Trust the World's Fastest VPN with Your Internet Security & Freedom - A Lifetime Subscription of PureVPN at 88% off. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. ×
Communications

T-Mobile Promises Big LTE Boost From 5GHz Wi-Fi Frequencies (arstechnica.com) 63

"T-Mobile USA is ready to deploy a new LTE technology over the same 5GHz frequencies used by Wi-Fi following U.S. government approval of the first 'LTE-U' devices," reports Ars Technica. "The Federal Communications Commission today authorized the first LTE-U (LTE for unlicensed spectrum) devices after a controversial process designed to ensure that cellular network use of the 5GHz band won't interfere with Wi-Fi networks." From the report: LTE-U will help T-Mobile achieve its goal of offering gigabit LTE speeds, the carrier said. Verizon Wireless is also planning to use LTE-U. The company said in September that it is "eager to deploy" the technology and developed an equipment testing plan, but it's not clear when a Verizon deployment will happen. Cellular carriers in the US generally hold exclusive licenses to spectrum, while Wi-Fi operates in unlicensed frequencies. Anyone can operate in unlicensed spectrum without an FCC license as long as they use certified radio equipment and comply with power limits and other technical requirements. The plan to bring LTE to unlicensed Wi-Fi spectrum set off an industry fight. LTE-U deployment plans drew opposition in 2015 from cable companies and the Wi-Fi Alliance, an industry group that certifies equipment to make sure it doesn't interfere with other Wi-Fi equipment. Industry groups worked together to develop a "Coexistence Test Plan" to prevent interference, and the Wi-Fi Alliance said it's satisfied with the result even though the new testing is voluntary rather than required by the FCC.
Verizon

Verizon To Begin 5G User Trials in 11 Markets by Middle of Year (bloomberg.com) 35

Verizon will test faster fifth-generation (5G) mobile broadband service in 11 markets in the first half of this year as the nation's largest wireless carrier tries to take the lead in the 5G race. From a report on Bloomberg: Working with equipment partners including Ericsson and Samsung, Verizon will beam 5G signals to a test group of homes and businesses in Ann Arbor, Michigan; Atlanta; Bernardsville, New Jersey; Brockton, Massachusetts; Dallas; Denver; Houston; Miami; Sacramento, California; Seattle; and Washington, D.C., according to a statement released as part of Mobile World Congress, which starts this week in Barcelona. While 5G service isn't expected to be commercially available until 2020, Verizon and its closest rival, AT&T, are bringing the technology out of the lab and into the hands of actual users to spur development.
United States

US Homeland Security Employees Locked Out of Computer Networks (reuters.com) 121

Dustin Volz, reporting for Reuters: Some U.S. Department of Homeland Security employees in the Washington area and Philadelphia were unable to access some agency computer networks on Tuesday, according to three sources familiar with the matter. It was not clear how widespread the issue was or how significantly it affected daily functions at DHS, a large government agency whose responsibilities include immigration services, border security and cyber defense. In a statement, a DHS official confirmed a network outage that temporarily affected four U.S. Citizenship and Immigration Services (USCIS) facilities in the Washington area due to an "expired DHS certificate." Reuters first reported the incident earlier Tuesday, which a source familiar with the matter said also affected a USCIS facility in Philadelphia. Employees began experiencing problems logging into networks Tuesday morning due to a problem related to domain controllers, or servers that process authentication requests, which could not validate personal identity verification (PIV) cards used by federal workers and contractors to access certain information systems, according to the source.
Google

Google Releases Open Source File Sharing Project 'Upspin' On GitHub (betanews.com) 54

BrianFagioli quotes a report from BetaNews: Today, Google unveiled yet another way to share files. Called "Upspin," the open source project aims to make sharing easier for home users. With that said, the project does not seem particularly easy to set up or maintain. For example, it uses Unix-like directories and email addresses for permissions. While it may make sense to Google engineers, I am dubious that it will ever be widely used. "Upspin looks a bit like a global file system, but its real contribution is a set of interfaces, protocols, and components from which an information management system can be built, with properties such as security and access control suited to a modern, networked world. Upspin is not an "app" or a web service, but rather a suite of software components, intended to run in the network and on devices connected to it, that together provide a secure, modern information storage and sharing network," says Google. The search giant adds: "Upsin is a layer of infrastructure that other software and services can build on to facilitate secure access and sharing. This is an open source contribution, not a Google product. We have not yet integrated with the Key Transparency server, though we expect to eventually, and for now use a similar technique of securely publishing all key updates. File storage is inherently an archival medium without forward secrecy; loss of the user's encryption keys implies loss of content, though we do provide for key rotation."
Privacy

