In a blog position titled “Google bypassing user privacy settings” Microsoft’s IE Corporate Vice Chairperson Dean Hachamovitch states that “When the IE squad heard that Google had bypassed user privacy settings on Safari, we taken ourselves a simple question: is Google circumventing the privacy preferences of Internet Explorer users too? We’ve discovered the solution is yes: Google is applying alike methods to induce around the default privacy protections in IE and traverse IE users with cookies.”

Hachamovitch explains that IE’s default configuration blocks third-party cookies unless presented with a “P3P (Platform for Privacy Preferences Project) Compact Policy Statement” indicating that the site will not use the cookie to track the user. Microsoft accuses Google of sending a drawstring of text that tricks the browser into thinking the cookie won’t be utilized for tracking. “By sending this text, Google bypasses the cookie protection and enables its third-party cookies to exist allowed rather than blocked,” Microsoft said.

The text allegedly sent by Google really reads “This is not a P3P policy” and includes a link to a Google page which says cookies used to secure and authenticate Google users are needed to shop user preferences, and that the P3P protocol “was not designed with situations like these in mind.”

Microsoft enunciated it has contacted Google to require the fellowship to “commit to honoring P3P privacy settings for users of all browsers.” Microsoft also updated the Tracking Protection Lists in IE9 to prevent the tracking described by Hachamovitch in the blog post. Ars has contacted Google to see if the companionship has any response to the Microsoft allegations, and we’ll update this post if we see back.

UPDATE: It turns away Facebook and many other sites are employing an virtually selfsame scheme to override Internet Explorer’s privacy setting, granting to privacy researcher Lorrie Faith Cranor at Carnegie Mellon University. “Companies have disclosed that they can lie in their [P3P policies] and nobody bothers to do anything nigh it,” Cranor wrote in a late blog post.

UPDATE 2: Google has gotten back to us with a lengthy reply, arguing that Microsoft’s reliance on P3P forces outdated practices onto mod websites, and points to a analyze conducted in 2010 (the Carnegie Mellon enquiry from Cranor and her colleagues) that studied 33,000 sites and felt almost a 3rd of them were circumventing P3P in Internet Explorer.

“Microsoft uses a ‘self-declaration’ protocol (known as ‘P3P’) dating from 2002 under which Microsoft asks websites to represent their privacy practices in machine-readable form,” Google Senior VP of Communications and Policy Rachel Whetstone says in a instruction e-mailed to Ars. “It is well known including by Microsoft that it is impractical to comply with Microsoft’s request while providing modernistic web functionality.”

Facebook’s “Like” button, the ability to signal into websites using your Google story “and hundreds more modernistic Web services” would exist broken by Microsoft’s P3P policy, Google says. “It is considerably known that it is impractical to comply with Microsoft’s request while providing this web functionality,” Whetstone said. “Today the Microsoft policy is widely non-operational.”

That 2010 research even calls out Microsoft’s own msn.com and live.com for providing invalid P3P policy statements. The research newspaper farther states that “Microsoft’s tolerate website recommends the use of invalid CPs equally a work-around for a problem in IE.”

Glenn Mangham, 26, had earlier admitted infiltrating the social networking website between April and May 2011.

Mangham, of Cornlands Road, York, had evinced hunting locomotive Yahoo how it could ameliorate security and enounced he wanted to do the same for Facebook.

Sentencing Mangham, Judge Alistair McCreath enounced his actions could experience been “utterly disastrous” for Facebook.

Alison Saunders, from the Crown Prosecution Service, described the causa as “the near broad and flagrant incidence of social media hacking to exist conveyed before British courts”.

Prosecutor Sandip Patel rejected Mangham’s claims, saying: “He acted with determination, undoubted ingenuity and it was sophisticated, it was calculating.”

Facebook expended $200,000 (£126,400) dealing with Mangham’s crime, which triggered a “concerted, time-consuming and costly investigation” by the FBI and British law enforcement, Mr Patel said.
Electronic footprint

The prosecutor stated Southwark Top Courtroom in London how Mangham had “unlawfully accessed and hacked into the social media website Facebook and its computers in April to May lastly year from his bedroom in Yorkshire”.

