Forgot your password?
typodupeerror

Submission Summary: 0 pending, 588 declined, 181 accepted (769 total, 23.54% accepted)

Google

Submission + - Google Said to Face Fine by FTC Over Apple Safari Breach (bloomberg.com)

suraj.sun writes: Bloomberg is reporting on Google's negotiation with the U.S. Federal Trade Commission over how big a fine, which could amount to more than $10 million, it will have to pay for its breach of Apple’s Safari browser. The fine would be the first by the FTC for a violation of Internet privacy as the agency steps up enforcement of the Web. Google signed a consent decree with the FTC last year in which it agreed it used deceptive tactics and violated its own privacy policies in introducing the Buzz social-networking service in 2010. The 20-year settlement bars Google from misrepresenting how it handles user information and requires the company to follow policies that protect consumer data in new products.

To quote the ars, Google was found to be working its way around Safari's tool that allows users to block third-party cookies earlier this year in order to, well, "track" users with cookies. (The code used by Google was part of its program to place the "+1" button in advertisements.) At the time, the company issued a statement saying that the circumvention wasn't intentional, but privacy groups were still quick to file complaints with the FTC over Google's actions. That was quickly followed by a class-action lawsuit and an investigation by European regulators.

Privacy

Submission + - Rand Paul has a quick fix for TSA: Pull the plug (politico.com)

suraj.sun writes: Rand Paul has a reform plan for the Transportation Security Administration: Scrap the whole thing. A personal message from Paul (R-Ky.) came atop emails this week from the Campaign for Liberty Vice President Matt Hawes, asking for readers to sign a petition in support of Paul’s “End the TSA” bill. A Paul spokeswoman said that legislation is being finalized next week.

Every inch of our person has become fair game for government thugs posing as ‘security’ as we travel around the country. Senator Rand Paul has a plan to do away with the TSA for good, but he needs our help,” reads the petition, which also asks signers to “chip in a contribution to help C4L mobilize liberty activists across America to turn the heat up on Congress and end the TSA's abuse of our rights.”

“The American people shouldn’t be subjected to harassment, groping, and other public humiliation simply to board an airplane. As you may have heard, I have some personal experience with this, and I’ve vowed to lead the charge to fight back,” Paul wrote at the top of a C4L fundraising pitch, according to blogs that received the email. “Campaign for Liberty is leading the fight to pressure Congress to act now and restore our liberty. It’s time to END the TSA and get the government’s hands back to only stealing our wallets instead of groping toddlers and grandmothers.”

News

Submission + - Russia threatens to use "destructive force pre-emptively" on US missile defence (bbc.co.uk)

suraj.sun writes: Russia threatens to use "destructive force pre-emptively" on US missile defence system based in Central Europe:

BBC:

Russia says it is prepared to use "destructive force pre-emptively" if the US goes ahead with controversial plans for a missile defence system based in Central Europe. The warning came after the Russian defence minister said talks on missile defence were nearing a dead end. Moscow fears that missile interceptors would be a threat to Russia's security. But the US and Nato say they are intended to protect against attacks from Iran or North Korea. "A decision to use destructive force pre-emptively will be taken if the situation worsens," chief of the Russian defence staff Gen Nikolai Makarov said.

President Barack Obama, who succeeded Mr Bush in the White House in 2008, scrapped plans for a network of bases spread across Poland and the Czech Republic with the capacity to intercept long-range missiles. But in 2010, the US signed an agreement with Poland to use an old airstrip at Redzikowo, near the Baltic coast, as a missile defence base.

The Internet

Submission + - Sony: Internet video service on hold due to Comcast data cap (arstechnica.com)

suraj.sun writes: An executive from Sony said Monday that concerns about Comcast's discriminatory data cap are giving the firm second thoughts about launching an Internet video service, that would compete with cable and satellite TV services. In March, Comcast announced that video streamed to the Xbox from Comcast's own video service would be exempted from the cable giant's 250 GB monthly bandwidth cap. "These guys have the pipe and the bandwidth," he said. "If they start capping things, it gets difficult."

