Slashdot

The Washington Post reports that the U.S. government "plans to expand its use of facial recognition to pursue criminals and scan for threats, an internal survey has found, even as concerns grow about the technology's potential for contributing to improper surveillance and false arrests."Ten federal agencies — the departments of Agriculture, Commerce, Defense, Homeland Security, Health and Human Services, Interior, Justice, State, Treasury and Veterans Affairs — told the Government Accountability Office they intend to grow their facial recognition capabilities by 2023, the GAO said in a report posted to its website Tuesday. Most of the agencies use face-scanning technology so employees can unlock their phones and laptops or access buildings, though a growing number said they are using the software to track people and investigate crime. The Department of Agriculture, for instance, said it wants to use it to monitor live surveillance feeds at its facilities and send an alert if it spots any faces also found on a watch list... The GAO said in June that 20 federal agencies have used either internally developed or privately run facial recognition software, even though 13 of those agencies said they did not "have awareness" of which private systems they used and had therefore "not fully assessed the potential risks ... to privacy and accuracy." In the current report, the GAO said several agencies, including the Justice Department, the Air Force and Immigration and Customs Enforcement, reported that they had used facial recognition software from Clearview AI, a firm that has faced lawsuits from privacy groups and legal demands from Google and Facebook after it copied billions of facial images from social media without their approval... Many federal agencies said they used the software by requesting that officials in state and local governments run searches on their own software and report the results. Many searches were routed through a nationwide network of "fusion centers," which local police and federal investigators use to share information on potential threats or terrorist attacks... U.S. Customs and Border Protection officials, who have called the technology "the way of the future," said earlier this month that they had run facial recognition scans on more than 88 million travelers at airports, cruise ports and border crossings. The systems, the officials said, have detected 850 impostors since 2018 — or about 1 in every 103,000 faces scanned.Read more of this story at Slashdot.

Megan Borovicka forget all about her Facebook account after 2013, reports the Washington Post. "But Facebook never forgot about her."The 42-year-old Oakland, California, lawyer never picked any "friends," posted any status updates, liked any photos or even opened the Facebook app on her phone. Yet over the last decade, Facebook has used an invisible data vacuum to suction up very specific details about her life — from her brand of underwear to where she received her paycheck... It isn't just the Facebook app that's gobbling up your information. Facebook is so big, it has convinced millions of other businesses, apps and websites to also snoop on its behalf. Even when you're not actively using Facebook. Even when you're not online. Even, perhaps, if you've never had a Facebook account. Here's how it works: Facebook provides its business partners tracking software they embed in apps, websites and loyalty programs. Any business or group that needs to do digital advertising has little choice but to feed your activities into Facebook's vacuum: your grocer, politicians and, yes, even the paywall page for this newspaper's website. Behind the scenes, Facebook takes in this data and tries to match it up to your account. It sits under your name in a part of your profile your friends can't see, but Facebook uses to shape your experience online. Among the 100 most popular smartphone apps, you can find Facebook software in 61 of them, app research firm Sensor Tower told me. Facebook also has trackers in about 25 percent of websites, according to privacy software maker Ghostery... Facebook got a notice when I opened Hulu to watch TV. Facebook knew when I went shopping for paint, a rocking chair and fancy beans. Facebook learned I read the websites What To Expect, Lullaby Trust and Happiest Baby. Over two weeks, Facebook tracked me on at least 95 different apps, websites and businesses, and those are just the ones I know about. It was as if Facebook had hired a private eye to prepare a dossier about my life. Why does Facebook think that's okay? The company emailed me answers about how its tracking technology works, but declined my requests to interview its chief privacy officer or other executives about its alleged monopoly.... Who in their right mind thought they were signing up for this much surveillance back when they first joined Facebook? The article points out that in 2014 Facebook began allowing its advertisers to target users based on websites they'd visited...and now also gathers more data about users from other companies. And "While many companies were using browser cookies, which could be easily cleared or blocked, Facebook tied what it learned to real identities — the names on our Facebook profiles." And beyond that, companies "can report other identifying information to Facebook like your email to help it figure out who you are... If you've never had a Facebook account at all? It may still be watching." It's a lucrative business, the Post points out. "In 2013, the average American's data was worth about $19 per year in advertising sales to Facebook, according to its financial statements. In 2020, your data was worth $164 per year." What does Facebook know about your off-Facebook activity? You can find out at this URL. If you just want to stop them from giving this information to advertisers, the right side of that page has an option to "Clear History — Disconnect off-Facebook activity history from your account." But you then have to also click "More Options" and then "Manage Future Activity" to also stop them from later matching up more of your off-Facebook activity to your profile for advertisers. If you try to select it, Facebook warns what you'll be missing — that "Keeping your future off-Facebook activity saved with your account allows us to personalize your experience." And proceeding anyways then generates a popup reminding you that "We'll still receive activity from the businesses and organizations you visit. It may be used for measurement purposes and to make improvements to our ads systems, but it will be disconnected from your account." And apparently your activity on Oculus isn't covered, and will still remain connected to your Facebook account.Read more of this story at Slashdot.

CNET reports:A fossil discovered during a police raid in Brazil has turned out to be one of the best-preserved flying reptiles found yet, researchers say. The remains belong to a tapejarid, a toothless pterosaur from the early Cretaceous period known for its huge cranial crest composed partly of bone and partly of soft tissue. Skulls and partial skeletons of Brazilian tapejarids have turned up before, but this fossil was found with more than 90% of its skeleton intact, along with some soft tissue in place around the bones. "This fossil is special because it is the most complete pterosaur from Brazil and it brings new information about the anatomy and ecology of this animal," says Victor Beccari, co-author of a study on the find published Wednesday in the open-access journal PLOS One. Brazilian federal police found the tapejarid fossil while investigating an illegal fossil trade operation in 2013. They recovered 3,000 specimens kept in storage units in the states of São Paulo, Minas Gerais and Rio de Janeiro and transferred them to the Geosciences Institute of the University of São Paulo for study. Since 1942, Brazilian law has categorized fossils as state property, as they're considered part of the country's geological heritage and forbidden from being sold commercially. The tapejarid had a wingspan of more than 8 feet (2.5 meters) and stood 3.2 feet (1 meter) tall. Its head crest accounted for 40% of its height.Read more of this story at Slashdot.

"Academic researchers discover that nearly 40% of the code suggestions by GitHub's Copilot tool are erroneous, from a security point of view..." writes TechRadar:To help quantify the value-add of the system, the academic researchers created 89 different scenarios for Copilot to suggest code for, which produced over 1600 programs. Reviewing them, the researchers discovered that almost 40% were vulnerable in one way or another... Since Copilot draws on publicly available code in GitHub repositories, the researchers theorize that the generated vulnerable code could perhaps just be the result of the system mimicking the behavior of buggy code in the repositories. Furthermore, the researchers note that in addition to perhaps inheriting buggy training data, Copilot also fails to consider the age of the training data. "What is 'best practice' at the time of writing may slowly become 'bad practice' as the cybersecurity landscape evolves." Visual Studio magazine highlights another concern. 39.33 percent of the top options were vulnerable, the paper noted, adding that "The security of the top options are particularly important — novice users may have more confidence to accept the 'best' suggestion....""There is no question that next-generation 'auto-complete' tools like GitHub Copilot will increase the productivity of software developers," the authors (Hammond Pearce, Baleegh Ahmad, Benjamin Tan, Brendan Dolan-Gavitt and Ramesh Karri) say in conclusion. "However, while Copilot can rapidly generate prodigious amounts of code, our conclusions reveal that developers should remain vigilant ('awake') when using Copilot as a co-pilot. Ideally, Copilot should be paired with appropriate security-aware tooling during both training and generation to minimize the risk of introducing security vulnerabilities.Read more of this story at Slashdot.

The Associated Press reports: Cuba's government said Thursday it will recognize — and regulate — cryptocurrencies for payments on the island. A resolution published in the Official Gazette said the Central Bank will set rules for such currencies and determine how to license providers of related services within Cuba. The popularity of such currencies has grown among a technologically savvy group in Cuba as it has become harder to use dollars, in part because of toughened embargo rules imposed under former President Donald Trump... Because [cryptocurrencies] can be used for long-distance transactions that are supposedly anonymous, they are often popular with people attempting to evade government regulations — presumably including U.S. restrictions on sending money to places such as Cuba.Read more of this story at Slashdot.

