Slashdot Mirror

Two Iranian officials have been indicted by U.S. federal prosecutors for creating and deploying the notorious SamSam ransomware, which exploits a deserialization vulnerability in Java-based servers. TechCrunch reports: Faramarz Shahi Savandi, 34, and Mohammad Mehdi Shah Mansouri, 27, were indicted by a federal grand jury in New Jersey on Monday on several counts of computer hacking and fraud charges. The case was unsealed Wednesday, shortly before a press conference announcing the charges by U.S. deputy attorney general Rod Rosenstein. In total, SamSam has generated some $6 million in proceeds to date -- or 1,430 bitcoin at today's value. In a separate announcement, the Treasury said it had imposed sanctions against two bitcoin addresses associated with the ransomware. The department said the two addresses processed more than 7,000 transactions used to collect ransom demands from victims. "The Iranian defendants allegedly used hacking and malware to cause more than $30 million in losses to more than 200 victims," said Rosenstein. "According to the indictment, the hackers infiltrated computer systems in ten states and Canada and then demanded payment. The criminal activity harmed state agencies, city governments, hospitals, and countless innocent victims."

One of the victims was the City of Atlanta, which was knocked offline earlier this year and spent a projected $2.6 million in recovery. "It was later discovered that the city's computers had long been vulnerable to leaked exploits developed by the National Security Agency -- later stolen and leaked online for anyone to use," reports TechCrunch.

Two Iranian officials have been indicted by U.S. federal prosecutors for creating and deploying the notorious SamSam ransomware, which exploits a deserialization vulnerability in Java-based servers. TechCrunch reports: Faramarz Shahi Savandi, 34, and Mohammad Mehdi Shah Mansouri, 27, were indicted by a federal grand jury in New Jersey on Monday on several counts of computer hacking and fraud charges. The case was unsealed Wednesday, shortly before a press conference announcing the charges by U.S. deputy attorney general Rod Rosenstein. In total, SamSam has generated some $6 million in proceeds to date -- or 1,430 bitcoin at today's value. In a separate announcement, the Treasury said it had imposed sanctions against two bitcoin addresses associated with the ransomware. The department said the two addresses processed more than 7,000 transactions used to collect ransom demands from victims. "The Iranian defendants allegedly used hacking and malware to cause more than $30 million in losses to more than 200 victims," said Rosenstein. "According to the indictment, the hackers infiltrated computer systems in ten states and Canada and then demanded payment. The criminal activity harmed state agencies, city governments, hospitals, and countless innocent victims."

One of the victims was the City of Atlanta, which was knocked offline earlier this year and spent a projected $2.6 million in recovery. "It was later discovered that the city's computers had long been vulnerable to leaked exploits developed by the National Security Agency -- later stolen and leaked online for anyone to use," reports TechCrunch.

Two Iranian officials have been indicted by U.S. federal prosecutors for creating and deploying the notorious SamSam ransomware, which exploits a deserialization vulnerability in Java-based servers. TechCrunch reports: Faramarz Shahi Savandi, 34, and Mohammad Mehdi Shah Mansouri, 27, were indicted by a federal grand jury in New Jersey on Monday on several counts of computer hacking and fraud charges. The case was unsealed Wednesday, shortly before a press conference announcing the charges by U.S. deputy attorney general Rod Rosenstein. In total, SamSam has generated some $6 million in proceeds to date -- or 1,430 bitcoin at today's value. In a separate announcement, the Treasury said it had imposed sanctions against two bitcoin addresses associated with the ransomware. The department said the two addresses processed more than 7,000 transactions used to collect ransom demands from victims. "The Iranian defendants allegedly used hacking and malware to cause more than $30 million in losses to more than 200 victims," said Rosenstein. "According to the indictment, the hackers infiltrated computer systems in ten states and Canada and then demanded payment. The criminal activity harmed state agencies, city governments, hospitals, and countless innocent victims."

One of the victims was the City of Atlanta, which was knocked offline earlier this year and spent a projected $2.6 million in recovery. "It was later discovered that the city's computers had long been vulnerable to leaked exploits developed by the National Security Agency -- later stolen and leaked online for anyone to use," reports TechCrunch.

The Federal Trade Commission this week agreed to investigate video game loot boxes, accepting an official request by Senator Maggie Hassan. In a Congressional oversight committee hearing yesterday, FTC chairman Joe Simons affirmed Sen. Hassan's request that loot boxes be investigated. From a report: During her turn to ask questions at the hearing, Hassan cited a recent report by Great Britain's Gambling Commission that found 31% of children in the country had at one point or another paid money to open a loot box, a well as moves by Belgium (which prompted Square Enix to pull three mobile games from the country), Japan, and other countries to limit how loot boxes can be used in games. "Given the seriousness of this issue, I think it is in fact time for the FTC to investigate these mechanisms to ensure that children are being adequately protected and to educate parents about potential addiction or other negative impacts of these games," Hassan said. "Would you commit to undertaking this project and keeping this committee informed about it?" In response, Simons said "yes," but declined to go into any more detail about the FTC's current position on loot boxes and whether they constitute a form of gambling. Despite vocal criticism from Hassan and a few others on the topic, regulators have not been jumping to get involved in the debate.

The Federal Trade Commission this week agreed to investigate video game loot boxes, accepting an official request by Senator Maggie Hassan. In a Congressional oversight committee hearing yesterday, FTC chairman Joe Simons affirmed Sen. Hassan's request that loot boxes be investigated. From a report: During her turn to ask questions at the hearing, Hassan cited a recent report by Great Britain's Gambling Commission that found 31% of children in the country had at one point or another paid money to open a loot box, a well as moves by Belgium (which prompted Square Enix to pull three mobile games from the country), Japan, and other countries to limit how loot boxes can be used in games. "Given the seriousness of this issue, I think it is in fact time for the FTC to investigate these mechanisms to ensure that children are being adequately protected and to educate parents about potential addiction or other negative impacts of these games," Hassan said. "Would you commit to undertaking this project and keeping this committee informed about it?" In response, Simons said "yes," but declined to go into any more detail about the FTC's current position on loot boxes and whether they constitute a form of gambling. Despite vocal criticism from Hassan and a few others on the topic, regulators have not been jumping to get involved in the debate.

