Bitcoin Forum
September 21, 2018, 01:21:45 AM *
News: ♦♦ New info! Bitcoin Core users absolutely must upgrade to previously-announced 0.16.3 [Torrent]. All Bitcoin users should temporarily trust confirmations slightly less. More info.
  Home Help Search Donate Login Register  
  Show Posts
Pages: [1] 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 »
1  Other / Off-topic / This Windows File Might Be Secretly Collecting Sensitive Data Since Windows 8 on: September 20, 2018, 11:21:36 PM
This Windows File Might Be Secretly Collecting Sensitive Data Since Windows 8

There is a Windows file named WaitList.dat that covertly collects your passwords and email information, with the help of Windows Search Indexer service.

Digital Forensics and Incident Response (DFIR) expert Barnaby Skeggs first discovered the information about the file back in 2016 but wasn't paid much attention. However, in after a new and exclusive interview with ZDNet – it appears that the file, in fact, is reasonably dangerous.

People who own a touchscreen Windows PC or a stylus-compatible laptop are prone to the dangers of this Windows file. Specifically, users who have enabled the handwriting recognition tool which automatically translates touchscreen scribbles into text format. Essentially, the file is there to improve the accuracy of the handwriting recognition to come up with better predictive suggestions. But while doing so, the file starts storing actual text from your e-mails and office documents.

"Once it (handwriting recognition tool) is on, text from every document and email which is indexed by the Windows Search Indexer service is stored in WaitList.dat. Not just the files interacted via the touchscreen writing feature," Skeggs says. Skeggs also mentions that WatList.dat contains an extract of every recognized text, even if the original file/source has been deleted or removed from the system.

In his last month's tweet, Barnaby also pointed out the critical dangers of possessing this Windows system file. He said if an attacker wanted to collect sensitive data from a user, instead of searching the whole disk for private information, he would grab the WaitList.dat and search for passwords using simple PowerShell commands.

The default location of the file is C:\Users\%User%\AppData\Local\Microsoft\InputPersonalization\TextHarvester\WaitList.

The handwriting feature is there since Windows 8 which means the vulnerability has been there for many years. However, if you don't store valuable information like passwords or email on your PC, you aren't much likely to get affected much.
2  Other / Politics & Society / FCC Admits It Lied About the DDoS Attack During Net Neutrality Comment Process on: August 10, 2018, 08:36:38 AM

FCC Admits It Lied About the DDoS Attack During Net Neutrality Comment Process

During the time the Federal Communications Commission (FCC) was taking public comments ahead of the rollback of net neutrality rules, the agency had claimed its comments system was knocked offline by distributed denial-of-service (DDoS) attacks.

These attacks were used to question the credibility of the comment process, where millions of Americans had voiced against the net neutrality rollback. The Commission then chose to ignore the public comments altogether.

FCC now admits it's been lying about these attacks all this time

No one bought the FCC's claims that its comment system was targeted by hackers during the net neutrality comment process. Investigators have today validated those suspicions revealing that there is no evidence to support the claims of DDoS attacks in 2017. Following the investigation that was carried out after lawmakers and journalists pushed the agency to share the evidence of these attacks, the FCC Chairman Ajit Pai has today released a statement, admitting that there was no DDoS attack.

This statement would have been surprising coming from Pai – an ex-Verizon employee who has continued to disregard public comments, stonewall journalists' requests for data, and ignore lawmakers’ questions – if he hadn't thrown the CIO under the bus, taking no responsibility whatsoever for the lies. In his statement, Pai blamed the former CIO and the Obama administration for providing "inaccurate information about this incident to me, my office, Congress, and the American people".

He went on to say that the CIO's subordinates were scared of disagreeing with him and never approached Pai. If all of that is indeed true, the Chairman hasn't clarified why he wouldn't demand to see the evidence despite everyone out of the agency already believing that the DDoS claim was nothing but a lie to invalidate the comment process.

Sources: Wccftech, Gizmodo, CSO Online, Newsweek  
3  Other / Politics & Society / Rise of the machines: has technology evolved beyond our control? on: June 16, 2018, 01:39:34 AM
Rise of the machines: has technology evolved beyond our control?

<< Technology is starting to behave in intelligent and unpredictable ways that even its creators don’t understand. As machines increasingly shape global events, how can we regain control? >>
4  Economy / Invites & Accounts / [WTS] US$ 327 account balance on: May 24, 2018, 11:29:20 AM offers an automated captcha solving service (both human and OCR based). API's are available for all major current programming languages and platforms (check the website for a list) so that the service can be integrated into any kind of application that needs to solve captchas automatically.

