Feed aggregator

Brazil's Grid Caps Power From Wind and Solar, Threatening Renewable Projects

Slashdot - Fri, 2024-08-23 01:10
Wind and solar energy producers in Brazil have warned they are reconsidering future investments there after the national grid operator repeatedly capped how much energy they could deliver in the past year, which squeezed their profits. From a report: Brazil has made big strides encouraging companies to invest in wind, solar and other renewable power generation sources, offering generous financing and subsidies. But all the electricity they generate has taxed the grid. More than a dozen executives and industry representatives said renewable energy investments were less viable under the National Electric System Operator's (ONS) current "curtailments" policy, which temporarily caps how much power ONS accepts from wind and solar plants. The pressure has been most acute in northeast Brazil, a hot spot for renewable energy investment. There are bottlenecks in transmission lines carrying electricity to Sao Paulo, Rio de Janeiro and elsewhere in the more populous southeast region. ONS has managed the grid more cautiously since August 2023, when a power outage in the northeast spread over most of the country. That has meant more curtailments when electricity generation exceeds consumption or there is a lack of transmission capacity. ONS has said curtailments were not excessive, and were necessary for safety. The operator said its data shows only 3% of electricity generated was lost to curtailments last month.Volt Robotics, a power sector consultancy, analyzed ONS numbers.

Read more of this story at Slashdot.

Categories: Computer, News

Hydrogels Can Learn To Play Pong

Slashdot - Fri, 2024-08-23 00:30
An anonymous reader quotes a report from Ars Technica: Pong will always hold a special place in the history of gaming as one of the earliest arcade video games. Introduced in 1972, it was a table tennis game featuring very simple graphics and gameplay. In fact, it's simple enough that even non-living materials known as hydrogels can "learn" to play the game by "remembering" previous patterns of electrical stimulation, according to a new paper published in the journal Cell Reports Physical Science. "Our research shows that even very simple materials can exhibit complex, adaptive behaviors typically associated with living systems or sophisticated AI," said co-author Yoshikatsu Hayashi, a biomedical engineer at the University of Reading in the UK. "This opens up exciting possibilities for developing new types of 'smart' materials that can learn and adapt to their environment." [...] The experimental setup was fairly simple. The researchers hooked up electroactive hydrogels to a simulated virtual environment of a Pong game using a custom-built electrode array. The games would start with the ball traveling in a random direction. The hydrogels tracked the ball's position via electrical stimulation and tracked the paddle's position by measuring the distribution of ions in the hydrogels. As the games progressed, the researchers measured how often the hydrogel managed to hit the ball with the paddle. They found that, over time, the hydrogels' accuracy improved, hitting the ball more frequently for longer rallies. They reached their maximum potential for accuracy in about 20 minutes, compared to 10 minutes for the DishBrain. The authors attribute this to the ion movement essentially mapping out a "memory" of all motion over time, exhibiting what appears to be emergent memory functions within the material itself. Perhaps the next step will be to "teach" the hydrogels how to align the paddles in such a way that the rallies go on indefinitely.

Read more of this story at Slashdot.

Categories: Computer, News

Instagram Is Adding a Myspace-Like 'Song On Profile' Feature

Slashdot - Thu, 2024-08-22 23:50
Instagram is adding a new feature today that will "allow users to add a song on their profile -- much like Myspace in the early 2000s," writes The Verge's Mia Sato. From the report: The music added to a user's profile shows up in the bio area, according to screenshots shared by Instagram. A song will be featured on a profile until the user removes or replaces it. But unlike Myspace, songs won't autoplay -- people viewing a profile with a song can play and pause the track. Users can add a song by going to the "edit profile" page, where they'll be able to search for and select a track from Instagram's library of licensed music that's also available for things like Reels or posts. From there, users will be able to select a 30-second-long portion of the song to add.

Read more of this story at Slashdot.

