Slashdot

NBC is developing a game show based on the New York Times' Wordle puzzle, with Today anchor Savannah Guthrie set to host and Jimmy Fallon executive producing through his company, Electric Hot Dog. The Times is also a production partner. From the Hollywood Reporter: Wordle, which the Times acquired in 2022 and logs billions of plays from the paper's games site annually, gives players six tries to guess a five-letter word, revealing only if letters are in the right place (via a green background) or part of the word but in the wrong place (with a gold background). Should it go forward, the Wordle show would join another Fallon-produced game show, Password, on NBC's unscripted roster. The Tonight Show emcee also executive produces and hosts the network's On Brand, a competition series that revolves around advertising and marketing.Read more of this story at Slashdot.

An anonymous reader quotes a report from the New York Times: Over the course of a nearly four-decade career, Cory Doctorow has written 15 novels, four graphic novels, dozens of short stories, six nonfiction books, approximately 60,000 blog posts and thousands of essays. And yet for all the millions of words he's published, these days the award-winning science fiction author and veteran internet activist is best known for just a single one: Enshittification. The term, which Doctorow, 54, popularized in essays in 2022 and 2023, refers to the way that online platforms become worse to use over time, as the corporations that own them try to make more money. Though the coinage is cheeky, in Doctorow's telling the phenomenon it describes is a specific, nearly scientific process that progresses according to discrete stages, like a disease. Since then, the meaning has expanded to encompass a general vibe -- a feeling far greater than frustration at Facebook, which long ago ceased being a good way to connect with friends, or Google, whose search is now baggy with SEO spam. Of late, the idea has been employed to describe everything from video games to television to American democracy itself. "It's frustrating. It's demoralizing. It's even terrifying," Doctorow said in a 2024 speech. On Tuesday, Farrar Straus & Giroux will release "Enshittification: Why Everything Suddenly Got Worse and What to Do About It," Doctorow's book-length elaboration on his essays, complete with case studies (Uber, Twitter, Photoshop) and his prescriptions for change, which revolve around breaking up big tech companies and regulating them more robustly. Further reading: The Enshittification Hall of ShameRead more of this story at Slashdot.

Android Authority notes the start of a new trend we're seeing in some new smartphones: devices shipping without USB cables. It follows the earlier industry shift away from bundled charging bricks, which Apple started back in 2020 with the launch of the iPhone 12. While manufacturers cite environmental benefits, "the main driver behind these decisions for companies like Apple and Sony is, of course, profit," writes Android Authority's Taylor Kerns. From the report: Now, it looks like we may be in for a similar shift with bundled USB cables. As shared on the Linus Tech Tips subreddit, user Brick_Fish's recently purchased Sony Xperia 10 VII came without a charger or a charging cable. In a photo included with the post, you can see iconography on the back of the phone's box that spells out these omissions. Sony's not really a major player in the smartphone space these days, but this seems like the type of trend we should expect to see gain traction over the next couple of years. [...] Apple actually beat Sony to the punch here, in a way. The company's latest earbuds, the AirPods 4 and AirPods Pro 3, both ditched bundled USB cables, as well. Still, Sony's the first manufacturer I've heard of to omit charging cables with its smartphones.Read more of this story at Slashdot.

A now-fixed security flaw in India's income tax e-filing portal exposed millions of taxpayers' personal and financial data due to a basic IDOR vulnerability that let users view others' records by swapping PAN numbers. "The exposed data included full names, home addresses, email addresses, dates of birth, phone numbers, and bank account details of people who pay taxes on their income in India," reports TechCrunch. "The data also exposed citizens' Aadhaar number, a unique government-issued identifier used as proof of identity and for accessing government services." From the report: The researchers found that when they signed into the portal using their Permanent Account Number (PAN), an official document issued by the Indian income tax department, they could view anyone else's sensitive financial data by swapping out their PAN for another PAN in the network request as the web page loads. This could be done using publicly available tools like Postman or Burp Suite (or using the web browser's in-built developer tools) and with knowledge of someone else's PAN, the researchers told TechCrunch. The bug was exploitable by anyone who was logged-in to the tax portal because the Indian income tax department's back-end servers were not properly checking who was allowed to access a person's sensitive data. This class of vulnerability is known as an insecure direct object reference, or IDOR, a common and simple flaw that governments have warned is easy to exploit and can result in large-scale data breaches. "This is an extremely low-hanging thing, but one that has a very severe consequence," the researchers told TechCrunch. In addition to the data of individuals, the researchers said that the bug also exposed data associated with companies who were registered with the e-Filing portal. [...] It remains unclear how long the vulnerability has existed or whether any malicious actors have accessed the exposed data.Read more of this story at Slashdot.

BrianFagioli shares a report from NERDS.xyz: Micro Center and iFixit have announced a partnership that combines the DIY repair giant's guides, parts, and toolkits with Micro Center's nationwide chain of computer and electronics stores. Customers browsing iFixit online can now find local Micro Center locations through a built-in locator and even stop in for a free consultation with a certified technician. Inside stores, shoppers will see iFixit toolkits and parts on shelves, while Micro Center's in-house technicians begin using iFixit's gear for professional repairs.Read more of this story at Slashdot.

An anonymous reader quotes a report from 404 Media: Sora 2, Open AI's new AI video generator, puts a visual watermark on every video it generates. But the little cartoon-eyed cloud logo meant to help people distinguish between reality and AI-generated bullshit is easy to remove and there are half a dozen websites that will help anyone do it in a few minutes. A simple search for "sora watermark" on any social media site will return links to places where a user can upload a Sora 2 video and remove the watermark. 404 Media tested three of these websites, and they all seamlessly removed the watermark from the video in a matter of seconds. Hany Farid, a UC Berkeley professor and an expert on digitally manipulated images, said he's not shocked at how fast people were able to remove watermarks from Sora 2 videos. "It was predictable," he said. "Sora isn't the first AI model to add visible watermarks and this isn't the first time that within hours of these models being released, someone released code or a service to remove these watermarks." [...] According to Farid, Open AI is decent at employing strategies like watermarks, content credentials, and semantic guardrails to manage malicious use. But it doesn't matter. "It is just a matter of time before someone else releases a model without these safeguards," he said. Both [Rachel Tobac, CEO of SocialProof Security] and Farid said that the ease at which people can remove watermarks from AI-generated content wasn't a reason to stop using watermarks. "Using a watermark is the bare minimum for an organization attempting to minimize the harm that their AI video and audio tools create," Tobac said, but she thinks the companies need to go further. "We will need to see a broad partnership between AI and Social Media companies to build in detection for scams/harmful content and AI labeling not only on the AI generation side, but also on the upload side for social media platforms. Social Media companies will also need to build large teams to manage the likely influx of AI generated social media video and audio content to detect and limit the reach for scammy and harmful content." "I'd like to know what OpenAI is doing to respond to how people are finding ways around their safeguards," Farid said. "Will they adapt and strengthen their guardrails? Will they ban users from their platforms? If they are not aggressive here, then this is going to end badly for us all."Read more of this story at Slashdot.

