Slashdot Mirror

An anonymous reader quotes a report from The New York Times: A small spacecraft that has captured the imagination and excitement of people in Israel and around the world appears to have crashed on the moon (Warning: source may be paywalled; alternative source). "We had a failure in the spacecraft," said Opher Doron, the general manager of Israel Aerospace Industries' space division, which collaborated on building the spacecraft. "We unfortunately have not managed to land successfully."

If it had succeeded, the robotic lander, named Beresheet, which means "Genesis" or "in the beginning" in Hebrew, would have been the first on the moon built by a private organization, and it would have added Israel to just three nations -- the United States, the former Soviet Union, and China -- to have accomplished that feat. Beresheet reached the launchpad and was headed to space aboard a SpaceX rocket in February. It orbited the moon, by itself a major accomplishment. That has only been done by five nations -- the United States, the former Soviet Union, China, Japan and India -- and the European Space Agency. But the landing was the riskiest part of the mission. The start of the automated landing sequence went as planned. The spacecraft even took a picture of itself at an altitude of 13 miles with the moon in the background. Then, still high above the surface, the engine cut out. The appointed landing time -- 10:25 p.m. in Israel, or 3:25 p.m. Eastern time -- came and passed, and the SpaceIL team realized the mission was over. "Well we didn't make it, but we definitely tried," said Morris Kahn, an Israeli telecommunications entrepreneur and president of SpaceIL, the nonprofit that undertook the mission. "And I think the achievement of getting to where we got is really tremendous. I think we can be proud."

Prime Minister Benjamin Netanyahu of Israel said, "If at first you don't succeed, you try again."

The Pentagon this week announced two finalists in the $10 billion, decade-long JEDI cloud contract process -- and Oracle was not one of them. From a report: In spite of lawsuits, official protests and even back-channel complaining to the president, the two finalists are Microsoft and Amazon. "After evaluating all of the proposals received, the Department of Defense has made a competitive range determination for the Joint Enterprise Defense Infrastructure Cloud request for proposals, in accordance with all applicable laws and regulations. The two companies within the competitive range will participate further in the procurement process," Elissa Smith, DoD spokesperson for Public Affairs Operations told TechCrunch. She added that those two finalists were in fact Microsoft and Amazon Web Services (AWS, the cloud computing arm of Amazon).

Two security researchers disclosed details this week about a group of vulnerabilities collectively referred to as Dragonblood that impact the Wi-Fi Alliance's recently launched WPA3 Wi-Fi security and authentication standard. From a report: If ever exploited, the vulnerabilities would allow an attacker within the range of a victim's network to recover the Wi-Fi password and infiltrate the target's network. In total, five vulnerabilities are part of the Dragonblood ensemble -- a denial of service attack, two downgrade attacks, and two side-channel information leaks.

While the denial of service attack is somewhat unimportant as it only leads to crashing WPA3-compatible access points, the other four are the ones that can be used to recover user passwords. Both the two downgrade attacks and two side-channel leaks exploit design flaws in the WPA3 standard's Dragonfly key exchange -- the mechanism through which clients authenticate on a WPA3 router or access point. In a downgrade attack, Wi-Fi WPA3-capable networks can be coerced in using an older and more insecure password exchange systems, which can allow attackers to retrieve the network passwords using older flaws.

Amazon reportedly employs thousands of people around the world to help improve its Alexa digital assistant. "The team listens to voice recordings captured in Echo owners' homes and offices," reports Bloomberg. "The recordings are transcribed, annotated and then fed back into the software as part of an effort to eliminate gaps in Alexa's understanding of human speech and help it better respond to commands." From the report: The team comprises a mix of contractors and full-time Amazon employees who work in outposts from Boston to Costa Rica, India and Romania, according to the people, who signed nondisclosure agreements barring them from speaking publicly about the program. They work nine hours a day, with each reviewer parsing as many as 1,000 audio clips per shift, according to two workers based at Amazon's Bucharest office, which takes up the top three floors of the Globalworth building in the Romanian capital's up-and-coming Pipera district. The modern facility stands out amid the crumbling infrastructure and bears no exterior sign advertising Amazon's presence. The work is mostly mundane. One worker in Boston said he mined accumulated voice data for specific utterances such as "Taylor Swift" and annotated them to indicate the searcher meant the musical artist. Occasionally the listeners pick up things Echo owners likely would rather stay private: a woman singing badly off key in the shower, say, or a child screaming for help. The teams use internal chat rooms to share files when they need help parsing a muddled word -- or come across an amusing recording.

Sometimes they hear recordings they find upsetting, or possibly criminal. Two of the workers said they picked up what they believe was a sexual assault. When something like that happens, they may share the experience in the internal chat room as a way of relieving stress. Amazon says it has procedures in place for workers to follow when they hear something distressing, but two Romania-based employees said that, after requesting guidance for such cases, they were told it wasn't Amazon's job to interfere. [...] Amazon, in its marketing and privacy policy materials, doesn't explicitly say humans are listening to recordings of some conversations picked up by Alexa. "We use your requests to Alexa to train our speech recognition and natural language understanding systems," the company says in a list of frequently asked questions. In Alexa's privacy settings, the company gives users the option of disabling the use of their voice recordings for the development of new features. A screenshot reviewed by Bloomberg shows that the recordings sent to the Alexa auditors don't provide a user's full name and address but are associated with an account number, as well as the user's first name and the device's serial number. An Amazon spokesperson said in a statement to Bloomberg: "We take the security and privacy of our customers' personal information seriously. We only annotate an extremely small sample of Alexa voice recordings in order [to] improve the customer experience. For example, this information helps us train our speech recognition and natural language understanding systems, so Alexa can better understand your requests, and ensure the service works well for everyone."

They added: "We have strict technical and operational safeguards, and have a zero tolerance policy for the abuse of our system. Employees do not have direct access to information that can identify the person or account as part of this workflow. All information is treated with high confidentiality and we use multi-factor authentication to restrict access, service encryption and audits of our control environment to protect it."

Further reading: How To Stop Amazon From Listening To Your Recordings

An anonymous reader quotes a report from Ars Technica: Sixteen months ago, researchers reported an unsettling escalation in hacks targeting power plants, gas refineries, and other types of critical infrastructure. Attackers who may have been working on behalf of a nation caused an operational outage at a critical-infrastructure site after deliberately targeting a system that prevented health- and life-threatening accidents. What was unprecedented in this attack -- and of considerable concern to some researchers and critical infrastructure operators -- was the use of an advanced piece of malware that targeted the unidentified site's safety processes. The malware was named Triton and Trisis, because it targeted the Triconex product line made by Schneider Electric. Its development was ultimately linked to a Russian government-backed research institute.

Now, researchers at FireEye -- the same security firm that discovered Triton and its ties to Russia -- say they have uncovered an additional intrusion that used the same malicious software framework against a different critical infrastructure site. As was the case in the first intrusion, the attackers focused most of their resources on the facility's OT, or operational technology, which are systems for monitoring and managing physical processes and devices. The discovery has unearthed a new set of never-before-seen custom tools that shows the attackers have been operational since as early as 2014. The existence of these tools, and the attackers' demonstrated interest in operational security, lead FireEye researchers to believe there may be other sites beyond the two already known where the Triton attackers were or still are present. "After establishing an initial foothold on the corporate network, the Triton actor focused most of their effort on gaining access to the OT network," FireEye researchers wrote in a report published Wednesday. "They did not exhibit activities commonly associated with espionage, such as using key loggers and screenshot grabbers, browsing files, and/or exfiltrating large amounts of information. Most of the attack tools they used were focused on network reconnaissance, lateral movement, and maintaining presence in the target environment."

