The Apache Software Foundation (ASF) has revealed a third bug in its Log4 Java-based open-source logging library Log4j. CVE-2021-45105 is a 7.5/10-rated infinite recursion bug that was present in Log4j2 versions 2.0-alpha1 through 2.16.0. The fix is version 2.17.0 of Log4j. That’s the third new version of the tool in the last ten days. In Read more about Bad things come in threes: Apache reveals another Log4J bug[…]
New research from the University of Massachusetts Amherst provides a novel answer to one of the persistent questions in historical climatology, environmental history and the earth sciences: what caused the Little Ice Age? The answer, we now know, is a paradox: warming. The Little Ice Age was one of the coldest periods of the past Read more about Researchers uncover the surprising cause of the Little Ice Age in 1300s[…]
According to the New York Times, China is recruiting YouTubers to report on the country in a positive light and counter the West’s increasingly negative perceptions. “The videos have a casual, homespun feel. But on the other side of the camera often stands a large apparatus of government organizers, state-controlled news media and other official Read more about How China Uses Western Influencers As Pawns In Its Propaganda War[…]
[…] It’s estimated that a quarter of the world’s population is affected by the condition known as presbyopia, which is one of the many unfortunate side effects of aging that typically starts affecting people in their 40s. The condition limits a person’s ability to focus on nearby objects, such as small print […] he use Read more about The FDA Just Approved Eye Drops to Correct Aging near sighted Vision[…]
While it’s certainly possible to sometimes do biometrics well, a long line of companies frequently… don’t. Voice print authentication is particularly shaky, especially given the rise of inexpensive voice deepfake technology. But, much like the continued use of text-message two-factor authentication (which is increasingly shown to not be secure), it apparently doesn’t matter to a Read more about Banks, ISPs Increasingly Embrace ‘Voice Print’ Authentication Despite Growing Security Risk[…]
We now have data on over 21,000 broken items and what was done to fix them. This information comes from volunteers at our own events and others who use our community repair platform, restarters.net. Thanks to our partners in the Open Repair Alliance who also collect this kind of data, we were able to include Read more about Why our electronics break: what we can learn from nearly 10 years of repairs over 50k broken items[…]
Apple has quietly nixed all mentions of CSAM from its Child Safety webpage, suggesting its controversial plan to detect child sexual abuse images on iPhones and iPads may hang in the balance following significant criticism of its methods. Apple in August announced a planned suite of new child safety features, including scanning users’ iCloud Photos Read more about Apple Removes All References to Controversial CSAM Scanning Feature – where they would scan all the pictures you took[…]
In the latest hack targeting cryptocurrency investors, hackers stole around $135 million from users of the blockchain gaming company VulcanForge, according to the company. The hackers stole the private keys to access 96 wallets, siphoning off 4.5 million PYR, which is VulcanForge’s token that can be used across its ecosystem, the company said in a Read more about Hackers Steal $135 Million From Users of Crypto Gaming Company[…]
Ukrainian law enforcement arrested 51 suspects believed to have been selling stolen personal data on hacking forums belonging to hundreds of millions worldwide, including Ukraine, the US, and Europe. “As a result of the operation, about 100 databases of personal data relevant for 2020-2021 were seized,” the Cyberpolice Department of the National Police of Ukraine Read more about Ukraine arrests 51 for selling data of 300 million people in US, EU[…]
UK online used goods bazaar Gumtree exposed its users’ home addresses in the source code of its webpages, and then tried to squirm out of a bug bounty after infosec bods alerted it to the flaw. British company Pen Test Partners (PTP) spotted the data leakage, which meant anyone could view a Gumtree user’s name Read more about Gumtree users’ locations were visible by pressing F12, wouldn’t pay bug bounty to finder[…]
[…]If deciphering every version of HDMI wasn’t already tedious enough, we now know that the latest and greatest HDMI 2.1 standard, well, isn’t very standardized. A TFTCentral investigation revealed that the TV or monitor you purchase with “HDMI 2.1″ might not support any of the latest features. TFTCentral smelled something fishy when it saw that Read more about Don’t Buy an HDMI 2.1 TV Before You Read the Fine Print[…]
IBM and Samsung claim they’ve made a breakthrough in semiconductor design. On day one of the IEDM conference in San Francisco, the two companies unveiled a new design for stacking transistors vertically on a chip. With current processors and SoCs, transistors lie flat on the surface of the silicon, and then electric current flows from Read more about New IBM and Samsung transistors could be key to super-efficient vertical chips[…]
If the Pentagon is going to rely on algorithms and artificial intelligence, it’s got to solve the problem of “brittle AI.” A top Air Force official recently illustrated just how far there is to go. In a recent test, an experimental target recognition program performed well when all of the conditions were perfect, but a Read more about This Air Force Targeting AI Thought It Had a 90% Success Rate. It Was More Like 25%[…]
