URI
Latest
Tim Berners-Lee is auctioning off the web's source code as an NFT for charity
Web pioneer Tim Berners-Lee will auction the original code for the modern internet as an NFT.
Origin exploit uses hyperlinks to run malicious code remotely
Security research firm ReVuln has discovered a fairly simple way (in theory, at least) for unscrupulous folks and their hacking machines to execute malicious code on your computer, by way of EA's Origin platform.The exploit takes advantage of Origin's uniform resource identifier -- the protocol through which hyperlinks and shortcuts launch Origin itself and execute commands. Typically, a URI is clicked on by the user, either in the form of a link in a web browser or as a shortcut on a desktop, at which point the URI launches Origin and tells it what game to load, and how.As it happens, certain Origin-exclusive games are vulnerable to having their execution commands subverted by precisely formatted URIs. As seen in the graph above, this can be used by bad dudes to piggyback instructions onto the URI, which can instruct Origin to load and run malicious software, rather than Crysis 3.Avoiding this exploit is thankfully simple, however: Open Origin first, and launch games from there. The exploitative instructions are contained within the URI hyperlink -- take that out of the equation, and you should be fine."Our team is constantly investigating hypotheticals like this one as we continually update our security infrastructure," an EA representative told us. Uniform resource identifiers aren't unique to Origin, of course, and are widely used in everything from iTunes to Steam, the latter of which has an extremely similar vulnerability [PDF] that was discovered by ReVuln last year.
Lab-on-a-chip aims to take suspense out of blood work
If your doctor's ever uttered the words, "I'd like to run more tests," you know the wait for results can be torturous. Engineers and students at the University of Rhode Island (URI) are hoping to stop the torture with a new lab-on-a-chip technology that cuts way back on the wait for important lab results. The system provides results in 30 minutes, using a portable device and just a drop of blood. The blood is placed on a small plastic polymer cartridge, smaller than a credit card, and inserted into a shoebox-sized biosensor. It then travels across the cartridge to a detection site where reagents enable the sensor to detect biomarkers of disease. Basically, your doctor pops a bloody piece of plastic into a box, and out come your results. The first cartridges were developed to assess the risk of heart disease, but researches suggest they could be designed to detect everything from HIV to Alzheimer's. The URI team estimates costs at $3200 for the sensor and $1.50 for the test. No official word on a release date, but we hope they won't make us wait too long -- we can't stand the suspense.
