posted 12 days ago on slashdot
Nicola Hahn (1482985) writes Kim Zetter of Wired Magazine has recently covered Dan Greer's keynote speech at Black Hat USA. In his lengthy address Greer, representing the CIA's venture funding arm, suggested that one way that the United States government could improve cyber security would be to use its unparalleled budget to buy up all the underground's zero-day vulnerabilities. While this would no doubt make zero-day vendors like VUPEN and middlemen like the Grugq very wealthy, is this strategy really a good idea? Can the public really trust the NSA to do the right thing with all those zero-day exploits? Furthermore, recall the financial meltdown of 2008 where the public paid the bill for Wall Street's greed. If the government pays for information on all these unpatched bugs would society simply be socializing the cost of hi-tech's sloppy engineering? Whose interests does this "corner-the-market" approach actually serve?

Read More...
posted 12 days ago on slashdot
mdsolar (1045926) writes with news that, with the Ebola outbreak growing out of control, the WHO has declared an international health emergency. From the article: With cases rapidly mounting in four West African countries, the World Health Organization (WHO) today declared the Ebola outbreak a Public Health Emergency of International Concern (PHEIC), a designation that allows the agency to issue recommendations for travel restrictions but also sends a strong message that more resources need to be mobilized to bring the viral disease under control. ... This is only the third time the health agency has issued a PHEIC declaration since the new International Health Regulations (IHR), a global agreement on the control of diseases, were adopted in 2005. The previous two instances were in 2009, for the H1N1 influenza pandemic, and in May for the resurgence of polio.

Read More...
posted 12 days ago on slashdot
snydeq (1272828) writes Java core has stagnated, Java EE is dead, and Spring is over, but the JVM marches on. C'mon Oracle, where are the big ideas? asks Andrew C. Oliver. 'I don't think Oracle knows how to create markets. It knows how to destroy them and create a product out of them, but it somehow failed to do that with Java. I think Java will have a long, long tail, but the days are numbered for it being anything more than a runtime and a language with a huge install base. I don't see Oracle stepping up to the plate to offer the kind of leadership that is needed. It just isn't who Oracle is. Instead, Oracle will sue some more people, do some more shortsighted and self-defeating things, then quietly fade into runtime maintainer before IBM, Red Hat, et al. pick up the slack independently. That's started to happen anyhow.'

Read More...
posted 12 days ago on slashdot
ashshy (40594) writes Red Hat CEO Jim Whitehurst likes to post "state of the union" addresses at the end of every year. Last December, he said that open source innovation is going mainstream in 2014. In an interview with The Motley Fool, Whitehurst matches up his expectations against mid-year progress. Spoiler alert: It's mostly good news.

Read More...
posted 12 days ago on slashdot
An anonymous reader writes with news that bogus BGP announcements can be used to hijack work done by cryptocurrency mining pools. Quoting El Reg: Researchers at Dell's SecureWorks Counter Threat Unit (CTU) have identified an exploit that can be used to steal cryptocurrency from mining pools — and they claim that at least one unknown miscreant has already used the technique to pilfer tens of thousands of dollars in digital cash. The heist was achieved by using bogus Border Gateway Protocol (BGP) broadcasts to hijack networks belonging to multiple large hosting companies, including Amazon, Digital Ocean, and OVH, among others. After sending the fake BGP updates miners unknowingly contributed work to the attackers' pools.

Read More...
posted 12 days ago on slashdot
KentuckyFC (1144503) writes One curious property of massless particles like photons is that their energy or momentum can take any value across many orders of magnitude, a property that physicists call scale invariance. By contrast, massive particles like electrons always have the same mass regardless of their energy or momentum. So massive particles are not scale invariant. The concept of unparticles is the idea that some "stuff" may have mass, energy and momentum and yet also be scale invariant. This stuff must be profoundly different from ordinary particles, hence the name: unparticles. Nobody has ever seen an unparticle but now physicists are suggesting that unparticles may hold the key to understanding unconventional superconductivity. Their thinking is that at very low temperatures, ordinary particles can sometimes behave like unparticles. In other words, their properties become independent of the scale at which they're observed. So if an unparticle moves without resistance on a tiny scale, then it must also move without resistance at every scale, hence the phenomenon of superconductivity. That could provide some important insights into unconventional superconductivity which has puzzled physicists since it was discovered in the 1980s.

