Slashdot

Apple has approved Parler's return to the iOS app store following improvements the social media company made to better detect and moderate hate speech and incitement, according to a letter the iPhone maker sent to Congress on Monday. From a report: The decision clears the way for Parler, an app popular with conservatives including some members of the far right, to be downloaded once again on Apple devices. The letter -- addressed to Sen. Mike Lee and Rep. Ken Buck and obtained by CNN -- explained that since the app was removed from Apple's platform in January for violations of its policies, Parler "has proposed updates to its app and the app's content moderation practices." On April 14, Apple's app review team told Parler that its proposed changes were sufficient, the letter continued. Now, all Parler needs to do is to flip the switch. "Apple anticipates that the updated Parler app will become available immediately upon Parler releasing it," Apple's letter said. Parler, an alternative to Facebook and Twitter that bills itself as a haven for free speech, was removed from major tech platforms in early January following the US Capitol riots of Jan. 6.Read more of this story at Slashdot.

The UK government will look into the national security implications of U.S. group Nvidia's purchase of British chip designer ARM, it said on Monday, putting a question mark over the $40 billion deal. From a report: Digital minister Oliver Dowden said on Monday he had issued a so-called "intervention notice" over the sale of ARM by Japan's SoftBank to Nvidia. "As a next step and to help me gather the relevant information, the UK's independent competition authority will now prepare a report on the implications of the transaction, which will help inform any further decisions," he said. Nvidia said it did not believe the deal posed any material national security issues.Read more of this story at Slashdot.

Slashdot reader quonset reminds us that NASA's Mars helicopter "is officially 'go' for flight!," according to the Twitter feed of the Perserverance Rover, which notes that its cameras are ready to film the historic event. "Watch with the team as they receive data and find out if they were successful," adds NASA's official feed. "Meet us in mission control April 19 at 6:15am ET (10:15am UTC):Data from the first flight will return to Earth a few hours following the autonomous flight. A livestream will begin at 6:15 a.m. EDT (3:15 a.m. PDT), as the helicopter team prepares to receive the data downlink in the Space Flight Operations Facility at NASA's Jet Propulsion Laboratory (JPL). Watch on NASA Television, the agency app, website, and social media platforms, including YouTube and Facebook. If the flight takes place April 19, a postflight briefing will be held at 2 p.m. EDT (11 a.m. PDT)... The public and media also may ask questions on social media during the livestream and briefing using #MarsHelicopter. Find the latest schedule updates here. The Perseverance rover will provide support during flight operations, taking images, collecting environmental data, and hosting the base station that enables the helicopter to communicate with mission controllers on Earth. Update: And it's a success! "We've been talking for so long about our Wright Brothers moment on Mars, and here it is," said NASA Ingenuity Mars Helicopter project manager MiMi Aung. The Perserverance rover has already tweeted out a choppy video.Read more of this story at Slashdot.

"Jensen Huang, the CEO of Nvidia, the nation's most valuable semiconductor company, with a stock price of $645 a share and a market cap of $400 billion, is out to create the metaverse," writes Time magazine. Huang defines it as "a virtual world that is a digital twin of ours."Huang credits author Neal Stephenson's Snow Crash, filled with collectives of shared 3-D spaces and virtually enhanced physical spaces that are extensions of the Internet, for conjuring the metaverse. This is already playing out with the massively popular online games like Fortnite and Minecraft, where users create richly imagined virtual worlds. Now the concept is being put to work by Nvidia and others. Partnering with Nvidia, BMW is using a virtual digital twin of a factory in Regensburg, Germany, to virtually plan new workflows before deploying the changes in real time in their physical factory. The metaverse, says Huang, "is where we will create the future" and transform how the world's biggest industries operate... Not to make any value judgments about the importance of video games, but do you find it ironic that a company that has its roots in entertainment is now providing vitally important computing power for drug discovery, basic research and reinventing manufacturing? No, not at all. It's actually the opposite. We always started as a computing company. It just turned out that our first killer app was video games... How important is the advent and the adaptation of digital twins for manufacturing, business and society at large? In the future, the digital world or the virtual world will be thousands of times bigger than the physical world. There will be a new New York City. There'll be a new Shanghai. Every single factory and every single building will have a digital twin that will simulate and track the physical version of it. Always. By doing so, engineers and software programmers could simulate new software that will ultimately run in the physical version of the car, the physical version of the robot, the physical version of the airport, the physical version of the building. All of the software that's going to be running in these physical things will be simulated in the digital twin first, and then it will be downloaded into the physical version. And as a result, the product keeps getting better at an exponential rate. The second thing is, you're going to be able to go in and out of the two worlds through wormholes. We'll go into the virtual world using virtual reality, and the objects in the virtual world, in the digital world, will come into the physical world, using augmented reality. So what's going to happen is pieces of the digital world will be temporarily, or even semipermanently, augmenting our physical world. It's ultimately about the fusion of the virtual world and the physical world. See also this possibly related story, "Nvidia's newest AI model can transform single images into realistic 3D models."Read more of this story at Slashdot.

"The mania that drove crypto assets to records as Coinbase went public last week turned on itself on the weekend," report Bloomberg — as the price of bitcoin took a big dive:The world's biggest cryptocurrency plunged as much as 15% on Sunday, just days after reaching a record of $64,869. It subsequently pared some of the losses and was trading at about $56,440 at around 8:25 a.m. in Tokyo Monday. Ether, the second-biggest token, dropped as much as 18% to below $2,000 before also paring losses. The volatility buffeted Binance Coin, XRP and Cardano too. Dogecoin — the token started as a joke — bucked the trend and is up 7% over 24 hours, according to CoinGecko. The weekend carnage came after a heady period for the industry that saw the value of all coins surge past $2.25 trillion amid a frenzy of demand for all things crypto in the runup to Coinbase's direct listing on Wednesday. The largest U.S. crypto exchange ended the week valued at $68 billion, more than the owner of the New York Stock Exchange... Dogecoin, which has limited use and no fundamentals, rallied last week to be worth about $50 billion at one point before stumbling Saturday. Demand was so brisk for the token that investors trying to trade it on Robinhood crashed the site a few times Friday, the online exchange said in a blog post. There was also speculation Sunday in several online reports that the crypto plunge was related to concerns the U.S. Treasury may crack down on money laundering carried out through digital assets... Besides the "unsubstantiated" report of a U.S. Treasury crackdown, Antoni Trenchev, co-founder of crypto lender Nexo, said factors for the declines may have included "excess leverage, Coinbase insiders dumping equity after the direct listing and a mass outage in China's Xinjiang province hitting Bitcoin miners."Read more of this story at Slashdot.

Gizmodo reports:The latest big name to get in on the NFT craze is former intelligence contractor and whistleblower Edward Snowden, who on Friday auctioned off an original NFT art piece for roughly $5.4 million worth of the cryptocurrency Ether. Titled "Stay Free", it's a digital self-portrait made out of pages from a U.S. Court of Appeals decision that ruled the National Security Agency's widespread surveillance of phone records violated the law, a practice Snowden brought to light in 2013 by leaking classified NSA secrets to journalists... The NFT sold for 2,224 Ether, worth just over $5.4 million at the time of publishing. All proceeds from this sale will go to the Freedom of the Press Foundation, a non-profit that develops open-source tools for whistleblowers and works to shield journalists from state-sponsored hackers and government surveillance. Snowden has led the organization as president since 2017.Read more of this story at Slashdot.

