Slashdot covered Barrett Brown back in 2011 and 2012. The New York Times calls him "an activist associated with the hacker group Anonymous, and a political prisoner recently denied asylum in Britain, all of which sounds a bit dreary until we hear tell of it through Brown's unhinged self-regard." They're reviewing Brown's "extraordinary" new memoir, My Glorious Defeats: Hacktivist, Narcissist, Anonymous," a book they call "deranged, hyperbolic, and true." A "machine" that focuses attention on little-known social issues, Anonymous has gone after the Church of Scientology, Koch Industries, websites hosting child pornography and the Westboro Baptist Church. The public tends to be confused by nebulous digital activities, so it was, in the collective's heyday, helpful to have Brown act as a translator between the hackers and mainstream journalists. "The year 2011 ended as it began," he writes, "with a sophisticated hack on a state-affiliated corporation that ostensibly dealt in straightforward security and analysis while secretly engaging in black ops campaigns against activists who'd proven troublesome to powerful clients." This particular corporation was Stratfor, a company that spied on activists for the government... Brown waited for the feds to come back and drag him to jail. He also says he tried to get off suboxone in order to avoid the painful possibility of prison withdrawal, and stopped taking Paxil, inducing a manic state, all of which is given as explanation for his regrettable next move, which was to set up a camera and start talking. The feds had threatened his mother, he told the internet, and in response he was threatening Robert Smith, the lead agent on his case. He found himself in custody the same night. Brown was then subjected to the kind of nonsense the Department of Justice is prone to inflicting on those involved in shadowy internet activities that, in fact, almost no one in the legal process understands. He was charged with participating in the hack of Stratfor, though he was not really involved and cannot code, and although the whole thing was organized by an F.B.I. informant. Brown had also retweeted a Fox News host's call to murder Julian Assange; the prosecution presented this as if he were himself calling for the murder of Assange. But generally, Brown's primary victim is himself. "My thirst for glory and hatred for the state," he writes, "were incompatible with an orthodox criminal defense, in which the limiting of one's sentence is the sole objective." In his cell, with an eraser-less pencil he needs a compliant guard to repeatedly sharpen, he writes "The Barrett Brown Review of Arts and Letters and Jail." His mother types it up; The Intercept publishes. He develops the character he will play in his memoir: a self-aware narcissist and addict. He wins a National Magazine Award, and is especially pleased that his column "Please Stop Sending Me Jonathan Franzen Novels," wins while Franzen is in attendance. "The state is an afterthought here — a litany of absurdist horrors too stupid to appall..." the review concludes. "We're left with a man who refuses to look away from the deep structure of the world, an unstable position from which there is no sanctuary. My Glorious Defeats is deranged, hyperbolic and as true a work as I have read in a very long time."

Read more of this story at Slashdot.

2017 Slashdot headline: "People Keep Finding Hidden Cameras in Their Airbnbs." Nearly seven years later, CNN launched their own investigation of "Airbnb's hidden camera problem". CNN: "Across North America, police have seized thousands of images from hidden cameras at Airbnb rentals, including people's most intimate moments... It's more than just a few reported cases. And Airbnb knows it's a problem. In this deposition reviewed by CNN, an Airbnb rep said 35,000 customer support tickets about security cameras or recording devices had been documented over a decade. [The deposition estimates "about" 35,000 tickets "within the scope of the security camera and recording devices policy."] Airbnb told CNN a single complaint can involve multiple tickets. CNN actually obtained the audio recording of an Airbnb host in Maine admitting to police that he'd photographed a couple having sex using a camera hidden in a clock — and also photographed other couples. And one Airbnb guest told CNN he'd only learned he'd been recorded "because police called him, months later, after another guest found the camera" — with police discovering cameras in every single room in the house, concealed inside smoke detectors. "Part of the challenge is that the technology has gotten so advanced, with these cameras so small that you can't even see them," CNN says. But even though recording someone without consent is illegal in every state, CNN also found that in this case and others, Airbnb "does not contact law enforcement once hidden cameras are discovered — even if children are involved." Their reporter argues that Airbnb "not only fails to protect its guests — it works to keep complaints out of the courts and away from the public." They spoke to two Florida attorneys who said trying to sue Airbnb if something goes wrong is extremely difficult — since its Terms of Service require users to assume every risk themselves. "The person going to rent the property agrees that if something happens while they're staying at this accommodation, they're actually prohibited from suing Airbnb," says one of the attorneys. "They must go a different route, which is a binding arbitration." (When CNN asked if this was about controlling publicity, the two lawyers answered "absolutely" and "100%".) And when claims are settled, CNN adds, "Airbnb has required guests to sign confidentiality agreements — which CNN obtained — that keep some details of legal cases private." Responding to the story, Airbnb seemed to acknowledge guests have been secretly recorded by hosts, by calling such occurrences "exceptionally rare... When we do receive an allegation, we take appropriate, swift action, which can include removing hosts and listings that violate the policy. "Airbnb's trust and safety policies lead the vacation rental industry..."

Read more of this story at Slashdot.

"If there is no alternative, then the whole thing can collapse around you," says Ron Delnevo. He's the chair of The Payment Choice Alliance, "which campaigns against the move towards a cashless society." He's part of those arguing "the chaos caused by the global IT outage last week underlines the risk of moving towards a cashless society," writes the Observer: Authorities in China and the US have fined businesses for not accepting cash. Delnevo said the U.K. should have a law requiring all businesses to take cash. Martin Quinn, campaign director for the PCA, said using cash allowed for anonymity. "I don't want my data sold on, and I don't want banks, credit card companies and even online retailers to know every facet of my life," he said. Budgeting by using cash is also easier for some, he added. The article includes some interesting statistics from a U.K. bank trade association. "The number of people who never use cash, or use it less than once a month, reached 23.1 million in 2021, but declined to 21.6m last year." The GMB [general trade] Union said the outage reinforced what it had been saying for years: that "cash is a vital part of how our communities operate". "When you take cash out of the system, people have nothing to fall back on, impacting on how they do the everyday basics."

Read more of this story at Slashdot.

SolarWinds still faces some legal action over its infamous 2020 breach, reports NextGov.com. But a U.S. federal judge has dismissed most of the claims from America's Securities and Exchange Commission, which "alleged the company defrauded investors because it deliberately hid knowledge of cyber vulnerabilities in its systems ahead of a major security breach discovered in 2020." Slashdot reader krakman shares this report from the Washington Post: "The SEC's rationale, under which the statute must be construed to broadly cover all systems public companies use to safeguard their valuable assets, would have sweeping ramifications," [judge] Engelmayer wrote in a 107-page decision. "It could empower the agency to regulate background checks used in hiring nighttime security guards, the selection of padlocks for storage sheds, safety measures at water parks on whose reliability the asset of customer goodwill depended, and the lengths and configurations of passwords required to access company computers," he wrote. The federal judge also dismissed SEC claims that SolarWinds' disclosures after it learned its customers had been affected improperly covered up the gravity of the breach... In an era when deeply damaging hacking campaigns have become commonplace, the suit alarmed business leaders, some security executives and even former government officials, as expressed in friend-of-the-court briefs asking that it be thrown out. They argued that adding liability for misstatements would discourage hacking victims from sharing what they know with customers, investors and safety authorities. Austin-based SolarWinds said it was pleased that the judge "largely granted our motion to dismiss the SEC's claims," adding in a statement that it was "grateful for the support we have received thus far across the industry, from our customers, from cybersecurity professionals, and from veteran government officials who echoed our concerns." The article notes that as far back as 2018, "an engineer warned in an internal presentation that a hacker could use the company's virtual private network from an unauthorized device and upload malicious code. Brown did not pass that information along to top executives, the judge wrote, and hackers later used that exact technique." Engelmayer did not dismiss the case entirely, allowing the SEC to try to show that SolarWinds and top security executive Timothy Brown committed securities fraud by not warning in a public "security statement" before the hack that it knew it was highly vulnerable to attacks. The SEC "plausibly alleges that SolarWinds and Brown made sustained public misrepresentations, indeed many amounting to flat falsehoods, in the Security Statement about the adequacy of its access controls," Engelmayer wrote. "Given the centrality of cybersecurity to SolarWinds' business model as a company pitching sophisticated software products to customers for whom computer security was paramount, these misrepresentations were undeniably material."

Read more of this story at Slashdot.

Parts of the Persian Gulf "have seen the heat index, or how it feels when factoring in the humidity, reach 140 to 150 degrees Fahrenheit (60 to 65 Celsius)," reports the Washington Post, "fueled by an intense heat dome, the warmest water temperatures in the world and the influence of human-caused climate change." Temperatures at the Persian Gulf International Airport in Asaluyeh, Iran, climbed to 108 (42 C) on Wednesday and 106 (41 C) on Thursday, with both days recording a peak heat index of 149 (65 C). In Dubai, the temperature topped out at 113 (45 C) on Tuesday and the heat index soared to 144 (62 C). Other extreme heat indexes in recent days include 141 (61 C) in Abu Dhabi and 136 (58 C) at Khasab Air Base in Oman. Last August, this same region experienced even more extreme heat indexes, climbing as high as 158 degrees (70 C). The maximum air temperatures this week — generally between 105 and 115 (41 and 46 C) — have only been somewhat above normal. But the dew points — which are a measure of humidity — have been excessive, climbing well into the 80s (27 to 32 C). In the United States, any dew point over 70 degrees (21 C) is considered uncomfortably humid. It's the very high dew points that have propelled heat indexes up to 30 degrees (16 C) above actual air temperatures. The extreme humidity levels are tied to bathtub-like water temperatures in the Persian Gulf, the warmest in the world. According to National Oceanic and Atmospheric Administration data, sea surface temperatures are as warm as 95 degrees (35 C). Largely because of the high humidity, nighttime minimum temperatures have also remained exceptionally warm, in many cases staying above 85 (29 C). Temperatures in Iranshar, Iran, only dropped to 97 (36 C) on Wednesday night, its hottest July night on record. "Researchers have identified the Persian Gulf among the regions most likely to regularly exceed life-threatening heat thresholds during the next 30 to 50 years," the article adds. And it also cites new heat records reported for the region by weather historian Maximiliano Herrera. "The United Arab Emirates saw a scorching high temperature of 123 while Adrar, Algeria, tied its record of 122 (50 C). Cities in both Kuwait and Iraq reached 126 (52 C), and Al Ahsa, Saudi Arabia, notched a record of 124 (51 C)... "The same heat dome that's in the Persian Gulf region has spread record heat northward into Eastern Europe, westward into northern Africa, and eastward into India, Pakistan and Indonesia. In Eastern Europe, high temperatures surpassed 104 (40 C), with some locations staying above 85 degrees (29 C) at night."

