Slashdot

Lenovo has filed a lawsuit against Asus, claiming that the company's laptops infringe on four of their patents. "Lenovo is seeking damages and for Asus to stop selling Zenbook laptops and other allegedly infringing products in the U.S.," reports Ars Technica. From the report: The lawsuit [PDF] centers on four patents. The first, entitled "Methods and apparatus for transmitting in resource blocks" was issued in 2021 and relates to minimizing the delay experienced during an uplink package transmission by reducing the number of steps for a wireless device to upload data. Lenovo's lawsuit, which uses Asus' Zenbook Pro 14 OLED (UX6404) as an example of an allegedly infringing product, also claims Asus is selling laptops that violate the wireless wake-on-LAN power management patent issued to Lenovo in 2010. Another patent Lenovo is suing over was issued in 2010 and entitled "Touchpad diagonal scrolling." It allows users to "initiate a diagonal scroll at any location on a touchpad by using two fingers," the lawsuit says. Finally, Lenovo is upset about Asus' purported infringing of its "Dual shaft hinge with angle timing shaft mechanism" patent rewarded in 2014. Lenovo describes it as a hinge block enabling 2-in-1 laptops to go from clamshell mode to tablet mode. For this accused patent infringement, Lenovo's lawsuit points to Asus' Zenbook Flip 14 UX461, which Asus advertises as having a 360-degree "ErgoLift" hinge that "lifts and tilts the keyboard into the perfect typing position when the display is rotated into laptop mode." As noted by The Register today, in a letter to the ITC dated November 15 [PDF], Lenovo said it wants Asus to "cease and desist from marketing, advertising, distributing, offering for sale, selling, or otherwise transferring, including the movement or shipment of inventory" products that infringe upon the four patents in question. In a further dig, Lenovo added that a limited exclusion order wouldn't harm US consumers or competition, due to Asus' smaller market share. According to the IDC, Asus represented about 7.1 percent of the PC market (which includes laptops and desktops) in Q3 2023. Lenovo led at 23.5 percent.Read more of this story at Slashdot.

Dan Robinson reports via The Register: Nvidia is facing legal action in the U.S. for theft of trade secrets from a German automotive company, which alleges its ex-employee made an epic blunder of showing something he shouldn't have when minimizing a Powerpoint slide at a joint Microsoft Teams meeting both companies were attending. The automotive firm, Valeo Schalter und Sensoren, claims the flashing of its source code for the assisted parking app on the call is evidence to support its accusations that the ex-staffer stole the IP before leaving to join Nvidia. The two tech companies were both on the call as they were each suppliers on contract for a parking and driving assistance project with a major automotive OEM that was not named in the suit. Under the terms of the contract with the OEM, the suit states, engineers from both Valeo and Nvidia had to schedule collaboration meetings so that "Nvidia employees could ask Valeo employees questions about Valeo's ultrasonic hardware and data associated with the hardware." The complaint [PDF], filed by Valeo in the US District Court for Northern California, goes on to allege misappropriation of trade secrets by Nvidia, through which the company claims the GPU-maker attempted to take a shortcut into the automotive marketplace by using its stolen software. Nvidia is a relative newcomer to the automotive market, introducing its Nvidia Drive platform at the CES trade show in 2015. Valeo says that it only discovered the theft during a conference call on March 8, 2022 between its engineers and those of Nvidia to collaborate on work for an automotive OEM, a customer of both companies. Valeo develops automotive hardware such as cameras and sensors, in addition to software to processes the data from the hardware. The court filing states that Valeo previously provided the OEM in question with both hardware and software for its autonomous vehicle technology, but in this instance, it asked Valeo to provide ultrasonic hardware only. For the software side, the OEM instead chose Nvidia. One of the Nvidia engineers on the call, named as Mohammad Moniruzzaman, was a former employee of Valeo, and during the call, made using Microsoft's Teams software, he shared his screen in order to give a presentation containing questions for the Valeo participants. Yet also visible on his screen after the presentation finished - or so the complaint alleges - was a window of source code, which the Valeo participants recognized as belonging to their company. According to the filing, one of the Valeo engineers succeeded in capturing a screenshot as evidence. According to Valeo, the source code file names that were allegedly visible in the screenshot were identical to those used in its source code, and it also claims the source code appeared to be identical to proprietary code maintained in Valeo's repositories. The company says in the suit that it then conducted a comprehensive internal forensic IT audit, and alleges it discovered that Moniruzzaman had copied four repositories containing the code for Valeo's parking and driving assistance software, prior to leaving the company in May 2021. [...] The claim is that Valeo's source code and documentation has been used in the development of Nvidia's software, and this provided the GPU giant and its engineers with a shortcut in the development of its parking assistance code, saving Nvidia perhaps hundreds of millions of dollars in development costs. According to the court filing, Nvidia said it removed Moniruzzaman's additions to its code. However, those additions underwent "a peer review process of 10-30 iterations of feedback loops" before the code was fully merged into Nvidia's database. Valeo contends that this process of extensive edits by others means it is not realistic that Nvidia could have fully remove Moniruzzaman's contributions. Valeo claims it has suffered competitive harm as a result of Nvidia's action and as a result is seeking damages, to be determined at trial, as well as an injunction prohibiting Nvidia or its employees from using or disclosing Valeo's trade secrets. A date for jury trial has yet to be announced.Read more of this story at Slashdot.

An anonymous reader quotes a report from TechCrunch: Sam Altman may have been asked to leave OpenAI, but his involvement in crypto project Tools for Humanity, which is building Worldcoin, remains uninterrupted, a source close to the project told TechCrunch. Altman has "consistent and valuable" engagement with Tools for Humanity and "that is not expected to change," the source said. The source added that Altman is still chairman and co-founder of the project, confirming that the information on the project's website is up to date. News of Altman's ouster sent the Worldcoin token, WLD, plummeting to a low of $1.84 on Saturday, but the token recovered over the weekend and is currently trading on par with previous levels at $2.40, per CoinMarketCap data. Worldcoin raised $115 million in May in a Series C round led by Blockchain Capital. As of March, Altman was on the project's board, but was not involved in day-to-day operations. "Proof of personhood is becoming increasingly important in the rapidly advancing age of AI," The Worldcoin Foundation told TechCrunch late on Monday. The team supporting Worldcoin is still focused on the project's mission, "building a more human internet and a more accessible global economy through World ID, a privacy-enhancing way to verify humanness and uniqueness online," the company said.Read more of this story at Slashdot.

OpenAI's "ChatGPT with voice" feature announced in September is now rolling out to all free users on mobile. Engadget reports: When the company first introduced voice chats, it admitted that the capability to create "realistic synthetic voices from just a few seconds of real speech" presents new risks. It could, for instance, allow bad actors to impersonate public figures or anybody they want. As a result, it decided that ChatGPT's voice feature will focus on conversations. It's powered by a text-to-speech model that can generate "human-like audio from just text and a few seconds of sample speech." OpenAI worked with voice actors to create the capability and offers five different voices to choose from.Read more of this story at Slashdot.

Nvidia's fiscal third-quarter results surpassed Wall Street's predictions, with revenue growing 206% year over year. However, Nvidia shares are down after the company called for a negative impact in the next quarter due to export restrictions affecting sales in China and other countries. CNBC reports: Nvidia's revenue grew 206% year over year during the quarter ending Oct. 29, according to a statement. Net income, at $9.24 billion, or $3.71 per share, was up from $680 million, or 27 cents per share, in the same quarter a year ago. The company's data center revenue totaled $14.51 billion, up 279% and more than the StreetAccount consensus of $12.97 billion. Half of the data center revenue came from cloud infrastructure providers such as Amazon, and the other from consumer internet entities and large companies, Nvidia said. Healthy uptake came from clouds that specialize in renting out GPUs to clients, Kress said on the call. The gaming segment contributed $2.86 billion, up 81% and higher than the $2.68 billion StreetAccount consensus. With respect to guidance, Nvidia called for $20 billion in revenue for the fiscal fourth quarter. That implies nearly 231% revenue growth. [...] Nvidia faces obstacles, including competition from AMD and lower revenue because of export restrictions that can limit sales of its GPUs in China. But ahead of Tuesday report, some analysts were nevertheless optimistic.Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Miscreants are actively exploiting two new zero-day vulnerabilities to wrangle routers and video recorders into a hostile botnet used in distributed denial-of-service attacks, researchers from networking firm Akamai said Thursday. Both of the vulnerabilities, which were previously unknown to their manufacturers and to the security research community at large, allow for the remote execution of malicious code when the affected devices use default administrative credentials, according to an Akamai post. Unknown attackers have been exploiting the zero-days to compromise the devices so they can be infected with Mirai, a potent piece of open source software that makes routers, cameras, and other types of Internet of Things devices part of a botnet that's capable of waging DDoSes of previously unimaginable sizes. Akamai researchers said one of the zero-days under attack resides in one or more models of network video recorders. The other zero-day resides in an "outlet-based wireless LAN router built for hotels and residential applications." The router is sold by a Japan-based manufacturer, which "produces multiple switches and routers." The router feature being exploited is "a very common one," and the researchers can't rule out the possibility it's being exploited in multiple router models sold by the manufacturer. Akamai said it has reported the vulnerabilities to both manufacturers, and that one of them has provided assurances security patches will be released next month. Akamai said it wasn't identifying the specific devices or the manufacturers until fixes are in place to prevent the zero-days from being more widely exploited. The Akamai post provides a host of file hashes and IP and domain addresses being used in the attacks. Owners of network video cameras and routers can use this information to see if devices on their networks have been targeted. [...] In an email, Akamai researcher Larry Cashdollar wrote: "The devices don't typically allow code execution through the management interface. This is why getting RCE through command injection is needed. Because the attacker needs to authenticate first they have to know some login credentials that will work. If the devices are using easy guessable logins like admin:password or admin:password1 those could be at risk too if someone expands the list of credentials to try." He said that both manufacturers have been notified, but only one of them has so far committed to releasing a patch, which is expected next month. The status of a fix from the second manufacturer is currently unknown. Cashdollar said an incomplete Internet scan showed there are at least 7,000 vulnerable devices. The actual number of affected devices may be higher.Read more of this story at Slashdot.

