lundi 31 décembre 2018

Windows 10 bug could allow files to be overwritten, researcher shows

A security researcher has released proof-of-concept code for a zero-day exploit in Windows 10. The bug was revealed by SandboxEscaper, a researcher who has exposed Windows vulnerabilities in the past. The latest bug makes it possible to overwrite files with arbitrary data, and while there are numerous criteria that must be met in order for the vulnerability to be exploited, it is still potentially serious. SandboxEscaper warned Microsoft about the problem on Christmas day, before publishing the PoC a couple of days later. See also: Microsoft issues emergency patch to fix serious Internet Explorer zero-day vulnerability Microsoft announces Windows Sandbox,… [Continue Reading]


dimanche 30 décembre 2018

Microsoft tries to put lipstick on a pig with Chinese 'Year of the Pig' Windows 10 theme

Tomorrow is New Year's Eve in America (and other countries that use the Gregorian calendar), meaning many people will be out partying with friends and family. Me? I like to stay in and watch Dick Clark's New Year's Rockin' Eve on TV while eating some tasty snacks and drinking Perrier. True, the television broadcast is not as good since Mr. Clark died, and Ryan Seacrest is insufferable, but I am a creature of habit, I suppose. In China and other parts of the world, the Lunar New Year is followed instead, with the holiday often happening in January or February.… [Continue Reading]


Europe to fund bug bounties for 15 open source programs, including VLC, Drupal and Notepad++

Starting in January, the European Commission is going to fund bug bounty programs for a number of open source projects that are used by members of the EU. The initiative is part of the third edition of the Free and Open Source Software Audit (FOSSA) project, which aims to ensure the integrity and reliability of the internet and other infrastructure. In all, the Commission will fund 15 bug bounty programs, with rewards ranging from €17,000 ($19,400) to €90,000 ($103,000). See also: Microsoft confirms plans to use open source Chromium to develop Edge Facebook API bug may have exposed 6.8 million… [Continue Reading]


Major US newspapers hit by cyberattack, disrupting printing and distribution

A number of major US newspapers -- including the Los Angeles Times, Chicago Tribune, Wall Street Journal and New York Times -- have been hit by a cyberattack that is said to originate from another country. Malware was first detected on Thursday by Tribune Publishing, the owner of some of the affected titles, but unsuccessful attempts at quarantining meant that there was disruption well into Saturday. The Department of Homeland Security is currently investigating the incident which is not thought to have exposed any personal customer details. See also:  Marriott's Starwood Hotel database hacked, putting 500 million customers at risk… [Continue Reading]


samedi 29 décembre 2018

4 critical steps to building an IoT network

The biggest mistake often made in building an IoT network for the first time is in underestimating the complexity of IoT network design, operation and management -- and believing that legacy network technologies and engagement models will support the requirements of large-scale IoT deployments. Building an IoT network is not as easy as it sounds and the process of building your own tends to break down when confronted with massive scale. What may seem to be an easy task of deploying gateways and managing device provisioning and connectivity quickly becomes challenging with respect to scaled site and network operations. Some… [Continue Reading]


Google rolls out spam protection to Android Messages

Spam may be something that's most commonly associated with email, but it's also something that blights text messaging. Google is trying to do something about the problem with a spam protection feature for Messages on Android. This is a feature we learned about earlier in the year, and it is now starting to roll out to handsets. In order for the feature to work, "some" information about the messages you receive needs to be sent to Google -- something that it sure to raise a few eyebrows (and hackles) among the privacy-centric. See also: Google Assistant uses AI to predict… [Continue Reading]


vendredi 28 décembre 2018

Grado Labs GW100 wireless headphones [Review]

When I first opened the box containing the Grado Labs GW100 headphones, one word came to mind: "Cheap". The cans didn't look or feel like the classy Grado RS1i and RS1e, which I once owned, or the GS1000e that are still beloved and possessed. But after connecting to Google Pixel 2 XL (and later the 3 XL), via Bluetooth, I exclaimed: "Priceless". The first offering in the company's "Wireless Series" rises to an audiophile class unmatched by most competing cans; I prefer the GW100 to the GS1000e, which cost four times more to buy. Four words best describe the experience listening… [Continue Reading]


Mozilla Labs is back!

The popularity of software betas and the Windows Insider program show that people are keen to get their hands on things earlier. There is a certain delight in tinkering with experimental tools, utilities and apps, and if this is the sort of thing that excites you, you'll be pleased to hear that Mozilla has brought Mozilla Labs back from the dead with a new site. Not seen for a number of years, Mozilla Labs used to be home to experimental Firefox projects. Now, the relaunched version is home to more, including Project Things, Spoke, Hubs and more -- Firefox is… [Continue Reading]


The Best Windows 10 apps of 2018

Three-hundred-and-fifteen in a series. 2018 was an eventful year for Microsoft, the Windows Store, and applications for Windows 10. In this year's end part of the series, we will look back at apps and games released for Windows 10 in 2018. The list is a personal selection as always; if you think an app or game is missing let me and everyone else know about it in the comment section below. Discounts this week The following list is a selection of the best deals. Make sure you check out the Store for all offers. Some apps are discounted for more… [Continue Reading]


jeudi 27 décembre 2018

Canonical shares the Top 10 Linux Snaps of 2018 -- Spotify, Slack, Plex, VLC, and more!