Longtime Slashdot reader schwit1 shares a report from Reuters: OpenAI said on Tuesday it has banned several ChatGPT accounts with suspected links to the Chinese government entities after the users asked for proposals to monitor social media conversations. In its latest public threat report (PDF), OpenAI said some individuals had asked its chatbot to outline social media 'listening' tools and other monitoring concepts, violating the startup's national security policy. The San Francisco-based firm's report raises safety concerns over potential misuse of generative AI amid growing competition between the U.S. and China to shape the technology's development and rules. OpenAI said it also banned several Chinese-language accounts that used ChatGPT to assist phishing and malware campaigns and asked the model to research additional automation that could be achieved through China's DeepSeek. It also banned accounts tied to suspected Russian-speaking criminal groups that used the chatbot to help develop certain malware, OpenAI said.Read more of this story at Slashdot.

Longtime Slashdot reader kamesh shares a report from TechCrunch: Tech behemoth IBM is teaming up with AI research lab Anthropic to bring AI into its software. Armonk, New York-based IBM announced it will be adding Anthropic's Claude large language model family into some of its software products on Tuesday. The first product to tap Claude will be IBM's integrated development environment, which is already available to a select group of customers. IBM also announced it created a guide in partnership with Anthropic on how enterprises can build, deploy, and maintain enterprise-grade AI agents. Terms of the deal were not disclosed.Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Smartphone processor and modem maker Qualcomm is acquiring Arduino, the Italian company known mainly for its open source ecosystem of microcontrollers and the software that makes them function. In its announcement, Qualcomm said that Arduino would "[retain] its brand and mission," including its "open source ethos" and "support for multiple silicon vendors." Qualcomm didn't disclose what it would pay to acquire Arduino. The acquisition also needs to be approved by regulators "and other customary closing conditions." The first fruit of this pending acquisition will be the Arduino Uno Q, a Qualcomm-based single-board computer with a Qualcomm Dragonwing QRB2210 processor installed. The QRB2210 includes a quad-core Arm Cortex-A53 CPU and a Qualcomm Adreno 702 GPU, plus Wi-Fi and Bluetooth connectivity, and combines that with a real-time microcontroller "to bridge high-performance computing with real-time control." "Arduino will retain its independent brand, tools, and mission, while continuing to support a wide range of microcontrollers and microprocessors from multiple semiconductor providers as it enters this next chapter within the Qualcomm family," Qualcomm said in its press release. "Following this acquisition, the 33M+ active users in the Arduino community will gain access to Qualcomm Technologies' powerful technology stack and global reach. Entrepreneurs, businesses, tech professionals, students, educators, and hobbyists will be empowered to rapidly prototype and test new solutions, with a clear path to commercialization supported by Qualcomm Technologies' advanced technologies and extensive partner ecosystem." CNBC notes in its reporting that this acquisition gives Qualcomm "direct access to the tinkerers, hobbyists and companies at the lowest levels of the robotics industry." From the report: Arduino products can't be used to build commercial products but, with chips preinstalled, they're popular for testing out a new idea or proving a concept. Qualcomm hopes that Arduino can help it gain loyalty and legitimacy among startups and builders as robots and other devices increasingly need more powerful chips for artificial intelligence. When some of those experiments become products, Qualcomm wants to sell them its chips commercially.Read more of this story at Slashdot.

U.S. GDP growth in the first half of 2025 was driven almost entirely by investment in data centers and information processing technology. The GDP growth would have been just 0.1% on an annualized basis without these technology-related categories, according to Harvard economist Jason Furman. Investment in information-processing equipment and software accounted for only 4% of U.S. GDP during this period but represented 92% of GDP growth. Renaissance Macro Research estimated in August that the dollar value contributed to GDP growth by AI data-center buildout had surpassed U.S. consumer spending for the first time. Consumer spending makes up two-thirds of GDP. Tech giants including Microsoft, Google, Amazon, Meta and Nvidia poured tens of billions of dollars into building and upgrading data centers.Read more of this story at Slashdot.

An anonymous reader shares a report: Changes are coming to the Play Store in spite of a concerted effort from Google to maintain the status quo. The company asked the US Supreme Court to freeze parts of the Play Store antitrust ruling while it pursued an appeal, but the high court has rejected that petition. That means the first elements of the antitrust remedies won by Epic Games will have to be implemented in mere weeks. The app store case is one of three ongoing antitrust actions against Google, but it's the furthest along of them. Google lost the case in 2023, and in 2024, US District Judge James Donato ordered a raft of sweeping changes aimed at breaking Google's illegal monopoly on Android app distribution. In July, Google lost its initial appeal, leaving it with little time before the mandated changes must begin. [...] The more dramatic changes are not due until July 2026, but this month will still bring major changes to Android apps. Google will have to allow developers to link to alternative methods of payment and download outside the Play Store, and it cannot force developers to use Google Play Billing within the Play Store. Google is also prohibited from setting prices for developers.Read more of this story at Slashdot.

An anonymous reader shares a report: YouTube megastar Jimmy Donaldson, the creator behind the platform's biggest channel MrBeast, is worried there are "scary times" ahead for the creator economy as AI video tools make it increasingly difficult to tell what is real. "When AI videos are just as good as normal videos, I wonder what that will do to YouTube and how it will impact the millions of creators currently making content for a living.. scary times," Donaldson said on X on Sunday. Donaldson's concerns come on the heels of OpenAI's release of a Sora social media platform able to AI generated short-form videos, including of individuals who "upload" themselves onto the app. Meta launched its similar video-generating Vibes platform last month.Read more of this story at Slashdot.

Samsung, Hisense, TCL and Sony presented RGB LED TVs at IFA in Berlin last month. The technology replaces each standard LED backlight with a trio of red, green and blue LEDs to expand the range of colors a screen can display. Each manufacturer is using different name for the technology: Hisense has called it RGB-MiniLED, Samsung named it Micro RGB, Sony introduced Sony RGB Technology, and TCL branded it RGB Micro LED. The companies previously tried other monikers at CES. Avi Greengart of Techsponential told PCMag the difference in color fidelity was not subtle when he viewed Samsung's version. PCMag found the Hisense 116UX the brightest TV with the widest color range he had evaluated. Both the 116-inch Hisense and Samsung's 115-inch model list at $30,000. TCL introduced RGB sets in China at prices starting at the equivalent of $1,150 for a 65-inch model. Greengart cautioned that it remained unclear whether the technology would rapidly decline in price or stay expensive like MicroLED.Read more of this story at Slashdot.

An anonymous reader shares a report: It's been a while since Apple last mocked Windows security, but the iPhone maker has just released an ad that hits Windows hard. The eight-minute commercial pokes fun at the CrowdStrike Blue Screen of Death (BSOD) issue that took down millions of Windows machines last year. Apple's ad follows The Underdogs, a fictional company that's about to attend a trade show, before a PC outage causes chaos and a Blue Screen of Death shuts down machines at the convention. If it wasn't clear Apple was mocking the infamous CrowdStrike incident, an IT expert appears in the middle of the ad and starts discussing kernel-level functionality, the core part of an operating system that has unrestricted access to system memory and hardware.Read more of this story at Slashdot.

The Danish government wants to introduce a ban on several social media platforms for children under the age of 15, as Prime Minister Mette Frederiksen announced Tuesday. From a report: "Mobile phones and social media are stealing our children's childhood," she said in her opening speech to the Danish parliament, the Folketing. "We have unleashed a monster," Frederiksen said, noting that almost all Danish seventh graders, where pupils are typically 13 or 14 years old, own a cellphone. "I hope that you here in the chamber will help tighten the law so that we take better care of our children here in Denmark," she added. However, Frederiksen did not give further details on what such a ban would entail, nor does a bill on an age limit appear in the government's legislative program for the upcoming parliamentary year.Read more of this story at Slashdot.

