Articles about research

I found a security hole in Steam that gave me every game's license keys and all I got was this... oh nice: $20,000

A bloke has told how he discovered a bug in Valve's Steam marketplace that could have been exploited by thieves to steal game license keys and play pirated titles. Researcher Artem Moskowsky told The Register earlier this week that he stumbled across the vulnerability – which earned him a $20,000 bug bounty for reporting it – …
Shaun Nichols, 9 Nov 2018
Modular bot

Transformers: Robots... at least it tries: Watch boffins' Optimus Dime rearrange on the fly

Mechanical engineering brainiacs at Cornell University and the University of Pennsylvania in the US have demonstrated how autonomous, modular robots can reconfigure themselves to accomplish specific tasks in an unknown place. In a paper published Wednesday in Science Robotics, Mark Campbell, Jonathan Daudelin, Gangyuan Jing, …
theft

Oslo clever clogs craft code to scan di mavens and snare dodgy staff

Researchers from the University of Oslo in Norway have developed a system that tries to combat rogue employees and inside jobs – by combining cyber and real-world security knowhow. Known as PS0, the framework [PDF] combines traditional PC and network security systems with input from physical sensors and other surveillance …
Shaun Nichols, 28 Sep 2018
Tesla model S

Bug bounty alert: Musk lets pro hackers torpedo Tesla firmware risk free

Tesla will allow vetted security researchers to hunt for vulnerabilities in its vehicle firmware risk free – as long as it is done under its now-tweaked bug bounty program. The luxury electric automaker said this week it will reflash the firmware on cars that have been bricked by infosec bods probing for exploitable bugs in …
Shaun Nichols, 6 Sep 2018
Oculus Rift

Boffins bork motion control gear with the power of applied sound

A group of university researchers have developed a way to remotely control motion-sensing devices using only sound waves. The study [PDF], authored by Yazhou Tu and Xiali Hei of University of Louisiana Lafayette, Zhiqiang Lin of Ohio State University, and Insup Lee of University of Pennsylvania, found that embedded sensors and …
Shaun Nichols, 28 Aug 2018
Pixellated Facebook thumb

Now that's a fortune cookie! Facebook splats $5k command-injection bug in one of its servers

Facebook has patched a remote-code execution flaw discovered in one of its servers. Researcher Daniel 'Blaklis' Le Gall, of SCRT Information Security, said on Friday he bagged a $5,000 bug bounty from the social network for reporting a flaw that could be exploited to execute arbitrary commands using malicious cookies. Though …
Shaun Nichols, 24 Aug 2018
Barbra Streisand photo from Shutterstock

SentinelOne makes YouTube delete Bsides vid 'cuz it didn't like the way bugs were reported

Updated If you were at BSides Manchester in England this week, you hopefully caught James Williams' presentation on the shortcomings of some commercial antivirus tools. If not, and you hoped to watch it on YouTube, you may be out of luck for a while. That's because one of the vendors mentioned – SentinelOne – is rather upset with the …
Shaun Nichols, 18 Aug 2018

Oz researchers, uni unite against Defence overreach

Australia’s research and university communities have united against what they see as Department of Defence overreach: the brass-hats want greater powers to control international collaboration. The battle centres around the two-yearly review of Australia’s defence controls legislation, and a June submission by the Department …
Window Snyder

Intel finds a cure for its software security pain: Window Snyder

Intel has recruited noted computer security exec Window Snyder into its ranks to help improve its fortunes in the cybersecurity space. Chipzilla said effective July 9, Snyder, formerly the chief security officer at Fastly, will be its new software chief security officer and vice president and general manager of the Intel …
Shaun Nichols, 25 Jun 2018

How to stealthily poison neural network chips in the supply chain

Computer boffins have devised a potential hardware-based Trojan attack on neural network models that could be used to alter system output without detection. Adversarial attacks on neural networks and related deep learning systems have received considerable attention in recent years due to the growing use of AI-oriented systems …
Thomas Claburn, 19 Jun 2018
Image of woman holding mask of her own face

The eyes have it: 'DeepFakes' bogus AI-meddled videos outed by unblinking gaze

In the last year or so convincing fake videos known as DeepFakes – the product of deep learning-driven facial image manipulation – have been condemned as a threat to democracy, or what's left of it. The fear is that invented events represent the sort of fake news that can alter elections and affect civic engagement. Imagine …
Thomas Claburn, 14 Jun 2018

EmDrive? More like BS drive: Physics-defying space engine flunks out

The "impossible" EmDrive may be just that, though don't count it out just yet. A group of German physicists at TU Dresden has tested two proposed means of propellantless propulsion – the EmDrive and Mach Effect Thrusters – and found the act of testing is what makes these arguably physics-flouting technologies appear to work. …
Thomas Claburn, 23 May 2018
CMU president Farnam Jahanian

Carnegie Mellon makes network security guru Jahanian president

Carnegie Mellon University has named computer science professor and Arbor Networks founder Farnam Jahanian as its new president. The researcher-turned-entrepreneur-turned-administrator takes over the permanent position after an eight-month temporary turn as president. Previously, he had led the university's academic department …
Shaun Nichols, 8 Mar 2018

Broadcom baits hook with promise of $1.5bn investment fund to catch Qualcomm

Broadcom says it will earmark $1.5bn for funding of 5G wireless broadband networks as part of its proposed acquisition of Qualcomm. The chip designer said Wednesday that, should its $117bn buyout plan for Qualcomm go through, it will set up a $1.5bn fund to "focus on innovation to train and educate the next generation of …
Shaun Nichols, 7 Mar 2018

Your shoe, chewing gum, or ciggies are now your extra password

Computer researchers at Florida International University and Bloomberg have come up with an alternative to crypto baubles like YubiKeys for two-factor authentication. It's not that there's anything wrong with YubiKeys and similar login tokens, apart from the occasional security blunder. But they can be a potential faff for non …
Thomas Claburn, 25 Oct 2017
tattoo

Harvard, MIT boffins ink up with health-monitoring 'smart' tats

Researchers at Harvard and MIT have developed a subdermal ink capable of monitoring vitals such as hydration and blood sugar. The team of eight researchers found that by mixing optical biosensors with tattoo ink, they are able to create tattoos (dubbed "dermal abyss" or "d-abyss") that react with the body's own fluids and …
Shaun Nichols, 29 Sep 2017
Protestor barricade image via Shutterstock

Has science gone too far, part 97: Boffins craft code to find protesters on social networks, rate them on their violence

Mining social networks for every scrap of information about our online lives is now common practice for marketers, academics, government agencies, and so on. Text in tweets, blogs and other posts is valuable because it's searchable, analyzable, and not terribly costly to crawl, fetch or store. But ongoing computer vision …
Thomas Claburn, 21 Sep 2017
Cows walk on green field in front of silos

Government lab that gives a crap pushes open source

The US government wants you to use its software, and if you're into manure, so much the better. The Idaho National Laboratory (INL), part of the US Department of Energy, last week released a new round of open-source projects in the hope that the public will take its research and run with it. Known for its MOOSE physics …
Thomas Claburn, 13 Sep 2017

Create a news alert about research, or find more stories about research.

Biting the hand that feeds IT © 1998–2018