Tag: feeds

New zero-day exploit hits fully patched Adobe Flash [Updated]

Update on October 14 at 1:15pm PDT: Adobe officials have confirmed this vulnerability affects Flash version 19.0.0.207 , which was released on Tuesday. The vulnerability has been cataloged as CVE-2015-7645. The company expects to release a fix next week. Attackers are exploiting a previously unknown vulnerability in fully patched versions of Adobe’s Flash Player so they can surreptitiously install malware on end users’ computers, security researchers warned Tuesday. So far, the attacks are known to target only government agencies as part of a long-running espionage campaign carried out by a group known as Pawn Storm, researchers from antivirus provider Trend Micro said in a blog post published Tuesday . It’s not unusual for such zero-day exploits to be more widely distributed once the initial element of surprise wanes. The critical security flaw is known to reside in Flash versions 19.0.0.185 and 19.0.0.207 and may also affect earlier versions. At this early stage, no other technical details are available. The researchers wrote: Read 3 remaining paragraphs | Comments

See more here:
New zero-day exploit hits fully patched Adobe Flash [Updated]

Toyota 2050 plans to cut CO2 from its new cars by 90 percent

Earlier today, Toyota unveiled a bold new plan for the company’s sustainability efforts. By the year 2050, it plans to have cut CO 2 emissions from its new cars by 90 percent (compared to 2010). Toyota also wants to completely eliminate CO 2 pollution from new car manufacturing, as well as over the entire lifecycle of a car including its recycling. These are bold goals. The company says it will build off the success of its Prius hybrids to cut vehicle emissions. Advanced hybrid powertrains will be a big research focus, and the company even gave a shout-out to silicon carbide supercapacitors. In addition, big things are planned for hydrogen. The Japanese government has been incentivizing its car industry to work with fuel cells, and road cars are starting to appear. The Toyota Mirai is already in production and coming to America, even if the fueling stations it will depend upon are few and far between. Completely eradicating CO 2 from the production and recycling of new cars is an equally big challenge. The company wants all its production factories to have zero emissions, in part through renewable energy and fuel cells. And it has goals to promote recycling and conservation around the world. More specifics are included in Toyota’s new environmental action plan —its sixth so far—which runs from 2016-2020. That means it will be a few years before we can judge if Toyota’s commitment to the environment is succeeding. Read on Ars Technica | Comments

Visit site:
Toyota 2050 plans to cut CO2 from its new cars by 90 percent

Cemu, the first working Nintendo Wii U emulator, publicly released

After months of fakes, a proper Wii U emulator is finally available for download—even if it is still rather janky. According to the developer, Cemu contains “basically no optimizations whatsoever,” no proper controller support, and no audio. For the time being, it’s only for Windows x64, although other platforms might eventually be supported. Ignoring all these caveats, it’s actually quite impressive if these videos are any indication of how far it’s come already. NES Remix Gameplay Windwaker HD booting up to menu (video link) Cemu, which is currently in what has been termed as its “proof-of-concept release” stage, requires OpenGL 3.3 to operate. It has an internal resolution of 1920×1080, and can run encrypted Wii U images (WUD) and RPX/RPL files. If you want to launch a game, it will need to be in raw dump format (WUS or ISO). There are plans to release updates on a fortnightly basis, although nothing has been set in stone as of yet. Interestingly, Cemu defies current emulator trends by not being an open-source project. Read 4 remaining paragraphs | Comments

Continue Reading:
Cemu, the first working Nintendo Wii U emulator, publicly released

Webflow’s “first visual CMS” is like WordPress mixed with Photoshop

A demo video showing off Webflow CMS. Web design tools like Webflow have done a lot to thin the line between designers and developers. Now, however, the birthed-by-Y-Combinator startup wants to take it further with what it describes as the world’s first visual content management system (CMS). There’s not much to it right now. In a nutshell, Webflow CMS is a barebones WordPress installation jammed into a Photoshop-like interface. The idea here is to provide a way to create “completely custom websites powered by dynamic content” without any knowledge of HTML, CSS, PHP, or databases. And to an extent, it works. The Webflow CMS allows users to create or use pre-existing “Collections”—templates for dynamic content types. From there, you can then determine the kind of fields associated with the Collection, such as whether they’re mandatory to be completed, if they’re to be linked to another Collection, and what kind of minimum word counts are to be expected. These criteria are universal for any instance of the Collection. All Blog Posts, for example, will draw from the parent Blog Posts Collection. Read 4 remaining paragraphs | Comments

