Slashdot Mirror

In the beginning of the year, Strava released a data visualization map that showed all the activity tracked by users of its app. The map was detailed enough to potentially give away extremely sensitive information about military personnel on active service in locations across the world. After reviewing their GPS policies, the Pentagon is banning soldiers and other personnel at sensitive bases and warzone areas from using location features on fitness trackers and other devices. Engadget reports: The Department of Defense is not issuing an outright ban on GPS devices and apps, but declared that the location features must be turned off in certain areas. "These geolocation capabilities can expose personal information, locations, routines, and numbers of DOD personnel, and potentially create unintended security consequences and increased risk to the joint force and mission," a memo obtained by the Associated Press said. It's up to ranking officers in less-sensitive areas to decide whether their charges can use GPS functions, based on the threat level in that location. The Defense Department will also provide training on the risks that fitness trackers bring.

In the beginning of the year, Strava released a data visualization map that showed all the activity tracked by users of its app. The map was detailed enough to potentially give away extremely sensitive information about military personnel on active service in locations across the world. After reviewing their GPS policies, the Pentagon is banning soldiers and other personnel at sensitive bases and warzone areas from using location features on fitness trackers and other devices. Engadget reports: The Department of Defense is not issuing an outright ban on GPS devices and apps, but declared that the location features must be turned off in certain areas. "These geolocation capabilities can expose personal information, locations, routines, and numbers of DOD personnel, and potentially create unintended security consequences and increased risk to the joint force and mission," a memo obtained by the Associated Press said. It's up to ranking officers in less-sensitive areas to decide whether their charges can use GPS functions, based on the threat level in that location. The Defense Department will also provide training on the risks that fitness trackers bring.

Last month, the BBC headed to court to track down the person who leaked an incomplete scene featuring Jodie Whittaker's Thirteenth Doctor. New court documents suggest that the British broadcaster has yet to find the perpetrator, and is hoping Microsoft can help. At a federal court in Washington, the BBC requested a DMCA subpoena targeted at a OneDriver user who shared the infringing material online late June. TorrentFreak reports: In an effort to track down the source of the leak the BBC has taken the matter to the U.S. courts. Last month it obtained a DMCA subpoena from a California federal court, ordering the forum tool Tapatalk to identify the source of an infringing post. Whether this resulted in any useful information is unknown, but a few days ago it became clear that BBC is still investigating the matter. In a separate effort, BBC Studios have filed a request for a DMCA subpoena at a Federal court in Washington. This time it's directed at Microsoft. According to the BBC, a user of Microsoft's OneDrive stored and shared a copy of the leaked file, titled "IMG_ l563.TRIM.MOV."

"The infringing material includes, without limitation, an unauthorized copy of copyrighted video content from Season 11, Episode 1 of Doctor Who, for which BBC Worldwide Limited t/a BBC Studios (Distribution) is the exclusive licensee," the BBC writes. According to the BBC, the footage in question was stolen from the studio. Through the subpoena, the company hopes to find out more about the source of this leak, to prevent similar situations going forward. It asks Microsoft to hand over any relevant information that can help to identify the account holder who uploaded the video, which was added to OneDrive back in June. This includes "any name, account name, address, telephone number, email address, birth date, profile photo, device information, browser information, location information, information from others (e.g., Facebook or Google+) and time posted."

An anonymous reader quotes a report from Motherboard: What we do in the next 10-20 years will determine whether our planet remains hospitable to human life or slides down an irreversible path to what scientists in a major new study call "Hothouse Earth" conditions. Hothouse Earth is an apocalyptic nightmare where the global average temperatures is 4 to 5 degrees Celsius higher (with regions like the Arctic averaging 10 degrees C higher) than today, according to the study, "Trajectories of the Earth System in the Anthropocene," published Monday in the Proceedings of the National Academy of Sciences. Sea levels would eventually be 10-60 meters higher as much of the world's ice melts. In these conditions, large parts of the Earth would be uninhabitable. Cutting carbon emissions to limit climate change to 2 degrees C, as proposed in the Paris climate agreement, won't be enough to avoid a "Hothouse Earth," said co-author Johan Rockstrom, executive director of Stockholm Resilience Centre. The reality is that global temperatures aren't driven by human emissions of carbon alone, says Rockstrom -- natural systems such as forests and oceans also play a major role. If global warming reaches 2 degrees C it could trigger a feedback, or "tipping element," in one or more of our natural systems and drive further warming, Rockstrom told Motherboard. To put that into perspective, the recent heat waves and wildfires are being linked to climate change that has raised the global average temperature 1 degree C. The researchers conclude the study on a more uplifting note, saying: "We have the knowledge and ability to act. This is within our control." There are three main areas of action that need to be taken within the next two decades. "The top priority in the coming decade is to aggressively cut carbon emissions and decarbonize our energy systems as quickly as possible," reports Motherboard. "The second priority is to halt deforestation and conversion of nature areas into agricultural production. Forests and other natural areas currently absorb 25 percent of our carbon emissions and this needs to grow." The third action is "to continue to develop technologies to pull carbon from the atmosphere and safely store it for thousands of years." While this last action can be costly, we're starting to see some companies give it a try. A startup called Climeworks recently inaugurated the first system that captures CO2 from the air and converts the emissions into stone, thus ensuring they don't escape back into the atmosphere for the next millions of years.

