Enlarge / A customer in Apple’s store in Auckland, New Zealand, in 2010. A report by a major New Zealand newspaper found Apple hasn’t paid any taxes in New Zealand. (credit: Brendon O’Hagan / AFP / Getty Images ) The big technology story in New Zealand this weekend is about Apple’s tax bill. Or rather, the lack thereof. The electronics giant sold $4.2 billion (NZD) worth of products in New Zealand, but it didn’t pay any local tax at all. That’s according to a Saturday report from the New Zealand Herald . Apple did pay $37 million in income tax based on its New Zealand sales, but it paid that money to the Australian government, since that’s where the New Zealand operation is run from. The arrangement to send the tax on New Zealand profits to Australia has been in place since at least 2007. Experts confirmed the arrangement is legal under New Zealand law. Read 9 remaining paragraphs | Comments
See the original post:
Apple sold $4.2 billion of product in New Zealand, paid $0 local taxes
Security researchers at KU Leuven have discovered an attack technique, dubbed HEIST (HTTP Encrypted Information can be Stolen Through TCP-Windows), which can exploit an encrypted website using only a JavaScript file hidden in a maliciously crafted ad or page. ArsTechnica reports: Once attackers know the size of an encrypted response, they are free to use one of two previously devised exploits to ferret out the plaintext contained inside it. Both the BREACH and the CRIME exploits are able to decrypt payloads by manipulating the file compression that sites use to make pages load more quickly. HEIST will be demonstrated for the first time on Wednesday at the Black Hat security conference in Las Vegas. “HEIST makes a number of attacks much easier to execute, ” Tom Van Goethem, one of the researchers who devised the technique, told Ars. “Before, the attacker needed to be in a Man-in-the-Middle position to perform attacks such as CRIME and BREACH. Now, by simply visiting a website owned by a malicious party, you are placing your online security at risk.” Using HEIST in combination with BREACH allows attackers to pluck out and decrypt e-mail addresses, social security numbers, and other small pieces of data included in an encrypted response. BREACH achieves this feat by including intelligent guesses — say, @gmail.com, in the case of an e-mail address — in an HTTPS request that gets echoed in the response. Because the compression used by just about every website works by eliminating repetitions of text strings, correct guesses result in no appreciable increase in data size while incorrect guesses cause the response to grow larger. Read more of this story at Slashdot. 
mpicpp sends this news from CNET: Reports are emerging that Samsung smart TVs have begun inserting short advertisements directly into video streaming apps, with no influence from the third-party app providers. The news comes just days after Samsung made headlines for another incursion into users’ lounge rooms, when it was revealed that its TV voice recognition software is capable of capturing personal information and transmitting it to third parties. … The issue has been reported on the Plex streaming service — a brand of media player that allows users to stream their own video from a personal library or hard drive and push it to a smart TV. Samsung says this was not intentional, and that they’ve fixed it so the ads should no longer show up. Read more of this story at Slashdot. 
merbs writes “Earlier this year, Denmark’s leadership announced that the nation would run entirely on renewable power by 2050. Wind, solar, and biomass would be ramped up while coal and gas are phased out. Now Denmark has gone even further, and plans to end coal by 2025. Read more of this story at Slashdot. 
MojoKid writes Not many would argue that current console and PC graphics technologies still haven’t reached a level of “photo-realism.” However, a company by the name of Euclideon is claiming to be preparing to deliver that holy grail based on laser scanning and voxel engine-based technologies. The company has put together a six-minute video clip of its new engine, and its genuinely impressive. There’s a supposed-to-be-impressive unveil around the two minute mark where the announcer declares he’s showing us computer-generated graphics rather than a digital photo — something you’ll probably have figured out long before that point. Euclideon’s proprietary design purportedly uses a laser scanner to create a point cloud model of a real-world area. That area can then be translated into a voxel renderer and drawn by a standard GPU. Supposedly this can be done so efficiently and with such speed that there’s no need for conventional load screens or enormous amounts of texture memory but rather by simply streaming data off conventional hard drives. Previously, critiques have pointed to animation as one area where the company’s technique might struggle. Given the ongoing lack of a demonstrated solution for animation, it’s fair to assume this would-be game-changer has some challenges still to solve. That said, some of the renderings are impressive. Read more of this story at Slashdot.