Slashdot

San Francisco's Board of Supervisors has approved a first-in-the-nation ordinance banning landlords from using certain software and algorithms to set rents. The measure, proposed by Board President Aaron Peskin, passed with a 10-0 vote and targets companies like RealPage and Yardi. The ordinance prohibits the sale or use of "algorithmic devices" that analyze non-public competitor data to recommend rents or occupancy levels for residential units in San Francisco. Violators could face civil penalties up to $1,000 per infraction. Proponents argue the software exacerbates the city's housing crisis by enabling artificial rent inflation. RealPage defended its product, stating it "benefits both housing providers and residents" and that customers can reject price recommendations. The ban follows federal scrutiny of algorithmic rent-setting practices. A final vote is scheduled for September 3.Read more of this story at Slashdot.

An anonymous reader quotes an op-ed, written by former hedge fund manager Marc Rubinstein: With new technologies come new rules governing how they are used. Often, policy is framed via analogy: Are social media platforms publishers or are they town squares? Are instant messages water-cooler chatter or are they formal communication? So it is with peer-to-peer electronic payments. Last week a US Senate committee joined the debate over whether they're analogous to cash or to bank-payment channels. It's an essential distinction -- for both consumers and the companies that provide this free service. [...] Yet while no bank would accept liability if a customer lost their wallet to a pickpocket, the senators' debate focused on who's responsible when fraudsters target electronic wallets. Last year, customers of the three largest lenders -- Bank of America, JPMorgan Chase and Wells Fargo -- lost a total of $370 million via Zelle, the platform these banks jointly own with four others. According to the majority staff report (PDF) filed by the Permanent Subcommittee on Investigations, which convened the July 23 hearing, the banks reimbursed only around $100 million of that, leaving consumers to shoulder the rest. While small in the context of overall volume that go through Zelle -- $806 billion last year, of which these banks did 73% -- that's cold comfort for the customers. Legally, a bank's obligation rests on whether clients fall victim to a "fraud" or to a "scam." In a fraud, money is transferred out of the user's account without their authorization, usually as the result of hacking. Under the Electronic Fund Transfer Act, banks are required to reimburse such losses. As long as the customer authorizes the transaction, though, even if fraudulently induced to do so, banks don't have to pick up the tab. Such scams are growing as fraudsters parade as a bank employee, a love interest or a potential new employer, often via social media. According to a Pew Research survey, 13% of P2P platform users reported sending money, only later to realize they were set up. Persuading your bank you are the victim of a fraud rather than a scam can take some work. [...] For bad guys, the speed of P2P payments makes them a particularly attractive target. A Zelle transfer can take 20 to 30 seconds to initiate. In most cases, by the time an unsuspecting consumer realizes they have been targeted, their money is already gone. Banks argue this is no different from cash. [...] However, others see P2P transactions more akin to electronic payments and question why reimbursement rates, at 26% in the case of Zelle, are so much lower than for credit-card payments (47%) or debit-card payments (36%) at the three big banks. Despite critical differences, the subcommittee agrees. Its report recommends extending purchase protections standard in credit and debit-card markets to commercial P2P payments, and amending the Electronic Fund Transfer Act to make fraudulently induced transactions subject to reimbursement. Such a move has already been adopted in the UK, where new rules requiring financial institutions to fully reimburse victims of scams come into force in October this year. US bankers aren't keen. "We need to be thoughtful and think about unintended consequences," Adam Vancini, Wells Fargo's head of payments for Consumer, Small & Business Banking, said at the Senate hearing. For now, Zelle transfers enjoy all the benefits of cash. Layer in the benefits of card payments, too, and the no-cost model may disappear.Read more of this story at Slashdot.

Intel has announced plans for a substantial workforce reduction, surpassing initial expectations, as part of a comprehensive strategy to bolster its financial position and streamline operations. The company intends to lay off over 16,000 employees, representing more than 15% of its global workforce, with the majority of these cuts slated for completion by the end of 2024, according to the firm's second-quarter earnings report released on Thursday. Concurrent with the workforce reductions, Intel has outlined plans to significantly curtail its capital expenditures, projecting a decrease of over 20% to a range of $25 to $27 billion in 2024, with further reductions anticipated in 2025. This shift in focus towards capital efficiency comes as the company achieves its goal of developing five process nodes in four years, signaling a recalibration of investment levels to align with market demands. As part of its financial restructuring, Intel has also made the decision to suspend its quarterly dividend starting in the fourth quarter of 2024, prioritizing liquidity to support strategic investments. The cumulative effect of these cost-saving initiatives is expected to yield over $10 billion in savings by 2025.Read more of this story at Slashdot.

According to Statcounter, Linux use hit another all-time high in July. For July 2024, the statistics website is showing Linux at 4.45%, climbing almost a half a percentage point from June's 4.05% high. Is 2024 truly the year of Linux on the desktop?Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: On Wednesday, US Sens. Chris Coons (D-Del.), Marsha Blackburn (R.-Tenn.), Amy Klobuchar (D-Minn.), and Thom Tillis (R-NC) introduced the Nurture Originals, Foster Art, and Keep Entertainment Safe (NO FAKES) Act of 2024. The bipartisan legislation, up for consideration in the US Senate, aims to protect individuals from unauthorized AI-generated replicas of their voice or likeness. The NO FAKES Act would create legal recourse for people whose digital representations are created without consent. It would hold both individuals and companies liable for producing, hosting, or sharing these unauthorized digital replicas, including those created by generative AI. Due to generative AI technology that has become mainstream in the past two years, creating audio or image media fakes of people has become fairly trivial, with easy photorealistic video replicas likely next to arrive. [...] To protect a person's digital likeness, the NO FAKES Act introduces a "digital replication right" that gives individuals exclusive control over the use of their voice or visual likeness in digital replicas. This right extends 10 years after death, with possible five-year extensions if actively used. It can be licensed during life and inherited after death, lasting up to 70 years after an individual's death. Along the way, the bill defines what it considers to be a "digital replica": "DIGITAL REPLICA.-The term "digital replica" means a newly created, computer-generated, highly realistic electronic representation that is readily identifiable as the voice or visual likeness of an individual that- (A) is embodied in a sound recording, image, audiovisual work, including an audiovisual work that does not have any accompanying sounds, or transmission- (i) in which the actual individual did not actually perform or appear; or (ii) that is a version of a sound recording, image, or audiovisual work in which the actual individual did perform or appear, in which the fundamental character of the performance or appearance has been materially altered; and (B) does not include the electronic reproduction, use of a sample of one sound recording or audiovisual work into another, remixing, mastering, or digital remastering of a sound recording or audiovisual work authorized by the copyright holder." The NO FAKES Act "includes provisions that aim to balance IP protection with free speech," notes Ars. "It provides exclusions for recognized First Amendment protections, such as documentaries, biographical works, and content created for purposes of comment, criticism, or parody."Read more of this story at Slashdot.

