Stories
Slash Boxes
Comments

SoylentNews is people

SoylentNews is powered by your submissions, so send in your scoop. Only 15 submissions in the queue.

Log In

Log In

Create Account  |  Retrieve Password

Gift a Subscription
Why Gift

Site News

Join our Folding@Home team:
Main F@H site
Our team page

Funding Goal
For 6-month period:
2022-07-01 to 2022-12-31
 (All amounts are estimated)
Base Goal:
$3500.00
Currently:
$438.92
12.5%

Covers transactions:
2022-07-02 10:17:28 ..
2022-10-05 12:33:58 UTC
(SPIDs: [1838..1866])
Last Update:
2022-10-05 14:04:11 UTC --fnord666

Support us: Subscribe Here
and buy SoylentNews Swag

We always have a place for talented people, visit the Get Involved section on the wiki to see how you can make SoylentNews better.

Idiosyncratic use of punctuation - which of these annoys you the most?

  • Declarations and assignments that end with }; (C, C++, Javascript, etc.)
  • (Parenthesis (pile-ups (at (the (end (of (Lisp (code))))))))
  • Syntactically-significant whitespace (Python, Ruby, Haskell...)
  • Perl sigils: @array, $array[index], %hash, $hash{key}
  • Unnecessary sigils, like $variable in PHP
  • macro!() in Rust
  • Do you have any idea how much I spent on this Space Cadet keyboard, you insensitive clod?!
  • Something even worse...

[ Results | Polls ]
Comments:64 | Votes:115

Researchers Find Deliberate Backdoor in Police Radio Encryption Algorithm

posted by requerdanos on Monday July 31 2023, @10:46PM   Printer-friendly
from the I'll-be-your-backdoor-man dept.
Security

upstart writes:

Vendors knew all about it, but most customers were clueless:

For more than 25 years, a technology used for critical data and voice radio communications around the world has been shrouded in secrecy to prevent anyone from closely scrutinizing its security properties for vulnerabilities. But now it's finally getting a public airing thanks to a small group of researchers in the Netherlands who got their hands on its viscera and found serious flaws, including a deliberate backdoor.

The backdoor, known for years by vendors that sold the technology but not necessarily by customers, exists in an encryption algorithm baked into radios sold for commercial use in critical infrastructure. It's used to transmit encrypted data and commands in pipelines, railways, the electric grid, mass transit, and freight trains. It would allow someone to snoop on communications to learn how a system works, then potentially send commands to the radios that could trigger blackouts, halt gas pipeline flows, or reroute trains.

Researchers found a second vulnerability in a different part of the same radio technology that is used in more specialized systems sold exclusively to police forces, prison personnel, military, intelligence agencies, and emergency services, such as the C2000 communication system used by Dutch police, fire brigades, ambulance services, and Ministry of Defense for mission-critical voice and data communications. The flaw would let someone decrypt encrypted voice and data communications and send fraudulent messages to spread misinformation or redirect personnel and forces during critical times.

Three Dutch security analysts discovered the vulnerabilities—five in total—in a European radio standard called TETRA (Terrestrial Trunked Radio), which is used in radios made by Motorola, Damm, Hytera, and others. The standard has been used in radios since the '90s, but the flaws remained unknown because encryption algorithms used in TETRA were kept secret until now.

[...] The researchers say anyone using radio technologies should check with their manufacturer to determine if their devices are using TETRA and what fixes or mitigations are available.

Original Submission

Robots and Rights: Confucianism Offers Alternative

posted by requerdanos on Monday July 31 2023, @06:02PM   Printer-friendly
Science

hubie writes:

Robots and Rights: Confucianism Offers Alternative:

Philosophers and legal scholars have explored significant aspects of the moral and legal status of robots, with some advocating for giving robots rights. As robots assume more roles in the world, a new analysis reviewed research on robot rights, concluding that granting rights to robots is a bad idea. Instead, the article looks to Confucianism to offer an alternative.

[...] "People are worried about the risks of granting rights to robots," notes Tae Wan Kim, Associate Professor of Business Ethics at CMU's Tepper School of Business, who conducted the analysis. "Granting rights is not the only way to address the moral status of robots: Envisioning robots as rites bearers—not [as] rights bearers—could work better."

