Tag: privacy-rights

TrueCrypt is safer than previously reported, detailed analysis concludes

(credit: Khürt Williams ) The TrueCrypt whole-disk encryption tool used by millions of privacy and security enthusiasts is safer than some studies have suggested, according to a comprehensive security analysis conducted by the prestigious Fraunhofer Institute for Secure Information Technology. The extremely detailed 77-page report comes five weeks after Google’s Project Zero security team disclosed two previously unknown TrueCrypt vulnerabilities . The most serious one allows an application running as a normal user or within a low-integrity security sandbox to elevate privileges to SYSTEM or even the kernel. The Fraunhofer researchers said they also uncovered several additional previously unknown TrueCrypt security bugs. Despite the vulnerabilities, the analysis concluded that TrueCrypt remains safe when used as a tool for encrypting data at rest as opposed to data stored in computer memory or on a mounted drive. The researchers said the vulnerabilities uncovered by Project Zero and in the Fraunhofer analysis should be fixed but that there’s no indication that they can be exploited to provide attackers access to encrypted data stored on an unmounted hard drive or thumb drive. According to a summary by Eric Bodden , the Technische Universität Darmstadt professor who led the Fraunhofer audit team: Read 4 remaining paragraphs | Comments

View article:
TrueCrypt is safer than previously reported, detailed analysis concludes

FDA approves first GM food animal—Atlantic salmon

(credit: Artizone/Flickr ) After two decades of deliberation, the Food and Drug Administration has approved the first ever genetically engineered food animal, a fast-growing Atlantic Salmon called AquAdvantage salmon. According the agency, which announced the approval Thursday , the modified salmon are safe to eat, equally nutritious as other salmon, and should pose no threat to the environment. First created in 1989 and submitted to the agency for approval in 1995, the Atlantic salmon are modified to carry a growth hormone gene from Chinook salmon. That gene is further engineered to be under the control of a tiny bit of DNA, called a promoter, from the eel-like ocean pout fish. In general, DNA promoters are non-coding sequences that help control the expression level of a gene—how much protein product is synthesized from the gene. With the engineered promoter boosting hormone production, the modified salmon grow to market-size in about half the time of conventional Atlantic salmon. Read 4 remaining paragraphs | Comments

View original post here:
FDA approves first GM food animal—Atlantic salmon

Android adware can install itself even when users explicitly reject it

(credit: Lookout) Two weeks ago, Ars reported on newly discovered Android adware that is virtually impossible to uninstall . Now, researchers have uncovered malicious apps that can get installed even when a user has expressly tapped a button rejecting the app. The hijacking happens after a user has installed a trojanized app that masquerades as an official app available in Google Play and then is made available in third-party markets. During the installation, apps from an adware family known as Shedun try to trick people into granting the app control over the Android Accessibility Service , which is designed to provide vision-impaired users alternative ways to interact with their mobile devices. Ironically enough, Shedun apps try to gain such control by displaying dialogs such as this one, which promises to help weed out intrusive advertisements. From that point on, the app has the ability to display popup ads that install highly intrusive adware. Even in cases where a user rejects the invitation to install the adware or takes no action at all, the Shedun-spawned app uses its control over the accessibility service to install the adware anyway. Read 4 remaining paragraphs | Comments

View original post here:
Android adware can install itself even when users explicitly reject it

Chicago issued $2.4 million in bogus traffic tickets from speed cameras

The Chicago Tribune reported Wednesday as part of an exhaustive investigation that as many as 110,000 “questionable” speeding tickets totalling $2.4 million have been issued in the past two years in Chicago as part of a speed-camera program designed to keep kids safe near parks and schools. …City Hall has systematically ticketed drivers near schools without the legally required evidence of a schoolchild in sight. A Tribune random-sample analysis puts the number of those questionable tickets at about 110,000. And while it was pitched by the mayor as a way to protect youngsters walking near parks and schools, the most prolific cameras in the 2-year-old “Children’s Safety Zone” initiative can be found along major roadways, where crash data show child pedestrians are least likely to be struck by speeders. The lengthy  report is worth a read. Among other things, the report found that Mayor Rahm Emanuel’s speed camera program issued 22,000 tickets for speeding near parks and another 11,000 tickets near parks that were closed for the night. What’s more, another 28,000 citations “were issued at cameras plagued by problems with warning signs that did not meet the minimum legal requirements.” And at least 62,000 tickets were given during the summer “when school activity is so limited that drivers are left to guess whether school is in session or not.” Read 2 remaining paragraphs | Comments

Read the original:
Chicago issued $2.4 million in bogus traffic tickets from speed cameras

Visual Studio now supports debugging Linux apps; Code editor now open source

The Visual Studio Code editor, now open source, editing TypeScript on OS X. (credit: Microsoft) NEW YORK—Developers can now debug apps running on Linux servers or IoT devices from the comfort of Visual Studio. Microsoft today released a preview of a Visual Studio extension that adds remote debugging using GDB of Linux software. This was one of many announcements made at Microsoft’s Connect developer event today as the company aims to give its developer platform the broadest reach it’s ever had, able to handle Android, iOS, and Linux development, alongside the more expected Azure, Office, and Windows. Visual Studio 2015 already made big strides in this direction, and Microsoft is pushing ahead to try to make Visual Studio the best development environment around. The free and cross-platform Chromium-based code editor Visual Studio Code is being open sourced today. A new build has also been published, adding an extension mechanism to the editor. There are already some 60 extensions available, including new language support (such as Go language), richer debugging, code linters, and more. Read 10 remaining paragraphs | Comments

