Category Archives: Daily Tech News Show

DTNS 2212 – Total Eclipse of the Heartbleed

Logo by Mustafa Anabtawi thepolarcat.comAndrew Zarian is on the show and we’ll kick around some Heartbleed news to scare the SSL out of you, plus what the governments doing to help patch software. And Jessica Dolcourt helps us decide if Windows Phone’s Cortana will inspire us to ditch Siri or Google Now.

MP3

Multiple versions (ogg, video etc.) from Archive.org.

Please SUBSCRIBE HERE.

A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes
Today’s guest:  Andrew Zarian of the GFQ Network and Jessica Dolcourt of cnet.com

Headlines

TechCrunch reports Windows Phone 8.1 arrived today for developers as a developer preview. While the OS is not finished, pretty much anybody can get it by signing up for a free Microsoft developer account and starting a project. Of course you voice your warranty and you can’t roll back to Windows Phone 8, so it may not be for everyone. Reviews of the OS came out today too with many people raving about Microsoft’s voice-activated assistant Cortana. That feature is only available in the US.

Engadget posted Google has agreed to buy Titan Aerospace, makers of solar powered drones. You may recall Facebook was in talk with Titan Aerospace a few months ago. Facebook bought a different company called Ascenta. The WSJ says Google intends to use the drones as part of its Project Loon attempt to broadcast the Internet from floating weather balloons.

Mozilla’s Mitchell Baker announced the appointment of Chris Beard to the Mozilla Board and the position of interim CEO. Beard has worked at Mozilla since 2004. He has an MBA from the University of Edibnburgh and worked in senior product and marketing roles at HP and Sun as well as founding the Puffin Group which was acquired by Linuxcare. Beard joined VC firm Greylock in July 2013.

Heart Monitor

Friday we told you Cloudflare had opened a server to be hacked, to see if private keys really could be extracted from a server by exploiting the Heartbleed vulnerability. It took 9 hours for someone to do so. Ars Technica reports software engineer Fedor Indutny and Ilkka Mattila at NCSC-FI obtained the keys. As of Saturday, CloudFlare had confirmed four “winners”, the other two being Rubin Xu, a PhD student in the Security group of Cambridge University and security researcher Ben Murphy.

A more worrisome exploitation of Heartbleed came from the Canada Revenue Agency which reported 900 Social Insurance Numbers stolen by someone taking advantage of Heartbleed. The CBC reports the theft was discovered by admins who were patching the CRA’s servers. The agency is still examining the breach to see if data related to businesses had been removed as well. The agency did not describe how the attackers used Heartbleed to gather the numbers. Anyone affected will be provided with free credit protection.

Of course patching the bug is not simple as Akamai has learned the hard way. PC World reports Akamai is reissuing all SSL certificates and security keys used to encrypt connections between its customers websites and visitors. Akamai THOUGHT its customers were less vulnerable to Heartbleed because of custom code related to how the keys were stored. Akamai released that code Friday to help out other researchers. As if to demonstrate the value of open source, researcher Willem Pinckaers found defects in the code Sunday. Akamai’s code left three of six critical values of an RSA key unprotected allowing an attacker to calculate the rest of the key.

Of course maybe all this could have been fixed years ago if the US NSA had let companies know about Heartbleed. Bloomberg reported Friday that two sources told them the NSA knew about Heartbleed for two years. A statement from the Office of the Director of National Intelligence said, “Reports that NSA or any other part of the government were aware of the so-called Heartbleed vulnerability before 2014 are wrong.”

Of course that doesn’t mean the US government agencies don’t find out about flaws and keep it to themselves sometimes. The New York Times reports the White House response to allegations the NSA knew about Heartbleed was to issue a statement saying there is now a “bias toward responsibly disclosing such vulnerabilities.” The exception of course is when there is “a clear national security or law enforcement need.”

News From You

AllanAV sent in the Ars Technica republication of the Wired UK article on a glow-in-the-dark road that debuted in the Netherlands on a 500 meter stretch of the N329 highway, replacing streetlights. The markings are not merely reflective, but created with photo-luminescent powder integrated into the road paint, developed in conjunction with road construction company Heijmans.

tekkyn00b posted the MacRumors article passing along the StreetInsider story that Jefferies analyst Peter Misek claims Apple wants to raise the price of the iPhone 6 $100 if they can get the carriers to agree. No carrier will likely WANT to raise the price in this world of bargain smartphones but Misek argues “Carriers realize that the iPhone 6 will likely be the only headline-worthy high-end phone launched this year and that they will lose subs if they do not offer it.”

And melchizedek74 pointed us to The Verge article that noticed Comcast’s Netflix speeds have improved dramatically since the two companies agreed to an interconnect contract. Comcast is the 5th fastest streamer at an 2.5Gbps for Netflix streams in March, vs. the average 1.15 Mbps it reported in January.

Discussion Section Links: Windows Phone 8.1 & 

http://www.cnet.com/news/cortana-vs-siri-vs-google-now/

http://arstechnica.com/gadgets/2014/04/windows-phone-8-1-review-a-magnificent-smartphone-platform/

http://www.theverge.com/2014/4/14/5612322/windows-phone-8-1-download-features

 

 http://www.nytimes.com/2014/04/13/us/politics/obama-lets-nsa-exploit-some-internet-flaws-officials-say.html?_r=0

http://www.bloomberg.com/news/2014-04-14/president-s-security-flaw-guidance-seen-hard-to-implement.html 

When the see the lunar eclipse!

http://mashable.com/2014/04/14/what-time-is-the-lunar-eclipse/?utm_cid=mash-com-Tw-main-link

Pick of the Day: Hitbliss via Mike!