The New York Times reports:Whether college admissions have changed for the long haul remains unclear. But early data suggests that many elite universities have admitted a higher proportion of traditionally underrepresented students this year — Black, Hispanic and those who were from lower-income communities or were the first generation in their families to go to college, or some combination — than ever before... The easing of the reliance on standardized tests, which critics say often work to the advantage of more educated and affluent families who can afford tutors and test prep, was most likely the most important factor in encouraging minority applicants. Only 46 percent of applications this year came from students who reported a test score, down from 77 percent last year, according to Common App, the not-for-profit organization that offers the application used by more than 900 schools... Schools had been dropping the testing requirement for years, but during the pandemic a wave of 650 schools joined in. In most cases, a student with good scores could still submit them and have them considered; a student who had good grades and recommendations but fell short on test scores could leave them out. Most schools have announced that they will continue the test-optional experiment next year, as the normal rhythm of the school year is still roiled by the pandemic. It is unclear whether the shift foretells a permanent change in how students are selected.Read more of this story at Slashdot.

"Renting is terrible. Owning is worse. A third option is necessary," argues a recent article in the Atlantic, "a way to rent without making someone else rich." It's written by Shane Phillips, who's the Housing Inititiative Project Manager at UCLA's Lewis Center for Regional Policy Studies:Largely as a consequence of housing prices, Generation X held less than half as much wealth in 2019 as Baby Boomers of the same age did two decades earlier, and Millennials are on course to hold even less. Something has gone catastrophically wrong, and the problem won't be solved by doubling down on homeownership; we've seen where that leads. But our current model of renting — a lifetime of uncertainty only to make someone else rich — won't do the job either. We need something new, an innovation on par with the government's development of 30-year mortgages nearly a century ago. We need a housing option that combines the accessibility, flexibility, and limited risk of renting with some of the stability and wealth-generating potential of homeownership. His suggested solutiion? A public-ownership rental option:The foundation of the program would be quite simple: public ownership of housing, acquired or built with government loans — though run by local for-profit or nonprofit property managers — and rented at market prices. No saving for a down payment (or being given one by family) and no qualifying for a mortgage. The only requirements for participation in the public-ownership option would be (1) move in, and (2) pay rent. As the loans were paid down, the equity would accrue to the tenants, minus the cost of operating and maintaining the building, administrative costs, and so on. Unlike rent-to-own programs, however, this option would never require that the tenant take out a mortgage. A renter would never truly "own" her unit. But she would claim a stake in the public portfolio of properties and be able to draw on that asset, perhaps in the form of monthly payments after a few years of renting, or larger dividends later in life, much like Social Security. The benefit could be transferred to any publicly owned apartment, allowing tenants to build wealth without being locked in place. After 35 or 40 years, a tenant might no longer owe any rent at all... Renting in a public-ownership building would be an option for the large number of middle-income individuals who lack the resources or the immediate desire to become homeowners.Read more of this story at Slashdot.

"A true-crime podcast has been credited with providing valuable information in a missing person case from the 1990s after two men were arrested," reports Newsweek:Kristin Smart, 19, of Stockton, California, went missing in May 1996 after returning to her dorm at California Polytechnic State University campus in San Luis Obispo. The case received widespread attention from Chris Lambert's Your Own Backyard podcast dedicated to investigating Smart's disappearance, which he began in September 2019. The last person who was thought to have seen Smart alive was Paul Flores, 44, who was also a freshman at the time, when he offered to walk Smart back to her dorm. Since Smart's disappearance, Flores has been a person of interest, suspect, and prime suspect. Now, District Attorney Dan Dow alleges that Flores killed her in his dorm room following an attempted rape. On Tuesday, April 13, Flores was arrested for her murder, and his father Ruben Flores, 80, was arrested as an accessory to murder for allegedly helping his son conceal Smart's body, which has never been found. San Luis Obispo County Sheriff Ian Parkinson said that they arrested the father and son on Tuesday after a search at Ruben Flores' home using ground-penetrating radar and cadaver dogs last month resulted in new evidence linked to Smart's disappearance... Parkinson also credited the Your Own Backyard podcast with raising awareness of the case which resulted in "valuable information" after a key witness came forward. The Associated Press calls it "the latest in a line of true-crime podcasts credited with producing results in court," noting investigations by the Up and Vanished podcast also "led a man to confess to killing a Georgia beauty queen." And they list some of the "compelling clues" uncovered by the podcaster investigating Kristin Smart's disappearance:A former colleague of Paul Flores' mother, Susan Flores, told him Mrs. Flores came into work after Memorial Day weekend 1996 — when Smart went missing — saying she didn't sleep well because her husband had gotten a phone call in the middle of the night and left in his car. "The speculation has been all along that Paul called his dad in the middle of the night and his dad came up and helped him get rid of Kristin's body," Lambert said. A tenant who lived for a year at Susan Flores' home told him she heard a watch alarm every morning at 4:20 a.m. Smart had worked as a lifeguard at 5 a.m. at the Cal Poly pool, so it's possible she set her watch to wake up at that early hour.Read more of this story at Slashdot.

Long-time Slashdot reader sandbagger brings the news that Charles 'Chuck' Geschke, the co-founder of Adobe, had died at the age of 81. The company started in co-founder John Warnock's garage in 1982, and was named after the Adobe Creek which ran behind Warnock's home, offering pioneering capabilities in "What you see is what you get" (or WYSIWYG) desktop publishing. Gizmodo reports:"This is a huge loss for the entire Adobe community and the technology industry, for whom he has been a guide and hero for decades," Adobe CEO Shantanu Narayen wrote in an email to staff. "As co-founders of Adobe, Chuck and John Warnock developed groundbreaking software that has revolutionized how people create and communicate, " he continued. "Chuck instilled a relentless drive for innovation in the company, resulting in some of the most transformative software inventions, including the ubiquitous PDF, Acrobat, Illustrator, Premiere Pro and Photoshop." After earning a doctorate from Carnegie Mellon University, Geschke met Warnock while working at the Xerox Palo Alto Research Center, according to the Mercury News. The two left the company in 1982 and founded Adobe to develop software. Their first product was Adobe PostScript, which Narayen lauded as "an innovative technology that provided a radical new way to print text and images on paper and sparked the desktop publishing revolution."Read more of this story at Slashdot.

Texas TV station KPRC 2 reports that two men are dead after a Tesla "crashed into a tree and no one was driving the vehicle, officials say." Long-time Slashdot readers AmiMoJo and McGruber both submitted the story:There was a person in the passenger seat of the front of the car and in the rear passenger seat of the car. Harris County Precinct 4 Constable Mark Herman said authorities believe no one else was in the car and that it burst into flames immediately. He said it he believes it wasn't being driven by a human. Harris County Constable Precinct 4 deputies said the vehicle was traveling at a high speed when it failed to negotiate a cul-de-sac turn, ran off the road and hit the tree. KPRC 2 reporter Deven Clarke spoke to one man's brother-in-law who said he was taking the car out for a spin with his best friend, so there were just two in the vehicle. The owner, he said, backed out of the driveway, and then may have hopped in the back seat only to crash a few hundred yards down the road... Authorities said they used 32,000 gallons of water to extinguish the flames because the vehicle's batteries kept reigniting. At one point, Herman said, deputies had to call Tesla to ask them how to put out the fire in the battery.Read more of this story at Slashdot.