An anonymous reader quotes a report from Motherboard: What we do in the next 10-20 years will determine whether our planet remains hospitable to human life or slides down an irreversible path to what scientists in a major new study call "Hothouse Earth" conditions. Hothouse Earth is an apocalyptic nightmare where the global average temperatures is 4 to 5 degrees Celsius higher (with regions like the Arctic averaging 10 degrees C higher) than today, according to the study, "Trajectories of the Earth System in the Anthropocene," published Monday in the Proceedings of the National Academy of Sciences. Sea levels would eventually be 10-60 meters higher as much of the world's ice melts. In these conditions, large parts of the Earth would be uninhabitable. Cutting carbon emissions to limit climate change to 2 degrees C, as proposed in the Paris climate agreement, won't be enough to avoid a "Hothouse Earth," said co-author Johan Rockstrom, executive director of Stockholm Resilience Centre. The reality is that global temperatures aren't driven by human emissions of carbon alone, says Rockstrom -- natural systems such as forests and oceans also play a major role. If global warming reaches 2 degrees C it could trigger a feedback, or "tipping element," in one or more of our natural systems and drive further warming, Rockstrom told Motherboard. To put that into perspective, the recent heat waves and wildfires are being linked to climate change that has raised the global average temperature 1 degree C. The researchers conclude the study on a more uplifting note, saying: "We have the knowledge and ability to act. This is within our control." There are three main areas of action that need to be taken within the next two decades. "The top priority in the coming decade is to aggressively cut carbon emissions and decarbonize our energy systems as quickly as possible," reports Motherboard. "The second priority is to halt deforestation and conversion of nature areas into agricultural production. Forests and other natural areas currently absorb 25 percent of our carbon emissions and this needs to grow." The third action is "to continue to develop technologies to pull carbon from the atmosphere and safely store it for thousands of years." While this last action can be costly, we're starting to see some companies give it a try. A startup called Climeworks recently inaugurated the first system that captures CO2 from the air and converts the emissions into stone, thus ensuring they don't escape back into the atmosphere for the next millions of years.

nolaguy shares a report from NPR: Movie theater subscription service MoviePass will not be raising prices, as it had announced last week, but will instead be capping the number of times that subscribers can visit movie theaters. For $9.95 per month, MoviePass subscribers used to be able to see a movie in theaters every day, if they so chose. Beginning on August 15, the service will instead provide three movies per month. The change replaces a previously announced plan to raise prices to $14.95 a month. The beleaguered movie theater subscription company is also canceling two other recent changes -- "peak pricing" surcharges for popular movies and a ticket verification process -- that were intended to stop the company from bleeding money.

nolaguy shares a report from NPR: Movie theater subscription service MoviePass will not be raising prices, as it had announced last week, but will instead be capping the number of times that subscribers can visit movie theaters. For $9.95 per month, MoviePass subscribers used to be able to see a movie in theaters every day, if they so chose. Beginning on August 15, the service will instead provide three movies per month. The change replaces a previously announced plan to raise prices to $14.95 a month. The beleaguered movie theater subscription company is also canceling two other recent changes -- "peak pricing" surcharges for popular movies and a ticket verification process -- that were intended to stop the company from bleeding money.

