hypnosec writes "The UK Government will be examining whether free to download apps are putting unfair pressure on kids to pay up for additional content within the game through in-app purchases. Office of Fair Trading (OFT), UK, will be carrying out the investigation of games that include 'commercially aggressive' in-app purchases after a number of cases have been reported whereby parents have incurred huge bills after their kids have spent huge amounts on in-app purchases."

An anonymous reader writes "Two hundred hackers from around the world gathered at a Miami Beach hotel Thursday and Friday for the Infiltrate Security conference, which focuses on systems hacking from the 'offensive' perspective (with slides). In a keynote address, Stephen Watt, who served two years in prison for writing the software used by his friend Alberto Gonzalez to steal millions of credit card numbers from TJX, Hannaford and other retailers, acknowledges he was a 'black hat' but denies that he was directly involved in TJX or any other specific job. Watt says his TCP sniffer logged critical data from a specified range of ports, which was then encrypted and uploaded to a remote server. Brad 'RenderMan' Haines gave a presentation on vulnerabilities of the Air Traffic Control system, including the FAA's 'NextGen' system which apparently carries forward the same weakness of unencrypted, unauthenticated location data passed between airplanes and control towers. Regarding the recent potential exploits publicized by Spanish researcher Hugo Teso, Haines says he pointed out similar to the FAA and its Canadian counterpart a year ago, but received only perfunctory response."

Last summer we followed the odd case of lawyer Charles Carreon, as he went after Matthew Inman, creator of The Oatmeal webcomic, with legal threats. Carreon had been hired by FunnyJunk, a website Inman accused of stealing his comics. Carreon demanded $20,000 in compensation for Inman's "false accusations." Inman declined, and then used the publicity to solicit over $200,000 in donations, which he gave to charity after sending Carreon photographs. Carreon dropped the suit against Inman, but the saga continued. A satirical website was set up about Carreon, which caused him to invoke the legal system again. The article documents the absurdities, which included further legal action and a song. Now, however, Carreon is reaping what he has sown; a judge has ordered him to pay over $46,000 for his role in the legal circus.

Nerval's Lobster writes "Death is Nature's way of telling you it's time to get off the Internet. But when you finally shuffle off this mortal coil, you leave something behind: all your email and other digital assets. That's a huge problem not only for the deceased — once you're on the wrong side of the Great Beyond, there's no way to delete those incriminating messages — but also any relatives who might want to access your (former) life. And it's a problem Google's seeking to solve with the new Inactive Account Manager. (In an April 11 blog posting, Google product manager Andreas Tuerk suggested that Inactive Account Manager wasn't a 'great name' for the product, but maybe the company shouldn't be so hard on itself: it's a way better name than, say, Google Death Dashboard.) Inactive Account Manager will delete your Google-related data (Gmail, etc.) after a set amount of time, or else send that data to 'trusted contacts' you set up before your untimely demise. Which raises an interesting, semi-Google-related question: What do you want to have happen to your data after you die? Give it to loved ones, or have an automated system nuke it all? Should more companies that host email and data offer plans like Inactive Account Manager?"

redletterdave writes "TechNet, the trade association representing and led by dozens of prominent technology companies including Google, Apple and Facebook, has formally come out in support of CISPA, sending a letter to the U.S. House of Representatives. The letter said: 'We commend the committee for providing liability protections to companies participating in voluntary information-sharing and applaud the committee's efforts to work with a wide range of stakeholders to address issues such as strengthening privacy protections. As the legislative process unfolds, we look forward to continuing the dialogue with you and your colleagues on further privacy protections, including discussions on the role of a civilian interface for information sharing.'" The White House won't support the bill in its current form, but they plan to work with legislators on a compromise. The current text of the bill is available online.

anderzole writes "The FDA recently gave clearance to Vital Art and Science Inc. (VAS) to market software which enables people with degenerative eye conditions such as macular degeneration and diabetic retinopathy to monitor their vision at home with their iPhone. The software, which is called myVisionTrack, isn't a replacement for regular visits to the doctor, but rather allows patients to keep tabs on their vision in between visits with eye care professionals. VAS notes that retinal diseases affect approximately 40 million individuals worldwide and 13 million in the United States. While treatments have been developed to deal with degenerative eye conditions, early diagnosis is of paramount importance — which is why the software is so important."

