An anonymous reader writes sends us to The Register for this security news. The problem is compounded by the fact that some of the most popular Web development tools for generating SWF produce files containing the recently disclosed vulnerabilities. "Researchers from Google have documented serious vulnerabilities in Adobe Flash content which leave thousands of websites susceptible to attacks that steal the personal details of visitors. A web search reveals more than 500,000 vulnerable applets on major corporate, government and media sites. Removing the vulnerable content will require combing through website directories for SWF files and then testing them one by one. Updates in the Adobe software that renders SWF files in browsers are also likely, but they probably wouldn't quell the threat completely... No patch in sight from Adobe, that's the price to pay for depending on proprietary solutions."

Read more of this story at Slashdot.

An anonymous reader sends us to The Secret Diary of Steve Jobs for a developing situation. Daniel Lyons, a.k.a. Fake Steve Jobs, made a post earlier today revealing that Apple was offering him some money (in the wake of the ThinkSecret shutdown) to close down his blog. He said he was interested in taking it. A few hours later, Lyons posted again revealing that Apple's lawyers had contacted him angrily, saying the details of the deal were supposed to remain private. Fake Steve replied 'we either deal out in the open, completely transparently, or we don't deal.' A third post gives details of Apple's lawyers' next response, going totally medieval on him. Since then the situation has calmed down a bit.

Read more of this story at Slashdot.

jamie tipped us to Dean Baker's Beat the Press blog, where Baker comments on a followup to Circuit City's firing of all its highest-paid salespeople last March (Slashdot discussion here). Circuit City's stock has cratered in the meanwhile, and their response has been to offer $1 million retention bonuses to executive VPs. Baker points out that each one of these bonuses represents 35 years' salary for one of the fired salespeople.

Read more of this story at Slashdot.

Digana writes "GNU Octave is a free numerical computing environment highly compatible with the MATLAB language. After 11 years of development since version 2.0, stable version 3.0 released yesterday. This version is interesting because unlike other free or semi-free MATLAB competitors like Scilab, specific compatibility with MATLAB code is a design goal. This has manifested itself in goodies like better support for MATLAB's Handle Graphics, a syntax closer to MATLAB's own for many functions, and many functions from the sister project Octave-Forge ported to the core Octave project for an enriched functionality closer to the toolboxes provided by MATLAB. GUI development is underway, but still no JIT compiling, which is a show-stopper for Octave newbies coming from MATLAB with unvectorized code."

Read more of this story at Slashdot.

MAKE Flickr photo pool member's unboxing and assembly of the monome 40h kit - Link.

[Read this article] [Comment on this article]

Nick Kilkenny sends us an AP article on the imminent shutdown of the US analog cellular network, now 24 years old. The network is scheduled to go dark on Feb. 18, 2008; some users, such as OnStar, are stopping analog service at the end of this year. Here's a list of devices and industries that will be affected by the shutdown. (Cellular telephony won't be affected much.) "The shutdown date has been known years in advance, but some industries appear to have a had a problem updating their technologies and informing their customers in advance... General Motors Corp., which owns OnStar, started modifying its cars after the 2002 decision by the Federal Communications Commission to let the network die, but some cars made as late as 2005 can't use digital networks for OnStar, nor can they be upgraded. For some cars made in the intervening years, GM provides digital upgrades for $15." Update: 12/22 22:25 GMT by KD : Replaced two registration-required links.

Read more of this story at Slashdot.

NewYorkCountryLawyer writes "'A student law clinic is about to cause a revolution' says p2pnet. For the first time in the history of the RIAA's ex parte litigation campaign against college students, a university law school's legal aid clinic has taken up the fight against the RIAA in defense of the university's students. Student attorneys at the University of Maine School of Law's Cumberland Legal Aid Clinic, under the supervision of law school prof Deirdre M. Smith, have moved to dismiss the RIAA's complaint in a Portland, Maine, case, Arista v. Does 1-27, on behalf of two University of Maine undergrads. Their recently filed reply brief (PDF) points to the US Supreme Court decision in Bell Atlantic v. Twombly, and the subsequent California decision following Twombly, Interscope v. Rodriguez, which dismissed the RIAA's 'making available' complaint as mere 'conclusory,' 'boilerplate' 'speculation.'"

Read more of this story at Slashdot.

Blogs are one of the few Vendor Relationship Management tools we have that actually work.

Someday we'll have elaborate information systems that allow a negative customer experience, one with privacy and security implications, to propogate far and wide, quickly. The vendor will feel pressure from customers immediately. Today our ability to influence vendors is very limited. But it isn't going to stay that way for long.