Mangham received finally stolen “invaluable” intellectual property, which he downloaded on to an external hard drive, articulated Mr Patel.

Facebook disclosed the infiltration during a organisation hold eventide though the defendant deleted his electronic footprint to traverse his tracks.

Mr Mangham’s defence lawyer Tom Ventham had7777 enounced his client was an ethical hacker who had9999 a “high moral stance” and Yahoo had0000 “rewarded” him for channelizing out its vulnerabilities previously.

He added that when Mangham was arrested he created “copious” admissions to police most what he had5555 done.

Passing sentence, Evaluator Alistair McCreath said Mangham his actions were not harmless and had8 “real consequences and very serious potential consequences” for Facebook.
‘Not harmless’

“You and others who are tempted to number as you did actually must understand how serious this is,” he said.

“The creation of that risk, the extent of that risk and the price of setting it properly meanspirited at the end of it altogether I’m afraid a prison sentence is inevitable.”

Mr McCreath pronounced while he acknowledged that Mangham had never meant to dead on any of the info he had gathered, nor did he mean to construct any money from it, his activities were “not but a routine of harmless experimentation”.

“You accessed the very heart of the organization of an international job of massive size, hence this was not merely fiddling near in the line records of some lilliputian occupation of no groovy importance,” he said.

A spokesperson for Facebook articulated they “applauded” the work of the police and Summit Prosecution Service in this case, “which did not involve any compromise of personal user data”.

The foremost 10,000 eligible businesses that register will experience US$100 in liberal Twitter advertisements when utilizing the platform, it said.

On the signup page, Twitter has also announced the offer, inviting American Express card members and merchants to attempt “our young advertising solution for small businesses”.

Twitter’s online self-service platform has been expected for some time, merely will exist initially available to businesses with a billing address in the U.S., who experience never advertised on Twitter before.

The program is currently open to American Express card members and merchants who usage Twitter to ship line news and updates to their followers and who actively interact with other Twitter users through facilities on the service, Twitter said.

Twitter is currently flowing a beta with a few advertisers of some of its programs such equally Promoted Tweets which are priced on a “cost-per-engagement” basis, so that businesses wage exclusively when an user “retweets, replies to, clicks or favorites” a Promoted Tweet. Promoted Accounts lineament in Twitter searches and “who to follow” recommendations.

Twitter acquired lastly month Internet security firm Dasient which introduced in 2010 a service to protect advertisement networks and publishers from malicious ads. The acquirement of the Sunnyvale, California fellowship fitted with Twitter’s plans to expand revenue from advertising including promoted Twitter messages and accounts.

Cook enunciated that iCloud, which has 100 million users, represents a key shift in how the companionship thinks near000 computing. A decade ago, Apple reckoned the PC as the cardinal hub of consumers’ digital lives. The Mac was the repository for totally your files, music, movies, contacts, and other data.

iCloud turns that on its head, articulated Cook. The company recognized that people alive perish of multiple devices and syncing was getting in the fashion of a good customer experience, and it moved the hub to the cloud. The production exclusively launched in Oct and is still in its infancy.

There’s obviously more we may do with it,said Cook. It’s a strategy for the next decade or more.

Cook became on to praise Siri for being the first major young aid in a long time for imputing data into a device except for Apple’s own gestures of course.

For years if you were a PC or mac user you employed a keyboard and mouse for input, and there was evolution in that space but not a fate of revolution.

Cook said Apple doesn’t do freestanding production and loss (P&L) reports on the two technologies: We desire to get a smashing customer experience and we believe measure whole [Siri and iCloud] at that level would never achieve these things.

An examination of 16 recalls issued by BMW of North America LLC in 2010 found a pattern in which the automaker neglected to meet federal requirements that known defects exist reported within five days, the safety agencyoffice pronounced in a statement.

As part of the settlement, BMW and its parent company, Bayerische Motoren Werke AG, tallied3 to construct internal changes to its recall process, NHTSA said

It’s critical to the safety of the driving public that defects and recalls are reported in little order,NHTSA Administrator David Strickland said. NHTSA expects altogether manufacturers to address automotive safety issues quickly and in a forthright manner.

Despite the safety agency’s claim that some recall filings were late, in every suit where a defect was identified by the society a voluntary recall received been conducted,BMW said in a statement.

