article – Page 4 – Tech Today w/ Ken May

Author of BrickerBot Malware Retires, Says He Bricked 10 Million IoT Devices

An anonymous reader writes: The author of BrickerBot — the malware that bricks IoT devices — has announced his retirement in an email to Bleeping Computer, also claiming to have bricked over 10 million devices since he started the “Internet Chemotherapy” project in November 2016. Similar to the authors of the Mirai malware, the BrickerBot developer dumped his malware’s source code online, allowing other crooks to profit from his code. The code is said to contain at least one zero-day. In a farewell message left on hundreds of hacked routers, the BrickerBot author also published a list of incidents (ISP downtimes) he caused, while also admitting he is likely to have drawn the attention of law enforcement agencies. “There’s also only so long that I can keep doing something like this before the government types are able to correlate my likely network routes (I have already been active for far too long to remain safe). For a while now my worst-case scenario hasn’t been going to jail, but simply vanishing in the middle of the night as soon as some unpleasant government figures out who I am, ” the hacker said. Read more of this story at Slashdot.

Searchable Database of 1.4 Billion Stolen Credentials Found On Dark Web

YVRGeek shares a report from IT World Canada: A security vendor has discovered a huge list of easily searchable stolen credentials in cleartext on the dark web, which it fears could lead to a new wave of cyber attacks. Julio Casal, co-founder of identity threat intelligence provider 4iQ, which has offices in California and Spain, said in a Dec. 8 blog his firm found the database of 1.4 billion username and password pairs while scanning the dark web for stolen, leaked or lost data. He said the company has verified at least a group of credentials are legitimate. What is alarming is the file is what he calls “an aggregated, interactive database that allows for fast (one second response) searches and new breach imports.” For example, searching for “admin, ” “administrator” and “root” returned 226, 631 passwords of admin users in a few seconds. As a result, the database can help attackers automate account hijacking or account takeover. The dump file was 41GB in size and was found on December 5th in an underground community forum. The total amount of credentials is 1, 400, 553, 869. Read more of this story at Slashdot.

Original post:
Searchable Database of 1.4 Billion Stolen Credentials Found On Dark Web

San Diego Comic-Con Wins Trademark Suit Against ‘Salt Lake Comic Con’

The Deseret News reports: A jury has found that Salt Lake Comic Con founders Dan Farr and Bryan Brandenburg, along with their company, violated a trademark when they named their fan convention a “comic con.” However, the jury decided that the trademark was not willfully violated, and only awarded $20, 000 of the $12 million that San Diego Comic-Con had asked for in damages. The decision came at the end of an eight-day jury trial and three years of legal maneuvering… And with an estimated 140 other fan conventions across the country calling themselves comic cons, the impact of the decision could be felt nationwide… The Salt Lake group also has an ongoing action with the U.S. Patent and Trademark Office seeking to invalidate San Diego’s “comic-con” trademark… San Diego Comic-Con, which has been holding events since 1970, has a trademark on “comic-con” with a hyphen, but was unsuccessful in its 1995 bid to trademark “comic con, ” with a space. The unhyphenated name “Comic Con International, ” as well as the event’s iconic “eye logo, ” are also protected by trademark. The event maintains that its trademarks cover the term “comic con” in all its forms… San Diego Comic-Con wanted more than $12 million in damages from Salt Lake, including over $9 million for a three-month “corrective advertising campaign” to dispel confusion… In his closing arguments, Michael Katz, an attorney for Salt Lake Comic Con, questioned the amount San Diego was seeking, noting that San Diego authorities said during trial the organization generally spends between $20, 000 and $30, 000 for a month of advertising. Slashdot reader AlanBDee writes: When I attended the Salt Lake City Comic Con I did assume it was the same organization that put on San Diego Comic-Con… But now I have to wonder how that will affect other Comic Cons around the nation? What should these comic based fan conventions be called if not Comic Con? Read more of this story at Slashdot.

