Slashdot

An anonymous reader quotes a report from Wired: As marketers, data brokers, and tech giants endlessly expand their access to individuals' data and movements across the web, tools like VPNs or cookie blockers can feel increasingly feeble and futile. Short of going totally off the grid forever, there are few options for the average person to meaningfully resist tracking online. Even after coming up with a technical solution last year for how phone carriers could stop automatically collecting users' locations, researchers Barath Raghavan and Paul Schmitt knew it would be challenging to convince telecoms to implement the change. So they decided to be the carrier they wanted to see in the world. The result is a new company, dubbed Invisv, that offers mobile data designed to separate users from specific identifiers so the company can't access or track customers' metadata, location information, or mobile browsing. Launching in beta today for Android, the company's Pretty Good Phone Privacy or PGPP service will replace the mechanism carriers normally use to turn cell phone tower connection data into a trove of information about users' movements. And it will also offer a Relay service that disassociates a user's IP address from their web browsing. PGPP's ability to mask your phone's identity from cell towers comes from a revelation about why cell towers collect the unique identifiers known as IMSI numbers, which can be tracked by both telecoms and other entities that deploy devices known as IMSI catchers, often called stringrays, which mimic a cell tower for surveillance purposes. Raghavan and Schmitt realized that at its core, the only reason carriers need to track IMSI numbers before allowing devices to connect to cell towers for service is so they can run billing checks and confirm that a given SIM card and device are paid up with their carrier. By acting as a carrier themselves, Invisv can implement their PGPP technology that simply generates a "yes" or "no" about whether a device should get service. On the PGPP "Mobile Pro" plan, which costs $90 per month, users get unlimited mobile data in the US and, at launch, unlimited international data in most European Union countries. Users also get 30 random IMSI number changes per month, and the changes can happen automatically (essentially one per day) or on demand whenever the customer wants them. The system is designed to be blinded so neither INVISV nor the cell towers you connect to know which IMSI is yours at any given time. There's also a "Mobile Core" plan for $40 per month that offers eight IMSI number changes per month and 9 GB of high-speed data per month. Both of these plans also include PGPP's Relay service. Similar to Apple's iCloud Private Relay, PGPP's Relay is a method for blocking everyone, from your internet provider or carrier to the websites you visit, from knowing both who you are and what you're looking at online at the same time. Such relays send your browsing data through two way stations that allow you to browse the web like normal while shielding your information from the world. When you navigate to a website, your IP address is visible to the first relay -- in this case, Invisv -- but the information about the page you're trying to load is encrypted. Then the second relay generates and connects an alternate IP address to your request, at which point it is able to decrypt and view the website you're trying to load. The content delivery network Fastly is working with Invisv to provide this second relay. Fastly is also one of the third-party providers for iCloud Private Relay. In this way, each relay knows some of the information about your browsing; the first simply knows that you are using the web, and the second sees the sites you connect to, but not who specifically is browsing there. In addition to being included in the two PGPP data plans, customers can also purchase the Relay service on its own for $5 per month and turn it on while connected to mobile data or Wi-Fi. The carrier is still working to bring its services to Apple's iOS. It's also worth noting that Invisv only offers mobile data; there are no voice calling services.Read more of this story at Slashdot.

7-Eleven stores in Denmark shut down today after a cyberattack disrupted stores' payment and checkout systems throughout the country. Bleeping Computer reports: The attack occurred early this morning, August 8th, with the company posting on Facebook that they were likely "exposed to a hacker attack." The translated statement says that the company has closed all the stores in the country while investigating the security incident: ""Unfortunately, we suspect that we have been exposed to a hacker attack today, Monday 8 August 2022. This means that we cannot use checkouts and/or receive payment. We are therefore keeping the stores closed until we know the extent. We naturally hope that we can open the stores again soon." - 7-Eleven DK." At this time, there are no further details about the attack, including whether ransomware was involved, which has become the most common cyberattack causing wide-scale outages.Read more of this story at Slashdot.

In preliminary second-quarter financial results announced today, Nvidia's year-over-year growth is "down from a previously forecasted $8.1 billion, a miss of $1.4 billion," reports Ars Technica. "Nvidia blamed this shortfall on weaker-than-expected demand for its gaming products, including its GeForce graphics processors." The full results won't arrive until the end of the month. From the report: Nvidia pointed to "a reduction in channel partner sales," meaning that partners like Evga, MSI, Asus, Zotac, Gigabyte, and others were selling fewer new GPUs than anticipated. This drop can be attributed partly to a crash in the value of mining-based cryptocurrencies like Bitcoin and Ethereum -- fewer miners are buying these cards, and miners looking to unload their GPUs on the secondhand market are also giving gamers a cheaper source for graphics cards. "As we expect the macroeconomic conditions affecting sell-through to continue, we took actions with our Gaming partners to adjust channel prices and inventory," said Nvidia CEO Jensen Huang. That means we may see further price drops for existing GeForce GPUs, which have already been dropping in price throughout the year. Some cards still haven't reverted to their originally advertised prices, but they're getting closer all the time. In better news for Nvidia, the small overall increase in revenue [$6.7 billion] is driven almost exclusively by the company's data center business, including GPU-accelerated AI and machine learning applications and GPU acceleration for cloud-hosted virtual machines. Nvidia's data center revenue is projected to be up 61 percent from last year, from $2.37 billion to $3.81 billion. Nvidia will supposedly launch its next-generation RTX 4000 series GPUs later this year. Based on the new Lovelace architecture, these GPUs may appeal to some gamers who originally sat out the RTX 3000 series due to shortages and inflated prices and are now avoiding the GPUs because they know a replacement is around the corner.Read more of this story at Slashdot.

An anonymous reader quotes a report from Bloomberg: Amazon.com hasn't just bought a maker of robot vacuum cleaners. It's acquired a mapping company. To be more precise: a company that can make maps of your home. The company announced a $1.7 billion deal on Friday for iRobot, the maker of the Roomba vacuum cleaner. And yes, Amazon will make money from selling those gadgets. But the real value resides in those robots' ability to map your house. As ever with Amazon, it's all about the data. A smart home, you see, isn't actually terribly smart. It only knows that your Philips Hue lightbulbs and connected television are in your sitting room because you've told it as much. It certainly doesn't know where exactly the devices are within that room. The more it knows about a given space, the more tightly it can choreograph the way they interact with you. The smart home is clearly a priority for Amazon. Its Echo smart speakers still outsell those from rivals Apple and Google, with an estimated 9.9 million units sold in the three months through March, according to the analysis firm Strategy Analytics. It's complemented that with a $1 billion deal for the video doorbell-maker Ring in 2018, and the wi-fi company Eero a year later. But you still can't readily buy the Astro, Amazon's household robot that was revealed with some fanfare last year, is still only available in limited quantities. That, too, seemed at least partly an effort to map the inside of your property, a task that will now fall to iRobot. The Bedford, Mass.-based company's most recent products include a technology it calls Smart Maps, though customers can opt out of sharing the data. Amazon said in a statement that protecting customer data is "incredibly important." Slightly more terrifying, the maps also represent a wealth of data for marketers. The size of your house is a pretty good proxy for your wealth. A floor covered in toys means you likely have kids. A household without much furniture is a household to which you can try to sell more furniture. This is all useful intel for a company such as Amazon which, you may have noticed, is in the business of selling stuff.Read more of this story at Slashdot.

Only days after being launched to the public, Meta Platforms' new AI chatbot has been claiming that Donald Trump won the 2020 US presidential election, and repeating anti-Semitic conspiracy theories. From a report: Chatbots -- artificial intelligence software that learns from interactions with the public -- have a history of taking reactionary turns. In 2016, Microsoft's Tay was taken offline within 48 hours after it started praising Adolf Hitler, amid other racist and misogynist comments it apparently picked up while interacting with Twitter users. Facebook parent company Meta released BlenderBot 3 on Friday to users in the US, who can provide feedback if they receive off-topic or unrealistic answers. A further feature of BlenderBot 3 is its ability to search the internet to talk about different topics. The company encourages adults to interact with the chatbot with "natural conversations about topics of interest" to allow it to learn to conduct naturalistic discussions on a wide range of subjects. Conversations shared on various social media accounts ranged from the humorous to the offensive. BlenderBot 3 told one user its favorite musical was Andrew Lloyd Webber's "Cats," and described Meta CEO Mark Zuckerberg as "too creepy and manipulative" to a reporter from Insider. Other conversations showed the chatbot repeating conspiracy theories.Read more of this story at Slashdot.

How some people tricked Google into getting their own knowledge panels and fooled Amazon-owned IMDb into believing they are top stars in dozens of movies. From a report: I was casually browsing IMDb when I landed on the page for an upcoming Ranbir Kapoor starrer movie "Animal." I saw the cast details and I found a face and a name I didn't recognize. Finding out about this guy led me to a whole new world of how so many young Indian men from small towns are gaming the system to manufacture their own fake online clout. So who is this guy? I had not heard of him before and he is named in the "Top cast" category for this movie, alongside Indian actor Ranbir Kapoor. According to his IMDb page, he has acting credits in some big-budget productions. I am beginning to suspect that this could be a case of IMDb vandalism. IMDb allows anyone to add and edit pages. They don't allow you to see the edit history of a page though like Wikipedia and evidently, the edits are not reviewed effectively either. I googled this guy. Wow, so Google has a knowledge panel on him. There are also links to his music on various music platforms. Okay, so probably he is pretending to be an actor on IMDb but according to his google search results, he is actually a legit musician? Skimming through the search results, I found biographies written about him on a few websites of doubtful credibility. Like this one on a website called issuewire.com. I looked at his YouTube and other social media profiles and he doesn't have a lot of followers or any music content on there. I shazamed a couple of his songs and they're just copies of existing random music mashed together with some audio editing tool like Audacity. Possibly to avoid getting copyright notices. Hmm. I think I am now beginning to get a clearer picture of what's going on here. He set up a profile on a bunch of different music streaming platforms. Uploaded remixed mash-up of existing songs using some audio editing software. Published biographies and profiles about himself on sites that do not verify submissions. Set up an IMDb page with fake credits. All this to trick google into believing he is a person of eminence. [...] I went back to his IMDb and checked the cast details of some of the movies he is part of. And I found a few dozen profiles with the exact same modus operandi.Read more of this story at Slashdot.

