Linux.org reports: Wednesday afternoon around 5pm EST someone was able to get into the registrar account for our domain and point DNS to another server -- as well as lock us out from changing it. They pointed the domain name to a pretty rude page for most of the evening until Cloudflare stepped in and blocked the domain for us.

After a lot of back and forth with our registrar, we were able to get things back under our control. I'd like to point out that our server environment was not touched so there are no worries about your data. We've gone over security protocols and are tightening things up that may have slipped through in the past. Thanks for your support!
Linux.org apparently pointed to a page exclaiming "G3T 0WNED L1NUX N3RDZ", which also included a NSFW picture, some abusive language, a shout-out to recently-deceased programmer Terry Davis, and a link to an article about Linus Torvalds' controversial apology for "his hostile behavior towards others in the community."

Long-time Slashdot reader Grady Martin says he also saw the page pointing to "presumably doxed info" about the creator of Linux's code of conduct, a fact confirmed by a report in the Register. "As for how it was hacked, [Linux.org owner Mike] McLagan blames the public Whois displaying his partner's email address -- presumably the hacker worked their way into the Yahoo email account listed as the admin of the site and from there requested a password change in her Network Solutions account to gain access to the domain."

CV Compiler is a new web app that uses machine learning to analyze and repair your technical resume, "allowing you to shine to recruiters at Google, Yahoo and Facebook," reports TechCrunch. "The app essentially checks your resume and tells you what to fix and where to submit it," reports TechCrunch. "It's been completely bootstrapped thus far and they're working on new and improved machine learning algorithms while maintaining a library of common CV fixes." From the report: "There are lots of online resume analysis tools, but these services are too generic, meaning they can be used by multiple professionals and the results are poor and very general. After the feedback is received, users are often forced to buy some extra services," said Andrew Stetsenko. "In contrast, the CV Compiler is designed exclusively for tech professionals. The online review technology scans for keywords from the world of programming and how they are used in the resume, relative to the best practices in the industry."

The product was born out of Stetsenko's work at GlossaryTech, a Chrome extension that helps users understand tech terms. He used a great deal of natural language processing and keyword taxonomy in that product and, in turn, moved some of that to his CV service. "We found that many job applications were being rejected without even an interview, because of the resumes. Apparently, 10 seconds is long enough for a recruiter to eliminate many candidates," he said.

Tumblr has reportedly been removed from Apple's App Store due to child pornography issues. "The app has been missing from the store since November 16th, but until now the reason for its absence was unclear -- initially Tumblr simply said it was 'working to resolve the issue with the iOS app,'" reports The Verge. "However, after Download.com approached Tumblr with sources claiming that the reason was related to the discovery of child pornography on the service, the Yahoo-owned social media network issued a new statement confirming the matter." From the report: In its updated statement, Tumblr said that while every image uploaded to the platform is "scanned against an industry database of child sexual abuse material" to filter out explicit images, a "routine audit" discovered content that was absent from the database, allowing it to slip through the filter. Although Tumblr says the content was immediately removed, its app continues to be unavailable on the App Store. It's still available in the Google Play store for Android users, however.

Mark Wilson writes: Ads in your inbox. Sounds like something you'd expect from the likes of Google or Yahoo, but Microsoft appears to be about to get in on the act as well. And we're not talking about online ads in your Outlook.com account -- we're talking about ads in the Mail app that's included with Windows 10. A new report says that Microsoft is currently testing ads with Windows Insiders, so it could be just a matter of time before they spread wider. In a support page, spotted first by news outlet Thurrott, Microsoft says, "Consistent with consumer email apps and services like Outlook.com, Gmail, and Yahoo Mail, advertising allows us to provide, support, and improve some of our products. We're always experimenting with new features and experiences. Currently, we have a pilot running in Brazil, Canada, Australia, and India to get user feedback on ads in Mail."

Update: ZDNet reports that Calendar app for Windows 10 is getting the same treatment.

An anonymous reader quotes Yahoo Finance: The dating site eharmony is hoping to launch a chatbot to stop people from ghosting, or cutting off communication with potential matches, CEO Grant Langston exclusively tells Yahoo Finance. The would-be feature, which eharmony has yet to start development on, would pop up in the user interface after an online conversation with another user drops off after several days or weeks. The dating bot could analyze information on both users' dating profiles and recommend they reinitiate contact by prompting them to "Say something" or suggesting something more helpful... . "It's astounding really how many people need help. We think we can do that in an automated way..."

