The Apache Software Foundation has released a security patch to address a vulnerability in its HTTP Web Server project that has been actively exploited in the wild. From a report: Tracked as CVE-2021-41773, the vulnerability affects only Apache web servers running version 2.4.49 and occurs because of a bug in how the Apache server converts between different URL path schemes (a process called path or URI normalization). "An attacker could use a path traversal attack to map URLs to files outside the expected document root," the ASF team said in the Apache HTTP Server 2.4.50 changelog. "If files outside of the document root are not protected by 'require all denied' these requests can succeed. Additionally this flaw could leak the source of interpreted files like CGI scripts," Apache engineers added. More than 120,000 servers currently exposed online to attacks.Read more of this story at Slashdot.
Singapore's parliament has passed a law aimed at preventing foreign interference in domestic politics, which the opposition and activists have criticised as a tool to crush dissent. From an AFP report: The law, approved after a marathon session that stretched to near midnight on Monday, would allow authorities to compel internet service providers and social media platforms to provide user information, block content and remove applications used to spread content they deem hostile. Groups and individuals involved in local politics can be designated as "politically significant persons," which would require them to disclose foreign funding sources and subject them to other "countermeasures" to reduce the risk of overseas meddling. Violators risk prison terms and hefty fines on conviction. Campaigners say it is the latest piece of draconian legislation to be rolled out in a city-state where authorities are frequently accused of curbing civil liberties. But in a lengthy address to parliament, law and home affairs minister K Shanmugam said Singapore was vulnerable to "hostile information campaigns" carried out from overseas and through local proxies. "The internet has created a powerful new medium for subversion," he said. "Countries are actively developing attack and defence capabilities as an arm of warfare, equal to, and more potent than, the land, air and naval forces."Read more of this story at Slashdot.
The Swedish Academy of Sciences awarded half of the Nobel Prize in physics jointly to Syukuro Manabe of the United States and Klaus Hasselmann of Germany for modeling Earth's climate and predicting global warming. From a report: Giorgio Parisi of Italy won the other half of the prize for describing fluctuating physical systems on scales from atoms to planets. The three scientists were honored "for groundbreaking contributions to our understanding of complex physical systems," Goran K. Hansson, secretary general Royal Swedish Academy of Sciences, told reporters in Stockholm.Read more of this story at Slashdot.
An anonymous reader quotes a report from Ars Technica: The Federal Communications Commission hopes to reduce the number of illegal robocalls from overseas with an expansion of rules that require phone companies to implement Caller ID authentication technology and block illegal calls. [T]he FCC is proposing new requirements on domestic gateway providers that accept calls from outside the US. A Notice of Proposed Rulemaking (NPRM) adopted (PDF) Thursday and released on Friday proposes requiring those gateway phone companies to implement STIR (Secure Telephone Identity Revisited) and SHAKEN (Signature-based Handling of Asserted Information Using toKENs) protocols, which verify the accuracy of Caller ID by using digital certificates based on public-key cryptography. "This proposal would subject foreign-originated calls, once they enter the United States, to requirements similar to those of domestic-originated calls, by placing additional obligations on gateway providers in light of the large number of illegal robocalls that originate abroad and the risk such calls present to Americans," the NPRM said. Gateway providers would be required to "apply STIR/SHAKEN caller ID authentication to, and perform robocall mitigation on, all foreign-originated calls with US numbers," the FCC said (PDF). STIR/SHAKEN is already widely deployed in the US on IP networks due to separate requirements that apply to large phone providers. Another newly implemented rule prohibits phone companies from accepting calls from providers that haven't met requirements to deploy STIR/SHAKEN or other robocall-mitigation methods. But the STIR/SHAKEN requirements don't apply to all carriers yet. "We don't want international calling to become a loophole for our policies," FCC Acting Chairwoman Jessica Rosenworcel said on Thursday at a commission meeting. "So today we are proposing that gateway providers in the United States -- the companies that bring in calls from overseas -- take action to stop this stuff from coming in from abroad. That means they need to use STIR/SHAKEN technology, register in our Robocall Mitigation Database, and comply with traceback requests to figure out where these junk calls are originating from overseas." The FCC said those traceback requests "are used to help block illegal robocalls and inform FCC enforcement investigations." The NPRM also proposes a new call-blocking requirement. When the FCC notifies a gateway provider about an ongoing robocall campaign, the provider would have to conduct "a prompt investigation to determine whether the traffic identified in the Enforcement Bureau's notice is illegal" and "promptly block all traffic associated with the traffic pattern identified in that notice." The NPRM seeks public comment on these proposed rules. Deadlines for initial comments will be 30 days after the NPRM is published in the Federal Register and 60 days after publication for reply comments. The docket is located here.Read more of this story at Slashdot.
Apple will now let you directly report a scammy app from its listing in the App Store with a new-and-improved version of its "Report a Problem" button. The Verge reports: As Richard Mazkewich and scam hunter Kosta Eleftheriou point out on Twitter, the button has not only returned to individual app listings for the first time in years, it now includes a dedicated "Report a scam or fraud" option in the drop-down menu. Until iOS 15, the only way you could find this button was to scroll all the way down to the bottom of the Apps or Games tab in the App Store, get kicked out to a website where you'd need to re-sign in. Then you could pick from "Report suspicious activity," "Report a quality issue," "Request a refundâ or "Find my content." None of the options offered a clear way to report a scam, and the "Report suspicious activity" would redirect you to Apple Support instead. To add insult to injury, Apple would only let you report "a quality issue" if you'd already paid money (and thus fallen for the scam). But now, it seems like every free app with in-app-purchases appears to offer the "Report a Problem" option. I checked a handful of apps I've never paid for (but could have) and they all displayed the button. You'll still get kicked out to a website where you'll need to sign in, but overall this seems like a step forward.Read more of this story at Slashdot.
According to fluent Korean speaker Youngmi Mayer, Squid Game features "botched" subtitles that have changed the show's meaning for English-speaking viewers. For those unaware of Squid Game, it's a Korean-language drama about an alternative world where people in debt compete in deadly games. The plot sees a group of people tempted into a survival game where they have the chance to walk away with 45.6 billion Korean won ($38 million) if they win a series of six games. According to a BBC article, it's currently on track to become Netflix's biggest original series. From the report: "The dialogue was so well written and zero of it was preserved [in the subtitles]," Youngmi said in a Twitter post. In a TikTok video that's had almost nine million views, Youngmi gave several examples of mistranslation. In one scene a character tries to convince people to play the game with her, and the closed-caption subtitles read: "I'm not a genius, but I still got it worked out." But what the character actually says, Youngmi explains, is: "I am very smart, I just never got a chance to study." That translation puts more emphasis on the wealth disparity in society -- which is also a theme in the Oscar-winning 2019 Korean film, Parasite. "Almost everything she says is being botched translation-wise... the writers, all they want you to know about her is that," Youngmi said. "[It] seems so small, but it's the entire character's purpose of being in the show." Youngmi later clarifies that her initial comments were about the automatically generated closed-caption subtitles rather than the English language subtitles, which are "substantially better." But she added: "The misses in the metaphors -- and what the writers were trying to actually say -- are still pretty present."Read more of this story at Slashdot.
An anonymous reader quotes a report from The Verge: Sarah was the patient in a proof-of-concept trial of a new approach to treating severe, treatment-resistant depression, published today in the journal Nature Medicine. The findings open up another possible strategy for helping people with the disorder. The study only involved Sarah, and it's still not clear how well it might work in other people. The lessons from the trial, though, helped the researchers understand more about the nature of depression and could apply to other efforts to treat the disease. The trial used a technique called deep brain stimulation, where electrodes implanted within the brain deliver electrical impulses in an attempt to change or regulate abnormal brain activity. It's common for conditions like epilepsy and Parkinson's disease. Research over the past decade has shown that it can sometimes help with depression, but the findings have been inconsistent. Most previous efforts delivered stimulation to individual regions of the brain thought to be involved in depression. This study, though, was targeted at regions that were part of specific brain circuits -- interconnected parts of the brain that are responsible for specific functions. In addition, the circuits involved might be different for each person. So in this trial, the study team personalized the treatment approach to the specific patient's depression. They mapped out the type of brain activity that occurred when Sarah's depression symptoms flared. Then, they surgically implanted a device that could detect that brain activity and send stimulation to the circuit where the activity was happening. For Sarah, the procedure was highly effective. Her scores on depression rating scales dropped the morning after the device was turned on. And perhaps more importantly, she felt dramatic changes in her mood. During her first time getting the stimulation, she laughed out loud in the lab. "And everyone in the room went, 'Oh my god,' because that's the first time I spontaneously laughed and smiled, where it wasn't faked, in five years," she said. Sarah's depression circuit flares up hundreds of times a day, and each time, the implanted device delivers a brief stimulating pulse. In total, she gets around 30 minutes of stimulation each day [...]. Sarah can't feel the pulses, but she said she does have a general idea of when they're happening throughout the day. "There's a sense of alertness and energy or positivity that I'll feel," she said.Read more of this story at Slashdot.
German officials on Monday unveiled what they said is the world's first commercial plant for making synthetic kerosene, touted as a climate-friendly fuel of the future. The Associated Press reports: The facility in Werlte, near Germany's northwestern border with the Netherlands, will use water and electricity from four nearby wind farms to produce hydrogen. In a century-old process, the hydrogen is combined with carbon dioxide to make crude oil, which can then be refined into jet fuel. Burning that synthetic kerosene releases only as much CO2 into the atmosphere as was previously removed to produce the fuel, making it "carbon neutral." The amount of fuel that the plant can produce beginning early next year is modest: just eight barrels a day, or about 336 gallons of jet fuel. That would be enough to fill up one small passenger plane every three weeks. By comparison, total fuel consumption of commercial airlines worldwide reached 95 billion gallons in 2019, before the pandemic hit the travel industry, according to the International Air Transport Association, or IATA. But Atmosfair, a German non-profit group behind the project, says its purpose is to show that the process is technologically feasible and -- once it is scaled up and with sufficient demand -- economically viable. Initially the price of synthetic kerosene produced in Werlte will be far higher than that of regular jet fuel, though Atmosfair won't divulge how much it will be charging its first customer, the German airline Lufthansa. However Atmosfair's chief executive, Dietrich Brockhagen, says a price of 5 euros ($5.80) per liter (0.26 gallons) is possible. That's still several times what kerosene currently costs, but Atsmofair is banking on carbon taxes driving up the price of fossil fuels, making his product more competitive. Additionally, authorities at the national and European level are putting in place quotas for the amount of e-fuel that airlines will have to use in future. That will create demand, making it more attractive to invest in bigger and better plants. Ueckerdt said 5 euros per liter is feasible by 2030, when the European Union's executive may require airlines to meet 0.7% of their kerosene needs with e-fuels. Under current plans, that would rise to 28% by 2050.Read more of this story at Slashdot.