OpenAI has signed about $1 trillion in deals this year for computing power to run its AI models, commitments that dwarf its revenue and raise questions about how it can fund them. From a report: Monday's deal with chipmaker AMD follows similar agreements with Nvidia, Oracle and CoreWeave, as OpenAI races to find the computing power it thinks it will need to run services such as ChatGPT. The deals would give OpenAI access to more than 20 gigawatts of computing capacity, roughly equivalent to the power from 20 nuclear reactors, over the next decade. Each 1GW of AI computing capacity costs about $50bn to deploy in today's prices, according to estimates by OpenAI executives, making the total cost about $1tn. The deals have bound some of the world's biggest tech groups to OpenAI's ability to become a profitable business that can meet its increasingly steep financial obligations.Read more of this story at Slashdot.

AmiMoJo writes: The Irish Government's basic income scheme for artists is set to become a permanent fixture from next year, with 2,000 new places to be made available under Budget 2026. Minister for Culture Patrick O'Donovan has secured agreement with other government departments to continue and expand the initiative, which had previously operated on a pilot basis. Participants in the scheme receive a weekly payment of $379.50. The pilot programme, launched in 2022, provided basic income support to 2,000 artists and creative arts workers across Ireland. It aimed to support the arts sector's recovery following the COVID-19 pandemic, during which many artists experienced significant income loss due to restrictions on live performances and events. The scheme provides unconditional, regular payments to eligible artists and creative workers, allowing them to focus on their practice without the pressure of commercial viability. It is not means-tested and operates independently of social welfare payments. An independent evaluation of the pilot, published earlier this year, found that recipients reported increased time spent on creative work, reduced financial stress, and improved well-being.Read more of this story at Slashdot.

Gov. Gavin Newsom has signed a law banning excessively loud advertisements on streaming platforms like Netflix, Hulu and Amazon Prime that could become a de facto national standard. From a report: The new California law is aimed at addressing what the Federal Communications Commission has called a "troubling jump" in TV ad noise complaints, fueled by streamers airing commercials louder than the shows and movies they accompany. It's modeled off a federal law passed in 2010 that caps ad volumes on cable and broadcast TV, but doesn't apply to streaming services. Given the Golden State's massive sway in the entertainment industry, the new law may strong-arm streamers into shushing commercials nationwide. "We heard Californians loud and clear, and what's clear is that they don't want commercials at a volume any louder than the level at which they were previously enjoying a program," Newsom said in a statement. "California is dialing down this inconvenience across streaming platforms."Read more of this story at Slashdot.

The New York Times: John Clarke, Michel H. Devoret and John M. Martinis were awarded the Nobel Prize in Physics on Tuesday in Sweden for showing that two properties of quantum mechanics, the physical laws that rule the subatomic realm, could be observed on a system large enough to see with the naked eye. They will share a prize of 11 million Swedish kroner, or around $1.17 million. "There is no advanced technology today that does not rely on quantum mechanics," Olle Eriksson, chairman of the Nobel Committee for Physics, said during the announcement of the award. The laureates' discoveries, he added, paved the way for technologies like the cellphone, cameras and fiber optic cables. It also helped lay the groundwork for current attempts to build a quantum computer, a device that could compute and process information at speeds that would not be possible with classical computer. Martinis worked at Google from 2014 to 2020 to build a quantum computer and led the quantum supremacy experiment in 2019. Devoret is cited in Google's recent breakthrough where its Willow quantum chip solved a problem in five minutes that the world's most advanced supercomputer could never solve. The three laureates conducted experiments with electrical circuits that demonstrated quantum mechanical tunneling and quantized energy levels in systems large enough to hold in the hand. Clarke is a professor at the University of California, Berkeley. Devoret joined his research group in the 1980s and is now at Yale University and UC Santa Barbara. Martinis also joined the group in the 1980s and is currently at UC Santa Barbara and co-founded Qolab, a startup developing utility-scale superconducting quantum computers.Read more of this story at Slashdot.

India's electricity grid is struggling to accommodate the nation's economic expansion and isn't adequately equipped to handle future data center demand. Goldman Sachs estimates that power required from utilities needs roughly 7.2% annual growth between fiscal years 2025 and 2035, up from a prior 5.6%. India's data center base sits in the low single gigawatts today, but Bernstein forecasts reach 5 to 6 gigawatts by 2030. AI servers draw five to seven times the power of a legacy server rack, according to HSBC. Solar farms can be built in 12 to 24 months, but they flood the grid when daytime demand is comparatively low and then fade as households and commercial loads climb after 5 PM. On Goldman's full-year models, the system runs a 1 to 4% energy deficit by fiscal years 2034 through 2035. Assessments suggest India may need roughly 140 gigawatts of additional coal capacity by fiscal year 2035 versus 2023 levels. The government's current target is roughly 87 gigawatts by fiscal year 2032. Coal plants can run around the clock and can ramp up production during the evening hours to meet surging demand. Some of this coal is bridge capacity to stabilize a faster greening grid, but the scale required exceeds what policymakers have publicly acknowledged or what most analysts expected even two years ago.Read more of this story at Slashdot.

An anonymous reader quotes a report from The Hill: A Senate report released (PDF) Monday says AI and automation could replace nearly 100 million jobs across various industries over the next decade. The report, conducted by Democratic staffers on the Senate Health, Education, Labor and Pensions (HELP) Committee, led by Sen. Bernie Sanders (I-Vt.), outlines how AI and automation will impact the American economy and workforce. Sanders, the ranking member on the HELP Committee, has warned of the consequences widespread use of AI and automation can have for workers. As part of their investigation, staffers asked ChatGPT, OpenAI's chatbot, to predict the impact of AI and automation on certain industries. Of the 20 workforces ChatGPT said would be most affected by the technological rush, 15 will see more than half of their workforces replaced by AI and automation over the next decade. The workforce most impacted will be fast food and counter employees. According to the report, more than 3 million fast food and counter workers will be replaced over the next 10 years, accounting for 89 percent of the workforce. Other workforces that will be significantly affected include customer service representatives, laborers and freight, stock and material movers and secretaries and executive assistants -- not including legal, medical and executive positions. The report said that 83 percent, 81 percent and 80 percent of those workforces, respectively, will be replaced in the next decade. [...] Sanders, in a Fox News op-ed published Monday, doubled down on the report's findings, saying increased technological capacity risks "dehumanizing" individuals. "We do not simply need a more 'efficient' society," Sanders said. "We need a world where people live healthier, happier and more fulfilling lives."Read more of this story at Slashdot.