Peter Eckersley writes "At the EFF we were recently contacted by the organisers of the Melbourne Free University (MFU), an Australian community education group, whose website had been unreachable from a number of Australian ISPs since the 4th of April. It turns out that the IP address of MFU's virtual host has been black-holed by several Australian networks; there is suggestive but not conclusive evidence that this is a result of some sort of government request or order. It is possible that MFU and 1200 other sites that use that IP address are the victims of a block that was put in place for some other reason. Further technical analysis and commentary is in our blog post."

jfruh writes "Faced with an Apple vs. Motorola lawsuit that involves 180 claims and counterclaims across 12 patents, a judge in Florida has thrown up his hands and accused both companies of acting in bad faith. Claiming the parties' were engaged in 'obstreperous and cantankerous conduct', he said that the lawsuit was part of 'a business strategy that appears to have no end.'"

An anonymous reader writes "Mark Zuckerberg, along with other notables such as Google's Eric Schmidt, Yahoo's Marissa Mayer and Reid Hoffman, co-founder of Linkedin, has launched a new immigration reform lobbying group called FWD.us. In an editorial in the Washington Post, Zuckerberg claims that immigrants are the key to a future knowledge-based economy in a United States which currently has 'a strange immigration policy for a nation of immigrants.' As expected, they are calling for more of the controversial H-1B visas which reached their maximum limit in less than a week this year, but those aren't the only things they're looking to change."

itwbennett writes "Privacy blogger Dan Tynan opted out of data aggregator RapLeaf back in 2010 — and wrote about it. At the time, opting out seemed to work well enough. But fast forward a couple of years and ... they're baaaack. While testing a privacy service called Safe Shepherd, Tynan discovered that 'not only [is he] not opted out of RapLeaf's database, they've also gathered far more information about [him] than they had before.' And it's a pretty good bet some of the data came from Facebook apps, which is a practice that the company was slapped for in 2010 and claimed to no longer do."

Nerval's Lobster writes "T-Platforms, which manufactured the fastest supercomputer in Russia (and twenty-sixth fastest in the world), has been placed on the IT equivalent of the no-fly list. In March, the U.S. Department of Commerce's Bureau of Industry and Security added T-Platforms' businesses in Germany, Russia and Taiwan to the 'Entity List,' which includes those believed to be acting contrary to the national security or foreign policy interests of the United States. U.S. IT companies are essentially banned from doing business with T-Platforms, especially with regards to HPC hardware such as microprocessors, which could be used for what the government views as illegal purposes. The rule, discovered by HPCWire, was published in March. According to the rule, Commerce's End-User Review Committee (ERC) believes that T-Platforms may be assisting the Russian government and military conduct nuclear research — which, given historical tensions between the two countries, apparently falls outside the bounds of permitted use. An email address that T-Platforms listed for its German office bounced, and Slashdot was unable to reach executives at its Russian headquarters for comment."

retroworks writes "I ignored the warning posted here on Slashdot on March 23. Surely someone was setting up some April Fools day hoax. But the Governor has now signed the bill. Whose cold dead hands will they pry the computer mice out of?" Note: while this might not change your opinion of the Florida law or other things it might lead to, it is aimed specifically at the kind of "Internet cafe" where the "Internet" part is essentially just a portal to online gambling, rather than at conventional Internet cafes.

the simurgh writes in with the latest in the court-martial of Bradley Manning. "A military judge cleared the way Wednesday for a member of the team that raided Osama bin Laden's compound to testify at the trial of Pfc. Bradley Manning charged in the WikiLeaks massive classified document leak. Col. Denise Lind ruled for the prosecution during a court-martial pretrial hearing. Prosecutors say the witness, presumably a Navy SEAL, collected digital evidence showing that the al-Qaida leader requested and received from an associate some of the documents Manning has acknowledged leaking. Defense attorneys had argued that proof of receipt wasn't relevant to whether Manning aided the enemy, the most serious charge he faces, punishable by life imprisonment. 'The government must prove beyond a reasonable doubt that the intelligence is given to and received by the enemy,' Lind said. The judge disagreed."

