An anonymous reader quotes a report from SFGATE: If you've recently been laid off and have started the arduous process of looking for a new job, you've probably seen them on networking platforms like LinkedIn: postings for roles that are 30 days old, maybe more, with suspiciously wide salary ranges. They usually have hundreds, or even thousands, of hopeful applicants vying for the same position, but if you do a quick cross-check and notice that the role isn't posted on the company's actual website -- or any of their social media pages -- you should probably stop drafting that cover letter, because it's possible they're not hiring at all. "Ghost jobs," or ads for positions that aren't actually open, are a common phenomenon in the tech industry, which has been plagued by layoffs and budget cuts over recent years. As unemployed workers struggle to regain their footing, recruiters and career coaches who spoke with SFGATE warned that these fake jobs posted by real companies serve multiple, sometimes insidious purposes.

According to a 2024 survey from MyPerfectResume, 81% of recruiters admitted to posting ads for positions that were fake or already filled. While some respondents said employers did it to maintain a presence on job boards and build a talent pool, it's also used to commit psychological warfare: 25% said ghost jobs helped companies gauge how replaceable their employees were, while 23% said it helped make the company appear more stable during a hiring freeze. Another damning 2024 report from Resume Builder said that 62% companies posted them specifically to make their employees feel replaceable. They also made ads to "trick overworked employees" into believing that more people would be brought on to alleviate their overwhelming workload.

After interviewing 1,641 hiring managers, Resume Builder researchers found that 40% of employers posted fake job listings in 2024, and that three in 10 currently had ghost jobs listed. The idea to post them mostly trickled down from HR, followed by senior management and executives, their June 2024 article continued. Though the listings were posted on multiple hiring platforms, the majority of them appeared on LinkedIn and the companies' websites. Evidence suggests this trend is taking hold throughout the Bay Area, too. A collaborative document circulating online reveals a growing list of employers accused of posting ghost jobs. Many of them, it turns out, are tech companies with offices based in California.

[ Read more of this story ]( https://slashdot.org/story/24/10/31/206209/ghost-jobs-are-wreaking-havoc-on-tech-workers?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

With Windows 10 support set to expire on October 14, 2025, Microsoft is offering a one-time, one-year Extended Security Updates plan for consumers. "For $30, you'll receive 'critical' and 'important' security updates -- basically security patches that will continue to protect your Windows 10 PC from any vulnerabilities," reports PCWorld. "That $30 is for one year's worth of updates, and that's the only option at this time." From the report: Microsoft has been warning users for years that Windows 10 support will expire in 2025, specifically October 14, 2025. At that point, Windows 10 will officially fall out of support: there will be no more feature updates or security patches. On paper, that would mean that any Windows 10 PC will be at risk of any new vulnerabilities that researchers uncover.

Previously, Microsoft had quietly hinted that consumers would be offered the same ESU protections offered to businesses and enterprises, as it did in December 2023 and again in an "editor's note" shared in an April 2024 support post, in which the company said that "details will be shared at a later date for consumers." That time is now, apparently.

Back in December 2023, Microsoft offered the ESU on an annual basis to businesses for three years, one year at a time. The fees would double each year, charging businesses hundreds of dollars for the privilege. Consumers won't be offered the same deal, as a Microsoft representative said via email that it'll be a "one-time, one-year option for $30."

[ Read more of this story ]( https://tech.slashdot.org/story/24/10/31/2011223/want-to-keep-getting-windows-10-updates-itll-cost-you-30?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Google is advancing the release timeline for Android 16, shifting it to the second quarter of 2025 to better align with new device launches and accelerate access to its latest AI and machine learning resources. It should also "enable app creators and phone companies to prepare their products for the new software more quickly," reports CNET. From the report: [I]n a big-picture sense, the change could help facilitate a new wave of apps with more AI integration, considering developers will get access to Google's latest machine learning and AI resources even sooner. "We're in a once-in-a-generation moment to completely reimagine what our smartphones can do and how we interact with them," Google's Seang Chau, who took on the role of vice president and general manager of the Android Platform earlier this year, said in an interview with CNET. "It's a really exciting time for smartphones, and we've been putting a lot of thought into what we want to do next with them."

In addition to moving up the major release, Google will roll out a minor update in the fourth quarter of 2025 with feature updates, optimizations and bug fixes. It's a notable switch from Google's usual release timeline, but it's just one of several changes the company has made to the way it distributes Android updates in an effort to add features more frequently. [...] "Things are moving quite fast in the AI world right now," Chau said. "So we want to make sure that we get those developer [application programming interfaces], especially around machine learning and AI, available to our developers so they can build these capabilities faster and get them out to our users faster."

[ Read more of this story ]( https://tech.slashdot.org/story/24/10/31/2019248/android-16-will-launch-earlier-than-usual?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

AzWa Snowbird writes: Burning Man is urgently calling for millions more in donations amid faltering ticket sales and staff layoffs. The nonprofit's CEO, Marian Goodell, primarily blamed flagging higher-priced ticket sales and increased operating costs since the pandemic.
The festival has sold a tier of higher-priced tickets since at least 2016. In 2023, a limited number of more expensive advance tickets were available between Feb. 1 and Feb. 3, with 1,000 tickets costing $2,750 each and 3,000 costing $1,500, according to an archived version of Burning Man's 2023 ticket page. Ticket sales for the annual bacchanal in Black Rock City flopped this year after a rain-plagued 2022, and scores of burners later resold their tickets, eating huge losses.

[ Read more of this story ]( https://news.slashdot.org/story/24/10/31/2026236/burning-man-is-desperate-for-cash?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Former Google chief Eric Schmidt thinks the US Army should expunge "useless" tanks and replace them with AI-powered drones instead. From a report: Speaking at the Future Investment Initiative in Saudi Arabia this week, he said: "I read somewhere that the US had thousands and thousands of tanks stored somewhere," adding, "Give them away. Buy a drone instead."
The former Google supremo's argument is that recent conflicts, such as the war in Ukraine, have demonstrated how "a $5,000 drone can destroy a $5 million tank." In fact, even cheaper drones, similar to those commercially available for consumers, have been shown in footage on social media dropping grenades through the open turret hatch of tanks. Schmidt, who was CEO of Google from 2001 to 2011, then executive chairman to 2015, and executive chairman of Alphabet to 2018, founded White Stork with the aim of supporting Ukraine's war effort. It hopes to achieve this by developing a low-cost drone that can use AI to acquire its target rather than being guided by an operator and can function in environments where GPS jamming is in operation.
Notably, Schmidt also served as chair of the US government's National Security Commission on Artificial Intelligence (NSCAI), which advised the President and Congress about national security and defense issues with regard to AI. "The cost of autonomy is falling so quickly that the drone war, which is the future of conflict, will get rid of eventually tanks, artillery, mortars," Schmidt predicted.

[ Read more of this story ]( https://news.slashdot.org/story/24/10/31/2030255/us-army-should-ditch-tanks-for-ai-drones-says-eric-schmidt?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from The Guardian: The cost of cleaning up Sellafield is expected to spiral to 136 billion pounds ($175 billion USD) and Europe's biggest nuclear waste dump cannot show how it offers taxpayers value for money, the public spending watchdog has said. Projects to fix buildings containing hazardous and radioactive material at the state-owned site on the Cumbrian coast are running years late and over budget. Sellafield's spending is so vast -- with costs of more than 2.7 billion pounds a year -- that it is causing tension with the Treasury, the report from the National Audit Office (NAO) suggests. Officials from finance ministry told the NAO it was "not always clear" how Sellafield made decisions, the report reveals. Criticisms of its costs and processes come as the chancellor, Rachel Reeves, prepares to plug a hole of about 40 billion pounds in her maiden budget. Gareth Davies, the head of the NAO, said: "Despite progress achieved since the NAO last reported, I cannot conclude Sellafield is achieving value for money yet, as large projects are being delivered later than planned and at higher cost, alongside slower progress in reducing multiple risks."

He added: "Continued underperformance will mean the cost of decommissioning will increase considerably, and 'intolerable risks' will persist for longer."

David Peattie, the NDA's chief executive, said: "Sellafield is one of the most complex environmental programs in the world. We're proud of our workforce and achievements being made, including the unprecedented retrieval of legacy waste from all four highest hazard facilities. But as the NAO rightly points out there is still more to be done. This includes better demonstrating we are delivering value for money and the wider significant societal and economic benefits through jobs, the supply chain and community investments."

[ Read more of this story ]( https://hardware.slashdot.org/story/24/10/31/2243207/sellafield-cleanup-cost-rises-to-175-billion-amid-tensions-with-treasury?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

A new study suggests Uranus' moon Miranda may harbor a vast subsurface ocean, challenging previous assumptions about its frozen state and positioning it as a potential ocean world alongside other icy moons. Phys.Org reports: Among the moons in the solar system, Miranda stands out. The few images Voyager 2 captured in 1986 show Miranda's southern hemisphere (the only part we've seen) is a Frankenstein-like hodgepodge of grooved terrain quartered off by rough scarps and cratered areas, like squares on a quilt. Most researchers suspect these bizarre structures are the result of tidal forces and heating within the moon. Caleb Strom, a graduate student at the University of North Dakota who worked with Nordheim and Alex Patthoff of the Planetary Science Institute in Arizona, revisited the Voyager 2 images. The team set out to explain Miranda's enigmatic geology by reverse engineering the surface features, working backward to uncover what the moon's interior structure must have been to shape the moon's geology in response to tidal forcing.

After first mapping the various surface features like cracks, ridges and Miranda's unique trapezoidal coronae, the team developed a computer model to test several possible structures of the moon's interior, matching the predicted stress patterns to the actual surface geology. The setup that produced the best match between predicted stress patterns and observed surface features required the existence of vast ocean beneath Miranda's icy surface some 100-500 million years ago. This subsurface ocean was at least 62 miles (100 kilometers) deep, according to the study, and hidden beneath an icy crust no more than 19 miles (30 kilometers) thick. Given Miranda has a radius of just 146 miles (235 kilometers), the ocean would have filled almost half of the moon's body. "That result was a big surprise to the team," Strom said.

