Slashdot

If a Facebook page or an Instagram post is offering the location of your polling place, you should double check that with your local elections office, the FBI director said Thursday at a congressional hearing. Better yet, don't get your election information from social media at all. From a report: The House Committee on Homeland Security hosted on Thursday its annual worldwide threats hearing, where intelligence agencies in past years have warned about international cyberattacks and online disinformation. [...] The FBI director said that social networks like Facebook and Twitter have worked with the bureau to take down disinformation campaigns, but he also warned Americans against getting election information on those platforms. "It's particularly of concern to us in the election context when Americans make the mistake of getting information about elections themselves on social media," Wray said. "We're trying to make sure Americans know [that] to get information about where, when and how you vote, you need to go to your local election official's website. Don't take it from social media."

Read more of this story at Slashdot.

Partnering with oil and gas producers is necessary for Amazon and other companies to achieve their climate goals, the tech giant's chief of sustainability, Kara Hurst, said during an Axios virtual event on Thursday. From a report: Amazon aims to hit carbon neutrality in 2040, 10 years earlier than the Paris climate accord. The company plans to reach its goal in part by helping companies develop climate-friendly technologies through a $2 billion venture fund. The first recipients were announced on Thursday. "Amazon, like every other company you just mentioned -- Google, Microsoft, many tech companies -- works across a wide variety of industries. And I believe it's absolutely necessary to work with those types of industries to create transformation," referring to oil companies.

Read more of this story at Slashdot.

Twitter will require certain political candidates, elected officials and journalists to beef up their passwords, the company said Thursday, in an effort to head off any more breaches of high-profile accounts as the 2020 election draws near. From a report: The change comes two months after an embarrassing cyberattack in which hackers exploited Twitter employees' credentials to wrest control of dozens of accounts, including those of former President Barack Obama, Democratic presidential nominee Joe Biden and Microsoft founder Bill Gates. The steps announced Thursday would not have prevented that hack but could foil less sophisticated exploits. Accounts deemed to have weak passwords will be compelled to make them stronger, and those users must now verify their phone number or email address before making password changes. The social media company will also encourage, but not force, high-profile users to implement two-factor authentication, a security measure that requires them to input a unique code in addition to their password.

Read more of this story at Slashdot.

Mozilla is shutting down two of its legacy products, Firefox Send and Firefox Notes, the company announced today. From a report: "Both services are being decommissioned and will no longer be a part of our product family," a Mozilla spokesperson told ZDNet this week. Of the two, the most beloved was Firefox Send, a free file-sharing service, and one of the few that supported sharing files in encrypted formats. Launched in March 2019, the service gained a dedicated fanbase but Send was taken offline earlier this summer after ZDNet reported on its constant abuse by malware groups. At the time, Mozilla said that Send's shutdown was temporary and promised to find a way to curb the service's abuse in malware operations. But weeks later, things changed after Mozilla leadership laid off more than 250 employees as part of an effort to re-focus its business on commercial products.

Read more of this story at Slashdot.

In the fight against Covid-19, contact tracing apps have so far largely been disappointments -- in the United States, at least. Proposed in the spring as a way to help quickly stifle viral outbreaks by tracking down potential exposures using smartphones, they were stunted by technical glitches, concerns over privacy, and the US's fragmented, haphazard pandemic response. Now, they may become mired in a fight over patents. From a report: The challenge comes from Blyncsy, a Salt Lake City-based maker of software that helps cities gather and analyze mobility data. In recent weeks, the company has sent claims seeking the equivalent of $1 per resident to states that have released or plan to release contact tracing apps, including Pennsylvania, North Dakota, South Dakota, and Virginia. The company holds three patents related to contact tracing. One of them, granted in February 2019, for "tracking proximity relationships and uses thereof," describes methods of tracking the spread of "contagion" using technology such as Bluetooth, Wi-Fi, and cellular signals. Apps launched by public health agencies during the Covid-19 pandemic infringe upon it, the company says. In April, Blyncsy launched a portal for others to request a license for its technology and submit plans for a privacy review. That was shortly after Google and Apple jointly announced an effort to get contact tracing technology in the hands of state and national governments, using Bluetooth features on the companies' smartphones. Blyncsy did not get any takers. "State governments have taken it upon themselves to roll out a solution in their name in which they're using our property without compensation," says Blyncsy CEO Mark Pittman. He describes the current crop of contact tracing apps as "fly-by-night" efforts and says his patent fight is driven by concerns about their privacy and effectiveness, not an attempt to profit.