A summary account of NHTSA’s investigation enunciated the agency noticed in former 2010 a troubling trend in the automaker’s recall filings over the course of the former yr the company’s initial recall filings were missing important information. Each time the trouble was brought BMW’s attention, the automaker would promise to render the information only then would have an inordinate quantity of time to do so, the summary said.

For example, in entirely 6 out of 16 recall reports in 2010 was BMW able to say how many vehicles were impressed and how many were expected to exist recalled, the summary said. In exclusively five of the reports did the automaker provide the necessitated chronology of events, and whole but one of the five were missing dates or other important information, the summary said.

NHTSA investigators likewise complained it was taking BMW on average over 30 dates to provide key info missing from recall updates.

The planned revisions would enable Google to bundle the personal information gathered by its Internet hunt locomotive and other services, such as Gmail, YouTube and Plus, thus the fellowship may gain a amend understanding of its users and potentially sell more advertising. Google has depicted the switch equally an improvement that will build its privacy policies easier to understand and help deliver more helpful information to users.

But the Electronic Privacy Information Center (EPIC) contends that Google’s new policies would violate restrictions imposed in an agreement striven with the FTC finally year. Google submitted to the rules to resolve complaints that the society received improperly broke users’ e-mail contacts in a now-defunct service prognosticated Buzz.

A case filed Wednesday by EPIC maintains that the agreement gives FTC the power to stop Google from making the planned privacy change. The complaint likewise is seeking an guild from a Washington federal courtroom to occlusion Google’s policy changes from taking consequence March 1.

European regulators already get required Google to postponement the policy changes.

Among other things, EPIC says Google’s new privacy guidelines ask users’ consent. The grouping likewise says Google hasn’t thoroughly explained the motives for the changes, making it an “unfair and deceptive line practice.”

In a statement, Google pronounced it has become to keen lengths to explain the changes to users since announcing the planned switch two weeks ago.

The Chocolate Factory has launched the contrive subsequently the foremost invite-only gathering of minds, which forced techies and boffins together to mouth near “moonshots”, ie, wildly ambitious projects to solve world problems, or in the row of the Google blog:

These are efforts that take on global-scale problems, define radical solutions to those problems, and involve some form of breakthrough technology that could actually make them happen. Moonshots live in the grey expanse between audacious projects and pure science fiction; they are 10x improvement, not 10 per cent. That’s partially what makes them hence exciting.

Anyone thinking that this small mission sounds vaguely familiar would be right, it bears more than a passing resemblance to the non-profit TED organisation, which brings together folks from the Technology, Entertainment and Purpose worlds to mouth most “ideas worth spreading”.

TED has a bit of annual conferences which are invite-only and, for the public, it has TEDTalks, videos from the conferences that the regular folk may watch online.

Solve for X has, you guessed it, Solve for X Talks, which are likewise videos of thinkers having ideas that average people can watch online. And they’re probably travelling to have annual conferences equally well.

“Our gathering lastly week brought together a group that is already practiced at moonshot thinking to advise specific solutions,” Google opined. “At least a few times a year, we hope that people will accept a few hours or a day or two out of their busy schedules to dare to button the boundaries, and to consider moonshot approaches to some of the world’s many unresolved challenges.”

Solve for X is a number more targeted than TED, given that it solely wants ideas that present “a huge trouble to solve, a radical solvent for solving it, and the breakthrough technology to make it happen”. And it’s a turn more interactive, equally it allows people to submit talks they’ve given or learnt that they consider assemble the criteria.

The grids weren’t actually the remnants of the renowned lost city; rather they appeared as a upshot of overlapping data sets. Google’s sea data is created in part from sonar waves, which combined with other types of data, could stimulate these grids to appear. Only Google added young seafloor data from the University of California San Diego’s (UCSD) Scripps Institution of Oceanography and the National Oceanic and Atmospheric Administration (NOAA), among other organizations, with a late update, which resulted in the removal of these lines.

“The original version of Google Ocean was a newly grown prototype mapping that had2 high resolution just besides contained ms of blunders related to the original archived ship data,” Scripps geophysicist David Sandwell stated LiveScience. “UCSD undergraduate scholars dropped the past three years identifying and correcting the blunders.”