An anonymous reader quotes a report from Ars Technica: Sixteen months ago, researchers reported an unsettling escalation in hacks targeting power plants, gas refineries, and other types of critical infrastructure. Attackers who may have been working on behalf of a nation caused an operational outage at a critical-infrastructure site after deliberately targeting a system that prevented health- and life-threatening accidents. What was unprecedented in this attack -- and of considerable concern to some researchers and critical infrastructure operators -- was the use of an advanced piece of malware that targeted the unidentified site's safety processes. The malware was named Triton and Trisis, because it targeted the Triconex product line made by Schneider Electric. Its development was ultimately linked to a Russian government-backed research institute.

Now, researchers at FireEye -- the same security firm that discovered Triton and its ties to Russia -- say they have uncovered an additional intrusion that used the same malicious software framework against a different critical infrastructure site. As was the case in the first intrusion, the attackers focused most of their resources on the facility's OT, or operational technology, which are systems for monitoring and managing physical processes and devices. The discovery has unearthed a new set of never-before-seen custom tools that shows the attackers have been operational since as early as 2014. The existence of these tools, and the attackers' demonstrated interest in operational security, lead FireEye researchers to believe there may be other sites beyond the two already known where the Triton attackers were or still are present. "After establishing an initial foothold on the corporate network, the Triton actor focused most of their effort on gaining access to the OT network," FireEye researchers wrote in a report published Wednesday. "They did not exhibit activities commonly associated with espionage, such as using key loggers and screenshot grabbers, browsing files, and/or exfiltrating large amounts of information. Most of the attack tools they used were focused on network reconnaissance, lateral movement, and maintaining presence in the target environment."

Two out of three hotel websites inadvertently leak guests' booking details and personal data to third-party sites, including advertisers and analytics companies, according to research released by Symantec on Wednesday. From a report: The study, which looked at more than 1,500 hotel websites in 54 countries that ranged from two-star to five-star properties, comes several months after Marriott International disclosed one of the worst data breaches in history. Symantec said Marriott was not included in the study. Compromised personal information includes full names, email addresses, credit card details and passport numbers of guests that could be used by cybercriminals who are increasingly interested in the movements of influential business professionals and government employees, Symantec said.

Bowing to growing pressure from opponents who say that cashless stores leave out low-income Americans, Amazon plans to take cash at its 10 cashierless "Go" stores. From a report: Amazon Go stores, located in San Francisco, Chicago and Seattle, use AI and cameras to check out customers. Amazon reportedly is considering opening up to to 3,000 by 2021. "We are working to accept cash," a spokesperson for Amazon said Wednesday. "Paying cash at Amazon Go will work as you would expect: you'll check out, pay with cash, and then get your change." Amazon did not say when Go stores will begin accepting cash. Amazon also said its bookstores will start taking cash, but did not share any details.

Steve Kessel, Amazon's senior vice president of physical stores, told employees last month that Go stores would add "additional payment mechanisms," CNBC reported earlier on Wednesday. Kessel was responding to a question about how Amazon plans to address "discrimination and elitism" at cashierless stores, according to the report. Further reading: As More Retailers Ban Paper Money, It's Making Things Awkward For Customers Without Plastic.

Bowing to growing pressure from opponents who say that cashless stores leave out low-income Americans, Amazon plans to take cash at its 10 cashierless "Go" stores. From a report: Amazon Go stores, located in San Francisco, Chicago and Seattle, use AI and cameras to check out customers. Amazon reportedly is considering opening up to to 3,000 by 2021. "We are working to accept cash," a spokesperson for Amazon said Wednesday. "Paying cash at Amazon Go will work as you would expect: you'll check out, pay with cash, and then get your change." Amazon did not say when Go stores will begin accepting cash. Amazon also said its bookstores will start taking cash, but did not share any details.

Steve Kessel, Amazon's senior vice president of physical stores, told employees last month that Go stores would add "additional payment mechanisms," CNBC reported earlier on Wednesday. Kessel was responding to a question about how Amazon plans to address "discrimination and elitism" at cashierless stores, according to the report. Further reading: As More Retailers Ban Paper Money, It's Making Things Awkward For Customers Without Plastic.

Bowing to growing pressure from opponents who say that cashless stores leave out low-income Americans, Amazon plans to take cash at its 10 cashierless "Go" stores. From a report: Amazon Go stores, located in San Francisco, Chicago and Seattle, use AI and cameras to check out customers. Amazon reportedly is considering opening up to to 3,000 by 2021. "We are working to accept cash," a spokesperson for Amazon said Wednesday. "Paying cash at Amazon Go will work as you would expect: you'll check out, pay with cash, and then get your change." Amazon did not say when Go stores will begin accepting cash. Amazon also said its bookstores will start taking cash, but did not share any details.

Steve Kessel, Amazon's senior vice president of physical stores, told employees last month that Go stores would add "additional payment mechanisms," CNBC reported earlier on Wednesday. Kessel was responding to a question about how Amazon plans to address "discrimination and elitism" at cashierless stores, according to the report. Further reading: As More Retailers Ban Paper Money, It's Making Things Awkward For Customers Without Plastic.

Developer and blogger Guilherme Rambo, writing for 9to5Mac: Fellow developer Steve Troughton-Smith recently expressed confidence about some evidence found indicating that Apple is working on new Music, Podcasts, and perhaps Books apps for macOS, to join the new TV app. I've been able to independently confirm that this is true. On top of that, I've been able to confirm with sources familiar with the development of the next major version of macOS -- likely 10.15 -- that the system will include standalone Music, Podcasts, and TV apps, but it will also include a major redesign of the Books app.

The new Books app will have a sidebar similar to the News app on the Mac, it will also feature a narrower title bar with different tabs for the Library, Book Store, and Audiobook Store. On the library tab, the sidebar will list the user's Books, Audiobooks, PDFs and other collections, including custom ones. The new Music, Podcasts, and TV apps will be made using Marzipan, Apple's new technology designed to facilitate the porting of iPad apps to the Mac without too many code changes. Further reading: Steven Troughton-Smith Thinks iTunes Breakup is Nigh (DaringFireball).

Yahoo is offering to pay $117.5 million to settle its massive data breaches that compromised personal information, including email addresses and passwords. "The proposed settlement was announced on Tuesday, but still needs to be approved by U.S. District Judge Lucy Koh," reports CNN. From the report: Earlier this year, a different version of the class-action settlement was rejected by Koh, who wanted to see more benefit to consumers and a specific settlement amount. Yahoo was hit by multiple data breaches from 2013 to 2016. The 2013 breach affected every single customer account that existed at the time, which totaled 3 billion. Yahoo previously said names, email addresses and passwords were compromised but not financial information.

Yahoo is offering to pay $117.5 million to settle its massive data breaches that compromised personal information, including email addresses and passwords. "The proposed settlement was announced on Tuesday, but still needs to be approved by U.S. District Judge Lucy Koh," reports CNN. From the report: Earlier this year, a different version of the class-action settlement was rejected by Koh, who wanted to see more benefit to consumers and a specific settlement amount. Yahoo was hit by multiple data breaches from 2013 to 2016. The 2013 breach affected every single customer account that existed at the time, which totaled 3 billion. Yahoo previously said names, email addresses and passwords were compromised but not financial information.

An anonymous reader quotes a report from Ars Technica: Mirai, the "botnet" malware that was responsible for a string of massive distributed denial of service (DDoS) attacks in 2016 -- including one against the website of security reporter Brian Krebs -- has gotten a number of recent updates. Now, developers using the widely distributed "open" source code of the original have added a raft of new devices to their potential bot armies by compiling the code for four more microprocessors commonly used in embedded systems.