Read more of this story at Slashdot.

A new report "explores the current state of secure software development," according to an announcement from the Linux Foundation, "and underscores the urgent need for formalized industry education and training programs," noting that many developers "lack the essential knowledge and skills to effectively implement secure software development." The report analyzes a survey of nearly 400 software development professionals performed by and the Open Source Security Foundation (OpenSSF) and Linux Foundation Research: Survey findings outlined in the report show nearly one-third of all professionals directly involved in development and deployment — system operations, software developers, committers, and maintainers — self-report feeling unfamiliar with secure software development practices. This is of particular concern as they are the ones at the forefront of creating and maintaining the code that runs a company's applications and systems. "Time and again we've seen the exploitation of software vulnerabilities lead to catastrophic consequences, highlighting the critical need for developers at all levels to be armed with adequate knowledge and skills to write secure code," said David A. Wheeler, director of open source supply chain security for the Linux Foundation. "Our research found that a key challenge is the lack of education in secure software development. Practitioners are unsure where to start and instead are learning as they go. It is clear that an industry-wide effort to bring secure development education to the forefront must be a priority." OpenSSF offers a free course on developing secure software (LFD121) and encourages developers to start with this course. Survey results indicate that the lack of security awareness is likely due to most current educational programs prioritizing functionality and efficiency while often neglecting essential security training. Additionally, most professionals (69%) rely on on-the-job experience as a main learning resource, yet it takes at least five years of such experience to achieve a minimum level of security familiarity. "The top reason (44%) for not taking a course on secure software development is lack of knowledge about a good course on the topic," according to the announcement — which includes this follow-up quote from Intel's Christopher Robinson (co-chair of the OpenSSF Education SIG). "Based on these findings, OpenSSF will create a new course on security architecture which will be available later this year which will help promote a 'security by design' approach to software developer education."

Read more of this story at Slashdot.

An anonymous reader shared this report from CNN: Netflix will start phasing out its Basic plan, its cheapest advertising-free plan, which costs $11.99 per month in the United States, the company said on Thursday. The company had previously stopped accepting new sign-ups for the Basic plan, instead pushing customers to Netflix's ad-supported plan, which costs $6.99 per month. However, existing users were allowed to keep the basic plan. In January, the company said it would retire its cheapest ad-free tier in Canada and the UK. On Thursday, the company said the US and France are next. Basic users in the US who want an ad-free viewing experience on Netflix will now have two choices: Netflix's Standard plan, which costs $15.49 per month, and its Premium plan, which costs $22.99 per month... The company reported a record-high 277.65 million subscribers on its streaming platform Thursday, far outpacing streaming competitors like Disney+, Peacock and Max... Overall, Netflix added 8.05 million new subscribers in its second quarter. Netflix's surge in new subscribers has been fueled in part by the company's effort to push users who share passwords to create their own accounts. The article adds that Netflix's stock has climbed more than 35% in 2024.

Read more of this story at Slashdot.

Slashdot reader Thelasko shared Friday's article from Digital Trends: Nearly every flight in the U.S. is grounded right now following a CrowdStrike system update error that's affecting everything from travel to mobile ordering at Starbucks — but not Southwest Airlines flights. Southwest is still flying high, unaffected by the outage that's plaguing the world today, and that's apparently because it's using Windows 3.1. Yes, Windows 3.1 — an operating system that is 32 years old. Southwest, along with UPS and FedEx, haven't had any issues with the CrowdStrike outage. In responses to CNN, Delta, American, Spirit, Frontier, United, and Allegiant all said they were having issues, but Southwest told the outlet that its operations are going off without a hitch. Some are attributing that to Windows 3.1. Major portions of Southwest's systems are reportedly built on Windows 95 and Windows 3.1... UPDATE: Reached for comment, Southwest "would not confirm" that's it's using Windows 3.1, reports SFGate. But they did get this quote from an airline analyst: âoeWe believe that Southwestâ(TM)s older technology kept it somewhat immune from the issues affecting other airlines today."

Read more of this story at Slashdot.

"Many people over the past few days have been lashing out at Mozilla," writes the blog Its FOSS, "for enabling Privacy-Preserving Attribution by default on Firefox 128, and the lack of publicity surrounding its introduction." Mozilla responded that the feature will only run "on a few sites in the U.S. under strict supervision" — adding that users can disable it at any time ("because this is a test"), and that it's only even enabled if telemetry is also enabled. And they also emphasize that it's "not tracking." The way it works is there's an "aggregation service" that can periodically send advertisers a summary of ad-related actions — again, aggregated data, from a mass of many other users. (And Mozilla says that aggregated summary even includes "noise that provides differential privacy.") This Privacy-Preserving Attribution concept "does not involve sending information about your browsing activities to anyone... Advertisers only receive aggregate information that answers basic questions about the effectiveness of their advertising." More from It's FOSS: Even though Mozilla mentioned that PPA would be enabled by default on Firefox 128 in a few of its past blog posts, they failed to communicate this decision clearly, to a wider audience... In response to the public outcry, Firefox CTO, Bobby Holley, had to step in to clarify what was going on. He started with how the internet has become a massive cesspool of surveillance, and doing something about it was the primary reason many people are part of Mozilla. He then expanded on their approach with Firefox, which, historically speaking, has been to ship a browser with anti-tracking features baked in to tackle the most common surveillance techniques. But, there were two limitations with this approach. One was that advertisers would try to bypass these countermeasures. The second, most users just accept the default options that they are shown... Bas Schouten, Principal Software Engineer at Mozilla, made it clear at the end of a heated Mastodon thread that "[opt-in features are] making privacy a privilege for the people that work to inform and educate themselves on the topic. People shouldn't need to do that, everyone deserves a more private browser. Privacy features, in Firefox, are not meant to be opt-in. They need to be the default. "If you are 'completely anti-ads' (i.e. even if their implementation is private), you probably use an ad blocker. So are unaffected by this." This has already provoked a discussion among Slashdot readers. "It doesn't seem that evil to me," argues Slashdot reader geekprime. "Seems like the elimination of cross site cookies is a privacy enhancing idea." (They cite Mozilla's statement that their goal is "to inform an emerging Web standard designed to help sites understand how their ads perform without collecting data about individual people. By offering sites a non-invasive alternative to cross-site tracking, we hope to achieve a significant reduction in this harmful practice across the web.") But Slashdot reader TheNameOfNick disagrees. "How realistic is the part where advertisers stop tracking you because they get less information from the browser maker...?" Mozilla has provided simple instructions for disabling the feature: Click the menu button and select Settings. In the Privacy & Security panel, find the Website Advertising Preferences section. Uncheck the box labeled Allow websites to perform privacy-preserving ad measurement.

Read more of this story at Slashdot.

Long-time Slashdot reader theodp writes: Bob Newhart, whose stammering, deadpan unflappability carried him to stardom as a standup comedian and later in television and movies, has died at age 94. He remains best known for the television shows, "The Bob Newhart Show" (1972-78) and "Newhart" (1982-90), both of which were built around his persona as a reasonable man put-upon by crazies. A younger crowd may remember Newhart from his roles in the movie "Elf" (2003) and TV's "The Big Bang Theory" (2013-18). Less known about Newhart is that he was an early Commodore PET owner, recalling for the LA Times in 2001: "I remember leafing through a copy of Popular Science magazine and seeing an ad for a Commodore computer that had 8- or 16 kilobytes [in 1977]. It had an awful-looking screen, and it was $795. I thought I'd better get one because I had sons who were going to be in high school and might want to know about computers. Later, I moved up to the 64 KB model and thought that was silly because it was more memory than I would ever possibly need. "I got them for the kids and then found I was fascinated by them. The first ones had tape drives. You would get a program like a word processor, put the tape in and then walk away for about a half an hour while the computer loaded it. But the first time I used a spell checker and it corrected a word, I thought, 'We are getting close to God here."

Read more of this story at Slashdot.

