Security

'Text Bomb' Is Latest Apple Bug (bbc.com) 55

An anonymous reader quotes a report from the BBC: A new "text bomb" affecting Apple's iPhone and Mac computers has been discovered. Abraham Masri, a software developer, tweeted about the flaw which typically causes an iPhone to crash and in some cases restart. Simply sending a message containing a link which pointed to Mr Masri's code on programming site GitHub would be enough to activate the bug -- even if the recipient did not click the link itself. Mr Masri said he "always reports bugs" before releasing them. Apple has not yet commented on the issue. On a Mac, the bug reportedly makes the Safari browser crash, and causes other slowdowns. Security expert Graham Cluley wrote on his blog that the bug does not present anything to be particularly worried about -- it's merely very annoying. After the link did the rounds on social media, Mr Masri removed the code from GitHub, therefore disabling the "attack" unless someone was to replicate the code elsewhere.
Crime

Facebook Is a 'Living, Breathing Crime Scene,' Says Former Tech Insider (nbcnews.com) 143

An anonymous reader quotes a report from NBC News: With more than 2 billion users, Facebook's reach now rivals that of Christianity and exceeds that of Islam. However, the network's laser focus on profits and user growth has come at the expense of its users, according to one former Facebook manager who is now speaking out against the social platform. "One of the things that I saw consistently as part of my job was the company just continuously prioritized user growth and making money over protecting users," the ex-manager, Sandy Parakilas, who worked at Facebook for 16 months, starting in 2011, told NBC News. During his tenure at Facebook, Parakilas led third-party advertising, privacy and policy compliance on Facebook's app platform. "Facebook is a living, breathing crime scene for what happened in the 2016 election -- and only they have full access to what happened," said Tristan Harris, a former design ethicist at Google. His work centers on how technology can ethically steer the thoughts and actions of the masses on social media and he's been called "the closest thing Silicon Valley has to a conscience" by The Atlantic magazine.

In response to the comments, Facebook issued a statement saying it is a "vastly different company" from when it was founded. "We are taking many steps to protect and improve people's experience on the platform," the statement said. "In the past year, we've worked to destroy the business model for false news and reduce its spread, stop bad actors from meddling in elections, and bring a new level of transparency to advertising. Last week, we started prioritizing meaningful posts from friends and family in News Feed to help bring people closer together. We have more work to do and we're heads down on getting it done."

Social Networks

Twitter Hits Back Again at Claims That Its Employees Monitor Direct Messages (techcrunch.com) 160

From a report on TechCrunch: Twitter is pushing back against claims made by conservative activist group Project Veritas that its employees monitor private user data, including direct messages. In a statement to BuzzFeed News, a Twitter representative said "we do not proactively review DMs. Period. A limited number of employees have access to such information, for legitimate work purposes, and we enforce strict access protocols for those employees." Last week, Project Veritas, which produces undercover sting operations that purportedly expose liberal biases at media companies and other organizations, posted footage that appeared to show Twitter engineers claiming that teams of employees look at users' private data. One engineer seemed to say that Twitter can hand over President Donald Trump's data, including deleted tweets and direct messages, to the Department of Justice.
Google

Google's Museum App Finds Your Fine Art Doppelganger (engadget.com) 66

The latest update to the Google Arts & Culture app now lets you take a selfie, and using image recognition, finds someone in its vast art collection that most resembles you. It will then present you and your fine art twin side-by-side, along with a percentage match, and let you share the results on social media. Engadget reports: The app, which appears to be unfortunately geo-restricted to the United States, is like an automated version of an article that circulated recently showing folks standing in front of portraits at museums. In many cases, the old-timey people in the paintings resemble them uncannily, but, other than in rare cases, that's not the case at all with Google's app. Google matched me with someone who doesn't look like me in the slightest, a certain Sir Peter Francois Bourgeois, based on a painting hanging in Dulwich Picture Gallery. Taking a buzz around the internet, other folks were satisfied with their matches, some took them as a personal insult, and many were just plain baffled, in that order.
Privacy