Researchers at Palo Alto Networks' Unit 42 security research unit have published details of new samples of the Mirai botnet discovered in late February. The new versions of the botnet malware targeted Altera Nios II, OpenRISC, Tensilica Xtensa, and Xilinx MicroBlaze processors. These processors are used on a wide range of embedded systems, including routers, networked sensors, base band radios for cellular communications and digital signal processors. The new variants also include a modified encryption algorithm for botnet communications and a new version of the original Mirai TCP SYN denial-of-service attack. Based on the signature of the new attack option, Unit 42 researchers were able to trace activity of the variants back as far as November 2018.

An anonymous reader quotes a report from Ars Technica: Mirai, the "botnet" malware that was responsible for a string of massive distributed denial of service (DDoS) attacks in 2016 -- including one against the website of security reporter Brian Krebs -- has gotten a number of recent updates. Now, developers using the widely distributed "open" source code of the original have added a raft of new devices to their potential bot armies by compiling the code for four more microprocessors commonly used in embedded systems.

Researchers at Palo Alto Networks' Unit 42 security research unit have published details of new samples of the Mirai botnet discovered in late February. The new versions of the botnet malware targeted Altera Nios II, OpenRISC, Tensilica Xtensa, and Xilinx MicroBlaze processors. These processors are used on a wide range of embedded systems, including routers, networked sensors, base band radios for cellular communications and digital signal processors. The new variants also include a modified encryption algorithm for botnet communications and a new version of the original Mirai TCP SYN denial-of-service attack. Based on the signature of the new attack option, Unit 42 researchers were able to trace activity of the variants back as far as November 2018.

Senate Majority Leader Mitch McConnell told reporters on Tuesday that the net neutrality bill Democrats are pushing through the House is "dead on arrival" in the Senate. From a report: The U.S. House of Representatives is expected to vote later today on the Save the Internet Act, which is the Democrats' proposal to restore Obama-era net neutrality protections that were repealed in 2017. It's expected to pass the Democrat-controlled House. McConnell was asked by reporters about whether the Senate would consider the bill once it passes. He indicated it would not, according to several tweets from reporters. McConnell's office confirmed the comment.

The Save the Internet Act restores rules adopted by the Federal Communications Commission in 2015. These rules would ban internet service providers from blocking or throttling access to the internet. And they would prevent ISPs from charging companies extra to deliver their online faster to consumers. The Democrats' bill restores these rules and also restores the FCC's authority to regulate and oversee broadband networks.

The surveillance tool dubbed "Exodus" has been ported to the Apple iOS ecosystem. According to Threatpost, the spyware "can exfiltrate contacts, take audio recordings and photos, track location data and more on mobile devices." From the report: Earlier this month, word came that Google had booted a raft of Exodus-laden apps. According to Lookout Security, it turns out that iOS versions had become available outside the App Store, through phishing sites that imitate Italian and Turkmenistani mobile carriers. These are notable in that they abused the Apple Developer Enterprise program. According to Lookout and other research from Security Without Borders, the spyware appears to have been under development for at least five years. It's a three-stage affair, starting with a lightweight dropper that then fetches a large second-stage payload that contains multiple binaries with most of the spy goods housed within them. Finally, a third stage typically uses the Dirty COW exploit (CVE20165195) to obtain root privileges on a targeted device. In delving into the technical details, Lookout saw evidence of a fairly sophisticated operation, suggesting that it may have been initially marketed as a legitimate package for the government or law-enforcement sectors.

In order to spread the iOS app outside of the official App Store, the cybercriminals abused Apple's enterprise provisioning system, which allowed them to sign the apps using legitimate Apple certificates. Lookout's analysis found that the iOS variant is a bit cruder than its Android counterpart, and it lacks the ability to exploit device vulnerabilities. However, the apps were still able to use documented APIs to exfiltrate contacts, photos, videos and user-recorded audio recordings, device information and location data; and, it offered a way to perform remote audio recording, though this required push notifications and user interaction. The good news is that Apple has revoked the affected certificates for this particular crop of apps.

A total of 14 HTC apps have been removed from the Play Store in the last three months. "Looking at the latest HTC Corporation activity in App Brain, we can see that the Sense Home launcher and contacts app People were unpublished just this month," reports Android Police. "12 more apps, including Calendar, Dot View, and Speak suffered a similar fate in February, while the Mail app that went and then returned is once again conspicuous by its absence." From the report: A few of the unpublished apps hadn't been updated in months, so it's likely they simply weren't being used or supported any longer and therefore had no reason to still be on the Play Store. However, apps like Mail, Contacts, and People are supposedly key alternative apps that come preinstalled on HTC devices, so it's a little strange to see those removed.

It's not clear exactly why this is happening, but there are a few possible reasons. HTC's smartphone business hasn't been doing all that well in recent years, and supporting a bunch of apps that few people are using doesn't make much sense. That said, there are still plenty more apps from the Taiwanese company still live on the Play Store. Perhaps the new phones HTC plans to launch in 2019 will ship with Android One, thus eliminating the need for its own stock apps altogether.

This weekend SlashGear published "Reasons to Abandon Windows For Linux," making their case to "Windows users who are curious about the state of Linux for mainstream computing." It tries to enumerate specific reasons why Linux might be the better choice, arguing among other things that:

• Updates on Linux are fast and "rarely call for a restart" -- and are also more complete. "Updates are typically downloaded through a 'Software Updater' application that not only checks for operating system patches, but also includes updates for the programs that you've installed from the repository."

• Windows "tries to serve a variety of markets...cramming in a scattered array of features" -- and along those lines, that Microsoft "has gradually implemented monetization schemes and methods for extracting user data." And yet you're still paying for that operating system, while Linux is less bloated and "free forever."

• "Because less people use Linux, the platform is less targeted by malware and tends to be more secure than Windows"

The article also touches on a few other points (including battery life), and predicts that problems with Windows are "bound to get worse over time and will only present more of a case for making the switch to Linux."

Long-time Slashdot reader shanen shared the article, along with some new thoughts on why people really stay with Windows:

I think the main "excuse" is the perception of reliability, which is really laughable if you've actually read the EULA. Microsoft certainly doesn't have to help anyone at all. I would argue that Windows support is neither a bug nor a feature, but just a marketing ploy.

Their original submission suggests that maybe Linux needs to buttress the perception of its reliability with a better financial model -- possibly through a new kind of crowd funding which could also be extended to all open source software, or even to journalism).

Long-time Slashdot reader frank249 brings some news from Diana Dragomir, a Hubble Fellow at the MIT Kavli Institute for Astrophysics and Space Research: Diana Dragomir tweeted that the MOST Telescope "can no longer be powered up. It's had a long life, overshooting its planned one-year lifespan by a factor of 15!"

The MOST Space Telescope (which stands for Microvariability and Oscillation of Stars) was launched into space in 2003. It was the first Canadian scientific satellite in orbit in 33 years, and it is the first space telescope to be entirely designed and built in Canada. About the size and shape of a large suitcase, the satellite weighs only 54 kilograms and is equipped with an ultra high precision telescope that measures only 15 centimetres in diameter (thus the nickname "humble space telescope").

Despite its diminutive size, it is [was?] ten times more sensitive than the Hubble Space Telescope in detecting the minuscule variations in a star's luminosity caused by vibrations that shake its surface.
Interestingly, when the Most telescope first launched back in 2003 -- it was the same long-time Slashdot reader frank249 who submitted the story.