"More pieces of a broken wind turbine off the coast of Massachusetts are falling into the Atlantic Ocean," reports CBS News on Thursday. "The CEO of Vineyard Wind was at Nantucket's Select Board meeting Wednesday evening, apologizing and answering questions about the initial break when he suddenly had to leave because the situation is getting worse." CNN reports the debris has been "prompting beach closures and frustrating locals at the peak of the summer season" since the blade broke a week ago, and then folded over: Since then, foam debris and fiberglass — including some large and dangerously sharp pieces — have washed onto beaches. A "significant part" of the remaining damaged blade detached from the turbine early Thursday morning, Vineyard Wind said in a news release. The US Coast Guard confirmed to CNN it has located a 300-foot piece of the blade. There are few answers to what caused the turbine to fail, and the incident has prompted questions and anger from city officials and Nantucket residents... The shards of turbine forced officials to close beaches earlier this week, though they have since reopened. [Nantucket select board chair Brooke Mohr] said the town would monitor for additional debris and adjust schedules accordingly. "Public safety is our most immediate concern, these fiberglass pieces are quite sharp," Mohr said, making swimming unsafe... The federal government is conducting its own investigation and has ordered Vineyard Wind to stop all its wind turbines producing electricity until it can be determined whether any other blades were impacted, a Bureau of Safety and Environmental Enforcement spokesperson said in a statement. The federal government has also ordered the companies to preserve any equipment that could help determine the cause of the failure. The federal suspension order effectively halts further construction on Vineyard Wind, the first large-scale wind farm being installed in the US. The wind farm, a joint venture of Avangrid and Copenhagen Infrastructure Partners, has 10 turbines up and running so far with plans to install 62 total... The project was set to double the number of turbines spinning off the East Coast, and state leaders in Massachusetts have viewed it as a big boost to the state's ability to generate electricity. Now the project is in limbo, and could remain so until the investigation is complete. The article quotes the head of government affairs at wind blade manufacturer GE Vernova as saying a breaking wind turbine is "highly unusual and rare." But Vineyard Wind CEO Klaus Skoust Møller called it a "very serious situation" and apologized to local residents. Meanwhile, the Boston Herald reported Friday that the Nantucket Select Board "is set to pursue litigation against the wind energy company in connection to the blade failure..." Town officials, residents and local mariners have all said they didn't learn of the incident until Monday evening, roughly 48 hours after the fact and just hours before debris started to wash ashore, prompting beaches to close Tuesday... The "significant portion" of the 107-meter blade that detached from the turbine Thursday morning sunk to the ocean floor. Crews were slated to recover the fiberglass "in due course," town officials wrote in a Friday update... Residents are not taking kindly to Vineyard Wind's assertion that the debris — fiberglass fragments ranging in size from small pieces to larger sections, typically green or white — is not toxic. Vineyard Wind has deployed a crew of 56 contractors to assist in the cleanup of the island's beaches, and town officials said Friday that no town staff are actively engaged in removing the debris. The wind energy company reported Wednesday that crews had removed 17 cubic yards of debris, enough to fill more than six truckloads. "The joint venture of Connecticut-based Avangrid and Denmark-based Copenhagen Infrastructure Partners is developing a plan to test water quality around the island while working on a process for financial claims."

Read more of this story at Slashdot.

From The New York Times: The key to "Eno" comes near the beginning of the film — at least, the beginning of the first version I saw. The musician Brian Eno, the documentary's subject, notes that the fun of the kind of art he makes is that it's a two-way street. "The audience's brain does the cooking and keeps seeing relationships," he says. Most movies are made up of juxtapositions of scenes, carefully selected and designed by the editor. But "Eno," directed by Gary Hustwit, turns that convention on its head. Writ large, it's a meditation on creativity. But every version of the movie you see is different, generated by a set of rules that dictate some things about the film, while leaving others to chance. (I've seen it twice, and maybe half the same material appeared across both films.) Eno, one of the most innovative and celebrated musicians and producers of his generation, has fiddled with randomness in his musical practice for decades, often propelled along by new technologies. He agreed to participate in "Eno" only if it, too, could be an example of what he and others have long called generative art... "Brain One", programmed by the artist Brendan Dawes, generates a new version of the film on the fly every time the algorithm is run. Dawes's system selects from a database of 30 hours of new interviews with Eno and 500 hours of film from his personal archive and, following a system of rules set down by the filmmakers with code, creating a new film. According to the filmmakers, there are 52 quintillion (that is, 52 billion billion) possible combinations, which means the chances of Brain One generating two exact copies of "Eno" are so small as to be functionally zero. "But the ambitions of Eno are greater than the film itself," writes the Verge, with director Hustwit hoping for a cinematic future exploring generative filmmaking with their software and hardware package. "We have a patent pending on the system, and we just launched a startup called Anamorph that is basically exploring this idea further with other filmmakers and studios and streamers." In an interview with the Verge, Hustwit points out that Brian Eno did the soundtrack for his previous film. "I was having these thoughts about, well, why can't showing a film be more performative? Why does it have to be this static thing every time?" The film just began a two-week run at Greenwich Village's nonprofit theatre Film Forum, and in the U.K. is appearing this week at 17 Picturehouse Cinemas across England and Scotland. Check this online schedule for upcoming dates this week in Nashville (Thursday), Austin (Friday), Dallas (Saturday) — with later dates this month including Toronto, San Francisco, and Los Angeles, and more cities in August.

Read more of this story at Slashdot.

An anonymous reader shared this report from the Guardian: A team of researchers from the UK and US have found that pancreatic cancer is able to shut down molecules in one of the body's most important genes, helping the disease to grow and spread rapidly... Dr Maria Hatziapostolou, of Nottingham Trent University's John van Geest Cancer Research Centre, said: "This work, which has provided new understanding and knowledge of how the cancer behaves, will hopefully help pave the way for potential new treatments in the future...." For the study, published in the journal Gastro Hep Advances, the researchers analysed healthy as well as pancreatic cancer tissue samples. They found pancreatic cancers triggered a process known as DNA methylation, causing molecules in the normally beneficial HNF4A gene to switch off, allowing tumours to grow extremely quickly. The HNF4A gene is crucial to human health because it helps many of the body's organs to function properly. But the researchers discovered pancreatic cancer can covertly disable the gene's benefits. Hatziapostolou said: "Loss of HNF4A drives pancreatic cancer development and aggressiveness and we now know correlates with poor patient survival." Scientists from the University of Nottingham, Stanford University and the University of California and Cedars-Sinai medical centre, Los Angeles, were also involved in the project. The published study calls the targeted HNF4A gene is "a novel tumor suppressor in pancreatic cancer, regulating cancer growth and aggressiveness." And ultimately, according to the Guardian, pancreatic cancer "is the 12th most common cancer worldwide," according to the Guardian, "with more than half a million people diagnosed every year. It has the worst survival rates of all the most common forms of the disease." The researchers paper ends with this conclusion. "HNF4A silencing... drives pancreatic cancer development and aggressiveness leading to poor patient survival."

Read more of this story at Slashdot.

"In a significant advancement for space technology, a team of UC Berkeley researchers, led by doctoral student Taylor Waddell, successfully launched a 3D printer into space," reports the university's student newspaper: As part of the Virgin Galactic 07 mission, the team sent a 3D printer named SpaceCAL to space to explore the potential of Computed Axial Lithography, or CAL, and additive manufacturing in space... During its 140-second flight in suborbital space, the SpaceCAL printer autonomously detected microgravity and printed four test parts: two space shuttles and two Benchies, or 3D-printed boats created to check the printer's accuracy, according to Sean Chu, a member of the team who worked on designing structures and mechanisms. Within the 140 seconds, the process involved multiple steps such as printing, post-washing, flushing with water and post-curing with light to fully solidify the parts. But that's just the beginning, says the university's engineering department: To date, CAL has shown that it can successfully print with more than 60 different materials on Earth, such as silicones, glass composites and biomaterials. According to Waddell, this versatility could come in handy for both the cabin and the crew... "CAL is also capable of repairing the crew. We can print dental replacements, skin grafts or lenses, or things personalized in emergency medicine for astronauts, which is very important in these missions, too." Someday, CAL may be used to print even more sophisticated parts, such as human organs. Lawrence Livermore National Lab has received a grant from NASA to test this technology on the International Space Station. "They're going to basically do bioprinting on the Space Station," said Waddell. "And the long, long-term goal is to print organs up in space with CAL, then bring them back down to Earth." Next, Waddell and his colleagues hope to begin work with NASA on developing and validating a single object that could support crew health and wellness, like a dental crown for an astronaut or a surgical wound closure tool... This project was made possible through a $1.4 million grant and engineering support provided by NASA. In addition, Virgin Galactic played a pivotal role in taking this project to the next level.

Read more of this story at Slashdot.

"The latest version of the Linux kernel adds an array of improvements," writes the blog OMG Ubuntu, " including a new memory sealing system call, a speed boost for AES-XTS encryption on Intel and AMD CPUs, and expanding Rust language support within the kernel to RISC-V." Plus, like in all kernel releases, there's a glut of groundwork to offer "initial support" for upcoming CPUs, GPUs, NPUs, Wi-Fi, and other hardware (that most of us don't use yet, but require Linux support to be in place for when devices that use them filter out)... Linux 6.10 adds (after much gnashing) the mseal() system call to prevent changes being made to portions of the virtual address space. For now, this will mainly benefit Google Chrome, which plans to use it to harden its sandboxing. Work is underway by kernel contributors to allow other apps to benefit, though. A similarly initially-controversial change merged is a new memory-allocation profiling subsystem. This helps developers fine-tune memory usage and more readily identify memory leaks. An explainer from LWN summarizes it well. Elsewhere, Linux 6.10 offers encrypted interactions with trusted platform modules (TPM) in order to "make the kernel's use of the TPM reasonably robust in the face of external snooping and packet alteration attacks". The documentation for this feature explains: "for every in-kernel operation we use null primary salted HMAC to protect the integrity [and] we use parameter encryption to protect key sealing and parameter decryption to protect key unsealing and random number generation." Sticking with security, the Linux kernel's Landlock security module can now apply policies to ioctl() calls (Input/Output Control), restricting potential misuse and improving overall system security. On the networking side there's significant performance improvements to zero-copy send operations using io_uring, and the newly-added ability to "bundle" multiple buffers for send and receive operations also offers an uptick in performance... A couple of months ago Canonical announced Ubuntu support for the RISC-V Milk-V Mars single-board computer. Linux 6.10 mainlines support for the Milk-V Mars, which will make that effort a lot more viable (especially with the Ubuntu 24.10 kernel likely to be v6.10 or newer). Others RISC-V improvements abound in Linux 6.10, including support for the Rust language, boot image compression in BZ2, LZ4, LZMA, LZO, and Zstandard (instead of only Gzip); and newer AMD GPUs thanks to kernel-mode FPU support in RISC-V. Phoronix has their own rundown of Linux 6.10, plus a list of some of the highlights, which includes: The initial DRM Panic infrastructure The new Panthor DRM driver for newer Arm Mali graphics Better AMD ROCm/AMDKFD support for "small" Ryzen APUs and new additions for AMD Zen 5. AMD GPU display support on RISC-V hardware thanks to RISC-V kernel mode FPU More Intel Xe2 graphics preparations Better IO_uring zero-copy performance Faster AES-XTS disk/file encryption with modern Intel and AMD CPUs Continued online repair work for XFS Steam Deck IMU support TPM bus encryption and integrity protection

Read more of this story at Slashdot.