Computer scientist Stephen Thaler was dealt another blow in his battle for artificial intelligence machines to be recognized as inventors on patents, after the nation's top patent court found that inventors must be humans. The term "individual" in the Patent Act refers only to humans, meaning an AI doesn't count as an inventor on a patentable invention, the US Court of Appeals for the Federal Circuit ruled Friday. From a report: The decision lines up with courts in the European Union, the United Kingdom, and Australia that have refused to accept Thaler's argument. His only currently existing win is from a South African court that said an AI can be a patent inventor. Unless the US Supreme Court steps in, the Federal Circuit is typically the final authority on US patent matters -- hearing all such appeals from federal district courts and the US Patent and Trademark Office. Thaler already plans to appeal to the high court, his attorney, Ryan Abbott of Brown, Neri, Smith & Khan LLP, said. The Federal Circuit adopted a "narrow and textualist approach" to the Patent Act, Abbott said. "It ignores the purpose of the Patent Act and the outcome that AI-generated inventions are now unpatentable in the United States," he said. "That is an outcome with real negative social consequences."Read more of this story at Slashdot.

Cryptocurrency lending platform Hodlnaut has frozen withdrawals, deposits and token swaps because of "difficult market conditions," the firm said on Monday. From a report: The Singapore-based firm, which was founded in 2019, said it wants to stabilize liquidity and preserve assets while it works on a long-term solution. Hodlnaut also withdrew its application to the Monetary Authority of Singapore for a license in the city-state, even though it received in-principle approval from the central bank in March. The company is the latest in a line of crypto lenders that have buckled under market pressure this year, with Celsius Network and Voyager Digital both filing for bankruptcy protection. The total crypto market cap has slumped to about $1 trillion from more than $3 trillion in November. One of the key components of the market downturn was the collapse of crypto hedge fund Three Arrows Capital, which had billions of dollars of exposure to numerous companies in the crypto universe. Hodlnaut announced in June that it had "no exposure or loans" with Three Arrows Capital or Celsius.Read more of this story at Slashdot.

In the near future, "Top Gun" may get a reboot. Roughly one year from now, fighter pilots will begin flying with helmets outfitted with visors that can augment reality and place digital replicas of enemy fighter jets in their field of vision. For the first time, pilots will get to fly in the air and practice maneuvering against imitations of highly advanced aircraft made by countries like China and Russia. From a report: It is also part of the U.S. military's investment of billions into virtual reality, artificial intelligence and algorithms to modernize the way it fights wars. The pilot training solution, created by military technology company Red6, will be rolled out to the Air Force first as part of its $70 million contract with the branch. Company and former military officials say the technology will be a safe, cheap and realistic way to ensure American pilots are prepared to battle the best fighter planes in the world. "Better, faster, cheaper," said Daniel Robinson, founder and chief executive of Red6. "This is the way we'll train them in the future." The military wants new 'robot ships' to replace sailors during battle For decades, the way America trains its fighter pilots has changed little. Aviators from the Air Force and Navy often start their training flying on a Northrop T-38 jet, often using a similar syllabus to one that has been around since the 1960s. From there, they train on planes, such as F-22 or F-35 fighter jets, that they will fly during their career.Read more of this story at Slashdot.

Intel's Arc graphics cards aren't just for gamers, it seems, as the previously CPU-exclusive company has taken the lid off a new line of professional GPUs to complement the existing Arc line -- well, existing in China, maybe. From a report:The new cards are called Arc Pro, and target those who use their graphics cards for more than shooting bad guys. Maybe they won't be among the best graphics cards for gaming, but the AV1 encoding at least might get some takers. Intel today unveiled one mobile professional GPU, the A30M, and two desktop models: the single-slot A40 and double-slot A50. Both desktop cards are described as being for small form-factor machines, which makes us suspect Intel may have some much larger cards up its sleeve. All the newly announced GPUs feature built-in ray tracing hardware, machine learning capabilities and industry-first AV1 hardware encoding acceleration. Google's royalty-free, open source alternative to HEVC, AV1 hasn't gained a lot of traction on the web so far despite promises from Netflix and YouTube, with its main use being in Google's Duo video calling despite beating HEVC for compression quality. It's always been very slow to encode, however, so a good hardware accelerator and Intel's backing could see it take off.Read more of this story at Slashdot.

Tornado Cash, a popular cryptocurrency service that allows users to mask their transactions, was sanctioned by the US Treasury Department after North North Korean hackers relied on it to launder illicit gains, officials announced on Monday. The sanctions bar American companies and individuals from doing business with it. From a report: The platform facilitates anonymous transactions by mixing funds from different sources before transmitting them to the ultimate beneficiary. Tornado Cash has been used to launder more than $7 billion in virtual currency, a senior Treasury official said in a press conference. North Korea's Lazarus Group has laundered about $450 million through the service, according to the official. It was also used to launder more than $100 million in the June hack of the Harmony blockchain's Horizon Bridge, which allows crypto trading between other blockchains, the official said. Described by administration officials as the go-to mixer for cyber criminals, Tornado Cash became the second such service targeted by the Treasury Department. In May, the agency issued sanctions against Blender.io, which was also allegedly used by North Korean hackers to launder illicit proceeds from hacking. Following the sanctions, it appears Blender.io is no longer operating, the official said. The action against Tornado is a "watershed" moment and the Treasury's "most significant action in the crypto space to date," said Ari Redbord, head of legal and government affairs at TRM Labs, a blockchain analysis firm used by governments and financial institutions to fight fraud, money laundering and financial crime, in an email. "This designation sends a message that the US government will not tolerate mixing services that cannot stop illicit actors from using their services."Read more of this story at Slashdot.

As Netflix continues to build out its portfolio of games, the streamer's seeing less than 1 percent of its subscribers interact with them on a daily basis. From a report: According to data obtained by CNBC from app tracking group Apptopia, Netflix's games average 1.7 million users per day, a sliver of Netflix's 221 million subscribers globally. Apptopia found that Netflix's games have been downloaded a total of 23.3 million times since Netflix announced a push into mobile gaming in November 2021. The streamer started with just five games, a collection that it has since expanded to over two dozen titles, including a game based on the Exploding Kittens card game, the League of Legends spinoff Hextech Mayhem, and the strategy title Into the Breach. Netflix also plans on adding a game based on its original series The Queen's Gambit.Read more of this story at Slashdot.

Communications giant Twilio has confirmed hackers accessed customer data after successfully tricking employees into handing over their corporate login credentials. From a report: The San Francisco-based company, which allows users to build voice and SMS capabilities -- such as two-factor authentication (2FA) -- into applications, said in a blog post published Monday that it became aware that someone gained "unauthorized access" to information related to some Twilio customer accounts on August 4. Twilio has more than 150,000 customers, including Facebook and Uber. According to the company, the as-yet-unidentified threat actor convinced multiple Twilio employees into handing over their credentials, which allowed access to the company's internal systems. The attack used SMS phishing messages that purported to come from Twilio's IT department, suggesting that the employees' password had expired or that their schedule had changed, and advised the target to log in using a spoofed web address that the attacker controls.Read more of this story at Slashdot.

Masayoshi Son, founder and chief executive of SoftBank Group, which reported a quarterly loss of over $23 billion, is worried that the funding winter for startups may continue for longer. From a report: The 64-year-old executive, whose Vision Funds have backed over 470 startups globally in the past six years, said on Monday that some unicorn founders are unwilling to accept lower valuations in fresh funding deliberations, an assertion that has led him to believe that the "winter maybe longer" for unlisted companies. Startups across the globe are facing a sharp crunch in funding as investors grow cautious about the market conditions -- despite many of them raising record amounts of funds in recent months. "Unicorn companies' leaders still believe in their valuations and they wouldn't accept that they may have to see their valuations [go] lower than they think," he said, according to company's official translator. "So until the multiple of listed companies is lower than those of unlisted companies, we should wait," said Son, referring to a popular way investors assign value to firms. He said the winter for publicly listed companies is still continuing, but a similar downturn for startups may last "longer."Read more of this story at Slashdot.

"No one imagined commercial space tourism taking hold, no one believed crowd-funded satellites and mega constellations at low earth orbit were possible, and no one could have conceived of the sheer popularity of space entrepreneurship," reads a statement Friday from the chair of America's Federal Communications Commission."But it's all happening...." And Reuters reports on what happens next:With Earth's orbit growing more crowded with satellites, a U.S. government agency on Friday said it would begin revising decades-old rules on getting rid of space junk and on other issues such as satellite refueling and inspecting and repairing in-orbit spacecraft. "We believe the new space age needs new rules," Federal Communications Commission (FCC) Chairwoman Jessica Rosenworcel said after the 4-0 FCC vote, adding that current rules "were largely built for another era." Rosenworcel said the FCC needs "to make sure our rules are prepared for the proliferation of satellites in orbit and new activities in our higher altitudes." The FCC also plans to look at "new ways to clean up orbital debris. After all, there are thousands of metric tons of junk in space," Rosenworcel added. The FCC will look at "the potential for orbital debris remediation and removal functions that offer the prospect of improvement in the orbital debris environment....." "The FCC remains the only agency to license virtually every commercial space mission that touches the United States," FCC Commissioner Geoffrey Starks said. "With that power comes the responsibility to understand the missions we authorize, and to create an enabling regulatory environment that opens new doors while still protecting against new risks." A statement from the FCC describes their new policy review as a "modernization effort." And it made a point of acknowledging that in-space servicing, assembly, and manufacturing has "the potential to build entire industries, create new jobs, mitigate climate change, and advance America's economic, scientific, technological, and national security interests."Read more of this story at Slashdot.

