Web
Analytics Made Easy - StatCounter

SlashDot: Stories

Slashdot News for nerds, stuff that matters

  • Police Bodycams Can Be Hacked To Doctor Footage, Install Malware
    by BeauHD on August 16, 2018 at 12:03 am

    AmiMoJo shares a report from Boing Boing: Josh Mitchell's Defcon presentation analyzes the security of five popular brands of police bodycams (Vievu, Patrol Eyes, Fire Cam, Digital Ally, and CeeSc) and reveals that they are universally terrible. All the devices use predictable network addresses that can be used to remotely sense and identify the cameras when they switch on. None of the devices use code-signing. Some of the devices can form ad-hoc Wi-Fi networks to bridge in other devices, but they don't authenticate these sign-ons, so you can just connect with a laptop and start raiding the network for accessible filesystems and gank or alter videos, or just drop malware on them. Read more of this story at Slashdot. […]

  • Google Patches Chrome Bug That Lets Attackers Steal Web Secrets Via Audio Or Video HTML Tags
    by BeauHD on August 15, 2018 at 11:20 pm

    An anonymous reader writes: "Google has patched a vulnerability in the Chrome browser that allows an attacker to retrieve sensitive information from other sites via audio or video HTML tags," reports Bleeping Computer. The attack breaks CORS -- Cross-Origin Resource Sharing, a browser security feature that prevents sites from loading resources from other websites -- and will attempt to load resources (some of which can reveal information about users) inside audio and video HTML tags. During tests, a researcher retrieved age and gender information from Facebook users, but another researcher says the bug can be also used to retrieve data from corporate backends or private APIs. Ron Masas, a security researcher with Imperva, first discovered and reported this issue to Google. The bug was fixed at the end of July with the release of Chrome v68.0.3440.75. Read more of this story at Slashdot. […]

  • SEC Sends Subpoena To Tesla In Probe Over Musk's Take-Private Tweets
    by BeauHD on August 15, 2018 at 10:40 pm

    The U.S. Securities and Exchange Commission sent Tesla a subpoena regarding Elon Musk's effort to take the company private, "indicating the regulatory scrutiny of his statements have reached a more serious stage," reports Bloomberg. Last week, Musk tweeted he was considering taking Tesla off the market and had "funding secured" for the deal. From the report: Musk exposed himself to legal risk by tweeting Aug. 7 that he had the funding for a buyout. Almost a week later, the chief executive officer said the basis for his statement was conversations with Saudi Arabia's Public Investment Fund, which first expressed interest in helping take the company private in early 2017. Tesla's board has since clarified that it hasn't received a formal proposal from Musk, who's also chairman, nor has it concluded whether going private would be advisable or feasible. Tesla may face potential regulatory challenges beyond the SEC investigation. The company probably will need approval of U.S. national security officials if Saudi Arabia finances the effort to take the company private, and President Donald Trump's administration has been stepping up scrutiny of foreign investment in American technology. Read more of this story at Slashdot. […]

  • Investor Sues AT&T Over Two-Factor Security Flaws, $23 Million Cryptocurrency Theft
    by BeauHD on August 15, 2018 at 10:00 pm

    An anonymous reader quotes a report from Fast Company: Crypto investor Michael Terpin filed a $224 million lawsuit against AT&T in California federal court Wednesday alleging that the phone company's negligence let hackers steal nearly $24 million in cryptocurrency from him, Reuters reports. He's also seeking punitive damages. Terpin says hackers were twice able to convince AT&T to connect his phone number to a SIM card they controlled, routing his calls and messages to them and enabling them to defeat two-factor authentication protections on his accounts. In one case, he says hackers also took control of his Skype account and convinced one of this clients to send money to them rather than Terpin. The second hack came even after AT&T agreed to put an additional passcode on his account, when a fraudster visited an AT&T store in Connecticut and managed to hijack Terpin's account without providing the code or a "scannable ID" as AT&T requires, he says. Read more of this story at Slashdot. […]

  • The Next Flagship iPhone Will Support Apple Pencil and 512GB Flash Storage, Says Report
    by BeauHD on August 15, 2018 at 9:20 pm

    Next month, Apple is expected to unveil three new iPhones, each with differing specs/features. According to analyst firm Trendforce, the large 6.5-inch "flagship" model will support up to 512GB of onboard flash storage. Apple Pencil support will also be "offered as an option," although the company didn't specify which models will support the stylus. Apple Insider reports: The company expects that the the 6.1-inch LCD version will come with Face ID, Dual-SIM technology. The firm expects it to retail for between $699 and $749. The 5.8-inch OLED iPhone will be priced at $899 to $949. The 6.5-inch device will come in storage capacities up to 512GB, with one variant of the size potentially having dual-SIM support and expected to be "limited within $1,000 threshold as to encourage purchasing from consumers," according to Trendforce. Both the 5.8- and 6.5-inch OLED models are expected to have 4GB of RAM. The 6.1-inch LED devices will have 3GB of RAM, the same as the iPhone X. The analyst firm believes that all three models are expected to ship in September and October. Read more of this story at Slashdot. […]

  • Valve Seems To Be Working On Tools To Get Windows Games Running On Linux
    by BeauHD on August 15, 2018 at 8:40 pm

    "Valve appears to be working on a set of 'compatibility tools,' called Steam Play, that would allow at least some Windows-based titles to run on Linux-based SteamOS systems," writes Kyle Orland from Ars Technica. From the report: Yesterday, Reddit users noticed that Steam's GUI files (as captured by SteamDB's Steam Tracker) include a hidden section with unused text related to the unannounced Steam Play system. According to that text, "Steam Play will automatically install compatibility tools that allow you to play games from your library that were built for other operating systems." Other unused text in the that GUI file suggests Steam Play will offer official compatibility with "supported tiles" while also letting users test compatibility for "games in your library that have not been verified with a supported compatibility tool." That latter use comes with a warning that "this may not work as expected, and can cause issues with your games, including crashes and breaking save games." Read more of this story at Slashdot. […]

  • Engineers Say They've Created Way To Detect Weapons Using Wi-Fi
    by BeauHD on August 15, 2018 at 8:00 pm

    An anonymous reader quotes a report from Gizmodo: The researchers, which include engineers from Rutgers University-New Brunswick, Indiana University-Purdue University Indianapolis (IUPUI), and Binghamton University, published a study this month detailing a method in which common wifi can be used to easily and efficiently identify weapons, bombs, and explosive chemicals in public spaces that don't typically have affordable screening options. The researchers' system uses channel state information (CSI) from run-of-the-mill wifi. It can first identify whether there are dangerous objects in baggage without having to physically rifle through it. It then determines what the material is and what the risk level is. The researchers tested the detection system using 15 different objects across three categories -- metal, liquid, and non-dangerous -- as well as with six bags and boxes across three categories -- backpack or handbag, cardboard box, and a thick plastic bag. The findings were pretty impressive. According to the researchers, their system is 99 percent accurate when it comes to identifying dangerous and non-dangerous objects. It is 97 percent accurate when determining whether the dangerous object is metal or liquid, the study says. When it comes to detecting suspicious objects in various bags, the system was over 95 percent accurate. The researchers state in the paper that their detection system only needs a wifi device with two to three antennas, and can run on existing networks. Read more of this story at Slashdot. […]

Related Articles

Check Also

Close
Close

Adblock Detected

Please consider supporting us by disabling your ad blocker