Read More...
posted 12 days ago on slashdot
Bismillah (993337) writes Yahoo is working on an easy to use PGP interface for webmail, the company's chief information security officer Alex Stamos said at Black Hat 2014. This could lead to some interesting standoffs with governments and law enforcement wanting to read people's messages. From the article: "'We are working to design a key server architecture that allows for automatic discovery of public keys within Yahoo.com and other participating mail providers and to integrate encryption into the normal mail flow,' Stamos said."

Read More...
posted 12 days ago on slashdot
An anonymous reader writes In a paper published Thursday in Science, IBM describes its creation of a brain-like chip called TrueNorth. It has "4,096 processor cores, and it mimics one million human neurons and 256 million synapses, two of the fundamental biological building blocks that make up the human brain." What's the difference between TrueNorth and traditional processing units? Apparently, TrueNorth encodes data "as patterns of pulses". Already, TrueNorth has a proven 80% accuracy in image recognition with a power consumption efficiency rate beating traditional processing units. Don't look for brain-like chips in the open market any time soon, though. TrueNorth is part of a DARPA research effort that may or may not translate into significant changes in commercial chip architecture and function.

Read More...
posted 12 days ago on slashdot
Lucas123 writes An AMD website in China has leaked information about the upcoming release of a line of SSDs aimed at gamers and professionals that will offer top sequential read/write speeds of 550MB/s and 530MB/s, respectively. AMD confirmed the upcoming news, but no pricing was available yet. The SSDs will come in 120GB, 240GB and 480GB capacities and will use Toshiba's 19-nanometer flash lithography technology. According to IHS, AMD is likely entering the gaming SSD market because desktop SSD shipments are expected to experience a 39% CAGR between now and 2018.

Read More...
posted 12 days ago on slashdot
wiredmikey writes In a move to bolster the security of its massive global server network, Facebook announced on Thursday it was acquiring PrivateCore, a Palo Alto, California-based cybersecurity startup. PrivateCore describes that its vCage software transparently secures data in use with full memory encryption for any application, any data, anywhere on standard x86 servers. "I'm really excited that Facebook has entered into an agreement to acquire PrivateCore," Facebook security chief Joe Sullivan wrote in a post to his own Facebook page. "I believe that PrivateCore's technology and expertise will help support Facebook's mission to help make the world more open and connected, in a secure and trusted way," Sullivan said. "Over time, we plan to deploy PrivateCore's technology directly into the Facebook server stack."

Read More...
posted 12 days ago on slashdot
amkkhan writes Next time you need to go to the doctor, instead of making an appointment, why not just fire up your smartphone? New programs by companies such as Doctor on Demand and the University of Pittsburgh's AnywhereCare offer one-on-one conferencing with doctors, either over the phone or through video on your phone or computer – giving you all the medical advice you need without having to set foot in a doctor's office. This new breed of checkup, known as telemedicine, has the opportunity to revolutionize personal health, says Pat Basu, chief medical officer of Doctor on Demand and a former Stanford University physician. "Two of the most important skills we use as physicians are looking and listening," he says. "Video conferencing lets me use those skills and diagnose things like colds, coughs and even sprains in a manner more convenient for you."

Read More...
posted 12 days ago on slashdot
StartsWithABang writes Just over a century ago, N rays were detected by over a hundred researchers and discussed in some three hundred publications, yet there were serious experimental flaws and experimenter biases that were exposed over time. Fast forward to last week, and NASA Tests Microwave Space Drive is front page news. But a quick analysis shows that it isn't theorists who'll need to struggle to explain this phenomenon, but rather the shoddy experimentalists who are making the exact same "bad science" mistakes all over again.

Read More...
posted 12 days ago on slashdot
itwbennett writes China is tightening control over mobile messaging services with new rules that limit their role in spreading news. Under the new regulations, only news agencies and other groups with official approval can publish whatever the government considers political news via public accounts. "All other public accounts that have not been approved cannot release or reprint political news," the regulations said. Users of the instant messaging services will also have to register with their official IDs, and agree to follow relevant laws.

