Source: Latest News
The Big Sandy Power Plant near Louisa, Ky., Tuesday May 1, 2012.
Source: Hacker News
Source: Hack a Day
International cybercrime, as portrayed by the movies and mass media, is a high-stakes game of shadowy government agencies and state-sponsored hacking groups. Hollywood casting will wheel out a character in a black hoodie and shades, probably carrying a metallic briefcase as they board an executive jet.
These things aren’t supposed to happen in a cheap hotel room in your insignificant hometown, but the story of a British teen being nabbed leaking the closely guarded details of Grand Theft Auto 6 in a Travelodge room in Bicester, Oxfordshire brings the action from the global into the local for a Hackaday scribe. Bicester is a small town best known for a tacky outlet mall and as a commuter dormitory stop on the line to London Marylebone, it’s not exactly Vice City.
The teen in question is one [Arion Kurtaj], breathlessly reported by the BBC as part of the Lapsus$ gang, which is a sensationalist way of talking up a group of kids expert at computer infiltration but seemingly inept at being criminals. After compromising British telcos he was exposed by another group and nabbed by the authorities, before being moved to the hotel for his own safety.
Here the story becomes more interesting for Hackaday readers, because though denied access to a computer he purchased an Amazon Fire stick presumably at the Argos in the Sainsburys next door, and plugged it into the Travelodge TV. Using this he was able to access cloud services, we’re guessing a virtual Linux environment or similar, before continuing to compromise further organisations including Rockstar Games to leak that GTA 6 footage. He’s yet to be sentenced, but we’re guessing that he’ll continue to spend some time at His Majesty’s pleasure.
The moment of excitement in one’s hometown and the sensationalist reporting aside, we can’t help feeling sad that a teen with that level of talent evidently wasn’t given the support and encouragement by Oxfordshire’s education system necessary to put it to better use. Let’s hope when he’s older and wiser the teenage conviction won’t prevent him from having a useful career in the field.
Source: OSNews
The BitLocker partition is encrypted using the Full Volume Encryption Key (FVEK). The FVEK itself is encrypted using the Volume Master Key (VMK) and stored on the disk, next to the encrypted data. This permits key rotations without re-encrypting the whole disk.
The VMK is stored in the TPM. Thus the disk can only be decrypted when booted from this computer (there is a recovery mechanism in Active Directory though).
In order to decrypt the disk, the CPU will ask that the TPM sends the VMK over the SPI bus.
The vulnerability should be obvious: at some point in the boot process, the VMK transits unencrypted between the TPM and the CPU. This means that it can be captured and used to decrypt the disk.
This seems like such an obvious design flaw, and yet, that’s exactly how it works – and yes, as this article notes, you can indeed capture the VMK in-transit and decrypt the disk.
Source: Hacker News
Source: The Register
A recently unsealed lawsuit filed in the US by HPC software provider Sylabs accuses rival outfit Ctrl IQ (CIQ) and its founder Greg Kurtzer of violating Sylab's trade secrets in order to start its business, and of filing its own patents based on that technology.…
Source: Hacker News
Source: Ars Technica
Enlarge (credit: Carol Yepes/Getty)
Political polarization in the US has become a major issue, as Republicans and Democrats increasingly inhabit separate realities on topics as diverse as election results and infectious diseases. An actual separation seems to underly some of these differences, as members of the two parties tend to live in relatively homogeneous communities, cluster together on social media, and rely on completely different news sources.
That's not a recipe for a functional society, and lots of work has gone into exploring the impact of polarization, as well as possible means of reducing it. Now, a team of researchers has tested whether social media can potentially help the situation by getting people with opposite political leanings talking to each other about controversial topics. While this significantly reduced polarization, it appeared to be more effective for Republican participants.
The researchers zeroed in on two concepts to design their approach. The first is the idea that simply getting people to communicate across the political divide might reduce the sense that at least some of their opponents aren't as extreme as they're often made out to be. The second is that anonymity would allow people to focus on the content of their discussion, rather than worrying about whether what they were saying could be traced back to them.
