An anonymous reader writes with this excerpt from PC Mag's SecurityWatch: "We've pointed out some problems with Twitter's new two-factor authentication. For example, since just one phone number can be associated with an account, Twitter's two-factor authentication won't work for organizations like the Associated Press, The Onion, or The Guardian. They were hacked; they could still be hacked again in the same way. However, security experts indicate that the problem is worse than that, a lot worse."

jfruh writes "Social networks like Twitter and Facebook have long hoped that the information they've gathered about you will help them create better targeted and more lucrative advertising, even though advertisers never see your personal data directly. But now Twitter is upping the ante, creating a new kind of card that encourages you to give your contact information directly to people who want to sell you things. For instance, Priceline has a new card with a 'sign up and save' button that saves you 10% on a hotel — and, though it isn't made explicit, adds your Twitter handle and contact information to a Priceline mailing list. There's nothing to stop Twitter from handing this info — including your phone number, if you've registered it with the service — to salesmen."

Nyder writes "Kim Dotcom posted via Twitter, with a link to Torrentfreak, that he owns a security patent US6078908, titled 'Method for authorizing in data transmission systems.'" Techdirt points out that Dotcom isn't just asking for financial help: Instead, he's asking companies which use two-factor authentication "to help fund his defense, in exchange for not getting sued for the patent. He points out that his actual funds are still frozen by the DOJ and (more importantly) that his case actually matters a great deal to Google, Facebook and Twitter, because the eventual ruling will likely set a precedent that may impact them -- especially around the DMCA." Update: 05/23 14:23 GMT by T : Why is this relevant to Twitter? If you're not an active Twitter user, you might not realize that (after some well publicized twitter-account hijackings), the company is trying to regain some ground on security. Nerval's Lobster writes "Twitter is now offering two-factor authentication, a feature that could help prevent embarrassing security breaches. Twitter users interested in activating two-factor authentication will need to head over to their account settings page and click the checkbox beside 'Require a verification code when I sign in.'"

benrothke writes "Had Locked Down: Information Security for Lawyers not been published by the American Bar Association (ABA) and 2 of its 3 authors not been attorneys; one would have thought the book is a reproach against attorneys for their obliviousness towards information security and privacy. In numerous places, the book notes that lawyers are often clueless when it comes to digital security. With that, the book is a long-overdue and valuable information security reference for anyone, not just lawyers." Read below for the rest of Ben's review.

TechCrunch reports that Yahoo's string of acquisitions may soon include Tumblr: "The Wall Street Journal is now reporting via Twitter that the rumored $1.1 billion cash acquisition deal for social blogging site Tumblr has been approved by Yahoo’s board of directors. The Tumblr acquisition was rumored last week, with a price tag reportedly north of $1 billion, which appears to be accurate if the WSJ’s sources are correct." The article notes, too, that "Yahoo had only $1.2 billion cash on hand as of its most recent quarterly earnings, which makes an all-cash offer for Tumblr a lot more of a stretch than it would be for someone like Apple, or even Facebook, which acquired Instagram for $1 billion in a mix of both cash and stock."

puddingebola writes with an excerpt from the New York Times: "The Web site and several Twitter accounts belonging to The Financial Times were hacked on Friday by the Syrian Electronic Army in a continuing campaign that has aimed at an array of media outlets ranging from The Associated Press to the parody site The Onion, according to a claim by the so-called army. The Syrian Electronic Army said it seized control of several F.T. Twitter accounts and amended a number of the site's blog posts with the headline 'Hacked by Syrian Electronic Army.' Hackers used their access to the F.T.'s Twitter feed to post messages, including one that said, 'Syrian Electronic Army Was Here,' and another that linked to a YouTube video of an execution. Both messages were quickly removed.'"

benrothke writes "One of the challenges in reading The Plateau Effect: Getting from Stuck to Success is figuring how to classify it. Amazon has it ranked mainly in applied psychology, but also time management and inexplicable personal finance. In some ways it is all of the above and more. In fewer than 300 pages, the authors reference myriad different areas of science, mathematics, psychology and more; in the effort to show the reader how they can elevate themselves from the stuff in life that glues them to the status quo." Read below for the rest of Ben's review.

