Feed slashdot Slashdot

Favorite IconSlashdot

Link https://slashdot.org/
Feed https://rss.slashdot.org/Slashdot/slashdotMain
Copyright Copyright Slashdot Media. All Rights Reserved.
Updated 2025-07-12 07:45
Google Boosts High-Risk Account Security with Phone-Only Setup
Google has streamlined its Advanced Protection Program, allowing users to enroll using a single passkey instead of two physical security keys. The program, designed for individuals at high risk of targeted online attacks, now uses built-in biometric authentication on Pixel phones and iPhones.Read more of this story at Slashdot.
US Officials Uncover Alleged Russian 'Bot Farm'
An anonymous reader quotes a report from the BBC: US officials say they have taken action against an AI-powered information operation run from Russia, including nearly 1,000 accounts pretending to be Americans. The accounts on X were designed to spread pro-Russia stories but were automated "bots" -- not real people. In court documents made public Tuesday the US justice department said the operation was devised by a deputy editor at Kremlin-owned RT, formerly Russia Today. RT runs TV channels in English and several other languages, but appears much more popular on social media than on conventional airwaves. The justice department seized two websites that were used to issue emails associated with the bot accounts, and ordered X to turn over information relating to 968 accounts that investigators say were bots. According to the court documents, artificial intelligence was used to create the accounts, which then spread pro-Russian story lines, particularly about the war in Ukraine. "Today's actions represent a first in disrupting a Russian-sponsored generative AI-enhanced social media bot farm," said FBI Director Christopher Wray. "Russia intended to use this bot farm to disseminate AI-generated foreign disinformation, scaling their work with the assistance of AI to undermine our partners in Ukraine and influence geopolitical narratives favorable to the Russian government," Mr Wray said in a statement. The accounts now appear to have been deleted by X, and screenshots shared by FBI investigators indicated that they had very few followers.Read more of this story at Slashdot.
Samsung Electronics Union Launches First Strike In 55-Year History
On Monday, the biggest labor union at Samsung Electronics launched its first strike in the tech giant's 55-year history, vowing to continue indefinitely until its demands for better pay and benefits are met. According to Reuters, "The National Samsung Electronics Union (NSEU), whose roughly 30,000 members make up almost a quarter of the firm's South Korean workforce, said it has decided to continue striking because management has shown no indication of holding talks [...]." From the report: "We haven't spoken to management since we started the strike on Monday," said Lee Hyun-kuk, the union's vice president. The union said it would extend the strike initially planned to last three days through Wednesday. Lee told Reuters that the union found its strike has disrupted production on certain chip lines such as with equipment running more slowly. Samsung previously said the strike has caused no disruption to production. Lee said about 6,500 workers have been participating in the strike and that the union will encourage more members to join. Union officials have disputed reports of low participation, telling Reuters that the five-year-old body did not have enough time to educate members about the labor issues. The union held a training session on Tuesday and will conduct another on Wednesday. Analysts said it would be difficult to verify whether the strike has disrupted production unless the union provides details of wafers and processes. The union said it has revised demands to include a 3.5% increase in base salary and, instead of an extra day's annual leave, a day off to mark the union's founding. Lee said the management previously offered a 3% rise in base salary but the union wants 3.5% to better reflect inflation.Read more of this story at Slashdot.
Judge Dismisses Lawsuit Over GitHub Copilot AI Coding Assistant
A US District Court judge in San Francisco has largely dismissed a class-action lawsuit against GitHub, Microsoft, and OpenAI, which challenged the legality of using code samples to train GitHub Copilot. The judge ruled that the plaintiffs failed to establish a claim for restitution or unjust enrichment but allowed the claim for breach of open-source license violations to proceed. InfoWorld reports: The lawsuit, first filed in Nov. 2022, claimed that GitHub's training of the Copilot AI on public GitHub code repositories violated the rights of the "vast number of creators" who posted code under open-source licenses on GitHub. The complaint (PDF) alleged that "Copilot ignores, violates, and removes the Licenses offered by thousands -- possibly millions -- of software developers, thereby accomplishing software piracy on an unprecedented scale." [...] In a decision first announced on June 24, but only unsealed and made public on July 5, California Northern District judge Jon S. Tigar wrote that "In sum, plaintiff's claims do not support the remedy they seek. Plaintiffs have failed to establish, as a matter of law, that restitution for any unjust enrichment is available as a measure of plaintiffs' damages for their breach of contract claims." Judge Tigar went on to state that "court dismisses plaintiffs' section 1202(b) claim, this time with prejudice. The Court declines to dismiss plaintiffs' claim for breach of contract of open-source license violations against all defendants. Finally, the court dismisses plaintiffs' request for monetary relief in the form of unjust enrichment, as well as plaintiffs' request for punitive damages."Read more of this story at Slashdot.
Oregon County Seeks To Hold Fossil Fuel Companies Accountable For Extreme Heat
An anonymous reader quotes a report from Ars Technica: Northwest Oregon had never seen anything like it. Over the course of three days in June 2021, Multnomah County -- the state's most populous county, which rests in the swayback along Oregon's northern border -- recorded highs of 108, 112, and 116 degrees Fahrenheit. Temperatures were so hot that the metal on cable cars melted and the asphalt on roadways buckled. Nearly half the homes in the county lacked cooling systems because of Oregon's typically gentle summers, where average highs top out at 81 degrees. Sixty-nine people perished from heat stroke, most of them in their homes. When scientific studies showed that the extreme temperatures were caused by heat domes, which experts say are influenced by climate change, county officials didn't just chalk it up to a random weather occurrence. They started researching the large fossil fuel companies whose emissions are driving the climate crisis -- including ExxonMobil, Shell, and Chevron -- and sued them (PDF). "This catastrophe was not caused by an act of God," said Jeffrey B. Simon, a lawyer for the county, "but rather by several of the world's largest energy companies playing God with the lives of innocent and vulnerable people by selling as much oil and gas as they could." Now, 11 months after the suit was filed, Multnomah County is preparing to move forward with the case in Oregon state court after a federal judge in June settled (PDF) a monthslong debate over where the suit should be heard. About three dozen lawsuits have been filed by states, counties, and cities seeking damages from oil and gas companies for harms caused by climate change. Legal experts said the Oregon case is one of the first focused on public health costs related to high temperatures during a specific occurrence of the "heat dome effect." Most of the other lawsuits seek damages more generally from such ongoing climate-related impacts as sea level rise, increased precipitation, intensifying extreme weather events, and flooding. [...] The Multnomah County lawsuit says that Exxon, Shell, Chevron, and others engaged in a range of improper practices, including negligence, creating a public nuisance, fraud, and deceit. The suit alleges that the companies were aware of the harms of fossil fuels and engaged in a "scheme to rapaciously sell fossil fuel products and deceptively promote them as harmless to the environment, while they knew that carbon pollution emitted by their products into the atmosphere would likely cause deadly extreme heat events like that which devastated Multnomah County." "We know that climate-induced weather events like the 2021 Heat Dome harm the residents of Multnomah County and cause real financial costs to our local government," Multnomah County Chair Jessica Vega Pederson said in a statement. "The Court's decision to hear this lawsuit in State Court validates our assertion that the case should be resolved here -- it's an important win for this community." In the suit, officials in Portland's Multnomah County said that they will ultimately incur costs in excess of $1.5 billion to deal with the effects of the 2021 heat dome. "We allege that this is just like any other kind of public health crisis and mass destruction of property that is caused by corporate wrongdoing," said Simon, partner in the law firm of Simon Greenstone Panatier. "We contend that these companies polluted the atmosphere with carbon from the burning of fossil fuels; that they foresaw that extreme environmental harm would be caused by it; that some of them, we contend, deliberately misled the public about that."Read more of this story at Slashdot.
British Boarding School Bans Smartphones, Hands Out Nokia Phones Instead
Eton College, Britain's elite boarding school with alumni that includes Princes William and Harry, as well as George Orwell and a long list of others, is banning incoming students from having smartphones. Instead, the school will provide students with a Nokia "brick" phone, which will only be capable of making calls and sending text messages. CBS News reports: Parents of first-year students at Eton -- where tuition exceeds $60,000 per year -- were informed of the changes in a letter, which said that incoming 13-year-old boarders should have their smart devices taken home after their SIM cards are transferred to offline Nokia phones provided by the school, which can only make calls and send simple text messages. Eton's previous rules on smartphones required first-year students to hand over their devices overnight. "Eton routinely reviews our mobile phone and devices policy to balance the benefits and challenges that technology brings to schools," a spokesperson for the school told CBS News on Tuesday, adding that those joining in Year 9, essentially the equivalent of freshman year in high school for American students, "will receive a 'brick' phone for use outside the school day, as well as a school-issued iPad to support academic study." The spokesperson added that "age-appropriate controls remain in place for other year groups." The ban follows a recent guidance issued by the UK government backing school principals who decide to ban smartphones during the school day. The goal is to help minimize disruption and improve classroom behavior.Read more of this story at Slashdot.
