Articles about research

Tesla model S

Bug bounty alert: Musk lets pro hackers torpedo Tesla firmware risk free

Tesla will allow vetted security researchers to hunt for vulnerabilities in its vehicle firmware risk free – as long as it is done under its now-tweaked bug bounty program. The luxury electric automaker said this week it will reflash the firmware on cars that have been bricked by infosec bods probing for exploitable bugs in …
Shaun Nichols, 6 Sep 2018
Oculus Rift

Boffins bork motion control gear with the power of applied sound

A group of university researchers have developed a way to remotely control motion-sensing devices using only sound waves. The study [PDF], authored by Yazhou Tu and Xiali Hei of University of Louisiana Lafayette, Zhiqiang Lin of Ohio State University, and Insup Lee of University of Pennsylvania, found that embedded sensors and …
Shaun Nichols, 28 Aug 2018
Pixellated Facebook thumb

Now that's a fortune cookie! Facebook splats $5k command-injection bug in one of its servers

Facebook has patched a remote-code execution flaw discovered in one of its servers. Researcher Daniel 'Blaklis' Le Gall, of SCRT Information Security, said on Friday he bagged a $5,000 bug bounty from the social network for reporting a flaw that could be exploited to execute arbitrary commands using malicious cookies. Though …
Shaun Nichols, 24 Aug 2018
Barbra Streisand photo from Shutterstock

SentinelOne makes YouTube delete Bsides vid 'cuz it didn't like the way bugs were reported

Updated If you were at BSides Manchester in England this week, you hopefully caught James Williams' presentation on the shortcomings of some commercial antivirus tools. If not, and you hoped to watch it on YouTube, you may be out of luck for a while. That's because one of the vendors mentioned – SentinelOne – is rather upset with the …
Shaun Nichols, 18 Aug 2018

Oz researchers, uni unite against Defence overreach

Australia’s research and university communities have united against what they see as Department of Defence overreach: the brass-hats want greater powers to control international collaboration. The battle centres around the two-yearly review of Australia’s defence controls legislation, and a June submission by the Department …
Window Snyder

Intel finds a cure for its software security pain: Window Snyder

Intel has recruited noted computer security exec Window Snyder into its ranks to help improve its fortunes in the cybersecurity space. Chipzilla said effective July 9, Snyder, formerly the chief security officer at Fastly, will be its new software chief security officer and vice president and general manager of the Intel …
Shaun Nichols, 25 Jun 2018

How to stealthily poison neural network chips in the supply chain

Computer boffins have devised a potential hardware-based Trojan attack on neural network models that could be used to alter system output without detection. Adversarial attacks on neural networks and related deep learning systems have received considerable attention in recent years due to the growing use of AI-oriented systems …
Thomas Claburn, 19 Jun 2018
Image of woman holding mask of her own face

The eyes have it: 'DeepFakes' bogus AI-meddled videos outed by unblinking gaze

In the last year or so convincing fake videos known as DeepFakes – the product of deep learning-driven facial image manipulation – have been condemned as a threat to democracy, or what's left of it. The fear is that invented events represent the sort of fake news that can alter elections and affect civic engagement. Imagine …
Thomas Claburn, 14 Jun 2018

EmDrive? More like BS drive: Physics-defying space engine flunks out

The "impossible" EmDrive may be just that, though don't count it out just yet. A group of German physicists at TU Dresden has tested two proposed means of propellantless propulsion – the EmDrive and Mach Effect Thrusters – and found the act of testing is what makes these arguably physics-flouting technologies appear to work. …
Thomas Claburn, 23 May 2018
CMU president Farnam Jahanian

Carnegie Mellon makes network security guru Jahanian president

Carnegie Mellon University has named computer science professor and Arbor Networks founder Farnam Jahanian as its new president. The researcher-turned-entrepreneur-turned-administrator takes over the permanent position after an eight-month temporary turn as president. Previously, he had led the university's academic department …
Shaun Nichols, 8 Mar 2018

Broadcom baits hook with promise of $1.5bn investment fund to catch Qualcomm

Broadcom says it will earmark $1.5bn for funding of 5G wireless broadband networks as part of its proposed acquisition of Qualcomm. The chip designer said Wednesday that, should its $117bn buyout plan for Qualcomm go through, it will set up a $1.5bn fund to "focus on innovation to train and educate the next generation of …
Shaun Nichols, 7 Mar 2018

Your shoe, chewing gum, or ciggies are now your extra password

Computer researchers at Florida International University and Bloomberg have come up with an alternative to crypto baubles like YubiKeys for two-factor authentication. It's not that there's anything wrong with YubiKeys and similar login tokens, apart from the occasional security blunder. But they can be a potential faff for non …
Thomas Claburn, 25 Oct 2017
tattoo

Harvard, MIT boffins ink up with health-monitoring 'smart' tats

Researchers at Harvard and MIT have developed a subdermal ink capable of monitoring vitals such as hydration and blood sugar. The team of eight researchers found that by mixing optical biosensors with tattoo ink, they are able to create tattoos (dubbed "dermal abyss" or "d-abyss") that react with the body's own fluids and …
Shaun Nichols, 29 Sep 2017
Protestor barricade image via Shutterstock

Has science gone too far, part 97: Boffins craft code to find protesters on social networks, rate them on their violence

Mining social networks for every scrap of information about our online lives is now common practice for marketers, academics, government agencies, and so on. Text in tweets, blogs and other posts is valuable because it's searchable, analyzable, and not terribly costly to crawl, fetch or store. But ongoing computer vision …
Thomas Claburn, 21 Sep 2017
Cows walk on green field in front of silos

Government lab that gives a crap pushes open source

The US government wants you to use its software, and if you're into manure, so much the better. The Idaho National Laboratory (INL), part of the US Department of Energy, last week released a new round of open-source projects in the hope that the public will take its research and run with it. Known for its MOOSE physics …
Thomas Claburn, 13 Sep 2017
Scientist says nope. Photo by SHutterstock

Boffins fear we might be running out of ideas

Innovation, fetishized by Silicon Valley companies and celebrated by business boosters, no longer provides the economic jolt it once did. In order to maintain Moore's Law – by which transistor density doubles every two years or so – it now takes 18 times as many scientists as it did in the 1970s. That means each researcher's …
Thomas Claburn, 11 Sep 2017

Brazilians waxed: Uni's Tor relay node booted after harvesting .onions

A university research project in Brazil has had its Tor relay node banned after it was caught harvesting the .onion addresses of visitors. Marcus Rodrigues, a junior researcher with the University of Campinas in São Paulo, claims he and others were working to create a tool that could tell malicious hidden services from benign …
Shaun Nichols, 25 Aug 2017
phishing

Berkeley boffins build better spear-phishing black-box bruiser

Security researchers from UC Berkeley and the Lawrence Berkeley National Laboratory in the US have come up with a way to mitigate the risk of spear-phishing in corporate environments. In a paper presented at Usenix 2017, titled "Detecting Credential Spearphishing in Enterprise Settings," Grant Ho, Mobin Javed, Vern Paxson, and …
Thomas Claburn, 18 Aug 2017

Create a news alert about research, or find more stories about research.

Biting the hand that feeds IT © 1998–2018