Slashdot reader Charlotte Web quotes CNN: Elizabeth Holmes, the disgraced founder and former CEO of Theranos whose criminal trial is set to begin in a matter of days, is likely to defend herself by claiming she was the victim of a decade-long abusive relationship with her ex-boyfriend, also a former Theranos executive, court documents reveal. According to the newly unsealed documents, Holmes plans to have an expert testify about the psychological, emotional and sexual abuse she experienced from Ramesh "Sunny" Balwani, who served as the company's COO, including the abusive tactics he allegedly used to "exert control" as well as the psychological impact. Balwani, according to a court filing, "adamantly denies" the claims. Holmes is also "likely to testify herself to the reasons why she believed, relied on, and deferred to Mr. Balwani," according to a filing from Holmes' attorney. In a separate filing from Balwani's attorneys, they acknowledge Holmes' plans to introduce evidence that Balwani verbally disparaged her, controlled what she ate, how she dressed, and who she interacted with, "essentially dominating her and erasing her capacity to make decisions." The filing calls the allegations "deeply offensive to Mr. Balwani" and "devastating personally to him...." Balwani, a former software executive, joined Theranos in 2009, becoming Holmes' second-in-command. Nearly 20 years Holmes' senior, the pair had met in 2002 on a trip to Beijing through Stanford University's Mandarin program. Balwani's case is slated to begin in 2022 after the completion of Holmes' trial.Read more of this story at Slashdot.

Long-time Slashdot reader schwit1 quotes a new press release from Massachusetts General Hospital: Cutting 20% of sugar from packaged foods and 40% from beverages could prevent 2.48 million cardiovascular disease events (such as strokes, heart attacks, cardiac arrests), 490,000 cardiovascular deaths, and 750,000 diabetes cases in the U.S. over the lifetime of the adult population, reports a study published in Circulation... More than two in five American adults are obese, one in two have diabetes or prediabetes, and nearly one in two have cardiovascular disease, with those from lower-income groups being disproportionately burdened. Their model suggests that after 10 years, America could save $4.28 billion in total net healthcare costs, and $118.04 billion over the lifetime of the current adult population (ages 35 to 79), according to the announcement. It also points out that America "lags other countries in implementing strong sugar-reduction policies." And the study's co-senior author (also a dean of the Friedman School of Nutrition Science and Policy at Tufts University) says their findings "suggest it's time to implement a national program with voluntary sugar reduction targets, which can generate major improvements in health, health disparities, and healthcare spending in less than a decade."Read more of this story at Slashdot.

Five years ago Linus Torvalds commemorated Linux's 25th anniversary in an interview with ZDNet's Steven J. Vaughan-Nichols. Now that Linux is celebrating its 30th birthday, Vaughan-Nichols interviewed Torvalds again, who makes an important philosophical point:Trying to look at the bigger picture, Torvalds now thinks the period in early 1992 — when Linux switched to using the Gnu Public License version 2 (GPLv2) — was especially important. He recalls, "It wasn't the original license, but I'm convinced it's a big part of why Linux became so widespread. Not everybody loves the GPL, and I've had my own issues with the FSF [Free Software Foundation], but I do think the GPLv2 has been a huge deal, and people shouldn't dismiss the licensing issues." He adds: "I think the companies getting involved has been hugely important — and that may sound so obvious as to be trite and stupid, but some corners of the open-source community have been fairly negative to any commercial involvement." Torvalds points out that from its earliest days Linux has experienced "fairly continual" interest from major companies. The interview also revisits Linux's version control systems and the name Torvalds had originally chosen for the operating system back in 1991. ("Freax," for "Free Unix.") But 10 years ago, the same reporter got a surprise when he'd asked Torvalds where he thought Linux would be on its 40th birthday. Torvalds' answer? "Bah. I don't plan that far ahead. I can barely keep my calendar for the next week in mind. I really have no idea." So this week Steven J. Vaughan-Nichols instead asked Torvalds how he's envisioning his own future:Looking ahead, Torvalds sees himself keeping on. "I'm 51 years young, I enjoy what I'm doing. What would I do if I didn't do Linux? Puttering around in the garden? Not bloody likely. Slashdot reader juul_advocate shares some context. Torvalds was also contacted by IT Wire to get his thoughts on the 30th birthday of Linux. "There's literally a few people who are still active and around that got involved in '91..." Torvalds told them:"I like having been around for that long, and it's also nice how many other people have actually been around for almost that long... "But I just don't have anything new to say about it, I'm afraid. And while today is an anniversary date, it's not even the only one. This was the anniversary of the first public announcement, but it wasn't actually the actual first code drop. That came later — 17 September. "And even that second anniversary isn't the 'last' anniversary, because the Linux 0.01 code drop on 17 September was only privately announced to people who had shown some interest from the first announcement. "So the first actually public and real *announced* code drop was 5 October 1991, which is when 0.02 was dropped. So I actually have three anniversaries, and they are all equally valid in my mind."Read more of this story at Slashdot.

California Bay Area space startup Astra "attempted its third orbital test flight today, sending its two-stage Launch Vehicle 0006 skyward from the Pacific Spaceport Complex on Alaska's Kodiak Island at 6:35 p.m. EDT (2235 GMT)," reports Space.com. "The rocket suffered an anomaly about 2.5 minutes after liftoff, however, and the flight was terminated."Something appeared to be wrong from the beginning, as Launch Vehicle 0006 lurched sideways at the moment of liftoff rather than rise smoothly off the pad. But the rocket recovered and soared high into the Alaska sky, reaching an altitude of about 20.5 miles (33 kilometers) before shutting down, according to real-time data Astra provided during a webcast of the launch. The mission was terminated right around "max q," the point when the mechanical stresses on a rocket are highest. A camera mounted on Launch Vehicle 0006 appeared to show a piece of the booster breaking loose around that time. "Although we did not achieve our primary objective today, our team will work hard to determine what happened here," Carolina Grossman, director of product management at Astra, said during today's launch webcast. "And as we dig into the flight data, we are optimistic about the future and our next attempt...." Initial analyses show that one of the rocket's five first-stage engines failed about 1 second after liftoff, for reasons that weren't immediately clear, Astra co-founder, chairman and CEO Chris Kemp said in a short postflight briefing this evening... "It was obviously not successful at putting anything in orbit, but it was a flight where we learned a tremendous amount of obviously things we need to look into as we prepare to return to Kodiak and fly again," he added... [T]oday's launch was the first of two booked by the U.S. Space Force; the second was expected to lift off later this year, though that timeline could end up shifting a bit. Astra holds a number of other contracts as well: The company has signed deals for more than 50 launches that together represent more than $150 million in revenue, Kemp told Space.com last month... And over the long haul, the company plans to ramp up its launch cadence to an unprecedented level, potentially transforming humanity's access to space. "Our next objective is monthly, then weekly, and finally daily space delivery," Astra co-founder and chief technology officer Adam London said...Read more of this story at Slashdot.

"Toyota has apologised for the 'overconfidence' of a self-driving bus," reports the Guardian — after the slow-moving bus hit a Paralympic judo expert. Toyota added that it would temporarily suspend the service, with Toyota's president saying the event "shows that autonomous vehicles are not yet realistic for normal roads."The Japanese athlete, Aramitsu Kitazono, will be unable to compete in his 81kg category this weekend after being left with cuts and bruises following the impact with the "e-Palette" vehicle... As part of its sponsorship of Tokyo 2020, Toyota has been showcasing its autonomous vehicles via a shuttle service, which has been running around the clock in the athletes' village. On Thursday, however, one of the buses pulled away from a T-junction and drove through a pedestrian crossing while Kitazono, a visually impaired athlete, was walking across. Tokyo police said that vehicle operators had told them they "were aware that a person was there but thought [the person] would [realize that a bus was coming] and stop crossing the [street]", according to the Asahi Shimbun newspaper. CNN cites reports that the vehicle was under manual control at the time of the accident, adding that the vehicle "was barely moving, but it still managed to collide with a visually-impaired athlete at the Paralympic Games, raising potential concerns about the limitations of autonomous driving technology."Read more of this story at Slashdot.

"While workers who want to stay at home forever have been especially vocal about their demands, a silent majority of Americans do want to get back to the office, at least for a few days a week..." reports the New York Times. The article, shared by long-time Slashdot reader gollum123, cites the opinions of workers in a variety of industries.In a national survey of more than 950 workers, conducted in mid-August by Morning Consult on behalf of The New York Times, 31 percent said they would prefer to work from home full time. By comparison, 45 percent said they wanted to be in a workplace or an office full time. The remaining 24 percent said they wanted to split time between work and home... The data intelligence company's findings echoed recent internal surveys by employers like Google and Twitter, as well as outside surveys by firms like Eden Workplace. Among those craving the routines of office life and cubicle chatter: social butterflies, managers, new hires eager to meet colleagues, and people with noisy or crowded homes... Certainly, some people have thrived in their new remote work lives. They saved time and money, and sometimes increased productivity. The degree to which employees have embraced permanent remote or hybrid work models has been "stunning" to company executives, said Tsedal Neeley, a Harvard Business School professor who has studied remote work for decades. But for others, Professor Neeley said, it has removed needed barriers between work and home life, increased a sense of isolation and led to burnout. "Some people just dislike the screen — their physicality and their proximity to others is a big part of what work looks like," she said. In the Times' article, here's how one 23-year-old recent college graduate starting at Google described their own dilemma. "If we don't get a really solid foundation at this company in our first six months, our first year, what foot does that leave us on for the rest of our time at the company?"Read more of this story at Slashdot.