In December a SpaceX Falcon 9 rocket deployed 64 satellites into space. But four months later, more than a dozen "have yet to be identified in space," reports the Verge. "We know that they're up there, and where they are, but it's unclear which satellites belong to which satellite operator on the ground...."

"Many of the satellite operators do not know which of these 19 probes are theirs exactly, and the Air Force can't figure it out either." For a good portion of these satellites, it's possible that they have experienced some kind of technical problem, preventing the operators from contacting the spacecraft in orbit. But part of the identification issue stems from the SSO-A "SmallSat Express" mission's structure. This was a rocket ride-share, a type of launch that's become popular in the industry. As satellites grow smaller, operators can pack a bunch of these tiny probes together on larger launch vehicles, sending them into space all at once. But with so many satellites going into orbit at the same time, it can be hard for the Air Force's technology to distinguish the satellites from each other. And that, in turn, can make it hard for satellite operators to decipher which satellites are theirs...

Not knowing the exact location of a spacecraft is a major problem for operators. If they can't communicate with their satellite, the company's orbiting hardware becomes, essentially, space junk. It brings up liability and transparency concerns, too. If an unidentified satellite runs into something else in space, it's hard to know who is to blame...

One problem is that most of the spacecraft on board all look the same. Nearly 50 satellites on the SSO-A launch were modified CubeSats -- a type of standardized satellite that's roughly the size of a cereal box. That means they are all about the same size and have the same general boxy shape. Plus, these tiny satellites are often deployed relatively close together on ride-share launches, one right after the other. The result is a big swarm of nearly identical spacecraft that are difficult to tell apart from the ground below.
"It's possible that some of the owners of the unidentified satellite got in touch with their vehicles recently and just have not informed the Air Force where they are," the article acknowledges. But Jonathan McDowell, an astrophysicist at Harvard and spaceflight tracker, points out to the Verge that five of the 13 satellites launched on an Electron rocket in December are still unidentified -- as are eight of the 72 satellites deployed on a Russian Soyuz rocket in 2017.

And four months after its launch in December, the web site for Trevor Paglen's "Orbital Reflector" art project (deploying a giant reflective balloon that can be seen from Earth) is still giving visitors this discouraging message.

"Due to the large number of satellites aboard #SSOA, the satellite tracking information is taking longer than we originally anticipated..."

In December a SpaceX Falcon 9 rocket deployed 64 satellites into space. But four months later, more than a dozen "have yet to be identified in space," reports the Verge. "We know that they're up there, and where they are, but it's unclear which satellites belong to which satellite operator on the ground...."

"Many of the satellite operators do not know which of these 19 probes are theirs exactly, and the Air Force can't figure it out either." For a good portion of these satellites, it's possible that they have experienced some kind of technical problem, preventing the operators from contacting the spacecraft in orbit. But part of the identification issue stems from the SSO-A "SmallSat Express" mission's structure. This was a rocket ride-share, a type of launch that's become popular in the industry. As satellites grow smaller, operators can pack a bunch of these tiny probes together on larger launch vehicles, sending them into space all at once. But with so many satellites going into orbit at the same time, it can be hard for the Air Force's technology to distinguish the satellites from each other. And that, in turn, can make it hard for satellite operators to decipher which satellites are theirs...

Not knowing the exact location of a spacecraft is a major problem for operators. If they can't communicate with their satellite, the company's orbiting hardware becomes, essentially, space junk. It brings up liability and transparency concerns, too. If an unidentified satellite runs into something else in space, it's hard to know who is to blame...

One problem is that most of the spacecraft on board all look the same. Nearly 50 satellites on the SSO-A launch were modified CubeSats -- a type of standardized satellite that's roughly the size of a cereal box. That means they are all about the same size and have the same general boxy shape. Plus, these tiny satellites are often deployed relatively close together on ride-share launches, one right after the other. The result is a big swarm of nearly identical spacecraft that are difficult to tell apart from the ground below.
"It's possible that some of the owners of the unidentified satellite got in touch with their vehicles recently and just have not informed the Air Force where they are," the article acknowledges. But Jonathan McDowell, an astrophysicist at Harvard and spaceflight tracker, points out to the Verge that five of the 13 satellites launched on an Electron rocket in December are still unidentified -- as are eight of the 72 satellites deployed on a Russian Soyuz rocket in 2017.

And four months after its launch in December, the web site for Trevor Paglen's "Orbital Reflector" art project (deploying a giant reflective balloon that can be seen from Earth) is still giving visitors this discouraging message.

"Due to the large number of satellites aboard #SSOA, the satellite tracking information is taking longer than we originally anticipated..."

A new online tool "analyzes publicly disclosed data breaches and gives concrete advice to victims," reported CNET last week. Now the site's creator, data breach expert jimvandyke, is asking Slashdot's readers for feedback: At BreachClarity.com, just enter the name of any data breach you were in (such as 'Anthem', 'Equifax', 'Yahoo', etc.), and click the bright green 'search' button. Every publicly-reported breach since January 2017 (and noteworthy older ones) are in the database, and eventually every publicly-reported breach will be in the database, thanks to my non-profit partner the IDTheftCenter.org (ITRC). Breach Clarity is now available for free in basic form to consumers, as a very simple UI sitting in front of a comprehensive algorithm of my own design.

The goal of Breach Clarity is to help people by demystifying how any new data breach creates identity-holder risk of identity theft, identity fraud, and other harms. My goal in creating Breach Clarity is to move past the myths and victim-blaming (for instance, my research finds that very few people are actually 'apathetic' or 'lazy' when it comes to security, and it's simply not true that 'everyone's data is all already out there' for any cyber-criminal who wants to commit fraud in another person's name).

Breach Clarity uses dynamic research, technology, and design-thinking to protect people in the face of an onslaught of ongoing data breaches (The ITRC recorded 1,244 publicly reported US ones last year, leading to over $10B in annual identity crimes as reported by my former company Javelin Strategy & Research!)... If you like what you see, please use it and spread the word.
The original submission says the site's creator is currently "a one-person pre-funded operation, aiming to create an advanced and more full-featured version of Breach Clarity that will be licensed for financial institutions and employers." But if this is beta testing, there's some great technical support. "If you're confused by what you see, you can actually call the phone number in the upper right of BreachClarity and talk to a real person for free. You'll reach my partner, the ITRC, who gets grant funding from law enforcement and foundations."

CNET notes that "You can already find out if you've lost login credentials and other sensitive information by visiting Have I Been Pwned or Firefox Monitor. Breach Clarity takes things a step further by helping you decide what to do afterward."

A new online tool "analyzes publicly disclosed data breaches and gives concrete advice to victims," reported CNET last week. Now the site's creator, data breach expert jimvandyke, is asking Slashdot's readers for feedback: At BreachClarity.com, just enter the name of any data breach you were in (such as 'Anthem', 'Equifax', 'Yahoo', etc.), and click the bright green 'search' button. Every publicly-reported breach since January 2017 (and noteworthy older ones) are in the database, and eventually every publicly-reported breach will be in the database, thanks to my non-profit partner the IDTheftCenter.org (ITRC). Breach Clarity is now available for free in basic form to consumers, as a very simple UI sitting in front of a comprehensive algorithm of my own design.

The goal of Breach Clarity is to help people by demystifying how any new data breach creates identity-holder risk of identity theft, identity fraud, and other harms. My goal in creating Breach Clarity is to move past the myths and victim-blaming (for instance, my research finds that very few people are actually 'apathetic' or 'lazy' when it comes to security, and it's simply not true that 'everyone's data is all already out there' for any cyber-criminal who wants to commit fraud in another person's name).