Tuesday’s guest: Nicole Lee, Engadget

DTNS 2212 – Total Eclipse of the Heartbleed

Logo by Mustafa Anabtawi thepolarcat.comAndrew Zarian is on the show and we’ll kick around some Heartbleed news to scare the SSL out of you, plus what the governments doing to help patch software. And Jessica Dolcourt helps us decide if Windows Phone’s Cortana will inspire us to ditch Siri or Google Now.

MP3

Multiple versions (ogg, video etc.) from Archive.org.

Please SUBSCRIBE HERE.

A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes
Today’s guest:  Andrew Zarian of the GFQ Network and Jessica Dolcourt of cnet.com

Headlines

TechCrunch reports Windows Phone 8.1 arrived today for developers as a developer preview. While the OS is not finished, pretty much anybody can get it by signing up for a free Microsoft developer account and starting a project. Of course you voice your warranty and you can’t roll back to Windows Phone 8, so it may not be for everyone. Reviews of the OS came out today too with many people raving about Microsoft’s voice-activated assistant Cortana. That feature is only available in the US.

Engadget posted Google has agreed to buy Titan Aerospace, makers of solar powered drones. You may recall Facebook was in talk with Titan Aerospace a few months ago. Facebook bought a different company called Ascenta. The WSJ says Google intends to use the drones as part of its Project Loon attempt to broadcast the Internet from floating weather balloons.

Mozilla’s Mitchell Baker announced the appointment of Chris Beard to the Mozilla Board and the position of interim CEO. Beard has worked at Mozilla since 2004. He has an MBA from the University of Edibnburgh and worked in senior product and marketing roles at HP and Sun as well as founding the Puffin Group which was acquired by Linuxcare. Beard joined VC firm Greylock in July 2013.

Heart Monitor

Friday we told you Cloudflare had opened a server to be hacked, to see if private keys really could be extracted from a server by exploiting the Heartbleed vulnerability. It took 9 hours for someone to do so. Ars Technica reports software engineer Fedor Indutny and Ilkka Mattila at NCSC-FI obtained the keys. As of Saturday, CloudFlare had confirmed four “winners”, the other two being Rubin Xu, a PhD student in the Security group of Cambridge University and security researcher Ben Murphy.

A more worrisome exploitation of Heartbleed came from the Canada Revenue Agency which reported 900 Social Insurance Numbers stolen by someone taking advantage of Heartbleed. The CBC reports the theft was discovered by admins who were patching the CRA’s servers. The agency is still examining the breach to see if data related to businesses had been removed as well. The agency did not describe how the attackers used Heartbleed to gather the numbers. Anyone affected will be provided with free credit protection.

Of course patching the bug is not simple as Akamai has learned the hard way. PC World reports Akamai is reissuing all SSL certificates and security keys used to encrypt connections between its customers websites and visitors. Akamai THOUGHT its customers were less vulnerable to Heartbleed because of custom code related to how the keys were stored. Akamai released that code Friday to help out other researchers. As if to demonstrate the value of open source, researcher Willem Pinckaers found defects in the code Sunday. Akamai’s code left three of six critical values of an RSA key unprotected allowing an attacker to calculate the rest of the key.

Of course maybe all this could have been fixed years ago if the US NSA had let companies know about Heartbleed. Bloomberg reported Friday that two sources told them the NSA knew about Heartbleed for two years. A statement from the Office of the Director of National Intelligence said, “Reports that NSA or any other part of the government were aware of the so-called Heartbleed vulnerability before 2014 are wrong.”

Of course that doesn’t mean the US government agencies don’t find out about flaws and keep it to themselves sometimes. The New York Times reports the White House response to allegations the NSA knew about Heartbleed was to issue a statement saying there is now a “bias toward responsibly disclosing such vulnerabilities.” The exception of course is when there is “a clear national security or law enforcement need.”

News From You

AllanAV sent in the Ars Technica republication of the Wired UK article on a glow-in-the-dark road that debuted in the Netherlands on a 500 meter stretch of the N329 highway, replacing streetlights. The markings are not merely reflective, but created with photo-luminescent powder integrated into the road paint, developed in conjunction with road construction company Heijmans.

tekkyn00b posted the MacRumors article passing along the StreetInsider story that Jefferies analyst Peter Misek claims Apple wants to raise the price of the iPhone 6 $100 if they can get the carriers to agree. No carrier will likely WANT to raise the price in this world of bargain smartphones but Misek argues “Carriers realize that the iPhone 6 will likely be the only headline-worthy high-end phone launched this year and that they will lose subs if they do not offer it.”

And melchizedek74 pointed us to The Verge article that noticed Comcast’s Netflix speeds have improved dramatically since the two companies agreed to an interconnect contract. Comcast is the 5th fastest streamer at an 2.5Gbps for Netflix streams in March, vs. the average 1.15 Mbps it reported in January.

Discussion Section Links: Windows Phone 8.1 & 

http://www.cnet.com/news/cortana-vs-siri-vs-google-now/

http://arstechnica.com/gadgets/2014/04/windows-phone-8-1-review-a-magnificent-smartphone-platform/

http://www.theverge.com/2014/4/14/5612322/windows-phone-8-1-download-features

 

 http://www.nytimes.com/2014/04/13/us/politics/obama-lets-nsa-exploit-some-internet-flaws-officials-say.html?_r=0

http://www.bloomberg.com/news/2014-04-14/president-s-security-flaw-guidance-seen-hard-to-implement.html 

When the see the lunar eclipse!

http://mashable.com/2014/04/14/what-time-is-the-lunar-eclipse/?utm_cid=mash-com-Tw-main-link

Pick of the Day: Hitbliss via Mike!

Tuesday’s guest: Nicole Lee, Engadget

DTNS 2211 – Live from Greenville High School

Logo by Mustafa Anabtawi thepolarcat.comWe chat with students from Greenville High School in Illinois about tech topics on their mind like Internet sovereignty, piracy and Heartbleed.