GlobalSign Supports Billions of Device Identities In an Effort To Secure the IoT (globalsign.com) 27

Reader broknstrngz writes: GlobalSign, a WebTrust certified CA and identity services provider, has released its high volume managed PKI platform, taking a stab at the current authentication and security weaknesses in the IoT. The new service aims to commodify large scale rapid enrollment and identity management for large federated swarms of devices such as IP cameras, smart home appliances and consumer electronics, core and customer premises network equipment in an attempt to reduce the attack surface exploitable by IoT DDoS botnets such as Mirai.

Strong device identity models are developed in partnership with TPM and hardware cryptographic providers such as Infineon and Intrinsic ID, as well as other Trusted Computing Group members.

Communications

Gemalto Launches eSIM Technology for Windows 10 Devices (business-standard.com) 47

An anonymous reader shares a report: Global digital security firm Gemalto on Tuesday announced it will make available its on-demand connectivity and eSIM technology for Microsoft's Windows 10 devices. The eSIM is designed to be remotely provisioned by mobile network operators with subscription information and is globally interoperable across all carriers, device makers and technology providers implementing the specification. Gemalto's On-Demand Connectivity solution gives service providers the capability to deliver a seamless customer experience for connecting consumer and industrial devices. "eSIM technology remains an important investment for Microsoft as we look to create even more mobile computing opportunities," said Roanne Sones, General Manager (Strategy and Ecosystem), Microsoft.
Privacy

Krebs: 'Men Who Sent SWAT Team, Heroin to My Home Sentenced' (krebsonsecurity.com) 206

An anonymous reader quotes KrebsOnSecurity: On Thursday, a Ukrainian man who hatched a plan in 2013 to send heroin to my home and then call the cops when the drugs arrived was sentenced to 41 months in prison for unrelated cybercrime charges. Separately, a 19-year-old American who admitted to being part of a hacker group that sent a heavily-armed police force to my home in 2013 was sentenced to three years probation.

Sergey Vovnenko, a.k.a. "Fly," "Flycracker" and "MUXACC1," pleaded guilty last year to aggravated identity theft and conspiracy to commit wire fraud. Prosecutors said Vovnenko operated a network of more than 13,000 hacked computers, using them to harvest credit card numbers and other sensitive information... A judge in New Jersey sentenced Vovnenko to 41 months in prison, three years of supervised released and ordered him to pay restitution of $83,368.

Separately, a judge in Washington, D.C. handed down a sentence of three year's probation to Eric Taylor, a hacker probably better known by his handle "Cosmo the God." Taylor was among several men involved in making a false report to my local police department at the time about a supposed hostage situation at our Virginia home. In response, a heavily-armed police force surrounded my home and put me in handcuffs at gunpoint before the police realized it was all a dangerous hoax known as "swatting"... Taylor and his co-conspirators were able to dox so many celebrities and public officials because they hacked a Russian identity theft service called ssndob[dot]ru. That service in turn relied upon compromised user accounts at data broker giant LexisNexis to pull personal and financial data on millions of Americans.

Security

RSA Conference Attendees Get Hacked (esecurityplanet.com) 53

The RSA Conference "is perhaps the world's largest security event, but that doesn't mean that it's necessarily a secure event," reports eSecurityPlanet. Scanning the conference floor revealed rogue access points posing as known and trusted networks, according to security testing vendor Pwnie Express. storagedude writes: What's worse, several attendees fell for these dummy Wi-Fi services that spoof well-known brands like Starbucks. The company also found a number of access points using outdated WEP encryption. So much for security pros...
At least two people stayed connected to a rogue network for more than a day, according to the article, and Pownie Express is reminding these security pros that connecting to a rogue network means "the attacker has full control of all information going into and out of the device, and can deploy various tools to modify or monitor the victim's communication."
Toys

German Government Tells Parents: Destroy This WiFi-Connected Doll (theverge.com) 139

It's illegal in Germany now to sell a talking doll named "My Friend Cayla," according to a story shared by Slashdot reader Bruce66423. And that's just the beginning. The Verge reports: A German government watchdog has ordered parents to "destroy" an internet-connected doll for fear it could be used as a surveillance device. According to a report from BBC News, the German Federal Network Agency said the doll (which contains a microphone and speaker) was equivalent to a "concealed transmitting device" and therefore prohibited under German telecom law... In December last year, privacy advocates said the toy recorded kids' conversations without proper consent, violating the Children's Online Privacy Protection Act.

