An anonymous reader quotes a report from ZDNet, written by Steven Vaughan-Nichols: Hold onto your SSH keys, folks! A critical vulnerability has just rocked OpenSSH, Linux's secure remote access foundation, causing seasoned sysadmins to break out in a cold sweat. Dubbed "regreSSHion" and tagged as CVE-2024-6387, this nasty bug allows unauthenticated remote code execution (RCE) on OpenSSH servers running on glibc-based Linux systems. We're not talking about some minor privilege escalation here -- this flaw hands over full root access on a silver platter. For those who've been around the Linux block a few times, this feels like deja vu. The vulnerability is a regression of CVE-2006-5051, a bug patched back in 2006. This old foe somehow snuck back into the code in October 2020 with OpenSSH 8.5p1. Thankfully, the Qualys Threat Research Unit uncovered this digital skeleton in OpenSSH's closet. Unfortunately, this vulnerability affects the default configuration and doesn't need any user interaction to exploit. In other words, it's a vulnerability that keeps security professionals up at night. It's hard to overstate the potential impact of this flaw. OpenSSH is the de facto standard for secure remote access and file transfer in Unix-like systems, including Linux and macOS. It's the Swiss Army knife of secure communication for sysadmins and developers worldwide. The good news is that not all Linux distributions have the vulnerable code. Old OpenSSH versions earlier than 4.4p1 are vulnerable to this signal handler race condition unless they are patched for CVE-2006-5051 and CVE-2008-4109. Versions from 4.4p1 up to, but not including, 8.5p1 are not vulnerable. The bad news is that the vulnerability resurfaced in OpenSSH 8.5p1 up to, but not including, 9.8p1 due to the accidental removal of a critical component. Qualys has found over 14 million potentially vulnerable OpenSSH server internet instances. The company believes that approximately 700,000 of these external internet-facing instances are definitely vulnerable. A patch, OpenSSH 9.8/9.8p1 is now available. Many, but not all, Linux distributions have made it available. If you can get it, install it as soon as possible. If for whatever reason you're not able to install a patch, Vaughan-Nichols recommends you set LoginGraceTime to 0 in the sshd configuration file and use network-based controls to restrict SSH access, while also configuring firewalls and monitoring tools to detect and block exploit attempts.

Read more of this story at Slashdot.

Longtime Slashdot reader fahrbot-bot shares a report from CNN, written by Olesya Dmitracova: Nyobolt, based in Cambridge, has developed a new 35kWh lithium-ion battery that was charged from 10% to 80% in just over four and a half minutes in its first live demonstration last week. [...] Nyobolt's technology builds on a decade of research led by University of Cambridge battery scientist Clare Grey and Cambridge-educated Shivareddy, the company said. Key to its batteries' ability to be charged super-fast without a big impact on their longevity is a design that means they generate less heat. It also makes them safer as overheating can cause a lithium-ion battery to catch fire and explode. In addition, the materials used to make the batteries' anodes allow for a faster transfer of electrons. Nyobolt is currently in talks to sell its batteries to eight electric car manufacturers. At 35 kWh, the battery is much smaller than the 85 kWh in a more typical American electric vehicle (EV). Yet the technology may be used in larger battery packs in the future. Independent testing of Nyobolt's batteries by what it called a leading global manufacturer found that they can achieve over 4,000 fast-charge cycles, equivalent to 600,000 miles (965,600 kilometers), while retaining more than 80% of capacity, Nyobolt said in its Friday statement. William Kephart, an e-mobility specialist at consultancy P3 Group and a former engineer, said EV batteries of the kind Nyobolt has developed could "theoretically" be charged as fast as the firm is promising, but the challenge was manufacturing such batteries on an industrial scale. A crucial chemical element in Nyobolt's batteries is niobium but, as Kephart pointed out, last year only an estimated 83,000 tons (94,500 tons) was mined worldwide. Compare that with graphite, commonly used as anode material in lithium-ion batteries: an estimated 1.6 million tons (1.8 million tons) was produced in 2023. In addition, there are currently "a lot of unknowns" with the niobium battery technology, he told CNN. "The industry will work it out (but) it's not seen by the industry as a scalable technology just yet," he added.

Read more of this story at Slashdot.

Brazil's national data protection authority ruled on Tuesday that Meta must stop using data originating in the country to train its artificial intelligence models. The Associated Press reports: Meta's updated privacy policy enables the company to feed people's public posts into its AI systems. That practice will not be permitted in Brazil, however. The decision stems from "the imminent risk of serious and irreparable or difficult-to-repair damage to the fundamental rights of the affected data subjects," the agency said in the nation's official gazette. [...] Hye Jung Han, a Brazil-based researcher for the rights group, said in an email Tuesday that the regulator's action "helps to protect children from worrying that their personal data, shared with friends and family on Meta's platforms, might be used to inflict harm back on them in ways that are impossible to anticipate or guard against." But the decision regarding Meta will "very likely" encourage other companies to refrain from being transparent in the use of data in the future, said Ronaldo Lemos, of the Institute of Technology and Society of Rio de Janeiro, a think-tank. "Meta was severely punished for being the only one among the Big Tech companies to clearly and in advance notify in its privacy policy that it would use data from its platforms to train artificial intelligence," he said. Compliance must be demonstrated by the company within five working days from the notification of the decision, and the agency established a daily fine of 50,000 reais ($8,820) for failure to do so. In a statement, Meta said the company is "disappointed" by the decision and insists its method "complies with privacy laws and regulations in Brazil." "This is a step backwards for innovation, competition in AI development and further delays bringing the benefits of AI to people in Brazil," a spokesperson for the company added.

Read more of this story at Slashdot.

As reported by Bloomberg, Apple will get an "observer role" on OpenAI's board of directors as part of its partnership to integrate ChatGPT into iOS 18. That role will reportedly be filled by Apple Fellow, Phil Schiller. 9to5Mac reports: Apple having an "observer role" on the OpenAI board matches the role of Microsoft. Schiller will be able to observe and attend board meetings, but will not have any voting power: "The board observer role will put Apple on par with Microsoft, OpenAI's biggest backer and its main AI technology provider. The job allows someone to attend board meetings without being able to vote or exercise other director powers. Observers, however, do gain insights into how decisions are made at the company." The arrangement will take effect later this year, according to Bloomberg. Schiller "hasn't yet attended any meetings" of the OpenAI board and "details of the situation could still change." Schiller served as Apple's long-time marketing chief before transitioning to an Apple Fellow role in 2020. In this role, Schiller continues to lead the App Store and Apple events and reports directly to Apple CEO Tim Cook. Schiller is also leading Apple's efforts to defend the App Store against antitrust allegations around the world.

Read more of this story at Slashdot.

An anonymous reader quotes a report from the Financial Times: Google's greenhouse gas emissions have surged 48 percent in the past five years due to the expansion of its data centers that underpin artificial intelligence systems, leaving its commitment to get to "net zero" by 2030 in doubt. The Silicon Valley company's pollution amounted to 14.3 million tons of carbon equivalent in 2023, a 48 percent increase from its 2019 baseline and a 13 percent rise since last year, Google said in its annual environmental report on Tuesday. Google said the jump highlighted "the challenge of reducing emissions" at the same time as it invests in the build-out of large language models and their associated applications and infrastructure, admitting that "the future environmental impact of AI" was "complex and difficult to predict." Chief sustainability officer Kate Brandt said the company remained committed to the 2030 target but stressed the "extremely ambitious" nature of the goal. "We do still expect our emissions to continue to rise before dropping towards our goal," said Brandt. She added that Google was "working very hard" on reducing its emissions, including by signing deals for clean energy. There was also a "tremendous opportunity for climate solutions that are enabled by AI," said Brandt. [...] In Tuesday's report, Google said its 2023 energy-related emissions -- which come primarily from data center electricity consumption -- rose 37 percent year on year, and overall represented a quarter of its total greenhouse gas emissions. Google's supply chain emissions -- its largest chunk, representing 75 percent of its total emissions -- also rose 8 percent. Google said they would "continue to rise in the near term" as a result in part of the build-out of the infrastructure needed to run AI systems. Google has pledged to achieve net zero across its direct and indirect greenhouse gas emissions by 2030, and to run on carbon-free energy during every hour of every day within each grid it operates by the same date. However, the company warned in Tuesday's report that the "termination" of some clean energy projects during 2023 had pushed down the amount of renewables it had access to. Meanwhile, the company's data centre electricity consumption had "outpaced" Google's ability to bring more clean power projects online in the US and Asia-Pacific regions. Google's data centre electricity consumption increased 17 percent in 2023, and amounted to approximately 7-10 percent of global data center electricity consumption, the company estimated.Its data centers also consumed 17 percent more water in 2023 than during the previous year, Google said.

Read more of this story at Slashdot.

Longtime Slashdot reader regoli shares an obituary from the Wall Street Journal: When Alan Ashton was a computer-science professor at Brigham Young University in the mid-1970s, the director of the school's marching band knocked on his door and said he wanted to use a computer to choreograph the band's halftime shows. Ashton was easily persuaded; he was a trumpet player whose Ph.D. dissertation at the University of Utah was "Electronics, music and computers." Bruce Bastian, the graduate student who was working as BYU's marching-band director, turned out to be a quick learner. "He was very conscientious, very thorough," Ashton said in an interview, "and just absolutely brilliant." Within a few years, the two were at work on a program that would turn them into two of the richest people in the nation, founders of the company that made WordPerfect, the dominant word-processing software in the 1980s and early '90s and one of the first pieces of software many Americans bought when they brought home their first PCs. But behind the hundreds of millions of dollars and blockbuster success, Bastian's personal life, he later said, was in "free fall." Between the time he and Ashton released what would later be known as WordPerfect to the public in 1980 and when they sold the company for $1.4 billion in 1994, Bastian told his wife, four sons and his Mormon community that he was gay and leaving both his marriage and the church. When he died, June 16, at the age of 76 from complications associated with pulmonary fibrosis, he had been living a different life: A longtime advocate for LGBTQ rights, Bastian was married to a man, and had found a way to maintain relationships with his family, who remained dedicated members of the church that rejected his sexual orientation. "I kind of have three parts of my life," he said in 2010 during one of several extensive interviews he gave to the Mormon Stories podcast, "the pre-WordPerfect life, the WordPerfect years, and now the LGBT years." Other publications remembering Bruce Bastian include: The New York Times, The Salt Lake Tribune, University of Utah, and Human Rights Campaign.

Read more of this story at Slashdot.

