Follow Slashdot blog updates by subscribing to our blog RSS feed

 


Forgot your password?
Close
typodupeerror

Comment using years old cves? (Score 1) 110

"Once the trojan has a foothold on the system it uses one of two privilege escalation exploits CVE-2016-5195 (also known as Dirty COW) and CVE-2013-2094 to get root permissions and have full access to the OS."
Is this really malware that is targeting systems that haven't been patched in two years?

Submission + - Malware Exploiting Spectre, Meltdown CPU Flaws Emerges (securityweek.com)

Submitted by wiredmikey
wiredmikey writes: Researchers have discovered more than 130 malware samples designed to exploit the recently disclosed Spectre and Meltdown CPU vulnerabilities. While a majority of the samples appear to be in the testing phase, we could soon start seeing attacks. On Wednesday, antivirus testing firm AV-TEST told SecurityWeek that it has obtained 139 samples from various sources, including researchers, testers and antivirus companies. Fortinet, which also analyzed many of the samples, confirmed that a majority of them were based on available PoC code.

Researchers believe various groups are toying with PoC exploits to determine if they can be used for some purpose, which is likely to be malicious.

Comment Did the US ~leak~ the plans to Russia? (Score 1) 121

by pmgst17 (#54624639) Attached to: US Spy Satellite Buzzes ISS
"Another question, if the maneuver was deliberate, is whether the US government informed Russia or other international partners on the space station. The Russian segment of the station controls the thrusters that generally are used to maneuver the station away from orbital debris, so such coordination might seem prudent." Also, appropriate Top Gun reference: https://www.youtube.com/watch?...

Comment Re:The reason is more simple (Score 2) 688

by pmgst17 (#50046059) Attached to: Why Electric Vehicles Aren't More Popular
I just bought a 2016 (seriously? 2016 model year already? yes.) Ford Fusion. I was really wanting to go with a hybrid/electric, but the reasons I didn't: 1) It will take about 6 years at even 3$/gallon of gas to recover the extra cost So yeah, that's it.

Electric vehicles are very cheap, if only because the federal government subsidizes $7,500

The tax break is **up to** 7500. For the Fusion as a plug in hybrid, the tax break is 4000$: https://www.fueleconomy.gov/fe... and that was on the top of the line car, Fusion Energi. When we asked the salesman about any tax breaks or refunds, he had to ask his manager and he said it was only 250$.

Comment Re:What was the command? (Score 4, Informative) 154

by pmgst17 (#50016405) Attached to: How IKEA Patched Shellshock
The article says they're using a Red Hat Satellite server and so if they wanted to run `yum update -y && init 6` on all of their systems, they could just push that out as a remote command to the systems / groups of systems. In Satellite, you can push out remote commands to groups of systems, so if they have their systems grouped, it would be an easy process to push that command to all of their systems.

Submission + - Top Black Thursday/Friday Tech Picks?

Submitted by theodp
theodp writes: Take a gander at the 2013 Black Friday ads, and your head will be spinning with deals that seem too good to be true. And while the WSJ will try to slap you back to reality with a story on The Dirty Secret of Black Friday 'Discounts', it's still hard not to get jazzed over the prospect of picking up an iPad Mini w/$100 gift card for $299 (Walmart), a 16GB Nexus 7 for $199 (Staples), or a 32GB Microsoft Surface for $199.99 (Best Buy). So, if you're playing the game this year — either online or in-person (hey, what could go wrong?), — what are your top tech picks for Black Friday? Any strategy for improving your odds of getting them?

Slashdot Top Deals

They laughed at Einstein. They laughed at the Wright Brothers. But they also laughed at Bozo the Clown. -- Carl Sagan

Close