MasterCard Has Finally Realized That Signatures Are Obsolete and Stupid
it - Posted On:2017-10-20 12:45:00 Source: slashdot
An anonymous reader shares a report: For years, credit card companies have relied on an illegible squiggly line as the frontline of defense against credit card fraud. Customers are forced to use a pen (how retro!) to scrawl their signature on bills at restaurants and sign digitally at cash registers -- as if somehow in the age of chips, PINs, biometrics, and online fraud alerts, a line on a page is still a great tool against fraud prevention. Personally, I have been known to sign on the dotted line with a doodle of a piece of tofu and no one has ever stopped me, because signatures mean very little in this digital age. Companies are finally seeing the light. Starting in April 2018, MasterCard cardholders will no longer be required to sign their name when they purchase something using their debit or credit cards. The company has been moving away from requiring signatures for a few years now, with only about 80% of purchases (typically over a certain dollar amount) requiring a signature these days. MasterCard did some digging, though, and per its press release, realized that most of their customers "believe it would be easier to pay and that checkout lines would move faster if they didn't need to sign when making a purchase." Read more of this story at Slashdot.
On the Google Book Scanning Project and the Library We Will Never See
technology - Posted On:2017-10-20 10:14:56 Source: slashdot
For a decade, Google's enormous project to create a massive digital library of books was embroiled in litigation with a group of writers who say it was costing them a lot of money in lost revenue. Even as Google notched a victory when a federal appeals court ruled that the company's project was fair use, the company quietly shut down the project. From a report: Despite eventually winning Authors Guild v. Google, and having the courts declare that displaying snippets of copyrighted books was fair use, the company all but shut down its scanning operation. It was strange to me, the idea that somewhere at Google there is a database containing 25-million books and nobody is allowed to read them. It's like that scene at the end of the first Indiana Jones movie where they put the Ark of the Covenant back on a shelf somewhere, lost in the chaos of a vast warehouse. It's there. The books are there. People have been trying to build a library like this for ages -- to do so, they've said, would be to erect one of the great humanitarian artifacts of all time -- and here we've done the work to make it real and we were about to give it to the world and now, instead, it's 50 or 60 petabytes on disk, and the only people who can see it are half a dozen engineers on the project who happen to have access because they're the ones responsible for locking it up. Read more of this story at Slashdot.
Facebook Security Chief Says Its Corporate Network Is Run 'Like a College Campus'
technology - Posted On:2017-10-20 04:44:57 Source: slashdot
An anonymous reader quotes a report from ZDNet: Facebook's security chief has told employees that the social media giant needs to improve its internal security practices to be more akin to a defense contractor, according to a leaked recording obtained by ZDNet. Alex Stamos made the comments to employees at a late-July internal meeting where he argued that the company had not done enough to respond to the growing threats that the company faces, citing both technical challenges and cultural issues at the company. "The threats that we are facing have increased significantly and the quality of the adversaries that we are facing," he said. "Both technically and from a cultural perspective I don't feel like we have caught up with our responsibility. The way that I explain to [management] is that we have the threat profile of a Northrop Grumman or a Raytheon or another defense contractor, but we run our corporate network, for example, like a college campus, almost," he said. Read more of this story at Slashdot.
Verizon Loses 18,000 Pay TV Subscribers, Signals Delay For Live TV Streaming Service
technology - Posted On:2017-10-19 21:44:59 Source: slashdot
Verizon announced on Thursday that its FiOS video service lost 18,000 net pay TV subscribers in the third quarter, compared with the addition of 36,000 subscribers in the year-ago period and 15,000 subscriber drop in the second quarter. Hollywood Reporter reports: The company said the drop in the latest quarter was "reflecting the ongoing shift from traditional linear video to over-the-top offerings." Verizon, led by chairman and CEO Lowell McAdam, ended the third quarter with a total of 4.6 million subscribers to its FiOS video service, which competes with cable and satellite TV companies. Asked about a planned over-the-top (OTT) TV service from Verizon, Ellis said that the company continues to feel that "there's an opportunity for us to play," but signaling a delay, he emphasized that the company "doesn't want to launch a me-too product." He didn't provide any guidance on when the OTT service would launch, saying that was still "TBD" (to be determined), or what content it could offer beyond saying it was likely to be built "around live programming." Verizon also reported Thursday that it added 66,000 net new FiOS broadband connections in the third quarter to end it with 5.8 million. Read more of this story at Slashdot.
