Bits Blog: Facebook Says Hackers Breached Its Computers

Facebook admitted that it was breached by sophisticated hackers in recent weeks, two weeks after Twitter made a similar admission. Both Facebook and Twitter were breached through a well-publicized vulnerability in Oracle’s Java software.

In a blog post late Friday afternoon, Facebook said it was attacked when a handful of its employees visited a compromised site for mobile developers. Simply by visiting the site, their computers were infected with malware. The company said that as soon as it discovered the malware, it cleaned up the infected machines and tipped off law enforcement.

“We have found no evidence that Facebook user data was compromised,” Facebook said.

On Feb. 1, Twitter said hackers had breached its systems and potentially accessed the data of 250,000 Twitter users. The company suggested at that time that it was one of several companies and organizations to be have been similarly attacked.

Facebook has known about its own breach for at least a month, according to people close to the investigation, but it was unclear why the company waited this long to announce it. Fred Wolens, a Facebook spokesman, declined to comment.

Like Twitter, Facebook said it believed that it was one of several organizations that were targeted by the same group of attackers.

“Facebook was not alone in this attack,” the company said in its blog post. “It is clear that others were attacked and infiltrated recently as well.”

The attacks add to the mounting evidence that hackers were able to use the security hole in Oracle’s Java software to steal information from a broad range of companies. Java, a widely used programming language, is installed on more than three billion devices. It has long been hounded by security problems.

Last month, after a security researcher exposed a serious vulnerability in the software, the Department of Homeland Security issued a rare alert that warned users to disable Java on their computers. The vulnerability was particularly disconcerting because it let attackers download a malicious program onto its victims’ machines without any prompting. Users did not even have to click on a malicious link for their computers to be infected. The program simply downloaded itself.

After Oracle initially patched the security hole in January, the Department of Homeland Security said that the fix was not sufficient and recommended that, unless “absolutely necessary”, users should disable it on their computers completely. Oracle did not issue another fix until Feb. 1.

Social networks are a prime target for hackers, who look to use people’s personal data and social connections in what are known as “spearphishing” attacks. In this type of attack, a target is sent an e-mail, ostensibly from a connection, containing a malicious link or attachment. Once the link is clicked or attachment opened, attackers take control of a user’s computer. If the infected computer is inside a company’s system, the attackers are able to gain a foothold. In many cases, they then extract passwords and gain access to sensitive data.

Facebook said in its blog post that the updated patch addressed the vulnerability that allowed hackers to access its employees’ computers.

Hackers have been attacking organizations inside the United States at an alarming rate. The number of attacks reported by government agencies last year topped 48,500 — a ninefold jump from the 5,500 attacks reported in 2006, according to the Government Accountability Office.

In the last month alone, The New York Times, The Wall Street Journal and The Washington Post all confirmed that they were targets of sophisticated hackers. But security experts say that these attacks are just the tip of the iceberg.

A common saying among security experts is that there are now only two types of American companies: Those that have been hacked and those that don’t know they’ve been hacked.

Read More..

U.S. Embassy Denies Intervening in Mexico Cabinet Choice

The United States Embassy in Mexico on Friday issued a statement denying an article in The New York Times that reported that Ambassador Anthony Wayne had met with senior Mexican officials to discuss American concerns about the possible appointment of Gen. Moisés García Ochoa of Mexico as that country’s defense secretary.

“Despite significant reporting in the Mexican press during the presidential transition about the potential candidates to head Mexico’s military,” the statement read, “Ambassador Wayne did not discuss Gen. Moisés García Ochoa with Miguel Ángel Osorio Chong, now secretary of government, or Jorge Carlos Ramírez Marín, now secretary for agrarian, territorial and urban development (SEDATU), as reported in the New York Times story.”

The embassy’s statement comes 11 days after the Times article about Washington’s exchanges with Mexico regarding General García Ochoa. It follows an avalanche of outrage in the Mexican news media, whose columnists and commentators have accused the United States of “vetoing” General García’s nomination and of infringing on Mexican sovereignty. Some in the news media have called on Mexico’s new president, Enrique Peña Nieto, to rethink the terms of his government’s cooperation with the Obama administration on security matters.

