Day: June 6, 2018

EFAIL: PGP and S/MIME (encrypted email) are no longer safe

Posted on by Robin Edgar

EFAIL describes vulnerabilities in the end-to-end encryption technologies OpenPGP and S/MIME that leak the plaintext of encrypted emails. Email is a plaintext communication medium whose communication paths are partly protected by TLS (TLS). For people in hostile environments (journalists, political activists, whistleblowers, …) who depend on the confidentiality of digital communication, this may not be Read more about EFAIL: PGP and S/MIME (encrypted email) are no longer safe[…]

Uh oh! Here’s yet more AI that creates creepy fake talking heads

Posted on by Robin Edgar

Video Machine-learning experts have built a neural network that can manipulate facial movements in videos to create fake footage – in which people appear to say something they never actually said. It could be used to create convincing yet faked announcements and confessions seemingly uttered by the rich and powerful as well as the average Read more about Uh oh! Here’s yet more AI that creates creepy fake talking heads[…]

AI learns to copy human gaming behaviour by watching Youtube

Posted on by Robin Edgar

Deep reinforcement learning methods traditionally struggle with tasks where environment rewards are particularly sparse. One successful method of guiding exploration in these domains is to imitate trajectories provided by a human demonstrator. However, these demonstrations are typically collected under artificial conditions, i.e. with access to the agent’s exact environment setup and the demonstrator’s action and Read more about AI learns to copy human gaming behaviour by watching Youtube[…]

AI better than dermatologists at detecting skin cancer, study finds

Posted on by Robin Edgar

or the first time, new research suggests artificial intelligence may be better than highly-trained humans at detecting skin cancer. A study conducted by an international team of researchers pitted experienced dermatologists against a machine learning system, known as a deep learning convolutional neural network, or CNN, to see which was more effective at detecting malignant Read more about AI better than dermatologists at detecting skin cancer, study finds[…]

AI can tell who you are by your gait using only floor sensors

Posted on by Robin Edgar

Human footsteps can provide a unique behavioural pattern for robust biometric systems. We propose spatio-temporal footstep representations from floor-only sensor data in advanced computational models for automatic biometric verification. Our models deliver an artificial intelligence capable of effectively differentiating the fine-grained variability of footsteps between legitimate users (clients) and impostor users of the biometric system. Read more about AI can tell who you are by your gait using only floor sensors[…]

Robots fight weeds in challenge to agrochemical giants

Posted on by Robin Edgar

In a field of sugar beet in Switzerland, a solar-powered robot that looks like a table on wheels scans the rows of crops with its camera, identifies weeds and zaps them with jets of blue liquid from its mechanical tentacles. Undergoing final tests before the liquid is replaced with weedkiller, the Swiss robot is one Read more about Robots fight weeds in challenge to agrochemical giants[…]

Epyc fail? We can defeat AMD’s virtual machine encryption, say boffins

Posted on by Robin Edgar

German researchers reckon they have devised a method to thwart the security mechanisms AMD’s Epyc server chips use to automatically encrypt virtual machines in memory. So much so, they said they can exfiltrate plaintext data from an encrypted guest via a hijacked hypervisor and simple HTTP or HTTPS requests. […] a technique dubbed SEVered can, Read more about Epyc fail? We can defeat AMD’s virtual machine encryption, say boffins[…]

You know that silly fear about Alexa recording everything and leaking it online? It just happened

Posted on by Robin Edgar

It’s time to break out your “Alexa, I Told You So” banners – because a Portland, Oregon, couple received a phone call from one of the husband’s employees earlier this month, telling them she had just received a recording of them talking privately in their home. “Unplug your Alexa devices right now,” the staffer told Read more about You know that silly fear about Alexa recording everything and leaking it online? It just happened[…]

Over 900,000 personal records of South Africans leaked online

Posted on by Robin Edgar

Barely a year after South Africa’s largest data leak was revealed in 2017, the country has suffered yet another data leak as 934,000 personal records of South Africans have been leaked publicly online. The data includes, among others, national identity numbers (ID numbers), e-mail addresses, full names, as well as plain text passwords to what Read more about Over 900,000 personal records of South Africans leaked online[…]

