Active Response

An anonymous reader writes "'Always bet on Duke.' It seems he was right about himself, at least. The longest, most storied in-development game in history seems like it's finally going to be released by Gearbox Software sometime within the next year. 'According to Pitchford, Gearbox began finishing Duke Nukem Forever in late 2009. "Clearly the game hadn't been finished at 3D Realms but a lot of content had been created," he says. "The approach and investment and process at 3D Realms didn't quite make it, and it cracked at the end. With Gearbox Software we brought all those pieces together. It's the game it was meant to be." The game is currently expected to ship in 2010 although given its history Pitchford is understandably reluctant to be more specific.'"

Read more of this story at Slashdot.

Jake writes with this excerpt from Ars: "Microsoft is warning about a new piece of malware, Rogue:MSIL/Zeven, that auto-detects a user's browser and then imitates the relevant malware warning pages from Internet Explorer, Firefox, or Chrome. The fake warning pages are very similar to the real thing; you have to look closely to realize they aren't the real thing. The ploy is a basic social engineering scheme, but in this case the malware authors are relying on the user's trust in their browser, a tactic that hasn't been seen before. Beyond the warning pages, the actual malware looks like the real deal: it allows you to scan files, tells you when you're behind on your updates, and enables you to change your security and privacy settings. Performing a scan results in the product finding malicious files, but of course it cannot delete them unless you update, which requires paying for the full version. Attempting to buy the product will open an HTML window that provides a useless 'Safe Browsing Mode' with high-strength encryption. To top it all off, the rogue antivirus webpage looks awfully similar to the Microsoft Security Essentials webpage; even the awards received by MSE and a link to the Microsoft Malware Protection Center have been copied."

Read more of this story at Slashdot.

waderoush writes "On top of all the other features that it has crammed into iTunes, Apple this week added Ping, a Facebook-like social network for music discovery. It's all part of the company's plan to dominate the world of consumer media, but Xconomy argues that this time, Apple may have gone a bridge too far. iTunes, nearing its tenth birthday, started out merely as a program for ripping CDs, and has grown increasingly creaky and impenetrable as Apple has added more and more cruft, the article argues. The company won't have a stable base for its new media empire until it rebuilds iTunes from scratch — perhaps along the lines suggested by its other new product this week, the revamped Apple TV."

Read more of this story at Slashdot.

Lucas123 writes "After a storage area network in a data center run by Northrop Grumman went down last week, crippling 26 state agencies' websites — some for more than a week — Northrop Grumman has now apologized to Virginia, saying it will learn from its mistakes in order to recover systems faster in the future. Northrop's $2.6 billion service contract with Virginia's government has come under harsh criticism in the past for service outages, along with project delays and cost overruns."

Read more of this story at Slashdot.

Dangerous_Minds writes "Drew Wilson has been following HADOPI (France's three strikes law) a lot lately, and the latest developments are that the French ISPs and the French government are edging closer to a full-on war over compensation. The French government apparently requested that ISPs send an invoice of the bills after a certain period of time, but the French ISPs don't feel this is good enough — probably because of worries that the compensation the government will ultimately provide won't be enough. The ISPs are demanding adequate compensation, and if the government doesn't give it to them, they simply will not hand over evidence required to enforce HADOPI law. While HADOPI demands that ISPs cooperate, speculation suggests that if the government takes ISPs to court, the ISPs will simply rely on constitutional jurisprudence to shield them from liability (translation)."

Read more of this story at Slashdot.

In May we discussed news that producers of the film The Hurt Locker filed a lawsuit against 5,000 John Does, known only by their IP addresses at the time, for sharing the movie over peer-to-peer sites. Now, reader suraj.sun notes that subpoenas for the lawsuit are finally going out. "Qwest Communications on Monday notified a customer in Denver that the Internet service provider has received a subpoena from lawyers representing Voltage Pictures, the production company that made The Hurt Locker. ... In legal documents, Voltage Pictures has blamed the movie's relatively poor domestic performance on illegal file sharing. As of March 21, the movie had grossed $16 million domestically, but took in $40 million overall. According to reports, the film's production budget was $15 million. The film leaked to the Web five months before the movie's US debut. ... For allegedly downloading The Hurt Locker, DGW told the Qwest customer from Denver that settling the case early would cost $2,900, according to documents reviewed by CNET."