I have a balance of US$ 327 on my account from the time I used the service and since I can't withdraw that money - once money is deposited, it can only be used to pay for the service - I'm selling it for an active cryptocurrency. The buyer will create an account with (if he doesn't already have one) and the balance will be transferred from my account to his.

If you're interested, please send me a private message with your offer.

More info on the service:

What is DeCaptcher?
5  Other / Politics & Society / UK Police's Facial Recognition Systems Are Wrong Up To 98% Of The Time on: May 16, 2018, 12:47:28 AM
UK Police's Facial Recognition Systems Are Wrong Up To 98% Of The Time,37057.html

<< Big Brother Watch (BBW), a civil rights organization from the UK that "works to roll back the surveillance state", released a report in which it reveals that the UK Metropolitan Police’s experimental facial recognition system is wrong 98% of the time, thus making it virtually useless. >>

6  Other / Politics & Society / NSA's Collection Of Phone Records Triples Despite Limits In USA Freedom Act on: May 07, 2018, 08:13:21 PM
NSA's Collection Of Phone Records Triples Despite Limits In USA Freedom Act,37010.html

<< The 2015 Uniting and Strengthening America by Fulfilling Rights and Ending Eavesdropping, Dragnet-collection and Online Monitoring Act (USA FREEDOM Act) was supposed to limit the NSA's collection of phone call records and other mass surveillance powers. However, since then, the agency has been able to sharply increase the amount of call records collected from 151 million records to 500 million. >>
7  Other / Off-topic / 50,000 Minecraft Players Fell Victim to Rogue Skins That Reformat Hard Drives on: April 18, 2018, 10:15:54 PM
50,000 Minecraft Players Fell Victim to Rogue Skins That Would Reformat Hard Drives, Delete System Files [How to Fix]

<< Nearly 50,000 Minecraft accounts have been infected with malware that was designed to reformat hard drives and delete backup data and system files. The malware was being distributed via Minecraft skins created in PNG format. Since these modified skins for avatars were uploaded to the official Minecraft site, it was difficult for a player to know if they were actually malicious programs.

The security issue was first reported by Avast Threat Labs when the team discovered user-created Minecraft character skins carrying malware. The team was concerned over how the criminals managed to get these malicious skins on the official Minecraft website. Avast had said that they were working with Mojang, the creators of Minecraft, to work out a way that could detect these legitimately uploaded but malware-carrying skins. >>
8  Bitcoin / Press / 2018-03-04 - 2018-04-15 Wccftech - The Crypto Conundrum (Series) on: April 18, 2018, 04:17:29 PM
The Crypto Conundrum (Series)

Cryptocurrencies. It seems that they're everywhere these days, whether you're looking at the grandfather of them in Bitcoin (BTC, 2009), Ethereum (commonly referred to as Bitcoin Mk.2) or company based crypto coins such as Ripple, and Kodak, Initial Coin Offerings (ICOs) are all the rage and we're here to dive deep into the mess with you.

Over the next couple of months, we’ll be releasing a series of articles (one per week) looking at cryptocurrencies, including the following topics:

  • Underlying technology (blockchain)
  • Real world implications of cashless economies
  • Bitcoin and cryptocurrencies as cash
  • Considerations/Implications for trading Cryptocurrencies
  • Investment Considerations/Implications for Cryptocurrencies
  • Regulatory pressures for Cryptocurrencies

If there is a particular area outside of the above which you would like us to consider writing about for this series or if you have any comment or feedback to give, please drop me a line on

Cryptocurrencies Introduction (4 Mar 2018)

Blockchain Demystified (11 Mar 2018)

Cashless Economies (18 Mar 2018)

Using Bitcoin and Cryptocurrencies as Cash (25 Mar 2018)

Trading Cryptocurrencies (1 Apr 2018)

Getting Started With Investment (8 Apr 2018)

Regulatory Pressures for Cryptocurrencies (15 Apr 2018)

9  Other / Politics & Society / Facebook Defends U.S. Mass Surveillance Of EU Citizens For "National Security" R on: April 13, 2018, 06:31:52 PM
Facebook Defends U.S. Mass Surveillance Of EU Citizens For "National Security" Reasons,36882.html

<< The mass surveillance has only gotten worse since a few years ago, because after the reauthorization and six-year extension of the FISA bill, not just the NSA, but also the FBI and other civil law enforcement agencies in the U.S. can now gain access to raw mass surveillance data.