The Supreme Court has agreed to hear a challenge to a Texas law requiring age verification to access online pornography, which opponents argue violates the First Amendment by discouraging adults from viewing such material due to privacy concerns. A federal judge blocked the law citing its chilling effect on free speech, but a divided appeals court upheld it, emphasizing the government's interest in protecting minors; the case will now be reviewed by the Supreme Court. The Texas bill in question, HB 1181, was passed into law last June. The New York Times reports: The Supreme Court agreed on Tuesday to hear a challenge to a Texas law that seeks to limit minors' access to pornography on the internet by requiring age verification measures like the submission of government-issued IDs. A trade group, companies that produce sexual materials and a performer challenged the law, saying that it violates the First Amendment right of adults. The law does not allow companies to retain information their users submit. But the challengers said adults would be wary of supplying personal information for fear of identity theft, tracking and extortion. [...] In urging the Supreme Court to leave the law in place while it considers whether to hear the case, Ken Paxton, Texas' attorney general, said pornography available on the internet is "orders of magnitude more graphic, violent and degrading than any so-called 'girlie' magazine of yesteryear." He added: "This statute does not prohibit the performance, production or even sale of pornography but, more modestly, simply requires the pornography industry that make billions of dollars from peddling smut to take commercially reasonable steps to ensure that those who access the material are adults. There is nothing unconstitutional about it."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Human Rights Watch (HRW) continues to reveal how photos of real children casually posted online years ago are being used to train AI models powering image generators -- even when platforms prohibit scraping and families use strict privacy settings. Last month, HRW researcher Hye Jung Han found 170 photos of Brazilian kids that were linked in LAION-5B, a popular AI dataset built from Common Crawl snapshots of the public web. Now, she has released a second report, flagging 190 photos of children from all of Australia's states and territories, including indigenous children who may be particularly vulnerable to harms. These photos are linked in the dataset "without the knowledge or consent of the children or their families." They span the entirety of childhood, making it possible for AI image generators to generate realistic deepfakes of real Australian children, Han's report said. Perhaps even more concerning, the URLs in the dataset sometimes reveal identifying information about children, including their names and locations where photos were shot, making it easy to track down children whose images might not otherwise be discoverable online. That puts children in danger of privacy and safety risks, Han said, and some parents thinking they've protected their kids' privacy online may not realize that these risks exist. From a single link to one photo that showed "two boys, ages 3 and 4, grinning from ear to ear as they hold paintbrushes in front of a colorful mural," Han could trace "both children's full names and ages, and the name of the preschool they attend in Perth, in Western Australia." And perhaps most disturbingly, "information about these children does not appear to exist anywhere else on the Internet" -- suggesting that families were particularly cautious in shielding these boys' identities online. Stricter privacy settings were used in another image that Han found linked in the dataset. The photo showed "a close-up of two boys making funny faces, captured from a video posted on YouTube of teenagers celebrating" during the week after their final exams, Han reported. Whoever posted that YouTube video adjusted privacy settings so that it would be "unlisted" and would not appear in searches. Only someone with a link to the video was supposed to have access, but that didn't stop Common Crawl from archiving the image, nor did YouTube policies prohibiting AI scraping or harvesting of identifying information. Reached for comment, YouTube's spokesperson, Jack Malon, told Ars that YouTube has "been clear that the unauthorized scraping of YouTube content is a violation of our Terms of Service, and we continue to take action against this type of abuse." But Han worries that even if YouTube did join efforts to remove images of children from the dataset, the damage has been done, since AI tools have already trained on them. That's why -- even more than parents need tech companies to up their game blocking AI training -- kids need regulators to intervene and stop training before it happens, Han's report said. Han's report comes a month before Australia is expected to release a reformed draft of the country's Privacy Act. Those reforms include a draft of Australia's first child data protection law, known as the Children's Online Privacy Code, but Han told Ars that even people involved in long-running discussions about reforms aren't "actually sure how much the government is going to announce in August." "Children in Australia are waiting with bated breath to see if the government will adopt protections for them," Han said, emphasizing in her report that "children should not have to live in fear that their photos might be stolen and weaponized against them."

Read more of this story at Slashdot.

storagedude shares a report from the Cyber Express: Some of the most widely used web and social media applications could be vulnerable to three newly discovered CocoaPods vulnerabilities -- including potentially millions of Apple devices, according to a report by The Cyber Express, the news service of threat intelligence vendor Cyble Inc. E.V.A Information Security researchers reported three vulnerabilities in the open source CocoaPods dependency manager that could allow malicious actors to take over thousands of unclaimed pods and insert malicious code into many of the most popular iOS and MacOS applications, potentially affecting "almost every Apple device." The researchers found vulnerable code in applications provided by Meta (Facebook, Whatsapp), Apple (Safari, AppleTV, Xcode), and Microsoft (Teams); as well as in TikTok, Snapchat, Amazon, LinkedIn, Netflix, Okta, Yahoo, Zynga, and many more. The vulnerabilities have been patched, yet the researchers still found 685 Pods "that had an explicit dependency using an orphaned Pod; doubtless there are hundreds or thousands more in proprietary codebases." The newly discovered vulnerabilities -- one of which (CVE-2024-38366) received a 10 out of 10 criticality score -- actually date from a May 2014 CocoaPods migration to a new 'Trunk' server, which left 1,866 orphaned pods that owners never reclaimed. While the vulnerabilities have been patched, the work for developers and DevOps teams that used CocoaPods before October 2023 is just getting started. "Developers and DevOps teams that have used CocoaPods in recent years should verify the integrity of open source dependencies used in their application code," the E.V.A researchers said. "The vulnerabilities we discovered could be used to control the dependency manager itself, and any published package." [...] "Dependency managers are an often-overlooked aspect of software supply chain security," the researchers wrote. "Security leaders should explore ways to increase governance and oversight over the use these tools." "While there is no direct evidence of any of these vulnerabilities being exploited in the wild, evidence of absence is not absence of evidence." the EVA researchers wrote. "Potential code changes could affect millions of Apple devices around the world across iPhone, Mac, AppleTV, and AppleWatch devices." While no action is required by app developers or users, the EVA researchers recommend several ways to protect against these vulnerabilities. To ensure secure and consistent use of CocoaPods, synchronize the podfile.lock file with all developers, perform CRC validation for internally developed Pods, and conduct thorough security reviews of third-party code and dependencies. Furthermore, regularly review and verify the maintenance status and ownership of CocoaPods dependencies, perform periodic security scans, and be cautious of widely used dependencies as potential attack targets.

Read more of this story at Slashdot.

Digital audio broadcasting (DAB+) and internet radio have largely replaced traditional FM radio in Switzerland, with digital radio holding an 81% share of use in spring 2023. Due to the high costs of maintaining FM transmitters and declining financial resources, Switzerland plans to fully transition to digital radio by the end of 2026, phasing out FM broadcasting completely. From a report: DAB+ and the internet offer better quality and a larger program selection, are more energy and cost efficient, and can provide additional information in text and images, it said. To receive DAB+ requires a corresponding device or adapter, and new cars have been equipped with digital technology as standard for several years. In addition, the Federal Roads Office (FEDRO) will upgrade all tunnels on the national road network for digital radio reception by the end of the year and switch off FM transmitters. FM was originally expected to be switched off throughout Switzerland by the end of 2024. The government extended FM licenses for the radio industry for the last time in October 2023 to the end of 2026, after which radio stations in Switzerland will no longer be able to broadcast via FM, only digitally. OFCOM announced at the time that the final extension would give the radio industry the flexibility to complete the transition process from analogue to digital radio.

Read more of this story at Slashdot.

Starting July 1st, ships in Arctic waters are banned from using Heavy Fuel Oil (HFO), a relatively cheap tar-like oil that's widely used in shipping around the world, especially tankers. According to the BBC, it's the "dirtiest and most climate-damaging fuel for ships." Still, campaigners believe numerous loopholes will allow most ships to continue using the fuel until 2029, limiting the ban's immediate effectiveness. The BBC reports: Produced from the waste left over in oil refining, HFO poses a huge threat to the oceans in general but to the Arctic in particular. This sludge-like fuel is almost impossible to clean up if a spill occurs. In colder waters, experts say, the fuel does not break down but sinks in lumps that linger in sediments, threatening fragile ecosystems. In climate terms, this oil is seen as particularly dangerous, not just producing large amounts of planet-warming gas when burned, but also spewing out sooty particles called black carbon. [...] The oil was banned from use or transport in the Antarctic in 2011. Environmentalists have been pushing to expand that restriction to northern waters for years, finally persuading the countries that participate in the International Maritime Organisation (IMO) to enact a ban back in 2021. [...] According to the regulations, ships that have a "protected fuel tank" will be exempt from the ban. Countries that border the Arctic will also be able to exempt their own ships from the ban in their own territorial waters. One of the major players in the region is Russia, which has over 800 ships operating in northern waters. They are not implementing the new IMO regulation. These waiver exemptions will last until 2029 -- their impact is likely to be significant, with the International Council on Clean Transportation estimating that about 74% of ships that use HFO will be able to continue to do so. Some observers believe that increased efforts to extract oil in the Arctic could see a rise in the amount of HFO in use in these waters, instead of a decrease.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Phys.Org: New analyses from the Annenberg Public Policy Center find that public perceptions of scientists' credibility -- measured as their competence, trustworthiness, and the extent to which they are perceived to share an individual's values -- remain high, but their perceived competence and trustworthiness eroded somewhat between 2023 and 2024. The research also found that public perceptions of scientists working in artificial intelligence (AI) differ from those of scientists as a whole. [...] The five factors in Factors Assessing Science's Self-Presentation (FASS) are whether science and scientists are perceived to be credible and prudent, and whether they are perceived to overcome bias, correct error (self-correcting), and whether their work benefits people like the respondent and the country as a whole (beneficial). [...] In the FASS model, perceptions of scientists' credibility are assessed through perceptions of whether scientists are competent, trustworthy, and "share my values." The first two of those values slipped in the most recent survey. In 2024, 70% of those surveyed strongly or somewhat agree that scientists are competent (down from 77% in 2023) and 59% strongly or somewhat agree that scientists are trustworthy (down from 67% in 2023). The survey also found that in 2024, fewer people felt that scientists' findings benefit "the country as a whole" and "benefit people like me." In 2024, 66% strongly or somewhat agreed that findings benefit the country as a whole (down from 75% in 2023). Belief that scientists' findings "benefit people like me," also declined, to 60% from 68%. Taken together, those two questions make up the beneficial factor of FASS. The findings follow sustained attacks on climate and COVID-19-related science, and more recently, public concerns about the rapid development and deployment of artificial intelligence. Here's what the study found when comparing perceptions of scientists in general with climate and AI scientists: - Credibility: When asked about three factors underlying scientists' credibility, AI scientists have lower credibility in all three values. - Competent: 0% strongly/somewhat agree that scientists are competent, but only 62% for climate scientists and 49% for AI scientists. - Trustworthy: 59% agree scientists are trustworthy, 54% agree for climate scientists, 28% for AI scientists. - Share my values: A higher number (38%) agree that climate scientists share my values than for scientists in general (36%) and AI scientists (15%). More people disagree with this for AI scientists (35%) than for the others. - Prudence: Asked whether they agree or disagree that science by various groups of scientists "creates unintended consequences and replaces older problems with new ones," over half of those surveyed (59%) agree that AI scientists create unintended consequences and just 9% disagree. - Overcoming bias: Just 42% of those surveyed agree that scientists "are able to overcome human and political biases," but only 21% feel that way about AI scientists. In fact, 41% disagree that AI scientists are able to overcome human political biases. In another area, just 23% agree that AI scientists provide unbiased conclusions in their area of inquiry and 38% disagree. - Self-correction: Self-correction, or "organized skepticism expressed in expectations sustaining a culture of critique," as the FASS paper puts it, is considered by some as a "hallmark of science." AI scientists are seen as less likely than scientists or climate scientists to take action to prevent fraud; take responsibility for mistakes; or to have mistakes that are caught by peer review. - Benefits: Asked about the benefits from scientists' findings, 60% agree that scientists' "findings benefit people like me," though just 44% agree for climate scientists and 35% for AI scientists. Asked about whether findings benefit the country as a whole, 66% agree for scientists, 50% for climate scientists and 41% for AI scientists. - Your best interest: The survey also asked respondents how much trust they have in scientists to act in the best interest of people like you. (This specific trust measure is not a part of the FASS battery.) Respondents have less trust in AI scientists than in others: 41% have a great deal/a lot of trust in medical scientists; 39% in climate scientists; 36% in scientists; and 12% in AI scientists.