Nike Is Killing the App for Its $350 Self-Tying Sneakers
Scharon Harding reports via Wired: In 2019, Nike got closer than ever to its dreams of popularizing self-tying sneakers by releasing the Adapt BB. Using Bluetooth, the sneakers paired to the Adapt app that let users do things like tighten or loosen the shoes' laces and control its LED lights. However, Nike has announced that it's "retiring" the app on August 6 (Warning: source may be paywalled; alternative source), when it will no longer be downloadable from Apple's App Store or the Google Play Store; nor will it be updated. In an announcement recently spotted by The Verge, Nike's brief explanation for discontinuing the app is that Nike "is no longer creating new versions of Adapt shoes." The company started informing owners about the app's retirement about four months ago. Those who already bought the shoes can still use the app after August 6, but it's expected that iOS or Android updates will eventually make the app unusable. Also, those who get a new device won't be able to download Adapt after August 6. Without the app, wearers are unable to change the color of the sneaker's LED lights. The lights will either maintain the last color scheme selected via the app or, per Nike, "if you didn't install the app, light will be the default color." While owners will still be able to use on-shoe buttons to turn the shoes on or off, check its battery, adjust the lace's tightness, and save fit settings, the ability to change lighting and control the shoes via mobile phone were big selling points of the $350 kicks.Read more of this story at Slashdot.
Etsy Loses Its 'Handmade' and 'Vintage' Labels As It Takes On Temu and Amazon
Instead of "handmade" and "vintage," Etsy created four new classifications for sellers on the site: "made by," "designed by," "handpicked by," and "sourced by." In order for products to be sold on Etsy, they'll now need to fall into one of these four categories. The Verge reports: Vintage items -- a backbone of Etsy's offerings -- will fall under "handpicked by," though these items will also have "vintage" labels on product listings. Craft supplies like beads or clay are considered "sourced by." A vase handmade by a ceramics artist would be in the "made by" category, whereas a digital illustration would be considered "designed by" the seller. These categories will be visible on Etsy product listings. The company says that this won't change anything in practice -- things that were previously prohibited, like the reselling of items made by someone else, still won't be allowed under the new policy. "The consistent theme here is that items are infused with a human touch, because that's what makes Etsy, well, Etsy," CEO Josh Silverman said in a video message. The goal for the new categories, the company says, is to provide more details to shoppers about how an item is made and how a seller was involved in the process. Etsy has differentiated itself from other marketplaces like Amazon or Temu, emphasizing itself as a place to find unique items made by an artisan or selected by a curator. But over the years, the company has loosened its rules around what exactly counts as "handmade."Read more of this story at Slashdot.
In a First, Federal Regulators Ban Messaging App From Hosting Minors
An anonymous reader quotes a report from the Washington Post: Federal regulators have for the first time banned a digital platform from serving users under 18 (Warning: source may be paywalled; alternative source), accusing the app -- known as NGL -- of exaggerating its ability to use artificial intelligence to curb cyberbullying in a groundbreaking settlement. Anapp popular among children and teens, NGL aggressively marketed to young users despite risks of bullying on the anonymous messaging site, the Federal Trade Commission and the Los Angeles District Attorney's Office alleged in a complaint unveiled Tuesday. The complaint alleged that NGL tricked users into paying for subscriptions by sending them computer-generated messages appearing to be from real people and offering a service for as much as $9.99 a week to find out their real identity. People who signed up received only "hints" of those identities, whether they were real or not, enforcers said. After users complained about the "bait-and switch tactic," executives at the company "laughed off" their concerns, referring to them as "suckers," the FTC said in an announcement. NGL, internet shorthand for "not gonna lie," agreed to pay $5 million and stop marketing to kids and teens to settle the lawsuit, which also alleged that the company violated children's privacy laws by collecting data from youths under 13 without parental consent. The settlement marks a major milestone in the federal government's efforts to tackle concerns that tech platforms are exposing children to noxious material and profiting from it. And it's one of the most significant actions by the FTC under Chair Lina Khan, who has dialed up scrutiny of the tech sector at the agency since taking over in 2021. "We will keep cracking down on businesses that unlawfully exploit kids for profit," Khan (D) said in a statement. NGL co-founder Joao Figueiredo said in a statement Tuesday that the company cooperated with the FTC's investigation for nearly two years and viewed the "resolution as an opportunity to make NGL better than ever." "While we believe many of the allegations around the youth of our user base are factually incorrect, we anticipate that the agreed upon age-gating and other procedures will now provide direction for others in our space, and hopefully improve policies generally."Read more of this story at Slashdot.
OpenAI and Arianna Huffington Are Working Together On an 'AI Health Coach'
OpenAI CEO Sam Altman and businesswoman Arianna Huffington have announced they're working on an "AI health coach" via Thrive AI Health. According to a Time magazine op-ed, the two executives said that the bot will be trained on "the best peer-reviewed science" alongside "the personal biometric, lab, and other medical data you've chosen to share with it." The Verge reports: The company tapped DeCarlos Love, a former Google executive who previously worked on Fitbit and other wearables, to be CEO. Thrive AI Health also established research partnerships with several academic institutions and medical centers like Stanford Medicine, the Rockefeller Neuroscience Institute at West Virginia University, and the Alice L. Walton School of Medicine. (The Alice L. Walton Foundation is also a strategic investor in Thrive AI Health.) Thrive AI Health's goal is to provide powerful insights to those who otherwise wouldn't have access -- like a single mother looking for quick meal ideas for her gluten-free child or an immunocompromised person in need of instant advice in between doctor's appointments. [...] The bot is still in its early stages, adopting an Atomic Habits approach. Its goal is to gently encourage small changes in five key areas of your life: sleep, nutrition, fitness, stress management, and social connection. By making minor adjustments, such as suggesting a 10-minute walk after picking up your child from school, Thrive AI Health aims to positively impact people with chronic conditions like heart disease. It doesn't claim to be ready to provide real diagnosis like a doctor would but instead aims to guide users into a healthier lifestyle. "AI is already greatly accelerating the rate of scientific progress in medicine -- offering breakthroughs in drug development, diagnoses, and increasing the rate of scientific progress around diseases like cancer," the op-ed read.Read more of this story at Slashdot.
BlastRADIUS Attack Exposes Critical Flaw In 30-Year-Old RADIUS Protocol
wiredmikey shares a report from SecurityWeek: Security vendor InkBridge Networks on Tuesday called urgent attention to the discovery of a thirty-year-old design flaw in the RADIUS protocol and warned that advanced attackers can launch exploits to authenticate anyone to a local network, bypassing any multi-factor-authentication (MFA) protections. The company published a technical description of what is being called the BlastRADIUS attack and warned that corporate networks such as internal enterprise networks, ISPs, and telcos are exposed to major risk. The vulnerability is being tracked as CVE-2024-3596 and VU#456537. "The root cause of the attack is that in the RADIUS protocol, some Access-Request packets are not authenticated and lack integrity checks. An attacker can modify these packets in a way which allows them to control who gets onto the network," the research team explained (PDF). The RADIUS protocol, first standardized in the late 1990s, is used to control network access via authentication, authorization, and accounting and is still used widely today in switches, routers, access points and VPN products. "All of those devices are likely vulnerable to this attack," the researchers warned. "The key to the attack is that in many cases, Access-Request packets have no authentication or integrity checks. An attacker can then perform a chosen prefix attack, which allows modifying the Access-Request in order to replace a valid response with one chosen by the attacker. Even though the response is authenticated and integrity checked, the chosen prefix vulnerability allows the attacker to modify the response packet, almost at will," according to the InkBridge Networks documentation. The researchers say that every single RADIUS server must be upgraded in order to protect against this vulnerability. "It is not sufficient to upgrade only RADIUS clients, as doing so will allow the network to remain vulnerable."Read more of this story at Slashdot.
Spain Sentences 15 Schoolchildren Over AI-Generated Naked Images
An anonymous reader quotes a report from The Guardian: A court in south-west Spain has sentenced 15 schoolchildren to a year's probation for creating and spreading AI-generated images of their female peers in a case that prompted a debate on the harmful and abusive uses of deepfake technology. Police began investigating the matter last year after parents in the Extremaduran town of Almendralejo reported that faked naked pictures of their daughters were being circulated on WhatsApp groups. The mother of one of the victims said the dissemination of the pictures on WhatsApp had been going on since July. "Many girls were completely terrified and had tremendous anxiety attacks because they were suffering this in silence," she told Reuters at the time. "They felt bad and were afraid to tell and be blamed for it." On Tuesday, a youth court in the city of Badajoz said it had convicted the minors of 20 counts of creating child abuse images and 20 counts of offenses against their victims' moral integrity. Each of the defendants was handed a year's probation and ordered to attend classes on gender and equality awareness, and on the "responsible use of technology." [...] Police identified several teenagers aged between 13 and 15 as being responsible for generating and sharing the images. Under Spanish law minors under 14 cannot be charged but their cases are sent to child protection services, which can force them to take part in rehabilitation courses. Further reading: First-Known TikTok Mob Attack Led By Middle Schoolers Tormenting TeachersRead more of this story at Slashdot.
