Tag: digest-golf

Hackers compromise official PHP website, infect visitors with malware (updated)

Wikipedia Maintainers of the open-source PHP programming language have locked down the php.net website after discovering two of its servers were hacked to host malicious code designed to surreptitiously install malware on visitors’ computers. The compromise was discovered Thursday morning by Google’s safe browsing service , which helps the Chrome, Firefox, and Safari browsers automatically block sites that serve drive-by exploits. Traces of the malicious JavaScript code served to some php.net visitors were captured and posted to Hacker News here and, in the form of a pcap file , to a Barracuda Networks blog post here . The attacks started Tuesday and lasted through Thursday morning, PHP officials wrote in a statement posted late that evening . Eventually, the site was moved to a new set of servers, PHP officials wrote in an earlier statement . There’s no evidence that any of the code they maintain has been altered, they added. Encrypted HTTPS access to php.net websites is temporarily unavailable until a new secure sockets layer certificate is issued and installed. The old certificate was revoked out of concern the intruders may have accessed the private encryption key. User passwords will be reset in the coming days. At time of writing, there was no indication of any further compromise. Read 8 remaining paragraphs | Comments        

Taken from:
Hackers compromise official PHP website, infect visitors with malware (updated)

Microsoft posts record Q1 revenue, increased operating income

Robert Scoble / flickr Microsoft has posted its results for the first quarter of its 2014 financial year. Compared to the same quarter last year, revenue is up 16 percent to $18.529 billion, operating income is up 19 percent to $6.334 billion, and earnings per share is also up, rising 17 percent to $0.62. The way Microsoft is reporting its financials has changed as a result of the reorganization that started earlier this year . Broadly, the results are split into two main parts: a “Devices and Consumer” division, which spans all sales that are end-user facing, including OEM Windows licensing, retail software, Xbox, Windows Phone (including related patent licensing), and Bing advertising; and a “Commercial” division, which spans volume license sales, server products, and consulting. This means that under the new reporting system, some products have their revenue split. Office, Office 365, and Windows, in particular, have both consumer and commercial sales. Read 17 remaining paragraphs | Comments        

Read More:
Microsoft posts record Q1 revenue, increased operating income

US carbon emissions hit lowest level since 1994 despite economic growth

US EIA Last year, the US saw its lowest carbon emissions since 1994, continuing a downward trend that began in 2008 during the economic crisis. It marks the second year in a row that carbon emissions have dropped despite a growth in gross domestic product. Prior to the last few years, economic growth had been closely tied to increased carbon emissions. The US Energy Information Administration released the data yesterday after having taken a bit of an unwanted break during the government shutdown. In analyzing the data, it identified a variety of causes for the drop in carbon emissions. As shown above, population size and economic activity both grew last year, which would normally push emissions up. But the energy required for that economic activity dropped, and the carbon intensity of the energy supply dropped as well. Combined, those two factors more than offset the economic growth. One of the simplest factors behind the lower energy use was a relatively warm winter at the start of 2012, which lowered residential energy demand significantly. Transportation also managed to contribute. Although miles travelled held steady, the turnover in the vehicle fleet brought more energy-efficient cars onto the road, meaning that it took less fuel to do all that travel. Another contributor is the turnover in electrical generation. Coal use dropped dramatically, replaced by a combination of natural gas and wind power. A drop in manufacturing contributed to a slight drop in overall energy use. Read 2 remaining paragraphs | Comments        

View article:
US carbon emissions hit lowest level since 1994 despite economic growth

