Slashdot

An anonymous reader quotes a report from Ars Technica: Microsoft has published a knowledge base article acknowledging a problem with encryption acceleration in the newest versions of Windows that could result in data corruption. The company recommends installing the June 2022 security updates for Windows 11 and Windows Server 2022 "to prevent further damage," though there are no suggested solutions for anyone who has already lost data because of the bug. The problems only affect relatively recent PCs and servers that support Vector Advanced Encryption Standard (VAES) instructions for accelerating cryptographic operations. Microsoft says affected systems use AES-XTS or AES-GCM instructions "on new hardware." Part of the AVX-512 instruction set, VAES instructions are supported by Intel's Ice Lake, Tiger Lake, Rocket Lake, and Alder Lake architectures -- these power some 10th-generation Core CPUs for laptops, as well as all 11th- and 12th-gen Core CPUs. AMD's upcoming Zen 4 architecture also supports VAES, though by the time these chips are released in the fall, the patches will have had plenty of time to proliferate. Microsoft says that the problem was caused when it added "new code paths" to support the updated encryption instructions in SymCrypt, Windows' cryptographic function library. These code paths were added in the initial release of Windows 11 and Windows Server 2022, so the problem shouldn't affect older versions like Windows 10 or Windows Server 2019. The initial fix for the problem, provided in Windows' June 2022 security update package (Windows 11 build 22000.778), will prevent further damage at the cost of reduced performance, suggesting that the initial fix was to disable encryption acceleration on these processors entirely. Using Bitlocker-encrypted disks or the Transport Layer Security (TLS) protocol or accessing encrypted storage on servers will all be slower with the first patch installed, though installing the July 2022 security updates (Windows 11 build 22000.795) should restore performance to its previous level.Read more of this story at Slashdot.

Walmart has held discussions with major media companies about including streaming entertainment in its membership service, The New York Times reported Tuesday, citing three people with knowledge of the conversations, part of an effort to extend its relationship with customers beyond its brick-and-mortar stores. From a report: In recent weeks, executives from Paramount, Disney and Comcast have spoken with Walmart, the people said, as the retailer ponders which movies and TV shows would add the most value to its membership bundle, called Walmart+. The people spoke on the condition of anonymity because the discussions were private. It is unclear whether any of the streaming companies are inclined to reach a deal with Walmart. Disney operates the Disney+, ESPN+ and Hulu streaming services; Comcast owns the Peacock streaming service; and Paramount runs the Paramount+ and Showtime services. A Walmart+ membership, which costs $12.95 per month, includes free shipping on orders and discounts on fuel. It also includes a free six-month subscription to the Spotify Premium music service. As the streaming field gets more crowded, the biggest media companies have turned to giants in other industries to find new subscribers. Wireless providers like Verizon and T-Mobile have struck deals to offer their customers free or discounted subscriptions to streaming services like Disney+ or Paramount+ as an extra incentive to sign up. Media companies, in turn, receive an influx of new customers whose subscriptions are subsidized by their wireless partner.Read more of this story at Slashdot.

Ford Motor on Tuesday became the latest automaker to raise the price of electric vehicles when it significantly increased prices of its popular F-150 Lightning because of rising materials costs. From a report: The company began making the Lightning in April and had sold more than 4,400 through the end of July. Ford has taken reservations for more than 200,000, and the higher prices will go into effect for the 2023 model year. Ford said it was increasing the starting prices of the truck by $6,000 to $8,500 for newly ordered vehicles. After the increase, the truck will cost from $46,974 for a base model to $96,874 for a Platinum version with an extended-range battery pack. The increases do not affect customers who have already placed orders and are waiting for their trucks. Reservations give customers a spot in line to place an order to buy a truck. Ford stopped taking orders because of strong demand but said it would resume doing so on Thursday, when the new prices go into effect. "We've announced pricing ahead of reopening order banks so our reservation holders can make an informed decision around ordering a Lightning," said Marin Gjaja, chief customer officer for Ford's electric vehicle division, known as Model e, in a statement.Read more of this story at Slashdot.

Domino's Pizza's footprint in the home of Pizza proved to be short lived with Italians favoring local restaurants over the American version. From a report: The last of Domino's 29 branches have closed after the company started operations in the country seven years ago. It borrowed heavily for plans to open 880 stores, but faced tough competition from local restaurants expanding delivery services during the pandemic and sought protection from creditors after running out of cash and falling behind on its debt obligations. The US chain entered Italy in 2015 through a franchising agreement with ePizza SpA and planned to distinguish itself by providing a structured national delivery service along with American-style toppings including pineapple. Its ambitious expansion ran into trouble as traditional pizza makers scaled up deliveries or signed deals with third-party services such as Deliveroo, Just Eat Takeaway.com NV or Glovo to bring their products to customers' homes while restrictions prevented dining out.Read more of this story at Slashdot.

A US agency dealing with national security said Far East Cable violated American export-control rules by signing contracts with Chinese networking giant ZTE and Iranian businesses to sell US-origin equipment to Iran. From a report: From September 2014 to January 2016, Far East Cable "served as a cutout" between ZTE -- which was under investigation by the US for export-rule violations at the time -- and Iranian telecommunications companies, the Department of Commerce's Bureau of Industry and Security said in a statement Monday. Far East Cable's actions are "part of an effort to conceal and obfuscate ZTE's Iranian business from US investigators," the BIS said in a July 29 letter to the company made available Monday. The agency is charging the cable maker with 18 violations of its export administration regulations.Read more of this story at Slashdot.

Intel's latest generation of CPUs contains a vulnerability that allows attackers to obtain encryption keys and other confidential information protected by the company's software guard extensions, the advanced feature that acts as a digital vault for security users' most sensitive secrets. From a report: Abbreviated as SGX, the protection is designed to provide a fortress of sorts for the safekeeping of encryption keys and other sensitive data, even when the operating system or a virtual machine running on top is maliciously compromised. SGX works by creating trusted execution environments that protect sensitive code and the data it works with from monitoring or tampering by anything else on the system. SGX is a cornerstone of the security assurances many companies provide to users. Servers used to handle contact discovery for the Signal Messenger, for instance, rely on SGX to ensure the process is anonymous. Signal says running its advanced hashing scheme provides a "general recipe for doing private contact discovery in SGX without leaking any information to parties that have control over the machine, even if they were to attach physical hardware to the memory bus." The example is purely hypothetical. Signal spokesperson Jun Harada wrote in an email: "Intel alerted us to this paper... and we were able to verify that the CPUs that Signal uses are not impacted by the findings of this paper and therefore are not vulnerable to the stated attack." Key to the security and authenticity assurances of SGX is its creation of what are called "enclaves," or blocks of secure memory. Enclave contents are encrypted before they leave the processor and are written in RAM. They are decrypted only after they return. The job of SGX is to safeguard the enclave memory and block access to its contents by anything other than the trusted part of the CPU.Read more of this story at Slashdot.

An anonymous user sent a slew of Tornado Cash transactions to high-profile Ethereum addresses on Tuesday in what appears to be a troll implicating them in a potential regulatory mess. From a report: Affected wallets include those controlled by Coinbase CEO Brian Armstrong, TV host Jimmy Fallon, clothing brand Puma and a wallet created for donations to Ukraine, according to Etherscan. Prominent crypto figures such as artist Beeple and more mainstream celebrities such as comedian Dave Chappelle received ether (ETH).Read more of this story at Slashdot.

Google is kicking off a new publicity campaign today to pressure Apple into adopting RCS, the cross-platform messaging protocol that's meant to be a successor to the aging SMS and MMS standards. From a report: The search giant has a new "Get The Message" website that lays out a familiar set of arguments for why Apple should support the standard, revolving around smoother messaging between iPhone and Android devices. Naturally, there's also a #GetTheMessage hashtag to really get those viral juices flowing. For most people, the problems Google describes are most familiar in the form of the green bubbles that signify messages to Android users in Apple's Messages app. While the iPhone app uses Apple's own iMessage service to send texts between iPhones (complete with modern features like encryption, support for group chats, and high-quality image and video transfers), they revert to old-fashioned SMS and MMS when texting an Android user. Not only are these messages shown in a color-clashing green bubble but also they break many of the modern messaging features people have come to rely on.Read more of this story at Slashdot.

