Threatpost reports:
On the heels of a ransomware attack against the Scottish Environmental Protection Agency (SEPA), attackers have now reportedly published more than 4,000 files stolen from the agency — including contracts and strategy documents.

After hitting SEPA on Christmas Eve with the attack, cybercriminals encrypted 1.2GB of information. The attack has affected SEPA’s email systems, which remain offline as of Thursday, according to the agency. However, SEPA, which is Scotland’s environmental regulator, stressed on Thursday that it will not “engage” with the cybercriminals. “We’ve been clear that we won’t use public finance to pay serious and organized criminals intent on disrupting public services and extorting public funds,” said SEPA chief executive Terry A’Hearn in a statement… SEPA’s email and other systems remain down, and “what is now clear is that with infected systems isolated, recovery may take a significant period,” according to the agency in its update. “A number of SEPA systems will remain badly affected for some time, with new systems required…”

The incident also points to ransomware actors evolving from previously destroying critical data or bringing companies’ services and operations to a standstill, to now threatening to disclose sensitive data publicly, Joseph Carson, chief security scientist and Advisory CISO at Thycotic told Threatpost.

Read more of this story at Slashdot.

Source: Slashdot – Ransomware Attackers Try Publishing 4,000 Scottish Government Agency Files

“Late last week, a website called Faces of the Riot appeared online, showing nothing but a vast grid of more than 6,000 images of faces, each one tagged only with a string of characters associated with the Parler video in which it appeared,” reports WIRED, saying the site raises clear privacy concerns:

The site’s creator tells WIRED that he used simple, open source machine-learning and facial recognition software to detect, extract, and deduplicate every face from the 827 videos that were posted to Parler from inside and outside the Capitol building on January 6, the day when radicalized Trump supporters stormed the building in a riot that resulted in five people’s deaths. The creator of Faces of the Riot says his goal is to allow anyone to easily sort through the faces pulled from those videos to identify someone they may know, or recognize who took part in the mob, or even to reference the collected faces against FBI wanted posters and send a tip to law enforcement if they spot someone… “It’s entirely possible that a lot of people who were on this website now will face real-life consequences for their actions….”

A recent upgrade to the site adds hyperlinks from faces to the video source, so that visitors can click on any face and see what the person was filmed doing on Parler. The Faces of the Riot creator, who says he’s a college student in the “greater DC area,” intends that added feature to help contextualize every face’s inclusion on the site and differentiate between bystanders, peaceful protesters, and violent insurrectionists. He concedes that he and a co-creator are still working to scrub “non-rioter” faces, including those of police and press who were present. A message at the top of the site also warns against vigilante investigations, instead suggesting users report those they recognize to the FBI, with a link to an FBI tip page….

McDonald has previously both criticized the power of facial recognition technology and himself implemented facial recognition projects like ICEspy, a tool he launched in 2018 for identifying agents of the Immigration and Customs Enforcement agency… He sees Faces of the Riot as “playing it really safe” compared even to his own facial recognition experiments, given that it doesn’t seek to link faces with named identities. “And I think it’s a good call because I don’t think that we need to legitimize this technology any more than it already is and has been falsely legitimized,” McDonald says.

But McDonald also points out that Faces of the Riot demonstrates just how accessible facial recognition technologies have become. “It shows how this tool that has been restricted only to people who have the most education, the most power, the most privilege is now in this more democratized state,” McDonald says.

Read more of this story at Slashdot.

Source: Slashdot – New Site Extracts and Posts Every Face from Parler’s Capitol Hill Insurrection Videos

Business Insider reports:

The bitcoin price was set for its biggest one-week fall since September on Saturday morning, having slipped around 10% since Monday…

Bitcoin came under selling pressure this week after Janet Yellen, Joe Biden’s pick for Treasury secretary, suggested the use of cryptocurrencies should be “curtailed” because they were used mainly for “illicit financing”.

Writing at Nasdaq.com on Thursday, CoinDesk shared a link to U.S. Treasury Secretary nominee Janet Yellen’s later written responses to the same questions, where Yellen states that bitcoin and other cryptocurrencies also offer potential benefits to the U.S. and its allies.
“At the same time, it also presents opportunities for states and non-state actors looking to circumvent the current financial system and undermine American interests. For example, the Central Bank of China just issued its first digital currency.”

I think it important we consider the benefits of cryptocurrencies and other digital assets, and the potential they have to improve the efficiency of the financial system. At the same time, we know they can be used to finance terrorism, facilitate money laundering, and support malign activities that threaten U.S. national security interests and the integrity of the U.S. and international financial systems.