Argentina's security forces have announced plans to use AI to "predict future crimes" in a move experts have warned could threaten citizens' rights. From a report: The country's far-right president Javier Milei this week created the Artificial Intelligence Applied to Security Unit, which the legislation says will use "machine-learning algorithms to analyse historical crime data to predict future crimes." It is also expected to deploy facial recognition software to identify "wanted persons," patrol social media, and analyse real-time security camera footage to detect suspicious activities. While the ministry of security has said the new unit will help to "detect potential threats, identify movements of criminal groups or anticipate disturbances," the Minority Report-esque resolution has sent alarm bells ringing among human rights organisations. Experts fear that certain groups of society could be overly scrutinised by the technology, and have also raised concerns over who -- and how many security forces -- will be able to access the information.Read more of this story at Slashdot.

An anonymous reader shares a report: Microsoft has a long and tangled history with OpenAI, having invested a reported $13 billion in the ChatGPT maker as part of a long term partnership. As part of the deal, Microsoft runs OpenAI's models across its enterprise and consumer products, and is OpenAI's exclusive cloud provider. However, the tech giant called the startup a "competitor" for the first time in an SEC filing on Tuesday. In Microsoft's annual 10K, OpenAI joined long list of competitors in AI, alongside Anthropic, Amazon, and Meta. OpenAI was also listed alongside Google as a competitor to Microsoft in search, thanks to OpenAI's new SearchGPT feature announced last week. It's possible Microsoft is trying to change the narrative on its relationship with OpenAI in light of antitrust concerns -- the FTC is currently looking into the relationship, alongside similar cloud provider investments into AI startups.Read more of this story at Slashdot.

A blockbuster prisoner exchange between the United States, Russia and Germany on Thursday included at least two prominent cybercriminals held by the U.S. on charges of financially motivated cybercrime and hacking to facilitate insider trading. Cyberscoop reports: The prisoners were part of a deal that freed 16 people from Russia, including Wall Street Journal reporter Evan Gershkovich and former U.S. Marine Paul Whelan. A White House spokesperson confirmed that as part of the deal, the U.S. released convicted Russian cybercriminals Roman Seleznev and Vladislav Klyushin. Seleznev is a notorious Russian hacker known for running extensive cybercrime operations. He was involved in numerous cyberattacks, including credit card fraud, theft, and selling stolen credit card information on "Carder[dot]su," a cybercriminal forum ring. Seleznev conducted his criminal activities under the alias "Track2" and "nCux." He is the son of Valery Seleznev, a prominent member of the Russian Duma, the country's parliament. Seleznev was sentenced in 2017 to 27 years in prison for his involvement in a massive credit-card computer fraud scheme. Klyushin was extradited to the U.S. for his involvement in an elaborate hack-to-trade scheme that netted approximately $93 million through securities trades based on confidential corporate information stolen from U.S. computer networks. With insider knowledge of companies' financial performance, Klyushin and his co-conspirators predicted stock price movements and traded on stolen information. They used accounts in multiple countries, including Cyprus, Denmark, Portugal, Russia, and the U.S., misleading brokerage firms about their activities.Read more of this story at Slashdot.

A U.S. judge has thrown out a Republican National Committee lawsuit accusing Alphabet's Google of intentionally misdirecting the political party's email messages to users' spam folders. From a report: U.S. District Judge Daniel Calabretta in Sacramento, California, on Wednesday dismissed the RNC's lawsuit for a second time, and said the organization would not be allowed to refile it. While expressing some sympathy for the RNC's allegations, he said it had not made an adequate case that Google violated California's unfair competition law. The lawsuit alleged Google had intentionally or negligently sent RNC fundraising emails to Gmail users' spam folders and cost the group hundreds of thousands of dollars in potential donations. Google denied any wrongdoing.Read more of this story at Slashdot.

Open-source compliance and security platform FOSSA has acquired developer community platform StackShare, the company confirmed to TechCrunch. From a report: StackShare is one of the more popular platforms for developers to discuss, track, and share the tools they use to build applications. This encompasses everything from which front-end JavaScript framework to use to which cloud provider to use for specific tasks.Read more of this story at Slashdot.

Google wants to help ease the pain of comparison shopping across multiple tabs in Chrome with a new AI-powered tool that can summarize your tabs into one page. From a report: The tool, which Google is calling "tab compare," will use generative AI to pull product data from tabs you have open and collect it all into one table. Assuming it works and pulls accurate information, the tool seems like it could be a handy way to look at a number of different products in one unified view. But while it's potentially useful, the tool could also take away traffic from sites that collect and compare product information -- which might be especially worrying for independent publishers that are already struggling to be seen on Google. I'm also skeptical that Google will correctly pull all of the finer details about various products into the tables it creates with tab compare. I don't always trust Google's accuracy right now! There are some limits on what tab compare can do. The tables it creates are limited to 10 items because "we've just found the column layout doesn't scale very well beyond that," Google spokesperson Joshua Cruz tells The Verge.Read more of this story at Slashdot.

AI music startup Suno is pushing back against the world's biggest record labels, saying in a court filing that a lawsuit they filed against the company aims to stifle competition. From a report: In a filing Thursday in federal court in Massachusetts, Suno said that while the record labels argue the company infringed on their recorded music copyrights, the lawsuit actually reflects the industry's opposition to competition -- which Suno's AI software represents by making it easy for anyone to make music. "Where Suno sees musicians, teachers, and everyday people using a new tool to create original music, the labels see a threat to their market share," the Cambridge, Massachusetts-based company wrote in the filing, which also asked the court to enter judgment in Suno's favor.Read more of this story at Slashdot.

Mozilla is following in Google Chrome's footsteps in officially distrusting Entrust as a root certificate authority (CA) following what it says was a protracted period of compliance failures. From a report: A little over a month ago, Google was the first to make the bold step of dropping Entrust as a CA, saying it noted a "pattern of concerning behaviors" from the company. Entrust has apologized to Google, Mozilla, and the wider web community, outlining its plans to regain the trust of browsers, but these appear to be unsatisfactory to both Google and Mozilla. In an email shared by Mozilla's Ben Wilson on Wednesday, the root store manager said the decision wasn't taken lightly, but equally Entrust's response to Mozilla's concerns didn't inspire confidence that the situation would materially change for the better. "Mozilla previously requested that Entrust provide a detailed report on these recent incidents and their root causes, an evaluation of Entrust's recent actions in light of their previous commitments given in the aftermath of similarly serious incidents in 2020, and a proposal for how Entrust will re-establish Mozilla's and the community's trust," said Wilson.Read more of this story at Slashdot.

After striking deals with Google and OpenAI, Reddit CEO Steve Huffman is calling on Microsoft and others to pay if they want to continue scraping the site's data. From a report: "Without these agreements, we don't have any say or knowledge of how our data is displayed and what it's used for, which has put us in a position now of blocking folks who haven't been willing to come to terms with how we'd like our data to be used or not used," Huffman said in an interview this week. He specifically named Microsoft, Anthropic, and Perplexity for refusing to negotiate, saying it has been "a real pain in the ass to block these companies." Reddit has been escalating its fight against crawlers in recent months. At the beginning of July, its robots.txt file was updated to block web crawlers it doesn't have agreements with. Then people began noticing that Reddit results were only visible in Google results -- where Reddit is paid for its data to be shown -- and not other search engines like Bing. Huffman said that Microsoft has been using Reddit's data to train its AI and summarizing its content in Bing results "without telling us" and that Reddit's data has also been sold through the Bing API to other search engines.Read more of this story at Slashdot.