Rainwater almost everywhere on Earth has unsafe levels of "forever chemicals," according to new research. saulgood shares a report: Per- and poly-fluoroalkyl substances (PFAS) are a large family of human-made chemicals that don't occur in nature. They are known as 'forever chemicals' because they don't break down in the environment. They have non-stick or stain repellent properties so can be found in household items like food packaging, electronics, cosmetics and cookware. But now researchers at the University of Stockholm have found them in rainwater in most locations on the planet -- including Antarctica. There is no safe space to escape them. Safe guideline levels for some of these forever chemicals have dropped dramatically over the last two decades due to new insights into their toxicity. "There has been an astounding decline in guideline values for PFAS in drinking water in the last 20 years," says Ian Cousins, lead author of the study and professor at the Department of Environmental Science, Stockholm University. For one well-known substance, the "cancer-causing perfluorooctanoic acid (PFOA)," water guideline values have declined by 37.5 million times in the US.Read more of this story at Slashdot.

President Joe Biden on Tuesday signed a bipartisan bill that aims to strengthen U.S. competitiveness with China by investing billions of dollars in domestic semiconductor manufacturing and science research. From a report: "Today is a day for builders. Today America is delivering," Biden said at the signing ceremony outside the White House. He was joined by a crowd of hundreds, including tech executives, union presidents and political leaders from both parties. The bill, dubbed the Chips and Science Act, includes more than $52 billion for U.S. companies producing computer chips, as well as billions more in tax credits to encourage investment in semiconductor manufacturing. It also provides tens of billions of dollars to fund scientific research and development, and to spur the innovation and development of other U.S. tech. The Biden administration also contended that the legislation will "unlock hundreds of billions more" in private spending in the industry. The White House said Tuesday that multiple companies, "spurred" by the chips bill, have announced more than $44 billion in new semiconductor manufacturing investments.Read more of this story at Slashdot.

Mobile app marketing company AppLovin on Tuesday made a $17.54 billion all-stock offer to buy online gaming business Unity Software. From a report: Palo Alto-based AppLovin said the deal would have an enterprise value of about $20 billion, an 18% premium on San Francisco-based Unity's Monday closing price. AppLovin said in a news release that its offer would create a company with a combined market cap of about $35 billion. The non-binding offer appears to be aimed at warding off potential damage to AppLovin's business by a plan Unity announced about a month ago to buy Israel-based app monetization company ironSource for $4.4 billion. A number of Unity shareholders and game developers have reportedly expressed dissatisfaction with the IronSource deal, which may help AppLovin win support for its offer. While Unity investors would hold 55% of shares in the combined company, AppLovin's would have 51% of the voting power. Unity chief John Riccitiello would be CEO under the proposal and AppLovin chief Adam Foroughi would be chief operating officer. A Unity spokesperson acknowledged the offer in a neutral statement the company issued on Tuesday morning, saying, "We have received the offer from AppLovin and our board will thoroughly evaluate it."Read more of this story at Slashdot.

Several weeks after taking over Ukraine's southern port city of Kherson, Russian soldiers arrived at the offices of local internet service providers and ordered them to give up control of their networks. From a report: "They came to them and put guns to their head and just said, 'Do this,'" said Maxim Smelyanets, who owns an internet provider that operates in the area and is based in Kyiv. "They did that step by step for each company." Russian authorities then rerouted mobile and internet data from Kherson through Russian networks, government and industry officials said. They blocked access to Facebook, Instagram and Twitter, as well as to Ukrainian news websites and other sources of independent information. Then they shut off Ukrainian cellular networks, forcing Kherson's residents to use Russian mobile service providers instead. What happened in Kherson is playing out in other parts of Russian-occupied Ukraine. After more than five months of war, Russia controls large sections of eastern and southern Ukraine. Bombings have leveled cities and villages; civilians have been detained, tortured and killed; and supplies of food and medicine are running low, according to witnesses interviewed by The New York Times and human rights groups. Ukrainians in those regions have access only to Russian state television and radio. To cap off that control, Russia has also begun occupying the cyberspace of parts of those areas. That has cleaved off Ukrainians in Russia-occupied Kherson, Melitopol and Mariupol from the rest of the country, limiting access to news about the war and communication with loved ones. In some territories, the internet and cellular networks have been shut down altogether.Read more of this story at Slashdot.

Roman Semenov, one of the co-founders of Tornado Cash, has reported his account was suspended at the developer platform, GitHub, following the United States Treasury Department's sanctioning of the privacy protocol. From a report: In a Monday tweet, Semenov said that despite not being individually named as a Specially Designated National, or SDN, of Treasury's Office of Foreign Asset Control, he seemed to be facing repercussions from the Treasury alleging Tornado Cash had laundered more than $7 billion worth of cryptocurrency. As SDNs, identified firms and individuals have their assets blocked and "U.S. persons are generally prohibited from dealing with them." Being identified as an SDN would seemingly include any contact for business purposes, which could extend to associations on GitHub. According to a joint statement from the Federal Financial Institutions Examination Council and Office of Foreign Asset Control, prohibited transactions could be interpreted to include "downloading a software patch from a sanctioned entity." Semenov called the move to suspend his account "a bit illogical." However, U.S. residents have been effectively barred from using the crypto mixer, given its alleged failure "to impose effective controls designed to stop it from laundering funds for malicious cyber actors on a regular basis and without basic measures to address its risks," according to Brian Nelson, Under Secretary of the Treasury for Terrorism and Financial Intelligence.Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: If you watched ESPN2 during its stint last weekend as "ESPN8: The Ocho," you may have seen some odd, meme-friendly competitions, including corgi racing, precision paper airplane tossing, and slippery stair climbing. Or you might have seen "Excel Esports: All-Star Battle," a tournament in which an unexpected full-column Flash Fill is announced like a 50-yard Hail Mary. It's just the latest mainstream acknowledgment of Excel as a viable, if quirky, esport, complete with down-to-the-wire tension and surprising comebacks. [...] Featured in this all-star battle was 2021 FMWC World Cup winner Diarmuid Early, an FMWC grandmaster from Ireland who claims 10,000 hours in Excel. (He would be Lambda if he were a function, he said.) The winner of the first championship in 2020, Joseph Lau (28,600 hours, Isological), also competed, along with six other highly ranked function warriors. Diarmuid took a commanding lead in the first slot-like task, racking up more points more quickly in a first round than anyone has in an FMWC competition. Others faced the kinds of challenges that regular users see in less combative Excel work. Polish competitor Gabriela Stroj told the hosts that "one stupid error" -- leaving a formula linked to the wrong sheet -- likely cost her hundreds of points. David Brown from the US said that his major problem was pasting from his 32-bit Windows-based Excel to the official online Excel answer sheets, which left his formulas treated as text. The top four of the eight competitors moved on to round 2, simulating a yacht regatta in Excel. Diarmuid and third-ranked Andrew Ngai made it through. The two competed on creating a score-tracking mechanic for an entirely Excel-based retro-style 2D platformer, "Modelario." Ngai eked out the win, although with only 411 of a total 1,000 possible points. Ngai's reward for a more than two-hour cell-based marathon: a trip to Tucson, Arizona, for the FMWC finals. You can watch the full two-hour-and-48-minute all-star battle, which ESPN edited down to 30 minutes, here. You can also try the Excel tasks used in last weekend's battle yourself, as the organizers (the Financial Modeling World Cup) made all three of them available to download.Read more of this story at Slashdot.

A live-action film based on PAC-MAN is in the works from Bandai Namco Entertainment -- the company behind PAC-MAN -- and Wayfarer Studios, the production company founded by Justin Baldoni and Steve Sarowitz. The Hollywood Reporter reports: First introduced in the U.S. in 1980 -- and originally called Puck Man in Japan -- PAC-MAN became a coin-operated staple. The game is set in mazes where Pac-Man has to eat pellets while being pursued by colorful ghosts as the mazes get progressively more difficult. The game begat merchandise, several sequel games like Ms. PAC-MAN, as well as two television series, including a Hanna-Barbera produced ABC series and a Disney XD take. The project will be based on an original idea from Chuck Williams (Sonic the Hedgehog) of Lightbeam Entertainment. Baldoni, Manu Gargi and Andrew Calof will produce on behalf of Wayfarer Studios, with Tracy Ryerson developing; Williams and Tim Kwok will produce on behalf of Lightbeam.Read more of this story at Slashdot.