MP3

Please SUBSCRIBE HERE.

A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes

Today’s guests: The students of Greenville High (Go GHS Comets!)  

Headlines

The Verge reports CloudFlare has announced the Heartbleed vulnerability may not leak the private keys of servers after all, reducing the severity of the bug greatly. Theoretically an attacker could exploit the heartbleed problem to extract the keys to a servers security and then impersonate it. Cloudflare has been unable to do so in testing for two weeks leading them to suggest it may be very hard if not impossible. To further test the theory, Cloudfare set up an intentionally vulnerable server at https://www.cloudflarechallenge.com/heartbleed and invited all comers to try stealing its keys.

That’s good news for owners of certain network routers from Cisco and Juniper Networks as those routers have been identified as using the version of OPenSSL that contains the Heartbleed vulnerability. Both companies are investigating their product libraries and making lists of affected devices, as well as working on patches.

Tax day in the US will be a bit more fun for residents. On April 15 in the US, Google will allow anyone over the age of 18 the privilege of plunking down $1500 to purchase a pair of the Explorer edition of Google Glass for a limited time. To get in on the action you can sign up for a reminder at http://www.google.com/glass/start/how-to-get-one/

TechCrunch reports that in addition to 15 new ad units announced yesterday, Twitter is also adding Web notifications to desktop users. The feature was noticed by Michel Wester of Holland as a disabled option in one of his test accounts. Twitter users can real-time notifications from mobile apps for things like posts that mention your name and such, but on the desktop they need to use third-party software.

Reuters reports patent buyer or depending in your view of things, patent troll, Intellectual Ventures has convinced Microsoft and Sony to invest in its latest round of fundraising. Apple and Intel declined. Intellectual Ventures buys patents and then makes money re-licensing them.

News From You: 

MikePKennedy posted the story that Facebook has announced plans to penalize Facebook Page operators that try to bait users into liking their page and sharing content. Facebook says it will pull or demote these kinds of posts from commercial pages: Like-baiting posts that frequently beg for likes and Spammy posts that contain, “only ads or a combination of frequently circulated content and ads.”

habichuelacondulce submitted the CNET report that the Internet advertisng Bureau announced Thursday that Internet advertising generated $42.8 billion in revenue in 2013. That’s a 17% increase over 2012 but bigger news than that is the fact that broadcast TV advertising generated $40.1 billion. That means Internet advertising surpassed broadcast TV advertising for the first time. Though they have a ways to go to catch all TV advertising. And Internet advertising sells a combo of print-like as well as TV-like ads. In fact, search ads generated $18.4 billion, Display ads generated $12.8 billion, and digital video $2.8 billion.

SkyJedi and Galcyon both submitted this story. Engadget reports Amazon is purchasing popular digital comic book seller Comixology. The service has Web and mobile app access to libraries of digital comics from most major and many smaller publishers. It’s guided view technology attempts to make frame by frame reading of comics smooth and easy. Amazon currently sells single issues and graphic novels on Kindle. Amazon expects to find ways to make Comixology and Kindle work better together, but Amazon will retain the Comixology branding and continue to support existing apps.

And HobbitfromPA sent in the Ars Technica story about the Solar Impulse 2. Its a solar-powered plane with the wingspan of a 747 and a weight of 2300 kilograms, about that of an average automobile. It cruises at a maximum speed of 140 kilometers an hour and slows down at night when it runs off batteries. Team head Bertrand Piccard and engineer André Borschberg will start test flights in the next few weeks with the goal of a flight around the world next March.

Discussion Section Links: Thoughts from Greenville

Monday’s guest: Andrew Zarian

DTNS 2210 – News From You The Third

Tom’s on assignment today, so he called his most trusted fill-in host – YOU!  We’ve got listener thoughts on the Amazon Fire, Facebook and Oculus, the Adobe Creative Cloud, and a genuine Molly Wood Heartbleed rant. Plus Jon Strickland has some thoughts about the (much) bigger picture.

Logo by Mustafa Anabtawi thepolarcat.comNews From You The Third

MP3

Video version with still photo and audio.

Please SUBSCRIBE HERE.

A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes

Headlines:

BlackBerry CEO John Chen told Reuters, “If I cannot make money on handsets, I will not be in the handset business,” which lead headline writers to declare BlackBerry would dump handsets. So Chen wrote a blog post Thursday that said “I want to assure you that I have no intention of selling off or abandoning this business any time soon,” referring to the devices business. So what gives? Pretty easy if you think about it. Chen said he won’t stop making devices soon but if he can’t make money off it eventually he’ll get out of the business. Stop SAYING REASONABLE THINGS JOHN CHEN, IT CONFUSES US!

Does hearing more about the Heartbleed vulnerability make your brain bleed? Lastpass to the rescue! The passwords storage and checker won points for fixing the vulnerability on their own site quickly and for the solid practice of encrypting traffic on another level. Now Lastpass users have a handy tool to help them decide if and when to change passwords due to heartbleed. The security checkler function in lastpass wills can all stored passwords and highlight any servers that have not patched OpenSSL 1.01 PLUS whether they’ve updated their security certificate. It’s all summarized in an action entry that either says wait, or Go update.

TechCrunch reports Google’s Advanced Technology and Projects (ATAP) group has released a Module Developers Kit (MDK) for Project Ara, its forthcoming modular smartphone. That means hardware developers can start working on modules that would fit into the Google-made endoskeleton. Without independent companies making lots of modules, Project Ara won’t be very interesting, so go et ‘em developers.

TechCrunch also reports Facebook is taking the messaging capability out of the standard Facebook app. That means you’ll need to download the Facebook Messenger app if you want to chat with friends on the service on your mobile device. People who already downlaoded the Messenger app might not notice since the messenger tab automatically detects the messenger app and links to it if it’s there. Facebook will roll the change out slowly, starting in Europe and notify users several times before the messaging tabs actually disappears. The change doesn’t affect users of Facebook’s Paper app.