Read more of this story at Slashdot.

"A federal grand jury has indicted an embattled Alzheimer's researcher for allegedly falsifying data to fraudulently obtain $16 million in federal research funding from the National Institutes of Health for the development of a controversial Alzheimer's drug and diagnostic test," writes Beth Mole via Ars Technica. "Wang is charged with one count of major fraud against the United States, two counts of wire fraud, and one count of false statements. If convicted, he faces a maximum penalty of 10 years in prison for the major fraud charge, 20 years in prison for each count of wire fraud, and five years in prison for the count of false statements [...]." From the report: Hoau-Yan Wang, 67, a medical professor at the City University of New York, was a paid collaborator with the Austin, Texas-based pharmaceutical company Cassava Sciences. Wang's research and publications provided scientific underpinnings for Cassava's Alzheimer's treatment, Simufilam, which is now in Phase III trials. Simufilam is a small-molecule drug that Cassava claims can restore the structure and function of a scaffolding protein in the brain of people with Alzheimer's, leading to slowed cognitive decline. But outside researchers have long expressed doubts and concerns about the research. In 2023, Science magazine obtained a 50-page report from an internal investigation at CUNY that looked into 31 misconduct allegations made against Wang in 2021. According to the report, the investigating committee "found evidence highly suggestive of deliberate scientific misconduct by Wang for 14 of the 31 allegations," the report states. The allegations largely centered around doctored and fabricated images from Western blotting, an analytical technique used to separate and detect proteins. However, the committee couldn't conclusively prove the images were falsified "due to the failure of Dr. Wang to provide underlying, original data or research records and the low quality of the published images that had to be examined in their place." In all, the investigation "revealed long-standing and egregious misconduct in data management and record keeping by Dr. Wang," and concluded that "the integrity of Dr. Wang's work remains highly questionable." The committee also concluded that Cassava's lead scientist on its Alzheimer's disease program, Lindsay Burns, who was a frequent co-author with Wang, also likely bears some responsibility for the misconduct. In March 2022, five of Wang's articles published in the journal PLOS One were retracted over integrity concerns with images in the papers. Other papers by Wang have also been retracted or had statements of concern attached to them. Further, in September 2022, the Food and Drug Administration conducted an inspection of the analytical work and techniques used by Wang to analyze blood and cerebrospinal fluid from patients in a simufilam trial. The investigation found a slew of egregious problems, which were laid out in a "damning" report (PDF) obtained by Science. In the indictment last week (PDF), federal authorities were explicit about the allegations, claiming that Wang falsified the results of his scientific research to NIH "by, among other things, manipulating data and images of Western blots to artificially add bands [which represent proteins], subtract bands, and change their relative thickness and/or darkness, and then drawing conclusions" based on those false results.

Read more of this story at Slashdot.

Microsoft revealed that the Russian hackers who breached its systems earlier this year stole more emails than initially reported. "We are continuing notifications to customers who corresponded with Microsoft corporate email accounts that were exfiltrated by the Midnight Blizzard threat actor, and we are providing the customers the email correspondence that was accessed by this actor," a Microsoft spokesperson told Bloomberg (paywalled). "This is increased detail for customers who have already been notified and also includes new notifications." The Register reports: We've been aware for some time that the digital Russian break-in at the Windows maker saw Kremlin spies make off with source code, executive emails, and sensitive U.S. government data. Reports last week revealed that the issue was even larger than initially believed and additional customers' data has been stolen. Along with Russia, Microsoft was also compromised by state actors from China not long ago, and that issue similarly led to the theft of emails and other data belonging to senior U.S. government officials. Both incidents have led experts to call Microsoft a threat to U.S. national security, and president Brad Smith to issue a less-than-reassuring mea culpa to Congress. All the while, the U.S. government has actually invested more in its Microsoft kit. Bloomberg reported that emails being sent to affected Microsoft customers include a link to a secure environment where customers can visit a site to review messages Microsoft identified as having been compromised. But even that might not have been the most security-conscious way to notify folks: Several thought they were being phished.

Read more of this story at Slashdot.

Keith Gill, the investor known as "Roaring Kitty" online, is being used by GameStop investors for helping spur the meme stock mania of 2021. The plaintiffs said they lost money through his "pump-and-dump" scheme, which led to a "short squeeze" that caused losses for hedge funds betting stock prices would fall. Reuters reports: A proposed class action accusing Gill of securities fraud was filed on Friday in the Brooklyn, New York federal court. Investors led by Martin Radev, who lives in the Las Vegas area, said Gill manipulated GameStop securities between May 13 and June 13 by quietly accumulating large quantities of stock and call options, and then dumping some holdings after emerging from a three-year social media hiatus. They said Gill's activities caused GameStop's share price to gyrate wildly, generating "millions of dollars" in profit for him at their expense. "Defendant still enjoys celebrity status and commands a following of millions through his social media accounts," the complaint said. "Accordingly, Defendant was well aware of his ability to manipulate the market for GameStop securities, as well as the benefits he could reap." He had on May 12 posted a cryptic meme on the social media platform X that was widely seen as a bullish signal for GameStop, whose stock he cheerleaded in 2021. GameStop's share price more than tripled over the next two days, but gave back nearly all the gains by May 24. On June 2, Gill revealed that he owned 5 million GameStop shares and 120,000 call options, and on June 13 revealed he had shed the call options but owned 9 million GameStop shares. Investors said the truth about Gill's investing became known on June 3 when the Wall Street Journal wrote about the timing of his options trades and said the online brokerage E*Trade considered kicking him off its platform.

Read more of this story at Slashdot.

An anonymous reader quotes an op-ed written by Kenneth Roth, former executive director of Human Rights Watch (1993-2022) and a visiting professor at Princeton's School of Public and International Affairs: Julian Assange's lengthy detention has finally ended, but the danger that his prosecution poses to the rights of journalists remains. As is widely known, the U.S. government's pursuit of Assange under the Espionage Act threatens to criminalize common journalistic practices. Sadly, Assange's guilty plea and release from custody have done nothing to ease that threat. That Assange was indicted under the Espionage Act, a U.S. law designed to punish spies and traitors, should not be considered the normal course of business. Barack Obama's justice department never charged Assange because it couldn't distinguish what he had done from ordinary journalism. The espionage charges were filed by the justice department of Donald Trump. Joe Biden could have reverted to the Obama position and withdrawn the charges but never did. The 18-count indictment filed under Trump accused Assange of having solicited secret U.S. government information and encouraged Chelsea Manning to provide it. Manning committed a crime when she delivered that information because she was a government employee who had pledged to safeguard confidential information on pain of punishment. But Assange's alleged solicitation of that information, and the steps he was said to have taken to ensure that it could be transferred anonymously, are common procedure for many journalists who report on national security issues. If these practices were to be criminalized, our ability to monitor government conduct would be seriously compromised. To make matters worse, someone accused under the Espionage Act is not allowed to argue to a jury that disclosures were made in the public interest. The unauthorized disclosure of secret information deemed prejudicial to national security is sufficient for conviction regardless of motive. To justify Espionage Act charges, the Trump-era prosecutors stressed that Assange was accused of not only soliciting and receiving secret government information but also agreeing to help crack a password that would provide access to U.S. government files. That is not ordinary journalistic behavior. An Espionage Act prosecution for computer hacking is very different from a prosecution for merely soliciting and receiving secret information. Even if it would not withdraw the Trump-era charges, Biden's justice department could have limited the harm to journalistic freedom by ensuring that the alleged computer hacking was at the center of Assange's guilty plea. In fact, it was nowhere to be found. The terms for the proceeding were outlined in a 23-page "plea agreement" filed with the U.S. District Court for the Northern Mariana Islands, where Assange appeared by consent. Assange agreed to plead guilty to a single charge of violating the Espionage Act, but under U.S. law, it is not enough to plead in the abstract. A suspect must concede facts that would constitute an offense. "One effect of the guilty plea is that there will be no legal challenge to the prosecution, and hence no judicial decision on whether this use of the Espionage Act violates the freedom of the media as protected by the first amendment of the U.S. constitution," notes Roth. "That means that just as prosecutors overreached in the case of Assange, they could do so again." "[M]edia protections are not limited to journalists who are deemed responsible. Nor do we want governments to make judgments about which journalists deserve First Amendment safeguards. That would quickly compromise media freedom for all journalists." Roth concludes: "Imperfect journalist that he was, Assange should never have been prosecuted under the Espionage Act. It is unfortunate that the Biden administration didn't take available steps to mitigate that harm."

Read more of this story at Slashdot.

According to Bloomberg's Mark Gurman, Apple plans to add its "Apple Intelligence" AI features to visionOS and update its approach to in-store demos of the headset. The Verge reports: The company is adding a new "Go Deeper" option to its in-store demos, Gurman writes. That reportedly includes testing office features and watching videos, as well as defaulting to the Dual Loop band that sends straps over the top and around the back of wearers' heads instead of the single-strap Solo Loop band, which some find uncomfortable. Apple will also reportedly let people view their own videos and photos, including panoramas, in the headset. Adding the sentimental touch to the demos could work out, especially once visionOS 2 comes out this fall, with its "spatialize" option to turn 2D photos into 3D ones -- a feature that's more impressive than it has the right to be (though still a little quirky with hair and glasses, like Apple's Portrait Mode feature).

Read more of this story at Slashdot.

