aggregator

South Korea Signs On To Build Full-Scale Hyperloop System

Slashdot - Your Rights Online - Cz, 2017-06-22 01:25
Hyperloop Transportation Technologies (HTT) has partnered with the South Korean government and local universities to build the world's first full-scale Hyperloop system. "The agreement was actually signed back in January but only revealed this week, and sees HTT team up with the South Korean government's department of technological innovation and infrastructure, along with the Korea Institute of Civil Engineering and Building (KICT) and Hanyang University," reports New Atlas. From the report: It involves the construction of a full-scale testbed, licensing of HTT's vacuum tube, levitation, propulsion and battery technologies along with the co-development of safety standards and regulations. The agreement is a multi-year partnership intended to build a new transportation system for South Korea, one which will be known as the HyperTube Express and carry passengers between Seoul and Busan in under 20 minutes, compared to the current three-hour drive. HTT may be setting out to build the world's first Hyperloop but it is no guarantee, with fellow startups Arrivo and Hyperloop One also moving full-steam ahead with their plans. The latter in particular seems to be making solid progress, recently showing off a full-scale test track in Nevada and forming agreements with Russia, Finland and Dubai to explore the feasibility of a Hyperloop in those countries. It's too early to tell who will be first out of the gate, but the competition is certainly heating up.

Read more of this story at Slashdot.

Facial Recognition Is Coming To US Airports

Slashdot - Your Rights Online - Cz, 2017-06-22 00:45
Facial recognition systems will be coming to U.S. airports in the very near future. "Customs and Border Protection first started testing facial recognition systems at Dulles Airport in 2015, then expanded the tests to New York's JFK Airport last year," reports The Verge. "Now, a new project is poised to bring those same systems to every international airport in America." From the report: Called Biometric Exit, the project would use facial matching systems to identify every visa holder as they leave the country. Passengers would have their photos taken immediately before boarding, to be matched with the passport-style photos provided with the visa application. If there's no match in the system, it could be evidence that the visitor entered the country illegally. The system is currently being tested on a single flight from Atlanta to Tokyo, but after being expedited by the Trump administration, it's expected to expand to more airports this summer, eventually rolling out to every international flight and border crossing in the U.S. U.S. Customs and Border Protection's Larry Panetta, who took over the airport portion of the project in February, explained the advantages of facial recognition at the Border Security Expo last week. "Facial recognition is the path forward we're working on," Panetta said at the conference. "We currently have everyone's photo, so we don't need to do any sort of enrollment. We have access to the Department of State records so we have photos of U.S. Citizens, we have visa photos, we have photos of people when they cross into the U.S. and their biometrics are captured into [DHS biometric database] IDENT."

Read more of this story at Slashdot.

California May Restore Broadband Privacy Rules Killed By Congress and Trump

Slashdot - Your Rights Online - Śr, 2017-06-21 23:25
An anonymous reader quotes a report from Ars Technica: A proposed law in California would require Internet service providers to obtain customers' permission before they use, share, or sell the customers' Web browsing history. The California Broadband Internet Privacy Act, a bill introduced by Assembly member Ed Chau (D-Monterey Park) on Monday, is very similar to an Obama-era privacy rule that was scheduled to take effect across the US until President Trump and the Republican-controlled Congress eliminated it. If Chau's bill becomes law, ISPs in California would have to get subscribers' opt-in consent before using browsing history and other sensitive information in order to serve personalized advertisements. Consumers would have the right to revoke their consent at any time. The opt-in requirement in Chau's bill would apply to "Web browsing history, application usage history, content of communications, and origin and destination Internet Protocol (IP) addresses of all traffic." The requirement would also apply to geolocation data, IP addresses, financial and health information, information pertaining to minors, names and billing information, Social Security numbers, demographic information, and personal details such as physical addresses, e-mail addresses, and phone numbers.

Read more of this story at Slashdot.

