Slashdot

In a joint security alert published this week, the US Cybersecurity Infrastructure and Security Agency, along with the Federal Bureau of Investigation, warned about increased cyber-attacks targeting the US K-12 educational sector, often leading to ransomware attacks, the theft of data, and the disruption of distance learning services. From a report: "As of December 2020, the FBI, CISA, and MS-ISAC continue to receive reports from K-12 educational institutions about the disruption of distance learning efforts by cyber actors," the alert reads. "Cyber actors likely view schools as targets of opportunity, and these types of attacks are expected to continue through the 2020/2021 academic year," it added. But of all the attacks plaguing the K-12 sector (kindergarten through twelfth-grade schools), ransomware has been a particularly aggressive threat this year, CISA and the FBI said. "According to MS-ISAC data, the percentage of reported ransomware incidents against K-12 schools increased at the beginning of the 2020 school year," the two agencies said. "In August and September, 57% of ransomware incidents reported to the MS-ISAC involved K-12 schools, compared to 28% of all reported ransomware incidents from January through July," they said.

Read more of this story at Slashdot.

Twitter has been doubling down on video services within its app, building out Twitter Live and recently launching Fleets so that users can share more moving media alongside their pithy 180-word observations, links and still photos. But in the process, it appears that it may also be streamlining its bigger stable of services. From a report: Code in the Twitter app indicates that Periscope -- the live video broadcasting app that launched a thousand fluttering hearts -- may be headed into retirement. Date and other details are still unknown, but super-sleuth developer Jane Machun Wong found a line in Twitter's app code that indicated a link to a shutdown notice for Periscope (which currently does not go to a live link). There are no shutdown references in any of the code in the currently obtainable version of the Persicope app, Wong told us, but she also pointed out that the two apps do share some code -- indeed there are integrations between the two Twitter-owned apps -- and "I guess [that] is how the text in the screenshot got slipped into Twitter," she said.

Read more of this story at Slashdot.

Hyundai Motor Group agreed to buy a controlling stake in Boston Dynamics in a deal that values the mobile robot firm at $1.1 billion. From a report: Hyundai Motor, along with some associated companies and Chairman Euisun Chung, will acquire an 80% interest in the U.S. robotics company from SoftBank Group, leaving the Japanese firm with a 20% share, the companies said in a statement Friday. The deal was first reported by Bloomberg News in November. South Korean conglomerate Hyundai Motor Group has been beefing up its research in robotics as it expands further into electric and autonomous vehicles. Carmaker Hyundai Motor plans to spend over 60 trillion won ($55 billion) in the next five years in these areas to become one of the world's leading auto manufacturers. The broader empire is also exploring practical uses for industrial robots. "The combination of the highly complementary technologies of Hyundai Motor Group and Boston Dynamics, and the continued partnership of SoftBank, will propel development and commercialization of advanced robots," the companies said, helping to create a "robotics value chain ranging from robot component manufacturing to smart logistics solutions."

Read more of this story at Slashdot.

Hyundai Motor Group agreed to buy a controlling stake in Boston Dynamics in a deal that values the mobile robot firm at $1.1 billion. From a report: Hyundai Motor, along with some associated companies and Chairman Euisun Chung, will acquire an 80% interest in the U.S. robotics company from SoftBank Group, leaving the Japanese firm with a 20% share, the companies said in a statement Friday. The deal was first reported by Bloomberg News in November. South Korean conglomerate Hyundai Motor Group has been beefing up its research in robotics as it expands further into electric and autonomous vehicles. Carmaker Hyundai Motor plans to spend over 60 trillion won ($55 billion) in the next five years in these areas to become one of the world's leading auto manufacturers. The broader empire is also exploring practical uses for industrial robots. "The combination of the highly complementary technologies of Hyundai Motor Group and Boston Dynamics, and the continued partnership of SoftBank, will propel development and commercialization of advanced robots," the companies said, helping to create a "robotics value chain ranging from robot component manufacturing to smart logistics solutions."

Read more of this story at Slashdot.