Bard, Google's AI chatbot, has steadily been getting more useful after a lackluster introduction. Now the bot's YouTube integration is getting a handy upgrade so it can analyze individual videos to surface specific information for you -- like key points or recipe ingredients -- without ever pressing play. From a report: That's potentially a hugely useful tool, but could spell more worry about generative AI for creators. To try it out, I turned Bard on a YouTube video I regularly reference for spiritual guidance: America's Test Kitchen's recipe for an Espresso Martini. Seriously, it's really good. I often find myself in my kitchen with half the ingredients in a cocktail shaker trying to remember how much Benedictine I'm supposed to add, then re-watching the video to find out. But with Bard on the case, all I have to do is type a few prompts and viola -- I have the full list of ingredients and some step-by-step instructions.Read more of this story at Slashdot.

OLED monitors risk burn-in, especially with static images. Newer models combat this using improved materials, algorithms, efficiencies, features, and heat management. However, long-term data is minimal as quality selection is recent. An unexpected quirk applies to ultrawides: playing 16:9 content creates brighter center areas versus darker sides, quickening OLED degradation. In an extreme test by RTINGS, Samsung ultrawides developed heavy differential wear in just 700 hours. ArsTechnica adds: Even OLED monitors that have already been released can see their capabilities change in a way that could impact burn-in risk. For example, the Odyssey G8 monitor got a firmware update in August that removed the ability to use the Peak Brightness setting in SDR mode. While this is just one specific mode that, again, some users might not use, it's worth noting how this could change the amount of wear an OLED monitor could see. RTINGS' review said that after the firmware update, the monitor's max luminance "when displaying a bright highlight in an SDR scene" went from 331 nits to 230 nits. Samsung hasn't confirmed the reasons for this change, but such changes highlight how OLED monitor burn-in risk can change from use to use and from update to update, across different products.Read more of this story at Slashdot.

HP CEO Enrique Lores is betting a sprinkle of AI dust can regenerate the flagging PC market -- and with shipments still in decline across the industry, he can't afford to tease Wall Street. From a report: The world's second largest seller of desktop computing hardware has reported a 15 percent year-on-year decline in revenue to $53.7 billion for fiscal 2023 ended 31 October. Profit before tax was $2.93 billion versus $4.32 billion in the prior year. [...] Orders picked up in recent months. Analyst data indicates the rate of decline is slowing after resellers began clearing inventory they'd amassed in the latter stage of the pandemic, when the frenzied buying patterns seen in prior years vanished. For Q4, HP reported revenue of $13.8 billion, down 6.5 percent year-on-year. Personal Systems was down 8 percent to $9.4 billion and Printing was down 3 percent to $4.4 billion. Profit before tax was $852 million, better than the $647 million brought in a year earlier, helped by a reduction in structural costs. HP expects business PC refresh cycles to kick in next year, with more corporate customers shifting their estate to Windows 11 -- yet it is the advent of the AI PC that Lores thinks signal better times.Read more of this story at Slashdot.

It's not your imagination: Airlines are piling on more fees and extra charges, driving up the cost of air travel. From a report: Across the industry, revenue from what's known as ancillary sales -- fees for selecting seats, checking bags, and buying food, to name a few -- will reach a record $117.9 billion in 2023. That's a 7.7% increase from pre-pandemic records, according to a recent study from airline consultancy firm IdeaWorks and B2B car rental company CarTrawler. As plane ticket prices have become more competitive, airlines have turned to ancillary sales to boost profits. And where these fees were once largely confined to low-cost carriers, practices like charging customers for seats and checked luggage are now widespread across all airlines. As the IdeaWorks study points out, carriers like British Airways, Air France, and KLM are now even charging fliers to secure 'better' business class seats. It's not simply the fees that are raising hackles. It's also how they're sold online. Due to the time sensitive nature of airfares, as well as the dozens of upgrades and extras offered as you click through the sales process, airline websites can be ripe environments for what's known as dark patterns. Coined in 2010 by Harry Brignull, a UX designer with a doctorate in cognitive science, dark patterns are design strategies used to trick consumers during their purchasing experience and guide them to decisions they would not make otherwise. Airlines employ a range of tactics on their websites, ranging from manipulation to deception, Bringull says. "People need to be aware of their tactics if we want to see changes in the way they operate."Read more of this story at Slashdot.

Australia will give cyber health checks for small businesses, increase cyber law enforcement funding and introduce mandatory reporting of ransomware attacks under a security overhaul announced on Wednesday after a spate of attacks. From a report: The federal government said it will also subject telecommunications firms to tougher cyber reporting rules which apply to critical infrastructure, seek migrants to build up the cyber security workforce and set limits on inter-agency data sharing to encourage people to report incidents. The A$587 million ($382 million) plan shows the centre-left Labor government trying to get on the front foot after a year in which nearly half the country's 26 million population had personal information stolen in just two data breaches at companies, while a cyber attack at its biggest port operator this month brought supply chains to a standstill.Read more of this story at Slashdot.

Large earthquakes are always followed by aftershocks -- a series of smaller but still potentially damaging quakes produced as the ground readjusts. But how long does it take for the aftershocks to die out? A new study suggests some areas can experience aftershocks decades or even centuries after the original earthquake. From a report: In earthquake-prone areas it is hard to tell the difference between aftershocks and ordinary background seismicity. But recognising aftershocks is an important part of assessing a region's disaster risk. To understand how long aftershocks can persist, researchers turned to the stable continental interior of North America, where earthquakes are uncommon. Using statistical analysis they assessed the timing and clustering of quakes that followed three large magnitude 6.5 to 8 historical earthquakes: one near south-east Quebec in Canada in 1663; a trio of quakes around the Missouri-Kentucky border from 1811 to 1812; and an earthquake in Charleston in South Carolina in 1886. Their results, published in Journal of Geophysical Research: Solid Earth, suggest that the Quebec quake in 1663 has likely shaken itself out, but to their surprise nearly a third of modern quakes in the Missouri-Kentucky area were most likely to be aftershocks from the 1811-12 event, and about 16% of recent quakes in the Charleston region are probably aftershocks from the 1886 quake.Read more of this story at Slashdot.

In 2018, director Carl Rinsch was courted by multiple studios due to high demand for content, despite his first film being a flop. He pitched a sci-fi series about artificial humans providing aid worldwide, but who are eventually rejected by humans. After a bidding war, Netflix signed an $61 million deal for the unnamed project, giving Rinsch final cut privilege and rights to future seasons - highly unusual moves. Soon after, Rinsch's behavior grew concerning as he claimed to discover COVID's transmission and predict lightning, and he gambled away millions from Netflix on stocks and crypto, The New York Times reported Wednesday. His wife Gabriela Roses worried about his amphetamine use and tried intervening, but he refused rehab. In 2020, Netflix gave Rinsch another $11 million, which he also lost much of on risky bets. By mid-2021, Roses informed Netflix executives about Rinsch's state and filed for divorce, the Times reported. Netflix consulted police about Rinsch's behavior before deciding to stop funding the project in March 2021, though he could shop it elsewhere. Rinsch made $27 million on crypto bets, which he used to buy Rolls-Royces and luxury items. He claims Netflix owes him $14 million more, while Netflix says he never delivered the project milestones to receive additional funding. The confidential arbitration case over the contract dispute concluded this month.Read more of this story at Slashdot.

