Monthly Archives: January 2022

New MoonBounce UEFI Bootkit Can't Be Removed by Replacing the Hard Drive

Posted on by

Security researchers from Kaspersky said they have discovered a novel bootkit that can infect a computer’s UEFI firmware. From a report: What makes MoonBounce — the name they gave the bootkit — special is the fact that the malware doesn’t burrow and hide inside a section of the hard drive named ESP (EFI System Partition), where some UEFI code typically resides, but instead it infects the SPI flaws memory that is found on the motherboard. This means that, unlike similar bootkits, defenders can’t reinstall the operating system and replace the hard drive, as the bootkit will continue to remain on the infected device until the SPI memory is re-flashed (a very complex process) or the motherboard is replaced. According to Kaspersky, MoonBounce marks the third UEFI bootkit they have seen so far that can infect and live inside the SPI memory, following previous cases such as LoJax and MosaicRegressor. Furthermore, MoonBounce’s discovery also comes after researchers have also found additional UEFI bootkits in recent months, such as ESPectre, FinSpy’s UEFI bootkit, and others, which has led the Kaspersky team to conclude that what was once considered unachievable following the rollout of the UEFI standard has gradually become the norm.

Read more of this story at Slashdot.



Source: Slashdot – New MoonBounce UEFI Bootkit Can’t Be Removed by Replacing the Hard Drive

Looking Back at the Star Wars Special Editions In the Era of Disney

Posted on by

Twenty-five years ago this week, Star Wars was officially changed forever. On January 31, 1997, 20th Century Fox released the Special Edition of Star Wars: A New Hope, with several additions that would become as controversial as anything in modern pop culture. And while it’s easy to remember the releases for the…

Read more…



Source: Gizmodo – Looking Back at the Star Wars Special Editions In the Era of Disney

25 of the Most Rewatchable Movies Ever Made

Posted on by

Without question, we live in an era of media over-saturation. Even post-COVID (lol), the industry is still pumping out new movies and new streaming services to host them on at an alarming rate—and those same services mean we also have easy access to thousands of films from the last century. I never need to rewatch a…

Read more…



Source: LifeHacker – 25 of the Most Rewatchable Movies Ever Made

FCC chair plans to block exclusive deals that limit ISP choice in apartments

Posted on by
FCC member Jessica Rosenworcel sitting at a table and speaking during a Senate committee hearing.

Enlarge / FCC member Jessica Rosenworcel speaks during a Senate Commerce Committee oversight hearing on June 24, 2020, in Washington, DC. (credit: Getty Images | Jonathan Newton)

The Federal Communications Commission is on course to block some types of exclusive deals that ISPs and landlords use to prevent broadband competition in apartment buildings and other multiple-tenant environments.

A plan announced Friday by FCC Chairwoman Jessica Rosenworcel would “prohibit providers from entering into graduated revenue sharing agreements or exclusive revenue sharing agreements with a building owner; require providers to disclose to tenants in plain language the existence of exclusive marketing arrangements that they have with building owners; [and] end a practice that circumvents the FCC’s cable inside wiring rules by clarifying that existing Commission rules prohibit sale-and-leaseback arrangements that effectively block access to alternative providers,” the FCC said.

Rosenworcel circulated the proposal to other commissioners, meaning they can vote on it at any time. The updated rules would apply to residential buildings that contain apartments or condo units and to office buildings.

Read 8 remaining paragraphs | Comments



Source: Ars Technica – FCC chair plans to block exclusive deals that limit ISP choice in apartments

“Death Star” response from US would lock Russia out of 5G, advanced chips

Posted on by

Read 11 remaining paragraphs | Comments



Source: Ars Technica – “Death Star” response from US would lock Russia out of 5G, advanced chips

A Troll Bot Is Ruining Wordle By Forcing Innocent Players To See The Next Day's Answer

Posted on by

Clearly someone hasn’t learned about the Curse Of Wordle. A grade-A prick has created a Twitter bot that looks for those tweeting their score for that day’s word puzzle, and replies with a spoiler for the following day’s word. The bot’s goal, apparently, is “to terminate Wordle bragging.”