Microsoft is eliminating all known workarounds that let users install Windows 11 without an internet connection or Microsoft account, forcing everyone through the online setup process. The Verge reports: "We are removing known mechanisms for creating a local account in the Windows Setup experience (OOBE)," says Amanda Langowski, the lead for the Windows Insider Program. "While these mechanisms were often used to bypass Microsoft account setup, they also inadvertently skip critical setup screens, potentially causing users to exit OOBE with a device that is not fully configured for use." The changes mean Windows 11 users will need to complete the OOBE screens with an internet connection and Microsoft account in future versions of the OS. Microsoft already removed the "bypassnro" workaround earlier this year, and today's changes also disable the "start ms-cxh:localonly" command that Windows 11 users discovered after Microsoft's previous changes. Using this command now resets the OOBE process and it fails to bypass the Microsoft account requirement.Read more of this story at Slashdot.

alternative_right shares a report from ScienceDaily: Scientists may have finally uncovered the mystery behind ultra-high-energy cosmic rays -- the most powerful particles known in the universe. A team from NTNU suggests that colossal winds from supermassive black holes could be accelerating these particles to unimaginable speeds. These winds, moving at half the speed of light, might not only shape entire galaxies but also fling atomic nuclei across the cosmos with incredible energy. [...] But what on earth does that mean? The Milky Way is the neighborhood in the universe where you and I live. Our Sun and solar system are part of this galaxy, along with at least 100 billion other stars. "There is a black hole called Sagittarius-A* located right in the centre of the Milky Way. This black hole is currently in a quiet phase where it isn't consuming any stars, as there is not enough matter in the vicinity," [said postdoctoral fellow Enrico Peretti from the Universite Paris Cite]. This contrasts with growing, supermassive, active black holes that consume up to several times the mass of our own Sun each year. "A tiny portion of the material can be pushed away by the force of the black hole before it is pulled in. As a result, around half of these supermassive black holes create winds that move through the universe at up to half the speed of light," Peretti said. We have known about these gigantic winds for approximately ten years. The winds from these black holes can affect galaxies. By blowing away gases, they can prevent new stars from forming, for example. This is dramatic enough in itself, but Oikonomou and her colleagues looked at something else, much smaller, that these winds could be the cause of." It is possible that these powerful winds accelerate the particles that create the ultra-high-energy radiation," said [lead author Domenik Ehlert]. The findings have been published in the journal Monthly Notices of the Royal Astronomical Society.Read more of this story at Slashdot.

An anonymous reader quotes a report from The Guardian: The heads of UK physics departments say their subject is facing a national crisis as one in four warns that their university departments are in danger of closing because of funding pressures. In an anonymous survey of department heads by the Institute of Physics (IoP), 26% said they faced potential closure of their department within the next two years, while 60% said they expected courses to be reduced. Four out of five departments said they were making staff cuts, and many were considering mergers or consolidation in what senior physicists described as a severe threat to the UK's future success. [...] To avoid "irreversible damage", the IoP is asking for immediate government action including funding to support existing labs and research facilities, as well as setting up an "early warning system" to monitor departments at risk of closure, and reduce pressures affecting international student recruitment. In the longer term it is calling for radical reforms in higher education funding to allow universities to meet the full costs of teaching nationally important subjects such as physics. Sir Keith Burnett, the IoP's president and a former chair of physics at Oxford University, said: "While we understand the pressures on public finances, it would be negligent not to sound the alarm for a national capability fundamental to our wellbeing, competitiveness and the defense of the realm. "We are walking towards a cliff edge but there is still time to avert a crisis which would lead not just to lost potential but to many physics departments shutting down altogether. Physics researchers and talented physics students are our future but if action isn't taken now to stabilize, strengthen and sustain one of our greatest national assets, we risk leaving them high and dry." Thomas said the erosion in value of domestic tuition fees and falling numbers of international students were behind the financial pressures, with smaller physics departments the most at risk. "What that means is we will get more and more concentration of where physics is being taught and lose geographical distribution. That goes against aims of widening participation and means some disadvantaged groups will miss out on opportunities to study physics, and it's important that we recognize that," Thomas said.Read more of this story at Slashdot.

Paramount has acquired The Free Press, Bari Weiss's Substack-born media outlet, for $150 million and appointed Weiss as editor-in-chief of CBS News. The move effectively places a conservative-leaning Substack writer at the helm of a legacy news network, following the FCC's approval of the Skydance-Paramount merger, which required CBS to feature a broader "diversity of viewpoints from across the political and ideological spectrum." The Verge reports: Before starting The Free Press, Weiss worked as an op-ed and book review editor at The Wall Street Journal from 2013 to 2017 and later became an op-ed editor and writer at The New York Times to expand the publication's stable of conservative columnists during Donald Trump's first term. She resigned from the NYT in 2020, citing an "illiberal environment." Weiss started a Substack newsletter in 2021, called Common Sense, which later evolved into The Free Press, touting itself as a media company "built on the ideals that were once the bedrock of great American journalism." As noted in the press release, The Free Press has grown its revenue 82 percent over the past year, while subscribers increased 86 percent to 1.5 million, 170,000 of which are paid subscriptions.Read more of this story at Slashdot.

AstraZeneca has licensed Algen Biotechnologies' AI-powered gene-editing platform, AlgenBrain, to develop immune-related therapies in a deal worth up to $555 million. Reuters reports: AstraZeneca will get exclusive rights to develop and sell approved therapies, if any, that target immune system-related disorders in exchange for upfront and milestone payments to Algen. AstraZeneca has been advancing its cell and gene therapy capabilities through acquisitions and partnerships as it works towards its target of $80 billion in sales by 2030. Globally too, drugmakers are increasingly turning to artificial intelligence for drug development. Monday's deal, however, does not include AstraZeneca buying a stake in the company, Algen CEO and co-founder Chun-Hao Huang told Reuters in an interview. "Together with AstraZeneca's deep expertise in translational science and clinical development, we aim to uncover new biological insights to accelerate the development of novel therapies," Huang said. Algen was spun out from the UC Berkeley lab where biochemist Jennifer Doudna pioneered the CRISPR technology that won her the Nobel Prize. The biotech firm's AI platform, AlgenBrain, can map genes to disease outcomes, helping the companies decide their development focus for targeted therapies.Read more of this story at Slashdot.

California biotech entrepreneur and former magician Serhat Gumrukcu has been found guilty of orchestrating the 2018 murder of his business rival Gregory Davis, who had threatened to expose Gumrukcu's fraudulent dealings. He faces sentencing in November. SFGATE reports: Seven years ago, Turkish national Serhat Gumrukcu, 42, of Los Angeles, was negotiating a multimillion-dollar biotech merger built off his work on a supposed HIV cure. The deal was put in jeopardy by a former business partner named Gregory Davis, 49, who had threatened to bring legal action against Gumrukcu for fraudulent activities relating to a previous failed oil commodities deal, the U.S. Attorney's Office said in a news release last week. Gumrukcu, a magician-turned-scientist who admitted to buying his medical degree from a Russian university, lived in a Hollywood mansion and partied with Oscar winners and movie producers, according to VTDigger. He stood to make millions from the merger of his biotech company Enochian BioSciences. [...] In 2017, upon learning that Davis, a father of six from Danville, Vermont, could potentially spoil his fortune-making deal, Gumrukcu set in motion a hit on the former business partner. The murder-for-hire plot involved four men in total, prosecutors said. Gumrukcu had a close friend from Las Vegas, Berk Eratay, approach a third man, Aron Ethridge to find a hit man to kill Davis. The shooter, 37-year-old Montana man Jerry Banks, arrived at Davis' home on Jan. 6, 2018, in a vehicle fitted with flashing red and blue lights and posed as a deputy U.S. marshal. After abducting Davis, Banks shot him dead in the vehicle and left the body partially buried in a snowbank nearby. Investigators soon narrowed in on Gumrukcu after discovering emails between him and Davis revealing tensions over the failed oil deal. Gumrukcu was interviewed twice by the FBI and made false statements on both occasions, federal prosecutors said. Further inspection of cellphone data, bank information and messages identified the four men involved in the kidnapping and killing of Davis.Read more of this story at Slashdot.

