Government

Trump Cancels Singapore Summit With North Korean Leader Kim Jong Un (cnbc.com) 1

President Donald Trump has cancelled his much anticipated meeting with North Korean leader Kim Jong Un that was scheduled to take place in Singapore on June 12, he announced moments ago. In a letter to Kim, the president said; "I was very much looking forward to being there with you. Sadly, based on the tremendous anger an open hostility displayed in your most recent statement, I feel it is inappropriate, at this time to have this long-planned meeting. Therefore, please let this letter to serve to represent that the Singapore summit, for the good of both parties, but to the detriment of the world, will not take place." He added, "You talk about your nuclear capabilities, but ours are so massive and powerful that I pray to God they will never have to be used."
Crime

Gamers Involved In Fatal Wichita 'Swatting' Indicted On Federal Charges (kansas.com) 64

bricko shares a report from Kansas: A federal grand jury has indicted the man accused in Wichita's fatal swatting as well as the two gamers involved in the video game dispute that prompted the false emergency call. The 29-page indictment was unsealed Wednesday in U.S. District Court for the District of Kansas. It charges 25-year-old Tyler Barriss, who is facing state court charges including involuntary manslaughter, with false information and hoaxes, cyberstalking, threatening to kill another or damage property by fire, interstate threats, conspiracy and several counts of wire fraud, according to federal court records. One of the gamers -- 18-year-old Casey S. Viner of North College Hill, Ohio -- is charged with several counts of wire fraud, conspiracy, obstruction of justice and conspiracy to obstruct justice. The other gamer -- 19-year-old Shane M. Gaskill of Wichita -- is charged with several counts of obstruction of justice, wire fraud and conspiracy to obstruct justice.
Space

Ariane Chief Seems Frustrated With SpaceX For Driving Down Launch Costs (arstechnica.com) 75

schwit1 shares a report from Ars Technica: Like United Launch Alliance, the [France-based] Ariane Group faces pricing pressure from SpaceX, which offers launch prices as low as $62 million for its Falcon 9 rocket. It has specifically developed the Ariane 6 rocket to compete with the Falcon 9 booster. But there are a couple of problems with this. Despite efforts to cut costs, the two variants of the Ariane 6 will still cost at least 25 percent more than SpaceX's present-day prices. Moreover, the Ariane 6 will not fly until 2020 at the earliest, by which time Falcon 9 could offer significantly cheaper prices on used Falcon 9 boosters if it needed to. (The Ariane 6 rocket is entirely expendable). With this background in mind, the chief executive of Ariane Group, Alain Charmeau, gave an interview to the German publication Der Spiegel. The interview was published in German, but a credible translation can be found here. During the interview, Charmeau expressed frustration with SpaceX and attributed its success to subsidized launches for the U.S. government.

When pressed on the price pressure that SpaceX has introduced into the launch market, Charmeau's central argument is that this has only been possible because, "SpaceX is charging the U.S. government 100 million dollar per launch, but launches for European customers are much cheaper." Essentially, he says, launches for the U.S. military and NASA are subsidizing SpaceX's commercial launch business. However, the pay-for-service prices that SpaceX offers to the U.S. Department of Defense for spy satellites and cargo and crew launches for NASA are below those of what other launch companies charge. And while $100 million or more for a military launch is significantly higher than a $62 million commercial launch, government contracts come with extra restrictions, reviews, and requirements that drive up this price.

Botnet

FBI Seizes Control of Russian Botnet (thedailybeast.com) 127

The Daily Beast reports that the FBI has seized control of a key server in the Kremlin's global botnet of 500,000 hacked routers. "The move positions the bureau to build a comprehensive list of victims of the attack, and short-circuits Moscow's ability to reinfect its targets," writes Kevin Poulsen. From the report: The FBI counter-operation goes after "VPN Filter," a piece of sophisticated malware linked to the same Russian hacking group, known as Fancy Bear, that breached the Democratic National Committee and the Hillary Clinton campaign during the 2016 election. On Wednesday security researchers at Cisco and Symantec separately provided new details on the malware, which has turned up in 54 countries including the United States.

VPN Filter uses known vulnerabilities to infect home office routers made by Linksys, MikroTik, NETGEAR, and TP-Link. Once in place, the malware reports back to a command-and-control infrastructure that can install purpose-built plug-ins, according to the researchers. One plug-in lets the hackers eavesdrop on the victim's Internet traffic to steal website credentials; another targets a protocol used in industrial control networks, such as those in the electric grid. A third lets the attacker cripple any or all of the infected devices at will.