If It Uses Electricity, It Will Connect To the Internet: F-Secure's CRO

Slashdot - Your Rights Online - Śr, 2017-06-21 17:23
New submitter evolutionary writes: According to F-Secure's Chief Research Officer "IoT is unavoidable. If it uses electricity, it will become a computer. If it uses electricity, it will be online. In future, you will only buy IoT appliances, whether you like it or not, whether you know it or not." F-Secure's new product to help mitigate data leakage, "Sense", is a IoT Firewall, combining a traditional firewall with a cloud service and uses concepts including behaviour-based blocking and device reputation to figure out whether you have insecure devices.

Read more of this story at Slashdot.

Trump Promises a Federal Technology Overhaul To Save $1 Trillion

Slashdot - Your Rights Online - Śr, 2017-06-21 15:00
New submitter threc shares a report from MIT Technology Review: The tech world descended on Washington, D.C. yesterday to attend a tech summit at the White House. According to MIT Technology Review associate editor Jamie Condliffe: "Trump suggested he might relax his stance on immigration as a way to get tech leaders to help his cause. 'You can get the people you want,' he told the assembled CEOs. That sweetener may be a response to a very vocal backlash in the tech world against the administration's recent travel bans. Trump may hope that his business-friendly stance will offer enough allure: if tech giants scratch his back, he may later deign to scratch theirs." The report continues: "'Our goal is to lead a sweeping transformation of the federal government's technology that will deliver dramatically better services for citizens,' said Trump at the start of his meeting with the CEOs, according to the Washington Post. 'We're embracing big change, bold thinking, and outsider perspectives.' The headline announcement from the event was Trump's promise to overhaul creaking government computing infrastructure. According to Jared Kushner, the president's son-in-law and advisor, there's much to be done: federal agencies have over 6,000 data centers that could be consolidated, for instance, while the 10 oldest networks in use by the government are all at least 39 years old. The upgrade, said Trump, could save the country $1 trillion over the next 10 years."

Read more of this story at Slashdot.

Sweden Passes Bill To Become Carbon Neutral By 2045

Slashdot - Your Rights Online - Śr, 2017-06-21 03:40
Sweden is the first country to significantly upgrade its carbon ambitions since the Paris accord in 2015. The country has passed a new bill committing to cut its net carbon emissions to zero by 2045. New Scientist reports: The law was drawn up by a cross-party committee and passed with an overwhelming majority in parliament by 254 votes to 41. The legislation establishes an independent Climate Policy Council and requires an action plan to be updated every four years. Sweden had previously committed to becoming carbon neutral by 2050. It already gets 83 per cent of its electricity from nuclear energy and hydropower, having met its 2020 target of 50 per cent renewable energy eight years ahead of schedule. To achieve carbon-neutral status, the country will focus on reducing emissions from transport by increasing the use of biofuels and electric vehicles. It plans to cut domestic emissions by at least 85 per cent, and offset remaining emissions by planting trees or investing in projects abroad.

Read more of this story at Slashdot.

Mozilla Launches Privacy-Minded 'Firefox Focus' Browser For Android

Slashdot - Your Rights Online - Śr, 2017-06-21 02:20
An anonymous reader quotes a report from VentureBeat: Mozilla today launched a new browser for Android. In addition to Firefox, the company now also offers Firefox Focus, a browser dedicated to user privacy that by default blocks many web trackers, including analytics, social, and advertising. You can download the new app now from Google Play. Because Google isn't as strict as Apple, Android users can set Firefox Focus as their default browser. There are many use cases for wanting to browse the web without being tracked, but Mozilla offers a common example: reading articles via apps "like Facebook." On iOS, Firefox Focus is basically just a web view with tracking protection. On Android, Firefox Focus is the same, with a few additional features (which are still "under consideration" for iOS): Ad tracker counter -- Lists the number of ads that are blocked per site while using the app. Disable tracker blocker -- For sites that are not loading correctly, you can disable the tracker blocker to fix the issues. Notification reminder -- When Firefox Focus is running in the background, a notification will remind you so you can easily tap to erase your browsing history.

Read more of this story at Slashdot.

