Nicola Hahn (1482985) writes Kim Zetter of Wired Magazine has recently covered Dan Greer’s keynote speech at Black Hat USA. In his lengthy address Greer, representing the CIA’s venture funding arm, suggested that one way that the United States government could improve cyber security would be to use its unparalleled budget to buy up all the underground’s zero-day vulnerabilities. While this would no doubt make zero-day vendors like VUPEN and middlemen like the Grugq very wealthy, is this strategy really a good idea? Can the public really trust the NSA to do the right thing with all those zero-day exploits? Furthermore, recall the financial meltdown of 2008 where the public paid the bill for Wall Street’s greed. If the government pays for information on all these unpatched bugs would society simply be socializing the cost of hi-tech’s sloppy engineering? Whose interests does this “corner-the-market” approach actually serve? Read more of this story at Slashdot.
Visit site:
Cornering the Market On Zero-Day Exploits
MojoKid (1002251) writes Game developer Crytek’s problems have been detailed recently from various source, and it’s now clear that it wasn’t just the company’s UK studios that were affected. Crytek announced today that it has officially moved development of its F2P shooter Hunt: Horrors of the Guilded Age to a German developer, ignoring the fact that the majority of the US team had apparently already quit the company. The problem? Just as in the UK, the US employees weren’t getting paid. In a separate announcement, Crytek also declared that development of the Homefront series had passed entirely to developer Deep Silver. The company has stated, “On completion of the proposed acquisition, the Homefront team from Crytek’s Nottingham studio would transfer their talents to Koch Media in compliance with English law and continue their hard work on upcoming shooter, Homefront: The Revolution. Both parties hope to finalize and implement a deal soon.” It’s hard to see this as good news for Crytek. The company can make all the noise it wants about moving from a development studio to a publisher model, but Crytek as a company was always known for two things — the CryEngine itself, adapted for a handful of titles and the Crysis series. Without those factors, what’s left? Read more of this story at Slashdot. 
redletterdave (2493036) writes “Apple is one of the biggest headphone makers in the world thanks to those signature white earbuds that have shipped with every iPod, iPhone, and iPad since 2001. But even two years after earbuds became ‘EarPods, ‘ the design could still be improved — and competitors are taking notice. Amazon recently unveiled a new pair of in-ear headphones that are magnetic, tangle-free and $5 cheaper than Apple’s $30 EarPods, while smaller startups are promoting their own wireless and customizable 3D-printed earbuds. But Apple has an ace up its sleeve, in the form of patents for a set of headphones with ‘one or more integrated physiological sensors’ designed to help users keep track of their body stats.” Read more of this story at Slashdot. 
An anonymous reader writes “Online Trust Alliance (OTA) Executive Director and President Craig Spiezle testified before the U.S. Senate’s Homeland Security and Governmental Affairs Permanent Subcommittee on Investigations, outlining the risks of malicious advertising, and possible solutions to stem the rising tide. According to OTA research, malvertising increased by over 200% in 2013 to over 209, 000 incidents, generating over 12.4 billion malicious ad impressions. The threats are significant, warns the Seattle-based non-profit—with the majority of malicious ads infecting users’ computers via ‘drive by downloads, ‘ which occur when a user innocently visits a web site, with no interaction or clicking required.” Read more of this story at Slashdot. 
itwbennett writes “Two reports out this week, one a new ‘codex’ released by 451 Research and the other an updated survey into cloud IaaS pricing from Redmonk, show just how insane cloud pricing has become. If your job requires you to read these reports, good luck. For the rest of us, Redmonk’s Stephen O’Grady distilled the pricing trends down to this: ‘HP offers the best compute value and instance sizes for the dollar. Google offers the best value for memory, but to get there it appears to have sacrificed compute. AWS is king in value for disk and it appears no one else is even trying to come close. Microsoft is taking the ‘middle of the road, ‘ never offering the best or worst pricing.'” Read more of this story at Slashdot.