India To Add Facial Authentication For Its Aadhaar Card Security (reuters.com) 20

India will build facial recognition into its national identity card in addition to fingerprints after a series of breaches in the world's biggest biometric identification programme, the government said on Monday. From a report: A local newspaper reported this month that access to the "Aadhaar" database which has identity details of more than 1 billion citizens was being sold for just $8 on social media. The Unique Identification Authority of India (UIDAI), which issues the identity cards, said it would add face recognition software as an additional layer of security from July. Card holders will be required to match their photographs with that stored in the data base for authentication in addition to fingerprints and iris scans, the agency said in a statement.
Cellphones

Fake 'Inbound Missile' Alert Sent To Every Cellphone in Hawaii (chicagotribune.com) 226

"Somebody sent out a false emergency alert to all cell phones in Hawaii saying, 'BALLISTIC MISSILE THREAT INBOUND TO HAWAII. SEEK IMMEDIATE SHELTER. THIS IS NOT A DRILL'," writes Slashdot reader flopwich, adding "Somebody's had better days at work." The Associated Press reports: In a conciliatory news conference later in the day, Hawaii officials apologized for the mistake and vowed to ensure it will never happen again. Hawaii Emergency Management Agency Administrator Vern Miyagi said the error happened when someone hit the wrong button. "We made a mistake," said Miyagi. For nearly 40 minutes, it seemed like the world was about to end in Hawaii, an island paradise already jittery over the threat of nuclear-tipped missiles from North Korea...

On the H-3, a major highway north of Honolulu, vehicles sat empty after drivers left them to run to a nearby tunnel after the alert showed up, the Honolulu Star-Advertiser reported. Workers at a golf club huddled in a kitchen fearing the worst... The Hawaii Emergency Management Agency tweeted there was no threat about 10 minutes after the initial alert, but that didn't reach people who aren't on the social media platform. A revised alert informing of the "false alarm" didn't reach cellphones until 38 minutes later, according to the time stamp on images people shared on social media.

EU

Is Finland's Universal Basic Income Trial Too Good To Be True? (theguardian.com) 534

It was one year ago that Finland began giving money to 2,000 unemployed people -- roughly $652 a month (€560 or £475). But have we learned anything about universal basic incomes? An anonymous reader quotes the Guardian: Amid this unprecedented media attention, the experts who devised the scheme are concerned it is being misrepresented. "It's not really what people are portraying it as," said Markus Kanerva, an applied social and behavioural sciences specialist working in the prime minister's office in Helsinki. "A full-scale universal income trial would need to study different target groups, not just the unemployed. It would have to test different basic income levels, look at local factors. This is really about seeing how a basic unconditional income affects the employment of unemployed people."

While UBI tends often to be associated with progressive politics, Finland's trial was launched -- at a cost of around €20m (£17.7m or $24.3 million) -- by a centre-right, austerity-focused government interested primarily in spending less on social security and bringing down Finland's stubborn 8%-plus unemployment rate. It has a very clear purpose: to see whether an unconditional income might incentivise people to take up paid work. Authorities believe it will shed light on whether unemployed Finns, as experts believe, are put off taking up a job by the fear that a higher marginal tax rate may leave them worse off. Many are also deterred by having to reapply for benefits after every casual or short-term contract... According to Kanerva, the core data the government is seeking -- on whether, and how, the job take-up of the 2,000 unemployed people in the trial differs from a 175,000-strong control group -- will be "robust, and usable in future economic modelling" when it is published in 2019.