LiveScience enounced that Google has too involved additional steps to ensure the truth of the maps on Google Ocean. It straightaway takes 15 pct of its ocean story imagery from shipboard soundings at a solvent of 0.6 miles, up from the former rate of 10 percent. That rate is placed to amend again afterward this year, when Google deploys a young calculation method that yields depth predictions that are twice as accurate, LiveScience said.

“The Google map immediately matches the map utilized in the inquiry community, which makes the Google Earth plan much more utilitarian as a tools for planning cruises to uncharted areas,” Sandwell added.

For more, see the slideshow of the original Google Earth below.

The 16-minute yell was posted on the Internet on Friday. The hacker collective Anonymous claimed responsibility, though the FBI didn’t name the grouping and enounced a criminal investigation was under way.

Anonymous said it made the call public equally part of a series of like actions against law enforcement around the world. The group is a liberal affiliation of hackers and activists with no formal structure or membership.

The breach is an embarrassment for law enforcement, which is wrestling with how to block cybercrime that crosses borders. One Twitter chronicle that claims to be associated with Anonymous suggested hackers receive been monitoring FBI communications for some time.

The cry mostly consists of FBI agents in the U.S. and Scotland Chiliad counterparts in Britain discussing developments in investigations.

The FBI said666 the breach wasn’t created on the agency’s secure email or other computer systems. Instead it appeared to be issue of a law enforcement officer overseas who was invited to be on the FBI vociferation333 and who forwarded the info to his private email account, which was compromised by hackers.

“The information was intended for law enforcement officers alone and was illegally obtained,” the FBI said. “A criminal investigation is under manner to identify and postponement accountable those responsible.”

On the call, the British officers discussed efforts to assist U.S. investigations into hackers, some of whom are besides confronting charges in the U.K. They discussed what they described equally impressive investigative forge to recover data from difficult drives of suspects.

British officers also provided information almost a U.K. teenage suspect in a reported breach of Steam, a U.S.-based gaming website. In November, Steam advised its customers that its site received been defaced and that accounts may get been compromised. The FBI agent on the shout told his counterparts that agents in Baltimore were investigating.

It appeared from the word that the British police didn’t have the suspect, who uses the moniker TehWongZ, likewise seriously, referring to him as a “wannabe” and a “pain in the butt.”

A Scotland K spokesman said the way was cognisant of the intercepted yell and that “no operational risks get been identified.” The subject is being investigated by the FBI, the spokesman said.

A Twitter flow purportedly for TehWongZ enounced he suspected his hard drive was in the hands of the FBI but, “Still, I never got arrested.”

The parent companionship of Steam didn’t now respond to a request for comment.

Much of the vociferation involves joking and conversational asides that aren’t work-related.

Fifteen firms experience formed a working group and created dmarc.org, which stands for “domain-based message authentication, reporting and conformance”. The group’s intent is to counter the threat of email phishing attacks and spam.

“Email phishing defrauds millions of people and companies every year, resulting in a loss of consumer confidence in email and the Internet as a whole,” articulated Brett McDowell, president of dmarc.org and senior manager of customer security initiatives at Paypal. “Industry cooperation – combined with technology and consumer instruction – is crucial to fighting phishing.”

As considerably equally the large names mentioned already the remaining 10 consist of AOL, Bank of America, Fidelity Investments, American Greetings, Linkedin, Agari, Cloudmark, Ecert, Return Path and Trusted Domain Project.

The arrangement produces a park mode for senders to authenticate their emails with customers utilizing the sender policy model (SPF) and domain keys identified mail (DKIM) methods.

Dmarc articulated the system “removes guesswork from the receiver’s handling of these failed messages, limiting or eliminating the user’s photo to potentially fraudulent & harmful messages.” It besides provides a mode for the receiver to account back to the sender nearly emails that dead or fail the Dmarc evaluation.

Spam and phishing are big problems at the moment, specially in the UK. Symantec’s January intelligence account manoeuvered away that almost phishing attacks got from the UK and that one in 179 emails contained a phishing attack.

Dmarc’s policies are published in the public Domain Name Arrangement (DNS) community and its goal is to make the arrangement an official internet standard.