Internet.org turns one year old this week, and Facebook says it’s ready to scale the project to reach more people.
The company is making it easier for more mobile operators to join the project by launching an online portal where they’ll find technical tools and best practices to help them get started.
So far, Facebook has been working with about a dozen operators in 17 countries to provide an app that gives people free access to a set of basic Internet services.
According to Facebook, people who use the app quickly become paying subscribers — something that will no doubt appeal to the mobile operators it’s trying to partner with.
“Internet.org brings new users onto mobile networks on average over 50 percent faster after launching free basic services, and more than half of the people who come online through Internet.org are paying for data and accessing the Internet within the first 30 days,” Facebook said.
The Internet.org mobile app is perhaps the most tangible element in Facebook’s efforts to expand Internet access — and its own services — to more people throughout the world. It’s also using satellites, drones and lasers that can beam Internet signals through space to bring people online.
While the number of people with Internet access continues to grow, 4.2 billion of the world’s roughly 7.4 billion people will still be offline by the end of the year, according to data from the International Telecommunication Union.
The Internet.org app typically includes a stripped-down version of Facebook and access to other free services like weather reports, health information and services for finding jobs.
CEO Mark Zuckerberg has said Facebook could become the Internet on-ramp for the world.
Researchers from the University of Salerno and the Sapienza University of Rome in Italy have used three different techniques to obfuscate exploits like the ones usually used in drive-by download attacks.
Functionality provided by HTML5 can be efficient for malware obfuscation, the Italians have proved.
Modern security software can detect a big chunk of threats, but if they use some HTML5 features to hide the exploits served in drive-by download attacks, they could evade static and dynamic detection systems.
Experts say some of these APIs can be used to deliver and assemble the exploit in the web browser without being detected.
One method dubbed “delegated preparation” involves delegating the preparation of the malware to system APIs.
Another called “distributed preparation,” shares the code over concurrent and independent processes running within the browser.
A third involves triggering the code preparation based on the user’s actions on the malicious webpage or website.
VirusTotal detection rates for these sorts of obscured attacks remains low.
The paper published by researchers, with the catchy title of “Using HTML5 to Prevent Detection of Drive-by-Download Web Malware,” contains recommendations about some of the steps that can be taken to counter these obfuscation techniques.
Intel is expected to upgrade its Compute Stick and NUC solutions to Skylake processors starting October.
ECS, Gigabyte, Asustek and ASRock are expected to launch related products.
Sales for the Compute Stick and NUC have been rising and it appears that Intel sees gold in the mini PC segment’s potential. NUC s are seeing stable demand in Japan, China, Southeast Asia, Latin America and Europe.
Intel is set to release solutions with its new Core m5/m3 processors codenamed Cedar City in the fourth quarter for the Compute Stick.
The new Compute Stick will feature 4GB of memory, 64GB of storage space and support Ultra HD. It will be based around the Core m3-6Y30 processor, which is set to release in October. It will also have Windows 10.
The version with the Core m5-6Y57 vPro processor, will not come with a pre-installed operating system. In the first quarter of 2016, Intel is planning to launch inexpensive Atom x5 processors.
In November, Intel will launch two Skylake-based processors codenamed Swift Canyon, specifically for the NUC segment and will release high-end Core i7 processors at the end of the first quarter 2016 to improve the product line’s specifications and functions.
The technology involves smartphones broadcasting data over a short-range radio channel to nearby cars, so the cars can determine if a collision is likely. Unlike today’s radar-based systems, this has the ability to warn around blind corners and can alert both the driver and pedestrian.
It’s being developed by engineers at Honda and was demonstrated last week at the company’s new research and development center in Mountain View, Calif., the heart of Silicon Valley.
In the demonstration that took place in a parking lot, a car was slowly cruising a row looking for a space. Ahead, and unseen to the driver, a pedestrian was walking between a car and SUV while listening to music, and was about to step into the path of the oncoming vehicle.
