mikejuk writes with this story about a Japanese team working on creating touchable holograms. I Programmer reports: “One method of creating a volumetric, i.e. true 3D, display, is to use a high power laser and focus it on a small spot in space. The air in that spot will be heated to the point where it ionizes and glows with a bright blue light. Scan the laser really fast and you can make a full 3D arrangement of glowing points of light — not exactly a hologram but as good as. Of course, the big problem is that you have a lot of energy being focused on small areas and human interaction could be a problem. You might well get burned by the laser if you attempted to touch or interact with the display. The solution is to use a really fast laser, a femtosecond laser, that heats a small spot to a high temperature but only for a very short time. This is much safer because the total energy involved is smaller. This is the reason you can touch sparks without getting burned.” Read more of this story at Slashdot.
Tag: polls
LifeLock Agrees To Pay $100 Million Fine In Settlement With FTC
New submitter dasgoober writes: Lifelock has agreed to pay $100 million to settle charges that it failed to properly protect user data, the F.T.C. announced on Thursday. This is the second settlement between the company and federal authorities. In 2010, the F.T.C. charged the company with failing to provide strong security measures for personal data. “This settlement demonstrates the Commission’s commitment to enforcing the orders it has in place against companies, including orders requiring reasonable security for consumer data, ” F.T.C .Chairwoman Edith Ramirez said in a statement. “The fact that consumers paid Lifelock for help in protecting their sensitive personal information makes the charges in this case particularly troubling.” Read more of this story at Slashdot.
Excerpt from:
LifeLock Agrees To Pay $100 Million Fine In Settlement With FTC
‘Unauthorized Code’ In Juniper Firewalls Could Decrypt VPN Traffic
m2pc writes: Ars Technica reports that Juniper Networks firewalls have been discovered to include “unauthorized code” inserted into their ScreenOS software. Juniper has has published an advisory addressing the matter, with instructions to patch the affected devices. From the Ars article: “NetScreen firewalls using ScreenOS 6.2.0r15 through 6.2.0r18 and 6.3.0r12 through 6.3.0r20 are affected and require immediate patching. Release notes published by Juniper suggest the earliest vulnerable versions date back to at least 2012 and possibly earlier. … The first flaw allows unauthorized remote administrative access to an affected device over SSH or telnet. Exploits can lead to complete compromise. ‘The second issue may allow a knowledgeable attacker who can monitor VPN traffic to decrypt that traffic, ‘ the advisory said.” The rogue code was discovered during a recent internal source code review conducted by Juniper. Read more of this story at Slashdot.
View original post here:
‘Unauthorized Code’ In Juniper Firewalls Could Decrypt VPN Traffic
iPhone Hacker Geohot Builds Self-Driving Car AI
An anonymous reader writes: George Hotz, known for unlocking early iPhones and the PlayStation 3, has developed an autonomous driving system in his garage. “Hotz’s approach isn’t simply a low-cost knockoff of existing autonomous vehicle technology. He says he’s come up with discoveries—most of which he refuses to disclose in detail—that improve how the AI software interprets data coming in from the cameras.” The article has a video with Hotz demonstrating some basic autonomous driving similar to what Tesla rolled out earlier this year. He’s clearly brimming with confidence about what the system can accomplish with more training. Read more of this story at Slashdot.
See more here:
iPhone Hacker Geohot Builds Self-Driving Car AI
Developer Claims ‘PS4 Officially Jailbroken’
colinneagle sends word that a developer has claimed to have achieved a jailbreak of the PlayStation 4. Networkworld reports: “If you have a PS4 and want to run homebrew content, then you might be happy to know developer CTurt claimed, “PS4 is now officially jailbroken.” Over the weekend, CTurt took to Twitter to make the announcement. He did not use a jail vulnerability, he explained in a tweet. Instead, he used a FreeBSD kernel exploit. Besides posting “an open source PlayStation 4 SDK” on GitHub, CTurt analyzed PS4’s security twice and explained PS4 hacking. CTurt updated the open source PS4 SDK yesterday; he previously explained that Sony’s proprietary Orbis OS is based on FREEBSD. In the past he released the PS4-playground, which included PS4 tools and experiments using the Webkit exploit for PS4 firmware version 1.76. To put that in context, Sony released version 3.0 in September. However, CTurt claimed the hack could be made to work on newer firmware versions. Other PS4 hackers are reportedly also working on a kernel exploit, yet as Wololo pointed out, it is unlikely there might be more than proof-of-concept videos as the developers continue to tweak the exploit. Otherwise, Sony will do as it has in the past and release a new firmware version. In October 2014, developers nas and Proxima studied the PSVita Webkit exploit, applied it to the PS4, and then released the PS4 proof-of-concept. Shortly thereafter. Sony pushed out new firmware as a patch.” Read more of this story at Slashdot.