Key to creating that ocean, the researchers believe, were tidal forces between Miranda and nearby moons. These regular gravitational tugs can be amplified by orbital resonances -- a configuration where each moon's period around a planet is an exact integer of the others' periods. Jupiter's moons Io and Europa, for example, have a 2:1 resonance: For every two orbits Io makes around Jupiter, Europa makes exactly one, leading to tidal forces that are known to sustain an ocean beneath Europa's surface. These orbital configurations and the resulting tidal forces deform the moons like rubber balls, leading to friction and heat that keeps interiors warm. This also creates stresses that crack the surface, creating a rich tapestry of geologic features. Numerical simulations have suggested that Miranda and its neighboring moons likely had such a resonance in the past, offering a potential mechanism that could have warmed Miranda's interior to produce and maintain a subsurface ocean.

At some point, the moons' orbital ballet desynchronized, slowing the heating process so that the moon's insides started to cool and solidify. But the team doesn't think Miranda's interior has fully frozen yet. If the ocean had completely frozen, Nordheim explained, it would have expanded and caused certain telltale cracks on the surface, which aren't there. This suggests that Miranda is still cooling -- and may have an ocean beneath its surface even now. Miranda's modern-day ocean is probably relatively thin, Strom noted. "But the suggestion of an ocean inside one of the most distant moons in the solar system is remarkable," he said. Miranda wasn't predicted to have an ocean. With its small size and old age, scientists thought it would likely be a frozen ball of ice. Any leftover heat from its formation was assumed to have dissipated long ago. But as Patthoff pointed out, predictions about ice moons can be wrong, as evidenced by Saturn's moon Enceladus. The study has been published in The Planetary Science Journal.

[ Read more of this story ]( https://science.slashdot.org/story/24/10/31/2249217/uranus-moon-miranda-may-have-an-ocean-beneath-its-surface-study-finds?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Google is rolling out a dedicated weather app on Pixel phones (model 6 and newer with Android 15) that integrates AI-generated summaries and customizable widgets. Ars Technica reports: There's a prominent "AI generated weather report" on top of the weather stack, which is a combination of summary and familiarity. "Cold and rainy day, bring your umbrella and hold onto your hat!" is Google's example; I can't provide another one, because an update to "Gemini Nano" is pending. You can see weather radar for your location, along with forecasted precipitation movement. The app offers "Nowcasting" precipitation guesses, like "Rain continuing for 2 hours" or "Light rain in 10 minutes."

The best feature, one seen on the version of Weather that shipped to the Pixel Tablet and Fold, is that you can rearrange the order of data shown on your weather screen. I moved the UV index, humidity, sunrise/sunset, and wind conditions as high as they could go on my setup. It's a trade-off, because the Weather app's data widgets are so big as to require scrolling to get the full picture of a day, and you can't move the AI summary or 10-day forecast off the top. But if you only need a few numbers and like a verbal summary, it's handy. Sadly, if you're an allergy sufferer and you're not in the UK, Germany, France, or Italy, Google can't offer you any pollen data or forecasts. There is also, I am sad to say, no frog. You can download the app here.

[ Read more of this story ]( https://mobile.slashdot.org/story/24/10/31/238212/pixel-phones-are-getting-an-actual-weather-app-in-2024?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from The Guardian: Complaints about the brightness of modern headlights have become commonplace. On X, thousands of users have tweeted about headlights being too bright. The subreddit r/fuckyourheadlights has over 35,000 members who post blurry photos of offending high beams and LED headlights. Outlets like the New York Times and NBC News have written about the risks of headlight glare. Advocacy groups have called for bans on LED headlights. And the UK government launched a review into the dangers of headlight glare earlier this year, after many driver complaints. And yet, according to many experts, the problem with headlights is not that they're too bright -- it's that they're not bright enough. "We actually need more light on the road than what we have," says Greg Bannon, director of automotive engineering at the American Automobile Association (AAA). Only a minority of US roadways have overhead street lighting, as one 2019 AAA report noted. As a result, in many areas, headlights are the sole method of illumination when driving at night. But which is the safety bigger risk: inadequate illumination, or headlights that impair the vision of other drivers? The report notes that the U.S. standards set by the National Highway Traffic Safety Administration (NHTSA) haven't changed in decades and are much weaker than Europe's. Adaptive headlights, which automatically adjust brightness to avoid blinding other drivers, have been approved by NHTSA since 2022 but are still relatively rare due to differing standards and costs.

[ Read more of this story ]( https://tech.slashdot.org/story/24/10/31/2259218/us-experts-say-headlights-arent-bright-enough?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Australian mathematicians have proven the famous "infinite monkey theorem" impossible within the universe's lifespan. The theorem suggests monkeys typing randomly would eventually produce Shakespeare's complete works. Scientists Stephen Woodcock and Jay Falletta calculated that even 200,000 chimpanzees typing one character per second until the universe's heat death would fail to reproduce Shakespeare's writings.
A single chimp has only a 5% chance of typing "bananas" in its lifetime, with more complex phrases facing astronomically lower odds. "This finding places the theorem among other probability puzzles and paradoxes... where using the idea of infinite resources gives results that don't match up with what we get when we consider the constraints of our universe," Associate Prof Woodcock was quoted as saying by BBC.

[ Read more of this story ]( https://science.slashdot.org/story/24/11/01/0448202/australian-mathematicians-debunk-infinite-monkey-theorem?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Indonesia has banned sales of Google Pixel smartphones for failing to meet a 40% local content requirement, days after blocking Apple's iPhone 16 in Southeast Asia's biggest phone market. Google must obtain local content certification before resuming sales in Indonesia, Industry Ministry spokesman Febri Hendri Antoni Arief said. The move follows last week's iPhone 16 ban after Apple failed to fulfill a $95 million investment pledge.

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/01/0758207/indonesia-bans-google-pixel-phones-over-local-rules?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

British cybersecurity firm Sophos revealed this week that it waged a five-year battle against Chinese hackers who repeatedly targeted its firewall products to breach organizations worldwide, including nuclear facilities, military sites and critical infrastructure. The company told Wired that it traced the attacks to researchers in Chengdu, China, linked to Sichuan Silence Information Technology and the University of Electronic Science and Technology.
Sophos planted surveillance code on its own devices used by the hackers, allowing it to monitor their development of sophisticated intrusion tools, including previously unseen "bootkit" malware designed to hide in the firewalls' boot code. The hackers' campaigns evolved from mass exploitation in 2020 to precise attacks on government agencies and infrastructure across Asia, Europe and the United States. Wired story adds: Sophos' report also warns, however, that in the most recent phase of its long-running conflict with the Chinese hackers, they appear more than ever before to have shifted from finding new vulnerabilities in firewalls to exploiting outdated, years-old installations of its products that are no longer receiving updates. That means, company CEO Joe Levy writes in an accompanying document, that device owners need to get rid of unsupported "end-of-life" devices, and security vendors need to be clear with customers about the end-of-life dates of those machines to avoid letting them become unpatched points of entry onto their network. Sophos says it's seen more than a thousand end-of-life devices targeted in just the past 18 months.
"The only problem now isn't the zero-day vulnerability," says Levy, using the term "zero-day" to mean a newly discovered hackable flaw in software that has no patch. "The problem is the 365-day vulnerability, or the 1,500-day vulnerability, where you've got devices that are on the internet that have lapsed into a state of neglect."

[ Read more of this story ]( https://it.slashdot.org/story/24/11/01/088213/inside-a-firewall-vendors-5-year-war-with-the-chinese-hackers-hijacking-its-devices?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Apple has reached an agreement to acquire Pixelmator, the maker of popular photo and image editing apps Pixelmator Pro, Pixelmator for iOS, and Photomator. Financial terms of the deal wasn't disclosed.

[ Read more of this story ]( https://apple.slashdot.org/story/24/11/01/161235/apple-acquires-photo-editing-app-maker-pixelmator?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Three months ago, Wall Street punished the world's largest technology firms for spending enormous amounts to develop artificial intelligence, only to deliver results that failed to justify the costs. Silicon Valley's response this quarter? Plans to invest even more. Bloomberg: The capital expenditures of the four largest internet and software companies -- Amazon, Microsoft, Meta and Alphabet -- are set to total well over $200 billion this year, a record sum for the profligate collective.
Executives from each company warned investors this week that their splurge will continue next year, or even ramp up. The spree underscores the extreme costs and resources consumed from the worldwide boom in AI ignited by the arrival of ChatGPT. Tech giants are racing to secure the scarce high-end chips and build the sprawling data centers the technology demands. To do so, the companies have cut deals with energy providers to power these facilities, even reviving a notorious nuclear plant.

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/01/1238226/tech-giants-are-set-to-spend-200-billion-this-year-chasing-ai?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Apple is taking a 20 percent stake in its iPhone satellite connectivity partner GlobalStar -- a stake worth $400 million -- as part of an expansion of its deal with the company. From a report: GlobalStar will also receive a prepayment of $1.1 billion from Apple that is intended to improve satellite infrastructure.
Apple relies on GlobalStar's satellites to enable to send emergency text messages, iMessage reactions, and more through the skies in areas with no cell signal. GlobalStar disclosed the details of the deal expansion in an SEC filing, which includes "a new satellite constellation, expanded ground infrastructure, and increased global [mobile satellite services] licensing."

[ Read more of this story ]( https://apple.slashdot.org/story/24/11/01/1656200/apple-is-buying-20-of-its-iphone-satellite-services-partner?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Corporate resistance to AI tools is costing employees six hours per week in manual tasks that could be automated, according to research by recruitment firm SThree. Sixty-three percent of workers blame management's "digital illiteracy" for slow AI adoption, despite major companies rushing to tout AI initiatives since ChatGPT's launch. A 2023 tech.io study found two-thirds of business leaders barely use AI tools due to limited understanding.

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/01/185209/more-than-60-of-ceos-are-digitally-illiterate-according-to-their-own-employees?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Intel is rolling back one of the biggest changes to its laptop chips in years. The Verge: Remember how this fall's Lunar Lake laptops ditched the idea of memory sticks, putting a fixed amount of RAM on the processor package instead? Intel CEO Pat Gelsinger now says that turned out to be a financial mistake, and Intel won't do it again. Oh, and he may be axing desktop GPUs, too. Future Intel generations of chips, including Panther Lake and Nova Lake, won't have baked-on memory. "It's not a good way to run the business, so it really is for us a one-off with Lunar Lake," said Gelsinger on Intel's Q3 2024 earnings call, as spotted by VideoCardz.