How Google's Pixel 2 'Now Playing' Song Identification Works
technology - Posted On:2017-10-19 21:14:59 Source: slashdot
An anonymous reader shares a report from VentureBeat, written by Emil Protalinski: The most interesting Google Pixel 2 and Pixel 2 XL feature, to me, is Now Playing. If you've ever used Shazam or SoundHound, you probably understand the basics: The app uses your device's microphone to capture an audio sample and creates an acoustic fingerprint to compare against a central song database. If a match is found, information such as the song title and artist are sent back to the user. Now Playing achieves this with two important differentiators. First, Now Playing detects songs automatically without you explicitly asking -- the feature works when your phone is locked and the information is displayed on the Pixel 2's lock screen (you'll eventually be able to ask Google Assistant what's currently playing, but not yet). Secondly, it's an on-device and local feature: Now Playing functions completely offline (we tested this, and indeed it works with mobile data and Wi-Fi turned off). No audio is ever sent to Google. Read more of this story at Slashdot.
Almost Half of Tech Workers Worry About Losing Their Jobs Because of Ageism, Says Survey
technology - Posted On:2017-10-19 19:14:59 Source: slashdot
An anonymous reader quotes a report from SiliconBeat: More than 40 percent of tech workers worry about losing their jobs because of age, a new survey shows. Jobs site Indeed also found that 18 percent of those who work in the tech industry worry "all the time" about losing their jobs because of ageism. The release of the survey Thursday comes amid other news about diversity -- or lack thereof -- in tech workplaces. Often when we report about diversity issues, readers wonder about older workers. The Indeed survey offers insight into the age of the tech workforce: It's young. Indeed concluded from surveying more than 1,000 respondents in September that the tech workforce is composed of about 46 percent millennials, with 36 percent of respondents saying the average employee age at their company is 31 to 35, and 17 percent saying that the average worker age at their company is 20 to 30. What about Generation X and baby boomers? Twenty-seven percent of respondents said the average age of employees at their company is 36 to 40, while 26 percent of respondents said the workers at their companies are 40 and older. Read more of this story at Slashdot.
Consumer Reports Expects Tesla's Model 3 To Have 'Average Reliability'
technology - Posted On:2017-10-19 18:29:59 Source: slashdot
There may be only a few hundred Tesla Model 3s on the street, but Consumer Reports already has an opinion on the new car's dependability. From a report: "We are predicting that the Model 3 should have about average reliability," said Jake Fisher, director of auto testing for Consumer Reports. Average may irritate Tesla fans and the nearly 500,000 people who have reserved a Model 3, but Fisher believes people should understand what Consumer Reports expects from the new car. "We don't go around recommending that people buy cars that are below average, so if it is average or better, that is not a bad thing at all," said Fisher. "But let's be very clear, we are not giving it super high marks. We are saying it is basically par for the course." Consumer Reports has yet to buy a Model 3 and put it through a battery of tests, as the magazine does for dozens of vehicles. In addition, so few Model 3 cars have been delivered that Fisher and his team have yet to get a sense of how owners feel about their new Tesla. Read more of this story at Slashdot.
Japanese Metal Manufacturer Faked Specifications To Hundreds of Companies
technology - Posted On:2017-10-19 14:29:59 Source: slashdot
schwit1 writes: Kobe Steel, a major Japanese supplier of steel and other metals worldwide, has admitted that it faked the specifications to metals shipped to hundreds of companies over the past decade.Last week, Kobe Steel admitted that staff fudged reports on the strength and durability of products requested by its clients -- including those from the airline industry, cars, space rockets, and Japan's bullet trains. The company estimated that four percent of aluminum and copper products shipped from September 2016 to August 2017 were falsely labelled, Automotive News reported. But on Friday, the company's CEO, Hiroya Kawasaki, revealed the scandal has impacted about 500 companies -- doubling the initial count -- and now includes steel products, too. The practice of falsely labeling data to meet customer's specifications could date back more than 10 years, according to the Financial Times.For rockets the concern is less serious as they generally are not built for a long lifespan, but for airplanes and cars this news could be devastating, requiring major rebuilds on many operating vehicles. Read more of this story at Slashdot.
