Enlarge (credit: Azaliya via Getty)

For more than a decade, in blog posts and scientific papers and public talks, the psychologist Hal Herzog has questioned whether owning pets makes people happier and healthier.

It is a lonely quest, convincing people that puppies and kittens may not actually be terrific for their physical and mental health. “When I talk to people about this,” Herzog recently said, “nobody believes me.” A prominent professor at a major public university once described him as “a super curmudgeon” who is, in effect, “trying to prove that apple pie causes cancer.”

As a teenager in New Jersey in the 1960s, Herzog kept dogs and cats, as well as an iguana, a duck, and a boa constrictor named Boa. Now a professor emeritus at Western Carolina University, he insists he’s not out to smear anyone’s furry friends. In a blog post questioning the so-called pet effect, in 2012, Herzog included a photo of his cat, Tilly. “She makes my life better,” he wrote. “Please Don’t Blame The Messenger!”

Enlarge / Screen capture of a Runway Gen-3 Alpha video generated with the prompt "A giant humanoid, made of fluffy blue cotton candy, stomping on the ground, and roaring to the sky, clear blue sky behind them." (credit: Runway)

On Sunday, Runway announced a new AI video synthesis model called Gen-3 Alpha that's still under development, but it appears to create video of similar quality to OpenAI's Sora, which debuted earlier this year (and has also not yet been released). It can generate novel, high-definition video from text prompts that range from realistic humans to surrealistic monsters stomping the countryside.

Unlike Runway's previous best model from June 2023, which could only create two-second-long clips, Gen-3 Alpha can reportedly create 10-second-long video segments of people, places, and things that have a consistency and coherency that easily surpasses Gen-2. If 10 seconds sounds short compared to Sora's full minute of video, consider that the company is working with a shoestring budget of compute compared to more lavishly funded OpenAI—and actually has a history of shipping video generation capability to commercial users.

Gen-3 Alpha does not generate audio to accompany the video clips, and it's highly likely that temporally coherent generations (those that keep a character consistent over time) are dependent on similar high-quality training material. But Runway's improvement in visual fidelity over the past year is difficult to ignore.

Enlarge (credit: eldadcarin | iStock / Getty Images Plus)

Elon Musk is still frantically pushing to launch X payment services in the US by the end of 2024, Bloomberg reported Tuesday.

Launching payment services is arguably one of the reasons why Musk paid so much to acquire Twitter in 2022. His rebranding of the social platform into X revives a former dream he had as a PayPal co-founder who fought and failed to name the now-ubiquitous payments app X. Musk has told X staff that transforming the company into a payments provider would be critical to achieving his goal of turning X into a so-called everything app "within three to five years."

Late last year, Musk said it would "blow" his "mind" if X didn't roll out payments by the end of 2024, so Bloomberg's report likely comes as no big surprise to Musk's biggest fans who believe in his vision. At that time, Musk said he wanted X users' "entire financial lives" on the platform before 2024 ended, and a Bloomberg review of "more than 350 pages of documents and emails related to money transmitter licenses that X Payments submitted in 11 states" shows approximately how close he is to making that dream a reality on his platform.

Enlarge (credit: Samuel Axon)

A report by tech news site The Information suggests that Apple is shifting its augmented reality priorities. The next high-end version of the Vision Pro has purportedly been canceled while work continues on a more affordable version with a reduced feature set.

Citing both an employee in Apple's headset supply chain and one working in headset manufacturing for Apple, the report claims that the cheaper Vision product—perhaps around the $1,600 mark—is due before the end of 2025. Apple had originally intended to present this headset alongside the Vision Pro, similar to the models available in each iPhone release. The more affordable model would likely have fewer cameras, smaller speakers, and weigh less, though Apple has struggled to bring down the cost of the unit's displays.

Apple's efforts in augmented reality are closely watched by other players in the headset space, so even a momentary, situational step back from high-end headsets could have significant repercussions. The Information cites current and former Meta employees in describing how the company had killed plans for its own higher-end headset in January 2023, but it then began work on a new premium model five months after Apple's Vision Pro debut.

Enlarge (credit: sesame | DigitalVision Vectors)

Apple has abruptly discontinued its "buy now, pay later" (BNPL) service, Apple Pay Later, which turned Apple into a money lender when it launched last March in the US and became widely available in October.

The service previously allowed users to split the cost of purchases of up to $1,000 into four installments that were repaid over six weeks without worrying about extra fees or paying interest. For Apple, it was likely a move to increase total Apple Pay users as the company sought to offer more core financial services through its devices.