An anonymous reader shared this report from the Guardian: In March, after analysing 22,000 tasks in the UK economy, covering every type of job, a model created by the Institute for Public Policy Research predicted that 59% of tasks currently done by humans — particularly women and young people — could be affected by AI in the next three to five years. In the worst-case scenario, this would trigger a "jobs apocalypse" where eight million people lose their jobs in the UK alone.... Darrell West, author of The Future of Work: AI, Robots and Automation, says that just as policy innovations were needed in Thomas Paine's time to help people transition from an agrarian to an industrial economy, they are needed today, as we transition to an AI economy. "There's a risk that AI is going to take a lot of jobs," he says. "A basic income could help navigate that situation." AI's impact will be far-reaching, he predicts, affecting blue- and white-collar jobs. "It's not just going to be entry-level people who are affected. And so we need to think about what this means for the economy, what it means for society as a whole. What are people going to do if robots and AI take a lot of the jobs?" Nell Watson, a futurist who focuses on AI ethics, has a more pessimistic view. She believes we are witnessing the dawn of an age of "AI companies": corporate environments where very few — if any — humans are employed at all. Instead, at these companies, lots of different AI sub-personalities will work independently on different tasks, occasionally hiring humans for "bits and pieces of work". These AI companies have the potential to be "enormously more efficient than human businesses", driving almost everyone else out of business, "apart from a small selection of traditional old businesses that somehow stick in there because their traditional methods are appreciated"... As a result, she thinks it could be AI companies, not governments, that end up paying people a basic income. AI companies, meanwhile, will have no salaries to pay. "Because there are no human beings in the loop, the profits and dividends of this company could be given to the needy. This could be a way of generating support income in a way that doesn't need the state welfare. It's fully compatible with capitalism. It's just that the AI is doing it."

Read more of this story at Slashdot.

Long-time Slashdot reader Geoffrey.landis writes: According to a new report from the United Nations, the world population is expected to grow to an estimated peak of 10.3 billion people in the mid-2080s, an increase over the current global population of 8.2 billion people. The estimated world population at the end of the century (2100) is now expected to be 6% less than estimates from a decade ago. However, calculating the number of future people is not a perfect science, with "many sources of uncertainty in estimating the global population," according to the U.S. Census Bureau. It estimated the world reached 8 billion people last September, while the U.N. timed the milestone nearly one year earlier.

Read more of this story at Slashdot.

"Researchers are proposing a new way to battle the effects of climate change..." writes Science magazine: slowing the rising of sea levels with "glacial geoengineering". (That is, "building flexible barriers around them or drilling deep into them to slow their slippage into the sea.") Geoengineering proponents say it would be better to begin research now on how to staunch sea level rise at its source, rather than spending billions and billions of dollars to wall off coastal cities. "At some point you have to think, 'Well, is there anything else we can do?'" asks glaciologist John Moore of the University of Lapland, an author on the white paper, which was sponsored by the University of Chicago. One idea researched by Moore and covered in the report is to build buoyant "curtains," moored to the sea floor beyond the edge of ice shelves and glaciers, to block natural currents of warm water that erode ice sheets from below. (Especially in Antarctica, warming ocean water is a bigger threat to glaciers than warming air.) Early designs called for plastic, but natural fibers such as canvas and sisal are now being considered to avoid pollution concerns. According to the white paper, initial modeling studies show that curtain heights stretching only partway up from the sea floor off the coast of western Antarctica could reduce glacial melting by a factor of 10 in some locations. Another intervention some scientists are contemplating would slow the slippage of ice sheets by drilling holes to their bases and pumping out water or heat. Such massive engineering efforts would surely be some of the most expensive ever undertaken by humanity. At a workshop at the University of Chicago in October 2023, researchers suggested it might cost $88 billion to build 80 kilometers of curtains around Antarctic glaciers. Interventions would also require international political support, which some glaciologists view as an even bigger hurdle than the price tag. Twila Moon, a glaciologist at the U.S. National Snow and Ice Data Center, says such projects would require fleets of icebreakers, extensive shipping and supply chain needs, and significant personnel to construct, maintain, and guard the final structures — in ocean conditions she calls "eye-poppingly difficult." The projects could also incur unintended consequences, potentially disrupting ocean circulation patterns or endangering wildlife. Furthermore, it would take decades to find out whether the interventions were working. Even if the engineering and logistics were possible, that "does not answer the question of whether it should be pursued," says Moon, who opposes even preliminary studies on the concepts. "The report, which also stresses the importance of emissions reductions, takes pains to say it 'does not advocate for intervention; rather, it advocates for research into whether any interventions may be viable'..."

Read more of this story at Slashdot.

As the number of autism diagnoses rises in America, a number of large employers "are taking steps to make workplaces more accessible and welcoming for neurodivergent employees," reports the New York Times — including Microsoft, Dell and Ford. [Alternate URL here.] The Centers for Disease Control and Prevention estimates that 1 in 36 8-year-olds in the United States has autism. That's up from 1 in 44 in 2018 and 1 in 150 in 2000, an increase that experts attribute, in part, to better screening. In addition, 2.2% of adults in the country, or 5.4 million people, are autistic, according to the CDC... Autism activists have praised companies that have become more accepting of remote work since the coronavirus pandemic. Workplaces with too much light and noise can overwhelm those who are autistic, leading to burnout, said Jessica Myszak, a clinical psychologist in Chicago who specializes in testing and evaluations for autism. Remote work "reduces the social demands and some of the environmental sensitivities" that autistic people struggle with, Myszak added. The article notes Microsoft's neurodiversity hiring program, which was established in 2015. The company's program was modeled after a venture created by the German software firm SAP, and has since been adopted in some form by companies including Dell and Ford. The initiative has brought in about 300 full-time neurodivergent employees to Microsoft, said Neil Barnett, the company's director for inclusive hiring and accessibility. "All they needed was this different, more inclusive process," Barnett said, "and once they got into the company, they flourished." [One job applicant] was given a job coach to help her with time management and prioritization. Microsoft also paired her with a mentor who showed her around the company's campus in Redmond. Perhaps more important, she works with managers who have received neurodiversity training. The Microsoft campus also has "focus rooms," where lights can be dimmed and the heights of desks can be changed to fit sensory preferences. Employees seated in the open office may also request to sit away from busy aisles or receive noise-canceling headphones.

Read more of this story at Slashdot.

AT&T paid more than $300,000 to a member of the team that stole call records for tens of millions of customers, reports Wired — "to delete the data and provide a video demonstrating proof of deletion." The hacker, who is part of the notorious ShinyHunters hacking group that has stolen data from a number of victims through unsecured Snowflake cloud storage accounts, tells WIRED that AT&T paid the ransom in May. He provided the address for the cryptocurrency wallet that sent the currency to him, as well as the address that received it. WIRED confirmed, through an online blockchain tracking tool, that a payment transaction occurred on May 17 in the amount of 5.7 bitcoin... The hacker initially demanded $1 million from AT&T but ultimately agreed to a third of that. WIRED viewed the video that the hacker says he provided to AT&T as proof to the telecom that he had deleted its stolen data from his computer... AT&T is one of more than 150 companies that are believed to have had data stolen from poorly secured Snowflake accounts during a hacking spree that unfolded throughout April and May. It's been previously reported that the accounts were not secured with multi-factor authentication, so after the hackers obtained usernames and passwords for the accounts, and in some cases authorization tokens, they were able to access the storage accounts of companies and siphon their data. Ticketmaster, the banking firm Santander, LendingTree, and Advance Auto Parts were all among the victims publicly identified to date... The timeline suggests that if [John] Binns is responsible for the AT&T breach, he allegedly did it when he was likely already aware that he was under indictment for the T-Mobile hack and could face arrest for it.

Read more of this story at Slashdot.

Thunderbird's annual Extended Support Release was revealed Friday, promising "significant" improvements to the overall user experience and "the speed at which we can deliver new features to you," according to the Thunderbird blog: We've devoted significant development time integrating Rust — a modern programming language originally created by Mozilla Research — into Thunderbird. Even though this is a seemingly invisible change, it is a major leap forward because it enhances our code quality and performance. This overhaul will allow us to share features between the desktop and future mobile versions of Thunderbird, and speed up our development process. It's a win for our developers and a win for you. More from the blog OMG Ubuntu: I'm also stoked to see that Thunderbird 128 makes 'newest first' the default sort order for messages in message list. While some prefer the old way, I always found it strange that the oldest mails were shown first — team reverse chronology, represent! They also cite "a number of OpenPGP improvements," plus a new preference option for displaying full names and email addresses of all recipients in the message list. (Plus, threaded-message views now display a "New Message" count.) Other new features in this release: A new and more attractive layout for Cards View (with adjustable heights) that "makes it easier to scan your email threads and glean information." The folder pane has better recall of message thread states Improved theme compatibility. "Your Thunderbird should blend seamlessly with your desktop environment, matching the system's accent colors perfectly." (Especially beneficial on Ubuntu and Mint.) You can now customize the color of your account icon. The Thunderbird blog also mentions that "We plan to launch the first phase of built-in support for Exchange, as well as Mozilla Sync, in a future Nebula point release (e.g. Thunderbird 128.X)."