Cayla uses a microphone to listen to questions, sending this audio over Wi-Fi to a third-party company that converts it to text. This is then used to search the internet, allowing the doll to answer basic questions, like "What's a baby kangaroo called?" as well as play games. In addition to privacy concerns over data collection, security researchers found that Cayla can be easily hacked. The doll's insecure Bluetooth connection can be compromised, letting a third party record audio via the toy, or even speak to children using its voice.

The Electronic Privacy Information Center has said toys like this "subject young children to ongoing surveillance...without any meaningful data protection standards." One researcher pointed out that the doll was accessible from up to 33 feet away -- even through walls -- using a bluetooth-enabled device.
The Courts

SAP License Fees Also Due For Indirect Users, Court Rules (networkworld.com) 123

SAP's licensing fees "apply even to related applications that only offer users indirect visibility of SAP data," according to a Thursday ruling by a U.K. judge. Slashdot reader ahbond quotes Network World: The consequences could be far-reaching for businesses that have integrated their customer-facing systems with an SAP database, potentially leaving them liable for license fees for every customer that accesses their online store. "If any SAP systems are being indirectly triggered, even if incidentally, and from anywhere in the world, then there are uncategorized and unpriced costs stacking up in the background," warned Robin Fry, a director at software licensing consultancy Cerno Professional Services, who has been following the case...

What's in dispute was whether the SAP PI license fee alone is sufficient to allow Diageo's sales staff and customers to access the SAP data store via the Salesforce apps, or whether, as SAP claims, those staff and customers had to be named as users and a corresponding license fee paid. On Thursday, the judge sided with SAP on that question.

Transportation

GM Plans To Build, Test Thousands of Self-Driving Bolts In 2018 (reuters.com) 79

An anonymous reader quotes a report from Reuters: General Motors Co plans to deploy thousands of self-driving electric cars in test fleets in partnership with ride-sharing affiliate Lyft Inc, beginning in 2018, two sources familiar with the automaker's plans said this week. It is expected to be the largest such test of fully autonomous vehicles by any major automaker before 2020, when several companies have said they plan to begin building and deploying such vehicles in higher volumes. Most of the specially equipped versions of the Chevrolet Bolt electric vehicle will be used by San Francisco-based Lyft, which will test them in its ride-sharing fleet in several states, one of the sources said. GM has no immediate plans to sell the Bolt AV to individual customers, according to the source. In a statement on Friday, GM said: "We do not provide specific details on potential future products or technology rollout plans. We have said that our AV technology will appear in an on-demand ride sharing network application sooner than you might think."
The Courts

Your Personal Facebook Live Videos Can Legally End Up on TV (thememo.com) 142

Kitty Knowles, reporting for the Memo: Think you control what happens to your personal videos? Think again. One father who live-streamed his partner's labour on Facebook last May, has found out the hard way: he saw the birth of his son replayed on Good Morning America and numerous other media outlets. This week, he lost a high-profile court battle against the broadcasters. If you don't want this to happen to you, don't make the same mistakes. It's one thing wanting to share a life-changing moment with friends and family. But most would understand why Kali Kanongataa didn't want his child's birth aired for all to see. That hasn't however, stopped a US judge throwing out Kanongataa's copyright infringement case against the likes of the ABC, Yahoo, and Rodale, the company that publishes Women's Health. Apparently, the father-to-be realised his film was streaming publicly on social media about 30 minutes into recording, but decided to leave it that way. Media outlets broadcasting the clips have defended doing so on the terms of "fair use." Legally, "fair use" means that when pictures or videos are the focus of a major news story, selected footage can be used.Heads up, Facebook will soon release a video app for set-top boxes by Apple and Amazon to broadcast Live videos on the big screen.
AT&T