[ Read more of this story ]( https://slashdot.org/story/24/11/01/1837217/intels-future-laptops-will-have-memory-sticks-again?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An enormous fine levied by a Russian court on Google caught the attention of the Kremlin -- which hopes Google will notice in turn. From a report: President Vladimir Putin's spokesman, Dmitri Peskov, commented on the sum on Thursday. It came after a court demanded payment equivalent of $20.6 decillion -- an almost incomprehensible figure that exceeds the world's GDP. The sum came from a penalty for suspending the YouTube accounts of various Russian outlets. It has been regularly doubling for years, with no limit, leading it into realms of the absurd, which Peskov seemed to acknowledge. "Although it is a specific amount, I cannot even pronounce this number, it is rather filled with symbolism," said Peskov in response to a question from NBC News.

[ Read more of this story ]( https://news.slashdot.org/story/24/11/01/1848233/kremlin-says-it-hopes-206-decillion-fine-got-googles-attention?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from TechCrunch: The trend of big touchscreens in cars has left many yearning for the not-so-distant days when most user interactions happened with physical buttons. But Rivian's chief software officer Wassym Bensaid believes using buttons in a car is an "anomaly." "It's a bug. It's not a feature," Bensaid said Wednesday at TechCrunch Disrupt 2024. "Ideally, you would want to interact with your car through voice. The problem today is that most voice assistants are just broken." To that end, Bensaid said that "every week" he's driving around an engineering vehicle that has an AI-powered voice assistant, though he did not specify which one. He mentioned earlier in his interview with TechCrunch's transportation editor Kirsten Korosec that Rivian has "partnerships that I cannot yet talk about."

"I think the car is actually a fantastic environment for AI," he said, while noting that latency and hallucinations are still very big problems that need to be solved. "The final north star I have is having voice [controls] become the primary means of interaction with the vehicle. The reality is that the vehicle is so feature-rich, that even if we do a fantastic job in the UI, there will always be prioritization that we need to do in terms of having things one or two menus behind," Bensaid told TechCrunch after he got off stage. Bensaid also said he's a big believer in the ability of AI-powered voice controls to handle complex requests. For instance, he said if a driver says "I'm hungry" the in-car assistant should be able to quickly direct them to a nearby restaurant that they might prefer. Bensaid said the company is committed to creating a unique, integrated user experienced tailored for Rivian owners -- one that won't include CarPlay.

CarPlay "takes over all the pixels in the screen, and it's a replacement of the entire experience, and we truly believe that with the technology capabilities that we have, we can offer a much more refined, integrated experience," he said.

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/01/2050258/rivians-chief-software-officer-says-in-car-buttons-are-an-anomaly?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The Biden administration is investing $825 million in a new semiconductor research and development facility in Albany, New York. Reuters reports: The New York facility will be expected to drive innovation in EUV technology, a complex process necessary to make semiconductors, the U.S. Department of Commerce and Natcast, operator of the National Semiconductor Technology Center (NTSC) said. The launch of the facility "represents a key milestone in ensuring the United States remains a global leader in innovation and semiconductor research and development," Commerce Secretary Gina Raimondo said. From the U.S. Department of Commerce press release: EUV Lithography is essential for manufacturing smaller, faster, and more efficient microchips. As the semiconductor industry pushes the limits of Moore's Law, EUV lithography has emerged as a critical technology to enable the high-volume production of transistors beyond 7nm, previously unattainable. As the NSTC develops capabilities and programs, access to EUV lithography R&D is essential to meet its three primary goals 1) extend U.S. technology leadership, 2) reduce the time and cost to prototype, and 3) build and sustain a semiconductor workforce ecosystem.

[ Read more of this story ]( https://yro.slashdot.org/story/24/11/01/210206/us-plans-825-million-investment-for-new-york-semiconductor-rd-facility?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Disney's recently formed Office of Technology Enablement will coordinate the company's exploration, adoption and use of artificial intelligence, AR and VR tech. Engadget reports: It has tapped Jamie Voris, previously the CTO of its Studios Technology division, to oversee the effort. Before joining Disney in 2010, Voris was the chief technology officer at the National Football League. More recently, he led the development of the company's Apple Vision Pro app. Voris will report to Alan Bergman, the co-chairman of Disney Entertainment. Reuters reports the company eventually plans to grow the group to about 100 employees.

"The pace and scope of advances in AI and XR are profound and will continue to impact consumer experiences, creative endeavors, and our business for years to come -- making it critical that Disney explore the exciting opportunities and navigate the potential risks," Bergman wrote in an email Disney shared with Engadget. "The creation of this new group underscores our dedication to doing that and to being a positive force in shaping responsible use and best practices."

A Disney spokesperson told Engadget the Office of Technology Enablement won't take over any existing AI and XR projects at the company. Instead, it will support Disney's other teams, many of which are already working on products that involve those technologies, to ensure their work fits into the company's broader strategic goals. "It is about bringing added focus, alignment, and velocity to those efforts, and about reinforcing our commitment being a positive force in shaping responsible use and best practices," the spokesperson said.

[ Read more of this story ]( https://slashdot.org/story/24/11/01/219243/disney-forms-dedicated-ai-xr-group-to-coordinate-company-wide-adoption?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from the Royal Navy: The Royal Navy has successfully demonstrated the capabilities of ground-breaking cold atom technology. P2000 vessel HMS Pursuer hosted the trial, which unlocks new possibilities in areas such as covert monitoring, which require precise signals for accurate positioning, navigation and timing. The Office of the Chief of Technology Officer (OCTO) for the RN worked with UK quantum technology company Aquark Technologies. The trial involved the company's miniature cold atom systems, founded on Aquark's unique laser-cooling method, known as supemolasses.

This method to generate cold atoms does not need an applied magnetic field, therefore reducing the size, weight, power consumption and cost of sensors. A cold atom is an atom that has been laser-cooled to extremely low temperatures, typically near absolute zero (-273.15C). At these temperatures, the thermal motion of atoms is very slow, allowing their quantum mechanical properties to be precisely controlled. Quantum Sensing is an advanced sensor technology that detects changes in motion, and electric and magnetic fields, by collecting data at the atomic level. Commander Matthew Steele, who heads up Future Technology for OCTO, said: "Quantum technologies being developed in the UK will offer an alternative Position, Navigation and Timing (PNT) capability necessary to operate effectively in GPS denied or degraded environments."

"Over the next three years, the Navy seeks to accelerate the development of quantum technologies -- such as Aquarks -- through funding and sea trials, to secure the Royal Navy an opportunity to invest in a non-GPS-based PNT capability and to maintain its global operating advantage."

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/01/2117223/royal-navy-successfully-tests-quantum-sensing-technology?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The feds have indicted Aleksei Andriunin, a 26-year-old Russian national and founder of Gotbit, on charges of wire fraud and conspiracy to commit market manipulation. Crypto News reports: According to the U.S. Attorney's Office, the indictment alleges that Andriunin and his firm participated in a long-running scheme to artificially boost trading volumes for various cryptocurrency companies, including some based in the United States, to make them appear more popular and increase their trading value. Andriunin allegedly led these activities between 2018 and 2024 as Gotbit's CEO. He could face up to 20 years in prison, additional fines, and asset forfeiture if convicted, according to the U.S. Attorney's Office. Prosecutors say the scheme involved "wash trading," where the firm used its software to make fake trades that inflated a cryptocurrency's trading volume. This practice, called market manipulation, can mislead investors by giving the impression that demand for a particular cryptocurrency is higher than it actually is. Wash trades are illegal in traditional finance and are considered fraudulent because they deceive investors and manipulate market behavior.

Court documents also identify Gotbit's two directors, Fedor Kedrov and Qawi Jalili, as co-conspirators. The indictment claims Gotbit documented these activities in detailed records, tracking differences between genuine and artificial trading volumes. The firm allegedly pitched these services to prospective clients, explaining how Gotbit's tactics would bypass detection on public blockchains, where transactions are recorded transparently. The U.S. Department of Justice has announced that it seized over $25 million worth of cryptocurrency assets connected to these schemes and made four arrests across multiple firms. If you've been following the crypto industry, you're probably familiar with "pump-and-dump" schemes that have popped up throughout the years. Although it's a form of market manipulation, it's not quite the same as "wash trading."

In a pump-and-dump scheme, the perpetrator artificially inflates the price of a security (often a low-priced or thinly traded stock) by spreading misleading or exaggerated information to attract other buyers, who then drive up the price. Once the price has risen due to increased demand, the manipulators "dump" their shares at the inflated price, selling to the new buyers and pocketing the profits. The price typically crashes after the dump, leaving unsuspecting investors with overvalued shares and significant losses.

Wash trading, on the other hand, involves simultaneously buying and selling of the same asset to create the illusion of higher trading volume and activity. The purpose is to mislead other investors about the asset's liquidity and demand, often giving the impression that it is more popular or actively traded than it actually is. Wash trades usually occur without real changes in ownership or price movement, as the buyer and seller may even be the same person or entity. This tactic can manipulate prices indirectly by creating a perception of interest, but it does not involve a direct inflation followed by a sell-off, like a pump-and-dump scheme.

[ Read more of this story ]( https://yro.slashdot.org/story/24/11/01/2133255/us-indicts-26-year-old-gotbit-founder-for-market-manipulation?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Waymo is advancing autonomous driving with a new training model for its robotaxis built on Google's multimodal large language model (MLLM) Gemini. The Verge reports: Waymo released a new research paper today that introduces an "End-to-End Multimodal Model for Autonomous Driving," also known as EMMA. This new end-to-end training model processes sensor data to generate "future trajectories for autonomous vehicles," helping Waymo's driverless vehicles make decisions about where to go and how to avoid obstacles. But more importantly, this is one of the first indications that the leader in autonomous driving has designs to use MLLMs in its operations. And it's a sign that these LLMs could break free of their current use as chatbots, email organizers, and image generators and find application in an entirely new environment on the road. In its research paper, Waymo is proposing "to develop an autonomous driving system in which the MLLM is a first class citizen."

The paper outlines how, historically, autonomous driving systems have developed specific "modules" for the various functions, including perception, mapping, prediction, and planning. This approach has proven useful for many years but has problems scaling "due to the accumulated errors among modules and limited inter-module communication." Moreover, these modules could struggle to respond to "novel environments" because, by nature, they are "pre-defined," which can make it hard to adapt. Waymo says that MLLMs like Gemini present an interesting solution to some of these challenges for two reasons: the chat is a "generalist" trained on vast sets of scraped data from the internet "that provide rich 'world knowledge' beyond what is contained in common driving logs"; and they demonstrate "superior" reasoning capabilities through techniques like "chain-of-thought reasoning," which mimics human reasoning by breaking down complex tasks into a series of logical steps.