An anonymous reader quotes a report from SFGATE: Over the past few years, scores of California tech workers have ended up in the exact same position: laid-off, looking for work on LinkedIn and sick of it. LinkedIn, part job site and part social network, has become an all but necessary tool for the office-job-seeking masses in the Bay Area and beyond. As tech companies gut their workforces, people who would otherwise give the blue-and-white site a wide berth feel compelled to scroll for hours every day for job opportunities. LinkedIn is a dominant force in the professional world, with more than 1 billion users and 67 million weekly job searchers. That scale, plus the torrent of self-promotion and corporate platitudes fueling the platform, has long made it a symbol of modern capitalism. Now, in the age of tech's layoffs, it's also a symbol of dread. The platform's specter looms so large because it does exactly what it needs to. Tech workers are stuck on Linkedin: In a competitive job market rife with spam listings, the free platform's networking-focused features set it a peg above competitors like Indeed, Dice and Levels.fyi in the search for full-time work. Since February, SFGATE has spoken with 10 recently laid-off tech workers; most of them see LinkedIn as painful but necessary and have locked up new jobs in part thanks to the platform. Tech worker Kyle Kohlheyer told SFGATE that returning to LinkedIn after losing his job at Cruise in December felt like "salt in the wound" and called the job site a "cesspool" of wannabe thought leaders and "temporarily embarrassed millionaires." "I found success on their platform, but I f-king hate LinkedIn," Kohlheyer said. "It sucks. It is a terrible place to exist every day and depend on a job for. [...] There's just such a capitalist-centric mindset on there that is so annoying as a worker who has been fundamentally screwed by companies," he said. "Wading" through LinkedIn, he said, it's hard to tell if people feel like an alternative to the top-heavy, precarious tech economy is even possible. Another tech worker, Mark Harris, added: "Is [LinkedIn] a terrible sign that we live in a capitalist hellscape? Hell yes! But we do live in a capitalist hellscape, and girl's gotta eat."Read more of this story at Slashdot.

In the company's second-quarter earnings report on Wednesday, Meta's Reality Labs unit recorded an operating loss of $4.48 billion. CNBC reports: Since late 2020, the Reality Labs unit has generated cumulative losses of about $50 billion, underscoring CEO Mark Zuckerberg's massive investments into the hardware and software that underpins what he says will be the next era of personal computing. Revenue in Reality Labs, largely derived from the company's Quest family of VR headsets and Ray-Ban Meta smart glasses, came in at $353 million, representing growth of 28% from $276 million a year earlier. Analysts were expecting the unit to bring in $371 million.Read more of this story at Slashdot.

Physicists have been exploring the theoretical possibility of warp drives, which could propel spaceships faster than light by compressing spacetime. A new study published in the Open Journal of Astrophysics simulates the gravitational waves such a drive might emit if it failed, showing potential detectable signals by future high-frequency instruments and advancing our understanding of exotic spacetimes. Phys.Org reports: The results are fascinating. The collapsing warp drive generates a distinct burst of gravitational waves, a ripple in spacetime that could be detectable by gravitational wave detectors that normally target black hole and neutron star mergers. Unlike the chirps from merging astrophysical objects, this signal would be a short, high-frequency burst, and so current detectors wouldn't pick it up. However, future higher-frequency instruments might, and although no such instruments have yet been funded, the technology to build them exists. This raises the possibility of using these signals to search for evidence of warp drive technology, even if we can't build it ourselves. The study also delves into the energy dynamics of the collapsing warp drive. The process emits a wave of negative energy matter, followed by alternating positive and negative waves. This complex dance results in a net increase in the overall energy of the system, and in principle could provide another signature of the collapse if the outgoing waves interacted with normal matter.Read more of this story at Slashdot.

An anonymous reader quotes a report from The Guardian: With thousands of species at risk of extinction, scientists have devised a radical plan: a vault filled with preserved samples of our planet's most important and at-risk creatures located on the moon. An international team of experts says threats from climate change and habitat loss have outpaced our ability to protect species in their natural habitats, necessitating urgent action. A biorepository of preserved cells, and the crucial DNA within them, could be used to enhance genetic diversity in small populations of critically endangered species, or to clone and create new individuals in the worst-case scenario of extinction. The proposed lunar biorepository, as described in the journal BioScience, would be beyond the reach of climate breakdown, geopolitical events or other Earth-based disasters. The moon's naturally frigid environment means samples would remain frozen year-round without the need for human involvement or an energy source. By taking advantage of deep craters near the polar regions that are never exposed to sunlight, the moon is one of few places that can provide the ultra-low temperature of -196C necessary to preserve the samples in a way suitable for future cloning. [...] Besides those facing the imminent risk of extinction, the proposed repository would prioritize species with important functions in their environment and food webs. Through careful selection, those housed could be used to re-establish an extinct population on Earth or even to terraform another planet. Dr Mary Hagedorn of the Smithsonian's national zoo and conservation biology institute and the proposal's lead author believes the biorepository proposal will come to fruition, although perhaps not in our lifetime: "We know how to do this and can do this and will do this, but it may take decades to finally achieve," she said. The report says the next steps "will be to develop packaging for the cryopreserved samples that can withstand the conditions of space, and to work out the logistics of transporting samples to the moon."Read more of this story at Slashdot.

Shareholders have sued CrowdStrike on Tuesday, claiming the cybersecurity company defrauded them by concealing how its inadequate software testing could cause the global software outage earlier this month that crashed millions of computers. Reuters reports: In a proposed class action filed on Tuesday night in the Austin, Texas federal court, shareholders said they learned that CrowdStrike's assurances about its technology were materially false and misleading when a flawed software update disrupted airlines, banks, hospitals and emergency lines around the world. They said CrowdStrike's share price fell 32% over the next 12 days, wiping out $25 billion of market value, as the outage's effects became known, Chief Executive George Kurtz was called to testify to the U.S. Congress, and Delta Air Lines reportedly hired prominent lawyer David Boies to seek damages. The complaint cites statements including from a March 5 conference call where Kurtz characterized CrowdStrike's software as "validated, tested and certified." The lawsuit led by the Plymouth County Retirement Association of Plymouth, Massachusetts, seeks unspecified damages for holders of CrowdStrike Class A shares between Nov. 29, 2023 and July 29, 2024. Further reading: Delta CEO Says CrowdStrike-Microsoft Outage Cost the Airline $500 MillionRead more of this story at Slashdot.

Taco Bell's parent company, Yum! Brands, announced today that the fast-food chain will expand its Voice AI technology to "hundreds" of chains around the country by the end of the year. A global expansion of the service will follow. Fortune reports: Right now, more than 100 Taco Bell locations in 13 states rely on AI to take customer orders at the drive-thru. Company officials say that has resulted in improved order accuracy, shorter wait times, and higher profits. Human workers, the company says, will be freed up to focus on other tasks, ranging from interacting with guests who opt to order from the restaurant counter to preparing food. "Yum! Brands is integrating digital and technology into all aspects of our business with exciting new capabilities, and AI is a core piece of that strategy," said Lawrence Kim, chief innovation officer at Yum! Brands, in a statement. "With over two years of fine-tuning and testing the drive-thru Voice AI technology, we're confident in its effectiveness in optimizing operations and enhancing customer satisfaction."Read more of this story at Slashdot.

