VW offers to buy back 500K demon-haunted diesels

21759030250_850675ab6a_o

Reuters reports that VW is about to tell the federal judge in San Francisco in charge of its case that it will offer to buy back nearly half a million of its diesel vehicles from owners who were deceived about the cars' emission standards and performance when the company engineered its cars so that they would act daemonically, performing differently based on whether they were being tested or not. Read the rest

Printer ink wars may make private property the exclusive domain of corporations

Serfs paying their feudal lords

Printer manufacturer Lexmark hates America, and everything good and right in the world, because we keep stubbornly insisting that if we buy a printer cartridge, we can refill it, because it's ours.

Read the rest

Watch: nomination hearings for the next Librarian of Congress, 11:15AM PT

056c026d-1c66-4d42-9fae-a8e96df290c5-1020x968

Carla Hayden is President Obama's pick for the next Librarian of Congress, and she's an extraordinarily good choice: an open-access advocate who opposes mass surveillance and comes out of the library world, Hayden is ideally poised to lead the Library, which, in turn, supervises the Copyright Office and sets the nation's de facto IT policy, for example through things like the Triennial DMCA 1201 hearings). Read the rest

Hacking Team supplied cyber-weapons to corrupt Latin American governments for human rights abuses

056c026d-1c66-4d42-9fae-a8e96df290c5-1020x1040

In Hacking Team Malware Para La Vigilancia en América Latina, a new report from Derechos Digitales, we learn how Hacking Team, the hacked-and-disgraced cyber-arms dealer (previously) supplied weapons to corrupt state actors in latinamerica who used them to spy on political opposition, journalists and academics. Read the rest

High tech/high debt: the feudal future of technology makes us all into lesser lessors

20subprime-blog480

Sarah Jeong continues her excellent series of critical perspectives on technology with a piece on the way that technology is being used to let computers control their users, on behalf of the corporations who make and sell these tools. Read the rest

Ron Wyden vows to filibuster anti-cryptography bill

3642123174_18d160528f_b

Senators Richard Burr [R-NC] and Dianne Feinstein [D-CA] finally introduced their long-rumored anti-crypto bill, which will ban US companies from making products with working cryptography, mandating that US-made products have some way to decrypt information without the user's permission. Read the rest

UL has a new, opaque certification process for cybersecurity

UL_Mark.svg.png

The idea of a "Cyber-Underwriters Laboratories mark" is really in the air; in the past six months, I've had it proposed to me by spooks, regulators, activists, consumer protection advocates, and security experts. But the devil is in the details. Read the rest

SAVE COMCAST!

drm-comcast-2c

The World Wide Web Consortium, once the world's most trusted source of open standards, is helping Comcast make a DRM standard designed to give studios a veto over the legal use of their programming -- something that would have prevented the cable industry from ever coming into being. Read the rest

Google reaches into customers' homes and bricks their gadgets

1-st0n65XhOKDsjcd_fPvbTg

Revolv is a home automation hub that Google acquired 17 months ago; yesterday, Google announced that as of May 15, it will killswitch all the Revolvs in the field and render them inert. Section 1201 of the DMCA -- the law that prohibits breaking DRM -- means that anyone who tries to make a third-party OS for Revolv faces felony charges and up to 5 years in prison. Read the rest

Ransomware creeps steal two more hospitals. Again. Again.

056c026d-1c66-4d42-9fae-a8e96df290c5-1020x1016

Unlike the Hollywood hospital shutdown in Feb and the Kentucky shutdown in March which got in by phishing attacks on employees, the two hospitals in Baltimore that were taken offline by ransomware were targeted by server-based attacks that got in through vulnerabilities in public-facing hospital services. Read the rest

Automated drug cabinets have 1400+ critical vulns that will never be patched

pyxis-supplystation-system_1_SU_0609_0124

The Pyxis Supplystation from Carefusion is an automated pharmaceutical drug cabinet system that's still widely used despite being end-of-lifed by its manufacturer -- a new report from CERT discloses that independent researchers Billy Rios and Mike Ahmadi have found over 1,400 critical remote-attack vulnerabilities. Read the rest

How DRM would kill the next Netflix (and how the W3C could save it)

netflix1

The World Wide Web Consortium's decision to make DRM part of HTML5 doesn't just endanger security researchers, it also endangers the next version of all the video products and services we rely on today: from cable TV to iTunes to Netflix. Read the rest

Security researchers: help EFF keep the Web safe for browser research!

fight_for_the_user_by_nostrildarmus-d385u9h

With the Electronic Frontier Foundation, I've been lobbying the World Wide Web Consortium (W3C), which sets the open standards that the Web runs on, to take measures to protect security researchers (and the users they help) from their own bad decision to standarize Digital Rights Management as part of HTML5. Read the rest

Ransomware hackers steal a hospital. Again.

methodhop

A month after a hospital in Hollywood was shut down by a ransomware infection that encrypted all the files on its computers and computer-controlled instruments and systems, another hospital, this one in Kentucky, has suffered a similar fate. Read the rest

Vulnerability in recorders used by 70+ manufacturers' CCTV systems has been known since 2014

retailer

Back in 2014, RSA published a report documenting a new tactic by criminal gangs: they were hacking into the digital video recorders that stored the feeds from security cameras to gather intelligence on their targets prior to committing their robberies. Read the rest

Dozens of car models can be unlocked and started with a cheap radio amp

animation (1)

A group of German researchers from ADAC have published their work on extending last year's amplification attack that let thieves steal Priuses with a $17 gadget that detected your key's unlock signal and amplified it so it would reach the car. Read the rest

Anti-DRM demonstrators picket W3C meeting

OLYMPUS DIGITAL CAMERA

The World Wide Web Consortium, the decades old champion of the open Web, let down many of its biggest supporters when it decided to cater to Hollywood by standardizing DRM as part of the spec for HTML5. Read the rest

More posts