I think we need to look closely at how to encourage their use for legitimate activities while curtailing their use for malign and illegal activities. If confirmed, I intend to work closely with the Federal Reserve Board and the other federal banking and securities regulators on how to implement an effective regulatory framework for these and other fintech innovations.

Read more of this story at Slashdot.

Source: Slashdot – US Treasury Nominee Yellen Wants to Encourage Cryptocurrencies — ‘For Legitimate Activities’

This week New York Magazine featured a new article by journalist David Wallace-Wells about the state of the fight against global warming.

He warns that “Already, the planet is warmer, at just 1.2 degrees, than it has ever been…” But there’s also some good news:
Just a half-decade ago, it was widely believed that a “business as usual” emissions path would bring the planet four or five degrees of warming — enough to make large parts of Earth effectively uninhabitable. Now, thanks to the rapid death of coal, the revolution in the price of renewable energy, and a global climate politics forged by a generational awakening, the expectation is for about three degrees. Recent pledges could bring us closer to two. All of these projections sketch a hazardous and unequal future, and all are clouded with uncertainties — about the climate system, about technology, about the dexterity and intensity of human response, about how inequitably the most punishing impacts will be distributed. Yet if each half-degree of warming marks an entirely different level of suffering, we appear to have shaved a few of them off our likeliest end stage in not much time at all.

The next half-degrees will be harder to shave off, and the most crucial increment — getting from two degrees to 1.5 — perhaps impossible, dashing the dream of avoiding what was long described as “catastrophic” change. But for a climate alarmist like me, seeing clearly the state of the planet’s future now requires a conspicuous kind of double vision, in which a guarded optimism seems perhaps as reasonable as panic. Given how long we’ve waited to move, what counts now as a best-case outcome remains grim. It also appears, miraculously, within reach….

The price of solar energy has fallen ninefold over the past decade, as has the price of lithium batteries, critical to the growth of electric cars. The costs of utility-scale batteries, which could solve the “intermittency” (i.e., cloudy day) problem of renewables and help power whole cities in relatively short order, have fallen 70 percent since just 2015. Wind power is 40 percent cheaper than it was a decade ago, with offshore wind experiencing an even steeper decline. Overall, renewable energy is less expensive than dirty energy almost everywhere on the planet, and in many places it is simply cheaper to build new renewable capacity than to continue running the old fossil-fuel infrastructure. Oil demand and carbon emissions may both have peaked this year. Eighty percent of coal plants planned in Asia’s developing countries have been shelved… [I]n the fall, the U.K. pledged to ban nonelectrics by 2030 — a once-unthinkable law coming both too slow and much more quickly than seemed possible not very long ago. Similar plans are now in place in 16 other countries, plus Massachusetts and California. Canada recently raised its tax on carbon sixfold. Italy cut its power-sector emissions 65 percent between 2012 and 2019, and Denmark is now aiming to reduce its overall emissions 70 percent by 2030…

[F]or all their momentum, renewables still only make up 10 percent of global electricity production. But alarmists have to take the good news where they find it….

The author also spoke to Pulitzer Prize-winner environmentalist author Elizabeth Kolbert about her new book Under a White Sky:

In her book, Kolbert sketches a spectrum of interventions, from electrifying rivers to using CRISPR to save endangered species to solar geoengineering, often called “solar-radiation management,” by which aerosol particles are suspended in the stratosphere to deflect some sunlight back into outer space and artificially cool the planet. “There is a slippery slope here, you know?” she says. “And where does that end?

“But there are not a lot of great choices. We’re not returning to a preindustrial climate — not in my lifetime, not in your lifetime.”

Read more of this story at Slashdot.

Source: Slashdot – Are We Slowing Global Warming?

Inside.com’s developer newsletter spotted this code repository story:
GitHub posted a DMCA notice it received from the Motion Picture Association (MPA) last week asking the platform to take down a repository associated with NYAA.si, a popular torrent site specializing in anime content. The DMCA captured attention as the code doesn’t belong to the MPA. Rather, the MPA argues the code is used for the development of the site, which allows for copyright infringement, while the repo also makes it possible to create NYAA clones.

The news comes a few months after GitHub restored the youtube-dl repository and created a $1m legal defense fund to help open source developers fight unwarranted DMCA Section 1201 takedown claims. At the same time, the platform also announced it will be improving its Section 1201 claim review process to make it harder to take down repos.

But the next day, the newsletter reported GitHub had reversed the takedown:
The company explains the notice didn’t meet its DMCA Takedown Policy requirements as it failed to “establish that the code is preconfigured to infringe.” GitHub adds that it also restored any content that was disabled because of the notice.

