Slashdot

Subscribe to Slashdot feed Slashdot
News for nerds, stuff that matters
Updated: 25 min 29 sec ago

Hackers Hijack DNS For Lumens Cryptocurrency Site 'BlackWallet', Steal $400,000

Sun, 01/14/2018 - 21:39
An anonymous reader quotes BleepingComputer: Unknown hackers (or hacker) have hijacked the DNS server for BlackWallet.co, a web-based wallet application for the Stellar Lumen cryptocurrency (XLM), and have stolen over $400,000 from users' accounts. The attack happened late Saturday afternoon (UTC timezone), January 13, when the attackers hijacked the DNS entry of the BlackWallet.co domain and redirected it to their own server. "The DNS hijack of Blackwallet injected code," said Kevin Beaumont, a security researcher who analyzed the code before the BlackWallet team regained access over their domain and took down the site. "If you had over 20 Lumens it pushes them to a different wallet," Beaumont added... According to Bleeping Computer's calculations, as of writing, the attacker collected 669,920 Lumens, which is about $400,192 at the current XML/USD exchange rate. The BlackWallet team and other XLM owners have tried to warn users via alerts on Reddit, Twitter, GitHub, the Stellar Community and GalacticTalk forums, but to no avail, as users continued to log into the rogue BlackWallet.co domain, enter their credentials, and then see funds mysteriously vanish from their wallets.

Read more of this story at Slashdot.

20 Years Later, Has Open Source Changed the World?

Sun, 01/14/2018 - 19:39
"Most code remains closed and proprietary, even though open source now dominates enterprise platforms," notes Matt Asay, former COO at Canonical (and an emeritus board member of the Open Source Initiative). "How can that be?" he asks, in an essay noting it's been almost 20 years since the launch of the Open Source Initiative, arguing that so far open source "hasn't changed the world as promised." [T]he reason most software remains locked up within the four walls of enterprise firewalls is that it's too costly with too small of an ROI to justify open-sourcing it. At least, that's the perception. Such a perception is impossible to break without walking the open source path, which companies are unwilling to walk without upfront proof. See the problem? This chicken-and-egg conundrum is starting to resolve itself, thanks to the forward-looking efforts of Google, Facebook, Amazon, and other web giants that are demonstrating the value of open-sourcing code. Although it's unlikely that a State Farm or Chevron will ever participate in the same way as a Microsoft, we are starting to see companies like Bloomberg and Capital One get involved in open source in ways they never would have considered back when the term "open source" was coined in 1997, much less in 2007. It's a start. Let's also not forget that although we have seen companies use more open source code over the past 20 years, the biggest win for open source since its inception is how it has changed the narrative of how innovation happens in software. We're starting to believe, and for good reason, that the best, most innovative software is open source. The article strikes a hopeful note. "We're now comfortable with the idea that software can, and maybe should, be open source without the world ending. The actual opening of that source, however, is something to tackle in the next 20 years.

Read more of this story at Slashdot.

VMware Bug Allowed Root Access

Sun, 01/14/2018 - 18:39
c4231 quotes Ars Technica: While everyone was screaming about Meltdown and Spectre, another urgent security fix was already in progress for many corporate data centers and cloud providers who use products from Dell's EMC and VMware units. A trio of critical, newly reported vulnerabilities in EMC and VMware backup and recovery tools -- EMC Avamar, EMC NetWorker, EMC Integrated Data Protection Appliance, and vSphere Data Protection -- could allow an attacker to gain root access to the systems or to specific files, or inject malicious files into the server's file system. These problems can only be fixed with upgrades. While the EMC vulnerabilities were announced late last year, VMware only became aware of its vulnerability last week.

Read more of this story at Slashdot.