A few weeks ago, Microsoft launched Skype version 8.0 to replace Skype classic, or version 7. The company initially said that Skype classic would stop working on September 1st, but today, it extended the deadline and said it would continue to support the older application for the time being. Neowin reports: Spotted by Brad Sams of Thurrott.com, the information was posted as an update to a support forum that originally said when Skype v7 would be killed off. The update says the following: "Based on customer feedback, we are extending support for Skype 7 (Skype classic) for some time. Our customers can continue to use Skype classic until then. Thanks for all your comments - we are listening. We are working to bring all the features you've asked for into Skype 8. Watch this space." Microsoft didn't provide a new end of life date for Skype v7, but there's no doubt that it's still coming. Eventually, you'll have to move to Skype v8, or the UWP app if you're on Windows 10.

An anonymous reader quotes a report from TechCrunch: The FCC has come clean on the fact that a purported hack of its comment system last year never actually took place, after a report from its inspector general found a lack of evidence supporting the idea. Chairman Ajit Pai blamed the former chief information officer and the Obama administration for providing "inaccurate information about this incident to me, my office, Congress, and the American people." It was so galling to everyone looking for answers that the GAO was officially asked to look into it. The letter requesting the office's help at the time complained that the FCC had "not released any records or documentation that would allow for confirmation that an attack occurred, that it was effectively dealt with, and that the FCC has begun to institute measures to thwart future attacks and ensure the security of its systems." That investigation is still going on, but one conducted by the FCC's own OIG resulted in the report Pai cites.

Pai's statement was issued before the OIG publicized its report, as one does when a report is imminent that essentially says your agency has been clueless at best or deliberately untruthful at worst, and for more than a year. To be clear, the report is still unpublished, though its broader conclusions are clear from Pai's statement. In it he slathers Bray with the partisan brush and asserts that the report exonerates his office: "I am deeply disappointed that the FCC's former [CIO], who was hired by the prior Administration and is no longer with the Commission, provided inaccurate information about this incident to me, my office, Congress, and the American people. This is completely unacceptable. I'm also disappointed that some working under the former CIO apparently either disagreed with the information that he was presenting or had questions about it, yet didn't feel comfortable communicating their concerns to me or my office. On the other hand, I'm pleased that this report debunks the conspiracy theory that my office or I had any knowledge that the information provided by the former CIO was inaccurate and was allowing that inaccurate information to be disseminated for political purposes." UPDATE: The complete Office of Inspector General report has been released, refuting claims that a cyberattack was responsible for disrupting the FCC's comment system last year.

It sounds like a joke, but the idea actually makes sense: More bugs, not less, could theoretically make a system safer. From a report: Carefully scatter non-exploitable decoy bugs in software, and attackers will waste time and resources on trying to exploit them. The hope is that attackers will get bored, overwhelmed, or run out of time and patience before finding an actual vulnerability. Computer science researchers at NYU suggested this strategy in a study published August 2, and call these fake-vulnerabilities "chaff bugs." Brendan Dolan-Gavitt, assistant professor at NYU Tandon and one of the researcher on this study, told me in an email that they've been working on techniques to automatically put bugs into programs for the past few years as a way to test and evaluate different bug-finding systems. Once they had a way to fill a program with bugs, they started to wonder what else they could do with it. "I also have a lot of friends who write exploits for a living, so I know how much work there is in between finding a bug and coming up with a reliable exploit -- and it occurred to me that this was something we might be able to take advantage of," he said. "People who can write exploits are rare, and their time is expensive, so if you can figure out how to waste it you can potentially have a great deterrent effect." Brendan has previously suggested that adding bugs to experimental software code could help with ultimately winding up with programs that have fewer vulnerabilities.

An anonymous reader shares a report: Lenovo is making it easier for their customers running Linux to update their firmware now on ThinkPad, ThinkStation, and ThinkCenter hardware. Lenovo has joined the Linux Vendor Firmware Service (LVFS) and following collaboration with the upstream developers is beginning to roll-out support for offering their device firmware on this platform so it can be easily updated by users with the fwupd stack. Kudos to all involved especially with Lenovo ThinkPads being very popular among Linux users.