Breach Clarity uses dynamic research, technology, and design-thinking to protect people in the face of an onslaught of ongoing data breaches (The ITRC recorded 1,244 publicly reported US ones last year, leading to over $10B in annual identity crimes as reported by my former company Javelin Strategy & Research!)... If you like what you see, please use it and spread the word.
The original submission says the site's creator is currently "a one-person pre-funded operation, aiming to create an advanced and more full-featured version of Breach Clarity that will be licensed for financial institutions and employers." But if this is beta testing, there's some great technical support. "If you're confused by what you see, you can actually call the phone number in the upper right of BreachClarity and talk to a real person for free. You'll reach my partner, the ITRC, who gets grant funding from law enforcement and foundations."

CNET notes that "You can already find out if you've lost login credentials and other sensitive information by visiting Have I Been Pwned or Firefox Monitor. Breach Clarity takes things a step further by helping you decide what to do afterward."

A massive class-action lawsuit is accusing AT&T of lying to customers about DirecTV Now when it bought Time Warner. KCTV5 reprots: At the time, they promised customers and investors, they would be cutting prices for their streaming service called DirecTV Now. However, the lawsuit accuses the company of switching up TV packages, confusing customers by getting rid of the bundles it had been offering, charging higher prices for new types of bundles, and then bringing back the original bundles at a higher price. Investors were not happy about this because stock prices tanked. DirecTV Now was hemorrhaging customers, losing about 260,000 customers in December. "AT&T's registration statement 'touted yearly and quarterly growth trends... including quarterly subscriber gains in its DirecTV Now service sufficient to offset any decrease in traditional satellite DirecTV subscribers, such that AT&T was experiencing an ongoing trend of total video subscriber 'net additions,'" reports Ars Technica, citing a segment of the complaint.

"But in reality, 'DirecTV Now subscribers were leaving (i.e., not renewing) as soon as their promotional discount periods expired, while at the same time new potential DirecTV Now customers were unwilling to pay the higher prices and therefore not subscribing at all,' the complaint said. By the time AT&T bought Time Warner, 'AT&T's reported 'net additions' growth trend was already reversing into a severe 'net loss.' [T]he AT&T registration statement 'purported to warn of numerous risks that 'if' occurring 'may' or 'could' adversely affect the company while failing to disclose that these 'risks' had already materialized at the time of the acquisition,' the complaint said."

Bare Bones Software this week announced the return of BBEdit, a popular text, code, and markup editor, to the Mac App Store after a nearly five year hiatus. Bare Bones Software: When the Mac App Store debuted in 2011, BBEdit was one of its first products available for sale. However, due to technical and business constraints we encountered in the store, we decided to withdraw BBEdit from the Mac App Store in 2014. Following BBEdit's exit from the Mac App Store, we had many conversations with our customers, and with Apple, regarding the issues that we had encountered with the store. In the spring of 2018, Bare Bones and Apple announced that, subsequent to the release of macOS Mojave (10.14) and the accompanying refresh of the Mac App Store, BBEdit would be returning to the store.

This was made possible by changes to the OS itself which allow Mac App Store versions of BBEdit to function to their fullest extent while complying with Mac App Store rules; as well as changes to the Mac App Store business mechanics which make it possible for us to distribute our software through the Mac App Store as part of a sustainable business model. A limited features version of BBEdit is free to download and use, while the suite with all the features is priced at $3.99 a month or $39.99 a year. BBEdit remains available on a perpetual license basis for $49.99 via Bare Bones Software's online store and at participating resellers.

Further reading: The Old Guard of Mac Indy Apps Has Thrived For More Than 25 Years.

Facebook, Google and Twitter are headed back to Washington next week to testify at a congressional hearing about alleged tech censorship. From a report: Tech companies have faced accusations that they're censoring conservative speech on their platforms. The companies have denied the allegations in the past. The hearing before the Senate Judiciary's subcommittee on the Constitution is scheduled for April 10 and is titled "Stifling Free Speech: Technological Censorship and the Public Discourse." A Facebook spokesperson said Neil Potts, its public policy director, will be testifying. Twitter and Google didn't immediately respond to a request for comment. A source familiar with the Senate hearing said Twitter and Google officials will also be attending. The hearing will likely mark Potts' second congressional appearance next week. Facebook and Google officials are expected to appear before the House Judiciary Committee on April 9 to answer questions about the spread of white nationalism on their platforms.

Samsung Electronics has started mass-producing its 5G chips, the company said. From a report: Among the company's new chip offerings is the Exynos Modem 5100, which contains a 5G multi-mode chipset; it is the same chipset that is used to power the Galaxy S10 5G, which became available for sale in South Korea as of Wednesday. The model, unveiled in August, is the world's first 5G modem to be compatible with the 3GPP's 5G New Radio (5G-NR) standard. Mass production for its single-chip radio frequency transceiver, the Exynos RF 5500, and supply modulator solution, the Exynos SM 5800, have also started, Samsung said. These technologies also power Samsung's flagship 5G phone. The Exynos RF 5500 has 14 receiver paths for download, 4x4 MIMO (Multiple-Input, Multiple-Output), and a higher-order 256 QAM (Quadrature Amplitude Modulation) scheme for data transfer in 5G networks; and the Eyxnos SM5800 is 30% more power efficient than previous offerings.

Remember when Netflix used to be a DVD-by-mail company? Well, for 2.7 million subscribers in the US, it still is. From a report: The familiar red envelopes have been arriving in customers' mailboxes since 1998 and helped earn the company a healthy $212 million profit last year. Why are so many people still using this old-school service in the age of streaming? There are a number of reasons. Streaming Netflix video requires a lot of bandwidth -- so much so that Netflix consumes 15% of all US internet bandwidth, according to a 2018 industry report. But many rural areas of the country remain without broadband access. The Federal Communications Commission estimates 24 million Americans fall on the wrong side of this digital divide. The US Postal Service, however, can reach every ZIP code with those red envelopes. One such customer is Dana Palmateer, who lives in the Black Hills of South Dakota.

"Streaming movies was a no-go, so I just went with the disc service that Netflix offers," she says. "As all of us are doing it in these parts." But Netflix also has plenty of DVD customers in urban areas who prefer the service for its convenience and selection of movies, spokeswoman Annie Jung says. "People assume that our customers must either be super seniors or folks that live in the boonies with no internet access," she says. "Actually, our biggest hot spots are the coasts, like the Bay Area and New York." In 2017, the number of people who subscribed to Netflix's DVD subscription was about 4 million.

After facing criticism for including two controversial members in its AI ethics board, Google told Vox that it's pulling the plug on the board altogether. "The inclusion of drone company CEO Dyan Gibbens reopened old divisions in the company over the use of the company's AI for military applications," reports Vox. But it's Heritage Foundation president Kay Coles James who proved most controversial due to her company's hard line stance on immigration and LGBTQ rights. Thousands of Google employees signed a petition earlier this week calling for her removal. From the report: The board survived for barely more than one week. Founded to guide "responsible development of AI" at Google, it would have had eight members and met four times over the course of 2019 to consider concerns about Google's AI program. Those concerns include how AI can enable authoritarian states, how AI algorithms produce disparate outcomes, whether to work on military applications of AI, and more. But it ran into problems from the start.

