Top Posts for January 3, 2018

Reading privileged memory with a side-channel

  • https://gruss.cc/files/kaiser.pdf : Daniel Gruss, Moritz Lipp, Michael Schwarz, Richard Fellner, Clémentine Maurice, and Stefan Mangard wrote a paper on mitigating microarchitectural issues caused by pagetable sharing between userspace and the kernel.

Keywords: address, branch, data, kernel, cache

Full article on googleprojectzero.blogspot.com | 1529 Points and 384 Comments

Intel Confronts Potential ‘PR Nightmare’ With Reported Chip Flaw

  • On Tuesday, the technology website The Register said a bug lets some software gain access to parts of a computer’s memory that are set aside to protect things like passwords.

Keywords: intel, percent, software, chips, computers

Full article on bloomberg.com | 979 Points and 509 Comments

Intel Responds to Security Research Findings

  • Intel and other technology companies have been made aware of new security research describing software analysis methods that, when used for malicious purposes, have the potential to improperly gather sensitive data from computing devices that are operating as designed.

Keywords: intel, security, operating, exploits, updates

Full article on newsroom.intel.com | 533 Points and 220 Comments

After beating cable lobby, Colorado city moves ahead with muni broadband

  • The city council in Fort Collins, Colorado, last night voted to move ahead with a municipal fiber broadband network providing gigabit speeds, two months after the cable industry failed to stop the project.

Keywords: city, broadband, network, fort, collins

Full article on arstechnica.com | 475 Points and 127 Comments

Spotify files for its IPO

Keywords:

Full article on axios.com | 358 Points and 191 Comments

GIMPS Project Discovers Largest Known Prime Number

  • In the early 1990’s, the late Richard Crandall , Apple Distinguished Scientist, discovered ways to double the speed of what are called convolutions – essentially big multiplication operations.

Keywords: prime, mersenne, discovered, primes, gimps

Full article on mersenne.org | 329 Points and 97 Comments

Mitigations landing for new class of timing attack

  • This project requires time to understand, implement and test, but might allow us to consider reenabling SharedArrayBuffer and the other high-resolution timers as these features provide important capabilities to the Web platform.

Keywords: class, time, sources, timers, sharedarraybuffer

Full article on blog.mozilla.org | 317 Points and 55 Comments

Intel was aware of the chip vulnerability when its CEO sold off company stock

  • Intel CEO Brian Krzanich sold off a large portion of his stake in the company months after the chip maker was informed by Google of a significant security vulnerability in its flagship PC processors — but before the problem was publicly known.

Keywords: intel, stock, vulnerability, sale, krzanich

Full article on businessinsider.com | 307 Points and 62 Comments

The ‘app’ you can’t trash: how SIP is broken in High Sierra

  • Until the user can gain access to that volume with its SIP inactive, that stub app and the extension inside it stay put.

Keywords: sip, extension, app, user, kernel

Full article on eclecticlight.co | 284 Points and 88 Comments

Degraded performance after forced reboot due to AWS instance maintenance

  • This upgrade forced our hand, so we can confirm that on the same instance type (c3.xlarge) and using the same code we have returned to an acceptable performance level on affected hosts with HVM AMIs.

Keywords: instance, aws, posted, performance, reboot

Full article on forums.aws.amazon.com | 265 Points and 57 Comments

Kenichi Yamamoto has died

  • One of Mr. Yamamoto’s other priorities as president was to expand Mazda’s presence in the United States by building an assembly plant in Flat Rock, Mich. At the groundbreaking, in 1985, he acknowledged the difficulty of bringing a Japanese production system to the Midwest.

Keywords: yamamoto, mazda, engine, company, car

Full article on nytimes.com | 265 Points and 66 Comments

HDR Photography in Microsoft Excel (2017) [video]

Keywords:

Full article on youtube.com | 249 Points and 15 Comments

What I learned in 2017 writing Go

  • Such a statement is hardly controversial, and yet I have worked with numerous well-intentioned individuals who immediately reach for sophisticated designs on the dubious grounds of their being “faster.” Fortunately, there is a strong interest in the discipline of writing high performance code.

