Tech News Feed

Google Experiment Tests Top 5 Browsers, Finds Safari Riddled With Security Bugs

SlashDot - Fri, 2017-09-22 20:05
An anonymous reader writes from a report via Bleeping Computer: The Project Zero team at Google has created a new tool for testing browser DOM engines and has unleashed it on today's top five browsers, finding most bugs in Apple's Safari. Results showed that Safari had by far the worst DOM engine, with 17 new bugs discovered after Fratric's test. Second was Edge with 6, then IE and Firefox with 4, and last was Chrome with only 2 new issues. The tests were carried out with a new fuzzing tool created by Google engineers named Domato, also open-sourced on GitHub. This is the third fuzzing tool Google creates and releases into open-source after OSS-Fuzz and syzkaller. Researchers focused on testing DOM engines for vulnerabilities because they expect them to be the next target for browser exploitation after Flash reaches end-of-life in 2020.

Share on Google+

Read more of this story at Slashdot.

Uber's Khosrowshahi proving to be a kinder, gentler CEO - CNET

CNET News - Fri, 2017-09-22 19:55
Facing a ban in London, the ride-hailing company's new leader says it's time for "self-reflection."

5 things we just learned from the iPhone 8 teardown - CNET

CNET News - Fri, 2017-09-22 19:54
Would you believe the iPhone 8 has a smaller battery? Here's what else iFixit discovered.

I have an SNES Classic Edition, and it rules

TechCrunch - Fri, 2017-09-22 19:51
 Just in time for a weekend during which I had already planned to do nothing productive, a small package from Nintendo containing what will likely be its hottest item since the NES Classic Edition… which is to say, of course, the SNES Classic Edition. Read More

Verizon Backtracks Slightly In Plan To Kick Customers Off Network

SlashDot - Fri, 2017-09-22 19:20
An anonymous reader quotes a report from Ars Technica: Verizon Wireless is giving a reprieve to some rural customers who are scheduled to be booted off their service plans, but only in cases when customers have no other options for cellular service. Verizon recently notified 8,500 customers in 13 states that they will be disconnected on October 17 because they used roaming data on another network. But these customers weren't doing anything wrong -- they are being served by rural networks that were set up for the purpose of extending Verizon's reach into rural areas. Today, Verizon said it is extending the deadline to switch providers to December 1. The company is also letting some customers stay on the network -- although they must switch to a new service plan. "If there is no alternative provider in your area, you can switch to the S (2GB), M (4GB), 5GB single-line, or L (8GB) Verizon plan, but you must do so by December 1," Verizon said in a statement released today. These plans range from $35 to $70 a month, plus $20 "line fees" for each line. The 8,500 customers who received disconnection letters have a total of 19,000 lines. Verizon sells unlimited plans in most of the country but said only those limited options would be available to these customers. Verizon also reiterated its promise that first responders will be able to keep their Verizon service even though some public safety officials received disconnection notices. "We have become aware of a very small number of affected customers who may be using their personal phones in their roles as first responders and another small group who may not have another option for wireless service," Verizon said. "After listening to these folks, we are committed to resolving these issues in the best interest of the customers and their communities. We're committed to ensuring first responders in these areas keep their Verizon service."

Share on Google+

Read more of this story at Slashdot.

Climbkhana: Ken Block explains Pikes Peak assault in latest Gymkhana video

Engadget - Fri, 2017-09-22 19:05
By Carter Jung Climbkhana is clever. And no, not because it's a portmanteau. Rather it's how Ken Block and his merry band of Hoonigan Media Machine misfits took something the internet clearly loves, hooning, and paired it with a picturesque mountain...

Get to know the CNET family: Q&A with Claire Reilly - CNET

CNET News - Fri, 2017-09-22 19:00
Meet Claire from Down Under. She has a face of an angel and the voice of Meat Loaf.

Hackers targeted election systems in 21 states, DHS says - CNET

CNET News - Fri, 2017-09-22 18:51
Vote-counting systems weren't affected, and few of the states targeted were actually breached

Walmart Wants To Deliver Groceries Straight To Your Fridge

SlashDot - Fri, 2017-09-22 18:40
New submitter Rick Schumann writes: Walmart has a new marketing idea: "Going to the store? No one has time for that anymore," Walmart says. They want to partner with a company called August Home, who makes smart locks, so a delivery service can literally deliver groceries right into your refrigerator -- while you watch remotely on your phone. Great, time-saving idea, or super-creepy invasion of your privacy? You decide. Here's how the company says it would work: 1. Place an order on for groceries or other goods. 2. A driver for Deliv -- a same-day delivery service -- retrieves items when the order is ready, and brings them to the customer's home. 3. If no one answers, the delivery person can use a one-time passcode that's been pre-authorized by the customer to open the home's smart lock. 4. The customer receives a smartphone notification when the delivery is occurring, and can choose to watch it all play out in real-time on home security cameras through a dedicated app. 5. Delivery person leaves packages in the foyer, then brings the groceries to the kitchen, unloads them into the fridge, and leaves. 6. Customer receives notification that the door has locked behind them.