Board member Alessandro Acquisti resigned. Another member, Joanna Bryson, defending her decision not to resign, claimed of James, "Believe it or not, I know worse about one of the other people." Other board members found themselves swamped with demands that they justify their decision to remain on the board. The panel was supposed to add outside perspectives to ongoing AI ethics work by Google engineers, all of which will continue. Hopefully, the cancellation of the board doesn't represent a retreat from Google's AI ethics work, but a chance to consider how to more constructively engage outside stakeholders. Here is Google's statement on the matter: "It's become clear that in the current environment, ATEAC can't function as we wanted. So we're ending the council and going back to the drawing board. We'll continue to be responsible in our work on the important issues that AI raises, and will find different ways of getting outside opinions on these topics."

After facing criticism for including two controversial members in its AI ethics board, Google told Vox that it's pulling the plug on the board altogether. "The inclusion of drone company CEO Dyan Gibbens reopened old divisions in the company over the use of the company's AI for military applications," reports Vox. But it's Heritage Foundation president Kay Coles James who proved most controversial due to her company's hard line stance on immigration and LGBTQ rights. Thousands of Google employees signed a petition earlier this week calling for her removal. From the report: The board survived for barely more than one week. Founded to guide "responsible development of AI" at Google, it would have had eight members and met four times over the course of 2019 to consider concerns about Google's AI program. Those concerns include how AI can enable authoritarian states, how AI algorithms produce disparate outcomes, whether to work on military applications of AI, and more. But it ran into problems from the start.

Board member Alessandro Acquisti resigned. Another member, Joanna Bryson, defending her decision not to resign, claimed of James, "Believe it or not, I know worse about one of the other people." Other board members found themselves swamped with demands that they justify their decision to remain on the board. The panel was supposed to add outside perspectives to ongoing AI ethics work by Google engineers, all of which will continue. Hopefully, the cancellation of the board doesn't represent a retreat from Google's AI ethics work, but a chance to consider how to more constructively engage outside stakeholders. Here is Google's statement on the matter: "It's become clear that in the current environment, ATEAC can't function as we wanted. So we're ending the council and going back to the drawing board. We'll continue to be responsible in our work on the important issues that AI raises, and will find different ways of getting outside opinions on these topics."

An anonymous reader quotes a report from CNN: Successive ocean heat waves are not only damaging Australia's Great Barrier Reef, they are compromising its ability to recover, raising the risk of "widespread ecological collapse," a new study has found. The 2,300-kilometer-long (1,500 mile) reef has endured multiple large-scale "bleaching" events caused by above-average water temperatures in the last two decades, including back-to-back occurrences in 2016 and 2017. The new study, released Wednesday in the journal Nature, examined the number of adult corals which survived these two events and how many new corals they created to replenish the reef in 2018.

The answer was as bleak as it was stark: "Dead corals don't make babies," the study's lead author, Terry Hughes, said in a press release. Scientists working on the study found the loss in adult corals caused a "crash in coral replenishment" on the reef, as heat stresses brought about by warming ocean temperatures impacted the ability of coral to heal. "The number of new corals settling on the Great Barrier Reef declined by 89% following the unprecedented loss of adult corals from global warming in 2016 and 2017," said Hughes. Scientists working on the report say they would expect coral recruitment to recover over the next 5 to 10 years, as more corals reach sexual maturity, but only in the absence of another bleaching event. However, with sea temperatures continuing to rise this seems a near-impossiblity.

An anonymous reader quotes a report from CNN: Successive ocean heat waves are not only damaging Australia's Great Barrier Reef, they are compromising its ability to recover, raising the risk of "widespread ecological collapse," a new study has found. The 2,300-kilometer-long (1,500 mile) reef has endured multiple large-scale "bleaching" events caused by above-average water temperatures in the last two decades, including back-to-back occurrences in 2016 and 2017. The new study, released Wednesday in the journal Nature, examined the number of adult corals which survived these two events and how many new corals they created to replenish the reef in 2018.

The answer was as bleak as it was stark: "Dead corals don't make babies," the study's lead author, Terry Hughes, said in a press release. Scientists working on the study found the loss in adult corals caused a "crash in coral replenishment" on the reef, as heat stresses brought about by warming ocean temperatures impacted the ability of coral to heal. "The number of new corals settling on the Great Barrier Reef declined by 89% following the unprecedented loss of adult corals from global warming in 2016 and 2017," said Hughes. Scientists working on the report say they would expect coral recruitment to recover over the next 5 to 10 years, as more corals reach sexual maturity, but only in the absence of another bleaching event. However, with sea temperatures continuing to rise this seems a near-impossiblity.

One of Google's top minds in artificial intelligence has joined Apple in a director role. Ian Goodfellow said on his LinkedIn profile that he switched employers in March. He said he's a director of machine learning in the Special Projects Group. CNBC reports: Goodfellow is the father of an AI approach known as generative adversarial networks, or GANs. The approach draws on two networks, one known as a generative network and the other known as a discriminative network, and can be used to come up with unusual and creative outputs in the form of audio, video and text. GAN systems have been used to generate "deepfake" fake media content.

Goodfellow got his Ph.D. at the University of Montreal in 2014, and since then he has worked at OpenAI and Google. At OpenAI he was paid more than $800,000, according to a tax filing. His research is widely cited in academic literature. At Google Goodfellow did work around GANs and security, including an area known as adversarial attacks. People working on AI at Apple have previously done research that drew on the GAN technology.

The Internet Archive has come to the rescue once again. The nonprofit digital library this week unveiled the MySpace Music Dragon Hoard, a collection of 490,000 MP3 files from 2008 to 2010 on the long-abandoned social media site. From a report: While the recovered tracks make up less than one percent of the music lost by some 14 million artists, it is still a sizable cache weighing in at 1.3TB. The lost songs were given to the Internet Archive by an "anonymous academic group" that had downloaded the music over a three year period to study. When the group learned of the data loss last month, it offered all it had to be preserved.

The United Kingdom is working on legislation that would hold social media executives liable for harmful content distributed on their platforms. The leaked white paper comes less than 24 hours after Australia passed sweeping legislation that threatens huge fines for social media companies and jail for their executives if they fail to rapidly remove "abhorrent violent material" from their platforms. From the report: Under plans expected to be published on Monday, the government will legislate for a new statutory duty of care, to be policed by an independent regulator and likely to be funded through a levy on media companies. The regulator -- likely initially to be Ofcom, but in the longer term a new body -- will have the power to impose substantial fines against companies that breach their duty of care and to hold individual executives personally liable.

The scope of the recommendations is broad. As well as social media platforms such as Facebook and search engines such as Google they take in online messaging services and file hosting sites. Other proposals in the online harm white paper include:

- Government powers to direct the regulator on specific issues such as terrorist activity or child sexual exploitation.
- Annual "transparency reports" from social media companies, disclosing the prevalence of harmful content on their platforms and what they are doing to combat it.
- Co-operation with police and other enforcement agencies on illegal harms, such as incitement of violence and the sale of illegal weapons. "Companies will be asked to comply with a code of practice, setting out what steps they are taking to ensure that they meet the duty of care -- including by designing products and platforms to make them safer, and pointing users who have suffered harm towards support," the report says. "The code of practice is also likely to include the steps companies will be expected to take to combat disinformation, including by using fact-checking services, particularly during election periods, and improving the transparency of political advertising. Regulated firms will be expected to comply with the code of practice -- or explain what other steps they are taking to meet the duty of care. However, many questions are left to the regulator to determine."