As if homesickness, wasting muscles, thinner bones, an elevated cancer risk, the inescapable company of overachievers and the prospect of death in the endless vacuum of space were not enough to contend with, male astronauts may return from deep space prone to erectile dysfunction, scientists say. From a report: In what is claimed to be the first study to assess the impact of galactic radiation and weightlessness on male sexual health, Nasa-funded researchers found that galactic cosmic rays, and to a lesser extent microgravity, can impair the function of erectile tissues, with effects lasting potentially for decades. Raising their concerns in a report on Wednesday, the US researchers said they had identified "a new health risk to consider with deep space exploration." They called for the sexual health of astronauts to be closely monitored on their return from future deep space missions, noting that certain antioxidants may help to counteract the ill-effects by blocking harmful biological processes. "While the negative impacts of galactic cosmic radiation were long-lasting, functional improvements induced by acutely targeting the redox and nitric oxide pathways in the tissues suggest that the erectile dysfunction may be treatable," said Dr Justin La Favor, an expert in neurovascular dysfunction at Florida State University and a senior author on the study. The warning comes amid a renewed focus on deep space missions, with Nasa and other major space agencies preparing for long-term expeditions to the moon and more ambitious voyages to Mars. Nasa's Artemis programme aspires to send astronauts to the moon as early as next year, with crewed missions to Mars tentatively lined up for as early as 2040.Read more of this story at Slashdot.

Microsoft's Windows Hello fingerprint authentication has been bypassed on laptops from Dell, Lenovo, and even Microsoft. From a report: Security researchers at Blackwing Intelligence have discovered multiple vulnerabilities in the top three fingerprint sensors that are embedded into laptops and used widely by businesses to secure laptops with Windows Hello fingerprint authentication. Microsoft's Offensive Research and Security Engineering (MORSE) asked Blackwing Intelligence to evaluate the security of fingerprint sensors, and the researchers provided their findings in a presentation at Microsoft's BlueHat conference in October. The team identified popular fingerprint sensors from Goodix, Synaptics, and ELAN as targets for their research, with a newly-published blog post detailing the in-depth process of building a USB device that can perform a man-in-the-middle (MitM) attack. Such an attack could provide access to a stolen laptop, or even an "evil maid" attack on an unattended device. A Dell Inspiron 15, Lenovo ThinkPad T14, and Microsoft Surface Pro X all fell victim to fingerprint reader attacks, allowing the researchers to bypass the Windows Hello protection as long as someone was previously using fingerprint authentication on a device. Blackwing Intelligence researchers reverse engineered both software and hardware, and discovered cryptographic implementation flaws in a custom TLS on the Synaptics sensor. The complicated process to bypass Windows Hello also involved decoding and reimplementing proprietary protocols.Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: A group of Russian-state hackers known for almost exclusively targeting Ukranian entities has branched out in recent months either accidentally or purposely by allowing USB-based espionage malware to infect a variety of organizations in other countries. The group -- known by many names, including Gamaredon, Primitive Bear, ACTINIUM, Armageddon, and Shuckworm -- has been active since at least 2014 and has been attributed to Russia's Federal Security Service by the Security Service of Ukraine. Most Kremlin-backed groups take pains to fly under the radar; Gamaredon doesn't care to. Its espionage-motivated campaigns targeting large numbers of Ukrainian organizations are easy to detect and tie back to the Russian government. The campaigns typically revolve around malware that aims to obtain as much information from targets as possible. One of those tools is a computer worm designed to spread from computer to computer through USB drives. Tracked by researchers from Check Point Research as LitterDrifter, the malware is written in the Visual Basic Scripting language. LitterDrifter serves two purposes: to promiscuously spread from USB drive to USB drive and to permanently infect the devices that connect to such drives with malware that permanently communicates with Gamaredon-operated command and control servers. "Gamaredon continues to focus on [a] wide variety [of] Ukrainian targets, but due to the nature of the USB worm, we see indications of possible infection in various countries like USA, Vietnam, Chile, Poland and Germany," Check Point researchers reported recently. "In addition, we've observed evidence of infections in Hong Kong. All this might indicate that much like other USB worms, LitterDrifter [has] spread beyond its intended targets." The image [here], tracking submissions of LitterDrifter to the Alphabet-owned VirusTotal service, indicates that the Gamaredon malware may be infecting targets well outside the borders of Ukraine. VirusTotal submissions usually come from people or organizations that encounter unfamiliar or suspicious-looking software on their networks and want to know if it's malicious. The data suggests that the number of infections in the US, Vietnam, Chile, Poland, and Germany combined may be roughly half of those hitting organizations inside Ukraine.Read more of this story at Slashdot.

Rahul Rao reports via Space.com: On Nov. 14, NASA picked up a laser signal fired from an instrument that launched with the Psyche spacecraft, which is currently more than 10 million miles (16 million kilometers) from Earth and heading toward a mysterious metal asteroid. (The spacecraft is at more than 40 times the average distance of Earth's moon, and still voyaging afar.) The moment marked the first successful test of NASA's Deep Space Optical Communications (DSOC) system, a next-generation comms link that sends information not by radio waves but instead by laser light. It's part of a series of tests NASA is doing to speed up communications in deep space, on different missions. "Achieving first light is a tremendous achievement. The ground systems successfully detected the deep space laser photons from DSOC," Abi Biswas, the system's project technologist at NASA's Jet Propulsion Laboratory (JPL) in Southern California, said in an agency statement. "And we were also able to send some data, meaning we were able to exchange 'bits of light' from and to deep space," Biswas added.Read more of this story at Slashdot.

Batteries used to store power produced by renewables are becoming cheap enough to make developers abandon scores of projects for gas-fired generation worldwide. Reuters reports: The long-term economics of gas-fired plants, used in Europe and some parts of the United States primarily to compensate for the intermittent nature of wind and solar power, are changing quickly, according to Reuters' interviews with more than a dozen power plant developers, project finance bankers, analysts and consultants. They said some battery operators are already supplying back-up power to grids at a price competitive with gas power plants, meaning gas will be used less. The shift challenges assumptions about long-term gas demand and could mean natural gas has a smaller role in the energy transition than posited by the biggest, listed energy majors. In the first half of the year, 68 gas power plant projects were put on hold or cancelled globally, according to data provided exclusively to Reuters by U.S.-based non-profit Global Energy Monitor. [...] "In the early 1990s, we were running gas plants baseload, now they are shifting to probably 40% of the time and that's going to drop off to 11%-15% in the next eight to 10 years," Keith Clarke, chief executive at Carlton Power, told Reuters. Developers can no longer use financial modelling that assumes gas power plants are used constantly throughout their 20-year-plus lifetime, analysts said. Instead, modellers need to predict how much gas generation is needed during times of peak demand and to compensate for the intermittency of renewable sources that are hard to anticipate. The cost of lithium-ion batteries has more than halved from 2016 to 2022 to $151 per kilowatt hour of battery storage, according to BloombergNEF. At the same time, renewable generation has reached record levels. Wind and solar powered 22% of the EU's electricity last year, almost doubling their share from 2016, and surpassing the share of gas generation for the first time, according to think tank Ember's European Electricity Review. "In the early years, capacity markets were dominated by fossil fuel power stations providing the flexible electricity supply," said Simon Virley, head of energy at KPMG. Now batteries, interconnectors and consumers shifting their electricity use are also providing that flexibility, Virley added.Read more of this story at Slashdot.

OpenAI said today it reached an agreement for Sam Altman to return as CEO days after his ouster, capping a marathon discussion about the future of the startup at the center of the artificial intelligence boom. From a report: In addition to Altman's return, the company agreed in principle to partly reconstitute the board of directors that had dismissed him. Former Salesforce co-CEO Bret Taylor and former U.S. Treasury Secretary Larry Summers will join Quora CEO and current director Adam D'Angelo, OpenAI said. Under an "agreement in principle," Altman will serve under the supervision of a new board of directors. "I love OpenAI, and everything I've done over the past few days has been in service of keeping this team and its mission together," Altman wrote on the social media site X in response to the announcement. "When I decided to join Microsoft on Sunday evening, it was clear that was the best path for me and the team." Microsoft chief Satya Nadella hired Altman after he was sacked. With the "support" of the new OpenAI board and Nadella, Altman said, he looked forward to "returning to OpenAI, and building on our strong partnership with Microsoft." Nadella said he was "encouraged by the changes to the OpenAI board" and believed that the decision was the "first essential step on a path to more stable, well-informed, and effective governance."Read more of this story at Slashdot.