Possibly anticipating some new regulations, America's Securities and Exchange Commission is investigating "gamification and behavioral prompts used by online brokerages that encourage trading," reports CNBC. And SEC chairman Gary Gensler has specifically requested public input on two questions:First, the SEC chair wants to know how the financial regulator should protect investors against a potential conflict of interest. Online brokerages generate profits when their customers trade more often. Robinhood Markets, for example, makes money in part by sending its customers' orders to high-frequency traders in exchange for cash. That process is itself controversial and known on Wall Street as payment for order flow. But if game-like prompts or congratulatory messages from online brokerages cause customers to make more trades — and especially if more trades result in poorer portfolio performance at slightly worse prices — should the SEC intervene? Gensler's second key question is a bit more cerebral. In essence, the SEC wants to answer: If brokerages' game-like or predictive prompts assume optimal outcomes and impact how often customers trade, should the regulator consider those in-app prompts as formal investment recommendations or investment advice? Or, as Barrons puts it, "Critics say that some stock-trading apps look more like online games or gambling services, and their graphic interfaces are coercing users into making bad decisions." Meanwhile, MarketWatch (via Dow Jones Newswires) reports on another issue: "According to a new survey from consumer finance website MagnifyMoney, 32% of U.S. investors say they have made trades while drunk."Gen Z members fell into the trap the most of any generation, with 59% confessing to drunk trading, while 9% of baby boomers admitted to trading under the influence.This can be combined with the rise in "emotionally charged" investing that traders say they would later regret. Per the survey, 66% of Americans admit to making impulsive investing decisions... Entering trade orders on mobile devices has assuredly made stock trading easier to complete while engaged in other tasks, including imbibing, but why does it seemingly impact younger investors more? According to the Addiction Center, an informational group for people struggling with substance-use disorders and co-occurring behavioral and mental-health disorders, the gamification interface of trading apps like Robinhood could be a factor. A Robinhood spokesperson told MarketWatch their platform was designed "to remove historical barriers to investing and open financial markets to millions upon millions of people previously left behind. "We are proud to expand access to the financial system and enable everyday people to learn and invest responsibly."Read more of this story at Slashdot.

"The director of a tiny UK company has apologised after sending letters to businesses suggesting they had infringed his patents that he claimed covered an age-old web standard," writes The Register. LeeLynx shares their report:The tech in question is the content security policy (CSP) mechanism that websites use to protect their visitors from cross-site scripting (XSS) attacks and similar exploits that steal data and hijack accounts. Specifically, the cryptographic nonce [number-used-once] feature of CSP to stop unauthorized scripts from running. Datawing Ltd sent a number of letters to small businesses this month claiming to own one UK and one US patent on CSP and its use of a nonce. After an initial wave of alarm and outrage on Twitter when the letters surfaced, The Register tracked down their author: a penitent William Coppock... "What a stupid plonker, all I've done," he sighed, adding that he has six children and has been diagnosed with cancer. Applying for the UK and US patents cost him his "life savings," he said, adding: "I didn't intend any harm to come to anyone. Maybe I've just got to sell or give this thing to Mozilla...." [H]e denied to The Register that he was a patent troll. A law firm had checked over the letter and the "patent infringement outline" document before he sent them, he claimed. Coppock also apologised to all who received his letters and urged them to contact him if they had any questions about it. We have asked the law firm Coppock named for comment on the advice he says it gave him and will update this article if we hear back from it.Read more of this story at Slashdot.

Long-time Slashdot reader theodp writes: Mr. President," Code.org founder Hadi Partovi told President Joe Biden and tech CEOs from Microsoft, Amazon, Google, Apple, and IBM at Wednesday's Presidential Summit on Cybersecurity, "America's cybersecurity problem is an education problem. I loved [Microsoft CEO] Satya Nadella's wonderful analogy to the car industry, and like Satya said, we need standards for seatbelts in every car for sure. But if none of the drivers took a course in basic safety skills, our roads could never, ever be safe. That's the current state of affairs on the roads of the internet. Without proper education, we can't address our nation's weakest link. If you look around, every CEO is nodding their head because they know we need a plan to educate every American on basic cyber security hygiene, and also a plan to staff up our cyber defense workforce. This needs to start early, in K-12, and reach everybody." A newly-released White House Fact Sheet announcing "Ambitious Initiatives to Bolster the Nation's Cybersecurity" notes that tech-bankrolled "Code.org announced it will teach cybersecurity concepts to over 3 million students across 35,000 classrooms over 3 years, to teach a diverse population of students how to stay safe online, and to build interest in cybersecurity as a potentialcareer."Read more of this story at Slashdot.

Infosecurity magazine reports:Some of the world's biggest tech companies have committed tens of billions of dollars to improving supply chain security, closing industry skills gaps and driving security awareness among the public, according to the White House. As reported by Infosecurity yesterday, the Biden administration welcomed the CEOs of Microsoft, Apple, Google, IBM and others to a meeting yesterday to discuss the "whole-of-nation" effort needed to address cybersecurity threats." The result of that encounter has been a series of commitments from these firms, including $10bn from Google over the next five years to expand zero trust and improve supply chain and open source security. The tech giant will apparently also help 100,000 Americans earn "digital skills certificates." IBM said it would train 150,000 people in cyber skills over the coming three years and focus on improving the diversity of the security workforce, while Microsoft has committed $20bn over five years to drive security by design, and $150m for federal, local and state governments. Apple will establish a new program to improve supply chain security, including among its 9000 US suppliers, with multi-factor authentication (MFA), vulnerability remediation, event logging and incident response all playing a key role. Amazon is making MFA devices available to all AWS customers and rolling out the security training it offers employees to the general public. Aside from these commitments, the White House announced the expansion of its Industrial Control Systems Cybersecurity Initiative, from the electricity sector to natural gas pipelines, and said the National Institute of Standards and Technology (NIST) would develop a new framework for supply chain security. In another potentially significant move, insurer Resilience said it would require policyholders to meet a threshold of cybersecurity best practice as a condition of receiving coverage — something experts have been demanding for some time across the industry. NextGov.com also quotes the president's remarks about a cybersecurity executive order issued May 12th: "Because of that order, government will only buy tech products that meet certain cybersecurity standards, which will have a ripple effect across the software industry, in our view, ultimately improving security for all Americans,"Read more of this story at Slashdot.

"When residents of an affluent estate community in Alberta started hearing noise from a nearby power plant, they didn't expect their complaints of sleepless nights would lead to a months-long investigation that would find a bitcoin mining operation had set up shop without approval," reports the CBC:Now, Link Global, the company behind the site, is being ordered by the province's utility commission to shut down two plants until it can prove it's allowed to operate — a move the company says will cost jobs and cause the oil and gas infrastructure in which it operates to sit dormant.... Vancouver-based Link Global had set up four 1.25 MW gas generators at the site, pulling power from a dormant natural gas well owned by Calgary-based company MAGA Energy. The natural gas powers thousands of computer servers that run programs to "mine" digital currency... Work on the plant began in August 2020, and by fall — when neighbours started to get annoyed — it was operating at full capacity. There was just one problem: The company hadn't notified neighbours of its plans. Or the county. Or the provincial utilities commission — which allows power plants to be set up without approval if they meet several conditions, including only generating power for the company's own use and proving the plant has no adverse effects on people or the environment... Alberta is littered with nearly 200,000 dormant or abandoned oil and gas wells, often because they're no longer economically viable. It has raised the spectre that landowners and taxpayers could be on the hook for the cleanup costs, which the province estimates could be up to $30 billion, as well as prompted a push to find other uses for the facilities, such as powering cryptocurrency operations. Stephen Jenkins, Link Global's CEO, said some of that abandoned energy infrastructure, is at risk of leaking methane — a greenhouse gas more potent than carbon dioxide. "We look at, OK, what can we do to use this in a beneficial way ... I don't want to say we're in the business of methane destruction, but we're in the business of beneficial use of that potential methane-generating source. You combust it properly. You don't flare it, and you control those emissions," Jenkins said... And though the facility employs only four people, Jenkins said it's important to him to employ locally and give former oil and gas workers a path into other careers. The Sturgeon County plant's supervisor is a former pipefitter; he's now a bitcoin pro and an expert at keeping the plant online, Jenkins said. "It's a perfect use of people's skills," he said. Of course, it's not all altruism. The company has said for every 10 MW of power, it can generate about 1.2 bitcoins per day. Last Friday the Alberta Utilities Commission (AUC) ruled that the plant had indeed been violating their regulatory requirements, and would now also have to suffer a financial penalty which the CBC reported as "a $50,000 to $75,000 fine, reduced by up to 50% because Link Global admitted to breaking the rules..." "More penalties could be on the way. The AUC will now review whether specific sanctions should be imposed against Link Global for operating without approval — a decision on that is expected this fall." The CBC adds that another Link Global plant was also found to be "set up without the AUC's prior approval."Read more of this story at Slashdot.