Ammalgam shares a report from The Redmond Cloud: Starting this month, Microsoft will begin forcing some users to upgrade to Windows 10 version 1909 or version 2004 if they don't update their PC manually. This is coming after Microsoft announced that it's ending support for Windows 10 version 1903, including Windows 10 Home and Windows 10 Pro. If you're on Windows 10 version 1903, you'll be force upgraded to version 1909 later this month. If you're on Windows 10 version 1909, you'll be forcefully upgraded to Windows 10 version 2004 (May 2020 Update) by the spring of next year. If you're still using last year's Windows 10 versions, it's better to attempt the upgrade manually. [...] The process is expected to start this week and expand over the course of the next month before Windows 10 version 21H1 update is ready for production channels.

Read more of this story at Slashdot.

Jerry Rivers shares a report from TechCrunch, adding: "...and it took the music service seven months to notice." From the report: In a data breach notification filed with the California attorney general's office, the music streaming giant said the data exposed "may have included email address, your preferred display name, password, gender, and date of birth only to certain business partners of Spotify." The company did not name the business partners, but added that Spotify "did not make this information publicly accessible." The company says the vulnerability existed as far back as April 9 but wasn't discovered until November 12. It didn't say what the vulnerability was or how user account data became exposed. "We have conducted an internal investigation and have contacted all of our business partners that may have had access to your account information to ensure that any personal information that may have been inadvertently disclosed to them has been deleted," the letter read.

Read more of this story at Slashdot.

Microsoft has made available two different Windows 10 test builds today, one of which includes the promised x64 app emulation for Arm, among other features. ZDNet reports: The RS_Prerelease build 21277 -- which ultimately is expected to be designated as the "Cobalt" branch -- includes the features Microsoft had previously been testing but removed at the end of October. This includes the updated emoji picker, redesigned touch keyboard, voice typing, theme-aware splash screens and more. It also provides the aforementioned Arm emulation support. Currently, Windows on Arm natively supports Arm apps, including ARM64 versions. But so far, only 32-bit Intel (x86) apps are supported in emulation. This lack of x64 emulation has limited the number of apps that can run on Windows on Arm devices, since apps that are 64-bit only have only been available on Windows on Arm (WoA) devices if and when developers created native versions of them. As of now, these x64 Arm apps also can run in emulation. More details on the x64 Arm emulation preview functionality are in this Microsoft post.

Read more of this story at Slashdot.

An anonymous reader shares an article that's part of the Future Agenda, a series from Slate in which experts suggest specific, forward-looking actions the new Biden administration should implement. Here's an excerpt: Consumers in the U.S. face an infuriating lack of transparency when it comes to purchasing broadband services. Bills are convoluted, featuring complex pricing schemes. Roughly 7 in 10 U.S. adults surveyed by Consumer Reports who have used a cable, internet, or phone service provider in the past two years said they experienced unexpected or hidden fees. Unsurprisingly, 96 percent of those who had experienced hidden fees found them annoying. (To the other 4 percent: Are you OK?) We've been here before. In 1990, a similar crisis of consumer confidence prompted one Cabinet secretary to decry that "as consumers shop they encounter confusion and frustration." He said the market had become "a Tower of Babel, and consumers need to be linguists, scientists and mind readers to understand the many labels they see." While this diagnosis could apply almost word-for-word to today's broadband market, then-Secretary of Health and Human Services Louis W. Sullivan was talking about the grocery store. The solution then offers a ready-made formula for how the incoming Biden administration can help consumers now: add a label. Before regulatory changes in the late 1980s and early 1990s culminating in the 1994 adoption of the now-iconic Nutrition Facts panel, consumers were faced with a variety of hard-to-understand food labels peddling often-misleading information. While labels were required to list calories, serving sizes, and other nutritional information, including such a label was voluntary except when a company made nutritional claims about a food (such as "low in fat" or "high in vitamins"), or a food contained added nutrients. Without standards for what nutritional claims actually meant, and with no uniform nutrition label with which to compare products, consumers were left to decipher labels that were, according to the nonprofit Institute of Medicine, "at best, confusing and, at worst, deceptive economically and potentially harmful." Today, it's difficult to imagine not having the ability to read straightforward facts about the nutrition content of our food and comparison shop between competing products. The same could be true for broadband. As far back as 2010, our organization has been advocating for the adoption of a broadband nutrition label. In fact, labeling is such a common-sense measure that it has been adopted in the broadband context before. In 2016, the FCC and the Consumer Financial Protection Bureau together rolled out their version of the "broadband nutrition label." "Broadband Facts" resembles Nutrition Facts, emulating a disclosure method the American public is already familiar with. It breaks down a plan's cost and performance, including all additional fees and taxes, so that people don't have to dig through complicated terms of service and contracts to find simple information.