India's new rocket launched for the first time on Saturday night (Aug. 6) but failed to deliver its satellite payloads into their intended orbit due to a sensor issue. Space.com reports: The 112-foot-tall (34 meters) Small Satellite Launch Vehicle (SSLV) lifted off from Satish Dhawan Space Centre on India's southeastern coast on Saturday at 11:48 p.m. EDT (0348 GMT and 9:18 a.m. India Standard Time on Sunday, Aug. 7) with two satellites onboard. The rocket's three solid-fueled stages performed well, but its fourth and final stage, a liquid-fueled "velocity trimming module" (VTM), hit a snag: Indian Space Research Organisation (ISRO) officials reported a loss of data from the rocket and, just over five hours after liftoff, ISRO announced the mission had failed. "The entire vehicle performance was very good" at the start, but ultimately left the two satellites in the wrong orbit, ISRO Chairman S. Somanath said in a video statement after the launch. "The satellites were placed in an elliptical orbit in place of a circular orbit." Instead of placing the satellites in a circular orbit 221 miles (356 kilometers) above Earth, the rocket left them in an orbit that ranged from 221 miles to as close as 47 miles (76 km). That orbit was not stable, and the satellites have "already come down, and they are not usable," Somanath said. ISRO officials said on Twitter that a sensor failure that was not detected in time to switch to a "salvage action" caused the orbit issue. An investigation into the failure is planned.Read more of this story at Slashdot.

An anonymous reader quotes a report from Motherboard: In July, a video of a robot dog with a submachine gun strapped to its back terrified the internet. Now a hacker who posts on Twitter as KF@d0tslash and GitHub as MAVProxyUser has discovered that the robot dog contains a kill switch, and it can be accessed through a tiny handheld hacking device. "Good news!" d0tslash said on Twitter. "Remember that robot dog you saw with a gun!? It was made by @UnitreeRobotic. Seems all you need to dump it in the dirt is @flipper_zero. The PDB has a 433mhz backdoor." In the video, d0tslash showed one of the Unitree robot dogs hooked up to a power supply. A hand comes into the frame holding a Flipper Zero, Tamagotchi-like multitool hacking device that can send and receive wireless signals across RFID, Bluetooth, NFC, and other bands. A button is pushed on the Flipper and the robot dog seizes up and falls to the ground. Motherboard reached out to d0tslash to find out how they hacked the robot dog. The power supply in the video is an external power source. "Literally a 24-volt external power supply, so I'm not constantly charging battery while doing dev," d0tslash said. d0tslash got their hands on one of the dogs and started going through the documentation when they discovered something interesting. Every dog ships with a remote cut-off switch attached to its power distribution board, the part of a machine that routes power from the battery to its various systems. The kill switch listens for a particular signal at 433mhz. If it hears the signal, it shuts down the robot. Some of the Unitree robot dogs even ship with the wireless remote that shuts the dog down instantly. d0tslash then used Flipper Zero to emulate the shutdown, copying the signal the robot dog's remote broadcasts over the 433MHz frequency. Anyone with a Flipper Zero or similar device can shut down these robot dogs, thanks to the work d0tslash has shared on Github.Read more of this story at Slashdot.

David Glowacki, an artist and computational molecular physicist, has created a VR experience called Isness-D that aims to recapture a transcendence experience he had when he fell in the mountains fifteen years ago. "[O]n four key indicators used in studies of psychedelics, the program showed the same effect as a medium dose of LSD or psilocybin (the main psychoactive component of 'magic' mushrooms)," reports MIT Technology Review. From the report: Isness-D is designed for groups of four to five people based anywhere in the world. Each participant is represented as a diffuse cloud of smoke with a ball of light right about where a person's heart would be. Participants can partake in an experience called energetic coalescence: they gather in the same spot in the virtual-reality landscape to overlap their diffuse bodies, making it impossible to tell where each person begins and ends. The resulting sense of deep connectedness and ego attenuation mirrors feelings commonly brought about by a psychedelic experience. [...] To create it, Glowacki took aesthetic inspiration from quantum mechanics -- as he puts it, "where the definition of what's matter and what's energy starts to become blurred." For their paper, Glowacki and his collaborators measured the emotional response Isness-D elicited in 75 participants. They based their measurements on four metrics used in psychedelics research -- the MEQ30 (a mystical experience questionnaire), the ego dissolution inventory scale, the "communitas" scale, and the "inclusion of community in self" scale. Communitas is defined as an experience of intense shared humanity that transcends social structure. Participants' responses were then compared with those given in published, double-blind psychedelics studies. For all four metrics, Isness-D elicited responses indistinguishable from those associated with medium doses of psychedelics. On the mystical experience scale, Isness-D participants reported an experience as intense as that elicited by 20 milligrams of psilocybin or 200 micrograms of LSD, and stronger than that induced by microdoses of either substance. The findings have been published in the journal Nature Scientific Reports.Read more of this story at Slashdot.

The ongoing worldwide semiconductor shortage will cause more than 100,000 vehicles to be cut from North American production schedules this week, Automotive News reported Sunday. Over 180,000 vehicles are expected to be dropped globally. CNET reports: The data, which comes from AutoForecast Solutions, says North American factories have been forced to cut nearly 1.06 million vehicles from production schedules this year due to the chip shortage. This puts North America as the most heavily impacted region so far. AFS' data shows nearly 3 million vehicles have been cut so far in 2022, and the agency expects that number to grow to more than 3.8 million by the end of the year. [...] The auto industry may not recover from the chip shortage until 2023 or beyond. Sam Fiorani, vice president of global vehicle forecasting at AFS, affirmed this reasoning earlier this year: "This is not a quickly solvable issue."Read more of this story at Slashdot.

Polio is back, monkeypox isn't slowing down, COVID-19 is still around -- and now there's more not-so-good news on the infection front: over 200 human diseases could get worse because of climate change, according to a new study. From a report: Researchers have known for a long time that the changing climate affects disease. Warmer temperatures can make regions newly hospitable to disease-carrying mosquitoes, while floods from more frequent storms can carry bacteria in their surges of water. Most research, though, only focused on a handful of threats or one disease at a time. The new study, published in Nature Climate Change, built a comprehensive map of all of the ways various climate hazards could interact with 375 documented human infectious diseases. The authors reviewed over 77,000 scientific articles about those diseases and climate hazards. They found that, of those 375 diseases, 218 could be aggravated by things like heatwaves, rising sea levels, and wildfires. The study found four main ways climate change exacerbates diseases. First, problems happen when changes cause disease-carrying animals to move closer to people. For example, animal habitats are disrupted by things like wildfires that drive bats and rodents into new areas, increasing the likelihood they'll transmit diseases like Ebola to people. Other research shows that climate change makes viruses more likely to jump from animals to people, as happened with the coronavirus that causes COVID-19. That phenomenon also likely contributed to the 2016 Zika outbreaks.Read more of this story at Slashdot.

In two lawsuits (PDF) filed today in California, Google alleges that Sonos' latest voice-assistant technology violates seven patents related to Google Assistant. CNET reports: Google spokesperson Jose Castaneda said Sonos has "started an aggressive and misleading campaign against our products, at the expense of our shared customers." As a result, he said, the lawsuits have been filed to "defend our technology and challenge Sonos' clear, continued infringement of our patents." Sonos launched its own voice assistant in June, allowing customers to control their speakers using voice commands starting with the phrase "Hey Sonos." Google said in the lawsuits that it has made its technologies available to users across the globe, "even providing its Google Assistant software to Sonos for many years." The suits also said Google has for years worked with Sonos engineers on the "implementation of voice recognition and voice-activated device controls in Sonos' products." Google requests an unspecified amount of monetary damages and an injunction blocking Sonos' alleged infringement. Last year, the International Trade Commission ruled that Google infringed on five patents owned by Sonos, forcing Google to change the way its smart speakers are set up and controlled. "Google previously sued us all over the world and Sonos has prevailed in every decided case," Eddie Lazarus, Sonos' chief legal officer, told CNET, adding that the new lawsuits "are an intimidation tactic designed to retaliate against Sonos for speaking out against Google's monopolistic practices," which "will not succeed."Read more of this story at Slashdot.