An anonymous reader quotes a report from Phys.Org: The richest one percent of the global population are responsible for the same amount of carbon emissions as the world's poorest two-thirds, or five billion people, according to an analysis published Sunday by the nonprofit Oxfam International. [...] Among the key findings of this study are that the richest one percent globally -- 77 million people -- were responsible for 16 percent of global emissions related to their consumption. That is the same share as the bottom 66 percent of the global population by income, or 5.11 billion people. The income threshold for being among the global top one percent was adjusted by country using purchasing power parity -- for example in the United States the threshold would be $140,000, whereas the Kenyan equivalent would be about $40,000. Within country analyses also painted very stark pictures. For example, in France, the richest one percent emit as much carbon in one year as the poorest 50 percent in 10 years. Excluding the carbon associated with his investments, Bernard Arnault, the billionaire founder of Louis Vuitton and richest man in France, has a footprint 1,270 times greater than that of the average Frenchman. The key message, according to Lawson, was that policy actions must be progressive. These measures could include, for example, a tax on flying more than ten times a year, or a tax on non-green investments that is much higher than the tax on green investments. While the current report focused on carbon linked only to individual consumption, "the personal consumption of the super-rich is dwarfed by emissions resulting from their investments in companies," the report found. Nor are the wealthy invested in polluting industries at a similar ratio to any given investor -- billionaires are twice as likely to be invested in polluting industries than the average for the Standard & Poor 500, previous Oxfam research has shown.Read more of this story at Slashdot.

FCC Chairwoman Jessica Rosenworcel today outlined a new proposal that would ban cable and satellite companies from charging subscribers early termination fees. Deadline reports: Some subscribers who sign contracts with cable and satellite operators face paying early termination fees if they want out of the agreement before the expiration date. The companies put such fees in place to reduce churn. The FCC proposal also would target requirements that subscribers pay for the entire billing cycle when they end their service before that date. The proposal would require that the video providers grant a pro-rated credit for the remaining days in a billing cycle. The proposal applies only to cable and satellite providers, not streaming services. The FCC will vote at its Dec. 13 meeting whether to issue a notice of proposed rulemaking for public comment. Rosenworcel said in a statement: "No one wants to pay junk fees for something they don't want or can't use. When companies charge customers early termination fees, it limits their freedom to choose the service they want. In an increasingly competitive media market, we should make it easier for Americans to use their purchasing power to promote innovation and expand competition within the industry."Read more of this story at Slashdot.

Laura Snapes reports via The Guardian: Spotify is to phase out its service in Uruguay after the passing of a new music copyright bill requiring "fair and equitable remuneration" for authors, composers, performers, directors and screenwriters. In October, the country's parliament voted on a budget bill that included two new articles: per article 284, social networks and the internet are to be added "as formats for which, if a song is reproduced, the performer is entitled to financial remuneration" -- namely if a link to a song is shared online. Article 285 will put into copyright law the "right to a fair and equitable remuneration" for all "agreements entered into by authors, composers, performers, directors and screenwriters with respect to their faculty of public communication and making available to the public of phonograms and audiovisual recordings." In response, Spotify said in a statement on November 20 that without changes to the 2023 Rendicion de Cuentas law, the streaming platform "will, unfortunately, begin to phase out its service in Uruguay effective January 1, 2024" and cease trading in the market in February 2024. The Swedish company seeks confirmation on whether additional costs to be paid to musicians are the responsibility of rights holders or the streaming platforms, arguing that the latter means that it would be required "to pay twice for the same music," Music Business Worldwide reports. The statement continued: "Spotify already pays nearly 70% of every dollar it generates from music to the record labels and publishers that own the rights for music, and represent and pay artists and songwriters. Any additional payments would make our business untenable." The platform claimed that it had contributed to a 20% growth in Uruguay's music industry in 2022. That year, the South American nation was the 53rd largest market for music.Read more of this story at Slashdot.

Connor Jones reports via The Register: The government of Canada has confirmed its data was accessed after two of its third-party service providers were attacked. The third parties both provided relocation services for public sector workers and the government is currently analyzing a "significant volume of data" which could date back to 1999. No formal conclusions have yet been made about the number of workers impacted due to the large-scale task of analyzing the relevant data. However, the servers impacted by the breach held data related to current and former Canadian government staff, members of the Canadian armed forces, and Royal Canadian Mounted Police workers -- aka Mounties. "At this time, given the significant volume of data being assessed, we cannot yet identify specific individuals impacted; however, preliminary information indicates that breached information could belong to anyone who has used relocation services as early as 1999 and may include any personal and financial information that employees provided to the companies," a government statement read. Those who think they may be affected are advised to update any login details that may be similar to those used to access BGRS or Sirva's systems. Enabling MFA across all accounts that are used for online transactions is also advised, as is the manual monitoring of personal accounts for any potential malicious activity. Work is currently being carried out to identify and address any vulnerabilities that may have led to the incident, according to the statement.Read more of this story at Slashdot.

An anonymous reader quotes a report from 404 Media: Matteo Franceschetti, the CEO of Eight Sleep, which makes the $2,295 smart mattress topper "The Pod" tweeted: "Breaking news: The OpenAI drama is real. We checked our data and last night, SF saw a spike in low-quality sleep. There was a 27 percent increase in people getting under 5 hours of sleep. We need to fix this. Source: @eightsleep data." Franceschetti's tweet reminds us that The Pod is essentially a mattress with both a privacy policy and a terms of service, and that the data Eight Sleep collects about its users can and is used to further its business goals. It's also a reminder that many apps, smart devices, and apps for smart devices collect a huge amount of user data that they can then directly monetize or deploy for marketing or Twitter virality purposes whenever they feel like it. The Pod does "intelligent cooling and heating for any bed," and learns and adjusts the temperature of the bed based on your sleep habits, tracks your sleep and vital signs while you sleep, and gives you a "Sleep Fitness Score" based on your quality, routine, and time of sleep. As someone who often does not sleep well, The Pod is a compelling product that I cannot currently afford. Quickly, to get it out of the way: Eight Sleep's data does not and cannot actually show that "San Francisco" had a spike in low-quality sleep. What it shows is that people in San Francisco who have purchased a $2,295 smart mattress topper and have not successfully opted out of Eight Sleep's analytics -- a group that surely overindexes on tech workers -- slept less Sunday night. The top of Eight Sleep's terms of service states "At Eight Sleep we pledge to respect your privacy and to keep your data safe. We only collect data that helps us improve our products and services." Both Eight Sleep's privacy policy and terms of service then go on to note that the company collects a huge amount of data that can be used for a wide variety of purposes, including marketing, retargeting, and scientific studies. It can also, apparently, be used by the CEO for commenting on the day's tech news. Specifically, the company notes that "data about your sleep activity is transferred from your Device to our servers" every time the Pod's app syncs with the Pod. Certain features on the device also require location data "including GPS signals, device sensors, Wi-Fi access points, and cell tower IDs." This data is then used to give users personalized sleep recommendations, but they are also "used in research to understand and improve the Eight Device and Eight Service," "to enforce the Eight Terms of Service," and, critically, "de-identified data that does not identify you may be used to inform the health and scientific community about trends; for marketing and promotional use; or for sale to interested audiences." The terms of service add that it "may share or sell" this data.Read more of this story at Slashdot.

According to Polish news channel TVN24, a secret cryptomining rig was found under the floors of a Polish court, stealing thousands of Polish Zlotys worth of energy per month (the equivalent of roughly $250 per 1,000 Zlotys). "It's currently unknown how long the rig was running because the illegal operation went undetected, partly because the computers used were connected to the Internet through their own modems rather than through the court's network," reports Ars Technica. From the report: While no one has been charged yet with any crimes, the court seemingly has suspects. Within two weeks of finding the rig, the court terminated a contract with a company responsible for IT maintenance in the building, TVN24 reported. Before the contract ended, the company fired two employees that it said were responsible for maintenance in the parts of the building where the cryptomine was hidden. Poland's top law enforcement officials, the Internal Security Agency, have been called in to investigate. The Warsaw District Prosecutor's Office has hired IT experts to help determine exactly how much electricity was stolen from Poland's Supreme Administrative Court in Warsaw, TVN24 reported. The Supreme Administrative Court is the last resort for sensitive business and tax disputes, but no records seem to have been compromised. Judge Sylwester Marciniak -- the chairman of the Judicial Information Department of the Supreme Administrative Court -- told TVN24 that the discovery of the cryptomine "did not result in any threat to the security of data stored" in the court.Read more of this story at Slashdot.