The New York Times tells the story of an Indiana physician spreading misinformation about the pandemic.Public health officials say statements like his have contributed to America's vaccine hesitancy and resistance to mask-wearing, exacerbating the pandemic.His videos "have amassed nearly 100 million likes and shares on Facebook, 6.2 million views on Twitter, at least 2.8 million views on YouTube and over 940,000 video views on Instagram."His talk's popularity points to one of the more striking paradoxes of the pandemic. Even as many doctors fight to save the lives of people sick with Covid-19, a tiny number of their medical peers have had an outsize influence at propelling false and misleading information about the virus and vaccines. Now there is a growing call among medical groups to discipline physicians spreading incorrect information. The Federation of State Medical Boards, which represents the groups that license and discipline doctors, recommended last month that states consider action against doctors who share false medical claims, including suspending or revoking medical licenses. The American Medical Association says spreading misinformation violates the code of ethics that licensed doctors agree to follow. "When a doctor speaks, people pay attention," said Dr. Humayun Chaudhry, president of the Federation of State Medical Boards. "The title of being a physician lends credibility to what people say to the general public. That's why it is so important that these doctors don't spread misinformation."Read more of this story at Slashdot.

Futurism reports:Japan's space agency JAXA has announced that is has successfully demonstrated the operation of a "rotary detonation engine" in space, a world's first. Such an engine uses a series of controlled explosions that travel around a circular channel at its base. The result is a massive amount of thrust coming from a much smaller engine using significantly less fuel — a potential game changer for deep space exploration, according to JAXA. It's a lucrative endeavor and Japan isn't the only country pursuing the idea. Researchers across the U.S. are testing out the technology to make rockets both lighter and more environmentally friendly... "We will aim to put the technology into practical use in about five years,"Jiro Kasahara, a Nagoya University professor who is working on the technology with JAXA, told the Japan Times last month. Ars Technica reports that detonation engines should theoretically weigh less than traditional rocket engines &mdash and that JAXA "plans to use data from this test for potential development of detonation engines for kick stages as well as first- and second-stage rocket engines." Futurism adds that in the same flight JAXA also successfully tested a second "pulse detonation engine."Read more of this story at Slashdot.

"T-Mobile CEO Mike Sievert published an open apology to customers Friday after hackers stole more than 50 million users' personal data, including their Social Security numbers and driver's license information," reports NBC News:"The last two weeks have been humbling for all of us at T-Mobile," he wrote. "To say we are disappointed and frustrated that this happened is an understatement." The incident is the fourth known breach at T-Mobile since 2018, and by far the largest. The full count of how many customers had their data stolen is unclear, but the company said last week it had identified more than 53 million affected customers, most of them on subscription plans. It also included an unspecified number of "prospective" users who are not T-Mobile customers... It is unclear why T-Mobile was storing customers' driver's license information and Social Security numbers without encrypting them in a way that would make it difficult or impossible for hackers to see them even if they stole them. Jackie Singh, a cybersecurity consultant, said it was irresponsible on the part of T-Mobile, especially for hard-to-change sensitive personal data like Social Security numbers. "It is frankly bizarre to learn that in this day and age, a major telco continues to store critical customer data in plain text," she said. "Offering two years of credit monitoring services doesn't change the fact that harm was done to their customer base." NBC says they spoke to the person identified as the perpetrator by the Wall Street Journal, who told them last week that he'd planned to sell the information on more than 100 million users for a hefty profit. Meanwhile, T-Mobile's CEO now says they're alerting affected users and have set up a hub for victim services. Beneath the words "NOTICE OF DATA BREACH," it adds the tagline "Keeping you safe from cybersecurity threats. What you need to know and how we're protecting you."Read more of this story at Slashdot.

An anonymous reader quotes a report from Bloomberg: People who recovered from a bout of Covid-19 during one of the earlier waves of the pandemic appear to have a lower risk of contracting the delta variant than those who got two doses of the vaccine from Pfizer and BioNTech SE. The largest real-world analysis (PDF) comparing natural immunity -- gained from an earlier infection -- to the protection provided by one of the most potent vaccines currently in use showed that reinfections were much less common. The paper from researchers in Israel contrasts with earlier studies, which showed that immunizations offered better protection than an earlier infection, though those studies were not of the delta variant. The results are good news for patients who already successfully battled Covid-19, but show the challenge of relying exclusively on immunizations to move past the pandemic. People given both doses of the Pfizer-BioNTech vaccine were almost six-fold more likely to contract a delta infection and seven-fold more likely to have symptomatic disease than those who recovered. The analysis also showed that protection from an earlier infection wanes with time. The risk of a vaccine-breakthrough delta case was 13-fold higher than the risk of developing a second infection when the original illness occurred during January or February 2021. That's significantly more than the risk for people who were ill earlier in the outbreak. Giving a single shot of the vaccine to those who had been previously infected also appeared to boost their protection. The long-term benefit of a booster dose of the inoculation, which has just recently begun in Israel, is unknown.Read more of this story at Slashdot.

An anonymous reader quotes a report from The Record, written by Catalin Cimpanu: The European Union's lead data protection supervisor has recommended on Thursday that personal data such as search queries & internet browsing history should not be used for the assessment of credit scores and creditworthiness. The recommendation comes from the European Data Protection Supervisor (EDPS), an independent agency attached to the EU that advises policymakers "on all matters relating to the processing of personal data."a document published on Thursday. In addition, the agency advises that providers of financial and credit services should also not be allowed to use health data, such as cancer data, as well as any special category of personal data under Article 9 of the GDPR for the calculation of credit scores. The EDPS recommendations follow a recent blog post for the International Monetary Fund, where researchers see the possibility of using the data from your browsing, search, and purchase history to create a more accurate mechanism for determining the credit rating of an individual or business.Read more of this story at Slashdot.

Hmmmmmm shares a report from SpaceNews: The National Natural Science Foundation of China has outlined a five-year project for researchers to study the assembly of ultra-large spacecraft. Scientists are being directed to meet the "urgent need" for the construction of ultra-large spacecraft. Preliminary research is to include studying the challenges of developing lightweight structures and subsequent on-orbit assembly and control. Though vague, the project would have practical applications for potential megaprojects including colossal space-based solar power stations. Such facilities would be based in geostationary orbit and span kilometers. These stations would collect solar energy and transmitting power to Earth through microwaves. Kilometer-scale, ultra-large spacecraft are described as "major strategic aerospace equipment for the future use of space resources, exploration of the mysteries of the universe, and long-term habitation in orbit," according to the project outline within the mathematical and physical sciences attachment to the released document. The plan, if approved, would aim for commercial, on-orbit gigawatt-level power generation by 2050. This would require more than 100 super heavy-lift Long March 9 launches and around 10,000 tons of infrastructure, assembled in orbit, according to Long Lehao, a chief designer of China's Long March rocket series.Read more of this story at Slashdot.

Eric Niiler writes via Wired: The landscape of Titan, Saturn's largest moon, is both familiar and strange. Like Earth, Titan has rivers, lakes, clouds, and falling raindrops, as well as mountains of ice and a thick atmosphere. But instead of water, Titan's chemical cycle is composed of liquid methane, an organic molecule made from one carbon and four hydrogen atoms. Researchers believe this swirling mixture of methane, combined with the moon's nitrogen-laden atmosphere, surface water ice, and maybe some energy from either a volcano or a meteor impact, might have been the perfect recipe to create some kind of simple life form. [...] Now, A researcher has recreated Titan's environment in a small glass cylinder and mixed organic chemicals under the same temperature and pressure conditions found on that moon. Organic molecules that are liquid on Earth -- such as methane and benzene -- become solid icy mineral crystals on Titan because it's so cold, sometimes down to -290 Fahrenheit, according to Tomce Runcevski, an assistant professor of chemistry at Southern Methodist University, and the principal investigator on a study presented this week at the American Chemical Society meeting. In a series of experiments, Runcevski took tiny glass tubes, sucked the air out of them with a pump, and added water ice. Then, one at a time, he added nitrogen, methane, its chemical relative ethane, and other organic compounds. Each time, he varied the composition of the chemical mixture inside the glass cylinders to see what would happen. He next applied pressure -- equivalent to about 1.45 times Earth's atmosphere -- and reduced the temperature by surrounding the vials with extremely cold air. [...] Under that moon's atmospheric pressure and temperature, he found that two organic molecules abundant on Titan and toxic to humans here on Earth -- acetonitrile and propionitrile -- become a single crystalline form. On Titan, these two molecules are formed by the combination of nitrogen and methane, plus energy from the sun, Saturn's magnetic field, and cosmic rays. Acetonitrile and propionitrile start as a gas in the atmosphere, then condense into aerosols, and then rain down onto the moon's surface and become chunks of solid minerals in several forms. It's the first time that these two chemicals have been combined into a crystal shape on Earth under the conditions present on Titan. Another important finding is that the outer facet of the crystal also has a slight electric charge, or polarity, on its surface. That surface charge can attract other molecules such as water -- which would be necessary to form the building blocks of carbon-based life. This new experiment doesn't prove that there's life on Titan, but it means that researchers can discover new things about its weird, frigid surface environment even before the NASA Dragonfly spacecraft lands there.Read more of this story at Slashdot.