If it weren't for Slashdot, Mark Zuckerberg wouldn't be facing a six-hour deposition over alleged involvement in the Cambridge Analytica Scandal, argues long-time Slashdot reader theodp:In 2003, Harvard's student newspaper the Harvard Crimson reported that Zuck's programming skills attracted attention from the likes of Microsoft and others following a 2003 Slashdot post. That post — titled Machine Learning and MP3s — described how "Students at Caltech [freshman Adam D'Angelo, Quora CEO and co-founder] and Harvard [freshman Zuck] developed a system that analyzes playlists and learns people's listening patterns." The playlist-making software, Synapse AI, was Zuck's high school senior project at Phillips Exeter Academy. Interestingly, in a modded-up comment ("Informative") on the post, Slashdot user Mark Zuckerberg vowed to protect user privacy. "And a note about privacy," promised Zuck. "None of your musical listening data will be available to anyone other than you. We hope to use massive amounts of data to aid in analysis, but your individual data will never be seen by anyone else." Hey, things change. And Slashdot user SkyIce (apparently D'Angelo) added, "I'm not going to spam people. I promise." . Zuckerberg was just 18 years old — and Steven Levy's 2020 book Facebook: The Inside Story recounts how all "the Slashdot attention was a boon."Zuckerberg heard from multiple companies interested in the student project, including Microsoft and AOL. Zuckerberg and D'Angelo got an offer approaching a million dollars from one of those suitors. But the payout would be contingent on Zuckerberg and D'Angelo committing to work for that company for three years. They turned it down. That summer, back in Cambridge, young Mark Zuckerberg "thought it was interesting that I was so excited about Friendster," D'Angelo remembered in the book. Friendster was an earlier social network founded in 2002 (which eventually closed in 2018). D'Angelo remembered that Zuckerberg "wasn't into it as a user, but it was clear to him that there was something there...."Read more of this story at Slashdot.

"If you've been following Joe Barnard's rocketry projects for the past few years, you'll know that one of his primary goals has been to propulsively land a model rocket like SpaceX," reports Hackaday. "Now, 7 years into the rollercoaster journey, he has finally achieved that goal with the latest version of his Scout rocket."Many things need to come together to launch AND land a rocket on standard hobby-grade solid fuel rocket motors. A core component is stabilization of the rocket during the entire flight, which achieved using a thrust-vectoring control (TVC) mount for the rocket motors and a custom flight computer loaded with carefully tuned guidance software. Until recently, the TVC mounts were 3D printed, but Joe upgraded it to machined aluminum to eliminate as much flex and play as possible. Since solid-fuel rockets can't technically be throttled, [Joe] originally tried to time the ignition time of the descent motor in such a manner that it would burn out as the rocket touches down. The ignition time and exact thrust numbers simply weren't repeatable enough, so in his 2020 landing attempts, he achieved some throttling effect by oscillating the TVC side to side, reducing the vertical thrust component. This eventually gave way to the final solution, a pair of ceramic pincers which block the thrust of the motors as required. "I have been trying to do what you just saw for seven years," Barnard says in the video, remembering that he started the project back in the fall of 2015. "Not because it's revolutionary or game-changing for model rocketry, but because it's a really cool project, and I knew I would learn a lot." (On Twitter, Barnard added that "I had no background in aero, electrical engineering, coding, etc so it took a lot of trial and error.") And in the video Barnard made sure to thank his 690 supporters on Patreon — and also shared a surprise. He'd printed out a sheet of paper with the name of every one of his Patreon supporters, rolled it up, and inserted it into the hollow center of his rocket before the flight. "So if you support, you were part of this." The Patreon account offers more details on Barnard's mission. "Learning by experimentation is the most effective way to gain a deep understanding of new concepts, which is why providing hands-on experience with advanced rocketry components is important for the next generation of scientists, engineers, and astronauts." And the video ends with Bernard describing the next projects he'll attempt: More SpaceX-like vertical landingsA 9-foot model of SpaceX's Starship Super Heavy rocketA special secret project known only as "the meat rocket"An actual model-rocket space shot — that is, a rocket that ascends over 100 kilometersRead more of this story at Slashdot.

"A class action lawsuit has been filed against big-three consumer credit bureau Experian," reports Krebs on Security, "over reports that the company did little to prevent identity thieves from hijacking consumer accounts. The legal filing cites liberally from an investigation KrebsOnSecurity published in July, which found that identity thieves were able to assume control over existing Experian accounts simply by signing up for new accounts using the victim's personal information and a different email address. The lawsuit, filed July 28, 2022 in California Central District Court, argues that Experian's documented practice of allowing the re-registration of accounts without first verifying that the existing account authorized the changes is a violation of the Fair Credit Reporting Act. The lawsuit even cites a July blog post from Krebs on Security. The blog post's title? "Experian, You Have Some Explaining to Do."After providing my Social Security Number (SSN), date of birth, and answering several multiple choice questions whose answers are derived almost entirely from public records, Experian promptly changed the email address associated with my credit file. It did so without first confirming that new email address could respond to messages, or that the previous email address approved the change... After that, Experian prompted me to select new secret questions and answers, as well as a new account PIN — effectively erasing the account's previously chosen PIN and recovery questions. Once I'd changed the PIN and security questions, Experian's site helpfully reminded me that I have a security freeze on file, and would I like to remove or temporarily lift the security freeze? Experian did send an automated message to the account's original email address when a new one was added, Krebs wrote, but wondered what good that would actually do. "The only recourse Experian offered in the alert was to sign in, or send an email to an Experian inbox that replies with the message, 'this email address is no longer monitored'..." "I could see no option in my account to enable multi-factor authentication for all logins..." And Krebs added Friday that "Since that story ran I've heard from several more readers who were doing everything right and still had their Experian accounts hijacked, with little left to show for it except an email alert from Experian saying they had changed the address on file for the account."Read more of this story at Slashdot.

JavaScript, the world's most popular programming language according to most surveys, has become a barrier to progress, according to Douglas Crockford, creator of the JSON (JavaScript Object Notation) specification used everywhere for serializing data in web applications. Crockford made this assertion in an interview last month: "The best thing we can do today to JavaScript is to retire it. Twenty years ago, I was one of the few advocates for JavaScript. Its cobbling together of nested functions and dynamic objects was brilliant. I spent a decade trying to correct its flaws. I had a minor success with ES5. But since then, there has been strong interest in further bloating the language instead of making it better. So JavaScript, like the other dinosaur languages, has become a barrier to progress. We should be focused on the next language, which should look more like E than like JavaScript." According to a StackOverflow survey earlier this year, JavaScript is used by over 65% of developers, way ahead of second placed Python at 48 percent (ignoring HTML, CSS and SQL which are not general purpose languages). Crockford also acknowledged there's be two difficulties in replacing browser-based JavaScript, according to the article. "First, we don't have the next language yet. It needs to be a minimal capability-based actor language that is designed specifically for secure distributed programming. Nothing less should be considered. "Second, we need all of the browser makers to adopt it and to simultaneously replace the DOM with a well designed interface. Good luck with that."Read more of this story at Slashdot.

The Sydney Morning Herald reports that a local high school "has seen a dramatic decrease in behavioural issues and a boost in physical activity and students talking to each other just two months after it tightened restrictions on mobile phone usage." The school's principal tells the newspaper that "in eight weeks of the policy, there has been a 90 per cent reduction in behavioural issues related to phones in the school."He said it was "so clear" that mobile phones hindered student learning and focus in classrooms and stunted their emotional and social intelligence. He said phone usage also contributed directly to conflict between students. "At a time when mental health is of such a concern amongst our young people, our school community saw the phone as a significant and negative contributor to student wellbeing," he said.... An online petition calling for a ban on mobile phones in NSW high schools has attracted more than 21,600 signatures. A survey of Davidson High School parents in 2021 found 89 per cent supported the policy of permitting mobile phones at school but not allowing students to use them. The principal said the move reduced distractions for students and teachers.Read more of this story at Slashdot.

Long-time Slashdot reader schwit1 quotes TechXplore:A widely discussed application of social robots that has so far been rarely tested in real-world settings is their use as bartenders in cafes, cocktail bars and restaurants. While many roboticists have been trying to develop systems that can effectively prepare drinks and serve them, so far very few have focused on artificially reproducing the social aspect of bartending. Researchers at University of Naples Federico II in Italy have recently developed a new interactive robotic system called BRILLO, which is specifically designed for bartending. In a recent paper published in UMAP '22 Adjunct: Adjunct Proceedings of the 30th ACM Conference on User Modeling, Adaptation and Personalization, they introduced a new approach that could allow their robot to have personalized interactions with regular customers."The bartending scenario is an extremely challenging one to tackle using robots, yet it is also very interesting from a research point of view," Prof. Silvia Rossi, one of the researchers who carried out the study and the scientific coordinator of the project, told TechXplore. "In fact, this scenario combines the complexity of efficiently manipulating objects to make drinks with the need to interact with the users. Interestingly, however, all current applications of robotics for bartending scenarios ignore the interaction part entirely...." The innovative system created by this team of researchers allows their robot to process what a human user is telling them and their non-verbal cues, to determine what mood they are in, how attentive they are and what types of drinks they prefer. This information is stored by the robot and used to guide its future interactions with returning customers, so that they also consider their personalities and personal stories, along with their drinking preferences.Read more of this story at Slashdot.

Slashdot reader Charlotte Web writes: At 3:02 p.m. EST, vice president Kamala Harris began presiding over the U.S. Senate.After a vote on the very last proposed amendment, the Senate heard these final remarks from Democrat Senate Majority Leader, Chuck Schumer on what he called "the boldest climate package in US history." "It's been a long, tough, and winding road. But at last — at last — we have arrived. I know it's been a long day and long night, but we've gotten it done...." "It's a game changer. It's a turning point. And it's been a long time coming. "To Americans who have lost faith that Congress can do big things, this bill is for you...And to the tens of millions of young Americans who spent years marching, rallying, demanding that Congress act on climate change, this bill is for you. The time has come to pass this historic bill." One by one, Senators delivered their votes for the official tally, and at 3:18 PST Harris announced that "On this vote, the yeas are 50, the nays are 50." And with the vice president casting deciding votes in an equally-divided Senate, "the bill as amended is passed." And the Senate broke into sponateous applause. The bill now goes to the U.S. House of Representatives, which is expected to vote on it Friday. As Slashdot reported last week:The bill helps U.S consumers buy electric vehicle chargers, rooftop solar panels, and fuel-efficient heat pumps. It extends energy-industry tax credits for wind, solar and other renewable energy sources -- and for carbon capture technology. In fact, most of its impact is accomplished through tax credits, reports the New York Times, "viewed as one of the least expensive ways to reduce carbon emissions. "The benefits are worth four times their cost, according to calculations by the Energy Policy Institute at the University of Chicago." One example is ending an eligibility cap on the $7,500 tax credit for consumers buying electric vehicles.Read more of this story at Slashdot.