Categories: Computer, News

Google Play Will No Longer Pay To Discover Vulnerabilities In Popular Android Apps

Slashdot - Thu, 2024-08-22 23:10
Android Authority's Mishaal Rahman reports: Security vulnerabilities are lurking in most of the apps you use on a day-to-day basis; there's just no way for most companies to preemptively fix every possible security issue because of human error, deadlines, lack of resources, and a multitude of other factors. That's why many organizations run bug bounty programs to get external help with fixing these issues. The Google Play Security Reward Program (GPSRP) is an example of a bug bounty program that paid security researchers to find vulnerabilities in popular Android apps, but it's being shut down later this month. Google announced the Google Play Security Reward Program back in October 2017 as a way to incentivize security searchers to find and, most importantly, responsibly disclose vulnerabilities in popular Android apps distributed through the Google Play Store. [...] The purpose of the Google Play Security Reward Program was simple: Google wanted to make the Play Store a more secure destination for Android apps. According to the company, vulnerability data they collected from the program was used to help create automated checks that scanned all apps available in Google Play for similar vulnerabilities. In 2019, Google said these automated checks helped more than 300,000 developers fix more than 1,000,000 apps on Google Play. Thus, the downstream effect of the GPSRP is that fewer vulnerable apps are distributed to Android users. However, Google has now decided to wind down the Google Play Security Reward Program. In an email to participating developers, such as Sean Pesce, the company announced that the GPSRP will end on August 31st. The reason Google gave is that the program has seen a decrease in the number of actionable vulnerabilities reported. The company credits this success to the "overall increase in the Android OS security posture and feature hardening efforts."

Read more of this story at Slashdot.

Categories: Computer, News

Crypto 'Pig Butchering' Scam Wrecks Kansas Bank, Sends Ex-CEO To Prison For 24 Years

Slashdot - Thu, 2024-08-22 22:30
An anonymous reader quotes a report from NBC News: The former CEO of a small Kansas bank was sentenced to more than 24 years in prison for looting the bank of $47 million -- which he sent to cryptocurrency wallets controlled by scammers who had duped him in a "pig butchering" scheme that appealed to his greed, federal prosecutors said. The massive embezzlement by ex-CEO Shan Hanes in a series of wire transfers over just eight weeks last year led to the collapse and FDIC takeover of Heartland Tri-State Bank in Elkhart, one of only five U.S. banks that failed in 2023. Hanes, 53, also swindled funds from a local church and investment club -- and a daughter's college savings account -- to transfer money, purportedly to buy cryptocurrency as the scammers insisted they needed more funds to unlock the supposed returns on his investments, according to records from U.S. District Court in Wichita, Kansas. But Hanes never realized any profit and lost all of the money he stole as a result of the scam. Judge John Broomes on Monday sentenced Hanes to 293 months in prison -- 29 months more than what prosecutors requested after he pleaded guilty in May to a single count of embezzlement by a bank officer. [...] [P]rosecutors and bank regulators said that Hanes, who has three daughters with his school teacher wife, began stealing after being targeted in a pig-butchering scheme in late 2022. That scheme was described in a court filing as "a scammer convincing a victim (a pig) to invest in supposedly legitimate virtual currency investment opportunities and then steals the victim's money -- butchering the pig." Hanes, who had served on the board of the American Bankers Association, and been chairman of the Kansas Bankers Association, in December 2022 began making transactions to buy cryptocurrency, which "appeared to be precipitated by communication with an unidentified co-conspirator on the electronic messaging app 'WhatsApp,'" prosecutors wrote in a court filing. "To date, the true identity of the co-conspirator, or conspirators, remain unknown," the filing notes. Hanes initially used personal funds to buy crypto, but in early 2023 he stole $40,000 from Elkhart Church of Christ and $10,000 from the Santa Fe Investment Club, according to prosecutors and a defense filing. He also used $60,000 taken from a daughter's college fund, and nearly $1 million in stock from the Elkhart Financial Corporation, his lawyer said in a filing. In May 2023, he began to make wire transfers from Heartland Tri-State Bank to accounts controlled by scammers, at first with a $5,000 transfer. Two weeks later, on May 30, Hanes wired $1.5 million and a day after that, he sent another transfer of the same amount the following day, filings show. Three days later he directed two wire transfers totaling $6.7 million to be sent by the bank to the crypto wallet, and a whopping $10 million less than two weeks later, and another $3.3 million days afterward. Hanes told bank employees to execute the wire transfers, and "made many misrepresentations to various people" to get access to the funds so they could be transferred, prosecutors wrote. Heartland Tri-State employees circumvented the bank's own wire policy and daily limits to approve Hanes' wire transfers, according to a report by the Office of the Inspector General of the Board of Governors of the Federal Reserve System.