Winston Cho writes via The Hollywood Reporter: A federal judge has dismissed most of Sarah Silverman's lawsuit against Meta over the unauthorized use of authors' copyrighted books to train its generative artificial intelligence model, marking the second ruling from a court siding with AI firms on novel intellectual property questions presented in the legal battle. U.S. District Judge Vince Chhabria on Monday offered a full-throated denial of one of the authors' core theories that Meta's AI system is itself an infringing derivative work made possible only by information extracted from copyrighted material. "This is nonsensical," he wrote in the order. "There is no way to understand the LLaMA models themselves as a recasting or adaptation of any of the plaintiffs' books." Another of Silverman's arguments that every result produced by Meta's AI tools constitutes copyright infringement was dismissed because she didn't offer evidence that any of the outputs "could be understood as recasting, transforming, or adapting the plaintiffs' books." Chhabria gave her lawyers a chance to replead the claim, along with five others that weren't allowed to advance. Notably, Meta didn't move to dismiss the allegation that the copying of books for purposes of training its AI model rises to the level of copyright infringement. In July, Silverman and two authors filed a class action lawsuit against Meta and OpenAI for allegedly using their content without permission to train AI language models.Read more of this story at Slashdot.

An anonymous reader quotes a report from TechCrunch: OpenAI's board of directors is reportedly in talks with Sam Altman, ex-Y Combinator president and an OpenAI co-founder, to return to OpenAI as CEO as soon as this week. That's according to Bloomberg, which in a brief this morning -- citing sources close to the matter -- said that discussions are happening between Quora CEO Adam D'Angelo, one current member of the OpenAI board, and Altman -- and possibly other board members as well. Per Bloomberg, the board member (or members) and Altman are discussing a number of possible scenarios that could play out. In one, Altman would return as a director on a transitional board. In another -- or perhaps the same -- former Salesforce Inc. co-CEO Bret Taylor could serve as a director on a new board. (Taylor's name was floated as a potential future OpenAI board member in some reporting over the weekend.) Investors are also in on the talks, Bloomberg reports, with Thrive Capital, Khosla Ventures, Tiger Global Management and Sequoia Capital aggressively pushing for Altman's return. The hope is to resolve the management crisis before Thanksgiving, so as to give OpenAI employees less uncertainty around the state of the company -- and stem the broader bleeding. Were Altman to return to OpenAI, he'd presumably renege on his acceptance of Microsoft's offer to head up a new AI research lab at the tech giant with Greg Brockman, OpenAI's former president, who resigned in protest with Altman on Friday. Altman is said to have demanded "significant" managerial and governance changes at OpenAI as a condition of returning, a demand which many OpenAI backers -- including Microsoft -- share. Today's developments follow a memo sent by OpenAI VP of global affairs Anna Makanju late Monday indicating that OpenAI's management had been in "intense discussions" with the board, Altman and interim CEO Emmett Shear, who took over from OpenAI CTO Mira Murati, to attempt to re-unify the company. Shear has reportedly been left in the dark for the most part, indicating to Bloomberg sources that he doesn't plan to stick around if the board can't clearly communicate its reasoning for Altman's abrupt dismissal. Shear previously said in a note to employees Sunday that his first order of business would be to "hire an independent investigator to dig into the entire process leading up to this point and generate a full report."Read more of this story at Slashdot.

An anonymous reader shares a report: In recent years, lots of American companies have gotten behind a potential climate solution called carbon capture and storage, and the Biden administration has backed it with billions of dollars in tax incentives and direct investments. The idea is to trap planet-heating carbon dioxide from the smokestacks of factories and power plants and transport it to sites where it is injected underground and stored. But the idea is controversial, in large part because the captured carbon dioxide would be shipped to storage sites via thousands of miles of new pipelines. Communities nationwide are pushing back against these pipeline projects and underground sites, arguing they don't want the pollution running through their land. Now the U.S. Forest Service is proposing to change a rule to allow storing this carbon dioxide pollution under the country's national forests and grasslands. "Authorizing carbon capture and storage on NFS lands would support the Administration's goal to reduce greenhouse gas emissions by 50 percent below the 2005 levels by 2030," the proposed rule change says. But environmental groups and researchers have concerns. Carbon dioxide pollution will still need to be transported to the forests via industrial pipeline for storage, says June Sekera, a research fellow with Boston University. "To get the CO2 to the injection site in the midst of our national forest, they've got to build huge pipelines," Sekera says. "All this huge industrial infrastructure that's going to go right through." Sekera says building those CO2 pipelines may require clearing a lot of trees.Read more of this story at Slashdot.

The chief executive of Binance, the largest global cryptocurrency exchange, plans to step down and plead guilty to violating criminal U.S. anti-money laundering requirements, in a deal that may preserve the company's ability to continue operating, WSJ reported Tuesday, citing people familiar with the matter. From the report: Changpeng Zhao is scheduled to appear in Seattle federal court Tuesday afternoon and enter his plea, the people said. Binance, which Zhao owns, will also plead guilty to a criminal charge and agree to pay fines totaling $4.3 billion, which includes amounts to settle civil allegations made by regulators, the people said. The deal would end long-running investigations of Binance. [...] The deal would allow Zhao to retain his majority ownership of Binance, although he won't be able to have an executive role at the company. He would face sentencing at a later date.Read more of this story at Slashdot.

An anonymous reader writes: Christopher Nolan made headlines earlier this month when he took a playful jab at streaming platforms while discussing the upcoming home release of "Oppenheimer." The atomic bomb drama, which grossed a staggering $950 million in theaters worldwide, is hitting Blu-ray and other digital platforms this month. Nolan said at a recent "Oppenheimer" screening that it's important to own the film on Blu-ray so that "no evil streaming service can come steal it from you." He told The Washington Post in a follow-up interview: "It was a joke when I said it. But nothing's a joke when it's transcribed onto the internet. There is a danger, these days, that if things only exist in the streaming version they do get taken down, they come and go," the director added. Streamers have become notoriously known in the last year for pulling original titles from their platforms in order to license them out elsewhere and open up potential revenue streams. When such titles are streaming-only offerings, their removal makes it impossible to view the films elsewhere. Such was the case this year with the Disney+ movie "Crater," for instance. The streaming-only family adventure was pulled from Disney+ in June and could not be viewed anywhere until it was reissued as a digital release months later in September. For Nolan, owning physical media is the only way to combat such streaming trends. Guillermo del Toro agrees, having shared Nolan's recent quotes on X (formerly Twitter) and adding his own commentary on the issue. "Physical media is almost a Fahrenheit 451 (where people memorized entire books and thus became the book they loved) level of responsibility," del Toro wrote to his followers. "If you own a great 4K HD, Blu-ray, DVD etc etc of a film or films you love...you are the custodian of those films for generations to come."Read more of this story at Slashdot.

Computer science teachers around the globe have been left scrambling to find an alternative IDE for their students, after Replit announced it was shuttering its Teams for Education plan. From a report: "To focus on improving the Replit experience for all users, we have made the difficult decision to deprecate Teams for Edu ... Teams for Edu will no longer receive new features or bug fixes, and we will suspend the creation of new Teams and Orgs," a statement from Replit, shared with educators and brought to our attention on Monday by Reg readers, declared last week. The platform provided a collaborative integrated development environment (IDE) tailored toward classrooms. It allowed students to work together on projects at the same time, similar to Google Docs, as well as automating code evaluation to streamline assessments carried out by teachers. The decision has sparked frustration among many educators who'd invested heavily in the platform since Replit made the plan available for free in early 2022. "Computer science teachers in the last 48 hours have had to scramble to try to find alternatives as soon as possible and it will be the students that suffer," a teacher based in Asia-Pacific told The Register. "Replit was the only organization we are aware of providing online coding with instant assessment and so it was a hugely popular choice with computer science teachers." In a Xeet last week, CEO Amjad Masad acknowledged the pain the decision to shut down Teams for Education was likely to cause, but said the current system had become economically nonviable.Read more of this story at Slashdot.

Using fake names, sham LinkedIn profiles, counterfeit work papers and mock interview scripts, North Korean IT workers seeking employment in Western tech companies are deploying sophisticated subterfuge to get hired. From a report: Landing a job outside North Korea to secretly earn hard currency for the isolated country demands highly-developed strategies to convince Western hiring managers, according to documents reviewed by Reuters, an interview with a former North Korean IT worker and cybersecurity researchers. North Korea has dispatched thousands of IT workers overseas, an effort that has accelerated in the last four years, to bring in millions to finance Pyongyang's nuclear missile programme, according to the United States, South Korea, and the United Nations. "People are free to express ideas and opinions," reads one interview script used by North Korean software developers that offers suggestions for how to describe a "good corporate culture" when asked. Expressing one's thoughts freely could be met with imprisonment in North Korea. The scripts totalling 30 pages, were unearthed by researchers at Palo Alto Networks, a U.S. cybersecurity firm which discovered a cache of internal documents online that detail the workings of North Korea's remote IT workforce. The documents contain dozens of fraudulent resumes, online profiles, interview notes, and forged identities that North Korean workers used to apply for jobs in software development.Read more of this story at Slashdot.