Langston acknowledges the business has a lot to troubleshoot with the feature before it eventually rolls it out, including addressing possible user concerns around user privacy. While having a feature like the date bot could hypothetically increase the odds of a user scoring that first date, it could also unnerve some other users wondering how their prospective suitor knew to ask about their favorite musician, movie or music to begin with. Such concerns could theoretically call for privacy options regulating what kind of profile information the bot can grab and serve up as an icebreaker. The dating site could also decide to generally reign in what the dating bot suggests based on user testing. "Just because you can doesn't necessarily mean you should do," adds Langston.
Meanwhile, a Michigan-based startup has launched what one alternative newsweekly describes as a "Yelp for humans" -- a new browser extension that syncs with a user's pre-existing dating profile on sites like Match.com, OkCupid, PlentyOf Fish, eHarmony, Zoosk or Badoo. "Once installed, a user can leave anonymous comments regarding someone's profile based on dates or interactions gone wrong and those comments can be viewed by other DateAha! users to better inform whether or not the person is a total creep."

And of course, Facebook is testing a new dating app in two more countries, People reports. In order to use the new online dating service, Facebook users will be tasked with creating a new profile that will exist separately from the one that all of your friends and family can see... The dating service will send you suggested matches based "on your preferences, interests, and things you do on Facebook," but the app won't try to make a love connection with any of your Facebook friends (or anybody you have blocked), Facebook promises... You will also have the ability to block or hide anybody -- including specific friends of friends -- from your suggested matches.

The U.S. Supreme Court on Monday refused a request by the Trump administration and the telecommunications industry to wipe away a lower court decision that had upheld Obama-era net neutrality rules aimed at ensuring a free and open internet. The justices' action, however, does not undo the 2017 repeal of the policy. A report adds: The Federal Communications Commission's 2015 order to impose net neutrality rules and strictly regulate broadband was already reversed by Trump's pick for FCC chairman, Ajit Pai. But AT&T and broadband industry lobby groups were still trying to overturn court decisions that upheld the FCC order. A win for the broadband industry could have prevented future administrations from imposing a similarly strict set of rules. The Trump administration supported the industry's case, asking the US Supreme Court to vacate the Obama-era ruling.

But the Supreme Court today said it has denied petitions filed by AT&T and broadband lobby groups NCTA, CTIA, USTelecom, and the American Cable Association. Four of nine justices must agree to hear a case, but only three voted to grant the petitions. Further reading: Reuters and Variety.

Each day, thousands of people from places like Kibera, Africa's largest slum and one of the toughest neighborhoods on earth, commute to an office of Samasource in the east side of Nairobi. The San Francisco-headquartered company occupies four floors of a business park building, with vast banks of computers being used for the job of training data. Google, Microsoft, Salesforce and Yahoo are among the clients of Samasource. What exactly do these people do at Samasource? Its clients won't say, but BBC reports that the "information prepared here forms a crucial part of some of Silicon Valley's biggest and most famous efforts in AI." From the report: [...] Brenda loads up an image, and then uses the mouse to trace around just about everything. People, cars, road signs, lane markings -- even the sky, specifying whether it's cloudy or bright. Ingesting millions of these images into an artificial intelligence system means a self-driving car, to use one example, can begin to "recognise" those objects in the real world. The more data, the supposedly smarter the machine. She and her colleagues sit close -- often too close -- to their monitors, zooming in on the images to make sure not a single pixel is tagged incorrectly. Their work will be checked by a superior, who will send it back if it's not up to scratch. For the fastest, most accurate trainers, the honor of having your name up on one of the many TV screens around the office. And the most popular perk of all: shopping vouchers.

It's the kind of technological progress that will likely never be felt in a place like Kibera. As Africa's largest slum, it has more pressing problems to solve, such as a lack of reliable clean water, and a well-known sanitation crisis. But that's not to say artificial intelligence can't have a positive impact here. We drove to one of Kibera's few permanent buildings, found near a railway line that, on this rainy day, looked thoroughly decommissioned by mud, but has apparently been in regular use since its colonial inception.

Almost exactly a year ago, this building was the dividing line between stone-throwing rioters and the military. Today, it's a thriving hub of activity: a media school and studio, something of a cafeteria, and on the first floor, a room full of PCs. Here, Gideon Ngeno teaches around 25 students the basics of using a personal computer. What's curious about this process is that digital literacy is high, even in Kibera, where smartphones are common and every other shop is selling chargers and accessories, which people buy using the mobile money system MPesa.

In 2011, Iran was able to use Google's search functionality to hack into a secret CIA communication network that was being used to contact agents and informants around the world -- a breach that appears to have triggered the exposure and execution of Agency sources in China and Iran, Yahoo News reported Friday.