FCC To Block Phone Company Over Robocalls Pushing Scam 'Tax Relief Program'
The Federal Communications Commission said it is preparing to block a phone company that carried illegal robocalls pushing fake programs that promised to wipe out consumers' tax debt. From a report: Veriwave Telco "has not complied with FCC call blocking rules for providers suspected of carrying illegal traffic" and now has two weeks to contest an order that would require all downstream voice providers to block all of the telco's call traffic, the FCC announced yesterday. Robocalls sent in the months before tax filing season "purported to provide information about a 'National Tax Relief Program' and, in some instances, also discussed a 'Tax Dismissal Program,'" the FCC order said. "The [Enforcement] Bureau has found no evidence of the existence of either program. Many of the messages further appealed to recipients with the offer to 'rapidly clear' their tax debt." Call recipients who listened to the prerecorded message and chose to speak to an operator were then asked to provide private information. Nearly 16 million calls were sent, though it's unclear how many went through Veriwave.Read more of this story at Slashdot.
US Nuke Agency Buys Internet Backbone Data
A U.S. government agency tasked with supporting the nation's nuclear deterrence capability has bought access to a data tool that claims to cover more than 90 percent of the world's internet traffic, and can in some cases let users trace activity through virtual private networks, according to documents obtained by 404 Media. From the report: The documents provide more insight into the use cases and customers of so-called netflow data, which can show which server communicated with another, information that is ordinarily only available to the server's owner, or the internet service provider (ISP) handling the traffic. Other agencies that have purchased the data include the U.S. Army, NCIS, FBI, IRS, with some government clients saying it would take too long to get data from the NSA, so they bought this tool instead. In this case, the Defense Threat Reduction Agency (DTRA) says it is using the data to perform vulnerability assessments of U.S. and allied systems. A document written by the DTRA and obtained by 404 Media says the agency "has a requirement to support ongoing assessments of the vulnerability of critical U.S. and allied national/theater mission systems, networks, architectures, infrastructures, and assets." The tool "is capable of following communications between servers, even private servers," which allows the agency to identify infrastructure used by malicious actors, the document continues. That contract was for $490,000 in 2023, according to the document. 404 Media obtained the document and others under a Freedom of Information Act (FOIA) request.Read more of this story at Slashdot.
Mozilla Releases FireFox 128
williamyf writes: Mozilla has released version 128 of the Firefox web browser. Some noteworthy features include: "Firefox can now translate selections of text and hyperlinked text to other languages from the context menu. [...] Firefox now has a simpler and more unified dialog for clearing user data. In addition to streamlining data categories, the new dialog also provides insights into the site data size corresponding to the selected time range. [...] On macOS, microphone capture through getUserMedia will now use system-provided voice processing when applicable, improving audio quality." More info in the release notes here. But the most important feature of 128 is that it is the newest ESR. Why is this important? Glad you asked: * Firefox ESR is the browser of choice for many Linux distros (including Debian), so this is important for the Linux community at large.* Many downstream projects (like Thunderbird or KAiOS) use Firefox ESR as their base, so whatever is included in 128 will determine the capabilities of those projects for the next year.* Many ISVs (software makers), both big and small, test/certify their software only against the ESR version of Firefox. For users of such software, the new ESR is very important.* Many companies and individuals value stability of the UI/Workflow over new bells and whistles, for them, ESR is important.* When an OS is discontinued, Mozilla lets the ESR be the last browser on the platform, exceeding the support window of the likes of Alphabeth, Apple or Microsoft, so for people on older OSs, ESR is important. Link to download (the ESR) here.Read more of this story at Slashdot.
Speed Limiters Now Mandatory In All New EU Cars
An anonymous reader shares a report: Cars have been able to figure out when they're speeding for a while, thanks to GPS as well as traffic sign recognition, and they've also been able to pump the brakes automatically when needed. Having a computer automatically slow down a car in response to posted speed limits, therefore, was not really a question of technical feasibility for some time -- but mandating it has been a question of political will. That political will has materialized in the European Union, and starting July 7 all new cars sold in the EU will feature intelligent speed assistance (ISA) systems. The systems themselves have been working their way into newly introduced models of cars starting in 2022, so quite a few new cars on the road already feature them. The July 2024 regulation extends that mandate to all new vehicles being manufactured for sale in the EU. The objective is to protect Europeans against traffic accidents, poor air quality and climate change, empower them with new mobility solutions that match their changing needs, and defend the competitiveness of European industry," the European Commission said in a statement. The systems themselves operate through traffic sign recognition, as well as navigation systems. There will be four ways in which ISA systems will work to slow the vehicle down, and it will be up to the manufacturers to pick which one they want to use. The EU regulations permit a system that can use a cascaded acoustic warning, a cascaded vibrating warning, an accelerator pedal with haptic feedback, or a speed control function in which the speed of the vehicle will be gradually reduced.Read more of this story at Slashdot.
Australia's Cybersecurity Agency Says China-backed Hackers Behind Online Crimes
Australia's government cybersecurity agency on Tuesday accused a China-backed hacker group of stealing passwords and usernames from two unnamed Australian networks in 2022, adding that the group remained a threat. From a report: A joint report led by the Australian Cyber Security Centre said the hackers, named APT40, had conducted malicious cyber operations for China's Ministry of State Security, the main agency overlooking foreign intelligence. "The activity and techniques overlap with the groups tracked as Advanced Persistent Threat (APT) 40," said the report, which included inputs from lead cyber security agencies for the United States, Britain, Canada, New Zealand, Japan, South Korea and Germany. U.S. and British officials in March had accused Beijing of a sweeping cyberespionage campaign that allegedly hit millions of people including lawmakers, academics and journalists, and companies including defense contractors. They said China-backed "APT31" was responsible for the network intrusion.Read more of this story at Slashdot.
Google Expands Dark Web Monitoring To All Users
Google will extend its Dark Web monitoring service to all account holders starting late July 2024, following the closure of its VPN offering last month. The feature, which scans for personal data compromised in breaches, was previously exclusive to Google One subscribers in dozens of countries.Read more of this story at Slashdot.
Johns Hopkins Med School Will Be Free For Most After $1 Billion Donation
Starting this fall, most students at Johns Hopkins' medical school will attend tuition-free thanks to a $1 billion donation from billionaire Mike Bloomberg. From a report: The generous gift is intended to address "twin challenges of declining levels of health and education," Bloomberg said in a letter Monday. The donation will cover the full cost of tuition for medical students from families earning less than $300,000, Bloomberg Industries announced Monday. It will also cover living expenses and other fees for students from families earning up to $175,000. Currently, nearly two-thirds of medical students at the school qualify for financial aid. Johns Hopkins' medical students graduate with an average student loan debt of about $104,000.The donation will also increase financial aid at some of the university's other graduate schools, including the schools of nursing and public health.Read more of this story at Slashdot.
Doctors Try Controversial Technique To Reduce Transplant Organ Shortage
A controversial organ retrieval technique is gaining traction across the U.S., promising to alleviate chronic organ shortages but also sparking intense ethical debates, NPR reports. Normothermic regional perfusion, now used by half of the nation's organ procurement organizations, restores blood flow to organs after cardiac death. Proponents argue it increases viable organ supply and improves transplant outcomes. Critics, however, question whether the procedure blurs the definition of death.Read more of this story at Slashdot.
What Happens If You Shoot Down a Delivery Drone?
An anonymous reader quotes a report from TechCrunch: As deep-pocketed companies like Amazon, Google and Walmart invest in and experiment with drone delivery, a phenomenon reflective of this modern era has emerged. Drones, carrying snacks and other sundries, are being shot out of the sky. Incidents are still rare. However, a recent arrest in Florida, in which a man allegedly shot down a Walmart drone, raises questions of what the legal ramifications are and whether those consequences could escalate if these events become more common. [...] While consumer drones have been proliferating for well over a decade, the question of legal ramifications hasn't been wholly clear. The Federal Aviation Administration (FAA) gave us a partial answer following a 2016 drone shooting in Arkansas. At the time, the FAA pointed interested parties to 18 U.S.C. 32. The law, titled "Aircraft Sabotage," is focused on the wanton destruction of "any aircraft in the special aircraft jurisdiction of the United States or any civil aircraft used, operated or employed in interstate, overseas, or foreign air commerce." At first glance, the law appears primarily focused on manned aircraft, including a provision that "makes it a Federal offense to commit an act of violence against any person on the aircraft, not simply crew members, if the act is likely to endanger the safety of the aircraft." In responding to the Arkansas drone shooting, however, the FAA asserts that such protections can be interpreted to also include UAVs (unmanned aerial vehicles). The language does, indeed, appear broad enough to cover drones. That means, in turn, that the penalties are potentially as stiff. The subject was revived after a 2020 incident in Minnesota. In that case, the suspect was hit with felony charges relating to criminal damage and discharging a weapon within city limits. Those would likely also be the charges in most scenarios involving property, rather than bodily damage, drone or not. Even with these examples, there is not a rigid rule that predicts if or when prosecutors might also introduce a federal charge like 18 U.S.C. 32. As the legal blog Above the Law notes, in most cases, the federal government has deferred to state law for enforcement. Meanwhile, in most cases where 18 U.S.C. 32 has been applied, if a human crew/passengers are involved, there could be other potential charges like murder. It certainly can be argued that shooting a large piece of hardware out of the sky in a heavily populated area invites its own potential for bodily harm, though it may not be prosecuted in the same manner. As drone delivery increases in the U.S., however, we may soon have an answer to the role federal legislation like 18 U.S.C. 32 will play in UAV shootings. Adding that into the picture brings penalties, including fines and up to 20 years in prison, potentially compounding those consequences. What is clear, though, is that the consequences can be severe, whether it is invoked.Read more of this story at Slashdot.