Waymo developed EMMA as a tool to help its robotaxis navigate complex environments. The company identified several situations in which the model helped its driverless cars find the right route, including encountering various animals or construction in the road. [...] But EMMA also has its limitations, and Waymo acknowledges that there will need to be future research before the model is put into practice. For example, EMMA couldn't incorporate 3D sensor inputs from lidar or radar, which Waymo said was "computationally expensive." And it could only process a small amount of image frames at a time. There are also risks to using MLLMs to train robotaxis that go unmentioned in the research paper. Chatbots like Gemini often hallucinate or fail at simple tasks like reading clocks or counting objects.

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/01/2150228/waymo-explores-using-googles-gemini-to-train-its-robotaxis?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

California signed an agreement with major airlines to increase the use of sustainable aviation fuels, aiming to reach 200 million gallons by 2035 or about 40% of the state's air travel demand. The Hill reports: The California Air Resources Board (CARB) and Airlines for America (A4A) -- an industry trade group representing almost a dozen airlines -- pledged to increase the availability of sustainable aviation fuels statewide. Sustainable aviation fuels -- lower-carbon alternatives to petroleum-based jet fuels -- are typically made from nonpetroleum feedstocks, such as biomass or waste. At a San Francisco International Airport ceremony Wednesday, the partners committed (PDF) to using 200 million gallons of such fuels by 2035 -- an amount estimated to meet about 40 percent of travel demand within the state at that point, according to CARB. That quantity also represents a more than tenfold increase from current usage levels of these fuels, the agency added.

Among A4A member airlines are Alaska Airlines, American Airlines, Atlas Air Worldwide, Delta Air Lines, FedEx, Hawaiian Airlines, JetBlue Airways, Southwest Airlines, United Airlines and UPS, while Air Canada is an associate member. To achieve the 2035 goals, CARB and A4A said they plan to work together to identify, assess and prioritize necessary policy measures, such as incentivizing relevant investments and streamlining the permitting processes. A Sustainable Aviation Fuel Working Group, which will include government and industry stakeholders, will meet annually to both discuss progress and address barriers toward meeting these goals, the partners added. A public website will display updated information about the availability and use of conventional and sustainable fuels across California, while also providing details about state policies, according to the agreement.

[ Read more of this story ]( https://news.slashdot.org/story/24/11/01/2144244/california-inks-sustainable-aviation-fuel-deal-with-major-airlines?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Identity management firm Okta said Friday it has patched a critical authentication bypass vulnerability that affected customers using usernames longer than 52 characters in its AD/LDAP delegated authentication service.
The flaw, introduced on July 23 and fixed October 30, allowed attackers to authenticate using only a username if they had access to a previously cached key. The bug stemmed from Okta's use of the Bcrypt algorithm to generate cache keys from combined user credentials. The company switched to PBKDF2 to resolve the issue and urged affected customers to audit system logs.

[ Read more of this story ]( https://it.slashdot.org/story/24/11/02/0113243/okta-fixes-login-bypass-flaw-tied-to-lengthy-usernames?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from The Guardian: A new global inventory has catalogued air pollution from space activities from 2020 to 2022. The inventory includes time, position and pollution from 446 launchers as they ascended and the tracks of re-entries as objects are heated to extreme temperatures and break up or burn up in the upper atmosphere. It catalogues the pollution from 63,000 tons of rocket propellants used in 2022 and from 3,622 objects, including rocket parts and satellites, that re-entered the atmosphere between 2020 and 2023, amounting to about 12,000 tons. [...]

Types of launch pollutants depend on the propellent but can include particles of soot and aluminum oxides as well as nitrogen oxides, chlorine and water vapour and carbon dioxide. Extreme heat on re-entry causes atmospheric oxygen and nitrogen to combine to form more nitrogen oxides and also produces tiny metal-oxide particles as the objects break and burn up. Soot emitted high in the atmosphere can persist for several years, with a resulting climate warming impact that is up to 500 times greater than the same amount of soot from aviation or ground-level sources. Aluminum oxide particles, nitrogen oxides and chloride can consume the ozone in the stratosphere that protects us from the sun's ultraviolet radiation. These can remain in the atmosphere for decades. Dr Connor Barker, of the UCL team, said: "Many rocket manufacturers and space agencies keep this information tightly controlled. We had to be creative about the different sources we consulted, from launch live streams on YouTube to online databases maintained by space enthusiasts in their spare time."

[ Read more of this story ]( https://news.slashdot.org/story/24/11/01/221254/inventory-counts-air-pollution-cost-of-space-launches-and-re-entries?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Jay Newman, who made billions for Elliott Management pursuing Argentina's defaulted debt, wrote a 2022 thriller about corrupt spies and hedge funds. Now federal prosecutors are examining parallels between his novel "Undermoney" and real-world events.
The investigation centers on Amit Forlit, an Israeli private investigator facing U.S. extradition charges for alleged email theft from Argentine officials during Elliott's sovereign debt battle. Prosecutors are probing whether Forlit's alleged $20 million hacking operation aided Elliott's eventual $2.2 billion settlement with Argentina. "There's not that much fiction in 'Undermoney,'" Newman told interviewers while promoting the book, which features Israeli operatives and hedge fund intrigue. Newman and Elliott deny any wrongdoing, with Newman calling suggestions of illegal activity "categorically false."
The probe is examining $20 million paid to a Forlit-controlled company via a consulting firm that worked for Elliott, according to court statements and people familiar with the matter. Forlit denied involvement in hacking during a 2022 deposition. Prosecutors are also investigating Forlit's work for ExxonMobil regarding climate change critics. Neither Elliott nor ExxonMobil has been accused of wrongdoing. Newman, who left Elliott in 2016 with a $70 million bonus after the Argentina settlement, met regularly with Forlit to discuss the Argentine case, WSJ has reported. His novel follows dark money trails through Washington power corridors and Wall Street trading floors, featuring Israeli operatives described as "expensive, but consistent."

[ Read more of this story ]( https://news.slashdot.org/story/24/11/02/0136209/prosecutors-probe-hedge-fund-titans-thriller-for-clues-in-argentina-hack-case?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Starlink has launched home Internet service to 99.5% of residents in the National Radio Quiet Zone (NRQZ) after a multi-year collaboration with the National Radio Astronomy Observatory to minimize interference with radio telescopes. "The vast majority of people within the areas of Virginia and West Virginia collectively known as the National Radio Quiet Zone (NRQZ) can now receive high speed satellite Internet service," the National Radio Astronomy Observatory and Green Bank Observatory announced said. "The newly available service is the result of a nearly three-year collaborative engineering effort between the US National Science Foundation (NSF), SpaceX, and the NSF National Radio Astronomy Observatory (NSF NRAO), which operates the NSF Green Bank Observatory (NSF GBO) in West Virginia within the NRQZ." Ars Technica reports: There's a controversy over the 0.5 percent of residents who aren't included and are said to be newly blocked from using the Starlink Roam service. Starlink markets Roam as a service for people to use while traveling, not as a fixed home Internet service. The Pendleton County Office of Emergency Management last week issued a press release (PDF) saying that "customers with the RV/Roam packages had been using Starlink for approximately two years throughout 100% of the NRQZ. Now, the 0.5% have lost coverage after having it for two years. This means that a large section of southeastern Pendleton County and an even larger section of northern Pocahontas will NOT be able to utilize Starlink."

PCMag wrote that "Starlink is now live in 42 of the 46 cell areas around the Green Bank Observatory's telescopes." Pendleton County Emergency Services Coordinator Rick Gillespie told Ars today that Roam coverage was cut off in the remaining four cell areas. "After the agreement, we all lost effective use within the four cells," Gillespie told Ars in an email. Gillespie's press release said that, "in many cases, Starlink was the only Internet provider option residents and emergency responders had. This is unacceptable."

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/02/0326259/starlink-enters-national-radio-quiet-zone?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader quotes a report from The Guardian: More than 50 US lawmakers are calling on the Environmental Protection Agency (EPA) to join dozens of other countries in banning a widely used weedkiller linked to Parkinson's disease and other health dangers. In a October 31 letter (PDF) to the agency, seven US senators said that paraquat, a weedkiller commonly applied on US farms, was a "highly toxic pesticide whose continued use cannot be justified given its harms to farmworkers and rural communities". The call for a ban from the senators came after 47 members of the US House of Representatives sent a similar letter (PDF) to the EPA calling for a ban earlier in October.

The lawmakers cite scientific links between paraquat use and development of Parkinson's and other "life threatening diseases" as well as "grave impacts on the environment". "Health risks include a higher risk of Parkinson's disease, with some studies finding a 64% increase in the likelihood of developing Parkinson's, non-Hodgkin's Lymphoma, thyroid cancer, and other thyroid issues," they wrote. The New Jersey senator Cory Booker, organizer of the Senate letter, said the risks of paraquat exposure were "well documented" and that it was "irresponsible" for the EPA to continue to allow its use. "I hope the EPA will follow the science and ban paraquat," Booker said. The EPA has long maintained that there is no "clear link" between paraquat exposure and Parkinson's disease, though the agency does have a number of restrictions on use of the chemical due to its acute toxicity. The agency issued a draft report earlier this year affirming its position. Still, the agency said at that time that it would be reviewing more scientific studies and would issue a final report by January 17, 2025.

[ Read more of this story ]( https://science.slashdot.org/story/24/11/02/0337230/us-lawmakers-on-epa-to-ban-pesticide-linked-to-parkinsons-disease?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous Slashdot reader shared this report from CNBC:

Threads now has nearly 275 million monthly users, CEO Mark Zuckerberg said Wednesday. "We continue to be on track towards this becoming our next major social app," Zuckerberg said on a call with analysts, adding that he was "quite pleased" with the trajectory of the app.
The latest numbers indicate Threads is up 175% from a year ago when it reached 100 million users... The app is now signing up more than 1 million users per day, Zuckerberg also said on Wednesday. X remains ahead of Threads in terms of users, but not by much. Musk's social media app now has roughly 318 million monthly users, according to an estimate by market intelligence firm Sensor Tower. That's down 24% since Musk completed his acquisition of the company in October 2022, according to Sensor Tower.

The news also drew a reaction from ActivityPub/Activity Streams 2.0 co-author Evan Prodromou, who pointed out that the 275 million monthly active users is up from the 200 million reported just 13 weeks ago at the end of July.

"And most of them have access to the Fediverse. With more, hopefully, getting access soon."