OS X Mavericks comes out today—and it’s free

Hang ten and get gnarly, dudes. OS X 10.9 Mavericks is here. Named for a totally tubular surf spot in California, the latest Apple desktop operating system will be thundering our way today. Like Lion and Mountain Lion before it, it will be available in the Mac App Store. Upgraders can download the software for no cost. The release was announced as part of Apple’s October 22 press event at the Yerba Buena Center for the Arts in San Francisco, CA. The new operating system brings a lot of under the hood changes, including a fix for OS X multi-monitor support. Another hotly anticipated feature is Finder Tabs, which takes a page from tabbed Web browser behavior and should allow users more flexibility when managing files. Visually, the new operating system has banished some of the more despised skeuomorphic elements that have crept onto the desktop over time. Apple’s PR images show that things like iCal’s leather stitching have been excised, leaving many applications less “touchable” but also less visually cluttered. Efficient resource usage is also a major theme in the updated operating system. Apple’s computer sales are dominated by portables, and Mavericks includes a great number of named features built to reduce the amount of power a Mac consumes and keep it running longer. In fact, Apple says that merely by installing Mavericks, Haswell-equipped Mac portables like the Macbook Air will gain at least an extra hour of battery life. Additionally, Mavericks gets a little smarter about memory management, compressing applications in memory and dynamically allocating memory to the GPU based on performance requirements. Read 2 remaining paragraphs | Comments        

Read More:
OS X Mavericks comes out today—and it’s free

$2,999 Mac Pro to go on sale in December in all its Dalek-resembling glory

Mac Pro buyers to Apple: Shut up and take my money! Comedy Central The long gap between releases of Apple’s most powerful computer—the Mac Pro—is finally about to come to an end. The company today announced that the first major upgrade of the Pro since August 2010 will be released in December. The entry-level model will cost $2,999 with 3.7GHz quad-core Xeon processors, 12GB of DRAM, dual AMD FirePro D300 graphics chips with 2GB VRAM each, and 256GB of SSD. Mac users with heavy processing needs, such as graphics professionals , were disappointed when Apple didn’t refresh the stagnating platform last year. CEO Tim Cook promised that great news for Mac Pro users would come sometime in 2013 , and it did in June when Apple unveiled a Mac Pro with a smaller design and upgraded internals. At the time, Apple said only that it would be ” coming later this year ,” and the company didn’t announce the official ship date until today. Read 9 remaining paragraphs | Comments        

More here:
$2,999 Mac Pro to go on sale in December in all its Dalek-resembling glory

How Apple’s Address Book app could allow the NSA to harvest your contacts

Ashkan Soltani Overlooked in last week’s revelation that the National Security Agency is harvesting hundreds of millions of e-mail address books around the world was this surprising factoid: Apple makes this mass collection easier because the Address Book app that by default manages Mac contacts doesn’t use HTTPS encryption when syncing with Gmail accounts. As a result, addresses that automatically travel between Macs and Google servers are sent as plain text , independent privacy researcher Ashkan Soltani wrote in The Washington Post last Monday. He provided the above screenshot demonstrating that Address Book contents appear in the clear to anyone who has the ability to monitor traffic over a Wi-Fi network or other connection. His observation came 15 months after another Mac user also warned that the Mac app offered no way to enable HTTPS when syncing e-mail address lists with Gmail . “It appears that it’s an Apple issue,” Soltani told Ars, referring to the inability to enable HTTPS when Apple’s Address Book is updated to a user’s Gmail account. “Their other products support Gmail over via HTTPS, so I suspect it would be a three-line fix in the contacts to alleviate this problem.” Read 7 remaining paragraphs | Comments        

View article:
How Apple’s Address Book app could allow the NSA to harvest your contacts

Windows 8.1: What a difference a year makes

Windows 8 was an ambitious operating system. Microsoft’s goal was, and still is, to have a single operating system that can span the traditional PC, the tablet, and everything in between . To do this, the company introduced a new kind of application —the “Modern” or “Metro” style application. It created a new style of interaction—an edge-based UI for touch users, a hot-corner based one for mouse users. And it developed a new application launcher—the Start screen. Microsoft retained the familiar Windows desktop for running traditional mouse and keyboard driven Windows software. Windows 8 worked. It was a viable operating system, and in broad strokes, it fulfilled Microsoft’s dream of one operating system for tablets and PCs. But Windows 8 was far from perfect. Its problems were in three main areas. Read 91 remaining paragraphs | Comments        

