fidzu : science

Polling suggests a lot of people aren't comfortable with aspects of contact tracing.

30 Oct 2020 7:46pm GMT

Security flaw lets attackers escape sandboxes designed to contain malicious code.

30 Oct 2020 7:38pm GMT

Security researchers from Google have disclosed today a zero-day vulnerability in the Windows operating system that is currently under active exploitation. From a report: The zero-day is expected to be patched on November 10, which is the date of Microsoft's next Patch Tuesday, according to Ben Hawkes, team lead for Project Zero, Google's elite vulnerability research team. On Twitter, Hawkes said the Windows zero-day (tracked as CVE-2020-17087) was used as part of a two-punch attack, together with another a Chrome zero-day (tracked as CVE-2020-15999) that his team disclosed last week. The Chrome zero-day was used to allow attackers to run malicious code inside Chrome, while the Windows zero-day was the second part of this attack, allowing threat actors to escape Chrome's secure container and run code on the underlying operating system -- in what security experts call a sandbox escape.

Read more of this story at Slashdot.

30 Oct 2020 7:35pm GMT

iFixit: After exhaustive testing, comparing notes with multiple repair technicians, and reviewing leaked Apple training documents, we've found that the iPhone 12 camera is entirely unreliable when swapped between iPhones. This latest fault, along with indications from Apple's repair guides, makes it more clear than ever: Apple, by design or neglect or both, is making it extremely hard to repair an iPhone without their blessing. This may be a bug that Apple eventually fixes. There is even precedent for iPhone parts misbehaving when swapped between phones. But it is also possible that Apple is planning on locking out all unauthorized iPhone camera and screen repairs. Apple's internal training guides tell authorized technicians that, starting with the 12 and its variants, they will need to run Apple's proprietary, cloud-linked System Configuration app to fully repair cameras and screens. We are very concerned about this possibility.

Read more of this story at Slashdot.

30 Oct 2020 6:51pm GMT

The priciest bundle includes all Apple services at $29.95 per month.

30 Oct 2020 6:45pm GMT

Maybe you can solve this strange seismic mystery.

30 Oct 2020 6:43pm GMT

Bed Bath & Beyond's famous coupons will be more limited in the future, but won't completely disappear, executives told investors on Wednesday.

30 Oct 2020 6:23pm GMT

Facebook revealed Thursday how internal technical glitches had disrupted the delivery of some ads from the Joe Biden and Donald Trump campaigns, but said it made changes to resolve those hiccups in the run-up to the November U.S. presidential election. From a report: The social media giant's admission followed complaints from the Biden camp about how thousands of its ads had been blocked. Facebook said in a blog post it spotted "unanticipated issues" affecting both campaigns, including technical flaws that caused a number of ads to be "paused improperly." "No ad was paused or rejected by a person, or because of any partisan consideration," Facebook said in its post. "The technical problems were automated and impacted ads from across the political spectrum and both Presidential campaigns."

Read more of this story at Slashdot.

30 Oct 2020 6:11pm GMT

The equivalent of as many as 1,300 plastic grocery bags per person is landing in places such as oceans and roadways, according to a new study of U.S. plastic trash. In 2016 - the last year enough data was available and before several countries cracked down on imports of American waste - the United States generated 46.3 million tons (42 million metric tons) of plastic waste, by far the most in the world.

30 Oct 2020 6:03pm GMT