The Irish High Court has established as a fact that the U.S. government doesn't just "collect" data in bulk, but it also "searches" data in bulk, which is a violation of EU human rights laws but should also be a violation of the U.S. Fourth Amendment (searches and seizures being illegal without probable cause). The Court considers mass searching of citizens' data to be indiscriminate surveillance, and thus illegal under the Charter of Fundamental Rights of EU and other European human rights laws. The U.S. government mass surveillance is enabled by FISA section 702 and Executive Order 12,333 and is done through programs such as PRISM and Upstream.

Facebook signs up all non-American users through the Facebook Ireland subsidiary. It then transfers all data to the U.S. for processing, according to the lawsuit. Because the company is bound by U.S. laws, it also allows the NSA and other agencies to process much of this data through various national security programs. In the lawsuit, Facebook defended U.S. mass surveillance, claiming that it's a "national security" issue that falls outside of the scope of EU laws, and that it's member state treaties that govern over national security issues. Facebook also argued that EU law doesn't apply to processing of EU citizens data for national security issues, whether it happens within the EU or within other countries such as the United States.

Facebook's argument is highly unlikely to stand, considering the EU Charter of Fundamental Rights and European Convention of Human Rights are quite clear about governments not being allowed to do indiscriminate searches against their citizens. However, this matter will remain to be decided by the CJEU. >>

10  Bitcoin / Press / 2018-04-12 Coindesk - The Anti-ASIC Revolt on: April 12, 2018, 07:54:21 PM
The Anti-ASIC Revolt: Just How Far Will Crypto's War On Miners Go?

<< Can public cryptocurrencies stay public?

That's the simple question that lies at the heart of a complex debate happening across major cryptocurrencies, where developers from projects as diverse as ethereum, monero and zcash are up in arms over what to do about the arrival of a new form of hardware that could upend the delicate balance of their distributed communities.

Designed specifically to enable operators to earn a greater share of their networks' rewards, "application specific integrated circuits," or ASICs, have emerged to mine a handful of cryptocurrencies that were previously only able to be secured by those using GPU hardware.

At stake, however, is the very access and openness of the protocols themselves. >>
11  Other / Politics & Society / FTC Proclaims "Warranty Void if Removed" Stickers Totally Illegal And Moronic on: April 12, 2018, 01:32:38 AM
FTC Proclaims "Warranty Void if Removed" Stickers Are Totally Illegal And Moronic

<< We've all seen those annoying "Warranty Void if Removed" stickers on electronics. They're normally either slapped over a screw silo or wrapped around where two pieces of metal/plastic join together to discourage you (or a third party) from opening up the device to tinker with it yourself. Well, the Federal Trade Commission (FTC) has now deemed these stickers to be illegal.

The FTC says that is has put six major companies on notice for the use of these stickers (among other practices), and say that they violate the Magnuson-Moss Warranty Act (MMWA) that provides guidelines for consumer product warranties. The MMWA specifically states:

No warrantor of a consumer product may condition his written or implied warranty of such product on the consumer’s using, in connection with such product, any article or service (other than article or service provided without charge under the terms of the warranty) which is identified by brand, trade, or corporate name.

The FTC goes on to say that of the six companies that it has warned, they include automobile, smartphone and video game console manufacturers. With regards to game consoles, both Microsoft and Sony are guilty of liberally applying the stickers on their Xbox One and PlayStation 4 in an effort to deny warranty repair claims if the seal is broken. >>
12  Local / Português (Portuguese) / Bitcoin: especialistas discutem ao vivo no G1 se existe bolha (12 Dec 2017) on: December 07, 2017, 05:38:48 PM
Bitcoin: especialistas discutem ao vivo no G1 se existe bolha

A entrevista, conduzida pelo Samy Dama, durou 44 minutos e teve a participação de Rodrigo Batista, CEO e fundador do Mercado Bitcoin, e do economista Leonardo Siqueira de Lima, fundador do site Terraço Econômico. Achei o programa (disponível no link acima) de nível bem acima da média. Em minha opinião, o economista se expressou muito melhor e acabou explicando e defendendo a Bitcoin e outras criptomoedas bem melhor do que o outro entrevistado.
13  Other / Politics & Society / PureVPN and WANSecurity VPN services log all your online activity on: October 09, 2017, 01:54:06 PM
PureVPN and WANSecurity VPN services log all your online activity