We thought the carnage was over for popular decentralized finance, or DeFi, staking protocol Compound, but as it turns out, millions more than we thought are at risk. About $162 million is up for grabs after an upgrade gone very wrong, according to Robert Leshner, founder of Compound Labs. CNBC reports: At first, the Compound chief tweeted Friday that there was a cap to how many comp tokens could be accidentally distributed, noting that âoethe impact is bounded, at worst, 280,000 comp tokens,â or about $92.6 million. But on Sunday morning, Leshner revealed that the pool of cash that had already been emptied once had been replenished â" exposing another 202,472.5 comp tokens to exploit, or roughly $66.9 million at its current price. On Wednesday, Compound rolled out what should have been a pretty standard upgrade. Soon after implementation, however, it was clear that something had gone seriously wrong, once users started to receive millions of dollars in comp tokens. For example, $30 million worth of comp tokens were claimed in one transaction. The saving grace of the entire debacle, however, was the fact that the pool of cash that was open to exploit -- something called the Comptroller contract -- had a finite amount of tokens. The problem is that this leaky pool got a fresh influx of cash, and 0.5 comp tokens are being added roughly every 15 seconds, according to Gupta. "When the drip() function was called this morning, it sent the backlog (202,472.5, about two months of COMP since the last time the function was called) into the protocol for distribution to users," Leshner wrote in a tweet Sunday morning. Leshner noted that this brought the total comp at risk to 490,000 comp tokens, or about $162 million. There are a few proposals to fix the bug, but Compound's governance model is such that any changes to the protocol require a multiday voting window, and Gupta said it takes another week for the successful proposal to be executed. In the meantime, this pool of cash is once again up for grabs for users who know how to exploit the bug. Compound made clear that no supplied or borrowed funds were at risk, which is some consolation. "No user funds are or were at risk so it's not that big of a deal," said Gupta. "Everyone kinda got diluted but didn't lose anything directly."Read more of this story at Slashdot.
The United Kingdom has revealed plans to invest 5 billion pounds ($6.8 billion) in bolstering national cybersecurity that includes creating a "Cyber Force" unit to perform retaliatory attacks. BleepingComputer reports: As the UK's Secretary of State for Defense Ben Wallace points out in an interview with The Telegraph, Britain isn't just looking to strengthen its stance against threats, but also to build up its capacity to launch retaliatory assaults. The UK's goal is to strike back on 'tier one' attacks, targeting crucial sectors of hostile states such as Russia, China, and North Korea. As Wallace points out, Britain will be one of the very few countries in the world that will have the capacity to mount offensive cyber-attacks at such a scale, essentially discouraging any future attempts against them. Typical targets could include electric power stations, telecommunication service providers, and various basic infrastructure entities where any service disruption would result in a large-scale impact and notable adverse economical effects. As Mr. Wallace revealed, some foreign states are waging cyber warfare on Britain on a daily basis, so responding to this aggressively is within the rights that underpin international laws. One of the examples that the official gave during the interview is dismantling servers that are used for ransomware deployment, spyware, or IoT malware. Creating the National Cyber Force center is meant to help keep things this way, acting as a deterrent for those eyeing Britain as a lucrative target candidate. The new digital warfare center will be based out of Samlesbury, Lancashire and jointly run by the Ministry of Defense and the GCHQ. Wallace states that the new division should be fully operational by 2030, with more details revealed by Boris Johnson, UK's Prime Minister, at the upcoming conference of the Conservative Party in Manchester.Read more of this story at Slashdot.
An anonymous reader quotes a report from Ars Technica: Telegram patched another image self-destruction bug in its app earlier this year. This flaw was a different issue from the one reported in 2019. But the researcher who reported the bug isn't pleased with Telegram's months-long turnaround time -- and an offered $1,159 bounty award in exchange for his silence. In February 2021, Telegram introduced a set of such auto-deletion features in its 2.6 release: Set messages to auto-delete for everyone 24 hours or 7 days after sending; Control auto-delete settings in any of your chats, as well as in groups and channels where you are an admin; and To enable auto-delete, right-click on the chat in the chat list > Clear History > Enable Auto-Delete. But in a few days, mononymous researcher Dmitrii discovered a concerning flaw in how the Telegram Android app had implemented self-destruction. Messages that should be auto-deleted from participants in private and private group chats were only 'deleted' visually [in the messaging window], but in reality, picture messages remained on the device [in] the cache," the researcher wrote in a roughly translated blog post published last week. Tracked as CVE-2021-41861, the flaw is rather simple. In the Telegram Android app versions 7.5.0 to 7.8.0, self-destructed images remain on the device in the /Storage/Emulated/0/Telegram/Telegram Image directory after approximately two to four uses of the self-destruct feature. But the UI appears to indicate to the user that the media was properly destroyed. But for a simple bug like this, it wasn't easy to get Telegram's attention, Dmitrii explained. The researcher contacted Telegram in early March. And after a series of emails and text correspondence between the researcher and Telegram spanning months, the company reached out to Dmitrii in September, finally confirming the existence of the bug and collaborating with the researcher during beta testing. For his efforts, Dmitrii was offered a $1,159 bug bounty reward. Since then, the researcher claims he has been ghosted by Telegram, which has given no response and no reward. "I have not received the promised reward from Telegram in [$1,159] or any other," he wrote.Read more of this story at Slashdot.
John Gruber shares thoughts on the new ways tabs feel and function on Safari for Mac: From a usability perspective, every single thing about Safari 15's tabs is a regression. Everything. It's a tab design that can only please users who do not use tabs heavily; whereas the old tab design scaled gracefully from "I only open a few tabs at a time" all the way to "I have hundreds of tabs open across multiple windows." That's a disgrace. The Safari team literally invented the standard for how tabs work on MacOS. The tabs that are now available in the Finder, Terminal, and optionally in all document-based Mac apps are derived from the design and implementation of Safari's tabs. Now, Apple has thrown away Safari's tab design -- a tab design that was not just best-of-platform, but arguably best-in-the-whole-damn-world -- and replaced it with a design that is both inferior in the abstract, and utterly inconsistent with the standard tabs across the rest of MacOS. The skin-deep "looks cool, ship it" nature of Safari 15's tab design is like a fictional UI from a movie or TV show, like Westworld's foldable tablets or Tony Stark's systems from Iron Man, where looking cool is the entirety of the design spec. Something designed not by UI designers but by graphic designers, with no thought whatsoever to the affordances, consistencies, and visual hierarchies essential to actual usability. Just what looks cool. This new tab design shows a complete disregard for the familiarity users have with Safari's existing tab design. Apple never has been and should not be a company that avoids change at all cost. But proper change -- change that breaks users' habits and expectations -- is only justifiable when it's an improvement. Change for change's sake alone is masturbatory. That with Safari 15 it actually makes usability worse, solely for flamboyant cosmetic reasons, is downright perverse. "Google could and should run ads targeting Safari users, with a simple welcoming message: Switch to Chrome, the Mac browser where tabs look like tabs."Read more of this story at Slashdot.
Windows 11 is now officially available to download. While Microsoft is launching Windows 11-powered hardware worldwide on October 5th, the company has made the OS update available early for eligible devices in New Zealand and beyond. From a report: If you've purchased a Windows 10 machine recently, that means you should be able to upgrade to Windows 11 right now. For everyone else, the rollout of Windows 11 will be gradual. Microsoft says existing Windows 10 devices that are eligible for the Windows 11 upgrade will start to be able to upgrade today, but it will be mostly new hardware that will receive the upgrade immediately. Microsoft says, "We expect all eligible Windows 10 devices to be offered the upgrade to Windows 11 by mid-2022."Read more of this story at Slashdot.
The U.S. Supreme Court turned away a lingering appeal by Oracle stemming from its challenge to the now-scrapped $10 billion cloud-computing contract the Pentagon awarded to Microsoft in 2019. From a report: The rejection was a formality given the Defense Department's decision in July to drop the contract and divide the work among multiple bidders, potentially between Microsoft and Amazon. Oracle's appeal centered on alleged conflicts of interest involving Amazon, and on claims that the Pentagon violated its own rules when it set up the contract to be awarded to a single firm.Read more of this story at Slashdot.
A company that is a critical part of the global telecommunications infrastructure used by AT&T, T-Mobile, Verizon and several others around the world such as Vodafone and China Mobile, quietly disclosed that hackers were inside its systems for years, impacting more than 200 of its clients and potentially millions of cellphone users worldwide. From a report: The company, Syniverse, revealed in a filing dated September 27 with the U.S. Security and Exchange Commission that an unknown "individual or organization gained unauthorized access to databases within its network on several occasions, and that login information allowing access to or from its Electronic Data Transfer (EDT) environment was compromised for approximately 235 of its customers." A former Syniverse employee who worked on the EDT systems told Motherboard that those systems have information on all types of call records. [...] The company wrote that it discovered the breach in May 2021, but that the hack began in May of 2016.Read more of this story at Slashdot.
Facebook -- and all the major services that Facebook owns -- are down today. ArsTechnica: We first noticed the problem at about 11:30 am Eastern time, when some Facebook links stopped working. Investigating a bit further showed major DNS failures at Facebook: "Google anycast DNS returns SERVFAIL for Facebook queries; querying http://a.ns.facebook.com directly times out." The problem goes deeper than Facebook's obvious DNS failures, though. Facebook-owned Instagram was also down, and its DNS services -- which are hosted on Amazon rather than being internal to Facebook's own network -- were functional. Instagram and WhatsApp were reachable but showed HTTP 503 (no server is available for the request) failures instead, an indication that while DNS worked and the services' load balancers were reachable, the application servers that should be feeding the load balancers were not.A bit later, Cloudflare VP Dane Knecht reported that all BGP routes for Facebook had been pulled. With no BGP routes into Facebook's network, Facebook's own DNS servers would be unreachable -- as would the missing application servers for Facebook-owned Instagram, WhatsApp, and Oculus VR.Read more of this story at Slashdot.