Seconds before the pedestrian could emerge and the two come close to collision, an alert sounded in the car: “Distracted pedestrian” and a warning appeared on the car’s LCD screen to brake. The pedestrian too got a similar alert, telling him to watch out. If the driver hadn’t hit the brakes, the car would have automatically come to a halt.
Honda has been working on the technology for three years and the first iteration is expected to be submitted for standardization around the end of this year, said Sue Bai, a principal engineer at Honda R&D, who has been developing it.
he communication takes place over a channel in the 5.9GHz band that is dedicated for intelligent transportation systems. That’s a frequency not used in current smartphones, but close enough that Qualcomm engineers were able to come up with a firmware modification so that it works on an off-the-shelf handset. No custom hardware is required in the phone.
The SE370 monitor will come in 23.6-inch and 27-inch formats and is the industry’s first to have an integrated wireless charging station, the South Korean manufacturer said Monday.
But your phone will have to support the Qi wireless charging standard, which was developed by the Wireless Power Consortium (WPC) and is supported by makers such as Samsung, Sony, LG, HTC and Huawei.
The charging area is on the stand for the monitor, and an LED lights up when it’s in use. The monitor has a 1920 x 1080 resolution and is optimized for video games, with richer black hues when it’s in game mode. The screen will not distort graphics with stutter and lag and has a response time of 4 milliseconds, Samsung said.
Compatible with Mac OS X and Windows 10, the SE370 also has an eye-saver mode that reduces blue light, which is believed to cause eye strain and sleep problems.
Samsung did not provide information about pricing or availability for the SE370 monitor and did not immediately respond to a request for more information.
The company’s Galaxy S6 and GS6 edge flagship smartphones support the Qi and rival Power Matters Alliance (PMA) standards for wireless charging. Earlier this year, Samsung released its own branded charging pad to juice them up.
The latest Qi specification, announced last month, will allow manufacturers to provide much faster wireless power charging options than earlier versions.
The platform has also caught on with makers such as Ikea, which launched a collection of furniture in April with built-in Qi-enabled wireless chargers.
Qi had been competing with PMA and the Alliance for Wireless Power (A4WP). Following a decision earlier this year, however, the two organizations announced their merger in June, with a new name yet to be decided.
The software genii at Apple have redesigned their OSX software to allow malware makers to make designer micro-software that can infect Macs with rootkits.
Obviously the feature is one that Apple software experts designed specifically for malware writers, perhaps seeing them as an untapped market.
The bug in the latest version of Apple’s OS X allows attackers root user privileges with a micro code which could be packed into a message.
Security researcher Stefan Esser said that this was the security hole attackers regularly exploit to bypass security protections built into modern operating systems and applications.
The OS X privilege-escalation flaw stems from new error-logging features that Apple added to OS X 10.10. Plainly the software genii did not believe that standard safeguards involving additions to the OS X dynamic linker dyld applied to them because they were protected from harm by Steve Job’s ghost.
This means that attackers to open or create files with root privileges that can reside anywhere in the OS X file system.
“This is obviously a problem, because it allows the creation or opening (for writing) of any file in the filesystem. And because the log file is never closed by dyld and the file is not opened with the close on exec flag the opened file descriptor is inherited by child processes of SUID binaries. This can be easily exploited for privilege-escalation,” Esser said.
The vulnerability is present in both the current 10.10.4 (Yosemite) version of OS X and the current beta version of 10.10.5. Importantly, the current beta version of 10.11 is free of the flaw, an indication that Apple developers may already be aware of the vulnerability.
An Apple spokesman said that engineers are aware of Esser’s post of course they did not say they would do anything about it. They will have to go through the extensional crisis involved in realising that their product was not secure or perfect. Then the security team will have to issue orders, signed in triplicate, sent in, sent back, queried, lost, found, subjected to an internal inquiry, lost again, and finally bury it in soft peat for three months and recycled as firelighters.
