Amazon is making it a little, or a lot, harder for miscreants to make off with user accounts by adding two-factor authentication.
It has taken Amazon some time to fall into line on this. Two-factor authentication has become increasingly popular and common in the past couple of years, and it is perhaps overdue for a firm that deals so heavily in trade.
Amazon is treating it like it’s new, and is offering to hold punters’ hands as they embrace the security provision.
“Amazon Two-Step Verification adds an additional layer of security to your account. Instead of simply entering your password, Two-Step Verification requires you to enter a unique security code in addition to your password during sign in,” the firm said.
The way that the code is served depends on the user, who can choose to get the extra prompt in one of three ways. They may not appeal to those who do not like to over-share, but they will require a personal phone number.
As is frequently the case, Amazon will offer to send supplementary log-in information to a phone via text message or voice call, and even through a special authenticating app.
It’s an option, and you do not have to enable it. Amazon said that users could select trusted sign-on computers that spare them from the mobile phone contact.
“Afterward, that computer or device will only ask for your password when you sign in,” explained the Amazon introduction, helpfully.
There are a number of other outfits that offer the two-factor system and you might be advised to take their trade and do your business through them. Apple, Microsoft, Google, Twitter, Dropbox, Facebook and many others offer the feature.
A website called TwoFactorAuth will let you check your standing and the position of your providers.
A infectious banking trojan has been updated so that it supports financial mayhem on the freshly baked Windows 10 operating system and supporting Microsoft Edge browser.
Microsoft reckons that Windows 10 is installed on over 100 million machines, and this suggests prime picking for people who deploy banking trojans, not to mention the fact that most people will still be getting used to the software and its services and features.
The newest edition to the Windows 10 spectrum is a variant of the Zeus banking malware known as Dyreza. It is related to Dyre, a threat that we reported on earlier this year.
The warning at the time was that as many as one in 20 online banking users could be exposed to the threat, and things look as bad this time around. Heimdal Security said in a blog post that the malware has been strengthened in scale and capability.
“The info-stealer malware now includes support for Windows 10. This new variant can also hook to Microsoft Edge to collect data and then send it to malicious servers,” said the post.
“Moreover, the new Dyreza variant kills a series of processes linked to endpoint security software in order to make its infiltration in the system faster and more effective.”
The threat already has a footprint, and the people behind it have increased it. Heimdal said that, once Dyreza is done with your bank account, it will move you into position on a botnet. The firm estimates that this botnet is currently 80,000-strong.
“By adding support for Windows 10, the Dyreza malware creators have cleared their way to growing the number of infected PCs in their botnet. This financial trojan doesn’t only drain the infected computers of valuable data, it binds them into botnets,” said Heimdal.
Microsoft surprised the world when its new phone range failed to contain anything to interest business users – now it seems it is prepared to remedy that.
Microsoft promised that its Lumia range would cover the low end, business and enthusiast segments but while the Lumia 950 and Lumia 950 XL and Lumia 650 should cover the low-end segment as well nothing has turned up for business users.
This was odd, given that business users want phones that play nice with their networks, something that Redmond should do much better than Google or Apple.
Microsoft’s CFO Amy Hood told the UBS Global Technology Conference that business versions of the Lumia were coming. She said:
“We launched a Lumia 950 and a 950 XL. They’re premium products, at the premium end of the market, made for Windows fans. And we’ll have a business phone, as well.”
There were no details, but we have been hearing rumours of a Surface phone being sighted on benchmarks. It was thought that his would be a Microsoft flagship, but with the launch of the Lumia 950/950 XL, it is possible that this Surface phone could be aimed at the business user. The word Surface matches nicely with Microsoft’s Surface Pro branding.
With Android and iOS controlling most of the mobile operating system market, it’s tough going for alternatives like Sailfish, now in survival mode as its maker, Jolla, moves to lay off a large part of its workers.
The first smartphone with the Linux-based OS shipped at the end of 2013. Adoption of Sailfish has been weak, however, and Jolla is selling only one smartphone model, via the company’s website, for about $303. It’s a Jolla-branded phone, made by a third-party contract manufacturer. A tablet is also available for preorder.