How Millions of Iranians Are Evading Internet Censors

Sun, 01/14/2018 - 17:39
schwit1 quotes the Wall Street Journal: Authorities in Tehran have ratcheted up their policing of the internet in the past week and a half, part of an attempt to stamp out the most far-reaching protests in Iran since 2009. But the crackdown is driving millions of Iranians to tech tools that can help them evade censors, according to activists and developers of the tools. Some of the tools were attracting three or four times more unique users a day than they were before the internet crackdown, potentially weakening government efforts to control access to information online. "By the time they wake up, the government will have lost control of the internet," said Mehdi Yahyanejad, executive director of NetFreedom Pioneers, a California-based technology nonprofit that largely focuses on Iran and develops educational and freedom of information tools. Wired calls it "the biggest protest movement in Iran since the 2009 Green Movement uprising," criticing tech companies which "continue to deny services to Iranians that could be crucial to free and open communications."

Read more of this story at Slashdot.

Japan's Latest Sensation is a Cryptocurrency Pop Group

Sun, 01/14/2018 - 16:39
An anonymous reader quotes Engadget: If you're starting a pop group in Japan, where giant rosters and virtual superstars are par for the course, how do you stand out? By tying yourself to something trendy -- and in 2018, that means cryptocurrency. Meet Kasotsuka Shojo (Virtual Currency Girls), a J-pop group where each of the eight girls represents one of the larger digital monetary formats. Yes, you're supposed to cheer for bitcoin or swoon over ethereum (what, no litecoin?). The group played its first concert on January 12th, and naturally you had to pay in cryptocurrency to be one of the few members of the general public to get in. The group's first single, "The Moon and Virtual Currencies and Me," warns listeners about the perils of fraud and extols the virtues of good online security. "It isn't clear how French maid outfits symbolize cryptocurrency or blockchain technology," notes Quartz, "but they're popular costumes in Japan's anime and cosplay circles."

Read more of this story at Slashdot.

Calls to Action on the Fifth Anniversary of the Death of Aaron Swartz

Sun, 01/14/2018 - 15:39
On the fifth anniversary of the death of Aaron Swartz, EFF activist Elliot Harmon posted a remembrance: When you look around the digital rights community, it's easy to find Aaron's fingerprints all over it. He and his organization Demand Progress worked closely with EFF to stop SOPA. Long before that, he played key roles in the development of RSS, RDF, and Creative Commons. He railed hard against the idea of government-funded scientific research being unavailable to the public, and his passion continues to motivate the open access community. Aaron inspired Lawrence Lessig to fight corruption in politics, eventually fueling Lessig's White House run... It's tempting to become pessimistic in the face of countless threats to free speech and privacy. But the story of the SOPA protests demonstrates that we can win in the face of seemingly insurmountable odds. He shares a link to a video of Aaron's most inspiring talk, "How We Stopped SOPA," writing that "Aaron warned that SOPA wouldn't be the last time Hollywood attempted to use copyright law as an excuse to censor the Internet... 'The enemies of the freedom to connect have not disappeared... We won this fight because everyone made themselves the hero of their own story. Everyone took it as their job to save this crucial freedom. They threw themselves into it. They did whatever they could think of to do.'" On the anniversary of Aaron's death, his brother Ben Swartz, an engineer at Twitch, wrote about his own efforts to effect change in ways that would've made Aaron proud, while Aaron's mother urged calls to Congress to continue pushing for reform to the Computer Fraud and Abuse Act. And there were countless other remembrances on Twitter, including one fro Cory Doctorow, who tweeted a link to Lawrence Lessig's analysis of the prosecution. And Lessig himself marked the anniversary with several posts on Twitter. "None should rest," reads one, "for still, there is no peace."

Read more of this story at Slashdot.

Text Message Scammer Gets Five Years in Prison

Sun, 01/14/2018 - 14:34
36-year-old Fraser Thompson is going to prison, according to Reuters, after receiving a five-year sentence for "defrauding" cellphone customers out of millions of dollars. An anonymous reader quotes Reuters: Prosecutors said Thompson engaged in a scheme to sign up hundreds of thousands of cellphone customers for paid text messaging services without their consent. The customers were subsequently forced to pay more than $100 million for unsolicited text messages that included trivia, horoscopes and celebrity gossip, according to the prosecutors. They said the scheme was headed by Darcy Wedd, Mobile Messenger's former chief executive, who was found guilty by a jury in December but has not yet been sentenced. "They ripped off everyday cellphone users, $10 a month, netting over $100 million in illegal profits, of which Thompson personally received over $1.5 million," Manhattan U.S. Attorney Geoffrey S. Berman said in a statement. Thompson was ordered to forfeit $1.5 million in "fraud proceeds," according to the article, and was convicted of conspiracy, wire fraud, identity theft and money laundering. Seven other people also pleaded guilty to participating in the scam -- and one has already been sentenced to 33 months in prison.