AT&T Is the Latest Carrier To Offer Unlimited Data For All Its Customers (phonedog.com) 62

Earlier this week, Verizon announced it is bringing back unlimited data plans after years of selling capped data packages. Now, ATT will be doing the same. ATT will let any current or potential customer buy an unlimited data plan. Until now, only DirecTV customers were able to purchase unlimited data from the carrier. PhoneDog reports: ATT says that starting tomorrow, February 17, its Unlimited Plan will be available to all customers. The plan will include unlimited data, talk, and text, and customers with the plan will also be able to travel to Canada or Mexico and use their plan just as they would at home, with zero roaming charges. ATT's Unlimited Plan also includes Stream Saver, which will optimize video streams to 480p. However, Stream Saver can be disabled if you'd like. One feature that's missing from ATT's Unlimited Plan is mobile hotspot usage, which is notable because the unlimited plans from the other three major U.S. carriers do include some mobile hotspot. Finally, it's worth noting that after 22GB of usage, ATT Unlimited Plan customers may have their speeds slowed during times of network congestion. This policy is also in place at the other three major U.S. carriers, with Verizon's threshold being 22GB, Sprint's 23GB, and T-Mobile's 26GB. A single line on the ATT Unlimited Plan will cost $100 per month. Each additional line will cost $40, but ATT will offer the fourth line free, making the cost for a family of four $180 per month.
Censorship

CloudFlare Puts Pirate Sites on New IP Addresses, Avoids Cogent Blockade (torrentfreak.com) 88

Earlier this month, several users worldwide reported that they were unable to access pirate websites including the Pirate Bay. It was because the internet backbone network of Cogent Communications had blackholed the CloudFlare IP-address of pirate websites. Less than a week later, CloudFlare is fighting back. From a report on TorrentFreak: The Pirate Bay and dozens of other pirate sites that were blocked by Cogent's Internet backbone are now accessible again. CloudFlare appears to have moved the sites in question to a new pair of IP-addresses, effectively bypassing Cogent's blackhole. [...] As of yesterday, the sites in question have been assigned the IP-addresses 104.31.16.3 and 104.31.17.3, still grouped together. Most, if not all of the sites, are blocked by court order in the UK so this is presumably done to prevent ISP overblocking of 'regular' CloudFlare subscribers.
Businesses

Check Your Privacy Filters: Facebook Wants To Be the New LinkedIn (cnet.com) 85

From a report on CNET: Facebook isn't just for wasting time in the office. It can now help you find a new job entirely. The social network has unveiled a Jobs page, which allows businesses to list all kinds of work for you to find. You can even apply for the job and make contact with recruiters directly through Facebook. This could be seen as a challenge to competing services such as LinkedIn, the recruiting network acquired by Microsoft last December. But while LinkedIn is entirely focused on business, Facebook's social aspects could make it easier for potential employers to trawl your profile for details of your personal life.
Businesses

Elon Musk Is Really Boring (bloomberg.com) 225

Sometimes it is hard to tell if Elon Musk is serious about the things he says. But as for his "boring" claims, that's really happening. In a wide-range interview with Bloomberg, the billionaire talked more about his new venture, The Boring Company. The idea began on a Saturday morning a few weeks ago when Musk tweeted, "Traffic is driving me nuts. Am going to build a tunnel boring machine and just start digging..." Over the course of next few hours later, Musk added, "It shall be called 'The Boring Company,' Boring, it's what we do. I am actually going to do this. Excerpts from the story: And so, around noon on a Friday in January, an excavation crew started digging. "I was like, 'Hey, what's the biggest hole we can make by Sunday evening?'" Musk says. [...] "My other idea was to call it Tunnels R Us and to essentially troll Toys "R" Us into filing a lawsuit," he says, letting out a loud and well-articulated ha-ha-ha-ha. "Now we've decided to troll AT&T instead! We're going to call it American Tubes and Tunnels." When I ask him if the tunnel venture will be a subsidiary of SpaceX or an independent company, he responds cryptically. "Don't you read my Twitter? The Boring Company. Or TBC. To Be Continued." An aide chimes in: Yes, the Boring Company, aka To Be Continued, aka Tunnels R Us, aka American Tubes and Tunnels, aka whatever, will indeed be an independent company. Tunnel technology is older than rockets, and boring speeds are pretty much what they were 50 years ago. Musk says he hopes to build a much faster tunneling machine and use it to dig thousands of miles, eventually creating a vast underground network that includes as many as 30 levels of tunnels for cars and high-speed trains such as the Hyperloop. Musk chose the SpaceX parking lot as the site of his first dig, mostly because it was convenient and he could legally do so without city permits. The plan is to expand the current hole into a ramp designed for a large tunnel boring machine and then start digging horizontally once the machine is 50 feet or so below ground, which would make it low enough to clear gas and sewer lines and to be undetectable at the surface. 100 marks to Bloomberg for the headline, and the story which is as funny as it is insightful.
Transportation