An anonymous reader quotes a report from Wired: As marketers, data brokers, and tech giants endlessly expand their access to individuals' data and movements across the web, tools like VPNs or cookie blockers can feel increasingly feeble and futile. Short of going totally off the grid forever, there are few options for the average person to meaningfully resist tracking online. Even after coming up with a technical solution last year for how phone carriers could stop automatically collecting users' locations, researchers Barath Raghavan and Paul Schmitt knew it would be challenging to convince telecoms to implement the change. So they decided to be the carrier they wanted to see in the world. The result is a new company, dubbed Invisv, that offers mobile data designed to separate users from specific identifiers so the company can't access or track customers' metadata, location information, or mobile browsing. Launching in beta today for Android, the company's Pretty Good Phone Privacy or PGPP service will replace the mechanism carriers normally use to turn cell phone tower connection data into a trove of information about users' movements. And it will also offer a Relay service that disassociates a user's IP address from their web browsing. PGPP's ability to mask your phone's identity from cell towers comes from a revelation about why cell towers collect the unique identifiers known as IMSI numbers, which can be tracked by both telecoms and other entities that deploy devices known as IMSI catchers, often called stringrays, which mimic a cell tower for surveillance purposes. Raghavan and Schmitt realized that at its core, the only reason carriers need to track IMSI numbers before allowing devices to connect to cell towers for service is so they can run billing checks and confirm that a given SIM card and device are paid up with their carrier. By acting as a carrier themselves, Invisv can implement their PGPP technology that simply generates a "yes" or "no" about whether a device should get service. On the PGPP "Mobile Pro" plan, which costs $90 per month, users get unlimited mobile data in the US and, at launch, unlimited international data in most European Union countries. Users also get 30 random IMSI number changes per month, and the changes can happen automatically (essentially one per day) or on demand whenever the customer wants them. The system is designed to be blinded so neither INVISV nor the cell towers you connect to know which IMSI is yours at any given time. There's also a "Mobile Core" plan for $40 per month that offers eight IMSI number changes per month and 9 GB of high-speed data per month. Both of these plans also include PGPP's Relay service. Similar to Apple's iCloud Private Relay, PGPP's Relay is a method for blocking everyone, from your internet provider or carrier to the websites you visit, from knowing both who you are and what you're looking at online at the same time. Such relays send your browsing data through two way stations that allow you to browse the web like normal while shielding your information from the world. When you navigate to a website, your IP address is visible to the first relay -- in this case, Invisv -- but the information about the page you're trying to load is encrypted. Then the second relay generates and connects an alternate IP address to your request, at which point it is able to decrypt and view the website you're trying to load. The content delivery network Fastly is working with Invisv to provide this second relay. Fastly is also one of the third-party providers for iCloud Private Relay. In this way, each relay knows some of the information about your browsing; the first simply knows that you are using the web, and the second sees the sites you connect to, but not who specifically is browsing there. In addition to being included in the two PGPP data plans, customers can also purchase the Relay service on its own for $5 per month and turn it on while connected to mobile data or Wi-Fi. The carrier is still working to bring its services to Apple's iOS. It's also worth noting that Invisv only offers mobile data; there are no voice calling services.Read more of this story at Slashdot.

7-Eleven stores in Denmark shut down today after a cyberattack disrupted stores' payment and checkout systems throughout the country. Bleeping Computer reports: The attack occurred early this morning, August 8th, with the company posting on Facebook that they were likely "exposed to a hacker attack." The translated statement says that the company has closed all the stores in the country while investigating the security incident: ""Unfortunately, we suspect that we have been exposed to a hacker attack today, Monday 8 August 2022. This means that we cannot use checkouts and/or receive payment. We are therefore keeping the stores closed until we know the extent. We naturally hope that we can open the stores again soon." - 7-Eleven DK." At this time, there are no further details about the attack, including whether ransomware was involved, which has become the most common cyberattack causing wide-scale outages.Read more of this story at Slashdot.

In preliminary second-quarter financial results announced today, Nvidia's year-over-year growth is "down from a previously forecasted $8.1 billion, a miss of $1.4 billion," reports Ars Technica. "Nvidia blamed this shortfall on weaker-than-expected demand for its gaming products, including its GeForce graphics processors." The full results won't arrive until the end of the month. From the report: Nvidia pointed to "a reduction in channel partner sales," meaning that partners like Evga, MSI, Asus, Zotac, Gigabyte, and others were selling fewer new GPUs than anticipated. This drop can be attributed partly to a crash in the value of mining-based cryptocurrencies like Bitcoin and Ethereum -- fewer miners are buying these cards, and miners looking to unload their GPUs on the secondhand market are also giving gamers a cheaper source for graphics cards. "As we expect the macroeconomic conditions affecting sell-through to continue, we took actions with our Gaming partners to adjust channel prices and inventory," said Nvidia CEO Jensen Huang. That means we may see further price drops for existing GeForce GPUs, which have already been dropping in price throughout the year. Some cards still haven't reverted to their originally advertised prices, but they're getting closer all the time. In better news for Nvidia, the small overall increase in revenue [$6.7 billion] is driven almost exclusively by the company's data center business, including GPU-accelerated AI and machine learning applications and GPU acceleration for cloud-hosted virtual machines. Nvidia's data center revenue is projected to be up 61 percent from last year, from $2.37 billion to $3.81 billion. Nvidia will supposedly launch its next-generation RTX 4000 series GPUs later this year. Based on the new Lovelace architecture, these GPUs may appeal to some gamers who originally sat out the RTX 3000 series due to shortages and inflated prices and are now avoiding the GPUs because they know a replacement is around the corner.Read more of this story at Slashdot.

An anonymous reader quotes a report from Bloomberg: Amazon.com hasn't just bought a maker of robot vacuum cleaners. It's acquired a mapping company. To be more precise: a company that can make maps of your home. The company announced a $1.7 billion deal on Friday for iRobot, the maker of the Roomba vacuum cleaner. And yes, Amazon will make money from selling those gadgets. But the real value resides in those robots' ability to map your house. As ever with Amazon, it's all about the data. A smart home, you see, isn't actually terribly smart. It only knows that your Philips Hue lightbulbs and connected television are in your sitting room because you've told it as much. It certainly doesn't know where exactly the devices are within that room. The more it knows about a given space, the more tightly it can choreograph the way they interact with you. The smart home is clearly a priority for Amazon. Its Echo smart speakers still outsell those from rivals Apple and Google, with an estimated 9.9 million units sold in the three months through March, according to the analysis firm Strategy Analytics. It's complemented that with a $1 billion deal for the video doorbell-maker Ring in 2018, and the wi-fi company Eero a year later. But you still can't readily buy the Astro, Amazon's household robot that was revealed with some fanfare last year, is still only available in limited quantities. That, too, seemed at least partly an effort to map the inside of your property, a task that will now fall to iRobot. The Bedford, Mass.-based company's most recent products include a technology it calls Smart Maps, though customers can opt out of sharing the data. Amazon said in a statement that protecting customer data is "incredibly important." Slightly more terrifying, the maps also represent a wealth of data for marketers. The size of your house is a pretty good proxy for your wealth. A floor covered in toys means you likely have kids. A household without much furniture is a household to which you can try to sell more furniture. This is all useful intel for a company such as Amazon which, you may have noticed, is in the business of selling stuff.Read more of this story at Slashdot.

Only days after being launched to the public, Meta Platforms' new AI chatbot has been claiming that Donald Trump won the 2020 US presidential election, and repeating anti-Semitic conspiracy theories. From a report: Chatbots -- artificial intelligence software that learns from interactions with the public -- have a history of taking reactionary turns. In 2016, Microsoft's Tay was taken offline within 48 hours after it started praising Adolf Hitler, amid other racist and misogynist comments it apparently picked up while interacting with Twitter users. Facebook parent company Meta released BlenderBot 3 on Friday to users in the US, who can provide feedback if they receive off-topic or unrealistic answers. A further feature of BlenderBot 3 is its ability to search the internet to talk about different topics. The company encourages adults to interact with the chatbot with "natural conversations about topics of interest" to allow it to learn to conduct naturalistic discussions on a wide range of subjects. Conversations shared on various social media accounts ranged from the humorous to the offensive. BlenderBot 3 told one user its favorite musical was Andrew Lloyd Webber's "Cats," and described Meta CEO Mark Zuckerberg as "too creepy and manipulative" to a reporter from Insider. Other conversations showed the chatbot repeating conspiracy theories.Read more of this story at Slashdot.

How some people tricked Google into getting their own knowledge panels and fooled Amazon-owned IMDb into believing they are top stars in dozens of movies. From a report: I was casually browsing IMDb when I landed on the page for an upcoming Ranbir Kapoor starrer movie "Animal." I saw the cast details and I found a face and a name I didn't recognize. Finding out about this guy led me to a whole new world of how so many young Indian men from small towns are gaming the system to manufacture their own fake online clout. So who is this guy? I had not heard of him before and he is named in the "Top cast" category for this movie, alongside Indian actor Ranbir Kapoor. According to his IMDb page, he has acting credits in some big-budget productions. I am beginning to suspect that this could be a case of IMDb vandalism. IMDb allows anyone to add and edit pages. They don't allow you to see the edit history of a page though like Wikipedia and evidently, the edits are not reviewed effectively either. I googled this guy. Wow, so Google has a knowledge panel on him. There are also links to his music on various music platforms. Okay, so probably he is pretending to be an actor on IMDb but according to his google search results, he is actually a legit musician? Skimming through the search results, I found biographies written about him on a few websites of doubtful credibility. Like this one on a website called issuewire.com. I looked at his YouTube and other social media profiles and he doesn't have a lot of followers or any music content on there. I shazamed a couple of his songs and they're just copies of existing random music mashed together with some audio editing tool like Audacity. Possibly to avoid getting copyright notices. Hmm. I think I am now beginning to get a clearer picture of what's going on here. He set up a profile on a bunch of different music streaming platforms. Uploaded remixed mash-up of existing songs using some audio editing software. Published biographies and profiles about himself on sites that do not verify submissions. Set up an IMDb page with fake credits. All this to trick google into believing he is a person of eminence. [...] I went back to his IMDb and checked the cast details of some of the movies he is part of. And I found a few dozen profiles with the exact same modus operandi.Read more of this story at Slashdot.