Read more…



Source: Kotaku – A Troll Bot Is Ruining Wordle By Forcing Innocent Players To See The Next Day’s Answer

An OpenSea Bug Let Attackers Snatch NFTs from Owners at Six-figure Discounts

Posted on by

A bug in OpenSea, the popular NFT marketplace, has let hackers buy rare NFTs for well below market value, in some cases leading to hundreds of thousands of dollars in losses for the original owners — and hundreds of thousands of dollars in profits for the apparent thieves. From a report: The bug appears to have been present for weeks and seems to be referenced in at least one tweet from January 1st, 2022. But exploitation of the bug has picked up significantly in the past day: blockchain analytics company Elliptic reported that in a 12-hour stretch before the morning of January 24th, it was exploited at least eight times to “steal” NFTs with a market value of over $1 million. One of the NFTs, Bored Ape Yacht Club #9991, was purchased using the exploit technique for 0.77 ETH ($1,760) and quickly resold for 84.2 ETH ($192,400), netting the attacker a profit of more than $190,000. An Ethereum address linked to the reseller had received more than 400 ETH ($904,000) in payouts from OpenSea in the same 12-hour period.

“It’s a subjective thing whether you consider this to be a loophole or a bug, but the fact is that people are being forced into sales at a price they wouldn’t otherwise have accepted right now,” said Tom Robinson, chief scientist and co-founder of Elliptic. According to a Twitter thread by software developer Rotem Yakir, the bug is caused by a mismatch between the information available in NFT smart contracts and the information presented by OpenSea’s user interface. Essentially, the attackers are taking advantage of old contracts that persist on the blockchain but are no longer present in the view provided by the OpenSea application.

Read more of this story at Slashdot.



Source: Slashdot – An OpenSea Bug Let Attackers Snatch NFTs from Owners at Six-figure Discounts

Apple Might Be Supercharging Its iMac Pro With A Beastly New 12-Core M1 Processor

Posted on by

Apple Might Be Supercharging Its iMac Pro With A Beastly New 12-Core M1 Processor
Apple’s iMac Pro all-in-one desktop is long overdue for a refresh (or a comeback, if you prefer), and assuming one does come along, the expectation up to this point was that it would feature an existing M1 Pro or M1 Max processor. Perhaps not. A leaker with a decent track record tipping Apple products claims the iMac Pro is indeed coming and

Source: Hot Hardware – Apple Might Be Supercharging Its iMac Pro With A Beastly New 12-Core M1 Processor

GOG's New Year Sale includes deals on 'Cyberpunk 2077' and 'The Witcher 3'

Posted on by

PC gamers who are looking for a bargain (or a game or two to keep them going until Elden Ring arrives next month) might wish to take a gander at GOG’s New Year Sale. There are many repeat deals from the Winter Sale, but it’s still worth checking out the discounts, as you can save up to 90 percent on more than 2,500 games. Among them is Cyberpunk 2077, which is 50 percent off at $30.

Buy Cyberpunk 2077 at GOG – $30

While the first-person RPG had a notoriously rocky debut, CD Projekt Red has fixed some of the game’s many bugs over the last 13 months. The studio plans to roll out the next major update for all platforms by the end of March.

The Witcher 3: Wild Hunt is 80 percent off during the sale. You can pick up one of the most highly regarded RPGs of the last decade for $8. Control Ultimate Edition is down 70 percent to $12 as well. The bundle includes the excellent base game as well as both expansions.

Elsewhere, you can scoop up Metro Exodus: Gold Edition for $14.80 (63 percent off) and Kingdom Come: Deliverance Royal Edition for $12 (70 percent off). These barely scratch the surface of the deals, which include a ton of indie games and franchises like Batman Arkham and Bioshock. You can check out the entire New Year Sale at GOG.

Follow @EngadgetDeals on Twitter for the latest tech deals and buying advice.



Source: Engadget – GOG’s New Year Sale includes deals on ‘Cyberpunk 2077’ and ‘The Witcher 3’

Google is reportedly planning a next-gen Chromecast with Google TV

Posted on by
Pictures of the new Chromecast.