The Apple Watch and Apple Watch Sport models will be sold at more than 300 Best Buy stores in time for the holiday shopping season, a spokeswoman for Apple Inc said.
“Customers love Apple Watch, and we are thrilled to begin offering it at Best Buy,” she said in an email.
Best Buy is the first retailer to sell the watch outside of the Apple retail store.
“The Apple Watch is an important addition to an emerging product category, and we know our customers want it,” Jason Bonfig, senior category officer, said on the Best Buy website.
The company said the product will also be available on its online store BestBuy.com.
The Wall Street Journal first reported that the Apple watch was coming to Best Buy.
Apple Chief Financial Officer Luca Maestri told Reuters earlier this month that sales of the Apple Watch had beat the company’s expectations. He said in the nine weeks since its launch in late April, the device had sold better than either iPhones or iPads over a similar period after their launch.
The promotion launched later this year than in the past: In 2014, for example, Apple started its back-to-school campaign July 1.
Buyers who purchase a qualifying Mac between now and Sept. 18 receive a $199.95 credit toward a a pair of Beats Solo2 On-Ear Headphones, which list for that amount. Alternately, the credit can be applied to a pair of Beats Solo2 Wireless On-Ear Headphones, which run $299.95, making the out-of-pocket expense $100.
The promotion launches today in Apple’s retail stores and participating authorized on-campus stores but won’t appear on the company’s e-store until Aug. 6.
9to5Mac.com first reported on the promotion earlier today.
This year’s back-to-school promotion gives parents of college students and incoming freshmen, and teachers and staff members of all grade levels — including K-12 — the credit when they buy a new iMac, Mac Pro, MacBook, MacBook Pro or MacBook Air. Unlike years past, iPads and iPhones do not qualify.
For the last four years, Apple has handed out gift cards and maxed the amount of the offer at $100. Before that, a more generous Apple gave rebates of up to $300 toward the purchase of an iPod Touch.
Educational discounts on the hardware also apply. MacBooks and MacBook Airs are reduced by $50 for parents of students and for faculty and staff. The discounts on other products are $100 on MacBook Pros, $100 to $200 on Retina 5K iMacs, $50 to $100 on iMacs, and $200 to $300 on Mac Pros.
The flaws could potentially be exploited to execute malicious code on computers when users visit compromised websites or open specially crafted documents. They were reported through Hewlett-Packard’s Zero Day Initiative (ZDI) program.
HP’s TippingPoint division, which sells network security products, pays researchers for information on unpatched high-risk vulnerabilities in popular software. The company uses the information to create detection signatures, giving it a competitive advantage, but also reports the flaws to the affected vendors so they can be fixed.
The ZDI team gives vendors 120 days to develop fixes before making limited information about the flaws reported to the public. That deadline was apparently reached for the four Internet Explorer vulnerabilities this week.
The ZDI advisories describe the type, impact and general location of the flaws, but intentionally leave out technical details that could help attackers create exploits for them. In other words, they don’t classify as full disclosure.
Three of the new ZDI advisories don’t have sufficient information for other researchers or hackers to easily rediscover the issues, said Carsten Eiram, the chief research officer at vulnerability intelligence firm Risk Based Security, via email. The fourth one, however, is a bit more detailed, he said.
That advisory, tracked as ZDI-15-359, covers a vulnerability that was used by security researcher Nicolas Joly during the Mobile Pwn2Own hacking contest organized by ZDI in November last year. As part of the contest rules, researchers disclose the vulnerabilities they use with ZDI, which then shares them with the affected vendors.
Microsoft said in an emailed statement that it would take “appropriate steps” to protect its customers, but noted that no attacks had been reported so far.
Database outfit Oracle’s moves to try and copyright APIs appear to be part of an attempt for Oracle to make money on Android.
Oracle has asked a U.S. judge for permission to update its copyright lawsuit against Google to include the Android which it claims contains its Java APIs.
