Tag: journal

LastPass Vulnerable To Extremely Simple Phishing Attack

An anonymous reader writes: Security researcher Sean Cassidy has developed a fairly trivial attack on the LastPass password management service that allows attackers an easy method for collecting the victim’s master password. He developed a tool called LostPass that automates phishing attacks against LastPass, and even allows attackers to collect password vaults from the LastPass API. Read more of this story at Slashdot.

Originally posted here:
LastPass Vulnerable To Extremely Simple Phishing Attack

Cryptsy Bitcoin Trader Robbed, Blames Backdoor In the Code of a Wallet

An anonymous reader writes: Cryptsy, a website for trading Bitcoin, Litecoin, and other smaller crypto-currencies, announced a security incident, accusing the developer of Lucky7Coin of stealing 13, 000 Bitcoin and 300, 000 Litecoin, which at today’s rate stands more than $5.7 million / €5.2 million. Cryptsy says “the developer of Lucky7Coin had placed an IRC backdoor into the code of [a] wallet, which allowed it to act as a sort of a Trojan, or command and control unit.” Coincidentally this also explains why two days after the attack was carried out, exactly 300, 000 Litecoin were dumped on the BTC-e exchange, driving Litecoin price down from $9.5 to $2. Read more of this story at Slashdot.

See the original post:
Cryptsy Bitcoin Trader Robbed, Blames Backdoor In the Code of a Wallet

Grisly Find Suggests Humans Inhabited Arctic 45,000 Years Ago

sciencehabit points out this story which may rewrite the early history of humans in North America. From the Sciencemag story: “In August of 2012, an 11-year-old boy made a gruesome discovery in a frozen bluff overlooking the Arctic Ocean. While exploring the foggy coast of Yenisei Bay, about 2000 kilometers south of the North Pole, he came upon the leg bones of a woolly mammoth eroding out of frozen sediments. Scientists excavating the well-preserved creature determined that it had been killed by humans: Its eye sockets, ribs, and jaw had been battered, apparently by spears, and one spear-point had left a dent in its cheekbone—perhaps a missed blow aimed at the base of its trunk. When they dated the remains, the researchers got another surprise: The mammoth died 45, 000 years ago. That means that humans lived in the Arctic more than 10, 000 years earlier than scientists believed, according to a new study. The find suggests that even at this early stage, humans were traversing the most frigid parts of the globe and had the adaptive ability to migrate almost everywhere.” Read more of this story at Slashdot.

Read the original post:
Grisly Find Suggests Humans Inhabited Arctic 45,000 Years Ago

EU Companies Can Monitor Employees’ Private Conversations While At Work

An anonymous reader writes: A recent ruling of the European Court of Human Rights has granted EU companies the right to monitor and log private conversations that employees have at work while using the employer’s devices. The ruling came after a Romanian was fired for using Yahoo Messenger back in 2007, while at work, to have private conversations with his girlfriend. He argued that his employer was breaking his right for privacy and correspondence. Both Romanian and European courts disagreed. Read more of this story at Slashdot.

Excerpt from:
EU Companies Can Monitor Employees’ Private Conversations While At Work

Graphene Flakes Facilitate Neuromorphic Chips

An anonymous reader writes: One of the hot areas of semiconductor research right now is the creation of so-called neuromorphic chips — processors whose transistors are networked in such a way to imitate how neurons interact. “One way of building such transistors is to construct them of lasers that rely on an encoding approach called “spiking.” Depending on the input, the laser will either provide a brief spike in its output of photons or not respond at all. Instead of using the on or off state of the transistor to represent the 1s and 0s of digital data, these neural transistors rely on the time intervals between spikes.” Now, research published in Nature Scientific Reports has shown how to stabilize these laser spikes, so that they’re responsive at picosecond intervals. “The team achieved this by placing a tiny piece of graphene inside a semiconductor laser. The graphene acts as a ‘saturable absorber, ‘ soaking up photons and then emitting them in a quick burst. Graphene, it turns out, makes a good saturable absorber because it can take up and release a lot of photons extremely fast, and it works at any wavelength; so lasers emitting different colors could be used simultaneously, without interfering with each other—speeding processing.” Read more of this story at Slashdot.