The Courts

ACLU Sues ICE For License Plate Reader Contracts, Records (sfgate.com) 46

An anonymous reader quotes a report from SFGate: The American Civil Liberties Union on Wednesday sued U.S. Immigration and Customs Enforcement for records about the agency's use of license plate reader technology, after ICE apparently failed to turn over records following multiple requests. In December, ICE purchased access to two databases of ALPR data, the complaint reads. One of those databases is managed by Vigilant Solutions, which has contracts with more than two dozen Bay Area law enforcement agencies. "We believe the other is managed by Thomson Reuters," ACLU laywer Vasudha Talla said. The ACLU and other privacy advocates have expressed concern about how this data will be stored and used for civil immigration enforcement. The ACLU filed two requests under the Freedom of Information Act in March seeking records from ICE, including contracts, memos, associated communications, training materials and audit logs. Since then, ICE has not provided any records, the ACLU said in the complaint, which was filed Tuesday morning in the Northern District Court for the Northern District of California. "The excessive collection and storing of this data in databases -- which is then pooled and shared nationally -- results in a systemic monitoring that chills the exercise of constitutional rights to free speech and association, as well as essential tasks such as driving to work, picking children up from school, and grocery shopping," the complaint said. "We have essentially two concerns: one that is general to ALPR databases, and one that's specific to this situation with ICE," Talla said. "The ACLU has done a lot of work around surveillance technology and ALPR, and we're generally concerned about the aggregation of all this data about license plates paired with a time and location, stretching back for so many months and years."
Piracy

Singapore ISPs Block 53 Pirate Sites Following MPAA Legal Action (torrentfreak.com) 40

53 piracy websites, including The Pirate Bay and KickassTorrents, have been blocked in Singapore following the most sweeping action taken by copyright holders in the country in more than a decade. From a report: A new wave of blocks announced this week are the country's most significant so far, with dozens of 'pirate' sites targeted following a successful application by the MPAA earlier this year. [...] "In Singapore, these sites are responsible for a major portion of copyright infringement of films and television shows," an MPAA spokesman told The Straits Times. "This action by rights ïowners is necessary to protectï the creative industry, enabling creators to create and keep their jobs, protect their works, and ensure the continued provision of high-quality content to audienceïsï."
Facebook

Facebook Asks British Users To Submit Their Nudes as Protection Against Revenge Porn (betanews.com) 259

Mark Wilson writes: Following on from a trial in Australia, Facebook is rolling out anti-revenge porn measures to the UK. In order that it can protect British users from failing victim to revenge porn, the social network is asking them to send in naked photos of themselves. The basic premise of the idea is: send us nudes, and we'll stop others from seeing them .
Government

US Government Can't Get Controversial Kaspersky Lab Software Off Its Networks (thedailybeast.com) 108

The law says American agencies must eliminate the use of Kaspersky Lab software by October. But U.S. officials say that's impossible as the security suite is embedded too deep in our infrastructure, The Daily Beast reported Wednesday. From a report: Multiple divisions of the U.S. government are confronting the reality that code written by the Moscow-based security company is embedded deep within American infrastructure, in routers, firewalls, and other hardware -- and nobody is certain how to get rid of it. "It's messy, and it's going to take way longer than a year," said one U.S. official. "Congress didn't give anyone money to replace these devices, and the budget had no wiggle-room to begin with."

At issue is a provision of the National Defense Authorization Act (NDAA) enacted last December that requires the government to fully purge itself of "any hardware, software, or services developed or provided, in whole or in part," by Kaspersky Lab. The law was a dramatic expansion of an earlier DHS directive that only outlawed "Kaspersky-branded" products. Both measures came after months of saber rattling by the U.S., which has grown increasingly anxious about Kaspersky's presence in federal networks in the wake of Russia's 2016 election interference campaign.

United States

NYC Transit Boss Unveils Sweeping 10-Year Subway Modernization Plan (nbcnewyork.com) 55

The Metropolitan Transportation Authority (MTA) on Wednesday unveiled a sweeping plan to modernize the city's subway system over the next 10 years. From a report: The proposal, which new New York City Transit President Andy Byford called "Fast Forward," centers on overhauling the mass transit network's signaling system -- some of which dates back to the early 20th century -- 30 years sooner than current Subway Action Plan.