Nearly 56,000 Bridges Called Structurally Deficient (usatoday.com) 243

schwit1 quotes a report from USA Today: Nearly 56,000 bridges nationwide, which vehicles cross 185 million times a day, are structurally deficient, a bridge construction group announced Wednesday. The list is based on Transportation Department data. The department scores bridges on a nine-point scale, and while the deficient ones might not be imminently unsafe, they are classified in need of attention. More than one in four bridges (173,919) are at least 50 years old and have never had major reconstruction work, according to the ARTBA analysis. State transportation officials have identified 13,000 bridges along interstates that need replacement, widening or major reconstruction, according to the group. "America's highway network is woefully underperforming," said Alison Premo Black, the group's chief economics who conducted the analysis. "It is outdated, overused, underfunded and in desperate need of modernization." The five states with the most deficient bridges are Iowa with 4,968, Pennsylvania with 4,506, Oklahoma with 3,460, Missouri with 3,195 and Nebraska with 2,361. The eight states where at least 15% of the bridges are deficient are: Rhode Island at 25%, Pennsylvania at 21%, Iowa and South Dakota at 20%, West Virginia at 17%, and Nebraska, North Dakota and Oklahoma at 15%.
Network

Now Get Weather Alerts Even When Your Mobile Networks Are Down, Thanks To IBM's Mesh Networking (cnet.com) 75

Communicating news of severe weather events or natural disasters is something mobile phones are well suited to, but if there's limited or disrupted network coverage the message may fail to get through. But not anymore. From a CNET report: A new Weather Channel app, though, can get the message through even during earthquakes, tornadoes, and terrorist attacks when mobile networks can be overwhelmed and may not work. The Android app, geared specifically for developing countries, uses IBM-developed technology called mesh networking that sends messages directly from one phone to another. The result is that information can propagate even when centralized networks fail. Using Bluetooth and Wi-Fi networks, the app can send data from phone to phone across distances between 200 to 500 feet, IBM Research staff member Nirmit Desai said. It doesn't add any more battery burden than an ordinary app, and the mesh network can be used without having to reconfigure the phone's network settings.
Blackberry

BlackBerry Files Patent-Infringement Suit Against Nokia (bloombergquint.com) 53

An anonymous reader writes: BlackBerry has filed a patent-infringement lawsuit against Nokia, demanding royalties on the Finnish company's mobile network products that use an industrywide technology standard. Nokia's products including its Flexi Multiradio base stations, radio network controllers and Liquid Radio software are using technology covered by as many as 11 patents, BlackBerry said in a complaint filed in federal court in Wilmington, Delaware. The mobile network products and services are provided to companies including T-Mobile and AT&T for their LTE networks, BlackBerry said in the complaint. "Nokia has persisted in encouraging the use" of the standard- compliant products without a license from BlackBerry, it said.
Facebook

Facebook is Bringing Its Social Network To TV, Video App Announced For Apple's and Amazon's Set-Top Boxes (recode.net) 21

Facebook is making perhaps its biggest push yet to turn the social network into a destination for watching video with a new Facebook Video app for smart TVs. From a report on Recode: The social network on Tuesday announced a new app for set-top boxes, including Apple TV, Amazon Fire TV and the Samsung Smart TV. The app will let you watch the same kinds of video you can already find on Facebook, but (presumably) on a much larger screen. Dan Rose, Facebook's VP of Partnerships, announced the new app at the Code Media conference at the Ritz-Carlton in Dana Point, Calif. The new app, which will launch "soon," gives Facebook yet another way to reach consumers interested in videos and, most likely, another platform to sell video ads.

Slashdot Top Deals