Sony isn't the first Comcast rival to complain about the bandwidth cap. Netflix CEO Reed Hastings has also blasted Comcast's discriminatory bandwidth cap as a violation of network neutrality. Comcast controls more than 20 percent of the residential broadband market, which means that Comcast effectively controls access to one-fifth of any American Internet video service's potential customers.

Microsoft

Submission + - Microsoft forges ahead with new home-automation OS, HomeOS (cnet.com)

suraj.sun writes: More than a decade ago, Microsoft execs, led by Chairman Bill Gates, were touting a future where .Net coffee pots, bulletin boards, and refrigerator magnets would be part of homes where smart devices would communicate and interoperate. Microsoft hasn't given up on that dream. In 2010, Microsoft researchers published a white paper about their work on a HomeOS and a HomeStore — early concepts around a Microsoft Research-developed home-automation system. Those concepts have morphed into prototypes since then, based on a white paper, "An Operating System for the Home," (PDF) published this month on the Microsoft Research site.

The core of HomeOS is described in the white paper as "a kernel that is agnostic to the devices to which it provides access, allowing easy incorporation of new devices and applications. The HomeOS itself "runs on a dedicated computer in the home (e.g., the gateway) and does not require any modifications to commodity devices," the paper added. Microsoft has been testing HomeOS in 12 real homes over the past four to eight months, according to the latest updates. As is true with all Microsoft Research projects, there's no guarantee when and if HomeOS will be commercialized, or even be "adopted" by a Microsoft product group.

Australia

Submission + - Microsoft, Apple being asked to explain higher music & game prices in Austra (theage.com.au)

suraj.sun writes: The Ahe is reporting on, Microsoft and Apple being asked to defend their pricing policies at a federal parliamentary inquiry into why Australians pay far more for music and game downloads than overseas customers. Labor MPs hope publicity generated by challenging the companies will result in lower prices and put an end to local consumers being ''fleeced''. The Minister for Communications, Stephen Conroy, has signed off on the inquiry, which will begin later this year, will also consider the pricing of software and other IT-related material.

The excuses overseas technology companies use to justify the higher prices, such as the small size of the Australian market, the cost of setting up support centres here and the imposition of local taxes and duties, were not acceptable to local customers, spokeswoman Ingrid Just said. The debate over pricing surfaced again last week when global software giant Adobe revealed Australians would pay up to $1400 more than US residents for the latest version of its Creative Suite software.

Cloud

Submission + - Bill banning employer Facebook snooping introduced in Congress (arstechnica.com) 1

suraj.sun writes: The Social Networking Online Protection Act, introduced by Democratic Reps. Eliot Engel (N.Y.) and Jan Schakowsky (Ill.), would prohibit current or potential employers from demanding a username or password to a social networking account. "We must draw the line somewhere and define what is private," Engel said in a statement. "No one would feel comfortable going to a public place and giving out their username and passwords to total strangers. They should not be required to do so at work, at school, or while trying to obtain work or an education. This is a matter of personal privacy and makes sense in our digital world.”

The bill would apply the same prohibitions to colleges, universities, and K-12 schools. Facebook has already threatened legal action against organizations who require employees to reveal their Facebook passwords as policy. While Maryland was the first state to pass legislation, several states have taken up legislation to block the practice as well, following reports of the spread of the practice by the Associated Press and Los Angeles Times.

Government

Submission + - Microsoft backs away from CISPA support, citing privacy (cnet.com)

suraj.sun writes: Microsoft has been counted as a supporter of CISPA since the beginning. Now the company tells CNET any new law must allow "us to honor the privacy and security promises we make to our customers" and protect "consumer privacy." Microsoft is no longer as enthusiastic about a controversial cybersecurity bill that would allow Internet and telecommunications companies to divulge confidential customer information to the National Security Agency. The U.S. House of Representatives approved CISPA by a 248 to 168 margin on Thursday, in spite of a presidential veto threat and warnings from some House members that the measure represented "Big Brother writ large."