Although the experiment may be impacted by all the hype it's generating, according to the Guardian. "One participant who hoped to start his own business with the help of the unconditional monthly payment complained that, after speaking to 140 TV crews and reporters from as far afield as Japan and Korea, he has simply not been able to find the time."
The Media

Peter Thiel Is Now Bidding on Gawker.com (reuters.com) 132

An anonymous reader writes: Its official. "Venture capitalist Peter Thiel has made an offer for Gawker," reports Reuters, adding that the potential acquisition "would let him take down stories regarding his personal life that are still available on the website, and remove the scope for further litigation between him and Gawker." It was Thiel's 2016 lawsuit which bankrupted the site, prompting a Washington Post blogger to write that Thiel "killed Gawker once. Now it looks like he may kill it again."

Elsewhere the Washington Post argues the whole episode "highlighted the immense legal risk borne by news outlets already facing a precarious financial reality in the digital age." The Post's blogger describes Thiel as "a billionaire leveraging his wealth to obliterate a media outlet...as part of a personal vendetta."

Last month former Gawker staffers attempted to crowdfund the purchase and relaunch of Gawker.com as a nonprofit media organization. But their 1,496 backers only pledged $89,844, far short of the campaign's $500,000 target.
Government

Will Facial Recognition in China Lead To Total Surveillance? (washingtonpost.com) 122

schwit1 shares a new Washington Post article about China's police and security state -- including the facial recognition cameras allow access to apartment buildings. "If I am carrying shopping bags in both hands, I just have to look ahead and the door swings open," one 40-year-old woman tells the Post. "And my 5-year-old daughter can just look up at the camera and get in. It's good for kids because they often lose their keys." But for the police, the cameras that replaced the residents' old entry cards serve quite a different purpose. Now they can see who's coming and going, and by combining artificial intelligence with a huge national bank of photos, the system in this pilot project should enable police to identify what one police report, shared with The Washington Post, called the "bad guys" who once might have slipped by... Banks, airports, hotels and even public toilets are all trying to verify people's identities by analyzing their faces. But the police and security state have been the most enthusiastic about embracing this new technology.

The pilot in Chongqing forms one tiny part of an ambitious plan, known as "Xue Liang," which can be translated as "Sharp Eyes." The intent is to connect the security cameras that already scan roads, shopping malls and transport hubs with private cameras on compounds and buildings, and integrate them into one nationwide surveillance and data-sharing platform... At the back end, these efforts merge with a vast database of information on every citizen, a "Police Cloud" that aims to scoop up such data as criminal and medical records, travel bookings, online purchase and even social media comments -- and link it to everyone's identity card and face.

Facebook

Facebook Overhauls News Feed in Favor of 'Meaningful Social Interactions' (theguardian.com) 95

Facebook said late Thursday it will begin to prioritize posts in the News Feed from friends and family over public content and posts from publishers. The company will also move away from using "time spent" on the platform as a metric of success and will instead focus on "engagement" with content, such as comments. From a report: The social media platform will de-prioritize videos, photos, and posts shared by businesses and media outlets, which Zuckerberg dubbed "public content," in favor of content produced by a user's friends and family. "The balance of what's in News Feed has shifted away from the most important thing Facebook can do -- help us connect with each other," Zuckerberg wrote in a Facebook post announcing the change. "We feel a responsibility to make sure our services aren't just fun to use, but also good for people's well-being."
News

The Invented Language That Found a Second Life Online (bbc.com) 225

More than 100 years after it was invented, Esperanto is spoken by relatively few people. But the internet has brought new life to this intriguing, invented language. From a report: Since it [Esperanto] was first proposed in a small booklet written by Ludwik L Zamenhof in 1887, it has evolved into the quintessential invented language, the liveliest and most popular ever created. But, many would tell you, Esperanto is a failure. More than a century after it was created, its current speaker base is just some two million people -- a geeky niche, not unlike the fan base of any other obscure hobby.