But it won't come without a good bit of pain: sources told News 4 that Byford's plan would require entire lines to be taken out of service during overnight and weekend hours for extended periods. Byford -- who took over the task of running the city's subways and buses earlier this year -- said in an MTA meeting Wednesday that the work would be split into two five-year chunks. Over the first five years parts or all of the 4,5, 6, E, F, M, R, A, C, E and G lines would receive modern signaling systems. That would include the entirety of the Lexington Avenue line, which carries the 4, 5 and 6 trains and is the most-used mass transit line in the United States.

Social Networks

President Trump Can't Block People On Twitter, Court Rules (knightcolumbia.org) 339

Reader drunken_boxer777 writes: US District Judge Buchwald issued a 75-page ruling today clearly articulating why Donald Trump cannot block Twitter users, as it violates their First Amendment rights.

"Turning to the merits of plaintiffs' First Amendment claim, we hold that the speech in which they seek to engage is protected by the First Amendment and that the President and Scavino exert governmental control over certain aspects of the @realDonaldTrump account, including the interactive space of the tweets sent from the account. That interactive space is susceptible to analysis under the Supreme Court's forum doctrines, and is properly characterized as a designated public forum. The viewpoint-based exclusion of the individual plaintiffs from that designated public forum is proscribed by the First Amendment and cannot be justified by the President's personal First Amendment interests."
Further reading: Bloomberg.
United States

The US Military is Funding an Effort To Catch Deepfakes and Other AI Trickery (technologyreview.com) 68

The Department of Defense is funding a project that will try to determine whether the increasingly real-looking fake video and audio generated by artificial intelligence might soon be impossible to distinguish from the real thing -- even for another AI system. From a report: This summer, under a project funded by the Defense Advanced Research Projects Agency (DARPA), the world's leading digital forensics experts will gather for an AI fakery contest. They will compete to generate the most convincing AI-generated fake video, imagery, and audio -- and they will also try to develop tools that can catch these counterfeits automatically. The contest will include so-called "deepfakes," videos in which one person's face is stitched onto another person's body.

Rather predictably, the technology has already been used to generate a number of counterfeit celebrity porn videos. But the method could also be used to create a clip of a politician saying or doing something outrageous. DARPA's technologists are especially concerned about a relatively new AI technique that could make AI fakery almost impossible to spot automatically. Using what are known as generative adversarial networks, or GANs, it is possible to generate stunningly realistic artificial imagery.

Encryption

FBI Repeatedly Overstated Encryption Threat Figures To Congress, Public (techcrunch.com) 150

mi shares a report from The Washington Post (Warning: source may be paywalled; alternative source): The FBI has repeatedly provided grossly inflated statistics to Congress and the public about the extent of problems posed by encrypted cellphones, claiming investigators were locked out of nearly 7,800 devices connected to crimes last year when the correct number was much smaller, probably between 1,000 and 2,000.

Over a period of seven months, FBI Director Christopher A. Wray cited the inflated figure as the most compelling evidence for the need to address what the FBI calls "Going Dark" -- the spread of encrypted software that can block investigators' access to digital data even with a court order. "The FBI's initial assessment is that programming errors resulted in significant over-counting of mobile devices reported,'' the FBI said in a statement Tuesday. The bureau said the problem stemmed from the use of three distinct databases that led to repeated counting of phones. Tests of the methodology conducted in April 2016 failed to detect the flaw, according to people familiar with the work.

The Courts

Yelp Files New EU Complaint Against Google Over Search Dominance (ft.com) 71

Yelp has filed a complaint with the EU's antitrust watchdog against Google, arguing that the search company has abused its dominance in local search and pressuring Brussels to launch new charges against the tech giant, Financial Times reported Tuesday. From the report: European antitrust authorities fined Google $2.8B in June 2017 for favouring its own shopping service over rival offerings in its search results. Google denied wrongdoing and has appealed that decision. Now Yelp, which provides user ratings, reviews and other information about local businesses, wants Margrethe Vestager, the EU Competition Commissioner, to take action against Google for similar alleged abuse in the local search market, according to a copy of the complaint seen by the Financial Times. The move comes days after Yelp founder Jeremy Stopplelman appeared on 60 Minutes to talk about Google's search monopoly. Here's the exchange he had with reporter Steve Kroft: Jeremy Stoppelman: If I were starting out today, I would have no shot of building Yelp. That opportunity has been closed off by Google and their approach.
Steve Kroft: In what way?
Jeremy Stoppelman: Because if you provide great content in one of these categories that is lucrative to Google, and seen as potentially threatening, they will snuff you out.
Steve Kroft: What do you mean snuff you out?
Jeremy Stoppelman: They will make you disappear. They will bury you.