The Federal Trade Commission this week agreed to investigate video game loot boxes, accepting an official request by Senator Maggie Hassan. In a Congressional oversight committee hearing yesterday, FTC chairman Joe Simons affirmed Sen. Hassan's request that loot boxes be investigated. From a report: During her turn to ask questions at the hearing, Hassan cited a recent report by Great Britain's Gambling Commission that found 31% of children in the country had at one point or another paid money to open a loot box, a well as moves by Belgium (which prompted Square Enix to pull three mobile games from the country), Japan, and other countries to limit how loot boxes can be used in games. "Given the seriousness of this issue, I think it is in fact time for the FTC to investigate these mechanisms to ensure that children are being adequately protected and to educate parents about potential addiction or other negative impacts of these games," Hassan said. "Would you commit to undertaking this project and keeping this committee informed about it?" In response, Simons said "yes," but declined to go into any more detail about the FTC's current position on loot boxes and whether they constitute a form of gambling. Despite vocal criticism from Hassan and a few others on the topic, regulators have not been jumping to get involved in the debate.

Microsoft's stock market value surpassed Apple's and pulled ahead by as much as $3 billion on Wednesday as the Windows software maker benefited from optimism about demand for cloud computing services. From a report: Shares of Microsoft jumped 3 percent, pushing its market capitalization up to $848 billion. With the broad market rebounding following a recent slump, Apple also rose, but less than Microsoft. Its 2.17 percent increase put Apple's market capitalization at $845 billion, just four months after the iPhone maker breached the $1 trillion mark for the first time. Microsoft and Apple briefly traded at about the same level after the bell on Monday, but Microsoft's intraday lead over Apple on Wednesday was more substantial. Further reading: 'This is Not Your Father's Microsoft': CEO Satya Nadella On Helping a Faded Legend Find a 'Sense of Purpose'.

Microsoft's stock market value surpassed Apple's and pulled ahead by as much as $3 billion on Wednesday as the Windows software maker benefited from optimism about demand for cloud computing services. From a report: Shares of Microsoft jumped 3 percent, pushing its market capitalization up to $848 billion. With the broad market rebounding following a recent slump, Apple also rose, but less than Microsoft. Its 2.17 percent increase put Apple's market capitalization at $845 billion, just four months after the iPhone maker breached the $1 trillion mark for the first time. Microsoft and Apple briefly traded at about the same level after the bell on Monday, but Microsoft's intraday lead over Apple on Wednesday was more substantial. Further reading: 'This is Not Your Father's Microsoft': CEO Satya Nadella On Helping a Faded Legend Find a 'Sense of Purpose'.

Microsoft's stock market value surpassed Apple's and pulled ahead by as much as $3 billion on Wednesday as the Windows software maker benefited from optimism about demand for cloud computing services. From a report: Shares of Microsoft jumped 3 percent, pushing its market capitalization up to $848 billion. With the broad market rebounding following a recent slump, Apple also rose, but less than Microsoft. Its 2.17 percent increase put Apple's market capitalization at $845 billion, just four months after the iPhone maker breached the $1 trillion mark for the first time. Microsoft and Apple briefly traded at about the same level after the bell on Monday, but Microsoft's intraday lead over Apple on Wednesday was more substantial. Further reading: 'This is Not Your Father's Microsoft': CEO Satya Nadella On Helping a Faded Legend Find a 'Sense of Purpose'.

Microsoft's stock market value surpassed Apple's and pulled ahead by as much as $3 billion on Wednesday as the Windows software maker benefited from optimism about demand for cloud computing services. From a report: Shares of Microsoft jumped 3 percent, pushing its market capitalization up to $848 billion. With the broad market rebounding following a recent slump, Apple also rose, but less than Microsoft. Its 2.17 percent increase put Apple's market capitalization at $845 billion, just four months after the iPhone maker breached the $1 trillion mark for the first time. Microsoft and Apple briefly traded at about the same level after the bell on Monday, but Microsoft's intraday lead over Apple on Wednesday was more substantial. Further reading: 'This is Not Your Father's Microsoft': CEO Satya Nadella On Helping a Faded Legend Find a 'Sense of Purpose'.

British and Dutch authorities fined Uber a combined $1.17 million for a 2016 data breach that exposed the personal details of millions of customers. "The U.K.'s Information Commissioner's Office (ICO) announced a $491,284 fine against the ride-sharing company for 'failing to protect customers' personal information during a cyber attack' in October and November of 2016," reports CNBC. "The Dutch Data Protection Authority imposed its own $679,257 penalty for the same incident." From the report: The 2016 cyberattack allowed hackers to access the personal details, including full names, email addresses and phone numbers, of 2.7 million Uber customers in the U.K. and 174,000 in the Netherlands, authorities said. The U.K.'s ICO said the cyberattack represented a "serious breach" of the country's Data Protection Act of 1998 by exposing customers and drivers to increased risk of fraud. The Dutch regulator said it was fining Uber because it did not report the breach within the country's mandated 72-hour window.

In September, Uber agreed to pay $148 million to settle claims related to the 2016 data breach to states across the U.S. and Washington, D.C. In a statement Tuesday, an Uber spokesperson said the company is "pleased to close this chapter on the data incident from 2016."

Early last year, YouTube announced that it would be retiring annotations, those boxes that pop up during a video with links and additional information. It discontinued the annotations editor in May of last year and soon all existing annotations will be going away as well. From a report: The company added an update to the help page announcing the end of its annotations editor, saying, "We will stop showing existing annotations to viewers starting January 15, 2019. All existing annotations will be removed."

A UK Commons committee chair claims a seized trove of Facebook documents reveals that a company engineer flagged Russian "entities" were using a Pinterest API to pull billions of points of Facebook data every day in 2014. From a report: Damian Collins appeared to use parliamentary privilege to outline the detail from the sealed documents, during a fiery session of questioning of Facebook executive Richard Allan before the first sitting of the "international grand committee on disinformation and fake news" in London on Tuesday. The most contentious moment came during an exchange between Allan and the chair of the committee over what's alleged to be in a set of documents that are subject to the protective order of a California court.

During the questioning of Allan on Tuesday, Collins said the emails would not be released. But he did outline details from an alleged incident which, if true, would raise further questions about how Facebook responded to learning about data being taken from the platform. "An engineer at Facebook notified the company in October 2014 that entities with Russian IP addresses have been using a Pinterest API key to pull over 3 billion data points a day," Collins said. "Now was that reported to any external body at the time?" Allan dismissed the claim by focusing on the source of the information, Six4Three, labelling it a "hostile litigant." Further reading: Facebook Exec Admits Zuckerberg Not Appearing Before UK Parliament Doesn't Look Great (CNBC); 'The Problem is Facebook,' Lawmakers From Nine Countries Tell Zuckerberg's Accountability Stand-in (TechCrunch); and "When You Get That Wealthy, You Start to Buy Your Own Bullshit": The Miseducation of Sheryl Sandberg (VanityFair).