An anonymous reader writes "Jenny Lamere, a graduating high school senior from Nashua NH, was the youngest of 80 participants (and one of only four women) in the Hill Holiday TVnext hackathon held in Boston this past April, a programming contest sponsored by TV API providers. Her submission of 'Twivo,' an app that allows TV viewers to block spoiler tweets while watching a show and recover them later, won the contest's 'Sync to Broadcast' category (one of five), and was also named the event's 'Best in Show' (overall winner). At least one tech company has expressed interest in her app (a short demo and interview with the judges starts at 3:30 in the embedded YouTube clip). Lamere plans to enter the Rochester Institute of Technology in the fall, and will pursue a career in software development."

Mobile photo-sharing app SnapChat has one claim to fame, compared to other ways people might share photos from their cellphones: the photos, once viewed, disappear from view, after a pre-set length of time. However, it turns out they don't disappear as thoroughly as users might like. New submitter nefus writes with this excerpt from Forbes: "Richard Hickman of Decipher Forensics found that it's possible to pull Snapchat photos from Android phones simply by downloading data from the phone using forensics software and removing a '.NoMedia' file extension that was keeping the photos from being viewed on the device. He published his findings online and local TV station KSL has a video showing how it's done."

Nerval's Lobster writes "For comedy publication The Onion, a recent cyber-attack by the Syrian Electronic Army was no laughing matter. The SEA managed to compromise The Onion's Twitter account, plastering it with insults aimed at the United Nations, Israel, and Syrian rebels. 'UN retracts report of Syrian chemical weapon use: "Lab tests confirm it is Jihadi body odor,"' read a typical (and perhaps one of the more printable) ones. When the Tweets appeared, some Onion Twitter-followers questioned whether the newspaper was playing some sort of elaborate meta-joke, perhaps riffing on a recent series of high-profile cyber attacks. But the SEA was serious, and so was The Onion about flushing the attackers from its systems. In a new posting on theonion.github.io, the publication's IT crew details exactly what happened. On May 3, attackers from the SEA fired off phishing emails to Onion employees, at least one of whom clicked on a malicious link. From there, the attackers compromised a handful of systems. 'In total, the attacker compromised at least 5 accounts,' the account concluded. 'The attacker logged in to compromised accounts from 46.17.103.125 which is also where the SEA hosts a website.' But following the crisis, The Onion couldn't resist swiping at its attackers. 'Syrian Electronic Army Has a Little Fun Before Inevitable Upcoming Deaths at Hands of Rebels,' read the headline for a May 6 article that described a fictional massacre of the SEA in gruesome detail."

First time accepted submitter He Who Has No Name writes "While the ATF appears to have no open objection to 3D printed firearms at this time, the Department of Defense apparently does. A short while ago, '#DEFCAD has gone dark at the request of the Department of Defense Trade Controls. Take it up with the Secretary of State' appeared on the group's site, and download links for files hosted there began to give users popups warning of the DoD takeover." Well, that didn't take long. Note: As of this writing, the site is returning an error, rather than the message above, but founder Cody Wilson has posted a similar message to twitter. At least the Commander in Chief is in town to deliver the message personally. Update: 05/09 21:17 GMT by T : Tweet aside, that should be Department of State, rather than Department of Defense, as many readers have pointed out. (Thanks!)

gannebraemorr writes "The U.S. Department of Justice and the FBI believe they don't need a search warrant to review Americans' e-mails, Facebook chats, Twitter direct messages, and other private files, internal documents reveal. Government documents obtained by the American Civil Liberties Union and provided to CNET show a split over electronic privacy rights within the Obama administration, with Justice Department prosecutors and investigators privately insisting they're not legally required to obtain search warrants for e-mail."

Tesla Motors CEO Elon Musk has been thinking about bringing autonomous driving technology to Tesla's electric cars. Quoting Bloomberg: "Musk, 41, said technologies that can take over for drivers are a logical step in the evolution of cars. He has talked with Google about the self-driving technology it’s been developing, though he prefers to think of applications that are more like an airplane’s autopilot system. 'I like the word autopilot more than I like the word self- driving,' Musk said in an interview. 'Self-driving sounds like it’s going to do something you don’t want it to do. Autopilot is a good thing to have in planes, and we should have it in cars.' ... Google’s approach builds on a push for the driverless-car technology long pursued by the U.S. military’s Defense Advanced Research Projects Agency, which held vehicle competitions for carmakers and research labs. Anthony Levandowski, product manager for Google’s self-driving car project, has said the company expects to release the technology within five years. 'The problem with Google’s current approach is that the sensor system is too expensive,' Musk said. 'It’s better to have an optical system, basically cameras with software that is able to figure out what’s going on just by looking at things.' ... 'I think Tesla will most likely develop its own autopilot system for the car, as I think it should be camera-based, not Lidar-based,' Musk said yesterday in an e-mail. 'However, it is also possible that we do something jointly with Google.'" Musk later warned not to take this as an actual announcement.

