An anonymous reader quotes a report from TechCrunch: As deep-pocketed companies like Amazon, Google and Walmart invest in and experiment with drone delivery, a phenomenon reflective of this modern era has emerged. Drones, carrying snacks and other sundries, are being shot out of the sky. Incidents are still rare. However, a recent arrest in Florida, in which a man allegedly shot down a Walmart drone, raises questions of what the legal ramifications are and whether those consequences could escalate if these events become more common. [...] While consumer drones have been proliferating for well over a decade, the question of legal ramifications hasn't been wholly clear. The Federal Aviation Administration (FAA) gave us a partial answer following a 2016 drone shooting in Arkansas. At the time, the FAA pointed interested parties to 18 U.S.C. 32. The law, titled "Aircraft Sabotage," is focused on the wanton destruction of "any aircraft in the special aircraft jurisdiction of the United States or any civil aircraft used, operated or employed in interstate, overseas, or foreign air commerce." At first glance, the law appears primarily focused on manned aircraft, including a provision that "makes it a Federal offense to commit an act of violence against any person on the aircraft, not simply crew members, if the act is likely to endanger the safety of the aircraft." In responding to the Arkansas drone shooting, however, the FAA asserts that such protections can be interpreted to also include UAVs (unmanned aerial vehicles). The language does, indeed, appear broad enough to cover drones. That means, in turn, that the penalties are potentially as stiff. The subject was revived after a 2020 incident in Minnesota. In that case, the suspect was hit with felony charges relating to criminal damage and discharging a weapon within city limits. Those would likely also be the charges in most scenarios involving property, rather than bodily damage, drone or not. Even with these examples, there is not a rigid rule that predicts if or when prosecutors might also introduce a federal charge like 18 U.S.C. 32. As the legal blog Above the Law notes, in most cases, the federal government has deferred to state law for enforcement. Meanwhile, in most cases where 18 U.S.C. 32 has been applied, if a human crew/passengers are involved, there could be other potential charges like murder. It certainly can be argued that shooting a large piece of hardware out of the sky in a heavily populated area invites its own potential for bodily harm, though it may not be prosecuted in the same manner. As drone delivery increases in the U.S., however, we may soon have an answer to the role federal legislation like 18 U.S.C. 32 will play in UAV shootings. Adding that into the picture brings penalties, including fines and up to 20 years in prison, potentially compounding those consequences. What is clear, though, is that the consequences can be severe, whether it is invoked.

Read more of this story at Slashdot.

Anna's Archive, a meta-search engine for pirated books and other sources, faces monetary damages and a permanent injunction at a U.S. court. According to TorrentFreak, the operators of the site "failed to respond to a lawsuit filed by [Online Computer Library Center (OCLC)], after its WorldCat database was scraped and published online." From the report: The site launched in the fall of 2022, just days after Z-Library was targeted in a U.S. criminal crackdown, to ensure continued availability of 'free' books and articles to the broader public. Late last year, Anna's Archive expanded its offering by making information from OCLC's proprietary WorldCat database available online. The site's operators took more than a year to scrape several terabytes of data and published roughly 700 million unique records online, for free. This 'metadata' heist was a massive breakthrough in the site's quest to archive as much published content as possible. However, OCLC wasn't pleased and responded with a lawsuit (PDF) at an Ohio federal court, accusing the site and its operators of hacking and demanding damages. The non-profit says that it spent more than a million dollars responding to Anna's Archive's alleged hacking efforts. Even then, it couldn't prevent the data from being released through a torrent. "Defendants, through the Anna's Archive domains, have made, and continue to make, all 2.2 TB of WorldCat data available for public download through its torrents," OCLC wrote in the complaint it filed in an Ohio federal court. In the months that passed since then, the operators of Anna's Archive didn't respond in court. The only named defendant flat-out denied all connections to the site, and OCLC didn't receive any response from any of the official Anna's Archive email addresses that were served. Meanwhile, the pirate library continues to offer the WorldCat data, which is a major problem for the organization. Without the prospect of a two-sided legal battle, OCLC has now moved for a default judgment. [...] In addition to monetary damages, the non-profit also seeks injunctive relief. The motion doesn't specify the requested measures, but the original complaint sought an order that prevents Anna's Archive from scraping WorldCat data going forward. In addition, all previously scraped data should no longer be distributed. Instead, it should be destroyed in full, including all the torrents that are currently being offered.

Read more of this story at Slashdot.

Alberta's last coal plant went offline on June 16, marking the end of coal-fired electricity in the province. "So, for the first time in 150 years, coal is no longer part of Alberta's electricity mix," writes Chris Severson-Baker in an opinion piece for The Globe and Mail. "It is important to celebrate and reflect on these milestones, while recognizing there is no time to rest before redoubling our efforts and looking to what's next." From the report: Many organizations contributed to this successful campaign through advocacy and research. The Canadian Association of Physicians for the Environment, the Lung Association and the Asthma Society of Canada were instrumental in highlighting the health impacts associated with air pollution from coal-fired electricity. The Pembina Institute, an Alberta-based clean-energy think tank, first intervened in a coal plant regulatory process in the late 1990s and, in 2009, published the first major proposal that showed the province could move to an unabated coal-free grid by 2030. Our research was ahead of its time and criticized as idealistic. Coal accounted for 80 per cent of Alberta's electricity grid in the early 2000s and it still amounted to 60 per cent just 10 years ago. When phasing out coal was just an idea being batted around, many said it couldn't be done. This is not dissimilar to the rhetoric today around decarbonizing the grid. But Alberta's experience phasing out coal shows environmental progress of this magnitude is possible. [...] Phasing out coal in Alberta was supported by good policy design driven by carbon pricing and regulations with clear targets that offered necessary certainty to the industry and stakeholders. Rapidly growing, low-cost renewable energy further supported the phase-out, along with companies investing in gas-fired electricity. All these actions accelerated the transition away from coal at a faster rate than anticipated. Chris Severson-Baker is the executive director of the Pembina Institute, a Canadian non-profit think tank focused on advancing clean energy solutions and sustainable environmental practices through research, advocacy, and collaboration. Further reading: Air Pollution Can Decrease Odds of Live Birth After IVF By 38%, Study Finds

Read more of this story at Slashdot.

An anonymous reader quotes a report from The Guardian: Air pollution exposure can significantly decrease the chance of a live birth after IVF treatment, according to research that deepens concern about the health impacts of toxic air on fertility. Pollutant exposure has previously been linked to increased miscarriage rates and preterm births, and microscopic soot particles have been shown to travel through the bloodstream into the ovaries and the placenta. The latest work suggests that the impact of pollution begins before conception by disrupting the development of eggs. "We observed that the odds of having a baby after a frozen embryo transfer were more than a third lower for women who were exposed to the highest levels of particulate matter air pollution prior to egg collection, compared with those exposed to the lowest levels," said Dr Sebastian Leathersich, a fertility specialist and gynaecologist from Perth who is due to present the findings on Monday at the European Society of Human Reproduction and Embryology annual meeting in Amsterdam. [...] The study analyzed fertility treatments in Perth over an eight-year period, including 3,659 frozen embryo transfers from 1,836 patients, and tracked whether outcomes were linked to the levels of fine particulate matter, known as PM10. The overall live birthrate was about 28% per transfer. However, the success rates varied in line with exposure to pollutants in the two weeks leading up to egg collection. The odds of a live birth decreased by 38% when comparing the highest quartile of exposure to the lowest quartile. "These findings suggest that pollution negatively affects the quality of the eggs, not just the early stages of pregnancy, which is a distinction that has not been previously reported," Leathersich said. The team now plan to study cells directly to understand why pollutants have a negative effect. Previous work has shown that the microscopic particles can damage DNA and cause inflammation in tissues. The report notes that the link between air pollution and live birth "was apparent despite excellent overall air quality during the study period, with PM10 and PM2.5 levels exceeding WHO guidelines on just 0.4% and 4.5% of the study days." It adds: "Australia is one of just seven countries that met the WHO's guidelines in 2023, and this study is the latest to show evidence of harm even at relatively low levels of pollution." The study has been published in the journal Human Reproduction.

Read more of this story at Slashdot.

After teasing support for the fediverse earlier this year, the newsletter platform and Substack rival Ghost has finally delivered. "Over the past few days, Ghost says it has achieved two major milestones in its move to become a federated service," reports TechCrunch. "Of note, it has federated its own newsletter, making it the first federated Ghost instance on the internet." From the report: Users can follow the newsletter through their preferred federated app at @index@activitypub.ghost.org, though the company warns there will be bugs and issues as it continues to work on the platform's integration with ActivityPub, the protocol that powers Mastodon and other federated apps. "Having multiple Ghost instances in production successfully running ActivityPub is a huge milestone for us because it means that for the first time, we're interacting with the wider fediverse. Not just theoretical local implementations and tests, but the real world wide social web," the company shared in its announcement of the news. In addition, Ghost's ActivityPub GitHub repository is now fully open source. That means those interested in tracking Ghost's progress toward federation can follow its code changes in real time, and anyone else can learn from, modify, distribute or contribute to its work. Developers who want to collaborate with Ghost are also being invited to get involved following this move. By offering a federated version of the newsletter, readers will have more choices on how they want to subscribe. That is, instead of only being able to follow the newsletter via email or the web, they also can track it using RSS or ActivityPub-powered apps, like Mastodon and others. Ghost said it will also develop a way for sites with paid subscribers to manage access via ActivityPub, but that functionality hasn't yet rolled out with this initial test.

Read more of this story at Slashdot.

Serif, the design software developer behind Affinity, has introduced a six-month free trial for its creative suite, offering Affinity Photo, Designer, and Publisher on Mac, Windows PC, and iPad. This move, along with a 50% discount on perpetual licenses, aims to attract Adobe users and reassure them of Affinity's commitment to its one-time purchase pricing model despite its recent acquisition by Canva. The Verge reports: Affinity uses a one-time purchase pricing model that has earned it a loyal fanbase among creatives who are sick of paying for recurring subscriptions. Prices start at $69.99 for Affinity's individual desktop apps or $164.99 for the entire suite, with a separate deal currently offering customers 50 percent off all perpetual licenses. This discount, alongside the six-month free trial, is potentially geared at soothing concerns that Affinity would change its pricing model after being acquired by Canva earlier this year. "We're saying 'try everything and pay nothing' because we understand making a change can be a big step, particularly for busy professionals," said Affinity CEO Ashley Hewson. "Anyone who takes the trial is under absolutely no obligation to buy."

Read more of this story at Slashdot.