Sunbird, the app that brings iMessage to Android, has temporarily shut down the service over "security concerns." From a report: In a notice to users, Sunbird says it has "decided to pause Sunbird usage for now" while it investigates reports that its messages aren't actually end-to-end encrypted. Sunbird launched in 2022 as a messaging app that attempts to put the blue versus green bubble battle to rest. It has only been available to those who sign up for its waitlist, touting numerous privacy features, like end-to-end encryption, no message data collection, and no ads. Last week, Sunbird partnered with Nothing, the phone brand owned by OnePlus co-founder Carl Pei, on the launch of Nothing Chats. The Sunbird-powered messaging service is supposed to let owners of the Phone 2 send texts via iMessage, but it was pulled from the Google Play Store just one day after its launch. At the time, Nothing said it had to fix "several bugs" within the app. However, its removal from the Play Store came around the same time a post from Texts.blog revealed that messages sent via Sunbird may not be end-to-end encrypted.Read more of this story at Slashdot.

The U.S. Food and Drug Administration is reviewing a cutting-edge therapy called exa-cel that could potentially cure people of sickle cell disease, a painful and deadly disease with no universally successful treatment. "If approved, exa-cel, made by Boston-based Vertex Pharmaceuticals and the Swiss company CRISPR Therapeutics, would be the first FDA-approved treatment that uses genetic modification called CRISPR," reports CNN. From the report: CRISPR, or clustered regularly interspaced short palindromic repeats, is a technology researchers use to selectively modify DNA, the carrier of genetic information that the body uses to function and develop. [...] The new exa-cel treatment under FDA consideration can use the patient's own stem cells. Doctors would alter them with CRISPR to fix the genetic problems that cause sickle cell, and then the altered stem cells are given back to the patient in a one-time infusion. In company studies, the treatment was considered safe, and it had a "highly positive benefit-risk for patients with severe sickle cell disease," Dr. Stephanie Krogmeier, vice president for global regulatory affairs with Vertex Pharmaceuticals Incorporated, told the panel. Thirty-nine of the 40 people tested with the treatment did not have a single vaso-occlusive crisis, which means the misshapen red blood cells block normal circulation and can cause moderate to severe pain. It's the top reason patients with sickle cell go to the emergency room or are hospitalized. Before the treatment, patients experienced about four of these painful crises a year, resulting in about two weeks in the hospital. The FDA sought the independent panel's advice, in part, because this would be the first time the FDA would approve a treatment that uses CRISPR technology, but Dr. Fyodor Urnov, a professor in the Department of Molecular and Cell Biology at the University of California, Berkeley, reminded the committee CRISPR has been around for 30 years and, in that time, scientists have learned a lot about how to use it safely. "The technology is, in fact, ready for primetime," Urnov said. With this kind of genetic editing, scientists could inadvertently make a change to a patient's DNA that is off-target, and the therapy could harm the patient. [...] The FDA is expected to make an approval decision by December 8.Read more of this story at Slashdot.

According to The Information (paywalled), OpenAI's board of directors approached rival Anthropic's CEO about replacing Sam Altman and potentially merging the two AI startups. Anthropic CEO Dario Amodei declined on both fronts. Reuters reports: The news, reported earlier by The Information on Monday, follows various reported calls to find Altman's successor days after OpenAI's board ousted him. [...] The co-founders of Anthropic, who were also executives at OpenAI until 2020, had broken from their employer over disagreements regarding how to ensure AI's safe development and governance. Anthropic has won investments from Alphabet's Google and Amazon.com. Its Claude AI models have vied for prominence with OpenAI's GPT series.Read more of this story at Slashdot.

An anonymous reader quotes a report from Wired: A little-known surveillance program tracks more than a trillion domestic phone records within the United States each year, according to a letter WIRED obtained that was sent by US senator Ron Wyden to the Department of Justice (DOJ) on Sunday, challenging the program's legality. According to the letter, a surveillance program now known as Data Analytical Services (DAS) has for more than a decade allowed federal, state, and local law enforcement agencies to mine the details of Americans' calls, analyzing the phone records of countless people who are not suspected of any crime, including victims. Using a technique known as chain analysis, the program targets not only those in direct phone contact with a criminal suspect but anyone with whom those individuals have been in contact as well. The DAS program, formerly known as Hemisphere, is run in coordination with the telecom giant AT&T, which captures and conducts analysis of US call records for law enforcement agencies, from local police and sheriffs' departments to US customs offices and postal inspectors across the country, according to a White House memo reviewed by WIRED. Records show that the White House has, for the past decade, provided more than $6 million to the program, which allows the targeting of the records of any calls that use AT&T's infrastructure -- a maze of routers and switches that crisscross the United States. In a letter to US attorney general Merrick Garland on Sunday, Wyden wrote that he had "serious concerns about the legality" of the DAS program, adding that "troubling information" he'd received "would justifiably outrage many Americans and other members of Congress." That information, which Wyden says the DOJ confidentially provided to him, is considered "sensitive but unclassified" by the US government, meaning that while it poses no risk to national security, federal officials, like Wyden, are forbidden from disclosing it to the public, according to the senator's letter. AT&T spokesperson Kim Hart Jonson said only that the company is required by law to comply with a lawful subpoena. However, "there is no law requiring AT&T to store decades' worth of Americans' call records for law enforcement purposes," notes Wired. "Documents reviewed by WIRED show that AT&T officials have attended law enforcement conferences in Texas as recently as 2018 to train police officials on how best to utilize AT&T's voluntary, albeit revenue-generating, assistance." "The collection of call record data under DAS is not wiretapping, which on US soil requires a warrant based on probable cause. Call records stored by AT&T do not include recordings of any conversations. Instead, the records include a range of identifying information, such as the caller and recipient's names, phone numbers, and the dates and times they placed calls, for six months or more at a time." It's unclear exactly how far back the call records accessible under DAS go, although a slide deck released under the Freedom of Information Act in 2014 states that they can be queried for up to 10 years.Read more of this story at Slashdot.

An anonymous reader quotes a report from Wired: A little-known surveillance program tracks more than a trillion domestic phone records within the United States each year, according to a letter WIRED obtained that was sent by US senator Ron Wyden to the Department of Justice (DOJ) on Sunday, challenging the program's legality. According to the letter, a surveillance program now known as Data Analytical Services (DAS) has for more than a decade allowed federal, state, and local law enforcement agencies to mine the details of Americans' calls, analyzing the phone records of countless people who are not suspected of any crime, including victims. Using a technique known as chain analysis, the program targets not only those in direct phone contact with a criminal suspect but anyone with whom those individuals have been in contact as well. The DAS program, formerly known as Hemisphere, is run in coordination with the telecom giant AT&T, which captures and conducts analysis of US call records for law enforcement agencies, from local police and sheriffs' departments to US customs offices and postal inspectors across the country, according to a White House memo reviewed by WIRED. Records show that the White House has, for the past decade, provided more than $6 million to the program, which allows the targeting of the records of any calls that use AT&T's infrastructure -- a maze of routers and switches that crisscross the United States. In a letter to US attorney general Merrick Garland on Sunday, Wyden wrote that he had "serious concerns about the legality" of the DAS program, adding that "troubling information" he'd received "would justifiably outrage many Americans and other members of Congress." That information, which Wyden says the DOJ confidentially provided to him, is considered "sensitive but unclassified" by the US government, meaning that while it poses no risk to national security, federal officials, like Wyden, are forbidden from disclosing it to the public, according to the senator's letter. AT&T spokesperson Kim Hart Jonson said only that the company is required by law to comply with a lawful subpoena. However, "there is no law requiring AT&T to store decades' worth of Americans' call records for law enforcement purposes," notes Wired. "Documents reviewed by WIRED show that AT&T officials have attended law enforcement conferences in Texas as recently as 2018 to train police officials on how best to utilize AT&T's voluntary, albeit revenue-generating, assistance." "The collection of call record data under DAS is not wiretapping, which on US soil requires a warrant based on probable cause. Call records stored by AT&T do not include recordings of any conversations. Instead, the records include a range of identifying information, such as the caller and recipient's names, phone numbers, and the dates and times they placed calls, for six months or more at a time." It's unclear exactly how far back the call records accessible under DAS go, although a slide deck released under the Freedom of Information Act in 2014 states that they can be queried for up to 10 years.Read more of this story at Slashdot.