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/02/0247249/threads-soars-to-275-million-monthly-users-says-zuckerberg?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

An anonymous reader shared this report from the Washington Post:

A few weeks ago, analysts at a specialized technological lab put a microchip from China under a powerful microscope. Something didn't look right... The microscopic proof was there that a chunk of the electronic components from Chinese high-tech champion Huawei Technologies had been produced by the world's most advanced chipmaker, Taiwan Semiconductor Manufacturing Company.
That was a problem because two U.S. administrations in succession had taken actions to assure that didn't happen. The news of the breach of U.S. export controls, first reported in October by the tech news site the Information, has sent a wave of concern through Washington... The chips were routed to Huawei through Sophgo Technologies, the AI venture of a Chinese cryptocurrency billionaire, according to two people familiar with the matter, speaking on the condition of anonymity to discuss a sensitive topic... "It raises some fundamental questions about how well we can actually enforce these rules," said Emily Kilcrease, a senior fellow at the Center for a New American Security in Washington... Taiwan's Ministry of Economic Affairs confirmed that TSMC recently halted shipments to a "certain customer" and notified the United States after suspecting that customer might have directed its products to Huawei...
There's been much intrigue in recent days in the industry over how the crypto billionaire's TSMC-made chips reportedly ended up at Huawei. Critics accuse Sophgo of working to help Huawei evade the export controls, but it is also possible that they were sold through an intermediary, which would align with Sophgo's denial of having any business relationship with Huawei... While export controls are often hard to enforce, semiconductors are especially hard to manage due to the large and open nature of the global chip trade. Since the Biden administration implemented sweeping controls in 2022, there have been reports of widespread chip smuggling and semiconductor black markets allowing Chinese companies to access necessary chips...
Paul Triolo, technology policy lead at Albright Stonebridge Group, said companies were trying to figure out what lengths they had to go to for due diligence: "The guidelines are murky."

[ Read more of this story ]( https://hardware.slashdot.org/story/24/11/02/0540218/how-americas-export-controls-failed-to-keep-cutting-edge-ai-chips-from-chinas-huawei?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The free face-image search engine PimEyes "scans through billions of images from the internet and finds matches of your photo that could have appeared in a church bulletin or a wedding photographer's website," -us/news/technology/they-made-a-public-rolodex-of-our-faces-here-s-how-i-tried-to-get-out/ar-AA1tlpPuwrites a Washington Post columnist.
So to find and delete themselves from "the PimEyes searchable Rolodex of faces," they "recently handed over a selfie and a digital copy of my driver's license to a company I don't trust."
PimEyes says it empowers people to find their online images and try to get unwanted ones taken down. But PimEyes face searches are largely open to anyone with either good or malicious intent. People have used PimEyes to identify participants in the Jan. 6, 2021, attack on the Capitol, and creeps have used it to publicize strangers' personal information from just their image.
The company offers an opt-out form to remove your face from PimEyes searches. I did it and resented spending time and providing even more personal information to remove myself from the PimEyes repository, which we didn't consent to be part of in the first place. The increasing ease of potentially identifying your name, work history, children's school, home address and other sensitive information from one photo shows the absurdity of America's largely unrestrained data-harvesting economy.
While PimEyes' CEO said they don't keep the information you provide to opt-out, "you give PimEyes at least one photo of yourself plus a digital copy of a passport or ID with personal details obscured..." according to the article. (PimEyes' confirmation email "said I might need to repeat the opt-out with more photos...")
Some digital privacy experts said it's worth opting out of PimEyes, even if it's imperfect, and that PimEyes probably legitimately needs a personal photo and proof of identity for the process. Others found it "absurd" to provide more information to PimEyes... or they weren't sure opting out was the best choice... Experts said the fundamental problem is how much information is harvested and accessible without your knowledge or consent from your phone, home speakers, your car and information-organizing middlemen like PimEyes and data brokers.
Nathan Freed Wessler, an American Civil Liberties Union attorney focused on privacy litigation, said laws need to change the assumption that companies can collect almost anything about you or your face unless you go through endless opt-outs. "These systems are scary and abusive," he said. "If they're going to exist, they should be based on an opt-in system."

[ Read more of this story ]( https://yro.slashdot.org/story/24/11/02/055255/pimeyes-made-a-public-rolodex-of-our-faces-should-you-opt-out?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

In 1896 the Dow Jones Industrial Average (or DJIA) was created as a kind of proxy indicator for the wider stock market. "A stock is typically added only if the company has an excellent reputation, demonstrates sustained growth and is of interest to a large number of investors," according to a source cited by Yahoo Finance. Its mix of stocks might be informally considered a sign of the times, since it's made up of 30 stocks that according to Wikipedia have been changed only 57 times over the last 128 years.
Wait — make that 58.... CNBC reports that NVIDIA is replacing Intel in the DJIA, "a shakeup to the blue-chip index that reflects the boom in AI and a major shift in the semiconductor industry."
Companies including Microsoft, Meta, Google and Amazon are purchasing Nvidia's GPUs, such as the H100, in massive quantities to build clusters of computers for their AI work. Nvidia's revenue has more than doubled in each of the past five quarters, and has at least tripled in three of them. The company has sginaled that demand for its next-generation AI GPU called Blackwell is "insane...."
While Nvidia has been soaring, Intel has been slumping. Long the dominant maker of PC chips, Intel has lost market share to Advanced Micro Devices and has made very little headway in AI. Intel shares have fallen by more than half this year as the company struggles with manufacturing challenges and new competition for its central processors. Intel said in a filing this week that the board's audit and finance committee approved cost and capital reduction activities, including lowering head count by 16,500 employees and reducing its real estate footprint. The job cuts were originally announced in August."

The DJIA will now include four of six tech companies worth $1 trillion — Apple, Microsoft, NVIDIA, and Amazon (which joined in February, replacing the owners of the Walgreens pharmacy chain). The other two trillion-dollar tech companies (not included in the DJIA) are Meta and Alphabet.
Adding NVIDIA to the DJIA will ensure "more representative exposure to the semiconductors industry" within the average, the index's curators told the Washington Post.
And also leaving the DJIA is power-generation company AES (which according to CNBC had a power mix of 54% renewables, 27% natural gas, 17% coal). It will be replaced by Vistra, defined by Wikipedia as America's largest competitive power generator, "with a capacity of approximately 39GW powered by a diverse portfolio including natural gas, nuclear, solar, and battery energy storage facilities."
In the 2020 Forbes Global 2000, Vistra Energy was ranked as the 756th-largest public company in the world. The company owns the Moss Landing Power Plant in California which currently (2021) contains the largest battery energy storage system in the world (400-MW/1,600-MWh). As of 2020, the company was ranked as the highest CO2 emitter in the U.S.

[ Read more of this story ]( https://hardware.slashdot.org/story/24/11/02/0328233/nvidia-replaces-rival-chipmaker-intel-on-the-dow-jones-industrial-average?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

While Amazon, Google, and other companies build new data centers — sometimes for their AI projects — parts of America "are facing higher electric bills," reports the Washington Post:
The facilities' extraordinary demand for electricity to power and cool computers inside can drive up the price local utilities pay for energy and require significant improvements to electric grid transmission systems. As a result, costs have already begun going up for customers — or are about to in the near future, according to utility planning documents and energy industry analysts. Some regulators are concerned that the tech companies aren't paying their fair share, while leaving customers from homeowners to small businesses on the hook.
In Oregon, electric utilities are warning regulators that consumers need protections from rising rates caused by data centers. From Virginia to Ohio and South Carolina, companies are battling over the extent of their responsibility for increases, attempting to fend off anger from customers. In the Mid-Atlantic, the regional power grid's energy costs shot up dramatically, and data centers are cited as among root causes of rate increases of up to 20 percent expected in 2025...
The tech firms and several of the power companies serving them strongly deny they are burdening others. They say higher utility bills are paying for overdue improvements to the power grid that benefit all customers. In some cases, they said in response to criticism from consumer and business advocates that they are committed to covering additional costs. But regulators — and even some utilities — are growing skeptical.
A jarring example of fallout on consumers is playing out on the Mid-Atlantic regional power grid, called PJM Interconnection, which serves 13 states and D.C. The recent auction to secure power for the grid during periods of extreme weather and high demand resulted in an 800 percent jump in the price that the grid's member utilities had to pay. The impact will be felt by millions by the spring, according to public records. Power bills will increase as much as 20 percent for customers of a dozen utilities in Maryland, Ohio, Pennsylvania, New Jersey and West Virginia, regulatory filings show. That includes households in the Baltimore area, where annual bills will increase an average of $192, said Maryland People's Counsel David Lapp, a state appointee who monitors utilities. The next auction, in 2025, could be more painful, Lapp said, leaving customers potentially "looking at increases of as much as $40 to $50 a month...."
Advocates cite another source of cost-shifting onto consumers: discounted rates that power companies and local government officials use to entice tech companies to build data centers... Google worked out a deal with Dominion Energy, blessed by regulators, to pay 6 cents per kilowatt hour for its power. That is less than half of what residential customers pay, as well as substantially less than is paid by businesses...
The article points out that in Pennsylvania, "Amazon's novel plan to fuel a data center from a reactor at the nearby Susquehanna nuclear plant is now in jeopardy, after regulators blocked it Friday. They cited potential impact on consumers as among their concerns. The plan threatens to leave other ratepayers stuck with a bill of $50 million to $140 million, according to testimony from [power utility] AEP and utility conglomerate Exelon."
And meanwhile, one Virginia retiree complained about a proposed $54 million transmission line and substation for an Amazon data center. "They are already making money hand over fist, and now they want us to pay for this?