tdog17 writes "Verizon and MySpace scored a zero out of a possible six stars in a test of how far 18 technology service providers will go to protect user data from government data demands. Twitter and Internet service provider Sonic.net scored a perfect six in the third annual Electronic Frontier Foundation 'Who Has Your Back?' report. Apple, AT&T and Yahoo ranked near the bottom, each scoring just one star. 'While we are pleased by the strides these companies have made over the past couple years, there’s plenty of room for improvement. Amazon holds huge quantities of information as part of its cloud computing services and retail operations, yet does not promise to inform users when their data is sought by the government, produce annual transparency reports, or publish a law enforcement guide. Facebook has yet to publish a transparency report. Yahoo! has a public record of standing up for user privacy in courts, but it hasn't earned recognition in any of our other categories. Apple and AT&T are members of the Digital Due Process coalition, but don’t observe any of the other best practices we’re measuring. ... We remain disappointed by the overall poor showing of ISPs like AT&T and Verizon in our best practice categories.'"

New submitter cute_orc writes "The International Space Station has been hit by a small object. Chris Hadfield, an astronaut currently on the ISS, described it in his Twitter feed as 'a small stone from the universe.' He also said he was glad it didn't hit the hull. Jim Scotti, a planetary scientist from the University of Arizona, thinks the object may have had a different origin: 'It's unlikely this was caused by a meteor; more likely a piece of man-made space debris in low Earth orbit.'"

judgecorp writes "The Syrian Electronic Army has hijacked various Twitter accounts belonging to the Guardian newspaper. Guardian journalists report that the pro-Assad hacking group used a campaign of spear phishing to seize various of its feeds, following success hacking other media outlets including CBS."

theodp writes "Having fooled major news outlets with a heartwarming-but-entirely-faked video of a pig rescuing a drowning goat, Nathan Fielder turned his attention to texting. CNET reports on the great Twitter 'text-your-parents-you're-a-drug-dealer' experiment, in which the Fielder called on his Twitter followers to text their moms and dads and (accidentally) reveal a drug deal. Fielder's tweet read: 'Experiment: text your parents "got 2 grams for $40" then right after "Sorry ignore that txt. Not for you." Then tweet pic of their response.' The reactions are various and, sometimes, hilarious."

"Quirky.com has generated a lot of buzz," writes frequent contributor Bennett Haselton, "but it's hard to see how it could ever be more than a novelty unless they change two key features of their process. Fortunately, they already have all the infrastructure in place for bringing inventions to fruition, so that with these two changes, Quirky really could deliver on their early promise to change the way products get invented." Read on for Bennett's thoughts — which seem more sensible than quirky.

New submitter Mike Lape writes "Stocks plunged and recovered within minutes after the hacked AP Twitter account sent out a tweet that indicated that the White House had been the victim of an explosion and that President Obama had been injured. '...the Dow Jones Industrial Average took a quick 143-point plunge, before recovering most of its losses within minutes. The three-minute plunge triggered by the tweet briefly wiped out $136.5 billion of the S&P 500 index's value, according to Reuters data. Interestingly, Tuesday has been the best day of the week for the blue-chip this year with an average return of 0.46 percent. If the index closes in the black today, it will have been up for the 15th consecutive Tuesday. The last time the Dow rose for 15 straight Tuesdays was in 1927.' An analyst said, 'That goes to show you how algorithms read headlines and create these automatic orders – you don't even have time to react as a human being.'"

First time accepted submitter IamIanB writes "Harvard Middle Eastern Studies student Todd Mostak's first tangle with big data didn't go well; trying to process and map 40 million geolocated tweets from the Arab Spring uprising took days. So while taking a database course across town at MIT, he developed a massively parallel database that uses GeForce Titan GPUs to do the data processing. The system sees 70x performance increases over CPU-based systems, and can out crunch a 1000 node MapReduce cluster, in some cases. All for around $5,000 worth of hardware. Mostak plans to release the system under an open source license; you can play with a data set of 125 million tweets hosted at Harvard's WorldMap and see the millisecond response time." I seem to recall a dedicated database query processor that worked by having a few hundred really small processors that was integrated with INGRES in the '80s.