Read more of this story at Slashdot.

Google is making it even easier to work with Microsoft Office files, with the company now allowing users to directly edit attached Office files in Gmail, much like it already allows with Google Docs or Sheets files. The Verge reports: Now, you can directly open and edit an Office file using the Google Docs editor just by clicking on it -- just like you would a native Google Doc. But the new editing function doesn't convert Office files into Google Docs, instead preserving the original file format. Gmail will allow users to respond to the original email and include the now-updated file (still in an Office file format) without first requiring that they download and then re-attach the updated file. Google is also working to help ensure that Office files work more smoothly in Google Docs, with the company launching a new Macro Converter add-on for Google Workspace that's designed to help users and organizations import their macros from Excel to Sheets more easily. Similarly, Google is working on adding better document orientation and image support to Google Docs, allowing for documents with both horizontally and vertically oriented pages, along with images placed behind text and watermarks (although the new image features won't be available until next year.)

Read more of this story at Slashdot.

Ahsoka Tano, the popular character from The Mandalorian, Star Wars: The Clone Wars and Star Wars: Rebels, is finally getting her own series starring Rosario Dawson. It's set within the timeline for The Mandalorian and will debut on Disney Plus around Christmas of 2021. CNET reports: Disney revealed the news Thursday during an investor presentation, where the company also announced its plans for upcoming movie releases -- both theatrical and streaming on Disney Plus. Ahsoka made her live-action debut in The Mandalorian episode titled The Jedi. In the episode, Mando (Pedro Pascal) continues his quest to bring Baby Yoda (aka The Child) to former Jedi Ahsoka Tano in the years following Return of the Jedi. [...] Not much has been revealed as of yet about the new Ahsoka Tano live-action series for Disney Plus, but fingers crossed we get to see more characters from both Star Wars: The Clone Wars and Star Wars: Rebels pop up in the new adventures. UPDATE: In addition to Star Wars: Ahsoka, Lucasfilm also announced Star Wars: Rangers of the New Republic, a new Original Series set within the timeline of The Mandalorian. "The two series are just several of the new Star Wars shows coming to Disney Plus in the future, along with Star Wars: Andor, Obi-Wan Kenobi, Star Wars: Lando, The Acolyte, the animated Clone Wars spin-off The Bad Batch, and the anime anthology Star Wars: Visions," adds The Verge.

Read more of this story at Slashdot.

Republican senator Thom Tillis has introduced a proposal to turn unauthorized commercial streaming of copyrighted material into a felony offense with a possible prison sentence. It's currently being included in a must-pass spending bill. Kotaku reports: Currently, such violations, no matter how severe, are considered misdemeanors rather than felonies, because the law regards streaming as a public performance. With Twitch currently in the crosshairs of the music industry, such a change would turn up the heat on streamers and Twitch even higher -- perhaps to an untenable degree. Other platforms, like YouTube, would almost certainly suffer as well. According to [Politico offshoot Protocol], House and Senate Judiciary Committees have agreed to package the streaming felony proposal with other controversial provisions that include the CASE act, which would establish a new court-like entity within the U.S. Copyright Office to resolve copyright disputes, and the Trademark Modernization Act, which would give the U.S. Patent and Trademark Office more flexibility to crack down on illegitimate claims from foreign countries. It's not difficult to see why Tillis would push a proposal that benefits big companies in the entertainment industry to the detriment of regular people; The American Prospect points out that in the past couple years, Tillis' campaign committee and leadership received donations totaling out to well over $100,000 from PACs with ties to the Motion Picture Association, Sony Pictures, Universal Music Group, Comcast & NBC Universal, The Internet and Television Association, Salem Media Group, and Warner Music, among many others.