The results of Los Angeles' 12-month guaranteed income pilot program show that it was "overwhelmingly beneficial (source may be paywalled; alternative source)," reports the Los Angeles Times. The program, which involved giving L.A.'s poorest families cash assistance of $1,000 a month with no strings attached, significantly improved participants' financial stability, job opportunities, and overall well-being. From the report: The Basic Income Guaranteed: Los Angeles Economic Assistance Pilot, or BIG:LEAP, disbursed $38.4 million in city funds to 3,200 residents who were pregnant or had at least one child, lived at or below the federal poverty level and experienced hardship related to COVID-19. Participants were randomly selected from about 50,000 applicants and received the payments for 12 months starting in 2022. The city paid researchers $3.9 million to help design the trial and survey participants throughout about their experiences. [Dr. Amy Castro, co-founder of the University of Pennsylvania's Center for Guaranteed Income Research] and her colleagues partnered with researchers at UCLA's Fielding School of Public Health to compare the experiences of participants in L.A.'s randomized control trial -- the country's first large-scale guaranteed-income pilot using public funds -- with those of nearly 5,000 people who didn't receive the unconditional cash. Researchers found that participants reported a meaningful increase in savings and were more likely to be able to cover a $400 emergency during and after the program. Guaranteed-income recipients also were more likely to secure full-time or part-time employment, or to be looking for work, rather than being unemployed and not looking for work, the study found. In a city with sky-high rents, participants reported that the guaranteed income functioned as "a preventative measure against homelessness," according to the report, helping them offset rental costs and serving as a buffer while they waited for other housing support. It also prevented or reduced the incidence of intimate partner violence, the analysis found, by making it possible for people and their children to leave and find other housing. Intimate partner violence is an intractable social challenge, Castro said, so to see improvements with just 12 months of funding is a "pretty extraordinary change." People who had struggled to maintain their health because of inflexible or erratic work schedules and lack of child care reported that the guaranteed income provided the safety net they needed to maintain healthier behaviors, the report said. They reported sleeping better, exercising more, resuming necessary medications and seeking mental health therapy for themselves and their children. Compared with those who didn't receive cash, guaranteed income recipients were more likely to enroll their kids in sports and clubs during and after the pilot.Read more of this story at Slashdot.

Italian app developer Bending Spoons has bought file-sharing platform WeTransfer, the companies said in a joint statement on Wednesday, as the Milan-based tech company presses ahead with a string of deals for software firms. From a report: The deal, for which financial details were not disclosed, is the fifth acquisition this year by Bending Spoons, which in February raised $155 million through a capital increase, taking the company's valuation to $2.55 billion. [...] The WeTransfer service enables its users to transfer large files online. It has 600,000 subscribers and 80 million monthly active users, according to data included in the statement. WeTransfer is the latest of several acquisitions by Bending Spoons. It bought note-taking service Evernote in November 2022.Read more of this story at Slashdot.

Malaysia plans to introduce an internet "kill switch" law in October, Law Minister Azalina Othman Said has said. The legislation aims to boost digital security by granting authorities power to block online content, though specifics remain unclear. Said emphasized the need for social media and messaging platforms to take greater responsibility for online crimes.Read more of this story at Slashdot.

An anonymous reader quotes a report from TechCrunch: A group of researchers said they found that vulnerabilities in the design of some dating apps, including the popular Bumble and Hinge, allowed malicious users or stalkers to pinpoint the location of their victims down to two meters. In a new academic paper, researchers from the Belgian university KU Leuven detailed their findings (PDF) when they analyzed 15 popular dating apps. Of those, Badoo, Bumble, Grindr, happn, Hinge and Hily all had the same vulnerability that could have helped a malicious user to identify the near-exact location of another user, according to the researchers. While neither of those apps share exact locations when displaying the distance between users on their profiles, they did use exact locations for the "filters" feature of the apps. Generally speaking, by using filters, users can tailor their search for a partner based on criteria like age, height, what type of relationship they are looking for and, crucially, distance. To pinpoint the exact location of a target user, the researchers used a novel technique they call "oracle trilateration." In general, trilateration, which for example is used in GPS, works by using three points and measuring their distance relative to the target. This creates three circles, which intersect at the point where the target is located. Oracle trilateration works slightly differently. The researchers wrote in their paper that the first step for the person who wants to identify their target's location "roughly estimates the victim's location," for example, based on the location displayed in the target's profile. Then, the attacker moves in increments "until the oracle indicates that the victim is no longer within proximity, and this for three different directions. The attacker now has three positions with a known exact distance, i.e., the preselected proximity distance, and can trilaterate the victim," the researchers wrote. "It was somewhat surprising that known issues were still present in these popular apps," Karel Dhondt, one of the researchers, told TechCrunch. While this technique doesn't reveal the exact GPS coordinates of the victim, "I'd say 2 meters is close enough to pinpoint the user," Dhondt said. The good news is that all the apps that had these issues, and that the researchers reached out to, have now changed how distance filters work and are not vulnerable to the oracle trilateration technique. The fix, according to the researchers, was to round up the exact coordinates by three decimals, making them less precise and accurate.Read more of this story at Slashdot.

Mobile game developers have voiced increasing frustration with Apple, citing reduced payments, delayed compensation, poor communication, and inadequate support, particularly with the Apple Vision Pro. Apple Insider reports: In February, game developers began expressing frustration over Apple Arcade. They pointed out that while the service was initially profitable, Apple had begun decreasing upfront payments and the per-play "bonus pool." Additionally, the tech giant began to axe projects with little to no warning. According to Mobilegamer.biz, developers continue to be unhappy with how Apple's running its "pay once, play all you want" game subscription service. Developers point out how Apple has delayed payments -- sometimes up to six months -- which has put smaller studios in precarious situations. Devs are also unhappy with Apple's communication -- or lack thereof. "We can go weeks without hearing from Apple at all and their general response time to emails is three weeks, if they reply at all," one developer told Mobilegamer.biz. Some have even called Apple's tech support "miserable" and the worst they'd seen anywhere. Even the QA and update process is frustrating, prompting some developers to avoid updating their games altogether. [...] One particularly frustrated developer spoke out against Apple Arcade, saying, "It's like an abusive relationship where the abused stays in the relationship hoping the other partner will change and become the person you know they could be." When it comes to the Apple Vision Pro, many game developers are increasingly frustrated with the headset's struggles to run demanding games. And, while Apple wants indie developers to create new games for their new headset, the company "does not provide compensation or make any promises to promote or market the game once it is finished," says Apple Insider.Read more of this story at Slashdot.