Earlier this month, the entire Optus mobile network went offline nationwide following a "routine software upgrade." According to Reuters, "More than 10 million Australians were hit by the 12-hour network blackout [...], triggering fury and frustration among customers and raising wider concerns about the telecommunications infrastructure." Now, according to the Australian Broadcasting Corporation, Optus CEO Kelly Bayer Rosmarin has resigned in the wake of the outage. From the report: She said it "had been an honour to serve" but that "now was an appropriate time to step down." During Friday's Senate hearing into the outage, Ms Bayer Rosmarin rebuffed suggestions she was under pressure to step down. "On Friday, I had the opportunity to appear before the Senate to expand on the cause of the network outage and how Optus recovered and responded," she said in a statement on Monday. "I was also able to communicate Optus's commitment to restore trust and continue to serve customers. Having now had time for some personal reflection, I have come to the decision that my resignation is in the best interest of Optus moving forward." Ms Bayer Rosmarin will be replaced in the interim by chief financial officer Michael Venter. Yuen Kuan Moon, the chief executive of Optus's Singaporean parent company Singtel Group, said the company understood her decision to resign. Mr Yuen said Singtel recognised "the need for Optus to regain customer trust and confidence as the team works through the impact and consequences of the recent outage and continues to improve." He said Optus's priority was about "setting on a path of renewal for the benefit of the community and customers." Singtel said Optus had also created a new chief operating officer position, which would be carried out by former Optus Business Managing Director Peter Kaliaropoulos.Read more of this story at Slashdot.

Last week, Android smartphone manufacturer "Nothing" announced that it's bringing iMessage to its newest phone through a new "Nothing Chats" app powered by the messaging platform Sunbird. After launching Friday, the app was shut down within 24 hours and the Sunbird app, which Nothing Chat is a clone of, was put "on pause." The reason? It's a security nightmare. Ars Technica reports: The initial sales pitch for this app -- that it would log you into iMessage on Android if you handed over your Apple username and password -- was a huge security red flag that meant Sunbird would need an ultra-secure infrastructure to avoid disaster. Instead, the app turned out to be about as unsecure as you could possibly be. Here's Nothing's statement: "We've removed the Nothing Chats beta from the Play Store and will be delaying the launch until further notice to work with Sunbird to fix several bugs. We apologize for the delay and will do right by our users." How bad are the security issues? Both 9to5Google and Text.com (which is owned by Automattic, the company behind WordPress) uncovered shockingly bad security practices. Not only was the app not end-to-end encrypted, as claimed numerous times by Nothing and Sunbird, but Sunbird actually logged and stored messages in plain text on both the error reporting software Sentry and in a Firebase store. Authentication tokens were sent over unencrypted HTTP so this token could be intercepted and used to read your messages. [...] Despite being the cause of this huge catastrophe, Sunbird has been bizarrely quiet during this whole mess. The app's X (formerly Twitter) page still doesn't say anything about the shutdown of Nothing Chats or Sunbird. Maybe that's for the best because some of Sunbird's early responses to the security concerns raised on Friday do not seem like they came from a competent developer. [...] Nothing has always seemed like an Android manufacturer that was more hype than substance, but we can now add "negligent" to that list. The company latched on to Sunbird, reskinned its app, created a promo website and YouTube video, and coordinated a media release with popular YouTubers, all without doing the slightest bit of due diligence on Sunbird's apps or its security claims. It's unbelievable that these two companies made it this far -- the launch of Nothing Chats required a systemic security failure across two entire companies.Read more of this story at Slashdot.

In an interview with CNBC's Jon Fortt today, Microsoft CEO Satya Nadella said that the governance structure of OpenAI needs to change after the AI company's sudden firing of CEO Sam Altman. "At this point, I think it's very clear that something has to change around the governance," Nadella said. He added that Microsoft would have "a good dialogue with their board on that." Unlike traditional private company boards, OpenAI's board consists mostly of outsiders and isn't tasked with maximizing shareholder value. "[N]one of them hold equity in OpenAI," notes The Verge. "Instead, their stated mission is to ensure the creation of 'broadly beneficial' artificial general intelligence, or AGI." From the report: In his first press interview since Altman's ouster, Nadella dismissed concerns of long-term damage at OpenAI and said that the critical artificial intelligence research continues as does the partnership with Microsoft. But his comments didn't clear up confusion surrounding where Altman and fellow OpenAI co-founder Greg Brockman, who was the company's chairman, will ultimately end up. Early Monday morning Nadella said that Altman, Brockman and their colleagues would join Microsoft as part of a new AI research group. That post followed news that ex-Twitch CEO Emmett Shear had been named OpenAI interim head as Altman looked to depart. Over the course of Monday, it became less evident that Altman and Brockman would actually be joining Microsoft. Hundreds of OpenAI employees signed a letter to the company's board demanding that they resign or else the staffers may choose to leave and join their former boss at Microsoft. Nadella said it's the choice of OpenAI employees whether they stay in their current roles or move to Microsoft, adding that his company has what it needs to keep innovating on its own. "I'm open to both options," he said. Nadella told Fortt that Microsoft respects OpenAI's nonprofit roots and shares its belief that AI needs to be developed and rolled out in a safe manner. "We want to make sure that we're dealing with not only the benefits of technology, but the unintended consequences of the technology from day one, as opposed to waiting for things to happen," Nadella said. Stay tuned: Legendary tech journalist Kara Swisher is releasing a 30 minute interview with Nadella in which he says, among other things, that he felt he should have been informed earlier as a partner of OpenAI and that will change in the future. "Also lots of deets about new hire [Sam Altman], safety in AGI and even India's loss to Australia in that cricket match," says Swisher in a post on X. Further reading: Some investors in OpenAI are considering suing the board. "Sources said investors are working with legal advisors to study their options," reports Reuters. "Investors worry that they could lose hundreds of millions of dollars they invested in OpenAI, a crown jewel in some of their portfolios, with the potential collapse of the hottest startup in the rapidly growing generative AI sector."Read more of this story at Slashdot.

An anonymous reader quotes a report from Motherboard: Commercial air crews are reporting something "unthinkable" in the skies above the Middle East: novel "spoofing" attacks have caused navigation systems to fail in dozens of incidents since September. In late September, multiple commercial flights near Iran went astray after navigation systems went blind. The planes first received spoofed GPS signals, meaning signals designed to fool planes' systems into thinking they are flying miles away from their real location. One of the aircraft almost flew into Iranian airspace without permission. Since then, air crews discussing the problem online have said it's only gotten worse, and experts are racing to establish who is behind it. OPSGROUP, an international group of pilots and flight technicians, sounded the alarm about the incidents in September and began to collect data to share with its members and the public. According to OPSGROUP, multiple commercial aircraft in the Middle Eastern region have lost the ability to navigate after receiving spoofed navigation signals for months. And it's not just GPS -- fallback navigation systems are also corrupted, resulting in total failure. According to OPSGROUP, the activity is centered in three regions: Baghdad, Cairo, and Tel Aviv. The group has tracked more than 50 incidents in the last five weeks, the group said in a November update, and identified three new and distinct kinds of navigation spoofing incidents, with two arising since the initial reports in September. While GPS spoofing is not new, the specific vector of these new attacks was previously "unthinkable," according to OPSGROUP, which described them as exposing a "fundamental flaw in avionics design." The spoofing corrupts the Inertial Reference System, a piece of equipment often described as the "brain" of an aircraft that uses gyroscopes, accelerometers, and other tech to help planes navigate. One expert Motherboard spoke to said this was "highly significant." "This immediately sounds unthinkable," OPSGROUP said in its public post about the incidents. "The IRS (Inertial Reference System) should be a standalone system, unable to be spoofed. The idea that we could lose all on-board nav capability, and have to ask [air traffic control] for our position and request a heading, makes little sense at first glance" especially for state of the art aircraft with the latest avionics. However, multiple reports confirm that this has happened." [...] There is currently no solution to this problem, with its potentially disastrous effects and unclear cause. According to OPSGROUP's November update, "The industry has been slow to come to terms with the issue, leaving flight crews alone to find ways of detecting and mitigating GPS spoofing." If air crews do realize that something is amiss, Humphreys said, their only recourse is to depend on air traffic control.Read more of this story at Slashdot.