After two rejections, Apple has approved the Epic Games Store for iOS in the European Union. "This paves the way for Epic CEO Tim Sweeney to realize his long-stated goal of launching an alternative game store on Apple's closed platform -- at least in Europe," reports Ars Technica. From the report: Apple announced plans to allow third-party app stores on iOS in the region earlier this year, complying with the letter of the law (though some say not the spirit) as required by the Digital Markets Act (DMA), which was enacted in hopes of making platforms more open and competitive. Apple's new policies allow for alternative app marketplaces but with some big caveats regarding the deal that app developers agree to. The change followed years of contentious PR campaigns and court battles around the world between Epic and Apple, with Sweeney proclaiming that Apple's app approval processes are anti-competitive and that its 30 percent cut of app revenues is unfair. Even after the shift, Apple is said to have rejected the Epic Games Store app twice. The rejections were over specific rules about the copy and shape of buttons within the app, though not about its primary function. [...] Apple went ahead and approved the app despite the disagreement over the copy and button designs. However, AppleInsider reported that Apple will still require Epic to change the copy and buttons later.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Fortune: On February 1st last year, Montana residents gawked upwards at a large white object hovering in the sky that looked to be another moon. The airborne object was in fact a Chinese spy balloon loaded with cameras, sensors, and other high-tech surveillance equipment, and it set off a nationwide panic as it drifted across the midwestern and southern United States. How much information the balloon gathered -- if any -- remains unknown, but the threat was deemed serious enough that an F-22 U.S. Air Force jet fired a Sidewinder missile at the unmanned balloon on a February afternoon, blasting it to pieces a few miles off the coast of South Carolina. At the same time that the eyes of Americans were fixed on the Chinese intruder in the sky, around 30 cars owned by Chinese companies and equipped with cameras and geospatial mapping technology were navigating the streets of greater Los Angeles, San Francisco, and San Jose. They collected detailed videos, audio recordings, and location data on their surroundings to chart out California's roads and develop their autonomous driving algorithms. Since 2017, self-driving cars owned by Chinese companies have traversed 1.8 million miles of California alone, according to a Fortune analysis of the state's Department of Motor Vehicles data. As part of their basic functionality, these cars capture video of their surroundings and map the state's roads to within two centimeters of precision. Companies transfer that information from the cars to data centers, where they use it to train their self-driving systems. The cars are part of a state program that allows companies developing self-driving technology -- including Google-spinoff Waymo and Amazon-owned Zoox -- to test autonomous vehicles on public roads. Among the 35 companies approved to test by the California DMV, seven are wholly or partly China-based. Five of them drove on California roads last year: WeRide, Apollo, AutoX, Pony.ai, and DiDi Research America. Some Chinese companies are approved to test in Arizona and Texas as well. Fitted with cameras, microphones, and sophisticated sensors, self-driving cars have long raised flags among privacy advocates. Matthew Guariglia, a policy analyst at the digital rights nonprofit Electronic Frontier Foundation, called self-driving cars "rolling surveillance devices" that passively collect massive amounts of information on Americans in plain sight. In the context of national security however, the data-hungry Chinese cars have received surprisingly little scrutiny. Some experts have compared them to Chinese-owned social media site TikTok, which has been subjected to a forced divestiture or ban on U.S. soil due to fears around its data collection practices threatening national security. The years-long condemnation of TikTok at the highest levels of the U.S. government has heightened the sense of distrust between the U.S. and China. Some Chinese self-driving car companies appear to store U.S. data in China, according to privacy policies reviewed byFortune -- a situation that experts said effectively leaves the data accessible to the Chinese government. Depending on the type of information collected by the cars, the level of precision, and the frequency at which it's collected, the data could provide a foreign adversary with a treasure trove of intelligence that could be used for everything from mass surveillance to war planning, according to security experts who spoke withFortune. And yet, despite the sensitivity of the data, officials at the state and federal agencies overseeing the self-driving car testing acknowledge that they do not currently monitor, or have any process for checking, exactly what data the Chinese vehicles are collecting and what happens to the data after it is collected. Nor do they have any additional rules or policies in place for oversight of Chinese self-driving cars versus the cars in the program operated by American or European companies. "It is literally the wild, Wild West here," said Craig Singleton, director of the China program at the Foundation for Defense of Democracies, a conservative-leaning national security think tank. "There's no one in charge."

Read more of this story at Slashdot.

Paramount Global has agreed to merge with Skydance in a significant deal that will see the Redstone family relinquish control of the storied movie studio and media company. The merger, valued at over $8 billion, involves a consortium including RedBird Capital Partners and KKR, and is expected to close in the third quarter of 2025, subject to regulatory approval. CNBC reports: The deal gives National Amusements an enterprise value of $2.4 billion, which includes $1.75 billion in equity. Paramount's class A shareholders will receive $23 apiece in cash or stock, while class B stockholders will receive $15 per share, equating to a cash consideration totaling $4.5 billion available to public shareholders. As part of the deal Skydance will also inject $1.5 billion of capital into Paramount's balance sheet. "It's a new Paramount; it's not just a catchphrase," said RedBird's Jeff Shell, former CEO of NBCUniversal, on a call with investors Monday. "We think it's going to be a new day for these combined assets." Skydance founder David Ellison will lead the combined company as CEO, while Shell will serve as president. The merger is subject to regulatory approval and expected to close in the third quarter of 2025. It also includes a 45-day "go-shop period," in which the Paramount special committee can solicit other offers. A completed Skydance merger would mark a major shift for the ownership of Paramount, as well as for Hollywood as a whole. The Redstone family has long controlled the movie studio -- known for films such as "The Godfather," "Top Gun" and "Forrest Gump" -- as well as the CBS broadcast network and cable TV networks including MTV and Nickelodeon. Now, Ellison, 41, son of Oracle founder and billionaire Larry Ellison, will be at the helm of a major movie studio and among Hollywood's elite. "It's been a long time since a creative executive ran one of the big Hollywood companies," Shell said on Monday's call. "And I think it's really important when creative is the core."

Read more of this story at Slashdot.

Andy Maxwell reports via TorrentFreak: On November 4, 2022, the United States Department of Justice and the FBI began seizing Z-Library's domains as part of a major operation to shut down the infamous 'shadow library' platform. A criminal investigation had identified two Russian nationals, Anton Napolsky and Valeriia Ermakova, as the alleged operators of the site. On October 21, 2022, at the U.S. District Court for the Eastern District of New York, Judge Sanket J. Bulsara ordered their arrest. They were detained in Argentina on November 3, 2022. After arriving at the Ambrosio Taravella International Airport, the unsuspecting couple cleared customs and hired a car from a popular rental company. The United States Embassy informed local authorities that the pair were subject to an Interpol Red Notice. At what point the Russians' phones were tapped is unclear but, under the authority of a Federal Court arrest warrant, Argentinian law enforcement began tracking the couple's movements as they traveled south in their rented Toyota Corolla. [...] [F]ollowing a visit to El Calafate, the pair were arrested by airport security police as they arrived in Rio Gallegos, Santa Cruz. They were later transferred to Cordoba. In January 2023, Judge Miguel Hugo Vaca Narvaja authorized the Russians to be detained under house arrest. Approval from Cordoba prosecutor Maximiliano Hairabedian, who was responsible for the request to extradite Napolsky and Ermakova to the United States, was not obtained. With a federal indictment, alleging criminal copyright infringement, wire fraud, and money laundering offenses, waiting for them in the United States, the priority for Napolsky and Ermakova would soon be their fight against extradition. [...] Patronato del Liberado (Patronage of the Liberated) is responsible for assisting people who have previously been detained by the authorities with family and social reintegration. It's also tasked with monitoring compliance of those on probation or subject to house arrest. According to unnamed 'judicial sources' cited by La Voz, which receives full credit for a remarkable scoop, when the group conducted a regular visit in May, to verify that Napolsky and Ermakova were in compliance with the rules set by the state, there was no trace of them. Patronato del Liberado raised the alarm and Judge Sanchez Freytes was immediately notified. Counsel for the defense during the extradition hearings said that he hadn't been able to contact the Russians either. The Judge ordered an international arrest warrant although there appeared to be at least some hope the pair hadn't left the country. However, that was many weeks ago and with no obvious news suggesting their recapture, the pair could be anywhere by now.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: A bunch of eighth graders in a "wealthy Philadelphia suburb" recently targeted teachers with an extreme online harassment campaign that The New York Times reported was "the first known group TikTok attack of its kind by middle schoolers on their teachers in the United States." According to The Times, the Great Valley Middle School students created at least 22 fake accounts impersonating about 20 teachers in offensive ways. The fake accounts portrayed long-time, dedicated teachers sharing "pedophilia innuendo, racist memes," and homophobic posts, as well as posts fabricating "sexual hookups among teachers." The Pennsylvania middle school's principal, Edward Souders, told parents in an email that the number of students creating the fake accounts was likely "small," but that hundreds of students piled on, leaving comments and following the fake accounts. Other students responsibly rushed to report the misconduct, though, Souders said. "I applaud the vast number of our students who have had the courage to come forward and report this behavior," Souders said, urging parents to "please take the time to engage your child in a conversation about the responsible use of social media and encourage them to report any instances of online impersonation or cyberbullying." Some students claimed that the group attack was a joke that went too far. Certain accounts impersonating teachers made benign posts, The Times reported, but other accounts risked harming respected teachers' reputations. When creating fake accounts, students sometimes used family photos that teachers had brought into their classrooms or scoured the Internet for photos shared online. Following The Times' reporting, the superintendent of the Great Valley School District (GVSD), Daniel Goffredo, posted a message to the community describing the impact on teachers as "profound." One teacher told The Times that she felt "kicked in the stomach" by the students' "savage" behavior, while another accused students of slander and character assassination. Both were portrayed in fake posts with pedophilia innuendo. "I implore you also to use the summer to have conversations with your children about the responsible use of technology, especially social media," Goffredo said. "What seemingly feels like a joke has deep and long-lasting impacts, not just for the targeted person but for the students themselves. Our best defense is a collaborative one." Goffredo confirmed that the school district had explored legal responses to the group attack. But ultimately the district found that they were "limited" because "courts generally protect students' rights to off-campus free speech, including parodying or disparaging educators online -- unless the students' posts threaten others or disrupt school," The Times reported. Instead, the middle school "briefly suspended several students," teachers told The Times, and held an eighth-grade assembly raising awareness of harms of cyberbullying, inviting parents to join.

Read more of this story at Slashdot.