Read more of this story at Slashdot.

A key Food and Drug Administration advisory panel on Thursday recommended the approval of Pfizer and BioNTech's coronavirus vaccine for emergency use in people over 16 years old, the last step before the FDA gives the final OK to broadly distribute the first doses throughout the United States. CNBC reports: If the FDA accepts the nonbinding recommendation from the Vaccines and Related Biological Products Advisory Committee -- which is expected -- it would mark a pivotal moment in the Covid-19 pandemic, which has infected more than 15.4 million people and killed roughly 290,000 in the U.S. in less than a year. The committee plays a key role in approving flu and other vaccines in the U.S., verifying the shots are safe for public use. While the FDA doesn't have to follow the advisory committee's recommendation, it often does. The FDA could grant emergency use authorization of Pfizer's vaccine as early as Friday, James Hildreth, a member of the committee, told NBC's "Weekend Today" on Saturday. An emergency use authorization, or EUA, generally allows a drug or vaccine to be administered to a limited population or setting, such as to hospitalized patients, as the agency continues to evaluate safety data. It's unclear whether the FDA will authorize Pfizer and BioNTech's vaccine for use in certain groups. Some people, including pregnant women and young children, will likely have to wait to get the vaccine in the U.S. until Pfizer can finish trials on those specific groups. The FDA said Tuesday that there is currently insufficient data to make conclusions about the safety of the vaccine in children under age 16, pregnant women and people with compromised immune systems. Regulators in Canada, the U.K. and Bahrain have all cleared the vaccine for use by most adults.

Read more of this story at Slashdot.

Facebook is being investigated in Germany for linking usage of its Oculus VR headset to having a Facebook account. TechCrunch reports: Germany's Federal Cartel Office (aka, the Bundeskartellamt) said today that it's instigated abuse proceedings against Facebook to examine the linkage between Oculus VR products and its eponymous social network. In a statement, its president, Andreas Mundt, said: "In the future, the use of the new Oculus glasses requires the user to also have a Facebook account. Linking virtual reality products and the group's social network in this way could constitute a prohibited abuse of dominance by Facebook. With its social network Facebook holds a dominant position in Germany and is also already an important player in the emerging but growing VR (virtual reality) market. We intend to examine whether and to what extent this tying arrangement will affect competition in both areas of activity." Reached for comment on the FCO Oculus proceeding, a Facebook spokesperson sent us this statement: "While Oculus devices are not currently available for sale in Germany, we will cooperate fully with the Bundeskartellamt and are confident we can demonstrate that there is no basis to the investigation."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Brave Software, maker of the Brave Web browser, is introducing a news reader that's designed to protect user privacy by preventing parties -- both internal and third party -- from tracking the sites, articles, and story topics people view. Brave Today, as the service is called, is using technology that the company says sets it apart from news services offered by Google and Facebook. It's designed to deliver personalized news feeds in a way that leaves no trail for Brave, ISPs, and third parties to track. The new service is part of Brave's strategy of differentiating its browser as more privacy-friendly than its competitors'. Key to Brave Today is a new content delivery network the company is unveiling. Typically, news services use a single CDN to cache content and then serve it to users. This allows the CDN or the service using it to see both the IP address and news feed of each user, and over time, that data can help services build detailed profiles of a person's interests. The Brave Today CDN takes a different approach. It's designed in a way that separates a user's IP address from the content they request. One entity offers a load-balancing service that receives TLS-encrypted traffic from the user. The load balancer then passes the traffic on to the CDN that processes the request. The load balancer knows the user's IP address but, because the request is encrypted, has no visibility into the content the user is seeking. The CDN, meanwhile, sees only the request but has no way of knowing the IP address that's making it. Responses are delivered in reverse order. To prevent the data from being combined, Brave says that it will use one provider for load balancing and a different one for content delivery. To prevent the load-balancing provider from using the size of the requests and responses to infer the contents of the encrypted data, the service will also use a technique called padding, which adds characters to the plaintext before it's encrypted. The CDN uses several other techniques to preserve the anonymity of users. Among them: stripping out various headers that could be used to identify the person making the request. Furthermore, Brave is also taking steps to shield user information from its own employees. "... [T]he company has configured its account with the load-balancing provider to restrict access to its logging resources," reports Ars. "The load-balancing provider also doesn't provide the ability for customers to use the proxy protocol to inject the requester's IP address into outgoing requests. In case that changes, however, Brave has also entered into a contract with the load balancer that restricts access to logs or use of the protocol, even if Brave asks."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Reuters: Mastercard Inc said on Thursday it was ending the use of its cards on Pornhub after its investigation confirmed the presence of unlawful content on the sex videos site. Pornhub said on Tuesday it had banned video downloads and was allowing only certain partner accounts to upload content after a New York Times column reported that many videos posted on the adult website depicted sexual assault of children. The newspaper column had also described some videos on the site as recordings of assaults on unconscious women and girls. Pornhub has denied the allegations. Billionaire investor Bill Ackman asked Visa Inc to follow suit. UPDATE: Following Mastercard's termination, an official Visa account tweeted: "Given the allegations of illegal activity, Visa is suspending Pornhub's acceptance privileges pending the completion of our ongoing investigation. We are instructing the financial institutions who serve MindGeek to suspend processing of payments through the Visa network." "These actions are exceptionally disappointing, as they come just two days after Pornhub instituted the most far-reaching safeguards in user-generated platform history," Pornhub said in a statement. "Unverified users are now banned from uploading content -- a policy no other platform has put in place, including Facebook, which reported 84 million instances of child sexual abuse material over the last three years. In comparison, the Internet Watch Foundation reported 118 incidents on Pornhub over the last three years. This news is crushing for the hundreds of thousands of models who rely on our platform for their livelihoods."

