Month: May 2017

Keylogger Found in Audio Driver of HP Laptops, Says Report

An anonymous reader writes: The audio driver installed on some HP laptops includes a feature that could best be described as a keylogger, which records all the user’s keystrokes and saves the information to a local file, accessible to anyone or any third-party software or malware that knows where to look. Swiss cyber-security firm modzero discovered the keylogger on April 28 and made its findings public today. According to researchers, the keylogger feature was discovered in the Conexant HD Audio Driver Package version 1.0.0.46 and earlier. This is an audio driver that is preinstalled on HP laptops. One of the files of this audio driver is MicTray64.exe (C:windowssystem32mictray64.exe). This file is registered to start via a Scheduled Task every time the user logs into his computer. According to modzero researchers, the file “monitors all keystrokes made by the user to capture and react to functions such as microphone mute/unmute keys/hotkeys.” Read more of this story at Slashdot.

Read the original:
Keylogger Found in Audio Driver of HP Laptops, Says Report

Ubuntu Arrives in the Windows Store, Suse and Fedora Are Coming To the Windows Subsystem For Linux

At its Build developer conference today, Microsoft announced that Ubuntu has arrived in the Windows Store. From a report: The company also revealed that it is working with Fedora and Suse to bring their distributions to the Windows Subsystem for Linux (WSL) in Windows 10. At the conference last year, Microsoft announced plans to bring the Bash shell to Windows. The fruits of that labor was WSL, a compatibility layer for running Linux binary executables (in ELF format) natively on Windows, which arrived with the Windows 10 Anniversary Update released in August 2016. Microsoft also partnered with Canonical to allow Ubuntu tools and utilities to run natively on top of the WSL. By bringing Ubuntu to the Windows Store, the company is now making it even easier for developers to install the tools and run Windows and Linux apps side by side. Working with other Linux firms shows that Microsoft’s deal with Canonical was not a one-time affair, but rather part of a long-term investment in the Linux world. Read more of this story at Slashdot.

Continued here:
Ubuntu Arrives in the Windows Store, Suse and Fedora Are Coming To the Windows Subsystem For Linux

New Windows look and feel, Neon, is officially the “Microsoft Fluent Design System”

Enlarge / Project Neon in the Groove Music app. (credit: Tom Hounsell ) SEATTLE—Earlier this year, pictures of a new Windows look and feel leaked . Codenamed Project Neon , the new look builds on Microsoft Design Language 2 (MDL2), the styling currently used in Windows 10, to add elements of translucency and animation. Neon has now been officially announced, and it has an official new name: the Microsoft Fluent Design System. The awkward MDL2 name exists because the original codename for the geometric, text-centric style introduced with Windows Phone 7 and incrementally iterated ever since was subject of a trademark dispute. That look and feel was internally named Metro, but Microsoft had to stop using the Metro name after pushback from a German supermarket chain . The company didn’t initially have any particularly good name to refer to the styling formerly known as Metro, so many people continued to use that term for lack of anything better. It wasn’t until a couple of months after dropping “Metro” that a new name, “Microsoft Design Language,” was settled on. Our understanding is that Neon befell a similar fate; someone out there is using the Neon name, forcing Microsoft to pick a different appellation. This time around, however, the company has recognized that it’s important to have an official name for the style that it can talk about and describe, giving us “Microsoft Fluent Design System.” Read 6 remaining paragraphs | Comments

See more here:
New Windows look and feel, Neon, is officially the “Microsoft Fluent Design System”

Windows 10 fall update will restore (and improve) OneDrive’s best feature

Microsoft Windows 10 was a big improvement over Windows 8.1 in most important ways, but it made a big change to the way OneDrive syncing worked. In Windows 8.1, you could see all the files you had stored in OneDrive, but the operating system would only actually download and open the file when you needed to open it. At least for PCs that usually have Internet connections, this was a neat way to offer cloud file syncing without consuming gigabytes of space for infrequently used files on every computer you were signed into. But the behavior could be error-prone—apps could attempt to open the placeholder files created by OneDrive rather than the files themselves—and it could create confusion about which files were actually available offline. So in the initial releases of Windows 10, Microsoft changed the behavior to be more Dropbox-esque . All OneDrive files are now downloaded to your PC when you sign in, though as with Dropbox you can choose to only sync selected folders based on what you need to have available at all times. Read 4 remaining paragraphs | Comments

Read More:
Windows 10 fall update will restore (and improve) OneDrive’s best feature