EFF Launches New AI Progress Measurement Project

Slashdot - Your Rights Online - Wt, 2017-06-20 22:40
Reader Peter Eckersley writes: There's a lot of real progress happening in the field of machine learning and artificial intelligence, and also a lot of hype. These technologies already have serious policy implications, and may have more in the future. But what's the ratio of hype to real progress? At EFF, we decided to find out. Today we are launching a pilot project to measure the progress of AI research. It breaks the field into a taxonomy of subproblems like game playing, reading comprehension, computer vision, and asking neural networks to write computer programs, and tracks progress on metrics across these fields. We're hoping to get feedback and contributions from the machine learning community, with the aim of using this data to improve the conversations around the social implications, transparency, safety, and security of AI.

Read more of this story at Slashdot.

South Korean Web Hosting Provider Pays $1 Million In Ransomware Demand

Slashdot - Your Rights Online - Wt, 2017-06-20 22:05
An anonymous reader writes: Nayana, a web hosting provider based in South Korea, announced it is in the process of paying a three-tier ransom demand of nearly $1 million worth of Bitcoin, following a ransomware infection that encrypted data on customer' servers. The ransomware infection appears has taken place on June 10, but Nayana admitted to the incident two days later, in a statement on its website. Attackers asked for an initial ransom payment of 550 Bitcoin, which was worth nearly $1.62 million at the time of the request. After two days of negotiations, Nayana staff said they managed to reduce the ransom demand to 397.6 Bitcoin, or nearly $1 million. In a subsequent announcement, Nayana officials stated that they negotiated with the attackers to pay the ransom demand in three installments, due to the company's inability to produce such a large amount of cash in a short period of time. On Saturday, June 17, the company said it already paid two of the three payment tranches. In subsequent announcements, Nayana updated clients on the server decryption process, saying the entire operation would take up to ten days due to the vast amount of encrypted data. The company said 153 Linux servers were affected, servers which stored the information of more than 3,400 customers.

Read more of this story at Slashdot.

Tim Cook Told Trump Tech Employees Are 'Nervous' About Immigration

Slashdot - Your Rights Online - Wt, 2017-06-20 20:45
Behind the scenes at the White House tech CEO meeting, Apple CEO Tim Cook told President Donald Trump that technology employees are "nervous" about the administration's approach to immigration, CNBC reports, citing a source familiar with the exchange. From the report: The source said the president told the CEOs on Monday that the Senate's health-care bill needs "more heart." That would be a second known instance of the president criticizing the GOP plan in private meetings. To that, the source said, Cook replied that the immigration approach by the administration also "needs more heart." Cook cited the Deferred Action for Childhood Arrivals program, which is under review by the Trump administration. He also said people in tech and their co-workers were nervous about their status, and added that it "would be great" if the president could "send them a signal." Here's what executives of Amazon, Google, and Microsoft said.

Read more of this story at Slashdot.

Cisco Subdomain Private Key Found in Embedded Executable

Slashdot - Your Rights Online - Wt, 2017-06-20 17:27
Earlier this month, a developer accidentally discovered the private key of a Cisco subdomain. An anonymous reader shares the post: Last weekend, in an attempt to get Sky's NOW TV video player (for Mac) to work on my machine, I noticed that one of the Cisco executables contains a private key that is associated with the public key in a trusted certificate for a cisco.com sub domain. This certificate is used in a local WebSocket server, presumably to allow secure Sky/NOW TV origins to communicate with the video player on the users' local machines. I read the Baseline Requirements document (version 1.4.5, section 4.9.1.1), but I wasn't entirely sure whether this is considered a key compromise. I asked Hanno Bock on Twitter, and he advised me to post the matter to this mailing list. The executable containing the private key is named 'CiscoVideoGuardMonitor', and is shipped as part of the NOW TV video player. In case you are interested, the installer can be found here (SHA-256: 56feeef4c3d141562900f9f0339b120d4db07ae2777cc73a31e3b830022241e6). I would recommend to run this installer in a virtual machine, because it drops files all over the place, and installs a few launch items (agents/daemons). The executable 'CiscoVideoGuardMonitor' can be found at '$HOME/Library/Cisco/VideoGuardPlayer/VideoGuardMonitor/ VideoGuardMonitor.bundle/Contents/MacOS/CiscoVideoGuardMonitor'. Certificate details: Serial number: 66170CE2EC8B7D88B4E2EB732E738FE3A67CF672, DNS names: drmlocal.cisco.com, Issued by: HydrantID SSL ICA G2. The issuer HydrantID has since communicated with the certificate holder Cisco, and the certificate has been revoked.