[ Read more of this story ]( https://hardware.slashdot.org/story/24/11/02/0427238/as-data-centers-for-ai-strain-the-power-grid-bills-rise-for-everyday-customers?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The Washington Post reports that America's Consumer Financial Protection Bureau (or CFPB) "is considering legal action against Meta over allegations that it improperly used financial data obtained from third parties in its highly-lucrative advertising business..."
The article says a Meta securities filing Thursday revealed it had received a formal notification about the federal investigation last month.
The filing said only that the inquiry relates to "advertising for financial products and services on our platform." A spokesperson for Meta declined to comment on the investigation. "We disagree with the claims," the company's filing said, "and believe an enforcement action is unwarranted...."
The CFPB's probe underscores its aggressive recent focus on Big Tech. In recent years, major companies including Apple, Amazon, Facebook and Google have launched a wave of new financial services, including credit cards and apps that help users send money to friends... Under its current director, Rohit Chopra, the CFPB has also sought to ensure that tech giants adhere to the same safeguards that have long applied to their brick-and-mortar banking predecessors. The bureau formalized its tech crackdown in 2021, when Chopra ordered companies including Facebook to turn over records related to their payment apps and other financial service offerings.
At the time, he expressed fear that these giants already possessed troves of customer data and could solidify their dominance if they gained greater insight into users' purchasing and spending habits. "This data can be monetized by companies that seek to profit from behavioral targeting, particularly around advertising and e-commerce," Chopra said in a statement announcing the review. "That many Big Tech companies aspire to grow in this space only heightens these concerns." Since then, the watchdog agency has proposed new rules that could treat Apple, Google and PayPal-owned Venmo more like banks, opening the door for federal regulators to inspect some of their operations in a bid to protect users' deposits.
The rules, which have not been finalized, have sparked fierce lobbying opposition from major tech companies.

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/02/0614243/us-government-considers-legal-action-over-metas-use-of-financial-data-for-ads?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Former FTX executive Nishad Singh was ordered to forfeit $11 billion, reports CNBC — and is subject to three years of supervised release, making him "the fourth ex-employee of the collapsed crypto exchange to be punished."
But while he'd faced a maximum sentence of 75 years, he'll serve no time, according to this report from the Associated Press:
Singh, the company's former engineering director, was sentenced in Manhattan by Judge Lewis A. Kaplan, who said his cooperation was "remarkable." The judge noted that Singh did not learn of the billions of dollars that were misappropriated from FTX customer accounts and investors until two months before the fraud unraveled... Singh, 29, testified a year ago at Bankman-Fried's trial, saying he was "blindsided and horrified" when he saw the extent of the fraud behind the once-celebrated and seemingly pioneering firm. At sentencing, Singh said he was "overwhelmed with remorse" for his role in the fraud. "I strayed so far from my values, and words can't express how sorry I am," he said....
The sentencing came a month after Caroline Ellison, another key witness at Bankman-Fried's trial and a former top executive in his cryptocurrency empire, was sentenced to two years in prison. At the time, Kaplan praised her cooperation but said it wasn't a get-out-of-jail-free card. On Wednesday, Kaplan drew a distinction between the cooperation by Ellison and Singh's work with prosecutors, saying Ellison had participated in the fraud "from the beginning" and had been aware of all the wrongdoing for years... [Defense attorney Andrew Goldstein] said leniency would encourage future cooperators in other criminal cases to come forward.
Assistant U.S. Attorney Nicolas Roos credited Singh with providing information within weeks of the fraud being publicly revealed, saying he helped prosecutors learn about crimes they might otherwise have never discovered, including his own. Roos said, for instance, that Singh told prosecutors about campaign finance violations that occurred as FTX executives made tens of millions of dollars in donations to political candidates. The prosecutor also said Singh revealed private conversations with Bankman-Fried that strengthened the government's case and enabled it to bring charges more quickly against multiple people. Singh gave prosecutors "documentary evidence the government did not have and likely never would have had," Roos said.
Bankman-Fried, of course, began a 25-year sentence last November. And three weeks ago FTX executive Ryan Salame made an update on his LinkedIn profile. "I'm happy to share that I'm starting a new position as Inmate at FCI Cumberland!"
"His post quickly went viral," notes CNN, "prompting Salame to joke on X: "Today I learned people still use LinkedIn."

[ Read more of this story ]( https://yro.slashdot.org/story/24/11/02/2042237/a-fourth-ftx-executive-sentenced-forfeits-11-billion-but-no-prison-time?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

"AI-driven 0-day detection is here," argues a new blog post from ZeroPath, makers of a GitHub app that "detects, verifies, and issues pull requests for security vulnerabilities in your code."
They write that AI-assisted security research "has been quietly advancing" since early 2023, when researchers at the DARPA and ARPA-H's Artificial Intelligence Cyber Challenge demonstrated the first practical applications of LLM-powered vulnerability detection — with new advances continuing. "Since July 2024, ZeroPath's tool has uncovered critical zero-day vulnerabilities — including remote code execution, authentication bypasses, and insecure direct object references — in popular AI platforms and open-source projects." And they ultimately identified security flaws in projects owned by Netflix, Salesforce, and Hulu by "taking a novel approach combining deep program analysis with adversarial AI agents for validation. Our methodology has uncovered numerous critical vulnerabilities in production systems, including several that traditional Static Application Security Testing tools were ill-equipped to find..."

TL;DR — most of these bugs are simple and could have been found with a code review from a security researcher or, in some cases, scanners. The historical issue, however, with automating the discovery of these bugs is that traditional SAST tools rely on pattern matching and predefined rules, and miss complex vulnerabilities that do not fit known patterns (i.e. business logic problems, broken authentication flaws, or non-traditional sinks such as from dependencies). They also generate a high rate of false positives.
The beauty of LLMs is that they can reduce ambiguity in most of the situations that caused scanners to be either unusable or produce few findings when mass-scanning open source repositories... To do this well, you need to combine deep program analysis with an adversarial agents that test the plausibility of vulnerabilties at each step. The solution ends up mirroring the traditional phases of a pentest — recon, analysis, exploitation (and remediation which is not mentioned in this post)...
AI-driven vulnerability detection is moving fast... What's intriguing is that many of these vulnerabilities are pretty straightforward — they could've been spotted with a solid code review or standard scanning tools. But conventional methods often miss them because they don't fit neatly into known patterns. That's where AI comes in, helping us catch issues that might slip through the cracks.
"Many vulnerabilities remain undisclosed due to ongoing remediation efforts or pending responsible disclosure processes," according to the blog post, which includes a pie chart showing the biggest categories of vulnerabilities found:
53%: Authorization flaws, including roken access control in API endpoints and unauthorized Redis access and configuration exposure. ("Impact: Unauthorized access, data leakage, and resource manipulation across tenant boundaries.")
26%: File operation issues, including directory traversal in configuration loading and unsafe file handling in upload features. ("Impact: Unauthorized file access, sensitive data exposure, and potential system compromise.")
16%: Code execution vulnerabilities, including command injection in file processing and unsanitized input in system commands. ("Impact: Remote code execution, system command execution, and potential full system compromise.")

The company's CIO/cofounder was "former Red Team at Tesla," according to the startup's profile at YCombinator, and earned over $100,000 as a bug-bounty hunter. (And another co-founded is a former Google security engineer.)
Thanks to Slashdot reader Mirnotoriety for sharing the article.

[ Read more of this story ]( https://it.slashdot.org/story/24/11/02/2150233/is-ai-driven-0-day-detection-here?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

GM's president of global markets says their EV portfolio "is growing faster than the market," according to Investopedia, "because we have an all-electric vehicle for just about everybody, no matter what they like to drive."
The headline at Barrons? "Don't Look Now, but GM's EV Sales Are on Fire."
GM delivered almost 32,000 all-electric vehicles in the third quarter — a record — and up about 58% from a year earlier. The more affordable Chevy Equinox, which starts at about $35,000 before any federal tax credit, helped boost sales. GM delivered almost 10,000 of the new EVs, up from 1,013 in the second quarter, when they first went on sale.
EV penetration of total GM car sales was about almost 5%, up almost two percentage points year over year. EVs accounted for 19.4% of Cadillac sales, up about 11 percentage points year over year. Year to date, GM has delivered just over 70,000 all-electric cars.

GM originally planned to manufacture 200,000 EVs in 2024. That still looks aggressive, but the strong third-quarter showing makes 120,000 possible, which would be up almost 60% year over year — a respectable outcome. More important to investors than EV sales right now might be dealer inventories. GM said there were about 627,000 vehicles on dealer lots at the end of September. That's a little better than what Wolfe Research analyst Emmanuel Rosner expected. It indicates GM dealers have roughly 60 days worth of sales on their lots. That's a safe level. Lower dealer inventories reduce presure to reduce prices. They also reduce the need to cut production because dealer lots are full... GM expects to generate a full-year operating profit of about $14 billion.
Meanwhile, Stellantis "slashed its financial guidance recently, partly because it needs to dramatically reduce its U.S. inventories," according to the article. For example, its Jeep dealers ended August with roughly 122 days worth of sales on their lots, while its Dodge dealers "had almost 150 days of inventory."
And Investopedia argues that while GM's EV sales growth is "soaring," Ford's is showing "only modest gains."

[W]hile Ford's overall U.S. sales were 0.7% higher at 504,039, it had just a 12% gain in EVs to 23,509.3 In the second quarter, Ford's EV sales had soared 61% to 23,957. Sales growth was more than three times higher for Ford's hybrid models, with President of Ford Blue and Ford Customer Service Division Andrew Frick arguing that the company has "listened to customers to offer them vehicles with powertrains to meet their specific needs."
Ford is hoping to boost EV sales by offering buyers a free home charger and installation.

[ Read more of this story ]( https://tech.slashdot.org/story/24/11/02/2251208/dont-look-now-but-gms-ev-sales-are-on-fire?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The Washington Post reports that a former Etsy CEO remodeled their home into what's known as a passive house. It's "designed to be as energy efficient as possible, typically with top-notch insulation and a perfect seal that prevents outside air from penetrating the home; air flows in and out through filtration and exhaust systems only."
Their benefits include protection from pollution and pollen, noise insulation and a stable indoor temperature that minimizes energy needs. That translates to long-term savings on heating and cooling.
While the concept has been around for about 50 years, experts say that the United States is on the cusp of a passive house boom, driven by lowered costs, state-level energy code changes and a general greater awareness of — and desire for — more sustainable housing... Massachusetts — which alongside New York and Pennsylvania is one of the leading states in passive house adoption — has 272 passive house projects underway thanks to an incentive program, says Zack Semke [the director of the Passive House Accelerator, a group of industry professionals who aim to spread lessons in passive house building]. Consumer demand for passive houses is also increasing, says Michael Ingui, an architect in New York City and the founder of the Passive House Accelerator... The need to lower our energy footprint is so much more top-of-mind today than it was 10 years ago, Ingui says, and covid taught us about the importance of good ventilation and filtered fresh air. "People are searching for the healthiest house," he says, "and that's a passive house...."
These days, new passive houses are usually large, multifamily apartment buildings or high-end single-family homes. But that leaves out a large swath of homeowners in the middle. To widen passive house accessibility to include all types of people and their housing needs, we need better energy codes and even more policies and incentives, says In Cho, a sustainability architect, educator and a co-founder of the nonprofit Passive House for Everyone! Passive houses "can and should serve folks from all socioeconomic backgrounds," she says. Using a one-two punch of mandates for energy efficient buildings and greater awareness to the public, that increased demand for passive houses will lead to more supply, Cho says. And we're already seeing those changes in the market.
Take triple-pane windows, for example, which are higher performing and more insulating than their double-pane counterparts. Even just 10 to 20 years ago, the difference in price between the two was high enough to make triple-pane windows cost-prohibitive for a lot of people, Cho says. Over the years, as the benefits of higher performing windows became more well-known, and as cities and states changed their energy codes, more companies began producing better windows. Now they're basically at price parity, she says. If we keep pushing for greater awareness and further policy changes, it's possible that all of the components of passive house buildings could follow that trend.
"For large multifamily projects, we're already seeing price parity in some cases, Semke says...
"But as it stands, single-family passive houses are still likely to cost a margin more than non-passive houses, he says. This is because price parity is easier to achieve when working at larger scales, but also because many of the housing policies and incentives encouraging passive house buildings are geared toward these larger projects."

