Feed aggregator

Dropbox Files To Go Public

Slashdot -

Ten years after its launch, Dropbox has filed to go public. The cloud storage company has been around since 2007 and has raised more than $600 million in funding. TechCrunch reports: We knew that it had already filed confidentially, but the company has now unveiled its filing, meaning the actual IPO is likely very soon, probably late March. The company says it will be targeting a $500 million fundraise, but this number is usually just a placeholder. The filing shows that Dropbox had $1.1 billion in revenue last year. This compares to $845 million in revenue the year before and $604 million for 2015. The company is not yet profitable, having lost nearly $112 million last year. This shows significantly improved margins when compared to losses of $210 million for 2016 and $326 million for 2015. Dropbox has been cash flow positive since 2016.

Read more of this story at Slashdot.

Tesla Will Supply Free Charging Stations To Office Parking Lots

Slashdot -

Tesla has unveiled a new "workplace charging" program today, which offers businesses free Tesla wall connectors and will also cover installation, provided they meet certain qualifications set forth by the California carmaker. "Tesla won't cover the cost of operating the charging stations, and the company says there could be other permitting, construction, zoning, or labor costs," reports The Verge. From the report: The workplace charging stations will be compatible with all Tesla cars, but not with other EVs, and they won't show up on publicly available Tesla charging maps. The wall chargers are 240 volts, or "Level 2," which is capable of topping off a battery pack in a handful of hours, though the company says the charge rate will vary by location depending on the infrastructure available.

Read more of this story at Slashdot.

How a Fight Over Star Wars Download Codes Could Reshape Copyright Law

Slashdot -

An anonymous reader quotes a report from Ars Technica: A federal judge in California has rejected Disney's effort to stop Redbox from reselling download codes of popular Disney titles like Frozen, Beauty and the Beast, and the latest Star Wars movies. Judge Dean Pregerson's Tuesday ruling invoked the little-used doctrine of copyright misuse, which holds that a copyright holder loses the right to enforce a copyright if the copyright is being abused. Pregerson faulted Disney for tying digital download codes to physical ownership of discs, a practice that he argued ran afoul of copyright's first sale doctrine, which guarantees customers the right to resell used DVDs. If the ruling were upheld on appeal, it would have sweeping implications. It could potentially force Hollywood studios to stop bundling digital download codes with physical DVDs and force video game companies to rethink their own practices. But James Grimmelmann, a copyright scholar at Cornell Law School, is skeptical that the ruling will survive an inevitable appeal from Disney. "I don't see this one sticking," Grimmelmann told Ars. Copyright misuse has such sweeping legal implications that an appeals court will be reluctant to apply it to a common movie industry practice.

Read more of this story at Slashdot.

Apple Devices At California Repair Center Keep Calling 911

Slashdot -

Since October 2017, Apple has made around 1,600 false alarm 911 calls from a distribution site in Elk Grove. "We've been seeing these calls for the last four months from Apple," said police dispatcher Jamie Hudson. "We're able to see quickly where the call is coming from, so when we get one from Apple, the address will come up with their location." CBS Sacramento reports: On average, Elk Grove Police say they've received 20 accidental 911 calls a day from Apple, roughly 1,600 calls since October. Hudson says the calls take valuable seconds away from calls that could be real life-and-death emergencies. "The times when it's greatly impacting us is when we have other emergencies happening and we may have a dispatcher on another 911 call that may have to put that call on hold to triage the incoming call," he said. The calls are all coming from an Apple repair and refurbishing center off Laguna Boulevard. The Sacramento County Sheriff's Department Communication Center is also getting these calls -- 47 since January 1. Dispatchers there say they sometimes hear technicians working in the background. Apple hasn't confirmed which of their devices is actually causing these calls: the iPhone or Apple watch, but both devices can be triggered easily. With just a touch of a button, SOS comes on and 911 is called.

Read more of this story at Slashdot.

The College Board Pushes To Make Computer Science a High School Graduation Requirement

Slashdot -

theodp writes: Education Week reports that the College Board wants high schools to make it mandatory for students to take computer science before they graduate. The call came as the College Board touted the astonishing growth in its Advanced Placement (AP) computer science courses, which was attributed to the success of its new AP Computer Science Principles (AP CSP) class, a "lite" alternative to the Java-based AP CS A course. "The College Board is willing to invest serious resources in making this viable -- much more so than is in our economic interest to do so," said College Board President David Coleman. "To governors, legislators, to others -- if you will help us make this part of the life of schools, we will help fund it." Just two days before Coleman's funds-for-compulsory-CS offer, Education Week cast a skeptical eye at the tech sector's role in creating a tremendous surge of enthusiasm for K-12 CS education. Last spring, The College Board struck a partnership with the Chan Zuckerberg Initiative with a goal of making AP CSP available in every U.S. school district. Also contributing to the success of the College Board's high school AP CS programs over the years has been tech-bankrolled Code.org, as well as tech giants Microsoft and Google. The idea of a national computer programming language requirement for high school students was prominently floated in a Google-curated Q&A session with President Obama (video) following the 2013 State of the Union address.