Chicken Soup for the Soul Entertainment, the parent of DVD rental operator Redbox, has filed for Chapter 11 bankruptcy protection after months of financial struggles and piling unpaid bills. The Associated Press reports: Chicken Soup for the Soul has accumulated nearly $1 billion in debt, the Chapter 11 filing submitted Friday in Delaware bankruptcy court shows, after reporting loss after loss over recent quarters. The filing also discloses that Chicken Soup for the Soul owes millions to over 500 creditors -- which range from big names in the entertainment world like Sony Pictures and Warner Bros, to major retailers like Walgreens and Walmart. As of March of this year, Friday's filing shows, Chicken Soup for the Soul had about $414 million in assets and $970 million in debts. Shares for the public company have fallen more than 90% over the last year. "Redbox, founded in 2002, is best known for red-colored, self-serve machines that sit outside of pharmacies or groceries stores to rent or sell DVDs," notes the report. It was acquired by Chicken Soup for the Soul in 2022. There are currently about 27,000 Redbox kiosks across the U.S. -- down from 36,000 at the Redbox acquisition was finalized in August 2022.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Meta continues to hit walls with its heavily scrutinized plan to comply with the European Union's strict online competition law, the Digital Markets Act (DMA), by offering Facebook and Instagram subscriptions as an alternative for privacy-inclined users who want to opt out of ad targeting. Today, the European Commission (EC) announced preliminary findings that Meta's so-called "pay or consent" or "pay or OK" model -- which gives users a choice to either pay for access to its platforms or give consent to collect user data to target ads -- is not compliant with the DMA. According to the EC, Meta's advertising model violates the DMA in two ways. First, it "does not allow users to opt for a service that uses less of their personal data but is otherwise equivalent to the 'personalized ads-based service." And second, it "does not allow users to exercise their right to freely consent to the combination of their personal data," the press release said. Now, Meta will have a chance to review the EC's evidence and defend its policy, with today's findings kicking off a process that will take months. The EC's investigation is expected to conclude next March. Thierry Breton, the commissioner for the internal market, said in the press release that the preliminary findings represent "another important step" to ensure Meta's full compliance with the DMA. "The DMA is there to give back to the users the power to decide how their data is used and ensure innovative companies can compete on equal footing with tech giants on data access," Breton said. A Meta spokesperson told Ars that Meta plans to fight the findings -- which could trigger fines up to 10 percent of the company's worldwide turnover, as well as fines up to 20 percent for repeat infringement if Meta loses. The EC agreed that more talks were needed, writing in the press release, "the Commission continues its constructive engagement with Meta to identify a satisfactory path towards effective compliance." Meta continues to claim that its "subscription for no ads" model was "endorsed" by the highest court in Europe, the Court of Justice of the European Union (CJEU), last year. "Subscription for no ads follows the direction of the highest court in Europe and complies with the DMA," Meta's spokesperson said. "We look forward to further constructive dialogue with the European Commission to bring this investigation to a close." Meta rolled out its ad-free subscription service option last November. "Depending on where you purchase it will cost $10.5/month on the web or $13.75/month on iOS and Android," said the company in a blog post. "Regardless of where you purchase, the subscription will apply to all linked Facebook and Instagram accounts in a user's Accounts Center. As is the case for many online subscriptions, the iOS and Android pricing take into account the fees that Apple and Google charge through respective purchasing policies."

Read more of this story at Slashdot.

Peter Scarfe, a researcher at the University of Reading's School of Psychology and Clinical Language Sciences, conducted an experiment testing the vulnerability of their examination system to AI-generated work. Using ChatGPT-4, Scarfe's team submitted over 30 AI-generated answers across multiple undergraduate psychology modules, finding that 94 percent of these submissions went undetected and nearly 84 percent received higher grades than human counterparts. The findings have been published in the journal PLOS One. Ars Technica reports: Scarfe's team submitted AI-generated work in five undergraduate modules, covering classes needed during all three years of study for a bachelor's degree in psychology. The assignments were either 200-word answers to short questions or more elaborate essays, roughly 1,500 words long. "The markers of the exams didn't know about the experiment. In a way, participants in the study didn't know they were participating in the study, but we've got necessary permissions to go ahead with that," Scarfe claims. Shorter submissions were prepared simply by copy-pasting the examination questions into ChatGPT-4 along with a prompt to keep the answer under 160 words. The essays were solicited the same way, but the required word count was increased to 2,000. Setting the limits this way, Scarfe's team could get ChatGPT-4 to produce content close enough to the required length. "The idea was to submit those answers without any editing at all, apart from the essays, where we applied minimal formatting," says Scarfe. Overall, Scarfe and his colleagues slipped 63 AI-generated submissions into the examination system. Even with no editing or efforts to hide the AI usage, 94 percent of those went undetected, and nearly 84 percent got better grades (roughly half a grade better) than a randomly selected group of students who took the same exam. "We did a series of debriefing meetings with people marking those exams and they were quite surprised," says Scarfe. Part of the reason they were surprised was that most of those AI submissions that were detected did not end up flagged because they were too repetitive or robotic -- they got flagged because they were too good. Out of five modules where Scarfe's team submitted AI work, there was one where it did not receive better grades than human students: the final module taken by students just before they left the university. "Large language models can emulate human critical thinking, analysis, and integration of knowledge drawn from different sources to a limited extent. In their last year at the university, students are expected to provide deeper insights and use more elaborate analytical skills. The AI isn't very good at that, which is why students fared better," Scarfe explained. All those good grades Chat GPT-4 got were in the first- and second-year exams, where the questions were easier. "But the AI is constantly improving, so it's likely going to score better in those advanced assignments in the future. And since AI is becoming part of our lives and we don't really have the means to detect AI cheating, at some point we are going to have to integrate it into our education system," argues Scarfe. He said the role of a modern university is to prepare the students for their professional careers, and the reality is they are going to use various AI tools after graduation. So, they'd be better off knowing how to do it properly.

Read more of this story at Slashdot.

Researchers in South Africa have injected radioactive material into the horns of 20 rhinos to deter poaching, aiming to leverage existing radiation detectors at borders for early detection and interception of trafficked horns. The Associated Press reports: The research, which has included the participation of veterinarians and nuclear experts, begins with the animal being tranquilized before a hole is drilled into its horn and the nuclear material carefully inserted. This week, researchers at the University of the Witwatersrand's Radiation and Health Physics Unit in South Africa injected 20 live rhinos with these isotopes. They hope the process can be replicated to save other wild species vulnerable to poaching -- like elephants and pangolins. "We are doing this because it makes it significantly easier to intercept these horns as they are being trafficked over international borders, because there is a global network of radiation monitors that have been designed to prevent nuclear terrorism," said Professor James Larkin, who heads the project. "And we're piggybacking on the back of that." According to figures by the International Union for Conservation of Nature, an international conservation body, the global rhino population stood at around 500,000 at the beginning of the 20th century. It now stands at around 27,000 due to continued demand for rhino horns on the black market. South Africa has the largest population of rhinos with an estimated 16,000, making it a hotspot with over 500 rhinos killed yearly. [...] While the idea has received support from some in the industry, the researchers have had to jump many ethical hurdles posed by critics of their methodology. Pelham Jones, chairperson of the Private Rhino Owners Association, is among the critics of the proposed method and doubts that it would effectively deter poachers and traffickers. "(Poachers) have worked out other ways of moving rhino horn out of the country, out of the continent or off the continent, not through traditional border crossings," he said. "They bypass the border crossings because they know that is the area of the highest risk of confiscation or interception." Professor Nithaya Chetty, dean of the science faculty at Witwatersrand, said the dosage of the radioactivity is very low and its potential negative impact on the animal was tested extensively.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: One of the most striking things about the explosion of renewable power that's happening in the U.S. is that much of it is going on in states governed by politicians who don't believe in the problem wind and solar are meant to address. Acceptance of the evidence for climate change tends to be lowest among Republicans, yet many of the states where renewable power has boomed -- wind in Wyoming and Iowa, solar in Texas -- are governed by Republicans. That's partly because, up until about 2020, there was a strong bipartisan consensus in favor of expanding wind and solar power, with support above 75 percent among both parties. Since then, however, support among Republicans has dropped dramatically, approaching 50 percent, according to polling data released this week. [...] One striking thing about the new polling data, gathered by the Pew Research Center, is how dramatically it skews with age. When given a choice between expanding fossil fuel production or expanding renewable power, Republicans under the age of 30 favored renewables by a 2-to-1 margin. Republicans over 30, in contrast, favored fossil fuels by margins that increased with age, topping out at a three-to-one margin in favor of fossil fuels among those in the 65-and-over age group. The decline in support occurred in those over 50 starting in 2020; support held steady among younger groups until 2024, when the 30-49 age group started moving in favor of fossil fuels. Democrats, by contrast, break in favor of renewables by 75 points, with little difference across age groups and no indication of significant change over time. They're also twice as likely to think a solar farm will help the local economy than Republicans are. Similar differences were apparent when Pew asked about policies meant to encourage the sale of electric vehicles, with 83 percent of Republicans opposed to having half of cars sold be electric in 2032. By contrast, nearly two-thirds of Democrats favored this policy. There's also a rural/urban divide apparent (consistent with Republicans getting more support from rural voters). Forty percent of urban residents felt that a solar farm would improve the local economy; only 25 percent of rural residents agreed. Rural residents were also more likely to say solar farms made the landscape unattractive and take up too much space. (Suburban participants were consistently in between rural and urban participants.) What's behind these changes? The single biggest factor appears to be negative partisanship combined with the election of Joe Biden. Among Republicans, support for every single form of power started to change in 2020 -- fossil fuels, renewables, and nuclear. Among Democrats, that's largely untrue. Their high level of support for renewable power and aversion to fossil fuels remained largely unchanged. The lone exception is nuclear power, where support rose among both Democrats and Republicans (the Biden administration has adopted a number of pro-nuclear policies).

Read more of this story at Slashdot.

According to a report from The Information, Apple is developing a new "electrically induced adhesive debonding" technology that would make iPhone batteries easier to replace. 9to5Mac reports: Currently, replacing an iPhone battery requires using tweezers to remove the existing battery, which is held in place by adhesive strips. Then, you must use a "specialized machine and tray" to press the new battery into place. The new process uses metal instead of foil to cover the battery, as The Information explains: "The new technology --- known as electrically induced adhesive debonding -- involves encasing the battery in metal, rather than foil as it is currently. That would allow people to dislodge the battery from the chassis by administering a small jolt of electricity to the battery, the people said. Consumers still have to pry open the iPhone themselves, which is not an easy process because of the adhesives and screws that keep the iPhone's screen sealed in place." Even with this change, however, Apple will still recommend that iPhone users visit a professional to replace their battery. If Apple's development of this new bonding technology goes according to plan, it could debut it with at least one iPhone 16 model this year. According to the report, it would then expand to all versions of the iPhone 17 next year.

