Presto Vivace points out this troubling new report from the Electronic Frontier Foundation: Recently, Verizon was caught tampering with its customer's web requests to inject a tracking super-cookie. Another network-tampering threat to user safety has come to light from other providers: email encryption downgrade attacks. In recent months, researchers have reported ISPs in the U.S. and Thailand intercepting their customers' data to strip a security flag — called STARTTLS — from email traffic. The STARTTLS flag is an essential security and privacy protection used by an email server to request encryption when talking to another server or client.

By stripping out this flag, these ISPs prevent the email servers from successfully encrypting their conversation, and by default the servers will proceed to send email unencrypted. Some firewalls, including Cisco's PIX/ASA firewall do this in order to monitor for spam originating from within their network and prevent it from being sent. Unfortunately, this causes collateral damage: the sending server will proceed to transmit plaintext email over the public Internet, where it is subject to eavesdropping and interception.

Nerval's Lobster writes While pundits and analysts debate about diversity in Silicon Valley, one thing is very clear: Black Americans make up a very small percentage of tech workers. At Facebook, Google, and Yahoo, that number is a bit less than 2 percent of their respective U.S. workforces; at Apple, it's closer to 7 percent. Many executives and pundits have argued that the educational pipeline remains one of the chief impediments to hiring a more diverse workforce, and that as long as universities aren't recruiting a broader mix of students for STEM degrees, the corporate landscape will suffer accordingly. But black IT entrepreneurs and professionals tell Dice that the problem goes much deeper than simply widening the pipeline; they argue that racial bias, along with lingering impressions of what a 'techie' should look like, loom much larger than any pipeline issue.

An anonymous reader sends this report from Sky News: The new head of GCHQ has accused social media websites of helping terror groups and called for closer ties with intelligence agencies. "'However much they [tech companies] may dislike it, they have become the command and control networks of choice for terrorists and criminals, who find their services as transformational as the rest of us." ... Mr. Hannigan said that smartphone and other mobile technologies increased the opportunities for terrorist activity to be concealed in the wake of the exposing of secret cables and documents collected by US and UK authorities by whistleblower Edward Snowden. Mr. Hannigan said that smartphone and other mobile technologies increased the opportunities for terrorist activity to be concealed in the wake of the exposing of secret cables and documents collected by US and UK authorities by whistleblower Edward Snowden.

jones_supa writes In the 63rd annual meeting of the American Society of Tropical Medicine and Hygiene in New Orleans, Bill Gates announced that he will donate over $500 million to fight malaria and other infectious diseases in the developing world. Gates described the Ebola epidemic that has killed more than 4,900 people in West Africa since the beginning of the year as a "critical moment in the history of global health", and said it underscores the need for stronger efforts to stay ahead of disease threats such as drug-resistant malaria and dengue fever. The more than $500 million announced Sunday includes over $150 million to the PATH Malaria Vaccine Initiative to advance development of next-generation malaria vaccines, and $29 million to the Clinton Health Access Initiative to support malaria elimination efforts in Southern Africa and the Greater Mekong Sub-region of Southeast Asia.

whoever57 writes How widely are DKIM and DMARC being implemented? Some time ago, Yahoo implemented strict checks on DKIM before accepting email, breaking many mailing lists. However, Spamassassin actually assigns a positive score (more likely to be spam) to DKIM-signed emails, unless the signer domain matches the from domain. Some email marketing companies don't provide a way for emails to be signed with the sender's domain — instead, using their own domain to sign emails. DMARC doesn't seem to have a delegation mechanism, by which a domain owner could delegate other domains as acceptable signatures for emails their emails. All of these issues suggest that the value of DKIM and DMARC is quite low, both as a mechanism to identify valid emails and as a mechanism to identify spam. In fact, spam is often dkim-signed. Are Slashdot users who manage email delivery actually using DKIM and DMARC?

schwit1 writes with news about a flying defibrillator designed by a Dutch student. A Dutch-based student on Tuesday unveiled a prototype of an "ambulance drone", a flying defibrillator able to reach heart attack victims within precious life-saving minutes. Developed by Belgian engineering graduate Alec Momont, it can fly at speeds of up to 100 kilometres per hour (60 miles per hour). "Around 800,000 people suffer a cardiac arrest in the European Union every year and only 8.0 percent survive, the main reason for this is the relatively long response time of emergency services of around 10 minutes, while brain death and fatalities occur with four to six minutes,"

mdsolar tips news that a second healthcare worker at Texas Health Presbyterian Hospital has tested positive for the Ebola virus. Like the nurse who tested positive a few days ago, this worker was involved in providing care to Eric Duncan, the Liberian man who seems to have brought the virus into the country. The CDC is working to identify further exposures to the local community, though the Times says a second infection among the 70+ medical professionals who were around Duncan is not unexpected. The largest U.S. nurses union says a lack of proper protective gear and constantly changing protocols are to blame for exposures. Meanwhile, the World Health Organization says infection rates in West Africa are such that within a few months, they can expect 10,000 new Ebola cases a week. They also say the death rate for the current outbreak has risen to 70 percent.