Using generative models to make dental crowns better than humans can

Posted on by Robin Edgar

Computer vision has advanced significantly that many discriminative approaches such as object recognition are now widely used in real applications. We present another exciting development that utilizes generative models for the mass customization of medical products such as dental crowns. In the dental industry, it takes a technician years of training to design synthetic crowns Read more about Using generative models to make dental crowns better than humans can[…]

Spectre comes back to haunt Processor Makers Confirm New Security Flaws, So Update Now

Posted on by Robin Edgar

Intel is finally confirming that its computer processors are vulnerable to an additional variant of Spectre, the nasty security vulnerability that affects nearly every CPU currently in devices and in the marketplace. German computing magazine C’t first reported the additional flaws, which can be exploited in a browser setting using a runtime (think Javascript), on Read more about Spectre comes back to haunt Processor Makers Confirm New Security Flaws, So Update Now[…]

Google sued for ‘clandestine tracking’ of 4.4m UK iPhone users’ browsing data

Posted on by Robin Edgar

Google is being sued in the high court for as much as £3.2bn for the alleged “clandestine tracking and collation” of personal information from 4.4 million iPhone users in the UK. The collective action is being led by former Which? director Richard Lloyd over claims Google bypassed the privacy settings of Apple’s Safari browser on Read more about Google sued for ‘clandestine tracking’ of 4.4m UK iPhone users’ browsing data[…]

Memory Transferred between Snails using RNA, Challenging Standard Theory of How the Brain Remembers

Posted on by Robin Edgar

UCLA neuroscientists reported Monday that they have transferred a memory from one animal to another via injections of RNA, a startling result that challenges the widely held view of where and how memories are stored in the brain. The finding from the lab of David Glanzman hints at the potential for new RNA-based treatments to Read more about Memory Transferred between Snails using RNA, Challenging Standard Theory of How the Brain Remembers[…]

Teensafe spying app leaked thousands of user passwords

Posted on by Robin Edgar

At least one server used by an app for parents to monitor their teenagers’ phone activity has leaked tens of thousands of accounts of both parents and children. The mobile app, TeenSafe, bills itself as a “secure” monitoring app for iOS and Android, which lets parents view their child’s text messages and location, monitor who Read more about Teensafe spying app leaked thousands of user passwords[…]

Google Removes ‘Don’t Be Evil’ Clause From Its Code of Conduct

Posted on by Robin Edgar

Google’s unofficial motto has long been the simple phrase “don’t be evil.” But that’s over, according to the code of conduct that Google distributes to its employees. The phrase was removed sometime in late April or early May, archives hosted by the Wayback Machine show. “Don’t be evil” has been part of the company’s corporate Read more about Google Removes ‘Don’t Be Evil’ Clause From Its Code of Conduct[…]

Tracking Firm LocationSmart Leaked Location Data for Customers of All Major U.S. Mobile Carriers Without Consent in Real Time Via Its Web Site

Posted on by Robin Edgar

LocationSmart, a U.S. based company that acts as an aggregator of real-time data about the precise location of mobile phone devices, has been leaking this information to anyone via a buggy component of its Web site — without the need for any password or other form of authentication or authorization — KrebsOnSecurity has learned. The Read more about Tracking Firm LocationSmart Leaked Location Data for Customers of All Major U.S. Mobile Carriers Without Consent in Real Time Via Its Web Site[…]

Seriously, Cisco? Another hard-coded password? Sheesh

Posted on by Robin Edgar

Cisco’s issued 16 patches, the silliest of which is CVE-2018-0222 because it’s a hard-coded password in Switchzilla’s Digital Network Architecture (DNA) Center. “The vulnerability is due to the presence of undocumented, static user credentials for the default administrative account for the affected software,” Cisco’s admitted. As you’d expect, “An attacker could exploit this vulnerability by Read more about Seriously, Cisco? Another hard-coded password? Sheesh[…]

Entire Nest ecosystem of smart home devices goes offline

Posted on by Robin Edgar

For at least a few hours overnight, owners of Nest products were unable to access their devices via the Nest app or web browsers, according to Nest Support on Twitter. Other devices like Nest Secure and Nest x Yale Locks behaved erratically. The as of yet unexplained issues affected the entire lineup of Nest devices, Read more about Entire Nest ecosystem of smart home devices goes offline[…]