Read more of this story at Slashdot.

Salesforce today peeled back the curtains on ReceptorNet, a machine learning system researchers at the company developed in partnership with clinicians at the University of Southern California's Lawrence J. Ellison Institute for Transformative Medicine of USC. From a report: The system, which can determine a critical biomarker for oncologists when deciding on the appropriate treatment for breast cancer patients, achieved 92% accuracy in a study published in the journal Nature Communications. Breast cancer affects more than 2 million women each year, with around one in eight women in the U.S. developing the disease over the course of their lifetime. In 2018 in the U.S. alone, there were also 2,550 new cases of breast cancer in men. And rates of breast cancer are increasing in nearly every region around the world. In an effort to address this, Salesforce researchers developed an algorithm -- the aforementioned ReceptorNet -- that can predict hormone-receptor status from inexpensive and ubiquitous images of tissue. Typically, breast cancer cells extracted during a biopsy or surgery are tested to see if they contain proteins that act as estrogen or progesterone receptors. (When the hormones estrogen and progesterone attach to these receptors, they fuel the cancer growth.) But these types of biopsy images are less widely available and require a pathologist to review. In contrast to the immunohistochemistry process favored by clinicians, which requires a microscope and tends to be expensive and not readily available in parts of the world, ReceptorNet determines hormone receptor status via hematoxylin and eosin (H&E) staining, which takes into account the shape, size, and structure of cells. Salesforce researchers trained the system on several thousand H&E image slides from cancer patients in "dozens" of hospitals around the world.

Read more of this story at Slashdot.

Apple has moved its self-driving car unit under the leadership of top artificial intelligence executive John Giannandrea, who will oversee the company's continued work on an autonomous system that could eventually be used in its own car, Bloomberg reports. From the report: The project, known as Titan, is run day-to-day by Doug Field. His team of hundreds of engineers have moved to Giannandrea's artificial intelligence and machine-learning group, according to people familiar with the change. Previously, Field reported to Bob Mansfield, Apple's former senior vice president of hardware engineering. Mansfield has now fully retired from Apple, leading to Giannandrea taking over. Giannandrea joined Apple in 2018 as its vice president of AI Strategy and Machine Learning before being promoted to Apple's executive team as a senior vice president later that year. He ran Google's machine-learning and search teams before that. At Apple, in addition to the car project, he is in charge of Siri and machine-learning technologies across Apple's products. Mansfield initially retired from Apple in 2012, only to return for less than a year as its senior vice president in charge of chip technology. Mansfield stepped down from that role in 2013 and then remained as a part-time consultant.