Last year, Google announced that YouTube Music would be the company's primary streaming service that would eventually replace Play Music. We have now learned that in anticipation of this change, Google will close the Google Play Artist Hub that musicians use to directly interact with the Play Store. 9to5Google reports: Smaller, indie artists that were not signed by labels could use the Google Play Artist Hub to manage their presence on the Play Store and upload/sell songs. In an email today, Google told these musicians that the Artist Hub is shutting down on April 30th. YouTube Music is cited as the reason by Google: "With the launch of YouTube Music last year, we eventually plan to replace Google Play Music with YouTube Music. In anticipation of this change, we are shutting down the Artist Hub."

This portal allowed smaller artists to directly interact with Google to see statistics, and get paid for streams/purchases. Musicians can still sell their content in the Play Store and have content available for streaming in Play Music, but must now sign-up with a third-party distributor to handle that entire process. At the end of this month, all existing songs and albums uploaded through the Google Play Artist Hub will "no longer appear in the Google Play Store or Google Play Music service (including the paid streaming and free radio service)." Artists that would still like to "make [their] music available for purchase/download" have to republish, with Google providing a list of "YouTube partners," including AWAL, Believe, CD Baby, DistroKid, Stem, and TuneCore.

An anonymous reader quotes a report from Ars Technica: Democrats in the U.S. House of Representatives yesterday rejected Republican attempts to weaken a bill that would restore net neutrality rules. The House Commerce Committee yesterday approved the "Save the Internet Act" in a 30-22 party-line vote, potentially setting up a vote of the full House next week. The bill is short and simple -- it would fully reinstate the rules implemented by the Federal Communications Commission under then-Chairman Tom Wheeler in 2015, reversing the repeal led by FCC Chairman Ajit Pai in 2017.

Commerce Committee Republicans repeatedly introduced amendments that would weaken the bill but were consistently rebuffed by the committee's Democratic majority. "The Democrats beat back more than a dozen attempts from Republicans to gut the bill with amendments throughout the bill's markup that lasted 9.5 hours," The Hill reported yesterday. Republican amendments would have weakened the bill by doing the following: Exempt all 5G wireless services from net neutrality rules; Exempt all multi-gigabit broadband services from net neutrality rules; Exempt from net neutrality rules any ISP that builds broadband service in any part of the U.S. that doesn't yet have download speeds of at least 25Mbps and upload speeds of at least 3Mbps; Exempt from net neutrality rules any ISP that gets universal service funding from the FCC's Rural Health Care Program; Exempt ISPs that serve 250,000 or fewer subscribers from certain transparency rules that require public disclosure of network management practices; and Prevent the FCC from limiting the types of zero-rating (i.e., data cap exemptions) that ISPs can deploy. An additional Republican amendment "would have imposed net neutrality rules but declared that broadband is an information service, [preventing] the FCC from imposing any other type of common-carrier regulations on ISPs," reports Ars Technica. "The committee did approve a Democratic amendment to exempt ISPs with 100,000 or fewer subscribers from the transparency rules, but only for one year."

U.S. authorities gathered information about Huawei through secret surveillance that they plan to use in a case accusing the Chinese telecom equipment maker of sanctions-busting and bank fraud, prosecutors said on Thursday. From a report: Assistant U.S. Attorney Alex Solomon said at a hearing in federal court in Brooklyn that the evidence, obtained under the U.S. Foreign Intelligence Surveillance Act (FISA), would require classified handling. The government notified Huawei in a court filing on Thursday of its intent to use the information, saying it was "obtained or derived from electronic surveillance and physical search," but gave no details. The United States has been pressuring other countries to drop Huawei from their cellular networks, worried its equipment could be used by Beijing for spying. The company says the concerns are unfounded. Brian Frey, a former federal prosecutor who is not involved in the Huawei case, said FISA surveillance, which requires a warrant from a special court, is generally sought in connection with suspected espionage.

Prince Harry, Duke of Sussex, is calling for the ban of popular battle royale game "Fortnite." The prominent member of the British royal family visited a YMCA in West London and spoke to mental health experts about addictive games and social media, saying that the latter is more addictive than drugs or alcohol. From a report: "[Fortnite] shouldn't be allowed," he said. "Where is the benefit of having it in your household? It's created to addict, an addiction to keep you in front of a computer for as long as possible. It's so irresponsible. It's like waiting for the damage to be done and kids turning up on your doorsteps and families being broken down." He also suggested that social media is "more addictive than alcohol and drugs." Further reading: Fortnite Creator Sees Epic Games Becoming as Big as Facebook, Google; and 'Fortnite' May be a Virtual Game, But It's Having Real-life, Dangerous Effects.

Prince Harry, Duke of Sussex, is calling for the ban of popular battle royale game "Fortnite." The prominent member of the British royal family visited a YMCA in West London and spoke to mental health experts about addictive games and social media, saying that the latter is more addictive than drugs or alcohol. From a report: "[Fortnite] shouldn't be allowed," he said. "Where is the benefit of having it in your household? It's created to addict, an addiction to keep you in front of a computer for as long as possible. It's so irresponsible. It's like waiting for the damage to be done and kids turning up on your doorsteps and families being broken down." He also suggested that social media is "more addictive than alcohol and drugs." Further reading: Fortnite Creator Sees Epic Games Becoming as Big as Facebook, Google; and 'Fortnite' May be a Virtual Game, But It's Having Real-life, Dangerous Effects.

Following the release of Visual Studio 2019 for Windows and Mac platforms, Microsoft today is releasing a snap version of Visual Studio Code. A report adds: No, the source-code editor is not the Windows-maker's first snap -- it also released one for Skype, for instance. "As of today, Visual Studio Code is available for Linux as a snap, providing seamless auto-updates for its users. Visual Studio Code, a free, lightweight code editor, has redefined editors for building modern web and cloud applications, with built-in support for debugging, task running, and version control for a variety of languages and frameworks," says Canonical. Joao Moreno, Software Development Engineer, Microsoft Visual Studio Code offers the following statement: "The automatic update functionality of snaps is a major benefit. It is clear there is a thriving community around snaps and that it is moving forward at great pace. The backing of Canonical ensures our confidence in its ongoing development and long-term future."

Microsoft has announced that starting with the Windows 10 May 2019 Update, which will hit general availability late next month, users will no longer be forced to install new Windows 10 feature updates as they become available. From a report: This comes after feedback from users who have had countless issues with updates breaking programs, losing files, and installing at inconvenient times. Microsoft has been working hard to improve Windows Update, and while the system is better than it was at launch in 2015, it's still not perfect. Now, users will have the option to not have to deal with feature updates when they are released.

What Microsoft is doing here is splitting Windows Update in two. The normal "check for updates" button will now only function for security and monthly patches. Feature updates now get their own area in Windows Update where the user can initiate the download and install process for the latest feature update available. If the user doesn't want to initiate that process, they don't have to. The user will be alerted that a new feature update is available every now and then, but at no point will the user be forced to install that update, as long as the version of Windows 10 they're currently running is still in support.

Microsoft has announced that starting with the Windows 10 May 2019 Update, which will hit general availability late next month, users will no longer be forced to install new Windows 10 feature updates as they become available. From a report: This comes after feedback from users who have had countless issues with updates breaking programs, losing files, and installing at inconvenient times. Microsoft has been working hard to improve Windows Update, and while the system is better than it was at launch in 2015, it's still not perfect. Now, users will have the option to not have to deal with feature updates when they are released.

What Microsoft is doing here is splitting Windows Update in two. The normal "check for updates" button will now only function for security and monthly patches. Feature updates now get their own area in Windows Update where the user can initiate the download and install process for the latest feature update available. If the user doesn't want to initiate that process, they don't have to. The user will be alerted that a new feature update is available every now and then, but at no point will the user be forced to install that update, as long as the version of Windows 10 they're currently running is still in support.

