Slashdot

Apple has shed more light on the bizarre iOS 17.5 bug that caused long-deleted photos to mysteriously reappear on users' devices. In a statement to 9to5Mac, the iPhone maker clarified that the issue stemmed from a corrupted database on the device itself, not iCloud Photos. This means the photos were never fully erased from the device, but they also weren't synced to iCloud. Interestingly, these files could have hitched a ride to new devices through backups or direct transfers.Read more of this story at Slashdot.

ICQ, a once-popular IM, is shutting down on June 26, it says on its website. It once served tens of millions of users daily.Read more of this story at Slashdot.

The head of the UK Environment Agency has admitted that freedom of information requests have been buried by the regulator because the truth about the environment in England is "embarrassing." From a report: Philip Duffy, the body's chief executive, told an audience at the UK River Summit in Morden, south London, this week that his officials were "worried about revealing the true state of what is going on" with regards to the state of the environment. The regulator holds information including about pollution, the state of England's waterways, the meetings its bosses have with water company CEOs, and other data about the state of nature in the country. The Information Commissioner's Office, which oversees the law on the Freedom of Information Act, has warned the regulator that the public have a right to have their requests answered and that transparency should be taken seriously. An ICO spokesperson said: "People have the legal right to promptly receive information they're entitled to and we take action when they don't. We've been clear that public sector leaders should take transparency seriously and see the benefits it brings, including scrutiny of processes and approaches that can then benefit from improvement."Read more of this story at Slashdot.

Messaging app Signal's president Meredith Whittaker criticized rival Telegram's security on Friday, saying Telegram founder Pavel Durov is "full of s---" in his claims about Signal. "Telegram is a social media platform, it's not encrypted, it's the least secure of messaging and social media services out there," Whittaker told TechCrunch in an interview. The comments come amid a war of words between Whittaker, Durov and Twitter owner Elon Musk over the security of their respective platforms. Whittaker said Durov's amplification of claims questioning Signal's security was "incredibly reckless" and "actually harms real people." "Play your games, but don't take them into my court," Whittaker said, accusing Durov of prioritizing being "followed by a professional photographer" over getting facts right about Signal's encryption. Signal uses end-to-end encryption by default, while Telegram only offers it for "secret chats." Whittaker said many in Ukraine and Russia use Signal for "actual serious communications" while relying on Telegram's less-secure social media features. She said the "jury is in" on the platforms' comparative security and that Signal's open source code allows experts to validate its privacy claims, which have the trust of the security community.Read more of this story at Slashdot.

Australia's media regulator is taking legal action against telecom carrier Optus, owned by Singapore Telecommunications, over a cyber attack it faced in September 2022, the telecom operator said on Wednesday. From a report: Australia's No.2 telco, had in September 2022 faced a massive data breach which exposed customers' personal information, including home addresses, passport and phone numbers. Following the incident, the country's Prime Minister Anthony Albanese called for tougher privacy rules to force companies to notify banks faster when they experience similar data breaches. About 10 million Australians, 40% of the population, are Optus customers and could not use smartphones, broadband internet or landlines for much of the day of the breach.The Australian Communications and Media Authority is alleging that Optus Mobile failed to protect the confidentiality of personally identifiable information of its customers from unauthorised interference or unauthorised access.Read more of this story at Slashdot.

California is another state lining up to pass a law requiring adult sites to verify the ages of porn watchers. From a report: The California State Assembly passed the Parent's Accountability and Child Protection Act that will require porn companies doing business in the state to verify that users are 18 years or older. This law would also affect other businesses such as fireworks, body branding, and even BB guns. Democrat Rebecca Bauer-Kahan and Republican Juan Alanis pushed for passage of the bill, which ended up receiving 65 out of possible 80 yes votes, and zero no votes with 15 assembly members listed as not voting. Before the bill becomes law, it still has to pass the State Senate and then be signed by Governor Gavin Newsom. Louisiana was the first state to pass an age verification law for adult sites in 2022. In the past year, several other states jumped on the bandwagon including Utah, Arkansas, Florida, Indiana, Mississippi, Montana, North Carolina, Texas, and Virginia.Read more of this story at Slashdot.

Hackers have compromised a popular courtroom recording software, JAVS, gaining full control through a backdoored update. Louisville, Kentucky-based Justice AV Solutions, its maker, pulled the compromised software, reset passwords, and audited its systems. Cybersecurity firm Rapid7 found that the corrupted installer grants attackers full access and transmits host system data to a command-and-control server. The Record adds: In its advisory, Rapid7 stressed the need to reimage all endpoints where the software was installed, and to reset credentials on web browsers and for any accounts logged into affected endpoints, both local and remote. "Simply uninstalling the software is insufficient, as attackers may have implanted additional backdoors or malware. Re-imaging provides a clean slate," they wrote. "Completely re-imaging affected endpoints and resetting associated credentials is critical to ensure attackers have not persisted through backdoors or stolen credentials."Read more of this story at Slashdot.

An anonymous reader quotes a report from ScienceAlert: A team of scientists has shown that crows can 'count' out loud -- producing a specific and deliberate number of caws in response to visual and auditory cues. While other animals such as honeybees have shown an ability to understand numbers, this specific manifestation of numeric literacy has not yet been observed in any other non-human species. "Producing a specific number of vocalizations with purpose requires a sophisticated combination of numerical abilities and vocal control," writes the team of researchers led by neuroscientist Diana Liao of the University of Tubingen in Germany. "Whether this capacity exists in animals other than humans is yet unknown. We show that crows can flexibly produce variable numbers of one to four vocalizations in response to arbitrary cues associated with numerical values." The ability to count aloud is distinct from understanding numbers. It requires not only that understanding, but purposeful vocal control with the aim of communication. Humans are known to use speech to count numbers and communicate quantities, an ability taught young. [...] "Our results demonstrate that crows can flexibly and deliberately produce an instructed number of vocalizations by using the 'approximate number system', a non-symbolic number estimation system shared by humans and animals," the researchers write in their paper. "This competency in crows also mirrors toddlers' enumeration skills before they learn to understand cardinal number words and may therefore constitute an evolutionary precursor of true counting where numbers are part of a combinatorial symbol system." The findings have been published in the journal Science.Read more of this story at Slashdot.