US Attorney General Jeff Sessions announced charges Thursday against Chinese and Taiwan companies for theft of an estimate $8.75 billion worth of trade secrets from US semiconductor giant Micron. From a report: Sessions said the case was the latest in a series that are part of a state-backed program by Beijing to steal US industrial and commercial secrets. "Taken together, these cases and many others like them paint a grim picture of a country bent on stealing its way up the ladder of economic development and doing so at American expense," Session said. "This behavior is illegal. It is wrong. It is a threat to our national security. And it must stop." The indictment released in the US district court in San Jose, California alleges that Chinese state-owned Fujian Jinhua Integrated Circuit Co. and privately owned United Microelectronics Corporation of Taiwan, along with three UMC executives, conspired to steal Micron trade secrets to help UMC and Fujian Jinhua develop DRAM chips used in many computer processors. It said the three Taiwanese men -- Stephen Chen Zhengkun, He Jianting and Kenny Wang Yungming -- all previously worked at Micron and stole its technology when they joined UMC with the express purpose of transferring it to Fujian Jinhua, a two-year-old firm. Chen was originally a top executive at Micron, then moved to lead UMC, and subsequently became president of Fujian Jinhua.

Flickr announced a handful of updates to its platform and business model today -- the first major changes since SmugMug acquired the photo-hosting community from Oath earlier this year. From a report: Arguably the most interesting -- and welcome -- facet of today's announcement is that Flickr will no longer require users to sign-in with their Yahoo account credentials. However, not all the news is good -- those with free accounts will no longer have 1 terabyte of storage for all their photos. Many people speculated about what would happen to the formerly Yahoo-owned image-hosting platform when Yahoo became part of Verizon's family in 2017. While Verizon bundled AOL and Yahoo under the Oath banner, Flickr started shedding features and services, and its future did not look bright. But Flickr still claims north of 100 million monthly users, which is why SmugMug came a-callin' in April. In short, Flickr still holds a lot of potential if managed correctly.

Fast-forward to today, and Flickr has now revealed its new model for free and Pro-account users. Ditching Yahoo accounts from the log-in page will almost the most welcome part of today's news for millions, and as SmugMug notes in its announcement, it is among the most requested changes it has had since it took over Flickr. The change won't take affect until January, 2019, however, so for now a Yahoo account is still mandatory.

Yahoo has agreed to pay $50 million in damages and provide two years of free credit-monitoring services to 200 million people whose email addresses and other personal information were stolen as part of the biggest security breach in history. "The restitution hinges on federal court approval of a settlement filed late Monday in a 2-year-old lawsuit seeking to hold Yahoo accountable for digital burglaries that occurred in 2013 and 2014, but weren't disclosed until 2016," reports ABC News. From the report: Claims for a portion of the $50 million fund can be submitted by any eligible Yahoo accountholder who suffered losses resulting from the security breach. The costs can include such things as identity theft, delayed tax refunds or other problems linked to having had personal information pilfered during the Yahoo break-ins. The fund will compensate Yahoo accountholders at a rate of $25 per hour for time spent dealing with issues triggered by the security breach, according to the preliminary settlement. Those with documented losses can ask for up to 15 hours of lost time, or $375. Those who can't document losses can file claims seeking up to five hours, or $125, for their time spent dealing with the breach. Yahoo accountholders who paid $20 to $50 annually for a premium email account will be eligible for a 25 percent refund.

The free credit monitoring service from AllClear could end up being the most valuable part of the settlement for most accountholders. The lawyers representing the accountholders pegged the retail value of AllClear's credit-monitoring service at $14.95 per month, or about $359 for two years -- but it's unlikely Yahoo will pay that rate. The settlement didn't disclose how much Yahoo had agreed to pay AllClear for covering affected accountholders.

Germany is backing a global minimum tax rate as Europe looks to levy tax notably on U.S. tech giants. "Europe is trying to devise a strategy to tax profits from the likes of Google, Amazon, Facebook, Apple and digital platforms such as YouTube and Airbnb which currently manage to keep fiscal exposure to a bare minimum," reports Yahoo News. From the report: "We need a minimum tax rate valid globally which no state can get out of (applying)," Scholz, a social democrat in conservative Chancellor Angela Merkel's coalition government, told the "Welt am Sonntag" weekly. Digital platforms "aggravate a problem which we know well from globalization and which we are trying to counter -- the shifting of profits to fiscally beneficial regions," said Scholz. Scholz explained he had launched an initiative designed to help states react to so-called fiscal dumping in support of embryonic OECD plans designed to fight tax transparency and cross-border tax evasion. "We require coordinated mechanisms which prevent the displacement of revenues to tax havens," said Scholz. A March proposal by the Commission includes introducing a tax as a bridge measure until such time as the OECD can roll out a measure which can be applied globally.