The embassy statement on Friday also came after an earlier statement by William Ostick, a State Department spokesman, that did not dispute the facts in the Times’ account.

On Feb. 4, The Times reported that some senior American officials suspected General García Ochoa of skimming money from multimillion-dollar defense contracts. It reported that the Drug Enforcement Administration suspected the general of having links to drug traffickers dating back to the late 1990s. And the newspaper reported that Ambassador Wayne discussed those concerns with Mexican officials.

In the end, General García Ochoa was passed over for his government’s top military job. The Times reported that it was unclear whether American concerns played a role in Mexico’s decision.

The Mexican government made no statement to The Times on the article. But Mr. Osorio Chong denied to Mexican newspapers that the United States had vetoed or made suggestions on any appointment, and Mr. Ramírez Marín has told Mexican reporters that while he and Mr. Chong were present at a meeting with the ambassador before the inauguration to discuss relations, the general’s possible appointment was not discussed.

Read More..

DealBook: S.E.C. Is Said to Be Investigating Trading Before Heinz Deal

Regulators are scrutinizing unusual trading surrounding the planned $23 billion takeover of the food company H. J. Heinz, raising questions about potential illegal activity in one of the biggest deals in recent memory, a person briefed on the matter said.

The Securities and Exchange Commission opened an insider trading inquiry on Thursday as Berkshire Hathaway and the investment firm 3G Capital agreed to pay $72.50 a share for Heinz, this person said. Regulators first noticed a suspicious spike in trading on Wednesday.

If the S.E.C.’s preliminary inquiry turns into a broader investigation, it could cast a shadow over the deal. As part of the process, authorities would turn their focus toward the limited universe of insiders who could have tipped off traders about the deal.

The agency’s inquiry is expected to be centered on options trading in Heinz, activity that soared this week as news of the deal circulated Wall Street. In what is known as a call option, investors can place a bullish bet on a stock, without actually committing to buy the shares. Instead, investors have the opportunity to buy at a given price and future date.

As recently as Tuesday, there was scant activity in Heinz options. But by Wednesday, as the companies were putting the finishing touches on the deal, options trading jumped, data from Bloomberg shows.

The price of Heinz’s stock soared after the deal was announced. The stock finished up nearly 20 percent on Thursday to close at $72.50, matching the offer price.

The S.E.C. is focusing on the sudden leap in options trading Wednesday, building on a related case it filed last year that also involved 3G, a company with Brazilian roots. In September, the agency obtained an emergency court order to freeze the assets of a Brazilian man suspected of insider trading around 3G Capital’s takeover of Burger King. The trader, a Brazilian citizen who worked at Wells Fargo in Miami, reportedly received the tip from a 3G investor.

Neither the company nor any individual at 3G has been accused of any wrongdoing in that case or in the Heinz inquiry.

While the inquiry is in its early stages, the person briefed on the matter said that regulators could take relatively prompt action. If it is concerned that traders might move the money overseas, the S.E.C. could ask a federal court to freeze the traders’ assets.

The S.E.C. routinely opens inquiries into trading activity after major mergers are announced, but often does not bring charges. The agency, however, has renewed its focus on insider trading, mounting dozens of cases in recent years.

An S.E.C. spokesman declined to comment. Bloomberg News earlier reported that S.E.C. investigators were reviewing the surge in Heinz options trading.

Read More..

Well: Ask Well: Swimming to Ease Back Pain

Many people find that recreational swimming helps ease back pain, and there is research to back that up. But some strokes may be better than others.

An advantage to exercising in a pool is that the buoyancy of the water takes stress off the joints. At the same time, swimming and other aquatic exercises can strengthen back and core muscles.

That said, it does not mean that everyone with a case of back pain should jump in a pool, said Dr. Scott A. Rodeo, a team physician for U.S.A. Olympic Swimming at the last three Olympic Games. Back pain can have a number of potential causes, some that require more caution than others. So the first thing to do is to get a careful evaluation and diagnosis. A doctor might recommend working with a physical therapist and starting off with standing exercises in the pool that involve bands and balls to strengthen the core and lower back muscles.

