Just another news site
Vor 25 Jahren veröffentlichte Nintendo das erste The Legend of Zelda in 3D. Was taugt der Meilenstein Ocarina of Time heute? Von Andreas Altenheimer (Zelda, Nintendo)
Seit Jahren legt sich Vodafone Deutschland nicht zu der 10G-Technik Docsis 4.0 fest. Ein Dell’Oro-Experte sieht die Zukunftsaussichten der neuesten Kabelnetztechnik in Europa getrübt. Eine Recherche von Achim Sawall (Docsis 4.0, Vodafone)
Seit Jahren legt sich Vodafone Deutschland nicht zu der 10G-Technik Docsis 4.0 fest. Ein Dell'Oro-Experte sieht die Zukunftsaussichten der neuesten Kabelnetztechnik in Europa getrübt. Eine Recherche von Achim Sawall (Docsis 4.0, Vodafone) How does a legacy test account grant access to read every Office 365 account?
The hackers who recently broke into Microsoft’s network and monitored top executives’ email for two months did so by gaining access to an aging test account with administrative privileges, a major gaffe on the company's part, a researcher said.
The new detail was provided in vaguely worded language included in a post Microsoft published on Thursday. It expanded on a disclosure Microsoft published late last Friday. Russia-state hackers, Microsoft said, used a technique known as password spraying to exploit a weak credential for logging into a “legacy non-production test tenant account” that wasn’t protected by multifactor authentication. From there, they somehow acquired the ability to access email accounts that belonged to senior executives and employees working in security and legal teams.
In Thursday’s post updating customers on findings from its ongoing investigation, Microsoft provided more details on how the hackers achieved this monumental escalation of access. The hackers, part of a group Microsoft tracks as Midnight Blizzard, gained persistent access to the privileged email accounts by abusing the OAuth authorization protcol, which is used industry-wide to allow an array of apps to access resources on a network. After compromising the test tenant, Midnight Blizzard used it to create a malicious app and assign it rights to access every email address on Microsoft’s Office 365 email service.
Since December, there have been 23 measles cases in the US, including two outbreaks.
The Centers for Disease Control and Prevention is putting clinicians on alert about the growing risk of measles cases and outbreaks amid a global surge in transmission.
In an outreach message sent Thursday, the CDC told clinicians to look out for patients who have a rash accompanied by a fever and other symptoms of measles, as well as patients who have recently traveled to countries with ongoing measles outbreaks.
Between December 1, 2023, and January 23, 2024, there have been 23 confirmed measles cases in the US, including seven direct importations by international travelers and two outbreaks with more than five cases each, the CDC noted. Most of the cases were in unvaccinated children and teens.
It’s only been a few months since the first mini PCs with Intel Core i9 processors began to hit the streets, but they’re becoming increasingly common. As spotted by the folks at AndroidPC.es, one of the latest is the Chatreey IT12, which i…
It’s only been a few months since the first mini PCs with Intel Core i9 processors began to hit the streets, but they’re becoming increasingly common. As spotted by the folks at AndroidPC.es, one of the latest is the Chatreey IT12, which is a compact desktop computer available with up to an Intel Core i9-13900H […]
The post Lilbits: Another Intel Core i9-13900H mini PC, another Beeper Mini v Apple update, and Asus ROG Ally 2 coming this year (maybe) appeared first on Liliputing.
DISH Network and Sling TV have filed a lawsuit against a pirate IPTV operation that allegedly made more than $20 million. The defendants, who allegedly worked with many resellers, stand accused of circumventing Widevine DRM and rebroadcasting channels without permission. The set-top boxes that served as gateways were sold through Amazon stores.
From: TF, for the latest news on copyright battles, piracy and more.
With more ways to stream online video than ever before, protecting video continues to be a key issue for copyright holders.
This is often achieved through Digital Rights Management, better known as DRM; an anti-piracy tool that dictates when and where digital content can be accessed.
Widevine DRM is one of the leading players in the field. The Google-owned technology is used by many of the largest streaming services including Amazon, Netflix, Disney+ and others. As such, keeping it secure is vital.
Unfortunately for rightsholders, most protection measures have their weak spots. Widevine DRM comes in different security levels and pirates have repeatedly shown that the lower specifications are not exactly watertight.
