Slashdot.org

Syndicate content Slashdot
News for nerds, stuff that matters
Updated: 1 hour 24 min ago

How Silk Road Bounced Back From Its Multimillion-Dollar Hack

Tue, 04/22/2014 - 21:16
Daniel_Stuckey writes: "Silk Road, the online marketplace notable for selling drugs and attempting to operate over Tor, was shut down last October. Its successor, Silk Road 2.0 survived for a few months before suffering a security breach. In total, an estimated $2.7 million worth of Bitcoin belonging to users and staff of the site was stolen. Some in the Silk Road community suspected that the hack might have involved staff members of the site itself, echoing scams on other sites. Project Black Flag closed down after its owner scampered with all of their customers' Bitcoin, and after that users of Sheep Marketplace had their funds stolen, in an incident that has never been conclusively proven as an inside job or otherwise. Many site owners would probably have given up at this point, and perhaps attempted to join another site, or start up a new one under a different alias. Why would you bother to pay back millions of dollars when you could just disappear into the digital ether? But Silk Road appears to be trying to rebuild, and to repay users' lost Bitcoins."

Read more of this story at Slashdot.








How Apple's Billion Dollar Sapphire Bet Will Pay Off

Tue, 04/22/2014 - 19:12
alphadogg writes: "Apple is making a billion dollar bet on sapphire as a strategic material for mobile devices such as the iPhone, iPad and perhaps an iWatch. Exactly what the company plans to do with the scratch-resistant crystal – and when – is still the subject of debate. Apple is creating its own supply chain devoted to producing and finishing synthetic sapphire crystal in unprecedented quantities. The new Mesa, Arizona plant, in a partnership with sapphire furnace maker GT Advanced Technologies, will make Apple one of the world's largest sapphire producers when it reaches full capacity, probably in late 2014. By doing so, Apple is assured of a very large amount of sapphire and insulates itself from the ups and downs of sapphire material pricing in the global market."

Read more of this story at Slashdot.








The US Public's Erratic Acceptance of Science

Tue, 04/22/2014 - 18:30
An anonymous reader writes "The U.S. general population is often the butt of jokes with regard to their understanding of science. A survey by the Associated Press now shows just how arbitrary and erratic the public's dissent can be. 'The good news is that more than 80 percent of those surveyed are strongly confident that smoking causes cancer; only four percent doubt it. Roughly 70 percent accepted that we have a genome and that mental illness is seated in the brain; about 20 percent were uncertain on these subjects, and the doubters were few. But things go downhill from there. Only about half of the people accepted that vaccines are safe and effective, with 15 percent doubting. And that's one of the controversial topics where the public did well. As for humanity's role in climate change, 33 percent accepted, 28 percent were unsure, and 37 percent fell in the doubter category. For a 4.5-billion-year-old Earth and a 13.8-billion-year-old Big Bang, acceptance was below 30 percent. Fully half of the public doubted the Big Bang (PDF).'"

Read more of this story at Slashdot.








Groove Basin: Quest For the Ultimate Music Player

Tue, 04/22/2014 - 17:47
An anonymous reader writes "Andrew Kelley was a big fan of the Amarok open source music player. But a few years ago, its shortcomings were becoming more annoying and the software's development path no longer matched with the new features he wanted. So he did what any enterprising hacker would do: he started work on a replacement. Three and a half years later, his project, Groove Basin, has evolved into a solid music player, and it's still under active development. Kelley has now posted a write-up of his development process, talking about what problems he encountered, how he solved them, and how he ended up contributing code to libav."

Read more of this story at Slashdot.








Parents' Privacy Concerns Kill 'Personalized Learning' Initiative

Tue, 04/22/2014 - 17:05
theodp writes: "You may recall that inBloom is a data initiative that sought to personalize learning. GeekWire's Tricia Duryee now reports that inBloom, which was backed by $100 million from The Bill and Melinda Gates Foundation and others, is closing up shop after parents worried that its database technology was violating their children's privacy. According to NY Times coverage (reg.), the inBloom database tracked 400 different data fields about students — including family relationships ('foster parent' or 'father's significant other') and reasons for enrollment changes ('withdrawn due to illness' or 'leaving school as a victim of a serious violent incident') — that parents objected to, prompting some schools to recoil from the venture. In a statement, inBloom CEO Iwan Streichenberger said that personalized learning was still an emerging concept, and complained that the venture had been 'the subject of mischaracterizations and a lightning rod for misdirected criticism.' He added, 'It is a shame that the progress of this important innovation has been stalled because of generalized public concerns about data misuse, even though inBloom has world-class security and privacy protections that have raised the bar for school districts and the industry as a whole.' [Although it was still apparently vulnerable to Heartbleed.] Gates still has a couple of irons left in the data-driven personalized learning fire via his ties to Code.org, which seeks 7 years of participating K-12 students' data, and Khan Academy, which recently attracted scrutiny over its data-privacy policies."