Read more of this story at Slashdot.

Kyle Wiggers, reporting for VentureBeat: Over 111.8 million people in the U.S. talk to voice assistants like Siri, Alexa, and Google Assistant every month, eMarketer estimates. Tens of millions of those people use assistants as data-finding tools, with the Global Web Index reporting that 25% of adults regularly perform voice searches on smartphones. But while voice assistants can answer questions about pop culture and world events like a pro, preliminary evidence suggests they struggle to supply information about elections. In a test of popular assistants' abilities to provide accurate, localized context concerning the upcoming U.S. presidential election, VentureBeat asked Alexa, Siri, and Google Assistant a set of standardized questions about procedures, deadlines, and misconceptions about voting. In general, the assistants fared relatively poorly, often answering questions with information about voting in other states or punting questions to the web instead of answering them directly.

Read more of this story at Slashdot.

MojoKid writes: Intel formally announced its 11th Gen Core mobile processor family, known by the code name Tiger Lake, a few weeks back and made some bold performance claims for it as well. The company even compared its quad-core variant to AMD's 8-core Ryzen 7 4800U in gaming and content creation. Today Intel lifted the embargo veil on benchmarks with its Core i7-1185G7 Tiger Lake CPU with on-board Iris Xe graphics and there's no question Tiger Lake is impressive. Intel indeed achieved single-threaded performance gains north of 20% with even larger deltas for multithreaded throughput in some cases as well. In addition, Tiger Lake's integrated Iris Xe graphics put up over 2X the gaming performance over the company's 10th Gen Ice Lake processors, and it looks to be the fastest integrated graphics solution for laptops on the market currently, besting AMD's Ryzen 4000 series as well. Battery life measurements are still out, however, as retail ready products have yet to hit the channel. Intel notes Tiger Lake-powered laptops from OEM partners should be available in the next month or so.

Read more of this story at Slashdot.

Google has updated its Play Store rules to impose a "formal" ban on stalkerware apps, but the company has left a pretty huge loophole in place for stalkerware to be uploaded on the official store as child-tracking applications. From a report: Stalkerware is a term used to describe apps that track a user's movements, snoop on calls and messages, and record other apps' activity. Stalkerware, also known as spouseware, is usually advertised to users as a way to discover cheating partners, track children while outside their homes, and as a way to keep an eye on employees at work. The primary feature of all stalkerware apps, regardless if they're intended to be used on smartphones or laptops, is that these apps can be installed and run without the device owner's knowledge, operating in the operating system's background. Over the past decade, the Play Store has hosted hundreds of applications that fit into the stalkerware category. Google, which has intervened to take down stalkerware apps when they've been pointed out by security researchers, has usually avoided making public statements on the topic.

Read more of this story at Slashdot.

Cloudflare and the Internet Archive are now working together to help make the web more reliable. Websites that enable Cloudflare's Always Online service will now have their content automatically archived, and if by chance the original host is not available to Cloudflare, then the Internet Archive will step in to make sure the pages get through to users. From a report: Cloudflare has become core infrastructure for the Web, and we are glad we can be helpful in making a more reliable web for everyone."The Internet Archive's Wayback Machine has an impressive infrastructure that can archive the web at scale," said Matthew Prince, co-founder and CEO of Cloudflare. "By working together, we can take another step toward making the Internet more resilient by stopping server issues for our customers and in turn from interrupting businesses and users online." For more than 20 years the Internet Archive's Wayback Machine has been archiving much of the public Web, and making those archives available to journalists, researchers, activists, academics and the general public, in total to hundreds of thousands of people a day. To date more than 468 billion Web pages are available via the Wayback Machine and we are adding more than 1 billion new archived URLs/day. We archive URLs that are identified via a variety of different methods, such as "crawling" from lists of millions of sites, as submitted by users via the Wayback Machine's "Save Page Now" feature, added to Wikipedia articles, referenced in Tweets, and based on a number of other "signals" and sources, such multiple feeds of "news" stories. An additional source of URLs we will preserve now originates from customers of Cloudflare's Always Online service. As new URLs are added to sites that use that service they are submitted for archiving to the Wayback Machine. In some cases this will be the first time a URL will be seen by our system and result in a "First Archive" event.