Computer scientist Stephen Thaler was dealt another blow in his battle for artificial intelligence machines to be recognized as inventors on patents, after the nation's top patent court found that inventors must be humans. The term "individual" in the Patent Act refers only to humans, meaning an AI doesn't count as an inventor on a patentable invention, the US Court of Appeals for the Federal Circuit ruled Friday. From a report: The decision lines up with courts in the European Union, the United Kingdom, and Australia that have refused to accept Thaler's argument. His only currently existing win is from a South African court that said an AI can be a patent inventor. Unless the US Supreme Court steps in, the Federal Circuit is typically the final authority on US patent matters -- hearing all such appeals from federal district courts and the US Patent and Trademark Office. Thaler already plans to appeal to the high court, his attorney, Ryan Abbott of Brown, Neri, Smith & Khan LLP, said. The Federal Circuit adopted a "narrow and textualist approach" to the Patent Act, Abbott said. "It ignores the purpose of the Patent Act and the outcome that AI-generated inventions are now unpatentable in the United States," he said. "That is an outcome with real negative social consequences."Read more of this story at Slashdot.

Cryptocurrency lending platform Hodlnaut has frozen withdrawals, deposits and token swaps because of "difficult market conditions," the firm said on Monday. From a report: The Singapore-based firm, which was founded in 2019, said it wants to stabilize liquidity and preserve assets while it works on a long-term solution. Hodlnaut also withdrew its application to the Monetary Authority of Singapore for a license in the city-state, even though it received in-principle approval from the central bank in March. The company is the latest in a line of crypto lenders that have buckled under market pressure this year, with Celsius Network and Voyager Digital both filing for bankruptcy protection. The total crypto market cap has slumped to about $1 trillion from more than $3 trillion in November. One of the key components of the market downturn was the collapse of crypto hedge fund Three Arrows Capital, which had billions of dollars of exposure to numerous companies in the crypto universe. Hodlnaut announced in June that it had "no exposure or loans" with Three Arrows Capital or Celsius.Read more of this story at Slashdot.

In the near future, "Top Gun" may get a reboot. Roughly one year from now, fighter pilots will begin flying with helmets outfitted with visors that can augment reality and place digital replicas of enemy fighter jets in their field of vision. For the first time, pilots will get to fly in the air and practice maneuvering against imitations of highly advanced aircraft made by countries like China and Russia. From a report: It is also part of the U.S. military's investment of billions into virtual reality, artificial intelligence and algorithms to modernize the way it fights wars. The pilot training solution, created by military technology company Red6, will be rolled out to the Air Force first as part of its $70 million contract with the branch. Company and former military officials say the technology will be a safe, cheap and realistic way to ensure American pilots are prepared to battle the best fighter planes in the world. "Better, faster, cheaper," said Daniel Robinson, founder and chief executive of Red6. "This is the way we'll train them in the future." The military wants new 'robot ships' to replace sailors during battle For decades, the way America trains its fighter pilots has changed little. Aviators from the Air Force and Navy often start their training flying on a Northrop T-38 jet, often using a similar syllabus to one that has been around since the 1960s. From there, they train on planes, such as F-22 or F-35 fighter jets, that they will fly during their career.Read more of this story at Slashdot.

Intel's Arc graphics cards aren't just for gamers, it seems, as the previously CPU-exclusive company has taken the lid off a new line of professional GPUs to complement the existing Arc line -- well, existing in China, maybe. From a report:The new cards are called Arc Pro, and target those who use their graphics cards for more than shooting bad guys. Maybe they won't be among the best graphics cards for gaming, but the AV1 encoding at least might get some takers. Intel today unveiled one mobile professional GPU, the A30M, and two desktop models: the single-slot A40 and double-slot A50. Both desktop cards are described as being for small form-factor machines, which makes us suspect Intel may have some much larger cards up its sleeve. All the newly announced GPUs feature built-in ray tracing hardware, machine learning capabilities and industry-first AV1 hardware encoding acceleration. Google's royalty-free, open source alternative to HEVC, AV1 hasn't gained a lot of traction on the web so far despite promises from Netflix and YouTube, with its main use being in Google's Duo video calling despite beating HEVC for compression quality. It's always been very slow to encode, however, so a good hardware accelerator and Intel's backing could see it take off.Read more of this story at Slashdot.

Tornado Cash, a popular cryptocurrency service that allows users to mask their transactions, was sanctioned by the US Treasury Department after North North Korean hackers relied on it to launder illicit gains, officials announced on Monday. The sanctions bar American companies and individuals from doing business with it. From a report: The platform facilitates anonymous transactions by mixing funds from different sources before transmitting them to the ultimate beneficiary. Tornado Cash has been used to launder more than $7 billion in virtual currency, a senior Treasury official said in a press conference. North Korea's Lazarus Group has laundered about $450 million through the service, according to the official. It was also used to launder more than $100 million in the June hack of the Harmony blockchain's Horizon Bridge, which allows crypto trading between other blockchains, the official said. Described by administration officials as the go-to mixer for cyber criminals, Tornado Cash became the second such service targeted by the Treasury Department. In May, the agency issued sanctions against Blender.io, which was also allegedly used by North Korean hackers to launder illicit proceeds from hacking. Following the sanctions, it appears Blender.io is no longer operating, the official said. The action against Tornado is a "watershed" moment and the Treasury's "most significant action in the crypto space to date," said Ari Redbord, head of legal and government affairs at TRM Labs, a blockchain analysis firm used by governments and financial institutions to fight fraud, money laundering and financial crime, in an email. "This designation sends a message that the US government will not tolerate mixing services that cannot stop illicit actors from using their services."Read more of this story at Slashdot.

As Netflix continues to build out its portfolio of games, the streamer's seeing less than 1 percent of its subscribers interact with them on a daily basis. From a report: According to data obtained by CNBC from app tracking group Apptopia, Netflix's games average 1.7 million users per day, a sliver of Netflix's 221 million subscribers globally. Apptopia found that Netflix's games have been downloaded a total of 23.3 million times since Netflix announced a push into mobile gaming in November 2021. The streamer started with just five games, a collection that it has since expanded to over two dozen titles, including a game based on the Exploding Kittens card game, the League of Legends spinoff Hextech Mayhem, and the strategy title Into the Breach. Netflix also plans on adding a game based on its original series The Queen's Gambit.Read more of this story at Slashdot.

Communications giant Twilio has confirmed hackers accessed customer data after successfully tricking employees into handing over their corporate login credentials. From a report: The San Francisco-based company, which allows users to build voice and SMS capabilities -- such as two-factor authentication (2FA) -- into applications, said in a blog post published Monday that it became aware that someone gained "unauthorized access" to information related to some Twilio customer accounts on August 4. Twilio has more than 150,000 customers, including Facebook and Uber. According to the company, the as-yet-unidentified threat actor convinced multiple Twilio employees into handing over their credentials, which allowed access to the company's internal systems. The attack used SMS phishing messages that purported to come from Twilio's IT department, suggesting that the employees' password had expired or that their schedule had changed, and advised the target to log in using a spoofed web address that the attacker controls.Read more of this story at Slashdot.

Masayoshi Son, founder and chief executive of SoftBank Group, which reported a quarterly loss of over $23 billion, is worried that the funding winter for startups may continue for longer. From a report: The 64-year-old executive, whose Vision Funds have backed over 470 startups globally in the past six years, said on Monday that some unicorn founders are unwilling to accept lower valuations in fresh funding deliberations, an assertion that has led him to believe that the "winter maybe longer" for unlisted companies. Startups across the globe are facing a sharp crunch in funding as investors grow cautious about the market conditions -- despite many of them raising record amounts of funds in recent months. "Unicorn companies' leaders still believe in their valuations and they wouldn't accept that they may have to see their valuations [go] lower than they think," he said, according to company's official translator. "So until the multiple of listed companies is lower than those of unlisted companies, we should wait," said Son, referring to a popular way investors assign value to firms. He said the winter for publicly listed companies is still continuing, but a similar downturn for startups may last "longer."Read more of this story at Slashdot.