Anna's Archive Faces Millions In Damages, Permanent Injunction
Anna's Archive, a meta-search engine for pirated books and other sources, faces monetary damages and a permanent injunction at a U.S. court. According to TorrentFreak, the operators of the site "failed to respond to a lawsuit filed by [Online Computer Library Center (OCLC)], after its WorldCat database was scraped and published online." From the report: The site launched in the fall of 2022, just days after Z-Library was targeted in a U.S. criminal crackdown, to ensure continued availability of 'free' books and articles to the broader public. Late last year, Anna's Archive expanded its offering by making information from OCLC's proprietary WorldCat database available online. The site's operators took more than a year to scrape several terabytes of data and published roughly 700 million unique records online, for free. This 'metadata' heist was a massive breakthrough in the site's quest to archive as much published content as possible. However, OCLC wasn't pleased and responded with a lawsuit (PDF) at an Ohio federal court, accusing the site and its operators of hacking and demanding damages. The non-profit says that it spent more than a million dollars responding to Anna's Archive's alleged hacking efforts. Even then, it couldn't prevent the data from being released through a torrent. "Defendants, through the Anna's Archive domains, have made, and continue to make, all 2.2 TB of WorldCat data available for public download through its torrents," OCLC wrote in the complaint it filed in an Ohio federal court. In the months that passed since then, the operators of Anna's Archive didn't respond in court. The only named defendant flat-out denied all connections to the site, and OCLC didn't receive any response from any of the official Anna's Archive email addresses that were served. Meanwhile, the pirate library continues to offer the WorldCat data, which is a major problem for the organization. Without the prospect of a two-sided legal battle, OCLC has now moved for a default judgment. [...] In addition to monetary damages, the non-profit also seeks injunctive relief. The motion doesn't specify the requested measures, but the original complaint sought an order that prevents Anna's Archive from scraping WorldCat data going forward. In addition, all previously scraped data should no longer be distributed. Instead, it should be destroyed in full, including all the torrents that are currently being offered.Read more of this story at Slashdot.
'For the First Time In More Than 150 Years, Alberta's Electricity Is Coal Free'
Alberta's last coal plant went offline on June 16, marking the end of coal-fired electricity in the province. "So, for the first time in 150 years, coal is no longer part of Alberta's electricity mix," writes Chris Severson-Baker in an opinion piece for The Globe and Mail. "It is important to celebrate and reflect on these milestones, while recognizing there is no time to rest before redoubling our efforts and looking to what's next." From the report: Many organizations contributed to this successful campaign through advocacy and research. The Canadian Association of Physicians for the Environment, the Lung Association and the Asthma Society of Canada were instrumental in highlighting the health impacts associated with air pollution from coal-fired electricity. The Pembina Institute, an Alberta-based clean-energy think tank, first intervened in a coal plant regulatory process in the late 1990s and, in 2009, published the first major proposal that showed the province could move to an unabated coal-free grid by 2030. Our research was ahead of its time and criticized as idealistic. Coal accounted for 80 per cent of Alberta's electricity grid in the early 2000s and it still amounted to 60 per cent just 10 years ago. When phasing out coal was just an idea being batted around, many said it couldn't be done. This is not dissimilar to the rhetoric today around decarbonizing the grid. But Alberta's experience phasing out coal shows environmental progress of this magnitude is possible. [...] Phasing out coal in Alberta was supported by good policy design driven by carbon pricing and regulations with clear targets that offered necessary certainty to the industry and stakeholders. Rapidly growing, low-cost renewable energy further supported the phase-out, along with companies investing in gas-fired electricity. All these actions accelerated the transition away from coal at a faster rate than anticipated. Chris Severson-Baker is the executive director of the Pembina Institute, a Canadian non-profit think tank focused on advancing clean energy solutions and sustainable environmental practices through research, advocacy, and collaboration. Further reading: Air Pollution Can Decrease Odds of Live Birth After IVF By 38%, Study FindsRead more of this story at Slashdot.
Air Pollution Can Decrease Odds of Live Birth After IVF By 38%, Study Finds
An anonymous reader quotes a report from The Guardian: Air pollution exposure can significantly decrease the chance of a live birth after IVF treatment, according to research that deepens concern about the health impacts of toxic air on fertility. Pollutant exposure has previously been linked to increased miscarriage rates and preterm births, and microscopic soot particles have been shown to travel through the bloodstream into the ovaries and the placenta. The latest work suggests that the impact of pollution begins before conception by disrupting the development of eggs. "We observed that the odds of having a baby after a frozen embryo transfer were more than a third lower for women who were exposed to the highest levels of particulate matter air pollution prior to egg collection, compared with those exposed to the lowest levels," said Dr Sebastian Leathersich, a fertility specialist and gynaecologist from Perth who is due to present the findings on Monday at the European Society of Human Reproduction and Embryology annual meeting in Amsterdam. [...] The study analyzed fertility treatments in Perth over an eight-year period, including 3,659 frozen embryo transfers from 1,836 patients, and tracked whether outcomes were linked to the levels of fine particulate matter, known as PM10. The overall live birthrate was about 28% per transfer. However, the success rates varied in line with exposure to pollutants in the two weeks leading up to egg collection. The odds of a live birth decreased by 38% when comparing the highest quartile of exposure to the lowest quartile. "These findings suggest that pollution negatively affects the quality of the eggs, not just the early stages of pregnancy, which is a distinction that has not been previously reported," Leathersich said. The team now plan to study cells directly to understand why pollutants have a negative effect. Previous work has shown that the microscopic particles can damage DNA and cause inflammation in tissues. The report notes that the link between air pollution and live birth "was apparent despite excellent overall air quality during the study period, with PM10 and PM2.5 levels exceeding WHO guidelines on just 0.4% and 4.5% of the study days." It adds: "Australia is one of just seven countries that met the WHO's guidelines in 2023, and this study is the latest to show evidence of harm even at relatively low levels of pollution." The study has been published in the journal Human Reproduction.Read more of this story at Slashdot.
Substack Rival Ghost Federates Its First Newsletter
After teasing support for the fediverse earlier this year, the newsletter platform and Substack rival Ghost has finally delivered. "Over the past few days, Ghost says it has achieved two major milestones in its move to become a federated service," reports TechCrunch. "Of note, it has federated its own newsletter, making it the first federated Ghost instance on the internet." From the report: Users can follow the newsletter through their preferred federated app at @index@activitypub.ghost.org, though the company warns there will be bugs and issues as it continues to work on the platform's integration with ActivityPub, the protocol that powers Mastodon and other federated apps. "Having multiple Ghost instances in production successfully running ActivityPub is a huge milestone for us because it means that for the first time, we're interacting with the wider fediverse. Not just theoretical local implementations and tests, but the real world wide social web," the company shared in its announcement of the news. In addition, Ghost's ActivityPub GitHub repository is now fully open source. That means those interested in tracking Ghost's progress toward federation can follow its code changes in real time, and anyone else can learn from, modify, distribute or contribute to its work. Developers who want to collaborate with Ghost are also being invited to get involved following this move. By offering a federated version of the newsletter, readers will have more choices on how they want to subscribe. That is, instead of only being able to follow the newsletter via email or the web, they also can track it using RSS or ActivityPub-powered apps, like Mastodon and others. Ghost said it will also develop a way for sites with paid subscribers to manage access via ActivityPub, but that functionality hasn't yet rolled out with this initial test.Read more of this story at Slashdot.
