Compare cell phone plans using Wirefly's innovative plan comparison tool ×
Democrats

US Patients Battle EpiPen Prices And Regulations By Shopping Online (cnn.com) 241

"The incredible increase in the cost of EpiPens, auto-injectors that can stop life-threatening emergencies caused by allergic reactions, has hit home on Capitol Hill," reports CNN. Slashdot reader Applehu Akbar reports that the argument "has now turned into civil war in the US Senate": One senator's daughter relies on Epi-Pen, while another senator's daughter is CEO of Mylan, the single company that is licensed to sell these injectors in the US. On the worldwide market there is no monopoly on these devices... Is it finally time to allow Americans to go online and fill their prescriptions on the world market?
Time reports some patients are ordering cheaper EpiPens from Canada and other countries online, "an act that the FDA says is technically illegal and potentially dangerous." But the FDA also has "a backlog of about 4,000 generic drugs" awaiting FDA approval, reports PRI, noting that in the meantime prices have also increased for drugs treating cancer, hepatitis C, and high cholesterol. In Australia, where the drug costs just $38, one news outlet reports that the U.S. "is the only developed nation on Earth which allows pharmaceutical companies to set their own prices."
The Internet

New SWEET32 Crypto Attacks Speed Up Deprecation of 3DES, Blowfish (threatpost.com) 41

Researchers "have devised a new way to decrypt secret cookies which could leave your passwords vulnerable to theft," reports Digital Trends. Slashdot reader msm1267 writes: New attacks revealed today against 64-bit block ciphers push cryptographic ciphers such as Triple-DES (3DES) and Blowfish closer to extinction. The attacks, known as SWEET32, allow for the recovery of authentication cookies from HTTPS traffic protected by 3DES, and BasicAUTH credentials from OpenVPN traffic protected by default by Blowfish.

In response, OpenSSL is expected to remove 3DES from its default bulid in 1.1.0, and lower its designation from High to Medium 1.0.2 and 1.0.1. OpenVPN, meanwhile, is expected to release a new version as well with a warning about Blowfish and new configuration advice protecting against the SWEET32 attacks. The researchers behind SWEET32 said this is a practical attack because collisions begin after a relatively short amount of data is introduced. By luring a victim to a malicious site, the attacker can inject JavaScript into the browser that forces the victim to connect over and over to a site they're authenticated to. The attacker can then collect enough of that traffic -- from a connection that is kept alive for a long period of time -- to recover the session cookie.

Communications

Cybercriminals Select Insiders To Attack Telecom Providers (helpnetsecurity.com) 23

An anonymous reader quotes a report from Help Net Security: Cybercriminals are using insiders to gain access to telecommunications networks and subscriber data, according to Kaspersky Lab. In addition, these criminals are also recruiting disillusioned employees through underground channels and blackmailing staff using compromising information gathered from open sources...

According to Kaspersky Lab researchers, if an attack on a cellular service provider is planned, criminals will seek out employees who can provide fast track access to subscriber and company data or SIM card duplication/illegal reissuing. If the target is an Internet service provider, the attackers will try to identify the employees who can enable network mapping and man-in-the-middle attacks.

Communications

Twitter Is Working On Anti-Harassment Keyword Filtering Tool, Says Report (bloomberg.com) 135

Twitter CEO Jack Dorsey has made it a top priority for company to limit hateful conduct. In late December 2015, for example, the company changed its rules to explicitly ban "hateful conduct" for the first time. A new report says Twitter is working to further curb the rise of hateful conduct as it is "working on a keyword-based tool that will let people filter the posts they see, giving users a more effective way to block out harassing and offensive tweets." Bloomberg reports: "The San Francisco-based company has been discussing how to implement the tool for about a year as it seeks to stem abuse on the site, said the people [familiar with the matter], who asked not to be identified because the initiative isn't public. By using keywords, users could block swear words or racial slurs, for example, to screen out offenders. The filtering tool could eventually become a moderator for any kind of content, the people said. For example, users could block a hashtag about an event they don't care to read about."
Businesses

Spotify Is Burying Tracks From Musicians Who Give Exclusives To Apple and Tidal (bloomberg.com) 77

