The UK's national mapping agency is working on a project to create almost real-time maps of the nation's streets, which it says will help with everything from 5G rollout to autonomous driving. From a report: The Ordnance Survey (OS) pilot project will see the vehicles of utility companies using a dashboard mounted camera to record the view of the road as they travel. The images from the camera are processed to identify details such as road signs, traffic lights, lamp posts, bollards, drains and man-hole covers which are then sent to the OS. Highly precise maps are vital for everything from 5G deployments to smart city planning and autonomous driving projects. For example, 5G signals are easily blocked by common street features like signs, hanging baskets, trees or bus shelters. "Having a very detailed map means you can optimise where you put your 5G stations to get the best views down the road. By having very detailed asset maps and street furniture maps we can produce much better planning and reduce the number of stations you put out," said OS interim CEO Neil Ackroyd.

A vulnerability in the Dell SupportAssist utility exposes Dell laptops and personal computers to a remote attack that can allow hackers to execute code with admin privileges on devices using an older version of this tool and take over users' systems. From a report: Dell has released a patch for this security flaw on April 23; however, many users are likely to remain vulnerable unless they've already updated the tool -- which is used for debugging, diagnostics, and Dell drivers auto-updates. The number of impacted users is believed to be very high, as the SupportAssist tool is one of the apps that Dell will pre-install on all Dell laptops and computers the company ships with a running Windows OS (systems sold without an OS are not impacted). According to Bill Demirkapi, a 17-year-old security researcher from the US, the Dell SupportAssist app is vulnerable to a "remote code execution" vulnerability that under certain circumstances can allow attackers an easy way to hijack Dell systems.

An anonymous reader quotes a report from The Wall Street Journal: Special agents from the Federal Bureau of Investigation searched the offices of lab-test startup uBiome Inc. on Friday morning (Warning: source paywalled; alternative source), according to a person with knowledge of the matter. The FBI is investigating uBiome's billing practices. An FBI spokeswoman said, "I can confirm that special agents from the FBI San Francisco Division are present at 360 Langton Street in San Francisco conducting court-authorized law-enforcement activity. Due to the ongoing nature of the investigation, I cannot provide any additional details at this time." According to public records, uBiome has a headquarters office at that address.

uBiome sells tests for the microbiome, which refers to the group of microorganisms that live in the digestive tract and other parts of the body, under names including Explorer and SmartGut. The company, which calls itself the "leading microbial genomics company," was one of the earliest firms in the microbiome testing field, launching in 2012 with a crowdfunding campaign that raised $350,000. Last year, uBiome said it had raised $83 million from firms including OS Fund and Y Combinator. uBiome describes its SmartGut and SmartJane tests as "an insurance-reimbursed test ordered by a health-care provider." "We are cooperating fully with federal authorities on this matter. We look forward to continuing to serve the needs of healthcare providers and patients," a spokeswoman for uBiome said Friday. In an interview last week that included questions about scrutiny of uBiome's billing practices, uBiome Chief Executive Jessica Richman said that "compliance is our highest value" and that uBiome's billing and other practices are proper.

An anonymous reader shares a report: Firefox browser made by the non-profit Mozilla Foundation, was born as "Phoenix." It rose from the ashes of Netscape Navigator, slain by Microsoft's Internet Explorer. In 2012 Mozilla created Firefox OS, to rival Apple's iOS and Google's Android mobile operating systems. Unable to compete with the duopoly, Mozilla killed the project. Another phoenix has arisen from it [Editor's note: the link may be paywalled]. KaiOS, an operating system conjured from the defunct software, powered 30m devices in 2017 and another 50m in 2018. Most were simple flip-phones sold in the West for about $80 apiece, or even simpler ones which Indians and Indonesians can have for as little as $20 or $7, respectively.

Smartphones start at about $100. The company behind the software, also called KaiOS and based in Hong Kong, designed it for smart-ish phones -- with an old-fashioned number pad and long battery life, plus 4G connectivity, popular apps such as Facebook and modern features like contactless payments, but not snazzy touchscreens. Most such devices are found in India. Reliance Jio, a network that has upended the local mobile industry with heavily discounted 4G data plans, sells subsidised, Jio-branded phones that use KaiOS software. Google, which invested $22m in Kaios last year, prioritises getting people in emerging markets online, where it can sell their attention to advertisers, over getting them onto Android smartphones. Smart-ish phones help with this.