Read More...
posted 12 days ago on slashdot
An anonymous reader writes "Google today released a preview SDK of Google Fit available to developers. The tool provides APIs for apps and device manufacturers to store and access activity data from fitness apps and sensors on Android and other devices (like wearables, heart rate monitors or connected scales). Google warns that the preview release contains the Google Fit APIs for Android, but does not contain the REST API or the Android Wear APIs, which will be included in the official release. Furthermore, while it will let you develop and test fitness apps, they cannot be published to Google Play until official release."

Read More...
posted 12 days ago on slashdot
MojoKid (1002251) writes News and rumors about Valve's upcoming Source 2 engine have been buzzing for months, but a recent update to DOTA 2 contains the most persuasive evidence yet that a major engine is in the works. After the last patch, the game now contains a number of programmed default paths, directories, and file names that didn't previously exist. Source-related DLLs and executables (engine.dll, vconsole.dll) have been updated to "engine2.dll" and vconsole2.dll." The tileset editor has a default Source path. There's also now an option to save files as "Source 1.0 Map Files" where no previous option existed. Here's the funny thing — while most people think of a game screenshot as the best evidence you can buy, low-level file directories, default trees, and changed application behavior is actually more persuasive. Source 1.0 was never updated to support DX11 or OpenGL 4.x, and while the engine can still be used for impressive titles, its DX9 limitations and ancient modding tools are showing their age. It's time to bring the game engine into the modern world, and hopefully these DOTA 2 updates mean that Valve is moving closer to that goal.

Read More...
posted 12 days ago on slashdot
An anonymous reader writes "The battle over Comcast's public WiFi network that is hosted on your cable modem continues. Comcast responded to Speedify's earlier power measurements by rushing them a new Cisco cable modem. The new modem proved to be more power hungry than the last, and also introduced some tricky IPv6 problems that caused major headaches for the team."

Read More...
posted 12 days ago on slashdot
First time accepted submitter PotatoHead (12771) writes "This is a big win for Open Hardware Proponents! The Parallax Propeller Microcontroller VERILOG code was released today, and it's complete! Everything you need to run Open Code on an Open CPU design. This matters because you can now build a device that is open hardware, open code all the way down to the CPU level! Either use a product CPU, and have access to it's source code to understand what and how it does things, or load that CPU onto a suitable FPGA and modify it or combine it with your design."

Read More...
posted 12 days ago on slashdot
New submitter Fotis Georgatos (3006465) writes I recently engaged in a conversation about handling PDF texts for a range of needs, such as creation, manipulation, merging, text extraction and searching, digital signing etc etc. A couple of potential picks popped up (PDFBox, itext), given some Java experience of the other fellows. And then comes the reality of choosing software as a long term knowledge investment! ideally, we would like to combine these features: open source, with a community following ; the kind of stuff Slashdotters would prefer tidy software architecture; simple things should remain simpleallow open API allowing usage across many languages (say: Python & Java)clear licensing status, not estranging future commercial useserious multilingual & font supportPDF-handling rich features, not limiting usage for invoicing, e-commerce, reports & data miningdigital signing should not go against other features I'd like to poll the collective Slashdot crowd wisdom about if/which PDF related libraries, they have written software with, keeps them happy for *all* the above reasons. And if not happy with that all, what do they thing is the best bet for learning one piece of software in the area, with great reusability across different circumstances and little need for extra hacks? I'd really like to hear the smoked out war stories. It is easy to obtain a list of such libraries, yet tricky to understand whethe people have obtained success with them!

Read More...
posted 12 days ago on slashdot
OpenSignal, by means of mobile apps for iOS and Android, has been amassing data on Wi-Fi and cell-network signal strength. They released yesterday a few of their findings on the speed of Wi-Fi available at U.S. chain hotels (download speeds, specifically). Though it shouldn't be surprising that (as their data shows) more expensive hotels generally have faster speeds, I know it hasn't always matched my own experience. (Hotel chains also vary, even within brands, in whether the in-room Wi-Fi is free, cheap, or exorbitant.) If the in-room connection is flaky or expensive, though, from the same report it seems you'll do better by popping into a Google-networked Starbucks location than one fed by AT&T, and McDonalds beats Panera Bread by quite a bit.

