News

JBoss Cache 'NonManagedConnectionFactory.java' Local Information Disclosure Vulnerability

Pligg CMS 'status' Parameter SQL Injection Vulnerability

Hugh Pickens writes writes "Yoni Appelbaum reports in the Atlantic that as part of their coursework in a class that studies historical hoaxes, undergraduates at George Mason University successfully fooled Wikipedia's community of editors, launching a Wikipedia page detailing the exploits of a fictitious 19th-century serial killer named Joe Scafe. The students, enrolled in T. Mills Kelly's course, Lying About the Past, used newspaper databases to identify four actual women murdered in New York City from 1895 to 1897, along with victims of broadly similar crimes, and created Wikipedia articles for the victims, carefully following the rules of the site. But while a similar page created previously by Kelly's students went undetected for years, when students posted the story to Reddit, it took just twenty-six minutes for a redditor to call foul, noting the Wikipedia entries' recent vintage and others were quick to pile on, deconstructing the entire tale. Why did the hoaxes succeed in 2008 on Wikipedia and not in 2012 on Reddit? According to Appelbaum, the answer lies in the structure of the Internet's various communities. 'Wikipedia has a weak community, but centralizes the exchange of information. It has a small number of extremely active editors, but participation is declining, and most users feel little ownership of the content. And although everyone views the same information, edits take place on a separate page, and discussions of reliability on another, insulating ordinary users from any doubts that might be expressed,' writes Appelbaum. 'Reddit, by contrast, builds its strong community around the centralized exchange of information. Discussion isn't a separate activity but the sine qua non of the site. If there's a simple lesson in all of this, it's that hoaxes tend to thrive in communities which exhibit high levels of trust. But on the Internet, where identities are malleable and uncertain, we all might be well advised to err on the side of skepticism (PDF).""

Read more of this story at Slashdot.

Fluffeh writes "A recent study of over 1,000 folks for a paper published in Nature Climate Change has found that the average US citizen is inclined to pay a premium to ensure that by 2035, 80% of US power comes from clean energy. At random, respondents received one of three "technological treatments" or definitions of clean energy that included renewable energy sources alone, renewable sources plus natural gas, and renewable sources plus nuclear power. Delving into the socioeconomics, researchers found that Republicans, Independents, and respondents with no party allegiance were less likely by 25, 13 and 25 percentage points respectively to support a NCES than respondents that identified themselves as Democrats."

Read more of this story at Slashdot.

coondoggie writes "NASA continues to get a better handle on the asteroids buzzing around in space saying today that there are roughly 4,700 potentially hazardous asteroids, or as NASA calls them PHAs. NASA says these PHAs are a subset of a larger group of near-Earth asteroids but have the closest orbits to Earth's – passing within five million miles (or about eight million kilometers) and are big enough to survive passing through Earth's atmosphere and cause damage on a regional, or greater, scale."

Read more of this story at Slashdot.

Hugh Pickens writes "No two subway systems have the same design. New York City's haphazard rail system differs markedly from the highly organized Moscow Metro, or the tangled spaghetti of Tokyo's subway network. Now BBC reports that a study analyzing 14 subway networks around the world has discovered that the distribution of stations within each of the subway networks, as well as common proportions of the numbers of lines, stations, and total distances seem to converge over time to a similar structure regardless of where the networks were, when they were begun, or how quickly they reached their current layout. 'Although these (networks) might appear to be planned in some centralized manner, it is our contention here that subway systems like many other features of city systems evolve and self-organize themselves as the product of a stream of rational but usually uncoordinated decisions taking place through time,' write the study authors. The researchers uncovered three simple features that make subway system topologies similar all around the world. First, subway networks can be divided into a core and branches, like a spider with many legs. The 'core' typically sits beneath the city's center, and its stations usually form a ring shape. Second, the branches tend to be about twice as long as the width of the core. The wider the core, the longer the branches. Last, an average of 20 percent of the stations in the core link two or more subway lines, allowing people to make transfers. 'The apparent convergence towards a unique network shape in the temporal limit suggests the existence of dominant, universal mechanisms governing the evolution of these structures.'"

Read more of this story at Slashdot.

Qedward writes "The Metropolitan Police has rolled out a mobile device data extraction system to allow officers to extract data 'within minutes' from suspects' phones while they are in custody. 'Ostensibly, the system has been deployed to target phones that are suspected of having actually been used in criminal activity, although data privacy campaigners may focus on potentially wider use.'"

Read more of this story at Slashdot.

Qedward writes "The Metropolitan Police has rolled out a mobile device data extraction system to allow officers to extract data 'within minutes' from suspects' phones while they are in custody. 'Ostensibly, the system has been deployed to target phones that are suspected of having actually been used in criminal activity, although data privacy campaigners may focus on potentially wider use.'"