Remember Comcast submitted their 180-page filing on why a merger with Time Warner Cable would be good? Among the many reasons Comcast pointed out they don’t compete with TWC because they have no overlapping markets. CNET reports, Senator Al Franken found that interesting. During a US Senate Judiciary Committee hearing on the merger, Senator Franken pointed out Comcast cited competition with Time Warner Cable as a reason to approve Comcast’s acquisition of NBC Universal in 2010. The hearing does not have any direct influence over approval of the merger.

The Dropbox-owned mailbox app is now available for Android. Engadget reports it even has some features not found int he iOS version., including a new auto-swipe feature that teaches the app which emails you archive and defer until later and acts appropriately when it sees them. The company also showed off a preview of mailbox for the desktop.

Dropbox also made the news with the addition of Dr. Condoleeza Rice to its board of Directors. PC Magazine reports that Dropbox CEO Drew Houston made the announcement along with the news that Sujay Jaswa and Dennis Woodside have been named CFO and COO, respectively. Rice has been Provost of Stanford University, served on the board of several companies like HP and Charles Schwab, and is likely best known for serving as US Secretary of State under President George W. Bush. Rice was also National Security Advisor from 2002 until 2005. That is an advisory White House position with no authority over any departent.

News From You!

Toby Pinder on Heartbleed and the long tail of the internet

KTLA’s Rich DeMuro on Dropbox updates

Justin Crowell on the Adobe Creative Cloud

Dave from Allen, TX on Amazon Fire

David Brodbeck on media portability across devices

Rich from Lovely Cleveland on chips!

Richard Ya on Facebook and Oculus

Molly Wood has a Heartbleed rant (and also an article in the New York Times about it!)

Daemon on airlines using Twitter for customer service

Guillaume on Chromium OS

Patrick Beja on Windows 8.1

Kencade Babb on universal search

And Jon Strickland of Thinking, co-host of TechStuff, and HowStuffWorks writer leaves us with some thoughts on the bigger picture.

Picks of the Day:

Vudu recommended by Tony Vahl

Gooseberry project by metalfreak

Run Zombies Run! by Sean Palladino

 

 

DTNS 2209 – Free to be 3D

Logo by Mustafa Anabtawi thepolarcat.comJason Hiner is on the show today, we’ll chat a bit about Heartbleed, Windows XP and dig into whether 3D printing belongs in the home or the factory.

MP3

Multiple versions (ogg, video etc.) from Archive.org.

Please SUBSCRIBE HERE.

A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes

Today’s guest:  Jason Hiner, editor-in-chief of Tech Republic

Headlines

As we discussed yesterday, the Heartbleed vulnerability affects around 18% of SSL 1.01 servers that implemented TLS-Heartbeat. SysAdmins have been scrambling to patch their systems and issue new security certificates. The simple advice is to wait for confirmation of a fix from vulnerable websites before logging in. If you don’t want to wait, GRC’s Steve Gibson recommends using ssllabs.com to check if a site’s server has had their SSL version upgraded to 1.01g and the security certificate was reissued AFTER the update. Matthew Green has an excellent discussion at cryptographicengineering.com of the code error itself, if you’re interested in how the bug happened in the first place.

Reuters reports that 70% of the market in China still uses Windows XP, which received it’s last security patch yesterday. Microsoft has partnered with Lenovo and Tencent to provide continuing support. Tencent will provide permanent XP support free of charge with two 24-hour hotlines. tm204 posted a Netcraft survey to our subreddit showing 6,000 websites still running on Windopws XP including 14 hosted by US governments. If that sounds bad, it’s nothing compared to the 500,000 or so websites hosted on Windows 2000 which stopped being supported in July 2010. There are even 50,000 sites running Windows NT4 which ended support December 31, 2004.

The Verge passed along Amazon’s claim to have tripled its streams over the past year, making its instant video site the third largest behind Netflix and YouTube, passing up Hulu, according to numbers from video-delivery firm Qwilt.

The Economic Times reports Facebook now has more than 100 million active users in India, the second country in which the social network has reached that milestone. The first was its home country of the US. 84 million of that 100 access the site from their mobile devices. Brazil, Indonesia and Mexico round out the top 5 countries for Facebook, in that order.

News From You: 

Google would like all you XP users out there to have a new PC. MikePKennedy posted the Android Central story about Google taking $100 off Chromebooks when purchased through the Chromebooks for Business program. If you’re really attached to Windows apps, Google is offering $200 off Chromebooks for Business with VMWare’s DaaS virtualization suite, and 25% off Citrix XenApp Platinum Edition.

tekkyn00b posted a different Android Central story. This one is about Comcast considering their own mobile phone service, using WiFi as the main delivery, with cellular data leased as a backup. Sound familiar? Google was rumored to be meeting with Verizon about the same sort of plan. The Information reported the story originally with sources saying Comcast would like to create a nationwide network, though implementation is still far off.

habichuelcondulce submitted the Reuters report that Intel will shut its assembly and test operation in Costa Rica, eliminating 1,500 jobs. Intel spokesman Chuck Malloy said Intel will move assembly and testing from its site in Heredia, Costa Rica to existing sites in China, Malaysia and Vietnam, over the next 6 months. Intel’s R&D efforts will continue in Costa Rica, employing some 1,000 people. Intel announced in January it would reduce its worldwide workforce by 107,000 this year.