Read more of this story at Slashdot.

Russian Military Base Attacked By Drones

Sun, 01/14/2018 - 13:34
A Russian military base in Syria was recently attacked -- 20 miles from the frontline. The only video of the attack is from a Facebook group for a nearby town, which identifies the noises as an "anti-aircraft response to a remote-controlled aircraft," while the Russian Ministry of Defence claims at least 13 drones were involved in the attack, displaying pictures of drones with a wingspan around 13 feet (four meters). Long-time Slashdot reader 0x2A shares a report from a former British Army officer who calls drones "the poor man's Air Force," who writes that the attack shows "a strategic grasp of the use of drones, as well as a high level of planning." The lack of cameras on the drones suggest that they are likely pre-loaded with a flight plan and then flown autonomously to their target, where they dropped their payload en masse on a given GPS coordinate... The lack of any kind of claim, or even rumours from the rebels, indicates that whoever is producing these drone and launching these attacks has a high level of discipline and an understanding of operational and personal security... Although some regard the threat from commerical off-the-shelf and improvised drones as negligible, they have the power to inflict losses at both a tactical and strategic level... Although the plastic sheeting, tape and simple design may belie the illusion of sophistication, it seems that the use of drones, whether military, commerical off-the-shelf or improvised, is taking another step to becoming the future of conflict. The article notes there's already been four weaponized drone attacks in Syria over the last two weeks, which according to CNBC may be part of a growing trend. "Experts said swarm-like attacks using weaponized drones is a growing threat and likely to only get worse. They also said the possibility exists of terrorists using these drones in urban areas against civilians."

Read more of this story at Slashdot.

Following Other Credit Cards, Visa Will Also Stop Requiring Signatures

Sun, 01/14/2018 - 12:34
An anonymous reader quotes SiliconBeat: Visa, the largest U.S. credit card issuer, became the last of the major credit card companies to announce its plan to make signatures optional... Visa joined American Express, Discover, and Mastercard in the phase-out. Mastercard was the first one to announce the move in October, and American Express and Discover followed suit in December... However, this change does not apply to every credit card in circulation; older credit cards without EMV chips will still require signatures for authentication... Since 2011, Visa has deployed more than 460 million EMV chip cards and EMV chip-enabled readers at more than 2.5 million locations. "Businesses that accepted EMV cards reported a 66 percent decline in fraud in the first two years of EMV deployment," the article notes -- suggesting a future where fewer shoppers are signing their receipts. "In Canada, Australia and most of Europe, credit cards have long abandoned the signature for the EMV chip and a PIN to authenticate the transaction, like one does with a debit card."

Read more of this story at Slashdot.

Is There a Warning in 'Philip K. Dick's Electric Dreams'?

Sun, 01/14/2018 - 11:34
An anonymous reader quotes io9: That signature feeling feeling of queasy, slow-burning tumult comes through in Philip K. Dick's Electric Dreams, which originally aired in the UK last September, but is making its American premiere on Amazon Prime this Friday, January 12. The breadth of interpretations across the show's 10 episodes is the real draw for Electric Dreams. One episode will be set in something meant to recognizably stand in for the real world while others are trippy explorations into realities that could never exist. Unfortunately, Electric Dreams' episodes don't just vary in aesthetics; they vary wildly in quality, too... When Electric Dreams fires on all cylinders, it energizes these short story adaptations by drilling down into the minutiae of how science fiction concepts would alter our everyday existences in real life. The series' common theme is how scientific and technological advancement shears the soul away from our bodies...Electric Dreams' most important task is to show both new viewers and conversant fans why Dick's oeuvre matters, which is hard in a world where we're eerily close to some of his fictional realities... We're so busy trying to ground ourselves amid constant change that it can be hard to pull out and see society's sweeping shifts. In the '50s and beyond, Dick's science fiction writing mapped out the darker corners of where hi-speed techno-fetishes could take us. For all its unevenness, Electric Dreams adapts his work to show us where we are, relative to his prognostications. If you feel weirded out while watching, that just means the show is doing its job.

