The Morning After: San Francisco bans the sale of e-cigarettes

Welcome to Wednesday. Amazon’s Prime Day is coming, twice, this July, and Target wants a shopping fight. Meanwhile, Sony does it again with another pair of capable noise-cancelling headphones that you should consider, and NASA briefly halts its Curio…

Source: Engadget – The Morning After: San Francisco bans the sale of e-cigarettes

Fedora's AAC Support Finally Seeing Audio Quality Improvements

Fedora’s version of the FDK-AAC library that they began shipping in 2017 to finally provide AAC audio support strips out what was patented encumbered functionality. But that gutting of the code did cause some problems like audio playback glitches that are now being addressed…

Source: Phoronix – Fedora’s AAC Support Finally Seeing Audio Quality Improvements

3 Most Influential Leaders Of All Time: Amazing Stories Of Great Icons Who Transformed From Misery To Exceptional Leadership

Creating a list of the most influential leaders is not an easy task, let alone narrowing it down the list to just three. This looks somehow difficult because we are inspired by different faces and ways. Some of these leaders are known to be great because of how they maintain their aspirations despite their circumstances […]

The post 3 Most Influential Leaders Of All Time: Amazing Stories Of Great Icons Who Transformed From Misery To Exceptional Leadership appeared first on TGDaily.



Source: TG Daily – 3 Most Influential Leaders Of All Time: Amazing Stories Of Great Icons Who Transformed From Misery To Exceptional Leadership

Spotify’s Soundtrap audio editing tool to offer free unlimited storage

Soundtrap, the cloud-based editing tool for music and podcasts, has decided to throw in free unlimited storage for its non-paying members. Previously, Soundtrap’s basic plan limited users to only five saved songs or projects. Starting today, those wh…

Source: Engadget – Spotify’s Soundtrap audio editing tool to offer free unlimited storage

Vulnerability in AMD’s Secure Encrypted Virtualization for EPYC: Update Now to Build 22

One of the key elements of building a processor is that designing a secure product involves reducing the ‘attack surface’ as much as possible: the fewer ways an attack can get in, the safer your product is. For the white knights of the security world, when a vulnerability is found, the process usually goes through a period of reasonable disclosure, i.e. the issue is presented to the company, and they are often given a certain time to fix the issue (to help customers) before the full disclosure is made public (in case it might be swept under the rug). Using this method, a researcher at Google found a vulnerability in the way AMD’s EPYC processors provide Secure Encrypted Virtualization (SEV) which would allow an attacker to recover a secure key that would provide access between previously isolated VMs on a system. AMD has since released an update to the firmware which patches this issue.



Source: AnandTech – Vulnerability in AMD’s Secure Encrypted Virtualization for EPYC: Update Now to Build 22

Boeing Announces Work with Flying Taxi Startup Kitty Hawk, But Don't Call It a Flying Car

Boeing has announced that it’s working with the flying taxi startup Kitty Hawk, to “collaborate on future efforts to advance safe urban air mobility.” The announcement of the so-called strategic partnership is pretty light on details, but it’s an optimistic signal for people who’ve been waiting on futuristic,…

Read more…



Source: Gizmodo – Boeing Announces Work with Flying Taxi Startup Kitty Hawk, But Don’t Call It a Flying Car

HTC's Cosmos VR headset features a sharper display and six tracking cameras

HTC revealed back in January that its forthcoming VR headset, the Vive Cosmos, will be designed with comfort and accessibility in mind. Now, the company has unveiled a few more details about the device. Major features include a vented front design, t…

Source: Engadget – HTC’s Cosmos VR headset features a sharper display and six tracking cameras

Rugged, Arm-based 7-inch touch-panel supports PoE and CAN

Advantech’s IP66-protected “TPC-71W” industrial panel PC runs Linux or Android on an i.MX6. There’s a 7-inch capacitive touchscreen, GbE with optional PoE, CAN 2.0, mini-PCIe, and -20 to 60°C support. Advantech announced what appears to be its first Arm-based touch-panel computer. The rugged, industrial TPC-71W system runs on an NXP i.MX6 and is aimed at […]

Source: LXer – Rugged, Arm-based 7-inch touch-panel supports PoE and CAN

Security firms demonstrate subdomain hijack exploit vs. EA/Origin

Israeli security firms Check Point and CyberInt partnered up this week to find, exploit, and demonstrate a nasty security flaw that allows attackers to hijack player accounts in EA/Origin’s online games. The exploit chains together several classic types of attack—phishing, session hijacking, and cross-site scripting—but the key flaw that makes the entire attack work is poorly maintained DNS.