Just over a week after a global problem with its multi-factor authentication (MFA) service plagued a number of users, another Microsoft MFA outage is impacting a number of customers. Many, but not all, of the customers reporting problems today seem to be U.S.-based. From a report: Starting around 9:15 a.m. ET, a number of Office 365 customers began reporting on Twitter that they were unable to sign into that service because of an MFA issue. Office 365 is one of a number of Microsoft services that uses Azure Active Directory MFA to authenticate. Around 10:15 a.m. ET, Microsoft's Azure status dashboard was updated to reflect the possibility of a cross-region potential outage impacting MFA. "Impacted customers may experience failures when attempting to authenticate into Azure resources where MFA is required by policy. Engineers are investigating the issue and the next update will be provided in 60 minutes or as events warrant," the dashboard status said.

A group of Google employees have put their name to a public letter calling on the company to abandon its plans for a Chinese search product that censors results. From a report: Project Dragonfly, as the initiative is known, would enable state surveillance at a time when the Chinese government is expanding controls over the population, according to the letter signed by at least 10 workers, predominately software engineers and researchers. The document also called on management to commit to transparency, be accountable and provide clear communication.

Ever since plans for Dragonfly emerged in August, Google parent Alphabet has been riven by internal dissent at the prospect of a search engine bending to Beijing's censorship. It was that sort of government control that prompted co-founders Larry Page and Sergey Brin to effectively pull out of China in 2010 when it decided to stop removing controversial links from web queries. "We refuse to build technologies that aid the powerful in oppressing the vulnerable, wherever they may be," the Google workers wrote in the letter. "Dragonfly in China would establish a dangerous precedent, one that would make it harder for Google to deny other countries similar concessions."

A group of Google employees have put their name to a public letter calling on the company to abandon its plans for a Chinese search product that censors results. From a report: Project Dragonfly, as the initiative is known, would enable state surveillance at a time when the Chinese government is expanding controls over the population, according to the letter signed by at least 10 workers, predominately software engineers and researchers. The document also called on management to commit to transparency, be accountable and provide clear communication.

Ever since plans for Dragonfly emerged in August, Google parent Alphabet has been riven by internal dissent at the prospect of a search engine bending to Beijing's censorship. It was that sort of government control that prompted co-founders Larry Page and Sergey Brin to effectively pull out of China in 2010 when it decided to stop removing controversial links from web queries. "We refuse to build technologies that aid the powerful in oppressing the vulnerable, wherever they may be," the Google workers wrote in the letter. "Dragonfly in China would establish a dangerous precedent, one that would make it harder for Google to deny other countries similar concessions."

A group of Google employees have put their name to a public letter calling on the company to abandon its plans for a Chinese search product that censors results. From a report: Project Dragonfly, as the initiative is known, would enable state surveillance at a time when the Chinese government is expanding controls over the population, according to the letter signed by at least 10 workers, predominately software engineers and researchers. The document also called on management to commit to transparency, be accountable and provide clear communication.

Ever since plans for Dragonfly emerged in August, Google parent Alphabet has been riven by internal dissent at the prospect of a search engine bending to Beijing's censorship. It was that sort of government control that prompted co-founders Larry Page and Sergey Brin to effectively pull out of China in 2010 when it decided to stop removing controversial links from web queries. "We refuse to build technologies that aid the powerful in oppressing the vulnerable, wherever they may be," the Google workers wrote in the letter. "Dragonfly in China would establish a dangerous precedent, one that would make it harder for Google to deny other countries similar concessions."

President Donald Trump on Monday rejected a central conclusion of a dire report on the economic costs of climate change released by his own administration. Associated Press reports: But economists said the National Climate Assessment's warning of hundreds of billions of dollars a year in global warming costs is pretty much on the money. Just look at last year with Hurricanes Harvey, Maria and Irma, they said. Those three 2017 storms caused at least $265 billion in damage, according to the National Oceanic and Atmospheric Administration. The climate report, quietly unveiled Friday, warned that natural disasters are worsening in the United States because of global warming. It said warming-charged extremes "have already become more frequent, intense, widespread or of long duration." The report noted the last few years have smashed U.S. records for damaging weather, costing nearly $400 billion since 2015.

"The potential for losses in some sectors could reach hundreds of billions of dollars per year by the end of this century," the report said. It added that if emissions of heat-trapping gases continue at current levels, labor costs in outdoor industries during heat waves could cost $155 billion in lost wages per year by 2090. The president said he read some of the report and "it's fine" but not the part about the devastating economic impact. "I don't believe it," Trump said, adding that if "every other place on Earth is dirty, that's not so good."

A small group of Pixel owners in "select" U.S. cities are able to use Google's new Duplex feature to automatically make voice calls to restaurants and other businesses on their behalf. Referencing a demo from VentureBeat, The Verge notes that "the exchange between Duplex and a restaurant on the other side of the call is raising some early concerns about transparency." From the report: [Y]ou'll notice that Duplex never identifies itself as a robot. It never tells the person taking the call that they're interacting with an automated system. "Hi, I'm calling to make a reservation for a client. I'm calling from Google, so the call may be recorded," is what Duplex says to begin the conversation. And that little bit -- about the call coming "from Google" and potentially being recorded -- is the only disclosure that it ever provides. From then on, Duplex handles the requested dinner reservation smoothly.

This disclosure doesn't match up with a promotional video for Duplex that Google posted to YouTube back in June. In that example (embedded below), Duplex makes it very clear that it's a bot. "Hi, I'm the Google Assistant calling to make a reservation for a client. This automated call will be recorded." That's a much better approach. You're talking to the Google Assistant. It's an automated call, and it is being recorded; no maybes about it. The report notes that some Duplex calls -- such as the one VentureBeat included in their demo -- are actually handled by a human. "When a human operator at Google places a Duplex call, they don't necessarily disclose anything about Google Assistant or note it's an automated call," reports The Verge. "Because it's not. Not entirely, anyway. Google's Duplex tests involve a mix of the two; some are led by Googlers, while others let the AI steer. The majority of calls are the latter and automated, from what I'm told."

An anonymous reader quotes a report from Ars Technica: The important data loss bug that interrupted the rollout of the Windows 10 October 2018 Update, version 1809, may be fixed, but it turns out there are plenty of other weird problems with the release. As spotted by Paul Thurrott, the update also breaks the seek bar in Windows Media Player when playing "specific files." Microsoft does promise to fix the bug, but the timeframe is vaguely open-ended: it will be "in an upcoming release."

Also in the "how did that happen" category comes another bug: some Win32 programs can't be set as the default program for a given file type. So if you want certain files to always open in Notepad, for example, you're currently out of luck. A fix for this is promised by the end of the month. Setting default program associations is something that's been in Windows for 20-something years, so it's a little alarming that it should be broken. On top of this, there continue to be complaints that Windows 10 version 1809 doesn't work with iCloud, and machines with the iCloud client are currently blacklisted to prevent them from receiving the 1809 update. It's not immediately clear whose fault this one is -- it could be Microsoft's, but it's also possible that Apple is to blame.