Google Engineers Explore Ways To Stop In-Browser Cryptocurrency Miners in Chrome
technology - Posted On:2017-10-19 12:30:00 Source: slashdot
An anonymous reader writes: Google Chrome engineers are considering adding a special browser permission that will thwart the rising trend of in-browser cryptocurrency miners. Discussions on the topic of in-browser miners have been going on the Chromium project's bug tracker since mid-September when Coinhive, the first such service, launched. "Here's my current thinking," Ojan Vafai, a Chrome engineering working on the Chromium project, wrote in one of the recent bug reports. "If a site is using more than XX% CPU for more than YY seconds, then we put the page into 'battery saver mode' where we aggressively throttle tasks and show a toast [notification popup] allowing the user to opt-out of battery saver mode. When a battery saver mode tab is backgrounded, we stop running tasks entirely. I think we'll want measurement to figure out what values to use for XX and YY, but we can start with really egregious things like 100% and 60 seconds. I'm effectively suggesting we add a permission here, but it would have unusual triggering conditions [...]. It only triggers when the page is doing a likely bad thing." An earlier suggestion had Google create a blacklist and block the mining code at the browser level. That suggestion was shut down as being too impractical and something better left to extensions. Read more of this story at Slashdot.
Mozilla To Document Cross-Browser Web Dev Standards with Google, Microsoft, Samsung, and W3C
technology - Posted On:2017-10-18 14:45:00 Source: slashdot
The Internet Is Ripe With In-Browser Miners and It's Getting Worse Each Day
technology - Posted On:2017-10-18 12:30:00 Source: slashdot
Catalin Cimpanu, reporting for BleepingComputer: Ever since mid-September, when Coinhive launched and the whole cryptojacking frenzy started, the Internet has gone crazy with in-browser cryptocurrency miners, and new sites that offer similar services are popping up on a weekly basis. While one might argue that mining Monero in a site's background is an acceptable alternative to viewing intrusive ads, almost none of these services that have recently appeared provide a way to let users know what's happening, let alone a way to stop mining behavior. In other words, most are behaving like malware, intruding on users' computers and using resources without permission. [...] Bleeping Computer spotted two new services named MineMyTraffic and JSEcoin, while security researcher Troy Mursch also spotted Coin Have and PPoi, a Coinhive clone for Chinese users. On top of this, just last night, Microsoft spotted two new services called CoinBlind and CoinNebula, both offering similar in-browser mining services, with CoinNebula configured in such a way that users couldn't report abuse. Furthermore, none of these two services even have a homepage, revealing their true intentions to be deployed in questionable scenarios. Read more of this story at Slashdot.
Amazon's Next Big Bet is Letting You Communicate Without a Smartphone, Says Alexa's Chief Scientist
technology - Posted On:2017-10-18 10:59:56 Source: slashdot
An anonymous reader shares a report: The next big function to take off on Amazon's Echo devices will be voice or video calling -- which is a way Alexa can reduce the need to have your smartphone on your at all times, said Rohit Prasad, VP and Head Scientist at Alexa Machine Learning. "If you have not played with calling and the video calls on Echo Show, you should try it because that is revolutionizing how you can communicate," Prasad said in an exclusive interview with CNBC at an Alexa Accelerator event in Seattle Tuesday night. (The event is dedicating to developing new voice-powered technologies.) "When you can drop in on people who have given you access -- so I can drop in and call my mom in her kitchen without her picking any device -- it's just awesome." (Amazon added the ability to call mobile numbers and landlines for free onto Echo devices a few weeks ago.) Amazon doesn't have a smartphone that lets customers bring a digital assistant everywhere -- like Apple's Siri and Google's Assistant -- and communicating through Alexa devices is one way of reducing the need for a personal handset, Prasad said "I can easily drop in and talk to my kids," Prasad says. "They don't have a smartphone so that's my easiest way to talk to them. It's yet another area where Alexa is taking the friction away." Read more of this story at Slashdot.
Chrome 62 Released With OpenType Variable Fonts, HTTP Warnings In Incognito Mode
technology - Posted On:2017-10-18 10:14:57 Source: slashdot
An anonymous reader writes: Earlier today, Google released version 62 of its Chrome browser that comes with quite a few new features but also fixes for 35 security issues. The most interesting new features are support for OpenType variable fonts, the Network Quality Estimator API, the ability to capture and stream DOM elements, and HTTP warnings for the browser's Normal and Incognito mode. The most interesting of the new features is variable fonts. Until now, web developers had to load multiple font families whenever they wanted variations on a font family. For example, if a developer was using the Open Sans font family on a site, if he wanted a font variation such as Regular, Bold, Black, Normal, Condensed, Expanded, Highlight, Slab, Heavy, Dashed, or another, he'd have to load a different font file for each. OpenType variable fonts allow font makers to merge all these font family variations in one file that developers can use on their site and control via CSS. This results in fewer files loaded on a website, saving bandwidth and improving page load times. Two other features that will interest mostly developers are the Network Quality Estimator and the Media Capture from DOM Elements APIs. As the name hints, the first grants developers access to network speed and performance metrics, information that some websites may use to adapt video streams, audio quality, or deliver low-fi versions of their sites. Developers can use the second API -- the Media Capture from DOM Elements -- to record videos of how page sections behave during interaction and stream the content over WebRTC. This latter API could be useful for developers debugging a page, but also support teams that want to see what's happening on the user's side. Read more of this story at Slashdot.