Read more of this story at Slashdot.

Categories: Computer, News

Bug in Apple Devices Crashes UI With Four-Character Input

Slashdot - Thu, 2024-08-22 20:44
A newly discovered bug causes iPhones and iPads to briefly crash. All you need to trigger the bug are just four characters. From a report: On Wednesday, a security researcher found that typing "":: can cause the Apple mobile user interface, called Springboard, to crash. TechCrunch verified those characters do crash Springboard when typed into the Search bar in the Settings app, as well as if you swipe all the way to the right on your home screen and type them into the App Library search bar. As others noted, all that's needed is actually "": and any other character. Triggering the bug briefly crashes Springboard, then reloads to your lock screen. In other tests, the bug flashed the screen black for a second. Researchers tell TechCrunch the bug does not appear to be a security issue. "It's not a security bug," said Ryan Stortz, an iOS security researcher who analyzed the bug. Patrick Wardle, who also researches iOS and founded security startup DoubleYou, agreed.

Read more of this story at Slashdot.

Categories: Computer, News

Humans To Push Further Into Wildlife Habitats Across More Than 50% of Land by 2070, Study Says

Slashdot - Thu, 2024-08-22 20:07
Over the next 50 years, people will push further into wildlife habitats across more than half the land on Earth, scientists have found, threatening biodiversity and increasing the chance of future pandemics. From a report: Humans have already transformed or occupied between 70% and 75% of the world's land. Research published in Science Advances on Wednesday found the overlap between human and wildlife populations is expected to increase across 57% of the Earth's land by 2070, driven by human population growth. [...] As humans and animals share increasingly crowded landscapes, the bigger overlap could result in higher potential for disease transmission, biodiversity loss, animals being killed by people and wildlife eating livestock and crops, the researchers said. Biodiversity loss is the leading driver of infectious disease outbreaks. About 75% of emerging diseases in humans are zoonotic, meaning they can be passed from animals to humans, and many diseases concerning global health authorities -- including Covid-19, mpox, avian flu and swine flu -- likely originated in wildlife.

Read more of this story at Slashdot.

Categories: Computer, News

Apple Will Allow EU Users To Delete Safari, Messages and App Store Apps

Slashdot - Thu, 2024-08-22 19:25
Apple will change how users choose browser options in the European Union, add a dedicated section for changing default apps, and make more apps deletable, the company said on Thursday. From a report: The iPhone maker came under pressure from regulators to make changes after the EU's sweeping Digital Markets Act took effect on March 7, forcing it to offer mobile users the ability to select from a list of available web browsers on a "choice screen" the first time they open Safari. In an update later this year, Apple users will be able to select a default browser directly from the choice screen after going through a mandatory list of options. A randomly ordered list of 12 browsers per EU country will be shown to the user with short descriptions, and the chosen one will be automatically downloaded, Apple said. The choice screen will also be available on iPads through an update later this year. Apple released a previous update in response to the new rules in March, but browser companies criticized the design of its choice screen, and the Commission opened an investigation on March 25 saying it suspected that the measures fell short of effective compliance. [...] Users will also be able to delete certain Apple-made apps such as App Store, Messages, Camera, Photos and Safari.