Friday the Twitter Privacy Center posted an announcement on their blog: "We want to let you know about a vulnerability that allowed someone to enter a phone number or email address into the log-in flow in the attempt to learn if that information was tied to an existing Twitter account, and if so, which specific account. We take our responsibility to protect your privacy very seriously and it is unfortunate that this happened...." Engadget explains:[T]he company said a malicious actor took advantage of a zero-day flaw before Twitter became aware of and patched the issue in January 2022. The vulnerability was discovered by a security researcher who contacted Twitter through the company's bug bounty program. When Twitter first learned of the flaw, it said it had "no evidence" to suggest it had been exploited. However, an individual told Bleeping Computer last month that they took advantage of the vulnerability to obtain data on more than 5.4 million accounts. Twitter said it could not confirm how many users were affected by the exposure. From the Twitter Privacy Center:This bug resulted from an update to our code in June 2021. When we learned about this, we immediately investigated and fixed it. At that time, we had no evidence to suggest someone had taken advantage of the vulnerability.... After reviewing a sample of the available data for sale, we confirmed that a bad actor had taken advantage of the issue before it was addressed. We will be directly notifying the account owners we can confirm were affected by this issue. We are publishing this update because we aren't able to confirm every account that was potentially impacted, and are particularly mindful of people with pseudonymous accounts who can be targeted by state or other actors. If you operate a pseudonymous Twitter account, we understand the risks an incident like this can introduce and deeply regret that this happened. To keep your identity as veiled as possible, we recommend not adding a publicly known phone number or email address to your Twitter account.Read more of this story at Slashdot.

After layoffs at Oracle, Business Insider spoke to current and former employees, learning that some marketing teams reportedly saw their headcount "slashed by anywhere from 30% to 50%." One former marketing employee complained that "It's just a horrible environment left. It's complete chaos....""The common verb to describe Oracle's Advertising and Customer Experience team is that they were obliterated," said a person who works at Oracle. Insider was unable to determine exactly how many ACX employees were cut, but one person familiar said it may have reached 80% of the division... "There's no marketing anymore," a senior marketing leader who was laid off on Monday told Insider. "We're not even supposed to say we're in marketing because there is no marketing division...." One recently laid off marketing leader told Insider that their team was cut in half, and no successor has been appointed to take their place. "My team is texting me; they still have no idea who they work for," the person said. "No one told them I was gone, so they're just floating in the wind...." While the company is known for cutting workers every year, some employees said they were shocked by how many senior, experienced, and high-performing staffers were let go on Monday. For example, Oracle's code base is so complicated that it can take years before engineers are fully up to speed with how everything works, and workers with over a decade of experience were cut, some employees said. Other employees who were laid off in recent months have said they're furious they were cut before their restricted stock units were scheduled to vest, costing them tens of thousands of dollars in expected compensation. "It's just deplorable," said a recently-laid off marketing leader whose primary compensation package included stock. "I know there were people on medical leave laid off. I know people on parental leave that were laid off." The article points out that in June Oracle also reported $191 million on restructuring costs for the previous fiscal year — and another $431 million for the year before. ("Oracle did not respond to requests for comment from Insider at the time of publication.") A recently laid-off marketing employee told the site that "We've been kind of working like zombies the last couple of weeks because there's just this sense of 'What am I doing here?" Thanks to long-time Slashdot reader SpzToid for sharing the article.Read more of this story at Slashdot.

Last month fans were worried about CuteFish OS, with its domain timing out, emails going unanswered, and a Twitter feed that hadn't posted anything since March. But "now it looks like the original development team behind CuteFishOS is coming back to life," according to this report from The New Stack — with a Reddit user planning a fork now saying that's been put on hold, since "I'd be duplicating work for no reason."Last Sunday — on July 31st — CuteFish's official repository on GitHub was updated with a new announcement in its profile. "Your Favorite CutefishOS are back now!" [sic] It also promised "New website in the works (coming soon)." and pointed to a new URL. You can see the changes happening right before your eyes. That website's domain — OpenFish.org — was registered just ten days ago, on Thursday, July 28th — and it's still a work in progress. On Thursday afternoon it was pointing to a non-English-language page hosted on the Pakistani cloud platform QCloud — but by Thursday night it was showing a testing page for a NGNIX HTTP server running Red Hat Enterprise Linux. And there's now also a new README file in CuteFish's GitHub repository listing five items as "progressing." The first item is "official website preparation," but other items include collating the previous pull requests and issues, "fix the existing problem," and eventually adding new features. The sole contributor to the repository appears to be a Chinese coder going under the name of Biukang. "We are preparing for the restart of CutefishOS," says Biukang's GitHub profile now. But the article still hails last month's discussion of a fork as "a chance to see open source communities mobilizing into action just to fill a perceived void."Read more of this story at Slashdot.

Bill Gates wrote a New York Times opinion piece Saturday arguing that it's immediately clear we're experiencing the effects of climate change. Just in America, "Extreme heat and drought are affecting tens of millions of people, as floods and wildfires ravage communities from Appalachia to California." So he's urging the U.S. Congress to "face down the climate crisis" while "strengthening our country's energy security, creating opportunities for businesses and improving the lives of Americans," by supporting a massive climate-spending bill being voted on this weekend in the U.S. Senate. Gates calls the bill "our best chance to build an energy future that is cleaner, cheaper and more secure."Many of the technologies we'll need to reach net-zero emissions don't exist, are in early stages of development or are still too expensive to scale up. At the same time, more mature technologies like solar, wind and electric vehicles must be deployed more quickly in more places. Through new and expanded tax credits and a long-term approach, this bill would ensure that critical climate solutions have sustained support to develop into new industries.... With those incentives and investments, this bill would catalyze a new era of American innovation. The ability of America's universities and industries to innovate remains second to none, yet the country risks falling behind as other countries race to build their own clean energy economies. This legislation would help turn American energy innovations into American energy industries and unlock huge economic opportunities in the energy market. If it becomes law, few nations would have the capacity for producing homegrown clean energy like the United States. America could quickly become a leader in the deployment of clean energy at the scale required. Solving climate change is perhaps the hardest challenge humanity has ever faced. It will require fundamentally transforming how we power our communities, move goods, build things, heat and cool buildings and grow food — basically how we do everything. We need to do it rapidly with a cohesive and coherent plan if we want to avoid the worst effects of climate change. The country has an opportunity to set an example by offering a vision of what's possible — and then by making it happen. Gates also writes that the legislation "would begin to transform the parts of our economy that are hardest to decarbonize, like manufacturing, which we must do to reach net-zero emissions... "Businesses are waiting on the sidelines for a strong signal from government that clean industries are a solid long-term investment. Passing the Inflation Reduction Act would send that message and enable private capital to supercharge our clean energy future with even greater confidence."Read more of this story at Slashdot.

Purism posted an announcement Thursday about their privacy-focused "Librem 5 USA" smartphones. "New orders placed today will ship within our standard 10-business-day window."The Librem 5 USA now joins the Librem Mini and Librem 14 as a post-Just In Time product, one where instead of relying on Just In Time supply chains to manufacture a product just as we need it, we have invested in maintaining much larger inventories so that we can better absorb future supply chain issues that may come our way. For anyone who is new to the product, the Librem 5 USA is our premium phone that shares the same hardware design and features as our mass-produced Librem 5, but with electronics we make in the USA using a separate electronics supply chain that sources from US suppliers whenever possible. This results in a tighter, more secure supply chain for the Librem 5 USA. The Librem 5 USA uses the same PureOS as our other computers and so it runs the same desktop Linux applications you might be used to, just on a small screen. PureOS on the Librem 5 USA demonstrates real convergence, where the device becomes more than just a phone, it becomes a full-featured pocket-sized computer that can act like a desktop when connected to a monitor, keyboard and mouse, or even a laptop (or tablet!) when connected to a laptop docking station. All of your files and all of your software remains the same and follows you where you go. Applications just morph from the smaller screen to the larger screen when docked, just like connecting a external monitor to a laptop. Everyone who has backed the Librem 5 and Librem 5 USA projects hasn't just supported the production of the hardware itself, they have also supported a massive, multi-year software development effort to bring the traditional Linux desktop to a phone form-factor. Projects such as Phosh (the GUI), Phoc (the Compositor), Squeekboard (the Keyboard), Calls (for calling), Chats (for texting and messaging), and libhandy/libadwaita (libraries to make GTK applications adaptive) all required massive investment and many of these projects have already been moved to the GNOME infrastructure to better share our effort with a larger community. We are delighted to see that many other mobile projects have recognized the quality of our efforts and adopted our software into their own projects.... The Librem 5 USA was designed for longevity and because we support right to repair, we also offer a number of spare parts in our shop, including replacement modems so you can make sure you support all the cellular bands in a particular continent, replacement batteries for when you ultimately wear out your existing battery, and plenty of other spare parts that haven't had sufficient demand to post formally on our shop (yet). If you need a spare part that isn't yet on the shop, just ask.Read more of this story at Slashdot.