"No one imagined commercial space tourism taking hold, no one believed crowd-funded satellites and mega constellations at low earth orbit were possible, and no one could have conceived of the sheer popularity of space entrepreneurship," reads a statement Friday from the chair of America's Federal Communications Commission."But it's all happening...." And Reuters reports on what happens next:With Earth's orbit growing more crowded with satellites, a U.S. government agency on Friday said it would begin revising decades-old rules on getting rid of space junk and on other issues such as satellite refueling and inspecting and repairing in-orbit spacecraft. "We believe the new space age needs new rules," Federal Communications Commission (FCC) Chairwoman Jessica Rosenworcel said after the 4-0 FCC vote, adding that current rules "were largely built for another era." Rosenworcel said the FCC needs "to make sure our rules are prepared for the proliferation of satellites in orbit and new activities in our higher altitudes." The FCC also plans to look at "new ways to clean up orbital debris. After all, there are thousands of metric tons of junk in space," Rosenworcel added. The FCC will look at "the potential for orbital debris remediation and removal functions that offer the prospect of improvement in the orbital debris environment....." "The FCC remains the only agency to license virtually every commercial space mission that touches the United States," FCC Commissioner Geoffrey Starks said. "With that power comes the responsibility to understand the missions we authorize, and to create an enabling regulatory environment that opens new doors while still protecting against new risks." A statement from the FCC describes their new policy review as a "modernization effort." And it made a point of acknowledging that in-space servicing, assembly, and manufacturing has "the potential to build entire industries, create new jobs, mitigate climate change, and advance America's economic, scientific, technological, and national security interests."Read more of this story at Slashdot.

If it weren't for Slashdot, Mark Zuckerberg wouldn't be facing a six-hour deposition over alleged involvement in the Cambridge Analytica Scandal, argues long-time Slashdot reader theodp:In 2003, Harvard's student newspaper the Harvard Crimson reported that Zuck's programming skills attracted attention from the likes of Microsoft and others following a 2003 Slashdot post. That post — titled Machine Learning and MP3s — described how "Students at Caltech [freshman Adam D'Angelo, Quora CEO and co-founder] and Harvard [freshman Zuck] developed a system that analyzes playlists and learns people's listening patterns." The playlist-making software, Synapse AI, was Zuck's high school senior project at Phillips Exeter Academy. Interestingly, in a modded-up comment ("Informative") on the post, Slashdot user Mark Zuckerberg vowed to protect user privacy. "And a note about privacy," promised Zuck. "None of your musical listening data will be available to anyone other than you. We hope to use massive amounts of data to aid in analysis, but your individual data will never be seen by anyone else." Hey, things change. And Slashdot user SkyIce (apparently D'Angelo) added, "I'm not going to spam people. I promise." . Zuckerberg was just 18 years old — and Steven Levy's 2020 book Facebook: The Inside Story recounts how all "the Slashdot attention was a boon."Zuckerberg heard from multiple companies interested in the student project, including Microsoft and AOL. Zuckerberg and D'Angelo got an offer approaching a million dollars from one of those suitors. But the payout would be contingent on Zuckerberg and D'Angelo committing to work for that company for three years. They turned it down. That summer, back in Cambridge, young Mark Zuckerberg "thought it was interesting that I was so excited about Friendster," D'Angelo remembered in the book. Friendster was an earlier social network founded in 2002 (which eventually closed in 2018). D'Angelo remembered that Zuckerberg "wasn't into it as a user, but it was clear to him that there was something there...."Read more of this story at Slashdot.

"If you've been following Joe Barnard's rocketry projects for the past few years, you'll know that one of his primary goals has been to propulsively land a model rocket like SpaceX," reports Hackaday. "Now, 7 years into the rollercoaster journey, he has finally achieved that goal with the latest version of his Scout rocket."Many things need to come together to launch AND land a rocket on standard hobby-grade solid fuel rocket motors. A core component is stabilization of the rocket during the entire flight, which achieved using a thrust-vectoring control (TVC) mount for the rocket motors and a custom flight computer loaded with carefully tuned guidance software. Until recently, the TVC mounts were 3D printed, but Joe upgraded it to machined aluminum to eliminate as much flex and play as possible. Since solid-fuel rockets can't technically be throttled, [Joe] originally tried to time the ignition time of the descent motor in such a manner that it would burn out as the rocket touches down. The ignition time and exact thrust numbers simply weren't repeatable enough, so in his 2020 landing attempts, he achieved some throttling effect by oscillating the TVC side to side, reducing the vertical thrust component. This eventually gave way to the final solution, a pair of ceramic pincers which block the thrust of the motors as required. "I have been trying to do what you just saw for seven years," Barnard says in the video, remembering that he started the project back in the fall of 2015. "Not because it's revolutionary or game-changing for model rocketry, but because it's a really cool project, and I knew I would learn a lot." (On Twitter, Barnard added that "I had no background in aero, electrical engineering, coding, etc so it took a lot of trial and error.") And in the video Barnard made sure to thank his 690 supporters on Patreon — and also shared a surprise. He'd printed out a sheet of paper with the name of every one of his Patreon supporters, rolled it up, and inserted it into the hollow center of his rocket before the flight. "So if you support, you were part of this." The Patreon account offers more details on Barnard's mission. "Learning by experimentation is the most effective way to gain a deep understanding of new concepts, which is why providing hands-on experience with advanced rocketry components is important for the next generation of scientists, engineers, and astronauts." And the video ends with Bernard describing the next projects he'll attempt: More SpaceX-like vertical landingsA 9-foot model of SpaceX's Starship Super Heavy rocketA special secret project known only as "the meat rocket"An actual model-rocket space shot — that is, a rocket that ascends over 100 kilometersRead more of this story at Slashdot.

"A class action lawsuit has been filed against big-three consumer credit bureau Experian," reports Krebs on Security, "over reports that the company did little to prevent identity thieves from hijacking consumer accounts. The legal filing cites liberally from an investigation KrebsOnSecurity published in July, which found that identity thieves were able to assume control over existing Experian accounts simply by signing up for new accounts using the victim's personal information and a different email address. The lawsuit, filed July 28, 2022 in California Central District Court, argues that Experian's documented practice of allowing the re-registration of accounts without first verifying that the existing account authorized the changes is a violation of the Fair Credit Reporting Act. The lawsuit even cites a July blog post from Krebs on Security. The blog post's title? "Experian, You Have Some Explaining to Do."After providing my Social Security Number (SSN), date of birth, and answering several multiple choice questions whose answers are derived almost entirely from public records, Experian promptly changed the email address associated with my credit file. It did so without first confirming that new email address could respond to messages, or that the previous email address approved the change... After that, Experian prompted me to select new secret questions and answers, as well as a new account PIN — effectively erasing the account's previously chosen PIN and recovery questions. Once I'd changed the PIN and security questions, Experian's site helpfully reminded me that I have a security freeze on file, and would I like to remove or temporarily lift the security freeze? Experian did send an automated message to the account's original email address when a new one was added, Krebs wrote, but wondered what good that would actually do. "The only recourse Experian offered in the alert was to sign in, or send an email to an Experian inbox that replies with the message, 'this email address is no longer monitored'..." "I could see no option in my account to enable multi-factor authentication for all logins..." And Krebs added Friday that "Since that story ran I've heard from several more readers who were doing everything right and still had their Experian accounts hijacked, with little left to show for it except an email alert from Experian saying they had changed the address on file for the account."Read more of this story at Slashdot.

JavaScript, the world's most popular programming language according to most surveys, has become a barrier to progress, according to Douglas Crockford, creator of the JSON (JavaScript Object Notation) specification used everywhere for serializing data in web applications. Crockford made this assertion in an interview last month: "The best thing we can do today to JavaScript is to retire it. Twenty years ago, I was one of the few advocates for JavaScript. Its cobbling together of nested functions and dynamic objects was brilliant. I spent a decade trying to correct its flaws. I had a minor success with ES5. But since then, there has been strong interest in further bloating the language instead of making it better. So JavaScript, like the other dinosaur languages, has become a barrier to progress. We should be focused on the next language, which should look more like E than like JavaScript." According to a StackOverflow survey earlier this year, JavaScript is used by over 65% of developers, way ahead of second placed Python at 48 percent (ignoring HTML, CSS and SQL which are not general purpose languages). Crockford also acknowledged there's be two difficulties in replacing browser-based JavaScript, according to the article. "First, we don't have the next language yet. It needs to be a minimal capability-based actor language that is designed specifically for secure distributed programming. Nothing less should be considered. "Second, we need all of the browser makers to adopt it and to simultaneously replace the DOM with a well designed interface. Good luck with that."Read more of this story at Slashdot.