Read more of this story at Slashdot.

Samantha Cole reports via 404 Media: A woman is suing Microsoft and two major U.S. sex toy retailers with claims that their websites are tracking users without their consent, despite promising they wouldn't do that. In a complaint (PDF) filed on June 25 in the Northern District of California, San Francisco resident Stella Tatola claims that Babeland and Good Vibrations -- both owned by Barnaby Ltd., LLC -- allowed Microsoft to see what visitors to their websites searched for and bought. "Unbeknownst to Plaintiff and other Barnaby website users, and constituting the ultimate violation of privacy, Barnaby allows an undisclosed third-party, Microsoft, to intercept, read, and utilize for commercial gain consumers' private information about their sexual practices and preferences, gleaned from their activity on Barnaby's websites," the complaint states. "This information includes but is not limited to product searches and purchase initiations, as well as the consumer's unique Microsoft identifier." The complaint claims that Good Vibrations and Babeland sites have installed trackers using Microsoft's Clarity software, which does "recording in real time," and tracks users' mouse movements, clicks or taps, scrolls, and site navigation. Microsoft says on the Clarity site that it "processes a massive amount of anonymous data around user behavior to gain insights and improve machine learning models that power many of our products and services." "By allowing undisclosed third party Microsoft to eavesdrop and intercept users' PPSI in such a manner -- including their sexual orientation, preferences, and desires, among other highly sensitive, protected information -- Barnaby violates its Privacy Policies, which state it will never share such information with third parties," the complaint states. The complaint includes screenshots of code from the sexual health sites that claims to show them using Machine Unique Identifier ("MUID") cookies that "identifies unique web browsers visiting Microsoft sites," according to Microsoft, and are used for "advertising, site analytics, and other operational purposes." The complaint claims that this violates the California Invasion of Privacy Act, the Federal Wiretap Act, and Californians' reasonable expectation of privacy.

Read more of this story at Slashdot.

After launching in the United States earlier this year, Apple's Vision Pro is now available to buy in China, Japan, and Singapore. "The Apple Vision Pro will also roll out to Germany, France, Australia, the UK, and Canada on July 12th, with preorders for those regions available starting today at 5AM PT," notes The Verge. Apple is documenting the international launch via a recent blog post. According to CNBC, the device starts at $4,128 (29,999 yuan) in China, compared to $3,500 in the U.S. Meanwhile, Apple is already hard at work on a more budget-friendly model. In Bloomberg's "Power On" newsletter, Apple news-breaker Mark Gurman reports today that the tech giant is "working on a cheaper headset, a second Vision Pro model and augmented-reality glasses to better compete with Meta."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: The Internet Archive (IA) went before a three-judge panel Friday to defend its open library's controlled digital lending (CDL) practices after book publishers last year won a lawsuit claiming that the archive's lending violated copyright law. In the weeks ahead of IA's efforts to appeal that ruling, IA was forced to remove 500,000 books from its collection, shocking users. In an open letter to publishers, more than 30,000 readers, researchers, and authors begged for access to the books to be restored in the open library, claiming the takedowns dealt "a serious blow to lower-income families, people with disabilities, rural communities, and LGBTQ+ people, among many others," who may not have access to a local library or feel "safe accessing the information they need in public." During a press briefing following arguments in court Friday, IA founder Brewster Kahle said that "those voices weren't being heard." Judges appeared primarily focused on understanding how IA's digital lending potentially hurts publishers' profits in the ebook licensing market, rather than on how publishers' costly ebook licensing potentially harms readers. However, lawyers representing IA -- Joseph C. Gratz, from the law firm Morrison Foerster, and Corynne McSherry, from the nonprofit Electronic Frontier Foundation -- confirmed that judges were highly engaged by IA's defense. Arguments that were initially scheduled to last only 20 minutes stretched on instead for an hour and a half. Ultimately, judges decided not to rule from the bench, with a decision expected in the coming months or potentially next year. McSherry said the judges' engagement showed that the judges "get it" and won't make the decision without careful consideration of both sides. "They understand this is an important decision," McSherry said. "They understand that there are real consequences here for real people. And they are taking their job very, very seriously. And I think that's the best that we can hope for, really." On the other side, the Association of American Publishers (AAP), the trade organization behind the lawsuit, provided little insight into how the day went. When reached for comment, AAP simply said, "We thought it was a strong day in court, and we look forward to the opinion." [...] "There is no deadline for them to make a decision," Gratz said, but it "probably won't happen until early fall" at the earliest. After that, whichever side loses will have an opportunity to appeal the case, which has already stretched on for four years, to the Supreme Court. Since neither side seems prepared to back down, the Supreme Court eventually weighing in seems inevitable.

Read more of this story at Slashdot.

According to Interpol, nearly 4,000 people around the world have been arrested for a variety of online crimes, with $257 million in assets seized. The Record reports: The operation, dubbed First Light, was conducted by police officers from 61 countries and targeted phishing, investment fraud, fake online shopping sites, romance scams, and impersonation scams, according to a statement by Interpol. In addition to arresting thousands of potential cybercriminals, the police also identified over 14,600 other possible suspects across all continents. During the searches, law enforcement seized suspects' real estate, high-end vehicles, expensive jewelry, and many other high-value items and collections. They also froze 6,745 bank accounts used for transferring money obtained through illegal operations. In one case, the police intercepted $331,000 gleaned from a business email compromise fraud involving a Spanish victim who unknowingly transferred money to someone in Hong Kong. In another case, authorities in Australia successfully recovered $3.7 million on behalf of an impersonation scam victim after the funds were fraudulently transferred to bank accounts in Malaysia and Hong Kong. The criminal networks identified during the operation were spread around the globe. In Namibia, for example, the police rescued 88 local youths who were forced into conducting scams as part of a sophisticated international crime network, according to Interpol. Law enforcement from Singapore, Hong Kong, and China prevented an attempted tech support scam, saving a 70-year-old victim from losing $281,200 worth of savings.

Read more of this story at Slashdot.

Parks Kugle reports via the Daily Dot: A mechanic went viral when he posted a TikTok about technicians being locked out of computer systems in a new Dodge Ram. TikTok user Shorty of Shorty's Speed Shop (@shortysspeedshop) garnered over 301,000 views when he showed viewers what mechanics had to do to be able to repair newer car models. "It has officially happened. 2024 Ram 3500, authorization denied," Shorty said as he showed viewers the computer screen. "Cannot get into anything on this except generic OBD2 Software." Shorty went on to explain that this update made his "manufacturer software 100 percent irrelevant." Then, Shorty showed viewers the Vehicle Security Professional (VSP) Registry on the National Automaker Service Task Force (NASTF) website. According to NASTF, automakers require mechanics to become credentialed VSPs if they want to purchase key and immobilizer codes, PIN numbers, and special tool access from Automaker websites. A VSP is required to "verify proof of ownership/authority prior to performing any security operation." "It's all part of the NASTF Security Professional Registery," Shorty explained. Shorty believes that this rule allows manufacturers to lock mechanics out of anything they "deem security sensitive." Shorty then broke down the "requirements to gain VSP access." According to him, these include a $325 fee "every two years" and a $100 fee for every subsequent two-year license renewal. He says mechanics also need "commercial liability insurance of $1 million" and a "fidelity or employee dishonesty bond of $100,000." The VSP application page on NASTF's website confirms that there is a $100 Application Fee that covers a "Two Year Renewal" and a $325 Primary Account fee that covers a "Two Year License." It also confirms his claims about the required commercial liability insurance and fidelity or employee dishonesty bond. "There's a lot of people that don't know that this is going on, and it's going to affect everybody getting their cars fixed," Shorty remarked.

Read more of this story at Slashdot.

An anonymous reader quotes an op-ed for Slate, written by Amanda Chen: In August 2009, Wired magazine ran a cover story on Craigslist founder Craig Newmark titled "Why Craigslist Is Such a Mess." The opening paragraphs excoriate almost every aspect of the online classifieds platform as "underdeveloped," a "wasteland of hyperlinks," and demands that we, the public, ought to have higher standards. The same sentiment can found across tech forums and trade publications, a missed opportunity that the average self-professed LinkedIn expert on #UX #UI #design will have you believe that they are the first to point out. But as sites like Craigslist increasingly turn into digital artifacts, more people, myself included, are starting to see the beauty that belies those same features. Without them, where else on the internet could you find such ardent professions of desire or loneliness, or the random detritus of a life so steeply discounted? The site has changed relatively little in both functionality and appearance since Newmark launched it in 1995 as a friends and family listserv for jobs and other opportunities. Yet in spite of that, it remains a household name whose niche in the contemporary digital landscape has yet to be usurped, with an estimated 180 million visits in May 2024. Though, it's certainly not for a lack of newcomers attempting to stake their claims on the booming C2C market; in the U.S., Facebook Marketplace, launched in 2016, is its closest direct competitor, followed by platforms like Nextdoor and OfferUp. Craigslist's business model is quite simple: Users in a few categories -- apartments in select cities, jobs, vehicles for sale -- pay a small but reasonable fee to make posts. Everything else is free. Its Perl-backed tech is straightforward. The team is relatively lean, as the company considers functions like sales and marketing superfluous. This strategy has allowed Craigslist to stay extremely profitable throughout the years without implementing sophisticated recommendation algorithms or inundating the webpage with third-party advertisements. Its runaway success threatens decades-old industry gospels of growth, disruption, and innovation, and might force tech evangelists to admit they don't fully understand what people want. [...] These days I find myself casually browsing Craigslist in lieu of Instagram. Like readers of a local paper, I use it to keep a pulse on what's happening around me, even if I'll never know who these people are. That's beside the point. Perhaps Craigslist's single greatest cultural contribution, and my favorite place to lurk, is the "missed connections." The feature has inspired countless copycats, artistic reinterpretations, human interest stories, and analyses (one in particular extrapolated that Monday evenings are the most lovelorn time across the country). There is something deeply comforting about seeing those intangible threads of yearning which permeate a city so plainly laid out, as confirmation that you're not alone in wanting to be seen by others alive in the same place and time as you. Sometimes I'll peruse random job listings or the "free" section. This leads to the ever-amusing exercise, which I'll often invite friends to participate in, of speculating about the motivations and circumstances behind an object's acquisition and imminent relinquishment. I'll even visit the clunky, dial-up era-style discussion forums, subdivided into topics labeled things like "death and dying" or "haiku hotel," where a unique penchant for whimsy and romance can be felt deeply throughout. On Craigslist, a post can be a shout into the void that may or may not be returned, an affirmation of life, but regardless, in 45 days it's gone. Positioned somewhere in between digital ephemera and archive, the site's images and language are often utilitarian, occasionally unintelligible, and just when you least expect it, absurd, poetic, and profound. "Frequently, technologists remain convinced that the market will eventually reveal a solution for all of our deep-seated societal problems, something that we can hack if only granted access to better tech," writes Chen, in closing. "From the start, the industry has advanced the idea that change is inherently good, even if only for its own sake, which can be viewed as symptomatic of the accelerating conditions of late-stage capitalism. Of course, there are many ways in which change is desperately needed in this moment, but when it comes to the particular case of Craigslist, it hardly seems necessary."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Interesting Engineering: Fervo Energy has announced the signing of two power purchase agreements (PPAs) totaling 320 MW with Southern California Edison (SCE), one of the nation's largest electric utilities. The two PPAs, signed for 15 years, will provide clean, and affordable power for the equivalent of 350,000 homes across Southern California. The geothermal energy from Fervo will help California transition to a cleaner and more reliable power source. According to Fervo Energy, SCE will purchase the power from its 400 MW Cape Station project currently under construction in southwest Utah. The first 70 MW phase of Fervo Energy's project is expected to be operational by 2026 and the second phase will be operational by 2028, according to a release by the company. Geothermal energy, being a carbon-free and weather-agnostic source, will also prove to be a reliable source for meeting California's power consumption demands. Unlike wind and solar power plants, geothermal energy can be sourced around the clock and on demand to cater to increased energy needs. Earlier in July 2023, Fervo Energy had claimed to achieve "commercial scale" geothermal energy production from its Project Red demonstration site in northern Nevada. [...] For the demo, Fervo had used a horizontal well pair that extended to 3,250 feet (990 m) and reached a temperature of 375 degrees Fahrenheit (191 degrees Celsius). During the test period, Fervo achieved a flow rate of 63 liters per second, sufficient to generate 3.5 MW of electricity. One megawatt of energy can power approximately 750 homes at a time. Data collected during this pilot was used to improve the design for Fervo's next well pair and double the energy output generated.