Read more of this story at Slashdot.

Long-time Slashdot reader schwit1 shared this report from non-profit libertarian law firm, the Institute for Justice: U.S. District Judge Rita Lin has permanently enjoined the California Bureau of Security and Investigative Services from enforcing its private-investigator licensing requirement against anti-spam entrepreneur Jay Fink. The order declares that forcing Jay to get a license to run his business is so irrational that it violates the Due Process Clause of the Fourteenth Amendment... Jay's business stems from California's anti-spam act, which allows individuals to sue spammers. But to sue, they have to first compile evidence. To do that, recipients often have to wade through thousands of emails. For more than a decade, Jay has offered a solution: he and his team will scour a client's junk folder and catalog the messages that likely violate the law. But last summer, Jay's job — and Californians' ability to bring spammers to justice — came to a screeching halt when the state told him he was a criminal. A regulator told Jay he needed a license to read through emails that might be used as evidence in a lawsuit. And because Jay didn't have a private investigator license, the state shut him down. The state of California has since "agreed to jointly petition the court for an order that forever prohibits it from enforcing its licensure law against Jay," according to the article. Otherwise the anti-spam crusader would've had to endure thousands of hours of private investigator training...

Read more of this story at Slashdot.

At the end of June, Apple's App Store rejected the Windows/retro PC emulator "UTM SE". But in a reversal Apple approved the app Saturday, reports the Verge. "We are happy to announce that UTM SE is available (for free) on iOS and visionOS App Store," the developer posted on X, "and coming soon to AltStore PAL." From the Verge: After Apple rejected the app in June, the developer said it wasn't going to keep trying because the app was "a subpar experience." Today, UTM thanked the AltStore team for helping it and credited another developer "whose QEMU TCTI implementation was pivotal for this JIT-less build." As with other emulators on the App Store, you can't do much with UTM SE out of the box. It doesn't come with any operating systems, though the app does link to UTM's site, which has guides for Windows XP through Windows 11 emulation, as well as downloads of pre-built virtual Linux machines. Mac OS 9.2.1 and DOS are listed in one screenshot from the UTM SE App Store page. Mac OS 9.2.1 and DOS are listed in one screenshot from the UTM SE App Store page.

Read more of this story at Slashdot.

An anonymous reader shared this report from ScienceAlert: NASA's Parker Solar Probe, tasked with taking a close-up look at the Sun's outer corona, has just equalled the record for the fastest-moving human-made object ever. The previous record holder? The Parker Solar Probe, again. The probe was recorded traveling at 635,266 kilometers (394,736 miles) per hour on June 29, the second time it's reached that speed since it launched in 2018. We're talking around 500 times faster than the speed of sound here. It's on course to get even faster too, with a top speed of around 692,000 kph (430,000 mph) expected when it makes its closest approach to the Sun in 2025. It's the probe's 20th approach to the sun, according to the article, with the probe using Venus "to create a sort of gravity-powered slingshot," according to the article. (NASA has created a nice interactive 3D model of the probe...) Besides collecting particle samples in 2021, "The probe is eventually going to get nice and close to the swirling mass of ultra-hot plasma surrounding the Sun, and take a wealth of different measurements to help improve our scientific understanding of it."

Read more of this story at Slashdot.

An anonymous reader shared this report from InfoWorld: Rust has leaped to its highest position ever in the monthly Tiobe index of language popularity, scaling to the 13th spot this month, with placement in the top 10 anticipated in an upcoming edition. Previously, Rust has never gone higher than 17th place in the Tiobe Programming Index. Tiobe CEO Paul Jansen attributed Rust's ascent in the just-released July index to a February 2024 U.S. White House report recommending Rust over C/C+ for safety reasons. He also credited the growing community and ecosystem support for the language. "Rust is finally moving up." The article adds that these rankings are based on "the number of skilled engineers worldwide, courses, and third-party vendors pertaining to languages, examining websites such as Google, Amazon, Wikipedia, and more than 20 others to determine the monthly numbers." Python C++ C Java C# JavaScript Go Visual Basic Fortran SQL Interestingly, Rust has just moved into the top ten on the rival rankings from the rival Pypl Popularity of Programming Language index (which according to the article "assesses how often languages are searched on in Google.") Python Java JavaScript C# C/C++ R PHP TypeScript Swift Rust

Read more of this story at Slashdot.

"A leading South Korean producer of electric vehicle batteries has declared itself in crisis," reports the Financial Times, "as its customers struggle with disappointing EV sales in Europe and the US." SK On, the world's fourth-largest EV battery maker behind Chinese giants CATL and BYD and South Korean rival LG Energy Solution, has recorded losses for 10 consecutive quarters since being spun off by its parent company in 2021. Its net debt has increased more than fivefold, from Won2.9tn ($2.1bn) to Won15.6tn over the same period, as western EV sales have fallen far short of its expectations. With losses snowballing, chief executive Lee Seok-hee announced a series of cost-cutting and working practice measures last Monday, describing them as a state of "emergency management". "We have our back against the wall," Lee wrote in a letter to employees. "We should all pull together." [...] Tim Bush, a Seoul-based battery analyst at UBS, said the South Korean battery makers had been "badly let down" by US car manufacturers, which he said had failed to produce EVs sufficiently attractive to mass market consumers to meet their own bullish sales projections. He noted that until as recently as last year, General Motors was forecasting it would sell 1 million EVs in 2025. It sold just 21,930 in the second quarter of this year. Bush tells the Financial Times that "the automakers didn't invest enough in producing high-quality affordable EVs." But he also tells the newspaper that a transition to EVs is still "inevitable". "As long as the wider SK Group continues to see SK On as a trophy asset and gives it the support it needs to weather the present storm, then its long-term future is likely to be assured." Thanks to long-time Slashdot reader schwit1 for sharing the article.

Read more of this story at Slashdot.

"In the largest public sector trial of the four-day week in Britain, fewer refuse collectors quit," reports the Guardian, "and there were faster planning decisions, more rapid benefits processing and quicker call answering, independent research has found." South Cambridgeshire district council's controversial experiment with a shorter working week resulted in improvements in performance in 11 out of 24 areas, little or no change in 11 areas and worsening of performance in two areas, according to analysis of productivity before and during the 15-month trial by academics at the universities of Cambridge and Salford... The multi-year study of the trial involving about 450 desk staff plus refuse collectors found: - Staff turnover fell by 39%, helping save £371,500 in a year, mostly on agency staff costs. - Regular household planning applications were decided about a week and a half earlier. - Approximately 15% more major planning application decisions were completed within the correct timescale, compared with before. - The time taken to process changes to housing benefit and council tax benefit claims fell.... Under the South Cambridgeshire trial, which began in January 2023 and ran to April 2024, staff were expected to carry out 100% of their work in 80% of the time for 100% of the pay. The full trial cut staff turnover by 39% and scores for employees' physical and mental health, motivation and commitment all improved, the study showed. "Coupled with the hundreds of thousands of pounds of taxpayer money that we have saved, improved recruitment and retention and positives around health and wellbeing, this brave and pioneering trial has clearly been a success," said John Williams, the lead council member for resources... Scores of private companies have already adopted the approach, with many finding it helps staff retention. Ryle said the South Cambridgeshire results "prove once and for all that a four-day week with no loss of pay absolutely can succeed in a local government setting". Thanks to long-time Slashdot reader AmiMoJo for sharing the article.

Read more of this story at Slashdot.

ewhac (Slashdot reader #5,844) writes: Friday the hardware review site Gamers Nexus filed a YouTube video report alleging some serious claims: that PC component manufacturer MSI left their internal warranty and RMA processing web site accessible to the open Internet, with no authentication. Virtually the entire history of MSI warranty claims going back to at least 2017 were searchable and accessible for the browsing, including customer names, email addresses, phone numbers, and serial numbers of MSI devices. This event follows closely on the heels of a video report just a few days earlier alleging PC component manufacturer Zotac left their warranty/RMA and B2B records server open to indexing by Google. Gamers Nexus posted their reports after informing Zotac and MSI of their open servers and verifying they were no longer accessible. However, the data from MSI's server could have been fully scraped at this point, giving scammers a gold mine of data permitting them to impersonate MSI personnel and defraud customers. Anyone who's filed a warranty or RMA claim with MSI in the past seven years should exercise caution when receiving unsolicited emails or phone calls purporting to be from MSI.

Read more of this story at Slashdot.

"Signal is finally tightening its desktop client's security," reports BleepingComputer — by changing the way it stores plain text encryption keys for the SQLite database where users' messages are stored: When BleepingComputer contacted Signal about the flaw in 2018, we never received a response. Instead, a Signal Support Manager responded to a user's concerns in the Signal forum, stating that the security of its database was never something it claimed to provide. "The database key was never intended to be a secret. At-rest encryption is not something that Signal Desktop is currently trying to provide or has ever claimed to provide," responded the Signal employee... [L]ast week, mobile security researchers Talal Haj Bakry and Tommy Mysk of Mysk Inc warned on X not to use Signal Desktop because of the same security weakness we reported on in 2018... In April, an independent developer, Tom Plant, created a request to merge code that uses Electron's SafeStorage API "...to opportunistically encrypt the key with platform APIs like DPAPI on Windows and Keychain on macOS," Plant explained in the merge request... When used, encryption keys are generated and stored using an operating system's cryptography system and secure key stores. For example, on Macs, the encryption key would be stored in the Keychain, and on Linux, it would use the windows manager's secret store, such as kwallet, kwallet5, kwallet6, and gnome-libsecret... While the solution would provide additional security for all Signal desktop users, the request lay dormant until last week's X drama. Two days ago, a Signal developer finally replied that they implemented support for Electron's safeStorage, which would be available soon in an upcoming Beta version. While the new safeStorage implementation is tested, Signal also included a fallback mechanism that allows the program to decrypt the database using the legacy database decryption key... Signal says that the legacy key will be removed once the new feature is tested. "To be fair to Signal, encrypting local databases without a user-supplied password is a problem for all applications..." the article acknowledges. "However, as a company that prides itself on its security and privacy, it was strange that the organization dismissed the issue and did not attempt to provide a solution..."