Google is updating its search algorithm and removal request process to make it easier for victims to combat unwanted sexually explicit AI deepfakes. "When reported AI deepfakes are identified, Google Search will automatically filter out related search results that might pop up in the future so users won't have to repeatedly report similar images or duplicates of an image to Google," reports PCMag. Additionally, Google will demote sites repeatedly hosting non-consensual deepfakes and aims to differentiate between consensual and non-consensual explicit content. From the report: Google says its Search algorithm update will lower the chances of explicit deepfakes appearing in Search. The search engine will also attempt to differentiate between real sexually explicit content made consensually (such as adult film stars' work, for example) and AI-generated media made without the person's consent. But Google says doing this is a "technical challenge," so these efforts may not be entirely accurate or effective. Regardless, Google claims that the changes it's already made to Search have reduced the resurfacing of such deepfakes by more than 70%. "With these changes, people can read about the impact deepfakes are having on society, rather than see pages with actual non-consensual fake images," Google said.Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Microsoft's revenue from Xbox console sales was down a whopping 42 percent on a year-over-year basis for the quarter ending in June, the company announced in its latest earnings report. The massive drop continues a long, pronounced slide for sales of Microsoft's gaming hardware-the Xbox line has now shown year-over-year declines in hardware sales revenue in six of the last seven calendar quarters (and seven of the last nine). And Microsoft CFO Amy Hood told investors in a follow-up call (as reported by GamesIndustry.biz) to expect hardware sales to decline yet again in the coming fiscal quarter, which ends in September. The 42 percent drop for quarterly hardware revenue -- by far the largest such drop since the introduction of the Xbox Series X/S in 2020 -- follows an 11 percent year-over-year decline in the second calendar quarter of 2023. Microsoft no longer shares raw console shipment numbers like its competitors, so we don't know how many Xbox consoles are selling on an absolute basis. But industry analyst Daniel Ahmad estimates that Microsoft sold less than 900,000 Xbox units for the quarter ending in March, compared to 4.5 million PS5 units shipped in the same period. Overall, the reported revenue numbers suggest that sales of the Xbox Series X/S line peaked sometime in 2022, during the console's second full year on store shelves. That's extremely rare for a market where sales for successful console hardware usually see a peak in the fourth or fifth year on the market before a slow decline in the run-up to a successor. [...] Aside from hardware sales, Microsoft's gaming content and services revenue was up a healthy-sounding 61 percent year-over-year for the latest reported quarter. But a full 58 percent of that increase was the "net impact from the Activision acquisition," which you may remember cost the company $68.7 billion dollars.Read more of this story at Slashdot.

A cyberattack has hit a blood-donation nonprofit that serves hundreds of hospitals in the southeastern US. From a report: The hack, which was first reported by CNN, has raised concerns about potential impacts on OneBlood's service to some hospitals, multiple sources familiar with the matter said, and the incident is being investigated as a potential ransomware attack. An "outage" of OneBlood's software system is impacting the nonprofit's ability to ship "blood products" to hospitals in Florida, according to an advisory sent to health care providers by the Health Information Sharing and Analysis Center, a cyberthreat-sharing group, and reviewed by CNN. OneBlood has been manually labeling blood products as the nonprofit recovers from the incident, the advisory said.Read more of this story at Slashdot.

An investigation has determined that "Chinese state actors" were responsible for a 2021 cyberattack on Germany's national office for cartography, officials in Berlin said Wednesday. From a report: The Chinese ambassador was summoned to the Foreign Ministry for a protest for the first time in decades. Foreign Ministry spokesperson Sebastian Fischer said the German government has "reliable information from our intelligence services" about the source of the attack on the Federal Agency for Cartography and Geodesy, which he said was carried out "for the purpose of espionage." "This serious cyberattack on a federal agency shows how big the danger is from Chinese cyberattacks and spying," Interior Minister Nancy Faeser said in a statement. "We call on China to refrain from and prevent such cyberattacks. These cyberattacks threaten the digital sovereignty of Germany and Europe." Fischer declined to elaborate on who exactly in China was responsible. He said a Chinese ambassador was last summoned to the German Foreign Ministry in 1989 after the Tiananmen Square crackdown.Read more of this story at Slashdot.

AWS has quietly halted new customer onboarding for several of its services, including the once-touted CodeCommit source code repository and Cloud9 cloud IDE, signaling a potential retreat from its comprehensive DevOps offering. The stealth deprecation, discovered by users encountering unexpected errors, has sent ripples through the AWS community, with many expressing frustration over the lack of formal announcements and the continued presence of outdated documentation. AWS VP Jeff Barr belatedly confirmed the decision on social media, listing affected services such as S3 Select, CloudSearch, SimpleDB, Forecast, and Data Pipeline.Read more of this story at Slashdot.

Air New Zealand has become the first major airline to drop its 2030 goal to cut carbon emissions. From a report: The company has blamed difficulties in procuring new planes and sustainable jet fuel. The airline's CEO, Greg Foran said: "In recent months, and more so in the last few weeks, it has also become apparent that potential delays to our fleet renewal plan pose an additional risk to the target's achievability. It is possible the airline may need to retain its existing fleet for longer than planned due to global manufacturing and supply chain issues that could potentially slow the introduction of newer, more fuel-efficient aircraft into the fleet." The industry as a whole has a goal to achieve net zero emissions by 2050. But in 2022, Air New Zealand set itself the target of cutting its emissions by almost 29% by 2030.Read more of this story at Slashdot.

Microsoft is making Skype ad-free in an update that will rollout to users across all platforms soon. From a report: The update also includes improved AI image creation tools on Skype for Windows and macOS, and the ability to sign in automatically on iOS if you're already signed into another Microsoft app. "Our latest update removes all ads from Skype channels and the entire Skype platform, ensuring a smoother, decluttered and more enjoyable user experience," says Skype product manager Irene Namuganyi. The removal of ads in Skype means you'll no longer see ads in the main chat interface, or in the channels section. Microsoft says it has listened to feedback around ads in Skype, and decided to "focus on your chats without any ad distractions, making your Skype experience cleaner and more user-friendly."Read more of this story at Slashdot.

Intel plans to eliminate thousands of jobs to reduce costs and fund an ambitious effort to rebound from an earnings slump and market share losses. Bloomberg: The workforce reduction may be announced as early as this week, according to people familiar with the company's plans, who asked not to be identified because the information isn't public. Intel, which is scheduled to report second-quarter earnings Thursday, has about 110,000 employees, excluding workers at units that are being spun out.Chief Executive Officer Pat Gelsinger is spending heavily on research and development aimed at improving Intel's technology and helping it return to prominence in the semiconductor industry. The company's once-dominant position eroded under Gelsinger's predecessors as rivals, such as Advanced Micro Devices, have caught up and taken market share.Read more of this story at Slashdot.

An anonymous reader shares a report: A recent meeting of the American Society for Nutrition in Chicago was presented with an observational study of more than 500,000 people in the US. It found that those who ate the most UPFs (ultra-processed foods ) had a roughly 10% greater chance of dying early, even accounting for their body-mass index and overall quality of diet. In recent years, lots of other observational studies have shown a similar link - but that's not the same as proving that how food is processed causes health problems, or pinning down which aspect of those processes might be to blame. So how could we get to the truth about ultra-processed food? The kind of study needed to prove definitively that UPFs cause health problems would be extremely complex, suggests Dr Nerys Astbury, a senior researcher in diet and obesity at Oxford University. It would need to compare a large number of people on two diets -- one high in UPFs and one low in UPFs, but matched exactly for calorie and macronutrient content. This would be fiendishly difficult to actually do. Participants would need to be kept under lock and key so their food intake could be tightly managed. The study would also need to enrol people with similar diets as a starting point. It would be extremely challenging logistically. And to counter the possibility that people who eat fewer UPFs might just have healthier lifestyles such as through taking more exercise or getting more sleep, the participants of the groups would need to have very similar habits. "It would be expensive research, but you could see changes from the diets relatively quickly," Dr Astbury says. Funding for this type of research could also be hard to come by. There might be accusations of conflicts of interest, since researchers motivated to run these kind of trials may have an idea of what they want the conclusions to be before they started.Read more of this story at Slashdot.