VPN providers often advertise their products as a method of surfing the web anonymously, claiming they never store logs of user activity, but a recent criminal case shows that at least some, do store user activity logs. (...) The suspect used ProtonMail, VPN clients, and Tor to hide his identity. (...) The FBI managed to obtain logs from two VPN providers - PureVPN and WANSecurity. (...) PureVPN was later able to link the stalking activity with Lin's home and work IPs. The information in the affidavit may shock some PureVPN customers, as the company boldly advertises on its privacy policy page that it does not keep any logs.

14  Other / Off-topic / Google Says Microsoft Is Exposing Windows 7 Users to Security Risks on: October 06, 2017, 09:12:30 PM
Google Says Microsoft Is Exposing Windows 7 Users to Security Risks by Not Patching Bugs It Fixes in Windows 10

While Windows 7 still has a nearly 50% share on the desktop market at the time of this writing, Microsoft is known for introducing a number of structural security improvements and sometimes even ordinary bugfixes only to the most recent Windows platform. This creates a false sense of security for users of the older systems, and leaves them vulnerable to software flaws which can be detected merely by spotting subtle changes in the corresponding code in different versions of Windows.
15  Other / Politics & Society / How bad can the new spying legislation be? Exhibit 1: the USA Liberty Act on: October 06, 2017, 08:36:33 PM

How bad can the new spying legislation be? Exhibit 1: it's called the USA Liberty Act

Freedom doesn't mean what you think it does

The US Senate Judiciary Committee has unveiled its answer to a controversial spying program run by the NSA and used by the FBI to fish for crime leads. Unsurprisingly, the proposed legislation [PDF] reauthorizes Section 702 of the Foreign Intelligence Surveillance Act (FISA) – which allows American snoops to scour communications for information on specific foreign targets.

It also addresses the biggest criticisms of the FISA spying: that it was being used to build a vast database on US citizens, despite the law specifically prohibiting it; was being abused to do a mass sweep of communications, rather than the intended targeting of individuals; and that there was no effective oversight, transparency or accountability built into the program.

But in case you were in any doubt that the new law does not shut down the expansive – and in some cases laughable – interpretations put on FISA by the security services, you need only review the proposed legislation's title: the USA Liberty Act. Nothing so patriotic sounding can be free from unpleasant compromises.

And so it is in this case. While the draft law, as it stands, requires the FBI to have "a legitimate national security purpose" before searching the database and to obtain a court order "based on probable cause" to look at the content of seized communications, it still gives the domestic law enforcement agencies the right to look at data seized on US citizens by the NSA. And agents only need supervisory authority to search for US citizens' metadata.
16  Other / Politics & Society / EU Study Hidden For Two Years Concluded That Digital Piracy Doesn't Affect Sales on: September 23, 2017, 08:01:02 AM

EU Study Hidden For Two Years Concluded That Digital Piracy Doesn't Affect Sales

It's hard for many of us to trust the studies that seem to come out on a daily basis covering a variety of topics. You can find studies on the same subject that come down on completely different sides of the topic depending on who funded them. You might expect a study commissioned by the European Commission (EC) to be made public no matter what the results were, but that certainly wasn't the case with an EC study conducted back in 2015 looking into a link between digital piracy and the decline in legal sales.

Why was the report unpublished to the public for two years? The reason is simple: the study found no link between illegal downloads and a reduction in legitimate purchases of digital goods across several categories. In fact, the study found that sales of games specifically increased in the face of piracy. The takeaway with that little factoid is that developers putting microtransactions into their games has led pirates to actually buy the games they download illegally.


The final takeaway of the report is that there is no robust statistical evidence that piracy costs content makers sales. The real concern for many here is that the EC sat on the results for two years because the study didn't fit the narrative it wanted to draw of piracy being a menace and costing companies money, and thereby workers' jobs. In fact, the only reason we even know about this study now is because of an official request by a member of the EU called Julia Reda.