Slashdot has confirmed with the U.S. Bankruptcy Court for the District of Delaware that after 18 years of legal maneuvering, SCO's bankruptcy case (first filed in 2007) is now "awaiting discharge." Long-time Slashdot reader rkhalloran says they know the reason: Papers filed 26 Aug by IBM & SCOXQ in U.S. Bankruptcy Court in Delaware for a proposed settlement, Case 07-11337-BLS Doc 1501: By the Settlement Agreement, the Trustee has reached a settlement with IBM that resolves all of the remaining claims at issue in the Utah Litigation (defined below). The Settlement Agreement is the culmination of extensive arm's length negotiation between the Trustee and IBM. Under the Settlement Agreement, the Parties have agreed to resolve all disputes between them for a payment to the Trustee, on behalf of the Estates, of $14,250,000. For the reasons set forth more fully below, the Trustee submits the Settlement Agreement and the settlement with IBM are in the best interests of the Estates and creditors, are well within the range of reasonableness, and should be approved. The proposed order would include "the release of the Estates' claims against IBM and vice versa" (according to this PDF attributed to SCO Group and IBM uploaded to scribd.com). And one of the reasons given for the proposed settlement? "The probability of the ultimate success of the Trustee's claims against IBM is uncertain," according to an IBM/SCO document on Scribd.com titled Trustee's motion:For example, succeeding on the unfair competition claims will require proving to a jury that events occurring many years ago constituted unfair competition and caused SCO harm. Even if SCO were to succeed in that effort, the amount of damages it would recover is uncertain and could be significantly less than provided by the Settlement Agreement. Such could be the case should a jury find that (1) the amount of damage SCO sustained as a result of IBM's conduct is less than SCO has alleged, (2) SCO's damages are limited by a $5 million damage limitation provision in the Project Monterey agreement, or (3) some or all of IBM's Counterclaims, alleging millions of dollars in damages related to IBM's Linux activities and alleged interference by SCO, are meritorious. Although the Trustee believes the Estates would ultimately prevail on claims against IBM, a not insignificant risk remains that IBM could succeed with its defenses and/or Counterclaims The U.S. Bankruptcy Court for the District of Delaware told Slashdot that the first meeting of the creditors will be held on September 22nd, 2021.Read more of this story at Slashdot.

In Facebook's "widely viewed content report" released last week, The Verge's Casey Newton noticed something arguably just as damning as the spread of COVID-19 misinformation or rise of vaccine hesitancy: almost all of the most-viewed posts on Facebook over the past quarter were effectively plagiarized from elsewhere. From the report: Facebook's report details the top 20 most widely viewed posts on the network over the past three months. One of the posts was deleted before Facebook published it. Of the remaining 19, though, only four appear to have been original. The remaining 15 had been published in at least one other place first, and were then re-uploaded to Facebook, sometimes with small changes. [...] Facebook has long been home to reappropriated content, from the freebooting scandal during 2017's pivot to video to the more recent phenomenon of Instagram's Reels being flooded with videos bearing TikTok watermarks. But this kind of dumb, cheap growth hacking should sound familiar to anyone who paid even passing attention to the 2016 election. Russia's infamous Internet Research Agency commissioned a troll army to build up big followings on innocuous-seeming Facebook pages using a wide variety of engagement bait, then gradually shifted those pages to begin sharing more divisive political memes. That's all much harder to do now, thanks to a variety of measures Facebook has taken to make it more difficult for people to disguise their identities or countries of origin. The company now routinely removes networks of pages where the creators' identities are suspect. And it's worth saying that in the most recent election, inauthentic behavior of the 2016 variety did not play a significant role. Most importantly, Facebook now has a policy against "abusive audience building" -- switching topics and repeatedly changing a page's name for the purpose of growing a following. But it seems notable that for domestic actors, the tactics not only work, but remain the most effective way to reach a large audience five years later. Steal some questions that went viral somewhere else, spam them on your page, and presto: you're one of the most-viewed links for the entire quarter on the world's biggest social network. "The plagiarists who dominate Facebook's top 20 links are likely doing it primarily for clout and ill-gotten audience growth," Casey goes on to say. "But some of the other characters here appear to have more direct monetary incentives..."Read more of this story at Slashdot.

Tim Cook celebrated 10 years as Apple CEO by collecting and selling off three quarters of a billion dollars' worth of stock. CNN reports: The transactions were revealed in a regulatory filing Thursday, which showed that Cook had acquired and sold more than 5 million shares of the iPhone maker. As head of the world's most valuable company, Cook has received lofty stock awards in recent years. One of the incentives was tied to Apple's performance in the S&P 500 over the past three years. The stock award was triggered this week because the firm was one of the index's top performers, generating shareholder returns of nearly 192% from August 2018 to 2021, it said in a filing. Cook's windfall came just days after he also donated 70,000 Apple shares (worth about $10 million) to charity, according to a separate regulatory filing Tuesday. It did not disclose the name of the recipient. Cook joined Apple in 1998 and served in a variety of senior roles before assuming his current position, including chief operating officer and executive vice president of worldwide sales and operations. He was named CEO in August 2011, after co-founder Steve Jobs famously stepped down. Jobs died weeks later from complications of pancreatic cancer. Prior to joining Apple, Cook worked at Compaq and IBM (IBM).Read more of this story at Slashdot.

Just months after a CEO shakeup, Waymo is officially halting sales of its custom sensors to third parties. TechCrunch reports: The move sees the Alphabet-owned self-driving company unwinding a business operation just two years into its lifespan. Waymo confirmed the decision to Reuters, adding that it's now focusing on deploying its Waymo Driver tech across its Waymo One ride-hailing and Waymo Via trucking divisions. [...] Waymo began selling LiDARs -- the tech that measures distance with pulses of laser light -- to companies barring its autonomous vehicle rivals in 2019. It initially planned to sell its short-range sensor (known as Laser Bear Honeycomb) to businesses in the robotics, security and agricultural technology sectors. A form on its website also lists drones, mapping and entertainment as applicable industries. Waymo's fifth-generation Driver technology uses an array of sensors -- including radar, lidar, and cameras -- to help its cars "see" 360 degrees during the day and night, and even in tough weather conditions such as rain or fog. While its simulated and real world driving tests have helped it to amass a massive dataset that is crunched using machine learning-based software. According to anonymous sources cited by Reuters, Waymo intends to use in-house tech and external suppliers for its next-gen LiDARs.Read more of this story at Slashdot.

The City of Chicago filed two sweeping lawsuits against DoorDash and Grubhub for allegedly deceiving customers and using unfair business practices. From a report: The suits echo long-standing claims from restaurant owners that the platforms advertise delivery services for their businesses without their consent and conceal lower prices that restaurants offer directly to customers, outside of the platforms. The city also claims both platforms use a "bait-and-switch" method to attract customers with low delivery fees, only to charge additional ones when they are about to place their order. In separate statements, both DoorDash and Grubhub called the lawsuits "baseless." [...] In November, DoorDash stopped adding new restaurants that it doesn't have agreements with to its app. It also said it will remove restaurants that don't want to be listed within 48 hours of being notified.Read more of this story at Slashdot.