Using the Euclid space telescope, astronomers have discovered dozens of rogue planets drifting without stars in the Orion nebula. The Guardian reports: The European Space Agency (Esa) launched the $1 billion observatory last summer on a six-year mission to create a 3D map of the cosmos. Armed with its images, scientists hope to understand more about the mysterious 95% of the universe that is unexplained. The first wave of scientific results come from only 24 hours of observations, which revealed 11m objects in visible light and 5m in infrared. Along with the rogue planets, the researchers describe new star clusters, dwarf galaxies and very distant, bright galaxies from the first billion years of the universe. A flurry of new images from the same observations are the largest ever taken in space and demonstrate the stunning wide-field views that astronomers can expect from Euclid in the coming years. Among those released on Thursday is a breathtaking image of Messier 78, a vibrant star nursery shrouded in interstellar dust, that reveals complex filaments of gas and dust in unprecedented detail. One of the newly released images shows Abell 2390, a giant conglomeration of more than 50,000 Milky Way-like galaxies. Such galaxy clusters contain up to 10 trillion times as much mass as the sun, much of which is believed to be elusive dark matter. Another image of the Abell 2764 galaxy cluster reveals hundreds of galaxies orbiting within a halo of dark matter. Other images capture NGC 6744, one of the largest spiral galaxies in the nearby universe, and the Dorado group of galaxies, where evolving and merging galaxies produce shell-like structures and vast, curving tidal tails. The rogue planets spotted by Euclid are about 3m years old, making them youngsters on the cosmic scale. They are at least four times as big as Jupiter and were detected thanks to the warmth they emit. Astronomers know they are free-floating because they are so far away from the nearest stars. The celestial strays are destined to drift through the galaxy unless they encounter a star that pulls them into orbit.Read more of this story at Slashdot.

fjo3 quotes a report from Reuters: SpaceX on Wednesday launched an inaugural batch of operational spy satellites it built as part of a new U.S. intelligence network designed to significantly upgrade the country's space-based surveillance powers, the first deployment of several more planned this year. The spy network was revealed in a pair of Reuters reports earlier this year showing SpaceX is building hundreds of satellites for the U.S. National Reconnaissance Office, an intelligence agency, for a vast system in orbit capable of rapidly spotting ground targets almost anywhere in the world. SpaceX's Falcon 9 rocket lifted off from the Vandenberg Space Force Base in Southern California at 4 a.m. EDT on Wednesday, carrying into space what the NRO said was the "first launch of the NRO's proliferated systems featuring responsive collection and rapid data delivery." "Approximately half a dozen launches supporting NRO's proliferated architecture are planned for 2024, with additional launches expected through 2028," the agency said, without naming the number of satellites deployed.Read more of this story at Slashdot.

An anonymous reader quotes a report from Markets Insider: Sunny days in Germany mean gray clouds for solar profitability as the nation's dive into renewables has left it with too much energy. According to a note from SEB Research, in the past 10 days, solar producers have had to take an 87% price cut during production hours. In fact, when production peaks, prices have slid well below zero. On average, the price received was 9.1 euros per megawatt-hour, significantly under the 70.6 euros paid during non-solar-power hours. "This is what happens to power prices when the volume of unregulated power becomes equally big or bigger than demand: Prices collapse when unregulated power produces the most," the Swedish bank wrote on Tuesday. Last year's record wave of solar installations are what's driving Germany's price "destruction" as inventory outpaces consumption. While total solar capacity topped 81.7 gigawatts by 2023's end, demand load only reached 52.2 gigawatts, noted SEB chief commodities analyst Bjarne Schieldrop. The difference between the two actually widens even more in the summer, a season of peak production and lower demand. This also means that consumers are not necessarily benefiting from the low prices, as they typically consume more energy in non-solar hours. Unless new installations are spurred on by subsidies or power purchase agreements, oppressed profitability could eventually halt Germany's solar expansion, Schieldrop said. Instead, focus is likely to move onto improvements that will make more use of the energy produced, such as investments in batteries and grid infrastructure. "This will over time exhaust the availability of 'free power' and drive solar-hour-power-prices back up," Schieldrop wrote. "This again will then eventually open for renewed growth in solar power capacity growth."Read more of this story at Slashdot.

Political consultant Steven Kramer faces a $6 million fine and over two dozen criminal charges for using AI-generated robocalls mimicking President Joe Biden's voice to mislead New Hampshire voters ahead of the presidential primary. The Associated Press reports: The Federal Communications Commission said the fine it proposed Thursday for Steven Kramer is its first involving generative AI technology. The company accused of transmitting the calls, Lingo Telecom, faces a $2 million fine, though in both cases the parties could settle or further negotiate, the FCC said. Kramer has admitted orchestrating a message that was sent to thousands of voters two days before the first-in-the-nation primary on Jan. 23. The message played an AI-generated voice similar to the Democratic president's that used his phrase "What a bunch of malarkey" and falsely suggested that voting in the primary would preclude voters from casting ballots in November. Kramer is facing 13 felony charges alleging he violated a New Hampshire law against attempting to deter someone from voting using misleading information. He also faces 13 misdemeanor charges accusing him of falsely representing himself as a candidate by his own conduct or that of another person. The charges were filed in four counties and will be prosecuted by the state attorney general's office. Attorney General John Formella said New Hampshire was committed to ensuring that its elections "remain free from unlawful interference." Kramer, who owns a firm that specializes in get-out-the-vote projects, did not respond to an email seeking comment Thursday. He told The Associated Press in February that he wasn't trying to influence the outcome of the election but rather wanted to send a wake-up call about the potential dangers of artificial intelligence when he paid a New Orleans magician $150 to create the recording. "Maybe I'm a villain today, but I think in the end we get a better country and better democracy because of what I've done, deliberately," Kramer said in February.Read more of this story at Slashdot.

The IRS has extended the Free File program through 2029, "continuing its partnership with a coalition of private tax software companies that allow most Americans to file federal taxes for free," reports CNBC. From the report: This season, Free File processed 2.9 million returns through May 11, a 7.3% increase compared to the same period last year, according to the IRS. "Free File has been an important partner with the IRS for more than two decades and helped tens of millions of taxpayers," Ken Corbin, chief of IRS taxpayer services, said in a statement Wednesday. "This extension will continue that relationship into the future." "This multi-year agreement will also provide certainty for private-sector partners to help with their future Free File planning," Corbin added. IRS Free File remains open through the Oct. 15 federal tax extension deadline. You can use Free File for 2023 returns with an adjusted gross income of $79,000 or less, which is up from $73,000 in 2022. Fillable Forms are also still available for all income levels.Read more of this story at Slashdot.

An anonymous reader quotes a report from Quartz: Mark Zuckerberg has assembled some of his fellow tech chiefs into an advisory council to guide Meta on its artificial intelligence and product developments. The Meta Advisory Group will periodically meet with Meta's management team, Bloomberg reported. Its members include: Stripe CEO and co-founder Patrick Collison, former GitHub CEO Nat Friedman, Shopify CEO Tobi Lutke, and former Microsoft executive and investor Charlie Songhurst. "I've come to deeply respect this group of people and their achievements in their respective areas, and I'm grateful that they're willing to share their perspectives with Meta at such an important time as we take on new opportunities with AI and the metaverse," Zuckerberg wrote in an internal note to Meta employees, according to Bloomberg. The advisory council differs from Meta's 11-person board of directors because its members are not elected by shareholders, nor do they have fiduciary duty to Meta, a Meta spokesperson told Bloomberg. The spokesperson said that the men will not be paid for their roles on the advisory council. TechCrunch notes that the council features "only white men on it." This "differs from Meta's actual board of directors and its Oversight Board, which is more diverse in gender and racial representation," reports TechCrunch. "It's telling that the AI advisory council is composed entirely of businesspeople and entrepreneurs, not ethicists or anyone with an academic or deep research background. ... it's been proven time and time again that AI isn't like other products. It's a risky business, and the consequences of getting it wrong can be far-reaching, particularly for marginalized groups."Read more of this story at Slashdot.