Some context from TorrentFreak:
This isn’t the first time the MPA has gone after the anime torrent site. Last November we reported that the anti-piracy group sent cease and desist letters to several people who are allegedly connected to the site, describing it as an “Anime Cartel”.

TorrentFreak’s latest update:
A few weeks ago, the Motion Picture Association tried to shut the project down by going after several people who are allegedly linked to the site. Framing NYAA as an “Anime Cartel”, the movie group demanded a total shutdown and tens of thousands of dollars in settlements…

This takedown request initially succeeded as GitHub disabled the repository earlier this week. Before doing so, the platform reached out to the developers and gave them the option to respond or make changes, but that request went unanswered. Without a response from the developers, this is usually where things end. In this case, however, GitHub decided to carry out another review after the project was taken down, perhaps in part motivated by the news coverage. “While we didn’t hear back from the maintainers, we chose to do another review ourselves to proactively see how we could resolve the issue,” a GitHub spokesperson informs TorrentFreak…

[A]t the time of writing the NYAA repository is up and running again. The MPA still has the option to provide additional information about the allegedly-infringing nature of the code, which would then trigger another review.

GitHub stresses that it’s their purpose to make sure that developers can host code within the boundaries of the law. Unless the entire repository is infringing, it’s standard policy to allow developers to respond to DMCA claims before any content is removed.

Read more of this story at Slashdot.

Source: Slashdot – GitHub Reverses Takedown of Code for Anime Torrent Site Despite Film Group’s DMCA

Steven J. Vaughan-Nichols writes at ZDNet:

When Elastic, makers of the open-source search and analytic engine Elasticsearch, went after Amazon Web Services (AWS) by changing its license from the open-source Apache 2.0-license ALv2) to the non-open-source friendly Server Side Public License, I predicted “we’d soon see AWS-sponsored Elasticsearch and Kibana forks.” The next day, AWS tweeted it “will launch new forks of both Elasticsearch and Kibana based on the latest Apache 2.0 licensed codebases.” Well, that didn’t take long!

In a blog post, AWS explained that since Elastic is no longer making its search and analytic engine Elasticsearch and its companion data visualization dashboard Kibana available as open source, AWS is taking action. “In order to ensure open source versions of both packages remain available and well supported, including in our own offerings, we are announcing today that AWS will step up to create and maintain an ALv2-licensed fork of open-source Elasticsearch and Kibana…. AWS brings years of experience working with these codebases, as well as making upstream code contributions to both Elasticsearch and Apache Lucene, the core search library that Elasticsearch is built on — with more than 230 Lucene contributions in 2020 alone… We’re in this for the long haul, and will work in a way that fosters healthy and sustainable open source practices — including implementing shared project governance with a community of contributors…”

Yet another company, Logz.io, a cloud-monitoring company, and some partners have announced that it will launch a “true” open source distribution for Elasticsearch and Kibana.

Read more of this story at Slashdot.

Source: Slashdot – Why AWS Is Forking Elasticsearch and Kibana

Ars Technica reported Saturday that “The Falcon 9 rocket was ready. Its payload of 143 satellites were ready. But Mother Nature was not ready.”

Although SpaceX pressed ahead with fueling of the Falcon 9 booster on Saturday morning, the company scrubbed the launch attempt of the Transporter-1 mission a few minutes before the window opened due to weather. Conditions at Cape Canaveral violated the electrical field rule for a safe launch. The company now plans to try to launch again on Sunday morning, with the launch window opening at 10am ET (15:00 UTC).

Slashdot noted earlier that SpaceX plans to launch the most satellites ever deployed in a single mission, 143, from Florida for more than a dozen customers. UPI reports: A 2017 mission by the India Space Research Organization launched 104 spacecraft, which would be the previous record if the SpaceX launch is a success… The Transporter-1 mission is the first in a series of regularly scheduled SpaceX rideshare projects for multiple customers. SpaceX also plans to carry 10 of its Starlink communications satellites on this mission.

“The Starlink satellites aboard this mission will be the first in the constellation to deploy to a polar orbit,” according to the SpaceX mission description. Polar orbits circle the globe by passing over the North Pole and South Pole, while many satellites circle above equatorial regions. Houston-based space firm Nanoracks is acting as a broker to arrange some customers for the launch, said Tristan Prejean, a mission manager at Nanoracks. Nanoracks’ two customers for Transporter-1 are two satellite companies, California-based Spire Global and Montreal-based GHGSat. Spire launches fleets of small satellites that monitor weather and patterns for shipping for aviation interests. GHGSat monitors industrial emissions of gasses from space — especially greenhouse gases that contribute to climate change.

Read more of this story at Slashdot.

Source: Slashdot – SpaceX Re-Schedules Record-Breaking Launch With 143 Satellites to Sunday