Jolla is restructuring debt in its home country, Finland, after a round of funding fell through. The company announced Friday that it will lay off “a big part” of its staff, without giving many details of future plans. The company did say it would be tailoring the OS to fit the needs of different clients, and that it has several “major and smaller potential clients.” It also said Sailfish is stable and ready for licensing.
For analysts, Jolla’s collapse wasn’t a surprise. In a copycat market, Sailfish offers cool customization features, for example. But it doesn’t have the backing of device makers or carriers, which is crucial for survival.
The China market was a big focus for Jolla, but Xiaomi took the country by storm with end-to-end offerings including OS, user interface and hardware, along with the creation of a developer ecosystem, said Carolina Milanesi, chief of research and head of Kantar Worldpanel ComTech.
Many alternative mobile OSes like Ubuntu, Firefox, WebOS, Blackberry and others are in the same boat as Sailfish, trying to find a niche in a market ruled by Apple and Google. The biggest competitor to Android and iOS is Microsoft’s Windows Phone, which had just a 1.7 percent market share in mobile handsets, with 5.87 million units shipping during the third quarter this year, according to Gartner.
A Gartner analyst said Windows Phone could find adopters in the enterprise market. But Jolla doesn’t have the resources of Microsoft, of course, and this raises questions about the future of Sailfish.
At the beginning of the year IBM announced Identity Mixer, a new technology for protecting users’ personal data during authentication. On Friday, it announced that the technology is now available to developers on its Bluemix cloud platform.
It’s common for apps to require that users prove their identity and other credentials, but all too often that authentication process exposes a raft of unnecessary and potentially sensitive personal information along the way.
To access an online streaming-movie service’s app, for example, users might have to prove that they have a paid subscription and are over 18 years old. Traditionally, that would mean revealing their full date of birth along with assorted other personal details that aren’t necessary for the proof, such as first and last name, address, etc.
When a breach happens, there’s all that much more potentially sensitive information exposed.
Identity Mixer is designed to protect users’ privacy by focusing just on the essentials of the proof. Thanks to a set of algorithms based on cryptography work done at IBM Research, the tool allows developers to build apps that can authenticate users’ identities using what’s known as a “zero-knowledge proof” that collects no personal data.
Specifically, Identity Mixer authenticates users by asking them to provide a public key. Each user has a single secret key, and it corresponds with multiple public keys, or identities. Each transaction a user makes receives a different public key and leaves no privacy “breadcrumbs.”
So, in the streaming service example, users would have both identity and subscription credentials stored in a personal Credential Wallet. To access a movie, they could use that electronic wallet to prove that they’re entitled to watch the selected content without having to expose any other details.
The result, according to IBM, is that users’ privacy is better preserved, and the service provider is spared the need to protect and secure all that extraneous data.
Some iPad Pro owners have reported strange behavior in their new 12.9-inch tablets. Normally when you charge a device, unless the battery has completely died, the screen remains responsive. But some iPad Pros are completely freezing, then dying, after a recharge. The problem appears to be widespread — Apple’s support communities are filled with complaints about the issue.
Apple knows about the problem, but hasn’t said why it’s happening. There doesn’t seem to be a real fix for it, either — at least not yet. The company published a support document on Thursday advising Pro users to force restart their tablets to bring them back to life, but that’s not really a long-term solution, because the issue is ongoing.
“When I connect my iPad Pro to the charger for more than an hour, it goes dead,” one iPad Pro owner reported in the Apple support forum. “It takes multiple hard resets to bring it back to life.”
MacRumors first reported the iPad Pro issue last Monday, just days after the supersized tablets began shipping, and even experienced the problem with one of its own tablets. Apple employees are reportedly advising a range of solutions, from using iTunes to restore settings to performing a hard restart, as Apple is now officially recommending.
We’ll update this story when Apple pushes out a fix for the problem.
IBM has claimed that sophisticated criminals are responsible for 80 percent of cyber attacks, and that there are probably a lot of kids and amateurs accounting for the remaining 20 percent.