Read more of this story at Slashdot.

Former Australian Prime Minister Tony Abbott had his phone number and passport details obtained by a hacker after posting a picture of his boarding pass on Instagram. From a report: Hacker Alex Hope said he uncovered Mr Abbott's details from his Qantas boarding pass in just 45 minutes. He then spent months attempting to contact Mr Abbott to alert him of the security breach. Qantas said it had now updated its cyber security protocols. Mr Abbott posted an image of a boarding pass for his flight from Sydney to Tokyo on 21 March on his Instagram account, thanking the crew. Mr Hope said he received a message from a friend daring him to hack the former prime minister as they had recently been discussing the dangers of posting your boarding pass online. The hacker explained in a blog post published on Wednesday that he was able to find Mr Abbott's information because his booking reference was printed on the boarding pass. He was then able to log in to Mr Abbott's booking and search through HTML code to find his passport number and phone number. The code also included conversations with Qantas staff about Mr Abbott. "I had Tony Abbott's passport number, phone number and weird Qantas messages about him. I was the only one who knew I had these," Mr Hope said in a blog post. "Anyone who saw that Instagram post could also have them. I felt like I had to like, tell someone about this. Someone with like, responsibilities. Someone with an email signature." Mr Hope said he contacted the Australian Signals Directorate which handles cyber security. They thanked him for bringing the issue to their attention and said they would investigate.

Read more of this story at Slashdot.

YouTube's video recommendation system has been repeatedly accused by critics of sending people down rabbit holes of disinformation and extremism. Now Mozilla, the nonprofit that makes the Firefox browser, wants YouTube's users to help it research how the controversial algorithms work. From a report: Mozilla on Thursday announced a project that asks people to download a software tool that gives Mozilla's researchers information on what video recommendations people are receiving on the Google-owned platform. YouTube's algorithms recommend videos in the "What's next" column along the right side of the screen, inside the video player after the content has ended, or on the site's homepage. Each recommendation is tailored to the person watching, taking into account things like their watch history, list of channel subscriptions or location. The recommendations can be benign, like another live performance from the band you're watching. But critics say YouTube's recommendations can also lead viewers to fringe content, like medical misinformation or conspiracy theories.

Read more of this story at Slashdot.

wiredmikey writes: A patient died after a German hospital was hit by ransomware attack, when hackers thought they were targeting a university. German authorities said that what appears to have been a misdirected hacker attack impacted systems at a major hospital in Duesseldorf, and a woman who needed urgent admission died after she had to be taken to another city for treatment. Duesseldorf police established contact and told the attacker that the hospital, and not the university, had been affected, endangering patients. The attacker then withdrew the extortion attempt and provided a digital key to decrypt the data.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Bloomberg: Amazon plans to open 1,000 small delivery hubs in cities and suburbs all over the U.S., according to people familiar with the plans. The facilities, which will eventually number about 1,500, will bring products closer to customers, making shopping online about as fast as a quick run to the store. It will also help the world's largest e-commerce company take on a resurgent Walmart. Amazon couldn't fulfill its two-day delivery pledge earlier this year when shoppers in Covid-19 lockdown flooded the company with more orders than it could handle. While delivery times have improved thanks to the hiring of 175,000 new workers, Amazon is now consumed with honoring a pre-pandemic pledge to get many products to Prime subscribers on the same day. So with the holidays approaching, Chief Executive Officer Jeff Bezos is doubling down by investing billions in proximity, putting warehouses and swarms of blue vans in neighborhoods long populated with car dealerships, fast-food joints, shopping malls and big-box stores. Amazon didn't comment on the expansion plans, but has said its last-mile delivery efforts are meant to supplement, not replace, its long-time partners. "Our dedicated last-mile delivery network just delivered its 10 billionth package since launching over five years ago, and we're proud to provide a great service for our customers," an Amazon spokeswoman said. "In just a few years, Amazon has built its own UPS," says Marc Wulfraat, president of the logistics consulting firm MWPVL International Inc., who estimates Amazon will deliver 67% of its own packages this year and increase that to 85%. "Amazon keeps spreading itself around the country, and as it does, its reliance on UPS will go away."

Read more of this story at Slashdot.