Google’s mysterious Fuchsia OS looks like an Android re-do

When we last looked at Google’s Fuchsia operating system , it was very modest. While it was designed for everything from Internet of Things devices to PCs, there wasn’t even a graphical interface to show. Well, things have… evolved. Ars Technica has revisited Fuchsia several months later, and it now touts an interface (nicknamed Armadillo) that makes it clear this isn’t just some after-hours experiment. It’s only a set of placeholders at the moment, but it gives you a good idea as to what to expect. The home screen is a large, vertically scrolling list of cards for “stories, ” or collections of apps and OS components that work together to complete a given task. There’s also a Google Now -style section that has “suggestion” cards for tasks — use them and you’ll either add to an existing story or create a new one. The prototype UI also includes a simple split-screen interface, and scales up to tablet size. Fuchsia isn’t based on Linux, like Android or Chrome OS, but it still uses open source code that would let anyone tinker with the inner workings. Apps, meanwhile, are built using Google’s Flutter kit, which lets developers write both Android and iOS apps. Things are clearly coming along. But there’s one overriding question: just what role will Fuchsia have? Google’s Travis Geiselbrecht stresses that this “isn’t a toy thing, ” but there’s no public strategy. Ars speculates that Google is treating this as a sort of Android re-do: what if the company could design a platform while dumping all the technology it no longer needs or wants, such as Linux or any traces of Java ? The use of Flutter would let you run Android apps until there’s broader software support. It might take years before Fuchsia is ready for public use, assuming that’s the ultimate plan, but there could be a day where Android is no longer the center of Google’s computing universe. Source: Ars Technica

See the article here:
Google’s mysterious Fuchsia OS looks like an Android re-do

Mac users installing popular DVD ripper get nasty backdoor instead

(credit: Patrick Wardle ) Hackers compromised a download server for a popular DVD-ripping software named HandBrake and used it to push stealthy malware that stole victims’ password keychains, password vaults, and possibly the master credentials that decrypted them, security researchers said Monday. Over a four-day period ending Saturday, a download mirror located at download.handbrake.fr delivered a version of the video conversion software that contained a backdoor known as Proton, HandBrake developers warned over the weekend . At the time that the malware was being distributed to unsuspecting Mac users, none of the 55 most widely used antivirus services detected it. That’s according to researcher Patrick Wardle , who reported results here and here from the VirusTotal file-scanning service. When the malicious download was opened, it directed users to enter their Mac administer password, which was then uploaded in plain text to a server controlled by the attackers. Once installed, the malware sent a variety of sensitive user files to the same server. In a blog post published Monday morning , Thomas Reed, director of Mac offerings at antivirus provider Malwarebytes, wrote: Read 5 remaining paragraphs | Comments

More:
Mac users installing popular DVD ripper get nasty backdoor instead

The Blackbelt lets you 3D print really long items

 The conveyor belt has long been the center of wacky adventures. From Charlie Chaplin to Lucy, things whizzing by on a flat belt has made for comedy gold. Now you can watch your 3D printed objects whiz past on the Blackbelt, a conveyor system for FDM printing that lets you build huge objects. The Blackbelt Kickstarter will launch in 3 days and you can expect the system to cost about 9, 500 for… Read More

View original post here:
The Blackbelt lets you 3D print really long items

New ultra-high resolution printer makes colors from nanostructures

Researchers from the Technical University of Denmark demonstrated a new nanotechnology-based printing technique that produces long-lasting color images on plastic at resolutions up to 127,000 dots per inch, many times more detailed than traditional laser printers. The system uses a laser to alter the structure of nanoscale structures on the plastic material. (A nanometer is one-billionth of a meter; a human hair is around 60,000 nanometers in diameter.) The nanoprinting technique could also lead to new kinds of 3D displays or invisible watermarks. From New Scientist : The surface of the plastic is shaped so that it has lots of tiny pillars, one roughly every 200 nanometers. A thin film of the element germanium is then spread over the plastic. Heat from a laser melts the germanium on each pillar, morphing its shape and thickness. As a result, it reflects a specific color. The coating protects the shapes of the newly carved nanostructures. Resonant laser printing of structural colors on high-index dielectric metasurfaces (ScienceAdvances)

Read More:
New ultra-high resolution printer makes colors from nanostructures

NIST’s Draft To Remove Periodic Password Change Requirements Gets Vendors’ Approval

An anonymous reader writes: A recently released draft of the National Institute of Standards and Technology’s digital identity guidelines has met with approval by vendors. The draft guidelines revise password security recommendations and altering many of the standards and best practices security professionals use when forming policies for their companies. The new framework recommends, among other things: “Remove periodic password change requirements.” There have been multiple studies that have shown requiring frequent password changes to actually be counterproductive to good password security, said Mike Wilson, founder of PasswordPing. NIST said this guideline was suggested because passwords should be changed when a user wants to change it or if there is indication of breach. Read more of this story at Slashdot.

View the original here:
NIST’s Draft To Remove Periodic Password Change Requirements Gets Vendors’ Approval

This Synthetic Bone Implant Could Replace Painful Marrow Transplants

Thanks to advances in medicine, bone marrow transplants are no longer the last resorts they one were. Every year, thousands of marrow transplants are performed, a common treatment for ailments from bone marrow disease to leukemia. But because they first require a patient undergo radiation to kill off any existing bone… Read more…

View article:
This Synthetic Bone Implant Could Replace Painful Marrow Transplants