Computers & Linux News

In an effort to appeal to more young voters, U.S. Republican presidential nominee Donald Trump has unveiled a "geofilter" ad campaign for Snapchat that slaps on the banner phrase "Donald J. Trump vs. Crooked Hillary" to a user's photo and video Snaps. Ars Technica reports: "The ad rolled out to American Snapchat users today, just ahead of the 2016 presidential election's first major debate between Trump and Hillary Clinton (the debate starts tonight at 9pm EDT). The ad joins the usual geofilter available to Snapchat users, which usually list the name of a city or a nearby event as determined by GPS and time information. The campaign differs from the deluge of text, photo, and video ads that politicans have relied on in recent years, as it doesn't publish or display to the public without a personal photo or video attached. While other political campaigns have paid for geofilter ad campaigns on Snapchat in the past, including Clinton and Bernie Sanders, those have been timed and targeted for smaller-scale events like political conventions and primary voting periods. In a statement to CNN, the Clinton campaign said that Trump was "throwing his money into a fire pit," and it pointed out the ad's potential for backfiring, since "given Trump's deep unpopularity with young voters, [the ad's phrasing] will be used mainly at [his] own expense."

Read more of this story at Slashdot.

Hofstra University is so keen on reporters using its own wireless service that it is reportedly searching reporters for personal hotspots and shutting them down.

The Patriot and Compass of old are gone, swallowed up by a single SUV that takes the Compass name.

It's not only a big night for democracy, but a big night for the internet, where the real-time response to the first Trump vs. Clinton battle is promising to be epic.

The data mining giant might lose its government contracts if it doesn't comply.

An anonymous reader quotes a report from Ars Technica: Microsoft has announced that the next major update to Windows 10 will run its Edge browser in a lightweight virtual machine. Running the update in a virtual machine will make exploiting the browser and attacking the operating system or compromising user data more challenging. Called Windows Defender Application Guard for Microsoft Edge, the new capability builds on the virtual machine-based security that was first introduced last summer in Windows 10. Windows 10's Virtualization Based Security (VBS) uses small virtual machines and the Hyper-V hypervisor to isolate certain critical data and processes from the rest of the system. The most important of these is Credential Guard, which stores network credentials and password hashes in an isolated virtual machine. This isolation prevents the popular MimiKatz tool from harvesting those password hashes. In turn, it also prevents a hacker from breaking into one machine and then using stolen credentials to spread to other machines on the same network. Credential Guard's virtual machine is very small and lightweight, running only a relatively simple process to manage credentials. Application Guard will go much further by running large parts of the Edge browser within a virtual machine. This virtual machine won't, however, need a full operating system running inside it -- just a minimal set of Windows features required to run the browser. Because Application Guard is running in a virtual machine it will have a much higher barrier between it and the host platform. It can't see other processes, it can't access local storage, it can't access any other installed applications, and, critically, it can't attack the kernel of the host system. In its first iteration, Application Guard will only be available for Edge. Microsoft won't provide an API or let other applications use it. As with other VBS features, Application Guard will also only be available to users of Windows 10 Enterprise, with administrative control through group policies. Administrators will be able to mark some sites as trusted, and those sites won't use the virtual machine. Admins also be able to control whether untrusted sites can use the clipboard or print.

Read more of this story at Slashdot.

Our little internet behemoth is all grown up!

A Russian company that sells software for guessing iPhone passwords discovered a vulnerability in iTunes backups.

Filings appear to confirm information about the new Android handset that the company briefly published last week.

grcumb writes: Peruvian mathematician Harald Helfgott made his mark on the history of mathematics by solving Goldbach's weak conjecture, which states that every odd number greater than 7 can be expressed as the sum of three prime numbers. Now, according to Scientific American, he's found a better solution to the sieve of Eratosthenes: "In order to determine with this sieve all primes between 1 and 100, for example, one has to write down the list of numbers in numerical order and start crossing them out in a certain order: first, the multiples of 2 (except the 2); then, the multiples of 3, except the 3; and so on, starting by the next number that had not been crossed out. The numbers that survive this procedure will be the primes. The method can be formulated as an algorithm." But now, Helfgott has found a method to drastically reduce the amount of RAM required to run the algorithm: "Now, inspired by combined approaches to the analytical 100-year-old technique called the circle method, Helfgott was able to modify the sieve of Eratosthenes to work with less physical memory space. In mathematical terms: instead of needing a space N, now it is enough to have the cube root of N." So what will be the impact of this? Will we see cheaper, lower-power encryption devices? Or maybe quicker cracking times in brute force attacks? Mathematician Jean Carlos Cortissoz Iriarte of Cornell University and Los Andes University offers an analogy: "Let's pretend that you are a computer and that to store data in your memory you use sheets of paper. If to calculate the primes between 1 and 1,000,000, you need 200 reams of paper (10,000 sheets), and with the algorithm proposed by Helfgott you will only need one fifth of a ream (about 100 sheets)," he says.