Read more of this story at Slashdot.

Cable Lobby Tries To Stop State Investigations Into Slow Broadband

Slashdot - Your Rights Online - Wt, 2017-06-20 02:45
An anonymous reader quotes a report from Ars Technica: Broadband industry lobby groups want to stop individual states from investigating the speed claims made by Internet service providers, and they are citing the Federal Communications Commission's net neutrality rules in their effort to hinder the state-level actions. The industry attempt to undercut state investigations comes a few months after New York Attorney General Eric Schneiderman filed a lawsuit against Charter and its Time Warner Cable (TWC) subsidiary that claims the ISP defrauded and misled New Yorkers by promising Internet speeds the company knew it could not deliver. NCTA-The Internet & Television Association and USTelecom, lobby groups for the cable and telecom industries, last month petitioned the Federal Communications Commission for a declaratory ruling that would help ISPs defend themselves against state-level investigations. The FCC should declare that advertisements of speeds "up to" a certain level of megabits per second are consistent with federal law as long as ISPs meet their disclosure obligations under the net neutrality rules, the groups said. There should be a national standard enforced by the FCC instead of a state-by-state "patchwork of inconsistent requirements," they argue. Another cable lobby group, the American Cable Association (ACA), asked the FCC to approve the petition in a filing on Friday. An FCC ruling in favor of the petition wouldn't completely prevent states from filing lawsuits, but such a ruling would make it far more difficult for the states to protect consumers from false speed claims.

Read more of this story at Slashdot.

Equipment Already In Space Can Be Adapted For Extremely Secure Data Encryption

Slashdot - Your Rights Online - Wt, 2017-06-20 00:40
Orome1 quotes a report from Help Net Security: In a new study, researchers from the Max Planck Institute in Erlangen, demonstrate ground-based measurements of quantum states sent by a laser aboard a satellite 38,000 kilometers above Earth. This is the first time that quantum states have been measured so carefully from so far away. A satellite-based quantum-based encryption network would provide an extremely secure way to encrypt data sent over long distances. Developing such a system in just five years is an extremely fast timeline since most satellites require around 10 years of development. For the experiments, the researchers worked closely with satellite telecommunications company Tesat-Spacecom GmbH and the German Space Administration. The German Space Administration previously contracted with Tesat-Spacecom on behalf of the German Ministry of Economics and Energy to develop an optical communications technology for satellites. This technology is now being used commercially in space by laser communication terminals onboard Copernicus -- the European Union's Earth Observation Program -- and by SpaceDataHighway, the European data relay satellite system. It turned out that this satellite optical communications technology works much like the quantum key distribution method developed at the Max Planck Institute. Thus, the researchers decided to see if it was possible to measure quantum states encoded in a laser beam sent from one of the satellites already in space. In 2015 and the beginning of 2016, the team made these measurements from a ground-based station at the Teide Observatory in Tenerife, Spain. They created quantum states in a range where the satellite normally does not operate and were able to make quantum-limited measurements from the ground. The findings have been published in the journal Optica.

Read more of this story at Slashdot.

