Forgot your password?
typodupeerror

Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

Wireless Networking

Wi-Fi Router Attack Only Requires a Single PIN Guess 81

Posted by Soulskill
from the one-two-three-four dept.
An anonymous reader writes: New research shows that wireless routers are still quite vulnerable to attack if they don't use a good implementation of Wi-Fi Protected Setup. Bad implementations do a poor job of randomizing the key used to authenticate hardware PINs. Because of this, the new attack only requires a single guess at the hardware PIN to collect data necessary to break it. After a few hours to process the data, an attacker can access the router's WPS functionality. Two major router manufacturers are affected: Broadcom, and a manufacturer to be named once they get around to fixing it. "Because many router manufacturers use the reference software implementation as the basis for their customized router software, the problems affected the final products, Bongard said. Broadcom's reference implementation had poor randomization, while the second vendor used a special seed, or nonce, of zero, essentially eliminating any randomness."
Cellphones

Ask Slashdot: Best Phone Apps? 159

Posted by Soulskill
from the there's-an-app-for-picking-apps-that-pick-apps dept.
An anonymous reader writes: The phone app ecosystem has matured nicely over the past several years. There are apps for just about everything I need to do on my phone. But I've noticed that once an app fills a particular need, I don't tend to look for newer or potentially better apps that would replace it. In a lot of areas, I'm two or three years out of date — maybe there's something better, maybe not. Since few people relish the thought of installing, testing, and uninstalling literally hundreds of apps, I thought I'd put the question to the Slashdot community: what interesting, useful new(ish) apps are you aware of? This can be anything from incredibly slick, well-designed single purpose apps to powerful multi-function apps to entertainment-oriented apps.
Cellphones

Judge Lucy Koh Rejects Apple's Quest For Anti-Samsung Injunction 30

Posted by timothy
from the sound-reasoning dept.
The Associated Press, in a story carried by The Financial Express, reports that Federal Judge Lucy Koh has has rejected Apple's attempt to block the sale of several older Samsung smartphones that copied features in the iPhone. Wednesday's rebuff comes nearly four months after a jury awarded Apple Inc. $119 million in damages for Samsung's infringements on technology used in the trend-setting iPhone. The amount was well below the $2.2 billion in damages that Apple had been seeking in the latest round of legal wrangling between the world's two leading smartphone makers since the tussle began four years ago. The Register also carries the story, and notes Perhaps because the ongoing battle was turning the two companies into law firms rather than tech titans, the two agreed to abandon all patent lawsuits outside the USA earlier this month. However, Apple still wanted the infringing features extirpated from American stores, and was seeking to have phones nobody bought banned as ammo for future battles.
Mozilla

$33 Firefox Phone Launched In India 83

Posted by samzenpus
from the cheaper-by-the-dozen dept.
davidshenba writes Intex and Mozilla have launched Cloud FX, a smartphone powered by Mozilla's Firefox OS. The phone has a 1 GHz processor, 2 Megapixel camera, dual SIM, 3.5 inch capacitive touchscreen. Though the phone has limited features, initial reviews say that the build quality is good for the price range. With a price tag of $33 (2000 INR), and local languages support the new Firefox phone is hitting the Indian market of nearly 1 billion mobile users.
Cellphones

California Passes Law Mandating Smartphone Kill Switch 233

Posted by timothy
from the we-control-the-vertical dept.
alphadogg (971356) writes "Smartphones sold in California will soon be required to have a kill switch that lets users remotely lock them and wipe them of data in the event they are lost or stolen. The demand is the result of a new law, put into effect on Monday, that applies to phones manufactured after July 1, 2015, and sold in the state. While its legal reach does not extend beyond the state's borders, the inefficiency of producing phones solely for California means the kill switch is expected to be adopted by phone makers on handsets sold across the U.S. and around the world."
Australia