Read More...
posted 13 days ago on slashdot
itwbennett writes Some security researchers on Wednesday said it's still unclear just how serious Hold Security's discovery of a massive database of stolen credentials really is. "The only way we can know if this is a big deal is if we know what the information is and where it came from," said Chester Wisniewski, a senior security advisor at Sophos. "But I can't answer that because the people who disclosed this decided they want to make money off of this. There's no way for others to verify." Wisniewski was referring to an offer by Hold Security to notify website operators if they were affected, but only if they sign up for its breach notification service, which starts at $120 per year."

Read More...
posted 13 days ago on slashdot
SiggyRadiation writes Edward Snowden is allowed to stay in Russia for three more years. According to the NYPost:"His lawyer, Analtoly Kucherena, was quoted by Russian news agencies on Thursday as saying Snowden now has been granted residency for three more years, but that he had not been granted political asylum. That status, which would allow him to stay in Russia permanently, must be decided by a separate procedure, Kucherena said, but didn't say whether Snowden is seeking it." The question that remains, of course, is did the Russians use this as leverage over him to get to more information or influence him? Or is the positive PR in itself enough for the Russians in the current climate of tensions and economic sanctions relating to the Ukraine crisis?"

Read More...
posted 13 days ago on slashdot
mrspoonsi writes Apple and Samsung have agreed to withdraw all legal cases against each other outside the United States. The two rivals have sued each other over a range of patent disputes in nine countries outside the US, including the UK, South Korea, Japan and Germany. A joint statement said the agreement "does not involve any licensing arrangements", and they would continue to pursue existing cases in US courts. The two firms are the biggest players in the smartphone and tablet PC market. But they have been involved in a bitter legal battle, spread across various countries, which has escalated in recent years.

Read More...
posted 13 days ago on slashdot
stephendavion writes A legal scholar says he and colleagues have developed an algorithm that can predict, with 70 percent accuracy, whether the US Supreme Court will uphold or reverse the lower-court decision before it. "Using only data available prior to the date of decision, our model correctly identifies 69.7 percent of the Court's overall affirm and reverse decisions and correctly forecasts 70.9% of the votes of individual justices across 7,700 cases and more than 68,000 justice votes," Josh Blackman, a South Texas College of Law scholar, wrote on his blog Tuesday.

Read More...
posted 13 days ago on slashdot
sciencehabit writes You can credit your existence to tiny wormlike creatures that lived 500 million years ago, a new study suggests. By tunneling through the sea floor, scientists say, these creatures kept oxygen concentrations at just the right level to allow animals and other complex life to evolve. The finding may help answer an enduring mystery of Earth's past. The idea is that as they dug and wiggled, these early multicellular creatures—some were likely worms as long as 40 cm—exposed new layers of seafloor sediment to the ocean's water. Each new batch of sediment that settles onto the sea floor contains bacteria; as those bacteria were exposed to the oxygen in the water, they began storing a chemical called phosphate in their cells. So as the creatures churned up more sediment layers, more phosphate built up in ocean sediments and less was found in seawater. Because algae and other photosynthetic ocean life require phosphate to grow, removing phosphate from seawater reduced their growth. Less photosynthesis, in turn, meant less oxygen released into the ocean. In this way, the system formed a negative feedback loop that automatically slowed the rise in oxygen levels as the levels increased.

Read More...
posted 13 days ago on slashdot
lurker412 writes Yesterday, and without previous warning, all Mac users running Leopard or earlier versions of OS-X have been locked out of Skype. Those customers are given instructions to update, but following them does not solve the problem. The Skype Community Forum is currently swamped with complaints. A company representative active on the forum said "Unfortunately we don't currently have a build that OS X Leopard (10.5) users could use" but did not answer the question whether they intend to provide one or not.

Read More...