Read more of this story at Slashdot.

First time accepted submitter cvenky writes "The Indian Government is proposing to create an intergovernmental body 'to develop internet policies, oversee all internet standards bodies and policy organizations, negotiate internet-related treaties and sit in judgment when internet-related disputes come up.' This committee will be funded and staffed by the UN and will report to the UN General Assembly which effectively means the control of the internet passes on to World Governments directly."

Read more of this story at Slashdot.

mcleland writes "I'm not getting the bandwidth I paid for from my DSL connection. My '3mbps' fluctuates between about 2.7 during the day down to 0.1 or 0.2 in the evening according to speedtest.net. Let's assume DSL is the only viable option for broadband at my house and I can't really move right now (rural area, on north face of the mountain, no cable service, very poor cell coverage). This was discussed 6 years ago, but I'd like to see if there are any current thoughts on whether I'm just stuck or if there is some way to make the ISP hold up its end."

Read more of this story at Slashdot.

astroengine writes "Scientists have found superflares more than 1 million times more powerful than flares generated by the sun occurring on sun-like stars being studied by NASA's Kepler space telescope. The finding, culled from 120 days of observations of 83,000 stars, is the first to detail how often and how energetic flares on other stars can be. The discovery, however, raises a question about how the massive outbursts, believed to be caused by complex magnetic interactions, can physically occur."

Read more of this story at Slashdot.

FlashPeak SlimBrowser TITLE Denial Of Service Vulnerability

CVE-2012-2334 Vulnerabilities related to malformed Powerpoint files in OpenOffice.org 3.3.0

CVE-2012-2149 OpenOffice.org memory overwrite vulnerability

CVE-2012-1149 OpenOffice.org integer overflow error in vclmi.dll module when allocating memory for an embedded image object

itwbennett writes "Geek advocate Wil Wheaton has written a blog post on the (legal) usefulness of BitTorrent, saying that the speed of his recent download of Ubuntu 12.04 should serve as a reminder that BitTorrent fills an important niche. Wheaton compares blocking BitTorrent to closing freeways because bank robbers could get away."

Read more of this story at Slashdot.

gollum123 writes "As with past technological threats, network executives are closing ranks against a Dish Network device that undermines the broadcast business model. The disruptive technology at hand is an ad-eraser, embedded in new digital video recorders sold by Charles W. Ergen's Dish Network, one of the nation's top distributors of TV programming. Turn it on, and all the ads recorded on most prime-time network shows are automatically skipped, no channel-flipping or fast-forwarding necessary. Some reviewers have already called the feature, called the Auto Hop, a dream come true for consumers. But for broadcasters and advertisers, it is an attack on an entrenched television business model, and it must be strangled, lest it spread elsewhere."

Read more of this story at Slashdot.

First time accepted submitter Maow writes "Despite a recent story claiming that Canada's Bill C-30, covering internet surveillance, has died a 'lonely' death, the minister responsible claims otherwise. 'Public Safety Minister Vic Toews is denying reports that the Harper government intends to quietly shelve its controversial online surveillance bill, C-30.' Speaking to reporters on Wednesday morning, Toews insisted the legislation was moving ahead. He has previously stated this is the bill that you either support, 'or you stand with the child pornographers.'"

Read more of this story at Slashdot.

TheGift73 writes in with news about an over-the-counter HIV test getting the backing of a panel of FDA experts. "American consumers may soon be able to test themselves for the virus that causes AIDS in the privacy of their own homes, after a panel of experts on Tuesday recommended approval of the first rapid, over-the-counter HIV test. The 17 members of the Food and Drug Administration advisory panel voted unanimously that the benefits of the OraQuick HIV test outweigh its potential risks for consumers. While the test, which uses a mouth swab to return a result in 20 minutes, does not appear to be as accurate as professionally-administered diagnostics, panelists said it could provide an important way to expand HIV testing. The FDA will make its final decision on whether to approve the product later this year, weighing the opinion of the panel."

Read more of this story at Slashdot.

afabbro writes "Verizon mentioned in an investor conference that it will be eliminating unlimited data plans, even for those it grandfathered in. From the article: 'Speaking at the J.P Morgan Technology Media and Telecom conference today, Verizon Communications CFO Fran Shammo told investors that the company's 3G unlimited data plans that customers were allowed to hang onto last year when Verizon switched to a tiered offering will soon go away entirely. Instead, the company will migrate its existing and new 4G LTE customers to a new "data share plan." The company has yet to announce the details of this new plan, but it has said previously that the data share plan will be introduced in midsummer. The plan will allow people on the same family plan to share buckets of data each month, much like they share voice minutes and text messaging. It will also allow individuals to share data across different 4G LTE devices. '"

Read more of this story at Slashdot.