[...] Although many believe that respecting robots should lead to granting them rights, Kim argues for a different approach. Confucianism, an ancient Chinese belief system, focuses on the social value of achieving harmony; individuals are made distinctively human by their ability to conceive of interests not purely in terms of personal self-interest, but in terms that include a relational and a communal self. This, in turn, requires a unique perspective on rites, with people enhancing themselves morally by participating in proper rituals.

When considering robots, Kim suggests that the Confucian alternative of assigning rites—or what he calls role obligations—to robots is more appropriate than giving robots rights. The concept of rights is often adversarial and competitive, and potential conflict between humans and robots is concerning.

"Assigning role obligations to robots encourages teamwork, which triggers an understanding that fulfilling those obligations should be done harmoniously," explains Kim. "Artificial intelligence (AI) imitates human intelligence, so for robots to develop as rites bearers, they must be powered by a type of AI that can imitate humans' capacity to recognize and execute team activities—and a machine can learn that ability in various ways."

Kim acknowledges that some will question why robots should be treated respectfully in the first place. "To the extent that we make robots in our image, if we don't treat them well, as entities capable of participating in rites, we degrade ourselves," he suggests.

Journal Reference:
Tae Wan Kim, Alan Strudler, Should Robots Have Rights or Rites? [open], CACM, June 2023, Vol. 66 No. 6, Pages 78-85 doi: 10.1145/3571721

Original Submission

ESA Awards Contract for Demo of Plane-tracking Satellites

posted by hubie on Monday July 31 2023, @01:19PM   Printer-friendly
News

upstart writes:

ESA awards contract for demo of plane-tracking satellites:

The European Space Agency (ESA) has awarded a contract to a US company to create a technology demonstrator for a proposed aircraft monitoring system using low Earth orbit satellites.

Spire Global, headquartered in San Francisco, won the €16 million ($17.6 million) agreement for the EURIALO project, which aims to prove that a satellite-based system can monitor aircraft in flight for air traffic management purposes, without relying on any existing systems.

[...] The EURIALO project intends to demonstrate the viability of using satellites to track aircraft by determining in real time the aircraft position based on timing the arrival of radio signals detected by multiple satellites, a technique known as multilateration. The radio signals in this case will be standard telecoms radio signals already routinely broadcast by aircraft.

Current monitoring systems largely rely on self-reported positions of aircraft, which are typically obtained from satellite navigation systems. The objective of EURIALO is to provide a complementary tracking system that can feed location data to existing air navigation service providers for integration into their services.

Ultimately, this could help track planes in real time from takeoff to landing anywhere in the world and could more speedily locate aircraft in the event of an emergency. It isn't clear whether such a system would have helped in the infamous case of Malaysia Airlines flight 370, which went missing in 2014, as the aircraft's transponder was apparently switched off mid-flight, as was the Aircraft Communication Addressing and Reporting System (ACARS).

Under the terms of the contract, Spire will develop a design for an operational satellite constellation then deploy and operate a demonstrator mission that proves the performance of the service. It will head up a consortium of other companies as part of the project, including European Satellite Services Provider (ESSP), which was founded by seven air navigation service providers and is based in Toulouse, France.

Original Submission

What’s Next for the Moon

posted by hubie on Monday July 31 2023, @08:34AM   Printer-friendly
News

upstart writes:

Robots—and then humans—are going back to the lunar surface. Here's what they'll be doing:

We're going back to the moon. And back. And back. And back again.

It's been more than 50 years since humans last walked on the lunar surface, but starting this year, an array of missions from private companies and national space agencies plan to take us back, sending everything from small robotic probes to full-fledged human landers.

The ultimate goal? Getting humans living and working on the moon, and then using it as a way station for possible later missions into deep space.

More than a dozen robotic vehicles are scheduled to land on the moon in the 2020s.

[...] These private companies are backed by millions of dollars in government money, driven by NASA's desire to return humans to the moon as part of its Artemis program. NASA wants to expand commercial moon activity in the same way it has helped fund commercial activity in Earth orbit with companies such as SpaceX.