An anonymous reader quotes a report from The Register: The latest figures suggest that around 1,500 medical procedures have been canceled across some of London's biggest hospitals in the four weeks since Qilin's ransomware attack hit pathology services provider Synnovis. But perhaps no single person was affected as severely as Johanna Groothuizen. Hanna -- the name she goes by -- is now missing her right breast after her skin-sparing mastectomy and immediate breast reconstruction surgery was swapped out for a simple mastectomy at the last minute. The 36-year-old research culture manager at King's College London and former researcher in health sciences was diagnosed with HER2-positive breast cancer in late 2023. It's an aggressive form known for spreading faster and is more commonly recurring, which necessitates urgent treatment. Hanna soon began a course of chemotherapy following her diagnosis until she was able to have what will hopefully be the first and only major procedure to remove the disease. Between then and the operation, which was scheduled for June 7 -- four days after the ransomware attack was carried out -- she had been told repeatedly that the planned procedure was a skin-sparing mastectomy which would have allowed surgeons to cosmetically reconstruct her right breast immediately after the operation. How the ordeal actually unraveled, however, was an entirely different story. Hanna was given less than 24 hours by doctors to make the daunting decision to either accept a simple mastectomy or delay a life-changing procedure until Synnovis's systems were back online. The decision was thrust upon her on the Thursday afternoon before her Friday surgery. This was after she was forced to chase the medical staff for updates about whether the procedure was going ahead at all. Hanna was told on the Tuesday of that week, the day after Qilin's attack, that despite everything going on, the staff at St Thomas' hospital in London were still planning to go ahead with the skin-sparing mastectomy as previously agreed. Per the updates Hanna requested on Thursday, it was strongly suggested that the operation was going to be canceled. The hospital deemed the reconstruction part of the procedure too risky because Synnovis was unable to support blood transfusions until its systems were back online. The ransomware attack wasn't easy on hospitals. The situation was so dire that blood reserves were running low just a week after the attack, prompting an urgent appeal for O-type blood donations. For Hanna, though, this meant she had to make the unimaginably difficult choice between the surgery she wanted, or the surgery that would give her the best chance at survival. The mother of two young children, aged four and two, felt like she had no other choice but to accept the simple mastectomy, leaving her with only one breast. [...] At the time of writing, it's now nearly five weeks since Qilin's attack on Synnovis -- a pathology services partnership between Synlab, Guy's and St Thomas' NHS Foundation Trust, and King's College Hospital NHS Foundation Trust. The most recent update provided by the NHS said disruption to services was still evident across the region, although some services such as outpatient appointments are returning to near-normal levels. Between June 24-30, there were 1,517 cute outpatient appointments and 136 electric procedures that needed to be postponed across the two NHS trusts partnered with Synlab. "The total number of postponements for the entire month since the attack took hold (June 3-30) stand at 4,913 for acute outpatient appointments and 1,391 for elective procedures," notes the report.

Read more of this story at Slashdot.

John Timmer reports via Ars Technica: On Tuesday, the people managing the ITER experimental fusion reactor announced (PDF) that a combination of delays and altered priorities meant that its first-of-its-kind hardware wouldn't see plasma until 2036, with the full-energy deuterium-tritium fusion pushed back to 2039. The latter represents a four-year delay relative to the previous roadmap. While the former is also a delay, it's due in part to changing priorities. ITER is an attempt to build a fusion reactor that's capable of sustaining plasmas that allow it to operate well beyond the break-even point, where the energy released by fusion reactions significantly exceeds the energy required to create the conditions that enable those reactions. It's meant to hit that milestone by scaling up a well-understood design called a tokamak. But the problem has been plagued by delays and cost overruns nearly from its start. At early stages, many of these stemmed from changes in designs necessitated by a better and improved understanding of plasmas held at extreme pressures and temperatures due to better modeling capabilities and a better understanding of the behavior of plasmas in smaller reactions. The latest delays are due to more prosaic reasons. One of them is the product of the international nature of the collaboration, which sees individual components built by different partner organizations before assembly at the reactor site in France. The pandemic, unsurprisingly, severely disrupted the production of a lot of these components, and the project's structure meant that alternate suppliers couldn't be used (assuming alternate suppliers of one-of-a-kind hardware existed in the first place). The second problem relates to the location of the reactor in France. The country's nuclear safety regulator had concerns about the assembly of some of the components and halted construction on the reactor.

Read more of this story at Slashdot.

Longtime Slashdot reader Baron_Yam shares a report from Phys.Org, with the caption: "It's not sequestration, but it is a closed carbon loop and can store energy from renewable sources to be released when they are not collecting energy." From the report: Carbon in the atmosphere is a major driver of climate change. Now researchers from McGill University have designed a new catalyst for converting carbon dioxide (CO2) into methane -- a cleaner source of energy -- using tiny bits of copper called nanoclusters. While the traditional method of producing methane from fossil fuels introduces more CO2 into the atmosphere, the new process, electrocatalysis, does not. "On sunny days you can use solar power, or when it's a windy day you can use that wind to produce renewable electricity, but as soon as you produce that electricity you need to use it," says Mahdi Salehi, Ph.D. candidate at the Electrocatalysis Lab at McGill University. "But in our case, we can use that renewable but intermittent electricity to store the energy in chemicals like methane." By using copper nanoclusters, says Salehi, carbon dioxide from the atmosphere can be transformed into methane and once the methane is used, any carbon dioxide released can be captured and "recycled" back into methane. This would create a closed "carbon loop" that does not emit new carbon dioxide into the atmosphere. The research, published recently in the journal Applied Catalysis B: Environment and Energy, was enabled by the Canadian Light Source (CLS) at the University of Saskatchewan (USask). The team plans to continue refining their catalyst to make it more efficient and investigate its large-scale, industrial applications. Their hope is that their findings will open new avenues for producing clean, sustainable energy.

Read more of this story at Slashdot.

An anonymous reader quotes a report from CNN: Deep inside Earth is a solid metal ball that rotates independently of our spinning planet, like a top whirling around inside a bigger top, shrouded in mystery. This inner core has intrigued researchers since its discovery by Danish seismologist Inge Lehmann in 1936, and how it moves -- its rotation speed and direction -- has been at the center of a decades-long debate. A growing body of evidence suggests the core's spin has changed dramatically in recent years, but scientists have remained divided over what exactly is happening -- and what it means. Part of the trouble is that Earth's deep interior is impossible to observe or sample directly. Seismologists have gleaned information about the inner core's motion by examining how waves from large earthquakes that ping this area behave. Variations between waves of similar strengths that passed through the core at different times enabled scientists to measure changes in the inner core's position and calculate its spin. "Differential rotation of the inner core was proposed as a phenomenon in the 1970s and '80s, but it wasn't until the '90s that seismological evidence was published," said Dr. Lauren Waszek, a senior lecturer of physical sciences at James Cook University in Australia. But researchers argued over how to interpret these findings, "primarily due to the challenge of making detailed observations of the inner core, due to its remoteness and limited available data," Waszek said. As a result, "studies which followed over the next years and decades disagree on the rate of rotation, and also its direction with respect to the mantle," she added. Some analyses even proposed that the core didn't rotate at all. One promising model proposed in 2023 described an inner core that in the past had spun faster than Earth itself, but was now spinning slower. For a while, the scientists reported, the core's rotation matched Earth's spin. Then it slowed even more, until the core was moving backward relative to the fluid layers around it. At the time, some experts cautioned that more data was needed to bolster this conclusion, and now another team of scientists has delivered compelling new evidence for this hypothesis about the inner core's rotation rate. Research published June 12 in the journal Nature not only confirms the core slowdown, it supports the 2023 proposal that this core deceleration is part of a decades-long pattern of slowing down and speeding up. The new findings also confirm that the changes in rotational speed follow a 70-year cycle, said study coauthor Dr. John Vidale, Dean's Professor of Earth Sciences at the University of Southern California's Dornsife College of Letters, Arts and Sciences.

Read more of this story at Slashdot.

Longtime Slashdot reader theodp writes: "If Einstein paved the way for a new era in physics," explains auction house Christie's in a promotion piece for its upcoming offering of 150+ "objects of scientific and historical importance" from the Paul G. Allen Collection (including items from the shuttered Living Computers Museum), "Mr. Allen and his collaborators ushered in a new era of computing. Starting with MS-DOS in 1981, Microsoft then went on to revolutionize personal computing with the launch of Windows in 1985." Christie's auction and characterization of MS-DOS as an Allen and Microsoft innovation comes 30 years after the death of Gary Kildall, whose unpublished memoir, the Seattle Times reported in Kildall's July 1994 obituary, called DOS "plain and simple theft" of Kildall's CP/M OS. PC Magazine's The Rise of DOS: How Microsoft Got the IBM PC OS Contract notes that Paul Allen himself traced the genesis of MS-DOS back to a phone call Allen made to Seattle Computer Products owner Rod Brock in which Microsoft licensed Tim Paterson's CP/M-inspired QDOS (Quick and Dirty Operating System) for $10,000 plus a royalty of $15,000 for every company that licensed the software. A shrewd buy-low-sell-high business deal, yes, but hardly an Einstein-caliber breakthrough idea.

Read more of this story at Slashdot.

Longtime Slashdot reader Artem S. Tashkinov shares a report from The Hacker News: A group of security researchers from the Graz University of Technology have demonstrated a new side-channel attack known as SnailLoad that could be used to remotely infer a user's web activity. "SnailLoad exploits a bottleneck present on all Internet connections," the researchers said in a study released this week. "This bottleneck influences the latency of network packets, allowing an attacker to infer the current network activity on someone else's Internet connection. An attacker can use this information to infer websites a user visits or videos a user watches." A defining characteristic of the approach is that it obviates the need for carrying out an adversary-in-the-middle (AitM) attack or being in physical proximity to the Wi-Fi connection to sniff network traffic. Specifically, it entails tricking a target into loading a harmless asset (e.g., a file, an image, or an ad) from a threat actor-controlled server, which then exploits the victim's network latency as a side channel to determine online activities on the victim system. To perform such a fingerprinting attack and glean what video or a website a user might be watching or visiting, the attacker conducts a series of latency measurements of the victim's network connection as the content is being downloaded from the server while they are browsing or viewing. It then involves a post-processing phase that employs a convolutional neural network (CNN) trained with traces from an identical network setup to make the inference with an accuracy of up to 98% for videos and 63% for websites. In other words, due to the network bottleneck on the victim's side, the adversary can deduce the transmitted amount of data by measuring the packet round trip time (RTT). The RTT traces are unique per video and can be used to classify the video watched by the victim. The attack is so named because the attacking server transmits the file at a snail's pace in order to monitor the connection latency over an extended period of time.

Read more of this story at Slashdot.

Nvidia is expected to earn $12 billion from GPU sales to China in 2024, despite U.S. trade restrictions. Research firm SemiAnalysis says the GPU maker will ship over 1 million units of its new H20 model to the Chinese market, "with each one said to cost between $12,000 and $13,000 apiece," reports The Register. From the report: This figure is said by SemiAnalysis to be nearly double what Huawei is likely to sell of its rival accelerator, the Ascend 910B, as reported by The Financial Times. If accurate, this would seem to contradict earlier reports that Nvidia had moved to cut the price of its products for the China market. This was because buyers were said to be opting instead for domestically made kit for accelerating AI workloads. The H20 GPU is understood to be the top performing model out of three Nvidia GPUs specially designed for the Chinese market to comply with rules introduced by the Biden administration last year that curb performance. In contrast, Huawei's Ascend 910B is claimed to have performance on a par with that of Nvidia's A100 GPU. It is believed to be an in-house design manufactured by Chinese chipmaker SMIC using a 7nm process technology, unlike the older Ascend 910 product. If this forecast proves accurate, it will be a relief for Nvidia, which earlier disclosed that its sales in China delivered a "mid-single digit percentage" of revenue for its Q4 of FY2024, and was forecast to do the same in Q1 of FY 2025. In contrast, the Chinese market had made up between 20 and 25 percent of the company's revenue in recent years, until the export restrictions landed.