Speaking of Samsung, samleecole shares a report about the contract the South Korean firm requires repair shops to sign: In exchange for selling them repair parts, Samsung requires independent repair shops to give Samsung the name, contact information, phone identifier, and customer complaint details of everyone who gets their phone repaired at these shops, according to a contract obtained by 404 Media. Stunningly, it also requires these nominally independent shops to "immediately disassemble" any phones that customers have brought them that have been previously repaired with aftermarket or third-party parts and to "immediately notify" Samsung that the customer has used third-party parts. "Company shall immediately disassemble all products that are created or assembled out of, comprised of, or that contain any Service Parts not purchased from Samsung," a section of the agreement reads. "And shall immediately notify Samsung in writing of the details and circumstances of any unauthorized use or misappropriation of any Service Part for any purpose other than pursuant to this Agreement. Samsung may terminate this Agreement if these terms are violated."Read more of this story at Slashdot.

Ben Schoon reports via 9to5Google: After first appearing earlier this year, YouTube once again appears to be rolling out a new redesign for its website that everyone hates. In mid-April, Google started testing a redesign to YouTube's website, which moved the title of the video, its description, and the comments to the side of the screen. In their place, video recommendations were moved directly underneath the video being watched with much larger thumbnails and titles. The change was widely hated by almost everyone who got it, but it didn't show up for all users. In the weeks to follow, YouTube reverted the redesign. Now, the YouTube redesign is back. As spotted by many users, YouTube has started rolling out this redesign yet again. The new look has been appearing over the past few days, though it doesn't seem like it's a wide rollout. Rather, it appears to still be a test more than anything else. What does this second attempt mean? It's still unclear if YouTube intends to make this new look the default experience, but a second round of testing certainly implies more data is being gathered.Read more of this story at Slashdot.

Spotify is about to render its Car Thing dashboard accessory inoperable on December 9th. Not only is the company refusing to open-source the device, it won't offer owners any subscription credit or automatic refund. "Rather, it's just canning the project and telling people to (responsibly) dispose of Car Thing," reports The Verge. From the report: "We're discontinuing Car Thing as part of our ongoing efforts to streamline our product offerings," Spotify wrote in an FAQ on its website. "We understand it may be disappointing, but this decision allows us to focus on developing new features and enhancements that will ultimately provide a better experience to all Spotify users." The company is recommending that customers do a factory reset on the product and find some way of responsibly recycling the hardware. Spotify is also being direct and confirming that there's little reason to ever expect a sequel. "As of now, there are no plans to release a replacement or new version of Car Thing," the FAQ reads. Car Thing went on sale to the public in early 2022 for $90. Spotify halted production several months later "based on several factors, including product demand and supply chain issues." At the time, the company said: "Existing devices will perform as intended."Read more of this story at Slashdot.

Spotify is about to render its Car Thing dashboard accessory inoperable on December 9th. Not only is the company refusing to open-source the device, it won't offer owners any subscription credit or automatic refund. "Rather, it's just canning the project and telling people to (responsibly) dispose of Car Thing," reports The Verge. From the report: "We're discontinuing Car Thing as part of our ongoing efforts to streamline our product offerings," Spotify wrote in an FAQ on its website. "We understand it may be disappointing, but this decision allows us to focus on developing new features and enhancements that will ultimately provide a better experience to all Spotify users." The company is recommending that customers do a factory reset on the product and find some way of responsibly recycling the hardware. Spotify is also being direct and confirming that there's little reason to ever expect a sequel. "As of now, there are no plans to release a replacement or new version of Car Thing," the FAQ reads. Car Thing went on sale to the public in early 2022 for $90. Spotify halted production several months later "based on several factors, including product demand and supply chain issues." At the time, the company said: "Existing devices will perform as intended."Read more of this story at Slashdot.

An anonymous reader quotes a report from NPR: Hospital staff are forced to write notes by hand and deliver orders for tests and prescriptions in person in the ongoing fallout from a recent ransomware attack at the national health system Ascension. Ascension is one of the largest health systems in the United States, with some 140 hospitals located across 19 states and D.C. A spokesperson said in a statement that "unusual activity" was first detected on multiple technology network systems Ascension uses on Wednesday, May 8. Later, representatives confirmed that some of Ascension's electronic health records systems had been affected, along with systems used "to order certain tests, procedures and medications." Some phone capabilities have also been offline, and patients have been unable to access portals used to view medical records and get in touch with their doctors. Due to these interruptions, hospital staff had to shift to "manual and paper based" processes. "Our care teams are trained for these kinds of disruptions and have initiated procedures to ensure patient care delivery continues to be safe and as minimally impacted as possible," an Ascension spokesperson said in a May 8 statement. Kris Fuentes, who works in the neonatal intensive care unit at Ascension Seton Medical Center in Austin, said she remembers when paper charting was the norm. But after so many years of relying on digital systems, she said her hospital wasn't ready to make such an abrupt shift. "It's kind of like we went back 20 years, but not even with the tools we had then," Fuentes said. "Our workflow has just been really unorganized, chaotic and at times, scary." Fuentes said orders for medication, labs and imaging are being handwritten and then distributed by hand to various departments, whereas typically these requests are quickly accessed via computer. A lack of safety checks with these backup methods has introduced errors, she said, and every task is taking longer to complete. "Medications are taking longer to get to patients, lab results are taking longer to get back," she said. "Doctors need the lab results, often, to decide the next treatment plan, but if there's a delay in access to the labs, there's a delay in access to the care that they order." As of Tuesday, Ascension still had no timeline for when the issues might be resolved, and reported that it continued to work with "industry-leading cybersecurity experts" to investigate the ransomware attack and restore affected systems. The FBI and Cybersecurity and Infrastructure Security Agency are also involved in the investigation. "While Ascension facilities remain open, a health system representative said on May 9 that in some cases, emergency patients were being triaged to different hospitals, and some non-emergent appointments and procedures were postponed," reports NPR. "Certain Ascension pharmacies are not operational, and patients are being asked to bring in prescription bottles or numbers." "Individuals who are enrolled in Ascension health insurance plans are being directed to mail in monthly payments while the electronic payment system is down."Read more of this story at Slashdot.

The SEC on Thursday approved multiple spot Ethereum ETFs, including those from BlackRock, Fidelity and Grayscale. The Block reports: While the [19b-4 forms] have been approved, the ETF issuers need to have their S-1 registration statements go effective before trading can begin. The SEC has started conversations with issuers about their S-1 forms but only recently. It's unclear how long this process will take but some analysts are speculating that it could take weeks. "I think that if they work extremely hard it can be done within a couple weeks but there are plenty of examples of this process taking 3+ months historically," added Bloomberg ETF analyst James Seyffart. [...] Since the Bitcoin ETFs were approved, they have amassed an additional 207,000 bitcoin ($14 billion) on top of the 621,000 ($42 billion) bitcoin held in the Grayscale Bitcoin Trust when it converted into an ETF. However, Ethereum ETFs may struggle to get the same level of traction. Bloomberg ETF analyst Eric Balchunas estimated that the Ethereum ETFs may get 10 to 15% of the assets that their Bitcoin counterparts received. "That would put them at like $5 to $8 billion, which, again, for any normal launch in the first couple of years. That's pretty good."Read more of this story at Slashdot.