"The goal is we return to the moon, open up a lunar economy, and continue exploring to Mars," says Nujoud Merancy, chief of NASA's Exploration Mission Planning Office at the Johnson Space Center in Texa. The ultimate plan, Merancy says, is to foster a "permanent settlement on the moon."

Not all are convinced, especially when it comes to how companies will make money on lunar missions outside of funding from NASA. "What is the GDP of lunar activities?" says Sinead O'Sullivan, a former senior researcher at Harvard Business School's Institute for Strategy and Competitiveness. "Some commercial economy may evolve, but it's kind of hard to tell."

In November 2024, if all goes to plan, the Artemis II mission will send a crew of four astronauts—three American and one Canadian—around the moon on a 10-day mission in NASA's Orion spacecraft, launched by the agency's mighty new Space Launch System rocket.

Humans have not traveled to the moon since Apollo 17 in 1972. The goal, however, is "not just returning, but staying and exploring," says Merancy. Artemis II "is really ensuring that the vehicles are ready for longer-duration missions in the future."

[...] But the goal "isn't just Mars," says Teasel Muir-Harmony, a curator at the National Air and Space Museum in Washington, DC. "It's learning how to live and work in deep space and creating a sustained presence further than Earth orbit."

International laws will need to be updated to cope with this uptick in lunar activity. At the moment, such activities are largely governed by the Outer Space Treaty, signed in 1967, but many of its particulars are vague.

"We are getting into areas like private space platforms and lunar mining facilities, for which there really is no clear government precedent," says Scott Pace, a space policy expert at George Washington University and former executive secretary of the National Space Council in the US. "We have to be responsible for activities in space."

[...] Lunar missions could come thick and fast while these discussions take place, potentially moving us into a new dawn of space travel. "With the International Space Station, we learned how to live and work in low Earth orbit," says Muir-Harmony. "Now there's this opportunity to learn how to do that on another celestial body, and then travel to Mars—and perhaps other locations."

Original Submission

Intel Could Increase the Price of its CPUs to Help Pay for Fabs, Restructuring

posted by hubie on Monday July 31 2023, @03:45AM   Printer-friendly
Hardware

upstart writes:

Does Intel need the money?

Rumor mill: If you're considering buying an Intel CPU, it might be a good idea to splash out sooner rather than later as they could get a price hike. The claim comes from a new report that states Team Blue is increasing the price of all its Core lineup to help fund new fabs and restructure the company.

Rumors that Intel's Core line is set for a price raise come from German outlet PCGamesHardware. A reader contacted two German wholesalers who reportedly confirmed a letter revealing the hike.

According to the letter, all Core processors that are currently on sale or in production will become more expensive. That covers the Alder Lake (12xxx), Raptor Lake (13xxx), and Raptor Lake Refresh CPUs. It also includes the upcoming Meteor Lake processors that will be the first to drop the "i" and use the Core Ultra branding.

According to the letter, the price increases are related to current and future Intel factories that have to be refinanced. It also states that the company is restructuring.

[...] It was only in January when Intel implemented the last CPU price hike, an estimated 10% rise on the Alder Lake chips' MSRP. It seems quite soon for another rise, but it sounds like Intel could use the money.

Original Submission

Ivanti Rushes to Patch Zero-day Used to Breach Norway's Government

posted by requerdanos on Sunday July 30 2023, @10:58PM   Printer-friendly
from the 10-out-of-10 dept.
Security

upstart writes:

Ivanti rushes to patch zero-day used to breach Norway's government:

Hackers exploited a zero-day flaw in Ivanti's mobile endpoint management software to compromise a dozen Norwegian government agencies — and thousands of other organizations could also be at risk.

The Norwegian Security and Service Organization (DSS) said in a statement on Monday that a "data attack" had struck the IT platform used by 12 government ministries.

[...] The DSS said the attack was the result of a "previously unknown vulnerability in the software of one of our suppliers," but didn't share any further details. However, the Norwegian National Security Authority (NSM) later confirmed that hackers had leveraged the previously undiscovered flaw in Ivanti Endpoint Manager Mobile (EPMM; formerly MobileIron Core), to compromise Norwegian government agencies.

