orome1 writes: A group of researchers from Georgetown University and UC Berkeley have demonstrated how voice commands hidden in YouTube videos can be used by malicious attackers to compromise smartphones. In order for the attack to work, the target smartphones have to have Apple Siri or Google Now – the intelligent personal assistant software that uses a natural language user interface to answer questions, make recommendations, and perform actions – enabled. And, if the video in question is not played on them, they have to be close enough to “hear” and interpret the commands hidden in the video played on other nearby devices.
Link to Original Source

Submission + - Due process is under assault in America (washingtonexaminer.com)

An anonymous reader writes: Due process isn’t the sexiest part of the Constitution. It doesn’t get all the attention like the First or Second Amendments. But it is so incredibly important to the foundation of our country that it’s painful to see the hits it’s been taking these past few years.

The latest attempt has been incredibly direct, with Sen. Joe Manchin, D-W.Va., declaring that “due process is what’s killing us right now.” Manchin’s comments came in response to the Orlando terrorist attack that killed 49 people and injured 53 more. Speaking on MSNBC’s “Morning Joe,” Manchin said that due process was keeping legislators from banning those on the Terrorist Watch List from purchasing guns.

“The problem we have, and really the firewall we have right now, is due process,” Manchin said Thursday. “It’s all due process.”

Darn that pesky due process and its constitutional protections!

Manchin is just the latest pol to advocate trampling on Americans’ constitutional rights. On Wednesday, a number of pols told my colleague Joel Gehrke that the presumption of innocence was unnecessary when government seeks to deprive someone of a constitutional right.

Submission + - Windows 10's privacy invading features aren't gone in Threshold 2 (betanews.com)

Mark Wilson writes: Since the launch of Windows 10, there have been various concerns relating to privacy. Some would dismiss this as little more than paranoia, but a lack of transparency about what was happening in the background broke a lot of people's trust. Many hoped that the release of the Threshold 2 update this month would address this, but in lots of cases it was actually a backward step.

In the RTM release of Windows 10, there was a service running in the background called Diagnostics Tracking Service (also known as DiagTrack), and people concerned about privacy — who were in the know — disabled it. In Threshold 2, this service is gone. A cause for celebration you might think; but think again. The service is still there, just under a different guise.

Submission + - Obamacare regulations to destroy craft beer industry

schwit1 writes: The cost to meet Obamacare regulations requiring beer companies to include specific calorie information on every beer they make is likely going to destroy many small local beer breweries.

As of December 2016, all brewers must include a detailed calorie count on every type of beer they produce. Failure to comply with the new regulations means craft brewers will not be able to sell their beer in any restaurant chain with over 20 locations. Because this is a major market for selling beer, it hamstrings smaller craft brewers if they do not comply.

The Cato Institute estimates the Obamacare calorie labeling requirements will cost a business as much as $77,000 to implement. For larger beer companies, this is a drop in the bucket, but for small, local craft brewers it represents a significant cost that they must pay. As a result, it creates a significant disadvantage compared to larger beer companies who can better absorb the cost of this new regulation.

But hey, who cares if a major thriving industry should be destroyed by government regulations.

Submission + - Comcast Xfinity Wi-Fi Discloses Customer Names and Addresses (csoonline.com)

itwbennett writes: Despite assurances that only business listings and not customer names and home addresses would appear in the public search results when someone searches for an Xfinity Wi-Fi hotspot, that is exactly what's happened when the service was initiated 2 years ago — and is still happening now, writes CSO's Steve Ragan. And that isn't the only security issue with the service. Another level of exposure centers on accountability. Ken Smith, senior security architect with K Logix in Brookline, Ma., discovered that Comcast is relying on the device’s MAC address as a key component of authentication.

Submission + - The History of SQL Injection, the Hack That Will Never Go Away

An anonymous reader writes: SQL injection (SQLi) is where hackers typically enter malicious commands into forms on a website to make it churn out juicy bits of data. It's been used to steal the personal details of World Health Organization employees, grab data from the Wall Street Journal, and hit the sites of US federal agencies.

“It’s the most easy way to hack,” the pseudonymous hacker w0rm, who was responsible for the Wall Street Journal hack, told Motherboard. The attack took only a “few hours.”

But, for all its simplicity, as well as its effectiveness at siphoning the digital innards of corporations and governments alike, SQLi is relatively easy to defend against.

So why, in 2015, is SQLi still leading to some of the biggest breaches around?

Comment Should help Linux in the long run (Score 2) 110

As trivial as this might seem, having games for linux might help bring in more of the youth crowd. Their comfort level with linux will increase and out of that user stream you'll develop more hardcore linux users. I doubt Steam thought about it that way but in the long run, it is really a smart thing for the future heath of the linux fan base.

Comment Worst taxi experiences ever... (Score 3, Interesting) 136

Context of the story aside, my worst experiences with taxis have all been in Las Vegas. Being being asshats with lawyer ties to politicians, they are angry at their customers just for being customers. It has gotten to the point where I'd rather pay for a private car or take a hotel shuttle over a taxi any time we visit Las Vegas. I've been yelled at, my wife's bags tossed to the ground and just made really uncomfortable when dealing with them.

Comment Politics Feh (Score 3, Interesting) 130

I remember when nobody posted politics on Slashdot. You guys have ruined a perfectly good site by trying to turn it into a political evangelism site. Can we stick to technology related issues please? I'm sure a lot of you will vote me down for saying these things but how many people have stopped coming here because Slashdot isn't a great place to see cutting edge information any more. There is far too much political demagoguery here, it is depressing.

Slashdot Top Deals

6.023 x 10 to the 23rd power alligator pears = Avocado's number

Working...