An anonymous reader shares a report: Did your company recently send you a phishing email? Employers will sometimes simulate phishing messages to train workers on how to spot the hacking threat. But one Google security manager argues the IT industry needs to drop the practice, calling it counterproductive. "PSA for Cybersecurity folk: Our co-workers are tired of being 'tricked' by phishing exercises y'all, and it is making them hate us for no benefit," tweeted Matt Linton, a security incident manager at Google. Linton also published a post on the Google Security blog about the pitfalls of today's simulated phishing tests. The company is required to send fake phishing emails to its employees to meet the US government's security compliance requirements. In these tests, Google sends an employee a phishing email. If the worker clicks a link in the email, they'll be told they failed the test and will usually be required to take some sort of training course. However, Linton argues that simulated phishing tests can lead to harmful side effects, which can undermine a company's security. "There is no evidence that the tests result in fewer incidences of successful phishing campaigns," Linton said, noting that phishing attacks continue to help hackers gain a foothold inside networks, despite such training. He also pointed to a 2021 study that ran for 15 months and concluded that these phishing tests don't "make employees more resilient to phishing."Read more of this story at Slashdot.

Apple executive Phil Schiller admitted in court on Wednesday that the company's court-mandated changes to its iPhone app store payment system have not significantly increased competition. The ongoing hearings in Oakland, California, are determining whether Apple is properly complying with an antitrust order to allow developers to display links to alternative payment options. Despite Apple's implementation of the changes in January, only a small number of apps have sought approval for external payment links. U.S. District Judge Yvonne Gonzalez Rogers has expressed frustration with Apple executives, questioning whether they understand the order's intent to increase competition. Schiller defended Apple's response as well-intentioned but acknowledged the need for further action to encourage more apps to utilize external payment options.Read more of this story at Slashdot.

A server maintained by Cogent Communications, one of the 13 root servers crucial to the Internet's domain name system, fell out of sync with its peers for over four days due to an unexplained glitch. This issue, which could have caused worldwide stability and security problems, was resolved on Wednesday. The root servers store cryptographic keys necessary for authenticating intermediate servers under the DNSSEC mechanism. Inconsistencies in these keys across the 13 servers could lead to an increased risk of attacks such as DNS cache poisoning. Engineers postponed planned updates to the .gov and .int domain name servers' DNSSEC to use ECDSA cryptographic keys until the situation stabilized. Cogent stated that it became aware of the issue on Tuesday and resolved it within 25 hours. ArsTechnica, which has a great writeup about the incident, adds: Initially, some people speculated that the depeering of Tata Communications, the c-root site outage, and the update errors to the c-root itself were all connected somehow. Given the vagueness of the statement, the relation of those events still isn't entirely clear.Read more of this story at Slashdot.

A hacker claims to have breached a scam call center, stolen the source code for the company's tools, and emailed the company's scam victims, according to multiple screenshots and files provided by the hacker to 404 Media. From the report: The hack is the latest in a long series of vigilante actions in which hackers take matters into their own hands and breach or otherwise disrupt scam centers. A massively popular YouTube community, with creators mocking their targets, also exists around the practice. "Hello, everyone! If you are seeing this email then you have been targeted by a fake antivirus company known as 'Waredot,'" the hacker wrote in their alleged email to customers, referring to the scam call center. The email goes on to suggest that customers issue a chargeback "as this trash software isn't worth anywhere NEAR $300-$400 per month, and these trash idiots don't deserve your money!"Read more of this story at Slashdot.

Google pays Reddit $60 million a year to train its AI on posts on Reddit, and it looks like Google's AI is now pulling directly from the dregs of the internet. Google's AI overview for "cheese not sticking to pizza" is brilliant information it got from an 11-year-old Reddit post.Read more of this story at Slashdot.

The AI boom and a growing talent shortage has resulted in companies paying AI software engineers a whole lot more than their non-AI counterparts. From a report: As of April 2024, AI software engineers in the U.S. were paid a median salary of nearly $300,000, while other software technicians made about $100,000 less, according to data compiled by salary data website Levels.fyi. The pay gap that was already about 30% in mid-2022 has grown to almost 50%. "It's clear that companies value AI skills and are willing to pay a premium for them, no matter what job level you're at," wrote data scientist Alina Kolesnikova in the Levels.fyi report. That disparity is more pronounced at some companies. The robotaxi company Cruise, for example, pays AI engineers at the staff level a median of $680,500 -- while their non-AI colleagues make $185,500 less, according to Levels.fyi.Read more of this story at Slashdot.

An old-school video game rivalry has a new chapter: Atari, known for producing one of the first hit home game consoles, has announced the acquisition of long-time rival Intellivision's brand and rights to over 200 games from Intellivision Entertainment. The two companies were key players in the industry's first console war in the late 1970s and early 1980s. Atari plans to expand distribution of Intellivision games and explore new opportunities for the brand. Mike Mika, studio head at Digital Eclipse, an Atari-owned game studio, commented on the deal, saying the acquisition "ends the longest-running console war in history."Read more of this story at Slashdot.

An anonymous reader shares a report: Apple is working on all-screen foldable devices. Unlike its competitors, however, its focus seems less on foldable smartphones and tablets, and instead on an all-screen foldable laptop. Ming-Chi Kuo has previously reported that Apple was developing a 20.3-inch MacBook device for 2027, but today the analyst has shared several key new details about the futuristic MacBook model. One such detail is that Apple is now eyeing an earlier 2026 launch for the product. Here are some of the key features Kuo expects to see in the all-screen MacBook: 1. Multiple foldable screen options are still possible, with the rumored 20.3-inch display potentially replaced by an 18.8-inch panel. The former would, when folded, resemble a current 14-15-inch MacBook, while the latter would correspond better to a modern day 13-14-inch model like the smaller MacBook Air.2. A 2026 debut is now expected for the device, one year earlier than previously reported.3. The MacBook is expected to receive an M5-series chip, which lines up with the expected timeline of the M4 spreading to the whole Mac lineup by the end of 2025.4. Apple's goal is to provide a crease-free design for the foldable display.Read more of this story at Slashdot.

iFixit and Samsung are parting ways. Two years after they teamed up on one of the first direct-to-consumer phone repair programs, iFixit CEO and co-founder Kyle Wiens tells The Verge the two companies have failed to renegotiate a contract -- and says Samsung is to blame. From a report: "Samsung does not seem interested in enabling repair at scale," Wiens tells me, even though similar deals are going well with Google, Motorola, and HMD. He believes dropping Samsung shouldn't actually affect iFixit customers all that much. Instead of being Samsung's partner on genuine parts and approved repair manuals, iFixit will simply go it alone, the same way it's always done with Apple's iPhones. While Wiens wouldn't say who technically broke up with whom, he says price is the biggest reason the Samsung deal isn't working: Samsung's parts are priced so high, and its phones remain so difficult to repair, that customers just aren't buying.Read more of this story at Slashdot.

