BGR writes today about the case of two hackers from Goatse Security , one of who could face jail, despite trying to do good. The hackers found a way to harvest emails and data from iPads via a security hole in AT&T?s website. They then made their discovery public, in order to warn other iPad users about AT&T?s site. In no way did the hackers expose the emails they obtained, or try and make money from what they had found. Even so, LiveScience.com reports, via BGR, that one of the hackers, Andrew Auernheimer, could still be jailed as a result of what he did. The reason for this is because Auernheimer is accused of breaking the Computer Fraud and Abuse Act of 1986. Apparently being so old, the law doesn?t take into account hackers that are actually trying to do good. The case will either be ruled on this week, or failing that it could go to the Supreme Court, and could possibly become a precedent-setting hacking case that could help to define future laws.
Source: AT&T iPad email hacker: Jail time a possibility | BGR
You can amplify light by bouncing it between the horizons of a black hole and a white hole. Now physicists have worked out how to build such a device in the lab
One of the more fascinating discoveries in theoretical physics in recent years is the formal mathematical analogy between the way spacetime and certain materials effect light.
Summer has been quiet, so it looks like it’s time for the first Android scare of the season. This time, there’s actually a little bit of bite to the bark of researchers who have discovered a potential security vulnerability in
Hackers could automate a social engineering trick that has already been proven to work.
A technique used by marketers to trick people into signing up for “free” merchandise could easily be re-deployed as an engine for harvesting untold numbers of Google account passwords. Fixing the issue won’t be trivial for Google, because the exploit is fundamental to how Google allows users to recover access to their accounts when they lose or forget their passwords.
Macworld reports today on a new security hole that has been found in Facebook?s mobile apps on both iOS and Android that could be exploited by those wanting to steal your personal information. According to a report in The Register, Facebook?s mobile app does not encrypt a user?s login details. The hole was discovered by UK-based app developer Gareth Wright, who found the vulnerability while investigating app directories in his iPhone using a free tool. While looking around, he accidentally came across a Facebook access token in one of the games that he had installed on his iPhone. Wright copied the token?s code, and then used it to get information from Facebook using Facebook Query Language. ?Sure enough, I could pull back pretty much any information from my Facebook account,? Wright said on his blog, meaning that anyone else could also do the same. Wright was then intrigued enough to further investigate the Facebook app?s inner workings, and said that he was ?shocked? by what he found inside, which was essentially an unencrypted key giving anyone that had it total access to a Facebook account. ?My jaw dropped as over the next few minutes I watched posts appear on my wall, private messages sent, webpages liked and applications added,? explained Wright. After conducting even more thorough investigations into the security flaw, Wright informed Facebook of his discovery, and says that Facebook has told him that it is working on a fix. Wright has said though that even if Facebook does release a fix, users are still vulnerable to being attacked by a malicious person using the plain text token stored by developers in their games? plists.
Source: Facebook security hole found on iPhone, Android devices | Macworld
…and they may also explain the cosmic ray “knee” problem, one of astronomy’s biggest mysteries.
Last year, astronomers analysing data from NASA’s orbiting Fermi Gamma Ray Telescope made an extraordinary announcement. They said that Fermi had spotted two giant bubbles emanating from the centre of the galaxy, stretching some 20,000 light years above and below the galactic plane.
Evidence is emerging that a small galaxy, with a huge central black hole, must have recently collided with the Milky Way, say astronomers
The Milky Way gives the impression of a beautiful, calm field of stars. At the heart of all this is a supermassive black hole that sits, innocently, at the galactic centre.
MacRumors reports that Apple has today released iOS 4.3.4, which is solely designed to plug the security hole that was discovered and used for the JailbreakMe.com jailbreak that finally enabled people to jailbreak their iPad 2s, among other devices. Unfortunately, it was found that the vulnerability could be used to launch malicious code on iOS devices. According to the note that comes with the update, it ?fixes security vulnerability associated with viewing malicious PDF files.?
The update works for the iPhone 4/3GS, third and fourth generation iPod touches, and all iPad versions. The CDMA iPhone 4 gets its own specific update, iOS 4.2.9. All that you have to do to get the update is connect your iOS device to iTunes. Don?t forget, though, if your device is jailbroken, if you install the update, you?ll lose your jailbreak, so don?t update if you don?t want that to happen. Jailbreakers should stay tuned to the Forum to find out what to do next.
Source: Apple Releases iOS 4.3.4 to Address Latest Jailbreaking Vulnerability – Mac Rumors
The prediction once again raises question marks over physicists’ assurances that particle accelerators capable of making black holes are safe
Having focused for many years on the giant black holes that form when stars collapse and the supermassive black holes at the centre of galaxies, physicists have more recently begun to study microscopic black holes, with tiny masses.
…we should be able to see the oscillations generated by the collision, say astrophysicists
Astronomers have so far discovered two types of black hole: supermassive ones at the centre of galaxies and stellar-mass black holes, which form when giant stars die.