AMD Quietly Made Some Radeon RX 560 Graphics Cards Worse

Brad Chacos: When the Radeon RX 560 launched in April it was the only RX 500-series card with a meaningful under-the-hood tech boost compared to the RX 400-series. The graphics processor in the older RX 460 cards packed 14 compute units and 896 stream processors; the upgraded Radeon RX 560 bumped that to 16 CUs and 1, 024 SPs. Now, some — but not all — of the Radeon RX 560s you’ll find online have specs that match the older 460 cards, and sometimes run at lower clock speeds to boot. AMD’s Radeon RX 560 page was also quietly altered to include the new configurations at some point, Heise.de discovered. The last snapshot of the page by the Internet Archive’s Wayback Machine occurred on July 7 and only lists the full-fat 16 CU version of the card, so the introduction of the nerfed 896 SP model likely occurred some time after that. Sifting through all of the available Radeon RX 560s on Newegg this morning reveals a fairly even split between the two configurations, all of which are being sold under the same RX 560 name. In a statement, AMD acknowledged the existence of 14 Compute Unit (896 stream processors) and 16 Compute Unit (1024 stream processor) versions of the Radeon RX 560. “We introduced the 14CU version this summer to provide AIBs and the market with more RX 500 series options. It’s come to our attention that on certain AIB and etail websites there’s no clear delineation between the two variants. We’re taking immediate steps to remedy this: we’re working with all AIB and channel partners to make sure the product descriptions and names clarify the CU count, so that gamers and consumers know exactly what they’re buying. We apologize for the confusion this may have caused.” Read more of this story at Slashdot.

Read the article:
AMD Quietly Made Some Radeon RX 560 Graphics Cards Worse

‘Watershed’ Medical Trial Proves Type 2 Diabetes Can Be Reversed

dryriver writes: For those suffering from type 2 diabetes, there is good news. Nearly half of the participants in a watershed trial of a new diabetes treatment were able to reverse their affliction. The method is quite simple — an all liquid diet that causes participants to lose a lot of weight, followed by a carefully controlled diet of real solid foods. Four times a day, a sachet of powder is stirred in water to make a soup or shake. They contain about 200 calories, but also the right balance of nutrients. If the patient can keep away from other foods long enough, there is a chance of reversing type 2 diabetes completely. Prof Roy Taylor, from Newcastle University, told the BBC: “It’s a real watershed moment. Before we started this line of work, doctors and specialists regarded type 2 as irreversible. But if we grasp the nettle and get people out of their dangerous state (being overweight), they can get remission of diabetes.” However, doctors are not calling this a cure. If the weight goes back on, then the diabetes will return. The trial only looked at people diagnosed with diabetes in the last six years. Doctors believe — but do not know with absolute certainty yet — that in people who have had the affliction much longer than that, there may be too much permanent damage to make remission possible. The trial results have been published in the Lancet medical journal. Read more of this story at Slashdot.

Read the original:
‘Watershed’ Medical Trial Proves Type 2 Diabetes Can Be Reversed

Man Hacks Jail Computer Network To Get Inmate Released Early

An anonymous reader writes: A Michigan man pleaded guilty last week to hacking the computer network of the Washtenaw County Jail, where he modified inmate records in an attempt to have an inmate released early. To breach the jail’s network, the attacker used only spear-phishing emails and telephone social engineering. The man called jail employees and posed as local IT staffers, tricking some into accessing a website, and downloading and installing malware under the guise of a jail system upgrade. Once the man (Konrads Voits) had access to this data, investigators said he accessed the XJail system, searched and accessed the records of several inmates, and modified at least one entry “in an effort to get that inmate released early.” Jail employees noticed the modification right away and alerted the FBI. The man as arrested a month later and is now awaiting sentencing (maximum 10 years and a fine of up to $250, 000). Read more of this story at Slashdot.