Military troops and other defense personnel at sensitive bases or certain high-risk warzone areas won't be allowed to use fitness tracker or cellphone applications that can reveal their location, according to a new Pentagon order. From a report: The memo, obtained by The Associated Press, stops short of banning the fitness trackers or other electronic devices, which are often linked to cellphone applications or smart watches and can provide the users' GPS and exercise details to social media. It says the applications on personal or government-issued devices present a "significant risk" to military personnel so those capabilities must be turned off in certain operational areas. Under the new order, military leaders will be able to determine whether troops under their command can use the GPS function on their devices, based on the security threat in that area or on that base. "These geolocation capabilities can expose personal information, locations, routines, and numbers of DOD personnel, and potentially create unintended security consequences and increased risk to the joint force and mission," the memo said. Zack Whittaker, a security reporter at TechCrunch, said, DoD's statement today appears to be a response to the revelation that fitness tracker app Polar was exposing locations of spies and military personnel.

Thunderbird version 60, featuring a number of new features and changes, is now available as a direct download from thunderbird.net, the email client vendor said. The changelog: When writing a message, a delete button now allows the removal of a recipient. This delete button is displayed when hovering the To/Cc/Bcc selector.
Many improvements to attachments handling during compose: Attachments can now be reordered using a dialog, keyboard shortcuts, or drag and drop. The "Attach" button moved to the right to be above the attachment pane. The access key of the attachment pane (e.g. Alt+M, may vary depending on localization, Ctrl+M on Mac) now also works to show or hide the pane. The attachment pane can also be shown initially when composing a new message. Right-click on the header to enable this option. Hiding a non-empty attachment pane will now show a placeholder paperclip to indicate the presence of attachments and avoid sending them accidentally.
"Edit Template" command. This also solves various problems when saving as template (duplicates created, message ID lost).
"New Message from Template" command.
Allow changing the Spellcheck Language from status bar.
Light and Dark themes.
WebExtension themes are now enabled in Thunderbird.
A default startup directory in the address book window can now be configured.
Individual feed update interval. Read the full-change log here.

Critics scoffed Apple when the company priced the iPhone X at $1,000. But the way the market has responded to it, there is a good chance that the upcoming flagship smartphones from Apple and those of its rivals -- Samsung, Google, and HTC -- will be pricier. From a column: The critics were wrong. Apple CEO Tim Cook said in July that the iPhone X had outsold every other Apple device in each week since it went on sale Nov. 3, 2017. With strong iPhone X sales, Apple proved that mainstream buyers are willing to pay almost as much, if not more, for their cell phones as they would for a powerful laptop. And with rumors of an even pricier 2018 iPhone X Plus-style phone coming down the pike this September, Apple's moves to usher in the era of the $1,000 phone may just be getting underway. Apple isn't alone in boosting mobile phone prices ever higher. Creeping prices on high-end handsets from Samsung, Huawei and even "value" darling OnePlus signal that price hikes are here to stay. In just two years, the cost of Samsung's Galaxy phone for US buyers has spiked 15.1 percent from the Galaxy S7 in 2016 to this year's Galaxy S9, while the Huawei P series has climbed 33 percent since 2016 -- and that doesn't even account for the existence of a "Pro" model. [...] The trend of increasingly costly handsets in the top tier underscores the cell phone's importance as an everything-device for communication, work, photography and entertainment. And as processing power, camera technology, battery life and internet data speeds improve generation after generation, the value people attach to a phone is sure to swell.

Critics scoffed Apple when the company priced the iPhone X at $1,000. But the way the market has responded to it, there is a good chance that the upcoming flagship smartphones from Apple and those of its rivals -- Samsung, Google, and HTC -- will be pricier. From a column: The critics were wrong. Apple CEO Tim Cook said in July that the iPhone X had outsold every other Apple device in each week since it went on sale Nov. 3, 2017. With strong iPhone X sales, Apple proved that mainstream buyers are willing to pay almost as much, if not more, for their cell phones as they would for a powerful laptop. And with rumors of an even pricier 2018 iPhone X Plus-style phone coming down the pike this September, Apple's moves to usher in the era of the $1,000 phone may just be getting underway. Apple isn't alone in boosting mobile phone prices ever higher. Creeping prices on high-end handsets from Samsung, Huawei and even "value" darling OnePlus signal that price hikes are here to stay. In just two years, the cost of Samsung's Galaxy phone for US buyers has spiked 15.1 percent from the Galaxy S7 in 2016 to this year's Galaxy S9, while the Huawei P series has climbed 33 percent since 2016 -- and that doesn't even account for the existence of a "Pro" model. [...] The trend of increasingly costly handsets in the top tier underscores the cell phone's importance as an everything-device for communication, work, photography and entertainment. And as processing power, camera technology, battery life and internet data speeds improve generation after generation, the value people attach to a phone is sure to swell.