Businesses

Amazon Pushes Facial Recognition to Police, Prompting Outcry Over Surveillance (nytimes.com) 142

Nick Wingfield, reporting for The New York Times: In late 2016, Amazon introduced a new online service that could help identify faces and other objects in images, offering it to anyone at a low cost through its giant cloud computing division, Amazon Web Services. Not long after, it began pitching the technology to law enforcement agencies, saying the program could aid criminal investigations by recognizing suspects in photos and videos. It used a couple of early customers, like the Orlando Police Department in Florida and the Washington County Sheriff's Office in Oregon, to encourage other officials to sign up.

But now that aggressive push is putting the giant tech company at the center of an increasingly heated debate around the role of facial recognition in law enforcement. Fans of the technology see a powerful new tool for catching criminals, but detractors see an instrument of mass surveillance. On Tuesday, the American Civil Liberties Union led a group of more than two dozen civil rights organizations that asked Amazon to stop selling its image recognition system, called Rekognition, to law enforcement. The group says that the police could use it to track protesters or others whom authorities deem suspicious, rather than limiting it to people committing crimes.

United States

Trump Ignores 'Inconvenient' Security Rules To Keep Tweeting On His iPhone, Says Report (politico.com) 516

According to Politico, "President Donald Trump uses a White House cellphone that isn't equipped with sophisticated security features designed to shield his communications." The decision is "a departure from the practice of his predecessors that potentially exposes him to hacking or surveillance." From the report: The president uses at least two iPhones, according to one of the officials. The phones -- one capable only of making calls, the other equipped only with the Twitter app and preloaded with a handful of news sites -- are issued by White House Information Technology and the White House Communications Agency, an office staffed by military personnel that oversees White House telecommunications. While aides have urged the president to swap out the Twitter phone on a monthly basis, Trump has resisted their entreaties, telling them it was "too inconvenient," the same administration official said. The president has gone as long as five months without having the phone checked by security experts. It is unclear how often Trump's call-capable phones, which are essentially used as burner phones, are swapped out.
Bug

Comcast Website Bug Leaks Xfinity Customer Data (zdnet.com) 43

An anonymous reader quotes a report from ZDNet: A bug in Comcast's website used to activate Xfinity routers can return sensitive information on the company's customers. The website, used by customers to set up their home internet and cable service, can be tricked into displaying the home address where the router is located, as well as the Wi-Fi name and password. Two security researchers, Karan Saini and Ryan Stevenson, discovered the bug. Only a customer account ID and that customer's house or apartment number is needed -- even though the web form asks for a full address.

ZDNet obtained permission from two Xfinity customers to check their information. We were able to obtain their full address and zip code -- which both customers confirmed. The site returned the Wi-Fi name and password -- in plaintext -- used to connect to the network for one of the customers who uses an Xfinity router. The other customer was using his own router -- and the site didn't return the Wi-Fi network name or password.

Transportation

Boeing's Folding Wingtips Get the FAA Green Light (engadget.com) 83

Boeing received FAA approval today for its folding wingtips, which will let the planes stop at airport gates big enough to accommodate typical 777 models. "Once the 777X lands, the wingtips will rotate until they point upwards," reports Engadget. "Bloomberg notes that the plane will be the only commercial model in widespread use to have such a feature." From the report: The 777X's wingtips are so novel that U.S. regulators had to draw up new standards for them. The agency was concerned that the wingtips could cause safety issues -- some plane crashes occurred after pilots did not secure flaps on wings before takeoff. The FAA required Boeing to have several warning systems to make sure pilots won't attempt a takeoff before the wingtips are locked in the correct position. The FAA also wanted assurances that there was no way the tips would rotate during flight, and that the wings could handle winds of up to 75 miles per hour while on the ground.