Read more of this story at Slashdot.

Longtime Slashdot reader thephydes writes: NASA Jet Propulsion Laboratory (JPL) has announced that the SHERLOC (Scanning Habitable Environments with Raman & Luminescence for Organics and Chemicals) instrument on the Perseverance rover has been brought back online "Six months of running diagnostics, testing, imagery and data analysis, troubleshooting, and retesting couldn't come with a better conclusion," said SHERLOC principal investigator Kevin Hand of JPL. JPL writes in a press release. "Mounted on the rover's robotic arm, SHERLOC uses cameras, spectrometers, and a laser to search for organics and minerals that have been altered by watery environments and may be signs of past microbial life." In addition to its black-and-white context camera, SHERLOC is assisted by WATSON, a color camera for taking close-up images of rock grains and surface textures. The instrument stopped working this past January when it encountered an issue where the "movable lens cover designed to protect the instrument's spectrometer and one of its cameras from dust became frozen in a position that prevented SHERLOC from collecting data," says JPL. "Analysis by the SHERLOC team pointed to the malfunction of a small motor responsible for moving the protective lens cover as well as adjusting focus for the spectrometer and the Autofocus and Context Imager (ACI) camera. By testing potential solutions on a duplicate SHERLOC instrument at JPL, the team began a long, meticulous evaluation process to see if, and how, the lens cover could be moved into the open position."

Read more of this story at Slashdot.

A study from the National Institutes of Health (NIH) analyzed data from nearly 400,000 healthy adults over 20 years and determined that "multivitamin use to improve longevity is not supported." The findings were published in JAMA Network Open. ABC News reports: The study found no evidence that daily multivitamin consumption reduced the risk of death from conditions such as heart disease or cancer. Rather than living longer, otherwise healthy people who took daily multivitamins were slightly more likely (4%) than non-users to die in the study period, according to researchers. Researchers reported nearly 165,000 deaths occurring during the follow-up period of the study, out of the initial group of 390,000 participants. The study, however, did not analyze data from people with pre-existing vitamin deficiencies. "What this study shows is that, generally, multivitamins aren't going to help you live longer," Dr. Jade A Cobern, MD, MPH, board-certified physician in pediatrics and general preventive medicine, told ABC News. "Even though the cost of many multivitamins isn't high, this is still an expense that many people can be spared from."

Read more of this story at Slashdot.

An anonymous reader quotes a report from The Guardian: Ultra-processed foods (UPFs) are displacing healthy diets "all over the world" despite growing evidence of the risks they pose and should be sold with tobacco-style warnings, according to the nutritional scientist who first coined the term. Prof Carlos Monteiro of the University of Sao Paulo will highlight the increasing danger UPFs present to children and adults at the International Congress on Obesity this week. "UPFs are increasing their share in and domination of global diets, despite the risk they represent to health in terms of increasing the risk of multiple chronic diseases," Monteiro told the Guardian ahead of the conference in Sao Paulo. "UPFs are displacing healthier, less processed foods all over the world, and also causing a deterioration in diet quality due to their several harmful attributes. Together, these foods are driving the pandemic of obesity and other diet-related chronic diseases, such as diabetes." Monteiro and his colleagues first used the phrase UPF 15 years ago when designing the food classification system "Nova." This assesses not only nutritional content but also the processes food undergoes before it is consumed. The system places food and drink into four groups: minimally processed food, processed culinary ingredients, processed food and ultra-processed food. Monteiro told the Guardian he was now so concerned about the impact UPF was having on human health that studies and reviews were no longer sufficient to warn the public of the health hazards. "Public health campaigns are needed like those against tobacco to curb the dangers of UPFs," he told the Guardian in an email. "Such campaigns would include the health dangers of consumption of UPFs. Advertisements for UPFs should also be banned or heavily restricted, and front-of-pack warnings should be introduced similar to those used for cigarette packs." He will tell delegates: "Sales of UPFs in schools and health facilities should be banned, and there should be heavy taxation of UPFs, with the revenue generated used to subsidize fresh foods." Monteiro will tell the conference that food giants marketing UPFs know that, in order to be competitive, their products must be more convenient, more affordable and tastier than freshly prepared meals. "To maximize profits, these UPFs must have lower cost of production and be overconsumed," he said. He will also draw parallels between UPF and tobacco companies. "Both tobacco and UPFs cause numerous serious illnesses and premature mortality; both are produced by transnational corporations that invest the enormous profits they obtain with their attractive/addictive products in aggressive marketing strategies, and in lobbying against regulation; and both are pathogenic (dangerous) by design, so reformulation is not a solution."

Read more of this story at Slashdot.

The Japanese government plans to create zero-emissions logistics links between major cities, potentially using massive conveyor belts or autonomous electric carts. The initiative aims to shift millions of tons of cargo, reduce greenhouse gas emissions, and alleviate the anticipated 30% shortfall in parcel deliveries by 2030 due to a lack of drivers. New Atlas reports: According to The Japan News, the project has been under discussion since February by an expert panel at the Land, Infrastructure, Transport and Tourism ministry. A draft outline of an interim report was released Friday, revealing plans to complete an initial link between Tokyo and Osaka by 2034. Japan's well-known population collapse issues foretell severe labor squeezes in the coming years, and one specific issue this project aims to curtail is the continuing rise in online shopping, with a forecast decline in the numbers of delivery drivers that can move goods around. The country is expecting some 30% of parcels simply won't make it from A to B by 2030, because there'll be nobody to move them. Hence this wild logistical link, the first iteration of which the team says will move as much small cargo between Tokyo and Osaka as 25,000 trucks. Exactly how it'll do this is yet to be nailed down, but individual pallets will carry up to a ton of small cargo items, and they'll move without human interference from one end to the other. One possibility is to use massive conveyor belts to cover the 500-km (310-mile) distance between the two cities, running alongside the highway or potentially through tunnels underneath the road. Alternatively, the infrastructure could simply provide flat lanes or tunnels, and the pallets could be shifted by automated electric carts. A 500-km tunnel, mind you, would be insanely expensive at somewhere around $23 billion before any conveyor belts or autonomous carts are factored in. And one does have to wonder if autonomous electric trucks might be able to do the job without any of the infrastructure requirements [...].

Read more of this story at Slashdot.

The Center for Investigative Reporting (CIR), the nation's oldest nonprofit newsroom, sued OpenAI and Microsoft in federal court on Thursday for allegedly using its content to train AI models without consent or compensation. CIR, founded in 1977 in San Francisco, evolved into a multi-platform newsroom with its flagship distribution platform Reveal. In February, it merged with Mother Jones. "OpenAI and Microsoft started vacuuming up our stories to make their product more powerful, but they never asked for permission or offered compensation, unlike other organizations that license our material," said Monika Bauerlein, CEO of the Center for Investigative Reporting, in a statement. "This free rider behavior is not only unfair, it is a violation of copyright. The work of journalists, at CIR and everywhere, is valuable, and OpenAI and Microsoft know it." Bauerlein said that OpenAI and Microsoft treat the work of nonprofit and independent publishers "as free raw material for their products," and added that such moves by generative AI companies hurt the public's access to truthful information in a "disappearing news landscape." Engadget reports: The CIR's lawsuit, which was filed in Manhattan's federal court, accuses OpenAI and Microsoft, which owns nearly half of the company, of violating the Copyright Act and the Digital Millennium Copyright Act multiple times. News organizations find themselves at an inflection point with generative AI. While the CIR is joining publishers like The New York Times, New York Daily News, The Intercept, AlterNet and Chicago Tribune in suing OpenAI, others publishers have chosen to strike licensing deals with the company. These deals will allow OpenAI to train its models on archives and ongoing content published by these publishers and cite information from them in responses offered by ChatGPT.

Read more of this story at Slashdot.

Earlier this week, WikiLeaks co-founder Julian Assange received a donation of 8.07 bitcoin (worth roughly $500,000) from an anonymous bitcoin whale, "helping to cover the cost of a private jet that flew him out of the U.K. and ultimately to freedom in Australia after he reached a plea deal with the U.S. Department of Justice," reports CoinDesk. From the report: Initially, Assange's wife Stella made an "emergency appeal" to raise 520,000 British pounds to pay for the transport, setting up a crowdfunding page that allowed people to donate in fiat currency via credit cards or bank transfer. With that site notably not allowing crypto for donations, the family quickly moved to set up another page to accept bitcoin. Up to this point, the bitcoin address has received 34 donations totaling just over $500,000. The overwhelming majority, however, came from just that one 8.07 BTC donation. The original fiat site has also received about $500,000 in donations. "Julian's travel to freedom comes at a massive cost: Julian will owe USD 520,000 which he is obligated to pay back to the Australian government for charter Flight VJ199," Stella Assange wrote on X. "He was not permitted to fly commercial airlines or routes to Saipan and onward to Australia. Any contribution big or small is much appreciated." The jet was organized by the Australian government after Assange reached a historic plea deal on Tuesday, where he pleaded guilty to espionage charges in exchange for his freedom.