Read more of this story at Slashdot.

clovis (Slashdot reader #4,684) writes: Joe Engle received his astronaut wings in a ceremony on July 15, 1965, for his flight in the hypersonic aircraft, reaching an altitude of 50 miles above the Earth. At 32, he was the youngest man to become an astronaut. Later, he entered the Apollo program and eventually commanded the STS-2 flight of the Space Shuttle. Here is an interview from 2004. I thought it was interesting that they used the F-104 as the chase plane and for training because the flight characteristics were so similar, which says a lot about the F-104. Anyway, the X-15 project was a big deal for us science/geek types back when I was a kid. I wonder if it's something today's generation is even aware of.

Read more of this story at Slashdot.

Slashdot reader joshuark shared this report from BetaNews: Check Point Research has identified a critical zero-day spoofing attack exploiting Microsoft Internet Explorer on modern Windows 10/11 systems, despite the browser's retirement. Identified as CVE-2024-38112, this vulnerability allows attackers to execute remote code by tricking users into opening malicious Internet Shortcut (.url) files. This attack method has been active for over a year and could potentially impact millions... Attackers use a sophisticated trick to mask the malicious .hta extension, making use of the outdated security of Internet Explorer to compromise systems running updated Windows operating systems. From Check Point Research: Even though IE has been proclaimed "retired and out-of-support," technically speaking, IE is still part of the Windows OS and is "not inherently unsafe, as IE is still serviced for security vulnerabilities, and there should be no known exploitable security vulnerabilities," according to our communications with Microsoft.

Read more of this story at Slashdot.

TechSpot writes: Users of the Linksys Velop Pro 6E and 7 mesh routers should change their passwords and Wi-Fi network names through an external web browser. The two models transmit critical information to outside servers in an insecure manner upon initial installation. New patches have emerged since the issue was discovered, but Linksys hasn't publicly responded to the matter, and it is unclear if the latest firmware leaves sensitive data exposed to interception. The issue was discovered by Testaankoop, the Belgian equivalent of the Consumers' Association. And they warned Linksys back in November, according to the tech news site Stack Diary. (The practice could leave passwords and other information vulnerable to Man-in-the-Middle attacks.) Testaankoop suspects the security issue might stem from third-party software used in the Linksys firmware. However, they emphasize that this does not excuse the vulnerability. Thanks to long-time Slashdot reader schwit1 for sharing the news.

Read more of this story at Slashdot.

MuckRock is a U.S.-based 501(c)(3) non-profit collaborative news site to "request, analyze and share government documents," according to its web site. And long-time Slashdot reader schwit1 shared their report about a lecture by Admiral Grace Hopper: In a vault at the National Security Agency lies a historical treasure: two AMPEX 1-inch open reel tapes containing a landmark lecture by Admiral Grace Hopper, a giant in the field of computer science. Titled 'Future Possibilities: Data, Hardware, Software, and People,' this lecture, recorded on August 19, 1982, at the NSA's Fort Meade headquarters, and stored in the video archives of the National Cryptographic School, offers a rare glimpse into the mind of a pioneer who shaped the very fabric of technology. Yet this invaluable artifact remains inaccessible, trapped in an obsolete format that the NSA will not release, stating that the agency is unable to play it back. "NSA is not required to find or obtain new technology (outdated or current) in order to process a request," states the official response from the agency. But MuckRock adds that on June 25, "responding to a follow-up request, the NSA at least provided an image of the tape labels," leading MuckRock to complain that the NSA "is well-positioned to locate, borrow and use a working VTR machine to access Admiral Hopper's lectures... The NSA, with its history of navigating complex technological landscapes and decrypting matters of national significance, does not typically shy away from a challenge." The challenge of accessing these recordings is not just technical, but touches on broader issues around preserving technological heritage.... It is our shared obligation to safeguard such pivotal elements of our nationâ(TM)s history, ensuring they remain within reach of future generations. While the stewardship of these recordings may extend beyond the NSAâ(TM)s typical purview, they are undeniably a part of Americaâ(TM)s national heritage.

Read more of this story at Slashdot.

Slashdot reader Kirschey writes: The U.S. Customs and Border Protection determined that the redesigned Apple Watch models do not violate AliveCor's electrocardiogram patents, allowing them to be imported. This decision comes before a consolidated hearing at the Federal Circuit Court regarding the same patents. From the decision: We find that Apple Inc. ("Apple") has met its burden to show that certain redesigned wearable devices ("articles at issue") do not infringe one or more of claims 12, 13, and 19-23 of U.S. Patent No. 10,638,941 ("the '941 Patent") and claims 1, 3, 5, 8-10, 12, 15, and 16 of U.S. Patent No. 10,595,731 ("the '731 Patent). Thus, CBP's position is that the articles at issue are not subject to the limited exclusion order that the U.S. International Trade Commission ("Commission" or "ITC") issued in Investigation No. 337-TA-1266 ("the underlying investigation" or "the 1266 investigation"), pursuant to Section 337 of the Tariff Act of 1930, as amended, 19 U.S.C. 1337 ("Section 337").

Read more of this story at Slashdot.

A report from TechSpot: For home videographers and data hoarders who still rely on optical discs for archiving, some bad news just dropped: Sony is winding down production of recordable Blu-ray media... In an interview Sony gave to AV Watch recently, the company admitted it's going to "gradually end development and production" of recordable Blu-rays and other optical disc formats at its Tagajo City plants in Miyagi Prefecture, Japan. Essentially, 25GB BD-REs, 50GB BD-RE DLs, 100GB BD-RE XLs, or 128GB BD-R XLs will soon not be available to consumers. Professional discs for video production and optical archives for data storage are also being discontinued. Sony says it's pulling the plug because the cold storage market never really took off like they hoped, and the overall storage media business has been operating in the red for years... It's not all bad news, though. The commercial Blu-ray discs you buy movies and games on will still be produced, so there's no need to panic about the death of physical media just yet. Share your thoughts and reactions in the comments. (Long-time Slashdot reader storkus wonders if it's possible there are still other companies, possibly Chinese, that are still making the disks?)

Read more of this story at Slashdot.

"Intel's problems with unstable 13th-gen and 14th-gen high-end CPUs appear to run deeper than we thought," writes TechRadar, "and a new YouTube video diving into these gremlins will do little to calm any fears that buyers of Raptor Lake Core i9 processors (and its subsequent refresh) have." Level1Techs is the YouTuber in question, who has explored several avenues in an effort to make more sense of the crashing issues with these Intel processors that are affecting some PC gamers and making their lives a misery — more so in some cases than others. Data taken from game developer crash logs — from two different games — clearly indicates a high prevalence of crashes with the mentioned more recent Intel Core i9 chips (13900K and 14900K). In fact, for one particular type of error (decompression, a commonly performed operation in games), there was a total of 1,584 that occurred in the databases Level1Techs sifted through, and an alarming 1,431 of those happened with a 13900K or 14900K. Yes — that's 90% of those decompression errors hitting just two specific CPUs. As for other processors, the third most prevalent was an old Intel Core i7 9750H (Coffee Lake laptop CPU) — which had a grand total of 11 instances. All AMD processors in total had just 4 occurrences of decompression errors in these game databases. "In case you were thinking that AMD chips might be really underrepresented here, hence that very low figure, well, they're not — 30% of the CPUs in the database were from Team Red..." "The YouTuber also brings up another point here: namely that data centers are noticing these issues with Core i9s." More details at Digital Trends... And long-time Slashdot reader UnknowingFool wrote a summary of the video's claims here.

Read more of this story at Slashdot.

Remember those researchers who spent years training AI tools to analyze the reviews drivers left on the smartphone apps where they pay for EV charging? There was one more unexpected finding. "Rideshare drivers who work for companies such as Uber are increasingly turning to electric vehicles to reduce fuel costs." That trend is boosting demand for conveniently located, publicly accessible EV chargers... "They are mostly relying on public chargers for their daily Uber needs, usually every day or every couple of days, which dramatically increases electric vehicle miles traveled," [climate fellow Omar Asensio told the Institute's blog], explaining that many drivers live in apartments that lack garages or space for a residential EV charger. Uber CEO Dara Khosrowshahi considers the issue so pressing he urged U.S. policymakers to accelerate plans to improve the nation's EV charging infrastructure in a Fast Co. op-ed in January — during the World Economic Forum in Davos, when media messaging can influence policymakers. Independent Uber drivers, Khosrowshahi said, are converting to electric vehicles seven times faster than the general public and they tend to be disproportionately from low- and middle-income households that need access to public charging stations. "Charging infrastructure must be more equitable," Khosrowshahi wrote. "Many drivers don't have driveways or garages, so access to nearby overnight charging is essential. Yet our data shows us that Uber drivers often live in neighborhoods lacking this infrastructure. These 'charging deserts' hold countless people back from making the switch."

Read more of this story at Slashdot.

"Russia has finally admitted that American astronauts did, in fact, land on the moon," reports Newsweek: Head of Russian Space Corporation Roscosmos, Yuri Borisov, accepted the truth of the U.S. putting a man on the moon in an address to the State Duma, Intellinews has reported. "As for whether the Americans were on the Moon or not, I have one fact to share," he was reported to have said. "I was personally interested in this matter. At one time, they provided us with a portion of the lunar soil that the astronauts brought back during their expedition." Previous polling revealed that just under half of Russians believe America's 1969 moon landing was a government hoax. However, Borisov said that tests performed on the samples by the Russian Academy of Scientists confirmed their authenticity.

