Miscellaneous Tech News
-
Iranian Government Hackers Target US Veterans
'Tortoiseshell' discovered hosting a phony military-hiring website that drops a Trojan backdoor on visitors.
A nation-state hacking group recently found attacking IT provider networks in Saudi Arabia as a stepping stone to its ultimate targets has been spotted hosting a fake website, called "Hire Military Heroes," that drops spying tools and other malicious code onto victims' systems.
-
https://www.ghacks.net/2019/09/25/cloudflares-warp-vpn-is-now-available-to-all-a-first-look/
My app is still showing me on the wait list. Anyone actually get the warp vpn working?
Edit: NVM. It's now working after an app update
-
-
-
No, it wasn’t a virus; it was Chrome that stopped Macs from booting
Google pulls Chrome update that kept some Macs from booting.
On Monday night, Variety reported that film editors around Los Angeles who had Avid Media Composer software installed were suddenly finding that their Macs were unable to reboot. The publication speculated that malware may have been the cause. On Wednesday, Google disclosed the real cause—a Chrome browser update. Specifically, it was a new version of Chrome's Keystone updater that caused so many Macs to stop rebooting, according to this Chrome open bug post. When the update was installed on Macs that had disabled a security feature known as system integrity prevention and met several other conditions, a crucial part of the Mac system file was damaged, a Google employee said in the forum. -
@mlnews oops
-
@mlnews said in Miscellaneous Tech News:
No, it wasn’t a virus; it was Chrome that stopped Macs from booting
Google pulls Chrome update that kept some Macs from booting.
On Monday night, Variety reported that film editors around Los Angeles who had Avid Media Composer software installed were suddenly finding that their Macs were unable to reboot. The publication speculated that malware may have been the cause. On Wednesday, Google disclosed the real cause—a Chrome browser update. Specifically, it was a new version of Chrome's Keystone updater that caused so many Macs to stop rebooting, according to this Chrome open bug post. When the update was installed on Macs that had disabled a security feature known as system integrity prevention and met several other conditions, a crucial part of the Mac system file was damaged, a Google employee said in the forum.So they were performing a public service?
-
Google Play apps laden with ad malware were downloaded by millions of users
Remote configuration files allowed malware to slide past Google security checks.
This week, Symantec Threat Intelligence's May Ying Tee and Martin Zhang revealed that they had reported a group of 25 malicious Android applications available through the Google Play Store to Google. In total, the applications—which all share a similar code structure used to evade detection during security screening—had been downloaded more than 2.1 million times from the store.
The apps, which would conceal themselves on the home screen some time after installation and begin displaying on-screen advertisements even when the applications were closed, have been pulled from the store. But other applications using the same method to evade Google's security screening of applications may remain. -
What Would Make You Cancel a Video-Streaming Service?
According to a PCMag survey, 65 percent of streaming users said they'd cancel their streaming subscription over price increases. Another 14 percent would cancel over losing their favorite movies and shows, while 9 percent prioritize exclusive original content.
The video streaming war will be fought over viewers. Among the deep-pocketed, big-budget streaming services entering an already-crowded market in the next year, which players can snag the most subscribers? Is there room for all of them? PCMag recently surveyed 1,001 US streaming subscribers on a variety of streaming topics and preferences: whether they share passwords and with whom; if they plan on subscribing to new services like Apple TV+, Disney+, HBO Max, and Peacock; and how much they're willing to pay for both an individual service and for their monthly streaming budget. We also asked what would make them cancel a service to which they already subscribe. For the vast majority of respondents, the deciding factor in keeping or canceling a streaming service comes down to price; 65 percent said they would cancel over price increases. -
SSDs are on track to get bigger and cheaper thanks to PLC technology
Storage of five bits in every NAND cell is coming, courtesy of Intel and Toshiba.
Wednesday, Intel announced it's joining Toshiba in the PLC (Penta-Level Cell, meaning 5 bits stored per individual NAND cell) club. Intel has not yet commercialized the technology, so you can't go and buy a PLC SSD yet—but we can expect the technology will lead eventually to higher-capacity and cheaper solid state drives. To understand how and why this works, we need to go over a little bit of SSD design history. One of the most basic architectural features of a solid state disk is how many bits can be stored in each individual NAND cell. The simplest and most robust design is SLC—Single Layer Cell—in which each floating-gate NAND cell is either charged or not, representing a 1 or a 0. SLC flash can be written at very high speed and typically survives several times more write cycles than more complex designs can. (Endurance levels are specified per drive, but National Instruments uses 100K, 20K, and 3K as sample program/erase cycle endurance levels for SLC, eMLC, and MLC drives here.) -
@mlnews said in Miscellaneous Tech News:
SSDs are on track to get bigger and cheaper thanks to PLC technology
Storage of five bits in every NAND cell is coming, courtesy of Intel and Toshiba.