[...] Learning Esperanto used to be a solitary quest. You could practise it by sitting for weeks with a book and a dictionary, figuring out the rules and memorising the words. But there was usually no professor to correct your mistakes or polish your pronunciation. That's how Anna Lowenstein taught herself Esperanto in her teenage years, after becoming frustrated with the oddities of the French she was learning in school. In the last page of her textbook, there was an address for the British Esperanto Association. She sent a letter, and some time later was invited to a meeting of young speakers in St Albans.

The global community that Lowenstein was joining was put together via snail mail, paper magazines and yearly meetings. [...] Newer generations are not as patient, and they don't have to be. Unlike most of their elders, who rarely had the chance to speak Esperanto, today's speakers can use the language every day online. Even old computer communication services like Usenet had Esperanto-speaking hubs, and a lot of pages and chat rooms sprouted in the early days of the Web. Today, the younger segment of the Esperantio is keen on using social media: they gather around several groups in Facebook and Telegram, a chat service.

China

Apple To Transfer Chinese iCloud Operations To Chinese Firm (bbc.com) 72

Apple's iCloud services in mainland China will be operated by a Chinese company from next month, the tech giant has confirmed, though Apple will still have access to all data stored on iCloud. The company said it had made the move to comply with the country's cloud computing regulations. iCloud accounts registered outside of China are not affected. BBC reports: The Chinese cyber security rules, introduced in July last year, include a requirement for companies to store all data within China. The firm, Guizhou on the Cloud Big Data (GCBD), is owned by the Guizhou provincial government in southern China. Guizhou is where Apple opened a $1 billion data center last year to meet the regulations. iCloud data will be transferred from February 28, Apple said. Customers living in mainland China who did not want to use iCloud operated by GCBD were given the option to terminate their account. Apple said the "partnership" with GCBD would allow it to "improve the speed and reliability of our iCloud services products while also complying with newly passed regulations that cloud services be operated by Chinese companies." It added that Apple had "strong data privacy and security protections in place and no backdoors will be created into any of our systems." However, some on social media have said the step gives Beijing more opportunity to monitor its citizens and others living in the country.
Microsoft

Microsoft: We're Not Giving Up On Cortana (Even In Home Automation) (zdnet.com) 93

Microsoft is trying to fight back against perceptions that Cortana may be its next consumer-centric technology to face the chopping block. Yesterday, the company issued a press release touting recent wins for Cortana. Among these are the officially unveiled Johnson Controls' Cortana-powered thermostat (which goes on sale for $319 starting in March). ZDNet reports the "other recent Cortana device partners": Allwinner: This company has the Tech R16 Quad Core IoT solution (a reference design for device partners).
Synaptics: This ODM (original design manufacturer) and far-field voice processing vendor produces reference designs for consumer IoT, smart speakers, PC, and more that integrate Cortana.
TONLY: Another reference design vendor working with Microsoft on Cortana devices that make use of Skype.
Qualcomm: In addition to partnering with Microsoft on Windows-on-ARM "Always Connected" PCs, Qualcomm is building reference designs on its Smart Audio and Mesh Networking platforms that use Cortana.
"In addition to our currently supported home automation partners, we are announcing new partnerships with Ecobee, Geeni, Honeywell Lyric, IFTTT, LIFX, TP-Link Kasa, and Honeywell Total Connect Comfort. Cortana currently supports lights, outlets, switches, and thermostats across all providers," the spokesperson said.
Communications

FCC Plan To Lower Broadband Standards Is Met With 'Mobile Only Challenge' (arstechnica.com) 145

An anonymous reader quotes a report from Ars Technica: Broadband consumer advocates have launched a "Mobile Only Challenge" to show U.S. regulators that cellular data should not be considered an adequate replacement for home Internet service. The awareness campaign comes as the Federal Communications Commission is considering a change to the standard it uses to judge whether broadband is being deployed to all Americans in a reasonable and timely fashion. While FCC Chairman Ajit Pai hasn't released his final plan yet, the FCC may soon declare that America's broadband deployment problem is solved as long as everyone has access to either fast home Internet or cellular Internet service with download speeds of at least 10Mbps. That would be a change from current FCC policy, which says that everyone should have access to both mobile data and fast home Internet services such as fiber or cable.

