KevLar's Space

my little space on the interwebs

Samsung Acknowledges and Fixes Bug On 840 EVO SSDs

Lucas123 writes: Samsung has issued a firmware fix for a bug on its popular 840 EVO triple-level cell SSD. The bug apparently slows read performance tremendously for any data more than a month old that has not been moved around on the NAND. Samsung said in a statement that the read problems occurred on its 2.5-in 840 EVO SSDs and 840 EVO mSATA drives because of an error in the flash management software algorithm. Some users on technical blog sites, such as Overclock.net, say the problem extends beyond the EVO line. They also questioned whether the firmware upgrade was a true fix or if it just covers up the bug by moving data around the SSD.

Read more of this story at Slashdot.



via Slashdot: IT http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/2e3DWTBsWZw/story01.htm

Google Adds USB Security Keys To 2-Factor Authentication Options

An anonymous reader writes with this excerpt from VentureBeat: Google today announced it is beefing up its two-step verification feature with Security Key, a physical USB second factor that only works after verifying the login site is truly a Google website. The feature is available in Chrome: Instead of typing in a code, you can simply insert Security Key into your computer’s USB port and tap it when prompted by Google’s browser. “When you sign into your Google Account using Chrome and Security Key, you can be sure that the cryptographic signature cannot be phished,” Google promises. While Security Key works with Google Accounts at no charge, you’ll need to go out and buy a compatible USB device directly from a Universal 2nd Factor (U2F) participating vendor.

Read more of this story at Slashdot.



via Slashdot: IT http://ift.tt/1oqHhNP

Safercar.gov Overwhelmed By Recall For Deadly Airbags

darylb writes “The NHTSA’s safercar.gov website appears to be suffering under the load of recent vehicle recalls, including the latest recall of some 4.7 million vehicles using airbags made by Takata. Searching recalls by VIN is non-responsive at present. Searching by year, make, and model hangs after selecting the year. What can sites serving an important public function do to ensure they stay running during periods of unexpected load?” More on the airbag recall from The New York Times and the Detroit Free Press.

Read more of this story at Slashdot.



via Slashdot: IT http://ift.tt/1x4M6ev

Delivering Malicious Android Apps Hidden In Image Files

An anonymous reader writes “Researchers have found a way to deliver a malicious app to Android users by hiding it into what seems to be an encrypted image file, which is then delivered via a legitimate, seemingly innocuous wrapper app. Fortinet malware researcher Axelle Apvrille and reverse engineer Ange Albertini created a custom tool they dubbed AngeCryption, which allows them to encrypt the payload Android application package (APK) and make it look like an image (PNG, JPG) file . They also had to create another APK that carries the “booby-trapped” image file and which can decrypt it to unveil the malicious APK file and install it. A malicious app thusly encrypted is nearly invisible to reverse engineers, and possibly even to AV solutions and Google’s Android Bouncer.” (Here’s the original paper, from researchers Axelle Apvrille and Ange Albertini.)

Read more of this story at Slashdot.



via Slashdot: IT http://ift.tt/1DwuXyK

Security Company Tries To Hide Flaws By Threatening Infringement Suit

An anonymous reader writes: An RFID-based access control system called IClass is used across the globe to provide physical access controls. This system relies on cryptography to secure communications between a tag and a reader. Since 2010, several academic papers have been released which expose the cryptographic insecurity of the IClass system. Based on these papers, Martin Holst Swende implemented the IClass ciphers in a software library, which he released under the GNU General Public License. The library is useful to experiment with and determine the security level of an access control system (that you own or have explicit consent to study). However, last Friday, Swende received an email from INSIDE Secure, which notified him of (potential) intellectual property infringement, warning him off distributing the library under threat of “infringement action.” Interestingly, it seems this is not the first time HID Global has exerted legal pressure to suppress information.

Read more of this story at Slashdot.



via Slashdot: IT http://ift.tt/1DuXGE2

China Staging a Nationwide Attack On iCloud and Microsoft Accounts

New submitter DemonOnIce writes: According to The Verge and original report the site that monitor’s China’s Great Firewall activity, China is conducting a large-scale attack on iCloud and Microsoft accounts using its government firewall software. Chinese users may be facing an unpleasant surprise as they are directed to a dummy site designed to like an Apple login page (or a Microsoft one, as appropriate).

Read more of this story at Slashdot.



via Slashdot: IT http://ift.tt/1FtfqBv

GNU Emacs 24.4 Released Today

New submitter Shade writes Well over one and a half years in the works, the latest and greatest release of GNU Emacs was made officially available today. Highlights of this release include a built-in web browser, improved multi-monitor and fullscreen support, “electric” indentation enabled by default, support for saving and restoring the state of frames and windows, pixel-based resizing for frames and windows, support for digitally signed ELisp packages, support for menus in text terminals, and much more. Read the official announcement and the full list of changes for more information.

Read more of this story at Slashdot.



via Slashdot: IT http://ift.tt/1sI9lun

More Eye Candy Coming To Windows 10

jones_supa writes Microsoft is expected to release a new build of the Windows 10 Technical Preview in the very near future, according to their own words. The only build so far to be released to the public is 9841 but the next iteration will likely be in the 9860 class of releases. With this new build, Microsoft has polished up the animations that give the OS a more comprehensive feel. When you open a new window, it flies out on to the screen from the icon and when you minimize it, it collapses back in to the icon on the taskbar. It is a slick animation and if you have used OS X, it is similar to the one used to collapse windows back in to the dock. Bah.

Read more of this story at Slashdot.



via Slashdot: IT http://ift.tt/10feYa0

‘Endrun’ Networks: Help In Danger Zones

kierny writes Drawing on networking protocols designed to support NASA’s interplanetary missions, two information security researchers have created a networking system that’s designed to transmit information securely and reliably in even the worst conditions. Dubbed Endrun, and debuted at Black Hat Europe, its creators hope the delay-tolerant and disruption-tolerant system — which runs on Raspberry Pi — could be deployed everywhere from Ebola hot zones in Liberia, to war zones in Syria, to demonstrations in Ferguson.

Read more of this story at Slashdot.



via Slashdot: IT http://ift.tt/11YzzAc

Developers, IT Still Racking Up (Mostly) High Salaries

Nerval’s Lobster (2598977) writes Software development and IT remain common jobs among those in the higher brackets, although not the topmost one, according to a new study (with graph) commissioned by NPR. Among those earning between $58,000 and $72,000, IT was the sixth-most-popular job, while software developers came in tenth place. In the next bracket up (earning between $72,000 and $103,000), IT rose to third, with software development just behind in fourth place. As incomes increased another level ($103,000 to $207,000), software developers did even better, coming in second behind managers, although IT dropped off the list entirely. In the top percentile ($207,000 and above), neither software developers nor IT staff managed to place; this is a segment chiefly occupied by physicians (in first place), managers, chief executives, lawyers, and salespeople who are really good at their jobs. In other words, it seems like a good time to be in IT, provided you have a particular skillset. If those high salaries are in Silicon Valley or New York, though, they might not seem as high as half the same rate would in Omaha, or Houston, or Raleigh.

Read more of this story at Slashdot.



via Slashdot: IT http://ift.tt/1wjYR4T

Follow

Get every new post delivered to your Inbox.