The Justice Department on Thursday said it was suing Live Nation Entertainment [non-paywalled link], the concert giant that owns Ticketmaster, asking a court to break up the company over claims it illegally maintained a monopoly in the live entertainment industry. From a report: In the lawsuit, which is joined by 29 states and the District of Columbia, the government accuses Live Nation of dominating the industry by locking venues into exclusive ticketing contracts, pressuring artists to use its services and threatening its rivals with financial retribution. Those tactics, the government argues, have resulted in higher ticket prices for consumers and have stifled innovation and competition throughout the industry. "It is time to break up Live Nation-Ticketmaster," Merrick Garland, the attorney general, said in a statement announcing the suit, which is being filed in the U.S. District Court for the Southern District of New York. The lawsuit is a direct challenge to the business of Live Nation, a colossus of the entertainment industry and a force in the lives of musicians and fans alike. The case, filed 14 years after the government approved Live Nation's merger with Ticketmaster, has the potential to transform the multibillion-dollar concert industry. Live Nation's scale and reach far exceed those of any competitor, encompassing concert promotion, ticketing, artist management and the operation of hundreds of venues and festivals around the world.Read more of this story at Slashdot.

Taiwan's new technology minister Wu Cheng-wen said smart machines connected to the internet, including chip tools, can be remotely shut off in the event of a conflict on the island. From a report: Wu, stepping in to oversee science and technology as part of a new administration, was responding to a lawmaker's question about a Bloomberg News report that chipmaking gear maker ASML Holding NV and Taiwan Semiconductor Manufacturing Co. have the ability to disable the world's most advanced chip machines remotely. China on Thursday escalated military exercises around the island that Beijing considers part of its territory, only days after the self-governing democracy of 23 million inaugurated a new president in Lai Ching-te. Tensions in the Taiwan Strait have caused concern in the US and other leading nations about implications for the global economy -- which counts on TSMC to produce the world's most essential chips. "According to today's smart chip manufacturing technology, it can be done," Wu said. "Whatever industry and machinery, if it is linked online, we can use this smart manufacturing technology to remotely control the machinery, including stopping it."Read more of this story at Slashdot.

In a memo sent to employees, T-Mobile said it will be raising prices on some of its older plans, starting with the next bill. CNET reports: The memo was sent out by Jon Freier, president of T-Mobile's consumer group. The note doesn't list which plans are affected, but Freier specifically says that those on the carrier's latest assortment of Go5G plans will not see their prices increase. The same goes for the "millions of customers" who are covered by T-Mobile's Price Lock guarantee, which he says will continue to be in effect for those people. Freier says in the memo that T-Mobile is raising prices on older plans "for the first time in nearly a decade" and that the increases are designed to "keep up with rising inflation and costs." It isn't known exactly how many people will be affected by the change. The note says that it will affect a "small portion" of T-Mobile's customers. Those with free lines from the carrier will not see increases on those lines, T-Mobile confirmed to CNET. The company expects to notify all affected customers on Wednesday. T-Mobile previously tried to move customers on older, generally cheaper plans to some of its newer, pricier ones last year, only to back off the plan amid backlash. Whereas with that move people had the option to call T-Mobile's support and push back against the change, a source familiar with the company's plans tells CNET that this option won't be available with this new rate hike.Read more of this story at Slashdot.

Michael Larabel reports via Phoronix: The latest RISC-V port updates have been merged for the in-development Linux 6.10 kernel. Most notable with today's RISC-V merge to Linux 6.10 is now supporting the Rust programming language within the Linux kernel. RISC-V joins the likes of x86_64, LoongArch, and ARM64 already supporting the use of the in-kernel Rust language support. The use of Rust within the mainline Linux kernel is still rather limited with just a few basic drivers so far and a lot of infrastructure work taking place, but there are a number of new drivers and other subsystem support on the horizon. RISC-V now supporting Rust within the Linux kernel will become more important moving forward. The RISC-V updates for Linux 6.10 also add byte/half-word compare-and-exchange, support for Zihintpause within hwprobe, a PR_RISCV_SET_ICACHE_FLUSH_CTX prctl(), and support for lockless lockrefs. More details on these RISC-V updates for Linux 6.10 via this Git merge.Read more of this story at Slashdot.

An anonymous reader quotes a report from The Guardian: Hopes that replacement fuels for airplanes will slash carbon pollution are misguided and support for these alternatives could even worsen the climate crisis, a new report has warned. There is currently "no realistic or scalable alternative" to standard kerosene-based jet fuels, and touted "sustainable aviation fuels" are well off track to replace them in a timeframe needed to avert dangerous climate change, despite public subsidies, the report by the Institute for Policy Studies, a progressive thinktank, found. "While there are kernels of possibility, we should bring a high level of skepticism to the claims that alternative fuels will be a timely substitute for kerosene-based jet fuels," the report said. [...] In the U.S., Joe Biden's administration has set a goal for 3 billion gallons of sustainable aviation fuel, which is made from non-petroleum sources such as food waste, woody biomass and other feedstocks, to be produced by 2030, which it said will cut aviation's planet-heating emissions by 20%. [...] Burning sustainable aviation fuels still emits some carbon dioxide, while the land use changes needed to produce the fuels can also lead to increased pollution. Ethanol biofuel, made from corn, is used in these fuels, and meeting the Biden administration's production goal, the report found, would require 114m acres of corn in the U.S., about a 20% increase in current land area given over to to the crop. In the UK, meanwhile, 50% of all agricultural land will have to be given up to sustain current flight passenger levels if jet fuel was entirely replaced. "Agricultural land use changes could threaten global food security as well as nature-based carbon sequestration solutions such as the preservation of forests and wetlands," the report states. "As such, SAF production may actively undermine the Paris agreement goal of achieving greatly reduced emissions by 2050." Chuck Collins, co-author of the report, said: "To bring these fuels to the scale needed would require massive subsidies, the trade-offs would be unacceptable and would take resources aware from more urgent decarbonization priorities." "It's a huge greenwashing exercise by the aviation industry. It's magical thinking that they will be able to do this." Phil Ansell, director of the Center for Sustainable Aviation at the University of Illinois, added: "There's an underappreciation of how big the energy problem is for aviation. We are still many years away from zero pollution flights. But it's true that the industry has been slow to pick things up. We are now trying to find solutions, but we are working at this problem and realizing it's a lot harder than we thought. We are late to the game. We are in the dark ages in terms of sustainability, compared to other sectors."Read more of this story at Slashdot.

According to CNBC, Amazon plans to enhance its Alexa voice assistant with generative AI and introduce it to customers through a monthly subscription service. While the price point has yet to be determined, sources say it will not be included in the company's $139-per-year Prime offering. From the report: The team is now tasked with turning Alexa into a relevant device that holds up amid the new AI competition, and one that justifies the resources and headcount Amazon has dedicated to it. It has undergone a massive reorganization, with much of the team shifting to the artificial general intelligence, or AGI, team, according to the three sources. Others pointed to bloat within Alexa, a team of thousands of employees. As of 2023, Amazon said it had sold more than 500 million Alexa-enabled devices, giving the company a foothold with consumers. [...] One source estimated the cost of using generative AI in Alexa at 2 cents per query, and said a $20 price point was floated internally. Another suggested it would need to be in a single-digit dollar amount, which would undercut other subscription offerings. OpenAI's ChatGPT charges $20 per month for its advanced models. Still, they point to Alexa's installed user base, with devices in hundreds of millions of homes, as an opportunity. Those who worked on Alexa say the fact that it's already in people's living rooms and kitchens makes the stakes higher, and mistakes more costly if Alexa doesn't understand a command or provides unreliable information. [...] Amazon will use its own large language model, Titan, in the Alexa upgrade, according to a source.Read more of this story at Slashdot.