Facebook wants your financial data. The social media giant has asked large U.S. banks to share detailed financial information about their customers, including card transactions and checking account balances, as part of an effort to offer new services to users, The Wall Street Journal reported Monday. From the report: Facebook increasingly wants to be a platform where people buy and sell goods and services, besides connecting with friends. The company over the past year asked JPMorgan Chase, Wells Fargo & Co., Citigroup and U.S. Bancorp USB to discuss potential offerings it could host for bank customers on Facebook Messenger, said people familiar with the matter. Facebook has talked about a feature that would show its users their checking-account balances, the people said. It has also pitched fraud alerts, some of the people said. Data privacy is a sticking point in the banks' conversations with Facebook, according to people familiar with the matter. The talks are taking place as Facebook faces several investigations over its ties to political analytics firm Cambridge Analytica, which accessed data on as many 87 million Facebook users without their consent. Update: Shares of Facebook surged nearly 3% following the report. A paywall free, alternative source of this story.
Update 2 (18:10 GMT): Talking to TechCrunch, Facebook has, in part, denied WSJ's report. TechCrunch: Facebook spokesperson Elisabeth Diana tells TechCrunch it's not asking for credit card transaction data from banks and it's not interested in building a dedicated banking feature where you could interact with your accounts. It also says its work with banks isn't to gather data to power ad targeting, or even personalize content such as what Marketplace products you see based on what you buy elsewhere.

Facebook wants your financial data. The social media giant has asked large U.S. banks to share detailed financial information about their customers, including card transactions and checking account balances, as part of an effort to offer new services to users, The Wall Street Journal reported Monday. From the report: Facebook increasingly wants to be a platform where people buy and sell goods and services, besides connecting with friends. The company over the past year asked JPMorgan Chase, Wells Fargo & Co., Citigroup and U.S. Bancorp USB to discuss potential offerings it could host for bank customers on Facebook Messenger, said people familiar with the matter. Facebook has talked about a feature that would show its users their checking-account balances, the people said. It has also pitched fraud alerts, some of the people said. Data privacy is a sticking point in the banks' conversations with Facebook, according to people familiar with the matter. The talks are taking place as Facebook faces several investigations over its ties to political analytics firm Cambridge Analytica, which accessed data on as many 87 million Facebook users without their consent. Update: Shares of Facebook surged nearly 3% following the report. A paywall free, alternative source of this story.
Update 2 (18:10 GMT): Talking to TechCrunch, Facebook has, in part, denied WSJ's report. TechCrunch: Facebook spokesperson Elisabeth Diana tells TechCrunch it's not asking for credit card transaction data from banks and it's not interested in building a dedicated banking feature where you could interact with your accounts. It also says its work with banks isn't to gather data to power ad targeting, or even personalize content such as what Marketplace products you see based on what you buy elsewhere.

Apple has long struggled to gain market share in India, the world's second largest smartphone market. But now, it apparently plans to change that. Before we get into it, here is some disclaimer: Rumors of Apple's intentions to improve its presence in India are nearly as old as Apple's existence. From Bloomberg: Instead of officially lowering its prices, Apple is in talks with retailers and banks to offer holiday deals all year round, according to people familiar with the plans. Those people say Apple is also asking some individual stores to more than quadruple sales targets, to 40 or 50 iPhones a week, and plans to cut off retailers that consistently fail to hit the mark. Retail sales staff will be trained to teach customers how to use their devices, and Apple intends to overhaul in-store branding and product displays. Executives would conduct daily conference calls with stores to gauge progress.

Apple hopes to start opening stores in India next year and eventually set up three in New Delhi, Bengaluru (formerly known as Bangalore), and Mumbai, according to the people familiar with the company's plans. The government has long required foreign companies opening shops to manufacture 30 percent of their products locally, but it said in January that businesses can reduce that requirement by sourcing more Indian goods for their global operations. Apple now builds some of its India-aimed iPhone SE and 6s models in Bengaluru; it's unclear whether the company plans to take advantage of the revised policy or try to hit the 30 percent mark. The report adds that Apple has India in its mind as it revamps many of its services.