Ian MacDougall, reporting for ProPublica: Since 2008, McKinsey & Company has regularly advised the Food and Drug Administration's drug-regulation division, according to agency records. The consulting giant has had its hand in a range of important FDA projects, from revamping drug-approval processes to implementing new tools for monitoring the pharmaceutical industry. During that same decade-plus span, as emerged in 2019, McKinsey counted among its clients many of the country's biggest drug companies -- not least those responsible for making, distributing and selling the opioids that have ravaged communities across the United States, such as Purdue Pharma and Johnson & Johnson. At times, McKinsey consultants helped those drugmaker clients fend off costly FDA oversight -- even as McKinsey colleagues assigned to the FDA were working to bolster the agency's regulation of the pharmaceutical market. In one instance, for example, McKinsey consultants helped Purdue and other opioid producers push the FDA to water down a proposed opioid-safety program. The opioid producer ultimately succeeded in weakening the program, even as overdose deaths mounted nationwide. Yet McKinsey, which is famously secretive about its clientele, never disclosed its pharmaceutical company clients to the FDA, according to the agency. This year ProPublica submitted a Freedom of Information Act request to the FDA seeking records showing that McKensey had disclosed possible conflicts of interest to the agency's drug-regulation division as part of contracts spanning more than a decade and worth tens of millions of dollars. The agency responded recently that "after a diligent search of our files, we were unable to locate any records responsive to your request." Federal procurement rules require U.S. government agencies to determine whether a contractor has any conflicts of interest. If serious enough, a conflict can disqualify the contractor from working on a given project. McKinsey's contracts with the FDA, which ProPublica obtained after filing a FOIA lawsuit, contained a standard provision obligating the firm to disclose to agency officials any possible organizational conflicts. One passage reads: "the Contractor agrees it shall make an immediate and full disclosure, in writing, to the Contracting Officer of any potential or actual organizational conflict of interest or the existence of any facts that may cause a reasonably prudent person to question the contractor's impartiality because of the appearance or existence of bias."Read more of this story at Slashdot.
The island has rare elements needed for electric cars and wind turbines. But protesters are blocking one project, signaling that mining companies must tread carefully. From a report: This huge, remote and barely habited island is known for frozen landscapes, remote fjords and glaciers that heave giant sheets of ice into the sea. But increasingly Greenland is known for something else: rare minerals. It's all because of climate change and the world's mad dash to accelerate the development of green technology. As global warming melts the ice that covers 80 percent of the island, it has spurred demand for Greenland's potentially abundant reserves of hard-to-find minerals with names like neodymium and dysprosium. These so-called rare earths, used in wind turbines, electric motors and many other electronic devices, are essential raw materials as the world tries to break its addiction to fossil fuels. China has a near monopoly on these minerals. The realization that Greenland could be a rival supplier has set off a modern gold rush. Global superpowers are jostling for influence. Billionaire investors are making big bets. Mining companies have staked claims throughout the island in a quest that also includes nickel, cobalt, titanium and, yes, gold. But those expecting to exploit the island's riches will have to contend with Mariane Paviasen and the predominantly Indigenous residents of the village of Narsaq. Until she was elected to Greenland's Parliament in April, Ms. Paviasen was manager of a heliport that provided one of the few ways to get to Narsaq, a village at the mouth of a fjord on the island's southwest coast. The forces reshaping the planet -- extreme weather caused by rising temperatures, and rising demand for electric vehicles and other green technology that require bits of rare metals -- converge at Narsaq, where fishing is the main industry and most people live in brightly colored wooden houses with tar paper roofs.Read more of this story at Slashdot.
Clearview AI has stoked controversy by scraping the web for photos and applying facial recognition to give police and others an unprecedented ability to peer into our lives. Now the company's CEO wants to use artificial intelligence to make Clearview's surveillance tool even more powerful. From a report: It may make it more dangerous and error-prone as well. Clearview has collected billions of photos from across websites that include Facebook, Instagram, and Twitter and uses AI to identify a particular person in images. Police and government agents have used the company's face database to help identify suspects in photos by tying them to online profiles. The company's cofounder and CEO, Hoan Ton-That, tells WIRED that Clearview has now collected more than 10 billion images from across the web -- more than three times as many as has been previously reported. Ton-That says the larger pool of photos means users, most often law enforcement, are more likely to find a match when searching for someone. He also claims the larger data set makes the company's tool more accurate. Clearview combined web-crawling techniques, advances in machine learning that have improved facial recognition, and a disregard for personal privacy to create a surprisingly powerful tool. Ton-That demonstrated the technology through a smartphone app by taking a photo of the reporter. The app produced dozens of images from numerous US and international websites, each showing the correct person in images captured over more than a decade. The allure of such a tool is obvious, but so is the potential for it to be misused. Clearview's actions sparked public outrage and a broader debate over expectations of privacy in an era of smartphones, social media, and AI. [...] The pushback has not deterred Ton-That. He says he believes most people accept or support the idea of using facial recognition to solve crimes. "The people who are worried about it, they are very vocal, and that's a good thing, because I think over time we can address more and more of their concerns," he says. Some of Clearview's new technologies may spark further debate. Ton-That says it is developing new ways for police to find a person, including "deblur" and "mask removal" tools. The first takes a blurred image and sharpens it using machine learning to envision what a clearer picture would look like; the second tries to envision the covered part of a person's face using machine learning models that fill in missing details of an image using a best guess based on statistical patterns found in other images. These capabilities could make Clearview's technology more attractive but also more problematic. It remains unclear how accurately the new techniques work, but experts say they could increase the risk that a person is wrongly identified and could exacerbate biases inherent to the system.Read more of this story at Slashdot.
China has revealed its first set of ethical guidelines governing artificial intelligence, placing emphasis on protecting user rights and preventing risks in ways that align with Beijing's goals of reining in Big Tech's influence and becoming the global AI leader by 2030. From a report: Humans should have full decision-making power, the guidelines state, and have the right to choose whether to accept AI services, exit an interaction with an AI system or discontinue its operation at any time. The document was published by China's Ministry of Science and Technology (MOST) last Sunday. The goal is to "make sure that artificial intelligence is always under the control of humans," the guidelines state. "This is the first specification we see from the [Chinese] government on AI ethics," said Rebecca Arcesati, an analyst at the German think tank Mercator Institute for China Studies (Merics). "We had only seen high-level principles before."Read more of this story at Slashdot.
A shortage of technology talent has Indian companies offering sweeteners like more vacation time and gender-neutral parental leave as they compete for graduates and professionals. One Bangalore startup is trying a more dramatic solution: a three-day work week. From a report: Fintech company Slice is offering new hires a three-day week with salary at 80% of the going market rate. This is a win-win approach that frees the workers to pursue other passions or interests -- or other gigs -- while still locking in a steady pay and benefits from Slice, said Rajan Bajaj, the company's founder. "This is the future of work," Bajaj, 28, said in a phone interview. "People don't want to be tied down to a job." Global investors are pouring billions of dollars into India's tech startups, putting entrepreneurs under pressure to ramp up teams. A massive talent crunch has ensued as IT outsourcers, Silicon Valley giants, global retailers and Wall Street banks' technology centers vie for engineering and product talent alongside hundreds of fast-growing startups. Slice is betting that its approach will make it stand apart from the competition. The company has 450 employees and wants to recruit 1,000 engineers and product managers in the next three years.Read more of this story at Slashdot.
Large tree-planting initiatives often fail -- and some have even fueled deforestation. From a report: On November 11, 2019, volunteers planted 11 million trees in Turkey as part of a government-backed initiative called Breath for the Future. In one northern city, the tree-planting campaign set the Guinness World Record for the most saplings planted in one hour in a single location: 303,150. "By planting millions of young trees, the nation is working to foster a new, lush green Turkey," Turkey's president, Recep Tayyip Erdogan, said when he kicked off the project in Ankara. Less than three months later, up to 90 percent of the saplings were dead, the Guardian reported. The trees were planted at the wrong time and there wasn't enough rainfall to support the saplings, the head of the country's agriculture and forestry trade union told the paper. In the past two decades, mass tree-planting campaigns like this one have gained popularity as a salve for many of our modern woes, from climate change to the extinction crisis. Companies and billionaires love these kinds of initiatives. So do politicians. [...] There's just one problem: These campaigns often don't work, and sometimes they can even fuel deforestation. In one recent study in the journal Nature, for example, researchers examined long-term restoration efforts in northern India, a country that has invested huge amounts of money into planting over the last 50 years. The authors found "no evidence" that planting offered substantial climate benefits or supported the livelihoods of local communities. The study is among the most comprehensive analyses of restoration projects to date, but it's just one example in a litany of failed campaigns that call into question the value of big tree-planting initiatives. Often, the allure of bold targets obscures the challenges involved in seeing them through, and the underlying forces that destroy ecosystems in the first place. Instead of focusing on planting huge numbers of trees, experts told Vox, we should focus on growing trees for the long haul, protecting and restoring ecosystems beyond just forests, and empowering the local communities that are best positioned to care for them. In the past three decades, the number of tree-planting organizations has skyrocketed, growing nearly threefold in the tropics alone. So have global drives: Today, there are no fewer than three campaigns focused on planting 1 trillion trees, including the World Economic Forum's (WEF) One Trillion Trees Initiative, which launched in 2020.Read more of this story at Slashdot.
The Nobel Prize in the field of physiology or medicine has been awarded to U.S.-based scientists David Julius and Ardem Patapoutian. From a report: They were cited for their discovery of receptors for temperature and touch. The winners were announced Monday by Thomas Perlmann, secretary-general of the Nobel Committee.Patrik Ernfors of the Nobel Committee said Julius, 65, used capsaicin, the active component in chili peppers, to identify the nerve sensors that allow the skin to respond to heat. Patapoutian found separate pressure-sensitive sensors in cells that respond to mechanical stimulation, he said. "This really unlocks one of the secrets of nature," said Perlmann. "It's actually something that is crucial for our survival, so it's a very important and profound discovery." The pair also shared the prestigious Kavli Award for Neuroscience last year. Further reading: California Scientists Share Nobel for Work on Sense of Touch.Read more of this story at Slashdot.