If you are cleared to swim, and just starting for the first time, pay close attention to your technique. Work with a coach or trainer if necessary. It may also be a good idea to start with the breaststroke, because the butterfly and freestyle strokes involve more trunk rotation. The backstroke is another good option, said Dr. Rodeo, who is co-chief of the sports medicine and shoulder service at the Hospital for Special Surgery in New York.

“With all the other strokes, you have the potential for some spine hyperextension,” Dr. Rodeo said. “With the backstroke, being on your back, you don’t have as much hyperextension.”

Like any activity, begin gradually, swimming perhaps twice a week at first and then progressing slowly over four to six weeks, he said. In one study, Japanese researchers looked at 35 people with low back pain who were enrolled in an aquatic exercise program, which included swimming and walking in a pool. Almost all of the patients showed improvements after six months, but the researchers found that those who participated at least twice weekly showed more significant improvements than those who went only once a week. “The improvement in physical score was independent of the initial ability in swimming,” they wrote.

Read More..

Well: Ask Well: Swimming to Ease Back Pain

Many people find that recreational swimming helps ease back pain, and there is research to back that up. But some strokes may be better than others.

An advantage to exercising in a pool is that the buoyancy of the water takes stress off the joints. At the same time, swimming and other aquatic exercises can strengthen back and core muscles.

That said, it does not mean that everyone with a case of back pain should jump in a pool, said Dr. Scott A. Rodeo, a team physician for U.S.A. Olympic Swimming at the last three Olympic Games. Back pain can have a number of potential causes, some that require more caution than others. So the first thing to do is to get a careful evaluation and diagnosis. A doctor might recommend working with a physical therapist and starting off with standing exercises in the pool that involve bands and balls to strengthen the core and lower back muscles.

If you are cleared to swim, and just starting for the first time, pay close attention to your technique. Work with a coach or trainer if necessary. It may also be a good idea to start with the breaststroke, because the butterfly and freestyle strokes involve more trunk rotation. The backstroke is another good option, said Dr. Rodeo, who is co-chief of the sports medicine and shoulder service at the Hospital for Special Surgery in New York.

“With all the other strokes, you have the potential for some spine hyperextension,” Dr. Rodeo said. “With the backstroke, being on your back, you don’t have as much hyperextension.”

Like any activity, begin gradually, swimming perhaps twice a week at first and then progressing slowly over four to six weeks, he said. In one study, Japanese researchers looked at 35 people with low back pain who were enrolled in an aquatic exercise program, which included swimming and walking in a pool. Almost all of the patients showed improvements after six months, but the researchers found that those who participated at least twice weekly showed more significant improvements than those who went only once a week. “The improvement in physical score was independent of the initial ability in swimming,” they wrote.

Read More..

Bits Blog: How Lightning Tightens Apple's Control Over Accessories

When the iPhone 5 was released in September with the new Lightning connection port, all those docks and accessories that longtime Apple customers had been collecting for years were suddenly obsolete. But Lightning-compatible accessories have been trickling in more slowly than the typical flood of Apple accessories that comes after a new iPhone release. Why?

One challenge, according to a person briefed on Apple’s plans who was not approved to discuss them publicly, is that the iPhone 5 is more fundamentally different from previous versions of the device than new models usually are  — introducing a different overall size and shape as well as an engineering change. At the same time, with Lightning, Apple has made it harder for companies to avoid working with its own licensing program. Both of these factors have slowed the production of accessories.

Mophie, an accessory maker, shared some insight into Lightning and the overall process of making an Apple accessory. (This week it introduced the Helium, its first iPhone 5 case with a backup battery.) When a hardware maker signs up with Apple’s MFi Program, for companies that make accessories for Apple products, it orders a Lightning connector component from Apple to use in designing the accessory. The connectors have serial numbers for each accessory maker, and they contain authentication chips that communicate with the phones. When the company submits its accessory to Apple for testing, Apple can recognize the serial number.

“If you took this apart and put it in another product and Apple got a hold of it, they’d be able to see it’s from Mophie’s batch of Lightning connectors,” said Ross Howe, vice president of marketing for Mophie.