"The FCC wants to lower broadband standards," organizers of the Mobile Only Challenge say on the campaign's website. "Pledge to spend one day in January 2018 accessing the Internet only on your mobile device to tell them that's not OK." The Mobile Only Challenge was organized by Public Knowledge, Next Century Cities, New America's Open Technology Institute, the Institute for Local Self-Reliance, the National Hispanic Media Coalition (NHMC), and other groups. Participants are encouraged to share their experiences using the #MobileOnly hashtag.

Space

Rumors Swirl That Secret Zuma Satellite Launched By SpaceX Was Lost (scientificamerican.com) 171

Many media outlets are reporting that the U.S. government's top-secret Zuma satellite may have run into some serious problems during or shortly after its Sunday launch. Zuma was launched atop a SpaceX Falcon 9 rocket from Florida's Cape Canaveral Air Force Station Sunday evening -- a launch that also featured a successful landing back on Earth by the booster's first stage. While everything seemed fine at the time, rumors began swirling within the spaceflight community that something had happened to Zuma. "According to one source, the payload fell back to Earth along with the spent upper stage of the Falcon 9 rocket," Ars Technica's Eric Berger wrote. Scientific American reports: To be clear: There is no official word of any bad news, just some rumblings to that effect. And the rocket apparently did its job properly, SpaceX representatives said. "We do not comment on missions of this nature, but as of right now, reviews of the data indicate Falcon 9 performed nominally," company spokesman James Gleeson told Space.com via email. Space.com also reached out to representatives of aerospace company Northrop Grumman, which built Zuma for the U.S. government. "This is a classified mission. We cannot comment on classified missions," Northrop Grumman spokesman Lon Rains said via email. All we know about the satellite itself is that it was destined for a low-Earth orbit and built for the U.S. government. We will update this story if we hear anything else about Zuma's status.
Bitcoin

Kodak Announces Its Own Cryptocurrency, Watches Stock Price Skyrocket (theverge.com) 135

Kodak has joined the cryptocurrency craze by launching its own KodakCoin, a cryptocurrency for photographers. As soon as the news was announced, Kodak's stock (KODK) jumped more than 60 percent. The Verge reports: KodakCoins will work as tokens inside the new blockchain-powered KodakOne rights management platform. The platform will supposedly create a digital ledger of rights ownership that photographers can use to register and license new and old work. Both the platform and cryptocurrency are supposed to "empower photographers and agencies to take greater control in image rights management," according to the press release. The digital currency is meant to create a new economy for photographers to receive payment and sell work on a secure platform. But while Kodak's proposed blockchain-powered platform and virtual coin sound good on paper, it's not clear why the photography company needs to use blockchain to achieve its goals, rather than just create another social media platform instead. It appears that Kodak, like the other tea and vape companies that received media attention last month for making the abrupt leap to blockchain, could just be trying to capitalize on the current cryptocurrency mania.
Communications

James Dolan, Co-Creator of SecureDrop, Dead At 36 (gizmodo.com) 188

The Freedom of the Press Foundation is reporting that James Dolan, former Marine and co-creator of the whistleblower submission system SecureDrop alongside Aaron Swartz and Wired editor Kevin Poulsen, has died at age 36. He reportedly took his own life. Gizmodo reports: First deployed as StrongBox with The New Yorker, organizations such as the Washington Post, the New York Times, the Associated Press, and Gizmodo Media Group have all come to rely on SecureDrop -- which allows highly secure communication between journalists and sources in possession of sensitive information or documents. As an industry tool, it has become invaluable for reporters. Dolan joined the Freedom of the Press Foundation to maintain SecureDrop after co-creator Aaron Swartz took his life in 2013 at age 26, as pressure mounted in a federal investigation against him that many felt was overzealous. Memorial services have not yet been announced, and presently the circumstances of Dolan's death are not known.
Cellphones

Would You Use a Smartphone-Style Laptop With a Three-Day Battery Life? (king5.com) 194

An anonymous reader quotes USA Today: "Always connected personal computers" -- or ACPCs -- refer to a new breed of Windows laptops with three key features: a battery that can last multiple days; instant-on access when you open the lid or touch a key; and an optional high-speed cellular connection, to avoid hunting for a Wi-Fi hotspot to get online. In other words, your laptop is going to behave a lot more like your smartphone...