Microsoft is dropping its 60-day password expiration policy starting with the Windows 10 May 2019 Update. "Once removed, the preset password expiration settings should be replaced by organizations with more modern and better password-security practices such as multi-factor authentication, detection of password-guessing attacks, detection of anomalous log on attempts, and the enforcement of banned passwords lists (such as Azure AD's password protection currently available in public preview)," reports Bleeping Computer. From the report: Microsoft's Aaron Margosis states that the password expiration mechanism which requires periodic password changes is in itself a flawed defense method given that, once a password is stolen, mitigation measures should be taken immediately instead of waiting for it to expire as per the set expiration policy. In addition, the soon to be removed policies are "a defense only against the probability that a password (or hash) will be stolen during its validity interval and will be used by an unauthorized entity."

The removal of the password-expiration policies without the addition of other password-oriented security configurations does not directly translate into a decrease in security but, instead, it simply stands as proof that security-conscious organizations need to implement extra measures to enforce their users' security. As Microsoft further detailed, "to try to avoid inevitable misunderstandings, we are talking here only about removing password-expiration policies -- we are not proposing changing requirements for minimum password length, history, or complexity."

Devices using Qualcomm chipsets, and especially smartphones and tablets, are vulnerable to a new security bug that can let attackers retrieve private data and encryption keys that are stored in a secure area of the chipset known as the Qualcomm Secure Execution Environment (QSEE). From a report: Qualcomm has deployed patches for this bug (CVE-2018-11976) earlier this month; however, knowing the sad state of Android OS updates, this will most likely leave many smartphones and tablets vulnerable for years to come. The vulnerability impacts how the Qualcomm chips (used in hundreds of millions of Android devices) handles data processed inside the QSEE.

Scientific Linux, a 14-year-old operating system based on Red Hat Enterprise Linux (RHEL) and which was maintained by some significant members of the scientific community such as The Fermi National Accelerator Laboratory and CERN, is being discontinued. From a report: While current versions (6 and 7) will continue to be supported, future development has permanently ended, with the organizations instead turning to CentOS -- another distro based on RHEL. "Scientific Linux is driven by Fermilab's scientific mission and focused on the changing needs of experimental facilities. Fermilab is looking ahead to DUNE and other future international collaborations. One part of this is unifying our computing platform with collaborating labs and institutions," said James Amundson, Head of Scientific Computing Division, Fermi National Accelerator Laboratory.

Microsoft has published a support document today warning Windows 10 users that the impending May 2019 Update may not install on their systems if they use external USB storage devices or SD cards. From a report: The OS maker cited problems with "inappropriate drive reassignment" as the main reason for blocking the May 2019 Update. "Inappropriate drive reassignment can occur on eligible computers that have an external USB device or SD memory card attached during the installation of the May 2019 update," the company said. "For this reason, these computers are currently blocked from receiving the May 2019 Update."

Windows 7 users have started to report the appearance of a pop-up message from Microsoft informing them that support for the operating system is coming to an end. From a report: While this will not come as a surprise to everyone, not all Windows 7 users will be aware that Microsoft is on the verge of dropping the aging OS. We have already seen pop-ups encouraging users to update to Windows 10 but now Microsoft is turning up the pressure, telling Windows 7 users: "After 10 years, support for Windows 7 is nearing the end." People have been reporting that the message started appearing as early as April 18, but not all Windows 7 users are seeing it yet. The message includes a link to a Microsoft website that encourages people to backup their data, buy a modern computer and make the jump to Windows 10.

