Makan Dua Belas

Kamis, 20 Juni 2019

A rogue Raspberry Pi helped hackers access NASA JPL systems - Engadget

Sponsored Links

NASA's Jet Propulsion Laboratory (JPL) suffers from multiple cybersecurity weaknesses despite the advances it has achieved in space technology, according to the agency's Office of Inspector General (PDF). Investigators looked into the research center's network security controls after an April 2018 security breach, wherein a Raspberry Pi that was not authorized to be linked to the JPL network was targeted by hackers. The attackers were able to steal 500 megabytes of data from one of its major mission systems, and they also used that chance to find a gateway that allowed them to go deeper into JPL's network.

Diving deeper into the system gave the hackers access to several major missions, including NASA's Deep Space Network -- its network of spacecraft communication facilities. As a result, the security teams of some sensitive programs, such as the Orion Multi-Purpose Crew Vehicle and the International Space Station, have chosen to disconnect from the agency's network.

In addition to having reduced visibility to devices connected to its network and to not keeping different parts of its network separate, investigators have also found instances of security tickets not being resolved for extended periods of time. In some cases, the tickets sat unresolved for as long as 180 days. The investigators have also noted that JPL's incident management and response practices deviate from NASA's recommendations.

The OIG recommended a fix for all those issues, and NASA agreed to all of them except one: establishing a formal threat-hunting process to find flaws before they even cause issues. It will verify if JPL follows through before closing the investigation entirely.

Let's block ads! (Why?)

https://www.engadget.com/2019/06/20/nasa-jpl-cybersecurity-weaknesses/

2019-06-20 09:00:12Z
CAIiEKvmzk-COeZcrQeNAvJKKG4qGAgEKg8IACoHCAowwOjjAjDp3xswpuqvAw

A rogue Raspberry Pi helped hackers access NASA JPL systems - Engadget

Sponsored Links

Let's block ads! (Why?)

https://www.engadget.com/2019/06/20/nasa-jpl-cybersecurity-weaknesses/

2019-06-20 08:05:39Z
CAIiEKvmzk-COeZcrQeNAvJKKG4qGAgEKg8IACoHCAowwOjjAjDp3xswpuqvAw

Rabu, 19 Juni 2019

Hasselblad X1D II 50C is a Faster and Cheaper Medium Format Mirrorless - PetaPixel

Hasselblad today announced the new X1D II 50C medium format mirrorless camera, a followup to the X1D, which became the world’s first compact medium format mirrorless camera when it was unveiled back in 2016.

“In the pursuit to continue the journey of taking medium format outside of the studio,” Hasselblad has put enhanced electronics in the camera for faster performance compared to its predecessor.

The live view has a faster refresh rate, there’s reduced shutter lag, reduced blackout time between frames, a faster shooting speed (2.7fps), and a startup time that’s twice as fast.

There’s still a 50-megapixel CMOS sensor at the core of the camera — a 43.8×32.9mm one that measures 1.7 times larger than 35mm full-frame sensors. The sensor features a native ISO range of 100-25600, a 14-stop dynamic range and large 5.3×5.3μm pixels for fantastic tonality.

On the back of the camera is a higher-resolution 3.6-inch 2.36-million-dot touchscreen, up from the 3-inch 920K-dot touchscreen in the X1D. This is the largest LCD display currently offered on a digital medium format camera.

The electronic viewfinder has been upgraded as well, going to a 3.69-million-dot EVF with a 0.87x magnification from the 2.36-million-dot EVF found in the X1D. The menu system can now be accessed when looking through the EVF as well, allowing photographers to work more seamlessly, especially in sunny conditions.

In addition to 16-bit RAW photos, the camera can now capture full-resolution JPEGs on their own for photographers wishing to trade post-processing flexibility for a faster workflow.

Speaking of workflow, Hasselblad’s new Phocus Mobile 2 app now allows photographers to connect their camera to an iPad via USB-C or Wi-Fi to transfer RAW and JPEG files for editing while out in the field.

Here are a couple of short videos introducing the new camera:

[embedded content]

The Hasselblad X1D II 50C is available to order now with a price tag of $5,750 and will begin shipping in July 2019. By comparison, the original X1D was priced at $8,995 when it was announced.

Let's block ads! (Why?)

https://petapixel.com/2019/06/19/hasselblad-x1d-ii-50c-is-a-faster-and-cheaper-medium-format-mirrorless/

2019-06-19 14:36:00Z
52780317432146

Google Says It Didn't Scrape Data from Genius - Thurrott.com

Two days after the Genius media website accused Google of scraping its song lyric data, the online giant issued a simple retort: We didn’t do it.

“We do not crawl or scrape websites to source [song] lyrics,” Google’s Satyajeet Salgar explains. “The lyrics that you see in information boxes on Search come directly from lyrics content providers, and they are updated automatically as we receive new lyrics and corrections on a regular basis.”

In other words, it was one of Google’s lyric content providers that scraped Genius’s lyrics. Not Google.

“We’ve asked our lyrics partners to investigate the issue to ensure that they’re following industry best practices in their approach,” he continues. “We always strive to uphold high standards of conduct for ourselves and from the partners we work with.”

Google hasn’t named the partner that it suspects of scraping data from Genius.

This incident is an interesting example of the knee-jerk reaction that often occurs in the wake of news stories involving Big Tech. As our own Brad Sams noted, “Google wields a significant amount of power over what and how users see content,” and this alleged lyrics scraping represented “one more piece of evidence of the company potentially abusing its position in the marketplace.”

The assumption by many, of course, was that Google was guilty. But it seems now that it was a Google partner, and not Google, that stole Genius’ data without attribution.

Tagged with Google Search

Let's block ads! (Why?)

https://www.thurrott.com/google/208733/google-says-it-didnt-scrape-data-from-genius

2019-06-19 12:13:19Z
52780316923835

Google's new Chrome extension makes it easy to report suspicious sites - Engadget

Sponsored Links

Google's Safe Browsing feature will only work if it knows what websites to protect you against, which is why the tech giant is encouraging users to report suspicious sites. The company has launched a new Chrome extension called Suspicious Site Reporter, which gives you a quick way to let Google know if a website looks, well, suspicious. It adds a flag right next to your other extensions that turns orange if it finds anything dubious about the page you're visiting.

Sometimes the things it considers questionable are as trivial as the website not belonging in the top 5,000. But if it does find something truly unsavory, you can easily notify Google by clicking the Send Report button, which will send the company that website's URL, a screenshot of it and all the site's HTML. In the tech giant's announcement, it said the extension is for "power users" -- presumably, that means system administrators -- but we were able to access it and send a report just fine.

Google

In addition, Google is rolling out a new feature for Chrome 75 that can prevent you from loading deceptive websites. If you attempt to load go0gle.com instead of google.com, for instance, the browser will issue a full page warning. It will ask if the legit website is the one you actually want to go to, because you don't usually visit the one you're loading.