Read more of this story at Slashdot.

The Linux Kernel Mailing List is Down

Sun, 01/14/2018 - 10:48
Every page on LKML.org is currently displaying this error message along with a picture of Flits the cat. What started out as a power outage while I was on vacation (leading to the computer hosting the backend of this site being unable to boot) became a larger issue as the mainboard in that computer appears to be broken. Not wanting to let you wait for a spare part to arrive, I'm currently (while being assisted by our cat Flits) busy copying over all data to a VPS, and getting things working from there. The rsync is progressing slowly, having copied over the first 50% in three hours (at 14:30 CET). Please check back later for status updates.

Read more of this story at Slashdot.

Scientists Think They've Discovered Lava Tubes Leading To the Moon's Polar Ice

Sun, 01/14/2018 - 10:34
schwit1 quotes ScienceAlert: Small pits in a large crater on the Moon's North Pole could be "skylights" leading down to an underground network of lava tubes -- tubes holding hidden water on Earth's nearest neighbour, according to new research. There's no lava in them now of course, though that's originally how the tubes formed in the Moon's fiery past. But they could indicate easy access to a water source if we ever decide to develop a Moon base sometime in the future. Despite the Moon's dry and dusty appearance, scientists think it contains a lot of water trapped as frozen ice. What these new observations carried out by NASA's Lunar Reconnaissance Orbiter (LRO) show is that it might be much more accessible than we thought... Scientists have long been thinking about how to extract the ice reserves we think are up there -- solar power was originally out of the question, as it's the freezing shadowed areas of the Moon that have preserved the ice in the first place. Not only would natural skylights like these provide easier access to the underground ice, it would also mean solar power would be back on the table as an idea.

Read more of this story at Slashdot.

Chelsea Manning Files to Run for U.S. Senate in Maryland

Sun, 01/14/2018 - 09:34
An anonymous reader quotes the Washington Post: Chelsea E. Manning, the transgender former Army private who was convicted of passing sensitive government documents to WikiLeaks, is seeking to run for the U.S. Senate in Maryland, according to federal election filings. Manning would be challenging Democrat Benjamin L. Cardin, who is in his second term in the Senate and is up for reelection in November. Cardin is Maryland's senior senator and is considered an overwhelming favorite to win a third term... However, a candidate with national name recognition, such as Manning, who comes in from the outside could tap a network of donors interested in elevating a progressive agenda... Evan Greer, campaign director of the nonprofit organization Fight for the Future and a close supporter of Manning's while she was imprisoned, said the news is exciting. "Chelsea Manning has fought for freedom and sacrificed for it in ways that few others have," Greer wrote in an email. "The world is a better place with her as a free woman, and this latest news makes it clear she is only beginning to make her mark on it."

Read more of this story at Slashdot.

Ask Slashdot: Is There a Useful Voice-Activated PC?

Sun, 01/14/2018 - 07:34
An anonymous reader writes: My elderly monther-in-law misses her computer. Her mind is okay, but she cannot use a computer because of her Parkinson's disease. I am not all that impressed with Amazon Echo. Seems you can ask the Echo for the time of day, or the weather outside, but it will not do anything useful -- like send an email. A voice controlled PC would be great, even if it only did a few simple tasks. The original submission ends with a question: "Is there such a thing?" So leave your best thoughts and suggestions in the comments. Is there a useful voice-activated PC?

Read more of this story at Slashdot.