The House Foreign Affairs Committee on Wednesday voted overwhelmingly to advance a bill that would make it easier for the Biden administration to restrict the export of AI systems, citing concerns China could exploit them to bolster its military capabilities. From a report: The bill, sponsored by House Republicans Michael McCaul and John Molenaar and Democrats Raja Krishnamoorthi and Susan Wild, also would give the Commerce Department express authority to bar Americans from working with foreigners to develop AI systems that pose risks to U.S. national security. Without this legislation "our top AI companies could inadvertently fuel China's technological ascent, empowering their military and malign ambitions," McCaul, who chairs the committee, warned on Wednesday. "As the (Chinese Communist Party) looks to expand their technological advancements to enhance their surveillance state and war machine, it is critical we protect our sensitive technology from falling into their hands," McCaul added. The Chinese Embassy in Washington did not immediately respond to a request for comment.The bill is the latest sign Washington is gearing up to beat back China's AI ambitions over fears Beijing could harness the technology to meddle in other countries' elections, create bioweapons or launch cyberattacks.Read more of this story at Slashdot.

FCC Chairwoman Jessica Rosenworcel has proposed (PDF) disclosure rules for AI-generated content used in political ads. "If adopted, the proposal would look into whether the FCC should require political ads on radio and TV to disclose when there is AI-generated content," reports Quartz. From the report: The FCC is seeking comment on whether on-air and written disclosure should be required in broadcasters' political files when AI-generated content is used in political ads; proposing that the rules apply to both candidates and issue advertisements; requesting comment on what a specific definition of AI-generated comment should look like; and proposing that disclosure rules be applied to broadcasters and entities involved in programming, such as cable operators and radio providers. The proposed disclosure rules do not prohibit the use of AI-generated content in political ads. The FCC has authority through the Bipartisan Campaign Reform Act to make rules around political advertising. If the proposal is adopted, the FCC will take public comment on the rules. "As artificial intelligence tools become more accessible, the Commission wants to make sure consumers are fully informed when the technology is used," Rosenworcel said in a statement. "Today, I've shared with my colleagues a proposal that makes clear consumers have a right to know when AI tools are being used in the political ads they see, and I hope they swiftly act on this issue."Read more of this story at Slashdot.

An anonymous reader quotes a report from Krebs On Security: Apple and the satellite-based broadband service Starlink each recently took steps to address new research into the potential security and privacy implications of how their services geo-locate devices. Researchers from the University of Maryland say they relied on publicly available data from Apple to track the location of billions of devices globally -- including non-Apple devices like Starlink systems -- and found they could use this data to monitor the destruction of Gaza, as well as the movements and in many cases identities of Russian and Ukrainian troops. At issue is the way that Apple collects and publicly shares information about the precise location of all Wi-Fi access points seen by its devices. Apple collects this location data to give Apple devices a crowdsourced, low-power alternative to constantly requesting global positioning system (GPS) coordinates. Both Apple and Google operate their own Wi-Fi-based Positioning Systems (WPS) that obtain certain hardware identifiers from all wireless access points that come within range of their mobile devices. Both record the Media Access Control (MAC) address that a Wi-FI access point uses, known as a Basic Service Set Identifier or BSSID. Periodically, Apple and Google mobile devices will forward their locations -- by querying GPS and/or by using cellular towers as landmarks -- along with any nearby BSSIDs. This combination of data allows Apple and Google devices to figure out where they are within a few feet or meters, and it's what allows your mobile phone to continue displaying your planned route even when the device can't get a fix on GPS. With Google's WPS, a wireless device submits a list of nearby Wi-Fi access point BSSIDs and their signal strengths -- via an application programming interface (API) request to Google -- whose WPS responds with the device's computed position. Google's WPS requires at least two BSSIDs to calculate a device's approximate position. Apple's WPS also accepts a list of nearby BSSIDs, but instead of computing the device's location based off the set of observed access points and their received signal strengths and then reporting that result to the user, Apple's API will return the geolocations of up to 400 hundred more BSSIDs that are nearby the one requested. It then uses approximately eight of those BSSIDs to work out the user's location based on known landmarks. In essence, Google's WPS computes the user's location and shares it with the device. Apple's WPS gives its devices a large enough amount of data about the location of known access points in the area that the devices can do that estimation on their own. That's according to two researchers at the University of Maryland, who theorized they could use the verbosity of Apple's API to map the movement of individual devices into and out of virtually any defined area of the world. The UMD pair said they spent a month early in their research continuously querying the API, asking it for the location of more than a billion BSSIDs generated at random. They learned that while only about three million of those randomly generated BSSIDs were known to Apple's Wi-Fi geolocation API, Apple also returned an additional 488 million BSSID locations already stored in its WPS from other lookups. "Plotting the locations returned by Apple's WPS between November 2022 and November 2023, Levin and Rye saw they had a near global view of the locations tied to more than two billion Wi-Fi access points," the report adds. "The map showed geolocated access points in nearly every corner of the globe, apart from almost the entirety of China, vast stretches of desert wilderness in central Australia and Africa, and deep in the rainforests of South America." The researchers wrote: "We observe routers move between cities and countries, potentially representing their owner's relocation or a business transaction between an old and new owner. While there is not necessarily a 1-to-1 relationship between Wi-Fi routers and users, home routers typically only have several. If these users are vulnerable populations, such as those fleeing intimate partner violence or a stalker, their router simply being online can disclose their new location." A copy of the UMD research is available here (PDF).Read more of this story at Slashdot.

Microsoft is adding screenshot prevention controls in Edge to block you from taking screenshots at work. "It's all designed to prevent you from sharing screenshots with competitors, relatives, and journalists using Microsoft Edge for Business," reports PCWorld. From the report: Specifically, IT managers at corporations will be able to tag web pages as protected, as defined in various Microsoft policy engines in Microsoft 365, Microsoft Defender for Cloud Apps, Microsoft Intune Mobile Application Management and Microsoft Purview, Microsoft said. The screenshot prevention feature will be available to customers in the "coming months," Microsoft said. It's also unclear whether third-party tools will be somehow blocked from taking screenshots or recording video, too. Microsoft will also roll out a way to force Edge for Business users to automatically update their browsers. The feature will enter a preview phase over the next few weeks, Microsoft said. "The Edge management service will enable IT admins to see which devices have Edge instances that are out of date and at risk," Microsoft said. "It will also provide mitigating controls, such as forcing a browser restart to install updates, enabling automatic browser updates or enabling enhanced security mode for added protections."Read more of this story at Slashdot.

