article – Page 107

A Hacker Just Pwned Over 150,000 Printers Exposed Online

Last year an attacker forced thousands of unsecured printers to spew racist and anti-semitic messages. But this year’s attack is even bigger. An anonymous reader writes: A grey-hat hacker going by the name of Stackoverflowin has pwned over 150, 000 printers that have been left accessible online. For the past 24 hours, Stackoverflowin has been running an automated script that searches for open printer ports and sends a rogue print job to the target’s device. The script targets IPP (Internet Printing Protocol) ports, LPD (Line Printer Daemon) ports, and port 9100 left open to external connections. From high-end multi-functional printers at corporate headquarters to lowly receipt printers in small town restaurants, all have been affected. The list includes brands such as Afico, Brother, Canon, Epson, HP, Lexmark, Konica Minolta, Oki, and Samsung. The printed out message included recommendations for printer owners to secure their device. The hacker said that people who reached out were very nice and thanked him. The printers apparently spew out an ASCII drawing of a robot, along with the words “stackoverflowin the hacker god has returned. your printer is part of a flaming botnet… For the love of God, please close this port.” The messages sometimes also include a link to a Twitter feed named LMAOstack. Read more of this story at Slashdot.

Taken from:
A Hacker Just Pwned Over 150,000 Printers Exposed Online

Privacy-Centric Linux Distro Tails 3.0 Will Drop 32-Bit Processor Support

All of its outgoing connections are routed through Tor, and it even blocks non-anonymous connections. You can carry it around on a USB stick, and Edward Snowden uses it. But a big change is coming with Tails 3.0. BrianFagioli quotes BetaNews: Unfortunately for some users, Tails will soon not work on their computers. The upcoming version 3.0 of the operating system is dropping 32-bit processor support. While a decline in compatibility is normally a bad thing, in this case, it is good. You see, because there are so few 32-bit Tails users, the team was wasting resources by supporting them. Not to mention, 64-bit processors are more secure too… “In the beginning of 2016, only 4% of Tails users were still using a 32-bit computer. Of course, some of these computers will keep working for a while. But once the number had fallen this low, the benefits of switching Tails to 64-bit outweighed the reasons we had to keep supporting 32-bit computers, ” says the Tails team… “In the last few years, the developers who maintain Tails have spent lots of time addressing such issues. We would rather see them spend their time in ways that benefit our users on the long term, and not on problems that will vanish when Tails switches to 64-bit eventually.” Read more of this story at Slashdot.

Continue Reading:
Privacy-Centric Linux Distro Tails 3.0 Will Drop 32-Bit Processor Support

Swirling Underwater Fish Tornado Makes Sharknado Look Tame

As currents shift in the southeastern Pacific Ocean, they bring an abundance of nutrients and plankton to the region, luring predators of all sizes. Swarms of anchoveta arrive first for an easy meal, but soon find themselves having to come up with unique ways to fend off larger predators like sharks and tuna. The… Read more…

More:
Swirling Underwater Fish Tornado Makes Sharknado Look Tame

These Pom-Pom Crabs Are Everybody’s Super Bowl Mascot

Here’s a great cheer for any cheerleading boxer crabs planning to watch the Super Bowl this weekend: Read more…

Read the original:
These Pom-Pom Crabs Are Everybody’s Super Bowl Mascot

Cisco Patches ‘Prime Home’ Flaw That Allowed Hackers To Reach Into People’s Homes

Orome1 quotes a report from Help Net Security: Cisco has patched a critical authentication bypass vulnerability that could allow attackers to completely take over Cisco Prime Home installations, and through them mess with subscribers’ home network and devices. The vulnerability (CVE-2017-3791), found internally by Cisco security testers, affects the platform’s web-based GUI, and can be exploited by remote attackers to bypass authentication and execute any action in Cisco Prime Home with administrator privileges. No user interaction is needed for the exploit to work, and exploitation couldn’t be simpler: an attacker just needs to send API commands via HTTP to a particular URL. The bug exists in versions 6.4 and later of Cisco Prime Home, but does not affect versions 5.2 and earlier. “Administrators can verify whether they are running an affected version by opening the Prime Home URL in their browser and checking the Version: line in the login window. If currently logged in, the version information can be viewed in the bottom left of the Prime Home GUI footer, next to the Cisco Prime Home text, ” Cisco instructed in the security advisory. Read more of this story at Slashdot.