Enlarge / The Chromecast with Google TV. It comes in colors. (credit: Google)

9to5Google reports that Google is prepping a sequel to the Google Chromecast with Google TV. Last year, Google changed the high end of the Chromecast line from a dead-simple, streaming-only video device to a full-blown Android streamer with installable apps, a navigable UI, and a physical remote. The move was effectively a merger of Google’s two TV products, the Chromecast and Android TV, with the revamped, Android TV-based software being rebranded “Google TV.”

9to5Google says the next-generation version of the device is codenamed “Boreal” and was spotted in some documentation next to “Sabrina,” the code name for the current Chromecast with Google TV (which 9to5Google was also the first to discover). The report doesn’t have any details about what we can expect from the new Chromecast, but the current device has some glaring shortcomings that will hopefully be fixed.

The biggest problem with the current Chromecast? You really have to wonder if it was actually designed from the ground up to run Android. The device has a measly 8GB of storage for the entire OS and all your apps and updates. Even $100 Android phones have 64GB of storage now, and 8GB isn’t enough for even light app usage. Some Android games are exceeding 10GB these days, so you can’t install them on the new Chromecast, even before half the storage is reserved for the base OS.

Read 2 remaining paragraphs | Comments



Source: Ars Technica – Google is reportedly planning a next-gen Chromecast with Google TV

We're Not In the Pandemic 'Endgame' Yet, WHO Chief Warns

Posted on by

The head of the World Health Organization is warning against pandemic hubris. On Monday, WHO director-general Tedros Adhanom Ghebreyesus cautioned that Omicron may not be the last important variant of the pandemic to appear and that talk of a pandemic “endgame” is still premature. At the same time, he was optimistic…

Read more…



Source: Gizmodo – We’re Not In the Pandemic ‘Endgame’ Yet, WHO Chief Warns

AT&T is rolling out multi-gig fiber internet to more than 70 cities

Posted on by

Following the activation of its C-band 5G network last week, AT&T is now upgrading its fiber-based broadband service with two new plans that top out at 2Gbps and 5Gbps, respectively. The company says its new multi-gig fiber broadband will be available in more than 70 metro areas including Dallas, LA and Atlanta. Currently, AT&T’s fiber broadband covers around 15 million customers across 90 markets, with the company looking to expand its network to reach more than 30 million customers by 2025.

While AT&T’s new 5 GIG plan is almost certainly overkill for a typical household (even with a bunch of people making Zoom calls at the same time), the ongoing pandemic and shift towards working and schooling from home continues to put a strain on families with more limited internet.

The new 2 GIG plan is set to start at $110 per month plus tax (or $225 a month for a business fiber), while the faster 5 GIG plan will cost $180 per month (or $395 a month for businesses). Notably, AT&T describes both plans as offering “symmetrical” speeds, which means customers should see equally fast download and upload speeds. That last part is important for anyone who has to move large files around, especially when a lot of older internet plans often featuring upload speeds that are significantly lower than download speeds.

In addition to its new multi-gig fiber plans, AT&T is updating its fiber internet plans with more straightforward pricing. AT&T says this means new customers won’t get hit with any equipment fees, data caps or annual contracts, with initial pricing locked in for at least 12 months. So your bill should just be the price of the service plus tax, with AT&T throwing in perks such as its ActiveArmor internet security, speedy Wi-Fi 6 routers, and a free HBO Max subscription for customers with top-tier plans (either the gigabit, 2 GIG or 5 GIG plans).

So, while AT&T’s new fiber plans aren’t cheap, they should supply ample bandwidth for data-hungry people like content creators and stream video enthusiasts. To find out if you live in an area covered by AT&T’s new multi-gig plans, you can check availability on AT&T’s fiber landing page here.



Source: Engadget – AT&T is rolling out multi-gig fiber internet to more than 70 cities

How to Handle a Clingy Child

Posted on by

The “clingy phase” is a common one among little kids. They may feel the separation anxiety hit when it’s time to go to daycare or school—or they may not want to let you out of their sight even in your own home. It can be a frustrating time for parent and child alike—but it’s also a normal part of child development.

