Hackers are actively trying to steal passwords from two widely used VPNs

Hackers are actively trying to steal passwords from two widely used VPNs

(credit: xxdigipxx)

Hackers are actively unleashing attacks that attempt to steal encryption keys, passwords, and other sensitive data from servers that have failed to apply critical fixes for two widely used virtual private network (VPN) products, researchers said.

The vulnerabilities can be exploited by sending unpatched servers Web requests that contain a special sequence of characters, researchers at the Black Hat security conference in Las Vegas said earlier this month. The pre-authorization file-reading vulnerabilities resided in the Fortigate SSL VPN, installed on about 480,000 servers, and the competing Pulse Secure SSL VPN, installed on about 50,000 machines, researchers from Devcore Security Consulting reported.

The Devcore researchers discovered other critical vulnerabilities in both products. These make it possible for attackers to, among other things, remotely execute malicious code and change passwords. Patches for the Fortigate VPN became available in May and in April for Pulse Secure. But installing the patches can often cause service disruptions that prevent businesses from carrying out essential tasks.

Read 7 remaining paragraphs | Comments

Source: Ars Technica – Hackers are actively trying to steal passwords from two widely used VPNs

Amazon Joins Walmart In Saying Tesla Solar Panels Caught Fire

Earlier today, it was reported that Tesla is working to resolve the lawsuit Walmart filed against the company earlier this week over defective solar panels. However, this story is far from over as Amazon has chimed in by saying it too has seen its Tesla solar panels catch fire. Bloomberg reports: On Friday, Amazon.com Inc. said a June 2018 blaze on the roof of one of its warehouses in Redlands, California, involved a solar panel system that Tesla’s SolarCity division had installed. The Seattle-based retail giant said by email that it has since taken steps to protect its facilities and has no plans to install more Tesla systems. Tesla didn’t immediately respond to a request for comment, but said earlier on Friday that it had discovered flaws in a part that the company had used in some of its systems. The part known as a “connector,” manufactured by Amphenol Corp., led to “failures and disconnections at a higher rate than our standards allow,” Tesla said in an emailed statement. The company has worked to replace it.

Read more of this story at Slashdot.

Source: Slashdot – Amazon Joins Walmart In Saying Tesla Solar Panels Caught Fire

How to Install FreeRADIUS and daloRADIUS on Ubuntu 18.04 LTS

FreeRADIUS is a free and open-source client/server protocol that provides centralized network authentication on systems and daloRADIUS is a web-based application for managing RADIUS server. In this tutorial, I will explain step by step how to install FreeRADIUS and Daloradius on Ubuntu 18.04 LTS.

Source: LXer – How to Install FreeRADIUS and daloRADIUS on Ubuntu 18.04 LTS

Netflix Tests 'Collections' That Are Curated By Humans Instead of Algorithms

Netflix is testing an all-new recommendation system called “Collections” that relies on humans instead of neural networks. TechCrunch reports: While Netflix today already offers thematic suggestions of things to watch, based on your Netflix viewing history, Collections aren’t only based on themes. According to Netflix, the titles are curated by experts on the company’s creative teams, and are organized into these collections based on similar factors — like genre, tone, story line and character traits.

This human-led curation is different from how Netflix typically makes its recommendations. The streaming service is famous for its advanced categorization system, where there are hundreds of niche categories that go beyond broad groupings like “Action,” “Drama,” “Sci-Fi,” “Romance” and the like. These narrower subcategories allow the streamer to make more specific and targeted recommendations. Netflix also tracks titles that are popular and trending across its service, so you can check in on what everyone else is watching, as well. The feature is currently in testing on iOS devices and can be found at the top right of the app’s homepage, if you’ve been opted in to the test.

Read more of this story at Slashdot.

Source: Slashdot – Netflix Tests ‘Collections’ That Are Curated By Humans Instead of Algorithms

The Linux kernel: Top 5 innovations

The word innovation gets bandied about in the tech industry almost as much as revolution, so it can be difficult to differentiate hyperbole from something that’s actually exciting. The Linux kernel has been called innovative, but then again it’s also been called the biggest hack in modern computing, a monolith in a micro world. Setting aside marketing and modeling, Linux is arguably the most popular kernel of the open source world, and it’s introduced some real game-changers over its nearly 30-year life span.

Source: LXer – The Linux kernel: Top 5 innovations

Amazon Echoes Walmart's Claims That Tesla Solar Panels Sparked Rooftop Fire

Yeesh. This has not been a good news week for Tesla subsidiary SolarCity. It seems Walmart isn’t the only one claiming that the flagging renewable energy company’s solar panels caught fire; according to a new Bloomberg report, Amazon had a similarly incendiary incident happen in 2018.