Draconos passed along the Verge report about Sesame Street launching its own streaming video service. Sesame Go is browser-based but US-only and works on Mac, Windows and mobile devices. For $4 a month or $30 a year, you can watch hundreds of Sesame Street episodes as well as the animated series Pinky Dinky Doo.

tm204 posted the ScienceDaily report about a study published in Materials Today describing computer logic units built using slime molds. The work by Andrew Adamatzky of the University of West England, and Theresa Schubert of Bauhaus University, exploited the interconnected tubes of slime molds to process information. To make the tubes work the way they wanted to, they fed tubes oat flakes where they wanted to grow them and salted areas where they didn’t want tubes. Using dyes with magnetic nanoparticles and tiny fluorescent beads, allowed them to use the slime mold network as a biological “lab-on-a-chip” device. “The slime mold based gates are non-electronic, simple and inexpensive,” according tot he study.

Discussion Section Links: 3-D Printing’s Missing Link

http://www.techrepublic.com/article/the-missing-link-in-3d-printing-user-friendly-software/

https://www.kickstarter.com/projects/m3d/the-micro-the-first-truly-consumer-3d-printer 

Pick of the Day:  SSL Labs

Thursday’s guest: YOU!

DTNS 2208 – The Bleedin’ Internet’s Broken

Logo by Mustafa Anabtawi thepolarcat.comMichael Wolf is on the show helping me deal with the post Heartbleed vulnerability trauma we all are feeling today. Plus he’s got some good news for folks in the wearables industry. As a bonus Steve Gibson helps us understand what we should do about Heartbleed.

MP3

Multiple versions (ogg, video etc.) from Archive.org.

Please SUBSCRIBE HERE.

A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes

The entire Internet has been reporting on the Heartbleed vulnerability in SSL/TLS today. Heartbleed is a bug in the OpenSSL cryptographic library version 1.01 that as been in
wild since 14 March 2012. The bug would allow an attacker to recover up to 64 kilobytes of memory from the server or client computer, repeatedly. OpenSSL has issued a patch which is OpenSSL 1.01g. The nasty part of the bug is it could not only allow an attacker to get things like passwords in memory if they’re lucky, but also recover primary and secondary SSL keys, which means the bad guys could impersonate the good guys and you’d never be able to tell. Many sites do not use OpenSSL and are unaffected. Apple, Google and Microsoft appear to be unaffected, along with the major e-banking services. Before you log into a sensitive service check filippo.io/Heartbleed/ to see if the site has updated to SSL 1.01g, although beware some false negatives have been reported. But if it says it’s updated it is. Then you should also check to make sure any previously vulnerable site has updated its ssl certificate which you can do at https://sslcheck.globalsign.com/ or do several of these tests at https://www.ssllabs.com/

The Verge reports Twitter profile pages are showing up with a fundamental redesign. The Twitter blog announced the change Tuesday morning saying the changes will be rolled out to select users first then globally over the next few weeks. Main changes include user and friend photos in a tile layout on the lower left, size adjustment to posts based on how popular they are and the ability to pin a tweet to the top of the page.

If you plunked down for a 4K TV, you finally have something to watch. CNET reports Netflix confirmed it has begun streaming 4K versions of its original series House of Cards as well as a few nature documentaries. Not working on your 4K TV? That’s because it has to be a TV with the built-in H.265/HEVC codec, which is pretty much on TVs shipping now. Sorry. Oh unless you have the Samsung UNF9000 which is upgradable.

XP says goodbye, and 8.1 update says hello. OK XP users, this is it. The final four security updates for Windows XP and Office 2003 for Windows XP were released today. Download. Install. Enjoy. You’re on your own now. Godspeed. On the other end of the scale, Windows 8.1 Update aka 8.1 (1) or the new 8.1 or whatever arrived today.

Recode reports Comcast made their 180-page case for why the government should allow them to merge with Time Warner Cable and grab 30% of the US cable market. There’s a lot in those pages about video competition, citing Apple, Microsoft, even Facebook as big competitors to little ol’ Comcast. They don’t point out so clearly that those services all have to run over pipes which would become dominated by Comcast. They also didn’t mention they beat Monsanto in the Consumerist’s Worst Company in America poll. This is only the beginning of the review. Tomorrow, a Senate panel will examine the deal. Justice Department officials are starting to evaluate any competitive threats and the FCC plans to focus on whether it’s in the public interest.

Like Microsoft Office on your iPAd? Thank Steve Ballmer. During a Reddit Ask Me Anything session, the Office for iPad and Mac team revealed “the decision to ship Office for iPad was made before Satya Nadella became CEO.

I bet Stephen Elop is relieved. China’s regulators have approved the acquisition of Nokia’s handset division by Microsoft, taking away the last significant hurdle to the deal being completed. With US and EU approval already complete, Nokia feels confident the deal can still close in April.

Draconos posted the story from Gizmodo about scientists at the University of Louisville’s Kentucky Spinal Cord Injury Research Center, fitting four wheel-chair-bound men with an array of electrodes in the lumbosacral region of the spinal cord. The implant restores what in healthy people would be the resting potential of the spinal cord, the baseline electrical activity that keeps the cord alert. All four patients can move their legs and toes, and some can even lift up to 100 kilograms with their legs. The research is published in Brain.

metalfreak pointed out the PC World story that the European Court of Justice ruled Tuesday that laws requiring communications providers to retain metadata are invalid because they seriously interfere with fundamental privacy rights. The current EU Data Retention Directive requires telecommunications and Internet providers to retain traffic and location data as well as related data necessary to identify the subscriber or user. The court acknowledge the value of the data in fighting crime but identified several ways in which the law exceeded the limits of proportionality. IN toher words it went farther than it needed to. The CJEU’s ruling is binding for national courts who have to dispose of cases in accordance with the Court’s decision.

And tsukiri posted the NBC News story about the US Navy planning sea trials for an electromagnetic railgun that can fire a low-cost, 10-kg projectile at seven times the speed of sound. Yeah rail guns. Like in your video game, except real. In related news the Navy says it’s making final adjustments on a new prototype of a Laser Weapons System — dubbed LaWS — that will be deployed into the real world in late summer. So yeah. Electromagnetic railguns and lasers. At sea.