As a result of these and other weaknesses, pirate IPTV services are booming. This is a thorn in the side of Sling TV and parent company Dish Network, which sued one of these operations in a U.S. court this week.
The complaint, filed at the federal court in Atlanta, targets “Channel Wala”, “Doordarshan,” and several related individuals and companies, all from Georgia. They stand accused of selling set-top boxes (STBs) through their websites and Amazon stores.
While the hardware itself is not illegal, the sellers also promoted free trials and paid subscriptions through stickers on these streaming boxes. These were more problematic, according to the undercover agents who purchased them.
“An investigator purchased a STB from Defendants through Channelwala.com. Upon receipt of the STB, the investigator messaged Defendants at the WhatsApp number on the sticker on the box and requested a free trial of the Services.”
The Whatsapp conversation below shows that the investigator did get the promised free trial. This allowed them to access Dish and Sling channels, as well as those of many other media companies. According to the complainants, this is all done without permission from rightsholders.
In addition to the free trial, the investigator also discovered boxes with other stickers through Channelwala.com and the “MAG Box store” on Amazon. These versions directed buyers to visit Tvplususa.com, where they could get setup instructions and a streaming subscription for $6.99 per month.
All of these offers are unauthorized, Dish and Sling say. Besides the sticker promos, the plaintiffs also ran into several advertisements on Facebook and even flyers in physical stores throughout Atlanta.
“Defendants market the Services by distributing flyers and business cards in Indian grocery, liquor, and retail stores, gas stations, and other locations in the Atlanta metropolitan area,” the complaint reads.
As shown above, these flyers advertised the IPTV streaming service as an “Authorized Retailer” for Dish and Sling, which people could “WATCH FOR $7/mo.” This amounts to false advertising and misuse of the Dish and Sling trademarks, the complaint notes.
Thus far, the allegations are pretty straightforward. The people and companies involved, including Channel Wala LLC and Parshva Distributor LLC, sold set-top boxes that were linked to pirate IPTV services. However, it doesn’t stop there.
The complaint adds several DMCA violations, accusing the defendants of circumventing Widevine DRM. This is not the first time that Dish and Sling have brought DRM-related claims before a court, but here they are rather specific about what happened.
“The Widevine DRM […] is circumvented using a specially developed computer program that emulates the behavior of a reverse engineered hardware device,” the complaint explains.
“The computer program tricks Sling’s Widevine DRM server to grant access and provide a channel decryption key by making the server believe the request originated from a legitimate Widevine supported device that would keep the channel decryption key secured.”
The reverse-engineered hardware doesn’t keep Sling’s programming secure, of course, as it can easily be copied now.
“The unencrypted Channel can be uploaded to a server outside of the Sling platform and retransmitted to any number of users that can receive the Channel without purchasing a legitimate subscription from Plaintiffs,” the complaint notes.
The DRM circumvention technique is described in detail but it’s not immediately clear if the defendants had a hand in coding it. They are accused of using it, however, to pass on a variety of protected channels, also from many other rightsholders who use Widevine.
Last summer, Dish reportedly warned the defendant about their presumed illegal activities. The company sent a cease and desist notice in June, asking them to stop, but without result.
According to the complaint, some sites were taken down but the IPTV operation kept working with resellers. Defendant Abhishek Shah allegedly runs a $20+ million business, while encouraging resellers to ignore the legal threat and keep going.
“Abhishek Shah forwarded an image of Plaintiffs’ cease and desist letter to numerous resellers that purchase the STBs and Services from Defendants stating he has made more than $20 million, ‘continue business as usual,’ ‘DISH can’t stop us,’ ‘I am putting down my website but it does not impact you in any way,..,” the complaint reads.
Through the lawsuit, Dish and Sling hope to recoup damages, which could easily run into many millions of dollars. Besides the DMCA violations, where every subscription sold is seen as an individual offense, the rightsholders also request damages for trademark infringement.
Finally, they seek a permanent injunction to shut down the IPTV operation and have all infringing products destroyed.
At the time of writing, the Channelwala.com, Thegreatiptvsub.com, and Tvplususa.com websites are all offline. However, the resellers may still be in business, as the defendants instructed.