Aussie Airlines To Allow Uninterrupted Mobile Use During Flights 51

Posted by timothy
from the Friendlier-down-there dept.
Bismillah (993337) writes "While you're in coverage during take-off and landing, at least. Passengers flying with Qantas and Virgin Australia might be able to leave their devices on from as early as September this year after the Civil Aviation Authority decided it was no longer unsafe to do so."
Cellphones

Google Announces a New Processor For Project Ara 36

Posted by timothy
from the starting-from-not-quite-scratch dept.
rtoz writes Google has just announced a new processor for Project Ara. The mobile Rockchip SoC will function as an applications processor, without requiring a bridge chip. A prototype of the phone with the Rockchip CPU, will be available early next year. Via Google+ post, Project Ara team Head Paul Eremenko says "We view this Rockchip processor as a trailblazer for our vision of a modular architecture where the processor is a node on a network with a single, universal interface -- free from also serving as the network hub for all of the mobile device's peripherals." (Project Ara is Google's effort to create an extensible, modular cellphone; last month we mentioned a custom version of Linux being developed for the project, too.)
Government

Smartphone Kill Switch, Consumer Boon Or Way For Government To Brick Your Phone? 299

Posted by samzenpus
from the best-of-both-worlds dept.
MojoKid writes We're often told that having a kill switch in our mobile devices — mostly our smartphones — is a good thing. At a basic level, that's hard to disagree with. If every mobile device had a built-in kill switch, theft would go down — who would waste their time over a device that probably won't work for very long? Here's where the problem lays: It's law enforcement that's pushing so hard for these kill switches. We first learned about this last summer, and this past May, California passed a law that requires smartphone vendors to implement the feature. In practice, if a smartphone has been stolen, or has been somehow compromised, its user or manufacturer would be able to remotely kill off its usability, something that would be reversed once the phone gets back into its rightful owner's hands. However, such functionality should be limited to the device's owner, and no one else. If the owner can disable a phone with nothing but access to a computer or another mobile device, so can Google, Samsung, Microsoft, Nokia or Apple. If the designers of a phone's operating system can brick a phone, guess who else can do the same? Everybody from the NSA to your friendly neighborhood police force, that's who. At most, all they'll need is a convincing argument that they're acting in the interest of "public safety."
Cellphones

Your Phone Can Be Snooped On Using Its Gyroscope 96

Posted by Unknown Lamer
from the phone-can-be-snooped-on-by-everything dept.
stephendavion (2872091) writes Researchers will demonstrate the process used to spy on smartphones using gyroscopes at Usenix Security event on August 22, 2014. Researchers from Stanford and a defense research group at Rafael will demonstrate a way to spy on smartphones using gyroscopes at Usenix Security event on August 22, 2014. According to the "Gyrophone: Recognizing Speech From Gyroscope Signals" study, the gyroscopes integrated into smartphones were sensitive enough to enable some sound waves to be picked up, transforming them into crude microphones.
Chrome

New HP Laptop Would Mean Windows at Chromebook Prices 215

Posted by timothy
from the is-that-a-bargain? dept.
New submitter nrjperera (2669521) submits news of a new laptop from HP that's in Chromebook (or, a few years ago, "netbook") territory, price-wise, but loaded with Windows 8.1 instead. Microsoft has teamed up with HP to make an affordable Windows laptop to beat Google Chromebooks at their own game. German website Mobile Geeks have found some leaked information about this upcoming HP laptop dubbed Stream 14, including its specifications. According to the leaked data sheet the HP Stream 14 laptop will share similar specs to HP's cheap Chromebook. It will be shipped with an AMD A4 Micro processor, 2GB of RAM, 32GB of flash storage and a display with 1,366 x 768 screen resolution. Microsoft will likely offer 100GB of OneDrive cloud storage with the device to balance the limited storage option.
IOS