Read more of this story at Slashdot.

"Many bike riders are hopeful about a world of robot drivers that never experience road rage or get distracted by their phones," reports the Washington Post. "But some resent being guinea pigs for driverless vehicles that veer into bike lanes, suddenly stop short and confuse cyclists trying to navigate around them. "In more than a dozen complaints submitted to the DMV, cyclists describe upsetting near misses and close calls... " Of the nearly 200 California DMV complaints analyzed by The Post, about 60 percent involved Cruise vehicles; the rest mostly involved Waymo. About a third describe erratic or reckless driving, while another third document near misses with pedestrians. The remainder involve reports of autonomous cars blocking traffic and disobeying road markings or traffic signals... Only 17 complaints involved bicyclists or bike lane disruptions. But interviews with cyclists suggest the DMV complaints represent a fraction of bikers' negative interactions with self-driving vehicles. And while most of the complaints describe relatively minor incidents, they raise questions about corporate boasts that the cars are safer than human drivers, said Christopher White, executive director of the San Francisco Bike Coalition... Robot cars could one day make roads safer, White said, "but we don't yet see the tech fully living up to the promise. ... The companies are talking about it as a much safer alternative to people driving. If that's the promise that they're making, then they have to live up to it...." Many bicycle safety advocates support the mission of autonomous vehicles, optimistic the technology will cut injuries and deaths. They are quick to point out the carnage associated with human-driven cars: There were 2,520 collisions in San Francisco involving at least one cyclist from 2017 to 2022, according to state data analyzed by local law firm Walkup, Melodia, Kelly & Schoenberger. In those crashes, 10 cyclists died and another 243 riders were severely injured, the law firm found. Nationally, there were 1,105 cyclists killed by drivers in 2022, according to NHTSA, the highest on record... Meanwhile, the fraction of complaints to the DMV related to bicycles demonstrates the shaky relationship between self-driving cars and cyclists. In April 2023, a Waymo edged into a crosswalk, confusing a cyclist and causing him to crash and fracture his elbow, according to the complaint filed by the cyclist. Then, in August — days after the state approved an expansion of these vehicles — a Cruise car allegedly made a right turn that cut off a cyclist. The rider attempted to stop but then flipped over their bike. "It clearly didn't react or see me!" the complaint said. Even if self-driving cars are proven to be safer than human drivers, they should still receive extra scrutiny and aren't the only way to make roads safer, several cyclists said. Thanks to Slashdot reader echo123 for sharing the article.

Read more of this story at Slashdot.

Its FOSS writes: When it comes to Linux, we get to see some really cool, and sometimes quirky projects (read Hannah Montana Linux) that try to show off what's possible, and that's not a bad thing. One such quirky undertaking has recently surfaced, which sees a sophomore trying to one-up their friend, who had booted Linux off NFS. With their work, they have been able to run Arch Linux on Google Drive. Their ultimate idea included FUSE (which allows running file-system code in userspace). The developer's blog post explains that when Linux boots, "the kernel unpacks a temporary filesystem into RAM which has the tools to mount the real filesystem... it's very helpful! We can mount a FUSE filesystem in that step and boot normally.... " Thankfully, Dracut makes it easy enough to build a custom initramfs... I decide to build this on top of Arch Linux because it's relatively lightweight and I'm familiar with how it work." Doing testing in an Amazon S3 container, they built an EFI image — then spent days trying to enable networking... And the adventure continues. ("Would it be possible to manually switch the root without a specialized system call? What if I just chroot?") After they'd made a few more tweaks, "I sit there, in front of my computer, staring. It can't have been that easy, can it? Surely, this is a profane act, and the spirit of Dennis Ritchie ought't've stopped me, right? Nobody stopped me, so I kept going..." I build the unified EFI file, throw it on a USB drive under /BOOT/EFI, and stick it in my old server... This is my magnum opus. My Great Work. This is the mark I will leave on this planet long after I am gone: The Cloud Native Computer. Despite how silly this project is, there are a few less-silly uses I can think of, like booting Linux off of SSH, or perhaps booting Linux off of a Git repository and tracking every change in Git using gitfs. The possibilities are endless, despite the middling usefulness. If there is anything I know about technology, it's that moving everything to The Cloud is the current trend. As such, I am prepared to commercialize this for any company wishing to leave their unreliable hardware storage behind and move entirely to The Cloud. Please request a quote if you are interested in True Cloud Native Computing. Unfortunately, I don't know what to do next with this. Maybe I should install Nix?

Read more of this story at Slashdot.

An anonymous reader shared this report from the BBC: On 21 June, Barcelona mayor Jaume Collboni announced plans to ban short term rentals in the city starting in November 2028. The decision is designed to solve what Collboni described as "Barcelona's biggest problem" — the housing crisis that has seen residents and workers priced out of the market — by returning the 10,000 apartments currently listed as short-term rentals on Airbnb and other platforms into the housing market... It's all part of a wider theme: around the world. Airbnb — which dominates the short-term rental market with more than 50% of all online bookings — and others, including VRBO, Booking.com and Expedia.com, are being scrutinised at the same time as questions are being asked about who tourism is for, and where the balance lies between benefits for tourists and locals alike... Recent years have seen a backlash against the brand, which is blamed for pushing up housing prices and affecting locals who feel they have been forced to live next door to unregulated hotels... The question is: does banning or restricting short-term rentals actually reduce housing prices or affect housing stock? Harvard Business Review's study on the impact of the New York City ban, published earlier this year, concluded that in this case, short term rentals are not the biggest contributor to high rents, and that regulations, rather than bans, would offer better benefits to the city and locals alike. One clear result from the city's ban has been that hotel room rates have hiked to a record average of $300 per night. So why are tourism authorities and city councils doing it? Perhaps the real reason is that it's not just about the numbers, it's about how local people feel about tourism... Successful on paper or not, these bans send a signal to local people that politicians are listening to their concerns and will prioritise them over tourists. There is an alternative to outright bans, though. Many destinations, including Berlin, restrict owner-occupiers to a 90-day maximum rental period over a year, effectively allowing part-time hosts to continue to make a supplementary income while preventing professional hosts from buying up housing stock and turning it into full-time short-term rentals. The issue for all countries moving in this direction, including the UK, which proposes something similar, is about regulation. How do you do it and how much extra does it cost to do so?

Read more of this story at Slashdot.

"China may be the world's second-largest economy," writes Fortune's news editor, "but when it comes to startup funding, the U.K. is punching above its weight." Startups in the U.K. raised $6.7 billion in funding during the first half of 2024, helping dethrone China and propelling the U.K. to second place globally for funds raised, according to a new report. Crucial to the U.K.'s success were a dozen funding rounds worth over $100 million each, including those of digital bank Monzo ($620 million), lender Abound ($862 million), and automated driving startup Wayve ($1.05 billion). While the overall U.K. figure was down 2% year on year, according to data from global market intelligence platform Tracxn, it remained more robust than that of China, whose funding sat at $6.1 billion in H1 2024, helping the U.K. move into the No. 2 spot globally. The win is a milestone for the U.K. tech sector, which has remained under pressure owing to a string of challenges, including Brexit, COVID-19, and the subsequent global economic slowdown. Only the U.S. saw startups raise more capital in H1, with a combined $54.8 billion raised across some 2,654 funding rounds in the first half of the year. The article's last line? "With the arrival of new U.K. Prime Minister Keir Starmer, many will be hoping that the first Labour government in 14 years will continue to support the U.K.'s position as a critical player in the global tech landscape."

Read more of this story at Slashdot.

Linux's vDSO (or virtual dynamic shared object) is "a small shared library that the kernel automatically maps into the address space of all user-space applications," according to its man page. "There are some system calls the kernel provides that user-space code ends up using frequently, to the point that such calls can dominate overall performance... due both to the frequency of the call as well as the context-switch overhead that results from exiting user space and entering the kernel." But Linus Torvalds had a lot to say about a proposed getrandom() upgrade, reports Phoronix: This getrandom() work in the vDSO has been through 20+ rounds of review over the past 2+ years, but... Torvalds took some time out of his U.S. Independence Day to argue the merits of the patches on the Linux kernel mailing list. Torvalds kicked things off by writing: Nobody has explained to me what has changed since your last vdso getrandom, and I'm not planning on pulling it unless that fundamental flaw is fixed. Why is this _so_ critical that it needs a vdso? Why isn't user space just doing it itself? What's so magical about this all? This all seems entirely pointless to me still, because it's optimizing something that nobody seems to care about, adding new VM infrastructure, new magic system calls, yadda yadda. I was very sceptical last time, and absolutely _nothing_ has changed. Not a peep on why it's now suddenly so hugely important again. We don't add stuff "just because we can". We need to have a damn good reason for it. And I still don't see the reason, and I haven't seen anybody even trying to explain the reason. And then he responded to himself, adding: In other words, I want to see actual *users* piping up and saying "this is a problem, here's my real load that spends 10% of time on getrandom(), and this fixes it". I'm not AT ALL interested in microbenchmarks or theoretical "if users need high-performance random numbers". I need a real actual live user that says "I can't just use rdrand and my own chacha mixing on top" and explains why having a SSE2 chachacha in kernel code exposed as a vdso is so critical, and a magical buffer maintained by the kernel." Torvalds also added in a third message: One final note: the reason I'm so negative about this all is that the random number subsystem has such an absolutely _horrendous_ history of two main conflicting issues: people wanting reasonable usable random numbers on one side, and then the people that discuss what the word "entropy" means on the other side. And honestly, I don't want the kernel stuck even *more* in the middle of that morass.... Torvalds made additional comments. ("This smells. It's BS...") Advocating for the change was WiredGuard developer Jason Donenfeld, and more communication happened (and continues to happen... 40 messages and counting). At one point the discussion evolved to Torvalds saying "Bah. I guess I'll have to walk through the patch series once again. I'm still not thrilled about it. But I'll give it another go..."