SpaceX's Reusable Rockets Win US Air Force General's Endorsement
technology - Posted On:2017-10-18 03:14:58 Source: slashdot
As the military looks to drive down costs, the head of U.S. Air Force Space Command said he's "completely committed" to launching future missions with recycled rockets like those championed by SpaceX's Elon Musk. "It would be 'absolutely foolish' not to begin using pre-flown rockets, which brings such significant savings that they'll soon be commonplace for the entire industry, General John W. 'Jay' Raymond said," reports Bloomberg. From the report: "The market's going to go that way. We'd be dumb not to," he said. "What we have to do is make sure we do it smartly." The Air Force won't be able to use the recycled boosters until they're certified for military use, a process that Raymond suggested may already be in the works. "The folks out at Space and Missile Systems Center in Los Angeles that work for me would be in those dialogues," he said, declining to specify when certification could take place. "I don't know how far down the road we've gotten, but I am completely committed to launching on a reused rocket, a previously flown rocket, and making sure that we have the processes in place to be able to make sure that we can do that safely." Read more of this story at Slashdot.
Russian Troll Factory Paid US Activists To Fund Protests During Election
technology - Posted On:2017-10-17 21:44:58 Source: slashdot
bestweasel writes: The Guardian reports on another story about Russian meddling, but interestingly, this one comes from a respected Russian news source, the RBC. From the report: "Russian trolls posing as Americans made payments to genuine activists in the U.S. to help fund protest movements on socially divisive issues. On Tuesday, the newspaper RBC published a major investigation into the work of a so-called Russian 'troll factory' since 2015, including during the period of the U.S. election campaign, disclosures that are likely to put further spotlight on alleged Russian meddling in the election. RBC said it had identified 118 accounts or groups in Facebook, Instagram and Twitter that were linked to the troll factory, all of which had been blocked in August and September this year as part of the U.S. investigation into Russian electoral meddling. Perhaps the most alarming element of the article was the claim that employees of the troll factory had contacted about 100 real U.S.-based activists to help with the organization of protests and events. RBC claimed the activists were contacted by Facebook group administrators hiding their Russian origin and were offered financial help to pay for transport or printing costs. About $80,000 was spent during a two-year period, according to the report." Read more of this story at Slashdot.
Google Maps Ditches Walking Calorie Counter After Backlash
technology - Posted On:2017-10-17 18:14:59 Source: slashdot
Following online backlash, Google is removing a planned feature in Maps that shows you how many calories you'd burn when in walking mode. Google's attempt to promote a healthy lifestyle caused a number of people to lambast the feature on Twitter, claiming it would "shame" and even "trigger" those with eating disorders. Engadget reports: Taking note of the negative reaction, Google is now dumping the experiment. It confirmed to Engadget that the update was briefly tested on iOS, and has been abandoned based on user feedback. As The Hill's Taylor Lorenz noted in her tweets, there was no way to turn off the feature. Lorenz also claimed that using pink cupcakes as the unit of measurement was "lowkey aimed at women." Others pointed out that Maps wasn't the appropriate place for the update. After all, there are plenty of fitness and calorie counting apps that keep track of your activity and consumption -- again emphasizing how misplaced the feature was. Read more of this story at Slashdot.