Keywords: code, project, package, loggregator, main

Full article on commandercoriander.net | 239 Points and 62 Comments

Teens Aren’t Partying Anymore

  • No one is really that interested—including me.” In the San Diego State University freshman survey, several mentioned that the high school parties they had gone to had been adult-run affairs, not exactly the ragers memorialized in the 1980s John Hughes movies, where kids got drunk and wrecked their parents’ houses.

Keywords: parties, time, high, school, friends

Full article on wired.com | 235 Points and 345 Comments

Tesla Model 3 Sets New EV Cannonball Run Record

  • The pair departed the Portofino Inn in Redondo Beach, California; their final destination was the Red Ball garage in New York City.

Keywords: alex, roy, cannonball, reliability, range

Full article on thedrive.com | 235 Points and 206 Comments

Avoid speculative indirect calls in kernel

  • I think somebody inside of Intel needs to really take a long hard lookat their CPU’s, and actually admit that they have issues instead ofwriting PR blurbs that say that everything works as designed.

Keywords: fix, kernel, cpu, intel, andi

Full article on lkml.org | 216 Points and 77 Comments

Reading privileged memory with a side-channel

  • https://gruss.cc/files/kaiser.pdf : Daniel Gruss, Moritz Lipp, Michael Schwarz, Richard Fellner, Clémentine Maurice, and Stefan Mangard wrote a paper on mitigating microarchitectural issues caused by pagetable sharing between userspace and the kernel.

Keywords: address, branch, data, kernel, cache

Full article on googleprojectzero.blogspot.com | 213 Points and 68 Comments

High doses of vitamin D rapidly reduce arterial stiffness

Keywords:

Full article on sciencedaily.com | 202 Points and 143 Comments

Yes, Amazon Echo Is an Ad Machine

  • Browsing pages on Amazon.com to find a cleaning product can be a real chore; it’s almost as bad as walking down the aisles of Target trying to pick the right thing for the job.

Keywords: amazon, buy, echo, alexa, cnbc

Full article on gizmodo.com | 201 Points and 156 Comments

Why are bones not made of steel? (2010)

  • Virtually all biological materials, whether found in animals or plants, insects or fish, are fibre composites made up of proteins and polysacchrides, reinforced with ceramic particles based on calcium or silicon compounds.

Keywords: bone, materials, make, energy, material

Full article on materialstoday.com | 198 Points and 148 Comments

Complexity Theory, Game Theory, and Economics

  • Abstract: This document collects the lecture notes from my mini-course “Complexity Theory, Game Theory, and Economics,” taught at the Bellairs Research Institute of McGill University, Holetown, Barbados, February 19–23, 2017, as the 29th McGill Invitational Workshop on Computational Complexity.

Keywords: theory, complexity, game, economics, jan

Full article on arxiv.org | 192 Points and 23 Comments

Show HN: HNCute, a pretty pink Hacker News theme

Keywords:

Full article on chrome.google.com | 166 Points and 67 Comments

An Update on AMD Processor Security

  • When AMD learned that researchers had discovered a new CPU attack targeting the speculative execution functionality used by multiple chip companies’ products, we immediately engaged across the ecosystem to address the teams’ findings.

Keywords: amd, research, security, speculative, execution

Full article on amd.com | 164 Points and 22 Comments

Apple Developer Program Membership Fee Waivers Now Available

  • We’re pleased to announce that Apple Developer Program membership is now available at no cost for eligible organizations.

Keywords: membership, apple, developer, program, fee

Full article on developer.apple.com | 158 Points and 97 Comments

The Case for the Subway

  • A little before midnight, Cuomo made his dramatic entrance through a large vented manhole, climbing down a metal ladder in pressed chinos, tasseled boots and a windbreaker bearing the New York State seal, and announced that he was doubling the fine for littering in the subway to $100 and buying some new jumbo-size vacuum cleaners to clean the tracks.

Keywords: subway, york, city, system, people

Full article on nytimes.com | 157 Points and 114 Comments

Trinitron: Sony’s Once Unbeatable Product [video]

Keywords:

Full article on youtube.com | 156 Points and 162 Comments

Why things might have taken so long

  • Animals (including humans) mostly think by intuitively recognizing over time what is promising and not among affordances they have , and reading what common observations imply.