Read more of this story at Slashdot.

Joel Hruska, writing at ExtremeTech: It's not just a question of whether top-end hardware is available, but whether midrange and last-gen hardware is selling at reasonable prices. If you want to go AMD, be aware that Ryzen 5000 CPUs are hard to find and the 6800 and 6800 XT are vanishingly rare. The upper-range Ryzen 3000 CPUs available on Amazon and Newegg are also selling for well above their prices six months ago. If you want to build an Intel system, the situation is a little different. A number of the 9th and 10th-gen chips are actually priced at MSRP and not too hard to find. The Core i7-9700K has fallen to $269, for example, and it's still one of Intel's fastest gaming CPUs. At that price, paired with a Z370 motherboard, you could build a gaming-focused system, so long as you don't actually need a new high-end GPU. The Core i7-10700K is $359, which isn't quite as competitive, but it squares off reasonably well against chips like the 3700X at $325. Amazon and Newegg both report the 3600X selling for more, at $400 and $345, respectively. But even if these prices are appealing, the current GPU market makes building a gaming system much above lower-midrange to midrange a non-starter. Radeon 6000 GPUs and RTX 3000 GPUs are both almost impossible to find, and the older, slower, and less feature-rich cards that you can buy are almost all selling for more today than they were six months ago. Not every GPU has been kicked into the stratosphere, but between the cards you can't buy and the cards you shouldn't buy, there's a limited number of deals currently on the market. Your best bet is to set up price alerts on specific SKUs you are watching with the vendor in question. There is some limited good news, though: DRAM and SSDs are both still reasonably priced. DRAM and SSD prices are both expected to decline 10-15 percent through Q4 2020 compared with the previous quarter, and there are good deals to be had on both. [...] Power supply prices look reasonable, too, and motherboard availability looks solid. If you don't need to buy a GPU right now and you're willing to or prefer to use Intel, there's a more reasonable case to be made for building a system. But if you need a high-end GPU and/or want a high-end Ryzen chip to go with it, you may be better off shopping prebuilt systems or waiting a few more months.

Read more of this story at Slashdot.

Microsoft has raised the alarm today about a new malware strain that infects users' devices and then proceeds to modify browsers and their settings in order to inject ads into search results pages. From a report: Named Adrozek, the malware has been active since at least May 2020 and reached its absolute peak in August this year when it controlled more than 30,000 browsers each day. But in a report today, the Microsoft 365 Defender Research Team believes the number of infected users is much, much higher. Microsoft researchers said that between May and September 2020, they observed "hundreds of thousands" of Adrozek detections all over the globe. Based on internal telemetry, the highest concentration of victims appears to be located in Europe, followed by South and Southeast Asia. Microsoft says that, currently, the malware is distributed via classic drive-by download schemes. Users are typically redirected from legitimate sites to shady domains where they are tricked into installing malicious software. The boobytrapped software installs the Androzek malware, which then proceeds to obtain reboot persistence with the help of a registry key.

Read more of this story at Slashdot.

An anonymous reader shares a report: More than one billion people in India today have a mobile connection, thanks in part to the proliferation of low-cost Android smartphones and the world's cheapest mobile data plans in recent years. This scale was unimaginable just three decades ago, when India had fewer than 2.5 million telephones in the country. One of the earliest and most pivotal efforts that expanded the reach of telephones in the country took place in the late 1980s. That was when the Indian government backed the idea of setting up telephone booths, or public call offices, across cities and towns. No longer did people need to buy expensive telephones, or pay exorbitant fees and bills. A person could just walk to a nearby mom and pop store, place a call for a couple of cents and move on. On Wednesday, India's cabinet approved a proposal that seeks to replicate the decades-old strategy -- and its success -- with democratizing Wi-Fi in the world's second-largest internet market. India's IT Minister Ravi Shankar Prasad said that the government will launch PM WANI (Prime Minister Wi-Fi Access Network Interface) to "unleash a massive network in the country." The neighborhood stores that served as public call offices could now be public data offices, he said. To make the program a success, the government will not charge any license or registration fee, he said.

Read more of this story at Slashdot.