The music-streaming market is very competitive these days, especially since Apple released Apple Music last year. In retaliation for musicians giving Apple exclusive access to their new music, Spotify has reportedly been making their songs harder to find on its service. Bloomberg reports: "Artists who have given Apple exclusive access to new music have been told they won't be able to get their tracks on featuring playlists once the songs become available on Spotify, said the people [familiar with the strategy], who declined to be identified discussing the steps. Those artists have also found their songs buried in the search rankings of Spotify, the world's largest music-streaming service, the people said. Spotify said it doesn't alter search rankings. Spotify has been using such practices for about a year, one of the people said, though others said the efforts have escalated over the past few months. Artists who have given exclusives to Tidal, the streaming service run by Jay Z, have also retaliated against, the person said, declining to identify specific musicians."
Communications

Sprint Charging 'Unlimited' Users $20 More for Unthrottled Video (dslreports.com) 88

Sprint has a new "unlimited" data plan for users that want to watch videos in full-HD (1080p) screen resolution. Dubbed "Unlimited Freedom Premium" plan, it offers the same features as the "Unlimited Freedom" plan with the bonus of allowing users to stream videos in full-HD. Also, it costs $20 extra. DSLReports points out the obvious:Last week we noted that Sprint unveiled its new Unlimited Freedom plan, which provides unlimited text, voice and data for $60 a month for one line, $40 a month for a second line, and $30 a month for every line thereafter (up to a maxiumum of 10). But the plan also, following on T-Mobile's heels, throttles all video by default to 480p, a move that has raised the hackles of net neutrality advocates.
Software

Linus on Linux's 25th Birthday (zdnet.com) 106

The creator of Linux, Linus Torvalds, posted his famous message announcing Linux on August 25, 1991, claiming that it was "just a hobby, won't be big and professional like gnu." ZDNet's Steven J. Vaughan-Nichols caught up with Linus Torvalds and talked about Linux's origins in a series of interviews: "SJVN: What's Linux real birthday? You're the proud papa, when do you think it was? When you sent out the newsgroup post to the Minix newsgroup on August 25, 1991? When you sent out the 0.01 release to a few friends?

LT: I think both of them are valid birthdays. The first newsgroup post is more public (August 25), and you can find it with headers giving date and time and everything. In contrast, I don't think the 0.01 release was ever announced in any public setting (only in private to a few people who had shown interest, and I don't think any of those emails survived). These days the way to find the 0.01 date (September 17) is to go and look at the dates of the files in the tar-file that still remains. So, both of them work for me. Or either. And, by the way, some people will argue for yet other days. For example, the earliest public semi-mention of Linux was July 3: that was the first time I asked for some POSIX docs publicly on the minix newsgroup and mentioned I was working on a project (but didn't name it). And at the other end, October 5 was the first time I actually publicly announced a Linux version: 'version 0.02 (+1 (very small) patch already).' So you might have to buy four cakes if you want to cover all the eventualities."
Vaughan-Nichols goes on to pick Linus' brain about what he was doing when he created Linux. In honor of Linux's 25th birthday today, let's all sing happy birthday... 1... 2... 3...
Crime

US Unveils Charges Against KickassTorrents, Names Two More Defendants (arstechnica.com) 110

A total of three men are said to be operators of file-sharing site KickassTorrents (KAT), according to U.S. prosecutors. Last month, federal authorities arrested the 30-year-old Ukrainian mastermind of KAT, Artem Vaulin, and formally charged him with one count of conspiracy to commit criminal copyright infringement, one count of conspiracy to commit money laundering, and two counts of criminal copyright infringement. Two other Ukrainians were named in the new indictment (PDF): Levgen (Eugene) Kutsenko and Oleksander (Alex) Radostin. While only Vaulin has been arrested, bench warrants have been issue for the arrest of all three men. Ars Technica reports: "Prosecutors say the three men developed and maintained the site together and used it to 'generate millions of dollars from the unlawful distribution of copyright-protected media, including movies, [...] television shows, music, video games, computer software, and electronic books.' They gave out 'Reputation' and 'User Achievement' awards to users who uploaded the most popular files, including a special award for users who had uploaded more than 1,000 torrents. The indictment presents a selection of the evidence that the government intends to use to convict the men, and it isn't just simple downloads of the copyrighted movies. The government combed through Vaulin's e-mails and traced the bitcoins that were given to him via a 'donation' button."
Encryption