Keywords: things, people, inventions, make, long

Full article on meteuphoric.wordpress.com | 144 Points and 40 Comments

The Giant, Under Attack

  • That was how Mr. Benefield ended up in a treatment facility in California: Eager to get sober, he and his wife searched online from their home in Arizona for a clinic, found A Better Tomorrow — which eventually became part of Mr. Cartwright’s business — and then called up to book a spot.

Keywords: benefield, addiction, company, hill, drose

Full article on nytimes.com | 141 Points and 29 Comments

Physics Simulations

  • ScriptX had goals of supporting all forms of multimedia: text, images, audio, video, animation; being cross-platform (Mac and Windows), interpreted, object oriented, with a garbage collector to manage memory.

Keywords: physics, simulations, time, simulation, software

Full article on myphysicslab.com | 141 Points and 22 Comments

Techniques for Factoring Numbers in Your Head

  • Good mental math algorithms require the opposite tradeoff, taking longer to execute but demanding less of your short-term memory.

Keywords: number, digits, numbers, factor, red

Full article on exupero.org | 134 Points and 19 Comments

Tesla’s Model 3 volume production target pushed back again

  • SAN FRANCISCO (Reuters) - Tesla Inc ( TSLA.O ) delayed a production target for its new Model 3 sedan for the second time on Wednesday, disappointing investors even as it claimed “major progress” overcoming manufacturing challenges that have hampered the vehicle’s rollout.

Keywords: model, tesla, quarter, production, vehicles

Full article on reuters.com | 134 Points and 121 Comments

Meltdown and Spectre: Bugs in modern computers leak passwords and sensitive data

  • We would like to thank Intel for awarding us with a bug bounty for the responsible disclosure process, and their professional handling of this issue through communicating a clear timeline and connecting all involved researchers.

Keywords: meltdown, spectre, system, intel, memory

Full article on meltdownattack.com | 131 Points and 25 Comments

Mistakes to avoid when asking for a raise

  • Maxim Makarenko, product owner at Aquiva Labs and a self-proclaimed “rather experienced raise-asker,” has some great advice for IT professionals who are prone to working long hours.

Keywords: raise, boss, career, salary, company

Full article on hpe.com | 129 Points and 111 Comments

Inequality in nature and society

  • If one modifies the rules to capture the nature of economic transactions more realistically (e.g., assuming that transfer is never more than the capital of the poorest of the two in any direction), then the predictions of such physics-inspired models ( 22 ) do come very close to the multiplicative dynamics that we described and can indeed produce great inequality ( 23 ) ( SI Appendix , section 7 ).

Keywords: inequality, wealth, nature, si, appendix

Full article on pnas.org | 128 Points and 84 Comments

German hate speech law tested as Twitter blocks satire account

  • “A private company based in the United States decides the boundaries of freedom of the press and opinion in Germany,” DJV Chairman Frank Ueberall said in a statement, calling on parliament to reverse the hate speech law.

Keywords: twitter, law, magazine, titanic, germany

Full article on reuters.com | 126 Points and 185 Comments

Vulnerability of Speculative Processors to Cache Timing Side-Channel Mechanism

  • It is important to note that this method is dependent on malware running locally which means it’s imperative for users to practice good security hygiene by keeping their software up-to-date and avoid suspicious links or downloads.

Keywords: arm, processors, cache, information, variant

Full article on developer.arm.com | 117 Points and 39 Comments

AWS Statement: Processor Speculative Execution Research Disclosure

  • This is a vulnerability that has existed for more than 20 years in modern processor architectures like Intel, AMD, and ARM across servers, desktops, and mobile devices.

Keywords: amazon, linux, updated, instances, aws

Full article on aws.amazon.com | 106 Points and 12 Comments

Eelo: A Google-less Android alternative emerges

  • But, Duval explained, it’s not enough for his purposes: “ The core of AOSP [Android Open Source Project]/LineageOS is usable , and performing well, but it’s not good enough for my needs: the design is not very attractive and there are tons of micro-details that can be showstoppers for a regular user.

