The US Army Wants Distributed Bot Swarms And An 'Internet of Battlefield Things'
turkeydance shares a new report about the U.S. Army Research Lab:
In the coming months, the Lab will fund new programs related to highly (but not fully) autonomous drones and robots that can withstand adversary electronic warfare operations... A second program called the Internet of Battlefield Things seeks to put to military use "the research that's going on in the commercial space" on distributed sensors and Internet-connected devices... One thrust will be equipping drones and other autonomous systems with bigger brains and better networking so that they can function even when an enemy jams their ability to radio back to a human controller for direction... "When you don't have bandwidth, when you're under cyber attack, when you're being jammed. That's the problem we're trying to address."
The lab's director also says they want "as much processing as possible on the node" so it can continue functioning in "contested environments."
SoundCloud Halts Volunteer Archiving Project
nielo tipped us off to more SoundCloud news.
Microsoft Launches A Counterattack Against Russia's 'Fancy Bear' Hackers
Kevin Poulsen writes on the
It turns out Microsoft has something even more formidable than Moscow's malware: Lawyers. Last year attorneys for the software maker quietly sued the hacker group known as Fancy Bear in a federal court outside Washington DC, accusing it of computer intrusion, cybersquatting, and infringing on Microsoft's trademarks... Since August, Microsoft has used the lawsuit to wrest control of 70 different command-and-control points from Fancy Bear... Rather than getting physical custody of the servers, which Fancy Bear rents from data centers around the world, Microsoft has been taking over the Internet domain names that route to them. These are addresses like "livemicrosoft[.]net" or "rsshotmail[.]com" that Fancy Bear registers under aliases for about $10 each. Once under Microsoft's control, the domains get redirected from Russia's servers to the company's, cutting off the hackers from their victims, and giving Microsoft a omniscient view of that servers' network of automated spies. "In other words," Microsoft outside counsel Sten Jenson explained in a court filing last year, "any time an infected computer attempts to contact a command-and-control server through one of the domains, it will instead be connected to a Microsoft-controlled, secure server."
Are Nondisparagement Agreements Silencing Employee Complaints?
cdreimer writes, "According to a report in the
New York Times, 'nondisparagement agreements are increasingly included in employment contracts and legal settlements' to hide abuses that would otherwise be made public." The
Employment lawyers say nondisparagement agreements have helped enable a culture of secrecy. In particular, the tech start-up world has been roiled by accounts of workplace sexual harassment, and nondisparagement clauses have played a significant role in keeping those accusations secret... Nondisparagement clauses are not limited to legal settlements. They are increasingly found in standard employment contracts in many industries, sometimes in a simple offer letter that helps to create a blanket of silence around a company. Their use has become particularly widespread in tech employment contracts, from venture investment firms and start-ups to the biggest companies in Silicon Valley, including Google... Employees increasingly "have to give up their constitutional right to speak freely about their experiences if they want to be part of the work force," said Nancy E. Smith, a partner at the law firm Smith Mullin.
Three different tech industry employees told the
Times "they are not allowed to acknowledge that the agreements even exist." And Google "declined to comment" for the article.
IEEE Spectrum Declares Python The #1 Programming Language
An anonymous reader quotes IEEE Spectrum's annual report on the top programming languages:
As with all attempts to rank the usage of different languages, we have to rely on various proxies for popularity. In our case, this means having data journalist Nick Diakopoulos mine and combine 12 metrics from 10 carefully chosen online sources to rank 48 languages. But where we really differ from other rankings is that our interactive allows you choose how those metrics are weighted when they are combined, letting you personalize the rankings to your needs. We have a few preset weightings -- a default setting that's designed with the typical Spectrum reader in mind, as well as settings that emphasize emerging languages, what employers are looking for, and what's hot in open source...