An anonymous reader writes:Debian Project Secretary Kurt Roeckx has announced the results of a closely-watched vote on what statement would be made about Richard Stallman's readmission to the Free Software Foundation's board. Seven options were considered, with the Debian project's 420 voting developers also asked to rank their preferred outcomes: Option 1: "Call for the FSF board removal, as in rms-open-letter.github.io" Option 2: "Call for Stallman's resignation from all FSF bodies" Option 3: "Discourage collaboration with the FSF while Stallman is in a leading position" Option 4: "Call on the FSF to further its governance processes" Option 5: "Support Stallman's reinstatement, as in rms-support-letter.github.io" Option 6: "Denounce the witch-hunt against RMS and the FSF" Option 7: "Debian will not issue a public statement on this issue"While all seven options achieved a quorum of votes, two failed to achieve a majority — options 5 and 6. ("Support Stallman's reinstatement" and "Denounce the witch-hunt...") The option receiving the most votes was #7 (not issuing a public statement) — but it wasn't that simple. The vote's final outcome was determined by comparing every possible pair of options to determine which option would still be preferred by a majority of voters in each possible comparision. In this case, that winner was still the option which had also received the most votes: Debian will not issue a public statement on this issue. The Debian Project will not issue a public statement on whether Richard Stallman should be removed from leadership positions or not. Any individual (including Debian members) wishing to (co-)sign any of the open letters on this subject is invited to do this in a personal capacity. The results are captured in an elaborate graph. Numbers inside the ovals show the final ratio of yes to no votes (so a number higher than 1.00 indicates a majority, with much higher numbers indicating much larger majorities). Numbers outside the ovals (along the lines) indicate the number of voters who'd preferred the winning choice over the losing choice (toward which the arrow is pointing). The winning option is highlighted in blue.Read more of this story at Slashdot.

A Facebook content moderator (contracted through Accenture) quit their position in Austin, Texas — but also left a critical internal note which was later leaked by a senior tech reporter at BuzzFeed who described it as "blistering." SFGate also calls it "a harrowing account of what it's like to work as a Facebook content moderator."The message describes content moderation as a job that takes a significant toll mentally and physically and has led some coworkers to go on psychiatric medication for the first time or self-medicate with alcohol and drugs... "Content analysts are paid to look at the worst of humanity for eight hours a day..." The employee in question allegedly acknowledges that Facebook has made improvements to their wellness program, but still claims it to be inadequate, stating that managers view their employees' brains "as machines," rather than taking into account the consequences of workplace stress. But the note also points out that "Those who spend the most time in the queues have the least input as to policy... It can take months for issues to be addressed, if they are addressed at all..."Content analysts should be able to communicate directly with those responsible for designing policy... The fact that content analysts are hired by outside agencies makes these things impossible. There are no established avenues for communication with Facebook full-time employees, and we can face penalties if we attempt to contact them. The last line of the note offers this benediction for Facebook. "I hope you figure out a way to stop constantly starting PR fires and traumatize people en masse."Read more of this story at Slashdot.

"In Microsoft's ongoing endeavor to convert people to its rebooted Edge web browser, it's launching a new Kids Mode that makes it easy for parents to control how their children surf the web," reports Gizmodo:Parents have the choice between two versions, one for ages five to eight years and one for ages nine to 12 years. Both enable the strictest level of tracking prevention in Edge and Bing SafeSearch by default to filter out adult text, images, and videos from search results. The only difference between the two age ranges is that the older one includes a newsfeed with curated articles from MSN for Kids. Don't worry though: It focuses on more kid-friendly topics like fun science and animal facts rather than breaking news and politics, Microsoft said. Kids Mode also restricts what sites kids have access to, with roughly 70 popular kids sites allowed from the get-go (any additional allowable sites have to be added to the list individually). If a child tries to view a site that's not on that list, they're met with a cutesy block page, pictured below, that prompts them to ask an adult for permission.Read more of this story at Slashdot.

Long-time Slashdot reader xiando shares news from LinuxReviews: Linux Kernel Runtime Guard (LKRG) is a security module for the Linux kernel developed by Openwall. The latest release adds compatibility with Linux kernels up to soon to be released 5.12, support for building LKRG into kernel images, support for old 32-bit x86 machines and more... The Linux Kernel Runtime Guard is an out-of-tree kernel module you can install as a kernel module, or, with the 0.9.0 release, build into your Linux kernel. It does run-time integrity checks to detect security vulnerability exploits against the Linux kernel. An Openwall developer also notes in the announcement that "During LKRG development and testing I've found 7 Linux kernel bugs, 4 of them have CVE numbers."Read more of this story at Slashdot.

The New York Focus site writes:A decade ago, the bankrupt owner of the Greenidge power plant in Dresden, New York, sold the uncompetitive coal-fired relic for scrap and surrendered its operating permits. For the next seven years, the plant sat idle on the western shore of Seneca Lake, a monument to the apparent dead end reached by the state's fossil fuel infrastructure. But today, Greenidge is back up and running as a Bitcoin mining operation. The facility hums with energy-hungry computers that confirm and record Bitcoin transactions, drawing power from the plant's 106-megawatt generator now fueled by natural gas. The mining activity is exceptionally profitable, thanks to an 800 percent rise in Bitcoin's price since last April. Seeking to ride the boom, the plant's new owners plan to quadruple the power used to process Bitcoin transactions by late next year. Environmental advocates view Greenidge's ambitions, if left unchecked, as an air emissions nightmare. And they fear that dozens of other retired or retiring fossil-fueled power plants across New York could follow Greenidge's example, gaining new life by repurposing as Bitcoin miners or other types of energy-intense data centers. The New York Times recently touted an alternative to bitcoin mining: the "proof of stake" method, which "instead awards miners new blocks based on how much cryptocurrency they already own."The world's second-largest cryptocurrency by market capitalization, Ethereum, has said it is moving toward proof of stake (that switch is likely to take up to another year). Though some critics say Bitcoin will eventually need to follow, particularly if an environmental backlash grows, there are no current plans to do so and such a move is unpopular within the Bitcoin community. "That reduces your emissions to almost nothing," said Joseph Pallant, Blockchain for Climate's founder and executive director. Cryptocurrency platforms like Tezos or Near Protocol already use proof of stake and have vastly lowered their energy use.Read more of this story at Slashdot.

Long-time Slashdot reader schwit1 shared this analysis from Just Security:Huawei's plans for 6G and beyond make U.S. concerns over 5G look paltry: Huawei is proposing a fundamental internet redesign, which it calls "New IP," designed to build "intrinsic security" into the web. Intrinsic security means that individuals must register to use the internet, and authorities can shut off an individual user's internet access at any time. In short, Huawei is looking to integrate China's "social credit," surveillance, and censorship regimes into the internet's architecture... To avoid scrutiny of New IP's shortcomings, Huawei has circumvented international standards bodies where experts might challenge the technical shortcomings of the proposal. Instead, Huawei has worked through the United Nations' International Telecommunications Union (ITU), where Beijing holds more political sway... Huawei dominance on New IP and 6G would not only create a less free, less interoperable internet, it would pave the way for authoritarian governments to gain expanded say over future changes to the internet for years to come.Read more of this story at Slashdot.

Instagram for kids is a terrible idea, argues a columnist for the Observer. And yet:In March, Buzzfeed reported on Facebook's plans to develop a product for those too young to sign up to Instagram officially, as the platform requires users to be at least 13... Facebook says it will allow the company to focus on privacy and safety for children. Last week, an international coalition of children's health advocates, brought together by the Boston-based, non-profit Campaign for a Commercial-Free Childhood, disagreed and wrote an open letter to Zuckerberg urging the company to drop its plans. "While collecting valuable family data and cultivating a new generation of Instagram users may be good for Facebook's bottom line, it will likely increase the use of Instagram by young children who are particularly vulnerable to the platform's manipulative and exploitative features," it said... Maybe it is naive of me to expect that children will have any period of freedom from wondering "but how will it/I look?", but surely we should at least try to maintain that for as long as possible.Read more of this story at Slashdot.

