Tech Today w/ Ken May

Death rates from cancer have gone down 20% since 1991, according to data in a new study published this month. This does not mean that fewer people are developing cancer, nor does it even mean that fewer people are dying of it — it just means that, year by year, fewer people are dying of the disease. Possible reasons for the shift include better therapies, and earlier diagnosis. In the chart above, and the one below (click to enlarge), you can also see over the past twenty-two years that certain cancers are killing more people — and certain ones are killing fewer. More »

At the 2013 CES convention, CNET’s editorial staff loved the Dish Hopper DVR and nominated it “Best in Show.” That journalistic decision was quickly tossed out, however, by the legal department at CBS, CNET’s corporate parent. CBS is involved in litigation against Dish over the Hopper. The censoring of CNET’s decision has produced a fair bit of fallout for CBS already. The company has been criticized in many quarters for silencing its journalists. Greg Sandoval, a well-known writer for CNET, even left the company, saying he was concerned that his employer didn’t respect editorial independence. Now, CES itself has put out a press release slamming CNET’s behavior and announcing that CNET won’t be allowed to produce the “Best of CES” awards anymore. Those awards are produced by CNET under contract with the Consumer Electronics Association (CEA), which puts on CES. CEA said it will work to identify a new partner to run the Best of CES awards. Read 4 remaining paragraphs | Comments

The long awaited World of Warcraft movie is finally moving forward, and with a director that is both exciting and surprising. Duncan Jones of Moon and Source Cod e fame has snapped up the directing gig. Originally helmed by Sam Raimi, the project was dropped by the Evil Dead director so he could concentrate on his Oz movie. Honestly, we thought this project was long dead, but Jones and Warner Bros. are planning on starting production on the movie adaptation of the role-playing game in 2013! More »

The 109,000 HP Wärtsilä-Sulzer RTA96-C diesel engine is the largest and most powerful, but at 2,300 tons, any warship it’s attached to is going to have trouble outmaneuvering jellyfish, much less torpedoes. Instead, the British Navy is relying on a new gas turbine engine that, while only half as powerful as the RTA96, weighs 68 times less. More »

Orome1 writes “A new discovered malware is potentially one of the most costly viruses yet discovered. Uncovered by NQ Mobile, the ‘Bill Shocker’ (a.expense.Extension.a) virus has already impacted 620,000 users in China and poses a threat to unprotected Android devices worldwide. Bill Shocker downloads in the background, without arousing the mobile device owner’s suspicion. The infection can then take remote control of the device, including the contact list, Internet connections and dialing and texting functions. Once the malware has turned the phone into a “zombie,” the infection uses the device to send text message to the profit of advertisers. In many cases, the threat will overrun the user’s bundling quota, which subjects the user to additional charges.” Read more of this story at Slashdot.

Reflected XSS vulnerabilities in action Aspect Security When my neighbor called early Wednesday morning, she sounded close to tears. Her Yahoo Mail account had been hijacked and used to send spam to addresses in her contact list. Restrictions had then been placed on her account that prevented her from e-mailing her friends to let them know what happened. In a  blog post  published hours before my neighbor’s call, researchers from security firm Bitdefender said that the hacking campaign that targeted my neighbor’s account had been active for about a month. Even more remarkable, the researchers said the underlying hack worked because Yahoo’s developer blog runs on a version of the WordPress content management system that contained a vulnerability developers addressed more than eight months ago . My neighbor’s only mistake, it seems, was clicking on a link while logged in to her Yahoo account. As someone who received one of the spam e-mails from her compromised account, I know how easy it is to click such links. The subject line of my neighbor’s e-mail mentioned me by name, even though my name isn’t in my address. Over the past few months, she and I regularly sent messages to each other that contained nothing more than a Web address, so I thought nothing of opening the link contained in Wednesday’s e-mail. The page that opened looked harmless enough. It appeared to be an advertorial post on MSNBC.com about working from home, which is something I do all the time. But behind the scenes, according to Bitdefender, something much more nefarious was at work. Read 9 remaining paragraphs | Comments

An anonymous reader writes “‘Right now, there are brilliant students from all over the world sitting in classrooms at our top universities,’ President Obama explained to the nation Tuesday in his pitch for immigration reform. ‘They are earning degrees in the fields of the future, like engineering and computer science…We are giving them the skills to figure that out, but then we are going to turn around and tell them to start the business and create those jobs in China, or India, or Mexico, or someplace else. That is not how you grow new industries in America. That is how you give new industries to our competitors. That is why we need comprehensive immigration reform.” If the President truly fears that international students will use skills learned at U.S. colleges and universities to the detriment of the United States if they return home (isn’t a rising tide supposed to lift all boats?) — an argument NYC Mayor Bloomberg advanced in 2011 (‘we are investing millions of dollars [actually billions] to educate these students at our leading universities, and then giving the economic dividends back to our competitors – for free’) — then wouldn’t another option be not providing them with the skills in the first place?” Read more of this story at Slashdot.

One thing your iPhone could be better at: sending secret encrypted messages (aka for sexting and/or illicit relationships). The regular messages app leaves everything hanging out in the open! Text Fortress is an app that encrypts the messages you send and locks them down so only the person you sent it to, can see it. More »

Security experts are advising that a networking feature known as Universal Plug and Play be disabled on routers, printers, and cameras, after finding it makes tens of millions of Internet-connected devices vulnerable to serious attack. UPnP, as the feature is often abbreviated, is designed to make it easy for computers to connect to Internet gear by providing code that helps devices automatically discover each other over a local network. That often eliminates the hassle of figuring out how to configure devices the first time they’re connected. But UPnP can also make life easier for attackers half a world away who want to compromise a home computer or breach a business network, according to a white paper published Tuesday by researchers from security firm Rapid7. Over a five-and-a-half-month period last year, the researchers scanned every routable IPv4 address about once a week. They identified 81 million unique addresses that responded to standard UPnP discovery requests, even though the standard isn’t supposed to communicate with devices that are outside a local network. Further scans revealed 17 million addresses exposed UPnP services built on the open standard known as SOAP, short for simple object access protocol. By broadcasting the service to the Internet at large, the devices can make it possible for attackers to bypass firewall protections. Read 5 remaining paragraphs | Comments

An anonymous reader writes “Mozilla on Tuesday announced a massive change to the way it loads third-party plugins in Firefox. The company plans to enable Click to Play for all versions of all plugins, except the latest release of Flash. This essentially means Firefox will soon only load third-party plugins when users click to interact with the plugin. Currently, Firefox automatically loads any plugin requested by a website, unless Mozilla has blocked it for security reasons (such as for old versions of Java, Silverlight, and Flash).” Read more of this story at Slashdot.