Python has continued its upward trajectory from last year and jumped two places to the No. 1 slot, though the top four -- Python, C, Java, and C++ -- all remain very close in popularity. Indeed, in Diakopoulos's analysis of what the underlying metrics have to say about the languages currently in demand by recruiting companies, C comes out ahead of Python by a good margin... Ruby has fallen all the way down to 12th position, but in doing so it has given Apple's Swift the chance to join Google's Go in the Top Ten... Outside the Top Ten, Apple's Objective-C mirrors the ascent of Swift, dropping down to 26th place. However, for the second year in a row, no new languages have entered the rankings. We seem to have entered a period of consolidation in coding as programmers digest the tools created to cater to the explosion of cloud, mobile, and big data applications.
"Speaking of stabilized programming tools and languages," the article concludes, "it's worth noting Fortran's continued presence right in the middle of the rankings (sitting still in 28th place), along with Lisp in 35th place and Cobol hanging in at 40th."
Ask Slashdot: Someone Else Is Using My Email Address
I daily receive emails from adult dating sites, loan services, government agencies, online retailers etc, all of them either asking me to verify my account, or, even worse, having signed me up to their service (especially dating sites), which makes me really uncomfortable, my being a married man with children... I was one of the early lucky people that registered a gmail address using my email@example.com. This has proven pretty convenient over the years, as it's simple and short, which makes it easy to communicate over the phone, write down on applications etc. However, over the past six months, some dude in Australia (I live in the EU) who happens to have the same last name as myself is using it to sign up to all sorts of services...
I tried to locate the person on Facebook, Twitter etc and contacted a few that seemed to match, but I never got a response. So the question is, how do you cope with such a case, especially nowadays that sites seem to ignore the email verification for signups?
Leave your best answers in the comments. What would you do if someone else started giving out your email address?
Mozilla's New Open Source Voice-Recognition Project Wants Your Voice
An anonymous reader quotes Mashable:
Mozilla is building a massive repository of voice recordings for the voice apps of the future -- and it wants you to add yours to the collection. The organization behind the Firefox browser is launching Common Voice, a project to crowdsource audio samples from the public. The goal is to collect about 10,000 hours of audio in various accents and make it publicly available for everyone... Mozilla hopes to hand over the public dataset to independent developers so they can harness the crowdsourced audio to build the next generation of voice-powered apps and speech-to-text programs... You can also help train the speech-to-text capabilities by validating the recordings already submitted to the project. Just listen to a short clip, and report back if text on the screen matches what you heard... Mozilla says it aims is to expand the tech beyond just a standard voice recognition experience, including multiple accents, demographics and eventually languages for more accessible programs. Past open source voice-recognition projects have included
Sphinx 4 and
VoxForge, but unfortunately most of today's systems are still "
locked up behind proprietary code at various companies, such as Amazon, Apple, and Microsoft."
Debian, Gnome Patched 'Bad Taste' VBScript-Injection Vulnerabilities
KiloByte warned us about new exploit for .MSI files named "bad taste". Neowin reports:
A now-patched vulnerability in the "GNOME Files" file manager was recently discovered which allowed hackers to create dodgy MSI files which would run malicious VBScript code on Linux... Once Nils Dagsson Moskopp discovered the bug, he reported it to the Debian Project which fixed it very rapidly. The GNOME Project also patched the gnome-exe-thumbnailer file which is responsible for parsing MSI and EXE files inside the GNOME Files app... If you run a Linux distribution with the GNOME desktop it's advisable to run the update manager and check for updates as soon as possible before you become affected by this critical vulnerability.
Kickstarter Campaign Launched To Save NASA's Mission Control
Long-time Slashdot reader
yzf750 shares sad news about the facility where NASA conducted the Apollo moon landing in 1969:
Mission Control at Johnson Space Center is a wreck and this Kickstarter project is trying to save it. The nearby city of Webster, Texas has promised to match Kickstarter funding up to $400,000. The goal is to raise $250,000 to add to the $3.5 million already budgeted by the city of Webster to restore Mission Control.