Longtime Slashdot reader schwit1 shares a report from Ars Technica: The first crewed test flight of Boeing's long-delayed Starliner spacecraft won't take off as planned Saturday and could face a longer postponement as engineers evaluate a stubborn leak of helium from the capsule's propulsion system. NASA announced the latest delay of the Starliner test flight late Tuesday. Officials will take more time to consider their options for how to proceed with the mission after discovering the small helium leak on the spacecraft's service module. The space agency did not describe what options are on the table, but sources said they range from flying the spacecraft "as is" with a thorough understanding of the leak and confidence it won't become more significant in flight, to removing the capsule from its Atlas V rocket and taking it back to a hangar for repairs. Theoretically, the former option could permit a launch attempt as soon as next week. The latter alternative could delay the launch until at least late summer. "The team has been in meetings for two consecutive days, assessing flight rationale, system performance, and redundancy," NASA said in a statement Tuesday night. "There is still forward work in these areas, and the next possible launch opportunity is still being discussed. NASA will share more details once we have a clearer path forward."Read more of this story at Slashdot.

An anonymous reader quotes a report from The Guardian: People whose names get mangled by autocorrect have urged technology companies to fix the problem faster, with one person whose name gets switched to "Satan" saying: "I am tired of it." People with Irish, Indian and Welsh names are among those calling for improvements to the systems that operate on phones and computers as part of the "I am not a typo" campaign. "It is important that technology becomes more inclusive," said Savan-Chandni Gandecha, 34, a British Indian content creator whose name, which means monsoon moonlight, has been autocorrected to Satan. "My name has also been corrected to Savant," he said. "It is sometimes corrected to Savan, or the hyphen is not accepted by online forms and that irks me," he said. "Even in India my name gets corrected to "Sawan", and it's not just an English issue. It's a multi-language thing." The campaign has estimated that four out of 10 names of babies born in England and Wales in 2021 were deemed "wrong" or "not accepted" when tested on Microsoft's English dictionary. Dhruti Shah, a journalist, has backed the campaign after seeing her name autocorrected to "Dirty" and "Dorito". She said: "My first name isn't even that long -- only six characters -- but yet when it comes up as an error or it's mangled and considered an unknown entity, it's like saying that it's not just your name that's wrong, but you are." The campaign group -- established by a group of people working in the creative industries in London -- wrote an open letter to technology companies, which pointed out that between 2017 and 2021, 2,328 people named Esmae were born, compared with 36 Nigels. Esmae gets autocorrected to Admar, while Nigel is unchanged. "There are so many diverse names in the global majority but autocorrect is western- and white-focused," said Gandecha. Rashmi Dyal-Chand, a professor at Northeastern University in the US whose name is sometimes corrected to Sashimi, is supporting the latest campaign and said: "For people with names like mine, autocorrect is not convenient and helpful. It is unhelpful. And yes -- it is harmful." "We all increasingly rely on smartphones, tablets, word processors, and apps that use autocorrect. Yet autocorrect incorporates a set of defaults -- including dictionaries -- that help some of its users to communicate seamlessly at the expense of others who cannot." Karen Fox, whose children are called Eoin and Niamh, said of autocorrect: "The red line bothers me -- I didn't choose the 'wrong' name for my child. Tech companies update dictionaries with slang all the time and I think it should be an easy thing to do and definitely a priority."Read more of this story at Slashdot.

Nvidia reported fiscal first-quarter earnings surpassing expectations with strong forecasts, indicating sustained demand for its AI chips. Following the news, the company's stock rose over 6% in extended trading. Nvidia also said it was splitting its stock 10 to 1. CNBC reports: Nvidia said it expected sales of $28 billion in the current quarter. Wall Street was expecting earnings per share of $5.95 on sales of $26.61 billion, according to LSEG. Nvidia reported net income for the quarter of $14.88 billion, or $5.98 per share, compared with $2.04 billion, or 82 cents, in the year-ago period. [...] Nvidia said its data center category rose 427% from the year-ago quarter to $22.6 billion in revenue. Nvidia CFO Colette Kress said in a statement that it was due to shipments of the company's "Hopper" graphics processors, which include the company's H100 GPU. Nvidia also highlighted strong sales of its networking parts, which are increasingly important as companies build clusters of tens of thousands of chips that need to be connected. Nvidia said that it had $3.2 billion in networking revenue, primarily its Infiniband products, which was over three times higher than last year's sales. Nvidia, before it became the top supplier to big companies building AI, was known primarily as a company making hardware for 3D gaming. The company's gaming revenue was up 18% during the quarter to $2.65 billion, which Nvidia attributed to strong demand. The company also sells chips for cars and chips for advanced graphics workstations, which remain much smaller than its data center business. The company reported $427 million in professional visualization sales, and $329 million in automotive sales. Nvidia said it bought back $7.7 billion worth of its shares and paid $98 million in dividends during the quarter. Nvidia also said that it's increasing its quarterly cash dividend from 4 cents per share to 10 cents on a pre-split basis. After the split, the dividend will be a penny a share.Read more of this story at Slashdot.

Microsoft's Windows Recall feature is attracting controversy before even venturing out of preview. From a report: The principle is simple. Windows takes a snapshot of a user's active screen every few seconds and dumps it to disk. The user can then scroll through the snapshots and, when something is selected, the user is given options to interact with the content. Mozilla's Chief Product Officer, Steve Teixeira, told The Register: "Mozilla is concerned about Windows Recall. From a browser perspective, some data should be saved, and some shouldn't. Recall stores not just browser history, but also data that users type into the browser with only very coarse control over what gets stored. While the data is stored in encrypted format, this stored data represents a new vector of attack for cybercriminals and a new privacy worry for shared computers. "Microsoft is also once again playing gatekeeper and picking which browsers get to win and lose on Windows -- favoring, of course, Microsoft Edge. Microsoft's Edge allows users to block specific websites and private browsing activity from being seen by Recall. Other Chromium-based browsers can filter out private browsing activity but lose the ability to block sensitive websites (such as financial sites) from Recall. "Right now, there's no documentation on how a non-Chromium based, third-party browser, such as Firefox, can protect user privacy from Recall. Microsoft did not engage our cooperation on Recall, but we would have loved for that to be the case, which would have enabled us to partner on giving users true agency over their privacy, regardless of the browser they choose."Read more of this story at Slashdot.

A consumer-grade spyware app has been found running on the check-in systems of at least three Wyndham hotels across the United States, TechCrunch reported Wednesday. From the report: The app, called pcTattletale, stealthily and continually captured screenshots of the hotel booking systems, which contained guest details and customer information. Thanks to a security flaw in the spyware, these screenshots are available to anyone on the internet, not just the spyware's intended users. This is the most recent example of consumer-grade spyware exposing sensitive information because of a security flaw in the spyware itself. It's also the second known time that pcTattletale has exposed screenshots of the devices that the app is installed on. Several other spyware apps in recent years had security bugs or misconfigurations that exposed the private and personal data of unwitting device owners, in some cases prompting action by government regulators. pcTattletale allows whomever controls it to remotely view the target's Android or Windows device and its data, from anywhere in the world. pcTattletale's website says the app "runs invisibly in the background on their workstations and can not be detected."Read more of this story at Slashdot.