PSA: PlayStation Network Gets Two-Step Verification (arstechnica.com) 41

Consider this a public service announcement: Sony has (finally) added two-factor authentication to PlayStation Network accounts. If you're a PlayStation user and are reading this right now, you really should go set it up so that someone doesn't try to take over your account and steal your password. Ars Technica details how you can set up the new security features: "Turn on your PS4 and go to Settings -> PlayStation Network Account Management -> Account Information -> Security -> 2-Step Verification. You can also set it up through the web by logging into your PSN account on the web and going through the Security tab under the Account header. From there, on-screen instructions will walk you through the process of using a text message to confirm your mobile device as a secondary layer of security for your PSN account. Two-factor support is not available when logging on to older PlayStation systems, so Sony recommends you generate a 'device setup password' to help protect the PS3, Vita, or PSP." Two-factor authentication comes five years after hackers breached PSN's security and stole 77 million accounts.
Communications

FCC Proposes 5G Cybersecurity Requirements, Asks For Industry Advice (fedscoop.com) 29

Presto Vivace quotes a report from FedScoop: "Cybersecurity issues must be addressed during the design phase for the entire 5G ecosystem, including devices. This will place a premium on collaboration among all stakeholders," said FCC chairman Tom Wheeler during a National Press Club event on June 20. "We continue to prefer an approach that emphasizes that industry develop cybersecurity standards just as we have done in wired networks." The FCC published a request Wednesday for comment on a new set of proposed 5G rules to the Federal Register focused on adding specific "performance requirements" for developers of example internet-connected devices. If a company hopes to secure a license to access higher-frequency 5G spectrum in the future then they will need to adhere to these specific requirements -- in other words, compliance is non-negotiable. Notably, these FCC "performance requirements" now include the submission of a network security plan. The report adds: "A quick review of the FCC's proposed 5G cybersecurity plan shows a six category split, organized by a companies' security approach, coordination efforts, standards and best practices, participation with standards bodies, other security approaches and plans with information sharing organizations. Security plans must be submitted to the commission at least six months before a 5G-ready product enters the market, according to the notice."
Google

Google Fiber To Cut Staff In Half After User Totals Disappoint, Says Report (dslreports.com) 203

An anonymous reader quotes a report from DSLReports: Sources claim that Google Fiber has been disappointed with the company's overall number of total subscribers since launching five years ago. A paywalled report over at The Information cites a variety of anonymous current and former Google employees, who say the estimated 200,000 or so broadband subscribers the company had managed to sign up by the end of 2014 was a fary cry from the company's original projection of somewhere closer to 5 million. Google Fiber has never revealed its total number of subscribers. A report last October pegged the company's total broadband subscribers at somewhere around 120,000, though it's unclear how many of those users had signed up for Google Fiber's symmetrical 5 Mbps tier, which was originally free after users paid a $300 installation fee. Disappointed by sluggish subscriber tallies, The Information report states that last month Alphabet CEO Larry Page ordered Google Fiber boss Craig Barratt to cut the total Google Fiber staff in half to roughly 500 people. That's a claim that's sure to only fuel continued speculation that the company is starting to get cold feet about its attempts to bring broadband competition to a broken duopoly market.
China

China To Crackdown On Unauthorised Radio Broadcasts (www.bgr.in) 44

An anonymous reader writes: Reportedly, in a national campaign aided by more than 30,000 airwave monitors, in over past six months, more than 500 sets of equipment for making unauthorised radio broadcasts were seized in China. The campaign, launched on February 15 by the State Council, resulted in 1,796 cases related to illegal radio stations, after 301,840 hours of monitoring from February to July, according to an online statement by the Ministry of Industry and Information Technology. The number of incidents was down by 50 per cent from April to August, the China Daily quoted the statement as saying. So-called pirate radios have appeared in most parts of China since 2015 and this "has been a channel for criminals to defraud and promote aphrodisiacs, along with counterfeit and poor-quality medicine," according to the Ministry of Public Security's Criminal Investigation Department. The operating cost of a pirate radio is low, but profit can be high. A pirate radio station that broadcasts advertisements for aphrodisiacs can pocket more than 70,000 yuan ($10,500) a month, with an overhead cost of no more than 10,000 yuan, investigators said in a post on Sina Weibo. It said most spare parts for broadcasting equipment can be bought on the internet.
Businesses