Read more…



Source: LifeHacker – How to Handle a Clingy Child

Mexican Drug Cartels Apparently Think Skilled GTA Online Players Make Great Meth Mules

Posted on by

Mexican Drug Cartels Apparently Think Skilled GTA Online Players Make Great Meth Mules
I have no personal frame of reference for this opinion, but I imagine being a drug runner for the Mexican cartel (or any cartel) is loads more fun in a video game setting than in real life. The latter pays more I’m sure, but the stress, risk to life and limb, and persistent threat of jail time have me convinced to stick with legal employment.

Source: Hot Hardware – Mexican Drug Cartels Apparently Think Skilled GTA Online Players Make Great Meth Mules

[$] The rest of the 5.17 merge window

Posted on by

Linus Torvalds released
5.17-rc1 and closed the 5.17 merge window on January 23 after
having pulled just over 11,000 non-merge changesets into the mainline
repository. A little over 4,000 of those changesets arrived after our first-half merge-window summary was
written. Activity thus slowed down, as expected, in the second half of the
merge window, but there still a number of significant changes that made it
in for the next kernel release.

Source: LWN.net – [$] The rest of the 5.17 merge window

Apple Fined $5.6M After Dutch Dating App Antitrust Order

Posted on by

The Netherlands’ competition authority has fined Apple $5.6 million for failing to comply with conditions in an order requiring it to allow local dating apps to make user of third party payment technology in their apps. From a report: The tech giant could be on the hook for another $5.6 million fine next week if it doesn’t meet the regulatory requirement by then, and each week thereafter for a couple more months — up to a maximum of $56 million in relation to this particular order. The fine relates to an order made by Dutch watchdog, the Authority for Consumers and Markets (ACM), last year — which found Apple in breach of antitrust rules and ordered it to adjust the conditions it imposes on dating app providers. At specific antitrust issue are App Store terms mandating the use of Apple’s own in-app payment infrastructure (aka the IAP API) for any sales of digital content, via which the tech giant extracts a commission. Apple’s terms also ban the use of alternative payment systems by dating apps. The regulator also took issue with Apple banning dating apps from referring to other payment methods in their apps. The ACM said today that Apple has failed to satisfy its conditions and must make amendments to bring the rules for dating apps in line with its order.

Read more of this story at Slashdot.



Source: Slashdot – Apple Fined .6M After Dutch Dating App Antitrust Order

All the Ways You Should Be Using a Raw Potato for Common Household Tasks

Posted on by

Ever since it was first domesticated in the South American Andes roughly 8,000 years ago, the modern potato has changed the world. And while there’s plenty to say about the potato as a food that has made its way into cuisines across the globe, the tasty tuber can also perform a number of functions outside the kitchen.…

Read more…



Source: LifeHacker – All the Ways You Should Be Using a Raw Potato for Common Household Tasks

Google's long-rumored smartwatch could arrive on May 26th

Posted on by

There have been rumblings for quite some time that Google has been beavering away on its own smartwatch. Rumors last month suggested a Google-branded watch could arrive sometime in 2022, and now we have a slightly clearer idea of when it might debut.

Leaker Jon Prosser said the watch is currently slated to arrive on May 26th, noting that this is “the first we’ve seen a set date on the device behind the scenes.” While that seems on the surface like an oddly specific date for something so far away, the timing lines up with the Google I/O developer conference, which usually takes place in May.

As with most smartwatches in the Android ecosystem, the smartwatch is expected to have a circular face, albeit with no physical bezel. It will likely have a heart rate sensor and other features adopted from Fitbit, which Google bought last year. The device could show off the extent of what Wear OS can do and be positioned as an Apple Watch competitor.

The release date isn’t set in stone, of course. Nor is the name of the device, despite suggestions that it’ll be called Pixel Watch. Still, it’s something for Android and Pixel enthusiasts to keep an eye on.

Other rumors suggest a Pixel 6a smartphone is coming in May as well. It’s expected to use the same Tensor chipset as the Pixel 6, though Google could ditch the headphone jack in the budget model.



Source: Engadget – Google’s long-rumored smartwatch could arrive on May 26th