DHS Deployed Plane Above San Bernardino To Scoop Up All Phone Calls After Attack
schwit1 writes: Federal investigators looking into the San Bernardino massacre deployed a spy plane overhead after the attacks in an apparent attempt to find additional suspects. The Department of Homeland Security is said to have put up the single engine craft over the California city and ordered it to make repeated circles overhead. The craft would likely have been equipped with Dirtbox technology which can scan tens of thousands of phones in one go to identify suspects. The report adds to the intrigue about whether or not there were accomplices in the San Bernardino attacks, which took place last Wednesday and were the worst terrorist attack on American soil since 9/11. Read more of this story at Slashdot.
See the article here:
DHS Deployed Plane Above San Bernardino To Scoop Up All Phone Calls After Attack
Locked Intel Skylake CPUs Can Be Overclocked After BIOS Update
jjslash writes: For a few years now, Intel CPU overclocking has been limited to more expensive Core i5 and Core i7 ‘K’ processors. Skylake launched this year with the rumor of strong non-K processor overclocking through an adjustable base clock, but that never eventuated… until now. In overclocking circles it was rumored that BCLK (base clock) overclocking might become a possibility in Skylake processors, but it would be up to motherboard manufacturers to circumvent Intel’s restrictions. Asrock, Asus and a few other motherboard manufacturers are said to be issuing a BIOS update soon that will unlock base clock overclocking on Z170 motherboards. TechSpot has got an early look, overclocking a locked Core i3-6100 to 4.7GHz on air cooling. Read more of this story at Slashdot.
Excerpt from:
Locked Intel Skylake CPUs Can Be Overclocked After BIOS Update
Faraday Future Selects Las Vegas As Home For $1B Electric Car Factory
An anonymous reader writes: Faraday Future, the newest and most unknown player in the electric car game, has selected North Las Vegas as the home for their billion dollar factory. The 3 million square foot factory will be built on 900 acres and create 4, 500 jobs. Faraday Future will release more information on their Tesla fighter, a 100% electric car, at CES in January. Autoblog reports: “Nevada topped finalists California, Georgia and Louisiana in the race to land the 2.5 million square foot plant. It’s expected to sit on 600 acres in North Las Vegas’s Apex Industrial Park and bring 4, 500 jobs to Nevada. Mayor John Lee called the site choice ‘a transformational opportunity’ for his city of about 220, 000 residents. North Las Vegas boomed as the nation’s fastest-growing city in the early 2000s and nearly busted when the recession hit and pushed it close to insolvency.” Read more of this story at Slashdot.
More:
Faraday Future Selects Las Vegas As Home For $1B Electric Car Factory
AVG, McAfee, Kaspersky Antiviruses All Had a Common Bug
An anonymous reader writes: Basic ASLR was not implemented in 3 major antivirus makers, allowing attackers to use the antivirus itself towards attacking Windows PCs. The bug, in layman terms, is: the antivirus would select the same memory address space every time it would run. If attackers found out the memory space’s address, they could tell their malicious code to execute in the same space, at the same time, and have it execute with root privileges, which most antivirus have on Windows PCs. It’s a basic requirement these days for software programmers to use ASLR (Address Space Layout Randomization) to prevent their code from executing in predictable locations. Affected products: AVG, McAfee, Kaspersky. All “quietly” issued fixes. Read more of this story at Slashdot.
Continue Reading:
AVG, McAfee, Kaspersky Antiviruses All Had a Common Bug
Critical Zen Cart Vulnerability Could Spell Black Friday Disaster For Shoppers
Mark Wilson writes: It’s around this time of year, with Black Friday looming and Christmas just around the corner, that online sales boom. Today security firm High-Tech Bridge has issued a warning to retailers and shoppers about a critical vulnerability in the popular Zen Cart shopping management system. High-Tech Bridge has provided Zen Cart with full details of the security flaw which could allow remote attackers to infiltrate web servers and gain access to customer data. Servers running Zen Cart are also at risk of malware, meaning that hundreds of thousands of ecommerce sites pose a potential danger. Technical details of the vulnerability are not yet being made public, but having notified Zen Cart of the issue High-Tech Bridge says the date of full public disclosure is 16 December. Read more of this story at Slashdot.
More:
Critical Zen Cart Vulnerability Could Spell Black Friday Disaster For Shoppers