Canon Unveils EOS 5D Mark IV DSLR (canonrumors.com) 158

It's been a little more than 4 year since Canon unveiled the EOS 5D Mark III. Today, Canon took the wraps off its successor -- the EOS 5D Mark IV. The Mark IV features a 34-megapixel, full-frame CMOS sensor and Digic 6+ processor with support for capturing 4K video at 23.98, 24, 25 and 30 fps. In addition, it features a 61-point autofocus system, built-in digital lens optimizer, NFC, Wi-Fi and an ISO range of 100-32,000. The continuous shooting mode is set at 7 fps, compared to 6 fps on the 5D Mark III. It will also take both CompactFlash and SD cards, and there is GPS included in the body for geotagging images. Canon is selling the Mark IV in early September for $3,499 for the body only. They're also selling two new L-series EF lenses -- the Canon EF 16-35mm f/2.8L III USM Ultra-Wide Zoom Lens and EF 24-105mm f/4L IS II USM Standard Zoom Lens. President and COO, Canon U.S.A., Inc, Yichi Ishizuka said in a statement: "Canon's EOS 5D series of DSLR cameras has a history of being at the forefront of still and video innovation. And today, we add to this family of cameras the EOS 5D Mark IV -- the first in our 5D series to offer 4K video and built-in Wi-Fi and NFC connectivity. In developing this new DSLR camera, we listened to the requests of current EOS users to create for them a modern, versatile camera designed to help them create and share beautiful still and video imagery." Here's a blast from the past: Canon's EOS 1Ds Mark II. Slashdot reader LoudMusic submitted this story back in 2004, highlighting the camera's "802.11a/g and wired networking capabilities."
The Almighty Buck

'Legalist' Startup Automates The Lawsuit Strategy Peter Thiel Used To Bankrupt Gawker (gizmodo.com) 241

An anonymous reader writes from a report via Gizmodo: "Two Harvard undergraduates have created a service called Legalist that uses what they call 'data-backed litigation financing,' analyzing civil lawsuits with an algorithm to predict case outcomes and determine which civil lawsuits are worth investing in," reports Gizmodo. The process is very similar to what billionaire Peter Thiel did when he secretly funded a lawsuit from Hulk Hogan against Gawker Media. "Legalist says it uses an algorithm of 58 different variables including, as [Legalist cofounder] Eva Shang told the Silicon Valley Business Journal, who the presiding judge is and the number of cases the judge is currently working on. The algorithm has been fed cases dating back to 1989 and helps people figure out how long a case will last and the risks associated with it. In a presentation at Y Combinator's Demo Day on Tuesday [Legalist was developed as part of Y Combinator's Summer 2016 class], the founders claimed that the startup funded one lawsuit for $75,000 and expects a return of more than $1 million. Shang says the $1.40 is earned for every $1 spent in litigation financing, which can prove to be a profitable enterprise when you're spending hundreds of thousands of dollars." Shang told Business Insider in reference to the Gawker lawsuit, "That's the kind of thing we're staying away from here." The company will supposedly be focusing on commercial and small-business lawsuits, and will not be backing lawsuits by individuals.
Social Networks

YouTube Plans To Bring Photos, Polls, and Text To Its Video Service (venturebeat.com) 22

An anonymous reader quotes a report from VentureBeat: YouTube is developing a feature internally called Backstage where users can share photos, polls, links, text posts, and videos with their subscribers. Backstage is expected to launch by the end of the year, possibly this fall, on mobile and desktop, initially with select popular YouTube accounts and with limited features, VentureBeat has learned. Akin to a Facebook Timeline or Twitter profile, Backstage will live alongside the Home and Videos tabs within individual YouTube channels. Posts shared to Backstage will appear in reverse chronological order, and, crucially, will also appear in subscribers' feeds and notifications, making them highly visible to fans. While Backstage is expected to introduce entirely new types of content to YouTube, including tweet-like text posts and topical polls, it also presents new opportunities for video sharing. Backstage will eventually enable users to share both traditional YouTube videos and Backstage-only videos, possibly creating an opportunity for more intimate, or even ephemeral, video sharing between YouTubers and their fans.
The Internet

MIT Scientists Develop New Wi-Fi That's 330% Faster (msn.com) 85

An anonymous reader quotes a report from MSN: Scientists at MIT claim to have created a new wireless technology that can triple Wi-Fi data speeds while also doubling the range of the signal. Dubbed MegaMIMO 2.0, the system will shortly enter commercialization and could ease the strain on our increasingly crowded wireless networks. Multiple-input-multiple-output technology, or MIMO, helps networked devices perform better by combining multiple transmitters and receivers that work simultaneously, allowing then to send and receive more than one data signal at the same time. MIT's MegaMIMO 2.0 works by allowing several routers to work in harmony, transmitting data over the same piece of spectrum. MIT claimed that during tests, MegaMIMO 2.0 was able to increase data transfer speed of four laptops connected to the same Wi-Fi network by 330 percent. Paper co-author Rahul said the technology could also be applied to mobile phone networks to solve similar congestion issues. "In today's wireless world, you can't solve spectrum crunch by throwing more transmitters at the problem, because they will all still be interfering with one another," Ezzeldin Hamed, lead author on a paper on the topic, told MIT News. "The answer is to have all those access points work with each other simultaneously to efficiently use the available spectrum."
Security