View article:
Graphene Flakes Facilitate Neuromorphic Chips

Questions Linger As Juniper Removes Suspicious Dual_EC Algorithm

msm1267 writes: Juniper Networks has removed the backdoored Dual_EC DRBG algorithm from its ScreenOS operating system, but new developments show Juniper deployed Dual_EC long after it was known to be backdoored. Stephen Checkoway, assistant professor of computer science at the University of Illinois at Chicago, said that he and a number of crypto experts looked at dozens of versions of Juniper’s NetScreen firewalls and learned that ANSI X9.31 was used exclusively until ScreenOS 6.2 when Juniper added Dual_EC. It also changed the size of the nonce used with ANSI X9.31 from 20 bytes to 32 bytes for Dual_EC, giving an attacker the necessary output to predict the PRNG output. ‘And at the same time, Juniper introduced what was just a bizarre bug that caused the ANSI generator to never be used and instead just use the output of Dual_EC. They made all of these changes in the same version update.’ Read more of this story at Slashdot.

More here:
Questions Linger As Juniper Removes Suspicious Dual_EC Algorithm

Planetary Resources Reveals Out-of-This-World 3D Printing

Zothecula writes: If one is going to get into the asteroid mining business, one needs to prove that you can do something with what’s brought back. That seems to be the thinking behind Planetary Resources’ recent presentation at CES in Las Vegas, where the asteroid mining company unveiled the first object 3D printed using extraterrestrial materials. Made in collaboration with 3D Systems, the nickel-iron sculpture represents a stylized, geometric spacecraft, such as might be used for asteroid mining or prospecting. Planetary Resources says it is representative of what could be printed in a weightless environment. Read more of this story at Slashdot.

See the original article here:
Planetary Resources Reveals Out-of-This-World 3D Printing

Forbes Asks Readers To Disable Adblock, Serves Up Malvertising

Deathlizard writes with a report at Engadget that when this year’s “Forbes 30 Under 30” list came out , “it featured a prominent security researcher. Other researchers were pleased to see one of their own getting positive attention, and visited the site in droves to view the list. On arrival, like a growing number of websites, Forbes asked readers to turn off ad blockers in order to view the article. After doing so, visitors were immediately served with pop-under malware, primed to infect their computers, and likely silently steal passwords, personal data and banking information.” Read more of this story at Slashdot.

View article:
Forbes Asks Readers To Disable Adblock, Serves Up Malvertising

New Dell Tech Support Scams Have Customers Worried Company Was Hacked

Trailrunner7 writes: A new twist on the fake tech support scam has arisen that has victims wondering whether Dell has been hacked.There has been a recent rash of calls to Dell customers in which the caller says he is from Dell itself and is able to identify the victim’s PC by model number and provide details of previous warranty and support interactions with the company. These are details that, it would seem, only Dell or perhaps its contractors would know. One person who was contacted by the scammers wrote a detailed description of the call, and said the caller had personal details that could not have been found online. Dell officials say they’re looking into it. Read more of this story at Slashdot.

More here:
New Dell Tech Support Scams Have Customers Worried Company Was Hacked

Twitter To Extend 140-Character Limit For Tweets

An anonymous reader writes: According to Re/code, Twitter is doing away with its 140-character limit for tweets. The company is currently planning on increasing the limit to 10, 000 characters, though the final number may change before they roll it out. “Twitter is currently testing a version of the product in which tweets appear the same way they do now, displaying just 140 characters, with some kind of call to action that there is more content you can’t see. Clicking on the tweets would then expand them to reveal more content. The point of this is to keep the same look and feel for your timeline, although this design is not necessarily final, sources say.” Read more of this story at Slashdot.

Link:
Twitter To Extend 140-Character Limit For Tweets