Read more of this story at Slashdot.

As Amazon's stock hits a record high (rising 32% just this year), long-time Slashdot reader theodp writes: GeekWire reports that Jeff Bezos keeps selling Amazon stock after announcing his move away from Washington state — and its 7% tax on capital gains of more than $262,000 from the sale of stocks and bonds — to Florida, which does not have a capital gains tax (like WA, FL also does not tax personal income). Taylor Soper writes, "Bezos saved more than $600 million by moving to Miami and avoiding Washington's capital gains tax, CNBC reported in February, based on his sale of 50 million shares [$8.5 billion] earlier this year. With the sale of 25 million additional shares [$5 billion], revealed this week in a regulatory filing, Bezos will likely have saved close to $1 billion in total so far. It's a giant chunk of change that would have otherwise gone to the state of Washington."

Read more of this story at Slashdot.

Workers at delivery company Shipt "found that their paychecks had become...unpredictable," according to an article in IEEE Spectrum. "They were doing the same work they'd always done, yet their paychecks were often less than they expected. And they didn't know why...." The article notes that "Companies whose business models rely on gig workers have an interest in keeping their algorithms opaque." But "The workers showed that it's possible to fight back against the opaque authority of algorithms, creating transparency despite a corporation's wishes." On Facebook and Reddit, workers compared notes. Previously, they'd known what to expect from their pay because Shipt had a formula: It gave workers a base pay of $5 per delivery plus 7.5 percent of the total amount of the customer's order through the app. That formula allowed workers to look at order amounts and choose jobs that were worth their time. But Shipt had changed the payment rules without alerting workers. When the company finally issued a press release about the change, it revealed only that the new pay algorithm paid workers based on "effort," which included factors like the order amount, the estimated amount of time required for shopping, and the mileage driven. The company claimed this new approach was fairer to workers and that it better matched the pay to the labor required for an order. Many workers, however, just saw their paychecks dwindling. And since Shipt didn't release detailed information about the algorithm, it was essentially a black box that the workers couldn't see inside. The workers could have quietly accepted their fate, or sought employment elsewhere. Instead, they banded together, gathering data and forming partnerships with researchers and organizations to help them make sense of their pay data. I'm a data scientist; I was drawn into the campaign in the summer of 2020, and I proceeded to build an SMS-based tool — the Shopper Transparency Calculator [written in Python, using optical character recognition and Twilio, and running on a home server] — to collect and analyze the data. With the help of that tool, the organized workers and their supporters essentially audited the algorithm and found that it had given 40 percent of workers substantial pay cuts... This "information asymmetry" helps companies better control their workforces — they set the terms without divulging details, and workers' only choice is whether or not to accept those terms... There's no technical reason why these algorithms need to be black boxes; the real reason is to maintain the power structure... In a fairer world where workers have basic data rights and regulations require companies to disclose information about the AI systems they use in the workplace, this transparency would be available to workers by default. The tool's creator was attracted to the idea of helping a community "control and leverage their own data," and ultimately received more than 5,600 screenshots from over 200 workers. 40% were earning at least 10% less — and about 33% were earning less than their state's minimum wage. Interestingly, "Sharing data about their work was technically against the company's terms of service; astoundingly, workers — including gig workers who are classified as 'independent contractors' — often don't have rights to their own data... "[O]ur experiment served as an example for other gig workers who want to use data to organize, and it raised awareness about the downsides of algorithmic management. What's needed is wholesale changes to platforms' business models... The battles that gig workers are fighting are the leading front in the larger war for workplace rights, which will affect all of us. The time to define the terms of our relationship with algorithms is right now." Thanks to long-time Slashdot reader mspohr for sharing the article.

Read more of this story at Slashdot.

At one point on Friday the entire cryptocurrency market shed more than $170 billion in capitalization within 24 hours, CNBC reported (citing data from CoinGecko). "Cryptocurrencies plunged... as investors focused on the payout of nearly $9 billion to users of collapsed bitcoin exchange Mt. Gox." This dumping of coins onto the market is expected to lead to some significant selling action. The slump in crypto prices led to hefty liquidations in the derivatives markets, according to crypto data firm Coinglass, which suggests that 229,755 traders had their positions worth a combined $639.58 million liquidated [within 24 hours]. Of this sum, $540.46 million represented long trades — financial positions taken when an investor expects the price of an asset to appreciate over the long term. Also pressuring crypto markets, the German government on Thursday sold roughly 3,000 bitcoins — worth approximately $175 million as of today's prices — from a 50,000-bitcoin pile seized in connection with the movie piracy operation Movie2k, according to Arkham Intelligence.... Tom Lee, co-founder and head of research at Fundstrat Global Advisors, told CNBC's "Squawk Box" on Monday that he still sees bitcoin hitting $150,000 despite the "overhang" from Mt. Gox's upcoming disbursement of tokens to creditors. Wired focuses on how "After a 10-Year Wait, Mt. Gox Bitcoin Is Finally Being Returned": In a highly atypical turn of events, Mt. Gox customers actually stand to profit financially from their involvement in the bankruptcy. Because only a limited amount of bitcoin was recovered, customers will receive only roughly 15 percent of the bitcoin they held on the exchange. However, the hundredfold increase in price in the intervening period means the dollar-value of the coins will far exceed the worth of their original pile.

Read more of this story at Slashdot.

An anonymous reader shared this report from NPR: A teenage computer whiz who used the early-aughts internet to spread awareness of the Catholic faith will become the church's first millennial saint. Carlo Acutis, who died of leukemia at age 15 in 2006, is already referred to as "God's influencer" and the "patron saint of the internet" for his work cataloging Eucharistic miracles around the world — and soon it will be official. Pope Francis and a group of cardinals approved Acutis for canonization at a meeting at the Vatican on Monday, Vatican News announced. It says he will likely be proclaimed a saint at some point in 2025, during the church's jubilee year. Acutis was a devout Catholic who taught himself programming from an early age and created websites with a spiritual focus, including his widely praised database of miracles. He is credited with helping homeless people and defending victims of bullying during his lifetime, and having a hand in two healing miracles after his death — the requisite number for all Catholic saints. Monday's approval clears the final hurdle in a multiyear process, which began in 2013 when the pope approved the cause for his beatification and canonization and named him "a Servant of God...." Acutis also loved playing video games — CNN cited Halo, Super Mario and Pokémon among his favorites — though limited himself to one hour a week.

Read more of this story at Slashdot.

"After sixteen years since the introduction of Python 3, the Fedora project announces that Python 2.7, the last of the Python 2 series, will be retired," according to long-time Slashdot reader slack_justyb. From the announcement on the Fedora changes page: The python2.7 package will be retired without replacement from Fedora Linux 41. There will be no Python 2 in Fedora 41+ other than PyPy. Packages requiring python2.7 on runtime or buildtime will have to deal with the retirement or be retired as well. "This also comes with the announcement that GIMP 3 will be coming to Fedora 41 to remove any last Python 2 dependencies," adds slack_justyb. GIMP 2 was originally released on March 23, 2004. GIMP will be updated to GIMP 3 with Python 3 support. Python 2 dependencies of GIMP will be retired. Python 2's end of life was originally 2015, but was extended to 2020. The Python maintainers close with this: The Python maintainers will no longer regularly backport security fixes to Python 2.7 in RHEL, due to the the end of maintenance of RHEL 7 and the retirement of the Python 2.7 application stream in RHEL 8. We provided this obsolete package for 5 years beyond its retirement date and will continue to provide it until Fedora 40 goes end of life. Enough has been enough.

Read more of this story at Slashdot.

Harvard Business School has an "Institute for Business in Global Society" that explores the societal impacts of business. And they've recently published some new AI-powered research about EV charging infrastructure, according to the Institute's blog, conducted by climate fellow Omar Asensio. "Asensio and his team, supported by Microsoft and National Science Foundation awards, spent years building models and training AI tools to extract insights and make predictions," using the reviews drivers left (in more than 72 languages) on the smartphone apps drivers use to pay for charging. And ultimately this research identified "a significant obstacle to increasing electric vehicle (EV) sales and decreasing carbon emissions in the United States: owners' deep frustration with the state of charging infrastructure, including unreliability, erratic pricing, and lack of charging locations..." [C]harging stations in the U.S. have an average reliability score of only 78%, meaning that about one in five don't work. They are, on average, less reliable than regular gas stations, Asensio said. "Imagine if you go to a traditional gas station and two out of 10 times the pumps are out of order," he said. "Consumers would revolt...." EV drivers often find broken equipment, making charging unreliable at best and simply not as easy as the old way of topping off a tank of gas. The reason? "No one's maintaining these stations," Asensio said. One problem? Another blog post by the Institute notes that America's approach to public charging has differed sharply from those in other countries: In Europe and Asia, governments started making major investments in public charging infrastructure years ago. In America, the initial thinking was that private companies would fill the public's need by spending money to install charging stations at hotels, shopping malls and other public venues. But that decentralized approach failed to meet demand and the Biden administration is now investing heavily to grow the charging network and facilitate EV sales... "No single market actor has sufficient incentive to build out a national charging network at a pace that meets our climate goals," the report declared. Citing research and the experience of other countries, it noted that "policies that increase access to charging stations may be among the best policies to increase EV sales." But the U.S. is far behind other countries. Thanks to Slashdot reader NoWayNoShapeNoForm for sharing the article.

Read more of this story at Slashdot.