As 2018 comes to a close, I find myself doing much reflecting. Linux consumes much of my thinking, and sadly, this was not the year that it overtakes Windows on the desktop. You know what, though? Windows 10 was an absolute disaster this year, while the Linux-based Chrome OS has slowly become more and more mature. Other desktop Linux distributions, such as Ubuntu, Mint and Fedora, continue to get better, and Android remains the undisputed king of mobile. As we all know, Linux powers many servers around the globe too. So yeah, maybe it isn't the year of the Linux… [Continue Reading]


Instagram accidentally rolls out new horizontally scrolling feed to much confusion

Instagram users around the world were briefly thrown into a mixture of confusion, delight and anger today when timelines switched to a new horizontal scrolling mode. Greeted by a message that Instragram was "Introducing a New Way to Move Through Posts", users found that they could now tap to scroll through their feed horizontally. This is something that Instagram is known to have been testing for a little while now, but it seems that today's rollout was entirely accidental -- albeit one that gave a tantalizing glimpse into the future. The company has now reverted feeds to the familiar verticals… [Continue Reading]


The elements of cybersecurity hygiene and secure networks -- Part 2

The blackhat hackers are evolving as quickly as technology is. To protect their sensitive information, companies can put documents in a public cloud. Why the public cloud? While it might seem that public cloud solutions are less reliable than traditional IT platforms, the reality is that they’re actually more secure. With the cloud, a company’s security team is able to monitor network audit logs more closely to detect any abnormalities. Furthermore, audit data can be easily centralized without having to navigate through inconvenient firewall interfaces and other closed proprietary systems. These components are essential for improving security procedures. The public… [Continue Reading]


Here's what 2019 holds for Paint.NET

As 2018 draws to a close, it's a time not only for looking back over what the past year has offered, but also for looking forward to the new year and what's on the horizon. There's certainly a lot to look forward to in terms of hardware in 2019, but there's also a great deal on the software front. The developer of the popular image editing tool Paint.NET, Rick Brewster, has shared his vision of what the coming year holds for his software. The 2019 roadmap for Paint.NET is an exciting one, promising migration to .NET Core, support for brushes… [Continue Reading]


mercredi 26 décembre 2018

Android Pie now rolling out to OnePlus 5 and OnePlus 5T

OnePlus is well known for many things, including building up massive hype around its (generally) powerful and (relatively) cheap handsets. But one of the reasons many people choose the company is that it has always been quick at rolling out Android updates to newer handsets -- and it has a great track record for supporting its phones for much longer than its rivals do with their handsets. The company may well be concerned about shifting its latest models, but owners of previous generations have not been forgotten when it comes to Android Pie. The latest version of Android is already… [Continue Reading]


Amazon sold a lot of stuff during the holidays... again

Shopping at physical retail stores is insufferable these days. Have you been to a Walmart lately? Not only is it a soul-crushing experience all year, but during the holidays in November and December, it becomes particularly hell-like. Kids running around screaming, people sneezing and coughing without covering their mouths, plus generally dirty and disorganized aisles and shelves. It's gross. It gets better at stores like Target and Kohl's, but still, being around fellow humans can be an exercise in frustration. Thank goodness for online shopping. As is typical, many people around the world turned to the web to buy Christmas… [Continue Reading]


mardi 25 décembre 2018

LibreELEC 9.0 Beta 1 Linux distro (based on Kodi 18 'Leia' RC3) now available

Kodi is an excellent open source media player, allowing the user to have an immersive experience with both music and video. While the software gets a bad reputation due to people using it for piracy, many folks only use it for legal media consumption. As more and more illegal Kodi add-on maintainers face legal trouble, and streaming services like Netflix and Hulu remain competitively priced, fewer folks may seek pirated content. In fact, the LibreELEC developers claim the "Kodi piracy scene continues to decline." Not familiar with LibreELEC? Please know it is a Linux distribution that exists solely to run… [Continue Reading]


lundi 24 décembre 2018

Tripp Lite Isobar surge protectors finally get USB charging

When building a PC, people typically focus on the usual things — CPU, RAM, PSU, and such. For whatever reason, builders often overlook a crucial component — a surge protector. I mean, look, if you are going to drop a ton of money on a computer and monitor, shouldn’t you protect them with a reliable surge protector/power strip? If you want a truly excellent such product, look no further than Tripp Lite. The company’s surge protectors are very well regarded for their durability and top build quality. It’s “Isobar” models in particular are considered by many to be top of… [Continue Reading]