Affinity Tempts Adobe Users with 6-Month Free Trial of Creative Suite
Serif, the design software developer behind Affinity, has introduced a six-month free trial for its creative suite, offering Affinity Photo, Designer, and Publisher on Mac, Windows PC, and iPad. This move, along with a 50% discount on perpetual licenses, aims to attract Adobe users and reassure them of Affinity's commitment to its one-time purchase pricing model despite its recent acquisition by Canva. The Verge reports: Affinity uses a one-time purchase pricing model that has earned it a loyal fanbase among creatives who are sick of paying for recurring subscriptions. Prices start at $69.99 for Affinity's individual desktop apps or $164.99 for the entire suite, with a separate deal currently offering customers 50 percent off all perpetual licenses. This discount, alongside the six-month free trial, is potentially geared at soothing concerns that Affinity would change its pricing model after being acquired by Canva earlier this year. "We're saying 'try everything and pay nothing' because we understand making a change can be a big step, particularly for busy professionals," said Affinity CEO Ashley Hewson. "Anyone who takes the trial is under absolutely no obligation to buy."Read more of this story at Slashdot.
Apple Approves Epic Games Store App For iOS
After two rejections, Apple has approved the Epic Games Store for iOS in the European Union. "This paves the way for Epic CEO Tim Sweeney to realize his long-stated goal of launching an alternative game store on Apple's closed platform -- at least in Europe," reports Ars Technica. From the report: Apple announced plans to allow third-party app stores on iOS in the region earlier this year, complying with the letter of the law (though some say not the spirit) as required by the Digital Markets Act (DMA), which was enacted in hopes of making platforms more open and competitive. Apple's new policies allow for alternative app marketplaces but with some big caveats regarding the deal that app developers agree to. The change followed years of contentious PR campaigns and court battles around the world between Epic and Apple, with Sweeney proclaiming that Apple's app approval processes are anti-competitive and that its 30 percent cut of app revenues is unfair. Even after the shift, Apple is said to have rejected the Epic Games Store app twice. The rejections were over specific rules about the copy and shape of buttons within the app, though not about its primary function. [...] Apple went ahead and approved the app despite the disagreement over the copy and button designs. However, AppleInsider reported that Apple will still require Epic to change the copy and buttons later.Read more of this story at Slashdot.
Chinese Self-Driving Cars Have Quietly Traveled 1.8 Million Miles On US Roads
An anonymous reader quotes a report from Fortune: On February 1st last year, Montana residents gawked upwards at a large white object hovering in the sky that looked to be another moon. The airborne object was in fact a Chinese spy balloon loaded with cameras, sensors, and other high-tech surveillance equipment, and it set off a nationwide panic as it drifted across the midwestern and southern United States. How much information the balloon gathered -- if any -- remains unknown, but the threat was deemed serious enough that an F-22 U.S. Air Force jet fired a Sidewinder missile at the unmanned balloon on a February afternoon, blasting it to pieces a few miles off the coast of South Carolina. At the same time that the eyes of Americans were fixed on the Chinese intruder in the sky, around 30 cars owned by Chinese companies and equipped with cameras and geospatial mapping technology were navigating the streets of greater Los Angeles, San Francisco, and San Jose. They collected detailed videos, audio recordings, and location data on their surroundings to chart out California's roads and develop their autonomous driving algorithms. Since 2017, self-driving cars owned by Chinese companies have traversed 1.8 million miles of California alone, according to a Fortune analysis of the state's Department of Motor Vehicles data. As part of their basic functionality, these cars capture video of their surroundings and map the state's roads to within two centimeters of precision. Companies transfer that information from the cars to data centers, where they use it to train their self-driving systems. The cars are part of a state program that allows companies developing self-driving technology -- including Google-spinoff Waymo and Amazon-owned Zoox -- to test autonomous vehicles on public roads. Among the 35 companies approved to test by the California DMV, seven are wholly or partly China-based. Five of them drove on California roads last year: WeRide, Apollo, AutoX, Pony.ai, and DiDi Research America. Some Chinese companies are approved to test in Arizona and Texas as well. Fitted with cameras, microphones, and sophisticated sensors, self-driving cars have long raised flags among privacy advocates. Matthew Guariglia, a policy analyst at the digital rights nonprofit Electronic Frontier Foundation, called self-driving cars "rolling surveillance devices" that passively collect massive amounts of information on Americans in plain sight. In the context of national security however, the data-hungry Chinese cars have received surprisingly little scrutiny. Some experts have compared them to Chinese-owned social media site TikTok, which has been subjected to a forced divestiture or ban on U.S. soil due to fears around its data collection practices threatening national security. The years-long condemnation of TikTok at the highest levels of the U.S. government has heightened the sense of distrust between the U.S. and China. Some Chinese self-driving car companies appear to store U.S. data in China, according to privacy policies reviewed byFortune -- a situation that experts said effectively leaves the data accessible to the Chinese government. Depending on the type of information collected by the cars, the level of precision, and the frequency at which it's collected, the data could provide a foreign adversary with a treasure trove of intelligence that could be used for everything from mass surveillance to war planning, according to security experts who spoke withFortune. And yet, despite the sensitivity of the data, officials at the state and federal agencies overseeing the self-driving car testing acknowledge that they do not currently monitor, or have any process for checking, exactly what data the Chinese vehicles are collecting and what happens to the data after it is collected. Nor do they have any additional rules or policies in place for oversight of Chinese self-driving cars versus the cars in the program operated by American or European companies. "It is literally the wild, Wild West here," said Craig Singleton, director of the China program at the Foundation for Defense of Democracies, a conservative-leaning national security think tank. "There's no one in charge."Read more of this story at Slashdot.
Paramount Agrees To Merge With Skydance In $8 Billion Deal, Ending Redstone Era
Paramount Global has agreed to merge with Skydance in a significant deal that will see the Redstone family relinquish control of the storied movie studio and media company. The merger, valued at over $8 billion, involves a consortium including RedBird Capital Partners and KKR, and is expected to close in the third quarter of 2025, subject to regulatory approval. CNBC reports: The deal gives National Amusements an enterprise value of $2.4 billion, which includes $1.75 billion in equity. Paramount's class A shareholders will receive $23 apiece in cash or stock, while class B stockholders will receive $15 per share, equating to a cash consideration totaling $4.5 billion available to public shareholders. As part of the deal Skydance will also inject $1.5 billion of capital into Paramount's balance sheet. "It's a new Paramount; it's not just a catchphrase," said RedBird's Jeff Shell, former CEO of NBCUniversal, on a call with investors Monday. "We think it's going to be a new day for these combined assets." Skydance founder David Ellison will lead the combined company as CEO, while Shell will serve as president. The merger is subject to regulatory approval and expected to close in the third quarter of 2025. It also includes a 45-day "go-shop period," in which the Paramount special committee can solicit other offers. A completed Skydance merger would mark a major shift for the ownership of Paramount, as well as for Hollywood as a whole. The Redstone family has long controlled the movie studio -- known for films such as "The Godfather," "Top Gun" and "Forrest Gump" -- as well as the CBS broadcast network and cable TV networks including MTV and Nickelodeon. Now, Ellison, 41, son of Oracle founder and billionaire Larry Ellison, will be at the helm of a major movie studio and among Hollywood's elite. "It's been a long time since a creative executive ran one of the big Hollywood companies," Shell said on Monday's call. "And I think it's really important when creative is the core."Read more of this story at Slashdot.
Z-Library Admins 'Escape House Arrest' After Judge Approves US Extradition
Andy Maxwell reports via TorrentFreak: On November 4, 2022, the United States Department of Justice and the FBI began seizing Z-Library's domains as part of a major operation to shut down the infamous 'shadow library' platform. A criminal investigation had identified two Russian nationals, Anton Napolsky and Valeriia Ermakova, as the alleged operators of the site. On October 21, 2022, at the U.S. District Court for the Eastern District of New York, Judge Sanket J. Bulsara ordered their arrest. They were detained in Argentina on November 3, 2022. After arriving at the Ambrosio Taravella International Airport, the unsuspecting couple cleared customs and hired a car from a popular rental company. The United States Embassy informed local authorities that the pair were subject to an Interpol Red Notice. At what point the Russians' phones were tapped is unclear but, under the authority of a Federal Court arrest warrant, Argentinian law enforcement began tracking the couple's movements as they traveled south in their rented Toyota Corolla. [...] [F]ollowing a visit to El Calafate, the pair were arrested by airport security police as they arrived in Rio Gallegos, Santa Cruz. They were later transferred to Cordoba. In January 2023, Judge Miguel Hugo Vaca Narvaja authorized the Russians to be detained under house arrest. Approval from Cordoba prosecutor Maximiliano Hairabedian, who was responsible for the request to extradite Napolsky and Ermakova to the United States, was not obtained. With a federal indictment, alleging criminal copyright infringement, wire fraud, and money laundering offenses, waiting for them in the United States, the priority for Napolsky and Ermakova would soon be their fight against extradition. [...] Patronato del Liberado (Patronage of the Liberated) is responsible for assisting people who have previously been detained by the authorities with family and social reintegration. It's also tasked with monitoring compliance of those on probation or subject to house arrest. According to unnamed 'judicial sources' cited by La Voz, which receives full credit for a remarkable scoop, when the group conducted a regular visit in May, to verify that Napolsky and Ermakova were in compliance with the rules set by the state, there was no trace of them. Patronato del Liberado raised the alarm and Judge Sanchez Freytes was immediately notified. Counsel for the defense during the extradition hearings said that he hadn't been able to contact the Russians either. The Judge ordered an international arrest warrant although there appeared to be at least some hope the pair hadn't left the country. However, that was many weeks ago and with no obvious news suggesting their recapture, the pair could be anywhere by now.Read more of this story at Slashdot.