At the Creative Arts Emmys on Wednesday night, The Mandalorian not only scored its first Emmy but also won the first Emmy for Disney+. Deadline reports: As a brand new streamer, this year marks the first year of eligibility for Disney+. The Mandalorian has racked up a staggering 15 Emmy nominations with 8 of those trophies being handed out tonight. Outstanding Special Visual Effects is the first win for the sci-fi series that stars Pedro Pascal as the titular masked hero and introduced the world to Baby Yoda -- which won everyone's hearts. This win will likely be the first of many tonight and at Sunday's ceremony. The Mandalorian is also up for Outstanding Drama Series as well as Outstanding Character Voice-Over Performance for Taika Waitti's role as droid IG-11 and Outstanding Guest Actor In A Drama Series for Giancarlo Esposito's performance as Moff Gideon.

Read more of this story at Slashdot.

In mice and one person, scientists were able to reproduce out-of-body experiences often associated with ketamine by inducing certain brain cells to fire together in a slow-rhythmic fashion. The findings have been published in the journal Nature. NPR reports: "There was a rhythm that appeared and it was an oscillation that appeared only when the patient was dissociating," says Dr. Karl Deisseroth, a psychiatrist and neuroscientist at Stanford University. Dissociation is a brain state in which a person feels separated from their own thoughts, feelings and body. It is common in people with some mental illnesses, or who have experienced a traumatic event. It can also be induced by certain drugs, including ketamine and PCP (angel dust). Deisseroth's lab made the discovery while studying the brains of mice that had been given ketamine or other drugs that cause dissociation. The team was using technology that allowed them to monitor the activity of cells throughout the brain "It was like pointing a telescope at a new part of the sky," Deisseroth says. "And something really unexpected jumped out at us." What jumped out was a very distinct rhythm produced by cells in an area involved in learning and navigation. Those cells were firing three times each second. To learn more, the team used a tool called optogenetics, which Deisseroth helped invent. It uses light to control the firing of specific cells in the brain. As a result, the team was able to artificially generate this rhythm in the brains of mice. We could see, right before our eyes, dissociation happening," Deisseroth says.

Read more of this story at Slashdot.

tedlistens writes: The CEO of Taser maker Axon, Rick Smith, has a lot of high-tech ideas for fixing policing. One idea for identifying potentially abusive behavior is AI, integrated with the company's increasingly ubiquitous body cameras and the footage they produce. In a patent application filed last month, Axon describes the ability to search video not only for words and locations but also for clothing, weapons, buildings, and other objects. AI could also tag footage to enable searches for things such as "the characteristics [of] the sounds or words of the audio," including "the volume (e.g., intensity), tone (e.g., menacing, threatening, helpful, kind), frequency range, or emotions (e.g., anger, elation) of a word or a sound." Building that kind of software is a difficult task, and in the realm of law enforcement, one with particularly high stakes. But Smith also faces a more low-tech challenge, he tells Fast Company: making his ideas acceptable both to intransigent police unions and to the communities those police serve. Of course, right now many of those communities aren't calling for more technology for their police but for deep reform, if not deep budget cuts. And police officers aren't exactly clamoring for more scrutiny, especially if it's being done by a computer.

Read more of this story at Slashdot.

Several Pirate Bay-related domains become available again this month after their owner failed to renew the registration. Yesterday, Piratebay.org was sold in a Dropcatch auction for $50,000 and ThePiratebay.com will follow soon. Both domains were previously registered to the official Pirate Bay site. TorrentFreak reports: Over the years the Pirate Bay team had many 'backup' domains available, just in case something happened. That included various exotic TLDs but the site also owned Piratebay.org and ThePiratebay.com. We use the past tense because both domains expired recently. The domains listed Pirate Bay co-founder Fredrik Neij as the registrant and until recently the same Swedish address was listed in Whois data. For reasons unknown, however, the registrant let both Piratebay.org and ThePiratebay.com expire. This isn't a problem for the torrent site really. The domains were never used as the site's main address. ThePiratebay.com did forward to the original .org domain at one point, but that's about it. None of this means that the domains are not valuable to outsiders though. This became apparent in an auction yesterday, where Piratebay.org (without the the) was sold for $50,000 to a bidder named 'clvrfls.' The bid below ended up being the winning one. The Piratebay.org domain failed to renew earlier this month after which the professional 'drop catch' service Dropcatch.com scooped it up. They auctioned the domain off, which is a common practice, and it proved quite lucrative. What the new owner will do with the domain is unclear. It has a substantial number of backlinks and there will be plenty of type-in traffic as well. [...] ThePiratebay.com is expected to drop later this week and is listed at a pending delete auction, and ThePiratebay.net and Piratebay.net will drop in a few days as well.