Kansas 'Swat' Perpetrator Charged; Faces 11 More Years in Prison

Sun, 01/14/2018 - 03:29
Jail-time looms for 25-year-old Tyler Barriss, whose fake call to Kansas police led to a fatal shooting: Barriss "was in a Wichita jail on Saturday," Reuters reported, and even his first court appearance Friday was a video appearance from jail. Barriss was charged with involuntary manslaughter, and if convicted "could face up to 11 years and three months in prison." He was also charged with making a false alarm, which is considered a felony. The District Attorney adds that others have also been identified as "potential suspects" in the case, but they're still deciding whether to charge them. Barriss' bond has been set at $500,000. Friday Barriss gave his first interview to a local news outlet -- from jail. "Of course, you know, I feel a little of remorse for what happened," he tells KWCH. "I never intended for anyone to get shot and killed. I don't think during any attempted swatting anyone's intentions are for someone to get shot and killed..." Asked about the call, Barriss acknowledged that "It hasn't just affected my life, it's affected someone's family too. Someone lost their life. I understand the magnitude of what happened. It's not just affecting me because I'm sitting in jail. I know who it has affected. I understand all of that." Barriss has also been charged in Calgary with public mischief, fraud and mischief for another false phone call, police said, though it's unlikely he'll ever be arrested unless he enters the country. Just six days before the fatal shooting, Barriss had made a nearly identical call to police officers in Canada, this time supplying the address of a well-known video gamer who livestreams on Twitch, and according to one eyewitness more than 20 police cars surrounded her apartment building for at least half an hour.

Read more of this story at Slashdot.

Warren Buffett Predicts 'Bad Ending' for Cryptocurrencies

Sat, 01/13/2018 - 23:24
"97% of all bitcoins are held by 4% of addresses," reports Credit Suisse (in an article cited by Slashdot reader CaptainDork). And elsewhere this week, Warren Buffett told CNBC that speculation in bitcoin and other cryptocurrencies "will have a bad ending," adding that looking out five years he'd gladly bet against all of the cryptocurrencies. Meanwhile, CNBC senior analyst Ron Insana has his own skepticism: I am predisposed to view them as just speculative tokens in a cryptocurrency bubble that has inflated more quickly than any other in financial market history. Admittedly I'm green with envy for failing to foresee the explosive rally in the price of bitcoin when it was first brought to my attention several years ago. Having said that, there are many things I find quite ironic about how bitcoin and other "cryptos" are described. First, they are largely denominated, or discussed, in U.S. dollar terms... If the dollar is archaic, as the crypto-enthusiasts believe, why not speak only in crypto-terms...? It's much easier to buy and sell dollars, stocks or commodities than it is to trade bitcoin and its brethren. The conversion of one crypto to another is relatively easy on these embryonic exchanges. But getting your digital wealth converted into cold hard cash is more problematic... And while the growth has been impressive, it remains very difficult to walk into any establishment and exchange a digital token for goods or services. The article notes that the U.S. dollar still accounts for 65% of all global economic transactions, due to its status as the world's reserve currency, and concludes that "The adoption of cryptocurrencies as a global source of funds has a long way to go before staking a claim to the world's economy."

Read more of this story at Slashdot.

Fake 'Inbound Missile' Alert Sent To Every Cellphone in Hawaii

Sat, 01/13/2018 - 21:19
"Somebody sent out a false emergency alert to all cell phones in Hawaii saying, 'BALLISTIC MISSILE THREAT INBOUND TO HAWAII. SEEK IMMEDIATE SHELTER. THIS IS NOT A DRILL'," writes Slashdot reader flopwich, adding "Somebody's had better days at work." The Associated Press reports: In a conciliatory news conference later in the day, Hawaii officials apologized for the mistake and vowed to ensure it will never happen again. Hawaii Emergency Management Agency Administrator Vern Miyagi said the error happened when someone hit the wrong button. "We made a mistake," said Miyagi. For nearly 40 minutes, it seemed like the world was about to end in Hawaii, an island paradise already jittery over the threat of nuclear-tipped missiles from North Korea... On the H-3, a major highway north of Honolulu, vehicles sat empty after drivers left them to run to a nearby tunnel after the alert showed up, the Honolulu Star-Advertiser reported. Workers at a golf club huddled in a kitchen fearing the worst... The Hawaii Emergency Management Agency tweeted there was no threat about 10 minutes after the initial alert, but that didn't reach people who aren't on the social media platform. A revised alert informing of the "false alarm" didn't reach cellphones until 38 minutes later, according to the time stamp on images people shared on social media.