More:
Man Hacks Jail Computer Network To Get Inmate Released Early

DNA Analysis Finds That Yetis Are Actually Bears

schwit1 shares a report from Popular Science: University of Buffalo biologist Charlotte Lindqvist and her international team in Pakistan and Singapore provided the first strong evidence that presumed yetis are actually bears. They published their results in the Proceedings of the Royal Society B on Tuesday. Icon Film secured nine samples that purported to be genuine yeti artifacts, and Lindqvist gathered 15 samples from known bear populations. By sequencing mitochondria from all these sources, she and her fellow researchers were able to determine that all but one of the yeti artifacts actually came from local bears. That last sample was from a dog. They also figured out that Himalayan brown bears split off from the rest of the regional bear population several thousand years ago, which is why they’re so genetically distinct from most other brown bears. Living in geographic isolation for so long has separated them from other Asian brown bears, and even from their relatives on the nearby Tibetan plateau. They even look different. But prior to Lindqvist’s work, it wasn’t clear just how long Himalayan bears had been on their own. Researchers will need higher-quality samples to figure out the whole picture, but even this small step is major for a species that’s hardly been studied. Read more of this story at Slashdot.

See original article:
DNA Analysis Finds That Yetis Are Actually Bears

Researchers Identify 44 Trackers in More Than 300 Android Apps

Catalin Cimpanu, reporting for BleepingComputer: A collaborative effort between the Yale Privacy Lab and Exodus Privacy has shed light on dozens of invasive trackers that are embedded within Android apps and record user activity, sometimes without user consent. The results of this study come to show that the practice of collecting user data via third-party tracking code has become rampant among Android app developers and is now on par with what’s happening on most of today’s popular websites. The two investigative teams found tracking scripts not only in lesser known Android applications, where one might expect app developers to use such practices to monetize their small userbases, but also inside highly popular apps — such as Uber, Twitter, Tinder, Soundcloud, or Spotify. The Yale and Exodus investigation resulted in the creation of a dedicated website that now lists all apps using tracking code and a list of trackers, used by these apps. In total, researchers said they identified 44 trackers embedded in over 300 Android apps. Read more of this story at Slashdot.

See more here:
Researchers Identify 44 Trackers in More Than 300 Android Apps

Tom Baker Returns To Finish Shelved Doctor Who Episodes Penned By Douglas Adams

Zorro shares a report from The Register: The fourth and finest Doctor, Tom Baker, has reprised the role to finish a Who serial scuppered in 1979 by strike action at the BBC. Shada, penned by Hitchhiker’s Guide author Douglas Adams, was supposed to close Doctor Who’s 17th season. Location filming in Cambridge and a studio session were completed but the strike nixed further work and the project was later shelved entirely for fear it might affect the Beeb’s Christmas-time productions. The remaining parts have been filled in with animation and the voice of 83-year-old Baker, although he also filmed a scene. BBC Worldwide has now released the episodes, which interweave the 1979 footage with the new material to complete the story. “I loved doing Doctor Who, it was life to me, ” Baker told the BBC of his tenure as the much-loved Time Lord. “I used to dread the end of rehearsal because then real life would impinge on me. Doctor Who… when I was in full flight, then I was happy.” Read more of this story at Slashdot.

More:
Tom Baker Returns To Finish Shelved Doctor Who Episodes Penned By Douglas Adams

Lightning Can Trigger Nuclear Reactions, Creating Rare Atomic Isotopes

sciencehabit shares a report from Science Magazine: Rare forms of atoms, like carbon-13, carbon-14, and nitrogen-15, have long been used to figure out the ages of ancient artifacts and probe the nuances of prehistoric food chains. The source of these rare isotopes? Complicated cascades of subatomic reactions in the atmosphere triggered by high-energy cosmic rays from outer space. Now, a team of scientists is adding one more isotope initiator to its list: lightning. Strong bolts of lightning can unleash the same flurry of nuclear reactions as cosmic rays, the researchers report in Nature. But, they add, the isotopes created by these storms likely constitute a small portion of all such atoms — so the new findings are unlikely to change the way other scientists use them for dating and geotracing. Read more of this story at Slashdot.

Visit site:
Lightning Can Trigger Nuclear Reactions, Creating Rare Atomic Isotopes