Read more of this story at Slashdot.

SUNY math professor makes the case for free and open educational resources (Opensource.com)

LWN Headlines -

Opensource.com looks at the availability of open educational resources (OERs), where to find them, and what the advantages of OERs are. Math and computer science professor David Usinski is a strong advocate for OERs and was interviewed for the article. "The ability to customize the curriculum is one of David's favorite benefits of OER. 'The intangible aspect is that OER has allowed me to reinvent my curriculum and take ownership of the content. With a textbook, I am locked into the chapter-by-chapter approach by one or two authors,' he says. Because of OER 'I am no longer hindered or confined by published materials and now have the flexibility to create the curriculum that truly addresses the course outcomes.' By freely sharing the content he creates, other instructors can also benefit."

Uiterwijk: Fedora package delivery security

LWN Headlines -

On his blog, Patrick Uiterwijk writes about about Fedora packaging and how the distribution works to ensure its users get valid updates. Packages are signed, but repository metadata is not (yet), but there are other mechanisms in place to keep users from getting outdated updates (or to not get important security updates). "However, when a significant security issue is announced and we have repositories that include fixes for this issue, we have an 'Emergency' button. When we press that button, we tell our servers to immediately regard every older repomd.xml checksum as outdated. This means that when we press this button, every mirror that does not have the very latest repository data will be regarded as outdated, so that our users get the security patches as soon as possible. This does mean that for a period of time only the master mirrors are trusted until other mirrors sync their data, but we prefer this solution over delaying getting important fixes out to our users and making them vulnerable to attackers in the meantime."

'Critical' T-Mobile Bug Allowed Hackers To Hijack Users' Accounts

Slashdot -

An anonymous reader quotes a report from Motherboard: The vulnerability was found and reported by a security researcher on December 19 of last year, but it hasn't been revealed until now. Within a day, T-Mobile classified it as "critical," patched the bug, and gave the researcher a $5,000 reward. That's good news, but it's unclear how long the site was vulnerable and whether any malicious hackers found and exploited the bug before it was fixed. The newly disclosed bug allowed hackers to log into T-Mobile's account website as any customer. "It's literally like logging into your account and then stepping away from the keyboard and letting the attacker sit down," Scott Helme, a security researcher who reviewed the bug report, told Motherboard in an online chat. Shortly after we published this story, a T-Mobile spokesperson sent us a statement: "This bug was confidentially reported through our Bug Bounty program in December and fixed within a matter of hours," the emailed statement read. "We found no evidence of customer information being compromised."

Read more of this story at Slashdot.

Facebook's Mandatory Anti-Malware Scan Is Invasive and Lacks Transparency

Slashdot -

Louise Matsakis, writing for Wired: The internet is full of Facebook users frustrated with how the company handles malware threats. For nearly four years, people have complained about Facebook's anti-malware scan on forums, Twitter, Reddit, and on personal blogs. The problems appear to have gotten worse recently. While the service used to be optional, Facebook now requires it if it flags your device for malware. And according to screenshots reviewed by WIRED from people recently prompted to run the scan, Facebook also no longer allows every user to select what type of device they're on. The malware scans likely only impact a relatively small population of Facebook's billions of users, some of whose computers may genuinely be infected. But even a fraction of Facebook's users still potentially means millions of impacted people. The mandatory scan has caused widespread confusion and frustration; WIRED spoke to people who had been locked out of their accounts by the scan, or simply baffled by it, on four different continents. The mandatory malware scan has downsides beyond losing account access. Facebook users also frequently report that the feature is poorly designed, and inconsistently implemented. In some cases, if a different user logs onto Facebook from the same device, they sometimes won't be greeted with the malware message. Similarly, if the "infected" user simply switches browsers, the message also appears to occasionally go away.

Read more of this story at Slashdot.