Today tech entrepreneur-turned-politician Andrew Yang candidly reflected on the pitfalls of power that he'd learned about during his 2020 run for president. "In national politics, it turns out, you're not as much the CEO as you are yourself the product... [E]veryone in my orbit started treating me like I might be a presidential contender. I was getting a crash course in how we treat the very powerful — and it was weird. "But it was more than just a head rush. There are psychological consequences to being treated this way for months on end."The historian Henry Adams described power as "a sort of tumor that ends by killing the victim's sympathies." This may sound like hyperbole, but it has been borne out by years of lab and field experiments. Dacher Keltner, a psychology professor at UC Berkeley, has been studying the influence of power on individuals. He puts people in positions of power relative to each other in different settings. He has consistently found that power, over time, makes one more impulsive, more reckless and less able to see things from others' points of view. It also leads one to be rude, more likely to cheat on one's spouse, less attentive to other people, and less interested in the experiences of others. Does that sound familiar? It turns out that power actually gives you brain damage. This even shows up in brain scans. Sukhvinder Obhi, a neuroscientist at McMaster University in Ontario, recently examined the brain patterns of the powerful and the not so powerful in a transcranial-magnetic-stimulation machine. He found that those with power are impaired in a specific neural process — mirroring — that leads to empathy... Perhaps most distressing is that in lab settings the powerful can't address this shortcoming even if told to try. Subjects in one study were told that their mirroring impulse was the issue and to make a conscious effort to relate to the experiences of others. They still couldn't do it. Effort and awareness made no difference in their abilities... On the campaign trail, I could clearly see how politicians become susceptible to growing so out of touch. You spend time with dozens of people whose schedules and actions revolve around you. Everyone asks you what you think. You function on appearance; appearance becomes your role. Empathy becomes optional or even unhelpful. Leadership becomes the appearance of leadership. The process through which we choose leaders neutralizes and reduces the capacities we want most in them. It's cumulative as well; the longer you are in it, the more extreme the effects are likely to be over time.Read more of this story at Slashdot.
The Guardian reports on "a new breed of scambaiters...taking over TikTok and YouTube." And one of them has more than 1.5 million followers across both video platforms. "Three to four days a week, for one or two hours at a time, Rosie Okumura, 35, telephones thieves and messes with their minds," reports the Guardian:For the past two years, the LA-based voice actor has run a sort of reverse call centre, deliberately ringing the people most of us hang up on — scammers who pose as tax agencies or tech-support companies or inform you that you've recently been in a car accident you somehow don't recall. When Okumura gets a scammer on the line, she will pretend to be an old lady, or a six-year-old girl, or do an uncanny impression of Apple's virtual assistant Siri. Once, she successfully fooled a fake customer service representative into believing that she was Britney Spears. "I waste their time," she explains, "and now they're not stealing from someone's grandma...." Batman became Batman to avenge the death of his parents; Okumura became a scambaiter after her mum was scammed out of $500... Thankfully, the bank was able to stop the money leaving her mother's account, but Okumura wanted more than just a refund. She asked her mum to give her the number she'd called and called it herself, spending an hour and 45 minutes wasting the scammer's time. "My computer's giving me the worst vibes," she began in Kim Kardashian's voice. "Are you in front of your computer right now?" asked the scammer. "Yeah, well it's in front of me, is that... that's like the same thing?" Okumura put the video on YouTube and since then has made over 200 more videos, through which she earns regular advertising revenue (she also takes sponsorships directly from companies). "A lot of it is entertainment — it's funny, it's fun to do, it makes people happy," she says when asked why she scambaits. "But I also get a few emails a day saying, 'Oh, thank you so much, if it weren't for that video, I would've lost $1,500.'" Okumura isn't naive — she knows she can't stop people scamming, but she hopes to stop people falling for scams. "I think just educating people and preventing it from happening in the first place is easier than trying to get all the scammers put in jail...." The Guardian also describes Jim Browning, a Northern Irish YouTuber with nearly 3.5 million subscribers who's been posting scambaiting videos for seven years. "Browning regularly gets access to scammers' computers and has even managed to hack into the closed-circuit TV footage of call centres in order to identify individuals. He then passes this information to the 'relevant authorities' including the police, money-processing firms and internet service providers...." And they also tell the story of an American software engineer who joined with friends to convince a scammer he'd been offered a high-paying job — only to end up stranded in Laos after paying for a 600-miles flight. "He was crying... that was the one where I was like, 'Ah, maybe I'm taking things a little too far.'"Read more of this story at Slashdot.
"New Zealand's central bank is exploring the possibility of issuing a digital currency, saying the benefits it would bring include its potential use as a monetary policy tool," reports Bloomberg. The central bank cites "the declining use, acceptance and availability of cash in New Zealand, and emerging innovations in private money, namely stablecoins."While developing a central bank digital currency would require long lead times given the complexities and involve a multi-stage approach, the Royal Bank of New Zealand (RBNZ) said it broadly favors the idea. A digital currency should support the New Zealand dollar "as our single unit of account" and be exchanged 1-for-1 with cash, it said, adding "cash is here to stay for as long as some of us need it." The RBNZ said a digital currency would support the value anchor role of central bank money by: - Providing individuals and businesses with the option of converting privately issued money into a digital form of central bank money, ensuring the long-term convertibility of private money into central bank money - Improving the technological form of central bank money to ensure it remains relevant in a digital future - Providing an additional monetary policy tool by it being either issued to provide monetary stimulus, or interest bearing.... Other central banks around the world, including the European Central Bank, are also exploring the possibility of issuing a digital currency.Read more of this story at Slashdot.
An Iowa data scientist with a computer engineering degree and a Harvard MBA has come forward as the whistleblower leaking damaging information about Facebook to the Wall Street Journal — and that's just the beginning. They've now also filed at least eight complaints with America's Securities and Exchange Commission, "which has broad oversight over financial markets and has the power to bring charges against companies suspected of misleading investors," reports the Washington Post. To buttress the complaints, the whistleblower secretly copied "tens of thousands" of pages of internal Facebook research, according to a report tonight on the CBS News show 60 Minutes, which summarizes her ultimate conclusion: "that the company is lying to the public about making significant progress against hate, violence and misinformation. "One study she found from this year says 'We estimate that we may action as little as 3 to 5% of hate, and about 0.6% of violence and incitement on Facebook. Despite being the best in the world at it." Another internal Facebook document admits point-blank that "We have evidence from a variety of sources that hate speech, divisive political speech and misinformation on Facebook and the family of apps are affecting societies around the world." 60 Minutes points out that Facebook "has 2.8 billion users, which is 60% of all internet-connected people on Earth." [Whistleblower Frances] Haugen told us the root of Facebook's problem is in a change that it made in 2018 to its algorithms — the programming that decides what you see on your Facebook news feed... "One of the consequences of how Facebook is picking out that content today is it is optimizing for content that gets engagement, or reaction. But its own research is showing that content that is hateful, that is divisive, that is polarizing, it's easier to inspire people to anger than it is to other emotions... Facebook has realized that if they change the algorithm to be safer, people will spend less time on the site, they'll click on less ads, they'll make less money." 60 Minutes reports that Facebook was even contacted by "major political parties across Europe," according to leaked internal documents which say the parties specifically complained that a change Facebook's algorithm "has forced them to skew negative in their communications on Facebook... leading them into more extreme policy positions." (Or, as 60 Minutes puts it, "The European political parties were essentially saying to Facebook the way you've written your algorithm is changing the way we lead our countries." The whistleblower sees their position as "You are forcing us to take positions that we don't like, that we know are bad for society. We know if we don't take those positions, we won't win in the marketplace of social media."Haugen says Facebook understood the danger to the 2020 Election. So, it turned on safety systems to reduce misinformation — but many of those changes, she says, were temporary. "And as soon as the election was over, they turned them back off or they changed the settings back to what they were before, to prioritize growth over safety. And that really feels like a betrayal of democracy to me." Facebook says some of the safety systems remained. But, after the election, Facebook was used by some to organize the January 6th insurrection.... After the attack, Facebook employees raged on an internal message board copied by Haugen. "...Haven't we had enough time to figure out how to manage discourse without enabling violence?" The whistleblower will now appear Tuesday before a U.S. Senate Commerce consumer protection subcommittee — and has already shared some of their documents with Congressional offices probing Facebook, according to the Washington Post. "It's important because Big Tech is at an inflection point," the whistleblower's lawyer tells the newspaper. They argue that ultimately Big Tech "touches every aspect of our lives — whether it's individuals personally or democratic institutions globally. With such far reaching consequences, transparency is critical to oversight. "And lawful whistleblowing is a critical component of oversight and holding companies accountable."Read more of this story at Slashdot.
Car buyers are discovering that supply chain constraints "have thrusted prices upwards considerably for new and used vehicles alike," notes Jalopnik. But while last month Fortune ran an article headlined "Chipmakers to carmakers: Time to get out of the semiconductor Stone Age," Jalopnik argues it's not that simple.The implication here is that the auto industry is far too reliant on archaic tech that isn't applicable to other consumer tech fields. It's now finally reckoning with its reluctance to change, and only a fool would invest in shops to pump out the outdated silicon cars require. But is that a fair assessment? As Fortune notes in its own piece, there are reasons why carmakers — some of the largest corporations in the world — choose the chips they do. The comparison to smartphones is moot... The potential ramifications of a glitch in a metal box traveling at many miles per hour are a little more severe. That's especially true if you're talking about modern vehicles with driver-assist functions... I asked some auto industry veterans to weigh in... What automakers require is somewhat at odds with what chipmakers prefer and are tooled to produce: smaller, more densely packed chips, that can be manufactured at lower cost and yield more units.... However, to suggest as [Intel CEO] Gelsinger did that the burden to adapt should fall squarely on automakers simplifies the issue. General purpose chipmakers don't seem to grasp the unique challenges of the automotive sector — something that became clear to me after chatting with Jon M. Quigley, Society of Automotive Engineers member and columnist at Automotive Industries. "Qualifying a product, specifically testing activities, are costly and requires time, talent, and equipment," Quigley said. "Some of the test equipment requirements are expensive and often not on hand at the OEM but will require an external lab, and booking time at this lab can be a long lead time activity, and is necessary for certain product certifications. Depending upon the vehicle system commonality, this testing might have to be performed on multiple vehicle platforms. Making changes to an existing product, changing an integrated circuit that only has the difference in the manufacturing processes would still require this sort of testing. Unless there are some compelling associated cost improvements to recoup the investment, this is not very plausible." It's easy for those of us on the outside to miss the many steps of validation automotive components are required to go through before they end up in what we drive. Ultimately, carmakers don't care how small or new a chip is; all that matters is that it works for its intended purpose and is properly vetted... Chipmakers want as much miniaturization as possible to maximize production efficiency, automakers need significant lead time to make sure a chip will work for them. Each industry has reasons for operating the way it does. That doesn't change the fact that someone's going to have to budge to address this shortfall.... Over time, the transition to newer technology may naturally happen, but certainly not quickly enough to Band-Aid the snags of the present moment. That doesn't give anyone a single, solitary scapegoat, and it's not the easy answer anyone likely wants to hear — not prospective shoppers, not automakers and not the CEO of Intel. But it's the most realistic answer nonetheless. In the meantime, one analyst that Jalopnik spoke to predicted automakers will try strategic partnerships with chipmakers — that is, "find ways to own or control more of the chip supply base going forward by partnering with ASIC design companies who do similar design service for networking companies."Read more of this story at Slashdot.
