news aggregator

Unlimited picture-hosting service suddenly gets very limited

Amazon has confirmed people are unable to upload files to its Photos storage service, and believes it will be fixed sometime today.…

An Australian computer scientist who alleges he created bitcoin has launched a London High Court lawsuit against 16 software developers in an effort to secure bitcoin worth around 4 billion pounds ($5.7 billion) he says he owns. From a report: In a case that was promptly labelled "bogus" by one defendant, Craig Wright is demanding that developers allow him to retrieve around 111,000 bitcoin held at two digital addresses that he does not have private keys for. In his second London lawsuit in three weeks, Wright alleges he lost the encrypted keys when his home computer network was hacked in February 2020. Police are investigating. Wright, who is bringing the case through his Seychelles-based Tulip Trading firm, concedes he is a controversial figure since alleging in 2016 that he wrote the bitcoin white paper -- which first outlined the technology behind the digital assets -- under the pseudonym Satoshi Nakamoto in 2008. The claim is hotly disputed. The Australian, who is autistic and lives in Britain with his wife and two of his three children, alleges in his latest lawsuit that developers have breached their duties to act in the best interests of the rightful owner of globally-traded assets.

Read more of this story at Slashdot.

Long-awaited proposals in the UK to regulate social media are a "recipe for censorship," campaigners have said, which fly in the face of the government's attempts to strengthen free speech elsewhere in Britain. From a report: The online safety bill, which was introduced to parliament on Wednesday, hands Ofcom the power to punish social networks which fail to remove "lawful but harmful" content. The proposals were welcomed by children's safety campaigns, but theyhave come under fire from civil liberties organisations. "Applying a health and safety approach to everybody's online speech combined with the threat of massive fines against the platforms is a recipe for censorship and removal of legal content," said Jim Killock, the director of the Open Rights Group. "Facebook does not operate prisons and is not the police. Trying to make platforms do the job of law enforcement through technical means is a recipe for failure." The centre-right CPS thinktank was similarly critical. "It is for parliament to determine what is sufficiently harmful that it should not be allowed, not for Ofcom or individual platforms to guess," it said. "If something is legal to say, it should be legal to type," CPS's director, Robert Colvile, added. In its update to the bill from the white paper first drafted by Theresa May's government in 2019, the Department for Digital, Culture, Media and Sport added sections intended to prevent harm to free expression. Social networks will now need to perform and publish "assessments of their impact on freedom of expression."

Read more of this story at Slashdot.

Fortnite maker wheels out economist to explain how Apple works

The ongoing federal court trial in California between Apple and Epic Games has provided some unprecedented levels of insight into the iOS platform and iPhone. But most of all, it has confirmed things we already knew.…

The company targeted in the biggest pipeline hack in history began searching for a cyber-security chief two months ago. From a report: Colonial Pipeline sought someone with a master's degree in computer science to develop and maintain "an incident response plan and processes to address potential threats," according to the company's website. The ad also was posted on LinkedIn and job-seeking sites. A criminal hack paralyzed North America's biggest fuel pipeline late last week choking off almost half of the gasoline and diesel burned on the U.S. East Coast. Gas stations across several states have run dry amid panic buying and soaring retail prices. "The cybersecurity position was not created as a result of the recent ransomware attack," the company said in an email.

Read more of this story at Slashdot.

The Wicker man: US Commerce Committee senator questions Toshiba, Seagate and WD

US Commerce Committee Senator Roger Wicker is on a mission to find out if HDD makers stateside are shipping drives to Huawei, and has fired off questions to Seagate, Toshiba America Electronic Components (TAEC) and Western Digital.…

The Federal Bureau of Investigation says that cybercrime gangs are using search results and search engine ads to lure victims on phishing sites for financial institutions in order to collect their login credentials. From a report: "The schemes resulted in illicit ACH transfers amounting to hundreds of thousands of dollars in financial losses," the FBI said in a private industry notification (PIN) send to the US private sector on Tuesday. The PIN alert, which The Record cannot share due to TLP sharing restrictions, describes a particular phishing campaign mimicking the brand of an unnamed US-based financial institution. "The cyber actors conducted two versions of the scheme," the FBI said. In the first version, the threat actor used search engine ads, while in the second version, they relied on the phishing site appearing in organic search results on its own.