The Sydney Morning Herald reports that a local high school "has seen a dramatic decrease in behavioural issues and a boost in physical activity and students talking to each other just two months after it tightened restrictions on mobile phone usage." The school's principal tells the newspaper that "in eight weeks of the policy, there has been a 90 per cent reduction in behavioural issues related to phones in the school."He said it was "so clear" that mobile phones hindered student learning and focus in classrooms and stunted their emotional and social intelligence. He said phone usage also contributed directly to conflict between students. "At a time when mental health is of such a concern amongst our young people, our school community saw the phone as a significant and negative contributor to student wellbeing," he said.... An online petition calling for a ban on mobile phones in NSW high schools has attracted more than 21,600 signatures. A survey of Davidson High School parents in 2021 found 89 per cent supported the policy of permitting mobile phones at school but not allowing students to use them. The principal said the move reduced distractions for students and teachers.Read more of this story at Slashdot.

Long-time Slashdot reader schwit1 quotes TechXplore:A widely discussed application of social robots that has so far been rarely tested in real-world settings is their use as bartenders in cafes, cocktail bars and restaurants. While many roboticists have been trying to develop systems that can effectively prepare drinks and serve them, so far very few have focused on artificially reproducing the social aspect of bartending. Researchers at University of Naples Federico II in Italy have recently developed a new interactive robotic system called BRILLO, which is specifically designed for bartending. In a recent paper published in UMAP '22 Adjunct: Adjunct Proceedings of the 30th ACM Conference on User Modeling, Adaptation and Personalization, they introduced a new approach that could allow their robot to have personalized interactions with regular customers."The bartending scenario is an extremely challenging one to tackle using robots, yet it is also very interesting from a research point of view," Prof. Silvia Rossi, one of the researchers who carried out the study and the scientific coordinator of the project, told TechXplore. "In fact, this scenario combines the complexity of efficiently manipulating objects to make drinks with the need to interact with the users. Interestingly, however, all current applications of robotics for bartending scenarios ignore the interaction part entirely...." The innovative system created by this team of researchers allows their robot to process what a human user is telling them and their non-verbal cues, to determine what mood they are in, how attentive they are and what types of drinks they prefer. This information is stored by the robot and used to guide its future interactions with returning customers, so that they also consider their personalities and personal stories, along with their drinking preferences.Read more of this story at Slashdot.

Slashdot reader Charlotte Web writes: At 3:02 p.m. EST, vice president Kamala Harris began presiding over the U.S. Senate.After a vote on the very last proposed amendment, the Senate heard these final remarks from Democrat Senate Majority Leader, Chuck Schumer on what he called "the boldest climate package in US history." "It's been a long, tough, and winding road. But at last — at last — we have arrived. I know it's been a long day and long night, but we've gotten it done...." "It's a game changer. It's a turning point. And it's been a long time coming. "To Americans who have lost faith that Congress can do big things, this bill is for you...And to the tens of millions of young Americans who spent years marching, rallying, demanding that Congress act on climate change, this bill is for you. The time has come to pass this historic bill." One by one, Senators delivered their votes for the official tally, and at 3:18 PST Harris announced that "On this vote, the yeas are 50, the nays are 50." And with the vice president casting deciding votes in an equally-divided Senate, "the bill as amended is passed." And the Senate broke into sponateous applause. The bill now goes to the U.S. House of Representatives, which is expected to vote on it Friday. As Slashdot reported last week:The bill helps U.S consumers buy electric vehicle chargers, rooftop solar panels, and fuel-efficient heat pumps. It extends energy-industry tax credits for wind, solar and other renewable energy sources -- and for carbon capture technology. In fact, most of its impact is accomplished through tax credits, reports the New York Times, "viewed as one of the least expensive ways to reduce carbon emissions. "The benefits are worth four times their cost, according to calculations by the Energy Policy Institute at the University of Chicago." One example is ending an eligibility cap on the $7,500 tax credit for consumers buying electric vehicles.Read more of this story at Slashdot.

Friday the Twitter Privacy Center posted an announcement on their blog: "We want to let you know about a vulnerability that allowed someone to enter a phone number or email address into the log-in flow in the attempt to learn if that information was tied to an existing Twitter account, and if so, which specific account. We take our responsibility to protect your privacy very seriously and it is unfortunate that this happened...." Engadget explains:[T]he company said a malicious actor took advantage of a zero-day flaw before Twitter became aware of and patched the issue in January 2022. The vulnerability was discovered by a security researcher who contacted Twitter through the company's bug bounty program. When Twitter first learned of the flaw, it said it had "no evidence" to suggest it had been exploited. However, an individual told Bleeping Computer last month that they took advantage of the vulnerability to obtain data on more than 5.4 million accounts. Twitter said it could not confirm how many users were affected by the exposure. From the Twitter Privacy Center:This bug resulted from an update to our code in June 2021. When we learned about this, we immediately investigated and fixed it. At that time, we had no evidence to suggest someone had taken advantage of the vulnerability.... After reviewing a sample of the available data for sale, we confirmed that a bad actor had taken advantage of the issue before it was addressed. We will be directly notifying the account owners we can confirm were affected by this issue. We are publishing this update because we aren't able to confirm every account that was potentially impacted, and are particularly mindful of people with pseudonymous accounts who can be targeted by state or other actors. If you operate a pseudonymous Twitter account, we understand the risks an incident like this can introduce and deeply regret that this happened. To keep your identity as veiled as possible, we recommend not adding a publicly known phone number or email address to your Twitter account.Read more of this story at Slashdot.

After layoffs at Oracle, Business Insider spoke to current and former employees, learning that some marketing teams reportedly saw their headcount "slashed by anywhere from 30% to 50%." One former marketing employee complained that "It's just a horrible environment left. It's complete chaos....""The common verb to describe Oracle's Advertising and Customer Experience team is that they were obliterated," said a person who works at Oracle. Insider was unable to determine exactly how many ACX employees were cut, but one person familiar said it may have reached 80% of the division... "There's no marketing anymore," a senior marketing leader who was laid off on Monday told Insider. "We're not even supposed to say we're in marketing because there is no marketing division...." One recently laid off marketing leader told Insider that their team was cut in half, and no successor has been appointed to take their place. "My team is texting me; they still have no idea who they work for," the person said. "No one told them I was gone, so they're just floating in the wind...." While the company is known for cutting workers every year, some employees said they were shocked by how many senior, experienced, and high-performing staffers were let go on Monday. For example, Oracle's code base is so complicated that it can take years before engineers are fully up to speed with how everything works, and workers with over a decade of experience were cut, some employees said. Other employees who were laid off in recent months have said they're furious they were cut before their restricted stock units were scheduled to vest, costing them tens of thousands of dollars in expected compensation. "It's just deplorable," said a recently-laid off marketing leader whose primary compensation package included stock. "I know there were people on medical leave laid off. I know people on parental leave that were laid off." The article points out that in June Oracle also reported $191 million on restructuring costs for the previous fiscal year — and another $431 million for the year before. ("Oracle did not respond to requests for comment from Insider at the time of publication.") A recently laid-off marketing employee told the site that "We've been kind of working like zombies the last couple of weeks because there's just this sense of 'What am I doing here?" Thanks to long-time Slashdot reader SpzToid for sharing the article.Read more of this story at Slashdot.

Last month fans were worried about CuteFish OS, with its domain timing out, emails going unanswered, and a Twitter feed that hadn't posted anything since March. But "now it looks like the original development team behind CuteFishOS is coming back to life," according to this report from The New Stack — with a Reddit user planning a fork now saying that's been put on hold, since "I'd be duplicating work for no reason."Last Sunday — on July 31st — CuteFish's official repository on GitHub was updated with a new announcement in its profile. "Your Favorite CutefishOS are back now!" [sic] It also promised "New website in the works (coming soon)." and pointed to a new URL. You can see the changes happening right before your eyes. That website's domain — OpenFish.org — was registered just ten days ago, on Thursday, July 28th — and it's still a work in progress. On Thursday afternoon it was pointing to a non-English-language page hosted on the Pakistani cloud platform QCloud — but by Thursday night it was showing a testing page for a NGNIX HTTP server running Red Hat Enterprise Linux. And there's now also a new README file in CuteFish's GitHub repository listing five items as "progressing." The first item is "official website preparation," but other items include collating the previous pull requests and issues, "fix the existing problem," and eventually adding new features. The sole contributor to the repository appears to be a Chinese coder going under the name of Biukang. "We are preparing for the restart of CutefishOS," says Biukang's GitHub profile now. But the article still hails last month's discussion of a fork as "a chance to see open source communities mobilizing into action just to fill a perceived void."Read more of this story at Slashdot.