Slashdot reader LeeLynx shares news from The Register about a Slackware 15 beta release (following the debut of February's alpha), "nearly five years after the distribution last saw a major update." (And nearly 28 years after its initial release back in 1993...)Created by Patrick Volkerding (who still lays claim to the title Benevolent Dictator For Life), the current release version arrived in the form of 2016's 14.2... The Linux kernel has been updated to 5.10.30 (at time of writing) with 5.11.14 available for testing. Desktop fans may be pleased to see, among the many updates, KDE Plasma hitting 5.21.4 as well as updates for old faithfuls, such as Mozilla Firefox and Thunderbird. The beta itself dropped on 12 April (with the 5.10.29 kernel) and Volkerding noted: "I'm going to go ahead and call this a beta even though there's still no fix for the illegal instruction issue with 32-bit mariadb. But there should be soon." Tinkering has continued since, judging by the change log, although the beta tag brings hope there will be a release before long.Read more of this story at Slashdot.

In 2018 Oracle's Larry Ellison bought the historic Cal Neva Lodge on the scenic north shore of California's Lake Tahoe for $36 million. Then in 2019 Mark Zuckerberg bought a $59 million compound on Lake Tahoe's west shore. But now a wave of techies are moving in, reports Outside magazine, "freed by COVID from cubicles and work commutes. They migrated, laptops in tow, to mountain towns all over the West, transforming them into modern-day boomtowns: 'Zoom-towns.'""It's the wildest time," says realtor Katey Brandenburg, who works on Tahoe's Nevada side. For her and other realtors around the lake, the autumn of 2020 felt like winning the lottery. "I paid off a lifetime of debt — 28 years of loans, college, credit cards, and cars — in three months." All told, 2020 saw more than 2,350 homes sold across the Tahoe Basin, for a boggling $3.28 billion, up from $1.76 billion in 2019, according to data analyzed by Sierra Sotheby's. That $3 billion stat is on a par with 2020 home-sales revenues in Aspen, Colorado (albeit there, the latest average home-sale price came in at $11 million). The trend is in line with real estate records being shattered from Sun Valley, Idaho, to Stowe, Vermont. And according to a just-released market update, it hasn't stopped: in the first quarter of 2021, median prices for single-family homes increased by an astronomical 70 percent year over year in Truckee, 72 percent in South Lake, and 81 percent in Incline Village... "A disproportionate number of people who purchased homes in Tahoe in 2020 are employees of some of the largest tech companies in the Bay Area," says Deniz Kahramaner, founder of Atlasa, a real estate brokerage firm that specializes in data analytics. Of the 2,280 new-home buyers Atlasa identified throughout the Tahoe region in 2020, roughly 30 percent worked at software companies. The top three employers were Google (54 buyers), Apple (46), and Facebook (34)... There is, however, one glaring issue with all this rapid, high-priced growth: the people who actually make a mountain town run — the ski instructors and patrollers, lift operators and shuttle drivers, housekeepers and snowcat mechanics, cooks and servers — can no longer afford to live there. The article does note higher property taxes going toward public services (along with "more money eventually pumping into bars and restaurants.") And it also acknowledges affordable housing has for decades been an issue in tourist towns. "It's just suddenly on steroids..."Read more of this story at Slashdot.

FTP (file transfer protocol) celebrated its 50th anniversary this week. Long-time Slashdot reader sandbagger shares an article commemorating a half-century of FTP:Over the years, the FTP protocol got refined with 16 different revisions(*1) adding support with TCP/IP, a secure extension also known as FTPS which is leveraging the same tech as HTTPS and more recent addition like IPv6 support. Fifty years after its inception, FTP is still going very strong with millions of FTP server still being exposed on the internet which is fairly amazing considering the bad press it gets...Read more of this story at Slashdot.

"Facebook has repeatedly allowed world leaders and politicians to use its platform to deceive the public or harass opponents despite being alerted to evidence of the wrongdoing," reports the Guardian:The Guardian has seen extensive internal documentation showing how Facebook handled more than 30 cases across 25 countries of politically manipulative behavior that was proactively detected by company staff. The investigation shows how Facebook has allowed major abuses of its platform in poor, small and non-western countries in order to prioritize addressing abuses that attract media attention or affect the US and other wealthy countries. The company acted quickly to address political manipulation affecting countries such as the US, Taiwan, South Korea and Poland, while moving slowly or not at all on cases in Afghanistan, Iraq, Mongolia, Mexico and much of Latin America. "There is a lot of harm being done on Facebook that is not being responded to because it is not considered enough of a PR risk to Facebook," said Sophie Zhang, a former data scientist at Facebook who worked within the company's "integrity" organization to combat inauthentic behavior. "The cost isn't borne by Facebook. It's borne by the broader world as a whole."Read more of this story at Slashdot.

"Two satellites from the fast-growing constellations of OneWeb and SpaceX's Starlink dodged a dangerously close approach with one another in orbit," reports The Verge, citing representatives from both OneWeb and the U.S. Space Force.On March 30th, five days after OneWeb launched its latest batch of 36 satellites from Russia, the company received several "red alerts" from the US Space Force's 18th Space Control Squadron warning of a possible collision with a Starlink satellite. Because OneWeb's constellation operates in higher orbits around Earth, the company's satellites must pass through SpaceX's mesh of Starlink satellites, which orbit at an altitude of roughly 550 km. One Space Force alert indicated a collision probability of 1.3 percent, with the two satellites coming as close as 190 feet — a dangerously close proximity for satellites in orbit. If satellites collide in orbit, it could cause a cascading disaster that could generate hundreds of pieces of debris and send them on crash courses with other satellites nearby... Space Force's urgent alerts sent OneWeb engineers scrambling to email SpaceX's Starlink team to coordinate maneuvers that would put the two satellites at safer distances from one another. While coordinating with OneWeb, SpaceX disabled its automated AI-powered collision avoidance system to allow OneWeb to steer its satellite out of the way, according to OneWeb's government affairs chief Chris McLaughlin... SpaceX's automated system for avoiding satellite collisions has sparked controversy, raising concerns from other satellite operators who say they have no way of knowing which way the system will move a Starlink satellite in the event of a close approach.Read more of this story at Slashdot.

"Sydney university student Pablo Bonilla, 21, had his first academic paper published overnight and it might just change the shape of computing forever," writes Australia's national public broadcaster ABC:As a second-year physics student at the University of Sydney, Mr Bonilla was given some coding exercises as extra homework and what he returned with has helped to solve one of the most common problems in quantum computing. His code spiked the interest of researchers at Yale and Duke in the United States and the multi-billion-dollar tech giant Amazon plans to use it in the quantum computer it is trying to build for its cloud platform Amazon Web Services.... Assistant professor Shruti Puri of Yale's quantum research program said the new code solved a problem that had persisted for 20 years. "What amazes me about this new code is its sheer elegance," she said. "Its remarkable error-correcting properties are coming from a simple modification to a code that has been studied extensively for almost two decades...." Co-author of the paper, the University of Sydney's Ben Brown, said the brilliance of Pablo Bonilla's code was in its simplicity... "We just made the smallest of changes to a chip that everybody is building, and all of a sudden it started doing a lot better. It's quite amazing to me that nobody spotted it in the 20-or-so years that people have been working on that model."Read more of this story at Slashdot.