Opyros writes: Fossil footprints in New Mexico have been dated to 21,000-23,000 years before present. As a result, human habitation of the Americas can be pushed back several thousand years. The footprints were found in sedimentary rock at White Sands National Park, near the location of a long-vanished lake. Since the rock contains seeds of ditchgrass, it was possible to apply radiocarbon dating, leading to the remarkably early date. Until now, the oldest unequivocally dated signs of human presence in the New World were only 16,000 years old. Hence the great significance of the find.Read more of this story at Slashdot.
Oracle's Java magazine takes a look at some current JDK Enhancement Proposals, "the vehicle of long standing for updating the Java language and the JVM."Today, concurrency in Java is delivered via nonlightweight threads, which are, for all intents, wrappers around operating-system threads... Project Loom aims to deliver a lighter version of threads, called virtual threads. In the planned implementation, a virtual thread is programmed just as a thread normally would be, but you specify at thread creation that it's virtual. A virtual thread is multiplexed with other virtual threads by the JVM onto operating system threads. This is similar in concept to Java's green threads in its early releases and to fibers in other languages... Because the JVM has knowledge of what your task is doing, it can optimize the scheduling. It will move your virtual thread (that is, the task) off the OS thread when it's idle or waiting and intelligently move some other virtual thread onto the OS thread. When implemented correctly, this allows many lightweight threads to share a single OS thread. The benefit is that the JVM, rather than the OS, schedules your task. This difference enables application-aware magic to occur behind the curtains... Project Valhalla aims to improve performance as it relates to access to data items... by introducing value types, which are a new form of data type that is programmed like objects but accessed like primitives. Specifically, value types are data aggregates that contain only data (no state) and are not mutable. By this means, [value types] can be stored as a single array with only a single header field for the entire array and direct access to the individual fields... Project Panama simplifies the process of connecting Java programs to non-Java components. In particular, Panama aims to enable straightforward communication between Java applications and C-based libraries... Several Amber subprojects are still in progress. Sealed classes, which have been previewed in the last few Java releases and are scheduled to be finalized in Java 17. Sealed classes (and interfaces) can limit which other classes or interfaces can extend or implement them... Pattern matching in switches is a feature that will be previewed in Java 17... The article concludes that Java's past and current projects "testify to how much Java has evolved and how actively the language and runtime continue to evolve."Read more of this story at Slashdot.
"Pound for pound, gallon for gallon, hour-for-hour, the two-stroke gas powered engines in leaf blowers and similar equipment are vastly the dirtiest and most polluting kind of machinery still in legal use," James Fallows writes. "According to the California Air Resources Board (CARB), the two-stroke leaf blowers and similar equipment in the state produce more ozone pollution than all of California's tens of millions of cars, combined."How can such little engines do so much damage? It's all about technological progress, and the lack of it: Over the past 50 years, gasoline engines for trucks and automobiles have become so much more efficient that they have reduced most of their damaging emissions-per-mile by at least 95 percent... Two-stroke engines, by contrast, are based on long-obsolete technology that inefficiently burns a slosh of oil and gasoline, and pumps out much of the unburned fuel as toxic aerosols... They're the basis of noisy, dirty scooters and tuk-tuks in places like Jakarta, Hanoi, Manila, and Bangkok, where they're being phased out as too polluting. Using a two-stroke engine is like heating your house with an open pit fire in the living room — and chopping down your trees to keep it going, and trying to whoosh away the fetid black smoke before your children are poisoned by it. But these machines persist in American landscaping because they are cheap. And because — to be brutally honest — the people paying the greatest price in much of suburban American are the hired lawn-crew workers... Fallows points out America's Environmental Protection Agency concluded the engines expose their operators to unusually high levels of carcinogens include benzene and other dangerous substances. And "The noise produced by two-stroke engines really is different from other sounds. New acoustic research shows that its distinctive low-frequency noise penetrates vastly further than other machine-generated sound waves. It goes through solid walls. "There is an obvious, rapidly improving alternative. That is battery-powered equipment (to say nothing of rakes)... If batteries can power a multi-ton F-150 truck, it is fatuous for landscapers to say that they aren't strong enough for a dozen-pound leaf blower."Read more of this story at Slashdot.
A New York Times science/global health reporter reminds us that "Newer variants of the coronavirus like Alpha and Delta are highly contagious, infecting far more people than the original virus." But then they add that "Two new studies offer a possible explanation: The virus is evolving to spread more efficiently through air."Most researchers now agree that the coronavirus is mostly transmitted through large droplets that quickly sink to the floor and through much smaller ones, called aerosols, that can float over longer distances indoors and settle directly into the lungs, where the virus is most harmful. The new studies don't fundamentally change that view. But the findings signal the need for better masks in some situations, and indicate that the virus is changing in ways that make it more formidable. "This is not an Armageddon scenario," said Vincent Munster, a virologist at the National Institute of Allergy and Infectious Diseases, who led one of the new studies. "It is like a modification of the virus to more efficient transmission, which is something I think we all kind of expected, and we now see it happening in real time." Dr. Munster's team showed that small aerosols traveled much longer distances than larger droplets and the Alpha variant was much more likely to cause new infections via aerosol transmission. The second study found that people infected with Alpha exhaled about 43 times more virus into tiny aerosols than those infected with older variants. The studies compared the Alpha variant with the original virus or other older variants. But the results may also explain why the Delta variant is so contagious — and why it displaced all other versions of the virus... At least in some crowded spaces, people may want to consider switching to more protective masks, said Don Milton, an aerosol expert at the University of Maryland who led the research. "Given that it seems to be evolving towards generating aerosols better, then we need better containment and better personal protection," Dr. Milton said of the virus. "We are recommending people move to tighter-fitting masks."Read more of this story at Slashdot.
"Cyber criminals using a ransomware-as-a-service scheme have been spotted complaining that the group they rent the malware from could be using a hidden backdoor to grab ransom payments for themselves," reports ZDNet:REvil is one of the most notorious and most common forms of ransomware around and has been responsible for several major incidents. The group behind REvil lease their ransomware out to other crooks in exchange for a cut of the profits these affiliates make by extorting Bitcoin payments in exchange for the ransomware decryption keys that the victims need. But it seems that cut isn't enough for those behind REvil: it was recently disclosed that there's a secret backdoor coded into their product, which allows REvil to restore the encrypted files without the involvement of the affiliate. This could allow REvil to takeover negotiations with victims, hijack the so-called "customer support" chats — and steal the ransom payments for themselves. Analysis of underground forums by cybersecurity researchers at Flashpoint suggests that the disclosure of the REvil backdoor hasn't gone down well with affiliates. One forum user claimed to have had suspicions of REvil's tactics, and said their own plans to extort $7 million from a victim was abruptly ended. They believe that one of the REvil authors took over the negotiations using the backdoor and made off with the money.Read more of this story at Slashdot.
Tesla announced that it's delivered a new record number of electric cars in its third quarter, according to Reuters, "beating Wall Street estimates after Chief Executive Elon Musk asked staff to 'go super hardcore' to make a quarter-end delivery push." Slashdot reader McGruber shared Reuters' report:Tesla has weathered the chip crisis better than rivals, with its overall deliveries surging 20% in the July to September period from its previous record in the second quarter, marking the sixth consecutive quarter-on-quarter gains... Tesla delivered 241,300 vehicles globally in the July to September quarter, up 73% from a year earlier. Analysts had expected the electric-car maker to deliver 229,242 vehicles, according to Refinitiv data. General Motors, Honda and some of its bigger rivals posted declines in U.S. sales in the third quarter, hit by a prolonged chip shortage. GM's third-quarter U.S. sales fell nearly 33% to its lowest level in more than a decade.Read more of this story at Slashdot.
Back in 2014 Babylon 5 creator J. Michael Straczynski answered questions from Slashdot's readers. And now this week, long-time Slashdot reader Jaegs writes: According to many sources and the Babylon 5 creator/writer/director/producer himself, J. Michael Straczynski (JMS), the CW — partly owned by the original Babylon 5 producer and rights holder, WarnerMedia — will be rebooting the popular franchise. JMS will be writing and executive producing the series. Per JMS: "[W]e will not be retelling the same story in the same way... There would be no fun and no surprises. Better to go the way of Westworld or Battlestar Galactica where you take the original elements that are evergreens and put them in a blender with a ton of new, challenging ideas, to create something fresh yet familiar. To those asking why not just do a continuation, for a network series like this, it can't be done because over half our cast are still stubbornly on the other side of the Rim. The last part refers to the recent passing of Mira Furlan (Delenn), as well as the untimely deaths of other primary cast members after the conclusion of the original run of the series: Richard Biggs (Dr. Franklin), Michael O'Hare (Jeffrey Sinclair), Jerry Doyle (Michael Garibaldi), Stephen Furst (Vir Cotto), Jeff Conway (Zack Allan), and Andreas Katsulas (G'Kar). Straczynski points out on Twitter that "The original Babylon 5 was ridiculously innovative: the first to use CGI to create ships and characters, and among the very first to shoot widescreen with a vigorous 5.1 mix." But his tweets also seem excited about the questions that this new reboot will answer. "if I were creating Babylon 5 today, for the first time, knowing what I now know as a writer, what would it look like? How would it use all the storytelling tools and technological resources available in 2021 that were not on hand then? "How can it be used to reflect the world in which we live, and the questions we are asking and confronting every day? Fans regularly point out how prescient the show was and is of our current world; it would be fun to take a shot at looking further down the road..."Read more of this story at Slashdot.