—
A copy of the complaint Dish and Sling filed at the federal count in Atlanta, Georgia, is available here (pdf)
From: TF, for the latest news on copyright battles, piracy and more.
Violating Americans’ privacy “not just unethical but illegal,” senator says.
Enlarge (credit: NurPhoto / Contributor | NurPhoto)
The National Security Agency (NSA) has admitted to buying records from data brokers detailing which websites and apps Americans use, US Senator Ron Wyden (D-Ore.) revealed Thursday.
This news follows Wyden's push last year that forced the FBI to admit that it was also buying Americans' sensitive data. Now, the senator is calling on all intelligence agencies to "stop buying personal data from Americans that has been obtained illegally by data brokers."
"The US government should not be funding and legitimizing a shady industry whose flagrant violations of Americans' privacy are not just unethical but illegal," Wyden said in a letter to Director of National Intelligence (DNI) Avril Haines. “To that end, I request that you adopt a policy that, going forward," intelligence agencies "may only purchase data about Americans that meets the standard for legal data sales established by the FTC.”
Violating Americans’ privacy “not just unethical but illegal,” senator says.
Enlarge (credit: NurPhoto / Contributor | NurPhoto)
The National Security Agency (NSA) has admitted to buying records from data brokers detailing which websites and apps Americans use, US Senator Ron Wyden (D-Ore.) revealed Thursday.
This news follows Wyden's push last year that forced the FBI to admit that it was also buying Americans' sensitive data. Now, the senator is calling on all intelligence agencies to "stop buying personal data from Americans that has been obtained illegally by data brokers."
"The US government should not be funding and legitimizing a shady industry whose flagrant violations of Americans' privacy are not just unethical but illegal," Wyden said in a letter to Director of National Intelligence (DNI) Avril Haines. “To that end, I request that you adopt a policy that, going forward," intelligence agencies "may only purchase data about Americans that meets the standard for legal data sales established by the FTC.”
The Raspberry Pi 5 is the most powerful single-board computer from Raspberry Pi to date. But it can be even more powerful if you overclock the computer’s BCM2712 quad-core ARM Cortex-A76 processor to run higher than the 2.4 GHz frequency it offi…
The Raspberry Pi 5 is the most powerful single-board computer from Raspberry Pi to date. But it can be even more powerful if you overclock the computer’s BCM2712 quad-core ARM Cortex-A76 processor to run higher than the 2.4 GHz frequency it officially supports. Of course, overclocking can increase the amount of heat generated, which can […]
The post Seeed Studio’s $120 water cooling kit for the Raspberry Pi is riduculous, but kind of cute appeared first on Liliputing.
It started with “a new line of miniatures rules” and became a global phenomenon.
Enlarge / The three rulebooks fo "fantastic medieval wargames" that started it all, released at some point in late January 1974, as seen in Dungeons & Dragons Art & Arcana: A Visual History. (credit: Wizards of the Coast/Ten Speed Press)
"We have just fromed [sic] Tactical Studies Rules, and we wish to let the wargaming community know that a new line of miniature rules is available."
With this letter, written by Gary Gygax to wargaming zine publisher Jim Lurvey, one of the founders of what would become TSR announced that a January 1974 release for Dungeons & Dragons was forthcoming. This, plus other evidence compiled by Jon Peterson (as pointed out by the Grognardia blog), points to the last Sunday of January 1974 as the best date for the "anniversary" of D&D. The first sale was in "late January 1974," Gygax later wrote, and on the last Sunday of January 1974, Gygax invited potential customers to drop by his house in the afternoon to try it out.
You could argue whether a final draft, printing, announcement, sale, or first session counts as the true "birth" of D&D, but we have to go with something, and Peterson's reasoning seems fairly sound. Gygax's memory, and a documented session at his own house, are a good point to pin down for when we celebrate this thing that has shaped a seemingly infinite number of other things.
Vor 25 Jahren veröffentlichte Nintendo das erste The Legend of Zelda in 3D. Was taugt der Meilenstein Ocarina of Time heute? Von Andreas Altenheimer (
You must be logged in to post a comment.