Google's Android team supports Rust for developing the Android operating system. Now they're also helping evaluate Rust for Linux kernel development. Their hopes, among other things, are that "New code written in Rust has a reduced risk of memory safety bugs, data races and logic bugs overall," that "abstractions that are easier to reason about," and "More people get involved overall in developing the kernel, thanks to the usage of a modern language." Linus Torvalds responded in a new interview with IT Wire (shared by Slashdot reader juul_advocate):The first patches for Rust support in the Linux kernel have been posted and the man behind the kernel says the fact that these are being discussed is much more important than a long post by Google about the language. Linus Torvalds told iTWire in response to queries that Rust support was "not there yet", adding that things were "getting to the point where maybe it might be mergeable for 5.14 or something like that..." Torvalds said that it was still early days for Rust support, "but at least it's in a 'this kind of works, there's an example, we can build on it'." Asked about a suggestion by a commenter on the Linux Weekly News website, who said, during a discussion on the Google post, "The solution here is simple: just use C++ instead of Rust", Torvalds could not restrain himself from chortling. "LOL," was his response. "C++ solves _none_ of the C issues, and only makes things worse. It really is a crap language. "For people who don't like C, go to a language that actually offers you something worthwhile. Like languages with memory safety and [which] can avoid some of the dangers of C, or languages that have internal GC [garbage collection] support and make memory management easier. C++ solves all the wrong problems, and anybody who says 'rewrite the kernel in C++' is too ignorant to even know that." He said that when one spoke of the dangers of C, one was also speaking about part of what made C so powerful, "and allows you to implement all those low-level things efficiently". Torvalds added that, while garbage collection is "a very good thing in most other situations," it's "generally not necessarily something you can do in a low-level system programming."Read more of this story at Slashdot.

A U.S. advocacy group called The Repair Association is urging Americans to demand protections for their right to repair from the country's consumer protection agency. "Tell the FTC: People just want to fix their stuff!" argues a page urging concerned U.S. citizens to sign an online petition (shared by long-time Slashdot reader Z00L00K). The petition asks the FTC to... Enforce the law against companies who use illegal tying arrangements to force consumers to purchase connected repair services. Enforce the law against companies who violate the Magnuson Moss Warranty Act by voiding warranties when a consumer fixes something themselves or uses third-party parts or repair services. Enforce the law against companies who refuse to sell replacement parts, diagnostic and repair tools, or service information to independent repair providers. Publish new guidance on unfair, deceptive, and abusive terms in end user license agreements (EULAs) that: restrict independent or self repair; restrict access to parts and software; prohibit the transfer of user licenses; that and that purport to void warranties for independent or self repair. Issue new rules prohibiting exclusivity arrangements with suppliers, customers, and repair providers that exclude independent repair providers and suppress competition in the market for repair services. Issue new rules prohibiting companies from deceiving customers by selling products which cannot be repaired without destroying the device or cannot be repaired outside of the company's own service network, without disclosing that fact at the point of sale.Read more of this story at Slashdot.

EW reports:Felix Silla's friend and former Buck Rogers in the 25th Century costar Gil Gerard reported on Twitter that Silla died Friday after a battle with pancreatic cancer. Coming in at just under 4 feet tall and only 70 pounds, Silla was the perfect choice for the mumbling Cousin Itt on The Addams Family. For years, audiences didn't see his face, the character covered in a full-length hairpiece, sporting sunglasses and a bowler hat... Silla did not provide the distinct mumbling voice of Cousin Itt. That was added by sound engineer Tony Magro in production... He first came to the United States in 1955 and began his career touring with the Ringling Bros. and Barnum & Bailey Circus for seven years. He worked as a trapeze artist, tumbler, and bareback horse rider. Eventually, he settled in Hollywood in 1962, where he became a stuntman. He went on to work in movies like A Ticklish Fair, TV shows like Bonanza, and appeared in the first pilot for Star Trek, "The Cage." His small stature often helped him find work, including as Cousin Itt, robot sidekick Twiki on the NBC series Buck Rogers in the 25th Century, and even as a hang-gliding Ewok in Star Wars: Return of the Jedi... He also excelled as a stand in, double, and stuntman working on projects such as Planet of the Apes, Demon Seed, Indiana Jones and the Temple of Doom, The Towering Inferno, The Hindenburg, E.T. the Extra-Terrestrial, Poltergeist, The Golden Child, Howard the Duck, and Batman Returns. In 2018 one Las Vegas blog spotted Silla with Gil Gerard, posting a picture of the two side by side -- just as they'd posed decades earlier on Buck Rogers in the 25th Century. While for that show Mel Blanc had provided the voice for Twiki the robot, the blog notes that Silla himself supplied the voice of Mortimer Goth in the Sims 2 videogame.Read more of this story at Slashdot.

America's top law enforcement agency "obtained a court order that allowed it to remove a backdoor program from hundreds of private Microsoft Exchange servers that were hacked through zero-day vulnerabilities earlier this year," reports CSO. (Thanks to detritus. (Slashdot reader #46,421) for sharing the news...)Earlier this week, the Department of Justice announced that the FBI was granted a search and seizure warrant by a Texas court that allows the agency to copy and remove web shells from hundreds of on-premise Microsoft Exchange servers owned by private organizations. A web shell is a type of program that hackers install on hacked web servers to grant them backdoor access and remote command execution capabilities on those servers through a web-based interface. In this case, the warrant targeted web shells installed by a cyberespionage group dubbed Hafnium that is believed to have ties to the Chinese government. In early March, Microsoft reported that Hafnium has been exploiting previously unpatched vulnerabilities in Microsoft Exchange to compromise servers. At the same time, the company released patches for those vulnerabilities, as well as indicators of compromise and other detection tools, but this didn't prevent other groups of attackers from exploiting the vulnerabilities after they became public. In its warrant application, dated April 13, the FBI argues that despite the public awareness campaigns by Microsoft, CISA and the FBI itself, many servers remained infected with the web shell deployed by Hafnium. While the exact number has been redacted from the unsealed warrant, the DOJ said in a press release that it was "hundreds." The FBI asked for, and received court approval, to access the malicious web shells through the passwords set by the original attackers and then use that access against the malware itself by executing a command that will delete the web shell, which is essentially an .aspx script deployed on the server. The FBI was also allowed to make a copy of the web shells first because they could constitute evidence. The warrant states that it "does not authorize the seizure of any tangible property" or the copying or alteration of any content from the servers aside from the web shell themselves, which are identified in the warrant by their unique file paths. This means the FBI was not granted permission to patch the vulnerabilities to protect the servers from future exploitation or to remove any additional malware or tools that hackers might have already deployed... The FBI sent an email message from an official email account, including a copy of the warrant, to the email addresses associated with the domain names of the infected servers. An official statement from the Department of Justice is already using the past tense, announcing that U.S. authorities "have executed a court-authorized operation to copy and remove malicious web shells from hundreds of vulnerable computers in the United States. They were running on-premises versions of Microsoft Exchange Server software used to provide enterprise-level email service."Read more of this story at Slashdot.

An anonymous reader quotes a report from IGN: In its first five months on the market, The PlayStation 5 has become the fastest-selling console in U.S. history in both unit and dollar sales. As revealed by The NPD Group's Mat Piscatella, this news arrives one month after the PS5 became the fastest-selling console in U.S. history in dollar sales. Despite that new record, the Nintendo Switch has continued its reign as the best selling hardware platform in both units and dollars during March 2021. However, the PS5 did rank first in hardware dollar sales in Q1 2021.Read more of this story at Slashdot.