Microsoft added that it wants to "ensure the final legislation helps to tackle the real threat of cybercrime while protecting consumer privacy." That's a noticeable change — albeit not a complete reversal — from Microsoft's position when CISPA was introduced in November 2011. To be sure, Microsoft's initial reaction to CISPA came before many of the privacy concerns had been raised. An anti-CISPA coalition letter (PDF) wasn't sent out until April 16, and a petition that garnered nearly 800,000 signatures wasn't set up until April 5.

What makes CISPA so controversial is a section saying that, "notwithstanding any other provision of law," companies may share information with Homeland Security, the IRS, the NSA, or other agencies. By including the word "notwithstanding," CISPA's drafters intended to make their legislation trump all existing federal and state laws, including ones dealing with wiretaps, educational records, medical privacy, and more.

Bug

Submission + - Microsoft patches major Hotmail 0-day flaw after widespread exploitation (arstechnica.com)

suraj.sun writes: Microsoft quietly fixed a flaw in Hotmail's password reset system that allowed anyone to reset the password of any Hotmail account last Friday. The company was notified of the flaw, by researchers at Vulnerability Lab, on April 20th and responded with a fix within hours—but not until after widespread attacks, with the bug apparently spreading "like wild fire" in the hacking community.

Hotmail's password reset system uses a token system to ensure that only the account holder can reset their password — a link with the token is sent to an account linked to the Hotmail account — and clicking the link lets the account owner reset their password. However, the validation of these tokens isn't handled properly by Hotmail, allowing attackers to reset passwords of any account.

Initially hackers were offering to crack accounts for $20 a throw. However, the technique became publicly known and started to spread rapidly with Web and YouTube tutorials showing the technique popping up across the Arabic-speaking Internet.

Patents

Submission + - Every touch-based Apple product targeted by apparent patent troll (arstechnica.com)

suraj.sun writes: Apple is being sued in federal court in San Francisco over allegations that every touch-based product the company makes infringes on a patent relating to touch-based interactive museum displays. According to the complaint, Professor Slavoljub Milekic conceived a system that used a touchscreen that allowed children to move virtual objects around the screen, which he used to build interactive displays for the Speed Art Museum in Louisville, KY, in 1997, and filed for a patent on his design that same year.

The patent in the suit, US Patent #6,920,619 named "User interface for removing an object from a display," was issued by the US Patent & Trademark Office in 2005. According to the lawsuit, Milekic formed FlatWorld Interactives in 2007 to "promote and commercialize" his invention. Curiously, FlatWorld was incorporated on January 2007, just weeks after Apple announced the original iPhone at Macworld Expo. In July 2007, just after Apple shipped the original iPhone, FlatWorld filed a reissue request for the patent, which appears to have been done in order to modify some of the patent's dependent claims.

EU

Submission + - YouTube ordered to remove videos, filter future uploads by German court (www.dw.de)

suraj.sun writes: YouTube was told by a regional court in Hamburg on Friday not to display seven out of 12 contested clips without permission from the German copyright fee collecting society Gema. Gema claimed that its members were losing money every time their music was being displayed on YouTube. A proper licensing fee between the two sides expired in 2009. The Hamburg State Court ruled YouTube would in future have to install an efficient mechanism to filter out such content uploaded by users or face a fine of up to 250,000 euros ($330,000) for each case, or up to six months imprisonment. Knowing that a foolproof filter system looks next to impossible, Gema is now hoping that Google will finally agree to a new bilateral licensing treaty whereby the collecting society would not get an annual lump sum for the contested videos, but a fixed fee each time copyright-protected videos are watched.
The Internet