The IBM X-Force Threat Intelligence Quarterly 4Q 2015 (PDF) described this 20 percent as “script kiddies”, claiming that the attacks reveal their amateurishness. However, when people are not messing about they are able to carry out some catastrophic and expensive hacktrocities.
“The script kiddies scour the internet for ‘low hanging fruit’, the servers that can be compromised quickly and easily, and they use them for a limited time to send spam and scan other servers on the internet,” said the report.
“Or they deface the website and move on to other targets once they are discovered. These script kiddies give little thought to covering their tracks.
“In contrast, stealthy attackers might gain access to a system by exploiting the same vulnerability as the script kiddies, but they use a far more sophisticated combination of commercial tools, malware/rootkits and backdoors to increase their access level on the client’s network and compromise additional systems over several weeks of expansion.”
There is plenty to worry about, naturally, and IBM has plenty of things to spook us with. The report starts with saying that 2015 has been the year of ransomware. The FBI has already reported that such exploits have bagged attackers $18m over the period, and that it expects the problem to extend into 2016.
Take a look around your office before you read alert number two. This is the insider danger. The report said that this trend has played out since 2014, and that 55 percent of all attacks in 2015 were down to insiders, or at least people with inside information.
Perhaps as a result of this – we are not data analysts – IBM has also seen an increase in boardroom involvement and spending. Some 88 percent of respondents to a survey said that their relevant budgets had increased over the period.
Earlier this year, Facebook announced that it was developing a work-focused version of its social networking tools to try and convert its consumer success into a new stream of revenue from businesses.
On Friday, the company continued that push by quietly launching its new Work Chat app for Android, which lets users message workmates using an interface that’s almost identical to Facebook Messenger. Users can send messages to individuals or groups of co-workers, and include cute stickers to punctuate their point.
Work Chat also lets users place voice calls to colleagues in their network. As with Messenger, those calls use Wi-Fi or a cellular data connection rather than the telephone network, but it should connect coworkers without requiring them to use a shared telephone directory or make international calls.
The app is available for download on the Google Play Store, but people can only log into it if they have a Facebook at Work account. The only way to have one of those is to work for a company that Facebook has allowed into the private testing of its new enterprise-focused tools. According to an article from TechCrunch, 300 companies are testing the enterprise social network, and the company plans to launch it officially by the beginning of next year.
Facebook at Work will be a major entry by the social networking company into the crowded space of business collaboration. It’s going head-to-head with established players like Microsoft’s Yammer and upstarts like Slack.
A Federal Aviation Administration task force submitted recommendations for registering drone operators on Saturday, setting the stage for regulators next month to propose regulations intended to help reverse a surge in rogue drone flights.
A final version of the panel’s recommendations was expected to receive approval from 25 task force members on Friday. It would signal broad agreement among stakeholders, including drone makers, pilots, hobbyists and regulators, on a free and user-friendly registration process for recreational users of unmanned aerial systems, or UAS.
Registration is one of several steps the FAA and other government agencies are considering to address a disturbing rise in reckless drone use this year, including near-misses with commercial airliners near airports.
Officials are concerned that safety and security risks could rise in coming years as drone sales continue to soar, with more than 1 million drones expected to be sold in the United States this year.
The task force report was not expected to be released to the public until next week, according to people familiar with the matter. But they said the recommendations would require drone operators to register on a website or via a phone app, if they own UAS weighing as little as 8.8 ounces (250 grams), and attach their registration number to their drones.
“On Saturday, the task force will deliver its report to the Federal Aviation Administration,” FAA Administrator Michael Huerta said in a blog posted to a federal website on Friday.
“We will consider their recommendations and the public comments as we develop an interim final rule on registration, which will likely be released next month and go into effect shortly thereafter.”
U.S. Transportation Secretary Anthony Foxx, who announced the registration initiative last month, had charged the task force with completing its work by Friday.
Sprint has introduced a new simplified wireless plan offering 50% off competitors’ rates — part of an effort to lure consumers to try its faster LTE Plus network, which promises speeds of 128Mbps or more.
Sprint CEO Marcelo Claure said the costs of the new program will be more than offset by revenues from new customers. “There’s absolutely no way anybody can beat this offer,” he said during a briefing with reporters.