Source: HotHardware
17  Other / Off-topic / AMD Manages To Pack A PetaFLOPs Capable Super Computer In A Rack With Project 47 on: August 02, 2017, 06:46:06 AM

AMD Manages To Pack A PetaFLOPs Capable Super Computer In A Rack With Project 47

<< AMD recently unveiled something truly remarkable today – a server rack that has a total processing power of 1 PetaFLOPs. That's 10 to the power of 15 floating point operations per second or 20 to the power of 15 half precision FLOPs. Here's the kicker though: a decade ago in 2007, a computer of the same power would have required roughly 6000 square feet of area and thousands of processors to power. A decade ago, this would have been one of the most powerful supercomputers on Earth, and today, it's a server rack. >>

18  Other / Politics & Society / North Korea missile test shows it could reach New York, say experts on: July 29, 2017, 04:55:26 AM

North Korea missile test shows it could reach New York, say experts

<< The North Korean leader, Kim Jong-un, has issued a fresh challenge to Donald Trump by conducting a second ballistic missile test-launch which experts said placed US cities in range of potential attack. The missile launch was meant as a "stern warning" for the United States, North Korea's state news agency said. The ICBM, which aimed for "maximum distance", flew for 47 minutes and 12 seconds while travelling 998km and reaching a maximum altitude of 3,724.9km, the North said.

The test was ordered by the North's leader, Kim Jong Un, who was cited as saying that the launch reaffirmed the reliability of the country's ICBM system and an ability to fire at "random regions and locations at random times" with the "entire" US mainland now within range. Kim said the launch sent a "serious warning" to the United States, which has been "meaninglessly blowing its trumpet" with threats of war and stronger sanctions, the news agency said.

The launch on Friday from Chagang province came less than a month after Pyongyang claimed to have tested its first ICBM. US officials told NBC the missile had flown for about 1,000km and had landed within Japan's exclusive economic zone. "We assess that this missile was an intercontinental ballistic missile, as had been expected", Pentagon spokesman Jeff Davis said in a statement. "The missile was launched from Mupyong-ni and traveled about 1,000km before splashing down in the Sea of Japan. We are working with our interagency partners on a more detailed assessment", he said. >>
19  Bitcoin / Press / 2017-07-28 CoinDesk - $8.2 Mi: Court Orders Default Judgment Against Cryptsy on: July 28, 2017, 10:53:20 PM
$8.2 Million: Court Orders Default Judgment Against Cryptsy CEO

<< A U.S. judge has ordered that the chief executive of the now-defunct cryptocurrency exchange Cryptsy must pay $8.2 million in damages to its customers. U.S. District Judge Kenneth Marra handed down the order in the long-running class action lawsuit against the Florida-based cryptocurrency exchange that collapsed in January 2016 after months of growing complaints from customers. The class-action lawsuit was filed shortly afterwards, with the court ultimately moving to place Cryptsy into receivership the following April.

According to Marra's July 27 court order, Cryptsy CEO Paul Vernon – who has denied stealing user funds – "is liable to the Plaintiff Class in the principal sum of $8,200,000, for which let execution issue forthwith." Vernon, who is believed to be currently residing somewhere in Asia, did not respond to the allegations in court, a circumstance which led to this week's default judgment. The order notably states that the more than 11,000 bitcoins taken from the exchange by Vernon are owed to the customers.

"The Court further declares that the 11,325.0961 [bitcoin] which were stolen from Cryptsy customers on July 29, 2014 and which, as of the date of this final judgment ... are property of the Plaintiff Class and subject to and encompassed within this Final Judgment," Marra wrote.

In a statement, attorney David Silver, who represents one of the two law firms involved in the class action, said that those who pushed for the result "are thrilled to have achieved a historic success," adding that work was underway to gain control of the 11 bitcoin wallet addresses listed in the court order. >>
20  Bitcoin / Press / 2017-07-27 CoinDesk - The Big News Behind the BTC-e Arrest and Mt Gox Connection on: July 28, 2017, 01:47:40 AM
The Big News Behind the BTC-e Arrest and Mt Gox Connection

<< (...) Is BTC-e finished?

There's a big emphasis on conditionals here, given that we don't currently know whether authorities are moving to shut down the exchange or seize connected assets. However, recent dark market crackdowns suggest that law enforcement officials are taking an aggressive stance that could extend to BTC-e. What we do know is that, earlier today, BTC-e's official Twitter account issued a statement saying that it would come back online in the next five to 10 days.

"Update2: at the moment we are working on the restoration of service. Approximate terms from 5 to 10 days. Thanks for your understanding #btce", the exchange's account tweeted.

Given that BTC-e representatives have not responded to a request for comment by press time, only time will tell if that pledge comes true. >>
Pages: [1] 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 »
Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!