Now, it appears that Apple has found a different route to offer short-term loans at checkout in Apple Pay. An Apple spokesperson told 9to5Mac that the decision to end Apple Pay Later came ahead of the company's plan to start offering new types of installment loans globally.

Enlarge (credit: Getty Images)

Ransomware criminals have quickly weaponized an easy-to-exploit vulnerability in the PHP programming language that executes malicious code on web servers, security researchers said.

As of Thursday, Internet scans performed by security firm Censys had detected 1,000 servers infected by a ransomware strain known as TellYouThePass, down from 1,800 detected on Monday. The servers, primarily located in China, no longer display their usual content; instead, many list the site’s file directory, which shows all files have been given a .locked extension, indicating they have been encrypted. An accompanying ransom note demands roughly $6,500 in exchange for the decryption key.

The output of PHP servers infected by TellYouThePass ransomware. (credit: Censys)

The accompanying ransom note. (credit: Censys)

When opportunity knocks

The vulnerability, tracked as CVE-2024-4577 and carrying a severity rating of 9.8 out of 10, stems from errors in the way PHP converts Unicode characters into ASCII. A feature built into Windows known as Best Fit allows attackers to use a technique known as argument injection to convert user-supplied input into characters that pass malicious commands to the main PHP application. Exploits allow attackers to bypass CVE-2012-1823, a critical code execution vulnerability patched in PHP in 2012.

Enlarge / Ten milligram tablets of the hyperactivity drug, Adderall, made by Shire Plc, is shown in a Cambridge, Massachusetts pharmacy Thursday, January 19, 2006. (credit: Getty | Jb Reed)

The Centers for Disease Control and Prevention on Thursday warned that a federal indictment of an allegedly fraudulent telehealth company may lead to a massive, nationwide disruption in access to ADHD medications—namely Adderall, but also other stimulants—and could possibly increase the risk of injuries and overdoses.

"A disruption involving this large telehealth company could impact as many as 30,000 to 50,000 patients ages 18 years and older across all 50 US states," the CDC wrote in its health alert.

The CDC warning came on the heels of an announcement from the Justice Department Thursday that federal agents had arrested two people in connection with an alleged scheme to illegally distribute Adderall and other stimulants through a subscription-based online telehealth company called Done Global.  The company's CEO and founder, Ruthia He, was arrested in Los Angeles, and its clinical president, David Brody, was arrested in San Rafael, California.

Enlarge (credit: OpenAI / Apple / Benj Edwards)

On Monday, Apple announced it would be integrating OpenAI's ChatGPT AI assistant into upcoming versions of its iPhone, iPad, and Mac operating systems. It paves the way for future third-party AI model integrations, but given Google's multi-billion-dollar deal with Apple for preferential web search, the OpenAI announcement inspired speculation about who is paying whom. According to a Bloomberg report published Wednesday, Apple considers ChatGPT's placement on its devices as compensation enough.

"Apple isn’t paying OpenAI as part of the partnership," writes Bloomberg reporter Mark Gurman, citing people familiar with the matter who wish to remain anonymous. "Instead, Apple believes pushing OpenAI’s brand and technology to hundreds of millions of its devices is of equal or greater value than monetary payments."

The Bloomberg report states that neither company expects the agreement to generate meaningful revenue in the short term, and in fact, the partnership could burn extra money for OpenAI, because it pays Microsoft to host ChatGPT's capabilities on its Azure cloud. However, OpenAI could benefit by converting free users to paid subscriptions, and Apple potentially benefits by providing easy, built-in access to ChatGPT during a time when its own in-house LLMs are still catching up.

Enlarge

Hackers working for the Chinese government gained access to more than 20,000 VPN appliances sold by Fortinet using a critical vulnerability that the company failed to disclose for two weeks after fixing it, Netherlands government officials said.

The vulnerability, tracked as CVE-2022-42475, is a heap-based buffer overflow that allows hackers to remotely execute malicious code. It carries a severity rating of 9.8 out of 10. A maker of network security software, Fortinet silently fixed the vulnerability on November 28, 2022, but failed to mention the threat until December 12 of that year, when the company said it became aware of an “instance where this vulnerability was exploited in the wild.” On January 11, 2023—more than six weeks after the vulnerability was fixed—Fortinet warned a threat actor was exploiting it to infect government and government-related organizations with advanced custom-made malware.