About two-thirds of Americans now say they support unions, reports CNBC, "the highest approval rating since 1965." And suddenly in the last few months, "workers have been organizing at a pace this country hasn't seen since the Great Depression."Amazon has captured headlines for union drives at its warehouses, including a successful effort on New York's Staten Island. But activity is picking up elsewhere in retail and tech at big companies that are generally viewed as progressive, with no history of labor unions. As of Wednesday, 209 Starbucks stores have officially voted to unionize according to the National Labor Relations Board. First-ever unions have also formed at an Apple store in Maryland, a Google Fiber contractor, REI, Trader Joe's, Kickstarter and Activision Blizzard.... The union movement at Apple stores is progressing at a slower pace. The first union win among Apple's 270-plus U.S. stores happened on June 18, when workers in Towson, Maryland, voted 65 to 33 to join the International Association of Machinists and Aerospace Workers. No other stores have held a vote.... Three other stores have taken steps to unionize, although one in Atlanta withdrew its election petition in May. That same month, a memo was leaked showing Apple's anti-union talking points, instructing store managers to tell workers they could lose benefits and career opportunities if they organized.... Communications Workers of America, which has about 700,000 members, helped organize the Atlanta Apple store, as well as workers at Google. In March, Google Fiber contractors in Kansas City held an NLRB election, becoming the first to officially unionize under what's known as the Alphabet Workers Union. Nearly 1,000 other Google workers have also signed cards to join the AWU, but because the employees haven't officially held an NLRB election, their group is known as a minority union. "There's a lot of research that shows that most Americans want unions," said Sara Steffens, secretary-treasurer of Communications Workers of America. "They just don't want to go through this scary union-busting process...." Google has also been accused of fighting back. The NLRB found that the company "arguably violated" labor law when it fired employees for speaking up. The Google Fiber contractors faced additional anti-union messaging in a letter from the contractor, which said "everyone will be stuck with the union and forced to pay dues." The article points out that union workers earn 16.6% more than nonunion workers on average — roughly $10,000 a year. "Workers are looking at how well their employers are performing and wondering why they're not getting rewarded equally. For example, Google parent Alphabet recorded its fastest revenue growth rate since 2007 last year. Apple's margin has been steadily rising and the company closed 2021 with its biggest quarter ever for sales, at almost $124 billion.... The article also notes that official figures from October 1, 2021 through June 30 showed a 58% increase in official attempts to unionize. "Whether the organizing momentum spreads more widely across the economy may depend on how vocal and successful workers are at Starbucks, Apple and elsewhere."Read more of this story at Slashdot.

An anonymous reader shares this report on The Switchblade, "an aircraft that doubles as a car." It could be "just weeks away from getting its wheels off the ground after an inspection by America's Federal Aviation Administration determined that the vehicle is safe to fly:The project has been 14 years in the making, and Sam Bousfield, CEO of Samson Sky and inventor of the Switchblade, said he's "stoked" to reach this milestone. After passing the FAA inspection, his team wasted no time in beginning the high-speed taxi test. They were out on the taxiway the next day. "[The crew] took off their 'I'm doing R&D' and they put on their 'I am flight test' crew hat, and I think that really set the tone for everything after," Bousfield said. "So, we're in a different game now...." Just like a pocket knife, the Switchblade's wings slip smoothly into the body of the vehicle with the touch of a button, allowing it to seamlessly transition from sky to air. Its tail also unfurls or retracts, depending on if it's being used to fly or drive. The idea is that the vehicle could be parked in a garage, driven to an airport, flown to a new destination, and then driven anywhere on the ground after it lands. When a trip is over, the user can fly it home or fly it elsewhere. "The side windows (in the doors) will be power windows," noted a tweet Thursday on the car manufacturer's official Twitter feed @FlyingSportsCar. And Maxim points out that The Switchblade can be flown at up to 200 mph and as high as 13,000 feet, "for up to 450 miles, with the 190-hp liquid-cooled three-cylinder powering the single propeller."On the ground, the Switchblade can achieve a brisk 125 mph, making it similar to "a little flying sports car," Bousfield added. Before production begins, the Switchblade has more regulatory hurdles that flying cars will need to overcome. Owners will need a pilot's license and either a motorcycle or driver's license to operate it in both flight and ground modes, plus car/motorcycle and aircraft insurance. But for now, the FAA flight approval has inspired Bousfield to keep charging ahead.... It will be at least a few more years before civilians are flying their own Switchblades, which are expected to cost around $170,000. But anyone can join the 1,670 people who have reserved one free of charge.Read more of this story at Slashdot.

Long-time Slashdot reader chicksdaddy writes: Printer maker Epson has programmed some models of its inkjet printers to "stop operating" at a pre-determined time, citing the risk of property damage linked to "ink spills," the Fight to Repair newsletter reports. Epson printer owners have complained that their functioning printers have suddenly stopped working, displaying an error message declaring that a component of the printer has "reached the end of its service life" and that the device needs to be serviced. According to Epson's website, the message is linked to ink pads, which Epson describes as "porous pads in the printer that collect, distribute, and very importantly contain the ink that is not used on printed pages." Over time, these pads become saturated with ink though generally not "before the printer is replaced for other reasons" (??!) "Like so many other products, all Epson consumer ink jet products have a finite life span due to component wear during normal use... The printers are designed to stop operating at the point where further use without replacing the ink pads could create risks of property damage from ink spills or safety issues related to excess ink contacting an electrical component," the company said on its website. Rather than measure the saturation of the ink pads to determine when that point is reached, however, Epson appears to have programmed a counter on its printers that disables the device when a threshold has been reached. For printer owners who use Windows, Epson makes a reset utility that can reset the counter though it can "only be used once and will allow printing for a short period of time." For Mac users, or Windows users who have already run the reset utility once, Epson urges them to have the printer serviced by an Epson authorized service shop or — preferably — to replace the printer with a new printer. "Repair may not be a cost-effective option for lower-cost printers because other components may also be near the end of their usable life," the company said. Despite the company's claims about the unfixability of the ink pad issue, YouTube videos suggest that the ink pads are, in fact, simple to replace, as this video illustrates. Some legal experts say that Epson's hard coding an end of life for its printers may be illegal — an example of "Deceptive trade practices," unless it is clearly disclosing the existence of the programmed end of life to consumers prior to purchase. Here's how the Fight to Repair newsletter sees the situation. Epson "pushes its customers to throw away the entire, working printer unit simply because some sponges are saturated with ink. "In doing so, the company amplifies our epidemic of e-waste and forces customers into an expensive and (as it turns out) unneeded upgrade."Read more of this story at Slashdot.

Netflix's "Sandman" adaptation premiered Friday. But the 10-episode season required three years of writing, filming and editing (not to mention an imaginative cast including Mark Hamill as Mervyn Pumpkinhead and Patton Oswalt as the voice of Matthew the Raven). And Variety points out this followed a full 30 years of Neil Gaiman refusing to even allow an adaptation to happen. "Gaiman could have decided to let dreams of an adaptation of "The Sandman" die with the nightmare that was the most recent attempt: a feature film starring and directed by Joseph Gordon-Levitt for Warner Bros.' New Line, which fell apart in 2016..."So why did Gaiman try again? "In a lot of ways, it's the only question that we can ask," said Gaiman, who is executive producer and writer on the series, alongside David Goyer ("Batman Begins" and "Foundation") and showrunner Allan Heinberg ("Grey's Anatomy").... "[P]artly, it's accepting, well OK, if it's going to happen, why not make it good? "Sandman as a graphic novel series, as comics, was me getting to say things to the world that I believed. They were things about inclusivity. They were things about humanity. There were things about shared humanity. There were things about dreams and things about death. There were words of comfort and there were words of warning. And back then when I said them, they were important and I felt that they were true and I felt it was right to say them; including, you have your story and your story is important, and including, you get a lifetime. And those are the things I wanted to say. And I don't feel that any of those things are less important or less relevant now. And in fact, I feel in this sort of weird world in which sometimes I feel like people are fragmenting and forming into smaller and smaller groups and closing ranks and regarding anybody on the other side as the enemy, that people need to be reminded that standing next to them is somebody who contains a thousand worlds and every world is a door and through every door is somewhere that you've never dreamed of. And people are cooler under the surface than you would ever imagine. And I wanted to remind people of that. And then the third thing, which was, having made "Good Omens," I felt like I knew how to do this.... " Neil Gaiman answered questions from Slashdot readers in 2003 — and at time was already saying that the idea of a Sandman movie had "currently been taken out of the hands of the producers who've led it down the Road to Nowhere for the last 8 years."Read more of this story at Slashdot.

Professional baseball has a dirty secret, according to the New York Times. While a catcher may secretly signal for certain pitches using their fingers, "Multiple managers say there are clubs who use a dozen or more staff members to study video and swipe signs." But should that practice be stopped with technology?Adding cameras in every ballpark and video monitors in every clubhouse opened the door to an unintended consequence: electronic cheating. The 2017 Houston Astros brazenly stepped through that door, developing an elaborate sign-stealing system that helped them win a World Series. Two years later, when that system was revealed to the public, it resulted in firings, suspensions and, ultimately, the permanent tarnishing of a championship.... This season, Major League Baseball took a big leap forward in distancing itself from the stain of sign stealing with the introduction of PitchCom, a device controlled by a catcher that allows him to wordlessly communicate with the pitcher about what pitch is coming — information that is simultaneously shared with as many as three other players on the field through earpieces in the bands of their caps.... There have been a few hiccups, with devices not operating, or pitchers not being able to hear, but so far this season, everyone in baseball seems to agree that PitchCom, like it or not, is working. Carlos Correa, a shortstop for the Minnesota Twins who has long served as the unofficial, and unapologetic, spokesman of those 2017 Astros, went as far as saying that the tool would have foiled his old team's systemic cheating. "I think so," Correa said. "Because there are no signs now." Yet not all pitchers are on board. Max Scherzer, the ace of the New York Mets and baseball's highest-paid player this season, sampled PitchCom for the first time late last month in a game against the Yankees and emerged with conflicting thoughts. "It works," he said. "Does it help? Yes. But I also think it should be illegal." Scherzer went so far as to suggest that the game would be losing something by eliminating sign stealing. "It's part of baseball, trying to crack someone's signs," Scherzer said. "Does it have its desired intent that it cleans up the game a little bit?" he said of PitchCom. "Yes. But I also feel like it takes away part of the game." That comment was called "a little naive" and "a bit hypocritical" by a relief pitcher in Seattle, who also had this to say about Scherzer. "I have a very good feeling that he's been on a team or two that steals signs." For now, electronic pitch-signalling remains optional — and yet has been adopted by every one of the 30 teams in Major League Baseball, the article points out (attributing this to "a leaguewide paranoia".) And the League's executive vice president for baseball operations points out a second advantage. Since catchers don't need to run through a long series of decoy signals, "It has actually sped the game up a little bit."Read more of this story at Slashdot.