NASA's latest Mars lander, InSight, successfully touched down on the surface of the Red Planet moments ago, surviving an intense plunge through the Martian atmosphere. From a report: It marks the eighth picture-perfect landing on Mars for NASA, adding to the space agency's impressive track record of putting spacecraft on the planet. And now, InSight's two-year mission has begun, one that entails listening for Marsquakes to learn about the world's interior. After six and a half months of traveling through space, InSight hit the top of Mars' atmosphere a little before 3PM ET. It then made a daring descent to the surface, performing a complex multi-step routine that slowed the lander from more than 12,000 miles per hour to just 5 miles per hour before it hit the ground. To get to the surface safely, InSight had to autonomously deploy a supersonic parachute, gather radar measurements, and ignite its thrusters all at the right time. Altogether, the landing took just under seven minutes to complete, prompting the nickname "seven minutes of terror." "InSight's view is a flat, smooth expanse called Elysium Planitia, but its workspace is below the surface, where it will study Mars' deep interior," Nasa posted Monday, sharing the first photo after the landing.

U.S. Supreme Court justices on Monday appeared open to letting a lawsuit proceed against Apple that accused it of breaking federal antitrust laws by monopolizing the market for iPhone software applications and causing consumers to overpay. From a report: The nine justices heard an hour of arguments in an appeal by the Cupertino, California-based technology company of a lower court's decision to revive the proposed class-action lawsuit filed in federal court in California in 2011 by a group of iPhone users seeking monetary damages. The lawsuit said Apple violated federal antitrust laws by requiring apps to be sold through the company's App Store and then taking a 30 percent commission from the purchases. The case may hinge on how the justices will apply one of its past decisions to the claims against Apple. That 1977 ruling limited damages for anti-competitive conduct to those directly overcharged rather than indirect victims who paid an overcharge passed on by others.

U.S. Supreme Court justices on Monday appeared open to letting a lawsuit proceed against Apple that accused it of breaking federal antitrust laws by monopolizing the market for iPhone software applications and causing consumers to overpay. From a report: The nine justices heard an hour of arguments in an appeal by the Cupertino, California-based technology company of a lower court's decision to revive the proposed class-action lawsuit filed in federal court in California in 2011 by a group of iPhone users seeking monetary damages. The lawsuit said Apple violated federal antitrust laws by requiring apps to be sold through the company's App Store and then taking a 30 percent commission from the purchases. The case may hinge on how the justices will apply one of its past decisions to the claims against Apple. That 1977 ruling limited damages for anti-competitive conduct to those directly overcharged rather than indirect victims who paid an overcharge passed on by others.

YouTube has concluded that its investments in original programming should have a home on the free, ad-supported side -- not just tucked behind a paywall. Variety: In a shift in strategy, the Google-owned video platform said that starting next year it will move to make all of its new original programming available for free for anyone to watch. With the change, YouTube is moving toward more mainstream celebrity-driven and creator-based reality fare, while it will continue to greenlight scripted productions. Until now, YouTube Originals have mainly been available on its YouTube Premium subscription service, although YouTube also has expanded the shows and movies it makes available on an ad-supported basis. "As we look to 2019, we will continue to invest in scripted programming and shift to make our YouTube Originals ad supported to meet the growing demand of a more global fanbase," a YouTube rep said in a statement. "This next phase of our originals strategy will expand the audience of our YouTube Original creators, and provide advertisers with incredible content that reaches the YouTube generation."

Friday Greg Kroah-Hartman released stable point releases of Linux kernel 4.19.4, as well as 4.14.83 and 4.9.139. While they were basic maintenance updates, the 4.19.4 and 4.14.83 releases are significant because they also reverted the performance-killing Spectre patches (involving "Single Thread Indirect Branch Predictors", or STIBP) that had been back-ported from Linux 4.20, according to Phoronix:

There is improved STIBP code on the way for Linux 4.20 that by default just applies STIBP to SECCOMP threads and processes requesting it via prctl() but otherwise is off by default (that behavior can also be changed via kernel parameters). Once that code is ready to go for Linux 4.20, we may see it then back-ported to these stable trees.

Aside from reverting STIBP, these point releases just have various fixes in them as noted for 4.19.4, 4.14.83, and 4.9.139.
Last Sunday Linus Torvalds complained that the performance impact of the STIPB code "was clearly way more expensive than people were told," according to ZDNet: "When performance goes down by 50 percent on some loads, people need to start asking themselves whether it was worth it. It's apparently better to just disable SMT entirely, which is what security-conscious people do anyway," wrote Torvalds. "So why do that STIBP slow-down by default when the people who *really* care already disabled SMT?"

This year's report contains many of the same findings cited in the previous National Climate Assessment, published in 2014. From a report: More and more of the predicted impacts of global warming are now becoming a reality. For instance, the 2014 assessment forecast that coastal cities would see more flooding in the coming years as sea levels rose. That's no longer theoretical: Scientists have now documented a record number of "nuisance flooding" events during high tides in cities like Miami and Charleston, S.C.

"High tide flooding is now posing daily risks to businesses, neighborhoods, infrastructure, transportation, and ecosystems in the Southeast," the report says. As the oceans have warmed, disruptions in United States fisheries, long predicted, are now underway. In 2012, record ocean temperatures caused lobster catches in Maine to peak a month earlier than usual, and the distribution chain was unprepared.

Fax, once at the forefront of communications technologies but now in deep decline, has persisted in many industries. From a report: Law-enforcement agencies remain heavily reliant on fax for routine operations, such as bail postings and return of public-records requests. Health care, too, runs largely on fax. Despite attempts to replace it, a mix of regulatory confusion, digital-security concerns, and stubbornness has kept fax machines droning around the world.

An early facsimile message was sent over telegraph lines in London in 1847, based on a design by the Scottish inventor Alexander Bain. There is some dispute over whether it was the first fax: Competing inventors, including Bain in the United Kingdom and Thomas Edison and Alexander Graham Bell across the Atlantic, sought to father facsimile technology, which was a kind of white whale for inventors. Telegraphs already allowed messages to be passed across distances, one letter at a time using Morse code. But the dream of transmitting copies of messages and images instantly over wires was very much alive.

Writing in 1863, Jules Verne imagined that the Paris of the 1960s would be replete with fax machines, or as he called them, "picture-telegraphs." The technology did eventually lead to a revolution in communication, though it didn't happen until years later. It first became known to many Americans after the 1939 New York World's Fair, where a fax machine transmitted newspaper images from around the world at a rate of 18 minutes per page -- lightning speed for the time. Further reading: 'You Had to Be There': As Technologies Change Ever Faster, the Knowledge of Obsolete Things Becomes Ever Sweeter.