Phys.org reports that a newly published theoretical/computer-modeling study "suggests that the world's most powerful lasers might finally crack the elusive physics behind some of the most extreme phenomena in the universe — gamma ray bursts, pulsar magnetospheres, and more." The study comes from an international team including researchers from Lawrence Berkeley National Laboratory and France's Alternative Energies and Atomic Energy Commission (publishing in the journal Physical Review Letters.):The team's modeling study shows that petawatt (PW)-class lasers — juiced to even higher intensities via light-matter interactions — might provide a key to unlock the mysteries of the strong-field (SF) regime of quantum electrodynamics (QED). A petawatt is 1 times ten to the fifteenth power (that is, followed by 15 zeroes), or a quadrillion watts. The output of today's most powerful lasers is measured in petawatts... "This is a powerful demonstration of how advanced simulation of complex systems can enable new paths for discovery science by integrating multiple physics processes — in this case, the laser interaction with a target and subsequent production of particles in a second target," said ATAP Division Director Cameron Geddes.... The scheme consists of boosting the intensity of a petawatt laser pulse with a relativistic plasma mirror. Such a mirror can be formed when an ultrahigh intensity laser beam hits an optically polished solid target. Due to the high laser amplitude, the solid target is fully ionized, forming a dense plasma that reflects the incident light. At the same time the reflecting surface is actually moved by the intense laser field. As a result of that motion, part of the reflected laser pulse is temporally compressed and converted to a shorter wavelength by the Doppler effect. Radiation pressure from the laser gives this plasma mirror a natural curvature. This focuses the Doppler-boosted beam to much smaller spots, which can lead to extreme intensity gains — more than three orders of magnitude — where the Doppler-boosted laser beam is focused. The simulations indicate that a secondary target at this focus would give clear SF-QED signatures in actual experiments. The study drew upon Berkeley Lab's diverse scientific resources, including its WarpX simulation code, which was developed for modeling advanced particle accelerators under the auspices of the U.S. Department of Energy's Exascale Computing Project... The discovery via WarpX of novel high-intensity laser-plasma interaction regimes could have benefits far beyond ideas for exploring strong-field quantum electrodynamics. These include the better understanding and design of plasma-based accelerators such as those being developed at the Berkeley Lab Laser Accelerator. More compact and less expensive than conventional accelerators of similar energy, they could eventually be game-changers in applications that range from extending the reach of high-energy physics and of penetrating photon sources for precision imaging, to implanting ions in semiconductors, treating cancer, developing new pharmaceuticals, and more. "It is gratifying to be able to contribute to the validation of new, potentially very impactful ideas via the use of our novel algorithms and codes," Vay said of the Berkeley Lab team's contributions to the study. "This is part of the beauty of collaborative team science." Long-time Slashdot reader fahrbot-bot has suggested that the article deserves an alternate title: "Article I Read Three Times and Still Don't Completely Understand."Read more of this story at Slashdot.
This week the Free Software Foundation (FSF) announced JShelter, "an anti-malware Web browser extension to mitigate potential threats from JavaScript, including fingerprinting, tracking, and data collection." The browser add-on — supported by NLnet Foundation's Next Generation Internet (NGI) Zero Privacy & Trust Enhancing Technologies fund — is currently "in development and the first release is available."This browser add-on will limit the potential for JavaScript programs to do harmful actions by restricting default behavior and adding a layer of control... Accessing cookies, performing fingerprinting to track users across multiple sites, revealing the local network address, or capturing the user's input before they submit a form are some examples of JavaScript's capabilities that can be used in harmful ways. JShelter adds a safety layer that allows the user to choose if a certain action should be forbidden on a site, or if it should be allowed with restrictions, such as reducing the accuracy of geolocation to the city area. This layer can also aid as a countermeasure against attacks targeting the browser, operating system, or hardware levels... [The extension] will ask — globally or per site — if specific native functions provided by the JavaScript engine and the Document Object Model (DOM) are allowed by the user. It will also link to an explanatory page for each function, to raise awareness of related threats. Depending on the function being addressed, the user will have the option to allow it, block it, or have it return a custom value... "Our browsers have become perhaps the most critical of tools we depend on, and yet the browser environment is far from healthy," says Michiel Leenaars, director of strategy at NLnet Foundation and coordinator of NGI Zero. "Dominant corporate behavior from a small amount of actors has been aggressively reshaping the evolution of the Web, and that is starting to wreak havoc. Despite an enormous systemic dependency, we as users have very little control over what browsers allow and share — leading to significant risk as the most powerful tools in the shed are essentially left unprotected for every casual Web site to abuse. JShelter is a great initiative to help empower us all, to help us gain better understanding and to better safeguard ourselves from obvious and otherwise unavoidable harm." The effort is part of a larger, multi-year campaign from FSF on JavaScript on the Web started in 2013, which among others includes the development of GNU LibreJS and outreach to users and developers about nonfree software inside the browser. The GNU LibreJS extension detects JavaScript web labels and assists users with running only JavaScript distributed under a free software license, according to their ethical convictions and individual preferences. "JShelter will help protect users from critical threats now, and contribute significantly to progress on the necessary longer-term cultural shift of moving away from nonfree JavaScript," said Ruben Rodriguez, former FSF chief technology officer. "This is a project I've been looking forward to for years, tired of dealing with all kinds of potential antifeatures in the browsers I use and distribute, and having to figure out some countermeasure for them with configuration changes, patches or extensions. Being able to wrap the JavaScript engine in a layer of protection is a game changer."Read more of this story at Slashdot.
Bleeping Computer has an update on the unique predicament of Compound, "an Ethereum-based money market protocol that enables users to earn interest or borrow assets against collateral." (Which "Due to an erroneous upgrade process, the decentralized finance platform ended up spilling out Ethereum assets worth $90 million to its users...")Compound's founder Robert Leshner urged users who received these Compound tokens in error to return the assets to the platform's Timelock contract. To incentivize users, Leshner stated that for their "white-hat" behaviour they may keep 10% as a reward. "Otherwise, it's being reported as income to the IRS, and most of you are doxxed," threatened the founder in the same tweet... Realizing that the original wording of his tweet may not have sat well with many, Leshner revised his tone: "I'm trying to do anything I can to help the community get some of its COMP back, and this was a bone-headed tweet / approach. That's on me," said Leshner. "Luckily, the community is much bigger, and smarter, than just me. I appreciate your ridicule and support...." Because the Compound protocol requires a seven-day governance process before any production changes can be made, Compound's only option at this time is to wait on users, hoping they will return the assets. CoinDesk reported Friday afternoon that "So far, two users have returned a total of 37,493 COMP tokens worth over $12 million at the time of writing." But on Saturday Leshner was tweeting out more thank-you's to additional white-hat users "returning COMP to the community."In an interview with CoinDesk, Leshner said the moral dilemma can be split roughly into two camps. "There's a lot of members of the community that view protocols like Compound as benefitting the entire ecosystem," he said. "And there are some users that don't necessarily care. The builder mindset is, 'This adds value, this is crucially important,' and the trader mindset is 'Money is money,' and that's the only ethos of crypto." He went on: "I'm personally hopeful users will return funds to the community. It's not my property, it's not their property, it's the community's property...." One suggestion from Twitter? "The first 5 people to return COMP get 1/5 pieces of Leshner NFT that can be combined Exodia style to summon Robert in real life.""This idea is crazy, and I'm in," Leshner tweeted, adding later that "Anyone who returns COMP to the community is an alien giga-chad; and if a squad of alien giga-chads ever summon me, I will appear." Leshner told CoinDesk:"I want to hear other people's views on this, because it's not my decision," he said. "This is a decision every user has to make themselves, and I think most of them are taking the view of, 'Haha, f**k you guys, it's your problem.'"Read more of this story at Slashdot.
Bleeping Computer reports on Compound, "an Ethereum-based money market protocol that enables users to earn interest or borrow assets against collateral." "Yesterday, due to an erroneous upgrade process, the decentralized finance platform ended up spilling out Ethereum assets worth $90 million to its users..."Compound's founder Robert Leshner urged users who received these Compound tokens in error to return the assets to the platform's Timelock contract. To incentivize users, Leshner stated that for their "white-hat" behaviour they may keep 10% as a reward. "Otherwise, it's being reported as income to the IRS, and most of you are doxxed," threatened the founder in the same tweet... Realizing that the original wording of his tweet may not have sat well with many, Leshner revised his tone: "I'm trying to do anything I can to help the community get some of its COMP back, and this was a bone-headed tweet / approach. That's on me," said Leshner. "Luckily, the community is much bigger, and smarter, than just me. I appreciate your ridicule and support...." Because the Compound protocol requires a seven-day governance process before any production changes can be made, Compound's only option at this time is to wait on users, hoping they will return the assets. CoinDesk reported Friday afternoon that "So far, two users have returned a total of 37,493 COMP tokens worth over $12 million at the time of writing." But on Saturday Leshner was tweeting out more thank-you's to additional white-hat users "returning COMP to the community."In an interview with CoinDesk, Leshner said the moral dilemma can be split roughly into two camps. "There's a lot of members of the community that view protocols like Compound as benefitting the entire ecosystem," he said. "And there are some users that don't necessarily care. The builder mindset is, 'This adds value, this is crucially important,' and the trader mindset is 'Money is money,' and that's the only ethos of crypto." He went on: "I'm personally hopeful users will return funds to the community. It's not my property, it's not their property, it's the community's property...." One suggestion from Twitter? "The first 5 people to return COMP get 1/5 pieces of Leshner NFT that can be combined Exodia style to summon Robert in real life.""This idea is crazy, and I'm in," Leshner tweeted, adding later that "Anyone who returns COMP to the community is an alien giga-chad; and if a squad of alien giga-chads ever summon me, I will appear." Leshner told CoinDesk:"I want to hear other people's views on this, because it's not my decision," he said. "This is a decision every user has to make themselves, and I think most of them are taking the view of, 'Haha, f**k you guys, it's your problem.'"Read more of this story at Slashdot.