The chip inside the Lightning connector can be reverse engineered — copied by another company — but it probably would not work as well as one that came from Apple, Mr. Howe said. Apple could also theoretically issue software updates that would disable Lightning products that did not use its chips, he said.

What’s the benefit for Apple? The proprietary chip makes it more difficult for accessory makers to produce cheap knockoff products that are compatible with Lightning, which could potentially tarnish the iPhone brand. Also, it pushes accessory makers to pay Apple the licensing fees to be part of the MFi program.

“That’s one thing Apple is good at: controlling the user experience from end to end,” Mr. Howe said. “If you’re buying something in an Apple store, it’s gone through all this rigorous testing.”

Read More..

Meteorite Fragments Are Said to Rain Down on Siberia; 400 Injuries Reported

MOSCOW – A shower of falling objects, tentatively identified as fragments of a meteorite, was reported in Siberia early on Friday, damaging buildings across a vast swath of territory. More than 400 people were reported to have been injured, most from breaking glass.

But four hours after the objects fell to earth, emergency officials had reported no deaths.

Yelena Smirnykh, a spokeswoman for the Ministry of Emergency Situations, told Ekho Moskvy radio that she believed the meteorite broke apart and fell in several places. Another government expert, who spoke to Moscow FM radio station, said he believed it may have been a bolide, a type of fireball meteor that explodes in the earth’s atmosphere because of its composition or angle of entry and can be observed from the ground.

However, the governor of the Ural region reported that a search team had found an impact crater on the outskirts of a city about 50 miles west of Chelyabinsk, which would indicate the meteor did not explode in the atmosphere. Several fragments were also reported to have hit the earth around the city of Satka.

Dozens of amateur videos of the event were broadcast on Friday morning. They showed bright objects streaking through a clear morning sky, leaving a thick trail of white vapor.

Video clips from the city of Chelyabinsk showed an early morning sky illuminated by a brilliant flash, followed by the sound of breaking glass and multiple car alarms apparently triggered by the impact, which was powerful enough to shatter dishes and televisions inside people’s homes.

Dozens of amateur videos of the event were broadcast on Friday morning. They showed bright objects streaking through a clear morning sky, leaving a thick trail of white vapor.

“I saw a flash in the window, turned toward it and saw a burning cloud, which was surrounded by smoke and was going downward – it reminded me of what you see after an explosion,” said Maria Polyakova, 25, head of reception at the Park-City Hotel in Chelyabinsk.

She said the explosion occurred shortly thereafter, shattering the thick glass doors on the hotel’s first floor. She said the hotel was evacuated, but that there was no panic. Emergency officials in Chelyabinsk reported that at least four people were injured by broken glass at a school, according to the Interfax news agency. Authorities said windows facing the point of impact broke throughout the city.

“Now we have many calls about trauma, cuts and bruises,” Igor Murog, a deputy governor of the Ural region, told Interfax.

A video made outside a building in Chelyabinsk captured a blast strong enough to break windows far from the point of impact and the astonished voices of witnesses who were uncertain what it was they had just seen.

“Maybe it was a rocket,” said one man, who rushed outside onto the street along with his co-workers when the object hit, far out of sight. A man named Artyom, who spoke to the Moscow FM radio station, said the explosion was enormous.

“I was sitting at work and the windows lit up and it was as if the whole city was illuminated, and I looked out and saw a huge streak in the sky and it was like that for two or three minutes and then I heard these noises, like claps,” he said. “And then all the dogs started barking.”

On impact, he said balconies shook and windows shattered. He said he did not believe it was a meteorite. “We are waiting for a second piece, that is what people are talking about now,” he said.

There were reports that falling objects were visible as far away as Yekaterinburg, 125 miles southeast of Chelyabinsk. A police official told Interfax that authorities had identified one meteorite’s point of impact, in a sparsely populated area around 50 miles outside the city of Satka.

Siberia stretches the length of Asia and there is a history of meteor and asteroid showers there. In 1908 a powerful explosion was reported near the Tunguska River in central Siberia, its impact so great that trees were flattened for 25 miles around. Generations of scientists have studied that event, analyzing particles that were driven into the earth’s surface as far away as the South Pole. A study published in the 1980s concluded the object weighed a million tons.