An anonymous reader quotes a report from ZDNet, written by Charlie Osborne: The parents of two teenagers allegedly responsible for stealing $1 million in Bitcoin are being sued. According to court documents obtained by Brian Krebs, Andrew Schober lost 16.4552 in Bitcoin (BTC) in 2018 after his computer was infected with malware, allegedly the creation of two teenagers in the United Kingdom. The complaint (.PDF), filed in Colorado, accuses Benedict Thompson and Oliver Read, who were minors at the time, of creating clipboard malware. The malicious software, designed to monitor cryptocurrency wallet addresses, was downloaded and unwittingly executed by Schober after he clicked on a link, posted to Reddit, to install the Electrum Atom cryptocurrency application. During a transfer of Bitcoin from one account to another, the malware triggered a Man-in-The-Middle (MiTM) attack, apparently replacing the address with one controlled by the teenagers and thereby diverting the coins into their wallets. According to court documents, this amount represented 95% of the victim's net wealth at the time of the theft. At today's price, the stolen Bitcoin is worth approximately $777,000. "Mr. Schober was planning to use the proceeds from his eventual sale of the cryptocurrency to help finance a home and support his family," the complaint reads. The pair, tracked down during an investigation paid for by Schober, are now adults and are studying computer science at UK universities. The mothers and fathers of Thompson and Read are named in the complaint. Emails were sent to the parents prior to the complaint requesting that the teenagers return the stolen cryptocurrency to prevent legal action from being taken. However, the requests, sent in 2018 and 2019, were met with silence. Schober's complaint claims that the parents "knew or reasonably should have known" what their children were up to, and that they also failed to take "reasonable steps" in preventing further harm. In response (.PDF), the defendants do not argue the charge, but rather have requested a motion to dismiss based on two- and three-year statutes of limitation. "Despite his knowledge of his injury and the general cause thereof, Plaintiff waited to file his lawsuit beyond the two and three years required of him by the applicable statutes of limitations," court documents say. "For this reason, Plaintiff's claims against Defendants should be dismissed." However, Schober's legal team has argued (.PDF) that the teenagers were not immediately traced, and roughly a year passed between separately identifying Read and Thompson. Schober's lawyers have requested that the motion to dismiss is denied.Read more of this story at Slashdot.

T-Mobile said a cyberattack earlier this month that exposed millions of customer records was carried out using specialized tools to gain entry to the network, followed by brute force-style hacking techniques to access user data. From a report: "In short, this individual's intent was to break in and steal data, and they succeeded," Chief Executive Officer Mike Sievert said Friday in a statement, the company's fullest account yet of what happened. The company has hired cybersecurity provider Mandiant and consulting firm KPMG to improve its defenses, he said. The breach, the fourth that has compromised T-Mobile customer records in as many years, involved personal information including names, dates of birth, Social Security numbers and driver's license information. Sievert said the company is working with law enforcement and can't share further details of what happened. Further reading: T-Mobile Hacker Explains How He Breached Carrier's Security.Read more of this story at Slashdot.

Crucial and Western Digital have recently been caught swapping the TLC NAND used for certain products with inferior QLC NAND without updating product SKUs or informing reviewers of this change. Now, Samsung was caught doing something similar. Samsung is "swapping the drive controller + TLC for a different, inferior drive controller," according to ExtremeTech. "The net effect is still a steep performance decline in certain tests." From the report: The other beats of this story are familiar. Computerbase.de reports on a YouTube Channel, which compared two different versions of the Samsung 970 Plus. Both drives are labeled with the same sticker declaring them to be a 970EVO Plus, but the part numbers are different. One drive is labeled the MZVLB1T0HBLR (older, good) and one is the MZVL21T0HBLU (newer, inferior). Peel the sticker back, and the chips underneath are rather different. The Phoenix drive (top) is older than the Elpis drive on the bottom. Computerbase claims a production date of April 2021 for the Phoenix, but if the 2110 and 2123 codes are production dates, this would seem to indicate March and June. It's possible that Samsung uses specific numerical codes for each month. Either way, the Phoenix drive is older and faster and the Elpis drive is newer and slower. And -- just as we've seen from Crucial and Western Digital -- performance in some benchmarks after the swap is just fine, while other benchmarks crater. [...] The original 970 Plus starts with solid performance and holds it for the entire 200GB test. The right-hand SSD is even faster than the OG 970 Plus until we hit the 120GB mark, at which point performance drops to 50 percent of what it was. Real-world file copies also bear this out, with one drive holding 1.58GB/s and one at 830MB/s. TLC hasn't been swapped for QLC, but the 50 percent performance hit in some tests is as bad as what we see when it has been.Read more of this story at Slashdot.

An anonymous reader quotes a report from TechCrunch: China is not done with curbing the influence local internet services have assumed in the world's most populous market. Following a widening series of regulatory crackdowns in recent months, the nation on Friday issued draft guidelines on regulating the algorithms firms run to make recommendations to users. In a 30-point draft guideline published on Friday, the Cyberspace Administration of China (CAC) proposed forbidding companies from deploying algorithms that "encourage addiction or high consumption" and endanger national security or disrupt the public order. The services must abide by business ethics and principles of fairness and their algorithms must not be used to create fake user accounts or create other false impressions, said the guidelines from the internet watchdog, which reports to a central leadership group chaired by President Xi Jinping. The watchdog said it will be taking public feedback on the new guidelines for a month (until September 26). The guidelines also propose that users should be provided with the ability to easily turn off algorithm recommendations. Algorithm providers who have the power to influence public opinion or mobilize the citizens need to get an approval from the CAC. Friday's guidelines appear to target ByteDance, Alibaba Group, Tencent and Didi and other companies whose services are built on top of proprietary algorithms.Read more of this story at Slashdot.

Unnervingly futuristic, these bulky, high-tech toothbrushes promise to scrub your choppers thoroughly in 20 seconds. WSJ: Dentists like Dr. Lana Rozenberg are overly familiar with two eternal fibs: that their clients floss regularly, and that they brush their teeth for at least two minutes twice a day. "Most people don't brush their teeth for two minutes," said the Manhattan-based industry veteran. "Thirty seconds is more like it," or under a second for each of their 32 teeth. But what if, in those 30 seconds, a device could reach the front, back and sides of every tooth at once? That's the proposition of new "whole mouth" toothbrushes, which rely on vibration and a preponderance of bristles packed inside a structure resembling a mouthguard to deliver an up-to-snuff scrubbing in as little as 20 seconds -- 10 each for top and bottom sets of teeth. "It helps make things way faster, way easier and feels a little more guaranteed because you actually feel it on each one of your teeth," said Kristopher Paul, a medical-transportation driver in St. Petersburg, Fla., who has bit down on a 360 Sonic Brush Pro ($70) each morning for the past year. Mr. Paul, 36, also likes the tool's 15-minute whitening mode, which combines a blue LED light and whitening gel to fade bothersome coffee stains.Read more of this story at Slashdot.

A team of scientists from a Swiss university has discovered a way to bypass PIN codes on contactless cards from Mastercard and Maestro. From a report: The now-patched vulnerability would have allowed cybercriminals to use stolen Mastercard and Maestro cards to pay for expensive products without needing to provide PINs on contactless payments. Discovered by a team from the Department of Computer Science at the ETH Zurich university, the attack is extremely stealthy and could be easily deployed in a real-world scenario if new bugs in contactless payment protocols are discovered. The general idea behind the attack is for an attacker to interpose itself between the stolen card and a vendor's Point-of-Sale (PoS) terminal, in what security researchers would normally call a Man/Person/Meddler-in-the-Middle (MitM) scenario. To achieve this, an attacker would require: a stolen card, two Android smartphones, a custom-made Android app that can tamper with a transaction's fields. The app is installed on both smartphones, which will act as emulators. One smartphone will be placed near the stolen card and act as a PoS emulator, tricking the card into initiating a transaction and sharing its details, while the second smartphone will act as a card emulator and be used by a crook to feed modified transaction details to a real-life PoS terminal inside a store.Read more of this story at Slashdot.

The U.S. intelligence community said Thursday that it was divided over the exact origin of Covid-19 in China. CNBC reports: "After examining all available intelligence reporting and other information, though, the IC remains divided on the most likely origin of Covid-19. All agencies assess that two hypotheses are plausible: natural exposure to an infected animal and a laboratory-associated incident," the unclassified report from the Office of the Director of National Intelligence said. In May, President Joe Biden ordered a closer intelligence review of what he described as two likely scenarios of the origins of the Covid-19. "Here is their current position: 'while two elements in the IC leans toward the [human contact] scenario and one leans more toward the [lab leak scenario] -- each with low or moderate confidence -- the majority of elements do not believe there is sufficient information to assess one to be more likely than the other," Biden said. Developing...Read more of this story at Slashdot.