Here is a trivia question for you: what is the most profitable business in the world? You might think oil, or maybe banking. You would be wrong. The answer is academic publishing. Its profit margins are vast, reportedly in the region of 40 per cent. New Scientist: The reason it is so lucrative is because most of the costs of its content is picked up by taxpayers. Publicly funded researchers do the work, write it up and judge its merits. And yet the resulting intellectual property ends up in the hands of the publishers. To rub salt into the wound they then sell it via exorbitant subscriptions and paywalls, often paid for by taxpayers too.

The academic publishing business model is indefensible. Practically everybody -- even the companies that profit from it -- acknowledges that it has to change. And yet the status quo has proven extremely resilient. The latest attempt to break the mould is called Plan S, created by umbrella group cOAlition S. It demands that all publicly funded research be made freely available. When Plan S was unveiled in September, its backers expected support to snowball. But only a minority of Europe's 43 research funding bodies have signed up, and hoped-for participation from the US has failed to materialise. Meanwhile, a grass-roots campaign against it is gathering momentum. Plan S deserves a chance.

An anonymous reader writes: Forbes magazine has an in-depth piece on Joe Liemandt. As you may be aware, Liemandt was the founder of Trilogy, a startup which has been credited to help put Austin on the tech map. He is also founder of ESW Capital, a private equity firm that is scooping up software startups left and right. Forbes called him "one of the most mysterious and innovative figures in technology."

But the story explores the approach Liemandt and his team took to acquire enterprise software companies, install new leadership, lay off staff and hire significantly cheaper tech labor abroad. And the numbers are compelling -- $15 an hour C++ programmers. Those are Amazon warehouse wages -- and those $15 programming gigs don't come with much for benefits. Plus, they require you to install software to your computer that tracks surfing, keystrokes and even takes screen grabs and photos via your computer's camera -- and this is typically on a gig worker's personal computer, not an employers' machine. The story opens with this: From an office suite on the 26th floor of the iconic Frost Bank Tower in Austin, Texas, a little-known recruiting firm called Crossover is searching the globe for software engineers. Crossover is looking for anyone who can commit to a 40- or 50-hour workweek, but it has no interest in full-time employees. It wants contract workers who are willing to toil from their homes or even in local cafes. "The best people in the world aren't in your Zip code," says Andy Tryba, chief executive of Crossover, in a promotional YouTube video. Which, Tryba emphasizes, also means you don't have to pay them like they are your neighbors. "The world is going to a cloud wage."

Tryba's video has 61,717 views, but he is no random YouTube proselytizer. He worked in sales at Intel for 14 years before serving in the White House as an advisor to President Obama's Council on Jobs and Competitiveness. Since 2014, Tryba has been the right-hand man of Joe Liemandt, one of the most mysterious and innovative figures in technology. In the 1990s Liemandt was the golden boy of enterprise software, a 30 Under 30 wunderkind before there was a Forbes 30 Under 30 list. Like Bill Gates before him, he dropped out of college, in his case Stanford, to start a company, Trilogy, and build his fortune. In 1996, at the age of 27, he made the cover of Forbes, and a few months later he appeared as the youngest self-made member of The Forbes 400, with a $500 million net worth.

Nellie Bowles and Zach Wichter, reporting for The New York Times: Joining a long tradition of companies and campaigns that drop bad news on holidays, Facebook on Thanksgiving eve took responsibility for hiring a Washington-based lobbying company, Definers Public Affairs, that pushed negative stories about Facebook's critics, including the philanthropist George Soros. Facebook's communications and policy chief, Elliot Schrage, said in a memo posted Wednesday that he was responsible for hiring the group, and had done so to help protect the company's image and conduct research about high-profile individuals who spoke critically about the social media platform. Mr. Schrage will be leaving the company, a move planned before the memo was released.

Facebook fired Definers last week, after a New York Times investigation published on Nov. 14. "Did we ask them to do work on George Soros?" Mr. Schrage wrote in the memo, a draft of which had circulated online earlier in the week. "Yes." He added: "I'm sorry I let you all down. I regret my own failure here." This is a change from just a few days ago, when Facebook wrote on Nov. 15 that the Times report was full of "inaccuracies." The same day, Sheryl Sandberg, the company's chief operating officer, posted on her Facebook page that she had no idea the company had hired Definers.

Nellie Bowles and Zach Wichter, reporting for The New York Times: Joining a long tradition of companies and campaigns that drop bad news on holidays, Facebook on Thanksgiving eve took responsibility for hiring a Washington-based lobbying company, Definers Public Affairs, that pushed negative stories about Facebook's critics, including the philanthropist George Soros. Facebook's communications and policy chief, Elliot Schrage, said in a memo posted Wednesday that he was responsible for hiring the group, and had done so to help protect the company's image and conduct research about high-profile individuals who spoke critically about the social media platform. Mr. Schrage will be leaving the company, a move planned before the memo was released.

Facebook fired Definers last week, after a New York Times investigation published on Nov. 14. "Did we ask them to do work on George Soros?" Mr. Schrage wrote in the memo, a draft of which had circulated online earlier in the week. "Yes." He added: "I'm sorry I let you all down. I regret my own failure here." This is a change from just a few days ago, when Facebook wrote on Nov. 15 that the Times report was full of "inaccuracies." The same day, Sheryl Sandberg, the company's chief operating officer, posted on her Facebook page that she had no idea the company had hired Definers.

Bengaluru-based Zapr Media Labs, which counts Rupert Murdoch-led media group Star and several major local companies including Flipkart (which is now owned by Walmart), music streaming service Saavn, handset maker Micromax as its investors, has developed a tech that listens to ambient sounds around users to build targeted advertising profiles of them, reports news outlet FactorDaily. Zapr does this by using the microphone on the smartphone. Several major services in the country including Chota Bheem games to Dainik Bhaskar (a news outlet) to, likely, even Hotstar (a hugely popular streaming service which launched its service in the US and Canada last year, and which as you may recall, set a global record for most simultaneous views earlier this year) have embedded Zapr's technology into their apps. FactorDaily reports that most of these services are not forthcoming to their customers about what kind of monitoring they are doing. An excerpt from the report: One of the apps that inspired Zapr's founding team was the popular music detection and identification app Shazam. But, its three co-founders saw opportunity in going further. "Instead of detecting music, can we detect all kinds of medium? Can we detect television? Can we detect movies in a theatre? Can we detect video on demand? Can we really build a profile for a user about their media consumption habits... and that really became the idea, the vision we wanted to solve for," Sandipan Mondal, CEO of Zapr Media Labs, said in an interview last week on Thursday.