Read more of this story at Slashdot.

Categories: Computer, News

Microsoft Will Try the Data-Scraping Windows Recall Feature Again in October

Slashdot - Thu, 2024-08-22 18:48
Microsoft will begin sending a revised version of its controversial Recall feature to Windows Insider PCs beginning in October, according to an update published to the company's original blog post about the Recall controversy. From a report: The company didn't elaborate further on specific changes it's making to Recall beyond what it already announced in June. For those unfamiliar, Recall is a Windows service that runs in the background on compatible PCs, continuously taking screenshots of user activity, scanning those screenshots with optical character recognition (OCR), and saving the OCR text and the screenshots to a giant searchable database on your PC. The goal, according to Microsoft, is to help users retrace their steps and dig up information about things they had used their PCs to find or do in the past.

Read more of this story at Slashdot.

Categories: Computer, News

AGI is On Clients' Radar But Far From Reality, Says Gartner

Slashdot - Thu, 2024-08-22 18:05
Gartner is warning that any prospect of Artificial General Intelligence (AGI) is at least 10 years away and perhaps not certain to ever arrive. It might not even be a worthwhile pursuit, the analyst says. From a report: AGI has become a controversial topic in the last couple of years as builders of large language models (LLMs), such as OpenAI, make bold claims that they've established a near-term path toward human-like intelligence. At the same time, others from the discipline of cognitive science have scorned the idea, arguing that the concept of AGI is poorly understood and the LLM approach is insufficient. In its Hype Cycle for Emerging Technologies, 2024, Gartner says it distills "key insights" from more than 2,000 technologies and, using its framework, produces a succinct set of "must-know" emerging technologies that have the potential to deliver benefits over the next two to ten years. The consultancy notes that GenAI -- the subject of volumes of industry hype and billions in investment -- is about to enter the dreaded "trough of disillusionment." Arun Chandrasekaran, Gartner distinguished VP analyst, told The Register: "The expectations and hype around GenAI are enormously high. So it's not that the technology, per se, is bad, but it's unable to keep up with the high expectations that I think enterprises have because of the enormous hype that's been created in the market in the last 12 to 18 months." However, GenAI is likely to have a significant impact on investment in the longer term, Chandrasekaran said. "I truly still believe that the long-term impact of GenAI is going to be quite significant, but we may have overestimated, in some sense, what it can do in the near term."

Read more of this story at Slashdot.

Categories: Computer, News

Microsoft Engineers' Pay Data Leaked, Reveals Compensation Details

Slashdot - Thu, 2024-08-22 17:26
Software engineers at Microsoft earn an average total compensation ranging from $148,436 to $1,230,000 annually, depending on their level, according to a leaked spreadsheet viewed by Business Insider. The data, voluntarily shared by hundreds of U.S.-based Microsoft employees, includes information on salaries, performance-based raises, promotions, and bonuses. The highest-paid engineers work in Microsoft's newly formed AI organization, with average total compensation of $377,611. Engineers in Cloud and AI, Azure, and Experiences and Devices units earn between $242,723 and $255,126 on average.

Read more of this story at Slashdot.

Categories: Computer, News

Peloton To Start Charging Subscribers With Used Equipment $95 Activation Fee

Slashdot - Thu, 2024-08-22 16:47
Peloton on Thursday said it will start charging new subscribers a one-time $95 activation fee if they bought their hardware on the secondary market as more consumers snag lightly used equipment for a fraction of the typical retail price. From a report: The used equipment activation fee for subscribers in the U.S. and Canada comes as Peloton starts to see a meaningful increase in new members who bought used Bikes or Treads from peer-to-peer markets such as Facebook Marketplace. During its fiscal fourth quarter, which ended June 30, Peloton said it saw a "steady stream of paid connected fitness subscribers" who bought hardware on the secondary market. The company said the segment grew 16% year over year. "We believe a meaningful share of these subscribers are incremental, and they exhibit lower net churn rates than rental subscribers," the company said in a letter to shareholders. "It's also worth highlighting that this activation fee will be a source of incremental revenue and gross profit for us, helping to support our investments in improving the fitness experience for our members," interim co-CEO Christopher Bruzzo later added on a call with analysts.