Manafort Left an Incriminating Paper Trail Because He Couldn't Figure Out How to Convert PDFs to Word Files

Slashdot -

There are two types of people in this world: those who know how to convert PDFs into Word documents and those who are indicted for money laundering. Former Trump campaign chairman Paul Manafort is the second kind of person , Slate reports. From the report: Back in October, a grand jury indictment charged Manafort and his business associate Rick Gates with a variety of crimes, including conspiring "to defraud the United States." On Thursday, special counsel Robert Mueller filed a new indictment against the pair, substantially expanding the charges. As one former federal prosecutor told the Washington Post, Manafort and Gates' methods appear to have been "extensive and bold and greedy with a capital 'G,' but ... not all that sophisticated." One new detail from the indictment, however, points to just how unsophisticated Manafort seems to have been. Here's the relevant passage from the indictment. I've bolded the most important bits: Manafort and Gates made numerous false and fraudulent representations to secure the loans. For example, Manafort provided the bank with doctored [profit and loss statements] for [Davis Manafort Inc.] for both 2015 and 2016, overstating its income by millions of dollars. The doctored 2015 DMI P&L submitted to Lender D was the same false statement previously submitted to Lender C, which overstated DMI's income by more than $4 million. The doctored 2016 DMI P&L was inflated by Manafort by more than $3.5 million. To create the false 2016 P&L, on or about October 21, 2016, Manafort emailed Gates a .pdf version of the real 2016 DMI P&L, which showed a loss of more than $600,000. Gates converted that .pdf into a "Word" document so that it could be edited, which Gates sent back to Manafort. Manafort altered that "Word" document by adding more than $3.5 million in income. He then sent this falsified P&L to Gates and asked that the "Word" document be converted back to a .pdf, which Gates did and returned to Manafort. Manafort then sent the falsified 2016 DMI P&L .pdf to Lender D. So here's the essence of what went wrong for Manafort and Gates, according to Mueller's investigation: Manafort allegedly wanted to falsify his company's income, but he couldn't figure out how to edit the PDF.

Read more of this story at Slashdot.

From 1999 To 2016, America Lost 11.4 Million People From the Workforce

Slashdot -

Andrew Van Dam, writing for the Washington Post: Where did all the jobs go? Well, we're finally starting to find some satisfactory answers to the granddaddy of all economic questions. The share of Americans with jobs dropped 4.5 percentage points from 1999 to 2016 -- amounting to about 11.4 million fewer workers in 2016. At least half of that decline probably was due to an aging population. Explaining the remainder has been the inspiration for much of the economic research published after the Great Recession.

Read more of this story at Slashdot.

Airlines Won't Dare Use the Fastest Way to Board Planes

Slashdot -

An anonymous reader writes: You've arrived at the airport early. You have already selected the perfect seat. You've employed all possible tricks for making the check-in and security processes zoom by. But there's still some blood-pressure-raising chaos you can't avoid: boarding. From impatient fellow travelers who are determined to beat you onto the plane to passengers who insist on jamming their too-big carry-ons into overhead bins, making your way to your seat can be straight-up hellish -- and Wired's Alex Davies offers up a cheery explanation of why the situation is unlikely to improve any time soon. It's not that airlines aren't trying. In fact, United is in the middle of a months-long test at LAX that involves splitting its five groups of passengers into two lines, instead of five, to see whether that will make boarding less painful. But there are some basic measures that airlines could be taking to speed things up -- offering free baggage check, for instance, or cutting down on early boarding perks -- if they weren't so worried about their bottom lines. "The question for the airlines, then, is not how to get everyone onto a plane as quickly as possible," Davies writes. "It's how to get everyone onto a plane as quickly as possible while still charging them extra for bags, doting on the regular customers, and maintaining the system that, like all class structures, serves whoever built it."

Read more of this story at Slashdot.

The 'Loudness' of Our Thoughts Affects How We Judge External Sounds

Slashdot -

The "loudness" of our thoughts -- or how we imagine saying something -- influences how we judge the loudness of real, external sounds, a team of researchers from NYU Shanghai and NYU has found. From a report: Its study, titled "Imagined Speech Influences Perceived Loudness of Sound" and published in the journal Nature Human Behaviour, offers new insights into the nature of brain activity. The research project was conducted by Tian Xing and Bai Fan from NYU Shanghai with, David Poeppel and Teng Xiangbin from NYU, and Ding Nai from Zhejiang University. "Our 'thoughts' are silent to others -- but not to ourselves, in our own heads -- so the loudness in our thoughts influences the loudness of what we hear," says Poeppel, a professor of psychology and neural science. Using an imagery-perception repetition paradigm, the team found that auditory imagery will decrease the sensitivity of actual loudness perception, with support from both behavioural loudness ratings and human electrophysiological (EEG and MEG) results.