An anonymous reader quotes a report from Gizmodo: When you go into the privacy settings on your browser, there's a little option there to turn on the "Do Not Track" function, which will send an invisible request on your behalf to all the websites you visit telling them not to track you. A reasonable person might think that enabling it will stop a porn site from keeping track of what she watches, or keep Facebook from collecting the addresses of all the places she visits on the internet, or prevent third-party trackers she's never heard of from following her from site to site. According to a recent survey by Forrester Research, a quarter of American adults use "Do Not Track" to protect their privacy. (Our own stats at Gizmodo Media Group show that 9% of visitors have it turned on.) We've got bad news for those millions of privacy-minded people, though: "Do Not Track" is like spray-on sunscreen, a product that makes you feel safe while doing little to actually protect you.

Yahoo and Twitter initially said they would respect it, only to later abandon it. The most popular sites on the internet, from Google and Facebook to Pornhub and xHamster, never honored it in the first place. Facebook says that while it doesn't respect DNT, it does "provide multiple ways for people to control how we use their data for advertising." (That is of course only true so far as it goes, as there's some data about themselves users can't access.) From the department of irony, Google's Chrome browser offers users the ability to turn off tracking, but Google itself doesn't honor the request, a fact Google added to its support page some time in the last year. [...] "It is, in many respects, a failed experiment," said Jonathan Mayer, an assistant computer science professor at Princeton University. "There's a question of whether it's time to declare failure, move on, and withdraw the feature from web browsers." That's a big deal coming from Mayer: He spent four years of his life helping to bring Do Not Track into existence in the first place. Only a handful of sites actually respect the request -- the most prominent of which are Pinterest and Medium (Pinterest won't use offsite data to target ads to a visitor who's elected not to be tracked, while Medium won't send their data to third parties.)

Microsoft said Wednesday it had joined the Open Invention Network (OIN), an open-source patent consortium. As part of it, the company has essentially agreed to grant a royalty-free and unrestricted license to its entire patent portfolio to all other OIN members. From the press release: By joining OIN, Microsoft is demonstrating its commitment to open source software (OSS) and innovation through collaborative development. With more than 2,650 members [Editor's note: the members include Google, IBM, Red Hat, and SUSE], including numerous Fortune 500 enterprises, OIN is the largest patent non-aggression community in history and represents a core set of community values related to open source licensing, which has become the norm. "Open source development continues to expand into new products and markets to create unrivaled levels of innovation. Through its participation in OIN, Microsoft is explicitly acknowledging the importance of open source software to its future growth," said Keith Bergelt, CEO of Open Invention Network. "Microsoft's participation in OIN adds to our strong community, which through its breadth and depth has reduced patent risk in core technologies, and unequivocally signals for all companies who are using OSS but have yet to join OIN that the litmus test for authentic behavior in the OSS community includes OIN participation."

Erich Andersen, Corporate Vice President and Chief IP Counsel at Microsoft, said, "Microsoft sees open source as a key innovation engine, and for the past several years we have increased our involvement in, and contributions to, the open source community. We believe the protection OIN offers the open source community helps increase global contributions to and adoption of open source technologies. We are honored to stand with OIN as an active participant in its program to protect against patent aggression in core Linux and other important OSS technologies." Further reading: Why Microsoft may be relinquishing billions in Android patent royalties.

Uber is digging deeper into the business of food. From a report: Uber's restaurant delivery business "Eats" hit $6 billion in bookings earlier this year, growing over 200%, quickly becoming a crown jewel for the ride-sharing company. Uber CEO Dara Khosrowshahi said given the success in the delivery of food, the next logical step is to enter the grocery space. "We will move into grocery. That's fundamental. A lot more people will be eating at home. Right now we are busy with Eats, but you can see grocery as an adjacent business. We're thinking about Uber much more as a platform," he said at Vanity Fair's New Establishment Summit 2018 on Tuesday.

"A decade ago, internet users who grew up with Web 1.0 bid a fond farewell to Sunset Strip, Rodeo Drive, Colosseum, and other 'neighborhoods' on web-hosting service GeoCities, when Yahoo announced it was shutting the main site down," writes Isabella Steger for Quartz. "Now Japanese GeoCities fans will face the same fate." From the report: Yahoo Japan announced today (Oct. 1) that it will shut down (link in Japanese) its GeoCities service in March 2019, 22 years after its launch. The company said in a statement that it was hard to encapsulate in one word the reason for the shut down, but that profitability and technological issues were primary factors. It added that it was full of "regret" for the fate of the immense amount of information that would be lost as a result of the service's closure. Japan is the only country where the web hosting service remained in operation. Like the main GeoCities, the Japanese service was also organized around different themed neighborhoods. For example, websites in the Silicon Valley neighborhood were tech-focused, while those in Berkeley focused on education.