[ Read more of this story ]( https://hardware.slashdot.org/story/24/11/02/202229/the-passive-housing-trend-is-booming?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

This week's Ubuntu Summit 2024 was attended by Lproven (Slashdot reader #6,030). He's also a FOSS correspondent for the Register, where he's filed this report:
One of the first full-length sessions was presented by David Morin, executive director of the Academy Software Foundation, introducing his organization in a talk about Open Source Software for Motion Pictures. Morin linked to the Visual Effects Society's VFX/Animation Studio Workstation Linux Report, highlighting the market share pie-chart, showing Rocky Linux 9 with at some 58 percent and the RHELatives in general at 90 percent of the market. Ubuntu 22 and 24 — the report's nomenclature, not this vulture's — got just 10.5 percent. We certainly didn't expect to see that at an Ubuntu event, with the latest two versions of Rocky Linux taking 80 percent of the studio workstation market...
What also struck us over the next three quarters of an hour is that Linux and open source in general seem to be huge components of the movie special effects industry — to an extent that we had not previously realized.
There's a "sizzle reel" showing examples of how major motion pictures used OpenColorIO, an open-source production tool for syncing color representations originally developed by Sony Pictures Imageworks. That tool is hosted by a collaboration between the Linux Foundation with the Science and Technology Council of the Academy of Motion Picture Arts and Sciences (the "Academy" of the Academy Awards). The collaboration — which goes by the name of the Academy Software Foundation — hosts 14 different projects
The ASWF hasn't been around all that long — it was only founded in 2018. Despite the impact of the COVID pandemic, by 2022 it had achieved enough to fill a 45-page history called Open Source in Entertainment [PDF]. Morin told the crowd that it runs events, provides project marketing and infrastructure, as well as funding, training and education, and legal assistance. It tries to facilitate industry standards and does open source evangelism in the industry. An impressive list of members — with 17 Premier companies, 16 General ones, and another half a dozen Associate members — shows where some of the money comes from. It's a big list of big names. [Adobe, AMD, AWS, Autodesk...]
The presentation started with OpenVBD, a C++ library developed and donated by Dreamworks for working with three-dimensional voxel-based shapes. (In 2020 they created this sizzle reel, but this year they've unveiled a theme song.) Also featured was OpenEXR, originally developed at Industrial Light and Magic and sourced in 1999. (The article calls it "a specification and reference implementation of the EXR file format — a losslessly compressed image storage format for moving images at the highest possible dynamic range.")
"For an organization that is not one of the better-known ones in the FOSS space, we came away with the impression that the ASWF is busy," the article concludes. (Besides running Open Source Days and ASWF Dev Days, it also hosts several working groups like the Language Interop Project works on Rust bindings and the Continuous Integration Working Group on CI tools,
There's generally very little of the old razzle-dazzle in the Linux world, but with the demise of SGI as the primary maker of graphics workstations — its brand now absorbed by Hewlett Packard Enterprise — the visual effects industry moved to Linux and it's doing amazing things with it. And Kubernetes wasn't even mentioned once.

[ Read more of this story ]( https://news.slashdot.org/story/24/11/03/0049254/aswf-the-open-source-foundation-run-by-the-folks-who-give-out-oscars?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

"It's that time again," writes USA Today, noting that Sunday morning millions of Americans (along with millions more in Canada, Europe, parts of Australia, and Chile) "will set their clocks back an hour, and many will renew their twice-yearly calls to put an end to the practice altogether..."
Experts say the time changes are detrimental to health and safety, but agree that the answer isn't permanent DST. "The medical and scientific communities are unified ... that permanent standard time is better for human health," said Erik Herzog, a professor of biology and neuroscience at Washington University in St. Louis and the former president of the Society for Research on Biological Rhythms...
Springing forward an hour in March is harder on us than falling back in November. The shift in spring is associated with an increase in heart attacks, and car accident rates also go up for a few days after, he said. But the answer isn't permanent daylight saving time, according to Herzog, who said that could be even worse for human health than the twice-yearly changes. By looking at studies of people who live at the easternmost edge of time zones (whose experience is closest to standard time) and people who live at the westernmost edge (more like daylight saving time), scientists can tell that health impacts of earlier sunrises and sunsets are much better. Waking up naturally with the sun is far better for our bodies than having to rely on alarm clocks to wake up in the dark, he said.
Herzog said Florida, where [Senator Marco] Rubio has championed the Sunlight Protection Act, is much less impacted by the negative impacts of daylight saving time because it's as far east and south as you can get in the U.S., while people in a state like Minnesota would have much more time in the dark in the morning.
The article also reminds U.S. readers that "No state can adopt permanent daylight saving time unless U.S. Congress passes a law to authorize it first." Nevertheless...
Oklahoma became the most recent state to pass a measure authorizing permanent daylight saving time, pending Congressional approval, in April. Nineteen other states have passed laws or resolutions to move toward daylight saving time year-round, if Congress were ever to allow it, according to the National Conference of State Legislatures...
Only two states and some territories never have to set their clocks forward or backward... [Hawaii and Arizona, except for the Navajo Nation.]

[ Read more of this story ]( https://yro.slashdot.org/story/24/11/03/0653235/whats-worse-than-setting-clocks-back-an-hour-permanent-daylight-savings-time?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Slashdot reader spatwei shared this report from SC World:

Nearly three dozen flaws in open-source AI and machine learning (ML) tools were disclosed Tuesday as part of [AI-security platform] Protect AI's huntr bug bounty program.
The discoveries include three critical vulnerabilities: two in the Lunary AI developer toolkit [both with a CVSS score of 9.1] and one in a graphical user interface for ChatGPT called Chuanhu Chat. The October vulnerability report also includes 18 high-severity flaws ranging from denial-of-service to remote code execution... Protect AI's report also highlights vulnerabilities in LocalAI, a platform for running AI models locally on consumer-grade hardware, LoLLMs, a web UI for various AI systems, LangChain.js, a framework for developing language model applications, and more.
In the article, Protect AI's security researchers point out that these open-source tools are "downloaded thousands of times a month to build enterprise AI Systems."
The three critical vulnerabilties have already been addressed by their respective companies, according to the article.

[ Read more of this story ]( https://it.slashdot.org/story/24/11/03/0123205/ai-bug-bounty-program-finds-34-flaws-in-open-source-tools?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

"One technology critical to fighting climate change is lagging," reports the Washington Post, "thanks to a combination of high interest rates, rising costs, misinformation and the cycle of home construction. Adoption of heat pumps, one of the primary ways to cut emissions from buildings, has slowed in the United States and stalled in Europe, endangering the switch to clean energy.
"Heat pump investment in the United States has dropped by 4 percent in the past two years, even as sales of EVs have almost doubled, according to data from MIT and the Rhodium Group. In 13 European countries, heat pump sales dropped nearly in half in the first half of 2024, putting the European Union off-track for its climate goals."
"Many many markets are falling," said Paul Kenny, the director general of the European Heat Pump Association. "It takes time to change people's minds about a heating system." Heat pumps — essentially air conditioners that can also work in reverse, heating a space as well as cooling it — are crucial to making buildings more climate-friendly. Around 60 percent of American homes are still heated with furnaces running on oil, natural gas, or even propane; to cut emissions from homes, all American houses and apartments will need to be powered by electricity...
In the United States, experts point to lags in construction, high interest rates, and general belt-tightening from inflation... [Cora Wyent, director of research for the electrification advocacy group Rewiring America] added, heat pumps are still growing as a share of overall heating systems, gaining ground on gas furnaces. In 2023, heat pumps made up 55 percent of all heating systems sold, while gas furnaces made up just 45 percent. "Heat pumps are continuing to increase their total market share," she said.
Homeowners may also run into trouble when trying to find contractors to install heat pumps. Barton James, the president and CEO of the Air Conditioning Contractors of America, says many contractors don't have training on how to properly install heat pumps; if they install them incorrectly, the ensuing problems can sour consumers on the technology... In the United States, low gas prices also make the economics of heat pumps more challenging. Gas is around three times cheaper than electricity — while heat pumps make up most of that ground with efficiency, they aren't the most cost-effective option for every household.
The Post also spoke to the manager for the carbon-free buildings team at the clean energy think tank RMI. They pointed out that heating systems need to be replaced roughly every 15 years — and the next cycle doesn't start until 2035.
The article concludes that "even with government policies and subsidies, many parts of the move to clean energy will require individual people to make changes to their lives. According to the International Energy Agency, the number of heat pumps will have to triple by 2030 to stay on track with climate goals. The only way to do that, experts say, is if incentives, personal beliefs, and technology all align."

[ Read more of this story ]( https://hardware.slashdot.org/story/24/11/02/198243/can-heat-pumps-still-save-the-planet-from-climate-change?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Long-time Slashdot reader yet-another-lobbyist writes: Phys.org has an article on the recent discovery of super stretchy nanofibers in natural spider silk! The thinnest natural spider silk nanofibrils ever seen are only a few molecular layers thin, about 5 nm. They are too thin to be seen even with a very powerful optical microscope. Researchers used atomic force microscopy (AFM) not only to visualize them, but also to probe their stretchiness and strength.
Even the original article is available without a paywall. Mechanical tests of molecularly thin materials — pretty cool!
The doctoral candidate's advisor thought it would be impossible to perform the measurements, according to the article, which quotes him as saying "It's actually kind of crazy to think that it's even possible.... We humans think we're so great and we can invent things, but if you just take a step outside, you find so many things that are more exciting."
That advisor — long term spider-silk researcher of Hannes Schniepp (also a co-author on the paper) — adds that the tip of the needle was so sharp, its end was only a few atoms thick. "You would not see the end of it in the best optical microscope. It will just disappear because it's so small that you can't even see it. It's probably one of the highest developed technologies on the planet."