[...] Ivanti's EPMM allows authorized users and devices to access a corporate or government network. The vulnerability, tracked as CVE-2023-35078, is an authentication bypass flaw that affects all supported versions of Ivanti's EPMM software, along with older and unsupported releases. If exploited, the vulnerability allows anyone over the internet to remotely access the software — without needing credentials — to access users' personal information, such as names, phone numbers, and other mobile device details for users on a vulnerable system, as well as make changes to the impacted server.

[...] In a statement to TechCrunch, Ivanti chief security officer Daniel Spicer said that after the company became aware of the vulnerability, it "immediately developed and released a patch and are actively engaging with customers to help them apply the fix," adding that "we are upholding our commitment to deliver and maintain secure products, while practicing responsible disclosure protocols."

However, Ivanti initially kept details of the flaw — which has been given a maximum vulnerability severity rating out 10 out of 10 — behind a paywall, and reportedly asked potentially impacted customers to sign a non-disclosure agreement before sharing details. At the time of writing, Ivanti's Knowledge Base article about the vulnerability still requires users to login before viewing. [Note: Now viewable. -Ed.]

[...] As noted by cybersecurity researcher Kevin Beaumont, the vast majority of impacted organizations — a list which includes numerous U.S. and U.K. government departments — have not yet patched.

Original Submission

Meta: These are the Times that Try Men's Souls

posted by AudioGuy on Sunday July 30 2023, @06:30PM   Printer-friendly
Soylent

Greetings, Soylentils!

I am told by those who know, that 75% of the posters here are still from the original group of people that formed the community when we left Slashdot and created Soylent News. So some of you may remember me (Audioguy, #25) from that time.

Newer people may not know me, as I tend to be pretty quiet most of the time. Mostly I just read the news articles, and quietly do bits of sysadmin work in the background to keep the site up.

Only when I feel the core values of our community project are in danger, or its very existence is threatened, do I come out very publicly, and at such times I can be QUITE vocal.

Now is such a time.

I am about to do something which would not only have been uncontroversial, but normal here until the last six months. In the present climate it will probably piss a few people off.

I am going to update the community on exactly what has been going on behind the scenes here.

You may have noticed that Soylent News has no ads. How is that possible? It is possible because Soylent News was founded as a community, not a business. Our 'staff' is actually just unpaid members of the larger community, who step up and volunteer their time, because they support the idea of a purely user run news and discussion site. And that staff changes over time, sometimes people just burn out and decide to just go back to being normal members, some find themselves with increasing commitments or medical problems, or any number of other reasons. And its all fine, because others step up from the larger community and take up the tasks. Some later come back as well, when circumstances permit.

Since we have no paid staff, our expenses are pretty low. So others, perhaps without the time to contribute, help provide funds so we can continue to operate. These are members of the community who strongly support the idea of a community run site, free from the kind of corporate influence that has destroyed so many communities over the years.

And for years, this amazing community approach has worked, it has kept the site going. The group has fended off two and a half attempts by corporations or monied interests to destroy it. The first was Dice, for Slashdot. The second was a person who held the name the community had selected hostage for money.

The third...well, we THOUGHT we had fended that one off. It turned out to be a ticking time bomb, as some, including me, had warned about.

Six months ago, that time bomb went off.

At this point in time, all access by admins to our servers has been cut off. ONE person is making all admin decisions.

The editors have just enough access to edit stories.

All decisions are handed down from the top, the two -only- stockholders, and board members, who are the same people as the stockholders.

An outside 'fixer' was called in with no consultation with staff under an agreement we have not seen and which was kept secret, when staff protested.

From the top, there has been talk of adding advertising. Of looking for outside investors.

It needs to be understood that much of what is being presented now is a sham. Elections for 'a' board seat or 'maybe' more? What good is that going to do?

The simple truth is that Soylent PBC is a corporation. The ultimate power resides in the stockholders, not the board. The current two stockholders are there because promises were made that power would -never- be used. The present bylaws actually make it trivial for the stockholders to do that. But now it has been used, and abused.

Until the bylaws are fixed the community is not in ultimate control of Soylent.