Read more of this story at Slashdot.

YouTube has released an AI-powered eraser tool to help creators easily remove copyrighted music from their videos without affecting other audio such as dialog or sound effects. TechCrunch's Ivan Mehta reports: On its support page, YouTube still warns that, at times, the algorithm might fail to remove just the song. "This edit might not work if the song is hard to remove. If this tool doesn't successfully remove the claim on a video, you can try other editing options, such as muting all sound in the claimed segments or trimming out the claimed segments," the company said. Alternatively, creators can choose to select "Mute all sound in the claimed segments" to silence bits of video that possibly has copyrighted material. Once the creator successfully edits the video, YouTube removes the content ID claim -- the company's system for identifying the use of copyrighted content in different clips. YouTube shared a video describing the feature on its Creator Insider channel.

Read more of this story at Slashdot.

An anonymous reader quotes a report from TorrentFreak: With dozens of millions of monthly visits, Animeflix positioned itself as one of the most popular anime piracy portals. The site also has an active Discord community of around 35k members, who actively participate in discussions, art competitions, even a chess tournament. While rightsholders take no offense at these side-projects, the site's core business was streaming pirated videos. That hasn't gone unnoticed; last December Animeflix was listed as one of the shutdown targets of anti-piracy coalition ACE. Whether these early enforcement efforts were responsible for the site's closure is unclear. In May, rightsholders increased the pressure through the High Court of India, obtaining a broad injunction that effectively suspended Animeflix's main domain name; Animeflix.live. This follow-up action didn't seem to hurt the site too much. It simply moved to new domains, Animeflix.gg and Animeflix.li, informing its users that the old domain name had become "unavailable." Yesterday, the site became unreachable again, initially returning a Cloudflare error message. This time, the domain wasn't the problem but, for reasons unknown, the team decided to shut down the site without prior notice. "It is with a heavy heart that we announce the closure of Animeflix. After careful consideration, we have decided to shut down our service effective immediately. We deeply appreciate your support and enthusiasm over the years." "Thank you for being a part of our journey. We hope the joy and excitement of anime continue to brighten your days through other wonderful platforms," the Animeflix team adds. The Animeflix team doesn't provide any insight into its reasoning, but it's clear that keeping a site like that online isn't without challenges. And, when a pirate site shuts down, voluntarily or not, copyright issues typically play a role. It's clear that rightsholders were keeping an eye on the site, and were actively seeking out options to take it offline. That might have played a role in the shutdown decision but without more information from the team, we can only speculate.

Read more of this story at Slashdot.

Samsung said it expects a 1,452% profit increase for the second quarter, causing shares to climb 2.24% to a high of 86,500 Korean won ($62.73). CNBC reports: Samsung issued guidance on Friday, saying operating profit for the April to June quarter is projected to be about 10.4 trillion won ($7.54 billion) -- that's a jump of about 1,452% from 670 billion won a year ago. The expected operating profit beat a LSEG estimate of 8.51 trillion won. The firm also said it expects revenue for the second quarter to be between 73 trillion to 75 trillion won, from 60.01 trillion won a year ago. This is in line with the 73.7 trillion won estimated by LSEG analysts. Business for the world's largest memory chip maker rebounded as memory chip prices recovered on AI optimism last year. The South Korean electronics giant saw record losses in 2023 as the industry reeled from a post-Covid slump in demand for memory chips and electronics. Its memory chips are commonly found in a wide range of consumer devices including smartphones and computers. Samsung said in April it expects the second quarter to be driven mostly by demand for generative AI, while mobile demand remains stable. "Samsung announces earnings surprise but mainly the earnings upside is from memory price high. So ironically, Samsung is lagging behind in HBM (high-bandwidth memory) production. So supply to Nvidia -- the qualification -- has been delayed," SK Kim, executive director of Daiwa Capital Markets, told CNBC's "Street Signs Asia" on Friday.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: More than 384,000 websites are linking to a site that was caught last week performing a supply-chain attack that redirected visitors to malicious sites, researchers said. For years, the JavaScript code, hosted at polyfill[.]com, was a legitimate open source project that allowed older browsers to handle advanced functions that weren't natively supported. By linking to cdn.polyfill[.]io, websites could ensure that devices using legacy browsers could render content in newer formats. The free service was popular among websites because all they had to do was embed the link in their sites. The code hosted on the polyfill site did the rest. In February, China-based company Funnull acquired the domain and the GitHub account that hosted the JavaScript code. On June 25, researchers from security firm Sansec reported that code hosted on the polyfill domain had been changed to redirect users to adult- and gambling-themed websites. The code was deliberately designed to mask the redirections by performing them only at certain times of the day and only against visitors who met specific criteria. The revelation prompted industry-wide calls to take action. Two days after the Sansec report was published, domain registrar Namecheap suspended the domain, a move that effectively prevented the malicious code from running on visitor devices. Even then, content delivery networks such as Cloudflare began automatically replacing pollyfill links with domains leading to safe mirror sites. Google blocked ads for sites embedding the Polyfill[.]io domain. The website blocker uBlock Origin added the domain to its filter list. And Andrew Betts, the original creator of Polyfill.io, urged website owners to remove links to the library immediately. As of Tuesday, exactly one week after malicious behavior came to light, 384,773 sites continued to link to the site, according to researchers from security firm Censys. Some of the sites were associated with mainstream companies including Hulu, Mercedes-Benz, and Warner Bros. and the federal government. The findings underscore the power of supply-chain attacks, which can spread malware to thousands or millions of people simply by infecting a common source they all rely on.

Read more of this story at Slashdot.

An anonymous reader quotes a report from TorrentFreak: Hikari-no-Akari, a long-established and popular pirate site that specializes in Japanese music, is being targeted in U.S. federal court by Sony Music. [...] The music download portal, which links to externally hosted files, has been operating for well over a decade and currently draws more than a million monthly visits. In addition to the public-facing part of the site, HnA also has a private forum and Discord channel. [...] Apparently, Sony Music Japan has been keeping an eye on the unauthorized music portal. The company has many of its works shared on the site, including anime theme music, which is popular around the globe. For example, a few weeks ago, HnA posted "Sayonara, Mata Itsuka!" from the Japanese artist Kenshi Yonezu, which is used as the theme song for the asadora series "The Tiger and Her Wings." Around the same time, PEACEKEEPER, a song by Japanese musician STEREO DIVE FOUNDATION, featured in the third season of the series "That Time I Got Reincarnated as a Slime", was shared on the site. Sony Music Japan is a rightsholder for both these tracks, as well as many others that were posted on the site. The music company presumably tried to contact HnA directly to have these listings removed and reached out to its CDN service Cloudflare too, asking it to take action. [...] They are a prerequisite for obtaining a DMCA subpoena, which Sony Music Japan requested at a California federal court this week. Sony requested two DMCA subpoenas, both targeted at hikarinoakari.com and hnadownloads.co. The latter domain receives the bulk of its traffic from the first, which isn't a surprise considering the 'hnadownloads' name. Through the subpoena, the music company hopes to obtain additional information on the people behind these sites. That includes, names, IP-addresses, and payment info. Presumably, this will be used for follow-up enforcement actions. It's unclear whether Cloudflare will be able to hand over any usable information and for the moment, HnA remains online. Several of the infringing URLs that were identified by Sony have recently been taken down, including this one. However, others remain readily available. The same applies to private forum threads and Discord postings, of course.

Read more of this story at Slashdot.

Epilogue, the company behind the GB Operator emulator, which lets users play Game Boy cartridges on a PC, announced that it's working on an update to turn the Game Boy Camera into a lo-fi webcam. Time Extension reports: The Playback app currently allows you to download photos from the Game Boy Camera accessory, but Epilogue has just demonstrated the ability to use the peripheral as a webcam. "We now have a live feed from the Game Boy Camera, but still need to fine-tune some things and allow for configuration options," says the company. "We wanted to share this update because it was exciting to see it finally work, and [we] can't wait to see everyone having fun with it. It's the worst and the best webcam you'll ever have."

Read more of this story at Slashdot.

Cloudflare today unveiled a new feature part of its content delivery network (CDN) that prevents AI developers from scraping content on the web. According to Cloudflare, the feature is available for both the free and paid tiers of its service. SiliconANGLE reports: The feature uses AI to detect automated content extraction attempts. According to Cloudflare, its software can spot bots that scrape content for LLM training projects even when they attempt to avoid detection. "Sadly, we've observed bot operators attempt to appear as though they are a real browser by using a spoofed user agent," Cloudflare engineers wrote in a blog post today. "We've monitored this activity over time, and we're proud to say that our global machine learning model has always recognized this activity as a bot." One of the crawlers that Cloudflare managed to detect is a bot that collects content for Perplexity AI Inc., a well-funded search engine startup. Last month, Wired reported that the manner in which the bot scrapes websites makes its requests appear as regular user traffic. As a result, website operators have struggled to block Perplexity AI from using their content. Cloudflare assigns every website visit that its platform processes a score of 1 to 99. The lower the number, the greater the likelihood that the request was generated by a bot. According to the company, requests made by the bot that collects content for Perplexity AI consistently receive a score under 30. "When bad actors attempt to crawl websites at scale, they generally use tools and frameworks that we are able to fingerprint," Cloudflare's engineers detailed. "For every fingerprint we see, we use Cloudflare's network, which sees over 57 million requests per second on average, to understand how much we should trust this fingerprint." Cloudflare will update the feature over time to address changes in AI scraping bots' technical fingerprints and the emergence of new crawlers. As part of the initiative, the company is rolling out a tool that will enable website operators to report any new bots they may encounter.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Axios: The Food and Drug Administration will no longer allow the use of brominated vegetable oil (BVO) in food products and sodas due to concerns it poses a threat to people's health, the FDA announced Tuesday. The ban follows similar action in California against the food additive that's modified with bromine, which has been used in small quantities as a stabilizer in some citrus-flavored drinks and which is also found in fire retardants. Jim Jones, the deputy commissioner for the FDA's Human Foods Program, said in a statement that "removal of the only authorized use of BVO from the food supply was based on a thorough review of current science and research findings that raised safety concerns." The FDA "concluded that the intended use of BVO in food is no longer considered safe after the results of studies conducted in collaboration with the National Institutes of Health (NIH) found the potential for adverse health effects in humans," per an agency statement. A 2022 FDA study found that oral exposure to the additive "is associated with increased tissue levels of bromine and that at high levels of exposure the thyroid is a target organ of potential negative health effects in rodents." The ban takes effect on August 2. Companies will have one year from then to "reformulate, relabel, and deplete the inventory of BVO-containing products before the FDA begins enforcing the final rule," according to the agency.