If humans find a way to replicate the structure of spider silk, it could be manufactured for use in practical applications. "You could make a super bungee cord from it," said Schniepp. "Or a shield around a structure where you have something incoming at high velocity and you need to absorb a lot of energy. Things like that."

[ Read more of this story ]( https://science.slashdot.org/story/24/11/02/2333223/invisible-super-stretchy-nanofibers-discovered-in-natural-spider-silk?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Long-time Slashdot reader samj — also a long-time Debian developer — tells us there's some opposition to the newly-released Open Source AI definition. He calls it a "fork" that undermines the original Open Source definition (which was originally derived from Debian's Free Software Guidelines, written primarily by Bruce Perens), and points us to a new domain with a petition declaring that instead Open Source shall be defined "solely by the Open Source Definition version 1.9. Any amendments or new definitions shall only be recognized with clear community consensus via an open and transparent process."
This move follows some discussion on the Debian mailing list:

Allowing "Open Source AI" to hide their training data is nothing but setting up a "data barrier" protecting the monopoly, disabling anybody other than the first party to reproduce or replicate an AI. Once passed, OSI is making a historical mistake towards the FOSS ecosystem.

They're not the only ones worried about data. This week TechCrunch noted an August study which "found that many 'open source' models are basically open source in name only. The data required to train the models is kept secret, the compute power needed to run them is beyond the reach of many developers, and the techniques to fine-tune them are intimidatingly complex. Instead of democratizing AI, these 'open source' projects tend to entrench and expand centralized power, the study's authors concluded."
samj shares the concern about training data, arguing that training data is the source code and that this new definition has real-world consequences. (On a personal note, he says it "poses an existential threat to our pAI-OS project at the non-profit Kwaai Open Source Lab I volunteer at, so we've been very active in pushing back past few weeks.")
And he also came up with a detailed response by asking ChatGPT. What would be the implications of a Debian disavowing the OSI's Open Source AI definition? ChatGPT composed a 7-point, 14-paragraph response, concluding that this level of opposition would "create challenges for AI developers regarding licensing. It might also lead to a fragmentation of the open-source community into factions with differing views on how AI should be governed under open-source rules." But "Ultimately, it could spur the creation of alternative definitions or movements aimed at maintaining stricter adherence to the traditional tenets of software freedom in the AI age."

However the official FAQ for the new Open Source AI definition argues that training data "does not equate to a software source code."

Training data is important to study modern machine learning systems. But it is not what AI researchers and practitioners necessarily use as part of the preferred form for making modifications to a trained model.... [F]orks could include removing non-public or non-open data from the training dataset, in order to train a new Open Source AI system on fully public or open data...
[W]e want Open Source AI to exist also in fields where data cannot be legally shared, for example medical AI. Laws that permit training on data often limit the resharing of that same data to protect copyright or other interests. Privacy rules also give a person the rightful ability to control their most sensitive information — like decisions about their health. Similarly, much of the world's Indigenous knowledge is protected through mechanisms that are not compatible with later-developed frameworks for rights exclusivity and sharing.

Read on for the rest of their response...

[ Read more of this story ]( https://news.slashdot.org/story/24/11/03/0257241/new-open-source-ai-definition-criticized-for-not-opening-training-data?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Millions of U.S. cellphone users could be vulnerable to Chinese government surveillance, warns a Washington Post columnist, "on the networks of at least three major U.S. carriers."
They cite six current or former senior U.S. officials, all of whom were briefed about the attack by the U.S. intelligence community.
The Chinese hackers, who the United States believes are linked to Beijing's Ministry of State Security, have burrowed inside the private wiretapping and surveillance system that American telecom companies built for the exclusive use of U.S. federal law enforcement agencies — and the U.S. government believes they likely continue to have access to the system.... The U.S. government and the telecom companies that are dealing with the breach have said very little publicly about it since it was first detected in August, leaving the public to rely on details trickling out through leaks...
The so-called lawful-access system breached by the Salt Typhoon hackers was established by telecom carriers after the terrorist attacks of Sept. 11, 2001, to allow federal law enforcement officials to execute legal warrants for records of Americans' phone activity or to wiretap them in real time, depending on the warrant. Many of these cases are authorized under the Foreign Intelligence Surveillance Act (FISA), which is used to investigate foreign spying that involves contact with U.S. citizens. The system is also used for legal wiretaps related to domestic crimes.
It is unknown whether hackers were able to access records about classified wiretapping operations, which could compromise federal criminal investigations and U.S. intelligence operations around the world, multiple officials told me. But they confirmed the previous reporting that hackers were able to both listen in on phone calls and monitor text messages. "Right now, China has the ability to listen to any phone call in the United States, whether you are the president or a regular Joe, it makes no difference," one of the hack victims briefed by the FBI told me. "This has compromised the entire telecommunications infrastructure of this country."
The Wall Street Journal first reported on Oct. 5 that China-based hackers had penetrated the networks of U.S. telecom providers and might have penetrated the system that telecom companies operate to allow lawful access to wiretapping capabilities by federal agencies... [After releasing a short statement], the FBI notified 40 victims of Salt Typhoon, according to multiple officials. The FBI informed one person who had been compromised that the initial group of identified targets included six affiliated with the Trump campaign, this person said, and that the hackers had been monitoring them as recently as last week... "They had live audio from the president, from JD, from Jared," the person told me. "There were no device compromises, these were all real-time interceptions...." [T]he duration of the surveillance is believed to date back to last year.
Several officials told the columnist that the cyberattack also targetted senior U.S. government officials and top business leaders — and that even more compromised targets are being discovered. At this point, "Multiple officials briefed by the investigators told me the U.S. government does not know how many people were targeted, how many were actively surveilled, how long the Chinese hackers have been in the system, or how to get them out."
But the article does include this quote from U.S. Senate Intelligence Committee chairman Mark Warner. "It is much more serious and much worse than even what you all presume at this point."
One U.S. representative suggested Americans rely more on encrypted apps.
The U.S. is already investigating — but while researching the article, the columnist writes, "The National Security Council declined to comment, and the FBI did not respond to a request for comment..." They end with this recommendation.
"If millions of Americans are vulnerable to Chinese surveillance, they have a right to know now."

[ Read more of this story ]( https://news.slashdot.org/story/24/11/03/1953214/millions-of-us-cellphones-could-be-vulnerable-to-chinese-government-surveillance?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Somewhere off in interstellar space, 15.4 billion miles away from Earth, NASA's 47-year-old Voyager "recently went quiet," reports Mashable.
The probe "shut off its main radio transmitter for communicating with mission control..."
Voyager's problem began on October 16, when flight controllers sent the robotic explorer a somewhat routine command to turn on a heater. Two days later, when NASA expected to receive a response from the spacecraft, the team learned something tripped Voyager's fault protection system, which turned off its X-band transmitter. By October 19, communication had altogether stopped.
The flight team was not optimistic. However, Voyager 1 was equipped with a backup that relies on a different, albeit significantly fainter, frequency. No one knew if the second radio transmitter could still work, given the aging spacecraft's extreme distance.
Days later, engineers with the Deep Space Network, a system of three enormous radio dish arrays on Earth, found the signal whispering back over the S-band transmitter. The device hadn't been used since 1981, according to NASA.
"The team is now working to gather information that will help them figure out what happened and return Voyager 1 to normal operations," NASA said in a recent mission update.
It's been more than 12 years since Voyager entered interstellar space, the article points out. And interstellar space "is a high-radiation environment that nothing human-made has ever flown in before.
"That means the only thing the teams running the old probes can count on are surprises."

[ Read more of this story ]( https://science.slashdot.org/story/24/11/03/2037238/after-silence-nasas-voyager-finally-phones-home---with-a-device-unused-since-1981?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Long-time Slashdot reader schwit1 shared this story from SciTechDaily:
New research confirms that subtle temperature differences at the ocean surface, known as the "ocean skin," increase carbon dioxide absorption. This discovery, based on precise measurements, suggests global oceans absorb 7% more CO2 than previously thought, aiding climate understanding and carbon assessments...
Until now, global estimates of air-sea CO2 fluxes typically ignore the importance of temperature differences in the near-surface layer... Dr Gavin Tilstone, from Plymouth Marine Laboratory (PML), said: "This discovery highlights the intricacy of the ocean's water column structure and how it can influence CO2 draw-down from the atmosphere. Understanding these subtle mechanisms is crucial as we continue to refine our climate models and predictions. It underscores the ocean's vital role in regulating the planet's carbon cycle and climate."

[ Read more of this story ]( https://news.slashdot.org/story/24/11/03/2129251/new-study-suggests-oceans-absorb-more-co2-than-previously-thought?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Slashdot reader samleecole shared this report from 404 Media:
Northwell Health, New York State's largest healthcare provider, recently launched a large language model tool that it is encouraging doctors and clinicians to use for translation, sensitive patient data, and has suggested it can be used for diagnostic purposes, 404 Media has learned. Northwell Health has more than 85,000 employees. An internal presentation and employee chats obtained by 404 Media shows how healthcare professionals are using LLMs and chatbots to edit writing, make hiring decisions, do administrative tasks, and handle patient data. In the presentation given in August, Rebecca Kaul, senior vice president and chief of digital innovation and transformation at Northwell, along with a senior engineer, discussed the launch of the tool, called AI Hub, and gave a demonstration of how clinicians and researchers—or anyone with a Northwell email address—can use it... AI Hub can be used for "clinical or clinical adjacent" tasks, as well as answering questions about hospital policies and billing, writing job descriptions and editing writing, and summarizing electronic medical record excerpts and inputting patients' personally identifying and protected health information.
The demonstration also showed potential capabilities that included "detect pancreas cancer," and "parse HL7," a health data standard used to share electronic health records.
The leaked presentation shows that hospitals are increasingly using AI and LLMs to streamlining administrative tasks, and shows that some are experimenting with or at least considering how LLMs would be used in clinical settings or in interactions with patients.

[ Read more of this story ]( https://science.slashdot.org/story/24/11/03/2145204/leaked-training-shows-doctors-in-new-yorks-biggest-hospital-system-using-ai?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.