In 1999 Los Angeles Times reporter Michael Hiltzik won a Pulitzer Prize. Now a business columnist for the Times, he writes that "new evidence undermines the COVID lab-leak theory — but the press keeps pushing it." A paper posted online [in September] chiefly by researchers at France's Institut Pasteur and under consideration for publication in a Nature journal...reports that three viruses were found in bats living in caves in northern Laos with features very similar to SARS-CoV-2, the virus responsible for COVID-19. As Nature reported, those viruses are "more similar to SARS-CoV-2 than any known viruses." Another paper, posted in late August by researchers from the Wuhan lab, reports on viruses found in rats also with features similar to those that make SARS-CoV-2 infectious in humans. Two other papers published on the discussion forum virological.org present evidence that the virus jumped from animals to humans at more than one animal market in Wuhan, not just the Huanan seafood market. Given that these so-called wet markets have long been suspected as transmission points of viruses from animals to humans because they sell potentially infected animals, that makes the laboratory origin vastly less likely, according to a co-author of one of the papers. "That a laboratory leak would find its way to the very place where you would expect to find a zoonotic transmission is quite unlikely," Joel Wertheim, an associate professor at UC San Diego's medical school, told me. "To have it find its way to multiple markets, the exact place where you would expect to see the introduction, is unbelievably unlikely." As virologist Robert F. Garry of Tulane, one of Wertheim's co-authors, told Nature, the finding is "a dagger into the heart" of the lab-leak hypothesis.Read more of this story at Slashdot.
"The expiration of a key digital encryption service on Thursday sent major tech companies nationwide scrambling to deal with internet outages that affected millions of online users," reports the Washington Examiner. The expiring certificate was issued by Let's Encrypt — though ZDNet notes there's been lots of warnings about its pending expiration:Digital Shadows senior cyber threat analyst Sean Nikkel told ZDNet that Let's Encrypt put everyone on notice back in May about the expiration of the Root CA Thursday and offered alternatives and workarounds to ensure that devices would not be affected during the changeover. They have also kept a running forum thread open on this issue with fairly quick responses, Nikkel added. Thursday night the Washington Examiner describes what happened when the big day arrived:Tech giants — such as Amazon, Google, Microsoft, and Cisco, as well as many smaller tech companies — were still battling with an endless array of issues by the end of the night... At least 2 million people have seen an error message on their phones, computers, or smart gadgets in the past 24 hours detailing some internet connectivity problems due to the certificate issue, according to Scott Helme, an internet security researcher and well-known cybersecurity expert. "So many people have been affected, even if it's only the inconvenience of not being able to visit certain websites or some of their apps not working," Helme said. "This issue has been going on for many hours, and some companies are only just getting around to fixing it, even big companies with a lot of resources. It's clearly not going smoothly," he added. There was an expectation before the certificate expired, Helme said, that the problem would be limited to gadgets and devices bought before 2017 that use the Let's Encrypt digital certificate and haven't updated their software. However, many users faced issues on Thursday despite having the most cutting-edge devices and software on hand. Dozens of major tech products and services have been significantly affected by the certificate expiration, such as cloud computing services for Amazon, Google, and Microsoft; IT and cloud security services for Cisco; sellers unable to log in on Shopify; games on RocketLeague; and workflows on Monday.com. Security researcher Scott Helme also told ZDNet he'd also confirmed issues at many other companies, including Guardian Firewall, Auth0, QuickBooks, and Heroku — but there might be many more beyond that:"For the affected companies, it's not like everything is down, but they're certainly having service issues and have incidents open with staff working to resolve. In many ways, I've been talking about this for over a year since it last happened, but it's a difficult problem to identify. it's like looking for something that could cause a fire: it's really obvious when you can see the smoke...!" Digital certificates expert Tim Callan added that the popularity of DevOps-friendly architectures like containerization, virtualization and cloud has greatly increased the number of certificates the enterprise needs while radically decreasing their average lifespan. "That means many more expiration events, much more administration time required, and greatly increased risk of a failed renewal," he said.Read more of this story at Slashdot.
Miami is a city "that unblushingly loves rule-breaking and money," according to a new article in New York magazine, wondering whether Miami could ever really replace Silicon Valley as "a more natural home — and maybe even an accelerant — for the next generation of disruption fiends."On December 4, Delian Asparouhov, a venture capitalist in San Francisco, posted, "ok guys hear me out, what if we move silicon valley to Miami," and Miami mayor Francis Suarez, lying in bed at home in Coconut Grove, replied, "How can I help...?" Ever since, Suarez has been on a mission to rebrand Miami — long a place to spend money, rather than earn it — as a haven for founders who feel underappreciated in more calcified urban climes. He bought (with money from a venture capitalist) billboards in San Francisco featuring his Twitter handle and an invitation to "DM me." As he put it, "I saw the tsunami coming, got out my surfboard, and started paddling." The flood of new Miamians who have arrived, full or part time, during the pandemic includes tech investors (Peter Thiel, David Sacks), cryptocurrency bulls (Anthony Pompliano, Ari Paul), new-media tycoons (Bryan Goldberg, Dave Portnoy), start-up founders (Alexandra Wilkis Wilson, Steven Galanis), and many more who aren't yet billionaires but think the Magic City will give them their best shot... The boom is visible in the city's crane-spiked skyline, too, with deals for Spotify, Microsoft, Apple, and TikTok either signed or in the offing. In greater South Florida, a related incursion by the finance industry — Goldman Sachs, Citadel, Elliott — is in full swing... In July, according to Redfin, Miami was the top migration destination for home buyers in the U.S., while San Francisco had the largest homeowner exodus. Suarez told me about a playful text he recently received from the mayor there, London Breed: "Stop stealing my techies." He says he replied, "Sorry, London, I love you, but no." Already, Suarez has made gains in turning Miami into the most cryptocurrency-friendly city in the U.S. In the past six months, the world's largest bitcoin conference happened here; a crypto exchange called FTX paid $135 million for the naming rights to the NBA arena (edging out the hometown porn studio BangBros); and a city-sanctioned currency called MiamiCoin debuted, generating millions in fees for municipal coffers. Suarez also accepts campaign contributions in bitcoin. He's running for reelection this November and looks certain to win, thanks in part to hefty donations and cheerleading from Silicon Valley eminences... The tech case for Miami isn't wholly persuasive. (The most notable local start-up is a company that sells kibble.) But it is infectious. The article notes, for example, that "For all his enthusiasm, Suarez acknowledges that a robust tech ecosystem needs one thing he can't simply market into existence: a standout university" (with a world-class engineering department to fuel startups). Suarez's solution appears to be offering Miami land parcels to Florida Polytechnic University for a possible satellite campus teaching DeFi/crypto/blockchain/NFT technologies. The article also points out the possibility of global warming-induced hurricanes and rising sea levels, the city's widening income gap and rising cost of living, and Miami's record number of pediatric-ICU COVID admissions.Read more of this story at Slashdot.
"American luxury retailer Neiman Marcus Group has just disclosed a major data breach impacting approximately 4.6 million customers," reports Ars Technica. "The breach occurred sometime in May 2020 after 'an unauthorized party' obtained the personal information of some Neiman Marcus customers from their online accounts."Neiman Marcus is working with law enforcement agencies and has selected cybersecurity company Mandiant to assist with the investigation. Thursday, Neiman Marcus disclosed that its 2020 data breach impacted about 4.6 million customers with Neiman Marcus online accounts. The personal information of these customers was potentially compromised during the incident. The bits of information include: - Names, addresses, contact information - Usernames and passwords of Neiman Marcus online accounts - Payment card numbers and expiration dates (although no CVV numbers) - Neiman Marcus virtual gift card numbers (without PINs) - Security questions of Neiman Marcus online accounts "Although the data breach occurred over a year ago, Neiman Marcus states it became aware of the incident this September."Read more of this story at Slashdot.
"Like a half-filled bag of salty snacks, there simply aren't enough semiconductor chips to go around these days," writes CNET. "At General Motors, the crisis struck one of its biggest cash cows as Cadillac confirmed too few chips led it to scrap the Super Cruise [hands-free highway driving] feature from its flagship Escalade SUV." Slashdot reader McGruber writes:A Cadillac spokesperson said "Super Cruise is an important feature for the Cadillac Escalade program. Although it's temporarily unavailable at the start of regular production due to the industry-wide shortage of semiconductors, we're confident in our team's ability to find creative solutions to mitigate the supply chain situation and resume offering the feature for our customers as soon as possible." CNET adds that in addition, "Essentially, Super Cruise is unavailable across GM's entire lineup of cars."Read more of this story at Slashdot.
An anonymous reader writes: This week saw the annual check-in with Linux creator Linus Torvalds at the Open Source Summit North America, this year held in Seattle (as well as virtually). Torvalds took the stage for the event's traditional half-hour of questions from Dirk Hohndel, an early Linux contributor (now also the chief open source officer and vice president at VMware) in an afternoon keynote session.... And the theme of community seemed to keep coming up — notably about what that community has ultimately taught Linus Torvalds. (For example, while Torvalds said he'd originally planned on naming the operating system Freax, "I am eternally grateful for two other people for having more taste than I did.") But even then Linux was a project that "I probably would've left behind," Torvalds remembered, "if it was only up to me." Torvalds credits the larger community for its interest (and patches) "that just kept the motivation going. And here we are 30 years later, and it's still what keeps the motivation going. Because as far as I'm concerned, it's been done for 29 of those 30 years, and every single feature ever since has been about things that other people needed or wanted or were interested in." Torvalds also says "I'm very proud of the fact that there's actually a fair number of people still involved with the kernel that came in in 1991 — I mean, literally 30 years ago.... I think that's a testament to how good the community, on the whole, has been, and how much fun it's been." And Torvalds says you can see that sense of fun in discussions about writing some Linux kernel modules using Rust. "From a technical angle, does that make sense?" Torvalds asked. "Who knows. That's not the point. The point is for a project to stay interesting — and to stay fun — you have to play with it.... "Probably next year, we'll start seeing some first intrepid modules being written in Rust, and maybe being integrated in the mainline kernel." "I really love C," Torvalds said at one point. "I think C is a great language, and C is, to me, is really a way to control the hardware at a fairly low level..."Yet Torvalds also saw Hohndel's analogy that it can be like juggling chainsaws. As a long-time watcher of C, Torvalds knows that C's subtle type interactions "are not always logical" and "are pitfalls for pretty much anybody. And they're easy to overlook, and in the kernel that's not always a good thing." Torvalds called Rust "the first language I saw which looked like this might actually be a solution"Read more of this story at Slashdot.