Supreme Court Rules Sex Offenders Can't Be Barred From Social Media

Slashdot - Your Rights Online - Wt, 2017-06-20 00:00
An anonymous reader quotes a report from Gizmodo: In a unanimous decision today, the Supreme Court struck down a North Carolina law that prevents sex offenders from posting on social media where children might be present, saying it "impermissibly restricts lawful speech." In doing so, the Supreme Court asserted what we all know to be true: Posting is essential to the survival of the republic. The court ruled that to "foreclose access to social media altogether is to prevent the user from engaging in the legitimate exercise of First Amendment rights." The court correctly noted that "one of the most important places to exchange views is cyberspace." The North Carolina law was ruled to be overly broad, barring "access to what for many are the principal sources for knowing current events, checking ads for employment, speaking and listening in the modern public square, and otherwise exploring the vast realms of human thought and knowledge."

Read more of this story at Slashdot.

Offensive Trademarks Must Be Allowed, Rules Supreme Court

Slashdot - Your Rights Online - Pn, 2017-06-19 20:01
In a ruling that could have broad impact on how the First Amendment is applied in other trademark cases in future, the U.S. Supreme Court on Monday threw out a federal prohibition on disparaging trademarks as a constitutional violation in a ruling involving a band called The Slants. From a report: The opinion in Matal v. Tam means that Simon Tam, lead singer of an Asian-American rock band called "The Slants," will be able to trademark the name of his band. It's also relevant for a high-profile case involving the Washington Redskins, who were involved in litigation and at risk of being stripped of their trademark. The court unanimously held that a law on the books holding that a trademark can't "disparage... or bring... into contemp[t] or disrepute" any "persons, living or dead," violates the First Amendment. Tam headed to federal court years ago after he was unable to obtain a trademark. In 2015, the US Court of Appeals for the Federal Circuit ruled in Tam's favor, finding that the so-called "disparagement clause" of trademark law was unconstitutional.

Read more of this story at Slashdot.

Using Texts as Lures, Government Spyware Targets Mexican Journalists and Their Families

Slashdot - Your Rights Online - Pn, 2017-06-19 18:40
Mexico's most prominent human rights lawyers, journalists and anti-corruption activists have been targeted by advanced spyware sold to the Mexican government on the condition that it be used only to investigate criminals and terrorists, reports the New York Times. From the report: The targets include lawyers looking into the mass disappearance of 43 students (alternative source), a highly respected academic who helped write anti-corruption legislation, two of Mexico's most influential journalists and an American representing victims of sexual abuse by the police. The spying even swept up family members, including a teenage boy. Since 2011, at least three Mexican federal agencies have purchased about $80 million worth of spyware created by an Israeli cyberarms manufacturer. The software, known as Pegasus, infiltrates smartphones to monitor every detail of a person's cellular life -- calls, texts, email, contacts and calendars. It can even use the microphone and camera on phones for surveillance, turning a target's smartphone into a personal bug.

Read more of this story at Slashdot.

198 Million Americans Hit By 'Largest Ever' Voter Records Leak

Slashdot - Your Rights Online - Pn, 2017-06-19 17:21
Political data gathered on more than 198 million US citizens was exposed this month after a marketing firm contracted by the Republican National Committee stored internal documents on a publicly accessible Amazon server, reports say. From a ZDNet article: It's believed to be the largest ever known exposure of voter information to date. The various databases containing 198 million records on American voters from all political parties were found stored on an open Amazon S3 storage server owned by a Republican data analytics firm, Deep Root Analytics. UpGuard cyber risk analyst Chris Vickery, who found the exposed server, verified the data. Through his responsible disclosure, the server was secured late last week, and prior to publication. This leak shines a spotlight on the Republicans' multi-million dollar effort to better target potential voters by utilizing big data. The move largely a response to the successes of the Barack Obama campaign in 2008, thought to have been the first data-driven campaign. Further reading: Republican Data-Mining Firm Exposed Personal Information for Virtually Every American Voter - The Intercept; The RNC Files: Inside the Largest US Voter Data Leak - Upguard; Data on 198M voters exposed by GOP contractor Data On 198M Voters Exposed By GOP Contractor - The Hill.

Read more of this story at Slashdot.

Is Coinbase Closing Accounts For Paying Ransoms With Bitcoins?