Date: Tue, 18 Mar 2014 20:37:45 -0400
From: Michael(NCommander)
To: The List for SoylentNews Staff Members
Subject: [Soylent-staff] On the topic of incorporation ...
The first, and perhaps most important bit is the topic of ownership, who owns the site. Well, the official position is that SN is owned jointly by the staff, and despite Jon's statements, he never legally owned what he sold, and essentially held us hostage. At no time did Jon have any legal basis to what he did, and this view is further compounded by the fact that he willingly stepped down, and then gave (followed by revoking) access to the DNS registrar and other services. What Matt bought from Jon was essentially a lot of hot air, and grounds for him to go off and stop bothering us; this act was neither endorsed by the staff, nor associated with us; it was an action he made of his own free will.

They are acting as if we have a vote for the board of directors. We don't. Here is the what the current bylaws say about this:

"2. Election and Qualification. Unless otherwise provided in the Certificate of Incorporation or in these Bylaws the number of Directors which shall constitute the whole Board of Directors shall be determined by vote of the stockholders at the annual meeting. Directors need not be stockholders."

There is more, but it all goes the same way - either the stockholders elect the board, or the board itself.

Only stockholders get a vote. In fact, any votes taken with anyone else are, at best, purely advisory. And current actions may be in direct conflict with the actual bylaws.

Show me where they advised everyone of that fact in the current metas?

The original plan in 2014 was that the bylaws would be re-written by the community.

That promise has never been fulfilled.

From: "Matt"
To:
Date: Wed, 19 Mar 2014 20:03:23 -0400
Subject: [Soylent-staff] FW: Plan for setting up a nonprofit for SN - Final
...
Step 4. NCommander coordinates the drafting of bylaws.
Step 5. The foundation's lawyer looks over the draft bylaws.
Step 6. Lawyer-approved draft bylaws are sent to Staff for their consideration.
Step 7. Staff sends lawyer-approved draft bylaws to their own horde of stealth lawyers for approval.
Step 8. Staff-approved draft bylaws go up for a community-wide up/down vote using new incorruptible voting system (coming soon!).
if(vote == fail){goto Step_4;}

It never happened, which is why we are where we are at now.

Until the bylaws are rewritten this is all nonsense, smoke and mirrors.

If you wish to have a say now in how Soylent is run, you must buy your way in.

I and another are trying to do exactly that, with full support of the admin and editorial staff. To restore control of this community back to its original and -rightful- owners, the community itself. You.

The whole sordid story can be read in my proffer, which is exactly as I have submitted it to the Secretary of the Board for consideration in their next meeting, July 31.

Proffer: A Proffer For Soylentnews PBC

With the single exception to this being I have changed the real names to the screen names most are more familiar with here, and in the interest of peoples privacy.

It's all there, folks:

  • Greed
  • Betrayal
  • Broken Promises
  • Authoritarian Control
  • Secret Meetings
  • Secret Contracts
  • Lies
  • Misrepresentations
  • Utter Destruction

Everything we love to hate about the very worst of human nature.

Everyone should read at least the history section of that document. Read the rest to learn my plan. It the ONLY one that guarantees, with a legal and binding contract between all parties, that Soylent is restored FULLY and NOW to community control.

We have only two choices now, if we wish to keep our community together.

1. Somehow convince the board that they are WAY out of line, get them to change course, and restore power back to the community.

It's a small chance, but it IS a chance.

2. We once again start over. With a new domain. Which we CAN do, with your support.

What we badly need right now is for the community's voice to be heard. And loudly. Leave not a shred of doubt that the community wishes to regain control of its own site, and destiny.

Under the present circumstances, I cannot even guarantee this post will remain up. So speak up early.

I still have one of the domains from our original name vote - techmatter.org. If we are completely cut off, I will put some info there about where we are. There is nothing at all there now, the domain is dormant. It's just for emergency use.

-Audioguy

Weight Loss Drugs: The Science And Side Effects Behind Ozempic And Wegovy

posted by requerdanos on Sunday July 30 2023, @06:11PM   Printer-friendly
/dev/random

"Arthur T Knackerbracket" writes:

Arthur T Knackerbracket has processed the following story:

Ozempic and Wegovy are brand names for the drug semaglutide. Many countries have approved Wegovy for weight loss in people who are obese or overweight and Ozempic for people with type 2 diabetes.

Drugs such as semaglutide mimic the actions of a hormone called glucagon-like peptide-1, or GLP-1. These so-called GLP-1 analogues have several effects, including slowing stomach emptying, acting on the brain to reduce appetite and boosting the release of insulin, which helps to regulate blood sugar levels.