Comcast outbid Rupert Murdoch's Twenty-First Century Fox after offering $40 billion in an auction on Saturday. According to Yahoo Finance, "The U.S. cable giant bid $22.59 a share for control of London-listed Sky, bettering a $20.49 dollars-a-share offer by Fox, Britain's Takeover Panel said." From the report: Buying Sky will make Philadelphia-based Comcast, which owns the NBC network and Universal Pictures, the world's largest pay-TV operator with around 52 million customers. Chairman and chief executive Brian Roberts has had his eye on Sky as a way to help counter declines in subscribers for traditional cable TV in its core U.S. market as viewers switch to video-on-demand services like Netflix and Amazon. Comcast's knock-out offer thwarted Murdoch's long-held ambition to win control of Sky, and is also a setback for U.S. entertainment giant Walt Disney which would have likely been its ultimate owner. Disney agreed a separate $71 billion deal to buy most of Fox's film and TV assets, including its existing 39 percent stake in Sky, in June and would have taken full ownership after a successful Fox takeover.

Speaking at a private event in San Francisco this week, Eric Schmidt said he believes within the next decade there will be two distinct internets: one led by the U.S. and the other by China. At the event, economist Tyler Cowen asked, "What are the chances that the internet fragments over the years?" To which former Google CEO said: I think the most likely scenario now is not a splintering, but rather a bifurcation into a Chinese-led internet and a non-Chinese internet led by America. If you look at China, and I was just there, the scale of the companies that are being built, the services being built, the wealth that is being created is phenomenal. Chinese Internet is a greater percentage of the GDP of China, which is a big number, than the same percentage of the US, which is also a big number. If you think of China as like 'Oh yeah, they're good with the Internet,' you're missing the point.

Globalization means that they get to play too. I think you're going to see fantastic leadership in products and services from China. There's a real danger that along with those products and services comes a different leadership regime from government, with censorship, controls, etc. Look at the way BRI works -- their Belt and Road Initiative, which involves 60-ish countries -- it's perfectly possible those countries will begin to take on the infrastructure that China has with some loss of freedom.

An anonymous reader quotes a report from TechCrunch: Altaba, the holding company of what Verizon left behind after its acquisition of Yahoo, said it has settled three ongoing legal cases relating to Yahoo's previously disclosed data breaches. In a Monday filing with the Securities and Exchange Commission, the former web giant turned investment company said it has agreed to end litigation for $47 million, which the company said will "mark a significant milestone" in cleaning up its remaining liabilities. The deal is subject to court approval, which attorneys for both sides asked the court to approve the deal within 45 days, according to a filing submitted Friday. One of the data breaches occurred in mid-2013, where data on all of the company's three billion users was stolen. The other breach occurred a year later and resulted in 500 million accounts being stolen, including email addresses and passwords.

Trailrunner7 tipped us off to this story on ZDNet: A multi-year study on the stock price evolution for breached companies reveals that data breaches have a long-term impact on a company's stock price, even if it's somewhat minimal. The study, carried out by the research team behind the CompariTech web portal, looked only at companies listed on the New York Stock Exchange that suffered and publicly disclosed breaches of one million records and over in the past three years. In total, the list included 28 companies, such as Apple, Adobe, Anthem, Community Health Systems, Dun & Bradstreet, eBay, Equifax, Experian, Global Payments, Home Depot, Health Net, Heartland Payment Systems, JP Morgan Chase, LinkedIn, Monster, T-Mobile, Sony, Staples, Target, TJ Maxx, Under Armour, Vodafone, and Yahoo. "In the long term, breached companies underperformed the market," the CompariTech team concluded in their report.

"After 1 year, Share price grew 8.53% on average, but underperformed the NASDAQ by -3.7%. After 2 years, average share price rose 17.78%, but underperformed the NASDAQ by -11.35%. And after three years, average share price is up by 28.71% but down against the NASDAQ by -15.58%." Study authors noted that the impact of data breaches likely diminished over time, but the damage was still visible in the stock's NASDAQ performance indicator even after three years, in some cases. Although other factors also weighed into how a stock performed, the fact that all of the analyzed breached companies had a poor performance cannot be ignored.
Finance and payment companies suffered the largest drops in their stock prices after a data breach -- with the drops being larger when the breached data included "highly sensitive" info like credit card and social security numbers.