Navy openly solicits for 0-day bugs to weaponize

A solicitation on FedBizOpps from the Navy asks security researchers to sell them their "vulnerability intelligence, exploit reports and operational exploit binaries affecting widely used and relied upon commercial software." Read the rest

Internet-connected hospital drug pumps vulnerable to remote lethal-dose attacks

Researcher Billy Rios (previously) has extended his work on vulnerabilities in hospital drug pumps, discovering a means by which their firmware can be remotely overwritten with new code that can result in lethal overdoses for patients. Read the rest

If you want a picture of the future, imagine a Roomba leaking pix of your home, forever

The game-plan for future Roombas may fit them with cameras that send images of your home to a remote service that identifies obstacles and lets the little robots clean around them -- what could possibly go wrong? Read the rest

Blizzard bans 100,000 Warcraft players

They were all running mods that let them automate away the tedious grinding that is so integral to the way that MMOs incentivize players to devote thousands of hours to their products. Read the rest

Apex: final Nexus book merges the drug war with transhumanism

Ramez Naam's Nexus trilogy has concluded with a huge, thrilling, globe-spanning book called Apex that nailed it.

Computer scientist/Congressman: crypto backdoors are "technologically stupid," DA is "offensive"

Rep Ted Lieu (D-CA) is a USAF reserve colonel, former member of the Judge Advocate General Corps and holds a computer science degree -- he's one of the four members of Congress with any formal computer science qualifications. Read the rest

Telescreen watch: Vizio adds spyware to its TVs

If you own a Vizio TV that's updated recently, beware: its firmware adds "Smart Interactivity," a cute name for spyware that records your viewing choices and inserts additional "bonus features" (ads) into your viewing. Read the rest

NSA declares war on general purpose computers

NSA director Michael S Rogers says his agency wants "front doors" to all cryptography used in the USA, so that no one can have secrets it can't spy on -- but what he really means is that he wants to be in charge of which software can run on any general purpose computer. Read the rest

Windows 10 announcement: certified hardware can lock out competing OSes

Microsoft has announced a relaxation of its "Secure Boot" guidelines for OEMs, allowing companies to sell computers pre-loaded with Windows 10 that will refuse to boot any non-Microsoft OS. Read the rest

Three steps to save ourselves from firmware attacks

Following on the news that the (likely NSA-affiliated) Equation Group has developed a suite of firmware attacks that target the software embedded in your hard-drive and other subcomponents, it's time to expand the practice of information security to the realm of embedded software. Read the rest

Yahoo's security boss faces down NSA director over crypto ban

During Monday's Cybersecurity for a New America conference in DC, Yahoo's Chief Information Security Officer Alex Stamos stood up and had an intense verbal showdown with NSA director Mike Rogers about the NSA's plan to ban working crypto, in which the nation's top spook fumfuhed and fumbled to explain how this idea isn't totally insane. Read the rest

Revenge porn shitweasel pleads guilty, admits he hacked victims' accounts

Michael from Muckrock writes, "After months of legal wrangling, Hunter Moore, who ran 'revenge porn' website Isanyoneup, has agreed to a plea deal that will see him serve a minimum of two years and up to seven years in jail, as well as up to $500,000 in fines." Read the rest

An Internet of Things that do what they're told

California's phone bricking bill seems to have reduced thefts in the short run, but at the cost of giving dirty cops and wily criminals the power to wipe-and-brick your phone at will. Read the rest

Youtube ditches Flash, but it hardly matters

A year ago, the news that the world's biggest video site was abandoning proprietary software would have been incredible, but thanks to the World Wide Web Consortium's Netflix-driven DRM work, this changes very little. Read the rest

Samsung: watch what you say in front of our TVs, they're sending your words to third parties

Part of the Samsung Smarttv EULA: "Please be aware that if your spoken words include personal or other sensitive information, that information will be among the data captured and transmitted to a third party through your use of Voice Recognition." Read the rest

Free "freedom clip" turns off K-Cup DRM

Rogers Family Company Coffee and Tea is offering a free "Freedom Clip" that disables DRM in your new-model K-Cup machine, letting you use it with anyone's coffee pods. Read the rest

Snooper's Charter is dead: let's hammer a stake through its heart and fill its mouth with garlic

We killed the dreadful Snooper's Charter last week, again, for the third or fourth time, depending on how you count -- now how do we keep it from rising from the grave again and terrorizing Britain with the threat of total, ubiquitous, uncontrolled state spying? Read the rest

More posts