Oracle sued Google five years ago and is seeking roughly $1 billion in copyright claims if it manages to convince a court that its APIs are in Android it could up the damages by several billions.
Oracle wrote in a letter to Judge William Alsup on Wednesday that the record of the first trial does not reflect any of these developments in the market, including Google’s dramatically enhanced market position in search engine advertising and the overall financial results from its continuing and expanded infringement.
Last month, the US Supreme Court upheld an appeals court’s ruling that allows Oracle to seek licensing fees for the use of some of the Java language. Google had said it should use Java APIs without paying a fee.
Amazon.com Inc’s shares surged more than 20 percent last Friday, adding more than $46 billion to the company’s market value, after strong growth in the e-commerce giant’s cloud business drove a surprise quarterly profit.
The company’s market capitalization soared to more than $270 billion, overtaking that of Wal-Mart Stores, the world’s biggest retailer.
Revenue from Amazon’s cloud operations – Amazon Web Services (AWS) – nearly doubled in the second quarter, indicating that the business was poised to drive sustainable earnings for the online retailer, Wall Street analysts said.
Operating margins at the unit jumped to 21.4 pct from 7.7 percent.
“Product sales are Amazon’s bread, but AWS is its butter,” Wedbush Securities analyst Michael Pachter said in a note, raising his price target on the stock by 21 percent to $700.
“They delivered a pretty large profit, we expected a loss … they exercised discipline and did not invest in new consumer electronic product launches.”
Investors have raised concerns that the company’s aggressive spending may not pay off. But strong growth in AWS and positive commentary on the Amazon Prime service allayed some worries.
Amazon Prime members, who pay $99 a year for speedier delivery and exclusive access to certain movies, music and Kindle books, tend to spend more than regular users of Amazon’s services.
“The scale of their distribution network is starting to generate better incremental margins,” Barclays analyst Paul Vogel said.
“That, coupled with the continued strong growth in both revenue and margins at AWS, moves us from cautious to optimistic on the next year of growth for Amazon.”
Amazon, which last reported a profit in the fourth quarter of 2014, considers AWS its main engine of growth, along with Amazon Prime and Marketplace, where the company acts as a middleman for third-party vendors.
Microsoft is very close to releasing Advanced Threat Analytics (ATA) the security sure-up that it first announced three months ago.
ATA, or MATA as we called it for our own small amusement, is the result of three months’ real world testing, and the culmination of enough user feedback to inform a final release.
That final release will happen in August, which should give you plenty of time to get your head around it.
Hmmm. Microsoft’s Advanced Threat Analytics seems like a very good idea focused on the enterprise.
— Kevin Jones (@vcsjones) May 4, 2015
Idan Plotnik, who leads the ATA team at Microsoft, explained in an Active Directory Team Blog post that the firm is working towards removing blind spots from security analytics, and that this release should provide a strong and hardy tool for the whacking away of hacking.
“Many security monitoring and management solutions fail to show you the real picture and provide false alarms. We’ve taken a different approach with Microsoft ATA,” he said.
“Our secret sauce is our combination of network Deep Packet Inspection, information about the entities from Active Directory, and analysis of specific events.
“With this unique approach, we give you the ability to detect advanced attacks and stolen credentials, and view all suspicious activities on an easy to consume, simple to explore, social media feed like attack timeline.”
The Microsoft approach is an on-premise device that detects and analyses threats as they happen and on a retrospective basis. Plotnik said that it combines machine learning and knowledge about existing techniques and tactics to proactively protect systems.
“ATA detects many kinds of abnormal user behaviour many of which are strong indicators of attacks. We do this by using behavioural analytics powered by advanced machine learning to uncover questionable activities and abnormal behaviour,” he added.
“This gives the ability for ATA to show you attack indicators like anomalous log-ins, abnormal working hours, password sharing, lateral movement and unknown threats.”