Read more here:
Windows 8.1: What a difference a year makes

To pay off webcam spies, Detroit kid pawns $100k in family jewels for $1,500

Yesterday, I gave a one-hour talk at the University of Michigan on remote administration tools (RATs) and the surprising ways they allow hackers, corporations, schools, and police to spy on computer users by activating microphones and webcams. The talk contains some pretty wild stories—but a woman approached me afterward to let me know that the craziest single RATing story she had ever heard just took place up the road in Detroit. And she was right. The actual RAT attack in question doesn’t sound particularly novel, except that in this case the target was not a young woman (the more typical victim, especially when it comes to voyeurism/sextortion) but a young man named Hector Hernandez. The 17-year old high school student’s computer was infected with a RAT, which the software’s owner used to spy on Hernandez and eventually record an “embarrassing” video of him. The RAT owner then approached Hernandez through his Facebook account and demanded money—$300, then $1,100—or the video would be released to the world. The blackmail demand sent to Hernandez’s Facebook account. Hernandez offers no clues to the content of the video—a long list of scenarios is not difficult to imagine—but in an on-camera interview with Detroit’s FOX affiliate , he makes clear that he simply couldn’t bring himself to tell his parents about the situation. The video was so shameful to Hernandez that instead of going to police or parents, he instead took an estimated $100,000 of family heirlooms and jewelry down the street to a pawn shop. He showed them his ID, which made clear he was only 17, but the pawn shop took the jewelry anyway—and gave Hernandez a mere $1,500 for the lot. Read 3 remaining paragraphs | Comments        

See more here:
To pay off webcam spies, Detroit kid pawns $100k in family jewels for $1,500

New York City is getting wireless EV chargers disguised as manholes

Hevo Power Imagine an electric Pepsi delivery truck in Manhattan. It makes dozens of stops at the same locations, day in and day out. Now what if at each stop—or every other stop—it could wirelessly top up its battery pack as the driver drops off another case of sugar water. That’s what Hevo Power is aiming to do with a new wireless charging system that blends into its surroundings by aping a manhole. “I was walking down the street, pondering how wireless charging could be deployed,” Hevo’s CEO and founder Jeremy McCool told WIRED. “I was standing at 116th and Broadway, and I was looking down and saw a manhole cover and thought, that’s the ticket. There are no cords, no hazards. Everything can be underneath the manhole cover.” The result is a new system of wireless charging stations that Hevo plans to deploy in New York’s Washington Square Park in early 2014, beginning with two Smart ForTwo electric vehicles operated by NYU. Read 8 remaining paragraphs | Comments        

Read More:
New York City is getting wireless EV chargers disguised as manholes

Square drastically simplifies Internet cash transfers

The screen where users enter their debit card information. Financial startup Square launched a new arm of its business Tuesday that allows two parties to transfer cash between themselves using only their debit card numbers and e-mail. Square Cash may trump similar services like PayPal in ease of use in that it doesn’t require extra bank info, and transactions can happen directly via e-mail. Competitors like PayPal have been able to handle direct debit transactions for some time, though setup is a bit more of a hassle. Users have to enter their checking account numbers and routing numbers and then verify their accounts with two small deposits, so the process can take a few days. With Square Cash, the process begins in e-mail : users send an e-mail to the person they want to pay, cc cash@square.com, and enter the amount in the subject line. If it’s their first transaction, Square sends a second e-mail that leads the user to a screen where they enter their debit card number, expiration date, and ZIP code. Once the person on the other end gets the e-mail and fills out the same form, the transaction is completed in 1-2 days. Read 2 remaining paragraphs | Comments        

View original post here:
Square drastically simplifies Internet cash transfers