The new wings are made from carbon-fiber composites that are stronger and lighter than the metal Boeing uses in other wings. That lets the company increase the wings' width by 23 feet to 235 feet, which makes flying more efficient. These are the widest wings Boeing has attached to a plane, surpassing the 747-8's 224 feet. However, it doesn't hold the record for a commercial plane: the Airbus A380 has a 262-foot-wide wing, which forced some airports to install gates specifically to accommodate it.

Security

Google and Microsoft Disclose New CPU Flaw, and the Fix Can Slow Machines Down (theverge.com) 83

An anonymous reader quotes a report from The Verge: Microsoft and Google are jointly disclosing a new CPU security vulnerability that's similar to the Meltdown and Spectre flaws that were revealed earlier this year. Labelled Speculative Store Bypass (variant 4), the latest vulnerability is a similar exploit to Spectre and exploits speculative execution that modern CPUs use. Browsers like Safari, Edge, and Chrome were all patched for Meltdown earlier this year, and Intel says "these mitigations are also applicable to variant 4 and available for consumers to use today." However, unlike Meltdown (and more similar to Spectre) this new vulnerability will also include firmware updates for CPUs that could affect performance. Intel has already delivered microcode updates for Speculative Store Bypass in beta form to OEMs, and the company expects them to be more broadly available in the coming weeks. The firmware updates will set the Speculative Store Bypass protection to off-by-default, ensuring that most people won't see negative performance impacts.

"If enabled, we've observed a performance impact of approximately 2-8 percent based on overall scores for benchmarks like SYSmark 2014 SE and SPEC integer rate on client 1 and server 2 test systems," explains Leslie Culbertson, Intel's security chief. As a result, end users (and particularly system administrators) will have to pick between security or optimal performance. The choice, like previous variants of Spectre, will come down to individual systems and servers, and the fact that this new variant appears to be less of a risk than the CPU flaws that were discovered earlier this year.

Businesses

US Treasury Secretary Calls For Google Monopoly Probe (theregister.co.uk) 86

After a 60 Minutes episode that focused on Google and its effective search monopoly, U.S. Treasury Secretary Steve Mnuchin called for large tech companies to be investigated for potential antitrust violations. Asked whether Google was abusing its market dominance as a monopoly, Mnuchin told CNBC on Monday "these are issues that the Justice Department needs to look at seriously," and argued that it was important to "look at the power they have" noting that companies like Google "have a greater and greater impact on the economy." The Register reports: Mnuchin's willingness to directly criticize Google and other tech companies and argue that they should be under investigation is just the latest sign that Washington DC is serious about digging in the market power of Big Internet. It is notable that it was 20 years ago, almost to the day, that America finally dealt with another tech antitrust problem when the Justice Department and 20 state attorneys general filed suit -- on May 18, 1998 -- against what was then the most powerful tech company in the country: Microsoft.
Communications

FCC is Hurting Consumers To Help Corporations, Mignon Clyburn Says On Exit (arstechnica.com) 97

Former Commissioner Mignon Clyburn, who left the agency this month, has taken aim at it in an interview, saying the agency has abandoned its mission to safeguard consumers and protect their privacy and speech. From her interview with ArsTechnica: "I'm an old Trekkie," Clyburn told Ars in a phone interview, while comparing the FCC's responsibility to the Star Trek fictional universe's Prime Directive. "I go back to my core, my prime directive of putting consumers first." If the FCC doesn't do all it can to bring affordable communications services to everyone in the US, "our mission will not be realized," she said. The FCC's top priority, as set out by the Communications Act, is to make sure all Americans have "affordable, efficient, and effective" access to communications services, Clyburn said. But too often, the FCC's Republican majority led by Chairman Ajit Pai is prioritizing the desires of corporations over consumers, Clyburn said. "I don't believe it's accidental that we are called regulators," she said. "Some people at the federal level try to shy away from that title. I embrace it."

Clyburn said that deregulation isn't bad in markets with robust competition, because competition itself can protect consumers. But "that is just not the case" in broadband, she said. "Let's just face it, [Internet service providers] are last-mile monopolies," she told Ars. "In an ideal world, we wouldn't need regulation. We don't live in an ideal world, all markets are not competitive, and when that is the case, that is why agencies like the FCC were constructed. We are here as a substitute for competition." Broadband regulators should strike a balance that protects consumers and promotes investment from large and small companies, she said. "If you don't regulate appropriately, things go too far one way or the other, and we either have prices that are too high or an insufficient amount of resources or applications or services to meet the needs of Americans," Clyburn said.

Slashdot Top Deals