Read more of this story at Slashdot.

Al Michaels, the 79-year-old American broadcaster, who first covered the Olympics decades ago, is returning to broadcasting via an AI clone. NBCUniversal and Peacock will use AI-generated narration by Al Michaels for daily customized highlight reels of the Summer Olympics. Officials say they anticipate seven million different variations of the customized highlights throughout the games. The New York Times reports: Al Michaels, the 79-year-old American broadcaster, who first covered the Olympics decades ago, is coming back to primetime. It does raise a key question, one that recalls Mr. Michaels's most famous Olympic call: Do NBCUniversal executives believe in miracles? NBC has been exclusively broadcasting the Olympics in the United States since 1996, and the network frequently finds itself subject to intense public scrutiny for its coverage of the Games. [...] Subscribers who want the daily Peacock highlight reel will be able choose the Olympic events that interest them most, and the types of highlights they want to see, such as viral clips, gold medalists or elimination events. From there, Peacock's A.I. machines will get to work each evening cranking out the most notable moments and putting them together in a tidy customized package. Mr. Michaels's recreated voice will be piped over the reels. (Humans will make quality control checks on the A.I. highlight reels.)

Read more of this story at Slashdot.

Many American subscribers are unable to use their phones overseas because all three major U.S. carriers are experiencing outages. According to The Register, the outages have been ongoing for several hours and stem from third-party communications technology company Syniverse. From the report: "Since the onset of these issues, Syniverse has been working closely with our network partners to restore full service," Syniverse, a US-based comms provider that focuses on roaming services, said in a statement confirming the breakdown. "We understand the inconvenience this has caused and appreciate your patience as we navigate this challenge." "We're one of several providers impacted by a third-party vendor's issue that is intermittently affecting some international roaming service," T-Mo told us. "We're working with them to resolve it." Similarly, AT&T stated: "The AT&T network is operating normally. Some customers traveling internationally may be experiencing service disruptions due to an issue outside the AT&T network. We're working with one of our roaming connectivity providers to resolve the issue." Likewise, Verizon said, "An international third party communications provider is having issues with making voice and data connections with US based customers traveling overseas." The international roaming outage has hit users' ability to do calls and texts, and reach the internet. According to Verizon, it's not a complete blackout. "70 percent of calls and data connections are going through at this time," the carrier firm told The Register in the past hour or so. Developing...

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Temu -- the Chinese shopping app that has rapidly grown so popular in the US that even Amazon is reportedly trying to copy it -- is "dangerous malware" that's secretly monetizing a broad swath of unauthorized user data, Arkansas Attorney General Tim Griffin alleged in a lawsuit (PDF) filed Tuesday. Griffin cited research and media reports exposing Temu's allegedly nefarious design, which "purposely" allows Temu to "gain unrestricted access to a user's phone operating system, including, but not limited to, a user's camera, specific location, contacts, text messages, documents, and other applications." "Temu is designed to make this expansive access undetected, even by sophisticated users," Griffin's complaint said. "Once installed, Temu can recompile itself and change properties, including overriding the data privacy settings users believe they have in place." Griffin fears that Temu is capable of accessing virtually all data on a person's phone, exposing both users and non-users to extreme privacy and security risks. It appears that anyone texting or emailing someone with the shopping app installed risks Temu accessing private data, Griffin's suit claimed, which Temu then allegedly monetizes by selling it to third parties, "profiting at the direct expense" of users' privacy rights. "Compounding" risks is the possibility that Temu's Chinese owners, PDD Holdings, are legally obligated to share data with the Chinese government, the lawsuit said, due to Chinese "laws that mandate secret cooperation with China's intelligence apparatus regardless of any data protection guarantees existing in the United States." Griffin's suit cited an extensive forensic investigation into Temu by Grizzly Research -- which analyzes publicly traded companies to inform investors -- last September. In their report, Grizzly Research alleged that PDD Holdings is a "fraudulent company" and that "Temu is cleverly hidden spyware that poses an urgent security threat to United States national interests." As Griffin sees it, Temu baits users with misleading promises of discounted, quality goods, angling to get access to as much user data as possible by adding addictive features that keep users logged in, like spinning a wheel for deals. Meanwhile hundreds of complaints to the Better Business Bureau showed that Temu's goods are actually low-quality, Griffin alleged, apparently supporting his claim that Temu's end goal isn't to be the world's biggest shopping platform but to steal data. Investigators agreed, the lawsuit said, concluding "we strongly suspect that Temu is already, or intends to, illegally sell stolen data from Western country customers to sustain a business model that is otherwise doomed for failure." Seeking an injunction to stop Temu from allegedly spying on users, Griffin is hoping a jury will find that Temu's alleged practices violated the Arkansas Deceptive Trade Practices Act (ADTPA) and the Arkansas Personal Information Protection Act. If Temu loses, it could be on the hook for $10,000 per violation of the ADTPA and ordered to disgorge profits from data sales and deceptive sales on the app. In a statement to Ars, a Temu spokesperson discredited Grizzly Research's investigation and said that the company was "surprised and disappointed by the Arkansas Attorney General's Office for filing the lawsuit without any independent fact-finding." "The allegations in the lawsuit are based on misinformation circulated online, primarily from a short-seller, and are totally unfounded," Temu's spokesperson said. "We categorically deny the allegations and will vigorously defend ourselves." "We understand that as a new company with an innovative supply chain model, some may misunderstand us at first glance and not welcome us. We are committed to the long-term and believe that scrutiny will ultimately benefit our development. We are confident that our actions and contributions to the community will speak for themselves over time." Last year, Temu was the most downloaded app in the U.S. and has only become more popular as reports of security and privacy risks have come out.

Read more of this story at Slashdot.

Nine astronauts aboard the International Space Station were forced to take shelter late Wednesday when a satellite broke up in low Earth orbit. This "debris-generating event" created "over 100 pieces of trackable [space junk]," according to U.S. space-tracking firm LeoLabs. Space.com reports: The Expedition 71 crew on the International Space Station (ISS) went to their three spacecraft, including Boeing Starliner, shortly after 9 p.m. EDT (0200 GMT), according to a brief NASA update on X, formerly known as Twitter. As the ISS follows a time zone identical to GMT, according to the European Space Agency, the astronauts were likely in their sleep period when the incident occurred. The procedure was a "precautionary measure", NASA officials added, stating that the crew only stayed in their spacecraft for about an hour before they were "cleared to exit their spacecraft, and the station resumed normal operations." NASA did not specify which satellite was associated with the incident, but satellite monitoring and collision detection firm LeoLabs identified a "debris-generating event" that same evening. "Early indications are that a non-operational Russian spacecraft, Resurs-P1 [or] SATNO 39186, released a number of fragments," the company wrote on X. U.S. Space Command also reported the Resurs-P1 event, saying on X that over 100 pieces of trackable debris were generated. The military said it "observed no immediate threats and is continuing to conduct routine conjunction assessments." (A conjunction refers to a close approach of two objects in orbit to one another.)

Read more of this story at Slashdot.

An anonymous reader quotes a report from Reuters: Seven content-licensing sellers of music, image, video and other datasets for use in training artificial intelligence systems have formed the sector's first trade group, they said on Wednesday. The Dataset Providers Alliance (DPA) will advocate for 'ethical data sourcing' in the training of AI systems, including rights for people depicted in datasets and the protection of content owners' intellectual property rights, the companies said in a statement. Founding members include U.S. music dataset company Rightsify, image licensing service vAIsual, Japanese stock photo provider Pixta and Germany-based data marketplace Datarade.

Read more of this story at Slashdot.

Early analysis of the near-Earth asteroid Bennu has revealed unexpected evidence of magnesium-sodium phosphate, suggesting Bennu might have originated from a primitive ocean world. Space.com reports: On Earth, magnesium-sodium phosphate can be found in certain minerals and geological formations, as well as within living organisms where it is present in various biochemical processes and is a component of bone and teeth. According to a NASA press release, however, its presence on Bennu surprised the research team because it wasn't seen in the OSIRIS-REx probe's remote sensing data prior to sample collection. The team says its presence "hints that the asteroid could have splintered off from a long-gone, tiny, primitive ocean world." "The presence and state of phosphates, along with other elements and compounds on Bennu, suggest a watery past for the asteroid," said Lauretta. "Bennu potentially could have once been part of a wetter world. Although, this hypothesis requires further investigation." The OSIRIS-REx spacecraft obtained a sample of Bennu's regolith on October 20, 2020 using its Touch-and-Go Sample Acquisition Mechanism (TAGSAM), which comprises a specialized sampler head situated on an articulated arm. Bennu is a small B-type asteroid, which are relatively uncommon carbonaceous asteroids. "[Bennu] was selected as the mission target in part because telescopic observations indicated a primitive, carbonaceous composition and water-bearing minerals," stated the team in their paper. [...] Further analysis on the samples revealed the prevailing component of the regolith sample is magnesium-bearing phyllosilicates, primarily serpentine and smectite -- types of rock typically found at mid-ocean ridges on Earth. A comparison of these serpentinites with their terrestrial counterparts provides possible insights into Bennu's geological past. "Offering clues about the aqueous environment in which they originated," wrote the team. While Bennu's surface may have been altered by water over time, it still preserves some of the ancient characteristics scientists believe were present during the early solar system's days. Bennu's surface materials still contain some original features from the cloud of gas and dust from which our solar system's planets formed -- known as the protoplanetary disk. The team's study also confirmed the asteroid is rich in carbon, nitrogen and some organic compounds -- all of which, in addition to the magnesium phosphate, are essential components for life as we know it on Earth.

Read more of this story at Slashdot.

In a contract worth as much as $843 million, NASA announced today SpaceX has been selected to develop a vehicle that will de-orbit the International Space Station in 2030. "As the agency transitions to commercially owned space destinations closer to home, it is crucial to prepare for the safe and responsible deorbit of the International Space Station in a controlled manner after the end of its operational life in 2030," the U.S. space agency said in a statement. TechCrunch reports: Few details about the U.S. Deorbit Vehicle, as NASA calls the craft, have been released so far. However, NASA clarified that the vehicle will be different from SpaceX's Dragon capsule, which delivers cargo and crew to the station, and other vehicles that perform services for the agency. Unlike these vehicles, which are built and operated by SpaceX, NASA will take ownership of the U.S. Deorbit Vehicle post-development and operate it throughout its mission. Both the vehicle and the ISS will destructively break up as they reenter the atmosphere, and one of the big tasks ahead for SpaceX is to ensure that the station reenters in a way that endangers no populated areas. The launch contract for the U.S. Deorbit Vehicle will be announced separately. NASA and its partners had been evaluating using a Russian Roscosmos Progress spacecraft to conduct the de-orbit mission, but studies indicated that a new spacecraft was needed for the de-orbit maneuver. The station's safe demise is a responsibility shared by the five space agencies that operate on the ISS -- NASA, the Canadian Space Agency, European Space Agency, Japan Aerospace Exploration Agency, and State Space Corporation Roscosmos -- but it is unclear whether this contract amount is being paid out by all countries.