Australian parliamentarians have demanded the prime minister, Scott Morrison, intervene in the case of Julian Assange, an Australian citizen, after the United States won a crucial appeal in its fight to extradite the WikiLeaks founder on espionage charges. “The prime minister must get Assange home,” the Australian Greens leader, Adam Bandt, told Guardian Australia on Read more about Scott Morrison urged to end ‘lunacy’ and push UK and US for Julian Assange’s release by Australian PMs[…]
That was fast: Netflix has canceled its ambitious, widely hyped and, ultimately, widely disappointing anime adaptation Cowboy Bebop, The Hollywood Reporter has learned. The move comes less than three weeks after the show’s Nov. 19 debut on the streaming service. The space Western had a rough reception. The 10-episode series garnered only a 46 percent Read more about ‘Cowboy Bebop’ Canceled by Netflix After One Season[…]
Heads up, future space travelers: No more commercial astronaut wings will be awarded from the Federal Aviation Administration after this year. The FAA said Friday it’s clipping its astronaut wings because too many people are now launching into space and it’s getting out of the astronaut designation business entirely. The news comes one day ahead Read more about FAA: No more commercial astronaut wings, too many launching. You still get to be on a list.[…]
The European Commission has announced that it’s adopting new rules around open source software which will see it release software under open source licenses. The decision follows a Commission study that found investment in open source software leads on average to four times higher returns. There has also been a push for this type of Read more about The European Commission is making its software open source to benefit society – considering it was paid for by the tax payers it’s the least they could do and should have done this years ago[…]
Wikileaks founder Julian Assange can be extradited from the UK to the US, the High Court has ruled. The US won its appeal against a January UK court ruling that he could not be extradited due to concerns over his mental health. Judges were reassured by US promises to reduce the risk of suicide. His Read more about Julian Assange can be extradited to the US, court rules, changes mind because US tells judge to.[…]
Ventoy is an open source tool to create bootable USB drive for ISO/WIM/IMG/VHD(x)/EFI files. With ventoy, you don’t need to format the disk over and over, you just need to copy the ISO/WIM/IMG/VHD(x)/EFI files to the USB drive and boot them directly. You can copy many files at a time and ventoy will give you Read more about Ventoy – add an iso to usb drive and boot it (or any other iso on it) up without any configuration[…]
Jeff Bezos’ rocket company, Blue Origin, became the subject of a federal review this fall after a group of 21 current and former employees co-signed an essay that raised serious questions about the safety of the company’s rockets — including the rocket making headlines for flying Bezos and other celebrities to space. But that review Read more about FAA says lack of federal whistleblower protections is ‘enormous factor’ hindering Blue Origin safety review[…]
A few hours ago, a 0-day exploit in the popular Java logging library log4j2 was discovered that results in Remote Code Execution (RCE) by logging a certain string. Given how ubiquitous this library is, the impact of the exploit (full server control), and how easy it is to exploit, the impact of this vulnerability is Read more about Log4Shell: RCE 0-day exploit found in log4j2, a popular Java logging package, hugely popular[…]
In the first part of this series of posts where we explore possible subjects that may trigger your “Aha! I know about this and can talk about this!” reflex, medical technology was suggested as an avenue of interest. In this second part, we would like to tickle your memories from not so very long ago Read more about MCH2022 Submit a talk above and beyond the final frontier![…]
Italy’s antitrust authority (AGCM) has fined Amazon €1.13 billion ($1.28 billion) for “abuse of dominant position,” the second penalty it has imposed on Amazon over the last month. Amazon holds a position of “absolute dominance” in the Italian brokerage services market, “which has allowed it to promote its own logistics service, called Fulfillment by Amazon Read more about Italian regulator fines Amazon $1.28 billion for abusing its market dominance[…]
[…] Consumer Reports, which recently published a 48-page white paper on VPNs that looks into the privacy and security policies of 16 prominent VPN providers. Researchers initially looked into some 51 different companies but ultimately honed in on the most prominent, high-quality providers. The results are decidedly mixed, with the report highlighting a lot of Read more about Report: VPNs Are Often a Mixed Bag for Privacy[…]
A research team at City University of Hong Kong (CityU) has discovered a new type of sound wave: The airborne sound wave vibrates transversely and carries both spin and orbital angular momentum like light does. The findings shattered scientists’ previous beliefs about the sound wave, opening an avenue to the development of novel applications in Read more about Physicists discover special transverse sound wave[…]