On Thursday, a federal jury in Seattle, Washington, found that former IBM sales manager Scott Kingston had been unlawfully fired by the company and denied sales commission after challenging the treatment of subordinates as racially biased. And it awarded him $11.1 million. The Register reports: The case dates back to 2017 when two IBM sales people within months of each other closed similarly large software sales deals that led to vastly different commission payments. Nick Donato, who is White, received more than $1m for a SAS Institute deal, while Jerome Beard, who is Black, was paid about $230,000 for closing a sale to HCL Technologies. Beard was paid about 15 per cent of what he should have received under his agreement with IBM, despite a company policy not to cap sales commissions. Kingston, who managed the two salespeople through two lower-level managers, raised his concerns about racial discrimination with his superiors toward the end of 2017. Recalling his jury testimony, he said of his conversation with his managers, "They were telling me it wasn't about money; it was some other reason. I flat out said, 'You are leaving no possibility for anybody to conclude another reason than racial discrimination. You are foreclosing any other possible conclusion. You are going to get us sued.'" And that's what happened. Beard sued IBM in 2018. After a failed motion by IBM to dismiss the case in April, 2020, the company settled for an undisclosed sum several months later. Kingston sued in 2019 [PDF], after IBM fired him in April, 2018, claiming he had erred in approving Donato's seven-figure commission. The company also fired two other IBM managers, Andre Temidis and Michael Lee, who raised similar objections to the allegedly discriminatory capping of commission due to an Arab-American salesperson. The Seattle jury found [PDF] IBM violated Washington State law against discrimination and policies against race discrimination and withholding wages. "We are disappointed by the jury's verdict," IBM said in a statement emailed to The Register. "IBM does not condone retaliation, race discrimination, or any other form of discrimination. The company will consider all of its options on appeal."Read more of this story at Slashdot.

Aflorithmic, an AI-driven audio cloning startup, has created a digital version of Albert Einstein using AI voice cloning technology drawing on audio records of the famous scientist's actual voice. TechCrunch reports: Alforithmic says the "digital Einstein" is intended as a showcase for what will soon be possible with conversational social commerce. Which is a fancy way of saying deepfakes that make like historical figures will probably be trying to sell you pizza soon enough, as industry watchers have presciently warned. The startup also says it sees educational potential in bringing famous, long-deceased figures to interactive "life." Or, well, an artificial approximation of it -- the "life" being purely virtual and Digital Einstein's voice not being a pure tech-powered clone either; Alforithmic says it also worked with an actor to do voice modelling for the chatbot (because how else was it going to get Digital Einstein to be able to say words the real-deal would never even have dreamt of saying -- like, er, "blockchain"?). So there's a bit more than AI artifice going on here too. In a blog post discussing how it recreated Einstein's voice the startup writes about progress it made on one challenging element associated with the chatbot version -- saying it was able to shrink the response time between turning around input text from the computational knowledge engine to its API being able to render a voiced response, down from an initial 12 seconds to less than three (which it dubs "near-real-time"). But it's still enough of a lag to ensure the bot can't escape from being a bit tedious. The report notes that the video engine powering the 3D character rendering components of this "digital human" version of Einstein is the work of another synthesized media company, UneeQ, which is hosting the interactive chatbot version on its website.Read more of this story at Slashdot.

Dogecoin has seen its price rise by a factor of five over the last week. Yesterday, it was trading at $0.13. Today, it's one of the world's 10 most valuable cryptocurrencies, with a market capitalization of $45 billion. Ars Technica's Timothy B. Lee writes: Dogecoin's price tripled over the next 36 hours. My editor suggested that I write about whether Dogecoin's rise is a sign of an overheated crypto market, but for a coin like Dogecoin, I'm not sure that's even a meaningful concept. Dogecoin isn't a company that has revenues or profits. And unlike bitcoin and ether, no one seriously thinks it's going to be the foundation of a new financial system. People are trading Dogecoin because it's fun to trade and because they think they might make money from it. The rising price is a sign that a lot of people have decided it would be fun to speculate in Dogecoin. Of course, the fact that lots of people have money to spend on joke investments might itself be a result of larger macroeconomic forces. The combination of stimulus spending, low interest rates, and pandemic-related saving means that a lot of people have more money than usual sitting in their bank accounts. And restrictions on travel and nightlife mean that many of those same people have a lot of time on their hands.Read more of this story at Slashdot.

AmiMoJo shares a report from The Guardian: The whitest-ever paint has been produced by academic researchers, with the aim of boosting the cooling of buildings and tackling the climate crisis. The new paint reflects 98% of sunlight as well as radiating infrared heat through the atmosphere into space. In tests, it cooled surfaces by 4.5C below the ambient temperature, even in strong sunlight. The researchers said the paint could be on the market in one or two years. Currently available reflective white paints are far better than dark roofing materials, but only reflect 80-90% of sunlight and absorb UV light. This means they cannot cool surfaces below ambient temperatures. The new paint does this, leading to less need for air conditioning and the carbon emissions they produce, which are rising rapidly. The new paint was revealed in a report in the journal ACS Applied Materials & Interfaces. Three factors are responsible for the paint's cooling performance. First, barium sulphate was used as the pigment which, unlike conventional titanium dioxide pigment, does not absorb UV light. Second, a high concentration of pigment was used -- 60%. Third, the pigment particles were of varied size. The amount of light scattered by a particle depends on its size, so using a range scatters more of the light spectrum from the sun. The researchers said the ultra-white paint uses a standard acrylic solvent and could be manufactured like conventional paint. They claim the paint would be similar in price to current paints, with barium sulphate actually cheaper than titanium dioxide. They have also tested the paint's resistance to abrasion, but said longer-term weathering tests were needed to assess its long-term durability.Read more of this story at Slashdot.

wiredmikey shares a report from SecurityWeek: Security response professionals are scrambling to measure the fallout from a software supply chain compromise of Codecov Bash Uploader that went undetected since January and exposed sensitive secrets like tokens, keys and credentials from organizations around the world. The hack occurred four months ago but was only discovered in the wild by a Codecov customer on the morning of April 1, 2021, the company said. Codecov is considered the vendor of choice for measuring code coverage in the tech industry. The company's tools help developers understand and measure lines of codes executed by a test suite and is widely deployed in big tech development pipelines. The company claims that more than 29,000 enterprises use its code coverage insights to check code quality and maintain code coverage. Codecov did not say how many customers were impacted or had data stolen in the incident. According to Codecov, the altered version of the Bash Uploader script could potentially affect:- Any credentials, tokens, or keys that our customers were passing through their CI runner that would be accessible when the Bash Uploader script was executed.- Any services, datastores, and application code that could be accessed with these credentials, tokens, or keys.- The git remote information (URL of the origin repository) of repositories using the Bash Uploaders to upload coverage to Codecov in CI.Read more of this story at Slashdot.

Mercedes-Benz's parent company Daimler AG unveiled Thursday its newest battery-powered sedan that challenges Tesla in the high-end electric car space. CNBC reports: The 2022 Mercedes-Benz EQS, unveiled Thursday, marks a new era for the German automaker as it pivots to EVs. The car will be part of its large S-Class car family when it arrives in U.S. showrooms in the fall. Most notably, the interior of the vehicle looks like a cockpit out of a futuristic spacecraft more than a car. It has screens across nearly the entire dashboard of the vehicle. In total, it features three screens under a single 56-inch curved glass surface, including a passenger screen that will not be visible to the driver. The automaker did not release pricing for the EQS, however industry experts expect it to easily top $100,000. The starting price on the 2021 Mercedes-Benz S-Class ranges between $94,000 and $160,000. Its Mercedes-Maybach S models can top $200,000. The price range for Tesla's Model S large sedan ranges from around $79,990 to $149,990, including a new high-end performance model, Model S Plaid.Read more of this story at Slashdot.

An anonymous reader quotes a report from The Associated Press: The U.S. House of Representatives Judiciary Committee formally approved a report accusing Big Tech companies of buying or crushing smaller firms, Representative David Cicilline's office said in a statement on Thursday. With the approval during a marathon, partisan hearing, the more than 400-page staff report will become an official committee report, and the blueprint for legislation to rein in the market power of the likes of Alphabet's Google, Apple, Amazon and Facebook. The report was approved by a 24-17 vote that split along party lines. The companies have denied any wrongdoing. Suggested legislation in the report ranged from the aggressive, such as potentially barring companies like Amazon.com from operating the markets in which they also compete, to the less controversial, like increasing the budgets of the agencies that enforce antitrust law -- the Justice Department's Antitrust Division and the Federal Trade Commission. The report also urged Congress to allow antitrust enforcers more leeway in stopping companies from purchasing potential rivals, something that is now difficult.Read more of this story at Slashdot.