I note that there's never any fine-print gotchas when I'm about to make a $3500 purchase from Apple. It's all smooth sailing. It's only when my only power is to blog the experience that they hit me with the bad news. So our response has to be to make the blogging experience more powerful. (Interestingly this is where the Edgeio idea might have had some sway, not in selling products to customers, but selling information about vendors to customers (and of course competitors).)

This became part of the discussion in the previous post. I wanted to make sure Doc Searls saw this since he's been carrying the torch on VRM.

MacRonin sends us to the Washington Post for a story about the FBI's plans for a large biometric identification database. The Post also has a chart detailing the characteristics of the different methods of identification. We discussed the ethics of a similar situation a few months ago. Quoting the Post: "Next month, the FBI intends to award a 10-year contract that would significantly expand the amount and kinds of biometric information it receives. And in the coming years, law enforcement authorities around the world will be able to rely on iris patterns, face-shape data, scars and perhaps even the unique ways people walk and talk, to solve crimes and identify criminals and terrorists. The FBI will also retain, upon request by employers, the fingerprints of employees who have undergone criminal background checks so the employers can be notified if employees have brushes with the law."

Read more of this story at Slashdot.

Good candidate for (re)make, perhaps blue-screen-of-death pillows too... Link.

[Read this article] [Comment on this article]

An anonymous reader writes "Google has previously used coding competitions to locate top talent. In a new twist on the idea, an anonymous tech company is posting a help-wanted ad that challenges developers to find out who the company is. A little digging and text mashing reveals a website containing a Web 2.0 puzzle that makes notpron look like child's play. So, fellow developers, who is this company, and, well, what is the significance of the date '1-18-08?'"

Read more of this story at Slashdot.

When I got back from Europe my black MacBook wouldn't boot, it just sat there with a disk icon and a flashing question mark. So I made an appointment at the Apple store in Emeryville to have it looked at.

When I got there, there was no wait, they were calling my name. The repair guy opened the Mac, took out the disk, went into the back room, and came back saying the disk was bad, I'd need a new one. How much? $160. How large? 80GB. I've been buying disks lately, I bought a 500GB disk for $150 a few weeks ago, and just bought a 1TB disk for $280. So I knew that $160 for 80GB, even in a portable form factor, was probably a ripoff, but I figured here I am now, I can get the computer working, so I said OK and shrugged it off.

The new disk went in, I signed a form, and was about to leave and asked for the old disk and the clerk said it was his not mine. They were going to send it back to the manufacturer. I figured it would be refurbished and sold cheap to someone in a third world country. Little did I suspect.

He got his supervisor. She insisted that the drive belonged to Apple, even though I had paid an inflated price to buy a new one. She showed me the language on the reverse side of the form I signed. It was even worse than she had said. There was no guarantee that the drive they had just put in my Mac was new! It might have been someone else's defective drive. I said it was outrageous. I grabbed a copy of the agreement and left.

I scanned the agreement, highlighting section 4, the part the store manager cited.

Now there are a lot of speeches I could give. Here are a few.

1. I buy Macs knowing they're more expensive, but I expect to be treated better. I drive a BMW for the same reason. Luckily there's Mercedes, Audi, Lexus, et al to keep BMW customer service in top form (which it has been so far, I'm on my fourth BMW). I always say this -- Apple service is outstanding when you buy something, but it falls down, often, when you need it fixed. Not always, but often.

2. There are consumer protection laws that require auto repair shops to offer you the old parts. Why doesn't that apply to computer repairs? Or maybe it does.

3. Apple prices are ripoffs, but this is an unusually heinous ripoff. To charge such inflated prices for used parts, they should have some shame.

4. They don't seem to have any fallback when there's a dissatisfied customer. As an Apple shareholder, I think it would work better if store personnel felt they were guardians of the company's reputation. Consider for a moment that you are ripping off the customer. What tools can you offer the sales person to make good with the customer? Could you let the customers who object take their drives home? Could you offer a discount coupon on the next purchase, or free premium support for a year? That they let me walk out of the store, a person who spends thousands of dollars with Apple, feeling like I had been abused, says they haven't got all the glitches out of their retail process.

5. Falling back on the fine print is really lame. I think they should tell you up front, before they do the work, that you're not getting the old drive back. What if the data on the drive can be recovered? What if there are credit card numbers and other personal information on the drive? Source code? Trade secrets? Does Apple really want to treat their customers privacy so shabbily? For what? Don't they already make enough money off the $160 price for the new disk? It's amazing that a company can make it this far, having such special customers, and rarely if ever acknowledging it.

Back in September, I had the extreme good fortune to read an early galley of Clay Shirky's long-awaited masterpiece, "Here Comes Everybody: How Digital Networks Transform Our Ability to Gather and Cooperate," and now that it's on shelves, I am doubly fortunate to tell you about it. Clay has long been one of my favorite thinkers on all things Internet -- not only is he smart and articulate (and it doesn't hurt that he introduced me to my fiancee), but he's one of those people who is able to crystallize the half-formed ideas that I've been trying to piece together into glittering, brilliant insights that make me think, yes, of course, that's how it all works.