According to Bloomberg's Mark Gurman, Apple plans to ditch Qualcomm and build its own custom modem that could launch around 2026. MacRumors reports: Writing in his latest Power On newsletter, Gurman says that Apple's custom technology aspirations include integrating an in-house modem into its system-on-a-chip (SoC), which would eventually see the launch of MacBooks with built-in cellular connectivity. Gurman says Apple will "probably need two or three additional years to get that chip inside cellular versions of the Apple Watch and iPad -- and the Mac, once the part is integrated into the company's system-on-a-chip." Apple has explored the possibility of developing MacBooks with cellular connectivity in the past. Indeed, the company reportedly considered launching a MacBook Air with 3G connectivity, but former CEO Steve Jobs said in 2008 that Apple decided against it, since it would take up too much room in the case. An integrated SoC would solve that problem. Gurman's latest newsletter also said some of Apple's other ongoing in-house chip projects include camera sensors, batteries, a combined Wi-Fi and Bluetooth chip that will eventually replace parts from Broadcom, Micro-LED displays for Apple devices, and a non-invasive glucose monitoring system.Read more of this story at Slashdot.

Firefox 120 will be available tomorrow, bringing support for the Global Privacy Control "Sec-GPC" request header to indicate whether a user consents to a website or service selling or sharing their personal information with third parties. It's also enabling the WebAssembly GC extension by default, opening up new languages like Dart and Kotlin to run in the browser. Phoronix's Michael Larabel highlights some of the other features included in this release: - Ubuntu Linux users now have the ability to import data from Chromium when both are installed as Snap packages.- Picture-in-Picture mode now supports corner snapping on Windows and Linux.- Support for the light-dark() CSS color function that allows setting of colors for both light and dark without needing to use the prefers-color-scheme media feature. This allows conveniently specifying the preferred light color theme value followed by the dark color theme value.- CSS support for the lh and rlh line height units.Read more of this story at Slashdot.

An anonymous reader quotes a report from Reuters: Apple has been sued by Venmo and Cash App customers in a proposed class action claiming the iPhone maker abused its market power to curb competition for mobile peer-to-peer payments, causing consumers to pay "rapidly inflating prices." Four consumers in New York, Hawaii, South Carolina and Georgia filed the lawsuit (PDF) on Friday in San Jose, California, federal court. They alleged Apple violated U.S. antitrust law through its agreements with PayPal's Venmo and Block's Cash App. Apple's agreements limit "feature competition" within peer-to-peer payment apps, including prohibiting existing or new platforms from using "decentralized cryptocurrency technology," the complaint said. The lawsuit seeks an injunction that could force Apple to divest or segregate its Apple Cash business.Read more of this story at Slashdot.

The use of environmentally damaging gases in air conditioners and refrigerators could become redundant if a new kind of heat pump lives up to its promise. A prototype, described in a study published last week in Science, uses electric fields and a special ceramic instead of alternately vaporizing a refrigerant fluid and condensing it with a compressor to warm or cool air. From a report: The technology combines a number of existing techniques and has "superlative performance," says Neil Mathur, a materials scientist at the University of Cambridge, UK. Emmanuel Defay, a materials scientist at the Luxembourg Institute of Science and Technology in Belvaux, and his collaborators built their experimental device out of a ceramic with a strong electrocaloric effect. Materials that exhibit this effect heat up when exposed to electric fields. In an electrocaloric material, the atoms have an electric polarization -- a slight imbalance in their distribution of electrons, which gives these atoms a 'plus' and a 'minus' pole. When the material is left alone, the polarization of these atoms continuously swivels around in random directions. But when the material is exposed to an electric field, all the electrostatic poles suddenly align, like hair combed in one direction. This transition from disorder to order means that the electrons' entropy -- physicists' way of measuring disorder -- suddenly drops, Defay explains. But the laws of thermodynamics say that the total entropy of a system can never decline, so if it falls somewhere it must increase somewhere else. "The only possibility for the material to get rid of this extra mess is to pour it into the lattice" of its crystal structure, he says. That extra disorder means that the atoms themselves start vibrating faster, resulting in a rise in temperature.Read more of this story at Slashdot.

The US Justice Department is seeking more than $4 billion from Binance as part of a proposed resolution of a years-long investigation into the world's largest cryptocurrency exchange. From a report: Negotiations between the Justice Department and Binance include the possibility that its founder Changpeng Zhao would face criminal charges in the US under an agreement to resolve the probe into alleged money laundering, bank fraud and sanctions violations, according to people familiar with the discussions. Zhao, also known as "CZ," is residing in the United Arab Emirates, which doesn't have an extradition treaty with the US, but that doesn't prevent him from coming voluntarily. An announcement could come as soon as the end of the month, though the situation remains fluid, according to the people, who asked not to be named discussing a confidential matter.Read more of this story at Slashdot.

Amazon is starting to offer free educational courses on generative AI with an aim to extend "critical skills" to adults and young learners everywhere. From a report: The company's initiative, called "AI Ready," is an extension of current AWS-based AI skills training programs offered by Amazon but now includes eight free courses that cover AI project management and development. Amazon says 21 million people have already trained on AWS cloud computing skills through its programs, and it hopes 2 million will use its AI courses by 2025. Amazon says that demand for talent for AI jobs is increasing, and companies are willing to pay higher salaries for those with the skills, but the courses are also geared toward promoting Amazon's own AI products.Read more of this story at Slashdot.

Misplaced concern about existential risk is impeding the opportunity to expand human potential, writes venture capitalist Vinod Khosla. From his op-ed: I was the first venture investor in OpenAI. The weekend drama illustrated my contention that the wrong boards can damage companies. Fancy titles like "Director of Strategy at Georgetown's Center for Security and Emerging Technology" can lead to a false sense of understanding of the complex process of entrepreneurial innovation. OpenAI's board members' religion of "effective altruism" and its misapplication could have set back the world's path to the tremendous benefits of artificial intelligence. Imagine free doctors for everyone and near free tutors for every child on the planet. That's what's at stake with the promise of AI. The best companies are those whose visions are led and executed by their founding entrepreneurs, the people who put everything on the line to challenge the status quo -- founders like Sam Altman -- who face risk head on, and who are focused -- so totally -- on making the world a better place. Things can go wrong, and abuse happens, but the benefits of good founders far outweigh the risks of bad ones. [...] Large, world-changing vision is axiomatically risky. It can even be scary. But it is the sole lever by which the human condition has improved throughout history. And we could destroy that potential with academic talk of nonsensical existential risk in my view. There is a lot of benefit on the upside, with a minuscule chance of existential risk. In that regard, it is more similar to what the steam engine and internal combustion engine did to human muscle power. Before the engines, we had passive devices -- levers and pulleys. We ate food for energy and expended it for function. Now we could feed these engines oil, steam and coal, reducing human exertion and increasing output to improve the human condition. AI is the intellectual analog of these engines. Its multiplicative power on expertise and knowledge means we can supersede the current confines of human brain capacity, bringing great upside for the human race. I understand that AI is not without its risks. But humanity faces many small risks. They range from vanishingly small like sentient AI destroying the world or an asteroid hitting the earth, to medium risks like global biowarfare from our adversaries, to large and looming risks like a technologically superior China, cyberwars and persuasive AI manipulating users in a democracy, likely starting with the U.S.'s 2024 elections.Read more of this story at Slashdot.

theodp writes: In a panel on AI at the Paris Peace Forum just 10 days ago, Microsoft President Brad Smith gave Meta Chief AI Scientist Yann LeCun a lecture on the importance of OpenAI's nonprofit independence. "Meta is owned by shareholders," Smith argued. "OpenAI is owned by a nonprofit . Which would you have more confidence in? Getting your technology from a nonprofit? Or a for-profit company that is entirely controlled by one human being?" But on Sunday, Microsoft CEO Satya Nadella pretty much trashed Smith's argument with his announcement that Microsoft was hiring OpenAI's co-founders and some of its top talent to head up a "new advanced AI research team." Another case of Embrace, Extend, and Extinguish?Read more of this story at Slashdot.

The world is on track for a "hellish" 3C of global heating, the UN has warned before the crucial Cop28 climate summit that begins next week in the United Arab Emirates. From a report: The report found that today's carbon-cutting policies are so inadequate that 3C of heating would be reached this century. Temperature records have already been obliterated in 2023 and intensifying heatwaves, floods and droughts have taken lives and hit livelihoods across the globe, in response to a temperature rise of 1.4C to date. Scientists say far worse is to come if temperatures continue to rise. The secretary general of the UN, Antonio Guterres, has said repeatedly the world is heading for a "hellish" future. The UN Environment Programme (Unep) report said that implementing future policies already promised by countries would shave 0.1C off the 3C limit. Putting in place emissions cuts pledged by developing countries on condition of receiving financial and technical support would cut the temperature rise to 2.5C, still a catastrophic scenario. To get on track for the internationally agreed target of 1.5C, 22bn tonnes of CO2 must be cut from the currently projected total in 2030, the report said. That is 42% of global emissions and equivalent to the output of the world's five worst polluters: China, US, India, Russia and Japan.Read more of this story at Slashdot.