Contributors on Kickstarter can receive rewards including models of the Apollo 11 command module, lunch with Apollo flight controllers, VIP tours, or a free download of the documentary
Mission Control: the Unsung Heroes of Apollo. The Kickstarter campaign was launched by Space Center Houston, which is also contributing $5 million to preserve what's been called a "cathedral of engineering."
In December the
Houston Chronicle noted that though Mission Control is listed in America's National Register of Historic Places, "plans to restore it have been
discussed for more than 20 years. But its restoration and preservation remain in limbo, with no set date for work to begin."
Steve Jobs' Life Is Now An Opera
An anonymous reader quotes CNN's report on a new project from Pulitzer Prize-winning librettist Mark Campbell:
"The (R)evolution of Steve Jobs" is set to open on Saturday night at the Santa Fe Opera, home to the largest summer-opera festival in U.S. The high-tech production, which runs until August 26, jumps in and out of key moments in the Apple founder's life, from early product-development days alongside Steve Wozniak and the launch of the original iPhone, to his wedding day with Laurene Powell Jobs... The opera features an electronic score, developed by Mason Bates, that incorporates sounds from the products Jobs created, including the audio synonymous with turning on an early Macintosh computer. The libretto, or operatic script, doesn't call out words like Apple or iPhone due to copyright issues; instead, it uses descriptors like "one device" to reference the smartphone. "Only one device, does it all," the libretto reads. "In one hand, all your need. One device. Communication, entertainment, illumination, connection, interaction, navigation, inspiration..."
One scene in the high-tech production shows Jobs standing in his family's garage on his 10th birthday. When his father gives him a workbench, the walls around them light up into video screens...
Let's Encrypt Criticized Over Speedy HTTPS Certifications
100 million HTTPS certificates were
issued in the last year by Let's Encrypt -- a free certificate authority founded by Mozilla, Cisco and the Electronic Frontier Foundation -- and they're now issuing more than 100,000 HTTPS certificates every day. Should they be performing more vetting?
msm1267 shared this article from Kaspersky Lab's
[S]ome critics are sounding alarm bells and warning that Let's Encrypt might be guilty of going too far, too fast, and delivering too much of a good thing without the right checks and balances in place. The primary concern has been that while the growth of SSL/TLS encryption is a positive trend, it also offers criminals an easy way to facilitate website spoofing, server impersonation, man-in-the-middle attacks, and a way to sneak malware through company firewalls... Critics do not contend Let's Encrypt is responsible for these types of abuses. Rather, because it is the 800-pound gorilla when it comes to issuing basic domain validation certificates, critics believe Let's Encrypt could do a better job vetting applicants to weed out bad actors... "I think there should be some type of vetting process. That would make it more difficult for malicious actors to get them," said Justin Jett, director of audit and compliance at Plixer, a network traffic analytics firm...
Josh Aas, executive director of the Internet Security Research Group, the organization that oversees Let's Encrypt, points out that its role is not to police the internet, rather its mission is to make communications secure. He added that, unlike commercial certificate authorities, it keeps a searchable public database of every single domain it issues. "When people get surprised at the number of PayPal phishing sites and get worked up about it, the reason they know about it is because we allow anyone to search our records," he said. Many other certificate authorities keep their databases of issued certificates private, citing competitive reasons and that customers don't want to broadcast the names of their servers... The reason people treat us like a punching bag is that we are big and we are transparent. "
The criticism intensified after Let's Encrypt announced they'd soon offer
wildcard certificates for subdomains. But the article also cites security researcher Scott Helme, who "argued if encryption is to be available to all then that includes the small percent of bad actors. 'I don't think it's for Signal, or Let's Encrypt, to
decide who should have access to encryption."