Read more of this story at Slashdot.

Supreme Court Declines To Broaden Whistleblower Protections

Slashdot -

The U.S. Supreme Court this week refused to broaden protections for corporate insiders who call out misconduct, ruling they must take claims of wrongdoing to the Securities and Exchange Commission in order to be shielded against retaliation. From a report: The justices ruled 9-0 in favor of Digital Realty Trust, throwing out a lawsuit brought against the California-based real estate trust by a fired former employee who had reported alleged wrongdoing only internally and not to the SEC. The 2010 Wall Street reform law known as the Dodd-Frank Act is unambiguous in offering no protection from retaliation such as firing or demotion to employees who report claims of securities law violations only in-house, the court ruled.

Read more of this story at Slashdot.

More Than 40% of Global Log-in Attempts Are Malicious

Slashdot -

More than 40% of global log-in attempts are malicious thanks to bot-driven credential stuffing attacks, according to the latest report from Akamai. From a report: The cloud delivery provider's latest State of the Internet/Security report for Q4 2017 comprised analysis from over 7.3 trillion bot requests per month. It claimed that such requests account for over 30% of all web traffic across its platform per day, excluding video streaming. However, malicious activity has seen a sharp increase, as cyber-criminals look to switch botnets from DDoS attacks to using stolen credentials to try to access online accounts. Of the 17 billion login requests Akamai tracked in November and December, over two-fifths (43%) were used for credential abuse. The figure rose to a staggering 82% for the hospitality industry.

Read more of this story at Slashdot.

Soderbergh's Thriller Shot on iPhone Premieres in Berlin

Slashdot -

Director Steven Soderbergh said this week he so enjoyed making his psychological thriller "Unsane" on an iPhone, he would find it hard to go back to conventional filmmaking. From a report: "Unsane", which premieres at the Berlin film festival, was shot over just two weeks - way shorter than the months a movie usually takes. It tells the story of Sawyer Valentini, who moves to a new city to escape her stalker David but finds herself admitted to a mental health institution where he works.

Read more of this story at Slashdot.

OpenBSD Releases Meltdown Patch

Slashdot -

OpenBSD's Meltdown patch has landed, in the form of a Version 11 code update that separates user memory pages from the kernel's -- pretty much the same approach as was taken in the Linux kernel. From a report: A few days after the Meltdown/Spectre bugs emerged in January, OpenBSD's Phillip Guenther responded to user concerns with a post saying the operating system's developers were working out what to do. Now he's revealed the approach used to fix the free OS: "When a syscall, trap, or interrupt takes a CPU from userspace to kernel the trampoline code switches page tables, switches stacks to the thread's real kernel stack, then copies over the necessary bits from the trampoline stack. On return to userspace the opposite occurs: recreate the iretq frame on the trampoline stack, switch stack, switch page tables, and return to userspace." That explanation is somewhat obscure to non-developers, but there's a more readable discussion of what the project's developers had in mind from January, here.

Read more of this story at Slashdot.

Matt Grasmick: Stranger in a familiar land: Comparing the novice's first impression of Drupal to other PHP frameworks

Drupal Planet -

Drupal 8 adoption is flagging. Why? I tried to lay my biases and assumptions aside and set out to find the answer. What I found suprised me.

I decided to perform an experiment. Placing myself (as much as possible) in the shoes of a senior developer without any Drupal experience, I attempted to get a new "Hello World" site up and running in four different PHP frameworks: Wordpress, Laravel, Symfony, and Drupal.

I set a few ground rules for myself:

  • Start at square 1. Google "Drupal" (or Wordpress, etc.).
  • Use only information found organically via my Google search and subsequent clicks.
  • Take the path of least resistance. In other words, choose the easy way when more than one option exists.
  • Avoid the command line when possible.
Measurements:
  • Time required.
  • Number of clicks in web browser.
  • Number of CLI commands run.

I do not claim that this…

more

Security updates for Friday

LWN Headlines -

Security updates have been issued by Debian (cups, gcc-6, irssi, kernel, and squid3), Fedora (mupdf), Mageia (irssi, mpv, qpdf, and quagga), openSUSE (libmad and postgresql95), SUSE (kernel and php5), and Ubuntu (kernel, linux-lts-trusty, linux-raspi2, and wavpack).

Pages

Subscribe to Heydon Consulting aggregator