KentuckyFC writes Since 2001, crowdfunding sites have raised almost $3 billion and in 2012 alone, successfully funded more than 1 million projects. But while many projects succeed, far more fail. The reasons for failure are varied and many but one of the most commonly cited is the inability to match a project with suitable investors. Now a group of researchers from Yahoo Labs and the University of Cambridge have mined data from Kickstarter to discover how investors choose projects to back. They studied over 1000 projects in the US funded by over 80,000 investors. They conclude that there are two types of backers: occasional investors who tend to back arts-related projects, probably because of some kind of social connection to the proposers; and frequent investors who have a much more stringent set of criteria. Frequent investors tend to fund projects that are well-managed, have high pledging goals, are global, grow quickly, and match their interests. The team is now working on a website that will create a list of the Twitter handles of potential investors given the URL of a Kickstarter project.

Jason Koebler writes Yahoo announced [Tuesday] it would be laying off at least 400 workers in its Indian office, and back in February, IBM cut roughly 2,000 jobs there. Meanwhile, tech companies are beginning to see that many of the jobs it has outsourced can be automated, instead. Labor in India and China is still cheaper than it is in the United States, but it's not the obvious economic move that it was just a few years ago: "The labor costs are becoming significant enough in China and India that there are very real discussions about automating jobs there now," Mark Muro, an economist at Brookings, said. "Companies are seeing that automated replacements are getting to be 'good enough.'"

wiredmikey writes Hackers were able to break into some of Yahoo's servers by exploiting the recently disclosed Shellshock bug over the past few weeks. This may be the first confirmed case of a major company being hit with attacks exploiting the vulnerability in bash. Contacted by SecurityWeek, a Yahoo spokesperson provided the following statement Monday afternoon: "A security flaw, called Shellshock, that could expose vulnerabilities in many web servers was identified on September 24. As soon as we became aware of the issue, we began patching our systems and have been closely monitoring our network. Last night, we isolated a handful of our impacted servers and at this time we have no evidence of a compromise to user data. We're focused on providing the most secure experience possible for our users worldwide and are continuously working to protect our users' data."

An anonymous reader writes You may or may not remember this, but before the advent of reliable search engines, web listings used to be a popular way to organize the web. Yahoo had one of the more popular hierarchical website directories around. On Friday, as part of its on-going streamlining process, Yahoo announced that their 20-year-old web directory will be no more: "While we are still committed to connecting users with the information they're passionate about, our business has evolved and at the end of 2014 (December 31), we will retire the Yahoo Directory."

concertina226 writes Engineering students from the University of Toronto have developed a 3D bioprinter that can rapidly create artificial skin grafts from a patient's cells to help treat burn victims. In severe burn injuries, both the epidermis (outer layer of the skin) and the dermis (inner layer) are severely damaged, and it usually takes at least two weeks for skin cells to be grown in a laboratory to be grafted onto a patient. As both layers of skin are made from completely different cells that have different structures, it is very difficult for the body to regenerate itself and burn victims can die if their wounds cannot be closed quickly enough. So instead of trying to replicate a real human skin graft, the PrintAlive Bioprinter creates a type of "living bandage" from hydrogel.

An anonymous reader writes Apple has announced that it sold over 10 million new iPhone 6 and iPhone 6 Plus models, just three days after the launch on September 19. From the article: "Chief Executive Tim Cook said the company could have sold even more iPhone 6 and iPhone 6 Plus models if supplies had been available. Analysts had estimated first-weekend sales of up to 10 million iPhones, after Apple booked record pre-orders of 4 million on Sept. 12, the day pre-orders opened."

mdsolar writes with the latest plan from the U.S. government to fight the Ebola epidemic in West Africa, and a call for more help from other nations by the President. President Obama on Tuesday challenged world powers to accelerate the global response to the Ebola outbreak that is ravaging West Africa, warning that unless health care workers, medical equipment and treatment centers were swiftly deployed, the disease could take hundreds of thousands of lives. "This epidemic is going to get worse before it gets better," Mr. Obama said here at the Centers for Disease Control and Prevention, where he met with doctors who had just returned from West Africa. The world, he said, "has the responsibility to act, to step up and to do more. The United States intends to do more." Even as the president announced a major American deployment to Liberia and Senegal of medicine, equipment and 3,000 military personnel, global health officials said that time was running out and that they had weeks, not months, to act. They said that although the American contribution was on a scale large enough to make a difference, a coordinated assault in Africa from other Western powers was essential to bringing the virus under control.