Continue reading here:
Webflow’s “first visual CMS” is like WordPress mixed with Photoshop

Unionized video game voice actors overwhelmingly approve strike vote

Members of the SAG-AFTRA union have overwhelmingly approved a measure authorizing an “interactive media” strike that could have wide-ranging impact on the availability of professional voice talent for video game projects. The union announced today that 96.52 percent of its members voted in favor of the strike. That’s well above the 75 percent threshold that was necessary to authorize such a move, and a result the union is calling “a resounding success.” Despite the vote, union members will not strike immediately. Instead, a strike can now be called whenever the union’s National Board decides to declare it. Armed with that knowledge, SAG-AFTRA will be sending its Negotiating Comittee back to talk with major game publishers including EA, Activision, Disney, and Warner Bros., which are signatories to a current agreement with the union. After their old agreement technically expired at the end of 2014, both sides have failed to reach a new understanding in negotiation sessions in February and June. SAG-AFTRA is looking for a number of concessions from the game industry, including “back end bonus” royalties for games that sell at least two million units, “stunt pay” for “vocally stressful” work, and more information to be provided about projects before time-consuming auditions are scheduled. Read 1 remaining paragraphs | Comments

See more here:
Unionized video game voice actors overwhelmingly approve strike vote

Patreon was warned of serious website flaw 5 days before it was hacked

Enlarge / Results of a Shodan search performed on September 11 made it clear Patreon was vulnerable to code-execution attacks. (credit: Detectify) Five days before Patreon.com officials said their donations website was plundered by hackers, researchers at a third-party security firm notified them that a serious programming error could lead to disastrous results. The researchers now believe the vulnerability was the entry point for attackers who went on to publish almost 15 gigabytes’ worth of source code, user password data, and private messages . The error was nothing short of facepalm material. Patreon developers allowed a Web application tool known as the Werkzeug utility library to run on a public-facing subdomain. Specifically, according to researchers at Swedish security firm Detectify , one or more of Patreon’s live Web apps on zach.patreon.com was running Werkzeug debugging functions. A simple query on the Shodan search service brought the goof to the attention of Detectify researchers, who in turn notified Patreon officials on September 23. Adding to their concern, the same Shodan search shows thousands of other websites making the same game-over mistake. Remote code execution by design The reason for the alarm was clear. The Werkzeug debugger allows visitors to execute code of their choice from within the browser. Werkzeug developers have long been clear about this capability and the massive risks that stem from using it in production environments . But in case anyone missed the warning, an independent blogger called attention to the threat last December. Read 6 remaining paragraphs | Comments

Follow this link:
Patreon was warned of serious website flaw 5 days before it was hacked

Sprint continues decline, plans job cuts and cost cuts of $2.5 billion

(credit: Sprint) Sprint’s place among the big four US wireless carriers continues to be a precarious one, with news reports saying the company now aims to reduce its number of employees and cut between $2 billion and $2.5 billion in costs over the next six months. A memo from Sprint management to staff said there will be a hiring freeze and “job reductions,” according to   The Wall Street Journal . Sprint announced days ago that it will skip a major auction of low-band spectrum, a decision that could push the company further behind its rivals. Sprint has licenses to more spectrum than any other carrier, but AT&T and Verizon control a large majority of low-band spectrum, which is ideal for providing coverage over long distances and indoors. T-Mobile says it intends to buy enough low-band spectrum to cover the entire nation; Sprint says it can improve coverage with its existing spectrum by increasing the number of cell towers. Read 4 remaining paragraphs | Comments

Read the article:
Sprint continues decline, plans job cuts and cost cuts of $2.5 billion