An anonymous reader quotes a report from BleepingComputer: The Redis security team has released patches for a maximum severity vulnerability that could allow attackers to gain remote code execution on thousands of vulnerable instances. Redis (short for Remote Dictionary Server) is an open-source data structure store used in approximately 75% of cloud environments, functioning like a database, cache, and message broker, and storing data in RAM for ultra-fast access. The security flaw (tracked as CVE-2025-49844) is caused by a 13-year-old use-after-free weakness found in the Redis source code and can be exploited by authenticated threat actors using a specially crafted Lua script (a feature enabled by default). Successful exploitation enables them to escape the Lua sandbox, trigger a use-after-free, establish a reverse shell for persistent access, and achieve remote code execution on the targeted Redis hosts. After compromising a Redis host, attackers can steal credentials, deploy malware or cryptocurrency mining tools, extract sensitive data from Redis, move laterally to other systems within the victim's network, or use stolen information to gain access to other cloud services. "This grants an attacker full access to the host system, enabling them to exfiltrate, wipe, or encrypt sensitive data, hijack resources, and facilitate lateral movement within cloud environments," said Wiz researchers, who reported the security issue at Pwn2Own Berlin in May 2025 and dubbed it RediShell. While successful exploitation requires attackers first to gain authenticated access to a Redis instance, Wiz found around 330,000 Redis instances exposed online, with at least 60,000 of them not requiring authentication. Redis and Wiz urged admins to patch their instances immediately by applying security updates released on Friday, "prioritizing those that are exposed to the internet." To further secure their Redis instances against remote attacks, admins can also enable authentication, disable Lua scripting and other unnecessary commands, launch Redis using a non-root user account, enable Redis logging and monitoring, limit access to authorized networks only, and implement network-level access controls using firewalls and Virtual Private Clouds (VPCs).Read more of this story at Slashdot.

Bloomberg reports (paywalled) that Apple's hardware chief John Ternus is the frontrunner to replace Tim Cook as CEO, as Cook nears retirement and prepares to transition into a board chairman role. The Economic Times reports: Cook is turning 65 next month. Chief operating officer John Williams -- once heir apparent -- has handed over the reins of day-to-day operations to Sabih Khan and is on his way out. Even as Cook steps down as CEO, he will stay involved in some capacity, likely as board chairman. [...] While Khan and Apple's retail chief Deirdre O'Brien can run daily operations, Ternus remains the leading contender for the corner office after Cook, Gurman said. Firstly, he is 50 years old -- the same as Cook when he became CEO -- giving him over a decade to hold the office, he noted. Secondly, Apple needs a technologist instead of a sales person at the helm, considering the company's ambitions, Gurman wrote in the newsletter. While the Cupertino tech giant has managed to expand its homegrown line of chipsets, and the recently launched iPhone 17 lineup is drawing in customers, the company has struggled to find success in categories such as mixed reality, generative artificial intelligence (AI), smart homes and autonomous driving. Ternus was in the spotlight during Apple's annual hardware event in September, which saw the launch of the iPhone 17 Air, the first major design overhaul for the smartphone family in a long time. Over the years, he has gained more responsibilities under Cook, taking calls on product roadmaps, features and strategies, overseeing matters beyond the traditional scope of a hardware engineering chief, Gurman said.Read more of this story at Slashdot.

Police arrested 33-year-old Joseph Mayuyo after a series of online threats forced TikTok to evacuate its Culver City headquarters. TechCrunch reports: A press release from the Culver City Police Department says that TikTok employees reported receiving multiple threats, across various social media platforms, from 33-year-old Hawthorne resident Joseph Mayuyo. After an additional message threatened TikTok's Culver City headquarters, police say company security evacuated the office "out of an abundance of caution." Police then investigated Mayuyo's home, according to the press release. During the investigation, he allegedly posted additional threatening statements, including one declaring that he would not be taken alive. Detectives obtained search and arrest warrants, and they negotiated with Mayuyo for 90 minutes before he voluntarily exited his home and was taken into custody, the police department says. Business Insider reports that one TikTok employee described the threats as "really scary," while another was concerned that they seemed to specifically target the e-commerce department. Mayuyo's X account has reportedly been suspended for violating the platform's hateful content policy. A Medium account under his name published a post in July criticizing TikTokShop USA as a "scam."Read more of this story at Slashdot.

An anonymous reader quotes a report from The Verge: OpenAI is introducing a way to work with apps right inside ChatGPT. The idea is that, from within a conversation with the chatbot, you can essentially tag in apps to help you complete a task while ChatGPT offers context and advice. [...] Apps available inside ChatGPT starting today will include Booking.com, Canva, Coursera, Expedia, Figma, Spotify, and Zillow. In the "weeks ahead," OpenAI will add more apps, such as DoorDash, OpenTable, Target, and Uber. [...] Developers can access the SDK for making apps in preview starting today. Later this year, developers will be able to submit apps for review and publication, and OpenAI also plans to offer a directory for users to browse apps, according to OpenAI CEO Sam Altman. The company will share guidance about monetization "soon," Altman says. Last week, ChatGPT unveiled a new feature called "Instant Checkout" that lets users buy stuff directly through its chatbot -- "part of its overall push to integrate it with the rest of the web," reports The Verge.Read more of this story at Slashdot.

Porsche's wireless charging system will not be available on the Macan Electric and Taycan because the inductive charging plate cannot physically fit between the front suspension on those models. Dr. Maximilian Muller, Porsche's high voltage engineering lead, told The Drive during a visit to the company's Leipzig facility that the Cayenne Electric's larger dimensions create the necessary space for the charging hardware beneath the front motor. The Cayenne Electric is wider than both the Taycan and Macan Electric. The larger vehicle forced Porsche to design different suspension geometry even though it shares the PPE platform with the Macan Electric. The changes create additional packaging constraints that prevent retrofitting the wireless charging system into existing electric models.Read more of this story at Slashdot.

An anonymous reader shares a report: Pay-advance apps are marketed as a way to help workers living paycheck to paycheck pay for unexpected expenses, but workers are often using the apps to manage basic expenses like groceries, rent and other needs, a new report found. The tools, consumer advocates say, can carry costs akin to those of traditional payday loans. An analysis of anonymous data found worrisome behavior among users of the apps, including quick increases in the number of advances, advances from multiple apps at the same time and more frequent bank overdraft fees. "These findings reveal persistent patterns of financial strain that raise serious concerns about the long-term effects of these loans," said the report from the Center for Responsible Lending, a nonprofit consumer advocacy group. The group analyzed data from SaverLife, a nonprofit that promotes saving and sound financial practices among people with low or moderate incomes. The analysis found that heavy users of the apps paid $421, on average, in total loan and overdraft fees over a year, or almost triple the average paid by moderate users.Read more of this story at Slashdot.