1,975 flights were cancelled in the U.S. today. 2,919 flights were cancelled Friday. And 28,118 more flights were at least delayed. That's according to the flight tracking site FlightAware, which also showed another 1,248 flights cancelled Thursday, according to CNN. They note that America's "massive flight cancellations" started Thursday when "thunderstorms pounded major airports on the East Coast."Southwest Airlines canceled 370 flights, or 9% of its Thursday schedule. Southwest delayed another 1,800 flights, 46% of its Thursday schedule. "We are working through a variety of weather-related challenges that are affecting a number of our larger operations across the country this week," Southwest Airlines said in a statement on Friday... Airlines have been struggling with flight cancellations and delays this summer as they face staffing shortages, severe weather and air traffic control delays. US airlines have been preemptively trimming their schedules to ease air traffic disruptions, with American Airlines the latest to make cuts, particularly at its hub in Philadelphia. American Airlines had canceled more than 200 flights by Friday afternoon. Air traffic disruptions have been bad in Europe, too. London Heathrow and Amsterdam Schiphol airports announced moves this week to curb congestion. Elsewhere CNN reports that there's a larger ongoing problem. "As global travelers return to the skies in droves after a pandemic-enforced pause, airlines and airports across the world are grappling to match supply with demand."When aviation ground to a halt in the early days of the pandemic, most airlines and airports either furloughed or laid off many ground and air workers. Many carriers operated a skeleton staff for the best part of the last two years. Now, travel demand is back, and the industry is struggling to catch up and rehire.... A spokesperson for Lufthansa said that the aviation industry as a whole is "suffering from bottlenecks and staff shortages, noticeable especially during peak periods."The post-pandemic travel boom was "expected — but not in this intensity," the Lufthansa spokesperson added.Read more of this story at Slashdot.

Sociologist Ashley Mears know the secret to making viral videos on Facebook. "It's like a magic trick," one creator explains. Literally. "Many of the most successful people in the content-creation game on Facebook are magicians," Mears explains in a video. "I think that that's not such a surprise, because magicians are extremely skilled in manipulating people's attention, which is basically what the viral video economy does." Mears recently visited the "new creative elites," a group of creators regularly getting 100 million to 200 million views, which includes former jazz singer Anna Rothfuss and her magician boyfriend Justin Flom:Rothfuss and Flom are among the 180 video-makers (or "creators" in the industry's jargon) working with a Las Vegas magician called Rick Lax. They produce short videos timed to last the precise number of seconds that Facebook requires a clip to run to be eligible for an ad (this used to be three minutes but recently went down to one). Though the clips usually look like authentic user-generated material, all are scripted. Most fall into genres: diy, crafts, hazards, adultery and proposals. Lax manages his network like a cross between a Hollywood agent and a schoolteacher. He takes a slice of the ad revenue that creators earn. In exchange, he gives them online tutorials about how to make viral content: everything from how to hold the camera to which metrics matter to Facebook. He releases new instructions every time the algorithm changes substantially, and offers feedback on people's videos. He also posts his creators' videos on his own Facebook page, which has 14m followers.... A friend was making videos for Rick Lax, and invited Rothfuss to join in 2019. A year later she bought her first mansion. Entering the viral-content game involves a certain surrendering of artistic aspirations, but Rothfuss says she doesn't care. "I do not want to be famous," she says. "I love being low-key and flying under the radar, and just getting rich...." Lax realised that appetite for these videos was insatiable: the only obstacle to earning more money was how many clips he could make in a day.... Lax wouldn't go into details of his profit-sharing arrangement but his creators are clearly flourishing. Many told me they felt like they were taking part in a 21st-century gold rush. "This doesn't happen to that many people," says Amy Boiss, a one-time Uber driver whose magician boyfriend introduced her to Lax's network. "To make more money than neurosurgeons...." Lax and his friends got rich without anyone knowing who they are.... It's perhaps no coincidence that the two most-viewed Facebook creators in 2021, Lax and Julius Dein, both started out as magicians (as did many of their affiliates). Their videos aren't magic performances as such, but they're informed by the art of magic. "Magicians start by looking for blind spots, edges, vulnerabilities and limits of people's perception," wrote a former Google employee (and amateur magician) in an essay published on Medium in 2017, "How technology hijacks your mind". Social-media companies, wrote the author, "influence what people do without them even realising it", just as magicians do: "Once you know how to push people's buttons you can play them like a piano." Ironically, the creators end up driven by "the same dopamine rush they were exploiting in us," the article points out. "If you're looking at the data, you can actually see your earnings go up as people watch your work: making viral videos can be just as addictive as watching them." One of the magicians in Lax's network even says point-blank that "It feels like a drug."Read more of this story at Slashdot.

For months international experts worried about "a sprawling nuclear power plant on the banks of Dnipro River in southern Ukraine," reports CNN. "Then, on Friday, explosions rang out at Zaporizhzhia nuclear power complex, the biggest of its kind in Europe, reigniting fears of a potential disaster."Moscow and Kyiv have accused each other of shelling the plant, which was taken over by Russian forces in early March, along with the town of Enerhodar, where the complex is located. CNN was unable to verify claims of damage at the plant, which occupies a large site. Much of the recent Russian fire in the area has originated from near the plant and it is unclear if parts of the nuclear facility were hit accidentally.... The Russian defense ministry added that the generating capacity of one unit at the plant had been reduced, and power supply to another cut.... When fierce fighting first broke out near the facility in the early days of the war, it sparked fears of a nuclear incident and prompted condemnations from the international community. Russian troops forced its managers to work "at gunpoint" after seizing the plant on March 5, according to Ukrainian nuclear officials. A week later, the Kremlin sent officials and technicians from Russia's state nuclear agency to help conduct repairs and manage the facility. Ukrainian and Russian staff have been working alongside each other since, and communication with the outside world has been intermittent. Ukraine's state-run nuclear power operator, Energoatom, said Friday that Russian shelling had hit in and around the nuclear complex and damaged a water intake facility, cutting power and water to much of Enerhodar. "Three hits were recorded directly at the site of the station," the Ukrainian agency said, claiming that one was "near one of the power units where the nuclear reactor is located...." Energoatom said on Saturday that the plant was operational and Ukrainian staff at the station continued to work to ensure radiation safety. Ukrainian prosecutors have opened an investigation into the incident. Tuesday the head of the International Atomic Energy Agency warned that the plant "is completely out of control," adding "Every principle of nuclear safety has been violated.... What is at stake is extremely serious and extremely grave and dangerous." But CNN adds that "Other officials have been more measured, pointing to the fact that recent nuclear energy facilities are designed to withstand terrorist attacks and natural disasters. "Several Western and Ukrainian officials believe that Russia is now using the giant nuclear facility as a fortress to protect their troops and stage attacks, because they assume Kyiv will not retaliate and risk a crisis."Read more of this story at Slashdot.

The largest funder of clean energy in America is its federal Department of Energy. And the second-most common photovoltaic technology in the world (after silicon) is cadmium telluride (CdTe) solar cells. So this week the U.S. Department of Energy announced an initiative to improve them, aspiring to make CdTe cells "less expensive, more efficient and develop new markets for solar cell products."Without strengthened domestic manufacturing capacity, the U.S. will continue to rely on clean energy imports, exposing the nation to supply chain vulnerabilities while simultaneously losing out on the enormous job opportunities associated with the energy transition. The Cadmium Telluride Accelerator Consortium's efforts to spur technological advancements will increase America's competitiveness, bolster domestic innovation, and support clean electricity deployment supporting President Biden's goal of achieving a net-zero economy by 2050.... To achieve these goals, the team has a broad research plan that includes CdTe doping strategies, characterizing and exploring new CdTe contacting materials, and work to enable a bifacial CdTe module that absorbs light from the front and back of the module. DOE's National Renewable Energy Laboratory (NREL) will administer the consortium, whose leaders were chosen through a competitive solicitation NREL released last year. The consortium will be led by the University of Toledo, First Solar, Colorado State University, Toledo Solar Inc., and Sivananthan Laboratories, Inc.NREL will serve as a resource, support, and technical analysis center as the consortium develops a technology roadmap, conducts research to meet targets set within the roadmap, and regularly assesses the domestic CdTe supply chain for challenges and opportunities. Specific goals on the consoritum's web site include:Enable cell efficiencies above 24% and module costs below $0.20/W by 2025Enable cell efficiencies above 26% and module costs below $0.15/W by 2030Maintain or increase domestic CdTe PV material and module production through 2030.Read more of this story at Slashdot.