Source: Engadget
A federal judge has agreed with US government officials that a piece of artificial intelligence-generated art isn't eligible for copyright protection in the country since there was no human authorship involved. "Copyright has never stretched so far [...] as to protect works generated by new forms of technology operating absent any guiding human hand, as plaintiff urges here," Judge Beryl Howell of the US District Court for the District of Columbia wrote in the ruling, which The Hollywood Reporter obtained. "Human authorship is a bedrock requirement of copyright."
Dr. Stephen Thaler sued the US Copyright Office after the agency rejected his second attempt to copyright an artwork titled A Recent Entrance to Paradise (pictured above) in 2022. The USCO agreed that the work was generated by an AI model that Thaler calls the Creativity Machine. The computer scientist applied to copyright the work himself, describing the piece "as a work-for-hire to the owner of the Creativity Machine." He claimed that the USCO's "human authorship" requirement was unconstitutional.
Howell cited rulings in other cases in which copyright protection was denied to artwork that lacked human involvement, such as the famous case of a monkey that managed to capture a few selfies. "Courts have uniformly declined to recognize copyright in works created absent any human involvement," the judge wrote.
The judge noted that the growing influence of generative AI will lead to “challenging questions” about the level of human input that's required to meet the bar for copyright protection, as well as how original artwork created by systems trained on copyrighted pieces can truly be (an issue that's the subject of several other legal battles).
However, Howell indicated that Thaler's case wasn't an especially complex one, since he admitted that he wasn't involved in the creation of A Recent Entrance to Paradise. “In the absence of any human involvement in the creation of the work, the clear and straightforward answer is the one given by the [Federal] Register: No,” Howell ruled. Thaler plans to appeal the decision.
According to Bloomberg, this is the first ruling in the US on copyright protections for AI-generated art, though it's an issue that the USCO has been contending with for some time. In March, the agency issued guidance on copyrighting AI-generated images that are based on text prompts — generally, they're not eligible for copyright protection. The agency has offered some hope to generative AI enthusiasts, though. "The answer will depend on the circumstances, particularly how the AI tool operates and how it was used to create the final work," the USCO said. "This is necessarily a case-by-case inquiry."
The agency has also granted limited copyright protection to a graphic novel with AI-generated elements. It said in February that while the Midjourney-created images in Kris Kashtanova's Zarya of the Dawn were not eligible to be copyrighted, the text and layout of the work were.
This article originally appeared on Engadget at https://www.engadget.com/judge-rules-that-ai-generated-art-isnt-copyrightable-since-it-lacks-human-authorship-150033903.html?src=rssSource: Hack a Day
We’re no stranger to homemade CPUs on these pages, but we think that [Jiri Stepanovsky]’s 16-bit serial CPU might be a little special. Why? It has an astonishingly low chip count, with only 8 ICs in total. How on earth does he do it?
While a traditional TTL CPU has a relatively high chip count due to a parallel data bus, registers, and discrete ALU, this one takes a few shortcuts by opting for a one-bit serial bus with serial memory chips and an EPROM serving as a look-up-table ALU. Perhaps the most interesting result of this architecture is that it also allows the CPU to dispense with registers, like the Texas Instruments 16-bit chips back in the day. They all live in memory. You can see it below the break in action, streaming a video to a Nokia-style LCD.
Such a CPU would indeed have been unlikely to have been made back in the day due to the prohibitive cost of buying and programming such a large EPROM. However, old computers like the EDSAC also used a serial data path and mercury delay line memory to manage complexity. But for a solid-state CPU in 2023, we think the design is innovative. We think it would be challenging to reduce the chip count further — and no, we’re not counting designs that use a microcontroller to replicate a block of circuitry; that’s cheating — but we’re sure that somewhere there’s a designer with ideas for slimming the design further.
Thanks to [Ken Boak] for the tip.