Shorn of jargon, the underlying Zapr tech listens to ambient sounds around you, analyses it, and profiles users based on their media consumption habits. "That data would be very useful in order to recommend the right kind of content and also for brands and advertisers to hopefully reduce the wastage and inefficiencies and make smarter decisions," said Mondal, who co-founded the company in 2012 along with his batchmates from Indian Institute of Management, Ahmedabad (batch of 2010) Deepak Baid and Sajo Mathews.

Zapr claims to have the largest media consumption analytics database in India and helps television channels and brands to earn a better bang for their advertising buck. To be sure, advertising -- even with the internet's promise of better targeting -- still is an inaccurate business with proxies, at best, helping measure its return on investment. But, Zapr's tech comes with privacy and data concerns -- lots of it.

Bengaluru-based Zapr Media Labs, which counts Rupert Murdoch-led media group Star and several major local companies including Flipkart (which is now owned by Walmart), music streaming service Saavn, handset maker Micromax as its investors, has developed a tech that listens to ambient sounds around users to build targeted advertising profiles of them, reports news outlet FactorDaily. Zapr does this by using the microphone on the smartphone. Several major services in the country including Chota Bheem games to Dainik Bhaskar (a news outlet) to, likely, even Hotstar (a hugely popular streaming service which launched its service in the US and Canada last year, and which as you may recall, set a global record for most simultaneous views earlier this year) have embedded Zapr's technology into their apps. FactorDaily reports that most of these services are not forthcoming to their customers about what kind of monitoring they are doing. An excerpt from the report: One of the apps that inspired Zapr's founding team was the popular music detection and identification app Shazam. But, its three co-founders saw opportunity in going further. "Instead of detecting music, can we detect all kinds of medium? Can we detect television? Can we detect movies in a theatre? Can we detect video on demand? Can we really build a profile for a user about their media consumption habits... and that really became the idea, the vision we wanted to solve for," Sandipan Mondal, CEO of Zapr Media Labs, said in an interview last week on Thursday.

Shorn of jargon, the underlying Zapr tech listens to ambient sounds around you, analyses it, and profiles users based on their media consumption habits. "That data would be very useful in order to recommend the right kind of content and also for brands and advertisers to hopefully reduce the wastage and inefficiencies and make smarter decisions," said Mondal, who co-founded the company in 2012 along with his batchmates from Indian Institute of Management, Ahmedabad (batch of 2010) Deepak Baid and Sajo Mathews.

Zapr claims to have the largest media consumption analytics database in India and helps television channels and brands to earn a better bang for their advertising buck. To be sure, advertising -- even with the internet's promise of better targeting -- still is an inaccurate business with proxies, at best, helping measure its return on investment. But, Zapr's tech comes with privacy and data concerns -- lots of it.

Bengaluru-based Zapr Media Labs, which counts Rupert Murdoch-led media group Star and several major local companies including Flipkart (which is now owned by Walmart), music streaming service Saavn, handset maker Micromax as its investors, has developed a tech that listens to ambient sounds around users to build targeted advertising profiles of them, reports news outlet FactorDaily. Zapr does this by using the microphone on the smartphone. Several major services in the country including Chota Bheem games to Dainik Bhaskar (a news outlet) to, likely, even Hotstar (a hugely popular streaming service which launched its service in the US and Canada last year, and which as you may recall, set a global record for most simultaneous views earlier this year) have embedded Zapr's technology into their apps. FactorDaily reports that most of these services are not forthcoming to their customers about what kind of monitoring they are doing. An excerpt from the report: One of the apps that inspired Zapr's founding team was the popular music detection and identification app Shazam. But, its three co-founders saw opportunity in going further. "Instead of detecting music, can we detect all kinds of medium? Can we detect television? Can we detect movies in a theatre? Can we detect video on demand? Can we really build a profile for a user about their media consumption habits... and that really became the idea, the vision we wanted to solve for," Sandipan Mondal, CEO of Zapr Media Labs, said in an interview last week on Thursday.

Shorn of jargon, the underlying Zapr tech listens to ambient sounds around you, analyses it, and profiles users based on their media consumption habits. "That data would be very useful in order to recommend the right kind of content and also for brands and advertisers to hopefully reduce the wastage and inefficiencies and make smarter decisions," said Mondal, who co-founded the company in 2012 along with his batchmates from Indian Institute of Management, Ahmedabad (batch of 2010) Deepak Baid and Sajo Mathews.

Zapr claims to have the largest media consumption analytics database in India and helps television channels and brands to earn a better bang for their advertising buck. To be sure, advertising -- even with the internet's promise of better targeting -- still is an inaccurate business with proxies, at best, helping measure its return on investment. But, Zapr's tech comes with privacy and data concerns -- lots of it.

The games publisher Square Enix is pulling three mobile games from Belgium following the introduction of a law in the European nation that bans "loot boxes" as a form of gambling. From a report: The games -- "Mobius Final Fantasy", "Kingdom Hearts Union X" and "Dissidia Final Fantasy Opera Omnia" -- are some of largest titles in the publisher's mobile roster, although it is better known for its console games such as "Tomb Raider", "Final Fantasy" and "Hitman." In statements posted in the games, Square Enix confirmed that the new law was to blame for their removal, citing "the present uncertain legal status of 'loot boxes' under Belgian law". Belgium first took action against "loot boxes", digital reward packs which can be bought with real or virtual money and contain a semi-random array of in-game items, back in April. The country's gaming commission ruled that the mechanics, as implemented in three popular games -- "Overwatch", "Fifa 18" and "Counter-Strike: Global Offensive" -- were in violation of gambling legislation.

Epic Games' Fortnite has reached 8.3 million concurrent players worldwide (or about 0.1 percent of the human population) after finally making its debut in South Korea earlier this month. From a report: Because Internet cafes still play a large role in Asian countries, VG247 reports that players were encouraged to play Fortnite at PC bang cafes to complete special challenges, which were created in order to launch the Battle Royale mode in South Korea. After Fortnite's Battle Royale mode launched in South Korea this week, Epic Games Korea CEO Sung Chul Park stated in an interview that the game now has 8.3 million concurrent players worldwide. A spokesperson from Epic confirmed the numbers to VG247 as well.

An anonymous reader writes: Hello all. I am looking to buy a good mechanical keyboard for my everyday usage — programming and writing. I see some good offers on certain keyboards -- thanks to Black Friday deals. Just this week, Razer launched what looks like a good mechanical keyboard for people who are looking for a budget gear. One of the issues I have come across looking for a good keyboard is how most of them are designed for Windows OS by default. (I know you can customize keys, but.)