This short video clip walks you through the entire process: phish a victim, steal their account token, access their account, and even buy in-game stuff with their saved credit card. (You might want to mute before you press play—the background music is loud and obnoxious.)

If you have a reasonably good eye for infosec, most of the video speaks for itself. The attacker phishes a victim over WhatsApp into clicking a dodgy link, the victim clicks the shiny and gets owned, and the stolen credentials are used to wreak havoc on the victim’s account.

What makes this attack different—and considerably more dangerous—is the attacker’s possession of a site hosted at a valid, working subdomain of ea.com. Without a real subdomain in their possession, the attack would have required the victim to log into a fake EA portal and harvested a password. This would have immensely increased the likelihood of the victim becoming alert to a scam. With the working subdomain, the attacker was able to harvest the authentication token from an existing, active EA session before exploiting it directly and in real time.

Read 6 remaining paragraphs | Comments



Source: Ars Technica – Security firms demonstrate subdomain hijack exploit vs. EA/Origin

San Francisco Bans E-Cigarette Sales Despite Being Home to Juul Labs, the Hottest Name in Addiction Technology

The city of San Francisco has banned the sale of e-cigarettes, becoming one of the first municipalities in the U.S., along with Beverly Hills, to place such tight restrictions on the nicotine-delivery technology. San Francisco’s ban is scheduled to start in early 2020, but traditional nicotine cigarettes and vapes for…

Read more…



Source: Gizmodo – San Francisco Bans E-Cigarette Sales Despite Being Home to Juul Labs, the Hottest Name in Addiction Technology

Polar's Latest Fitness Smartwatch Is For Data Dummies

Fitness tracking can get old fast, especially if you’re a beginner staring at a bunch of numbers that don’t make sense. Polar in particular, is known for tracking in-depth metrics and that’s given it the reputation for creating wearables meant for serious athletes only. But its latest smartwatch—the Ignite—seems…

Read more…



Source: Gizmodo – Polar’s Latest Fitness Smartwatch Is For Data Dummies

Mars Colonization Possible Through Sperm Bank In Space, Study Suggests

An anonymous reader quotes a report from The Guardian: All-female astronaut crews could reproduce in space without the help of accompanying men, new research suggests. The study found that frozen samples of sperm exposed to microgravity retained similar characteristics to sperm samples kept on the ground, raising hopes that a sperm bank could one day be set up in space to help populate new worlds. This could prove interesting for female astronauts, amid reports that future missions to Mars may involve women-only space crews. Findings from the small preliminary study, involving sperm from 10 healthy donors, suggest that “the possibility of creating a human sperm bank outside of Earth” exists, according to the researchers.

One group of sperm samples used in the study had been exposed to microgravity with the help of a small aerobatic aircraft. The samples then underwent fertility screenings and were analyzed for concentration, motility and DNA fragmentation. No significant differences were detected between samples that had been given a ride and those that had stayed on the ground.

Read more of this story at Slashdot.



Source: Slashdot – Mars Colonization Possible Through Sperm Bank In Space, Study Suggests

Polar's latest watch knows if you're too tired for a full workout

Sleep tracking and personal fitness gadgets are nothing new, and even the cheapest knock-off wearables will do a decent enough job of monitoring the main criteria, so companies are constantly looking at ways to make their devices even more useful. Po…

Source: Engadget – Polar’s latest watch knows if you’re too tired for a full workout

People In Japan Don't Seem Thrilled With Kim Kardashian West's Kimono Underwear

Kim Kardashian West has not only launched a line of shapewear called “Kimono,” but has also reportedly filed a trademark for the word “kimono” in the US. Folks in Japan don’t exactly seem thrilled.

Read more…



Source: Kotaku – People In Japan Don’t Seem Thrilled With Kim Kardashian West’s Kimono Underwear

Oppo's under-screen camera is real and taking photos in Shanghai

Earlier this month, Oppo teased its upcoming under-screen camera tech with a quick and dirty video, and Xiaomi was quick to announce that it was working on something similar. Neither company explained how the tech worked back then, but today, our col…

Source: Engadget – Oppo’s under-screen camera is real and taking photos in Shanghai