According to app developer Kosta Eleftheriou, Apple's App Store hosted a kid's game that's actually a front for gambling websites. "The secret password isn't one you'd be likely to guess: you have to be in the right country -- or pretend to be in the right country using a VPN," writes Sean Hollister via The Verge. "But then, instead of launching an ugly monkey-flipping endless runner game filled with typos and bugs, the very same app launches a casino experience." From the report: The app, "Jungle Runner 2k21," has already disappeared from the App Store, presumably thanks to publicity from Gizmodo and Daring Fireball, who each wrote about Eleftheriou's finding earlier today. It's not the only one, though: the same developer, "Colin Malachi," had another incredibly basic game on the App Store called "Magical Forest - Puzzle" that was also a front for gambling. [...] I accessed them from a VPN server in Turkey; While Daring Fireball notes that users in other non-US countries like Italy also seem to have been able to access the gambling sites, I tried them with a number of other locations including Italy without success. Unlike the multi-million dollar App Store scams that Eleftheriou uncovered earlier this year, it's not hard to see why Apple's App Store review program might have missed these -- they largely look like your typical shovelware if you don't know the trick, with only a handful of tells... like the fact that Jungle Runner uses a Pastebin for its privacy policies. It's not necessarily clear to me that they'd be violating very many of Apple's App Store policies, either. Gambling apps are permitted by Apple, as long as they're geo-restricted to regions where that gambling is permitted by law, and you could maybe argue that's exactly what this developer did by checking your IP address.Read more of this story at Slashdot.

Facebook has reached a key environmental goal early: The social media company now purchases enough renewable energy to run all of its operations around the world, it announced this week. CBS News reports: Facebook joins a handful of tech companies that have committed to ambitious green energy goals, including Microsoft, Apple and Alphabet, the parent company of Google. Over the past few years, Facebook has cut its greenhouse gas emissions significantly. Since 2017, carbon emissions from the company's operations have fallen by 94%, surpassing its goals of reducing emissions by three-quarters, according to its sustainability report. Emissions were cut primarily by focusing on the massive data centers that power the servers running Facebook's services, as well as its office locations. "Data centers for us are the primary sources of electricity consumption and the primary footprint we've been thinking about," said Urvi Parekh, the company's director of renewable energy. Cutting down emissions meant "making our data centers as efficient as possible and reducing the amount of electricity that's consumed" as well as purchasing enormous amounts of wind and solar power to run those centers. Last year, when most of its employees started working remotely, Facebook said it purchased enough clean energy to match the amount used by employees working at home. The company still emits some carbon from its construction activity and natural-gas use in some locations where it has no other energy options, Parekh said. Last year, that was the equivalent of 38,000 metric tons of carbon dioxide (or about as much carbon as is emitted from 8,900 cars driving for one year). Facebook is offsetting those emissions by investing in reforestation and other carbon-removal projects, Parekh said. The company has set a new goal of reaching net-zero emissions across its entire supply chain by 2030.Read more of this story at Slashdot.

An anonymous reader quotes a report from Gizmodo: Throughout December, someone was setting fires at the Martin Luther King Jr. Community Presbyterian Church, a "predominately Black" congregation located in Springfield, Massachusetts. An FBI affidavit claims that the last of these fires, set on Dec. 28, "essentially destroyed" the building -- burning away large parts of the interior. During this period, the same person is suspected of having carried out a "series of tire-slashings" targeted at vehicles near or around the church -- a majority of which were owned by Black individuals. Now, 44-year-old Maine resident Dushko Vulchev has been arrested in connection to the crimes. He was charged in a federal court in Springfield on Thursday, a release from the U.S. Justice Department shows, and is potentially facing decades behind bars. Court documents illustrate how state, local and federal authorities used a variety of surveillance footage and data collection to piece together Vulchev's whereabouts and place him at or near these crimes. In particular, the vandal slipped up when he allegedly slashed the tires of a Tesla located not far from the church. Authorities say one of the car's many pre-installed security cameras caught blatant images of the culprit as he damaged the tires, then later returned to steal them along with the vehicle's rims. "Based on my training and experience and this investigation, I am aware that the Tesla mentioned above is equipped with cameras at various points around the body," said the FBI agent who wrote the affidavit. "I have reviewed video footage retrieved from the Tesla showing an individual that I can identify as Vulchev...The video footage from the Tesla shows Vulchev at a close distance crouching near the Tesla and using a tire iron to remove the wheels." Using other data collected and a variety of local surveillance footage, law enforcement was able to build a case against Vulchev.Read more of this story at Slashdot.

The Google Project Zero security team has updated its vulnerability disclosure guidelines to add a cushion of 30 days to some security bug disclosures, so end-users have enough time to patch software and prevent attackers from weaponizing bugs. From a report: This week's changes are of particular importance because a large part of the cybersecurity community has adopted Project Zero's rules as the unofficial methodology for disclosing a security bug to software vendors and then to the general public. Prior to today, Google Project Zero researchers would give software vendors 90 days to fix a security bug. When the bug was patched, or at the end of the 90 days time window, Google researchers would publish details about the bug online (on their bug tracker). Starting this week, Project Zero says it will wait 30 days before publishing any details about the bug. The reasoning behind the extra time window is to allow users of the affected products time to update their software, an operation that can usually take days or weeks in some complex corporate networks.Read more of this story at Slashdot.

The days of experts gathering in a sealed-off room to sip coffee and grade beans on their color, aroma and taste may be numbered. From a report: An Israeli company has developed a handheld device that is able to scan beans to determine their quality. The machine, powered by artificial intelligence, will need a human to input the quality parameters first, but after that, it will be able to classify coffee before it's even roasted. The company has completed a pilot program with Carcafe, the Colombian division of Volcafe, one of the world's largest coffee traders. A shift to computers would upend the traditional way coffee has been graded by humans, known as cupping. The well-paid and trained examiners, or Q graders, at the ICE Futures U.S. exchange in New York conduct the laborious task of determining the quality and value of the coffee beans received by the bourse. Trading houses and roasters also usually have their own graders. Cupping is an involved process, not unlike that undertaken by wine sommeliers. Q graders weigh the coffee and grind it into a cup. They sniff the dry grounds, taking notes on the fragrance. Water heated to 200 degrees Fahrenheit (93 Celsius) is poured over the grounds and the graders smell the wet coffee. After 4 minutes, the crust that forms on top of the cup is broken and grounds and foam are removed. After waiting 15 minutes for the coffee to cool, and only then is the coffee slurped up in a spoon. "It's the human that establishes the sensorial part," said Oswaldo Aranha Neto, a coffee industry veteran who just joined Demetria as a board member. "You need to teach the robot what to do."Read more of this story at Slashdot.

A mystery photo and a geography enthusiast helped locate a missing California hiker who is now safely back home. From a report: Rene Compean of Palmdale was on a hike Monday near Mount Waterman, a popular ski destination in the San Gabriel Mountains in Southern California. While the 45-year-old was on his outdoor adventure, he snapped a picture. Compean texted the shot to a friend. And then, he went off the map. He was reported missing at 6 p.m. by a friend, who received one last text from Compean saying he was worried he was lost and his cell phone battery was running low. The photo was turned over to investigators at the Los Angeles County Sheriff's Department who posted it to social media, asking if anyone recognized the spot in the photograph. Benjamin Kuo saw the message and thought he might be able to help. The report adds: As a satellite image aficionado, he was already familiar with tracking California wildfires in remote areas. "I've got a very weird hobby, which is I love taking a look at photos and figuring out where they're taken," Kuo told NBC Los Angeles. Using satellite images, maps and the scenery below Compean's feet in the photo, Kuo was able to estimate the coordinates of where he believed the man had gone missing. Kuo sent his tip to the sheriff's office, and a helicopter was sent to survey the area Tuesday. There, as if by magic, was Compean.Read more of this story at Slashdot.