Los Angeles schools reach $6.4 million settlement with Apple, Lenovo

(credit: Brad Flickinger ) Last week, the Los Angeles Unified School District (LAUSD) reached a settlement with Apple and Lenovo over a conflict involving software from curriculum provider Pearson. Although the conflict involves Pearson and LAUSD primarily, the curriculum provider was a subcontractor under Apple and Lenovo, so the settlement is between the hardware companies and LAUSD, the Los Angeles Times reports . Apple has agreed to pay LAUSD $4.2 million for the Pearson curriculum, and Lenovo, which also charged the school district for Pearson curriculum, will give the school district $2.2 million in credit for its purchase of laptops. Last year, LAUSD halted the $1.3 billion project to give every student in the massive district an iPad loaded with Pearson’s educational material. The about-face was announced after the Los Angeles Times reported that there had been improprieties in the bidding process for the contract with the school district. In December, the FBI opened an investigation into the iPad program and seized 20 boxes of documents from the LAUSD, just as the school district’s superintendent resigned. Four months later, LAUSD said it would no longer accept shipments of Pearson’s curriculum, and it added that it wanted a “multi-million dollar refund” for copies of Pearson’s software that had already been delivered. Read 2 remaining paragraphs | Comments

View post:
Los Angeles schools reach $6.4 million settlement with Apple, Lenovo

Supermassive black holes found spiraling in at seven percent light speed

Simulation of the pair of supermassive black hole binary system, PG 1302-102. The smaller shines more brightly because it’s farther from the center of mass, and thus closer to the outer disk of gas. This gas accretes onto the black hole, heating up as it falls in, and thus emits more light. The more massive black hole, therefore, is starved of gas and doesn’t glow as brightly. (credit: Zoltan Haiman, Columbia University ) Data from NASA’s Galaxy Evolution Explorer ( GALEX ) and the Hubble Space Telescope has confirmed the presence of a pair of supermassive black holes orbiting each other so closely that they’re moving at relativistic speeds—a significant fraction of the speed of light. Supermassive black holes are expected to come in pairs pretty often. That’s because every galaxy has its own supermassive black hole, and galaxies often merge, bringing the two together. These mergers are very slow processes that distort both galaxies until their stars settle into new orbits (a process known as “violent relaxation”). While this is happening, extremely heavy objects, such as supermassive black holes, will tend to move in toward the center of the new galaxy. The new galaxy would end up with two supermassive black holes, one from each original galaxy, orbiting each other at its core. Objects have been observed which look a lot like supermassive black hole binaries, matching the prediction. These objects have a lot of mass—billions of times the mass of the Sun, as we’d expect from a pair of supermassives—and they’re periodic, meaning the amount of light the object produces rises and falls with a predictable time period. Read 17 remaining paragraphs | Comments

Continue reading here:
Supermassive black holes found spiraling in at seven percent light speed

Songwriter tells US House he made $5,679 from 178 million Spotify streams

The songwriter who co-wrote Megan Trainor’s “All About That Bass” alleged on Tuesday that he only cleared $5,679 from over 178 million streams of the song on Spotify. (credit: YouTube ) A Tuesday copyright roundtable discussion, hosted by Nashville’s Belmont University and led by the House Judiciary Committee, opened with one of the past year’s most successful songwriters announcing just how little money he’d made from over 178 million streams of a song he co-wrote: $5,679. That means Nashville songwriter Kevin Kadine, the co-writer of the hit 2014 Megan Trainor song “All About That Bass,” made close to $31.90 for every million streams. According to a report by The Tenneseean , Kadine didn’t clarify to the roundtable’s five members of the House of Representatives exactly how the songwriting proceeds were split between himself and Trainor (who shared songwriting credits on “Bass”), but he did allege that the average streaming-service payout for a song’s songwriting team is roughly $90 per million streams. “That’s as big a song as a songwriter can have in their career, and number one in 78 countries,” Kadine said. “But you’re making $5,600. How do you feed your family?” Read 4 remaining paragraphs | Comments

Visit link:
Songwriter tells US House he made $5,679 from 178 million Spotify streams