 Discussion Links: Heartbleed Heartburn

http://heartbleed.com/

http://www.kb.cert.org/vuls/id/720951

https://www.grc.com/sn/sn-450-notes.pdf

http://arstechnica.com/security/2014/04/critical-crypto-bug-in-openssl-opens-two-thirds-of-the-web-to-eavesdropping/

http://krebsonsecurity.com/2014/04/heartbleed-bug-exposes-passwords-web-site-encryption-keys/

http://www.zdnet.com/heartbleed-serious-openssl-zero-day-vulnerability-revealed-7000028166/

https://www.openssl.org/news/secadv_20140407.txt

http://www.theverge.com/2014/4/8/5594266/how-heartbleed-broke-the-internet

http://arstechnica.com/security/2014/04/critical-crypto-bug-exposes-yahoo-mail-passwords-russian-roulette-style/

http://news.netcraft.com/archives/2014/04/08/half-a-million-widely-trusted-websites-vulnerable-to-heartbleed-bug.html
http://ssllabs.com/

Wearables: 

http://www.forbes.com/sites/michaelwolf/2014/04/03/heres-whats-wrong-with-the-guardian-article-on-wearables/

http://www.theguardian.com/technology/2014/apr/01/wearables-consumers-abandoning-devices-galaxy-gear

Pick of the Day: Lastpass.com

Because of this blog post. 

Tomorrow’s Guest: Special 9am DTNS with Jason Hiner, editor in chief of Tech Republic

DTNS 2207 – Flexible future

Logo by Mustafa Anabtawi thepolarcat.comIyaz Akhtar is on the show today. We’ll discuss some pretty cool flexible tech that could let you scan things by laying it on your screen. Also, we get the scoop on Android TV from The Verge’s Sean Hollister.

MP3

Please SUBSCRIBE HERE.

A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes

Today’s guest:  Iyaz Akhtar of CNET & GFQNetwork

Headlines

GigaOm reports Android lock screen app Cover said Monday it was joining Twitter. The app that launched in invite-only beta in October, replaces the Android lock screen with one that suggests apps based on location. The current Cover app will remain in the Google Play store for now, but the development team will be working on things for Twitter.

Geek.com has the story of Seagate’s 6TB hard drive, matching Western Digital in capacity, but without needing to fill the drive with helium. The Seagate Enterprise Capacity hard drive is available in 2, 4, 5, and now 6TB capacities with a 128MB cache and spin speed of 7,200rpm. No pricing or word on consumer models were made available.

GigaOm reports two new chips from Qualcomm were announced Monday. The Snapdragon 808 and 810 support 64-bit computing, support LTE-Advanced wireless speeds up to 300 Mbps and dual-stream 82.11ac WiFi. The 810 also gets 4K video support. Apple has 64-bit support in its A7, and Intel has a 64-bit Android Kernel, but Android does not have an official 64-bit version yet. Google I/O is coming up end of June though. The new Qualcomm chips will become available in commercial devices in the first 6 months of 2015.

Microsoft introduced a new version of Skype for broadcasters Monday morning, called Skype TX. The “studio-grade” version has high-quality audio and video without unnecessary features like call notifications and ads. Skype TX comes with HD-SDI video output and input, balanced audio output and input, auto aspect ration conversion, support for multiple, simultaneous calls, operator previews, and more. Media organizations can sign up at media.skype.com/skype-tx but no other details on pricing or shipping were announced.

The Verge reports M3D launched a Kickstarter today to bring a new consumer 3D printer called Micro. The Micro accepts PLA and ABS plastics as well the company’s own Micro filament spools. The company also claims it has made much more intuitive software. M3D hopes to have assembly line production rolling between August and September for delivery starting in March next year. The printer costs only $249 but you’ll have to back at $899 if you want one from the first batch. The $50,000 was reached in minutes and in the first day, M3D has raised almost a half a million.

News From You:

Our top vote-getter on the subreddit was submitted by KAPT_Kipper. The TechCrunch story relates the protest that took place against Kevin Rose outside his apartment in San Francisco. Rose, the co-founder of Digg and Revision3, works for Google Ventures now. Protestors targeted Rose because he is a venture capitalist and because of controversial things he said on the show DiggNation in the past. The group demands Google give $3 billion to an anarchist organization to create autonomous, anti-capitalist, and anti-racist communities throughout the bay area and northern California.

Draconos posted the Ars Technica article that the US Supreme Court has declined to rule on the constitutionality of the NSA’s bulk telephone metadata surveillance program. Activist Larry Klayman had appealed directly from the US Distric Court decision in December, skipping over the US Appeals Court, which has been done before. That means the case would have to go through the appeals court, which also means it would likely not be resolved before the US Patriot Act expires on June 1, 2015.

tekkyn00b submitted the 9to5 Mac story on a demonstration at Microsoft’s ThinkNext Conference of a device that charges batteries compact enough for smartphones in 30 seconds. StoreDot claims the commercial version of the charger will only cost about twice as much as today’s chargers but production isn’t expected until 2016.

gowlkick sent us the CNET story on HTC’s earnings. It’s not a good report. Between January and March 2014 HTC’s total revenue fell by more than twenty percent over the previous quarter with a loss of $62 million. However, sales didn’t fall for the first time in 28 months AND KGI INvestment projects a 50% rise in Q2 sales due to the popularity of the HTC One M8 and HTC Desire 816.

cincyhuffster posted the Verge article about the Amazon Dash, a 6-inch long plastic stick that lets customers of the Amazon Fresh grocery delivery service, add items to their shopping list either by voice command or scanning an item itself. Shoppers then have those items already queued up the next time they need to place an order.