Read more of this story at Slashdot.

Is Finland's Universal Basic Income Trial Too Good To Be True?

Sat, 01/13/2018 - 19:14
It was one year ago that Finland began giving money to 2,000 unemployed people -- roughly $652 a month (€560 or £475). But have we learned anything about universal basic incomes? An anonymous reader quotes the Guardian: Amid this unprecedented media attention, the experts who devised the scheme are concerned it is being misrepresented. "It's not really what people are portraying it as," said Markus Kanerva, an applied social and behavioural sciences specialist working in the prime minister's office in Helsinki. "A full-scale universal income trial would need to study different target groups, not just the unemployed. It would have to test different basic income levels, look at local factors. This is really about seeing how a basic unconditional income affects the employment of unemployed people." While UBI tends often to be associated with progressive politics, Finland's trial was launched -- at a cost of around €20m (£17.7m or $24.3 million) -- by a centre-right, austerity-focused government interested primarily in spending less on social security and bringing down Finland's stubborn 8%-plus unemployment rate. It has a very clear purpose: to see whether an unconditional income might incentivise people to take up paid work. Authorities believe it will shed light on whether unemployed Finns, as experts believe, are put off taking up a job by the fear that a higher marginal tax rate may leave them worse off. Many are also deterred by having to reapply for benefits after every casual or short-term contract... According to Kanerva, the core data the government is seeking -- on whether, and how, the job take-up of the 2,000 unemployed people in the trial differs from a 175,000-strong control group -- will be "robust, and usable in future economic modelling" when it is published in 2019. Although the experiment may be impacted by all the hype it's generating, according to the Guardian. "One participant who hoped to start his own business with the help of the unconditional monthly payment complained that, after speaking to 140 TV crews and reporters from as far afield as Japan and Korea, he has simply not been able to find the time."

Read more of this story at Slashdot.

'Science Fiction Writers of America' Accuse Internet Archive of Piracy

Sat, 01/13/2018 - 18:09
An anonymous reader writes: The "Open Library" project of the nonprofit Internet Archive has been scanning books and offering "loans" of DRM-protected versions for e-readers (which expire after the loan period expires). This week the Legal Affairs Committe of the Science Fiction Writers of America issued a new "Infringement Alert" on the practice, complaining that "an unreadable copy of the book is saved on users' devices...and can be made readable by stripping DRM protection." The objection, argues SFWA President Cat Rambo, is that "writers' work is being scanned in and put up for access without notifying them... it is up to the individual writer whether or not their work should be made available in this way." But the infringement alert takes the criticism even further. "We suspect that this is the world's largest ongoing project of unremunerated digital distribution of entire in-copyright books." The Digital Reader blog points out one great irony. "The program initially launched in 2007. It has been running for ten years, and the SFWA only just now noticed." They add that SFWA's tardiness "leaves critical legal issues unresolved." "Remember, Google won the Google Books case, and had its scanning activities legalized as fair use ex post facto... [I]n fact the Internet Archive has a stronger case than Google did; the latter had a commercial interest in its scans, while the Internet Archive is a non-profit out to serve the public good."

Read more of this story at Slashdot.

Japanese Console Market Grows For the First Time In 11 Years

Sat, 01/13/2018 - 17:04
According to Famitsu, hardware sales in Japan experienced a huge spike in 2017 compared to the previous year. In 2016, Japanese hardware sales were 117.05 billion yen ($1.05 billion), while in 2017, they jumped to 202.37 billion yen ($1.81 billion). Kotaku reports: Software sales also increased: in 2016, they were 182.4 billion yen ($1.63 billion) and the following year, they were 189.3 billion yen ($1.69 billion). A big part of this increase is due to the Nintendo Switch's brisk hardware sales. The PS4 has also continued to churn out steady numbers. The last time the Japanese gaming market saw an uptick was in 2006, when the Nintendo DS Lite, the Nintendo Wii, the PS3 launched.

Read more of this story at Slashdot.

Pages