"Nineteen new GNU releases in the last month," reads a "July GNU Spotlight" announcement from the Free Software Foundation. Here's (edited and condensed) descriptions of some of the highlights: GNU Datamash (version 1.8) — a command-line program performing basic numeric, textual, and statistical operations on input textual data files (designed to work within standard pipelines). GNUnet (version 0.17.2) — a framework for secure peer-to-peer networking. "The high-level goal is to provide a strong foundation of free software for a global, distributed network that provides security and privacy. GNUnet in that sense aims to replace the current internet protocol stack. Along with an application for secure publication of files, it has grown to include all kinds of basic applications for the foundation of a GNU internet." GnuTLS (version 3.7.7) — A secure communications library implementing the SSL, TLS and DTLS protocols, provided in the form of a C library. Jami (version 20220726.1515.da8d1da) — a GNU package for universal communication that respects the freedom and privacy of its users, using distributed hash tables for establishing communication. ("This avoids keeping centralized registries of users and storing personal data.") LibreJS (version 7.21.0) — an add-on for GNU Icecat and other Firefox-based browsers that detects non-trivial and non-free JavaScript code from being loaded without your consent when you browse the web. "JavaScript code that is free or trivial is allowed to be loaded." GNU Nettle (version 3.8.1) — a low-level cryptographic library. It is designed to fit in easily in almost any context. It can be easily included in cryptographic toolkits for object-oriented languages or in applications themselves. GNU Octave (version 7.2.0) — a high-level interpreted language specialized for numerical computations, for both linear and non-linear applications and with great support for visualizing results. R (version 4.2.1) — a language and environment for statistical computing and graphics, along with robust support for producing publication-quality data plots. "A large amount of 3rd-party packages are available, greatly increasing its breadth and scope." TRAMP (version 2.5.3) — a GNU Emacs package allowing you to access files on remote machines as though they were local files. "This includes editing files, performing version control tasks and modifying directory contents with dired. Access is performed via ssh, rsh, rlogin, telnet or other similar methods."Click here to see the other new releases and download information. The FSF announcement adds that "A number of GNU packages, as well as the GNU operating system as a whole, are looking for maintainers and other assistance."Read more of this story at Slashdot.

When a U.S. satellite passed over Russia's Plesetsk Cosmodrome, a Russian satellite was launched close behind it "with capabilities unknown," reports the Drive, adding that it's now "getting suspiciously close..."Russia has launched satellite 14F150 Nivelir into orbit under a mission dubbed Kosmos-2558, and its current orbital path could soon place it in close proximity to what is reported to be the spy satellite designated USA-326. Unconfirmed rumors that the asset will serve as an 'inspector' satellite to covertly spy on nearby spacecraft have begun to circulate online following the launch and would line up with Russia's known on-orbit anti-satellite weapons capabilities and developments. Its exact purpose is unknown at present, but it has been described as an "inspector" satellite, a term that is often associated with so-called "killer satellites...." Jonathan McDowell, an astronomer at the Center for Astrophysics, or @planet4589 on Twitter, has noted that Kosmos-2558's current orbital path will soon place it within 80 km of what is believed to be the USA 326 satellite. For reference, the Center for Astrophysics is a collaborative effort run jointly by the Smithsonian Astrophysical Observatory and Harvard College Observatory.... USA-326 was launched in February of this year by a SpaceX Falcon 9 rocket out of Vandenberg Space Force Base, its mission designated NROL-87, which is a classified national security operation led by the National Reconnaissance Office (NRO) in partnership with SpaceX. A press release shared by the NRO following the initial launch claimed that NROL-87 was designed, built, and now operated by the NRO to support its "overhead reconnaissance mission," which is largely centered around protecting national security through the exploitation of space-based intelligence, surveillance, and reconnaissance. Thanks to long-time Slashdot reader schwit1 for sharing the story.Read more of this story at Slashdot.

This week Samsung said customers can finally start buying replacement screens, rear glass and charging ports for home repairs from repair resource site iFixit, as well as from Samsung's Experience stores across the country, according to the Washington Post. But their article warns that for now the program is limited to just "a handful of higher-end models" like the Galaxy S20 and S21 series smartphones. ("We plan to expand to more models as the program matures," said a Samsung spokesperson.)You can't, for example, buy just a screen to replace a broken one in your Galaxy phone. Instead, Samsung says you must purchase an entire screen "assembly," which includes the display itself, the metal frame that surrounds it and another battery. Essentially, that means replacing the entire front of the phone and then some. That also means that, for the time being, Samsung doesn't have a way for you to purchase a genuine battery on its own to replace the one that isn't holding a long-charge or bloating — a common issue in devices that are used and charged regularly. The Samsung spokesperson told The Washington Post that "additional parts will be added as the program ramps up," though co-founder and CEO Kyle Wiens says iFixit will continue to sell third-party replacement batteries.... And we're not kidding about how fiddly these guides can be: according to iFixit, the process of replacing a Galaxy S20's screen assembly requires 41 steps, and that doesn't include putting the phone back together.Read more of this story at Slashdot.

"GitLab has reversed its decision to automatically delete projects that are inactive for more than a year and belong to its free-tier users," reports the Register. Thursday GitLab tweeted: "We discussed internally what to do with inactive repositories. We reached a decision to move unused repos to object storage. Once implemented, they will still be accessible but take a bit longer to access after a long period of inactivity." But the Register says they've seen internal documents from "well-placed sources" showing that GitLab had originally "hoped the move would save it up to $1 million a year and help make its SaaS business sustainable." And the company had spent a long time preparing for such a move:Documents we have seen gave staff notice of an internal meeting scheduled for August 9. The agenda for the meeting lays out the plan to delete dormant code repositories... Other internal documents seen by The Register mention the possible use of object storage to archive projects but express concerns that doing so would increase GitLab's costs by creating a need for multiple redundant backups. We have also seen internal discussions confirming the automation code to delete inactive projects was completed by the end of July, and was ready to roll out after months of debate and development work. One of our sources told us [Thursday] that it was online pressure, led by The Register's reporting, that forced a dramatic rethink at the GitHub rival. Word of the deletion policy as a money-saving exercise sparked fury on Twitter and Reddit. On GitLab's Twitter feed Thursday, someone raised an interesting point about GitLab's new promise to move inactive repos into object storage. "Wait, does 'inactive' mean repositories that have no new commits? Or only those without new commits AND without read access by cloning / fetching?" And GitLab's CEO/co-founder Sid Sijbrandij replied, "We're not sure yet. Probably all write operations would keep a project active, creating an issue, a merge request, pushing changes to a branch, etc. We might also keep it active as long as people are doing read operations such as cloning, forking, etc." Friday Sijbrandij tweeted this status update: "Archived projects is a user activated state that signals intent. We're not sure yet but very likely the storage type used is orthogonal to that. Our current plan for object storage would keep the repos visible to everyone."Read more of this story at Slashdot.

An anonymous reader quotes a report from the Washington Post: Marine scientists have found that parts of Australia's Great Barrier Reef have recorded their highest levels of coral cover since monitoring began nearly four decades ago, although they warn the reef's recovery could be swiftly undone by global warming. The Australian Institute of Marine Science, a government agency, began monitoring Earth's largest reef system 36 years ago. Its latest report indicates that the northern and central parts of the reef are on the mend after an "extensive bout" of disturbances over the past decade, said Mike Emslie, a senior research scientist at the institute. The results of the institute's annual survey show that the reef "is still vibrant and still resilient, and it can bounce back from disturbances if it gets the chance," Emslie said in an interview Thursday. News of the recovery in the reef's northern and central parts was partly offset by the report's finding that there was a loss of coral cover in the southern region. There, the reef fell prey to an outbreak of crown-of-thorns starfish, which feed exclusively on live coral, the scientists said. About half of the reefs were surveyed before the most recent coral bleaching event in February and March. Emslie said researchers won't know the full extent of the coral cover lost from that event until next year. The sheer size of the Great Barrier Reef system -- it spans some 1,700 miles and is so large it can easily be spotted from space -- means the survey is staggered over seven or eight months of the year. Among the 87 reefs surveyed for the latest report, average hard coral cover in the north increased to 36 percent, up from 27 percent in 2021, and to 33 percent in the central Great Barrier Reef from 26 percent last year. Average coral cover in the southern region decreased from 38 percent in 2021 to 34 percent this year. Much of the recent reef recovery was driven by the fast-growing Acropora species -- whose delicate branching and table corals have adorned countless postcards for tourists. Marine scientists worry that these corals are some of the most vulnerable to the impacts of global warming, including marine heat waves, coral bleaching and damaging waves, such as those generated during tropical cyclones.Read more of this story at Slashdot.

During his weekly Ask Me Anything today, CEO Adam Mosseri confirmed that Instagram will begin testing ultra-tall 9:16 photos "in a week or two." The Verge reports: "You can have tall videos, but you cannot have tall photos on Instagram," Mosseri said. "So we thought maybe we should make sure that we treat both equally." Currently, Instagram tops out around 4:5 when displaying vertical images that've been cropped accordingly. But introducing support for slimmer, taller 9:16 photos will help them fill the entire screen as you scroll through the app's feed. Further reading: 'Stop Trying To Be TikTok': User Backlash Over Instagram ChangesRead more of this story at Slashdot.

With annual CG confab SIGGRAPH slated to start Monday in Vancouver, DreamWorks Animation announced its intent to release its proprietary renderer, MoonRay, as open-source software later this year. Hollywood Reporter reports: MoonRay has been used on feature films such as How to Train Your Dragon: The Hidden World, Croods: A New Age, The Bad Guys and upcoming Puss in Boots: The Last Wish. MoonRay uses DreamWorks' distributed computation framework, Arras, also to be included in the open-source code base. "We are thrilled to share with the industry over 10 years of innovation and development on MoonRay's vectorized, threaded, parallel, and distributed code base," said Andrew Pearce, DWA's vp of global technology. "The appetite for rendering at scale grows each year, and MoonRay is set to meet that need. We expect to see the code base grow stronger with community involvement as DreamWorks continues to demonstrate our commitment to open source."Read more of this story at Slashdot.

An anonymous reader quotes a report from Motherboard: A photo tweeted by a famous French physicist supposedly of Proxima Centauri by the James Webb Space Telescope was actually a slice of chorizo. Etienne Klein, research director at France's Alternative Energies and Atomic Energy Commission posted the photo last week, claiming it showed the closest star to the sun. "This level of detail," Klein wrote. "A new world is revealed day after day." But a few days later, Klein revealed that the photo he tweeted was not the work of the world's most powerful space telescope, as he had in fact tweeted a slice of chorizo sausage. "According to contemporary cosmology, no object belonging to Spanish charcuterie exists anywhere but on Earth," he said after apologizing for tricking so many people. "Like an idiot, I got screwed," tweeted one French user. "Same," replied another, "the source was so credible" Klein told French news outlet Le Point that his intention had been to educate people about fake news online, adding that "I also think that if I hadn't said it was a James Webb photo, it wouldn't have been so successful."Read more of this story at Slashdot.