Viktor Klimenko contributed reporting.

Read More..

Japanese Economy Contracts and Remains in Recession

TOKYO (AP) — Japan’s economy remained mired in recession late last year, shrinking 0.4 percent in annualized terms for the third straight quarter of contraction on feeble demand at home and overseas.

The government reported Thursday that growth for all of 2012 was 1.9 percent, after a 0.6 percent contraction in 2011 and a 4.7 percent increase in 2010 and a 5.5 percent contraction in 2009.

The figures were worse than expected, as many analysts had forecast the economy may have emerged from recession late last year as the Japanese yen weakened against other major currencies, giving a boost to Japanese export manufacturers.

Prime Minister Shinzo Abe, who took office in late December, is championing aggressive spending and monetary stimulus to help get growth back on track. He has lobbied the central bank to set an inflation target of 2 percent, aimed at breaking out of Japan’s long bout of deflation, or falling prices, that he says are inhibiting corporate investment and growth.

But the Bank of Japan was not expected to announce any major new initiatives from a policy meeting on Thursday. The current central bank governor, Masaaki Shirakawa, is due to leave office on March 19, and Mr. Abe is expected to appoint as his successor an expert who favors his more activist approach to monetary policy.

Last year began on an upbeat note with annual growth in the first quarter at 6 percent as strong government spending on reconstruction from the March 2011 tsunami disaster helped spur demand. But the economy contracted in the second quarter and deteriorated further as frictions with China over a territorial dispute hurt exports to one of Japan’s largest overseas markets.

Despite the dismal data for last year, many in Japan expect at least a temporary bump to growth from higher government spending on public works and other programs. An index measuring consumer confidence, released this week, jumped to its highest level since 2007, the biggest increase in a single month.

Read More..

Use of Morning-After Pill Is Rising, Report Says

The use of morning-after pills by American women has more than doubled in recent years, driven largely by rising rates of use among women in their early 20s, according to new federal data released Thursday.

The finding is likely to add to the public debate over rules issued by the Obama administration under the new health care law that require most employers to provide free coverage of birth control, including morning-after pills, to female employees. Some religious institutions and some employers have objected to the requirement and filed lawsuits to block its enforcement.

Morning-after pills, which help prevent pregnancy after sex, were used by 11 percent of sexually active women from 2006 to 2010, the period of the study. That was up from just 4 percent in 2002. Nearly one in four women between the ages of 20 and 24 who had ever had sex have used the pill at some point, the data show.

Morning-after pills are particularly controversial among some conservative groups who contend they can cause abortions by interfering with the implantation of a fertilized egg that the groups regard as a person.

Medical experts say that portrayal is inaccurate, and that studies provide strong evidence that the most commonly used pills do not hinder implantation, but work by delaying or preventing ovulation so that an egg is never fertilized in the first place, or thicken cervical mucus so sperm have trouble moving.

This month, the Obama administration offered a proposal that could expand the number of groups that do not need to provide or pay for birth control coverage. But the proposal did not end the political fight over the issue, which legal experts say may end up in the Supreme Court.

The new data was released by the National Center for Health Statistics and based on interviews with more than 12,000 women from 2006 to 2010. Researchers asked sexually active women if they had ever used emergency contraception, “also known as Plan B, Preven or morning-after pills,” as well as about their use of other forms of birth control.

Over all, 99 percent of sexually active women ages 15 to 44 have used contraception at some point in their lives, or about 53 million women, up slightly from 2002. An earlier report found that 62 percent of all women of reproductive age were currently using some form of birth control.

The new report found that 98.6 percent of sexually active Catholic women had used contraception at some point, but the data did not show how many Catholic women currently use contraception.

Condom use has risen markedly. More than 93 percent of women said they had partners who had used condoms at some point, compared with 82 percent of women in 1995, a likely effect of strong public advocacy for condom use during the AIDS epidemic.

In contrast, women who had used intrauterine devices, or IUDs, at some point in their lives declined to about 8 percent from 10 percent in 1995. The use of birth control pills has remained steady since 1995 at 82 percent.

Eighty-nine percent of white women said they had used birth control pills at some point, compared with 67 percent of Hispanic women, 78 percent of black women and 57 percent of Asian women.