[...] Wegovy leads to about a 15 per cent reduction in body weight over a year, when combined with exercise and eating healthily.

In fact, some people seem to feel that the GLP-1 analogues have caused them to become too gaunt, as reflected in the rise of the search terms “Ozempic face” and “Ozempic butt”. “Ozempic doesn’t do anything specific to the skin,” says Alexander Miras at Ulster University, UK. It is the weight loss that causes these apparent side effects, with similar outcomes often also occurring after weight loss surgery, he says.

Side effects can be mild, such as nausea, constipation and diarrhoea, which tend to occur as people get used to the drug. More worrying side effects include inflammation of the pancreas, although this is relatively rare.

Hair loss has been reported by some semaglutide users. This is also sometimes seen after significant weight loss from other causes, such as stomach surgery, says Miras.

[...] GLP-1 analogues – such as Ozempic and Wegovy – are being investigated by the European Medicines Agency (EMA) after recent reports that they may cause thoughts of suicide or self-harm. This was after Iceland’s health regulator received three such reports regarding semaglutide and another drug called liraglutide, which is an earlier GLP-1 analogue.

The EMA says it is analysing about 150 reports of possible cases of self-injury and suicidal thoughts. This doesn’t mean the medicines caused these effects, however, only that people reported these experiences after starting to take them. “More work is needed to determine if a causal link exists,” says Michael Schwartz at the University of Washington in Seattle.

Original Submission

A Sailor and His Dog Found After Months Stranded in the Pacific

posted by hubie on Sunday July 30 2023, @01:26PM   Printer-friendly
/dev/random

upstart writes:

A sailor and his dog found after months stranded in the Pacific:

A stranded sailor and his dog have been rescued in the South Pacific Ocean after months at sea, rescuers told Australian media over the weekend.

The sailor, Tim Shaddock, 51, and Bella, the dog, departed from La Paz, Mexico, three months ago. A month into his journey, a storm struck his white catamaran, wiping out all electronics, according to 9News. He says he and Bella survived three months at sea eating raw fish and drinking rainwater.

They were rescued by a Mexican tuna trawler over the weekend, 9News reported.

"I have been through a very difficult ordeal at sea," Shaddock told the channel, adding that he had fishing and other survival gear with him.

[...] Shaddock and Bella were spotted last week by a helicopter accompanying a tuna trawler, which was on its way back to Mexico, according to 9News. It was unclear when Shaddock first left Mexico, and where he and Bella were rescued.

[...] Shaddock said he avoided sunburn by sheltering under his boat's canopy, eating raw fish and drinking rainwater.

[...] Not only did Shaddock have to look after himself, but also his dog, which Tipton said, helped in the pair's survival.

"He had companionship. Once you've got enough food and water, then I think the dog has an advantage," Tipton said. "Your survival time is as long as you can keep collecting water, getting occasional food and doing things that help you stay positive," he added.

Finding Shaddock was like a "needle in a haystack" in the enormous Pacific Ocean, Tipton said, especially since the helicopter was not even actively looking for him.

"It was a combination of luck and the right behavior," he added.

Original Submission

Twitter commandeers @X username from man who had it since 2007

posted by hubie on Sunday July 30 2023, @08:38AM   Printer-friendly
from the ceo-no dept.
News

Freeman writes:

https://arstechnica.com/tech-policy/2023/07/twitter-took-x-handle-from-longtime-user-and-only-offered-him-some-merch/

Elon Musk's decision to rebrand Twitter as "X" wouldn't be complete without a change to the company's official Twitter account. The @X handle was already taken by a user who registered it over 16 years ago, but that wasn't much of an obstacle—Twitter simply took over the username and offered its longtime owner some merchandise but no monetary compensation.

San Francisco-based photographer Gene X Hwang was @X on Twitter from March 2007 until yesterday. "They just took it essentially—kinda what I thought might happen," Hwang told The Telegraph. "They did send an email saying it is the property of 'x' essentially."

[...] Hwang was quoted as saying several years ago that he turned down offers as high as $40,000 because he didn't think they were legitimate. "I really didn't entertain any of them seriously," he said at the time.