Sprint, the nation’s fourth largest carrier with about 59 million customers, has said it must cut up to $2 billion or more in operating expenses for the next fiscal year starting in April and will eliminate thousands of jobs to do so.
Even against that dreary backdrop, Claure said the new rate plan will bring in more customers. He didn’t indicate how many more are expected.
“There’s been a lot of skepticism on our network and the only way to convince them is to have them try,” he said. “Rest assured, we’ve done sufficient analysis and this is very accretive to Sprint” profits.
Sprint’s newest deal allows customers to take 50% off the price of most Verizon, AT&T and T-Mobile rate plans. The only rate plan excluded is T-Mobile’s unlimited data plan, which costs $90 a month. Sprint will still offer a $70-a-month unlimited data plan.
Businesses are not included in the deal, a spokeswoman said.
The offer goes into effect for activations beginning this Friday, Nov. 20 until Jan. 7, 2016; the 50% off deal remains in effect until Jan. 8, 2018. Claure said that with a free tablet and a free year of service, along with the half-off pricing, “that’s the bet we’re making” to get new customers.
A majority of U.S. consumers plan to go to Amazon.com for most of their online holiday shopping, according to a Reuters/Ipsos poll, even after traditional retailers have collectively spent billions of dollars to try to capture Web demand.
The survey of 3,426 adults conducted from November 12 to 18 found that 51 percent plan to do most of their online shopping at Amazon this holiday season, compared to 16 percent at Walmart, 3 percent at Target and 2 percent at Macy’s.
A little more than a quarter of respondents said they would use another retailer not listed in the poll.
The poll underscored the hurdles that traditional retailers faced in expanding online. Their own sales data this week showed that such efforts were falling short.
Target Corp said on Wednesday its digital sales grew 20 percent in the latest quarter, missing its expectations for a 30 percent gain. The discount retailer cited weakness in electronics demand.
A day earlier, Wal-Mart Stores Inc reported quarterly online sales growth of 10 percent, slower than its target growth in the mid-to-high-teens this fiscal year. Wal-Mart pointed to sluggish market conditions in China, Britain and Brazil, and said it fared better in the United States.
In contrast, Amazon.com Inc had posted a 28 percent jump in North American sales in its quarterly report last month.
“The Big Kahuna that continues to grab market share is Amazon,” said Craig Johnson, head of retail consultancy Customer Growth Partners. “Both Wal-Mart and to some extent Target have simply not kept pace enough.”
Johnson added that sluggish spending overall contributed to the weaker-than-expected online sales at Target and Wal-Mart, which also faced increased competition from other online retailers, such as Wayfair Inc.
According to the Reuters/Ipsos poll, 8 percent of adults said they plan to shop only online this year, compared to 6 percent a year earlier. The proportion of respondents who said they would shop mostly online remained steady at 17 percent.
All major retailers are investing in e-commerce.
When Google+ launched in 2011, it was designed as a competitor to Facebook, focused on connecting people with their friends through a series of “circles.” That proved unsuccessful, but people started using the service to discuss things that they’re passionate about, like books and astronomy. Google has built its new design around promoting both its Community groups and its Collections of user-curated posts about specific interests.
Users can opt into the new design (which appears to be rolling out gradually) by signing into the service on the Web and responding when they get a prompt that offers it. Luke Wroblewski, a product director at Google, said in a post to the social network that Google+ apps for iOS and Android will be out in the near future.
The redesign doesn’t have all the features of the old Google+, so people who rely on things like Events will have to stay on the old design (which they can flip back to with the press of a button). It’s not clear whether Google will bring all of the social network’s functionality forward into the new design, but Wroblewski said the company isn’t done developing the product.
All of this comes as Google has been demoting the social network from its previous place at the center of the company’s products. Earlier this year, it brought cloud-based photo editing and storage capabilities that previously were tied to Google+ into Google Photos, a standalone service. Hangouts, the chat system that used to be tied to Google+, now has its own website.
The mobile workspaces company expects to completely separate the GoTo business, consisting of products like GoToMeeting, GoToAssist, GoToWebinar, OpenVoice, Grasshopper and GoToMyPC, into a separate, publicly traded company by the second half of next year.