And pnthrldy posted the OMG Chrome story that the London Borough Council for Barking and Dagenham is replacing 2,000 of its Windows desktops with Samsung Series 3s running Chrome OS. The council expects to save £400,000. About half that is from licensing costs and the other half to power efficiency.

Discussion Section Links: Android TV and flexible tech

http://www.theverge.com/2014/4/5/5584604/this-is-android-tv

http://gigaom.com/2014/04/07/how-thin-flexible-electronics-will-revolutionize-everything-from-user-interfaces-to-packaging/

Pick of the Day: Roboform.com

Tuesday’s guest: Michael Wolf, Forbes contributer and host of the Next Market Podcast

DTNS 2206 – Hak5-year-old

Logo by Mustafa Anabtawi thepolarcat.comDarren Kitchen is here to talk about the 5-year-old who hacked an Xbox One and started a career in security research. Plus, a look at the Amazon Fire TV in use. AND Len Peralta is here to illustrate the episode.

MP3

Multiple versions (ogg, video etc.) from Archive.org.

Please SUBSCRIBE HERE.

A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes

Today’s guest:  Darren Kitchen and Len Peralta

Headlines

Graphene, a substance poised to take over for silicon for many years, may finally made it out of the lab. CNET reports Samsung’s researchers have synthesized a crystal of graphene that retains its charge across a larger area, which could lead to industrial scale production. Graphene is just one atom thick, more conductive than silicon, stronger than steel and able to leap tall buildings if carried by Superman. It could make it easier to construct flexible or unbreakable screens and be useful in things like bionic implants.

CVG reports the Unreal game engine will get an update later this month that will add support for Linux and SteamOS in Unreal Engine version 4.1. In March Epic made the Unreal Engine available for $19 a month plus 5% of gross revenue from any commercial products that use the engine.

io9 reports The US National Institute of Standards and Technology a new atomic clock called NIST-F2, that uses a fountain of cesiujm atoms to determine the length of a second, and can go 300 million years without gaining or losing a second. That makes it three times as accurate as the current NIST-F1.

The Verge reports the Samsung Ativ SE Windows Phone is now official and available for pre-order on Verizon. Thhe 5-inch phone has a 1080p display, 13-megapixel camera, 2.3 GHz quad-core processor, 2 GB of RAM and a 2600 mAh battery. It also comes with Ativ Beam which can use an infrared blaster on the phone to control your TV. Verizon promises it will ship by April 12 and runs $200 on a two-year contract or $600 without a contract.

Josh Constine at TechCrunch has a piece up, looking at the question of Facebook’s declining page reach. Even though the total number of pages liked on Facebook grew 50% last year, companies like Eat24 and presumed people like Rainn Wilson have complained and even broken up with Facebook over a declining number of people visiting their pages. A study from News Feed optimization service EdgeRank Checker has found reach per fan has steadily declined. Constine finds the increase in things for people on Facebook to pay attention to, plus the number of alternatives like Twitter and Pinterest are the most likely culprits.

News From You:

MrMaxPowers247 pointed us to the ABC News 10 San Diego story about 5-year-old Kristoffer Von Hassel discovering that filling the Xobx One’s secondary password box with all spaces let him log into his father’s Xbox Live account and play some not necessarily age-appropriate games. His father, Robert Davies, is a security researcher, who was not only proud of his boy’s l33t skillz but also contacted Microsoft after documenting the vulnerability. Microsoft has patched the problem and given Von Hassel four games, $50 and a year-long subscription to Xbox Live from Microsoft, as well as acknowledging him as a March 2014 Microsoft Security Researcher.

SpSheridan let us know that Nest has announced it halted sales of the Nest Protect smoke alarm, after it found that the Nest Wave feature could delay the alarm from going off during a fire. Nest Wave let a user wave hands at the detector to shut off the alarm. Nets researchers found this feature could be unintentionally activated. Protect smoke detectors that have already been sold will automatically update and deactivate the feature within 24 hours if the device is connected to the Internet. Nest is also offering refunds. It may take up to three months to get regulatory approval of changes to the software for Nest Protects to be sold again.

metalfreak pointed out the Network World story that Linus Torvalds has banned Kay Sievers, a prominent Red Hat employee and code contributor, from working on the Linux Kernel. Sievers develops the system management framework systemd. Torvalds banned Sievers for failing to address an issue that caused systemd to interact with the Linux kernel in negative ways. The command line entry of debug would run both the base kernel and systemd’s debugging routines potentially flooding some systems. Torvalds wrote on a mailing list that he is “tired of the fact that you don’t fix problems in the code *you* write.” referring to Sievers.

And motang pointed out the ReactOS Indiegogo crowd-funding campaign. – ReactOS is a free open source operating system based on the design principles of the Windows NT architecture. It is intended to be binary compatible with Windows software. The group wants to raise $50,000 to help develop a ReactOS community edition, which will focus on developing compatibility with the community’s favorite Windows apps and drivers, based on a vote.

Discussion Section Links: The Littlest Hacker

http://arstechnica.com/gaming/2014/04/microsoft-plugs-xbox-one-security-hole-discovered-by-five-year-old/

http://www.10news.com/news/5-year-old-ocean-beach-exposes-microsoft-xbox-vulnerability

http://technet.microsoft.com/en-us/security/cc308589

https://www.linkedin.com/pub/robert-davies/5/302/b17

https://www.youtube.com/watch?v=JnQhhEv4cKw&list=UU-vIANCum1yBw_4DeJImc0Q

Pick of the Day: Capresso 560.01 Infinity Burr Grinder

If you like to make coffee at home, but you’re still using good old reliable Mr. Coffee with good old reliable pre-ground coffee, perhaps its time for an upgrade? Today’s pick of the day: A Capresso 560.01 Infinity Burr Grinder. Grinding your own beans ups your coffee quality by at least 50%. Using a conical burr grinder instead of the traditional two-blade grinder produces a uniform grind by only allowing grains of a specific size to pass through the machine, among other benefits. Amazon has them for about eighty bucks, which is NOT cheap, but it’s worth the investment. Now you can all fight among yourselves about which method of coffee preparation is the best. Jennie choses a Chemex brewer, but that’s another story for another pick of the day.