Sets, one of two new features teased in 2017 to be coming to Windows 10, has reportedly been scrubbed. "Microsoft dropped plans for Sets, a Windows-management feature, which would have allowed users to group app data, websites and other information in tabs, months ago," reports ZDNet, citing their sources. "Although Microsoft did test Sets last year with some of its Windows Insider testers, the feature generally wasn't well received or understood. For apps like Office to work well with Sets, the Office engineering team was going to have to do a lot of extra work." From the report: Sets didn't make an reappearance in the Insider test builds leading up to the May 2019 Update/1903, and officials haven't mentioned the Sets feature in months. Over the weekend, Microsoft Senior Program Manager Rich Turner tweeted "The Shell-provided tab experience is no more, but adding tabs is high on our to do list." (That's likely the closest we will get to an "official" comment on the future of the Sets feature.)

Turner pointed to a Devblogs.Microsoft.com post originally dated June 29 about tabs coming to the Windows Console. At that point in time, the Console team was planning to use the new Sets feature as the base for adding Tabs in the Windows Console. But since the Windows team has decided against moving forward with Sets, the Console team is now going to have to build Tabs into the Console without using Sets as the foundation, my sources say.

A buggy update for Nokia 9 PureView handsets has apparently impacted the smartphone model's in-screen fingerprint scanner, which can now be bypassed using unregistered fingerprints or even with something as banal as a pack of gum. From a report: Multiple users have complained about this problem over the weekend, after installing an OS update (v4.22) released on April 18. The update was meant to improve the phone's in-screen fingerprint scanner module -- so that users won't have to press their fingers too hard on the screen before the phone unlocks -- yet it had the exact opposite effect the company hoped for. While initially, the reported issues appeared to be new, a video recorded by another user showed the same problem (unlocking phones with unregistered fingerprints) even before the v4.22 update, meaning that the update just made the unlocking bug worse than it already was.

"Big changes are here," writes the official blog for Bluecherry: In 2010 we released our multi-port MPEG4 video capture card with an open source driver (solo6x10) and in 2011 updated the driver to support our multi-port H.264 capture cards. Later, this open source driver was later added into the mainline Linux kernel. In 2013 we released our multi-platform surveillance application client with an open source (GPL) license.

We are proud to announce that Effective April 18, 2019 we have released the entire Bluecherry software application open source with a GPL license.
An anonymous reader writes: This includes the Linux based server application and the Windows / Linux / OS X client.

Bluecherry's GitHub repo is now open for public viewing.

Dan Goodin writes via Ars Technica: A researcher has uncovered strange and unexpected behavior in Windows 10 that allows remote attackers to steal data stored on hard drives when a user opens a malicious file downloaded with the Edge browser. The threat partially surfaced last week when a different researcher, John Page, reported what he called a flaw in Internet Explorer. Page claimed that when using the file manager to open a maliciously crafted MHT file, the browser uploaded one or more files to a remote server. According to Page, the vulnerability affected the most recent version of IE, version 11, running on Windows 7, Windows 10, and Windows Server 2012 R2 with all security updates installed. (It's no longer clear whether any OS other than Windows 10 is affected, at least for some users. More about that in a moment.)

[I]n Page's post was a video demonstration of the proof-of-concept exploit Page created. It shows a booby-trapped MHT file triggering an upload of the host computer's system.ini file to a remote server. Page's video shows the file being downloaded with Edge. "This can allow remote attackers to potentially exfiltrate Local files and conduct remote reconnaissance on locally installed Program version information," Page wrote. "Example, a request for 'c:\Python27\NEWS.txt' can return version information for that program."

An anonymous reader shares a report: Last year, Microsoft announced when it would be killing app updates and distribution in the Windows Store for Windows Phone 8.x and Windows 8.x. At the time, the blog post stated that Windows Phone 8.x devices would stop receiving app updates after July 1, 2019, while Windows 8.x devices would get app updates through July 1, 2023. However, it seems as though plans have changed a little bit, as the blog post has quietly been updated earlier this month. Microsoft has changed the wording in the post to state that Windows 8 devices will stop getting updates for their apps at the same time as Windows Phone 8.x, that is, July 1 of this year. Windows 8.1 devices will continue to receive updates through the previously announced date in 2023.