Read more of this story at Slashdot.

Categories: Computer, News

Apple is Still Standing in the Way of Epic's App Store

Slashdot - Thu, 2024-08-22 16:08
Epic Games launched its alternative app store in the European Union last week, capitalizing on new regulations opening up iOS. The store aims to offer developers lower commissions and greater payment flexibility compared to Apple's App Store. However, Apple's new terms for alternative marketplaces present significant challenges for developers. Apple imposes a 50 euro cent per user per year installation fee, a 10% commission on external sales, and a 5% fee on purchases within a year of installation. These fees apply on top of Epic's 12% commission, potentially making the alternative store less attractive for many developers, The Verge writes. While Epic can likely absorb these costs for its hit game Fortnite, smaller developers face a steeper hurdle. Some industry insiders express skepticism about the viability of the new ecosystem for most app creators. Epic plans to offer a curated selection of third-party games on its mobile store by December, but widespread adoption remains uncertain.

Read more of this story at Slashdot.

Categories: Computer, News

Bezos' Blue Origin Suffers Fiery Setback Building New Rocket

Slashdot - Thu, 2024-08-22 15:00
An anonymous reader quotes a report from Bloomberg: Blue Origin sustained failures in recent weeks of testing including a factory mishap that damaged a portion of a future New Glenn rocket, the long-awaited centerpiece of the Jeff Bezos-backed startup's push to take on SpaceX. The upper portion of one rocket crumpled into itself, in part due to worker error, while it was being moved to a storage hangar, according to people familiar with the situation. In a separate incident, another upper rocket portion failed during stress testing and exploded, the people said. Repairs are underway, another person said, noting there were no injuries during either episode. The previously unreported incidents illustrate the hurdles Blue Origin is grappling with while ramping up production of New Glenn, which is four years overdue. At the same time, new Chief Executive Officer Dave Limp has hired a slate of executives to shake the company out of a years-long R&D slump.

Read more of this story at Slashdot.

Categories: Computer, News

Lionsgate Pulls 'Megalopolis' Trailer Offline Due To Made-Up Critic Quotes

Slashdot - Thu, 2024-08-22 14:03
Lionsgate is recalling its latest trailer for Francis Ford Coppola's epic "Megalopolis," which featured a littany of fabricated quotes from famous film critics. From a report: "Lionsgate is immediately recalling our trailer for 'Megalopolis,'" a Lionsgate spokesperson said in a statement provided to Variety. "We offer our sincere apologies to the critics involved and to Francis Ford Coppola and American Zoetrope for this inexcusable error in our vetting process. We screwed up. We are sorry." The trailer, released on Wednesday morning, aimed to position Coppola's latest film as a work of art that would withstand the test of time, much like his previous masterpieces "The Godfather" and "Apocalypse Now." The video included several quotes from critics panning Coppola's previous work -- but none of the phrases, attributed to the likes of Roger Ebert and Pauline Kael, could be found in any of their reviews.

Read more of this story at Slashdot.