Enter CoatHanger

The Netherlands officials first reported in February that Chinese state hackers had exploited CVE-2022-42475 to install an advanced and stealthy backdoor tracked as CoatHanger on Fortigate appliances inside the Dutch Ministry of Defense. Once installed, the never-before-seen malware, specifically designed for the underlying FortiOS operating system, was able to permanently reside on devices even when rebooted or receiving a firmware update. CoatHanger could also escape traditional detection measures, the officials warned. The damage resulting from the breach was limited, however, because infections were contained inside a segment reserved for non-classified uses.

Enlarge (credit: Buena Vista Images)

Lots of animals communicate with each other, from tiny mice to enormous whales. But none of those forms of communication share even a small fraction of the richness of human language. Still, finding new examples of complex communications can tell us things about the evolution of language and what cognitive capabilities are needed for it.

On Monday, researchers report what may be the first instance of a human-like language ability in another species. They report that elephants refer to each other by individual names, and the elephant being referred to recognizes when it's being mentioned. The work could be replicated with a larger population and number of calls, but the finding is consistent with what we know about the sophisticated social interactions of these creatures.

What’s in a name?

We use names to refer to each other so often that it's possible to forget just how involved their use is. We recognize formal and informal names that refer to the same individual, even though those names often have nothing to do with the features or history of that person. We easily handle hundreds of names, including those of people we haven't interacted with in decades. And we do this in parallel with the names of thousands of places, products, items, and so on.

Enlarge / Artist’s rendition of how the angle of polarized light from a fast radio burst changes as it journeys through space. (credit: CHIME/Dunlap Institute)

Astronomers have been puzzling over the origins of mysterious fast radio bursts (FRBs) since the first one was spotted in 2007. Researchers now have their first look at non-repeating FRBs, i.e., those that have only produced a single burst of light to date. The authors of a new paper published in The Astrophysical Journal looked specifically at the properties of polarized light emitting from these FRBs, yielding further insight into the origins of the phenomenon. The analysis supports the hypothesis that there are different origins for repeating and non-repeating FRBs.

“This is a new way to analyze the data we have on FRBs. Instead of just looking at how bright something is, we’re also looking at the angle of the light’s vibrating electromagnetic waves,” said co-author Ayush Pandhi, a graduate student at the University of Toronto's Dunlap Institute for Astronomy and Astrophysics. “It gives you additional information about how and where that light is produced and what it has passed through on its journey to us over many millions of light years.”

As we've reported previously, FRBs involve a sudden blast of radio-frequency radiation that lasts just a few microseconds. Astronomers have over a thousand of them to date; some come from sources that repeatedly emit FRBs, while others seem to burst once and go silent. You can produce this sort of sudden surge of energy by destroying something. But the existence of repeating sources suggests that at least some of them are produced by an object that survives the event. That has led to a focus on compact objects, like neutron stars and black holes—especially a class of neutron stars called magnetars—as likely sources.

Enlarge (credit: Getty | Yui Mok)

The strain of H5N1 bird flu isolated from a dairy worker in Texas was 100 percent fatal in ferrets used to model influenza illnesses in humans. However, the virus appeared inefficient at spreading via respiratory droplets, according to newly released study results from the Centers for Disease Control and Prevention.

The data confirms that H5N1 infections are significantly different from seasonal influenza viruses that circulate in humans. Those annual viruses make ferrets sick but are not deadly. They have also shown to be highly efficient at spreading via respiratory droplets, with 100 percent transmission rates in laboratory settings. In contrast, the strain from the Texas man (A/Texas/37/2024) appeared to have only a 33 percent transmission rate via respiratory droplets among ferrets.

"This suggests that A/Texas/37/2024-like viruses would need to undergo changes to spread efficiently by droplets through the air, such as from coughs and sneezes," the CDC said in its data summary. The agency went on to note that "efficient respiratory droplet spread, like what is seen with seasonal influenza viruses, is needed for sustained person-to-person spread to happen."

Enlarge (credit: gmast3r | iStock / Getty Images Plus)

After the most downloaded local news app in the US, NewsBreak, shared an AI-generated story about a fake New Jersey shooting last Christmas Eve, New Jersey police had to post a statement online to reassure troubled citizens that the story was "entirely false," Reuters reported.

"Nothing even similar to this story occurred on or around Christmas, or even in recent memory for the area they described," the cops' Facebook post said. "It seems this 'news' outlet's AI writes fiction they have no problem publishing to readers."

It took NewsBreak—which attracts over 50 million monthly users—four days to remove the fake shooting story, and it apparently wasn't an isolated incident. According to Reuters, NewsBreak's AI tool, which scrapes the web and helps rewrite local news stories, has been used to publish at least 40 misleading or erroneous stories since 2021.