BrianFagioli writes: Canonical has revealed the codename for Ubuntu 26.04 LTS: Resolute Raccoon. The announcement came today on X through the official @ubuntu account, continuing the tradition of pairing an adjective with an animal for each release. As an LTS version, it will be supported for five years and serve as the foundation for servers, desktops, and cloud deployments when it launches in April 2026. While the name itself is now public, the features of Ubuntu 26.04 remain under wraps. The community will be watching closely to see which kernel it ships with, how GNOME evolves, and what improvements land for enterprise and container use. For now, fans simply have a raccoon mascot to rally around as the countdown to April begins.Read more of this story at Slashdot.

Microsoft said in a statement Monday it remains committed to developing first-party Xbox consoles. The reassurance came after rumors circulated suggesting the gaming division might abandon hardware manufacturing. The speculation gained traction following a 50% price increase for Xbox Game Pass Ultimate and retailers including Costco removing Xbox products from their shelves. Microsoft said it is "actively investing in our future first-party consoles and devices designed, engineered and built by Xbox." The company's multi-year partnership with AMD for next-generation hardware also continues. Devices in development include the Xbox Ally range under codenames Omni and Horseman, according to Windows Central. Xbox Series X and Series S production has also not stopped, the report added.Read more of this story at Slashdot.

An anonymous reader shares a report: OpenAI CEO Sam Altman said Monday that ChatGPT has reached 800 million weekly active users, marking an increase of adoption among consumers, developers, enterprises, and governments. ChatGPT's impressive growth comes as OpenAI is on a race to secure as many AI chips and build as much AI infrastructure as possible. In August, OpenAI said it was on the cusp of reaching 700 million weekly active users, already an increase from 500 million weekly active users at the end of March. "Today, 4 million developers have built with OpenAI," Altman said. "More than 800 people use ChatGPT every week, and we process over 6 billion tokens per minute on the API. Thanks to all of you, AI has gone from something people build play with to something people build with every day." Altman made the announcement during the keynote presentation for OpenAI's Dev Day, which also included announcement for new tools for building apps inside of ChatGPT, as well as constructing more complex agentic systems. "This will enable a new generation of apps that are interactive, adaptive, and personalized, that you can chat with," Altman said.Read more of this story at Slashdot.

An anonymous reader shares a report: Tucked in the foothills of Tennessee's Smoky Mountains is a factory that has figured out a way to manufacture in America that's cheaper, quicker and better. It's the home of a famous American writing implement: the Sharpie marker. Pen barrels whirl along automated assembly lines that rapidly fill them with ink. At least half a billion Sharpie markers are churned out here every year, each one made of six parts. Only the felt tip is imported, from Japan. It didn't used to be this way. Back in 2018, many Sharpies were made abroad. That's when Chris Peterson, who was the CFO of Sharpie maker Newell Brands challenged his team to answer a question: How could they keep Newell from becoming obsolete compared with factories in Asia? "I felt like we had an opportunity to dramatically improve our U.S. manufacturing," he said. Peterson is now the CEO. And these days, most Sharpies -- in all 93 colors -- are made at this 37-year-old factory. Newell did it without reducing the employee count, and without raising prices. But to get to this place took close to $2 billion in investments across the company, thousands of hours of training and a total overhaul of the production process. The result is a playbook for making low-cost, high-volume products domestically, albeit one that requires long-term planning and a lot of investment.Read more of this story at Slashdot.

Deforestation is draining color from butterfly populations in Brazil. Researchers studying butterflies in the state of EspArito Santo found 31 species in natural forests but only 21 in eucalyptus plantations. The plantation communities were dominated by brown-colored species. Roberto GarcAa-Roa, part of the research project, said the colors on butterfly wings have been designed over millions of years. Lead researcher Maider Iglesias-Carrasco from the University of Copenhagen observed a general feeling of emptiness in the plantations. Ricardo Spaniol from the Federal University of Rio Grande do Sul discovered in 2019 that the most colorful Amazonian species often disappear first after deforestation, probably because of the loss of native vegetation and increased exposure to predators. Eucalyptus plantations cover at least 22 million hectares around the world. Spaniol's research found that forested Amazon habitats regenerating for 30 years after use as cattle pasture showed a remarkable increase in butterfly color diversity.Read more of this story at Slashdot.

Deloitte will partially refund payment for an Australian government report that contained multiple errors after admitting it was partly produced by AI [non-paywalled source]. From a report: The Big Four accountancy and consultancy firm will repay the final instalment of its government contract after conceding that some footnotes and references it contained were incorrect, Australia's Department of Employment and Workplace Relations said on Monday. The department had commissioned a A$439,000 ($290,300) "independent assurance review" from Deloitte in December last year to help assess problems with a welfare system for automatically penalising jobseekers. The Deloitte review was first published earlier this year, but a corrected version was uploaded on Friday to the departmental website. In late August the Australian Financial Review reported that the document contained multiple errors, including references and citations to non-existent reports by academics at the universities of Sydney and Lund in Sweden. The substance of the review and its recommendations had not changed, the Australian government added. The contract will be made public once the transaction is completed, it said.Read more of this story at Slashdot.

European labor regulations enacted nearly a century ago now impose costs on companies that discourage investment in disruptive technologies. An American firm shedding workers incurs costs equivalent to seven months of wages per employee. In Germany the figure reaches 31 months. In France it reaches 38 months. The expense extends beyond severance pay and union negotiations. Companies retain unproductive workers they would prefer to dismiss. New investments face delays of years as dismissed employees are gradually replaced. Olivier Coste, a former EU official turned tech entrepreneur, and economist Yann Coatanlem tracked these opaque restructuring costs and found that European firms avoid risky ventures because of them. Large companies typically finance ten risky projects where eight fail and require mass redundancies. Apple developed a self-driving car for years before abandoning the effort and firing 600 employees in 2024. The two successful projects generate profits worth many times the invested sums. This calculus works in America where failure costs remain low. In Europe the same bet becomes financially unviable. European blue-chip firms sell products that are improved versions of what they sold in the 20th century -- turbines, shampoos, vaccines, jetliners. American star firms peddle AI chatbots, cloud computers, reusable rockets. Nvidia is worth more than the European Union's 20 biggest listed firms combined. Microsoft, Google, and Meta each fired over 10,000 staff in recent years despite thriving businesses. Satya Nadella called firing people during success the "enigma of success." Bosch and Volkswagen recently announced layoffs with timelines stretching to 2030.Read more of this story at Slashdot.

Fortune tested the AI Friend necklace for two weeks and found it struggled to perform its basic function. The $129 pendant missed conversations entirely during the author's breakup call and could only offer vague questions about "fragments" when she tried to ask for advice. The device lagged seven to ten seconds behind her speech and frequently disconnected. The author had to press her lips against the pendant and repeat herself multiple times to get coherent replies. After a week and a half the necklace forgot her name and later misremembered her favorite color. The startup has raised roughly seven million dollars in venture capital for the product and spent a large portion on eleven thousand subway posters across the MTA system. Sales reached three thousand units but only one thousand have shipped. The company brought in slightly under four hundred thousand dollars in revenue. The startup told Fortune he deliberately "lobotomized" the AI's personality after receiving complaints. The terms of service require arbitration in San Francisco and grant the company permission to collect audio and voice data for AI training.Read more of this story at Slashdot.