Categories: Computer, News

Ryzen 9 9950X Performs 16% Faster On Intel-Optimized Linux Distro

Slashdot - Thu, 2024-08-22 12:00
Phoronix's Michael Larabel benchmarked AMD's latest Ryzen 9 9950X in several different Linux distros and found that the Zen 5 chip performs up to 16% faster with the Intel-optimized Clear Linux distro. Here's an excerpt from the report: The Linux distributions for this round of testing on the AMD Ryzen 9 9950X included Arch Linux, CachyOS, Clear Linux, Fedora Workstation 40, Ubuntu 24.04 LTS, and a recent daily snapshot of Ubuntu 24.10 in its current development form. Intel's Clear Linux is the one most interesting for looking at on the new AMD Zen 5 hardware. While there hasn't been so much Clear Linux news in recent times, it remains the most well optimized x86_64 Linux distribution out of the box. Clear Linux makes use of compiler function multi versioning, performance-minded defaults, aggressive compiler CFLAGS/CXXFLAGS defaults, optional AVX-512 usage for more libraries, and many other patches and optimizations in the name of delivering the greatest x86_64 Linux performance. And while not Intel's focus, it works typically on AMD hardware too. [...] Using the same Ryzen 9 9950X system, all of these Linux distributions were tested in their default / out-of-the-box state. [...] When taking the geometric mean of 59 benchmarks run across all of the Linux distributions on this AMD Ryzen 9 9950X system, Intel's Clear Linux easily took the crown. Ubuntu 24.04 LTS -- which was used for all of the Ryzen 9000 series Linux testing so far on Phoronix -- was the slowest. Tapping Intel's Clear Linux netted a 16% improvement on top of the performance offered by Ubuntu 24.04 LTS! Ubuntu 24.04 with the Ryzen 9000 series was already looking great generationally, but as shown today the performance can be even better with further software optimizations. The Arch Linux powered CachyOS that is tuned out-of-the-box with a similar aim to Clear Linux also performed great. CachyOS was 7% faster than Ubuntu 24.04 LTS based on the geo mean and 3% faster than upstream Arch Linux itself. For different workloads though the CachyOS advantage over Arch Linux varied from a minimal difference to quite significant advantages. From the performance of PHP and Python scripts atop Clear Linux to compiling various server and HPC minded software, Intel's Clear Linux -- and a commendable second place for CachyOS -- were showing that even greater performance can be achieved on the AMD Ryzen 9 9950X. Even for devoted Ubuntu Linux users, these results did show some nice advantages of the upcoming Ubuntu 24.10 release over Ubuntu 24.04 LTS thanks to the GCC 14 compiler. Ubuntu 24.10 performance is also still subject to change since the current daily ISOs haven't yet moved past the Linux 6.8 kernel while Ubuntu 24.10 in October will be shipping with Linux 6.11.

Read more of this story at Slashdot.

Categories: Computer, News

Second Human To Receive Neuralink Brain Chip Uses It To Play Counter-Strike 2

Slashdot - Thu, 2024-08-22 09:00
In a blog post on Wednesday, Neuralink said its second human recipient is using the brain chip to play Counter-Strike 2 and develop 3D designs in CAD software. "Alex" was given the brain chip last month to help restore his autonomy after a spinal cord injury. PCMag reports: Like the first Neuralink patient, Noland Arbaugh, Alex has also been using the brain chip to play his favorite computer games, such as Counter-Strike 2. Before, Alex had to use a mouth-operated controller, called a QuadStick, to play the first-person shooter. But even then, the controller limited him to only moving or aiming his weapon at a single time, never simultaneously like a normal Counter-Strike player. In other words, Alex had to essentially switch back and forth between the mouse and keyboard functions while playing the game. But thanks to Neuralink, he can now aim with the implant, and simultaneously move while using the QuadStick. [...] In the blog post, Neuralink also addressed a problem the company faced when placing the chip in Arbaugh, the first patient. Despite a successful surgery, about 85% of the thread-based electrodes attached to his brain later became displaced, undermining the full potential of the chip to read neural signals. Although Arbaugh can still use his implant effectively, Neuralink wanted to avoid a repeat with Alex. In response, the company developed several "mitigations," which include reducing the chance of an air pocket forming during surgery and placing the implant deeper into the brain tissue. "Promisingly, we have observed no thread retraction in our second participant," the company said of Alex. Whether Alex's implant outperforms the brain chip in Arbaugh was left unclear. In the meantime, Neuralink says it's working on ways to enhance the controls on the technology "to deliver full mouse and video game controller functionality." "Additionally, we plan to enable the Link [brain chip] to interact with the physical world, allowing users to feed themselves and move more independently by controlling a robotic arm or their wheelchair," the company said. You can watch Alex playing Counter-Strike 2 on YouTube.