Submission + - Google shutting out rivals, claims Russian search engine Yandex (guardian.co.uk)

suraj.sun writes: Ilya Segalovich, co-founder of Russia's leading search engine, Yandex, has accused Google of abusing its dominance to shut out competitors in cyberspace. Responding to comments made to the Guardian by Sergey Brin, the Google co-founder, about threats to the open internet, Ilya Segalovich described the US search giant's popular smartphone platform, Android, as a "strange combination of openness and not openness" and its Chrome web browser as anti-competitive. Segalovich said that Brin should explain Google's "semi-open" approach to search competitors before accusing others of endangering the unfettered internet, and suggested Google was guilty of foul play with its Chrome browser, which picks the company's own search engine as default for users, rather than offering a choice between rivals including Yahoo, Bing and Yandex. He added: "One of the things about Android which is especially bad for us is if you have the Market [app store] it's the only way to get advanced apps to work But the new remit on Android 4 is if you have this smart kit you have to have search of Google on top of the screen, it's a part of the contract. I don't think it's good. I think it's bad."
Privacy

Submission + - Anonymous and People's Lib. Front builds its own Pastebin-like site AnonPaste.tk (arstechnica.com)

suraj.sun writes: Hacker group Anonymous and the People's Liberation Front have created a data-sharing site called AnonPaste.tk, meant to host pastes of code and other messages without any moderation or censorship of the information posted. The new site, which uses a free .tk web address, allows users to set a time for the paste to expire. It claims that data is encrypted and decrypted in the browser using 256 bit AES, so the server doesn't see any of the information included in the paste.The site says it's taking donations in the form of WePay or BitCoins.

AnonPaste is built using open-source software called ZeroBin, created by French developer Sebastien Sauvage. According to Infoweek Sauvage has experience in creating online authentication systems for French banks, suggesting the creator knows a thing or two about encryption of data. Still, on the software's information page, Sauvage reminds potential users that ZeroBin software can not protect against potential Javascript attacks. "Users still have to trust the server regarding the respect of their privacy," he says. "ZeroBin won't protect the users against malicious servers."

Cellphones

Submission + - Federal court allows class-action suit against Apple over in-app purchases (theregister.co.uk)

suraj.sun writes: An iPhone-owner whose daughter downloaded $200 worth of "Zombie Toxin" and "Gems" through in-app purchases on his iPhone has been allowed to pursue a class action suit against Apple for compensation of up to $5m. Garen Meguerian of Pennsylvania launched the class-action case against Apple in April 2011 after he discovered that his nine-year-old daughter had been draining his credit card account through in-app purchases on "free" games incluing Zombie Cafe and Treasure Story.

This month, Judge Edward J Davila in San Jose District Federal Court has allowed the case to go to trial, rejecting Apple's claim that the case should be dismissed. Meguerian claimed that Apple was unfairly targeting children by allowing games geared at kids to push them to make purchases. He describes games that are free to play but require purchases of virtual goods to progress as "bait apps" and says they should not be aimed at children.

Android

Submission + - Google's official app market found hosting malicious Android apps—again (arstechnica.com)

suraj.sun writes: As we've seen quite a few Android malware discoveries in the recent past, mostly from unofficial Android markets, from premium-rate SMS Trojan that not only automatically sends costly SMS messages, but also prevents users' carriers from notifying them of the new charges, to a massive Android malware campaign may be responsible for duping as many as 5 million users to SMS-Controlled Malware Hijacking Android Phones, ars technica is reporting yet another Android malware discovery made by McAfee researcher Carlos Castillo, this time on Google's official app market, Google Play, even after Google announced back in early February that it has started scanning Android apps for malware.

Two weeks ago, a separate set of researchers found malicious extensions in the Google Chrome Web Store that could gain complete control of users' Facebook profiles. The repeated discoveries of malware hosted on Google servers underscore the darker side of a market that allows anyone to submit apps with few questions asked. Whatever critics may say about Apple's App Store, which is significantly more selective about the titles it hosts, complaints about malware aren't one of them.

Slashdot Top Deals

If it smells it's chemistry, if it crawls it's biology, if it doesn't work it's physics.

Working...