Take advantage of Black Friday with 15% off sitewide with coupon code "BLACKFRIDAY" on Slashdot Deals (some exclusions apply)". ×

France Using Emergency Powers To Prevent Climate Change Protests (theguardian.com) 30

Bruce66423 writes: Following the Paris massacre, the French government declared a state of emergency. One of the regulations this introduced was control of large scale gatherings, and one of the events that is being caught up in this is planned protests to do with the Climate Change conference in Paris next month. This has resulted in some activists being put under house arrest — yet other gathering, such as commercial street markets — are being allowed to go ahead. Funny that; anyone would think that the government is using the opportunity to suppress dissent.
United Kingdom

UK Prisons To Crack Down On Inmate Internet and Mobile Phone Use (thestack.com) 59

An anonymous reader writes: UK prisons will roll out enhanced internet and mobile phone blocking technologies, according to new measures announced yesterday by Chancellor George Osborne in the Autumn Statement. The step, which seeks to stop inmate access to the internet and calls made from mobile devices, will involve part of a £1.3bn investment from the Ministry of Justice to improve the country's Prison Service. Through this strategy, the government hopes to drive "safety improvements" by denying calls and data used on illicit mobile devices. The latest development in blocking technologies promises to be better (paywalled) than earlier systems, which inmates have been able to get around.
The Courts

Czech Judge Cuts Deal With Software Pirate: Get 200K YouTube Views Or Pay Huge Fine 92

An anonymous reader writes: A judge allowed a software pirate to make a anti-piracy PSA and get away from paying a $373,000 / €351,000 fine he owed Microsoft and other software manufacturers. The only condition was that his video should get over 200,000 views on YouTube. From the BBC's coverage of the trial's unusual outcome: [The defendant, known only as Jakub F] came to the out-of-court settlement with a host of firms whose software he pirated after being convicted by a Czech court. In return, they agreed not to sue him. ... The firms, which included Microsoft, HBO Europe, Sony Music and Twentieth Century Fox, estimated that the financial damage amounted to 5.7m Czech Crowns (£148,000). But the Business Software Alliance (BSA), which represented Microsoft, acknowledged that Jakub could not pay that sum. Instead, the companies said they would be happy to receive only a small payment and his co-operation in the production of the video. In order for the firms' promise not to sue to be valid, they said, the video would have to be viewed at least 200,000 times within two months of its publication this week. ... But, if the video did not reach the target, the spokesman said that — "in theory" — the firms would have grounds to bring a civil case for damages."

Google Scours 1.2 Million URLs To Conform With EU's "Right To Be Forgotten" Law (engadget.com) 66

An anonymous reader writes: According to a Google report the company has evaluated 1,234,092 URLs from 348,085 requests since the EU's May 2014 "right to be forgotten" ruling, and has removed 42% of those URLs. Engadget reports: "To show how it comes to its decisions, the company shared some of the requests it received and its decisions. For example: a private citizen that was convicted of a serious crime, but had that conviction overturned during appeal, had search results about the crime removed. Meanwhile a high ranking public official in Hungary failed to get the results squelched of a decades-old criminal conviction. Of course, that doesn't mean the system is perfect and the company has already been accused of making mistakes."

Even the Dumbest Ransomware Is Almost Unremovable On Smart TVs (symantec.com) 148

An anonymous reader writes: Apparently even the easiest-to-remove ransomware is painfully hard to uninstall from smart TVs, if they're running on the Android TV platform, and many are. This didn't happen in a real-world scenario (yet), and was only a PoC test by Symantec. The researcher managed to remove the ransomware only because he enabled the Android ADB tool beforehand, knowing he would infect the TV with the ransomware. "Without this option enabled, and if I was less experienced user, I'd probably still be locked out of my smart TV, making it a large and expensive paper weight," said the researcher.

High Level Coding Language Used To Create New POS Malware (isightpartners.com) 92

An anonymous reader writes: A new malware framework called ModPOS is reported to pose a threat to U.S. retailers, and has some of the highest-quality coding work ever put into a ill-intentioned software of this nature. Security researchers iSight say of the ModPOS platform that it is 'much more complex than average malware'. The researchers believe that the binary output they have been studying for three years was written in a high-level language such as C, and that the software took 'a significant amount of time and resources to create and debug'.

Patreon Users Threatened By Ashley Madison Scammers (csoonline.com) 75

itwbennett writes: "Over the last few days, the group responsible for extortion attempts and death threats against Ashley Madison users has turned to a new set of targets – Patreon users," writes CSO's Steve Ragan. A message sent from the same account used in previous campaigns by the scammers demands a payment of 1 BTC or else the Patreon user will have their personal information exposed. "The [Bitcoin] wallet being used by the group has barely collected anything," says Ragan, "suggesting that after their massive push towards Ashley Madison users, people have stopped falling for their scams."