Canonical today announced the release of Ubuntu 19.04 "Disco Dingo." With Linux 5.0 and GNOME 3.32, Disco Dingo features performance improvements and visual tweaks. Whether or not you upgrade, Disco Dingo lays the groundwork for future long term support releases of Ubuntu. From a report: Keep in mind, version 19.04 is not LTS (Long Term Support), meaning it is only supported until January 2020. "Ubuntu 19.04 introduces GNOME 3.32 with higher frame rates, smoother startup animations, quicker icon load times and reduced CPU+GPU load. Fractional scaling for HiDPI screens is now available in X-org and Wayland. Installing Ubuntu on VMWare will automatically install open-vm-tools for bi-directional clipboard, easy sharing of files and graceful power state management," says Canonical. The Ubuntu-maker further says, "In Ubuntu 19.04, multiple instances of the same snap can be installed for CI/CD, testing or phased rollouts. For example, two versions of a database or two versions of the golang compiler can be installed at the same time. Snap epochs control when and how data migration happens between major version upgrades."

An anonymous reader quotes a report from Ars Technica: Gamers of a certain age probably remember being wowed by the quick, smooth scaling and rotation effects of the Super Nintendo's much-ballyhooed "Mode 7" graphics. Looking back, though, those gamers might also notice how chunky and pixelated those background transformations could end up looking, especially when viewed on today's high-end screens. Emulation to the rescue. A modder going by the handle DerKoun has released an "HD Mode 7" patch for the accuracy-focused SNES emulator bsnes. In their own words, the patch "performs Mode 7 transformations... at up to 4 times the horizontal and vertical resolution" of the original hardware.

The results, as you can see in the above gallery and the below YouTube video, are practically miraculous. Pieces of Mode 7 maps that used to be boxy smears of color far in the distance are now sharp, straight lines with distinct borders and distinguishable features. It's like looking at a brand-new game. Perhaps the most impressive thing about these effects is that they take place on original SNES ROM and graphics files; DerKoun has said that "no artwork has been modified" in the games since the project was just a proof of concept a month ago. That makes this project different from upscaling emulation efforts for the N64 and other retro consoles, which often require hand-drawn HD texture packs to make old art look good at higher resolutions.

9to5Mac has learned of several new features expected to be included in iOS 13. From the report: Dark Mode: There will be a system-wide Dark Mode that can be enabled in Settings, including a high contrast version, similar to what's already available on macOS. Speaking of macOS, iPad apps that run on the Mac using Marzipan will finally take advantage of the Dark Mode support on both systems.
Multitasking: There are many changes coming to iPad with iOS 13, including the ability for apps to have multiple windows. Each window will also be able to contain sheets that are initially attached to a portion of the screen, but can be detached with a drag gesture, becoming a card that can be moved around freely, similar to what an open-source project called "PanelKit" could do. These cards can also be stacked on top of each other, and use a depth effect to indicate which cards are on top and which are on the bottom. Cards can be flung away to dismiss them.
Undo gesture: With iOS 13, Apple is introducing a new standard undo gesture for text input on the iPad. The gesture starts as a three-finger tap on the keyboard area, sliding left and right allows the user to undo and redo actions interactively.
Safari improvements: Safari on iOS 13 for the iPad will automatically ask for a desktop version of websites when necessary, preventing a common issue where websites will render their iPhone version even when running on an iPad with a big screen. YouTube is notorious for this behavior, forcing users to rely on a 'Request Desktop Site' button.
Font management: Font management is getting a major upgrade on iOS 13. It will not be necessary to install a profile to get new fonts into the system anymore. Instead there will be a new font management panel in Settings. A new standard font picker component will be available for developers and the system will notify the user when they open a document that has missing fonts.
Smarter Mail: The upgraded Mail app will be able to organize messages into categories such as marketing, purchases, travel, "not important" and more, with the categories being searchable. Users will also be able to add messages to a "read later" queue similar to third-party email apps. Improved multiple item selection: The focus on productivity on iOS continues with the inclusion of new gestures to allow for the selection of multiple items in table views and collection views, which make up for most of the user interfaces found in apps that list large amounts of data. Users will be able to drag with multiple fingers on a list or collection of items to draw a selection, similar to clicking and dragging in Finder on the Mac.
New Volume HUD and other changes: Other features to come with iOS 13 include a redesigned Reminders app, which is also coming to the Mac, a new volume HUD, better "Hey Siri" rejection for common mistaken noises such as laughter and crying babies, better multilingual support for keyboards and dictation, and expanded in-app printing controls. Apple is expected to officially unveil the next major iPhone and iPad OS at its annual Worldwide Developers Conference on June 3rd.