For the trailing 12 months ended Sept. 30, unaudited revenue from the GoTo products and services was about $600 million.
The initial results of Citrix’s operations review, which were announced Tuesday, also involves a “realignment of resources” that is expected to eliminate about 1,000 full-time and contract roles, over and above the effect of spinning off the GoTo business. Most of the layoffs and refocusing of resources are expected in November and in January 2016.
The review follows an agreement in July with investment firm Elliott Management whose affiliated funds own about 7.5 percent of the company’s common stock. Elliott is said to have asked the company to trim down its business, according to reports. The company’s CEO and president, Mark Templeton, retired last month as part of a plan announced in July.
The company plans to now increase emphasis and focus its resources on core enterprise products for secure application and data delivery, including its XenApp, XenDesktop, XenMobile, ShareFile and NetScaler.
The separation of GoTo will create a pure-play SaaS (Software-as-a-Service) company that will have a targeted focus with the flexibility to invest in its portfolio of products, said Bob Calderoni, interim CEO and president and executive chairman of Citrix. The GoTo family of products is best suited to grow and operate as a standalone business, he said in a statement.
The computer — being developed as part of a national project called Flagship2020 — is being developed with the aim to deliver “100 times more application performance” than the current K, which is installed in Japan and is the world’s third-fastest computer, according to the Top500 list of supercomputers, released on Monday.
The supercomputer will be deployed by 2020. It is being developed by Fujitsu and Japanese research institution RIKEN, which also developed K. The current K supercomputer has 705,204 processing cores and offers 10.5 petaflops of performance.
Details about the new supercomputer will be shared at two different sessions on Tuesday at the Supercomputing 15 conference being held in Austin, Texas.
The systems will be based on the Linux OS and the use of a “6D mesh” will be considered, according to details shared on the Supercomputing 15 website.That indicates the use of a six-dimensional design, which could facilitate connections for more simultaneous CPUs, memory and storage compared to systems today. The system will also have many storage layers, according to information on the site.
The current K is based on Fujitsu’s SPARC64 VIIIfx processors and Tofu interconnect.
The U.S., Japan and China are in a race to build the world’s fastest supercomputer. An earlier version of the K computer briefly held the title of the world’s fastest supercomputer in 2011. China’s Tianhe-2 is the world’s fastest supercomputer today, delivering peak performance of 54.9 petaflops.
Countries are rushing to develop faster computers to boast about their progress in technology, but also to boost economic, weapons and science programs.
A number of supercomputers that are faster than existing systems are on the horizon. A U.S. Department of Energy supercomputer called Aurora, due in 2019, will deliver 180 petaflops of performance. China is also planning a supercomputer of more than 100 petaflops.
“We feel strongly that customers are not really looking for a converged Mac and iPad,” Cook told The Irish Independent, Ireland’s largest daily newspaper, in aninterview published Sunday. “Putting those two together would not achieve either. You’d begin to compromise in different ways.”
But take Cook’s comments with a grain — or more — of salt. “These are tactical communications, nothing about what they might do, or what they potentially will do,” noted Ezra Gottheil, an analyst with Technology Business Research, in a Monday interview.
Cook, who has been on a swing through Europe to meet with Irish officials about an expansion of Apple’s facility in the country, and in the U.K. to trumpet the iPad Pro, which went on sale last week, again took time to take a swipe at the competition.
“What that would wind up doing,” Cook said, referring to a notebook-slash-tablet analogous to Microsoft’s new Surface Book, “is that neither experience would be as good as the customer wants.”
In earlier interviews while in Europe, Cook had previously bashed the Surface Book, a 2-in-1 with an integrated keyboard and detachable screen that reverts to a tablet when held separately. “It’s trying to be a tablet and a notebook and it really succeeds at being neither. It’s sort of deluded,” Cook said of the Surface Book.
Cook’s stance is not new: The CEO has repeatedly said Apple had no interest in 2-in-1 devices, at one point calling tablets with keyboards akin to a Frankenstein mashup of toaster and refrigerator. That, of course, was long before Apple decided to join the market with the 12.9-in. iPad Pro and its optional Smart Keyboard.