Read more of this story at Slashdot.

Apple's working on its own home assistant, HealthKit wants to do more for you on the Apple Watch, and Apple patents a paper bag.

If you just can't watch, you may want to turn your channel (or mobile phone) to football, or maybe move to "Zootopia."

New submitter Rick Schumann shares with us a report highlighting an analogy presented by an ISP that relates Double Stuf Oreos to the internet. Specifically, that Double Stuf Oreos cost more than regular Oreos, and therefore you should pay more for internet: The Consumerist reports: "Ars Technica first spotted the crumbly filing, from small (and much-loathed) provider Mediacom. Mediacom's comment is in response to the same proceeding that Netflix commented on earlier this month. However, while Netflix actually addressed data and the ways in which their customers use it, Mediacom went for the more metaphor-driven approach. The letter literally starts out under the header, 'You Have to Pay Extra For Double-Stuffed,' and posits that you, the consumer, are out for a walk with $2 in your pocket when you suddenly develop a ferocious craving for Oreo cookies." Of course their analogy is highly questionable, since transmitting data over a network doesn't actually consume anything, now does it? You eat the cookie, the cookie is gone, but you transmit data over a network, the network is still there and can transmit data endlessly. Mediacom's assertion that the Internet is like a cookie you eat, is like saying copying a file on your computer somehow diminishes or degrades the original file, which of course is ridiculous.

Read more of this story at Slashdot.

Brian Krebs' website had been largely unreachable for the past week, the victim of a "record" flood of fake requests for traffic.

A newly issued comic book shakes up Iron Man's family tree. Warning, spoilers ahead.

Reader Zocalo writes: Over the last several months Mozilla has been investigating a large number of breaches of what Mozilla deems to be acceptable CA protocols by the Chinese root CA WoSign and their perhaps better known subsidiary StartCom, whose acquisition by WoSign is one of the issues in question. Mozilla has now published their proposed solution (GoogleDocs link), and it's not looking good for WoSign and Startcom. Mozilla's position is that they have lost trust in WoSign and, by association StartCom, with a proposed action to give WoSign and StartCom a "timeout" by distrusting any certificates issued after a date to be determined in the near future for a period of one year, essentially preventing them issuing any certificates that will be trusted by Mozilla. Attempts to circumvent this by back-dating the valid-from date will result in an immediate and permanent revocation of trust, and there are some major actions required to re-establish that trust at the end of the time out as well.This seems like a rather elegant, if somewhat draconian, solution to the issue of what to do when a CA steps out of line. Revoking trust for certificates issued after a given date does not invalidate existing certificates and thereby inconvenience their owners, but it does put a severe -- and potentially business-ending -- penalty on the CA in question. Basically, WoSign and StartCom will have a year where they cannot issue any new certificates that Mozilla will trust, and will also have to inform any existing customers that have certificate renewals due within that period they cannot do so and they will need to go else where -- hardly good PR! What does Slashdot think? Is Mozilla going too far here, or is their proposal justified and reasonable given WoSign's actions, making a good template for potential future breaches of trust by root CAs, particularly in the wake of other CA trust breaches by the likes of CNNIC, DigiNotar, and Symantec?

Read more of this story at Slashdot.

Google is expected to unveil it at its Oct. 4 hardware event.

You've already enjoyed those burgers and fries, so why not send a picture of them to the recycle bin for a good cause?

Commentary: The company's new video camera-equipped sunglasses are tacky, colorful and look like crappy $8 shades from a souvenir stand. That's their genius.

An anonymous reader quotes a report from The Stack: Japanese citizens will soon be able to pay their utility bills using bitcoin. The facility is being provided by Coincheck Denki, a new service offered by the Japanese bitcoin company, which will be available to users in November. Coincheck outlined the new plan on its website. Also called 'Coincheck Electricity,' it will allow users to pay their electricity bills directly from their Coincheck bitcoin wallet. It also offers a discount plan for heavy users of electricity, with 4-6% of the total bill discounted for heavy users of electricity who pay in bitcoin. Coincheck's parent company, Reju Press, initially partnered with Mitsuwa Inc., to create the bitcoin payment system. Coincheck now works with Mitsuwa subsidiary E-Net Inc., and has formed a partnership with Marubeni Power Retail Corporation, which operates power plants in 17 locations in central Japan. Marubeni has offices in 66 countries worldwide, although no plans have been announced to take the bitcoin payment option outside of Japan. While the initial bitcoin payment rollout is for electricity bills, Coincheck plans to expand its offerings to bitcoin payment for 'life infrastructure,' to include payment of gas, water and mobile phone bills. It may even partner with landlords to allow customers of Coincheck to pay rent using bitcoin. The bitcoin payment plan will be rolled out in Chubu, Kanto (including Tokyo) and Kansai regions to start, with additional areas to be added sequentially. The company hopes to offer bitcoin payment options to one million electric customers within the first year.

Read more of this story at Slashdot.