Mary E. Brunkow, Fred Ramsdell and Shimon Sakaguchi received the Nobel Prize in Physiology or Medicine on Monday for their discoveries about how the immune system regulates itself. The three researchers split 11 million Swedish kroner ($1.17 million). Their work identified regulatory T cells and the FOXP3 gene that controls them. Dr. Sakaguchi spent more than a decade solving a puzzle about the thymus. He discovered that the immune system has a backup mechanism to stop harmful cells from attacking the body's own tissues. Dr. Brunkow and Dr. Ramsdell found the specific gene responsible for this process while studying mice that developed severe autoimmune disease. More than 200 clinical trials are now underway based on their research. Cancers attract regulatory T cells to block immune attacks. Researchers are developing drugs to turn the immune system against these cancer cells. In autoimmune diseases, regulatory T cells are missing or defective. The FOXP3 gene provides a starting point for drugs that teach the immune system to stop attacking itself.Read more of this story at Slashdot.

OpenAI and AMD announced a multibillion-dollar partnership on Monday for AI data centers running on AMD processors. OpenAI committed to purchasing 6 gigawatts worth of AMD's MI450 chips starting next year through direct purchases or through its cloud computing partners. AMD chief Lisa Su said the deal will result in tens of billions of dollars in new revenue over the next half-decade. OpenAI will receive warrants for up to 160 million AMD shares at 1 cent per share, representing roughly 10% of the chip company. The warrants will be awarded in phases if OpenAI hits certain deployment milestones. The partnership marks AMD's biggest win in its quest to disrupt Nvidia's dominance among AI semiconductor companies. Mizuho Securities estimates that Nvidia controls more than 70% of the market for AI chips.Read more of this story at Slashdot.

Vibe coding tools "are transforming the job experience for many tech workers," writes the Los Angeles Times. But Gartner analyst Philip Walsh said the research firm's position is that AI won't replace software engineers and will actually create a need for more."There's so much software that isn't created today because we can't prioritize it," Walsh said. "So it's going to drive demand for more software creation, and that's going to drive demand for highly skilled software engineers who can do it..." The idea that non-technical people in an organization can "vibe-code" business-ready software is a misunderstanding [Walsh said]... "That's simply not happening. The quality is not there. The robustness is not there. The scalability and security of the code is not there," Walsh said. "These tools reward highly skilled technical professionals who already know what 'good' looks like." "Economists, however, are also beginning to worry that AI is taking jobs that would otherwise have gone to young or entry-level workers," the article points out. "In a report last month, researchers at Stanford University found "substantial declines in employment for early-career workers'' - ages 22-25 - in fields most exposed to AI. Stanford researchers also found that AI tools by 2024 were able to solve nearly 72% of coding problems, up from just over 4% a year earlier." And yet Cat Wu, project manager of Anthropic's Claude Code, doesn't even use the term vibe coding. "We definitely want to make it very clear that the responsibility, at the end of the day, is in the hands of the engineers."Wu said she's told her younger sister, who's still in college, that software engineering is still a great career and worth studying. "When I talk with her about this, I tell her AI will make you a lot faster, but it's still really important to understand the building blocks because the AI doesn't always make the right decisions," Wu said. "A lot of times the human intuition is really important."Read more of this story at Slashdot.

Steve Jobs died 14 years ago. But the blog Cult of Mac remembers that "Jobs himself was not sentimental."When he left Apple in the mid-1980s, he didn't even clear out his office. That meant personal mementos like his first Apple stock certificate, which had hung on his office wall, got tossed in the trash. Shortly after returning to Apple in the late 1990s, he gave the company's historical archive to Stanford University Libraries. The stash included records that Apple management kept since the mid-1980s. The reason Apple handed over this historical treasure trove? Jobs didn't want the company to fixate on the past... All of which goes some way to saying why it was so heartening that Steve Jobs' death received so much attention. He wasn't the richest technology CEO to die. But the reaction showed that his life - faults and all - meant a lot to a great number of people. Jobs helped create products people cared about, and in turn they cared about him. The site Mac Rumors remembered Sunday that Jobs "died just one day after Apple unveiled the iPhone 4S and Siri." Six years later, Apple CEO Tim Cook reflected on Jobs while opening Apple's first-ever event at Steve Jobs Theater in 2017. "There is not a day that goes by that we don't think about him." And Sunday Cook posted this remembrance of Steve Jobs. "Steve saw the future as a bright and boundless place, lit the path forward, and inspired us to follow. "We miss you, my friend."Read more of this story at Slashdot.

The director of a tour operation remembers two tourists arriving in a rural town in Peru determined to hike alone in the mountains to a sacred canyon recommended by their AI chatbot. But the canyon didn't exists - and a high-altitude hike could be dangerous (especially where cellphone coverage is also spotty). They're part of a BBC report on travellers arriving at their destination "only to find they've been fed incorrect information or steered to a place that only exists in the hard-wired imagination of a robot..." "According to a 2024 survey, 37% of those surveyed who used AI to help plan their travels reported that it could not provide enough information, while around 33% said their AI-generated recommendations included false information." Some examples?- Dana Yao and her husband recently experienced this first-hand. The couple used ChatGPT to plan a romantic hike to the top of Mount Misen on the Japanese island of Itsukushima earlier this year. After exploring the town of Miyajima with no issues, they set off at 15:00 to hike to the montain's summit in time for sunset, exactly as ChatGPT had instructed them. "That's when the problem showed up," said Yao, a creator who runs a blog about traveling in Japan, "[when] we were ready to descend [the mountain via] the ropeway station. ChatGPT said the last ropeway down was at 17:30, but in reality, the ropeway had already closed. So, we were stuck at the mountain top..." - A 2024 BBC article reported that [dedicated travel AI site] Layla briefly told users that there was an Eiffel Tower in Beijing and suggested a marathon route across northern Italy to a British traveller that was entirely unfeasible... - A recent Fast Company article recounted an incident where a couple made the trek to a scenic cable car in Malaysia that they had seen on TikTok, only to find that no such structure existed. The video they'd watched had been entirely AI generated, either to drum up engagement or for some other strange purpose. Rayid Ghani, a distinguished professor in machine learning at Carnegie Melon University, tells them that an AI chatbot "doesn't know the difference between travel advice, directions or recipes. It just knows words. So, it keeps spitting out words that make whatever it's telling you sound realistic..."Read more of this story at Slashdot.