A number of features will be added to the preview release, including performance improvements and the ability to deal with more traffic, before general availability next month.
Microsoft has begun to open source some more of its code, this time for the Microsoft Research Software Radio (Sora).
“We believe that a fully open source Sora will better support the research community for more scientific innovation,” said Kun Tan, a senior researcher on the Sora project team.
Sora was created to combat the problem of creating software radio that could keep up with the hardware developments going on around it.
The idea behind it is to run the radio off software on a multi-core PC running a basic operating system. In the example, it uses Windows. But then it would.
A PCIe radio control board is added to the machine with signals processed by the software for transmission and reception, while the RF front-end, with its own memory, interfaces with other devices.
The architecture also supports parallel processing by distributing processing pipelines to multiple cores exclusively for real-time SDR tasks.
Sora has already won a number of awards, and the Sora SDK and API were released in 2011 for academic users. More than 50 institutions now use it for research or courses.
As such, and in line with the groovy open Microsoft ethos, the software has now been completely open sourced, with customizable RF front-ends, customizable RCB with timing control and synchronization, processing accelerators and support for new communication models such as duplex radios.
The Sora source code is now up on GitHub. Use cases already in place include TV whitespace, large scale MIMO and distributed MIMO systems.
Microsoft has made a number of moves towards open sourcing itself over the past year. Most notably, The .NET Framework at the heart of most Windows programs was offered up to the newly created .NET Foundation.
It was announced yesterday that Google is releasing its Kubernetes code to the Linux Foundation to set up a standardized format for containerization.
Wal-Mart Stores Inc acquired full ownership of Chinese e-commerce firm Yihaodian.com, buying out the 49 percent stake that it did not already own to accelerate its push online, the U.S. retail giant announced.
The investment will help Wal-Mart target China’s fast-growing online market at a time when largely brick and mortar retailers are feeling the pinch of competition from online rivals and a slowing of the world’s second-largest economy.
Wal-Mart’s move also comes after China said last month it will allow full foreign ownership of some e-commerce businesses, with the goal of encouraging foreign investment and the development and competitiveness of the sector.
“[Yihaodian's] local experience, combined with Walmart’s global sourcing and our strong local retail presence and supply chain will allow us to deliver low prices on the products customers need in new and exciting ways,” Neil Ashe, head of Wal-Mart’s e-commerce division, said in a statement.
Wal-Mart, the world’s largest retailer, added the purchase of the stake would help accelerate its e-commerce business in China and boost coordination between its physical and online stores. It did not disclose the price paid for the stake, which was bought from former executives and financial services group Ping An.
Wal-Mart’s Asia head Scott Price told Reuters earlier this year that online retail was important to help tap China’s younger generations and that the firm would increasingly look to weave together its online and offline presence in the market.
Wal-Mart, France’s Carrefour SA and Britain’s Tesco PLC have all seen sales growth slip over the last five years in China, losing market share to local rivals, according to consumer analytics firm Kantar Worldpanel.
The U.S. retailer also announced on Thursday that company insider Wang Lu will take the helm at Yihaodian. The e-commerce firm’s CEO and Chairman had quit earlier this month “to pursue their next venture”.
Samsung has put 10nm FinFET in its roadmap to stop its customers migrating to TSMC.
There were some rumours that Samsung may alter its schedule in order to prevent clients that might consider switching to 10nm chips from TSMC as that outfit is expected to skip the 14nm process and go straight to 10nm
Kelvin Low from Samsung Foundry confirmed in a video posted on YouTube that Samsung has formally added 10nm FinFET into the process roadmap, for chip designers working in mobile, consumer or networking market segment the new chips will provide significant performance and power consumption improvements.
Samsung LSI division has already shown off its first 10nm wafers which was a symbolic message to major clients that Samsung is more than capable of getting its 10nm production lines up and running without much hassle. Low expected 10nm products to appear at the end of 2016