Elise Blanchard, writing on Mozilla blog: [...] What happened in 1993 to suddenly make hyperlinks blue? No one knows, but I have some theories. I often hear that blue was chosen as the hyperlink color for color contrast. Well, even though the W3C wasn't created until 1994, and so the standards for which we judge web accessibility weren't yet defined, if we look at the contrast between black as a text color, and blue as a link color, there is a contrast ratio of 2.3:1, which would not pass as enough color contrast between the blue hyperlink and the black text. Instead, I like to imagine that Cello and Mosaic were both inspired by the same trends happening in user interface design at the time. My theory is that Windows 3.1 had just come out a few months before the beginning of both projects, and this interface was the first to use blue prominently as a selection color, paving the way for blue to be used as a hyperlink color. Additionally, we know that Mosaic was inspired by ViolaWWW, and kept the same gray background and black text that they used for their interface. Reviewing Mosaic's release notes, we see in release 0.7 black text with underlines appearing as the preferred way of conveying hyperlinks, and we can infer that was still the case until something happened around mid April right before when blue hyperlinks made their appearance in release 0.13. In fact, conveying links as black text with underlines had been the standard since 1985 with Microsoft 1, which some once claimed Microsoft had stolen from Apple's Lisa's look and feel. I think the real reason why we have blue hyperlinks is simply because color monitors were becoming more popular around this time. Mosaic as a product also became popular, and blue hyperlinks went along for the ride. Mosaic came out during an important time where support for color monitors was shifting; the standard was for hyperlinks to use black text with some sort of underline, hover state or border. Mosaic chose to use blue, and they chose to port their browser for multiple operating systems. This helped Mosaic become the standard browser for internet use, and helped solidify its user interface as the default language for interacting with the web.Read more of this story at Slashdot.

For Zapotec artist and weaver Porfirio Gutierrez, colour is a way to connect with his ancestors' way of life, which has sustained civilisations by living in symbiosis with nature. BBC: Back home in the village of Teotitlan del Valle, Oaxaca, Mexico, Porfirio Gutierrez is referred to by his indigenous community as "El Maestro." In Ventura, California, where he lives now, and to the contemporary art world that he is courting, he is an artist with a mission. But for Gutierrez, the job is the same: to conserve, preserve and innovate, when necessary, generations' worth of wisdom and culture associated with the making of one thing that keeps everything interesting -- colour. But not just any colour. These colours are derived from nature, meaning that Gutierrez's charge is to discover new and old ways of plucking plants and insects straight out of the natural world and transform them into the pigments that give forth the glorious, rich, fullness of natural dyes. Bins of these dried plants and insects in Gutierrez's Ventura studio are all colours in waiting. The most unusual of them all is a shimmering silver bead-like insect called cochineal that will spend its next life as a luxurious red dye. These bugs are cultivated year after year in the same way that seeds are saved by farmers, passing environmental wisdom from generation to generation. Gutierrez cultivates his own cochineal on an impressive wall of prickly pear cactus leaves installed in his studio. The insects grow like parasites on the the leaves, consuming the cactus juice which produces carminic acid in their body cavities. When dried and ground they miraculously transform into a velvety powder and the base for a red colour. When compared with the synthetic dyes that are used today in essentially all our clothes and textiles, nature's version is almost always inexplicably better. It's the visual equivalent of a peach ripened by the tree, or a tomato baked in sunshine. Some lost part of you recognises that this is how it's supposed to be. Natural dyes are no different. Across time and cultures, we've been carpeting cave floors and dipping our jeans in dye, not because they won't otherwise function but because colour makes life's banal objects durable and our memories last longer. And if you are as blessed with knowledge as Gutierrez is, then that colour also grounds you spiritually and connects you to your ancestors' way of life -- a way of life that sustained civilisations by living in symbiosis with nature. A way of life that 500 years of colonisation has systematically erased.Read more of this story at Slashdot.

Microsoft is announcing today that it won't block people from installing Windows 11 on most older PCs. While the software maker has recommended hardware requirements for Windows 11 -- which it's largely sticking to -- a restriction to install the OS will only be enforced when you try to upgrade from Windows 10 to Windows 11 through Windows Update. From a report: This means anyone with a PC with an older CPU that doesn't officially pass the upgrade test can still go ahead and download an ISO file of Windows 11 and install the OS manually. Microsoft announced its Windows 11 minimum hardware requirements in June, and made it clear that only Intel 8th Gen and beyond CPUs were officially supported. Microsoft now tells us that this install workaround is designed primarily for businesses to evaluate Windows 11, and that people can upgrade at their own risk as the company can't guarantee driver compatibility and overall system reliability. Microsoft won't be recommending or advertising this method of installing Windows 11 to consumers.Read more of this story at Slashdot.

Duckstation, an emulator that allows users to run Playstation games, was recently made available for installation onto the latest generation of Xbox consoles. From a report: It's time to jog those nostalgia muscles, as the emulator will not only be able to play your PS1 favorites but also scale those games up to native 4K resolution at 60fps. In addition to the 4K treatment, Duckstation will let gamers improve the overall look of the emulation experience in a couple of other ways. Turning this on disables dithering, an effect that was built into the original Playstation hardware. Dithering in layman's terms was basically a function to improve depth of color by underpinning graphics with a series of lines or dots, which were then blurred by the system's video encoders. Turning this on helps improve graphic capabilities by smoothing out the blocky textures on 3D objects. The original low-poly graphics of the PS1 would often look cruder as they enlarged, so this function basically smoothes out those clunky compositions.Read more of this story at Slashdot.

Brussels is set to launch a formal competition probe early next month into Nvidia's planned $54 billion takeover of British chip designer Arm, after months of informal discussions between regulators and the US chip company. From a report: The investigation is likely to begin after Nvidia officially notifies the European Commission of its plan to acquire Arm, with the US chipmaker planning to make its submission in the week starting September 6, according to two people with direct knowledge of the process. They added that the date might yet change, however. Brussels' investigation would come after the UK's Competition and Markets Authority said its initial assessment of the deal suggested there were "serious competition concerns" and that a set of remedies suggested by Nvidia would not be sufficient to address them. The UK watchdog said it feared the deal could "stifle innovation across a number of markets" including by giving Nvidia the power to hurt its rivals by limiting their access to Arm's technology. Nvidia announced a plan in September last year to buy the UK chip designer from SoftBank, the Japanese investment conglomerate.Read more of this story at Slashdot.

Microsoft has warned thousands of its cloud computing customers, including some of the world's largest companies, that intruders could have the ability to read, change or even delete their main databases, according to a copy of the email and a cyber security researcher. From a report: The vulnerability is in Microsoft Azure's flagship Cosmos database. A research team at security company Wiz discovered it was able to access keys that control access to databases held by thousands of companies. Wiz Chief Technology Officer Ami Luttwak is a former chief technology officer at Microsoft's Cloud Security Group. Because Microsoft cannot change those keys by itself, it emailed the customers Thursday telling them to create new ones. Microsoft agreed to pay Wiz $40,000 for finding the flaw and reporting it, according to an email it sent to Wiz. Microsoft's email to customers said it has fixed the vulnerability and that there was no evidence the flaw had been exploited. "We have no indication that external entities outside the researcher (Wiz) had access to the primary read-write key," according to a copy of the email seen by Reuters.Read more of this story at Slashdot.

China's Supreme People's Court said the overtime practice of "996", working 9 a.m. to 9 p.m. six days a week, is illegal, taking aim at the controversial policy that is common among many Chinese technology firms. From a report: China's top court and the Ministry of Human Resources and Social Security on Thursday published guidelines and examples on what constituted as overtime work, saying they were focusing on the issue as it had attracted widespread attention recently. While the authorities used a case involving a parcel delivery company to explain why "996" was illegal, working such hours had become a badge of honour for some Chinese companies and employees. Silicon Valley heavyweights such as Sequoia Capital's Mike Moritz have highlighted it as a competitive advantage the country had over the United States. But a backlash surfaced in 2019, prompting a public debate about work hours in China's tech industry that has continued. Last month, TikTok owner ByteDance on Friday said that it would formally end its weekend overtime policy from Aug. 1, two weeks after its short-video rival Kuaishou announced a similar decision. The court and ministry's criticism of "996" also comes amid a wide ranging Beijing-led regulatory crackdown on country's technology giants that has targeted issues from monopolistic behaviour to consumer rights.Read more of this story at Slashdot.

Tesla wants to sell electricity directly to customers in Texas, according to an application filed by the company this month with the Public Utility Commission there. From a report: The application follows the start of a big battery build out by Tesla in Angleton, Texas (near Houston), where it aims to connect a 100 megawatt energy storage system to the grid. Texas Monthly first reported on the application, submitted by a wholly owned subsidiary of Tesla called Tesla Energy Ventures. Tesla has also built several utility-scale energy storage systems around the world, including one east of Los Angeles, another underway in Monterey, California, and two in Australia -- one in Geelong, Victoria, and another in Adelaide, South Australia.Read more of this story at Slashdot.