Read more of this story at Slashdot.

neo12 writes with news that Hewlett-Packard is teaming with Hynix Semiconductor, the world's second-largest producer of memory chips, to mass produce memristors for the first time. Quoting the BBC: "HP says the first memristors should be widely available in about three years. The devices started as a theoretical prediction in 1971 but HP's demonstration and publication of a real working device has put them on a possible roadmap to replace memory chips or even hard drives. ... Steve Furber, professor of computer engineering at the University of Manchester, explained that the potential benefits lie in the fact that memristors are 'much simpler in principle than transistors. Because they are formed as a film between two wires, they don't have to be implanted into the silicon surface — as do transistors, which form the storage locations in Flash — so they could be built in layers in 3D,' he told BBC News. 'Of course, the devil is in the detail, and I don't think the manufacturing challenges have been fully exposed yet.'"

Read more of this story at Slashdot.

judgecorp writes "Steady progress on inductive wireless charging. There are now certified prototypes of chargers for Blackberry and iPhone devices that meet the Qi specification of the Wireless Power Consortium, which was announced last year. The spec has advanced from version 0.95 to 1.0, too."

Read more of this story at Slashdot.

dexmachina writes "A team of theoreticians, led by a group from Imperial College London, has released calculations that show string theory makes specific, testable predictions about the behaviour of quantum entangled particles. Professor Mike Duff, lead author of the study from the Department of Theoretical Physics at Imperial College London, commented, 'This will not be proof that string theory is the right "theory of everything" that is being sought by cosmologists and particle physicists. However, it will be very important to theoreticians because it will demonstrate whether or not string theory works, even if its application is in an unexpected and unrelated area of physics.' In other words, string theory may finally have shed its critics' most common complaint: unfalsifiability. However, given the second most common complaint, I can't help but wonder: which string theory?"

Read more of this story at Slashdot.

angry tapir writes "Facebook users will soon have a new way of knocking spammers out of legitimate accounts. The social-networking company is rolling out a new security feature that lets users see which computers and devices are logged into their Facebook accounts, and then removing the ones that they don't want to have access."

Read more of this story at Slashdot.

KSP '.m3u' File Buffer Overflow Vulnerability

Icarus 'PGN' File Remote Stack Buffer Overflow Vulnerability

HP-UX Software Distributor Unspecified Local Privilege Escalation Vulnerability

Trend Micro Internet Security Pro ActiveX Control Remote Code Execution Vulnerability

Trailrunner7 writes "Google has released a new version of its Chrome browser and has included more than a dozen security fixes in the update. The new version, 6.0.472.53, was released two years to the day after the company pushed out the first version of Chrome. Google Chrome 6 includes patches for 14 total security vulnerabilities, including six high-priority flaws, and the company paid out a total of $4,337 in bug bounties to researchers who reported the vulnerabilities. A number of the flaws that didn't qualify for bug bounties were discovered by members of Google's internal security team." (Read on for more, below.)

Read more of this story at Slashdot.

itwbennett writes "According to Harvard magazine, Harvard's Faculty of Arts and Sciences voted at its meeting on May 11 to require instructors to officially inform the Registrar 'at the first week of the term' of the intention to end a course with a formal, seated exam, 'the assumption shall be that the instructor will not be giving a three-hour final examination.' Dean of undergraduate education Jay M. Harris 'told the faculty that of 1,137 undergraduate-level courses this spring term, 259 scheduled finals — the lowest number since 2002, when 200 fewer courses were offered. For the more than 500 graduate-level courses offered, just 14 had finals, he reported.'"

Read more of this story at Slashdot.

Hugh Pickens writes "Ryan Lawler writes on GigaOm that although many have touted the availability of Flash on Android devices as a competitive advantage over Apple's mobile devices, while trying to watch videos from ABC.com, Fox.com and Metacafe using Flash 10.1 on a Nexus One over a local Wi-Fi network connected to a 25-Mbps Verizon FiOS broadband connection, mobile expert Kevin Tofel found that videos were slow to load, if they loaded at all, leading to an overall very inconsistent experience while using his Android device for video. 'While in theory Flash video might be a competitive advantage for Android users, in practice it's difficult to imagine anyone actually trying to watch non-optimized web video on an Android handset,' writes Lawler. 'All of which makes one believe that maybe Steve Jobs was right to eschew Flash in lieu of HTML5 on the iPhone and iPad.'"

Read more of this story at Slashdot.

cgriffin21 writes "Samsung is making no bones about it: Google Android is its future. And with the revealing of the Samsung Galaxy Tab, the company is showing that it's all in when it comes to Android. At the IFA consumer electronics show in Berlin, Samsung finally pulled the curtain off the long-rumored and teased Galaxy Tab, the electronics maker's touch-screen tablet and answer to the Apple iPad."

Read more of this story at Slashdot.

{PRL} Novell Netware OpenSSH Remote Stack Overflow

Vulnerabilities in CMS WebManager-Pro