An anonymous reader quotes a report from Motherboard: Tens of thousands of perfectly usable iPhones are scrapped each year by electronics recyclers because of the iPhone's "activation lock," according to a new analysis paper published Thursday. Earlier this year, we published a lengthy feature about the iPhone's activation lock (also called iCloud lock informally), an anti-theft feature that prevents new accounts from logging into iOS without the original user's iCloud password. This means that stolen phones can't be used by the person who stole it without the original owner's iCloud password (this lock can also be remotely enabled using Find My iPhone.) The feature makes the iPhone a less valuable theft target, but it has had unintended consequences, as well. iCloud lock has led to the proliferation of an underground community of hackers who use phishing and other techniques to steal iCloud passwords from the original owner and unlock phones. It's also impacted the iPhone repair, refurbishing, and recycling industry, because phones that are legitimately obtained often still have iCloud enabled, making that phone useless except for parts.

Between 2015 and 2018, the Wireless Alliance, the recycling company in question, collected roughly 6 million cell phones in donation boxes it set up around the country. Of those, 333,519 of them were iPhones deemed by the company to be "reusable." And of those, 33,000 of them were iCloud locked and had to be stripped for parts and scrap metal. Last year, a quarter of all reusable iPhones it collected were activation locked. Allison Conwell, a coauthor of the CoPIRG report, told me in a phone call that the Wireless Alliance's findings show that many people donate their devices intending for them to be reused, but they're scrapped instead. In her paper, Conwell suggests that Apple should work with certified recyclers to unlock phones that have been legitimately donated (a survey of random devices conducted by the Wireless Alliance found that more than 90 percent of them had not been reported lost or stolen.) The paper suggests that Apple could either unlock phones that have not been reported lost or stolen for 30 days, or affirmatively ask users whether they had donated their previous phone and unlock it that way.

Google and Huawei have preliminarily agreed to settle a class action lawsuit from Nexus 6P users who say their devices experienced a bootlooping issue that caused the phones to shut down randomly, regardless of the battery level. Pending court approval, the companies would be liable to a $9.75 million settlement for the class action that began in April 2017, which may result in payments of up to $400 for participating plaintiffs. The Verge reports: The lawsuit alleged that Google, which contracted the design and manufacturing of its early Android smartphones to third-party companies, and Huawei, one of the chosen companies, breached the device warranty since the companies were aware of the issue, but did not respond to the bug. The plaintiffs also said the companies continued selling the faulty devices while failing to acknowledge the issue. If the court approves the settlement at the next hearing on May 9th, Nexus 6P users in the U.S. who purchased the device on or after September 25th, 2015 would be eligible to claim reimbursement.

The proposal currently states that those who are eligible for the settlement could be paid up to $400 for their faulty device, while those who received a Pixel XL in a prior warranty exchange program would only be eligible for up to $10. Those who submit proper documentation for the bug will receive the most settlement money, while those without may be eligible for up to $75. For full details on submitting a claim, check out the as-filed longform notice document, which explains the process that will go into effect following court approval.

New submitter intensivevocoder shares a report from TechRepublic: Extended support for Windows Embedded POSReady 2009 -- the last supported version of Windows based on Windows XP -- ended on April 9, 2019, marking the final end of the Windows NT 5.1 product line after 17 years, 7 months, and 16 days. Counting this edition, Windows XP is the longest-lived version of Windows ever -- a record which is unlikely to be beaten.

Despite the nominal end of support for Windows XP five years ago, the existence of POSReady 2009 allowed users to receive security updates on Windows XP Home and Professional SP3 through the use of a registry hack. Microsoft dissuaded users from doing this, stating that they "do not fully protect Windows XP customers," though no attempt was apparently made to prevent users from using this hack. With POSReady reaching the end of support, the flow of these security updates will likewise come to an end.