Slashdot has run keyboard discussion posts in the past -- the best laptop with best keyboard, greatest keyboard ever made, and quest to find a good keyboard , but I don't see any recent story on this. I was curious to know what kind of keyboard you use and why did you choose the one you have?

An anonymous reader writes: Hello all. I am looking to buy a good mechanical keyboard for my everyday usage — programming and writing. I see some good offers on certain keyboards -- thanks to Black Friday deals. Just this week, Razer launched what looks like a good mechanical keyboard for people who are looking for a budget gear. One of the issues I have come across looking for a good keyboard is how most of them are designed for Windows OS by default. (I know you can customize keys, but.)

Slashdot has run keyboard discussion posts in the past -- the best laptop with best keyboard, greatest keyboard ever made, and quest to find a good keyboard , but I don't see any recent story on this. I was curious to know what kind of keyboard you use and why did you choose the one you have?

An anonymous reader writes: Hello all. I am looking to buy a good mechanical keyboard for my everyday usage — programming and writing. I see some good offers on certain keyboards -- thanks to Black Friday deals. Just this week, Razer launched what looks like a good mechanical keyboard for people who are looking for a budget gear. One of the issues I have come across looking for a good keyboard is how most of them are designed for Windows OS by default. (I know you can customize keys, but.)

Slashdot has run keyboard discussion posts in the past -- the best laptop with best keyboard, greatest keyboard ever made, and quest to find a good keyboard , but I don't see any recent story on this. I was curious to know what kind of keyboard you use and why did you choose the one you have?

Google is not complying with European demands that it must make the search for products fairer, rivals say. In an open letter to the EU's Competition Commissioner on Thursday, they wrote: We are writing to you as leading European comparison shopping services (CSSs) to express our collective view that Google's "compliance mechanism" in the Google Search (Comparison Shopping) case does not comply with the European Commission's June 2017 Prohibition Decision. It has now been more than a year since Google introduced its auction-based "remedy", and the harm to competition, consumers and innovation caused by Google's illegal conduct has continued unabated. We therefore respectfully urge you to commence non-compliance proceedings against Google. BBC offers some background: In June 2017, European competition commissioner Margrethe Vestager ruled that Google had abused its power by promoting its own shopping service at the top of search results, and demanded that it provide equal treatment to rival comparison sites in future. She issued a record fine of $2.7bn -- the largest penalty the European Commission has ever imposed. She also demanded that Google end its anti-competitive practices within 90 days or face further costs. Google is still appealing against the fine, but has come up with a system that it says makes shopping fairer. It changed the shopping box, which is displayed at the top of search results, so that it is no longer populated with just Google Shopping ad results, but gives space to other shopping comparison services, who can bid for advertising slots.

Google Duplex-powered calls have finally arrived. Sort of. For some people. From a report: A spokesperson confirmed to VentureBeat that Duplex -- Google's artificially intelligent chat agent that can arrange appointments over the phone -- has expanded from a "set of trusted tester users" earlier this year to a "small group" of Google Pixel phone owners, who can now use Duplex via the Google Assistant to secure restaurant reservations in "select cities." Presumably, "select cities" refers to the previously announced pilot metros of New York, Atlanta, Phoenix, and San Francisco. If you're not in the "trusted tester" group, you'll likely get an error along the lines of "Sorry, I can't call to make reservations for you yet, but here's their phone number: [10 digits]."

Last year, a study from the BrainGate consortium reported that a brain-computer interface (BCI) enabled a paralyzed man to type up to eight words per minute via thoughts alone. Now, according to new results from a BrainGate2 clinical trial, the same BCI was used to help three participants operate an off-the-shelf tablet. IEEE Spectrum reports: All three participants suffer from weakness or loss of movement in their arms due to amyotrophic lateral sclerosis (ALS, also called Lou Gehrig's disease) or spinal cord injury. Each received the brain implant, an array of microelectrodes, as part of the BrainGate2 clinical trial. For this particular study, decoded neural signals from the implant were routed through an industry-standard Human Interface Device protocol, providing a virtual mouse. That "mouse" was paired to a Google Nexus 9 tablet via Bluetooth.

Each participant was asked to try out seven common apps on the tablet: email, chat, web browser, video sharing, music streaming, a weather program and a news aggregator. The researchers also asked the users if they wanted any additional apps, and subsequently added the keyboard app, grocery shopping on Amazon, and a calculator. The participants made up to 22 point-and-click selections per minute and typed up to 30 characters per minute in email and text programs. What's more, all three participants really enjoyed using the tablet.

An anonymous reader quotes a report from The Hill: At least two Amazon employees reportedly purchased condos in a New York City neighborhood before news emerged that the area had been picked to host the company's second headquarters. The employees decided to buy units in a new 11-story condo building in the Long Island City neighborhood of Queens just before the first reports of Amazon's HQ2 location were released this month, The Wall Street Journal reported Tuesday. While employees of companies are barred from buying or selling stocks based on information that has not yet been made public, lawyers told the Journal that they were unaware of any such ban affecting real estate transactions. There are no exact numbers on how many units have gone into contract in the Long Island City area since the announcement, but the Journal reports that one brokerage firm sold nearly 150 units just last week, 15 times its normal volume. Earlier this month, Amazon announced plans to split its second headquarters evenly between New York's Long Island City and Arlington County's Crystal City neighborhoods.

On Twitter, SpaceX CEO Elon Musk said that the transportation portion of the company's Big Falcon Spaceship (BFS), will now be called Starship, while the booster portion will be called Super Heavy. The Verge reports: Plans for the 387-foot Big Falcon Rocket were officially revealed back in September. Eventually, the company hopes that it will replace the company's existing Falcon 9, Falcon Heavy, and Dragon rockets. The craft is currently being developed at the Port of Los Angeles, at an expected cost of $5 billion and will be capable of taking up to 100 tons of cargo or 100 passengers as far as Mars.

SpaceX president Gwynne Shotwell said the company hopes to start doing uncrewed launch tests of the new rocket in late 2019. If all goes well, Musk believes that this could be followed by an initial uncrewed flight to Mars in 2022 with a crewed flight taking place as early as 2024. A mission to fly around the moon with a private passenger on board is planned for 2023. However, given that the Falcon Heavy took nearly twice as long to complete as expected, and that only five percent of SpaceX's resources are currently spent on the Starship, it's best to view these plans as an aspiration.