Monday’s Guest: Iyaz Akhtar

DTNS 2205 – Free Range Organic Europeans

Logo by Mustafa Anabtawi thepolarcat.comVeronica Belmont joins the show to talk Google becoming a mobile phone carrier, our take on the Amazon Fire TV and more!

MP3

Multiple versions (ogg, video etc.) from Archive.org.

Please SUBSCRIBE HERE.

A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes
Today’s guest: Veronica Belmont!

Headlines

Europe is free to roam, and guaranteed neutral. The BBC reports the European Parliament voted 534 to 25 in favor of a package of telecom reforms called Connected Continent, championed by EC Vice President Neelie Kroes. Among other things, the new regulations would get rid of roaming fees as of December 15th 2015. The package also included provisions protecting Net Neutrality and making it easier to build networking infrastructure. EU member states now must review and approve the regulations. The Commission expects final agreement by the end of the year.

Apple announced the dates for this years WorldWide Developers Conference at the Moscone West Convention Center in San Francisco. The highly-anticipated show will run from June 2 until June 6. Ars Technica reports tickets will be issued at random to any registered developer who signs up at Apple’s site by Monday April 7 at 10 AM Pacific Time. If selected, you get to spend $1,599 on a ticket by April 14th, or lose your spot. Tickets cannot be resold or given away.

Recode reports Mozilla confirmed in a blog post that CEO Brendan Eich is resigning from his position and from the Mozilla foundation board. Eich had contributed to a campaign to make gay marriage illegal in California. Mozilla Executive Chairwoman Mitchell Baker told Recode that Eich’s ability to lead the company had been damaged by the continued scrutiny over the hot-button issue. The blog post from Mozilla stated “We didn’t act like you’d expect Mozilla to act. We didn’t move fast enough to engage with people once the controversy started. We’re sorry. We must do better.”

TechCrunch passed along a report from The Information that Google executives met with Verizon officials in January to discuss creating a wireless network in locations where Google offers its fiber Internet. The idea apparently, was to make WiFi access points carry mobile traffic, but provide cellular data as a backup. Google could buy that data wholesale from a partner like Verizon, or become a virtual network operator, AKA an MVNO. Google ALSO met with Sprint in early 2012, before that company was bought by SoftBank.

Reuters reports Pavel Durov, founder of Russia’s largest social network, ВКонтакте, withdrew his resignation Thursday, two days after announcing he would leave his post as CEO. Durov at first said he was stepping down because his freedom in running the company had been reduced by shareholder changes. Durov said “my resignation at this difficult time would have been a betrayal of all that we have been defending for the last seven years.”

Reuters reports TIB, the Turkish telecom authority has lifted the two-week-long ban on Twitter as of Thursday afternoon, in response to an order from the constitutional court. A block against YouTube remains in place. Legal challenges against the YouTube block are pending.

Ars Technica reports researchers have demonstrated that computers can use algorithms to teach each other unfamiliar tasks, like how to play Pac-Man or StarCraft. Before you shout SkyNet, Matt Taylor, the lead author on the published research, says the method only works on sequential decision-making tasks. Other general machine learning methods would not benefit from these techniques.

News From You:

MrAnthropology submitted the CNET story about Intel’s new 24-nanometer ‘Braswell’ system-on-a-chip unveiled at IDF in China. Braswell will follow in the footsteps of the Bay Trail chip used in low-cost PCs like Chromebooks. Intel also unveiled a 64-bit Android 4.4 KitKat kernel optimized for Intel Architecture devices. As well as a media box from QVOD running on a Bay Trail chip, arriving later this year. Oh and Intel is working with Xiaomi on a Widi-enabled set-top box.

LifeDownloaded passed along the AP story about the US Agency for International Development, AKA USAID, secretly developing a microblogging system over text messaging in Cuba called ZunZuneo, which is slang for the sound a hummingbird makes. Documents show the US planned to build up users through non-controversial content, then try to get things to turn political. At its peak the company had 40,000 users. When USAID felt it could no longer hid its involvement, they tried to find new managers, then eventually the service shut down in 2012.

metalfreak sent us the muktware article the Indian state of Tamil Nadu has issued “a directive to local government departments asking them to switch over to open source software, in the wake of Microsoft’s decision to end support for Windows XP this month. The government claims hardware upgrades would make it too expensive to switch to Windows 8. IN its place computers will run “BOSS” a custom Linux distro that the government designed themselves.

And MikePKennedy sent us the Wired story that Tesla and the Alliance of Automobile Manufacturers called for the US National Highway Traffic Safety Administration to allow cameras to replace rearview mirrors in cars. This follows a new US rule requiring all new vehicles weighing less than 10,000 pounds to be equipped with back-up cameras beginning May 1, 2018.

Discussion Section Links: Google WiFi?

http://www.androidcentral.com/google-reportedly-considering-adding-cellular-service-google-fiber-cities

Pick of the Day: alternativeto.net via Komei from Lovely Fremont

My favorite tool is a website that helps me find my favorite tools :) It is called alternativeto.net

When you have questions such as “Is there a tool like WinZip on the Mac?”, “What was the name of that free program that works like Photoshop?” or “Is everyone still using ACDSee?”, then you can enter the name of the tool you have in mind, and the website will list all similar programs by popularity. You can also narrow the search by platform or by license type (free, open source, or commercial). I use both Mac and Windows and this site helped me populate my machines with nice tools.

Cheers, Komei from Lovely Fremont

Friday’s Guest: Darren Kitchen & Len Peralta