Xiaomi's Next OS Looks Strikingly Similar To iOS 181

Posted by samzenpus
from the imitation-is-the-sincerest-form-of-flattery dept.
stephendavion writes Looks like Chinese device maker, Xiaomi, is taking its "Apple of the East" tag too literally. First, their CEO brazenly copies Steve Jobs' signature look, sitting cross-legged on the floor. And now, Xiaomi's latest version of Android shamelessly rips off iOS 7. MIUI 6, which is Xiaomi's upcoming edition of Android for its latest phones and tablets, looks almost exactly like Apple's operating system for iPhones, iPads and the iPod Touch. It features the same bright color palette and a flat design. Heck, it even does away with Google's "app drawer" and puts all apps on your home screen. It's like the CEO handed iPhones to the design team and barked: "Here, copy this!"
Electronic Frontier Foundation

EFF's Cell Phone Guide For US Protesters 82

Posted by Soulskill
from the do-not-use-your-cell-phone-as-a-projectile-weapon dept.
An anonymous reader writes: The Electronic Frontier Foundation has updated its guide for protecting yourself and your cell phone at a protest. In addition to being extremely powerful tools (real-time communication to many watchers via social media, and video recording functionality), cell phones can also give authorities a lot of information about you if they confiscate it. The EFF is trying to encourage cell phone use and prepare people to use them. (The guide is based on U.S. laws, but much of the advice makes sense for other places as well.) Here are a few small snippets: "Start using encrypted communications channels. Text messages, as a rule, can be read and stored by your phone company or by surveillance equipment in the area. ... If the police ask to see your phone, tell them you do not consent to the search of your device. Again, since the Supreme Court's decision in Riley, there is little question that officers need a warrant to access the contents of your phone incident to arrest, though they may be able to seize the phone and get a warrant later. ... If your phone or electronic device was seized, and is not promptly returned when you are released, you can file a motion with the court to have your property returned."
IOS

The Biggest iPhone Security Risk Could Be Connecting One To a Computer 72

Posted by timothy
from the seems-an-obvious-hole dept.
angry tapir (1463043) writes Apple has done well to insulate its iOS mobile operating system from many security issues, but a forthcoming demonstration shows it's far from perfect. Next Wednesday at the Usenix Security Symposium in San Diego, researchers with the Georgia Institute of Technology will show how iOS's Achilles' heel is exposed when devices are connected over USB to a computer or have Wi-Fi synching enabled. The beauty of their attack is that it doesn't rely on iOS software vulnerabilities, the customary way that hackers commandeer computers. It simply takes advantage of design issues in iOS, working around Apple's layered protections to accomplish a sinister goal.
Communications

Ryan Lackey, Marc Rogers Reveal Inexpensive Tor Router Project At Def Con 38

Posted by timothy
from the widespread-and-easy-are-tightly-linked dept.
An anonymous reader writes Ryan Lackey of CloudFlare and Marc Rogers of Lookout revealed a new OPSEC device at Def Con called PORTAL (Personal Onion Router to Assure Liberty). It "provides always-on Tor routing, as well as 'pluggable' transport for Tor that can hide the service's traffic signature from some deep packet inspection systems." In essence, PORTAL is a travel router that the user simply plugs into their existing device for more than basic Tor protection (counterpoint to PogoPlug Safeplug and Onion Pi). On the down side, you have to download PORTAL from Github and flash it "onto a TP-Link compatible packet router." The guys behind the device acknowledge that not many people may want to (or even know how to) do that, so they're asking everyone to standby because a solution is pending. The project's GitHub page has a README file that lists compatible models, with some caveats: "It is highly recommended to use a modified router. The modified MR11U and WR703N provide a better experience than the stock routers due to the additional RAM. The severe space constraints of the stock router make them very challenging to work with. Due to the lack of usable space, it is necessary to use an external disk to store the Tor packages. The stock router has only a single USB port, and the best option is to use a microSD in a 3G modem." (Note: Lackey is no stranger to helping people secure internet privacy.)

The one day you'd sell your soul for something, souls are a glut.

Working...