December 2015 – Page 34 – news.buyenne.com

Dealmaster: Get a 64GB unlocked Nexus 6P smartphone for just $499

Plus many more deals, some that you can receive in time for the holiday!

Greetings, Arsians! Courtesy of our partners at TechBargains, we have a number of deals you can still get in time for the Christmas holiday. Some of the best deals include a 64GB Nexus 6P unlocked smartphone for $499 ($50 off of its original price) and a 32GB unlocked Nexus 6 handset for $249 (a whopping $400 off its original price). Both of those phones come with free one-day shipping as well, and you don't have to be an Amazon Prime member to get that perk. Amazon is also providing free one-day shipping on a number of hot items, including headphones, DSLR cameras, bluetooth speakers, fitness trackers, and much more.

Check out the full list of deals you can still get now below!

Featured

Read 5 remaining paragraphs | Comments

Hackers Grab Deluge and qBitTorrent User Databases

The websites of the torrent clients Deluge and qBittorrent, as well as the torrent site SumoTorrent, have reportedly been compromised. Access to the stolen user information including emails and hashed passwords is being sold online.

Source: TorrentFreak, for the latest info on copyright, file-sharing, torrent sites and ANONYMOUS VPN services.

databoss Several torrent related websites have reportedly been compromised by hackers, exposing the personal details of thousands of members.

Among the targeted sites are the forums of torrent clients Deluge and qBitTorrent, of which the user databases appeared online several days ago.

Both forums have thousands of members, whose emails, hashed passwords and other information was posted on the website Databoss.io.

The same site also lists the user database of the torrent site SumoTorrent.sx, which was reportedly breached earlier.

Databoss

compro

TorrentFreak reached out to the Deluge team, who have taken down their site as a precaution. This means that the popular cross-platform torrent client can’t be downloaded at the moment.

The Databoss hacker(s) placed a hello.txt file on the site as proof for the breach, but it’s not clear how the site was compromised.

“We’re currently working with our hosting provider to identify and resolve the issue and we’ve taken down the site until that time,” the Deluge team informs TF.

In any case, for now Deluge advises its forum members to change their passwords at other services, if they used the same password more than once.

The qBitTorrent team informs TF that they are looking into the issue on their end. They have disabled the forums as a precaution and plan to release a detailed statement later on.

SumoTorrent, meanwhile, informs us that they are not aware of any breach, but they are investigating the claims.

The Databoss.io website is selling access to the hacked information, starting at $2 per day.

For now no plaintext passwords are available for the torrent related sites, although this may change in the near future. “The databases are in the process of being cracked to the highest percentage possible,” Databoss writes on RealityForum.

However, at the time of writing the website is inaccessible. According to the person in charge, the site was pulled offline temporarily after an abuse complaint from the owner of another affected site, realforums.org.

Source: TorrentFreak, for the latest info on copyright, file-sharing, torrent sites and ANONYMOUS VPN services.

Open source Super Mario clone SuperTux gets first stable update in a decade

Twelve years ago developer Bill Kendrick created an open source, cross-platform video game called SuperTux. It’s been under development ever since, but the last time the a build was marked as “stable” was in 2005. That changed this week with, with the SuperTux Development Team announced the stable release of SuperTux 0.4. If your’re comparing […]

Open source Super Mario clone SuperTux gets first stable update in a decade is a post from: Liliputing

FDA loosens ban on blood donations from gay men

Indefinite exclusion lifted, but donations accepted only after a year of abstinence.

Enlarge (credit: ec-jpr)

Men who have sex with men are now allowed to donate blood, according to a revised policy posted today by the Food and Drug Administration.

The update reverses a previous policy that banned homosexual men from donating blood indefinitely—a recommendation that dates to 1983, the early days of the HIV/AIDS epidemic. However, to donate blood now, homosexual men must abstain from sexual contact for a year.

“Ultimately, the 12-month deferral window is supported by the best available scientific evidence, at this point in time, relevant to the US population,” Peter Marks, deputy director of the FDA’s Center for Biologics Evaluation and Research said in a press release. “We will continue to actively conduct research in this area and further revise our policies as new data emerge.”

Read 4 remaining paragraphs | Comments

Researchers confirm backdoor password in Juniper firewall code

“Unauthorized code” included password disguised to look like debug code.

The Juniper NetScreen 5200, one of the firewalls that carries the backdoor code inserted into Juniper's ScreenOS.

On December 17, Juniper Networks issued an urgent security advisory about "unauthorized code" found within the operating system used by some of the company's NetScreen firewalls and Secure Service Gateway (SSG) appliances. The vulnerability, which may have been in place in some firewalls as far back as 2012 and which shipped with systems to customers until late 2013, allows an attacker to gain remote administrative access to systems with telnet or ssh access enabled. And now researchers have both confirmed that the backdoor exists and developed a tool that can scan for affected systems.