Originally posted here:
Cisco Patches ‘Prime Home’ Flaw That Allowed Hackers To Reach Into People’s Homes

ZeniMax Awarded a Half Billion in Lawsuit Against Facebook

ZeniMax, the owner of game studios Bethestha Softworks and id Software has been awarded $500 million by a jury in its lawsuit against Oculus Virtual Reality and its parent company, Facebook. Read more…

Original post:
ZeniMax Awarded a Half Billion in Lawsuit Against Facebook

LibreOffice 5.3 Released, Touted As ‘One of the Most Feature-Rich Releases’ Ever

An anonymous reader shares a report: A new month, and a brand new version of open-source office suite LibreOffice is now available to download. And what a release it is. LibreOffice 5.3 introduces a number of key new features and continues work on improving the look and feel of the app across all major platforms. The Document Foundation describes LibreOffice 5.3 as “one of the most feature-rich releases in the history of the application.” One of the headline features is called MUFFIN interface, a new toolbar design similar to the Microsoft Office Ribbon UI. Read more of this story at Slashdot.

The Future of iOS is 64-Bit Only — Apple To Stop Support For 32-Bit Apps

Your ability to run 32-bit apps on an iOS device is coming to an end. As several other Apple news sites have reported, Apple has updated the pop-up warning in the iOS 10.3 beta to say that the 32-bit app you’re running “will not work with future versions of iOS.” The warning goes on to say that the “developer of this app needs to update it to improve its compatibility.” From a ComputerWorld article (edited for clarity): In October 2014, Apple told developers that all new apps created after February 1, 2015 must have 64-bit support. Shortly after, Apple announced that all updates to apps must also be 64-bit compatible. Any 32-bit apps submitted to Apple after June 2015 would be rejected. Last September, Apple announced that it was going to remove apps from the App Store that did not “function as intended, don’t follow current review guidelines, or are outdated.” Presumably, this would include apps that did not meet the 64-bit requirement. Apple does not state which version of iOS will be 64-bit only, but since this is a major development, you can probably assume that this will happen in iOS 11. An announcement will likely be made during Apple’s Worldwide Developer Conference this summer. The switch to 64-bit only support means that older iOS devices built on 32-bit architecture will not be able to upgrade to the new iOS. This includes the iPhone 5, 5c, and older, the standard version of the iPad (so not the Air or the Pro), and the first iPad mini. Read more of this story at Slashdot.

See more here:
The Future of iOS is 64-Bit Only — Apple To Stop Support For 32-Bit Apps

GitLab.com Melts Down After Wrong Directory Deleted, Backups Fail

An anonymous reader quotes a report from The Register: Source-code hub Gitlab.com is in meltdown after experiencing data loss as a result of what it has suddenly discovered are ineffectual backups. On Tuesday evening, Pacific Time, the startup issued the sobering series of tweets, starting with “We are performing emergency database maintenance, GitLab.com will be taken offline” and ending with “We accidentally deleted production data and might have to restore from backup. Google Doc with live notes [link].” Behind the scenes, a tired sysadmin, working late at night in the Netherlands, had accidentally deleted a directory on the wrong server during a frustrating database replication process: he wiped a folder containing 300GB of live production data that was due to be replicated. Just 4.5GB remained by the time he canceled the rm -rf command. The last potentially viable backup was taken six hours beforehand. That Google Doc mentioned in the last tweet notes: “This incident affected the database (including issues and merge requests) but not the git repos (repositories and wikis).” So some solace there for users because not all is lost. But the document concludes with the following: “So in other words, out of 5 backup/replication techniques deployed none are working reliably or set up in the first place.” At the time of writing, GitLab says it has no estimated restore time but is working to restore from a staging server that may be “without webhooks” but is “the only available snapshot.” That source is six hours old, so there will be some data loss. Read more of this story at Slashdot.

See original article:
GitLab.com Melts Down After Wrong Directory Deleted, Backups Fail

Peter Capaldi Is Leaving Doctor Who

It’s time to say farewell to the latest incarnation of the world’s most beloved Time Lord: Peter Capaldi has officially announced his departure from Doctor Who at the end of the current series. Read more…

Originally posted here:
Peter Capaldi Is Leaving Doctor Who

Ken May

Tag: article