Read more of this story at Slashdot.

Paul Voosen reports via Science Magazine: Few things prompt as much anxiety in science and the wider world as the growing use of artificial intelligence (AI) and the rising influence of China. This spring, these two factors created a rift at the European Geosciences Union (EGU), one of the world's largest geoscience societies, that led to the firing of its president. The whole episode has been "a packaging up of fear of AI and fear of China," says Michael Stephenson, former chief geologist of the United Kingdom and one of the founders of Deep-time Digital Earth (DDE), a $70 million effort to connect digital geoscience databases. In 2019, another geoscience society, the International Union of Geological Sciences (IUGS), kicked off DDE, which has been funded almost entirely by the government of China's Jiangsu province. The dispute pivots on GeoGPT, an AI-powered chatbot that is one of DDE's main efforts. It is being developed by Jian Wang, chief technology officer of e-commerce giant Alibaba. Built on Qwen, Alibaba's own chatbot, and fine-tuned on billions of words from open-source geology studies and data sets, GeoGPT is meant to provide expert answers to questions, summarize documents, and create visualizations. Stephenson tested an early version, asking it about the challenges of using the fossilized teeth of conodonts, an ancient relative of fish, to define the start of the Permian period 299 million years ago. "It was very good at that," he says. As awareness of GeoGPT spread, so did concern. Paul Cleverly, a visiting professor at Robert Gordon University, gained access to an early version and said in a recent editorial in Geoscientist there were "serious issues around a lack of transparency, state censorship, and potential copyright infringement." Paul Cleverly and GeoScienceWorld CEO Phoebe McMellon raised these concerns in a letter to IUGS, arguing that the chatbot was built using unlicensed literature without proper citations. However, they did not cite specific copyright violations, so DDE President Chengshan Wang, a geologist at the China University of Geosciences, decided not to end the project. Tensions at EGU escalated when a complaint about GeoGPT's transparency was submitted before the EGU's April meeting, where GeoGPT would be introduced. "It arrived at an EGU whose leadership was already under strain," notes Science. The complaint exacerbated existing leadership issues within EGU, particularly surrounding President Irina Artemieva, who was seen as problematic by some executives due to her affiliations and actions. Science notes that she's "affiliated with Germany's GEOMAR Helmholtz Centre for Ocean Research Kiel but is also paid by the Chinese Academy of Geological Sciences to advise it on its geophysical research." Artemieva forwarded the complaint via email to the DDE President to get his view, but forgot to delete the name attached to it, leading to a breach of confidentiality. This incident, among other leadership disputes, culminated in her dismissal and the elevation of Peter van der Beek to president. During the DDE session at the EGU meeting, van der Beek's enforcement actions against Chinese scientists and session attendees led to allegations of "harassment and discrimination." "Seeking to broker a peace deal around GeoGPT," IUGS's president and another former EGU president, John Ludden, organized a workshop and invited all parties to discuss GeoGPT's governance, ongoing negotiations for licensing deals and alternative AI models for GeoGPT's use.

Read more of this story at Slashdot.

The Spanish government is introducing a porn passport to help porn platforms verify users' ages. Slashdot reader fjo3 shares a report from Politico: Officially (and drily) called the Digital Wallet Beta (Cartera Digital Beta), the app Madrid unveiled on Monday would allow internet platforms to check whether a prospective smut-watcher is over 18. Porn-viewers will be asked to use the app to verify their age. Once verified, they'll receive 30 generated "porn credits" with a one-month validity granting them access to adult content. Enthusiasts will be able to request extra credits. While the tool has been criticized for its complexity, the government says the credit-based model is more privacy-friendly, ensuring that users' online activities are not easily traceable. The system will be available by the end of the summer. It will be voluntary, as online platforms can rely on other age-verification methods to screen out inappropriate viewers. It heralds an EU law going into force in October 2027, which will require websites to stop minors from accessing porn. Eventually, Madrid's porn passport is likely to be replaced by the EU's very own digital identity system (eIDAS2) -- a so-called wallet app allowing people to access a smorgasbord of public and private services across the whole bloc.

Read more of this story at Slashdot.

Ahead of its one-year anniversary, Meta CEO Mark Zuckerberg announced that Threads has reached more than 175 million monthly active users. The Verge reports: Back when it arrived in the App Store on July 5th, 2023, Musk was taking a wrecking ball to the service formerly called Twitter and goading Zuckerberg into a literal cage match that never happened. A year later, Threads is still growing at a steady clip -- albeit not as quickly as its huge launch -- while Musk hasn't shared comparable metrics for X since he took over. As with any social network, and especially for Threads, monthly users only tell part of the growth story. It's telling that, unlike Facebook, WhatsApp, and Instagram, Meta hasn't shared daily user numbers yet. That omission suggests Threads is still getting a lot of flyby traffic from people who have yet to become regular users. I've heard from Meta employees in recent months that much of the app's growth is still coming from it being promoted inside Instagram. Both apps share the same account system, which isn't expected to change.

Read more of this story at Slashdot.

An anonymous reader quotes a report from TechCrunch: When Rodney Brooks talks about robotics and artificial intelligence, you should listen. Currently the Panasonic Professor of Robotics Emeritus at MIT, he also co-founded three key companies, including Rethink Robotics, iRobot and his current endeavor, Robust.ai. Brooks also ran the MIT Computer Science and Artificial Intelligence Laboratory (CSAIL) for a decade starting in 1997. In fact, he likes to make predictions about the future of AI and keeps a scorecard on his blog of how well he's doing. He knows what he's talking about, and he thinks maybe it's time to put the brakes on the screaming hype that is generative AI. Brooks thinks it's impressive technology, but maybe not quite as capable as many are suggesting. "I'm not saying LLMs are not important, but we have to be careful [with] how we evaluate them," he told TechCrunch. He says the trouble with generative AI is that, while it's perfectly capable of performing a certain set of tasks, it can't do everything a human can, and humans tend to overestimate its capabilities. "When a human sees an AI system perform a task, they immediately generalize it to things that are similar and make an estimate of the competence of the AI system; not just the performance on that, but the competence around that," Brooks said. "And they're usually very over-optimistic, and that's because they use a model of a person's performance on a task." He added that the problem is that generative AI is not human or even human-like, and it's flawed to try and assign human capabilities to it. He says people see it as so capable they even want to use it for applications that don't make sense. Brooks offers his latest company, Robust.ai, a warehouse robotics system, as an example of this. Someone suggested to him recently that it would be cool and efficient to tell his warehouse robots where to go by building an LLM for his system. In his estimation, however, this is not a reasonable use case for generative AI and would actually slow things down. It's instead much simpler to connect the robots to a stream of data coming from the warehouse management software. "When you have 10,000 orders that just came in that you have to ship in two hours, you have to optimize for that. Language is not gonna help; it's just going to slow things down," he said. "We have massive data processing and massive AI optimization techniques and planning. And that's how we get the orders completed fast." "People say, 'Oh, the large language models are gonna make robots be able to do things they couldn't do.' That's not where the problem is. The problem with being able to do stuff is about control theory and all sorts of other hardcore math optimization," he said. "It's not useful in the warehouse to tell an individual robot to go out and get one thing for one order, but it may be useful for eldercare in homes for people to be able to say things to the robots," he said.

Read more of this story at Slashdot.

Netflix has started booting subscribers off its cheapest ad-free subscription tier, "starting with the UK and Canada, with more countries inevitably to follow," reports MacRumors. From the report: The streaming giant has reportedly begun notifying users via on-screen messages about the last day they can access the service unless they upgrade. One Reddit user shared a notification they had received from the Netflix app, saying: "Your last day to watch Netflix is July 13th. Choose a new plan to keep watching." Customers are being prompted to instead choose the cheaper Standard with ads, or the more expensive Standard or Premium 4K plans. The Basic plan, which costs $11.99 per month in the United States, has not been available to new subscribers since last year. In its early 2024 earnings call, Netflix announced its intention to retire its Basic plan in some countries where the ads plan has been introduced, starting with Canada and the UK in the second quarter, and then "taking it from there." Netflix said in May that its ad-supported streaming tier has 40 million global monthly active users, up 35 million from a year ago.

Read more of this story at Slashdot.

