New submitter Kinwolf writes: Security researchers have identified a new family of Linux rootkits that, despite running from user mode, can be hard to detect and remove. Called Umbreon, after a Pokemon character that hides in the darkness, the rootkit has been in development since early 2015 and is now being sold on the underground markets. [It targets Linux-based systems on the x86, x86-64 and ARM architectures, including many embedded devices such as routers.] According to malware researchers from antivirus firm Trend Micro, Umbreon is a so-called ring 3 rootkit, meaning that it runs from user mode and doesn’t need kernel privileges. Despite this apparent limitation, it is quite capable of hiding itself and persisting on the system. The reports adds: “The rootkit uses a trick to hijack the standard C library (libc) functions without actually installing any kernel objects. Umbreon hijacks these functions and forces other Linux executables to use its own libc-like library. This puts the rootkit in a man-in-the-middle position, capable of modifying system calls made by other programs and altering their output. The rootkit also creates a hidden Linux account that can be accessed via any authentication method supported by Linux, including SSH (Secure Shell). This account does not appear in files like /etc/passwd because the rootkit can modify the output of such files when read, the Trend Micro researchers said in a blog post. Umbreon also has a backdoor component called Espereon, named after another Pokemon character, that can establish a reverse shell to an attacker’s machine when a TCP packet with special field values are received on the monitored Ethernet interface of an affected device.” Read more of this story at Slashdot.
See more here:
Pokemon-Themed Umbreon Rootkit Targets Linux Systems On ARM and x86
Dustin Volz, reporting for Reuters: Police do not need a warrant to obtain a person’s cellphone location data held by wireless carriers, a U.S. appeals court ruled on Tuesday, dealing a setback to privacy advocates. The full 4th U.S. Circuit Court of Appeals in Richmond, Virginia, voted 12-3 that the government can get the information under a decades-old legal theory that it had already been disclosed to a third party, in this case a telephone company. The ruling overturns a divided 2015 opinion from the court’s three-judge panel and reduces the likelihood that the Supreme Court would consider the issue. The decision arose from several armed robberies in Baltimore and Baltimore County, Maryland, in early 2011, leading to the convictions of Aaron Graham and Eric Jordan. The convictions were based in part on 221 days of cellphone data investigators obtained from wireless provider Sprint, which included about 29, 000 location records for the defendants, according to the appeals court opinion. Read more of this story at Slashdot. 
Zothecula (1870348) writes “At Microsoft’s Think Next symposium in Tel Aviv, Israeli startup StoreDot has demonstrated the prototype of a nanodot-based smartphone battery it claims can fully charge in just under 30 seconds. With the company having plans for mass production, this technology could change the way we interact with portable electronics, and perhaps even help realize the dream of a fast-charging electric car.” Read more of this story at Slashdot. 
New code inside of the latest iOS 7 beta suggests Apple plans to implement biometric scanning to the home button of its next iPhone. [Read more] 
Thousands of spaceships take part in the largest battle in Eve Online history. Check out these exclusive screenshots from someone who was there. [Read more] 
The company says that it’s planning to create 5, 000 more jobs for fulfillment centers around the country, and also has already started hiring 2, 000 new customer service employees. [Read more] 
The social network has embarked on a new test program that would see ads for mobile games appears as notifications, says AllThingsD. [Read more]