If we could remove the 50 most concerning pieces of space debris in low-Earth orbit, there'd be a 50% reduction in the overall debris-generating potential, reports Ars Technica. That's according to Darren McKnight, lead author of a paper presented Friday at the International Astronautical Congress in Sydney, which calculated the objects most likely to collide with other fragments and create more debris. (Russia and the Soviet Union lead with 34 objects, followed by China with 10, the U.S. with three, Europe with two, and Japan with one.) Even just the top 10 were removed, the debris-generating potential drops by 30%. "The things left before 2000 are still the majority of the problem," he points out, and "76% of the objects in the top 50 were deposited last century." 88% of the objects are post-mission rocket bodies left behind to hurtle through space. "The bad news is, since January 1, 2024, we've had 26 rocket bodies abandoned in low-Earth orbit that will stay in orbit for more than 25 years," McKnight told Ars... China launched 21 of the 26 hazardous new rocket bodies over the last 21 months, each averaging more than 4 metric tons (8,800 pounds). Two more came from US launchers, one from Russia, one from India, and one from Iran. This trend is likely to continue as China steps up deployment of two megaconstellations - Guowang and Thousand Sails - with thousands of communications satellites in low-Earth orbit. Launches of these constellations began last year. The Guowang and Thousand Sails satellites are relatively small and likely capable of maneuvering out of the way of space debris, although China has not disclosed their exact capabilities. However, most of the rockets used for Guowang and Thousand Sails launches have left their upper stages in orbit. McKnight said nine upper stages China has abandoned after launching Guowang and Thousand Sails satellites will stay in orbit for more than 25 years, violating the international guidelines. It will take hundreds of rockets to fully populate China's two major megaconstellations. The prospect of so much new space debris is worrisome, McKnight said. "In the next few years, if they continue the same trend, they're going to leave well over 100 rocket bodies over the 25-year rule if they continue to deploy these constellations," he said. "So, the trend is not good...." Since 2000, China has accumulated more dead rocket mass in long-lived orbits than the rest of the world combined, according to McKnight. "But now we're at a point where it's actually kind of accelerating in the last two years as these constellations are getting deployed." A deputy head of China's national space agency recently said China is "currently researching" how to remove space debris from orbit, according to the article. ("One of the missions China claims is testing space debris mitigation techniques has docked with multiple spacecraft in orbit, but U.S. officials see it as a military threat. The same basic technologies needed for space debris cleanup - rendezvous and docking systems, robotic arms, and onboard automation - could be used to latch on to an adversary's satellite.")Read more of this story at Slashdot.

"Recent attacks show that hackers keep using the same tricks to sneak bad code into popular software registries," writes long-time Slashdot reader selinux geek, suggesting that "the real problem is how these registries are built, making these attacks likely to keep happening."After all, npm wasn't the only software library hit by a supply chain attack, argues the Linux Security blog. "PyPI and Docker Hub both faced their own compromises in 2025, and the overlaps are impossible to ignore." Phishing has always been the low-hanging fruit. In 2025, it wasn't just effective once - it was the entry point for multiple registry breaches, all occurring close together in different ecosystems... The real problem isn't that phishing happened. It's that there weren't enough safeguards to blunt the impact. One stolen password shouldn't be all it takes to poison an entire ecosystem. Yet in 2025, that's exactly how it played out... Even if every maintainer spotted every lure, registries left gaps that attackers could walk through without much effort. The problem wasn't social engineering this time. It was how little verification stood between an attacker and the "publish" button. Weak authentication and missing provenance were the quiet enablers in 2025... Sometimes the registry itself offers the path in. When the failure is at the registry level, admins don't get an alert, a log entry, or any hint that something went wrong. That's what makes it so dangerous. The compromise appears to be a normal update until it reaches the downstream system... It shifts the risk from human error to systemic design. And once that weakly authenticated code gets in, it doesn't always go away quickly, which leads straight into the persistence problem... Once an artifact is published, it spreads into mirrors, caches, and derivative builds. Removing the original upload doesn't erase all the copies... From our perspective at LinuxSecurity, this isn't about slow cleanup; it's about architecture. Registries have no universally reliable kill switch once trust is broken. Even after removal, poisoned base images replicate across mirrors, caches, and derivative builds, meaning developers may keep pulling them in long after the registry itself is "clean." The article condlues that "To us at LinuxSecurity, the real vulnerability isn't phishing emails or stolen tokens - it's the way registries are built. They distribute code without embedding security guarantees. That design ensures supply chain attacks won't be rare anomalies, but recurring events."BR> So in a world where "the only safe assumption is that the code you consume may already be compromised," they argue, developers should look to controls they can enforce themselves: Verify artifacts with signatures or provenance tools. Pin dependencies to specific, trusted versions. Generate and track SBOMs so you know exactly what's in your stack. Scan continuously, not just at the point of install.Read more of this story at Slashdot.

A computer-generated actress appearing in Instagram shorts now has a talent agent, reports the Los Angeles Times. The massive screen actors union SAG-AFTRA "weighed in with a withering response."SAG-AFTRA believes creativity is, and should remain, human-centered. The union is opposed to the replacement of human performers by synthetics. To be clear, "Tilly Norwood" is not an actor, it's a character generated by a computer program that was trained on the work of countless professional performers - without permission or compensation. It has no life experience to draw from, no emotion and, from what we've seen, audiences aren't interested in watching computer-generated content untethered from the human experience. It doesn't solve any "problem" - it creates the problem of using stolen performances to put actors out of work, jeopardizing performer livelihoods and devaluing human artistry. Additionally, signatory producers should be aware that they may not use synthetic performers without complying with our contractual obligations, which require notice and bargaining whenever a synthetic performer is going to be used. "They are taking our professional members' work that has been created, sometimes over generations, without permission, without compensation and without acknowledgment, building something new," SAG-AFTRA President Sean Astin told the Los Angeles Times in an interview:"But the truth is, it's not new. It manipulates something that already exists, so the conceit that it isn't harming actors - because it is its own new thing - ignores the fundamental truth that it is taking something that doesn't belong to them," Astin said. "We want to allow our members to benefit from new technologies," Astin said. "They just need to know that it's happening. They need to give permission for it, and they need to be bargained with...." Some actors called for a boycott of any agents who decide to represent Norwood. "Read the room, how gross," In the Heights actor Melissa Barrera wrote on Instagram. "Our members reserve the right to not be in business with representatives who are operating in an unfair conflict of interest, who are operating in bad faith," Astin said. But this week the head of a new studio from startup Luma AI "said all the big companies and studios were working on AI assisted projects," writes Deadline - and then claimed "being under NDA, she was not in a position to announce any of the details."Read more of this story at Slashdot.

"A group of researchers from the University of California, Irvine, have developed a way to use the sensors in high-quality optical mice to capture subtle vibrations and convert them into audible data," reports Tom's Hardware:[T]he high polling rate and sensitivity of high-performance optical mice pick up acoustic vibrations from the surface where they sit. By running the raw data through signal processing and machine learning techniques, the team could hear what the user was saying through their desk. Mouse sensors with a 20,000 DPI or higher are vulnerable to this attack. And with the best gaming mice becoming more affordable annually, even relatively affordable peripherals are at risk.... [T]his compromise does not necessarily mean a complicated virus installed through a backdoor - it can be as simple as an infected FOSS that requires high-frequency mouse data, like creative apps or video games. This means it's not unusual for the software to gather this data. From there, the collected raw data can be extracted from the target computer and processed off-site. "With only a vulnerable mouse, and a victim's computer running compromised or even benign software (in the case of a web-based attack surface), we show that it is possible to collect mouse packet data and extract audio waveforms," the researchers state. The researchers created a video with raw audio samples from various stages in their pipeline on an accompanying web site where they calculate that "the majority of human speech" falls in a frequency range detectable by their pipeline. While the collected signal "is low-quality and suffers from non-uniform sampling, a non-linear frequency response, and extreme quantization," the researchers augment it with "successive signal processing and machine learning techniques to overcome these challenges and achieve intelligible reconstruction of user speech." They've titled their paper Invisible Ears at Your Fingertips: Acoustic Eavesdropping via Mouse Sensors. The paper's conclusion? "The increasing precision of optical mouse sensors has enhanced user interface performance but also made them vulnerable to side-channel attacks exploiting their sensitivity." Thanks to Slashdot reader jjslash for sharing the article.Read more of this story at Slashdot.