Aggregator

A pre-draw had been held to determine whether the eight Premier League teams in the Champions League and Europa League would be at home or away in round three.

samleecole shares a report from 404 Media: An app developer has jailbroken Echelon exercise bikes to restore functionality that the company put behind a paywall last month, but copyright laws prevent him from being allowed to legally release it. Last month, Peloton competitor Echelon pushed a firmware update to its exercise equipment that forces its machines to connect to the company's servers in order to work properly. Echelon was popular in part because it was possible to connect Echelon bikes, treadmills, and rowing machines to free or cheap third-party apps and collect information like pedaling power, distance traveled, and other basic functionality that one might want from a piece of exercise equipment. With the new firmware update, the machines work only with constant internet access and getting anything beyond extremely basic functionality requires an Echelon subscription, which can cost hundreds of dollars a year. App engineer Ricky Witherspoon, who makes an app called SyncSpin that used to work with Echelon bikes, told 404 Media that he successfully restored offline functionality to Echelon equipment and won the Fulu Foundation bounty. But he and the foundation said that he cannot open source or release it because doing so would run afoul of Section 1201 of the Digital Millennium Copyright Act, the wide-ranging copyright law that in part governs reverse engineering. There are various exemptions to Section 1201, but most of them allow for jailbreaks like the one Witherspoon developed to only be used for personal use. [...] "I don't feel like going down a legal rabbit hole, so for now it's just about spreading awareness that this is possible, and that there's another example of egregious behavior from a company like this [...] if one day releasing this was made legal, I would absolutely open source this. I can legally talk about how I did this to a certain degree, and if someone else wants to do this, they can open source it if they want to."

Read more of this story at Slashdot.

STEVENS: This psychotic telescope was the closest we came to seeing any space invaders in the one-off documentary What Are UFOs ?

Sky has reportedly axed Rob Beckett's Smart TV after just two series, as the broadcaster shifts its focus away from traditional panel shows.

A Hollyoaks star looked unrecognisable as she landed a steamy new role as a sex worker in a racy period drama. 

An Aussie couple received an email months after their Uluru trip ordering them to delete footage to avoid a fine.

An investigation by consumer rights group Which? pinpointed 35 baby sleeping bags which pose a serious suffocation risk.

Court records seen by the Daily Mail indicate that Westman had previously been known as Robert, having petitioned to have her name changed in 2019.

The Los Angeles-born actor, 61, admitted to police officers at the scene August 17 that he was on his way back from a bar where he had consumed alcohol.

The Queen star's alleged daughter, who is only identified as 'B', was revealed earlier this year by biographer Lesley-Ann Jones, who says Freddie secretly fathered a child during an affair in 1976.

Support services for children and young people cost £16billion a year and are financially unsustainable, the Policy Exchange paper found.

China would be a $50 billion a year market for Nvidia if Uncle Sam would let us sell competitive products, says Jensen Huang

Nvidia's top brass urged Washington to approve the sale of Blackwell accelerators to China during the GPU giant's Q2 earnings call on Wednesday.…

Nevada has been crippled by a cyberattack that began on August 24, taking down state websites, intermittently disabling phone lines, and forcing offices like the DMV to close. The Register reports: The Office of Governor Joseph Lombardo announced the attack via social media on Monday, saying that a "network security incident" took hold in the early hours of August 24. Official state websites remain unavailable, and Lombardo's office warned that phone lines will be intermittently down, although emergency services lines remain operational. State offices are also closed until further notice, including Department of Motor Vehicles (DMV) buildings. The state said any missed appointments will be honored on a walk-in basis. "The Office of the Governor and Governor's Technology Office (GTO) are working continuously with state, local, tribal, and federal partners to restore services safely," the announcement read. "GTO is using temporary routing and operational workarounds to maintain public access where it is feasible. Additionally, GTO is validating systems before returning them to normal operation and sharing updates as needed." Local media outlets are reporting that, further to the original announcement, state offices will remain closed on Tuesday after officials previously expected them to reopen. The state's new cybersecurity office says there is currently no evidence to suggest that any Nevadans' personal information was compromised during the attack.

Read more of this story at Slashdot.

The model and TV personality, 37, who quit E4's Celebs Go Dating earlier this year to go home to her kids, revealed she has launched a mini-series on the website Subs, from OnlyFans.

Ever since the HBO series The White Lotus filmed in Thailand aired, there's been an even steadier flow of 'losers back home' who travel to Thailand specifically for sex tourism.

Graham Stringer is the first MP within the party to publicly come out against Attorney General Lord Hermer, accusing him of putting international treaties above democracy.

Home sellers risk waiting months to sell their home if they price their property too highly, Zoopla has warned.

The successful applicant will be required to drive the luxury car just three miles a day from their home in Chelsea to their Mayfair office. It will be a Monday to Friday occupation with occasional weekend shifts.

CHRIS WHEELER AT BLUNDELL PARK: They poured scorn on Manchester United from the stands and baited them with inflatable haddocks.

A widely used Node.js utility called fast-glob, relied on by thousands of projectsâ"including over 30 U.S. Department of Defense systems -- is maintained solely by a Russian developer linked to Yandex. While there's no evidence of malicious activity, cybersecurity experts warn that the lack of oversight in such critical open-source projects leaves them vulnerable to potential exploitation by state-backed actors. The Register reports: US cybersecurity firm Hunted Labs reported the revelations on Wednesday. The utility in question is fast-glob, which is used to find files and folders that match specific patterns. Its maintainer goes by the handle "mrmlnc", and the Github profile associated with that handle identifies its owner as a Yandex developer named Denis Malinochkin living in a suburb of Moscow. A website associated with that handle also identifies its owner as the same person, as Hunted Labs pointed out. Hunted Labs told us that it didn't speak to Malinochkin prior to publication of its report today, and that it found no ties between him and any threat actor. According to Hunted Labs, fast-glob is downloaded more than 79 million times a week and is currently used by more than 5,000 public projects in addition to the DoD systems and Node.js container images that include it. That's not to mention private projects that might use it, meaning that the actual number of at-risk projects could be far greater. While fast-glob has no known CVEs, the utility has deep access to systems that use it, potentially giving Russia a number of attack vectors to exploit. Fast-glob could attack filesystems directly to expose and steal info, launch a DoS or glob-injection attack, include a kill switch to stop downstream software from functioning properly, or inject additional malware, a list Hunted Labs said is hardly exhaustive. [...] Hunted Labs cofounder Haden Smith told The Register that the ties are cause for concern. "Every piece of code written by Russians isn't automatically suspect, but popular packages with no external oversight are ripe for the taking by state or state-backed actors looking to further their aims," Smith told us in an email. "As a whole, the open source community should be paying more attention to this risk and mitigating it." [...] Hunted Labs said that the simplest solution for the thousands of projects using fast-glob would be for Malinochkin to add additional maintainers and enhance project oversight, as the only other alternative would be for anyone using it to find a suitable replacement. "Open source software doesn't need a CVE to be dangerous," Hunted Labs said of the matter. "It only needs access, obscurity, and complacency," something we've noted before is an ongoing problem for open source projects. This serves as another powerful reminder that knowing who writes your code is just as critical as understanding what the code does," Hunted Labs concluded.

Read more of this story at Slashdot.