Over 25 Million Accounts Stolen After Mail.ru Forums Hacked (zdnet.com) 25

An anonymous reader writes: Over 25 million accounts associated with forums hosted by Russian internet giant Mail.ru have been stolen by hackers. Two hackers carried out attacks on three separate game-related forums in July and August. One forum alone accounted for almost half of the breached data -- a little under 13 million records; the other two forums making up over 12 million records. The databases were stolen in early August, according to breach notification site LeakedSource.com, which obtained a copy of the databases. The hackers' names aren't known, but used known SQL injection vulnerabilities found in older vBulletin forum software to get access to the databases. An analysis of the breached data showed that hackers took 12.8 million accounts from cfire.mail.ru; a total of 8.9 million records from parapa.mail.ru, and 3.2 million accounts from tanks.mail.ru. The hackers were able to obtain usernames, email addresses, scrambled passwords, and birthdays.
The Internet

Singapore To Cut Off Public Servants From the Internet (theguardian.com) 59

Singapore is planning to cut off web access for public servants as a defence against potential cyber attack, Reuters reports. The local government's move has already been criticized by many, who say that it marks a retreat for a technologically advanced city-state that has trademarked the term "smart nation". From an article on The Guardian: Some security experts say the policy, due to be in place by May, risks damaging productivity among civil servants and those working at more than four dozen statutory boards, and cutting them off from the people they serve. It may only raise slightly the defensive walls against cyber attack, they say. Ben Desjardins, director of security solutions at network security firm Radware, called it "one of the more extreme measures I can recall by a large public organisation to combat cyber security risks." Stephen Dane, a Hong Kong-based managing director at networking company Cisco Systems, said it was "a most unusual situation" and Ramki Thurimella, chair of the computer science department at the University of Denver, called it both "unprecedented" and "a little excessive".
Communications

Facebook Is Testing Autoplaying Video With Sound (thenextweb.com) 151

An anonymous reader writes: Facebook is testing a "feature" that autoplays video clips on your feed with sound. It's not a very big test, but there's a possibility the company could roll it out to a larger group of users. The Next Web reports: "The company is currently trying two methods of getting people to watch video with sound in Australia: the aforementioned autoplaying, and an unmute button on the lower right corner of videos, like Vine videos on a desktop. The latter certainly sounds more reasonable; the last thing you want is to be checking Facebook quickly during a meeting or class, and suddenly have your phone blaring out an advert because you happened to stop on a video. Thankfully, you can disable the 'feature' from your settings, but the point is there's nothing wrong with the current opt-in approach, especially considering how many companies are embracing video captioning, and that Facebook even has its own auto-caption tool for advertisers." "We're running a small test in News Feed where people can choose whether they want to watch videos with sound on from the start," a Facebook spokesperson told Mashable Australia. "For people in this test who do not want sound to play, they can switch it off in Settings or directly on the video itself. This is one of several tests we're running as we work to improve the video experience for people on Facebook."
Businesses

Pinterest Acquires Instapaper (theverge.com) 18

An anonymous reader quotes a report from The Verge: Instapaper, a pioneering app for saving articles to read later, has been acquired -- again. The app, which was created by developer Marco Arment and sold to Betaworks in 2013, has found a new home at Pinterest. The goal is "to accelerate discovering and saving articles on Pinterest," the company said in a statement. It will continue to operate as a standalone app, and the Instapaper team will work on both that app and on Pinterest generally. Terms of the deal were not disclosed. As a visual search engine, Pinterest isn't often thought of as a place to bookmark written content. But in 2013 the company introduced article pins, a format that creates rich bookmarks complete with a photo and a preview of the text. The acquisition of Instapaper suggests the company believes there is more to be done there -- although it's not certain how valuable that will be for Pinterest. Instapaper can be used for free or in a $30-a-year premium version; the company has never said how many subscribers it has.

Slashdot Top Deals