In fact, with the Qualcomm Snapdragon 835 processor, ASUS is claiming battery life of up to 22 hours of continuous video playback, and up to 30 days on standby. At $799, the ASUS NovaGo (model # TP370) will also be the first always-connected PC with a 360-degree flip hinge -- making it a "2-in-1" that can convert from laptop mode to a tablet by bending back the 13.3-inch screen -- and the first with Gigabit LTE speeds, for an always on, always connected experience.

ASUS's media relations director touts the high-speed cellular connections -- which consumers pay for separately -- as 3 to 7 times faster than broadband. "It allows you to download a 2-hour movie in about 10 seconds."

And Qualcomm's senior director of product management says there's more ways that it's like a smartphone. "Even when the screen is off, it's still connected, so when I open the lid, it does facial recognition, and I'm in."
Media

Ask Slashdot: What's the Best Media Streaming Device? 206

The network card died on Thelasko's smart TV -- and rather than spend $65 on a new one, they're considering buying a nice, simple streaming box. I am running a Rygel server on my PC, but rarely use it... I primarily only watch Amazon Prime, Netflix, and YouTube for streaming, and am wondering what Slashdot users have found to be the best option. I'm considering Roku or Chromecast because they are well known and supported. However, I have heard a lot of news about Kodi devices being more hackable.
AppleTV? Amazon Fire TV? The Emtec GEM Box? Building your own from a Raspberry Pi? Leave your own thoughts and suggestions in the comments.

What's the best media streaming device?
Crime

Kansas 'Swat' Perpetrator Had Already Been To Prison For Fake Bomb Threats (go.com) 315

More details are emerging about an online gamer whose fake call to Kansas police led to a fatal shooting:
  • "After phoning in a false bomb threat to a Glendale, California TV station in 2015, Tyler Barriss threatened to kill his grandmother if she reported him, according to local reports and court documents." -- The Wichita Eagle
  • "The Glendale Police Department confirmed to ABC News that Tyler Barriss made about 20 calls to universities and media outlets throughout the country around the time he was arrested for a bomb threat to Los Angeles ABC station KABC in 2015... He was sentenced to two years and eight months in jail, court records show." -- ABC News
  • "Within months of his release in August, he had already become the target of a Los Angeles Police Department investigation into similar hoax calls... LAPD detectives were planning to meet with federal prosecutors to discuss their investigation..." -- The Los Angeles Times
  • The Wichita Eagle reports that even after the police had fatally shot the person SWauTistic was pretending to be, he continued his phone call with the 911 operator for another 16 minutes -- on a call which lasted over half an hour.
  • Brian Krebs reports that police may have been aided in their investigation by another reformed SWAT perpetrator -- adding that SWauTistic privately claimed to have already called in fake emergencies at approximately 100 schools and 10 homes.

Just last month SWauTistic's Twitter account showed him bragging about a bomb threat which caused the evacuation of a Dallas convention center, according to the Daily Beast -- after which SWauTistic encouraged his Twitter followers to also follow him on a second account, "just in case twitter suspends me for being a god." Later the 25-year-old tweeted that "if you can't pull off a swat without getting busted you're not a leet hacking God its that simple."

Barriss remains in jail in Los Angeles with no bond, though within three weeks he's expected to be extradited to Kansas for his next trial.


Slashdot Top Deals