Read more of this story at Slashdot.

Google, making the announcement in a blog post: We're updating the way Google Docs renders documents. Over the course of the next several months, we'll be migrating the underlying technical implementation of Docs from the current HTML-based rendering approach to a canvas-based approach to improve performance and improve consistency in how content appears across different platforms. We don't expect this change to impact the functionality of the features in Docs. However, this may impact some Chrome extensions, where they may no longer work as intended. Some Chrome extensions rely on the way the backend of a Google Doc is structured or specific bits of HTML to function properly. By moving away from HTML-based rendering to a canvas-based rendering, some Chrome extensions may not function as intended on docs.google.com and may need to be updated. Admins should review the current extensions deployed in their organization. [...] If you are building your own integrations with Google Docs, we recommend using Google Workspace Add-ons framework, which uses the supported Workspace APIs and integration points. This will help ensure there will be less work in the future to support periodic UI implementation changes to Docs.

Read more of this story at Slashdot.

Join us online and learn about modern extortionware and how to frustrate it

Webcast It’s shocking how blasé ransomware-toting criminals can be about freezing the operations of any organisation they can insinuate themselves into, including critical utilities or medical facilities.…

NASA engineers are getting one last look at the James Webb Space Telescope (JWST): a final test to show that its 18 gold-tinted mirror segments can unfold into a precise honeycomb configuration. From a report: After the test concludes this week, the giant instrument will be folded up, packed into a shipping container, and shipped off to French Guiana, where it will launch into space on 31 October. The 6.5-meter-wide JWST is the agency's next great observatory, the successor to the Hubble Space Telescope. In a NASA briefing this week, Program Scientist Eric Smith told reporters it was born out of a realization in the mid-1990s that, no matter how long it stared into deep space, Hubble would never be able to see the universe's very first stars and galaxies and learn how they formed and evolved. The expanding universe has "redshifted" the light of those primordial objects out of the visible spectrum; NASA needed a space telescope that worked in the infrared. "So the idea of Webb was born," Smith says. Since then, astronomers have discovered thousands of exoplanets. Smith says JWST will be able to probe their atmospheres for molecules such as carbon dioxide, water, methane, and others that could suggest the presence of life. Getting the $9 billion contraption to the point of departure has taken NASA much more time and money than it or Congress ever suspected. The construction of JWST proved to be the most complex and difficult science project in the agency's history. The process of testing the telescope's folding mirror, multilayered sunshield, and cryogenically cooled instruments has stretched years longer than planned. But come late August, all that will be over as JWST, in a protective cocoon, will be taken from Northrop Grumman's facility in Redondo Beach, California, and put onto a ship. The telescope will sail through the Panama Canal to Europe's spaceport near Kourou. Unlike the 2.4-meter-wide Hubble, which fit comfortably inside the bay of the Space Shuttle, JWST's mirror is much larger than the fairing on top of an Ariane 5 rocket, so it is elaborately folded to fit inside it.

Read more of this story at Slashdot.

Perpetual licence still offered, but with downgraded features

Mac-only drawing application Sketch is being repositioned as "a fully integrated platform for design and collaboration," though non-subscription users now have downgraded licences.…

A Slashdot reader shares a report: Amazon has a goal to get rid of a certain percentage of employees every year, and three managers told Insider they felt so much pressure to meet the goal that they hired people to fire them. "We might hire people that we know we're going to fire, just to protect the rest of the team," one manager told Insider. The practice is informally called "hire to fire," in which managers hire people, internally or externally, they intend to fire within a year, just to help meet their annual turnover target, called unregretted attrition (URA). A manager's URA target is the percentage of employees the company wouldn't regret seeing leave, one way or the other.

Read more of this story at Slashdot.