A New Sampling Algorithm Could Eliminate Sensor Saturation
Baron_Yam shared an article from
Researchers from MIT and the Technical University of Munich have developed a new technique that could lead to cameras that can handle light of any intensity, and audio that doesn't skip or pop. Virtually any modern information-capture device -- such as a camera, audio recorder, or telephone -- has an analog-to-digital converter in it, a circuit that converts the fluctuating voltages of analog signals into strings of ones and zeroes. Almost all commercial analog-to-digital converters (ADCs), however, have voltage limits. If an incoming signal exceeds that limit, the ADC either cuts it off or flatlines at the maximum voltage. This phenomenon is familiar as the pops and skips of a "clipped" audio signal or as "saturation" in digital images -- when, for instance, a sky that looks blue to the naked eye shows up on-camera as a sheet of white.
Last week, at the International Conference on Sampling Theory and Applications, researchers from MIT and the Technical University of Munich presented a technique that they call unlimited sampling, which can accurately digitize signals whose voltage peaks are far beyond an ADC's voltage limit. The consequence could be cameras that capture all the gradations of color visible to the human eye, audio that doesn't skip, and medical and environmental sensors that can handle both long periods of low activity and the sudden signal spikes that are often the events of interest.
One of the paper's author's explains that "The idea is very simple. If you have a number that is too big to store in your computer memory, you can take the modulo of the number."
The US And Australia Are Testing Hypersonic Missiles
schwit1 quotes Engadget:
Both the U.S. and Australia have confirmed that they recently completed a series of mysterious hypersonic missile tests. All the countries will say is that the flights were successful, and that they represented "significant milestones" in testing everything from the design assembly to the control mechanisms. They won't even say which vehicles were used or how quickly they traveled, although past tests have usually relied on Terrier Orion rockets and have reached speeds as high as Mach 8.
The tests are part of the long-running HIFiRE (Hypersonic International Flight Research Experimentation) program, whose first launch took place way back in 2009. They should help bring hypersonic flight to a "range of applications," according to HIFiRE partner BAE. That could easily include ultra-fast aircraft, but it's widely believed the focus here is on missiles and similar unmanned weapons. A hypersonic missile would fulfill the US military's goal of building a conventional weapon that can strike anywhere within an hour, and it would be virtually impossible to stop using existing missile defenses. In theory, enemy nations wouldn't dare attack if they knew they'd face certain retaliation within minutes.
Originally NASA was involved in the project, which has been
ongoing for more than eight years. But it's timeline may have shortened after reports that foreign powers including Russia and China are
already building their own hypersonic missiles.
Linus Torvalds Now Reviews Gadgets On Google+
An anonymous reader quotes ZDNet:
If you know anything about Linus Torvalds, you know he's the mastermind and overlord of Linux. If you know him at all well, you know he's also an enthusiastic scuba diver and author of SubSurface, a do-it-all dive log program. And, if you know him really well, you'd know, like many other developers, he loves gadgets. Now, he's starting his own gadget review site on Google+: Working Gadgets...
"[W]hile waiting for my current build to finish, I decided to write a note about some of the gadgets I got that turned out to work, rather than all the crazy crap that didn't. Because while 90% of the cool toys I buy aren't all that great, there's still the ones that actually do live up to expectations. So the rule is: no rants. Just good stuff. Because this is about happy gadgets."
So far Linus has reviewed an
automatic cat litter box, a
scuba diving pressure regulator, and a Ubiquiti UniFi
Wi-Fi access point that complements his Google WiFi mesh network.
Linus will be great at this. Just last week I saw him
recommending a text editor.
Facebook Petitioned To Change License For ReactJS
The Apache Software Foundation issued a notice last weekend indicating that it has added Facebook's BSD+Patents [ROCKSDB] license to its Category X list of disallowed licenses for Apache Project Management Committee members. This is the license that Facebook uses for most of its open source projects. The RocksDB software project from Facebook already changed its license to a dual Apache 2 and GPL 2. Users are now petitioning on GitHub to have Facebook change the license of React.JS as well.