NASA on Friday selected SpaceX to build spacecraft that would land astronauts on the moon for the first time since the last Apollo mission, according to a source selection document obtained by The Washington Post. From the report: The contract marks another major victory for the hard-charging company that vaults it to the top tier of the nation's aerospace companies and solidifies it as one of the space agency's most trusted partners. In winning the $2.9 billion contract, SpaceX beat out Jeff Bezos' Blue Origin, which had formed what it called a "national team" by partnering with aerospace giants Lockheed Martin, Northrop Grumman and Draper. SpaceX also won over Dynetics, a defense contractor based in Huntsville, Ala. NASA had originally chosen all three companies for the initial phase of the contract, and was expected to choose two of them to build the lunar lander. In other major programs, NASA has chosen multiple providers to foster competition and to ensure it has redundancy in case one can't deliver. But in choosing SpaceX alone, it sent a message that it fully trusts the growing company to fly its astronauts for its signature human exploration program -- Artemis, a campaign to return astronauts to the moon for the first time since 1972.Read more of this story at Slashdot.

Governor Andrew Cuomo signed a bill on Friday requiring all Internet service providers in New York to offer affordable high-speed access for low-income families. From a report: The providers can charge those families no more than $15 a month, Cuomo said during a briefing Friday at the Northland Workforce Training Center in Buffalo. He was joined by Eric Schmidt, former chief executive officer of Alphabet, who chairs a 15-member state commission focusing on using technology to help the state reopen better than it was before the virus. Cuomo also said an emergency fund from Schmidt Futures and the Ford Foundation will provide free Internet access to 50,000 students statewide through the 2021-22 school year. The bill passed by the state legislature caps a basic broadband plan at $15 a month and a higher-speed one at $20. Currently, a basic high-speed plan costs on average more than $50 a month, according to a statement from Assembly member Amy Paulin. Schmidt, who praised the embattled governor for his "extraordinary" leadership during the pandemic, said universal broadband access is the first and most important priority of the commission. Members were concerned about the "hundreds of thousands of people who apparently had no Internet access at all," Schmidt said, an impediment to learning and tele-medicine.Read more of this story at Slashdot.

For the first time, scientists have estimated how many Tyrannosaurus rex, the so-called king of dinosaurs, once roamed the Earth. From a report: The number is staggering: 2.5 billion Tyrannosaurus rex lived and died during the roughly 2.4 million years the species survived on the planet, according to a new study set to be published in the journal Science on Friday. The study may help contextualize the fossil record and the rarity of finding certain fossilized prehistoric organisms, according to lead researcher Charles Marshall, director of the University of California Museum of Paleontology. "I mean, to me, it's just amazing we could have come up with a number," Marshall told Axios. "Some people have asked me, 'How does your number compare to other numbers of the total that have ever lived?' The answer is it doesn't because there weren't any."Read more of this story at Slashdot.

Google is all alone with its proposed advertising technology -- FLoC-- to replace third-party cookies. Every major browser that uses the open source Chromium project has declined to use it, and it's unclear what that will mean for the future of advertising on the web. Firefox, Safari, Microsoft Edge, Vivaldi, and Brave have said they are not implementing Google's FLoC into their browsers.Read more of this story at Slashdot.

The Internet of Secure Things Alliance, an IoT security certification body (a.k.a. ioXt), has launched a new security certification for mobile apps and VPNs. From a report: The new ioXt compliance program includes a 'mobile application profile' -- a set of security-related criteria against which apps can be certified. The profile or mobile app assessment includes additional requirements for virtual private network (VPN) applications. Google and Amazon had a hand in shaping the criteria, along with number of certified labs such as NCC Group and Dekra, and mobile app security testing vendors such as NowSecure. Google's VPN within the Google One service is one of the first to be certified against the criteria. Mobile app makers can get their apps certified against a set of security and privacy requirements. The ioXt Alliance has a broad cross-section of members from the tech industry, with its board comprising execs from Amazon, Comcast, Facebook, Google, Legrand, Resideo, Schneider Electric, T-Mobile, the Zigbee Alliance, and the Z-Wave Alliance. About 20 industry figures helped write the requirements for the mobile app profile, including Amit Agrawal, a principal security architect at Amazon, and Brooke Davis from the Strategic Partnerships team at Google Play. Both are vice-chairs of the mobile app profile group.Read more of this story at Slashdot.

Apple Music told artists it pays a penny per stream in a letter reviewed by The Wall Street Journal. From a report: The disclosure, made in a letter to artists delivered Friday via the service's artist dashboard and sent to labels and publishers, is part of a growing effort by music-streaming services to show they are artist-friendly. For Apple, it can be seen as a riposte to Spotify Technology, which last month shared some details of how it pays the music industry for streams on its service. Apple's penny-per-stream payment structure -- which music-industry experts say can dip lower -- is roughly double what Spotify, the world's largest music-streaming service, pays music-rights holders per stream. Spotify pays an average of about one-third to one-half penny per stream, though its larger user base generates many more streams. Apple's payments come out of monthly subscription revenue from users. Artists, managers and lawyers, still reeling from the loss of touring revenue during the pandemic, have been calling for higher payouts from music streaming, which has grown rapidly in the past year. Many fans have joined the push to raise artists' compensation.Read more of this story at Slashdot.

alaskana98 writes: The Defense Department has confirmed that leaked photos and video of "unidentified aerial phenomena" taken in 2019 are indeed legitimate images of unexplained objects. Photos and videos of triangle-shaped objects blinking and moving through the clouds were taken by Navy personnel, Pentagon spokeswoman Sue Gough said in a statement to CNN. She also confirmed that photos of three unidentified flying objects -- one "sphere" shaped, another "acorn" shaped and one characterized as a "metallic blimp" -- were also taken by Navy personnel. "As we have said before, to maintain operations security and to avoid disclosing information that may be useful to potential adversaries, DOD does not discuss publicly the details of either the observations or the examinations of reported incursions into our training ranges or designated airspace, including those incursions initially designated as UAP," Gough said. She also said that the Unidentified Aerial Phenomena Task Force, created in August to investigate UFO sightings observed by the military, has "included these incidents in their ongoing examinations." The Navy photos and videos were published by Mystery Wire and on Extraordinary Beliefs' website last week but had been circulating online since last year. There have been "a number of reports of unauthorized and/or unidentified aircraft entering various military-controlled ranges and designated air space in recent years" the Navy said in 2019. Last year, the Pentagon released three videos showing "unidentified aerial phenomena" -- clips that the US Navy had previously confirmed were real.Read more of this story at Slashdot.

Australia's federal court found that Google misled users about personal location data collected through Android mobile devices between 2017 and 2018, the country's competition regulator said Friday. From a report: The Australian Competition and Consumer Commission (ACCC) -- which launched legal proceedings against Google in 2019 -- said the ruling was an "important victory for consumers" with regard to the protection of online privacy. Google misled Android users into thinking the search giant could collect personal data only if the "location history" setting was on, the ACCC said. The court found that Google could still collect, store and use personally identifiable location data if the setting for "web and application activity" was on -- even if "location history" was turned off. "This is an important victory for consumers, especially anyone concerned about their privacy online, as the Court's decision sends a strong message to Google and others that big businesses must not mislead their customers," ACCC Chair Rod Sims said in a statement.Read more of this story at Slashdot.