First-Known TikTok Mob Attack Led By Middle Schoolers Tormenting Teachers
An anonymous reader quotes a report from Ars Technica: A bunch of eighth graders in a "wealthy Philadelphia suburb" recently targeted teachers with an extreme online harassment campaign that The New York Times reported was "the first known group TikTok attack of its kind by middle schoolers on their teachers in the United States." According to The Times, the Great Valley Middle School students created at least 22 fake accounts impersonating about 20 teachers in offensive ways. The fake accounts portrayed long-time, dedicated teachers sharing "pedophilia innuendo, racist memes," and homophobic posts, as well as posts fabricating "sexual hookups among teachers." The Pennsylvania middle school's principal, Edward Souders, told parents in an email that the number of students creating the fake accounts was likely "small," but that hundreds of students piled on, leaving comments and following the fake accounts. Other students responsibly rushed to report the misconduct, though, Souders said. "I applaud the vast number of our students who have had the courage to come forward and report this behavior," Souders said, urging parents to "please take the time to engage your child in a conversation about the responsible use of social media and encourage them to report any instances of online impersonation or cyberbullying." Some students claimed that the group attack was a joke that went too far. Certain accounts impersonating teachers made benign posts, The Times reported, but other accounts risked harming respected teachers' reputations. When creating fake accounts, students sometimes used family photos that teachers had brought into their classrooms or scoured the Internet for photos shared online. Following The Times' reporting, the superintendent of the Great Valley School District (GVSD), Daniel Goffredo, posted a message to the community describing the impact on teachers as "profound." One teacher told The Times that she felt "kicked in the stomach" by the students' "savage" behavior, while another accused students of slander and character assassination. Both were portrayed in fake posts with pedophilia innuendo. "I implore you also to use the summer to have conversations with your children about the responsible use of technology, especially social media," Goffredo said. "What seemingly feels like a joke has deep and long-lasting impacts, not just for the targeted person but for the students themselves. Our best defense is a collaborative one." Goffredo confirmed that the school district had explored legal responses to the group attack. But ultimately the district found that they were "limited" because "courts generally protect students' rights to off-campus free speech, including parodying or disparaging educators online -- unless the students' posts threaten others or disrupt school," The Times reported. Instead, the middle school "briefly suspended several students," teachers told The Times, and held an eighth-grade assembly raising awareness of harms of cyberbullying, inviting parents to join.Read more of this story at Slashdot.
Google Maps Tests New Pop-up Ads That Give Users an Unnecessary Detour
An anonymous reader writes: Google Maps is testing a new ad format that could cause distractions while driving. It brings up a pop-up notification during navigation that covers the bottom half of the screen with an unnecessary detour suggestion. Anthony Higman on X (formerly Twitter) recently spotted the new ad format during their commute. According to Higman, the ad popped up while passing a Royal Farms gas station, even though they did not search for a gas station or convenience store while setting their destination. The ad has a Sponsored tag at the top of the card, followed by the name of the location, its review rating, and the estimated arrival time. It also includes two buttons to add it as a stop or cancel the suggestion.Read more of this story at Slashdot.
HP Discontinues Online-Only LaserJet Printers Amid Backlash - Instant Ink Subscription Gets the Boot, Too
An anonymous reader writes: Per a report from DruckerChannel, HP has finally been forced to discontinue its cheaper e-series LaserJet printers due to customers experiencing problems with their online-only and always tied to HP+ subscription requirements. Among other things, HP+ requires a permanent Internet connection, and customers only use HP-original ink and toners, not allowing for third-party alternatives to be used at all. There are benefits to HP+, including cloud printing and an extra year's warranty, but the forced online requirement for a cheaper printer left a bad taste in the mouths of many consumers. In any case, it's important to clarify that this discontinuation of HP printers will only impact HP LaserJet printers that have an "e" added to the end of their model name to denote the alternative business model. So, the HP Laserjet M110w is unaffected by this, but the HP LaserJet M110we and M209dwe, two cheaper always-online alternatives, will no longer be produced or sold by HP. Another critical point of clarification is that the existing HP e-series LaserJet printer models in the wild will still function exactly as they did when they were purchased. No software updates are forthcoming to unlock the true potential of the hardware, so existing customers will have to deal with it and HP+ until they can replace their printers entirely. At least they'll still get HP+ benefits, but after such backlash, it'd be nice if HP acknowledged its mistake enough to remove some of the restrictions on e-series printer users.Read more of this story at Slashdot.
Goldman Research Head Skeptical on AI Returns Despite Massive Spend
Goldman Sachs' head of global equity research Jim Covello has expressed skepticism about the potential returns from AI technology, despite an estimated $1 trillion in planned industry investment over the coming years. In a recent report [PDF], Covello argued that AI applications must solve complex, high-value problems to justify their substantial costs, which he believes the technology is not currently designed to do. "AI technology is exceptionally expensive, and to justify those costs, the technology must be able to solve complex problems, which it isn't designed to do," Covello said. Unlike previous technological revolutions like e-commerce, which provided low-cost solutions from the start, AI remains prohibitively expensive even for basic tasks, he said. Covello also questioned whether AI costs would decline sufficiently over time, citing potential lack of competition in critical components like GPU chips. The Goldman executive also expressed doubt about AI's ability to boost company valuations, arguing that efficiency gains would likely be competed away and that the path to revenue growth remains unclear. Despite the skepticism, Covello acknowledged that substantial AI infrastructure spending will continue in the near term due to competitive pressures and investor expectations.Read more of this story at Slashdot.
Google Extends Linux Kernel Support To Keep Android Devices Secure For Longer
Google plans to support its own long-term support (LTS) kernel releases for Android devices for four years, a move aimed at bolstering the security of the mobile operating system. This decision, reported by AndroidAuthority, comes in response to the Linux community's recent reduction of LTS support from six years to two years, a change that posed potential challenges for Android's security ecosystem. The Android Common Kernel (ACK) branches, derived from upstream Linux LTS releases, form the basis of most Android devices' kernels. Google maintains these forks to incorporate Android-specific features and backport critical functionality. Regular updates to these kernels address vulnerabilities disclosed in monthly Android Security Bulletins. While the extended support period benefits Android users and manufacturers, it places significant demands on Linux kernel developers.Read more of this story at Slashdot.
NATO Backs Effort To Save Internet by Rerouting To Space in Event of Subsea Attacks
NATO is helping finance a project aimed at finding ways to keep the internet running should subsea cables shuttling civilian and military communications across European waters come under attack. From a report: Researchers, who include academics from the US, Iceland, Sweden and Switzerland, say they want to develop a way to seamlessly reroute internet traffic from subsea cables to satellite systems in the event of sabotage, or a natural disaster. The North Atlantic Treaty Organization's Science for Peace and Security Programme has approved a grant of as much as $433,600 for the $2.5 million project, and research institutions are providing in-kind contributions, documents seen by Bloomberg show. Eyup Kuntay Turmus, adviser and program manager at the NATO program, confirmed the project was recently approved and said by email that implementation will start "very soon." The initiative, which hasn't yet been publicly announced, comes amid intensifying fears that Russia or China could mine, sever or otherwise tamper with undersea cables in an attempt to disrupt communications during a military crisis. Data carried through cables under the sea account for roughly $10 trillion worth of financial transactions every day, and nearly all of the NATO's internet traffic travels through them, according to the treaty organization. As a result, NATO has been ramping up efforts to protect cables over the course of the past several months.Read more of this story at Slashdot.
Internet Archive Blames 'Environmental Factors' For Overnight Outages
The Internet Archive took a tumble overnight after "environmental factors" downed the Wayback Machine, leaving archive.org wobbling in a way that might bring a smile to the faces of certain publishers wishing for its demise. From a report: According to the organization, there was a "brief power outage in one of our datacenters," which was followed by "environmental factors," causing the service blackout. Those environmental factors are likely to be an increase in heat following a cooling outage. By this morning, The Internet Archive was reporting that things were back up and running again. However, some users (this writer included) are still experiencing the odd error or two when accessing the organization's services.Read more of this story at Slashdot.