In a post to the Rapid7 community blog site on December 20, Metasploit project founder and Rapid7 researcher H D Moore published an analysis of the affected versions of Juniper's ScreenOS operating system, including the administrative access password that had been hard-coded into the operating system. This backdoor, which was inserted into ScreenOS versions 6.2.0r15 through 6.2.0r18 and 6.3.0r12 through 6.3.0r20, is a change to the code that authorizes administrative access with the password "<<< %s(un='%s') = %u"—a password that Moore notes was crafted to resemble debug code to evade detection during review.

A side-by-side look at the Juniper ScreenOS code, with the backdoored code on the left and unaltered code on the right. The backdoor password is highlighted. (credit: Rapid7)

Since this code is in the firmware of the affected Juniper NetScreen and SSG appliances, the only way to remove it is to re-flash the firmware with a new version of ScreenOS. Steve Puluka has written a guide on how to perform the upgrade and avoid some of the potential problems around installation, including dealing with the configuration of a new signing key for the upgrade.

Read 2 remaining paragraphs | Comments

French consumer group sues for right to resell Steam games

“Federal union of consumers” also wants more liability for data breaches.

(credit: Kyle Orland)

A French consumer group has brought a lawsuit against Valve, saying the Steam and its required terms of service infringe on a number of European legal rights, including the right to legally resell purchased software.

The 64-year-old UFC-Que Choisir (the "federal union of consumers") argues that Valve must provide the capability for Steam users to resell their legally purchased digital games whenever they want. While noting that many online stores have similar resale restrictions, the group argues that the difference between being able to resell a physical game disc and not being able to resell a digitally purchased game is "incomprehensible... No court decision prohibits the resale on the second-hand market games bought online, and the European Court has even explicitly stated that it’s possible to resell software which, let’s remember, is an integral part of a video game."

The group is referring to a 2012 decision from the European Court of Justice that focused on the resale of downloadable enterprise software licensed from Oracle. "It makes no difference whether the copy of the computer program was made available by means of a download from the rightholder’s website or by means of a material medium such as a CD-ROM or DVD," the court ruled.

Read 6 remaining paragraphs | Comments

The best ride in the galaxy—coming back to Earth in a Soyuz

After returning 10 days ago, Kjell Lindgren recounts the out-of-this-world experience.

Enlarge / Would you ride back from space in this? The Soyuz TMA-17M spacecraft is seen after it landed on December 11 in Kazakhstan. It was -5 degrees Celsius outside. (credit: Bill Ingalls/NASA)

Just a little more than a week ago astronaut Kjell Lindgren prepared to take the ride of his life. The experience of returning to Earth inside a Soyuz spacecraft—likened to a fireball—may well be the most exciting thrill ride known to humans. Even before he departed for a year-long mission to the International Space Station, Soyuz reentry veteran Scott Kelly explained the ride thusly: "Even If I had hated the last six months, I would have done it all again for that last 20 minutes in the Soyuz.” This was fresh in Lindgren's mind as he strapped into the Soyuz spacecraft early on December 11.

"Scott had talked about that as well, in conversations we had had," Lindgren told Ars in an interview. "That certainly set an expectation in my mind for it being a lot of fun. We sometimes talk about things being fun, or type II fun, where it’s kind of fun in retrospect, but while you’re going through it, it’s maybe a little more arduous. I wasn't sure what this would be."

The ride begins quietly. Boring, even.

Read 8 remaining paragraphs | Comments

Chuwi Vi8 Plus is a $100 Cherry Trail Windows tablet

Chinese tablets aren’t exactly known for their high price tags. But it’s still kind of impressive to see what you can get for $100 these days. The Chuwi Vi8 Plus is a Windows tablet with an 8 inch display, an Intel Atom Cherry Trail processor, and a USB Type C port. You can buy one […]

Chuwi Vi8 Plus is a $100 Cherry Trail Windows tablet is a post from: Liliputing

Lab screw-ups with smallpox and anthrax show we must rethink biosecurity

Self-regulation by biologists was successful in the past but may now be too risky.

(credit: North Dakota State University)

Over the past couple of years, American labs have been caught mishandling biological samples that require extreme care: things like smallpox, anthrax, and avian flu. Largely in response to this, the White House issued a memo this past October 29 that outlined its vision of our future biosecurity and safety.

But in last week's Science, a trio of academics from Stanford lamented that the memo's approach was insufficient. Their exact criticism: “It grafts recommendations onto inadequate institutional structures and fails to address underlying systemic needs.”

When those assorted labs screwed up in their own distinctive ways, each was shut down and reviewed on a narrow, individualized basis. It is definitely great that the White House recognized that a more systematic, centralized approach is necessary but, according to this critique, they have not provided it.

Read 6 remaining paragraphs | Comments

TF-X: Terrafugia darf neues Flugauto testen

Es ist zumindest ein Anfang: Das US-Unternehmen Terrafugia darf Testflüge mit dem Flugauto TF-X durchführen. Allerdings wird nur ein verkleinertes Modell abheben. (Flugauto, Technologie)