Australian State Bans Possession of Blueprints For 3D Printing Firearms (computerworld.com.au) 311

angry tapir writes: Possessing files that can be used to 3D print firearms will soon be illegal in the Australian state of New South Wales after new legislation, passed last week by state parliament, comes into effect. Possessing files for 3D printing guns will be punishable by up to 14 years in prison. The provisions "are targeted at criminals who think they can steal or modify firearms or manufacture firearms from 3D blueprints," NSW's justice minister, Troy Grant, said when introducing the bill in the state's lower house on 27 October. "Those who think they can skirt the law will find themselves facing some of the toughest penalties for firearms offences in this country," Grant said.

How Anonymous' War With Isis Is Actually Harming Counter-Terrorism (metro.co.uk) 389

retroworks writes: According to a recent tweet from the #OpParis account, Anonymous are delivering on their threat to hack Isis, and are now flooding all pro-Isis hastags with the grandfather of all 2007 memes — Rick Astley's "Never Gonna Give You Up" music video. Whenever a targeted Isis account tries to spread a message, the topic will instead be flooded with countless videos of Rick Astley circa 1987. Not all are praising Anonymous methods, however. While Metro UK reports that the attacks have been successful, finding and shutting down 5,500 Twitter accounts, the article also indicates that professional security agencies have seen sources they monitor shut down. Rick Astley drowns out intelligence as well as recruitment.

FTC Amends Telemarketing Rule To Ban Payment Methods Used By Scammers 48

An anonymous reader writes: The Federal Trade Commission has approved final amendments to its Telemarketing Sales Rule (TSR), including a change that will help protect consumers from fraud by prohibiting four discrete types of payment methods favored by scammers. The TSR changes will stop telemarketers from dipping directly into consumer bank accounts by using certain kinds of checks and "payment orders" that have been "remotely created" by the telemarketer or seller. In addition, the amendments will bar telemarketers from receiving payments through traditional "cash-to-cash" money transfers – provided by companies like MoneyGram, Western Union, and RIA.

Ex-CIA Director Says Snowden Should Be 'Hanged' For Paris Attacks (thehill.com) 485

SonicSpike writes with this excerpt from The HIll: A former CIA director says leaker Edward Snowden should be convicted of treason and given the death penalty in the wake of the terrorist attack on Paris. "It's still a capital crime, and I would give him the death sentence, and I would prefer to see him hanged by the neck until he's dead, rather than merely electrocuted," James Woolsey told CNN's Brooke Baldwin on Thursday. Woolsey said Snowden, who divulged classified information in 2013, is partly responsible for the terrorist attack in France last week that left at least 120 dead and hundreds injured. "I think the blood of a lot of these French young people is on his hands," he said.

Chicago Sends More Than 100,000 "Bogus" Camera-Based Speeding Tickets 200

Ars Technica, based on an in-depth report (paywalled) at the Chicago Tribune, says that the city of Chicago has been misusing traffic cameras to trigger automated speeding tickets. In particular, these cameras are placed in places where there are enhanced penalties for speeding, putatively intended to increase child safety. The automated observation system, though, has been used to send well over 100,000 tickets that the Tribune analysis deems "questionable," because they lack the evidence which is supposed to be required -- for instance, many of these tickets are unbacked by evidence of the presence of children, or were issued when the speeding rules didn't apply (next to a park when that park was closed).

The War On Campus Sexual Assault Goes Digital 399

HughPickens.com writes: According to a recent study of 27 schools, about one-quarter of female undergraduates said they had experienced nonconsensual sex or touching since entering college, but most of the students said they did not report it to school officials or support services. Now Natasha Singer reports at the NYT that in an effort to give students additional options — and to provide schools with more concrete data — a nonprofit software start-up in San Francisco called Sexual Health Innovations has developed an online reporting system for campus sexual violence. One of the most interesting features of Callisto is a matching system — in which a student can ask the site to store information about an assault in escrow and forward it to the school only if someone else reports another attack identifying the same assailant. The point is not just to discover possible repeat offenders. In college communities, where many survivors of sexual assault know their assailants, the idea of the information escrow is to reduce students' fears that the first person to make an accusation could face undue repercussions.

"It's this last option that makes Callisto unique," writes Olga Khazan. "Most rapes are committed by repeat offenders, yet most victims know their attackers. Some victims are reluctant to report assaults because they aren't sure whether a crime occurred, or they write it off as a one-time incident. Knowing about other victims might be the final straw that puts an end to their hesitation—or their benefit of the doubt. Callisto's creators claim that if they could stop perpetrators after their second victim, 60 percent of campus rapes could be prevented." This kind of system is based partly on a Michigan Law Review article about "information escrows," or systems that allow for the transmitting of sensitive information in ways that reduce "first-mover disadvantage" also known to economists as the "hungry penguin problem". As game theorist Michael Chwe points out, the fact that each person creates her report independently makes it less likely they'll later be accused of submitting copycat reports, if there are similarities between the incidents.