[...] In January, a New York Times report said that "Twitter has considered selling user names to generate new revenue as its owner, Elon Musk, tries to resuscitate the company's business." Under Musk, Twitter has also gotten more aggressive about purging accounts that seem to be inactive.

Original Submission

Radioactive Fallout From the Trinity Test Impacted 46 U.S. States, Study Finds

posted by hubie on Sunday July 30 2023, @03:53AM   Printer-friendly
News

upstart writes:

Ironically, despite America's Cold War fears of being nuked by the Soviet Union, the only government that ever nuked us (and nuked us quite a bit) was our own:

The Trinity test and the dozens of nuclear tests that followed were the result of the top secret Manhattan Project, the WWII era U.S. government program that focused on the development of the atomic bomb. [...] The newly published research focuses on "atmospheric tests," meaning tests that impacted the atmosphere, though the U.S. government has also extensively conducted underground nuclear weapons testing, blowing up an estimated 815 subterranean nukes between 1951 and 1998.

The new research on the Trinity and other above-ground nuclear tests uses a combination of data that wasn't previously available for other evaluations. [...] According to the findings of the new study, the Trinity test had a large impact on the total amount of nuclear fallout that has spread throughout the U.S. "Our results show the significant contribution of the Trinity fallout to the total deposition density across the contiguous U.S....and in New Mexico in particular." The report states that fallout from Trinity reached 46 states in just 10 days.

The report notes that of the 101 nuclear tests carried out during the time period studied, 94 of them created radioactive mushroom clouds that subsequently dispersed nuclear fallout across the country.

[...] The report also notes that the U.S. carried out 45 "airburst" tests, the likes of which involved detonating nuclear bombs in the Earth's upper atmosphere. These tests were conducted by shooting a rocket into the atmosphere that would be "armed to burst at a predetermined point in space," one study notes. [...] In at least one instance, the government reportedly had volunteers stand under one such airburst explosion to test the health impacts it would have on people standing beneath one.

The research could start a new conversation about how many people are due compensation from the government over the health impacts of the tests, the New York Times has reported. The 1990 Radiation Exposure Compensation Act is a federal statute designed to pay out money to communities and individuals that have been impacted by government nuclear testing, though the new research suggests that a much broader area was potentially impacted by testing than the legislation previously acknowledged. The report says that it hopes its findings "provide an opportunity for re-evaluating the public health and environmental implications from atmospheric nuclear testing"

Original Submission

When Photocopiers Terrified the Publishing World

posted by requerdanos on Saturday July 29 2023, @11:12PM   Printer-friendly
from the before-home-taping-was-killing-music dept.
Digital Liberty

owl writes:

https://newart.press/p/photocopiers-terrified-the-publishing

"What Hath Xerox Wrought" asked a 1976 Time Magazine headline, the proceeding article prompted readers to imagine if: "some inventive and omnipotent god offered the nation a device that would greatly advance the spread of information."

There was a catch though: the promethean powers afforded by this "green-eyed deus ex machina" would also bring chaos: "In return, the deity required that the President resign, that stacks of sensitive Government and corporate secrets be made public."

The writer was of course referring to the Watergate scandal and Daniel Ellsberg's use of photocopiers to leak the Pentagon Papers to the press. The hypothetical was actually a reality. While the USSR kept strict control over the technology, highly regulating the machines until 1989, the free world was left to deal with the 'consequences' of freedom.

Downsides of this supposed double edge sword - cited in Time - would be encouraging waste and slothfulness, on top of stifling creativity and punching holes in copyright laws. This last issue was of particular concern to publishers and authors, one that had been growing for more than a decade because, as Malcolm McLaren would put it in 1993, "Gutenberg made everyone a reader, Xerox made everyone a publisher..."

Original Submission

Australian Court Orders Meta Subsidiaries to Pay $14 Million

posted by requerdanos on Saturday July 29 2023, @06:28PM   Printer-friendly
from the mislead-or-deceive dept.
News

upstart writes:

Adverts said Onavo Protect user data would be kept a secret – just didn't say from whom:

On Wednesday, Australia's Federal Court ordered two Meta subsidiaries to pay $14 million after an over two and a half year legal battle instigated by the country's competition regulator found the pair misled users on the data collection of a now defunct VPN app.