Read more…

Source: Gizmodo – Amazon Echoes Walmart’s Claims That Tesla Solar Panels Sparked Rooftop Fire

Intel Shares Highlights From Their 2019 Open-Source Technology Summit

Taking place back in May at the beautiful Skamania Lodge in Washington was Intel’s OSTS 2019 for their annual Open-Source Technology Summit that traditionally was internal-only but has begun opening up including allowing external participants this year. I was at OSTS 2019 and it’s by far my highlight of the year with many really great sessions and a lot of useful networking at the event. Intel’s open-source team has now shared some video recordings from this open-source/Linux event…

Source: Phoronix – Intel Shares Highlights From Their 2019 Open-Source Technology Summit

Complex Quantum Teleportation Achieved For the First Time

An anonymous reader quotes a report from Phys.Org: Researchers from the Austrian Academy of Sciences and the University of Vienna have experimentally demonstrated what was previously only a theoretical possibility. Together with quantum physicists from the University of Science and Technology of China, they have succeeded in teleporting complex high-dimensional quantum states. The research teams report this international first in the journal Physical Review Letters. In their study, the researchers teleported the quantum state of one photon (light particle) to another distant one. Previously, only two-level states (“qubits”) had been transmitted, i.e., information with values “0” or “1”. However, the scientists succeeded in teleporting a three-level state, a so-called “qutrit.” In quantum physics, unlike in classical computer science, “0” and “1” are not an ‘either/or’ — both simultaneously, or anything in between, is also possible. The Austrian-Chinese team has now demonstrated this in practice with a third possibility “2”.

The quantum state to be teleported is encoded in the possible paths a photon can take. One can picture these paths as three optical fibers. Most interestingly, in quantum physics a single photon can also be located in all three optical fibers at the same time. To teleport this three-dimensional quantum state, the researchers used a new experimental method. The core of quantum teleportation is the so-called Bell measurement. It is based on a multiport beam splitter, which directs photons through several inputs and outputs and connects all optical fibers together. In addition, the scientists used auxiliary photons — these are also sent into the multiple beam splitter and can interfere with the other photons. Through clever selection of certain interference patterns, the quantum information can be transferred to another photon far from the input photon, without the two ever physically interacting. The experimental concept is not limited to three dimensions, but can in principle be extended to any number of dimensions, as Erhard emphasizes.

Read more of this story at Slashdot.

Source: Slashdot – Complex Quantum Teleportation Achieved For the First Time

How to Delete MySQL Users Accounts

MySQL allows you to create multiple user accounts and grant appropriate privileges so that users can connect and manage databases. If the user account is no longer needed, it is a good idea to either remove the user privileges or to completely delete the user account. This tutorial explains how to delete MySQL/MariaDB user accounts.

Source: LXer – How to Delete MySQL Users Accounts

Seattle Has Figured Out How To End the War On Drugs

Nicholas Kristof writes in an opinion piece for The New York Times about Seattle’s “bold approach to narcotics that should be a model for America.” Instead of being prosecuted for being caught with small amounts of drugs, that person is steered toward social services to get help. “In effect, Seattle is decriminalizing the use of hard drugs,” writes Kristof. “It is relying less on the criminal justice toolbox to deal with hard drugs and more on the public health toolbox.” From the report: This model is becoming the consensus preference among public health experts in the U.S. and abroad. Still, it shocks many Americans to see no criminal penalty for using drugs illegally, so it takes courage and vision to adopt this approach: a partial retreat in the war on drugs coupled with a stepped-up campaign against addiction. The number of opioid users has surged, and more Americans now die each year from overdoses than perished in the Vietnam, Afghan and Iraq wars combined. And that doesn’t account for the way drug addiction has ripped apart families and stunted children’s futures. More than two million children in America live with a parent suffering from an illicit-drug dependency.

So Seattle is undertaking what feels like the beginning of a historic course correction, with other cities discussing how to follow. This could be far more consequential than the legalization of pot: By some estimates, nearly half of Americans have a family member or close friend enmeshed in addiction, and if the experiment in Seattle succeeds, we’ll have a chance to rescue America from our own failed policies. Decriminalization is unfolding here in part because of Dan Satterberg, the prosecuting attorney for King County, which includes Seattle. It’s also arguably underway because of what happened to his little sister, Shelley Kay Satterberg. At the age of 14, Shelley ran away from home because her parents wouldn’t let her go to a concert on a school night. It was a rebellion that proved devastating. She was away for several months, was gang-raped by two men, was introduced to hard drugs and began to self-medicate with those drugs to deal with the trauma of rape. Dan told me that he was angry at Shelley — angry that she had made terrible choices, angry that she had hurt their parents. But over time he also concluded that his own approach of prosecuting drug users accomplished little, except that it isolated them from the family and friends who offered the best support system to escape addiction. The report mentions a program called Law Enforcement Assisted Diversion (LEAD) that appears to be working. It was started in 2011 by Satterberg and others and has spread across the country, with 59 localities now offering LEAD initiatives or rolling them out. “The idea is that instead of simply arresting drug users for narcotics or prostitution, police officers watch for those who are nonviolent and want help, and divert them to social service programs and intensive case management,” writes Kristof.

One 2017 peer-reviewed study found that drug users assigned to the program “were 58 percent less likely to be rearrested, compared with a control group.” It also found that “participants were almost twice as likely to have housing as they had been before entering LEAD, and 46 percent more likely to be employed or getting job training.” And while it costs about $350 per month per participant to provide case managers, it is still cheaper than jail, courts and costs associated with homelessness.