The Consumer Financial Protection Bureau declared on Wednesday that customers of the burgeoning buy now, pay later industry have the same federal protections as users of credit cards. From a report: The agency unveiled what it called an "interpretive rule" that deemed BNPL lenders essentially the same as traditional credit card providers under the decades-old Truth in Lending Act. That means the industry -- currently dominated by fintech firms like Affirm, Klarna and PayPal -- must make refunds for returned products or canceled services, must investigate merchant disputes and pause payments during those probes, and must provide bills with fee disclosures. "Regardless of whether a shopper swipes a credit card or uses Buy Now, Pay Later, they are entitled to important consumer protections under long-standing laws and regulations already on the books," CFPB Director Rohit Chopra said in a release. The CFPB, which last week was handed a crucial victory by the Supreme Court, has pushed hard against the U.S. financial industry, issuing rules that slashed credit card late fees and overdraft penalties. The agency, formed in the aftermath of the 2008 financial crisis, began investigating the BNPL industry in late 2021.Read more of this story at Slashdot.

WhatsApp's security team warned that despite the app's encryption, users are vulnerable to government surveillance through traffic analysis, according to an internal threat assessment obtained by The Intercept. The document suggests that governments can monitor when and where encrypted communications occur, potentially allowing powerful inferences about who is conversing with whom. The report adds: Even though the contents of WhatsApp communications are unreadable, the assessment shows how governments can use their access to internet infrastructure to monitor when and where encrypted communications are occurring, like observing a mail carrier ferrying a sealed envelope. This view into national internet traffic is enough to make powerful inferences about which individuals are conversing with each other, even if the subjects of their conversations remain a mystery. "Even assuming WhatsApp's encryption is unbreakable," the assessment reads, "ongoing 'collect and correlate' attacks would still break our intended privacy model." The WhatsApp threat assessment does not describe specific instances in which it knows this method has been deployed by state actors. But it cites extensive reporting by the New York Times and Amnesty International showing how countries around the world spy on dissident encrypted chat app usage, including WhatsApp, using the very same techniques. As war has grown increasingly computerized, metadata -- information about the who, when, and where of conversations -- has come to hold immense value to intelligence, military, and police agencies around the world. "We kill people based on metadata," former National Security Agency chief Michael Hayden once infamously quipped. Meta said "WhatsApp has no backdoors and we have no evidence of vulnerabilities in how WhatsApp works." Though the assessment describes the "vulnerabilities" as "ongoing," and specifically mentions WhatsApp 17 times, a Meta spokesperson said the document is "not a reflection of a vulnerability in WhatsApp," only "theoretical," and not unique to WhatsApp.Read more of this story at Slashdot.

The seemingly "never-ending" rain last autumn and winter in the UK and Ireland was made 10 times more likely and 20% wetter by human-caused global heating, a study has found. From a report: More than a dozen storms battered the region in quick succession between October and March, which was the second-wettest such period in nearly two centuries of records. The downpour led to severe floods, at least 20 deaths, severe damage to homes and infrastructure, power blackouts, travel cancellations, and heavy losses of crops and livestock. The level of rain caused by the storms would have occurred just once in 50 years without the climate crisis, but is now expected every five years owing to 1.2C of global heating reached in recent years. If fossil fuel burning is not rapidly cut and the global temperature reaches 2C in the next decade or two, such severe wet weather would occur every three years on average, the analysis showed. [...] The analysis, conducted by climate scientists working as part of the World Weather Attribution group, compared how likely and how intense the wet winter was in today's heated world with how likely it would have been in a world without high levels of carbon emissions. Warmer air can hold more water vapour and therefore produce more rain. Hundreds of "attribution studies" have shown how global heating is already supercharging extreme weather such as heatwaves, wildfires, droughts and storms across the world.Read more of this story at Slashdot.

An anonymous reader shares a report: For those of us who came of age in the early days of personal computing, the names "Intel 486" and "Windows XP" evoke a nostalgic whirlwind of memories. The 486 was the hot new CPU of the early 90s, while Windows XP became a household name and Microsoft's most popular OS over a decade later. But did you ever imagine these two icons of different eras could be merged into an unholy union? Well, start brushing off those vintage 486 rigs, because a modder has actually made it happen. Going by the name Dietmar on the MSFN forums, he has somehow managed to get Microsoft's beloved Windows XP running on the ancient 486 architecture. It's worth mentioning that these two were never meant to coexist. The first 486 chips hit the market way back in 1989, while Windows XP landed over a decade later in 2001. The 486 represented a major breakthrough when Intel unveiled it in 1989. Packing over a million transistors, it remained Intel's primary x86 chip until the arrival of the Pentium in 1993. Such was the processor's longevity that Intel continued manufacturing it for embedded systems until 2007. Still, 486 systems were simply too underpowered to run XP, which needed at least a Pentium-class processor from the 586 generation - or any compatible chip that ran at 233MHz or higher. Meanwhile, the i486 could only do 133MHz. It also needed at least 64MB of RAM and at least 1.5GB of storage.Read more of this story at Slashdot.

The United States has assessed that Russia launched what is likely a counter space weapon last week that's now in the same orbit as a U.S. government satellite, Pentagon spokesman Maj. Gen. Pat Ryder confirmed Tuesday. From a report: "What I'm tracking here is on May 16, as you highlighted, Russia launched a satellite into low Earth orbit that we that we assess is likely a counter space weapon presumably capable of attacking other satellites in low Earth orbit," Ryder said when questioned by ABC News about the information, which was made public earlier Tuesday by Robert Wood, deputy U.S. ambassador to the United Nations. "Russia deployed this new counter space weapon into the same orbit as a U.S. government satellite," Ryder continued. "And so assessments further indicate characteristics resembling previously deployed counter space payloads from 2019 and 2022." Ryder added: "Obviously, that's something that we'll continue to monitor. Certainly, we would say that we have a responsibility to be ready to protect and defend the space domain and ensure continuous and uninterrupted support to the joint and combined force. And we'll continue to balance the need to protect our interests in space with our desire to preserve a stable and sustainable space environment." When asked if the Russian counter space weapon posed a threat to the U.S. satellite, Ryder responded: "Well, it's a counter space weapon in the same orbit as a U.S. government satellite."Read more of this story at Slashdot.

Amazon is upgrading its decade-old Alexa voice assistant with generative AI and plans to charge a monthly subscription fee to offset the cost of the technology, CNBC reported Wednesday, citing people with knowledge of Amazon's plans. From the report: The Seattle-based tech and retail giant will launch a more conversational version of Alexa later this year, potentially positioning it to better compete with new generative AI-powered chatbots from companies including Google and OpenAI, according to two sources familiar with the matter, who asked not to be named because the discussions were private. Amazon's subscription for Alexa will not be included in the $139-per-year Prime offering, and Amazon has not yet nailed down the price point, one source said. While Amazon wowed consumers with Alexa's voice-driven tasks in 2014, its capabilities could seem old-fashioned amid recent leaps in artificial intelligence. Last week, OpenAI announced GPT-4o, with the capability for two-way conversations that can go significantly deeper than Alexa. For example, it can translate conversations into different languages in real time. Google launched a similar generative-AI-powered voice feature for Gemini.Read more of this story at Slashdot.