Temperatures 1.5C Above Pre-industrial Era Average For 12 Months, Data Shows
The world has baked for 12 consecutive months in temperatures 1.5C (2.7F) greater than their average before the fossil fuel era, new data shows. Temperatures between July 2023 and June 2024 were the highest on record, scientists found, creating a year-long stretch in which the Earth was 1.64C hotter than in preindustrial times. From a report: The findings do not mean world leaders have already failed to honour their promises to stop the planet heating 1.5C by the end of the century -- a target that is measured in decadal averages rather than single years -- but that scorching heat will have exposed more people to violent weather. A sustained rise in temperatures above this level also increases the risk of uncertain but catastrophic tipping points. Carlo Buontempo, director of the Copernicus Climate Change Service, which analysed the data, said the results were not a statistical oddity but a "large and continuing shift" in the climate. "Even if this specific streak of extremes ends at some point, we are bound to see new records being broken as the climate continues to warm," he said. "This is inevitable unless we stop adding greenhouse gases into the atmosphere and the oceans." Copernicus, a scientific organisation that belongs to the EU's space programme, uses billions of measurements from satellites, ships, aircraft and weather stations to track key climate metrics. It found June 2024 was hotter than any other June on record and was the 12th month in a row with temperatures 1.5C greater than their average between 1850 and 1900. Because temperatures in some months had "relatively small margins" above 1.5C, the scientists said, datasets from other climate agencies may not confirm the 12-month temperature streak.Read more of this story at Slashdot.
Insurers Pocketed $50 Billion From Medicare for Diseases No Doctor Treated
A Wall Street Journal analysis has revealed that private insurers in the government's Medicare Advantage program, including UnitedHealth Group, have made numerous questionable diagnoses leading to increased taxpayer-funded payments between 2018 and 2021. The investigation found instances where patients were diagnosed with conditions they did not have, such as diabetic cataracts and HIV, often without their knowledge. These diagnoses resulted in higher payments from Medicare to the insurers. The Centers for Medicare and Medicaid Services said they are implementing changes to ensure "taxpayer dollars are appropriately spent." The story adds: In all, Medicare paid insurers about $50 billion for diagnoses added just by insurers in the three years ending in 2021, the Journal's analysis showed.Read more of this story at Slashdot.
10 Billion Passwords Leaked in the Largest Compilation of All Time
An anonymous reader shares a report: Cybernews researchers discovered what appears to be the largest password compilation with a staggering 9,948,575,739 unique plaintext passwords. The file with the data, titled rockyou2024.txt, was posted on July 4th by forum user ObamaCare. While the user registered in late May 2024, they have previously shared an employee database from the law firm Simmons & Simmons, a lead from an online casino AskGamblers, and student applications for Rowan College at Burlington County. The team cross-referenced the passwords included in the RockYou2024 leak with data from Cybernews' Leaked Password Checker, which revealed that these passwords came from a mix of old and new data breaches. "In its essence, the RockYou2024 leak is a compilation of real-world passwords used by individuals all over the world. Revealing that many passwords for threat actors substantially heightens the risk of credential stuffing attacks," researchers said.Read more of this story at Slashdot.
Microsoft's Notepad Gets Spellcheck and Autocorrect 40 Years After Launch
An anonymous reader shares a report: Microsoft is finally rolling out spellcheck and autocorrect for its Notepad app in Windows 11, more than 40 years after the simple text editor was first introduced in Windows in 1983. The software giant started testing both features in March, and has now quietly started enabling them for all Windows 11 users in recent days. The spellcheck feature in Notepad is almost identical to how Word or Edge highlight misspelled words, with a red underline to clearly show mistakes.Read more of this story at Slashdot.
Microsoft Orders China Staff To Use iPhones for Work and Drop Android
Microsoft told employees in China that from September they'll only be able to use iPhones for work, effectively cutting off Android-powered devices from the workplace. Bloomberg: The US company will soon require Chinese-based employees to use only Apple devices to verify their identities when logging in to work computers or phones, according to an internal memo reviewed by Bloomberg News. The measure, part of Microsoft's global Secure Future Initiative, will affect hundreds of workers across the Chinese mainland and is intended to ensure that all staff use the Microsoft Authenticator password manager and Identity Pass app. The move highlights the fragmented nature of Android app stores in the country and the growing differences between Chinese and foreign mobile ecosystems. Unlike Apple's iOS store, Google Play isn't available in China, so local smartphone makers like Huawei and Xiaomi operate their own platforms. Microsoft has chosen to block access from those devices to its corporate resources because they lack Google's mobile services in the country, the message said.Read more of this story at Slashdot.
Gig-Economy Drivers Are Turning to EVs to Save Money - and They Need More Public Chargers
Remember those researchers who spent years training AI tools to analyze the reviews drivers left on the smartphone apps where they pay for EV charging? There was one more unexpected finding. "Rideshare drivers who work for companies such as Uber are increasingly turning to electric vehicles to reduce fuel costs."That trend is boosting demand for conveniently located, publicly accessible EV chargers... "They are mostly relying on public chargers for their daily Uber needs, usually every day or every couple of days, which dramatically increases electric vehicle miles traveled," [climate fellow Omar Asensio told the Institute's blog], explaining that many drivers live in apartments that lack garages or space for a residential EV charger. Uber CEO Dara Khosrowshahi considers the issue so pressing he urged U.S. policymakers to accelerate plans to improve the nation's EV charging infrastructure in a Fast Co. op-ed in January - during the World Economic Forum in Davos, when media messaging can influence policymakers. Independent Uber drivers, Khosrowshahi said, are converting to electric vehicles seven times faster than the general public and they tend to be disproportionately from low- and middle-income households that need access to public charging stations. "Charging infrastructure must be more equitable," Khosrowshahi wrote. "Many drivers don't have driveways or garages, so access to nearby overnight charging is essential. Yet our data shows us that Uber drivers often live in neighborhoods lacking this infrastructure. These 'charging deserts' hold countless people back from making the switch."Read more of this story at Slashdot.
Russia's Space Chief Finally Admits US Landed on Moon
"Russia has finally admitted that American astronauts did, in fact, land on the moon," reports Newsweek:Head of Russian Space Corporation Roscosmos, Yuri Borisov, accepted the truth of the U.S. putting a man on the moon in an address to the State Duma, Intellinews has reported. "As for whether the Americans were on the Moon or not, I have one fact to share," he was reported to have said. "I was personally interested in this matter. At one time, they provided us with a portion of the lunar soil that the astronauts brought back during their expedition." Previous polling revealed that just under half of Russians believe America's 1969 moon landing was a government hoax. However, Borisov said that tests performed on the samples by the Russian Academy of Scientists confirmed their authenticity.Read more of this story at Slashdot.
Boeing Will Plead Guilty To Fraud Related To Fatal 737 Max Crashes
Boeing agreed on Sunday to plead guilty to conspiring to defraud the government in a case linked to crashes of its 737 Max jets in Indonesia and Ethiopia that killed 346 people -- a stunning turn for the aerospace giant after the Justice Department determined that Boeing failed to live up to terms of a 2021 deal to avoid prosecution. Washington Post adds: Prosecutors alleged that two Boeing pilots concealed key information from the Federal Aviation Administration about a new automated control system on the Max. The system was implicated in both crashes, causing uncontrollable dives. By agreeing to plead guilty to the single felony count just before a midnight deadline Sunday, the company will avoid going to trial in the high-profile case. The Justice Department filed documents related to the deal in federal court in Texas late Sunday night, setting up a planned hearing where family members -- who have criticized the pending agreement -- will be permitted to speak out. The court subsequently must decide whether to accept the plea agreement. Boeing had already agreed to $2.5 billion in penalties and payouts in 2021. As part of the new deal, the company will pay an additional $487.2 million in penalties, agree to oversight by an independent monitor, spend at least $455 million to strengthen compliance and safety programs and be placed on supervised probation for roughly three years, according to a Justice Department official. The agreement also included one thing crash victims' families long sought: a meeting with Boeing's board of directors.Read more of this story at Slashdot.
'Cyclists Can't Decide Whether To Fear Or Love Self-Driving Cars'
"Many bike riders are hopeful about a world of robot drivers that never experience road rage or get distracted by their phones," reports the Washington Post. "But some resent being guinea pigs for driverless vehicles that veer into bike lanes, suddenly stop short and confuse cyclists trying to navigate around them. "In more than a dozen complaints submitted to the DMV, cyclists describe upsetting near misses and close calls... "Of the nearly 200 California DMV complaints analyzed by The Post, about 60 percent involved Cruise vehicles; the rest mostly involved Waymo. About a third describe erratic or reckless driving, while another third document near misses with pedestrians. The remainder involve reports of autonomous cars blocking traffic and disobeying road markings or traffic signals... Only 17 complaints involved bicyclists or bike lane disruptions. But interviews with cyclists suggest the DMV complaints represent a fraction of bikers' negative interactions with self-driving vehicles. And while most of the complaints describe relatively minor incidents, they raise questions about corporate boasts that the cars are safer than human drivers, said Christopher White, executive director of the San Francisco Bike Coalition... Robot cars could one day make roads safer, White said, "but we don't yet see the tech fully living up to the promise. ... The companies are talking about it as a much safer alternative to people driving. If that's the promise that they're making, then they have to live up to it...." Many bicycle safety advocates support the mission of autonomous vehicles, optimistic the technology will cut injuries and deaths. They are quick to point out the carnage associated with human-driven cars: There were 2,520 collisions in San Francisco involving at least one cyclist from 2017 to 2022, according to state data analyzed by local law firm Walkup, Melodia, Kelly & Schoenberger. In those crashes, 10 cyclists died and another 243 riders were severely injured, the law firm found. Nationally, there were 1,105 cyclists killed by drivers in 2022, according to NHTSA, the highest on record... Meanwhile, the fraction of complaints to the DMV related to bicycles demonstrates the shaky relationship between self-driving cars and cyclists. In April 2023, a Waymo edged into a crosswalk, confusing a cyclist and causing him to crash and fracture his elbow, according to the complaint filed by the cyclist. Then, in August - days after the state approved an expansion of these vehicles - a Cruise car allegedly made a right turn that cut off a cyclist. The rider attempted to stop but then flipped over their bike. "It clearly didn't react or see me!" the complaint said. Even if self-driving cars are proven to be safer than human drivers, they should still receive extra scrutiny and aren't the only way to make roads safer, several cyclists said. Thanks to Slashdot reader echo123 for sharing the article.Read more of this story at Slashdot.