Wednesday, Intel announced it's joining Toshiba in the PLC (Penta-Level Cell, meaning 5 bits stored per individual NAND cell) club. Intel has not yet commercialized the technology, so you can't go and buy a PLC SSD yet—but we can expect the technology will lead eventually to higher-capacity and cheaper solid state drives. To understand how and why this works, we need to go over a little bit of SSD design history. One of the most basic architectural features of a solid state disk is how many bits can be stored in each individual NAND cell. The simplest and most robust design is SLC—Single Layer Cell—in which each floating-gate NAND cell is either charged or not, representing a 1 or a 0. SLC flash can be written at very high speed and typically survives several times more write cycles than more complex designs can. (Endurance levels are specified per drive, but National Instruments uses 100K, 20K, and 3K as sample program/erase cycle endurance levels for SLC, eMLC, and MLC drives here.)
That's telling -
https://www.theregister.co.uk/2019/09/30/email_signature_legally_binding_contract/
UK court ruling says email signature blocks can sign binding contracts -
https://arstechnica.com/information-technology/2019/09/whats-a-backup-baltimore-city-it-kept-data-on-local-drives/
Councilman “mind-boggled” by Baltimore City IT department ineptitude
In a report to a committee of the Baltimore City Council last week, City Auditor Josh Pasch said that the city's Information Technology department could not provide any documentation of its work toward meeting agency performance goals because the only copies of that data were kept on local hard drives and never backed up to a server or the cloud.
Just for extra highlighting: the only copies of that data were kept on local hard drives -
https://www.itnews.com.au/news/victorian-hospitals-go-offline-after-ransomware-attack-531696
Victorian hospitals go offline after ransomware attackA number of regional Victorian hospitals and health services have been forced to shutdown their IT systems, including some electronic health records, after experiencing a ransomware attack on Monday.
-
@nadnerB said in Miscellaneous Tech News:
https://arstechnica.com/information-technology/2019/09/whats-a-backup-baltimore-city-it-kept-data-on-local-drives/
Councilman “mind-boggled” by Baltimore City IT department ineptitude
In a report to a committee of the Baltimore City Council last week, City Auditor Josh Pasch said that the city's Information Technology department could not provide any documentation of its work toward meeting agency performance goals because the only copies of that data were kept on local hard drives and never backed up to a server or the cloud.
Just for extra highlighting: the only copies of that data were kept on local hard drivesI'd like to point out that everytime I hear of Baltimore, this is what what happens in my head first:
Youtube Video – [00:51..] -
Councilman “mind-boggled” by Baltimore City IT department ineptitude
City IT lost data for audit because it was all kept on staff workstations.
In a report to a committee of the Baltimore City Council last week, City Auditor Josh Pasch said that the city's Information Technology department could not provide any documentation of its work toward meeting agency performance goals because the only copies of that data were kept on local hard drives and never backed up to a server or the cloud.
-
Webkit zero-day exploit besieges Mac and iOS users with malvertising redirects
Flaw rendered ad-sandboxing protections "entirely useless," researchers say.
Attackers have bombarded the Internet with more than 1 billion malicious ads in less than two months. The attackers targeted iOS and macOS users with what were zero-day vulnerabilities in Chrome and Safari browsers that were recently patched, researchers said on Monday. More than 1 billion malicious ads served in the past six weeks contained exploit code that redirected vulnerable users to malicious sites, according to a post published by security firm Confiant. The surge of malicious ads exploited a Safari vulnerability in both iOS and macOS, as well as a Chrome vulnerability in iOS. -
@mlnews said in Miscellaneous Tech News:
Webkit zero-day exploit besieges Mac and iOS users with malvertising redirects
Flaw rendered ad-sandboxing protections "entirely useless," researchers say.
Attackers have bombarded the Internet with more than 1 billion malicious ads in less than two months. The attackers targeted iOS and macOS users with what were zero-day vulnerabilities in Chrome and Safari browsers that were recently patched, researchers said on Monday. More than 1 billion malicious ads served in the past six weeks contained exploit code that redirected vulnerable users to malicious sites, according to a post published by security firm Confiant. The surge of malicious ads exploited a Safari vulnerability in both iOS and macOS, as well as a Chrome vulnerability in iOS.Holy crap! all platforms have been hammered over the past 2-3 weeks, first Chrome (on windows, Mac AND Linux - mobile was safe) with no click full control, then IE, and now iOS....
-
Most mobile browsers display the Web, that’s it—Vivaldi Mobile can change that
Vivaldi's power-user browser used to be desktop only. Not anymore.
Vivaldi—makers of the power user's favorite Web browser—has finally released a mobile version. Vivaldi for Android (sorry iOS users, it's Android-only for now) brings most of what's great about Vivaldi to your phone, and thanks to Vivaldi's sync service, you can even have all your desktop data on your mobile device. Web browsers are perhaps the most important piece of software we use in 2019. Our devices are often little more than small windows onto the Web, and the browser is what we use to see and explore what's in that window. For all its importance though, the modern browser, especially the mobile Web browser, offers precious little in the way of features. It displays the Web and... that's about it. Want to interact with what you see? You're mostly out of luck. -
BBC News - North Korea: 'Grave moment' as North tests missile fired from sea
https://www.bbc.co.uk/news/world-asia-49915224