Bill Gates wrote a New York Times opinion piece Saturday arguing that it's immediately clear we're experiencing the effects of climate change. Just in America, "Extreme heat and drought are affecting tens of millions of people, as floods and wildfires ravage communities from Appalachia to California." So he's urging the U.S. Congress to "face down the climate crisis" while "strengthening our country's energy security, creating opportunities for businesses and improving the lives of Americans," by supporting a massive climate-spending bill being voted on this weekend in the U.S. Senate. Gates calls the bill "our best chance to build an energy future that is cleaner, cheaper and more secure."Many of the technologies we'll need to reach net-zero emissions don't exist, are in early stages of development or are still too expensive to scale up. At the same time, more mature technologies like solar, wind and electric vehicles must be deployed more quickly in more places. Through new and expanded tax credits and a long-term approach, this bill would ensure that critical climate solutions have sustained support to develop into new industries.... With those incentives and investments, this bill would catalyze a new era of American innovation. The ability of America's universities and industries to innovate remains second to none, yet the country risks falling behind as other countries race to build their own clean energy economies. This legislation would help turn American energy innovations into American energy industries and unlock huge economic opportunities in the energy market. If it becomes law, few nations would have the capacity for producing homegrown clean energy like the United States. America could quickly become a leader in the deployment of clean energy at the scale required. Solving climate change is perhaps the hardest challenge humanity has ever faced. It will require fundamentally transforming how we power our communities, move goods, build things, heat and cool buildings and grow food — basically how we do everything. We need to do it rapidly with a cohesive and coherent plan if we want to avoid the worst effects of climate change. The country has an opportunity to set an example by offering a vision of what's possible — and then by making it happen. Gates also writes that the legislation "would begin to transform the parts of our economy that are hardest to decarbonize, like manufacturing, which we must do to reach net-zero emissions... "Businesses are waiting on the sidelines for a strong signal from government that clean industries are a solid long-term investment. Passing the Inflation Reduction Act would send that message and enable private capital to supercharge our clean energy future with even greater confidence."Read more of this story at Slashdot.

Purism posted an announcement Thursday about their privacy-focused "Librem 5 USA" smartphones. "New orders placed today will ship within our standard 10-business-day window."The Librem 5 USA now joins the Librem Mini and Librem 14 as a post-Just In Time product, one where instead of relying on Just In Time supply chains to manufacture a product just as we need it, we have invested in maintaining much larger inventories so that we can better absorb future supply chain issues that may come our way. For anyone who is new to the product, the Librem 5 USA is our premium phone that shares the same hardware design and features as our mass-produced Librem 5, but with electronics we make in the USA using a separate electronics supply chain that sources from US suppliers whenever possible. This results in a tighter, more secure supply chain for the Librem 5 USA. The Librem 5 USA uses the same PureOS as our other computers and so it runs the same desktop Linux applications you might be used to, just on a small screen. PureOS on the Librem 5 USA demonstrates real convergence, where the device becomes more than just a phone, it becomes a full-featured pocket-sized computer that can act like a desktop when connected to a monitor, keyboard and mouse, or even a laptop (or tablet!) when connected to a laptop docking station. All of your files and all of your software remains the same and follows you where you go. Applications just morph from the smaller screen to the larger screen when docked, just like connecting a external monitor to a laptop. Everyone who has backed the Librem 5 and Librem 5 USA projects hasn't just supported the production of the hardware itself, they have also supported a massive, multi-year software development effort to bring the traditional Linux desktop to a phone form-factor. Projects such as Phosh (the GUI), Phoc (the Compositor), Squeekboard (the Keyboard), Calls (for calling), Chats (for texting and messaging), and libhandy/libadwaita (libraries to make GTK applications adaptive) all required massive investment and many of these projects have already been moved to the GNOME infrastructure to better share our effort with a larger community. We are delighted to see that many other mobile projects have recognized the quality of our efforts and adopted our software into their own projects.... The Librem 5 USA was designed for longevity and because we support right to repair, we also offer a number of spare parts in our shop, including replacement modems so you can make sure you support all the cellular bands in a particular continent, replacement batteries for when you ultimately wear out your existing battery, and plenty of other spare parts that haven't had sufficient demand to post formally on our shop (yet). If you need a spare part that isn't yet on the shop, just ask.Read more of this story at Slashdot.

About two-thirds of Americans now say they support unions, reports CNBC, "the highest approval rating since 1965." And suddenly in the last few months, "workers have been organizing at a pace this country hasn't seen since the Great Depression."Amazon has captured headlines for union drives at its warehouses, including a successful effort on New York's Staten Island. But activity is picking up elsewhere in retail and tech at big companies that are generally viewed as progressive, with no history of labor unions. As of Wednesday, 209 Starbucks stores have officially voted to unionize according to the National Labor Relations Board. First-ever unions have also formed at an Apple store in Maryland, a Google Fiber contractor, REI, Trader Joe's, Kickstarter and Activision Blizzard.... The union movement at Apple stores is progressing at a slower pace. The first union win among Apple's 270-plus U.S. stores happened on June 18, when workers in Towson, Maryland, voted 65 to 33 to join the International Association of Machinists and Aerospace Workers. No other stores have held a vote.... Three other stores have taken steps to unionize, although one in Atlanta withdrew its election petition in May. That same month, a memo was leaked showing Apple's anti-union talking points, instructing store managers to tell workers they could lose benefits and career opportunities if they organized.... Communications Workers of America, which has about 700,000 members, helped organize the Atlanta Apple store, as well as workers at Google. In March, Google Fiber contractors in Kansas City held an NLRB election, becoming the first to officially unionize under what's known as the Alphabet Workers Union. Nearly 1,000 other Google workers have also signed cards to join the AWU, but because the employees haven't officially held an NLRB election, their group is known as a minority union. "There's a lot of research that shows that most Americans want unions," said Sara Steffens, secretary-treasurer of Communications Workers of America. "They just don't want to go through this scary union-busting process...." Google has also been accused of fighting back. The NLRB found that the company "arguably violated" labor law when it fired employees for speaking up. The Google Fiber contractors faced additional anti-union messaging in a letter from the contractor, which said "everyone will be stuck with the union and forced to pay dues." The article points out that union workers earn 16.6% more than nonunion workers on average — roughly $10,000 a year. "Workers are looking at how well their employers are performing and wondering why they're not getting rewarded equally. For example, Google parent Alphabet recorded its fastest revenue growth rate since 2007 last year. Apple's margin has been steadily rising and the company closed 2021 with its biggest quarter ever for sales, at almost $124 billion.... The article also notes that official figures from October 1, 2021 through June 30 showed a 58% increase in official attempts to unionize. "Whether the organizing momentum spreads more widely across the economy may depend on how vocal and successful workers are at Starbucks, Apple and elsewhere."Read more of this story at Slashdot.

An anonymous reader shares this report on The Switchblade, "an aircraft that doubles as a car." It could be "just weeks away from getting its wheels off the ground after an inspection by America's Federal Aviation Administration determined that the vehicle is safe to fly:The project has been 14 years in the making, and Sam Bousfield, CEO of Samson Sky and inventor of the Switchblade, said he's "stoked" to reach this milestone. After passing the FAA inspection, his team wasted no time in beginning the high-speed taxi test. They were out on the taxiway the next day. "[The crew] took off their 'I'm doing R&D' and they put on their 'I am flight test' crew hat, and I think that really set the tone for everything after," Bousfield said. "So, we're in a different game now...." Just like a pocket knife, the Switchblade's wings slip smoothly into the body of the vehicle with the touch of a button, allowing it to seamlessly transition from sky to air. Its tail also unfurls or retracts, depending on if it's being used to fly or drive. The idea is that the vehicle could be parked in a garage, driven to an airport, flown to a new destination, and then driven anywhere on the ground after it lands. When a trip is over, the user can fly it home or fly it elsewhere. "The side windows (in the doors) will be power windows," noted a tweet Thursday on the car manufacturer's official Twitter feed @FlyingSportsCar. And Maxim points out that The Switchblade can be flown at up to 200 mph and as high as 13,000 feet, "for up to 450 miles, with the 190-hp liquid-cooled three-cylinder powering the single propeller."On the ground, the Switchblade can achieve a brisk 125 mph, making it similar to "a little flying sports car," Bousfield added. Before production begins, the Switchblade has more regulatory hurdles that flying cars will need to overcome. Owners will need a pilot's license and either a motorcycle or driver's license to operate it in both flight and ground modes, plus car/motorcycle and aircraft insurance. But for now, the FAA flight approval has inspired Bousfield to keep charging ahead.... It will be at least a few more years before civilians are flying their own Switchblades, which are expected to cost around $170,000. But anyone can join the 1,670 people who have reserved one free of charge.Read more of this story at Slashdot.