Keywords: android, eelo, duval, google, system

Full article on zdnet.com | 104 Points and 25 Comments

macOS 10.13.3 fixes the Intel KPTI issue

  • CloseCloseCloseCloseCloseCountryCodeFor customers ofUnited States40404(any)Canada21212(any)United Kingdom86444Vodafone, Orange, 3, O2Brazil40404Nextel, TIMHaiti40404Digicel, VoilaIreland51210Vodafone, O2India53000Bharti Airtel, Videocon, RelianceIndonesia89887AXIS, 3, Telkomsel, Indosat, XL AxiataItaly4880804Wind3424486444Vodafone » See SMS short codes for other countries

Keywords: tweet, location, instant, love, add

Full article on twitter.com | 99 Points and 20 Comments

Don’t Be Evil: Utopias, Frontiers, and Brogrammers

  • I’ve spent a lot of time at Facebook lately, and I think they sincerely want to build what Mark Zuckerberg calls a more connected world.

Keywords: people, world, valley, tech, politics

Full article on logicmag.io | 94 Points and 15 Comments

Opera now protects you from cryptojacking attacks

  • “We are fans of cryptocurrencies but we simply don’t accept that websites are using people’s computers to mine coins without their knowledge or consent,” said Krystian Kolondra, head of Desktop Browser at Opera.

Keywords: opera, browser, mine, coins, cryptocurrencies

Full article on techcrunch.com | 87 Points and 35 Comments

Meet “raw” water – ludicrously priced unfiltered water with random bacteria

  • Last year, Silicon Valley entrepreneur Doug Evans brought us the Juicero machine, a $400 gadget designed solely to squeeze eight ounces of liquid from proprietary bags of fruits and vegetables, which went for $5 to $8 apiece.

Keywords: water, bacteria, live, raw, tap

Full article on arstechnica.com | 86 Points and 50 Comments

Show HN: Cipher – Mobile Ethereum Web3 DApp Browser

  • Cipher allows you to interact with dapps powered by Ethereum on your mobile device and makes it easy for you to securely store, send and receive Ether and ERC20 tokens.

Keywords: ethereum, cipher, apple, browser, mobile

Full article on cipherbrowser.com | 73 Points and 49 Comments

The US Government Blocks MoneyGram’s $1.2B Sale to Alibaba’s Ant Financial

  • Despite our best efforts to work cooperatively with the U.S. government, it has now become clear that CFIUS [Committee on Foreign Investment in the United States] will not approve this merger,” MoneyGram CEO Alex Holmes said in a statement .

Keywords: moneygram, ant, financial, global, proposed

Full article on techcrunch.com | 68 Points and 29 Comments

Atom editor uses more than 800 megabytes for one file

  • Image: http://amzn.to/2umsBaY I often get asked about why I use Vim as my primary editor, there is no particular reason for this, except that I ended up learning it when I moved over to Linux full time many years ago.

Keywords: vim, editor, file, seconds, atom

Full article on medium.com | 66 Points and 44 Comments

Show HN: VidDistill – Automated YouTube Video Summarization Using Captions

Keywords:

Full article on vid-distill.herokuapp.com | 66 Points and 16 Comments

Iceland becomes first country to legalise equal pay

  • Iceland, an island country in the North Atlantic Ocean that is home to approximately 323,000 people, has a strong economy, based on tourism and fisheries.

Keywords: women, iceland, country, gap, gender

Full article on aljazeera.com | 62 Points and 91 Comments

Why Saudi Arabia Is Pushing Premarital Genetic Screening

  • “One of the misconceptions couples have is that premarital testing is sufficient to determine whether they will have children with genetic diseases,” medical student Mohamed Aljuhani, who is leading the campaign in Saudia Arabia, told the Saudi Gazette .

Keywords: genetic, saudi, diseases, arabia, risk

Full article on gizmodo.com | 58 Points and 24 Comments

Silicon Valley elites spending $60 for less than 3 gallons of unfiltered water

  • Doug Evans, the founder of a startup called Juicero that shut down in September, told The Times that he and his friends brought 50 gallons of raw water to the Burning Man festival last year.

Keywords: water, untreated, times, live, people

Full article on businessinsider.de | 56 Points and 61 Comments

Database of Lost Crypto Assets

  • The coin you wasted (required)

Keywords: required, waste, optional, coin, wasted

Full article on ohmycoins.xyz | 54 Points and 25 Comments