Developer Successfully Boots Up Linux on Google Drive
Its FOSS writes:When it comes to Linux, we get to see some really cool, and sometimes quirky projects (read Hannah Montana Linux) that try to show off what's possible, and that's not a bad thing. One such quirky undertaking has recently surfaced, which sees a sophomore trying to one-up their friend, who had booted Linux off NFS. With their work, they have been able to run Arch Linux on Google Drive. Their ultimate idea included FUSE (which allows running file-system code in userspace). The developer's blog post explains that when Linux boots, "the kernel unpacks a temporary filesystem into RAM which has the tools to mount the real filesystem... it's very helpful! We can mount a FUSE filesystem in that step and boot normally.... "Thankfully, Dracut makes it easy enough to build a custom initramfs... I decide to build this on top of Arch Linux because it's relatively lightweight and I'm familiar with how it work." Doing testing in an Amazon S3 container, they built an EFI image - then spent days trying to enable networking... And the adventure continues. ("Would it be possible to manually switch the root without a specialized system call? What if I just chroot?") After they'd made a few more tweaks, "I sit there, in front of my computer, staring. It can't have been that easy, can it? Surely, this is a profane act, and the spirit of Dennis Ritchie ought't've stopped me, right? Nobody stopped me, so I kept going..."I build the unified EFI file, throw it on a USB drive under /BOOT/EFI, and stick it in my old server... This is my magnum opus. My Great Work. This is the mark I will leave on this planet long after I am gone: The Cloud Native Computer. Despite how silly this project is, there are a few less-silly uses I can think of, like booting Linux off of SSH, or perhaps booting Linux off of a Git repository and tracking every change in Git using gitfs. The possibilities are endless, despite the middling usefulness. If there is anything I know about technology, it's that moving everything to The Cloud is the current trend. As such, I am prepared to commercialize this for any company wishing to leave their unreliable hardware storage behind and move entirely to The Cloud. Please request a quote if you are interested in True Cloud Native Computing. Unfortunately, I don't know what to do next with this. Maybe I should install Nix?Read more of this story at Slashdot.
Is AirBNB Really Worsening the Housing Crisis?
An anonymous reader shared this report from the BBC:On 21 June, Barcelona mayor Jaume Collboni announced plans to ban short term rentals in the city starting in November 2028. The decision is designed to solve what Collboni described as "Barcelona's biggest problem" - the housing crisis that has seen residents and workers priced out of the market - by returning the 10,000 apartments currently listed as short-term rentals on Airbnb and other platforms into the housing market... It's all part of a wider theme: around the world. Airbnb - which dominates the short-term rental market with more than 50% of all online bookings - and others, including VRBO, Booking.com and Expedia.com, are being scrutinised at the same time as questions are being asked about who tourism is for, and where the balance lies between benefits for tourists and locals alike... Recent years have seen a backlash against the brand, which is blamed for pushing up housing prices and affecting locals who feel they have been forced to live next door to unregulated hotels... The question is: does banning or restricting short-term rentals actually reduce housing prices or affect housing stock? Harvard Business Review's study on the impact of the New York City ban, published earlier this year, concluded that in this case, short term rentals are not the biggest contributor to high rents, and that regulations, rather than bans, would offer better benefits to the city and locals alike. One clear result from the city's ban has been that hotel room rates have hiked to a record average of $300 per night. So why are tourism authorities and city councils doing it? Perhaps the real reason is that it's not just about the numbers, it's about how local people feel about tourism... Successful on paper or not, these bans send a signal to local people that politicians are listening to their concerns and will prioritise them over tourists. There is an alternative to outright bans, though. Many destinations, including Berlin, restrict owner-occupiers to a 90-day maximum rental period over a year, effectively allowing part-time hosts to continue to make a supplementary income while preventing professional hosts from buying up housing stock and turning it into full-time short-term rentals. The issue for all countries moving in this direction, including the UK, which proposes something similar, is about regulation. How do you do it and how much extra does it cost to do so?Read more of this story at Slashdot.
UK Tech Overtakes China as World's Second Largest Country for Startup Funding Raised
"China may be the world's second-largest economy," writes Fortune's news editor, "but when it comes to startup funding, the U.K. is punching above its weight."Startups in the U.K. raised $6.7 billion in funding during the first half of 2024, helping dethrone China and propelling the U.K. to second place globally for funds raised, according to a new report. Crucial to the U.K.'s success were a dozen funding rounds worth over $100 million each, including those of digital bank Monzo ($620 million), lender Abound ($862 million), and automated driving startup Wayve ($1.05 billion). While the overall U.K. figure was down 2% year on year, according to data from global market intelligence platform Tracxn, it remained more robust than that of China, whose funding sat at $6.1 billion in H1 2024, helping the U.K. move into the No. 2 spot globally. The win is a milestone for the U.K. tech sector, which has remained under pressure owing to a string of challenges, including Brexit, COVID-19, and the subsequent global economic slowdown. Only the U.S. saw startups raise more capital in H1, with a combined $54.8 billion raised across some 2,654 funding rounds in the first half of the year. The article's last line? "With the arrival of new U.K. Prime Minister Keir Starmer, many will be hoping that the first Labour government in 14 years will continue to support the U.K.'s position as a critical player in the global tech landscape."Read more of this story at Slashdot.
Linus Torvalds Tactfully Discusses Value of getrandom() Upgrade for Linux vDSO
Linux's vDSO (or virtual dynamic shared object) is "a small shared library that the kernel automatically maps into the address space of all user-space applications," according to its man page. "There are some system calls the kernel provides that user-space code ends up using frequently, to the point that such calls can dominate overall performance... due both to the frequency of the call as well as the context-switch overhead that results from exiting user space and entering the kernel." But Linus Torvalds had a lot to say about a proposed getrandom() upgrade, reports Phoronix: This getrandom() work in the vDSO has been through 20+ rounds of review over the past 2+ years, but... Torvalds took some time out of his U.S. Independence Day to argue the merits of the patches on the Linux kernel mailing list. Torvalds kicked things off by writing: Nobody has explained to me what has changed since your last vdso getrandom, and I'm not planning on pulling it unless that fundamental flaw is fixed. Why is this _so_ critical that it needs a vdso? Why isn't user space just doing it itself? What's so magical about this all? This all seems entirely pointless to me still, because it's optimizing something that nobody seems to care about, adding new VM infrastructure, new magic system calls, yadda yadda. I was very sceptical last time, and absolutely _nothing_ has changed. Not a peep on why it's now suddenly so hugely important again. We don't add stuff "just because we can". We need to have a damn good reason for it. And I still don't see the reason, and I haven't seen anybody even trying to explain the reason. And then he responded to himself, adding: In other words, I want to see actual *users* piping up and saying "this is a problem, here's my real load that spends 10% of time on getrandom(), and this fixes it". I'm not AT ALL interested in microbenchmarks or theoretical "if users need high-performance random numbers". I need a real actual live user that says "I can't just use rdrand and my own chacha mixing on top" and explains why having a SSE2 chachacha in kernel code exposed as a vdso is so critical, and a magical buffer maintained by the kernel." Torvalds also added in a third message: One final note: the reason I'm so negative about this all is that the random number subsystem has such an absolutely _horrendous_ history of two main conflicting issues: people wanting reasonable usable random numbers on one side, and then the people that discuss what the word "entropy" means on the other side. And honestly, I don't want the kernel stuck even *more* in the middle of that morass.... Torvalds made additional comments. ("This smells. It's BS...") Advocating for the change was WiredGuard developer Jason Donenfeld, and more communication happened (and continues to happen... 40 messages and counting). At one point the discussion evolved to Torvalds saying "Bah. I guess I'll have to walk through the patch series once again. I'm still not thrilled about it. But I'll give it another go..."Read more of this story at Slashdot.
...133134135136137138139140141142...