Read more of this story at Slashdot.

Categories: Computer, News

CodeSOD: Maximally Zero

The Daily WTF - Thu, 2024-08-22 08:30

Today's anonymous submitter found some Java code which finds the largest value in a quartet of floats. Now, the code is quite old, so it actually predates varargs in Java. That doesn't excuse any of what you're about to see.

public float CalculateMaximumValue(float a, float b, float c, float d) { int i = 0; float[] arr = new float[] { 0, 0, 0, 0 }; float gtval = 0; for (i = 0; i < 4; i++) { arr[i] = 0; } arr[0] = a; arr[1] = b; arr[2] = c; arr[3] = d; gtval = arr[0]; for (i = 0; i < 4; i++) { if (arr[i] > gtval) { gtval = arr[i]; } } return gtval; }

The best thing I can say about this is that they didn't use some tortured expansion of every possible comparison:

if (a > b && a > c && a > d) return a; if (b > a && b > c && b > d) return b; …

Honestly, that would be awful, but I'd prefer it. This just makes my eyes sting when I look at it.

But let's trace through it, because each step is dumb.

We start by creating an empty array, where every value is initialized to zero. This isn't necessary, as that's what Java does by default. But then, we loop across the array to set things to zero one more time, just to be sure.

Once we're convinced every value is definitely zero, we replace those zeroes with the real values. Then we can loop across the array and find the largest value with straightforward comparisons.

This code is, in some ways, the worst kind of code. It's bad, but not so bad as it's ever going to cause real, serious problems. No one is going to see any bugs or inefficiencies coming from this method. It's just an ugly mess that's going to sit there in that codebase until the entire thing gets junked, someday. It's just an irritant that never rises to the level of frustration which drives action.

[Advertisement] Continuously monitor your servers for configuration changes, and report when there's configuration drift. Get started with Otter today!
Categories: Computer

Top US Oilfield Firm Halliburton Hit By Cyberattack, Source Says

Slashdot - Thu, 2024-08-22 05:30
An anonymous reader quotes a report from Reuters: U.S. oilfield services firm Halliburton on Wednesday was hit by a cyberattack, according to a person familiar with the matter. Halliburton said it was aware of an issue affecting certain systems at the company and was working to determine the cause and impact of the problem. The company was also working with "leading external experts" to fix the issue, a spokesperson said in an emailed statement. The attack appeared to impact business operations at the company's north Houston campus, as well as some global connectivity networks, the person said, who declined to be identified because they were not authorized to speak on the record. The company has asked some staff not to connect to internal networks, the person said. Houston, Texas-based Halliburton is one of the largest oilfield services firms in the world, providing drilling services and equipment to major energy producers around the globe. It had nearly 48,000 employees and operated in more than 70 countries at the end of last year.

Read more of this story at Slashdot.

Categories: Computer, News

110K Domains Targeted in 'Sophisticated' AWS Cloud Extortion Campaign

Slashdot - Thu, 2024-08-22 04:15
A sophisticated extortion campaign has targeted 110,000 domains by exploiting misconfigured AWS environment files, security firm Cyble reports. The attackers scanned for exposed .env files containing cloud access keys and other sensitive data. Organizations that failed to secure their AWS environments found their S3-stored data replaced with ransom notes. The attackers used a series of API calls to verify data, enumerate IAM users, and locate S3 buckets. Though initial access lacked admin privileges, they created new IAM roles to escalate permissions. Cyble researchers noted the attackers' use of AWS Lambda functions for automated scanning operations.

Read more of this story at Slashdot.

Categories: Computer, News

Pages