Matthew Connatser reports via The Register: Utility firms American Electric Power (AEP) and Exelon have filed an official objection with the Federal Energy Regulatory Commission (FERC) over Talen Energy's nuclear power deal with Amazon. Back in March, Amazon bought a nuclear-powered datacenter from Talen Energy -- an operator of electricity generation and transmission facilities in the US. As part of the deal, Amazon would get 480 MW straight from the 2.7 GW Talen nuclear power plant in Susquehanna, Pennsylvania, and may even be able to upgrade to 960 MW down the line. However, that Susquehanna atomic plant also provides power to PJM Interconnection, the regional power grid operator for much of the eastern US. The two companies -- Talen and PJM -- have an interconnection service agreement (ISA) that sets the rules for how Talen should deliver power to PJM's transmission system. To better accommodate the nuclear datacenter, Talen and PJM agreed to a new ISA, which has caught the ire of AEP and Exelon. The duo claim Talen and Amazon are basically getting a free ride that other PJM ratepayers will have to pay for, saying that even though Amazon's datacenter isn't directly connected to PJM, it still benefits from the power grid, meaning the other ratepayers are left holding the short end of the stick. Each of the station's two reactors has 1,350 MW available, and Amazon is already able to use 480 MW, and up to 960 MW in the future. If one of the reactors experiences an outage, the ISA says the datacenter is first in line for power from the other reactor, which leaves PJM with far less electricity than normal. That in turn would mean a lower energy supply for PJM's customers, who would have to pay more, at least according to the complaint's reasoning. The Talen-PJM ISA states that in this event, the nuclear datacenter will separate from the plant and get its power elsewhere, but AEP and Exelon are skeptical and want to know how exactly that would work. The complaint argues Amazon's DC is essentially using the grid, saying the "premise" of the tweaked ISA "is that this datacenter co-located load is like load on a remote island -- one that simply has no impact on the PJM grid and would thus be properly excluded from economic and other responsibility for maintaining the PJM grid. But that storyline does not stand up to scrutiny." "They present their filing as no more than a replacement of older agreements with updated terms and 'clarifications' regarding the parties' roles and obligations," the two utility companies told [PDF] FERC, requesting a hearing over the matter. "The filing [new ISA] casts the submission as a mere housekeeping exercise, as if there is nothing to see here." The protest adds: "The co-located load should not be allowed to operate as a free rider, making use of, and receiving the benefits of, a transmission system paid for by transmission ratepayers. We have no objection to co-location per se, but such load should pay its fair share of system use and other charges, just like other loads and customers." AEP and Exelon claim the new terms of the ISA contains a key loophole that hinges on the datacenter's co-location with the nuclear power plant, which allows its power usage to not be considered "in-network," even though the power load is synced to PJM's grid and could theoretically get power from it. [...] The end result, or so AEP and Exelon allege, is that Talen would be able to benefit from PJM's services without the associated cost. That would cost other customers between $58 million and $140 million per year overall, according to an analysis from Concentric Energy Advisors CEO Danielle Powers and chairman John Reed included with the filing. AEP and Exelon asked FERC to either hold a hearing to answer questions it feels are unresolved or to reject the new ISA outright. For its part, Talen claims the complaint's narrative is "demonstrably false" and that "transmission is not implicated."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: A California-based credit union with over 450,000 members said it suffered a ransomware attack that is disrupting account services and could take weeks to recover from. "The next few days -- and coming weeks -- may present challenges for our members, as we continue to navigate around the limited functionality we are experiencing due to this incident," Patelco Credit Union CEO Erin Mendez told members in a July 1 message (PDF) that said the security problem was caused by a ransomware attack. Online banking and several other services are unavailable, while several other services and types of transactions have limited functionality. Patelco Credit Union was hit by the attack on June 29 and has been posting updates on this page, which says the credit union "proactively shut down some of our day-to-day banking systems to contain and remediate the issue... As a result of our proactive measures, transactions, transfers, payments, and deposits are unavailable at this time. Debit and credit cards are working with limited functionality." Patelco Credit Union is a nonprofit cooperative in Northern California with $9 billion in assets and 37 local branches. "Our priority is the safe and secure restoration of our banking systems," a July 2 update said. "We continue to work alongside leading third-party cybersecurity experts in support of this effort. We have also been cooperating with regulators and law enforcement." Patelco says that check and cash deposits should be working, but direct deposits have limited functionality. Security expert Ahmed Banafa "said Tuesday that it looks likely that hackers infiltrated the bank's internal databases via a phishing email and encrypted its contents, locking out the bank from its own systems," the Mercury News reported. Banafa was paraphrased as saying that it is "likely the hackers will demand an amount of money from the credit union to restore its systems back to normal, and will continue to hold the bank's accounts hostage until either the bank finds a way around the hack or until the hackers are paid." Patelco hasn't revealed details about how it will recover from the ransomware attack but acknowledged to customers that their personal information could be at risk. "The investigation into the nature and scope of the incident is ongoing," the credit union said. "If the investigation determines that individuals' information is involved as a result of this incident, we will of course notify those individuals and provide resources to help protect their information in accordance with applicable laws." While ATMs "remain available for cash withdrawals and deposits," Patelco said many of its other services remain unavailable, including online banking, the mobile app, outgoing wire transfers, monthly statements, Zelle, balance inquiries, and online bill payments. Services with "limited functionality" include company branches, call center services, live chats, debit and credit card transactions, and direct deposits.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Neowin: Former Microsoft CEO Steve Ballmer, known for his enthusiastic energy and salesmanship, is now richer than Microsoft co-founder Bill Gates. This is the first time Ballmer has surpassed Bill Gates in wealth. According to the Bloomberg Billionaires Index, Steve Ballmer is now the sixth-richest person in the world with a $157.2 billion net worth. Steve Ballmer surpassed Bill Gates for two reasons: - Ninety percent of Steve Ballmer's wealth is in Microsoft stock. Ballmer remains the single largest individual shareholder of Microsoft stock. Microsoft's stock continues its strong growth momentum and is up 21% this year alone. - Bill Gates diversified his portfolio through Cascade Investment. Therefore, his other investments did not yield the returns that Microsoft stock would have provided. "[T]he Bloomberg Billionaires Index only considers an individual's current personal wealth," notes the report. It doesn't take into consideration each of the executives' various charitable donations, such as Gates' $60 billion donation to the Gates Foundation or Ballmer's million-dollar donations to major universities in the U.S.

Read more of this story at Slashdot.

Ars Technica's Eric Berger writes: On the day before Christmas last year, a Falcon 9 rocket launched from California and put two spy satellites into low-Earth orbit for the armed forces of Germany, which are collectively called the Bundeswehr. Initially, the mission appeared successful. The German satellite manufacturer, OHB, declared that the two satellites were "safely in orbit." The addition of the two SARah satellites completed a next-generation constellation of three reconnaissance satellites, the company said. However, six months later, the two satellites have yet to become operational. According to the German publication Der Spiegel, the antennas on the satellites cannot be unfolded. Engineers with OHB have tried to resolve the issue by resetting the flight software, performing maneuvers to vibrate or shake the antennas loose, and more to no avail. As a result, last week, German lawmakers were informed that the two new satellites will probably not go into operation as planned. The three-satellite constellation known as SARah -- the SAR is a reference to the synthetic aperture radar capability of the satellites -- was ordered in 2013 at a cost of $800 million. The first of the three satellites, SARah 1, launched in June 2022 on a Falcon 9 rocket. This satellite was built by Airbus in southern Germany, and it has since gone into operation without any problems. The two smaller satellites built by OHB, flying with passive synthetic aperture radar reflectors, were intended to complement the SARah 1 satellite, which carries an active phased-array radar antenna. [...] According to the Der Spiegel report, the Bundeswehr says the two SARah satellites built by OHB remain the property of the German company and would only be turned over to the military once they were operational. As a result, the military says OHB will be responsible for building two replacement satellites. Shockingly, the German publication says that its sources indicated OBH did not fully test the functionality and deployment of the satellite antennas on the ground. This could not be confirmed.

Read more of this story at Slashdot.

Scientists in China have found a species of moss that is able to withstand Mars-like conditions. The species is called Syntrichia caninervis and it's found in regions including Antarctica and the Mojave desert. The Guardian reports: "The unique insights obtained in our study lay the foundation for outer space colonization using naturally selected plants adapted to extreme stress conditions," the team write. [...] Writing in the journal The Innovation, researchers in China describe how the desert moss not only survived but rapidly recovered from almost complete dehydration. It was also able to regenerate under normal growth conditions after spending up to five years at -80C and up to 30 days at -196C, and after exposure to gamma rays, with doses of around 500Gy even promoting new growth. The team then created a set-up that had similar pressures, temperatures, gases and UV radiation to Mars. It found the moss survived in this Mars-like environment, and was able to regenerate under normal growth conditions, even after seven days of exposure. The team also noted plants that were dried before such exposure faired better. "Looking to the future, we expect that this promising moss could be brought to Mars or the moon to further test the possibility of plant colonization and growth in outer space," the researchers write.

Read more of this story at Slashdot.

An anonymous reader quotes a report from ZDNet, written by Steven Vaughan-Nichols: Hold onto your SSH keys, folks! A critical vulnerability has just rocked OpenSSH, Linux's secure remote access foundation, causing seasoned sysadmins to break out in a cold sweat. Dubbed "regreSSHion" and tagged as CVE-2024-6387, this nasty bug allows unauthenticated remote code execution (RCE) on OpenSSH servers running on glibc-based Linux systems. We're not talking about some minor privilege escalation here -- this flaw hands over full root access on a silver platter. For those who've been around the Linux block a few times, this feels like deja vu. The vulnerability is a regression of CVE-2006-5051, a bug patched back in 2006. This old foe somehow snuck back into the code in October 2020 with OpenSSH 8.5p1. Thankfully, the Qualys Threat Research Unit uncovered this digital skeleton in OpenSSH's closet. Unfortunately, this vulnerability affects the default configuration and doesn't need any user interaction to exploit. In other words, it's a vulnerability that keeps security professionals up at night. It's hard to overstate the potential impact of this flaw. OpenSSH is the de facto standard for secure remote access and file transfer in Unix-like systems, including Linux and macOS. It's the Swiss Army knife of secure communication for sysadmins and developers worldwide. The good news is that not all Linux distributions have the vulnerable code. Old OpenSSH versions earlier than 4.4p1 are vulnerable to this signal handler race condition unless they are patched for CVE-2006-5051 and CVE-2008-4109. Versions from 4.4p1 up to, but not including, 8.5p1 are not vulnerable. The bad news is that the vulnerability resurfaced in OpenSSH 8.5p1 up to, but not including, 9.8p1 due to the accidental removal of a critical component. Qualys has found over 14 million potentially vulnerable OpenSSH server internet instances. The company believes that approximately 700,000 of these external internet-facing instances are definitely vulnerable. A patch, OpenSSH 9.8/9.8p1 is now available. Many, but not all, Linux distributions have made it available. If you can get it, install it as soon as possible. If for whatever reason you're not able to install a patch, Vaughan-Nichols recommends you set LoginGraceTime to 0 in the sshd configuration file and use network-based controls to restrict SSH access, while also configuring firewalls and monitoring tools to detect and block exploit attempts.

Read more of this story at Slashdot.

Longtime Slashdot reader fahrbot-bot shares a report from CNN, written by Olesya Dmitracova: Nyobolt, based in Cambridge, has developed a new 35kWh lithium-ion battery that was charged from 10% to 80% in just over four and a half minutes in its first live demonstration last week. [...] Nyobolt's technology builds on a decade of research led by University of Cambridge battery scientist Clare Grey and Cambridge-educated Shivareddy, the company said. Key to its batteries' ability to be charged super-fast without a big impact on their longevity is a design that means they generate less heat. It also makes them safer as overheating can cause a lithium-ion battery to catch fire and explode. In addition, the materials used to make the batteries' anodes allow for a faster transfer of electrons. Nyobolt is currently in talks to sell its batteries to eight electric car manufacturers. At 35 kWh, the battery is much smaller than the 85 kWh in a more typical American electric vehicle (EV). Yet the technology may be used in larger battery packs in the future. Independent testing of Nyobolt's batteries by what it called a leading global manufacturer found that they can achieve over 4,000 fast-charge cycles, equivalent to 600,000 miles (965,600 kilometers), while retaining more than 80% of capacity, Nyobolt said in its Friday statement. William Kephart, an e-mobility specialist at consultancy P3 Group and a former engineer, said EV batteries of the kind Nyobolt has developed could "theoretically" be charged as fast as the firm is promising, but the challenge was manufacturing such batteries on an industrial scale. A crucial chemical element in Nyobolt's batteries is niobium but, as Kephart pointed out, last year only an estimated 83,000 tons (94,500 tons) was mined worldwide. Compare that with graphite, commonly used as anode material in lithium-ion batteries: an estimated 1.6 million tons (1.8 million tons) was produced in 2023. In addition, there are currently "a lot of unknowns" with the niobium battery technology, he told CNN. "The industry will work it out (but) it's not seen by the industry as a scalable technology just yet," he added.

Read more of this story at Slashdot.