Read more of this story at Slashdot.

An anonymous reader quotes a report from CNN: Dairy farmers in Denmark face having to pay an annual tax of 672 krone ($96) per cow for the planet-heating emissions they generate. The country's coalition government agreed this week to introduce the world's first carbon emissions tax on agriculture. It will mean new levies on livestock starting in 2030. Denmark is a major dairy and pork exporter, and agriculture is the country's biggest source of emissions. The coalition agreement -- which also entails investing 40 billion krone ($3.7 billion) in measures such as reforestation and establishing wetlands -- is aimed at helping the country meet its climate goals. "With today's agreement, we are investing billions in the biggest transformation of the Danish landscape in recent times," Foreign Minister Lars Lokke Rasmussen said in a statement Tuesday. "At the same time, we will be the first country in the world with a (carbon) tax on agriculture." The Danish dairy industry broadly welcomed the agreement and its goals, but it has angered some farmers. [...] The tax, expected to be approved by Denmark's parliament later this year, will amount to 300 krone ($43) per tonne (1.1 ton) of CO2-equivalent emissions from livestock from 2030, rising to 750 krone ($107) in 2035. A 60% tax break will apply, meaning that farmers will effectively be charged 120 krone ($17) per tonne of livestock emissions per year from 2030, rising to 300 krone ($43) in 2035. On average, Danish dairy cows, which account for much of the cattle population, emit 5.6 tons of CO2-equivalent per year, according to Concito, a green think tank in Denmark. Using the lower tax rate of 120 krone results in a charge of 672 krone per cow, or $96. With the tax break in place, that levy will rise to 1,680 krone per cow in 2035 ($241). In the first two years, the proceeds from the tax will be used to support the agricultural industry's green transition and then reassessed. "The whole purpose of the tax is to get the sector to look for solutions to reduce emissions," Concito's chief economist Torsten Hasforth told CNN. For example, farmers could change the feed they use.

Read more of this story at Slashdot.

Brandon Vigliarolo reports via The Register: American healthcare provider Geisinger fears highly personal data on more than a million of its patients has been stolen -- and claimed a former employee at a Microsoft subsidiary is the likely culprit. Geisinger on Monday announced the results of a probe into a November computer security breach, placing the blame on Microsoft-owned Nuance Communications for not cutting off one of its employees' access to corporate files after that person was fired. The Pennsylvania-based healthcare giant uses Nuance as an IT provider. We're told that after the Microsoft-owned entity terminated one of its workers, that staffer two days later may have accessed and taken copies of sensitive records on a huge number of Geisinger patients -- for reasons as yet unknown. Geisinger -- which says it operates 13 hospitals and has more than 600,000 members -- said it discovered the improper access on November 29, informed Nuance, and the IT supplier immediately cut off the former employee from the healthcare group's data before involving police. "Because it could have impeded their investigation, law enforcement investigators asked Nuance to delay notifying patients of this incident until now," Geisinger claimed, explaining why only now this is coming to light. "The former Nuance employee has been arrested and is facing federal charges." It's not immediately clear if or what charges have been laid -- we've asked Geisinger for details. Speech recognition firm Nuance performed its own probe, according to Geisinger, and determined that the former employee may have stolen information on a million-plus people. That info would include birth dates, addresses, hospital admission and discharge records, demographic information, and other medical data. The ex-employee didn't swipe insurance or other financial information, the multi-billion-dollar healthcare group stated. "We continue to work closely with the authorities on this investigation, and while I am grateful that the perpetrator was caught and is now facing federal charges," Geisinger chief privacy officer Jonathan Friesen alleged, adding: "I am sorry that this happened."

Read more of this story at Slashdot.

In 2021, Apple announced plans for a new $1 billion campus in North Carolina, set to include a new engineering and research center and support up to 3,000 employees. According to Lauren Ohnesorge of Triangle Business Journal (paywalled), Apple remains committed to the project, but the timeline has been delayed by four years. MacRumors reports: A limited amount of progress on the campus has been made since the announcement, and Apple has not provided updates on construction until now. Apple told Triangle Business Journal that it has paused work on the campus, and it is working with North Carolina Governor Roy Cooper and the North Carolina Department of Commerce to extend the project's timeline by four years. Apple last year filed development plans for the first phase of construction, but the specific timeline for the project has never been clear. Apple's plans for Research Triangle Park include six buildings and a parking garage totaling 700,000 square feet of office space, 190,000 square feet of accessory space, and close to 3,000 parking spaces spanning 41 acres. Apple owns 281 acres of land in the area where it plans to build its campus, so there could ultimately be several phases of construction. As it prepares to build the NC research center, Apple is leasing more than 200,000 square feet of office space in Cary, North Carolina. In a statement, Apple said it is still committed to the project: "Apple has been operating in North Carolina for over two decades. And we're deeply committed to growing our teams here. In the last three years, we've added more than 600 people to our team in Raleigh, and we're looking forward to developing our new campus in the coming years."

Read more of this story at Slashdot.

A super PAC called Fairshake, funded primarily by top cryptocurrency companies, achieved several wins in congressional primaries and plans to spend over $100 million to support pro-crypto candidates in the general elections. CNBC reports: Fairshake and its two affiliated political action committees, one for Republicans, one for Democrats, quietly racked up half a dozen other wins Tuesday as the candidates they backed glided to victory, although none of the races were competitive. They included Rep. John Curtis, who won the Republican nomination for Utah's open Senate seat. Created last year as part of a joint effort between more than a dozen crypto firms, Fairshake PAC has emerged as one of the top-spending PACs in the 2024 election cycle. Fairshake and its two affiliated PACs have put more than $37 million so far into advertisements in primary races, according to AdImpact. Despite a broad mission to defend the entire $2.2 trillion crypto market, Fairshake is funded by a very small set of donors. Of the $160 million in total contributions Fairshake has raised since it was founded, around $155 million -- or 94% -- can be traced back to just four companies: Ripple, Andreesen Horowitz, Coinbase and Jump Crypto. But it's not just money that the crypto industry plans to deploy this fall. The nonprofit Stand With Crypto says it has collected more than 1.1 million email addresses of crypto "advocates" it hopes to engage all the way to the ballot box. The strength of the crypto groups is getting noticed on Capitol Hill, especially among lawmakers who are facing tough elections in 2025, where a few thousand voters, or a hefty donation, could make a difference in not only a race but in which party controls each chamber. [...] In the coming months, the group doesn't plan to spend on the presidential race, but rather the House and Senate, according to a Fairshake spokesperson. Both of those chambers are in play for 2025. Fairshake has yet to start spending in the general election cycle, but several officials in the industry said they are keeping an eye on states such as Ohio and Montana, where Democratic incumbents who are bearish on crypto face challengers who have embraced the technology. [...] Ads funded by Fairshake deliver messages that are typically less about a candidates' support for or opposition to crypto, and more about broader issues that resound with voters, such as fairness and integrity.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Wired: In recent weeks, as so-called cheap fake video clips suggesting President Joe Biden is unfit for office have gone viral on social media, a Kremlin-affiliated disinformation network has been promoting a parody music video featuring Biden wearing a diaper and being pushed around in a wheelchair. The video is called "Bye, Bye Biden" and has been viewed more than 5 million times on X since it was first promoted in the middle of May. It depicts Biden as senile, wearing a hearing aid, and taking a lot of medication. It also shows him giving money to a character who seems to represent illegal migrants while denying money to US citizens until they change their costume to mimic the Ukrainian flag. Another scene shows Biden opening the front door of a family home that features a Confederate flag on the wall and allowing migrants to come in and take over. Finally, the video contains references to stolen election conspiracies pushed by former president Donald Trump. The video was created by Little Bug, a group that mimics the style of Little Big, a real Russian band that fled the country in 2022 following Russia's invasion of Ukraine. The video features several Moscow-based actors -- who spoke with Russian media outlet Agency.Media -- but also appears to use artificial intelligence technology to make the actors resemble Biden and Trump, as well as Ilya Prusikin, the lead singer of Little Big. "Biden and Trump appear to be the same actor, with deepfake video-editing changing his facial features until he resembles Biden in one case and Trump in the other case," says Alex Fink, an AI and machine-vision expert who analyzed the video for WIRED. "The editing is inconsistent, so you can see that in some cases he resembles Biden more and in others less. The facial features keep changing." An analysis by True Media, a nonprofit that was founded to tackle the spread of election-related deepfakes, found with 100 percent confidence that there was AI-generated audio used in the video. It also assessed with 78 percent confidence that some AI technology was used to manipulate the faces of the actors. Fink says the obvious nature of the deepfake technology on display here suggests that the video was created in a rush, using a small number of iterations of a generative adversarial network in order to create the characters of Biden and Trump. It is unclear who is behind the video, but "Bye, Bye Biden" has been promoted by the Kremlin-aligned network known as Doppelganger. The campaign posted tens of thousands of times on X and was uncovered by Antibot4Navalny, an anonymous collective of Russian researchers who have been tracking Doppelganger's activity for the past six months. The campaign first began on May 21, and there have been almost 4,000 posts on X promoting the video in 13 languages that were promoted by a network of almost 25,000 accounts. The Antibot4Navalny researchers concluded that the posts were written with the help of generative AI technology. The video has been shared 6.5 million times on X and has been viewed almost 5 million times.

Read more of this story at Slashdot.

Microsoft's canceled Xbox cloud console, codenamed Keystone, has been detailed in a new patent spotted by Windows Central's Zac Bowden. From the report: Back in 2021, Microsoft announced that it was working on a dedicated streaming device for Xbox Game Pass. That device was later revealed to be codenamed Keystone, which took the form of a streaming box that would sit under your TV, cost a fraction of the price of a normal Xbox, and enable the ability to play Xbox games via the cloud. Unfortunately, it appears Microsoft has since scrapped plans to ship Xbox Keystone due to an inability to bring the price down to a level where it made sense for customers. Xbox CEO Phil Spencer is on record saying the device should have costed around $99 or $129, but the company was unable to achieve this. Thanks to a patent discovered by Windows Central, we can finally take a closer look at the box Microsoft had conjured up internally. First up, the patent reveals that the console took the form of an even square with a circle shape on top, similar to the black circular vent on an Xbox Series S. The front of the box had the Xbox power button, and a USB-A port. Around the back, there were three additional ports; HDMI, ethernet, and power. On the right side of the console there was appears to be an Xbox controller pairing button, and the underside featured a circular "Hello from Seattle" plate that the console sat on, similar to the Xbox Series X. This patent was filed in June 2022, which was around the time when the first details of Xbox Keystone were being revealed.

Read more of this story at Slashdot.