The recent interview Elon Musk conducted with Joe Rogan, where Musk took one puff from a marijuana cigarette after a lengthy conversation around AI, social media and space, is prompting a NASA safety probe at SpaceX. The Washington Post reports that NASA was not amused with Musk's antics and has "ordered a safety review of SpaceX and Boeing as a response to the colorful chief executive's shenanigans," reports TechCrunch. From the report: In an interview, NASA associate administrator for human exploration, William Gerstenmaier, told the Post that the review will begin next year and would examine the "safety culture" of both Boeing and SpaceX. Rather than focus on the safety of the actual rockets, the Post said that the review would look at the hours employees work, drug policies, leadership and management styles, and the responsiveness of both companies to safety concerns from employees. The review is going to be led by the Office of Safety and Mission Assurance within NASA, which has conducted similar probes before, according to the Post report.

According to the NASA official, the process could be "pretty invasive," with the potential for hundreds of interviews with employees at every level and across all locations where the companies operate. At stake is the potential $6.8 billion in contracts the two companies received in 2014 to revive crewed missions to space. SpaceX grabbed $2.6 billion from NASA for the program, while the remainder went to Boeing. In a statement given to the Post, SpaceX said, "We couldn't be more proud of all that we have already accomplished together with NASA, and we look forward to returning human spaceflight capabilities to the United States."

An anonymous reader quotes a report from ABC News: Amid reports that first daughter and White House senior advisor Ivanka Trump exchanged hundreds of official government business emails using a personal email account, top Democrats on Capitol Hill "want to know if Ivanka complied with the law" and in the next Congress plan to continue their investigation of the Presidential Records Act and Federal Records Act. Rep. Elijah Cummings, the ranking Democrat who's in line to become the next chairman of the House Oversight and Government Reform Committee next year, promises any potential investigation into Jared Kushner and Ivanka Trump's emails won't be like the "spectacle" Republicans led in the Clinton email probe.

The Oversight committee has jurisdiction over records and transparency laws, and Cummings helped write an update to the Presidential and Federal Records Acts that was signed into law by President Barack Obama in 2014. That measure mandates that every federal employee, including the President, forward any message about official business sent using a private account to the employee's official email account within 20 days. "We launched a bipartisan investigation last year into White House officials' use of private email accounts for official business, but the White House never gave us the information we requested," Cummings, D-Md., noted. "We need those documents to ensure that Ivanka Trump, Jared Kushner, and other officials are complying with federal records laws and there is a complete record of the activities of this Administration. My goal is to prevent this from happening again -- not to turn this into a spectacle the way Republicans went after Hillary Clinton. My main priority as Chairman will be to focus on the issues that impact Americans in their everyday lives."

As you travel this holiday season, bouncing from airport to airplane to hotel, you'll likely find yourself facing a familiar quandary: Do I really trust this random public Wi-Fi network? As recently as a couple of years ago, the answer was almost certainly a resounding no. But in the year of our lord 2018? Friend, go for it. Wired: This advice comes with plenty of qualifiers. If you're planning to commit crimes online at the Holiday Inn Express, or to visit websites that you'd rather people not know you frequented, you need to take precautionary steps that we'll get to in a minute. Likewise, if you're a high-value target of a sophisticated nation state, stay off of public Wi-Fi at all costs. But for the rest of us? You're probably OK. That's not because hotel and airport Wi-Fi networks have necessarily gotten that much more secure. The web itself has.

"A lot of the former risks, the reasons we used to warn people, those things are gone now," says Chet Wisniewski, principle researcher at security firm Sophos. "It used to be because almost nothing on the internet was encrypted. You could sit there and sniff everything. Or someone could set up a rogue access point and pretend to be Hilton, and then you would connect to them instead of the hotel." In those Wild West days, in other words, signing onto a shared Wi-Fi network exposed you to myriad attacks, from hackers tracking your every move online, to so-called man-in-the-middle efforts that tricked you into entering your passwords, credit card information, or more on phony websites. A cheap, easy to use device called a Wi-Fi Pineapple makes those attacks simple to pull off. All of that's still technically possible. But a critical internet evolution has made those efforts much less effective: the advent of HTTPS.

You and 800 million other people now can use hardware authentication keys -- and no password at all -- to log on to Microsoft accounts used for Outlook, Office 365, OneDrive, Skype and Xbox Live. From a report: Microsoft is using a technology called FIDO2, which employs hardware keys for the no-password logon, the company said Tuesday. New versions of Microsoft's Windows 10 operating system and Edge web browser support the technology. The hardware authentication keys plug into laptop USB ports or, for phones, use Bluetooth or NFC wireless communications to help prove who you are. Initially, they worked in combination with a password for dual-factor authentication, but FIDO2 and a related browser technology called WebAuthn expands beyond that to let the company ditch the password altogether.

Microsoft's no-password logon offers three options: the hardware key combined with Windows Hello face recognition technology or fingerprint ID; the hardware key combined with a PIN code; or a phone running the Microsoft Authenticator app. It works with Outlook.com, Office 365, Skype, OneDrive, Cortana, Microsoft Edge, Xbox Live on the PC, Mixer, the Microsoft Store, Bing and the MSN portal site.

Valve is quietly discontinuing Steam Link, the in-home streaming box it first launched in late 2015. From a report: A low-key announcement on Valve's Steam Link news page suggests that production of new units has ceased and that Valve is currently selling off the rest of its "almost sold out" inventory in the US, after selling out completely in Europe. Valve says it will continue to offer support for existing Steam Link hardware.

The $50 Steam Link was designed for streaming games from a local gaming PC to an HDTV in the same house, a job it did pretty well provided your networking hardware was up to it. In recent months, though, Valve has shifted its focus away from dedicated streaming hardware and toward mobile apps that can provide the same feature.

Lockheed Martin's X-59 Quiet Supersonic Technology aircraft is officially in "the manufacturing phase," bringing the company "one step closer to enabling supersonic travel for passengers around the world." The experimental jet was awarded a contract from NASA earlier this year as it is capable of flying at supersonic speeds without creating loud supersonic booms. Currently, commercial supersonic aircraft are banned from flying over land because of the noise and potential damage the booms may cause. WTOP reports: "The long, slender design of the aircraft is the key to achieving a low sonic boom," said Peter Iosifidis, Low Boom Flight Demonstrator program manager at Lockheed Martin. "As we enter into the manufacturing phase, the aircraft structure begins to take shape, bringing us one step closer to enabling supersonic travel for passengers around the world," he said.

Lockheed expects to conduct its first flight in 2021 and gather community response data on the acceptability of the "quiet sonic boom" the plane creates. NASA will use that information to establish an acceptable commercial supersonic noise standard to overturn current regulations banning supersonic travel over land. The X-59 will cruise at a speed of about 940 mph and an altitude of 55,000 feet. Lockheed says it will create a sound about as loud as a car door closing, instead of a deafening sonic boom.