Link:
Visual Studio now supports debugging Linux apps; Code editor now open source

Feds bugged steps of Silicon Valley courthouse

(credit: James Vaughan ) Defense attorneys have asked a federal judge to throw out more than 200 hours of conversations FBI agents recorded using hidden microphones planted on the steps of a California county courthouse. The lawyers are representing defendants accused of engaging in an illicit real estate bid-rigging and fraud conspiracy. The steps to the San Mateo County courthouse are frequently the scene of public auctions for foreclosed homes. Federal prosecutors have admitted that on at least 31 occasions in 2009 and 2010, FBI agents used concealed microphones to record auction participants as they spoke, often in hushed voices with partners, attorneys, and others. Because the federal agents didn’t obtain a court order, the defense attorneys argue the bugging violated Constitutional protections against unreasonable searches and seizures. In a court brief filed Friday in the case, attorneys wrote: Read 4 remaining paragraphs | Comments

Read More:
Feds bugged steps of Silicon Valley courthouse

Chrome to end support for Windows XP, Vista, and OS X 10.8 on April 2016

If you’re on an older operating system, your Chrome could stop getting updates in just a few months. Google’s official Chrome Blog announced it will be ending support for Windows XP, Windows Vista, and Mac OS X 10.6, 10.7, and 10.8 in April 2016. Browsers on those operating systems will continue to work, but they will stop getting updates from Google. For Windows XP, this is yet another stay of execution from Google, mirroring Microsoft’s continually extended support for the OS that just won’t die. Chrome support for XP was originally stated to end along with Microsoft’s in April 2014. Google then extended that to ” at least April 2015 ,” then all of 2015 , and now it’s going to hang around for the next five months. On the Mac side of things, Apple usually supports its three newest operating systems. So official support for 10.8 ended when 10.11 El Capitan was released, and 10.6 and 10.7 have long been put to rest by Apple. Read 2 remaining paragraphs | Comments

See the original article here:
Chrome to end support for Windows XP, Vista, and OS X 10.8 on April 2016

$635 poop pills cure deadly gastrointestinal infection

(credit: Ana C./ Flickr ) The country’s first stool bank , OpenBiome, is now selling capsules of fecal matter to treat life-threatening Clostridium difficile , or C. diff, infections. The $635 pill-based therapy, a type of fecal transplant, is highly effective against the difficult-to-treat gastrointestinal infection, according to results of a pilot study. A single dose, which includes a whopping 30 pills, cured 70 percent of patients. A second dose bumped the success rate up to 94 percent. The treatment, currently being sold only to doctors, may offer an easier alternative to other effective fecal transplant routes, namely  colonoscopies, nasal tubes, and enemas . Scientists have known for years that fecal transplants in general are highly effective against C. diff infections, which can be extremely difficult to cure. The infection can cause severe, recurring diarrhea. It can be resistant to antibiotic treatments, and sometimes it turns deadly. In the US, C. diff causes more than 450,000 infections a year, leading to about 15,000 deaths . Read 3 remaining paragraphs | Comments

More:
$635 poop pills cure deadly gastrointestinal infection

AT&T expands gigabit fiber to 23 cities starting at $70 (or $110)

AT&T’s updated GigaPower coverage map. (credit: AT&T ) AT&T yesterday announced expansions of its gigabit fiber Internet service into parts of 23 cities and towns. The new markets are mostly in the suburbs of big cities where AT&T already offered its fastest broadband. For example, AT&T previously brought its “U-verse with GigaPower” service to Atlanta, Chicago, Houston, Miami, Nashville, and Orlando. The expansion this week brings the service into a bunch of cities and towns within the larger metro areas. Pricing for the Internet-only 1Gbps package is either $70 a month or $110 a month, depending on where you live. As we’ve reported previously, AT&T tends to match Google Fiber’s $70 pricing , but not in areas where Google isn’t offering service. Besides that, AT&T’s lowest price in each city requires customers to opt into “Internet Preferences ,” which gives the company permission to examine each customer’s Web traffic in order to serve personalized ads. Read 4 remaining paragraphs | Comments

Continue reading here:
AT&T expands gigabit fiber to 23 cities starting at $70 (or $110)

Microsoft considers blocking SHA-1 certificates after cost of collisions slashed

Microsoft may phase out support for TLS certificates that use the SHA-1 hashing algorithm as early as June 2016 . The decision comes in the wake of recent calculations that suggest generating collisions is quicker and cheaper than previously anticipated. SHA-1 is a hash algorithm, used to derive a 128-bit value from an arbitrary input. Its intent is for collisions—different inputs that hash to the same 128-bit value—to be hard to generate. As compute power has steadily grown over the years, it becomes quicker and cheaper to generate collisions. It was previously projected by Bruce Schneier , based on the observed growth of compute power, that creating SHA-1 collisions would be within reach of criminals by 2018 at a cost of about $173,000. On this basis, Microsoft intended to cease supporting the use of new SSL/TLS certificates using SHA-1 on January 1, 2016 and all SHA-1 SSL/TLS certificates on January 1, 2017. The new cost and performance estimates, however, suggest that the cost is both drastically lower—$75,000 to $120,000—and that the compute resources are immediately available through cloud services such as Amazon EC2. This has given browser vendors little option but to reconsider the previous 2017 timetable for retiring support of SHA-1. Read 2 remaining paragraphs | Comments

Visit link:
Microsoft considers blocking SHA-1 certificates after cost of collisions slashed