[...] Israel-based web analytics company Onavo, maker of free downloadable software application Onavo Protect, was acquired by Facebook in 2013. The narrative from Onavo at the time was that privacy was king. Meanwhile Facebook promised the company would be a separate brand.

But by 2018, researchers were onto the tall tale and found Onavo Protect sent user data to Facebook even when turned off – a situation that was outlined and permitted through its terms and conditions.

According to the ACCC [Australian Competition and Consumer Commission], information collected and aggregated included "users' internet and app activity, such as records of every app they accessed and the number of seconds each day they spent using those apps" for Facebook's commercial benefit.

[...] On Wednesday, the Australian court said that Onavo Inc. and Facebook Israel promoted the VPN during 2016 and 2017 without sufficiently disclosing that data would be used outside of the app.

"If an Australian user of Onavo Protect had a Facebook account, Meta was also able to combine that user's Onavo Protect Data with information that Meta maintained about the user's Facebook account, using an algorithm," wrote Judge Wendy Abraham.

She further noted that internal Meta documents referred to Onavo Protect as a "business intelligence tool," providing "a sample of users who we are able to know nearly everything they are doing on their mobile device." The data was then used for advertising, marketing and improvement of products, services and strategies.

According to the Australian court, the terms and conditions disclosing data use were not sufficient enough to counter advertisements to the contrary. Court documents state that both Facebook Israel and Onavo admit that ads and statements were likely to mislead or deceive.

[...] Abraham said in court documents the fine "carries with it a sufficient sting to ensure that the penalty amount is not such as to be regarded by the parties or others as simply an acceptable cost of doing business."

Original Submission

Encryption-Breaking, Password-Leaking Bug In Many AMD CPUs Could Take Months To Fix

posted by requerdanos on Saturday July 29 2023, @01:46PM   Printer-friendly
Security

"Arthur T Knackerbracket" writes:

Arthur T Knackerbracket has processed the following story:

A recently disclosed bug in many of AMD's newer consumer, workstation, and server processors can cause the chips to leak data at a rate of up to 30 kilobytes per core per second, writes Tavis Ormandy, a member of Google's Project Zero security team. Executed properly, the so-called "Zenbleed" vulnerability (CVE-2023-20593) could give attackers access to encryption keys and root and user passwords, along with other sensitive data from any system using a CPU based on AMD's Zen 2 architecture.

[...] The bad news is that the exploit doesn't require physical hardware access and can be triggered by loading JavaScript on a malicious website (according to networking company Cloudflare). The good news is that, at least for now, there don't seem to be any cases of this bug being exploited in the wild yet, though this could change quickly now that the vulnerability has been disclosed, and the bug requires precise timing to exploit.

"AMD is not aware of any known exploit of the described vulnerability outside the research environment," the company told Tom's Hardware. Cloudflare also says there is "no evidence of the bug being exploited" on its servers.

Since the vulnerability is in the hardware, a firmware update from AMD is the best way to fully fix it; Ormandy says it is also fixable via a software update, but it "may have some performance cost." The bug affects all processors based on AMD's Zen 2 architecture, including several Ryzen desktop and laptop processors, EPYC 7002-series chips for servers, and Threadripper 3000- and 3000 Pro WX-series CPUs for workstations.

The article mentions that the firmware update for EPYC 7002 is already out, but updates for consumer-market chips may not be available until December.

Original Submission

Unpacking Google's New "Dangerous" Web-Environment-Integrity Specification

posted by hubie on Saturday July 29 2023, @08:56AM   Printer-friendly
Security

owl writes:

https://vivaldi.com/blog/googles-new-dangerous-web-environment-integrity-spec/

Google seems to love creating specifications that are terrible for the open web and it feels like they find a way to create a new one every few months. This time, we have come across some controversy caused by a new Web Environment Integrity spec that Google seems to be working on.

​At this time, I could not find any official message from Google about this spec, so it is possible that it is just the work of some misguided engineer at the company that has no backing from higher up, but it seems to be work that has gone on for more than a year, and the resulting spec is so toxic to the open Web that at this point, Google needs to at least give some explanation as to how it could go so far.

Original Submission