Last month U.S. President Biden issued "a mandate that all companies with more than 100 workers require vaccination or weekly testing," remembers the New York Times, and "also moved to mandate shots for health care workers, federal contractors and a vast majority of federal workers, who could face disciplinary measures if they refuse." So what happened next?Until now, the biggest unknown about mandating COVID-19 vaccines in workplaces has been whether such requirements would lead to compliance or to significant departures by workers unwilling to get shots — at a time when many places were already facing staffing shortages. So far, a number of early mandates show few indications of large-scale resistance. "Mandates are working," said John Swartzberg, a physician and professor at the School of Public Health at the University of California, Berkeley. "If you define 'working' by the percentage of people getting vaccinated and not leaving their jobs in droves." Unlike other incentives — "prizes, perks, doughnuts, beer, we've seen just about everything offered to get people vaccinated" — mandates are among the few levers that historically have been effective in increasing compliance, said Swartzberg, who has tracked national efforts to increase rates of inoculation... [T]he pushback has been less dramatic than initially feared. At Houston Methodist Hospital, which mandated vaccines this summer for 25,000 employees, for example, only about 0.6% of employees quit or were fired. Dorit Reiss, a professor at the University of California Hastings College of the Law in San Francisco who is tracking employer mandates, said that, despite their propensity for backlash and litigation, mandates generally increase vaccine compliance because the knowledge that an order is coming has often been enough to prompt workers to seek inoculation before courts even can weigh in. Mandates are becoming more commonplace as several other states have imposed requirements for workers. In New York, Rhode Island, Maine, Oregon and the District of Columbia, health care workers must get vaccinated to remain employed. The Times's article (original URL here) provides statistics from specific examples: "When Tyson Foods announced Aug. 3 that it would require coronavirus vaccines for all 120,000 of its U.S. employees, less than half of its workforce was inoculated. Nearly two months later, 91% of the company's U.S. workforce is fully vaccinated, said Dr. Claudia Coplein, Tyson's chief medical officer." "In New York, where some 650,000 employees at hospitals and nursing homes were to have received at least one vaccine dose by the start of this week, 92% were in compliance, state officials said. That was up significantly from a week ago, when 82% of the state's nursing home workers and at least 84% of its hospital workers had received at least one dose." "As California's requirement that all health care workers be vaccinated against the coronavirus took effect Thursday, major health systems reported that the mandate had helped boost their vaccination rates to 90% or higher."Read more of this story at Slashdot.
Netflix's co-CEO revealed a list Monday showing its top shows and movies of all-time, reports NBC News. The list revealed that the 19th-century drama Bridgerton "was its most watched TV series ever, with 82 million subscribers tuning in for at least two minutes in its first 28 days on the service..."French series "Lupin: Part 1" and season one of "The Witcher," a fantasy series starring Henry Cavill, tied for second on the list, with 76 million accounts. Among movies, the action film Extraction earned the No. 1 spot. The film about a captured CIA agent was watched by 99 million accounts in the first 28 days, Netflix said. Bird Box, a post-apocalyptic horror film, and the action-comedy Spenser Confidential were the second- and third-most popular films, according to the company. All the films and series on the list were Netflix originals. Using a different metric — which shows attracted the most hours of actual viewing time — Bridgerton still came in #1 for TV shows, followed by "Money Heist: Part 4" and "Stranger Things Season 3." And the top three movies (based on hours of viewing) were Bird Box, Extraction, and Martin Scorsese's The Irishman.Read more of this story at Slashdot.
ZDNet reports:Some of the world's largest tech giants — Amazon, Google, Microsoft, IBM, Salesforce/Slack, Atlassian, SAP, and Cisco — have joined forces to establish the Trusted Cloud Principles in what they are claiming is their commitment to protecting the rights of their customers... Some of the specific principles that have been founded by the signatories include governments should seek data directly from enterprise customers first, rather than cloud providers, other than in "exceptional circumstances"; customers should have a right to notice when governments seek to access customer data directly from cloud service providers; and there should be a clear process for cloud providers to challenge government access requests for customers' data, including notifying relevant data protection authorities, to protect customers' interests. Also outlined in the principles is the point that governments should create mechanisms to raise and resolve conflicts with each other such that cloud service providers' legal compliance in one country does not amount to a violation of law in another; and governments should support cross-border data flows. At the same time, the cloud service providers acknowledge that under the principles they recognise international human rights law enshrines a right to privacy, and the importance of customer trust and customers' control and security of their data. The signatories also said they commit to supporting laws that allow governments to request data through a transparent process that abides by human right standards; international legal frameworks to resolve conflicting laws related to data access, privacy, and sovereignty; and improved rules and regulations at the national and international levels that protect the safety, privacy, and security of cloud customers and their ownership of data... The Trusted Cloud Principles come days after a separate data cloud framework was stood up between Amazon Web Services, Google, IBM, Microsoft and other major tech giants, plus the EDM Council, a cross-industry trade association for data management and analytics. Under the Cloud Data Management Capabilities (CDMC) framework there are six components, 14 capabilities, and 37 sub-capabilities that sets out cloud data management capabilities, standards, and best practices for cloud, multi-cloud, and hybrid-cloud implementations while also incorporating automated key controls for protecting sensitive data.Read more of this story at Slashdot.
The American media company Ozy "boasted of a large audience for its general interest website, its newsletters and its videos," remembers the New York Times, calling it "a Gen X dream of what millennial media ought to be: earnest, policy-focused, inclusive, slickly sans-serif." Ozy was founded in 2013 with seed funding from Laurene Powell Jobs, followed by further investments that by 2020 were over $83 million (according to the data service PitchBook). But the Times reports that something strange happened last winter while Ozy was pursuing a $40 million investment from Goldman Sachs:Ozy said it had a great relationship with YouTube, where many of its videos attracted more than a million views... That's what the Zoom videoconference on February 2 that Ozy arranged between the Goldman Sachs asset management division and YouTube was supposed to be about. The scheduled participants included Alex Piper, the head of unscripted programming for YouTube Originals. He was running late and apologized to the Goldman Sachs team, saying he'd had trouble logging onto Zoom, and he suggested that the meeting be moved to a conference call, according to four people who were briefed on the meeting, all of whom spoke on the condition of anonymity to reveal details of a private discussion. Once everyone had made the switch to an old-fashioned conference call, the guest told the bankers what they had been wanting to hear: that Ozy was a great success on YouTube, racking up significant views and ad dollars, and that [CEO/co-founder Carlos] Watson was as good a leader as he seemed to be. As he spoke, however, the man's voice began to sound strange to the Goldman Sachs team, as though it might have been digitally altered, the four people said. After the meeting, someone on the Goldman Sachs side reached out to Mr. Piper, not through the Gmail address that Mr. Watson had provided before the meeting, but through Mr. Piper's assistant at YouTube. That's when things got weird. A confused Mr. Piper told the Goldman Sachs investor that he had never spoken with her before. Someone else, it seemed, had been playing the part of Mr. Piper on the call with Ozy. Four people told the Times that CEO Watson later said the voice on the call belonged to Ozy co-founder/chief operating officer Samir Rao and attributed the incident to a temporary mental health crisis. Ozy's chairman of the board called it "an unfortunate one-time event."But in addition the site's editor-at-large — who was fired earlier this year — says Ozy's claims of 50 million unique users a month "seemed high," according to the Times:In 2017, BuzzFeed News reported that Ozy had been among the publishers buying web traffic from "low-quality sources," companies using systems that caused articles to pop open under a reader's browser without the reader's knowledge. Ozy said it had been buying the traffic to build its email lists and had not billed advertisers for those views... Ozy doesn't rely on standard measurements of traffic, but the best known service, Comscore, shows nothing close to the company's public claims. According to Comscore, Ozy reached nearly 2.5 million people during some months in 2018, but only 230,000 people in June 2021 and 479,000 in July. Mr. Watson called the Comscore numbers "incomplete," noting they don't include impressions on platforms ranging from social media to television and podcasts. The Times' story "triggered canceled shows, an internal investigation, investor concern and high-level departures at the company," ABC News reported Friday. And the same day the Times delivered one more update — that Ozy was shutting down:In an article in The Times on Thursday, Brad Bessey, an Emmy-winning executive producer, and Heidi Clements, a longtime TV writer, said Ozy executives had misled them while they were working on "The Carlos Watson Show," Mr. Watson's talk show, for the company. Specifically, they said, executives told them that the show would appear on the cable network A&E. Mr. Bessey resigned when he learned there was no such deal in place, and the show ended up appearing on YouTube and the Ozy website. Also this week: Advertisers including Chevrolet, Walmart, Facebook, Target and Goldman Sachs itself — many of which had been paying for placement on "The Carlos Watson Show" — hit the brakes on their spending with Ozy. By Friday afternoon, Mr. Watson and the other remaining board member, Michael Moe (another high-profile investment figure, who had published a book called "Finding the Next Starbucks"), concluded that the company could not recover and issued the farewell statement through a spokeswoman.... The Ozy staff received the news that the company was no more on Friday afternoon.Read more of this story at Slashdot.
"Days before Germany's federal elections, Facebook took what it called an unprecedented step: the removal of a series of accounts that worked together to spread COVID-19 misinformation and encourage violent responses to COVID restrictions," reports the Associated Press. The crackdown, announced Sept. 16, was the first use of Facebook's new "coordinated social harm" policy aimed at stopping not state-sponsored disinformation campaigns but otherwise typical users who have mounted an increasingly sophisticated effort to sidestep rules on hate speech or misinformation. In the case of the German network, the nearly 150 accounts, pages and groups were linked to the so-called Querdenken movement, a loose coalition that has protested lockdown measures in Germany and includes vaccine and mask opponents, conspiracy theorists and some far-right extremists. Facebook touted the move as an innovative response to potentially harmful content; far-right commenters condemned it as censorship. But a review of the content that was removed — as well as the many more Querdenken posts that are still available — reveals Facebook's action to be modest at best. At worst, critics say, it could have been a ploy to counter complaints that it doesn't do enough to stop harmful content. "This action appears rather to be motivated by Facebook's desire to demonstrate action to policymakers in the days before an election, not a comprehensive effort to serve the public," concluded researchers at Reset, a U.K.-based nonprofit that has criticized social media's role in democratic discourse.... Even with the new rule, a problem remains with the takedowns: they don't make it clear what harmful material remains up on Facebook, making it difficult to determine just what the social network is accomplishing. Case in point: the Querdenken network. Reset had already been monitoring the accounts removed by Facebook and issued a report that concluded only a small portion of content relating to Querdenken was taken down while many similar posts were allowed to stay up... Facebook initially declined to provide examples of the Querdenken content it removed, but ultimately released four posts to the Associated Press that weren't dissimilar to content still available on Facebook... Reset's analysis of comments removed by Facebook found that many were actually written by people trying to rebut Querdenken arguments, and did not include misinformation.Read more of this story at Slashdot.
Slashdot