Delta Air Lines CEO Ed Bastian said the massive IT outage earlier this month that stranded thousands of customers will cost it $500 million. From a report: Bastian said the figure is representative of not just the lost revenue, but "the tens of millions of dollars per day in compensation and hotels" over a period of five days. The airline canceled more than 4,000 flights in the wake of the outage, which was caused by a botched CrowdStrike software update and took thousands of Microsoft systems around the world offline. The company had to manually reset 40,000 servers, Bastian said. Further reading: Delta Seeks Damages From CrowdStrike, Microsoft After Outage.Read more of this story at Slashdot.

A decade ago, the Gates Foundation announced it will cease covering open-access publishing costs for its grantees from 2025. This shift, following a decade of support for free access to research, sparked concerns in the scientific community. Experts fear the move could undermine the open-access model, which aims to make taxpayer-funded studies freely available. The decision also marked a significant change in the foundation's approach to disseminating research findings, potentially impacting global access to critical scientific information. So where do we go from here? From a report: [The Gates Foundation] notes that open access in its current form has resulted in "some unsavory publishing practices," including unchecked pricing from journals and publishers, questionable peer review, and paper mills -- people or organizations that produce fake or subpar papers and sell authorship slots on them. "Last year was a really pivotal year in scholarly publishing since lots of people who were really pushing gold open access for many years are now thinking, 'Oh, what beast have we created?'" says James Butcher, an independent publishing consultant in Liverpool, England, who writes the newsletter Journalology. "It plays into the hands of the big corporates because it's all about scale." Gold OA creates incentives for journals to publish as many papers as possible to make more money. Some publishers, often referred to as gray OA publishers, have been criticized for exploiting the gold OA model to churn out high volumes of low-quality studies. Butcher says that because subscription- based publishers traditionally couldn't increase revenues by publishing more papers, they tended to keep volumes fairly level. In contrast, Johan Rooryck, a French linguistics researcher at Leiden University and a proponent of open access, points to a "very rapid rise" in gold OA journals and papers in the past decade. The Gates Foundation is now suggesting that authors post online preprints of their author-accepted manuscripts -- near-final versions of studies accepted by journals for publication before they are typeset or copyedited -- and then publish in whichever journals they like.Read more of this story at Slashdot.

An anonymous reader quotes a report from The Guardian: Proposals to slap a wealth tax on the world's super-rich could yield $250 billion a year to tackle the climate crisis and address poverty and inequality, but would affect only a small number of billionaire families, Brazil's climate chief has said. Ministers from the G20 group of the world's biggest developed and emerging economies are meeting in Rio de Janeiro this weekend, where Brazil's proposal for a 2% wealth tax on those with assets worth more than $1 billion is near the top of the agenda. No government was speaking out against the tax, said Ana Toni, who is national secretary for climate change in the government of President Luiz Inacio Lula da Silva. "Our feeling is that, morally, nobody's against," she told the Observer in an interview. "But the level of support from some countries is bigger than others." However, the lack of overt opposition does not mean the tax proposal is likely to be approved. Many governments are privately skeptical but unwilling to publicly criticize a plan that would shave a tiny amount from the rapidly accumulating wealth of the planet's richest few, and raise money to address the pressing global climate emergency. Janet Yellen, the US Treasury secretary, told journalists in Rio that the US "did not see the need" for a global initiative. "People are not keen on global taxes," Toni admitted. "And there is a question over how you implement global taxes." But she said levying and raising a tax globally was possible, as had been shown by G7 finance ministers' agreement to levy a minimum 15% corporate tax. "It should be at a global level, because otherwise, obviously, rich people will move from one country to another," she said. Only about 100 families around the world would be affected by the proposed 2% levy, she added. The world's richest 1% have added $42 trillion to their wealth in the past decade, roughly 36 times more than the bottom half of the world's population did. The question of how funds raised by such taxation should be spent had also not been settled, noted Toni. Some economists have argued that the idea was more likely to be accepted if the proceeds were devoted to solving the climate crisis than if they were used to address global inequality. Other experts say at least some of the money should be used for poverty alleviation.Read more of this story at Slashdot.

"The linked article is pretty much a press release, but it's still interesting to see the promise of exoskeletons starting to infiltrate the mass market," writes longtime Slashdot reader Baron_Yam. "These rigs cost $5,000, weigh only a few pounds, and go for multiple hours on a charge." Gizmodo reports: With the MO/GO exoskeleton hiking pants, a traipse through the mountains is becoming more mechanical, not to mention expensive. The MO/GO (short for "Mountain Goat") is a joint effort with established outdoor apparel makers Arc'Teryx and the tech startup Skip. Remember Samsung's exoskeleton pants concepts? These are kind of like that, though Skp and Arc'Teryx's first commercial product covers up all those glaring metal bits with an already-pricey pair of designer hiking pants. The MO/GO is supposed to push you 40% harder, according to the company. What does that mean in context? Fast Company rolled around in them for a hike and found the exoskeleton took a lot of weight off the knee, cushioned footfalls, and kicked the leg forward when tackling an incline. [...] Two braces go into each leg, while the 3-hour power pack sits at the belt line just above your posterior. The MO/GO is a pair of Arc'teryx Gamma pants with cuffs to snap Skip's carbon fiber exoskeletal thighs onto the outside of each leg, which should impact your quadriceps and hamstring muscles. The companies claim each ligament weighs 2 pounds, with the pants in total clocking in at 7 pounds, but instead of adding weight the arms absorb the impact of each step, enough to make users feel "30 pounds lighter." [...] On Skip's site, you can see an internal look at how the motors spin every time the user raises their knee. The pants are supposed to have an on-board algorithm to handle stairs or a steep incline differently. You don't control it with an app either. There are three buttons on the pants: an on/off switch, as well as "less assistance" and "more assistance" toggles.Read more of this story at Slashdot.