Brazil's national data protection authority ruled on Tuesday that Meta must stop using data originating in the country to train its artificial intelligence models. The Associated Press reports: Meta's updated privacy policy enables the company to feed people's public posts into its AI systems. That practice will not be permitted in Brazil, however. The decision stems from "the imminent risk of serious and irreparable or difficult-to-repair damage to the fundamental rights of the affected data subjects," the agency said in the nation's official gazette. [...] Hye Jung Han, a Brazil-based researcher for the rights group, said in an email Tuesday that the regulator's action "helps to protect children from worrying that their personal data, shared with friends and family on Meta's platforms, might be used to inflict harm back on them in ways that are impossible to anticipate or guard against." But the decision regarding Meta will "very likely" encourage other companies to refrain from being transparent in the use of data in the future, said Ronaldo Lemos, of the Institute of Technology and Society of Rio de Janeiro, a think-tank. "Meta was severely punished for being the only one among the Big Tech companies to clearly and in advance notify in its privacy policy that it would use data from its platforms to train artificial intelligence," he said. Compliance must be demonstrated by the company within five working days from the notification of the decision, and the agency established a daily fine of 50,000 reais ($8,820) for failure to do so. In a statement, Meta said the company is "disappointed" by the decision and insists its method "complies with privacy laws and regulations in Brazil." "This is a step backwards for innovation, competition in AI development and further delays bringing the benefits of AI to people in Brazil," a spokesperson for the company added.

Read more of this story at Slashdot.

As reported by Bloomberg, Apple will get an "observer role" on OpenAI's board of directors as part of its partnership to integrate ChatGPT into iOS 18. That role will reportedly be filled by Apple Fellow, Phil Schiller. 9to5Mac reports: Apple having an "observer role" on the OpenAI board matches the role of Microsoft. Schiller will be able to observe and attend board meetings, but will not have any voting power: "The board observer role will put Apple on par with Microsoft, OpenAI's biggest backer and its main AI technology provider. The job allows someone to attend board meetings without being able to vote or exercise other director powers. Observers, however, do gain insights into how decisions are made at the company." The arrangement will take effect later this year, according to Bloomberg. Schiller "hasn't yet attended any meetings" of the OpenAI board and "details of the situation could still change." Schiller served as Apple's long-time marketing chief before transitioning to an Apple Fellow role in 2020. In this role, Schiller continues to lead the App Store and Apple events and reports directly to Apple CEO Tim Cook. Schiller is also leading Apple's efforts to defend the App Store against antitrust allegations around the world.

Read more of this story at Slashdot.

An anonymous reader quotes a report from the Financial Times: Google's greenhouse gas emissions have surged 48 percent in the past five years due to the expansion of its data centers that underpin artificial intelligence systems, leaving its commitment to get to "net zero" by 2030 in doubt. The Silicon Valley company's pollution amounted to 14.3 million tons of carbon equivalent in 2023, a 48 percent increase from its 2019 baseline and a 13 percent rise since last year, Google said in its annual environmental report on Tuesday. Google said the jump highlighted "the challenge of reducing emissions" at the same time as it invests in the build-out of large language models and their associated applications and infrastructure, admitting that "the future environmental impact of AI" was "complex and difficult to predict." Chief sustainability officer Kate Brandt said the company remained committed to the 2030 target but stressed the "extremely ambitious" nature of the goal. "We do still expect our emissions to continue to rise before dropping towards our goal," said Brandt. She added that Google was "working very hard" on reducing its emissions, including by signing deals for clean energy. There was also a "tremendous opportunity for climate solutions that are enabled by AI," said Brandt. [...] In Tuesday's report, Google said its 2023 energy-related emissions -- which come primarily from data center electricity consumption -- rose 37 percent year on year, and overall represented a quarter of its total greenhouse gas emissions. Google's supply chain emissions -- its largest chunk, representing 75 percent of its total emissions -- also rose 8 percent. Google said they would "continue to rise in the near term" as a result in part of the build-out of the infrastructure needed to run AI systems. Google has pledged to achieve net zero across its direct and indirect greenhouse gas emissions by 2030, and to run on carbon-free energy during every hour of every day within each grid it operates by the same date. However, the company warned in Tuesday's report that the "termination" of some clean energy projects during 2023 had pushed down the amount of renewables it had access to. Meanwhile, the company's data centre electricity consumption had "outpaced" Google's ability to bring more clean power projects online in the US and Asia-Pacific regions. Google's data centre electricity consumption increased 17 percent in 2023, and amounted to approximately 7-10 percent of global data center electricity consumption, the company estimated.Its data centers also consumed 17 percent more water in 2023 than during the previous year, Google said.

Read more of this story at Slashdot.

Longtime Slashdot reader regoli shares an obituary from the Wall Street Journal: When Alan Ashton was a computer-science professor at Brigham Young University in the mid-1970s, the director of the school's marching band knocked on his door and said he wanted to use a computer to choreograph the band's halftime shows. Ashton was easily persuaded; he was a trumpet player whose Ph.D. dissertation at the University of Utah was "Electronics, music and computers." Bruce Bastian, the graduate student who was working as BYU's marching-band director, turned out to be a quick learner. "He was very conscientious, very thorough," Ashton said in an interview, "and just absolutely brilliant." Within a few years, the two were at work on a program that would turn them into two of the richest people in the nation, founders of the company that made WordPerfect, the dominant word-processing software in the 1980s and early '90s and one of the first pieces of software many Americans bought when they brought home their first PCs. But behind the hundreds of millions of dollars and blockbuster success, Bastian's personal life, he later said, was in "free fall." Between the time he and Ashton released what would later be known as WordPerfect to the public in 1980 and when they sold the company for $1.4 billion in 1994, Bastian told his wife, four sons and his Mormon community that he was gay and leaving both his marriage and the church. When he died, June 16, at the age of 76 from complications associated with pulmonary fibrosis, he had been living a different life: A longtime advocate for LGBTQ rights, Bastian was married to a man, and had found a way to maintain relationships with his family, who remained dedicated members of the church that rejected his sexual orientation. "I kind of have three parts of my life," he said in 2010 during one of several extensive interviews he gave to the Mormon Stories podcast, "the pre-WordPerfect life, the WordPerfect years, and now the LGBT years." Other publications remembering Bruce Bastian include: The New York Times, The Salt Lake Tribune, University of Utah, and Human Rights Campaign.

Read more of this story at Slashdot.

The Supreme Court has agreed to hear a challenge to a Texas law requiring age verification to access online pornography, which opponents argue violates the First Amendment by discouraging adults from viewing such material due to privacy concerns. A federal judge blocked the law citing its chilling effect on free speech, but a divided appeals court upheld it, emphasizing the government's interest in protecting minors; the case will now be reviewed by the Supreme Court. The Texas bill in question, HB 1181, was passed into law last June. The New York Times reports: The Supreme Court agreed on Tuesday to hear a challenge to a Texas law that seeks to limit minors' access to pornography on the internet by requiring age verification measures like the submission of government-issued IDs. A trade group, companies that produce sexual materials and a performer challenged the law, saying that it violates the First Amendment right of adults. The law does not allow companies to retain information their users submit. But the challengers said adults would be wary of supplying personal information for fear of identity theft, tracking and extortion. [...] In urging the Supreme Court to leave the law in place while it considers whether to hear the case, Ken Paxton, Texas' attorney general, said pornography available on the internet is "orders of magnitude more graphic, violent and degrading than any so-called 'girlie' magazine of yesteryear." He added: "This statute does not prohibit the performance, production or even sale of pornography but, more modestly, simply requires the pornography industry that make billions of dollars from peddling smut to take commercially reasonable steps to ensure that those who access the material are adults. There is nothing unconstitutional about it."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Human Rights Watch (HRW) continues to reveal how photos of real children casually posted online years ago are being used to train AI models powering image generators -- even when platforms prohibit scraping and families use strict privacy settings. Last month, HRW researcher Hye Jung Han found 170 photos of Brazilian kids that were linked in LAION-5B, a popular AI dataset built from Common Crawl snapshots of the public web. Now, she has released a second report, flagging 190 photos of children from all of Australia's states and territories, including indigenous children who may be particularly vulnerable to harms. These photos are linked in the dataset "without the knowledge or consent of the children or their families." They span the entirety of childhood, making it possible for AI image generators to generate realistic deepfakes of real Australian children, Han's report said. Perhaps even more concerning, the URLs in the dataset sometimes reveal identifying information about children, including their names and locations where photos were shot, making it easy to track down children whose images might not otherwise be discoverable online. That puts children in danger of privacy and safety risks, Han said, and some parents thinking they've protected their kids' privacy online may not realize that these risks exist. From a single link to one photo that showed "two boys, ages 3 and 4, grinning from ear to ear as they hold paintbrushes in front of a colorful mural," Han could trace "both children's full names and ages, and the name of the preschool they attend in Perth, in Western Australia." And perhaps most disturbingly, "information about these children does not appear to exist anywhere else on the Internet" -- suggesting that families were particularly cautious in shielding these boys' identities online. Stricter privacy settings were used in another image that Han found linked in the dataset. The photo showed "a close-up of two boys making funny faces, captured from a video posted on YouTube of teenagers celebrating" during the week after their final exams, Han reported. Whoever posted that YouTube video adjusted privacy settings so that it would be "unlisted" and would not appear in searches. Only someone with a link to the video was supposed to have access, but that didn't stop Common Crawl from archiving the image, nor did YouTube policies prohibiting AI scraping or harvesting of identifying information. Reached for comment, YouTube's spokesperson, Jack Malon, told Ars that YouTube has "been clear that the unauthorized scraping of YouTube content is a violation of our Terms of Service, and we continue to take action against this type of abuse." But Han worries that even if YouTube did join efforts to remove images of children from the dataset, the damage has been done, since AI tools have already trained on them. That's why -- even more than parents need tech companies to up their game blocking AI training -- kids need regulators to intervene and stop training before it happens, Han's report said. Han's report comes a month before Australia is expected to release a reformed draft of the country's Privacy Act. Those reforms include a draft of Australia's first child data protection law, known as the Children's Online Privacy Code, but Han told Ars that even people involved in long-running discussions about reforms aren't "actually sure how much the government is going to announce in August." "Children in Australia are waiting with bated breath to see if the government will adopt protections for them," Han said, emphasizing in her report that "children should not have to live in fear that their photos might be stolen and weaponized against them."