"Students should not have to fear expulsion for expressing themselves on social media after school and off-campus, but that is just what happened to the plaintiff in C1.G v. Siegfried," writes Mukund Rathi via the Electronic Frontier Foundation (DFF). "Last month, the Tenth Circuit Court of Appeals ruled the student's expulsion violated his First Amendment rights. The court's opinion affirms what we argued in an amicus brief last year." From the report: We strongly support the Tenth Circuit's holding that schools cannot regulate how students use social media off campus, even to spread "offensive, controversial speech," unless they target members of the school community with "vulgar or abusive language." The case arose when the student and his friends visited a thrift shop on a Friday night. There, they posted a picture on Snapchat with an offensive joke about violence against Jews. He deleted the post and shared an apology just a few hours later, but the school suspended and eventually expelled him. [...] The Tenth Circuit held the First Amendment protected the student's speech because "it does not constitute a true threat, fighting words, or obscenity." The "post did not include weapons, specific threats, or speech directed toward the school or its students." While the post spread widely and the school principal received emails about it, the court correctly held that this did not amount to "a reasonable forecast of substantial disruption" that would allow regulation of protected speech.Read more of this story at Slashdot.

Migrants who have been convicted of a criminal offense will be required to scan their faces up to five times a day using smartwatches installed with facial recognition technology under plans from the Home Office and the Ministry of Justice. The Guardian reports: In May, the government awarded a contract to the British technology company Buddi Limited to deliver "non-fitted devices" to monitor "specific cohorts" as part of the Home Office Satellite Tracking Service. The scheme is due to be introduced from the autumn across the UK, at an initial cost of 6 million pounds. A Home Office data protection impact assessment (DPIA) from August 2021, obtained by the charity Privacy International through a freedom of information request, assessed the impact of the smartwatch technology before contracting a supplier. In the documents, seen by the Guardian, the Home Office says the scheme will involve "daily monitoring of individuals subject to immigration control," with the requirement to wear either a fitted ankle tag or a smartwatch, carried with them at all times. A Home Office data protection impact assessment (DPIA) from August 2021, obtained by the charity Privacy International through a freedom of information request, assessed the impact of the smartwatch technology before contracting a supplier. In the documents, seen by the Guardian, the Home Office says the scheme will involve "daily monitoring of individuals subject to immigration control," with the requirement to wear either a fitted ankle tag or a smartwatch, carried with them at all times. Photographs taken using the smartwatches will be cross-checked against biometric facial images on Home Office systems and if the image verification fails, a check must be performed manually. The data will be shared with the Home Office, MoJ and the police, with Home Office officials adding: "The sharing of this data [to] police colleagues is not new." The number of devices to be produced and the cost of each smartwatch was redacted in the contract and there is no mention of risk assessments to determine whether it is appropriate to monitor vulnerable or at-risk asylum seekers. The Home Office says the smartwatch scheme will be for foreign-national offenders who have been convicted of a criminal offense, rather than other groups, such as asylum seekers. However, it is expected that those obliged to wear the smartwatches will be subject to similar conditions to those fitted with GPS ankle tags, with references in the DPIA to curfews and inclusion and exclusion zones. Those who oppose the 24-hour surveillance of migrants say it breaches human rights and may have a detrimental impact on their health and wellbeing. Lucie Audibert, a lawyer and legal officer for Privacy International, said: "Facial recognition is known to be an imperfect and dangerous technology that tends to discriminate against people of color and marginalized communities. These 'innovations' in policing and surveillance are often driven by private companies, who profit from governments' race towards total surveillance and control of populations. "Through their opaque technologies and algorithms, they facilitate government discrimination and human rights abuses without any accountability. No other country in Europe has deployed this dehumanizing and invasive technology against migrants."Read more of this story at Slashdot.

With the help of SpaceX and a Falcon 9 rocket, South Korea launched its first mission to the moon. "The successful launch of Danuri, officially known as the Korea Pathfinder Lunar Orbiter, takes the country beyond Earth's orbit for the first time," reports Nature. From the report: Danuri should arrive at its destination around mid-December. Its trajectory means it will take longer than most past missions to the Moon, which typically arrived in days, but will require minimal fuel. About an hour after lift-off, the spacecraft detached from the Falcon 9 rocket on which it launched. The Korea Aerospace Research Institute's control centre in Daejeon then took command and made contact with the spacecraft. The bulk of the mission's scientific observations will take place once Danuri reaches the Moon, which it will orbit for a year at 100 kilometres above the lunar surface. KGRS has a broader energy range than previous y-ray detectors sent to the Moon, and scientists hope that it will create the clearest maps yet of the distribution of elements including iron, titanium, uranium and thorium. [...] [T]he spectrometer is also sensitive enough to detect hydrogen, which can be used to infer the presence of water on the surface, and create a water-resource map of the entire Moon. Previous probes have struggled to map the presence of water beyond the poles, where it is relatively more abundant [...]. KMAG will take precise measurements of the magnetic field on the surface. It will also study electric currents induced by the magnetic field of the solar wind, which streams out into space from the Sun, says Garrick-Bethell, who is part of the instrument's science team. Studying how these currents pass through the Moon could reveal what the Moon is made of deep inside. To do this, Danuri will make use of simultaneous measurements by two NASA probes currently circling the Moon, says Garrick-Bethell. This "will make a beautiful experiment that was only briefly attempted in the Apollo era, but not over the entire Moon," he says. You can watch a recording of the launch here.Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: The US Department of Homeland Security is warning of vulnerabilities in the nation's emergency broadcast network that makes it possible for hackers to issue bogus warnings over radio and TV stations. "We recently became aware of certain vulnerabilities in EAS encoder/decoder devices that, if not updated to the most recent software versions, could allow an actor to issue EAS alerts over the host infrastructure (TV, radio, cable network)," the DHS's Federal Emergency Management Agency (FEMA) warned. "This exploit was successfully demonstrated by Ken Pyle, a security researcher at CYBIR.com, and may be presented as a proof of concept at the upcoming DEFCON 2022 conference in Las Vegas, August 11-14." Pyle told reporters at CNN and Bleeping Computer that the vulnerabilities reside in the Monroe Electronics R189 One-Net DASDEC EAS, an emergency alert system encoder and decoder. TV and radio stations use the equipment to transmit emergency alerts. The researcher told Bleeping Computer that "multiple vulnerabilities and issues (confirmed by other researchers) haven't been patched for several years and snowballed into a huge flaw." "When asked what can be done after successful exploitation, Pyle said: 'I can easily obtain access to the credentials, certs, devices, exploit the web server, send fake alerts via crafts message, have them valid / pre-empting signals at will. I can also lock legitimate users out when I do, neutralizing or disabling a response,'" Bleeping Computer added.Read more of this story at Slashdot.

Meta's AI research labs have created a new state-of-the-art chatbot and are letting members of the public talk to the system in order to collect feedback on its capabilities. The Verge reports: The bot is called BlenderBot 3 and can be accessed on the web. (Though, right now, it seems only residents in the US can do so.) BlenderBot 3 is able to engage in general chitchat, says Meta, but also answer the sort of queries you might ask a digital assistant, "from talking about healthy food recipes to finding child-friendly amenities in the city." The bot is a prototype and built on Meta's previous work with what are known as large language models or LLMS -- powerful but flawed text-generation software of which OpenAI's GPT-3 is the most widely known example. Like all LLMs, BlenderBot is initially trained on vast datasets of text, which it mines for statistical patterns in order to generate language. Such systems have proved to be extremely flexible and have been put to a range of uses, from generating code for programmers to helping authors write their next bestseller. However, these models also have serious flaws: they regurgitate biases in their training data and often invent answers to users' questions (a big problem if they're going to be useful as digital assistants). This latter issue is something Meta specifically wants to test with BlenderBot. A big feature of the chatbot is that it's capable of searching the internet in order to talk about specific topics. Even more importantly, users can then click on its responses to see where it got its information from. BlenderBot 3, in other words, can cite its sources. By releasing the chatbot to the general public, Meta wants to collect feedback on the various problems facing large language models. Users who chat with BlenderBot will be able to flag any suspect responses from the system, and Meta says it's worked hard to 'minimize the bots' use of vulgar language, slurs, and culturally insensitive comments." Users will have to opt in to have their data collected, and if so, their conversations and feedback will be stored and later published by Meta to be used by the general AI research community. "We are committed to publicly releasing all the data we collect in the demo in the hopes that we can improve conversational AI," Kurt Shuster, a research engineer at Meta who helped create BlenderBot 3, told The Verge. Further reading: Microsoft's 'Teen Girl' AI Experiment Becomes a 'Neo-Nazi Sex Robot'Read more of this story at Slashdot.

ChromeOS 104 is rolling out starting today with several big interface updates that improve how you use the operating system. 9to5Google reports: ChromeOS 104 introduces proper dark and light themes that touch every aspect of the user interface. This includes the shelf, app launcher, Files app, and the backgrounds of various settings pages. You can enable the dark theme from the second page of Quick Settings. Google also created wallpapers that "subtly shift from light to dark," depending on the set theme. After updating, you'll notice that the month and day now appear to the left of the time in the shelf. Tapping opens a monthly calendar with the ability to tap a day to see all events, with an additional click opening the Google Calendar PWA. You can see other months and quickly return to "Today." This takes up the same size as Quick Settings, while any available alerts appear just above. Notifications from the same sender are now grouped together, while there are bigger touch targets for alert actions. The redesigned Launcher that's more compact and does not take up your entire screen is seeing wider availability. Additionally, some might be able to quickly search for Android apps from the Play Store with an inline rating. Version 104 of ChromeOS introduces a more full-featured Gallery app (with a new purple icon) that can open PDFs with the ability to fill out forms, sign documents, and make text annotations, like highlights. There's also a new Wallpaper & style application that's accessed by right-clicking the shelf and selecting the last option. Besides the collections curated by Google, you can set wallpapers from your Google Photos library. There's the ability to select an album and have a new background appear daily. This experience also lets you set the device theme (auto-switching available), and Screen saver with three styles available: Slide show, Feel the breeze, and Float on by.Read more of this story at Slashdot.