Education played a role in the type of contraception used. Forty percent of women without a high school diploma said they chose sterilization, while just 10 percent of women with a bachelor’s degree said they used that method. Those without a high school diploma were also far more likely to use three-month injectables, like Depo-Provera — 36 percent compared with 13 percent of women with a college degree.

About 12 percent of college graduates said they had used emergency contraception, while 7 percent of women with only a high school degree said they had used it.

Educated women were far more likely to have practiced periodic abstinence based on the menstrual cycle. About 28 percent of women with a master’s degree or higher had practiced this method, while just 13 percent of women without a high school diploma had, the report found.

White women, American-born Hispanic women and black women were most likely to practice withdrawal, with more than half of women in each group saying they have used that method. Just 44 percent of foreign-born Hispanics said they practiced withdrawal.

Read More..

Use of Morning-After Pill Is Rising, Report Says

The use of morning-after pills by American women has more than doubled in recent years, driven largely by rising rates of use among women in their early 20s, according to new federal data released Thursday.

The finding is likely to add to the public debate over rules issued by the Obama administration under the new health care law that require most employers to provide free coverage of birth control, including morning-after pills, to female employees. Some religious institutions and some employers have objected to the requirement and filed lawsuits to block its enforcement.

Morning-after pills, which help prevent pregnancy after sex, were used by 11 percent of sexually active women from 2006 to 2010, the period of the study. That was up from just 4 percent in 2002. Nearly one in four women between the ages of 20 and 24 who had ever had sex have used the pill at some point, the data show.

Morning-after pills are particularly controversial among some conservative groups who contend they can cause abortions by interfering with the implantation of a fertilized egg that the groups regard as a person.

Medical experts say that portrayal is inaccurate, and that studies provide strong evidence that the most commonly used pills do not hinder implantation, but work by delaying or preventing ovulation so that an egg is never fertilized in the first place, or thicken cervical mucus so sperm have trouble moving.

This month, the Obama administration offered a proposal that could expand the number of groups that do not need to provide or pay for birth control coverage. But the proposal did not end the political fight over the issue, which legal experts say may end up in the Supreme Court.

The new data was released by the National Center for Health Statistics and based on interviews with more than 12,000 women from 2006 to 2010. Researchers asked sexually active women if they had ever used emergency contraception, “also known as Plan B, Preven or morning-after pills,” as well as about their use of other forms of birth control.

Over all, 99 percent of sexually active women ages 15 to 44 have used contraception at some point in their lives, or about 53 million women, up slightly from 2002. An earlier report found that 62 percent of all women of reproductive age were currently using some form of birth control.

The new report found that 98.6 percent of sexually active Catholic women had used contraception at some point, but the data did not show how many Catholic women currently use contraception.

Condom use has risen markedly. More than 93 percent of women said they had partners who had used condoms at some point, compared with 82 percent of women in 1995, a likely effect of strong public advocacy for condom use during the AIDS epidemic.

In contrast, women who had used intrauterine devices, or IUDs, at some point in their lives declined to about 8 percent from 10 percent in 1995. The use of birth control pills has remained steady since 1995 at 82 percent.

Eighty-nine percent of white women said they had used birth control pills at some point, compared with 67 percent of Hispanic women, 78 percent of black women and 57 percent of Asian women.

Education played a role in the type of contraception used. Forty percent of women without a high school diploma said they chose sterilization, while just 10 percent of women with a bachelor’s degree said they used that method. Those without a high school diploma were also far more likely to use three-month injectables, like Depo-Provera — 36 percent compared with 13 percent of women with a college degree.

About 12 percent of college graduates said they had used emergency contraception, while 7 percent of women with only a high school degree said they had used it.

Educated women were far more likely to have practiced periodic abstinence based on the menstrual cycle. About 28 percent of women with a master’s degree or higher had practiced this method, while just 13 percent of women without a high school diploma had, the report found.

White women, American-born Hispanic women and black women were most likely to practice withdrawal, with more than half of women in each group saying they have used that method. Just 44 percent of foreign-born Hispanics said they practiced withdrawal.

Read More..