Foundation is 'passive investor' alongside private equity firm Dediq, firm says

SAP chairman Hasso Plattner's charitable foundation has said it invested in a joint venture between private equity firm Dediq and SAP designed to develop technology for the financial services market.…

Xiaomi and the U.S. government have text to set aside a Trump administration blacklisting that could have restricted American investment in the Chinese smartphone maker. From a report: The Chinese smartphone giant had sued the government earlier this year, after the U.S. Defense Department under former President Donald Trump issued an order designating the firm as a Communist Chinese Military Company, which would have led to a de-listing from U.S. exchanges and deletion from global benchmark indexes. The U.S. Defense Department has now agreed that a final order vacating the designation "would be appropriate," according to a filing to the U.S. courts Tuesday. Xiaomi declined to comment. Pentagon representatives weren't immediately available for comment after normal hours. Chinese Foreign Ministry spokeswoman Hua Chunying said at a regular press briefing in Beijing she wasn't aware of any deal the firm may have reached with the U.S. "The Parties have agreed upon a path forward that would resolve this litigation without the need for contested briefing," according to the filing, which didn't state whether the agreement included any conditions for removal. The parties involved are negotiating over specific terms and will file a separate joint proposal before May 20.

Read more of this story at Slashdot.

Well, the telco always said it's good to talk: Negotiations over jobs, pay, grading, and more set for this month

Exclusive BT has halted all compulsory redundancies on the eve of a national ballot for strike action across the group, the telco and union CWU today confirmed. It follows 15 days of strikes waged by a small band of engineers in Openreach.…

Company continues to make losses without troubling space

Virgin Galactic reckons it has dealt with an electromagnetic interference (EMI) problem that aborted a recent test flight just as another technical gremlin rears its head.…

An anonymous reader quotes a report from The Register: A dozen Wi-Fi design and implementation flaws make it possible for miscreants to steal transmitted data and bypass firewalls to attack devices on home networks, according to security researcher Mathy Vanhoef. On Tuesday, Vanhoef, a postdoctoral researcher in computer security at New York University Abu Dhabi, released a paper titled, "Fragment and Forge: Breaking Wi-Fi Through Frame Aggregation and Fragmentation" [PDF]. Scheduled to be presented later this year at the Usenix Security conference, the paper describes a set of wireless networking vulnerabilities, including three Wi-Fi design flaws and nine implementation flaws. Vanhoef, who in 2017 along with co-author Frank Piessens identified key reinstallation attacks (KRACKs) on the WPA2 protocol (used to secure Wi-Fi communication), has dubbed his latest research project FragAttacks, which stands for fragmentation and aggregation attacks. The dozen vulnerabilities affect all Wi-Fi security protocols since the wireless networking technology debuted in 1997, from WEP up through WPA3. [...] In total, 75 devices -- network card and operating system combinations (Windows, Linux, Android, macOS, and iOS) -- were tested and all were affected by one or more of the attacks. NetBSD and OpenBSD were not affected because they don't support the reception of A-MSDUs (aggregate MAC service data units). [...] Patches for many affected devices and software have already been deployed, thanks to a nine-month-long coordinated responsible disclosure overseen by the Wi-Fi Alliance and the Industry Consortium for Advancement of Security on the Internet (ICASI). Linux patches have been applied and the kernel mailing list note mentions that Intel has addressed the flaws in a recent firmware update without mentioning it. Microsoft released its patches on March 9, 2021 when disclosure was delayed tho Redmond had already committed to publication. Vanhoef advises checking with the vendor(s) of Wi-Fi devices about whether the FragAttacks have been addressed. "[F]or some devices the impact is minor, while for others it's disastrous," he said.

Read more of this story at Slashdot.

So says Foreign Secretary in lacklustre speech to NCSC faithful

CyberUK 21 Britain is to spend £22m on training African and Indo-Pacific nations to stave off cyber influences from "authoritarian regimes", foreign secretary Dominic Raab said today.…

Q1 revenue up, losses widen, boss says new Elastic Engineering cloud product selling fast

There are two things that typically make Wall Street investment analysts go weak at the knees when it comes to quarterly conference calls with tech execs: expanding cloud services and gory details of cost pruning.…

Creator deletes posts alleging 'mismanagement' to blame

The open-source Babel JavaScript compiler project is running out of money with big sponsors having pulled out, according to its core team. And its creator yesterday threw a spanner into the works by claiming on Twitter that he believed funds were "misallocated."…