Scientists have developed a blood test that accurately identifies Alzheimer's disease in patients with memory issues 90% of the time (source may be paywalled; alternative source), significantly outperforming standard diagnostic methods. The findings have been published in the journal JAMA. The New York Times reports: The new study used a blood test that focuses on a form of a protein called tau that sprouts into tangles in the brains of people with Alzheimer's. Measuring that form, called ptau-217, was found to give the most accurate assessment of Alzheimer's pathology in a comparison of various Alzheimer's blood tests that will also be presented at the Alzheimer's Association conference. Tau is more closely linked to cognitive decline than amyloid, and tau tangles form later than amyloid plaques in Alzheimer's patients. The test in the study also tracks amyloid. Tests like this are available in the United States for use by doctors, not consumers. The study included about 1,200 patients with mild memory problems. About 500 of them visited primary care physicians; the rest sought specialist care at memory clinics. Dr. Sebastian Palmqvist, an associate professor of neurology at Lund University who led the study with [Dr. Oskar Hansson, a professor of clinical memory research at Lund University in Sweden and the senior author of the study], said that first, about 300 patients in each group were given the blood test, and results were compared with spinal taps or PET scans. Then the researchers wanted to see how the blood test compared with the judgment of doctors after they administered cognitive tests and CT scans. "We started asking both the primary care physicians and our own dementia specialists: After the standard evaluation, do you think your patient has Alzheimer's disease?" Dr. Palmqvist said. In evaluations of about 200 patients, primary care doctors who thought patients had Alzheimer's were wrong 36 percent of the time. And when they thought patients did not have Alzheimer's, they were wrong 41 percent of the time. Memory specialists who evaluated about 400 patients did somewhat better -- they were wrong 25 percent of the time when they thought patients had Alzheimer's and wrong 29 percent of the time when they thought patients didn't. The blood test was wrong only about 10 percent of the time. The blood test's accuracy was highest with patients who had already progressed to dementia and was slightly lower with patients in a pre-dementia stage called mild cognitive impairment, Dr. Palmqvist said. It was not very accurate with the earliest stage, called subjective cognitive decline, when patients begin to perceive their memory to be failing. Dr. Hansson said that lower accuracy probably occurred because many people with subjective cognitive decline do not turn out to have Alzheimer's.Read more of this story at Slashdot.

An anonymous reader quotes a report from ZDNet: According to a new statement, the White House realizes open source is key to artificial intelligence (AI) development -- much like many businesses using the technology. On Tuesday, the National Telecommunications and Information Administration (NTIA) issued a report supporting open-source and open models to promote innovation in AI while emphasizing the need for vigilant risk monitoring. The report recommends that the US continue to support AI openness while working on new capabilities to monitor potential AI risks but refrain from restricting the availability of open model weights.Read more of this story at Slashdot.

Meta will pay Texas $1.4 billion to settle a lawsuit alleging the company used personal biometric data without user consent, marking the largest privacy-related settlement ever obtained by a state. The Texas Tribune reports: The 2022 lawsuit, filed by Texas Attorney General Ken Paxton in state court, alleged that Meta had been using facial recognition software on photos uploaded to Facebook without Texans' consent. The settlement will be paid over five years. The attorney general's office did not say whether the money from the settlement would go into the state's general fund or if it would be distributed in some other way. The settlement, announced Tuesday, does not act as an admission of guilt and Meta maintains no wrongdoing. This was the first lawsuit Paxton's office argued under a 2009 state law that protects Texans' biometric data, like fingerprints and facial scans. The law requires businesses to inform and get consent from individuals before collecting such data. It also limits sharing this data, except in certain cases like helping law enforcement or completing financial transactions. Businesses must protect this data and destroy it within a year after it's no longer needed. In 2011, Meta introduced a feature known as Tag Suggestions to make it easier for users to tag people in their photos. According to Paxton's office, the feature was turned on by default and ran facial recognition on users' photos, automatically capturing data protected by the 2009 law. That system was discontinued in 2021, with Meta saying it deleted over 1 billion people's individual facial recognition data. As part of the settlement, Meta must notify the attorney general's office of anticipated or ongoing activities that may fall under the state's biometric data laws. If Texas objects, the parties have 60 days to attempt to resolve the issue. Meta officials said the settlement will make it easier for the company to discuss the implications and requirements of the state's biometric data laws with the attorney general's office, adding that data protection and privacy are core priorities for the firm.Read more of this story at Slashdot.

"A Fortune 50 company paid a record-breaking $75 million ransom payment to the Dark Angels ransomware gang," writes BleepingComputer's Lawrence Abrams, citing a report (PDF) by Zscaler ThreatLabz. From the report: The largest known ransom payment was previously $40 million, which insurance giant CNA paid after suffering an Evil Corp ransomware attack. While Zscaler did not share what company paid the $75 million ransom, they mentioned the company was in the Fortune 50 and the attack occurred in early 2024. One Fortune 50 company that suffered a cyberattack in February 2024 is pharmaceutical giant Cencora, ranked #10 on the list. No ransomware gang ever claimed responsibility for the attack, potentially indicating that a ransom was paid. Zscaler ThreatLabz says that Dark Angels utilizes the "Big Game Hunting" strategy, which is to target only a few high-value companies in the hopes of massive payouts rather than many companies at once for numerous but smaller ransom payments. "The Dark Angels group employs a highly targeted approach, typically attacking a single large company at a time," explains the Zscaler ThreatLabz researchers. "This is in stark contrast to most ransomware groups, which target victims indiscriminately and outsource most of the attack to affiliate networks of initial access brokers and penetration testing teams." According to Chainalysis, the Big Game Hunting tactic has become a dominant trend utilized by numerous ransomware gangs over the past few years.Read more of this story at Slashdot.

According to new report, password manager Dashlane has seen a 400 percent increase in passkey authentications since the beginning of the year, "with 1 in 5 active Dashlane users now having at least one passkey in their Dashlane vault," reports The Verge. From the report: Over 100 sites now offer passkey support, though Dashlane says the top 20 most popular apps account for 52 percent of passkey authentications. When split into industry sectors, e-commerce (which includes eBay, Amazon, and Target) made up the largest share of passkey authentications at 42 percent. So-called "sticky apps" -- meaning those used on a frequent basis, such as social media, e-commerce, and finance or payment sites -- saw the fastest passkey adoption between April and June of this year. Other domains show surprising growth, though -- while Roblox is the only gaming category entry within the top 20 apps, its passkey adoption is outperforming giant platforms like Facebook, X, and Adobe, for example. Dashlane's report also found that passkey usage increased successful sign-ins by 70 percent compared to traditional passwords.Read more of this story at Slashdot.

An anonymous reader quotes a report from CNBC: Perplexity AI on Tuesday debuted a revenue-sharing model for publishers after more than a month of plagiarism accusations. Media outlets and content platforms including Fortune, Time, Entrepreneur, The Texas Tribune, Der Spiegel and WordPress.com are the first to join the company's "Publishers Program." The announcement follows an onslaught of controversy in June, when Forbes said it found a plagiarized version of its paywalled original reporting within Perplexity AI's Pages tool, with no reference to the media outlet besides a small "F" logo at the bottom of the page. Weeks later, Wired said it also found evidence of Perplexity plagiarizing Wired stories, and reported that an IP address "almost certainly linked to Perplexity and not listed in its public IP range" visited its parent company's websites more than 800 times in a three-month span. Under the new partner program, any time a user asks a question and Perplexity generates advertising revenue from citing one of the publisher's articles in its answer, Perplexity will share a flat percentage of that revenue. That percentage counts on a per-article basis, Dmitry Shevelenko, Perplexity's chief business officer, told CNBC in an interview -- meaning that if three articles from one publisher were used in one answer, the partner would receive "triple the revenue share." Shevelenko confirmed that the flat rate is a double-digit percentage but declined to provide specifics. Shevelenko told CNBC that more than a dozen publishers, including "major newspaper dailies and companies that own them," had reached out with interest less than two hours after the program debuted. The company's goal, he said, is to have 30 publishers enrolled by the end of the year, and Perplexity is looking to partner with some of the publishers' ad sales teams so they can sell ads "against all Perplexity inventory." "When Perplexity earns revenue from an interaction where a publisher's content is referenced, that publisher will also earn a share," Perplexity wrote in a blog post, adding that the company will offer publishers API credits and also work with ScalePost.ai to provide analytics to provide "deeper insights into how Perplexity cites their content." Shevelenko told CNBC that Perplexity began engaging with publishers in January and solidified ideas for how its revenue-sharing program would work later in the first quarter of 2024. He said five Perplexity employees were dedicated to working on the program. "Some of it grew out of conversations we were having with publishers about integrating Perplexity APIs and technology into their products," Shevelenko said.Read more of this story at Slashdot.