Microsoft has announced that starting with the Windows 10 May 2019 Update, which will hit general availability late next month, users will no longer be forced to install new Windows 10 feature updates as they become available. From a report: This comes after feedback from users who have had countless issues with updates breaking programs, losing files, and installing at inconvenient times. Microsoft has been working hard to improve Windows Update, and while the system is better than it was at launch in 2015, it's still not perfect. Now, users will have the option to not have to deal with feature updates when they are released.

What Microsoft is doing here is splitting Windows Update in two. The normal "check for updates" button will now only function for security and monthly patches. Feature updates now get their own area in Windows Update where the user can initiate the download and install process for the latest feature update available. If the user doesn't want to initiate that process, they don't have to. The user will be alerted that a new feature update is available every now and then, but at no point will the user be forced to install that update, as long as the version of Windows 10 they're currently running is still in support.

Microsoft has announced that starting with the Windows 10 May 2019 Update, which will hit general availability late next month, users will no longer be forced to install new Windows 10 feature updates as they become available. From a report: This comes after feedback from users who have had countless issues with updates breaking programs, losing files, and installing at inconvenient times. Microsoft has been working hard to improve Windows Update, and while the system is better than it was at launch in 2015, it's still not perfect. Now, users will have the option to not have to deal with feature updates when they are released.

What Microsoft is doing here is splitting Windows Update in two. The normal "check for updates" button will now only function for security and monthly patches. Feature updates now get their own area in Windows Update where the user can initiate the download and install process for the latest feature update available. If the user doesn't want to initiate that process, they don't have to. The user will be alerted that a new feature update is available every now and then, but at no point will the user be forced to install that update, as long as the version of Windows 10 they're currently running is still in support.

Steven J. Vaughan-Nichols, writing for ComputerWorld : Of course, at one time, to get any work done with a computer, you first had to learn a lot, about computers, operating systems, commands and more. Eventually, "friendly" became the most important adverb in computing circles, and we've reached the point in user-friendliness that people don't even talk about it anymore. Today, Google has shown with its Chrome OS that most of us can pretty much do anything we need to do on a computer with just a web browser. But Google's path is not Microsoft's path. Instead, it's moving us first to Windows as desktop as a service (DaaS) via Microsoft Managed Desktop (MMD). This bundles Windows 10 Enterprise, Office 365 and Enterprise Mobility + Security and cloud-based system management into Microsoft 365 Enterprise.

The next step, Windows Virtual Desktop, enables companies to virtualize Windows 7 and 10, Office 365 ProPlus apps and other third-party applications on Azure-based virtual machines. If all goes well, you'll be able to subscribe to Windows Virtual Desktop this fall. Of course, Virtual Desktop is a play for business users -- for now. I expect Virtual Desktop to be offered to consumers in 2020. By 2025, Windows as an actual desktop operating system will be a niche product. Sound crazy? Uh, you do know that Microsoft already really, really wants you to "rent" Office 365 rather than buy Office 2019, don't you?

But what about games, you say? We'll always have Windows for games! Will we? Google, with its Google Stadia gaming cloud service, is betting we're ready to move our games to the cloud as well. It's no pipe dream. Valve has been doing pretty well for years now with its Steam variation on this theme. So where is all this taking us? I see a world where the PC desktop disappears for all but a few. Most of us will be writing our documents, filling out our spreadsheets and doing whatever else we now do on our PCs via cloud-based applications on smart terminals running Chrome OS or Windows Lite. If you want a "real" PC, your choices are going to be Linux or macOS.

Steven J. Vaughan-Nichols, writing for ComputerWorld : Of course, at one time, to get any work done with a computer, you first had to learn a lot, about computers, operating systems, commands and more. Eventually, "friendly" became the most important adverb in computing circles, and we've reached the point in user-friendliness that people don't even talk about it anymore. Today, Google has shown with its Chrome OS that most of us can pretty much do anything we need to do on a computer with just a web browser. But Google's path is not Microsoft's path. Instead, it's moving us first to Windows as desktop as a service (DaaS) via Microsoft Managed Desktop (MMD). This bundles Windows 10 Enterprise, Office 365 and Enterprise Mobility + Security and cloud-based system management into Microsoft 365 Enterprise.

The next step, Windows Virtual Desktop, enables companies to virtualize Windows 7 and 10, Office 365 ProPlus apps and other third-party applications on Azure-based virtual machines. If all goes well, you'll be able to subscribe to Windows Virtual Desktop this fall. Of course, Virtual Desktop is a play for business users -- for now. I expect Virtual Desktop to be offered to consumers in 2020. By 2025, Windows as an actual desktop operating system will be a niche product. Sound crazy? Uh, you do know that Microsoft already really, really wants you to "rent" Office 365 rather than buy Office 2019, don't you?

But what about games, you say? We'll always have Windows for games! Will we? Google, with its Google Stadia gaming cloud service, is betting we're ready to move our games to the cloud as well. It's no pipe dream. Valve has been doing pretty well for years now with its Steam variation on this theme. So where is all this taking us? I see a world where the PC desktop disappears for all but a few. Most of us will be writing our documents, filling out our spreadsheets and doing whatever else we now do on our PCs via cloud-based applications on smart terminals running Chrome OS or Windows Lite. If you want a "real" PC, your choices are going to be Linux or macOS.

The pilots of a doomed Ethiopian Airlines jet followed all of Boeing's recommended procedures when the plane started to nose dive but still couldn't save it, according to findings from a preliminary report released Thursday by the Ethiopian government. From a report: The plane crashed just six minutes after taking off from Addis Ababa, killing all 157 people on board. The report, based on flight data and cockpit voice recorders on the Boeing 737 Max 8, was not released in full. Boeing declined to comment pending its review of the report on the March 10 crash. The Max 8 has been under scrutiny since a Lion Air flight crashed off the coast of Indonesia under similar circumstances in October. Thursday's revelations raise questions about repeated assertions by Boeing and U.S. regulators that pilots could regain control in some emergencies by following steps that include turning off an anti-stall system designed specifically for the Max, known by its acronym, MCAS. Investigators are looking into the role of MCAS, whose functions include automatically lowering the plane's nose to prevent an aerodynamic stall. The Max has been grounded worldwide pending a software fix that Boeing is rolling out, which still needs to be approved by the Federal Aviation Administration and other regulators. Further reading: Flawed Analysis, Failed Oversight: How Boeing, FAA Certified the Suspect 737 MAX Flight Control System.

The pilots of a doomed Ethiopian Airlines jet followed all of Boeing's recommended procedures when the plane started to nose dive but still couldn't save it, according to findings from a preliminary report released Thursday by the Ethiopian government. From a report: The plane crashed just six minutes after taking off from Addis Ababa, killing all 157 people on board. The report, based on flight data and cockpit voice recorders on the Boeing 737 Max 8, was not released in full. Boeing declined to comment pending its review of the report on the March 10 crash. The Max 8 has been under scrutiny since a Lion Air flight crashed off the coast of Indonesia under similar circumstances in October. Thursday's revelations raise questions about repeated assertions by Boeing and U.S. regulators that pilots could regain control in some emergencies by following steps that include turning off an anti-stall system designed specifically for the Max, known by its acronym, MCAS. Investigators are looking into the role of MCAS, whose functions include automatically lowering the plane's nose to prevent an aerodynamic stall. The Max has been grounded worldwide pending a software fix that Boeing is rolling out, which still needs to be approved by the Federal Aviation Administration and other regulators. Further reading: Flawed Analysis, Failed Oversight: How Boeing, FAA Certified the Suspect 737 MAX Flight Control System.