DoJ Going After Makers of Dietary Supplement (reuters.com) 161

schwit1 writes: Several federal agencies, including the U.S. Department of Justice, have announced criminal and civil actions related to unlawful advertising and sale of dietary supplements. "Six executives with USPlabs LLC and a related company, S.K. Laboratories, face criminal charges related to the sale of unlawful dietary supplements. Four were arrested on Tuesday and two are expected to surrender, the Justice department said. The indictment says that USPlabs used a synthetic stimulant manufactured in China to make Jack3d and OxyElite Pro but told retailers that the supplements were made from plant extracts." The FTC is working on this as well, and their press release has more details. The DoJ's case involves "more than 100 makers and marketers" of these supplements. It's about time.

NYT Quietly Pulls Article Blaming Encryption In Paris Attacks 259

HughPickens.com writes: Inside Sources reports that the NY Times has quietly pulled a story from its website alleging the attackers used encrypted technology. The original piece, which has since been removed, can be found on the Internet Archive. It stated, "The attackers are believed to have communicated using encryption technology, according to European officials who had been briefed on the investigation but were not authorized to speak publicly. It was not clear whether the encryption was part of widely used communications tools, like WhatsApp, which the authorities have a hard time monitoring, or something more elaborate. Intelligence officials have been pressing for more leeway to counter the growing use of encryption."

A link to the NY Times article now redirects readers to a separate, general article on the attacks, which does not contain the word "encrypt." The Times later posted a second article citing an anonymous "European counterterrorism official" who was quoted saying authorities' "working assumption is that these guys were very security aware," but clarified officials "offered no evidence."
The Internet

After Paris, ISIS Moves Propaganda Machine To Darknet (csoonline.com) 184

itwbennett writes: Over the weekend, researcher Scot Terban came across the new website of Al-Hayat Media Center, the media division of Daesh (aka ISIS/ISIL), in a post on Shamikh forum (a known jihadi bulletin board), 'someone had posted the new address and instructions for reaching it,' writes CSO's Steve Ragan. The website hosts the usual anti-Western iconography, as well as songs (Nasheeds) and poems for mujahids in various locations. Terban has mirrored the website and its files; he says he plans to publish more details in the coming days. 'Over the years, there have been several claims made that Daesh had propaganda and recruitment hubs on the Darknet, but no one has ever published proof of those claims or explored how the propaganda machine operates in public,' says Ragan.
The Military

Anonymous Vows Revenge For ISIS Paris Attacks 488

An anonymous reader writes: As usual, Anonymous members are quicker to respond to threats than investigators and have announced #OpParis as revenge for the Paris attacks. Their action is similar to #OpISIS from this spring, launched after the Charlie Hebdo attacks. Previously Anonymous ousted thousands of ISIS Twitter accounts in #OpISIS. In a more conventional response, the government of France has been bombarding ISIS positions in Syria with airstrikes, and hunting for suspect Salah Abdeslam in connection with Friday's killings.

Police Body Cameras Come With Pre-Installed Malware 100

An anonymous reader writes: The old Conficker worm was found on new police body cameras that were taken out of the box by security researchers from iPower Technologies. The worm is detected by almost all security vendors, but it seems that it is still being used because modern day IoT devices can't yet run security products. This allows the worm to spread, and propagate to computers when connected to an unprotected workstation. One police computer is enough to allow attackers to steal government data. The source of the infection is yet unknown. It is highly unlikely that the manufacturer would do this. Middleman involved in the shipping are probably the cause.

Belgian Home Affairs Minister: Terrorists Communicate Via PlayStation 4 (qz.com) 202

bricko writes with story at Quartz reporting the words of Belgium's home affairs minister Jan Jambon, who says that ISIL operators communicate using their PlayStation 4s; "which allows terrorists to communicate with each other and is difficult for the authorities to monitor. 'PlayStation 4 is even more difficult to keep track of than WhatsApp,' he said. The gaming console also was implicated in ISIL's plans back in June, when an Austrian teen was arrested for downloading bomb plans to his PS4." This seems a strange place to concentrate investigators' energies; terrrorists could be communicating in the chat session on the side of many social media games, too, or by any number of other means; Jambon would do well to read through some of the movie plotlines that Bruce Schneier has gathered.

Islamic State Claims Responsibility for Paris Attacks; Death Toll At 127 728

The L.A. Times reports that Islamic State, the group variously known as ISIL, ISIS, and Daesh, has claimed responsibility for the multi-pronged terror attack yesterday in Paris which left at least 128 people dead, most of them from among the audience of a rock concert at the Bataclan theater, in the heart of the city. Details of how Friday’s assaults were carried out remained hazy. It was still unclear, for example, whether the restaurants and concert theater were attacked by two separate teams of militants or one group that went from one place to another. ... Attackers opened fire on the crowd with automatic weapons, shouting “God is great!” or blaming France for airstrikes on Islamic State in Syria, according to some reports. Dozens of concert-goers were killed before French forces stormed the theater. Many Parisians posted appeals and photos on social media asking for news of friends or loved ones whom they had not heard from since the attacks. One man said on Twitter that a government hotline set up to inquire about missing persons was so overloaded that calls could not get through. In the wake of the attacks and with an overloaded public infrastructure, Facebook activated its post-disaster check-in tool for Parisians to notify loved ones that they are safe. According to Reuters, French President Francois Hollande has vowed to undertake a "mercliess" response to the attacks.