Slashdot - Your Rights Online - Pn, 2017-06-19 09:34
Even as some comparnies are stockpiling bitcoins so they can quickly pay ransom demands, security firms that try paying those ransoms may face losing their accounts on Coinbase. Slashdot reader Mosquito Bites quotes a report from CoinDesk: Less than a year ago, Vinny Troia, CEO and principal security consultant of Night Lion Security and a certified white hat hacker, was sent a compliance form by US bitcoin exchange Coinbase, where he had an account. Coinbase wanted to know how Troia was using bitcoin and his account. "I told them I run a security firm. I pay for ransoms and buy documents on the dark web when clients request it," Troia told CoinDesk. The ransoms Troia helps his clients pay are those stemming from ransomware attacks, which have surged in number over the past few years. Many, like the well-publicized WannaCry attack, are asking for bitcoin. And the documents? Troia said, "We do breach investigations a lot of times. If a fraudster is saying they're selling my client's stolen documents, the only way to make sure they have what they say they have is to buy those documents." According to Troia, Coinbase "did not like that at all." Coinbase then asked the IT expert whether he had a letter from the Department of Justice giving him permission to do those things. No, Troia said. Upon further research, Troia has not found that any such permission exists. But, "I have my clients authorizing me to do this," he said. Coinbase sent Troia back an email explaining that those actions were against the exchange's rules and shut down his account... "My entire family is blocked from Coinbase," he said.

Read more of this story at Slashdot.

Ia Coinbase Closing Accounts For Paying Ransoms With Bitcoins?

Slashdot - Your Rights Online - Pn, 2017-06-19 09:34
Even as some comparnies are stockpiling bitcoins so they can quickly pay ransom demands, security firms that try paying those ransoms may face losing their accounts on Coinbase. Slashdot reader Mosquito Bites quotes a report from CoinDesk: Less than a year ago, Vinny Troia, CEO and principal security consultant of Night Lion Security and a certified white hat hacker, was sent a compliance form by US bitcoin exchange Coinbase, where he had an account. Coinbase wanted to know how Troia was using bitcoin and his account. "I told them I run a security firm. I pay for ransoms and buy documents on the dark web when clients request it," Troia told CoinDesk. The ransoms Troia helps his clients pay are those stemming from ransomware attacks, which have surged in number over the past few years. Many, like the well-publicized WannaCry attack, are asking for bitcoin. And the documents? Troia said, "We do breach investigations a lot of times. If a fraudster is saying they're selling my client's stolen documents, the only way to make sure they have what they say they have is to buy those documents." According to Troia, Coinbase "did not like that at all." Coinbase then asked the IT expert whether he had a letter from the Department of Justice giving him permission to do those things. No, Troia said. Upon further research, Troia has not found that any such permission exists. But, "I have my clients authorizing me to do this," he said. Coinbase sent Troia back an email explaining that those actions were against the exchange's rules and shut down his account... "My entire family is blocked from Coinbase," he said.

Read more of this story at Slashdot.

Louisville's Fiber Internet Expansion Opposed By Koch Brothers Group

Slashdot - Your Rights Online - N, 2017-06-18 20:34
Slashdot reader simkel shared an article from the Courier-Journal: A group affiliated with the Koch brothers' powerful political network is leading an online campaign against Mayor Greg Fischer's $5.4 million proposal to expand Louisville's ultra-fast internet access... Critics argue that building roughly 96 miles of fiber optic cabling is an unnecessary taxpayer giveaway to internet service providers, such as Google Fiber, which recently announced plans to begin building its high-speed network in the city. "Fundamentally, we don't believe that taxpayers should be funding broadband or internet systems," said David Williams, president of the taxpayers alliance, which is part of industrialists Charles and David Koch's political donor network... The group says $5.4 million is a misuse of taxpayer funds when the city has other needs, such as infrastructure and public safety. To shore up public support, the mayor has begun arguing that high-speed connectivity would make it cheaper to install crime-monitoring cameras in violent neighborhoods.

Read more of this story at Slashdot.