Apple announced today it has reached a proposed settlement in a lawsuit filed against it by developers in the United States. The agreement, which is still pending court approval, includes a few changes, the biggest one being that developers will be able to share information on how to pay for purchases outside of their iOS app or the App Store -- which means they can tell customers about payment options that aren't subject to Apple commissions. The settlement also includes more pricing tiers and a new transparency report about the app review process. From a report: The class-action lawsuit was filed against Apple in 2019 by app developers Donald Cameron and Illinois Pure Sweat Basketball, who said the company engaged in anticompetitive practices by only allowing the downloading of iPhone apps through its App Store. In today's announcement, Apple said it is "clarifying that developers can use communications, such as emails, to share information about payment methods outside of their iOS app. As always, developers will not pay Apple a commission on any purchases taking place outside of their app or the App Stores."Read more of this story at Slashdot.

An anonymous reader quotes a report from Bloomberg: Reinsurance giant Swiss Re announced Wednesday that it had signed the world's first long-term agreement to take carbon directly out of the air. The contract with Climeworks AG, one of the world's leading direct air-capture startups, will net the climate technology company $10 million over 10 years. Mischa Repmann, a senior environmental management specialist with Swiss Re, said the deal would not only help his company reach its goal of becoming carbon neutral by 2030, it could inspire other business considering the use of carbon capture technology. "It's a call for action, and we're hoping that others will follow," he said. Climeworks, a Switzerland-based company, is set to open a plant in Iceland in September that will filter CO from ambient air using geothermal energy. The captured CO will then be dissolved in water and pumped deep underground for permanent storage in nearby rock layers. While underground, the gas reacts naturally with its surroundings to form rock, preventing the carbon from reentering the atmosphere. The company says the facility will have the capacity to capture and store 4,000 tons of CO per year. [...] Swiss Re and Climeworks didn't specify how much carbon would be removed in fulfillment of their contract and were vague about the cost, saying only it would be several hundred dollars per ton. Climeworks says the average price will decline as its operations grow, and may be as low as $200 a ton by 2030.Read more of this story at Slashdot.

It's long been known that Google pays Apple a hefty sum every year to ensure that it remains the default search engine on iPhone, iPad, and Mac. Now, a new report from analysts at Bernstein suggests that the payment from Google to Apple may reach $15 billion in 2021, up from $10 billion in 2020. 9to5Mac reports: In the investor note, seen by Ped30, Bernstein analysts are estimating that Google's payment to Apple will increase to $15 billion in 2021, and to between $18 billion and $20 billion in 2022. The data is based on "disclosures in Apple's public filings as well as a bottom-up analysis of Google's TAC (traffic acquisition costs) payments." Bernstein analyst Toni Sacconaghi says that Google is likely "paying to ensure Microsoft doesn't outbid it." The analysts outline two potential risks for the Google payment to Apple, including regulatory risk and Google simply deciding the deal is no longer worth it: In an interview earlier this year, Apple's senior director of global privacy Jane Horvath offered reasoning for the deal, despite privacy concerns: "Right now, Google is the most popular search engine. We do support Google but we also have built-in support for DuckDuckGo, and we recently also rolled out support for Ecosia."Read more of this story at Slashdot.

Scientists at Northwestern University found that people became less sensitive to food odors based on the meal they had eaten just before. These findings show that just as smell regulates what we eat, what we eat -- in turn -- regulates our sense of smell. Phys.Org reports: The study found that participants who had just eaten a meal of either cinnamon buns or pizza were less likely to perceive "meal-matched" odors, but not non-matched odors. The findings were then corroborated with brain scans that showed brain activity in parts of the brain that process odors was altered in a similar way. Feedback between food intake and the olfactory system may have an evolutionary benefit, said senior and corresponding study author Thorsten Kahnt, an assistant professor of neurology and psychiatry and behavioral sciences at Northwestern University Feinberg School of Medicine. "If you think about our ancestors roaming the forest trying to find food, they find and eat berries and then aren't as sensitive to the smell of berries anymore," Kahnt said. "But maybe they're still sensitive to the smell of mushrooms, so it could theoretically help facilitate diversity in food and nutrient intake." Kahnt said while we don't see the hunter-gatherer adaptation come out in day-to-day decision-making, the connection between our nose, what we seek out and what we can detect with our nose may still be very important. If the nose isn't working right, for example, the feedback loop may be disrupted, leading to problems with disordered eating and obesity. There may even be links to disrupted sleep, another tie to the olfactory system the Kahnt lab is researching. Kahnt said with a better understanding of the feedback loop between smell and food intake, he's hoping to take the project full circle back to sleep deprivation to see if lack of sleep may impair the loop in some way. He added that with brain imaging, there are more questions about how the adaptation may impact sensory and decision-making circuits in the brain. The study has been published in the journal PLOS Biology.Read more of this story at Slashdot.

An anonymous reader quotes a report from ScienceAlert: An artery that temporarily runs down the center of our forearms while we're still in the womb isn't vanishing as often as it used to, according to researchers from Flinders University and the University of Adelaide in Australia. That means there are more adults than ever with what amounts to be an extra channel of vascular tissue flowing under their wrist. "Since the 18th century, anatomists have been studying the prevalence of this artery in adults and our study shows it's clearly increasing," Flinders University anatomist Teghan Lucas said in 2020. "The prevalence was around 10 percent in people born in the mid-1880s compared to 30 percent in those born in the late 20th century, so that's a significant increase in a fairly short period of time, when it comes to evolution." To compare the prevalence of this persistent blood channel, Lucas and colleagues Maciej Henneberg and Jaliya Kumaratilake from the University of Adelaide examined 80 limbs from cadavers, all donated by Australians of European descent. The donors raged from 51 to 101 on passing, which means they were nearly all born in the first half of the 20th century. Noting down how often they found a chunky median artery capable of carrying a good supply of blood, the research team compared the figures with records dug out of a literature search, taking into account tallies that could over-represent the vessel's appearance. Their results were published in 2020 in the Journal of Anatomy. The fact the artery seems to be three times as common in adults today as it was more than a century ago is a startling find that suggests natural selection is favoring those who hold onto this extra bit of bloody supply.Read more of this story at Slashdot.

Scientists from Osaka University have manufactured the world's first 3D-printed Wagyu beef by using stem cells isolated from Japanese cattle, according to a press release. The product looks like a realistic steak piece containing muscle, fat, and blood vessels. Interesting Engineering reports: Because of its high marble content, Wagyu (Japanese cow) beef is one of the most sought-after and expensive meats in the world. Marbling, or sashi in Jaoan, refers to the visible layers of intramuscular fat that give the beef its rich flavors and distinctive texture, and because most cultured meats produced thus far resemble mince composed of simple muscle fibers rather than the complex structure of real beef steaks, 3D printing Wagyu is an extremely difficult feat. The researchers used two types of stem cells, bovine satellite cells and adipose-derived stem cells, insulated from Wagyu cows, according to the paper published in the journal Nature Communications. Then, they incubated and coaxed the cells into becoming the various cell types required to generate individual fibers for muscle, fat, and blood vessels. These were piled into a 3D stack to resemble the marbling of Wagyu. Then, the researchers adapted a technique inspired by the one used to produce Japanese Kintaro candy, an old traditional sweet formed in a long pipe and cut into slices. The stacks were sliced perpendicularly to form lab-grown beef slices, which allowed a great degree of customization within the complex meat structure. This was how they were able to mimic the famous texture of Wagyu. According to the researchers, the synthetic meat "looks more like the real thing" and the process can be used to create other complex structures.Read more of this story at Slashdot.

Facebook has been ordered to pay $5.5 million for creating and storing facial recognition templates of 200,000 local users without proper consent between April 2018 and September 2019, according to South Korea's government data protection watchdog, the Personal Information Protection Commission (PIPC). Netflix and Google also received reprimands or fines for insufficient privacy protections and violating laws. The Register reports: Another [$22,000] penalty was issued for illegally collecting social security numbers, not issuing notifications regarding personal information management changes, and other missteps. Facebook has been ordered to destroy facial information collected without consent or obtain consent, and was prohibited from processing identity numbers without legal basis. It was also ordered to destroy collected data and disclose contents related to foreign migration of personal information. Zuck's brainchild was then told to make it easier for users to check legal notices regarding personal information. The fine is the second-largest ever issued by the organization, the largest ever also going to Facebook. In November 2020 the Social Network was fined [$5.7 million] for passing on personal data to other operators without user permission. Netflix's fine was a paltry [$188,000], with that sum imposed for collecting data from five million people without their consent, plus another [$2,700] for not disclosing international transfer of the data. Google got off the easiest, with just a "recommendation" to improve its personal data handling processes and make legal notices more precise. The PPIC said it is not done investigating methods of collecting personal information from overseas businesses and will continue with a legal review.Read more of this story at Slashdot.