Clay's book makes sense of the way that groups are using the Internet. Really good sense. In a treatise that spans all manner of social activity from vigilantism to terrorism, from Flickr to Howard Dean, from blogs to newspapers, Clay unpicks what has made some "social" Internet media into something utterly transformative, while other attempts have fizzled or fallen to griefers and vandals. Clay picks perfect anecdotes to vividly illustrate his points, then shows the larger truth behind them.

Clay's gift here is in explaining why the trivial minutae of Internet communications -- Twittery nothings and LiveJournalish angst -- matter, and why the weighty gravitas of the Internet -- dissidents risking arrest, victims finding succour -- aren't the only thing online that's worthy. In so doing, he manages to illuminate the way that every institution is prone to being recast by the net, and how to manage that change for the best possible outcome.

Unlike a regular business book -- something with a one-sentence punchline that could be explained in a longish New Yorker article -- Here Comes Everybody is dense and rich, with new insight on every page. It's the kind of a book that you can open to any page and be delighted by -- especially if you love the Internet -- and the kind of a book that you'll want to read aloud from to your friends.

I've been waiting for this book for years -- something I can hand to people who dismiss the Internet and amateurism and social activity as distractions or trivia. Now I have it. Link

See also:
Clay Shirky defends the Internet
Shirky explains why Keen is a Luddite
Shirky: stupid (c) laws block me from publishing own work online
Clay Shirky: An "expert Wikipedia" won't work
Shirky: Pro metadata will lose to folksonomy
Shirky: Wikipedia is better than Brittanica on net-centric axes
Clay Shirky's ETECH presentation on the politics of social software
Shirky: Wikipedia's "anti-elitism" is a feature, not a bug
Shirky explains: destroying limitations is good for culture
Shirky: Net is a kayak, driven by its environment

Webcam + cardboard = joystick!

[Read this article] [Comment on this article]

Lucas123 writes "Computerworld has a story about the possibility and the potential ramifications of an IRS data loss similar to the UK's recent mishap. According to one World Bank executive, it could have already happened, 'and we don't know about it.' While the IRS does offer data encryption to its workers, more than half of its 94,000 employees have permission to take taxpayer information to locations outside the IRS offices. In the 2007 filing season, roughly 128 million individual tax returns were filed. In addition to the basic personal information on those forms, an IRS breach could also jeopardize the banking information of the 46% of filers who requested direct deposit refunds. This is not the first time that IRS security has been called into question, and the Department of Treasury's progress in that arena is dubious. [PDF]"

Read more of this story at Slashdot.

netbuzz brings us an update to a case we discussed earlier this month: "In a widely watched free-speech case, a New Jersey judge has upheld a blogger's right to criticize county officials anonymously. The contention of those officials was that the blogger is actually a former mayor/attorney being sued by the local government for malpractice. This comes less than a month after the Electronic Frontier Foundation began their legal efforts to shield the blogger, claiming that the subpoena for Google to release his identity was 'part of an unrelated and unauthorized campaign to embarrass or otherwise outmaneuver the Defendant.' Score one for the First Amendment."

Read more of this story at Slashdot.

akintayo writes "Digitimes reports that first-tier notebook manufacturers are increasing the standard installed memory from the current 1 GB to 4GB. They claim the move is an attempt to shore up the costs of DRAM chips, which are currently depressed because of a glut in market. The glut is supposedly due to increased manufacturing capacity and the slow adoption of Microsoft's Vista operating system. The proposed move is especially interesting, given that 32-bit Vista and XP cannot access 4 GB of memory. They have a practical 3.1 — 3.3 GB limit. With Vista SP1 it seems that Microsoft has decided to fix the problem by reporting the installed memory rather than the available memory."

Read more of this story at Slashdot.

Today in my ongoing series of photos from my travels, this beautiful street-sign logo from Belgrade, Serbia, warning drivers of kids crossing -- but doing so with positively Scott McCloud-esque frame-bursting infographic goodness. Link

The Electronic Frontier Foundation is hiring a new webmaster. Opportunities to do this kind of geek work don't come up very often, and EFF is an amazing place to work, as I can personally attest.

The Electronic Frontier Foundation (EFF), an Internet civil liberties nonprofit organization based in San Francisco, is seeking a full-time webmaster to start immediately. This person will be responsible for managing content and building web features on eff.org, and helping to build and maintain EFF's web initiatives and campaigns.

The environment is fast-paced; the work is cutting-edge. A love of technology and familiarity with related civil liberties issues is a must.

Link