jonfu

Weekly Update: 2020-02-02 to 2020-02-08

Ransomware Installs Gigabyte Driver To Kill Antivirus Products

This is incredibly creative.

via slashdot

Windows 10 warning: anger at Microsoft rises with serious new failure

The hits keep coming. Semi-related, I’m trying to build a Windows 7 computer (EOL, I know, but for software compatibility purposes, airgapped and used for music production, not by me) and the experience has been incredibly bad. After installing Windows 7 and running updates, Windows Update got wrapped around its own axle somehow. It said there were three updates left, which failed to install. I had to go through a procedure to reset it all. Also, the powershell script wouldn’t run by default because it was unsigned, so I had to google around to figure out how to do that, and of course I assumed I needed to "run as admin." It was crazy to me how difficult this process was and how impossible this would be for the avearge computer user.

via osnews

The 64 core Threadripper 3990X CPU review: in the midst of chaos, AMD seeks opportunity

This is just an unbelievably powerful CPU. Yes, it costs $3,990 (yup, just like the model number) but it is consistently beating a pair of Intel Xeon Platinum 8280 that cost $20,000.

via osnews

VMware Updates Per-CPU Pricing

This seems like it would disproportionately affect AMD. I think they know that people saving money by buying EPYC CPU can afford a higher VMWare tax. Pretty awful, rent-seeking behavior by VMWare.

Additional Dangerous Vulnerabilities in Intel CPUs Manufactured Since 2015

You gotta be kidding me. More?

Huawei Subsidiary Distributes 0-Day Backdoor in DVRs, NVRs, IoT Cameras

I just assume most of this "sloppy programming" is by design.

Texas K-12 Esports Teams Explode In Popularity

This is awesome! I can remember sneaking into the computer lab in high school during breaks to play Quake deathmatches on the LAN there.

via slashdot

Tennessee Bill Aims to Have Internet Providers Automatically Block Porn on All Devices

I can’t tell if they actually believe this will pass or if they are just pandering to their base.

US Appeals Court Will Not Reconsider Net Neutrality Repeal Ruling

Disappointing, but this just means we need to get real legislation passed which will ultimately be better anyway.

via slashdot

The FBI Downloaded CIA’s Hacking Tools Using Starbuck’s WiFi

This is adorable and terrifying at the same time.

via slashdot

How a Bad App Plunged Iowa Into Chaos

What an absolute embarassment this was. Every cybersecurity expert in the world knew this was a bad idea. I have no idea what the point of this was. To improve the process? Is it THAT difficult?

via slashdot

Patch Your Philips Hue Lightbulbs To Stop Them From Getting Hacked — And Potentially Everything Else On Your Network

What have we done?

via slashdot

Private Equity Firms are Gobbling Up Data Centers

New research from Synergy Research Group saw more than 100 deals in 2019, a 50% growth over 2018, and private-equity companies accounted for 80% of them.

I guess with the growth of the cloud hyperscalers the only way to compete is through increasing scale?

Twitter Will Ban Deepfakes and Other Manipulated Media That Could Cause 'Serious Harm'

We need more, faster.

via slashdot

Can Privacy Be Big Business? A Wave of Startups Thinks So.

This is really encouraging. Self-hosting, decentralized applications and privacy should be the drivers of the next big wave of computing. It’s still coalescing but it seems the only possible option for us fixing the things that are fundamentally broken online.

via slashdot

Serious flaw that lurked in sudo for 9 years hands over root privileges

Stack-based buffer overflow, requires a non-default option to be enabled.

via ars

Google Fiber Kills Its Traditional TV Service For New Customers

More struggles with Google Fiber or sign of the times? Little bit of both?

via slashdot

Booter Boss Busted By Bacon Pizza Buy

"Ha Ha!" - Nelson Muntz

via krebs

Chip Industry Had Worst Sales Year Since Dot-Com Bubble Burst

Hardly news given the trade war with China.

via slashdot

Japanese Robot Could Call Last Orders on Human Bartenders

This really feels like something out of a dystopian cyberpunk movie.

via slashdot

Google May Have Shared Your Videos With Strangers

Just assume everything you store in "the cloud" is insecure. If it is sensitive, store it locally, make back ups and encrypt both. And specifically, follow the 3-2-1 backup rule: 3 copies, two types of storage media and one off-site.

via slashdot

Check out the first-ever electric car designed by Porsche, the 1898 P1

Interesting way for Porsche to try and flex their electric credentials.

via ars

Microsoft Teams Went Down After Microsoft Forgot To Renew a Critical Certificate

You have to wonder how this happens to a company like Microsoft. And honestly, as much as I like to poke at Microsoft, if it can happen to pretty much any company, maybe our approach is wrong?

via slashdot

YouTube Reveals Revenue For First Time: $15.1 Billion In 2019

Is there even a close second in terms of mindshare, marketshare, revenue, anything? I think this is a clear monopoly on online video but no one seems to talk about it.

via slashdot

Telecom pioneer and convicted fraudster Bernard Ebbers has died

Of Worldcom if the name doesn’t ring a bell.

via ars

TCL Won’t Release Any More BlackBerry Phones

I will always miss my blackberry phones. I type well over 100 wpm on a keyboard (closer to 110-120 sustained and regular bursts over that) and I’ve never figured out how to type well on an iPhone.

At last, the fix no one asked for: Portable home directories merged into systemd

No thank you.

via elreg

Dozens of Companies Have Data Dumped Online by Ransomware Ring Seeking Leverage

I believe that soon we will see the same methodolgy for all ransomware attacks, especially when you see things like this.

A Russian Satellite Appears To Be Shadowing an American Spy Satellite

I cannot wait to find out what these US spy satellites are doing. I really think that we will find out that they have some absolutely insane capabilities beyond anything we image. SR-71 level of advanced technology.

via slashdot

The Wall of Technical Debt

I thought this was a great idea, but I especially loved this random quote:

“We’ll do it during Summer” or “after the big project is finished” or whatever the local euphemism for “never” is.

via blog

'Tens of millions' of Cisco devices vulnerable to CDPwn flaws: Network segmentation blown apart by security bugs

NX-OS based switches and 78XX and 8XXX series phones seem to be the most serious ones, by volume.

via elreg