Read more of this story at Slashdot.

storagedude shares a report from the Cyber Express: Some of the most widely used web and social media applications could be vulnerable to three newly discovered CocoaPods vulnerabilities -- including potentially millions of Apple devices, according to a report by The Cyber Express, the news service of threat intelligence vendor Cyble Inc. E.V.A Information Security researchers reported three vulnerabilities in the open source CocoaPods dependency manager that could allow malicious actors to take over thousands of unclaimed pods and insert malicious code into many of the most popular iOS and MacOS applications, potentially affecting "almost every Apple device." The researchers found vulnerable code in applications provided by Meta (Facebook, Whatsapp), Apple (Safari, AppleTV, Xcode), and Microsoft (Teams); as well as in TikTok, Snapchat, Amazon, LinkedIn, Netflix, Okta, Yahoo, Zynga, and many more. The vulnerabilities have been patched, yet the researchers still found 685 Pods "that had an explicit dependency using an orphaned Pod; doubtless there are hundreds or thousands more in proprietary codebases." The newly discovered vulnerabilities -- one of which (CVE-2024-38366) received a 10 out of 10 criticality score -- actually date from a May 2014 CocoaPods migration to a new 'Trunk' server, which left 1,866 orphaned pods that owners never reclaimed. While the vulnerabilities have been patched, the work for developers and DevOps teams that used CocoaPods before October 2023 is just getting started. "Developers and DevOps teams that have used CocoaPods in recent years should verify the integrity of open source dependencies used in their application code," the E.V.A researchers said. "The vulnerabilities we discovered could be used to control the dependency manager itself, and any published package." [...] "Dependency managers are an often-overlooked aspect of software supply chain security," the researchers wrote. "Security leaders should explore ways to increase governance and oversight over the use these tools." "While there is no direct evidence of any of these vulnerabilities being exploited in the wild, evidence of absence is not absence of evidence." the EVA researchers wrote. "Potential code changes could affect millions of Apple devices around the world across iPhone, Mac, AppleTV, and AppleWatch devices." While no action is required by app developers or users, the EVA researchers recommend several ways to protect against these vulnerabilities. To ensure secure and consistent use of CocoaPods, synchronize the podfile.lock file with all developers, perform CRC validation for internally developed Pods, and conduct thorough security reviews of third-party code and dependencies. Furthermore, regularly review and verify the maintenance status and ownership of CocoaPods dependencies, perform periodic security scans, and be cautious of widely used dependencies as potential attack targets.

Read more of this story at Slashdot.

Digital audio broadcasting (DAB+) and internet radio have largely replaced traditional FM radio in Switzerland, with digital radio holding an 81% share of use in spring 2023. Due to the high costs of maintaining FM transmitters and declining financial resources, Switzerland plans to fully transition to digital radio by the end of 2026, phasing out FM broadcasting completely. From a report: DAB+ and the internet offer better quality and a larger program selection, are more energy and cost efficient, and can provide additional information in text and images, it said. To receive DAB+ requires a corresponding device or adapter, and new cars have been equipped with digital technology as standard for several years. In addition, the Federal Roads Office (FEDRO) will upgrade all tunnels on the national road network for digital radio reception by the end of the year and switch off FM transmitters. FM was originally expected to be switched off throughout Switzerland by the end of 2024. The government extended FM licenses for the radio industry for the last time in October 2023 to the end of 2026, after which radio stations in Switzerland will no longer be able to broadcast via FM, only digitally. OFCOM announced at the time that the final extension would give the radio industry the flexibility to complete the transition process from analogue to digital radio.

Read more of this story at Slashdot.

Starting July 1st, ships in Arctic waters are banned from using Heavy Fuel Oil (HFO), a relatively cheap tar-like oil that's widely used in shipping around the world, especially tankers. According to the BBC, it's the "dirtiest and most climate-damaging fuel for ships." Still, campaigners believe numerous loopholes will allow most ships to continue using the fuel until 2029, limiting the ban's immediate effectiveness. The BBC reports: Produced from the waste left over in oil refining, HFO poses a huge threat to the oceans in general but to the Arctic in particular. This sludge-like fuel is almost impossible to clean up if a spill occurs. In colder waters, experts say, the fuel does not break down but sinks in lumps that linger in sediments, threatening fragile ecosystems. In climate terms, this oil is seen as particularly dangerous, not just producing large amounts of planet-warming gas when burned, but also spewing out sooty particles called black carbon. [...] The oil was banned from use or transport in the Antarctic in 2011. Environmentalists have been pushing to expand that restriction to northern waters for years, finally persuading the countries that participate in the International Maritime Organisation (IMO) to enact a ban back in 2021. [...] According to the regulations, ships that have a "protected fuel tank" will be exempt from the ban. Countries that border the Arctic will also be able to exempt their own ships from the ban in their own territorial waters. One of the major players in the region is Russia, which has over 800 ships operating in northern waters. They are not implementing the new IMO regulation. These waiver exemptions will last until 2029 -- their impact is likely to be significant, with the International Council on Clean Transportation estimating that about 74% of ships that use HFO will be able to continue to do so. Some observers believe that increased efforts to extract oil in the Arctic could see a rise in the amount of HFO in use in these waters, instead of a decrease.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Phys.Org: New analyses from the Annenberg Public Policy Center find that public perceptions of scientists' credibility -- measured as their competence, trustworthiness, and the extent to which they are perceived to share an individual's values -- remain high, but their perceived competence and trustworthiness eroded somewhat between 2023 and 2024. The research also found that public perceptions of scientists working in artificial intelligence (AI) differ from those of scientists as a whole. [...] The five factors in Factors Assessing Science's Self-Presentation (FASS) are whether science and scientists are perceived to be credible and prudent, and whether they are perceived to overcome bias, correct error (self-correcting), and whether their work benefits people like the respondent and the country as a whole (beneficial). [...] In the FASS model, perceptions of scientists' credibility are assessed through perceptions of whether scientists are competent, trustworthy, and "share my values." The first two of those values slipped in the most recent survey. In 2024, 70% of those surveyed strongly or somewhat agree that scientists are competent (down from 77% in 2023) and 59% strongly or somewhat agree that scientists are trustworthy (down from 67% in 2023). The survey also found that in 2024, fewer people felt that scientists' findings benefit "the country as a whole" and "benefit people like me." In 2024, 66% strongly or somewhat agreed that findings benefit the country as a whole (down from 75% in 2023). Belief that scientists' findings "benefit people like me," also declined, to 60% from 68%. Taken together, those two questions make up the beneficial factor of FASS. The findings follow sustained attacks on climate and COVID-19-related science, and more recently, public concerns about the rapid development and deployment of artificial intelligence. Here's what the study found when comparing perceptions of scientists in general with climate and AI scientists: - Credibility: When asked about three factors underlying scientists' credibility, AI scientists have lower credibility in all three values. - Competent: 0% strongly/somewhat agree that scientists are competent, but only 62% for climate scientists and 49% for AI scientists. - Trustworthy: 59% agree scientists are trustworthy, 54% agree for climate scientists, 28% for AI scientists. - Share my values: A higher number (38%) agree that climate scientists share my values than for scientists in general (36%) and AI scientists (15%). More people disagree with this for AI scientists (35%) than for the others. - Prudence: Asked whether they agree or disagree that science by various groups of scientists "creates unintended consequences and replaces older problems with new ones," over half of those surveyed (59%) agree that AI scientists create unintended consequences and just 9% disagree. - Overcoming bias: Just 42% of those surveyed agree that scientists "are able to overcome human and political biases," but only 21% feel that way about AI scientists. In fact, 41% disagree that AI scientists are able to overcome human political biases. In another area, just 23% agree that AI scientists provide unbiased conclusions in their area of inquiry and 38% disagree. - Self-correction: Self-correction, or "organized skepticism expressed in expectations sustaining a culture of critique," as the FASS paper puts it, is considered by some as a "hallmark of science." AI scientists are seen as less likely than scientists or climate scientists to take action to prevent fraud; take responsibility for mistakes; or to have mistakes that are caught by peer review. - Benefits: Asked about the benefits from scientists' findings, 60% agree that scientists' "findings benefit people like me," though just 44% agree for climate scientists and 35% for AI scientists. Asked about whether findings benefit the country as a whole, 66% agree for scientists, 50% for climate scientists and 41% for AI scientists. - Your best interest: The survey also asked respondents how much trust they have in scientists to act in the best interest of people like you. (This specific trust measure is not a part of the FASS battery.) Respondents have less trust in AI scientists than in others: 41% have a great deal/a lot of trust in medical scientists; 39% in climate scientists; 36% in scientists; and 12% in AI scientists.

Read more of this story at Slashdot.

"A federal grand jury has indicted an embattled Alzheimer's researcher for allegedly falsifying data to fraudulently obtain $16 million in federal research funding from the National Institutes of Health for the development of a controversial Alzheimer's drug and diagnostic test," writes Beth Mole via Ars Technica. "Wang is charged with one count of major fraud against the United States, two counts of wire fraud, and one count of false statements. If convicted, he faces a maximum penalty of 10 years in prison for the major fraud charge, 20 years in prison for each count of wire fraud, and five years in prison for the count of false statements [...]." From the report: Hoau-Yan Wang, 67, a medical professor at the City University of New York, was a paid collaborator with the Austin, Texas-based pharmaceutical company Cassava Sciences. Wang's research and publications provided scientific underpinnings for Cassava's Alzheimer's treatment, Simufilam, which is now in Phase III trials. Simufilam is a small-molecule drug that Cassava claims can restore the structure and function of a scaffolding protein in the brain of people with Alzheimer's, leading to slowed cognitive decline. But outside researchers have long expressed doubts and concerns about the research. In 2023, Science magazine obtained a 50-page report from an internal investigation at CUNY that looked into 31 misconduct allegations made against Wang in 2021. According to the report, the investigating committee "found evidence highly suggestive of deliberate scientific misconduct by Wang for 14 of the 31 allegations," the report states. The allegations largely centered around doctored and fabricated images from Western blotting, an analytical technique used to separate and detect proteins. However, the committee couldn't conclusively prove the images were falsified "due to the failure of Dr. Wang to provide underlying, original data or research records and the low quality of the published images that had to be examined in their place." In all, the investigation "revealed long-standing and egregious misconduct in data management and record keeping by Dr. Wang," and concluded that "the integrity of Dr. Wang's work remains highly questionable." The committee also concluded that Cassava's lead scientist on its Alzheimer's disease program, Lindsay Burns, who was a frequent co-author with Wang, also likely bears some responsibility for the misconduct. In March 2022, five of Wang's articles published in the journal PLOS One were retracted over integrity concerns with images in the papers. Other papers by Wang have also been retracted or had statements of concern attached to them. Further, in September 2022, the Food and Drug Administration conducted an inspection of the analytical work and techniques used by Wang to analyze blood and cerebrospinal fluid from patients in a simufilam trial. The investigation found a slew of egregious problems, which were laid out in a "damning" report (PDF) obtained by Science. In the indictment last week (PDF), federal authorities were explicit about the allegations, claiming that Wang falsified the results of his scientific research to NIH "by, among other things, manipulating data and images of Western blots to artificially add bands [which represent proteins], subtract bands, and change their relative thickness and/or darkness, and then drawing conclusions" based on those false results.

Read more of this story at Slashdot.