The Pirate Bay switched to two Greenland-based domains Tuesday morning but it looks like the party is already over. The company responsible for .GL TLD registrations said they would not allow the domains to be put to illegal use. “Tele-Post has today decided to block access to two domains operated by file-sharing network The Pirate Bay,” the company said. According to TorrentFreak: "Queries to the .GL domain registry now confirm that both the domains in question have been officially suspended."

kodiaktau writes "The ACLU has issued a FOIA request to determine whether the IRS gets warrants before reading taxpayers' email. The request is based on the antiquated Electronic Communication Protection Act — federal agencies can and do request and read email that is over 180 days old. The IRS response can be found at the ACLU's website. The IRS asserts that it can and will continue to make warrantless requests to ISPs to track down tax evasion. Quoting: 'The documents the ACLU obtained make clear that, before Warshak, it was the policy of the IRS to read people’s email without getting a warrant. Not only that, but the IRS believed that the Fourth Amendment did not apply to email at all. A 2009 "Search Warrant Handbook" from the IRS Criminal Tax Division’s Office of Chief Counsel baldly asserts that "the Fourth Amendment does not protect communications held in electronic storage, such as email messages stored on a server, because internet users do not have a reasonable expectation of privacy in such communications." Again in 2010, a presentation by the IRS Office of Chief Counsel asserts that the "4th Amendment Does Not Protect Emails Stored on Server" and there is "No Privacy Expectation" in those emails.'"

An anonymous reader writes "In response to a Freedom of Information Act request about Google's 2007 complaint against Windows Vista search interference, the Department of Justice has after six years released 114 partially redacted pages and 60 full pages of material. Yet these 'responsive documents' consist of public news articles and email boilerplate. All the substantive information has been blacked out."

New submitter Chewbacon writes "If you can't hack it, smash and grab it. Video streaming service Vudu has emailed customers informing them of the theft of hard drives containing customer information. CNET reports the information on the stolen drives included: names, e-mail addresses, postal addresses, phone numbers, account activity, dates of birth, and the last four digits of some credit card numbers. Vudu's Chief Technology Officer Prasanna Ganesan said while no complete credit card numbers were stored on the hard drives and expressed confidence in password encryption, he felt the need to be proactive with the password reset and encouraged users to be proactive as well should the encrypted passwords become compromised. Vudu fails to mention, perhaps in a downplaying move, the last 4 digits of a credit card and much of the other information stolen is often enough to access an account through virtually any company's phone support."

netbuzz writes "The police in Washington state arrested a suspected drug dealer, rummaged through the text messages on his phone, responded to one message while pretending to be the suspect, arranged a meeting, and then arrested the recipient of the text — all without a warrant. The state argues – and an appeals court majority agreed – that both suspects had neither a legal expectation of privacy nor Fourth Amendment protection because both considerations evaporate the moment that any text message arrives on any phone. The Electronic Frontier Foundation is urging the state's Supreme Court to overturn that decision and recognize that 'text messages are the 21st Century phone call.'"

hypnosec writes with news that a group of Russian hackers has compromised the security of Ubisoft's digital distribution platform, uPlay, finding a way for users of the service to download any of its games for free. What makes this particularly notable is that the hackers found a copy of Far Cry 3: Blood Dragon, an unreleased spin-off of Far Cry 3 that hasn't even been officially announced (except as part of an April Fool's joke). The hackers posted a half-hour of gameplay footage to YouTube, and Ubisoft took uPlay down to fix the security vulnerability. They say no user information was compromised.

conspirator23 writes "A 64-year-old retired English teacher is being sued by a copyright troll for illegal BitTorrent downloading of a motion picture. Perhaps it's not all that shocking in the current era. That is, until we learn that rather than protecting something like Game of Thrones, the plaintiff is accusing Emily Orlando of Estacada, Oregon of downloading Maximum Conviction, a direct-to-video action flick released earlier this year starring Steven Segal and ex-WWE wrestler Steve Austin. Voltage Pictures is demanding $7500 from Emily and 370 other defendants. If all the defendants were to pay the demands, Voltage would gross over $2.75 million, minus legal fees. Who needs Kickstarter?" As you might expect, Mrs. Orlando had never heard of BitTorrent before receiving the legal threat, and she lives in an area with dynamic IP assignments. This is the same company who has been going after file-sharers by the thousands since 2010.