Read more of this story at Slashdot.

Source: Slashdot – Seattle Has Figured Out How To End the War On Drugs

Ewan McGregor will play Obi-Wan Kenobi again in a new 'Star Wars' show

For Star Wars fans the Disney+ news revealed tonight included a peek at The Mandalorian, a release window for the next season of the Clone Wars, and the surprise return of a familiar face: Ewan McGregor. The actor will reprise his role of Obi-Wan Ken…

Source: Engadget – Ewan McGregor will play Obi-Wan Kenobi again in a new ‘Star Wars’ show

YouTube Says It Will Now Remove 'Violent' and 'Mature' Videos Pretending To Be Kid-Friendly

YouTube announced it is changing its policy in regard to how it treats videos targeted toward minors and young children. “The video platform says it will now remove all content that contains ‘violent’ or ‘mature’ themes if it is targeted toward kids, either through the title of the video, its description, or the accompanying tags,” reports The Verge. From the report: Going forward, YouTube says this type of content “will no longer be allowed on the platform.” Prior to this change, YouTube was age-restricting such videos, but now it’s going a step further to help clean up the platform and make it a safer place for children amid intense regulatory scrutiny and nonstop criticism of its executive leadership. The policy change was announced two days ago, but it was done so on a YouTube Help community forum and appears to have gone largely unnoticed, with the post amassing only 20 replies and little news coverage. YouTube says it will begin ramping up enforcement of this new policy over the next 30 days, to give creators a chance to become familiar with the new rules.

As part of that process, YouTube says it will remove videos that violate the policy, but it won’t be giving strikes to channels until the 30-day period is up. YouTube says it won’t be handing out strikes to videos uploaded prior to the policy change, but it still reserves the right to remove those videos. YouTube advises creators check the YouTube Kids guidelines if they want to specifically reach children with their videos, and it also advises creators to make sure their descriptions and tags are targeting the right audience to avoid getting caught up in the ban. YouTube also says it will be age-restricting more content that could be confusingly viewed as kid-friendly, like adult cartoons.

Read more of this story at Slashdot.

Source: Slashdot – YouTube Says It Will Now Remove ‘Violent’ and ‘Mature’ Videos Pretending To Be Kid-Friendly

The Clone Wars Returns February 2020, and All the Other Star Wars News Just Revealed at D23

As if they weren’t content with letting Marvel hog all the news drops, Kathleen Kennedy took to the stage at D23 in Anaheim, California tonight to lift the lid on Star Wars’ presence on the Disney streaming service, Disney+: with new stories on the way across three, newly renamed eras of the galaxy far, far away.

Read more…

Source: io9 – The Clone Wars Returns February 2020, and All the Other Star Wars News Just Revealed at D23

Google Agrees To Meet With YouTubers Union Right Before Deadline

Last month, FairTube — a collaboration between a group that calls itself the “YouTubers Union” and Europe’s largest trade union, IG Metall — sent Google a list of demands to achieve better working conditions. The letter gave YouTube with a deadline of August 23 to respond or else it would face “a shitstorm,” according to Jorg Sprave, the founder of the YouTubers Union. On the last day, hours before the deadline, Google Germany sent a formal letter back to FairTube that said it had “a strong interest in the success and satisfaction of Youtube Creators” and “for this reason, we appreciate the recently expressed interest of the trade unions in supporting YouTube Creators.” Motherboard reports: Sprave told Motherboard that Google wanted to “‘discuss some fundamental questions about the future of work and won’t negotiate our demands. Well, those demands will certainly play an important role anyway as they are designed to make sure that this ‘future of work’ will be transparent and fair for the workers.” Christiane Benner, IG Metall’s chairwoman, said in a statement “the pressure we have made together with the YouTubers Union on Google and YouTube, has paid off. We have succeeded to bring Google to the table.”

FairTube’s attempt to improve working conditions for YouTubers hinges on the GDPR, using the European Union regulation that ensures a person’s right to access their personal data. With the GDPR, FairTube hopes to shine a light on how YouTube chooses which videos to prioritize or demonetize, and change YouTube’s support system from an automated one to one staffed by humans. A Youtube spokesperson told Motherboard that “we explained to the union in great detail what YouTube is doing in terms of transparency and support for YouTubers. But we have also made clear that we are not going to negotiate their demands.”

Read more of this story at Slashdot.

Source: Slashdot – Google Agrees To Meet With YouTubers Union Right Before Deadline

Twitch Suspends Popular Leftist Streamer After Controversial 9/11 Comments

During a Twitch stream earlier this week, popular leftist streamer Hasan Piker made a statement that would, by pretty much any measure, be considered incendiary. “America deserved 9/11, dude,” he said. “Fuck it, I’m saying it.” Today, Twitch suspended Piker for one week.

Read more…

Source: Kotaku – Twitch Suspends Popular Leftist Streamer After Controversial 9/11 Comments