Share on Google+

Read more of this story at Slashdot.

iTunes Movie Rentals Now Good for 48 Hours

PCMag News - Fri, 2017-09-22 18:10
Apple previously only gave renters in the US 24 hours to finish a rented movie.

iFixit iPhone 8 Teardown Finds Qualcomm Gigabit Modem

PCMag News - Fri, 2017-09-22 18:10
The teardown reveals Qualcomm's fastest modem, but a missing feature is holding it back.

The reviews are in for the iPhone 8/8Plus, Apple Watch Series 3 and Apple TV 4K (Apple Byte Extra Crunchy Podcast, Ep. 102) - CNET

CNET News - Fri, 2017-09-22 18:10
Is the Apple Watch that bad? Did Apple do enough with the Apple TV 4K? Are the new iPhone 8 and 8 Plus boring? We take a deep dive into Apple's latest product line with the man who reviewed them for CNET, Scott Stein.

Fitness app company settles with FTC for nearly $1 million

Engadget - Fri, 2017-09-22 18:04
If you're going to create a mobile app that offers monetary rewards for meeting fitness goals, you should probably make sure you back your promises up. The Pact fitness app offers users a way to incentivize workouts by charging a fee when users miss...

Adobe Security Team Accidentally Posts Private PGP Key On Blog

SlashDot - Fri, 2017-09-22 18:00
A member of Adobe's Product Security Incident Response Team (PSIRT) accidentally posted the PGP keys for PSIRT's email account -- both the public and the private keys. According to Ars Technica, "the keys have since been taken down, and a new public key has been posted in its stead." From the report: The faux pas was spotted at 1:49pm ET by security researcher Juho Nurminen. Nurminen was able to confirm that the key was associated with the e-mail account. To be fair to Adobe, PGP security is harder than it should be. What obviously happened is that a PSIRT team member exported a text file from PSIRT's shared webmail account using Mailvelope, the Chrome and Firefox browser extension, to add to the team's blog. But instead of clicking on the "public" button, the person responsible clicked on "all" and exported both keys into a text file. Then, without realizing the error, the text file was cut/pasted directly to Adobe's PSIRT blog.

Share on Google+

Read more of this story at Slashdot.

Lenovo’s leaked 25th-anniversary ThinkPad sports a familiar look

Engadget - Fri, 2017-09-22 17:39
The latest ThinkPad that Lenovo brought to CES back in January had a notably sleeker, more modern appearance than the line's traditional boxy black look. But it kept a couple features, like the red TrackPoint nub and 45-degree ThinkPad logo, that hav...

Passwords For 540,000 Car Tracking Devices Leaked Online

SlashDot - Fri, 2017-09-22 17:20
An anonymous reader quotes a report from The Hacker News: Login credentials of more than half a million records belonging to vehicle tracking device company SVR Tracking have leaked online, potentially exposing the personal data and vehicle details of drivers and businesses using its service. Just two days ago, Viacom was found exposing the keys to its kingdom on an unsecured Amazon S3 server, and this data breach is yet another example of storing sensitive data on a misconfigured cloud server. The Kromtech Security Center was first to discover a wide-open, public-facing misconfigured Amazon Web Server (AWS) S3 cloud storage bucket containing a cache belonging to SVR that was left publicly accessible for an unknown period. Stands for Stolen Vehicle Records, the SVR Tracking service allows its customers to track their vehicles in real time by attaching a physical tracking device to vehicles in a discreet location, so their customers can monitor and recover them in case their vehicles are stolen. The leaked cache contained details of roughly 540,000 SVR accounts, including email addresses and passwords, as well as users' vehicle data, like VIN (vehicle identification number), IMEI numbers of GPS devices. The leaked database also exposed 339 logs that contained photographs and data about vehicle status and maintenance records, along with a document with information on the 427 dealerships that use SVR's tracking services.

Share on Google+

Read more of this story at Slashdot.

Apple extends iTunes movie rentals to 48 hours

Engadget - Fri, 2017-09-22 17:20
It used to be that when you rented a movie from Apple's iTunes service, you'd have 24 hours to finish watching it. You could start streaming the rental within 30 days of purchase, of course. Just a couple of weeks after Apple made 4K an affordable op...

iPhone 8 and 8 Plus cameras get top marks from testing outfit DxOMark

TechCrunch - Fri, 2017-09-22 17:06
 If our review didn’t convince you that the cameras in the latest iPhones are something special, perhaps DxOMark’s lab-heavy evaluation process will do the trick. The camera testing site unequivocally states that the iPhone 8 and 8 Plus have the best smartphone cameras it’s ever tested — though they aren’t without their flaws. Read More

Tesla might build convenience stores at its charging stations

Engadget - Fri, 2017-09-22 17:03
Tesla plans to roll out more electric supercharging stations this year, especially in big cities, which should double the size of its network. But even with more places to juice up your Tesla, it still takes far longer to refill an EV than gassing up...

Hope you weren't waiting for Intel's Project Alloy headset - CNET

CNET News - Fri, 2017-09-22 16:56
Intel has canceled its ambitious standalone VR headgear.