California's DMV has digitized 42 million car titles using blockchain technology to detect fraud and streamline the title transfer process, enabling residents to claim vehicle titles through a mobile app -- the first such initiative in the U.S. The project is a collaboration with tech company Oxhead Alpha on Ava Labs' Avalanche blockchain. Reuters reports: Digitizing car titles will reduce the need for in-person DMV visits and the blockchain technology will also function as a deterrent against lien fraud.Blockchain technology can help detect lien fraud by creating a transparent and unalterable record of property ownership, making it difficult for fraudulent activity to go unnoticed. California residents will be able to access their digital car titles starting early next year as the DMV builds out the app and infrastructure for consumer access.Read more of this story at Slashdot.

Thomas Claburn reports via The Register: Meta's machine-learning model for detecting prompt injection attacks -- special prompts to make neural networks behave inappropriately -- is itself vulnerable to, you guessed it, prompt injection attacks. Prompt-Guard-86M, introduced by Meta last week in conjunction with its Llama 3.1 generative model, is intended "to help developers detect and respond to prompt injection and jailbreak inputs," the social network giant said. Large language models (LLMs) are trained with massive amounts of text and other data, and may parrot it on demand, which isn't ideal if the material is dangerous, dubious, or includes personal info. So makers of AI models build filtering mechanisms called "guardrails" to catch queries and responses that may cause harm, such as those revealing sensitive training data on demand, for example. Those using AI models have made it a sport to circumvent guardrails using prompt injection -- inputs designed to make an LLM ignore its internal system prompts that guide its output -- or jailbreaks -- input designed to make a model ignore safeguards. [...] It turns out Meta's Prompt-Guard-86M classifier model can be asked to "Ignore previous instructions" if you just add spaces between the letters and omit punctuation. Aman Priyanshu, a bug hunter with enterprise AI application security shop Robust Intelligence, recently found the safety bypass when analyzing the embedding weight differences between Meta's Prompt-Guard-86M model and Redmond's base model, microsoft/mdeberta-v3-base. "The bypass involves inserting character-wise spaces between all English alphabet characters in a given prompt," explained Priyanshu in a GitHub Issues post submitted to the Prompt-Guard repo on Thursday. "This simple transformation effectively renders the classifier unable to detect potentially harmful content." "Whatever nasty question you'd like to ask right, all you have to do is remove punctuation and add spaces between every letter," Hyrum Anderson, CTO at Robust Intelligence, told The Register. "It's very simple and it works. And not just a little bit. It went from something like less than 3 percent to nearly a 100 percent attack success rate."Read more of this story at Slashdot.

An anonymous reader quotes a report from The Verge: The Senate passed the Kids Online Safety Act (KOSA) and the Children and Teens' Online Privacy Protection Act (also known as COPPA 2.0), the first major internet bills meant to protect children to reach that milestone in two decades. A legislative vehicle that included both KOSA and COPPA 2.0 passed 91-3. Senate Majority Leader Chuck Schumer (D-NY) called it "a momentous day" in a speech ahead of the vote, saying that "the Senate keeps its promise to every parent who's lost a child because of the risks of social media." He called for the House to pass the bills "as soon as they can." KOSA is a landmark piece of legislation that a persistent group of parent advocates played a key role in pushing forward -- meeting with lawmakers, showing up at hearings with tech CEOs, and bringing along photos of their children, who, in many cases, died by suicide after experiencing cyberbullying or other harms from social media. These parents say that a bill like KOSA could have saved their own children from suffering and hope it will do the same for other children. The bill works by creating a duty of care for online platforms that are used by minors, requiring they take "reasonable" measures in how they design their products to mitigate a list of harms, including online bullying, sexual exploitation, drug promotion, and eating disorders. It specifies that the bill doesn't prevent platforms from letting minors search for any specific content or providing resources to mitigate any of the listed harms, "including evidence-informed information and clinical resources." The legislation faces significant opposition from digital rights, free speech, and LGBTQ+ advocates who fear it could lead to censorship and privacy issues. Critics argue that the duty of care may result in aggressive content filtering and mandatory age verification, potentially blocking important educational and lifesaving content. The bill may also face legal challenges from tech platforms citing First Amendment violations.Read more of this story at Slashdot.

AmiMoJo writes: Wind turbines and solar panels have overtaken fossil fuels to generate 30% of the European Union's electricity in the first half of the year, a report has found. Power generation from burning coal, oil and gas fell 17% in the first six months of 2024 compared with the same period the year before, according to climate thinktank Ember. It found the continued shift away from polluting fuels has led to a one-third drop in the sector's emissions since the first half of 2022. Chris Rosslowe, an analyst at Ember, said the rise of wind and solar was narrowing the role of fossil fuels. "We are witnessing a historic shift in the power sector, and it is happening rapidly." The report found EU power plants burned 24% less coal and 14% less gas from the first half of 2023 to the first half of 2024. The shift comes despite a small uptick in electricity demand that has followed two years of decline linked to the pandemic and Ukraine war.Read more of this story at Slashdot.

Microsoft has revealed that the global computer outage caused by a faulty CrowdStrike software update, which impacted numerous major corporations, affected far more devices than initially reported, with the tech giant stating that the previously announced figure of 8.5 million affected Windows machines represents only a "subset" of the total impact. Microsoft has refrained from providing a revised estimate of the full scope of the disruption. The revelation comes as the technology sector continues to grapple with the fallout from the incident, which occurred 10 days ago and led to widespread disruptions across various industries, prompting Microsoft to face criticism despite the root cause being traced back to a third-party cybersecurity provider's error. Microsoft clarified that the initial 8.5 million figure was derived solely from devices with enabled crash reporting features, suggesting that the true extent of the outage could be substantially higher, given that many systems do not have this optional feature activated. Further reading: Delta Seeks Damages From CrowdStrike, Microsoft After Outage.Read more of this story at Slashdot.

Logitech, the Swiss-American computer peripherals manufacturer, is considering the development of a long-lasting mouse that could potentially serve customers "forever," according to CEO Hanneke Faber. In a recent interview, Faber revealed that the company's innovation center has presented her with a prototype of such a device. The concept mouse, described as slightly heavier than standard models, would rely on software updates and services to maintain its functionality over time. Faber likened it to a quality watch that doesn't require frequent replacement.Read more of this story at Slashdot.