Read more of this story at Slashdot.

Daimler, which has worked on hydrogen technology for decades, is developing a fuel-cell semi with range of up to 600 miles per fueling and next-generation battery trucks amid intensifying competition to curb diesel and carbon exhaust from heavy-duty vehicles. Forbes reports: The German auto giant's truck unit showed off the Mercedes-Benz GenH2, a concept truck designed for long haul runs that will be tested by customers in 2023, at an event in Berlin Tuesday outlining steps it's taking to meet the goals of the Paris Climate Agreement. Volume production of GenH2s starts in the second half of the 2020s. The company also debuted its Mercedes-Benz eActros LongHaul, a battery-powered truck for short- and medium-range routes goes about 300 miles (500 kilometers) between charges. eActros production starts in 2024. Both trucks share Daimler's new ePowetrain modular platform to help hold costs down. They'll be available initially in Europe, though versions for North America and Japan will arrive around the same time, the company said. [...] A unique twist with Daimler's GenH2 truck is that the system relies on liquid hydrogen, rather than highly compressed hydrogen gas, the current standard. The benefit is that liquid hydrogen is more energy dense and uses tanks that are much lighter than those required for gaseous fuel, Daimler said. "This gives the trucks a larger cargo space and higher payload weight," while also improving range, it said. The combination of hydrogen and battery vehicles "enables us to offer our customers the best vehicle options, depending on the application," Daimler Chairman Martin Daum said at the event. "Battery power will be rather used for lower cargo weights and for shorter distances. Fuel-cell power will tend to be the preferred option for heavier loads and longer distances."

Read more of this story at Slashdot.

Facebook has unveiled the Oculus Quest 2, including its release date and price, and it promises to be a big leap over the original. Android Authority reports: The second-generation standalone, Android-powered virtual reality headset will be available on October 13 starting at $299 for a model with 64GB of storage, a full $100 below the price of the first Quest. Pre-orders are open now. The Oculus Quest 2 is much more powerful than its predecessor, with a Snapdragon XR2 chip and 6GB of RAM instead of the aging Snapdragon 835 and 4GB of RAM. That should lead to more advanced games and an overall smoother VR experience, although you'll need to wait for titles that take full advantage of the added power. You may notice the improved display technology right away, however. The Quest 2 boasts the company's sharpest visuals yet, with a single LCD screen providing 1,832 x 1,920 resolution for each eye -- 50% more pixels than the 1,400 x 1,600 displays in the first Quest. It's the highest-resolution Oculus headset to date. The Oculus Quest 2 also supports much more natural-feeling 90Hz refresh rates, although it won't be available upon release. You'll have to settle for 72Hz at first. It could also be the most comfortable. The Quest 2 is both smaller and 10% lighter than before, with a soft head strap that should make for an easier fit. The Touch controllers are improved, too, with upgraded haptic feedback, better hand tracking, and a thumb rest. Add-ons will help, for that matter. A Fit Pack will adapt to different-sized heads, while a $49 Elite Strap and a $129 Elite Strap with Battery Pack offer both more comfort and longer VR sessions.

Read more of this story at Slashdot.

An anonymous reader writes: "Billions of smartphones, tablets, laptops, and IoT devices are using Bluetooth software stacks that are vulnerable to a new security flaw disclosed over the summer," reports ZDNet. Named BLESA (Bluetooth Low Energy Spoofing Attack), the vulnerability impacts devices running the Bluetooth Low Energy (BLE) protocol, and affects the reconnection process that occurs when a device moves back into range after losing or dropping its pairing. A successful BLESA attack allows bad actors to connect with a device (by getting around reconnection authentication requirements) and send spoofed data to it. In the case of IoT devices, those malicious packets can convince machines to carry out different or new behavior. For humans, attackers could feed a device deceptive information. BLESA impacts billions of devices that run vulnerable BLE software stacks. Vulnerable are BLE software libraries like BlueZ (Linux-based IoT devices), Fluoride (Android), and the iOS BLE stack. Windows' BLE stack is not impacted.

Read more of this story at Slashdot.