Toronto To Be Home To Google Parent's Biggest Smart City Project Yet
technology - Posted On:2017-10-17 15:45:00 Source: slashdot
Sidewalk Labs, the smart city subsidiary of Alphabet (the parent company of Google) with the stated goal of "reimagining cities from the Internet up," now has a very big sandbox in which to conduct its high-tech experiments. From a report: That's obviously an ambitious project, but some of the groundwork is already being laid: Alphabet's Google will be the flagship tenant for the new neighbourhood, anchoring the easter waterfront, to be called "Quayside," and Sidewalk Labs has committed $50 million to kick off pilot testing and planning in partnership with the City of Toronto. Sidewalk Labs won the contract through its response to a Request for Proposals issues by Waterfront Toronto, and organization created by the Canadian federal government, the Ontario provincial government and the City of Toronto together to foster development of Toronto's lakefront areas in ways that address urban sprawl while respecting the realities of climate change and taking into account the ability of the city's residents to get around efficiently. The area involved in the RFP that Sidewalk Labs will work with the government coalition to develop spans around 800 acres (though 12 acres are specified for the initial project), and is one of the largest underdeveloped urban areas in any North American city, making it a good target for Sidewalk's ambitious vision, which involves building smart cities holistically from the very start. Ultimately, the partners hope to turn the area into a "place for tens of thousands of people to live, work, learn and play -- and to create and advance new ideas that improve city life," according to a release from Sidewalk. Read more of this story at Slashdot.
Microsoft Begins Rolling Out Windows 10 Fall Creators Update
technology - Posted On:2017-10-17 13:45:00 Source: slashdot
Microsoft has started to roll out Windows 10 Fall Creators Update, aka, "Redstone 3" to the general public. The company has been testing this new major update to its desktop operating system for over six months. Much like the previous major updates to Windows 10, the Fall Creators Update is also free to Windows 10 users. Some of the remarkable new features the company is shipping with Fall Creators Update include a major design tweak called Fluent Design System. The design changes, CNET writes, are "subtle, like motion and blur effects, along with the changes to the way windows appear." Also in the offering are support for mixed reality, improvements to Photos app, and OneDrive on-demand files -- a feature that many users have long requested. You can read more about these new features and improvements here. Read more of this story at Slashdot.
Microsoft Responded Quietly After Detecting Secret Database Hack in 2013
it - Posted On:2017-10-17 11:30:00 Source: slashdot
Citing five former employees, Reuters reported on Tuesday that Microsoft's secret internal database for tracking bugs in its own software was broken into by a highly sophisticated hacking group more than four years ago. From the report: The company did not disclose the extent of the attack to the public or its customers after its discovery in 2013, but the five former employees described it to Reuters in separate interviews. Microsoft declined to discuss the incident. The database contained descriptions of critical and unfixed vulnerabilities in some of the most widely used software in the world, including the Windows operating system. Spies for governments around the globe and other hackers covet such information because it shows them how to create tools for electronic break-ins. The Microsoft flaws were fixed likely within months of the hack, according to the former employees. Yet speaking out for the first time, these former employees as well as U.S. officials informed of the breach by Reuters said it alarmed them because the hackers could have used the data at the time to mount attacks elsewhere, spreading their reach into government and corporate networks. "Bad guys with inside access to that information would literally have a 'skeleton key' for hundreds of millions of computers around the world," said Eric Rosenbach, who was U.S. deputy assistant secretary of defense for cyber at the time. Read more of this story at Slashdot.
The Impossible Dream of USB-C
technology - Posted On:2017-10-17 10:44:56 Source: slashdot
Marco Arment, a prominent developer best known for co-founding Tumblr, explains why USB-C, despite being around for years and being used in mainstream products hasn't taken off yet. Arment writes: While a wide variety of USB-C dongles are available, most use the same handful of unreliable, mediocre chips inside. Some USB-A dongles make Wi-Fi drop on MacBook Pros. Some USB-A devices don't work properly when adapted to USB-C, or only work in certain ports. Some devices only work when plugged directly into a laptop's precious few USB-C ports, rather than any hubs or dongles. And reliable HDMI output seems nearly impossible in practice. Very few hubs exist to add more USB-C ports, so if you have more than a few peripherals, you can't just replace all of their cables with USB-C versions. You'll need a hub that provides multiple USB-A ports instead, and you'll need to keep your USB-A cables for when you're plugged into the hub -- but also keep USB-C cables or dongles around for everything you might ever need to plug directly into the computer's ports. Hubs with additional USB-C ports might pass Thunderbolt through to them, but usually don't. Sometimes, they add a USB-C port that can only be used for power passthrough. Many hubs with power passthrough have lower wattage limits than a 13-inch or 15-inch laptop needs. Fortunately, USB-C is a great charging standard. Well, it's more of a collection of standards. USB-C devices can charge via the slow old USB rates, but for higher-powered devices or faster charging, tha's not enough current. Read more of this story at Slashdot.