Read more of this story at Slashdot.








Next-Gen Thunderbolt: Twice as Fast, But a Different Connector

Tue, 04/22/2014 - 16:12
Details have leaked about the next iteration of Intel's Thunderbolt connector. The good news: bandwidth will double, going up to about 40Gbps from its current 20. Power usage will drop by half, and it'll support PCI-e 3.0. The bad news: it uses a redesigned connector, and will rely on adapters for backward compatibility. From the article: "Doubling the available bandwidth will enable next-generation Thunderbolt controllers to drive two 4K displays simultaneously, where current controllers can only drive one. The new controllers will allegedly be compatible with a variety of other protocols as well, including DisplayPort 1.2, USB 3.0, and HDMI 2.0. Intel will offer two different versions of the controller—a version that uses four PCI Express lanes to drive two Thunderbolt ports and an "LP" (presumably "Low Power") version that uses two PCI Express lanes to drive one port."

Read more of this story at Slashdot.








Apple Fixes Major SSL Bug In OS X, iOS

Tue, 04/22/2014 - 15:30
Trailrunner7 writes: "Apple has fixed a serious security flaw present in many versions of both iOS and OS X and could allow an attacker to intercept data on SSL connections. The bug is one of many the company fixed Tuesday in its two main operating systems, and several of the other vulnerabilities have serious consequences as well, including the ability to bypass memory protections and run arbitrary code. The most severe of the vulnerabilities patched in iOS 7.1.1 and OSX Mountain Lion and Mavericks is an issue with the secure transport component of the operating systems. If an attacker was in a man-in-the-middle position on a user's network, he might be able to intercept supposedly secure traffic or change the connection's properties."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








NIST Removes Dual_EC_DRBG From Random Number Generator Recommendations

Tue, 04/22/2014 - 14:49
hypnosec writes: "National Institute of Standards and Technology (NIST) has removed the much-criticized Dual_EC_DRBG (Dual Elliptic Curve Deterministic Random Bit Generator) from its draft guidance on random number generators following a period of public comment and review. The revised document retains three of the four previously available options for generating pseudorandom bits required to create secure cryptographic keys for encrypting data. NIST recommends that people using Dual_EC_DRBG should transition to one of the other three recommended algorithms as quickly as possible."

Read more of this story at Slashdot.








Lytro Illum Light-Field Camera Lets You Refocus Pictures Later

Tue, 04/22/2014 - 14:07
Iddo Genuth writes "Earlier today Lytro introduced a new light-field camera called Illum. This is the second camera with this innovative refocusing technology from the California based company founded in 2006. The new camera is a more advanced version of the first camera introduced in 2012. It has a much larger sensor with four times the resolution (Lytro still uses the term megarays instead of megapixels), a much larger and longer zoom lens with a f/2 constant aperture and of course the ability to refocus after you take a picture (the new Illum can refocus on many more points in the image compared to the older version). Users will also have more control of the camera, a larger screen, and the ability to create regular JPEG images or videos made from the refocused images they capture."

Read more of this story at Slashdot.








Lytro Illum Light-Field Camera Lets You Refocus Pictures Later

Tue, 04/22/2014 - 14:07
Iddo Genuth writes "Earlier today Lytro introduced a new light-field camera called Illum. This is the second camera with this innovative refocusing technology from the California based company founded in 2006. The new camera is a more advanced version of the first camera introduced in 2012. It has a much larger sensor with four times the resolution (Lytro still uses the term megarays instead of megapixels), a much larger and longer zoom lens with a f/2 constant aperture and of course the ability to refocus after you take a picture (the new Illum can refocus on many more points in the image compared to the older version). Users will also have more control of the camera, a larger screen, and the ability to create regular JPEG images or videos made from the refocused images they capture."

Read more of this story at Slashdot.








Comment