Zanadou writes "Apple may have succeeded at breaking two records at once with the free release of U2's latest album, titled Songs of Innocence, via iTunes. But now, it looks like it's also on track to become one of the worst music publicity stunts of all time. Users who have opted to download new purchases to their iPhones automatically have found the new U2 album sitting on their phones. But even if iTunes users hadn't chosen automatic downloads, Songs of Innocence will still be displayed as an "iTunes in the Cloud" purchase. That means it will still be shown as part of your music library, even if you delete all the tracks. The only way to make the U2 album go away is to go to your Mac or PC and hide all of your "iTunes in the Cloud" purchases, or to use iTunes to manually hide each track from your purchased items list. Other reactions include rapper Tyler, The Creator saying that having the new U2 album automatically downloaded on his iPhone was like waking up with an STD. Update: 09/16 15:06 GMT by T : Note: Apple has released a fix.

Advocatus Diaboli writes The U.S. government threatened to fine Yahoo $250,000 a day in 2008 if it failed to comply with a broad demand to hand over user data that the company believed was unconstitutional, according to court documents unsealed Thursday that illuminate how federal officials forced American tech companies to participate in the NSA's controversial PRISM program. The documents, roughly 1,500 pages worth, outline a secret and ultimately unsuccessful legal battle by Yahoo to resist the government's demands. The company's loss required Yahoo to become one of the first to begin providing information to PRISM, a program that gave the National Security Agency extensive access to records of online communications by users of Yahoo and other U.S.-based technology firms.

An anonymous reader writes: $3 billion in funding is on the line as private space companies duke it out for contracts to end U.S. reliance on Russian rockets for manned spaceflight. The two biggest contenders are SpaceX and Boeing, described as "the exciting choice" and "the safe choice," respectively. "NASA is charting a new direction 45 years after sending humans to the Moon, looking to private industry for missions near Earth, such as commuting to and from the space station. Commercial operators would develop space tourism while the space agency focuses on distant trips to Mars or asteroids." It's possible the contracts would be split, giving some tasks to each company. It's also possible that the much smaller Sierra Nevada Corp. could grab a bit of government funding as well for launches using its unique winged-shuttle design.

mpicpp writes with a snippet from Businessweek: Alibaba Group Holding Ltd. is seeking to raise as much as $21.1 billion in its initial public offering, in what could be the largest sale of new stock in the U.S. ever. The Chinese company and shareholders including Yahoo! Inc. (YHOO:US) plan to sell 320.1 million American depositary shares for $60 to $66 apiece, according to a regulatory filing today (BABA:US). At the high end of that range, the offering would surpass Visa Inc.'s $19.7 billion IPO in March 2008 and give the company a market value of $162.7 billion. Alibaba's executives are now able to meet fund managers to build demand for the IPO and they plan to begin the roadshow in New York next week, people with knowledge of the matter have said. The Hangzhou-based company has garnered years of attention for its scale — with 279 million active buyers in the year through June — and its exposure to a growing Internet consumer base in China.

nbauman sends word that researchers have completed a project to sequence the genome of Coffea canephora, a species of plant responsible for roughly 30% of the world's coffee production. In the course of their genetic mapping, the researchers "pinpointed genetic attributes that could help in the development of new coffee varieties better able to endure drought, disease and pests, with the added benefit of enhancing flavor and caffeine levels." They also discovered a broad range of genes that contribute to the production of flavor-related compounds and caffeine. Plant genomist Victor Albert said, "For any agricultural plant, having a genome is a prerequisite for any sort of high technology breeding or molecular modification. Without a genome, we couldn't do any real advanced research on coffee that would allow us to improve it — not in this day and age."

Calibax writes NVIDIA has filed complaints against Samsung and Qualcomm at the ITC and in the U.S. District court in Delaware. The suit alleges that the companies are both infringing NVIDIA GPU patents covering technology including programmable shading, unified shaders and multithreaded parallel processing. NVIDIA is seeking damages and a ban on U.S. import of a number of devices with Snapdragon and Exynos processors until there is an agreement on licensing.