With their next patch Mozilla will introduce two new features to their Firefox browser they call "DNS over HTTPs" (DoH) and Trusted Recursive Resolver (TRR). Mozilla says this is an additional feature which enables security. Researchers think otherwise. From a report: So let's get to the new Firefox feature called "Trusted Recursive Resolver" (TRR). When Mozilla turns this on by default, the DNS changes you configured in your network won't have any effect anymore. At least for browsing with Firefox, because Mozilla has partnered up with Cloudflare, and will resolve the domain names from the application itself via a DNS server from Cloudflare based in the United States. Cloudflare will then be able to read everyone's DNS requests.

From our point of view, us being security geeks, advertising this feature with slogans like "increases security" is rather misleading because in many cases the opposite is the case. While it is true that with TRR you may not expose the websites you call to a random DNS server in an untrustworthy network you don't know, it is not true that this increases security in general. It is true when you are somewhere in a network you don't know, i. e. a public WiFi network, you could automatically use the DNS server configured by the network. This could cause a security issue, because that unknown DNS server might have been compromised. In the worst case it could lead you to a phishing site pretending to be the website of your bank: as soon as you enter your personal banking information, it will be sent straight to the attackers.

But on the other hand Mozilla withholds that using their Trusted Recursive Resolver would cause a security issue in the first place for users who are indeed in a trustworthy network where they know their resolvers, or use the ISP's default one. Because sharing data or information with any third party, which is Cloudflare in this case, is a security issue itself.

With their next patch Mozilla will introduce two new features to their Firefox browser they call "DNS over HTTPs" (DoH) and Trusted Recursive Resolver (TRR). Mozilla says this is an additional feature which enables security. Researchers think otherwise. From a report: So let's get to the new Firefox feature called "Trusted Recursive Resolver" (TRR). When Mozilla turns this on by default, the DNS changes you configured in your network won't have any effect anymore. At least for browsing with Firefox, because Mozilla has partnered up with Cloudflare, and will resolve the domain names from the application itself via a DNS server from Cloudflare based in the United States. Cloudflare will then be able to read everyone's DNS requests.

From our point of view, us being security geeks, advertising this feature with slogans like "increases security" is rather misleading because in many cases the opposite is the case. While it is true that with TRR you may not expose the websites you call to a random DNS server in an untrustworthy network you don't know, it is not true that this increases security in general. It is true when you are somewhere in a network you don't know, i. e. a public WiFi network, you could automatically use the DNS server configured by the network. This could cause a security issue, because that unknown DNS server might have been compromised. In the worst case it could lead you to a phishing site pretending to be the website of your bank: as soon as you enter your personal banking information, it will be sent straight to the attackers.

But on the other hand Mozilla withholds that using their Trusted Recursive Resolver would cause a security issue in the first place for users who are indeed in a trustworthy network where they know their resolvers, or use the ISP's default one. Because sharing data or information with any third party, which is Cloudflare in this case, is a security issue itself.

Piriform, the maker of CCleaner, has pulled v5.45 of its suite from the website after users expressed concerns over the privacy changes in the application, the company, which was acquired by Avast last year, said. In v5.45, the company made it impossible to disable "active monitoring", and the privacy settings had been removed for free customers. Additionally, as BetaNews reported earlier this week, Avast also made it impossible for users to quit the software. Addressing these concerns, Avast said, "Today we have removed v5.45 and reverted to v5.44 as the main download for CCleaner while we work on a new version with several key improvements." The company added: We're currently working on separating out cleaning functionality from analytics reporting and offering more user control options which will be remembered when CCleaner is closed. We're also creating a factsheet to share which will outline the data we collect, for which purposes and how it is processed. [...] As stated before, we'll split cleaning alerts (which don't send any data) from UI trend data (which is anonymous and only there to measure the user experience) and provide a separate setting for each in the user preferences. Some of these features run as a separate process from the UI: we'll restore visibility of this in the notifications area, and you'll be able to close it down from that icon menu as before. We understand the importance of this to you all. This work is our number 1 priority and we are taking the time to get it right in the next release. There are numerous changes required, so that does mean it will take weeks, not days. While we work on this, we have removed version 5.45 and reinstated version 5.44. According to stats shared by the company, CCleaner has been downloaded over two billion times. In a week, it is estimated to see five million downloads.

Millions of publications -- not to mention spy documents -- can be read on microfilm machines. But people still see these devices as outmoded and unappealing. From a report: I recently acquired a decommissioned microfilm reader. My university bought the reader for $16,000 in 1998, but its value has depreciated to $0 in their official bookkeeping records. Machines like it played a central role in both research and secret-agent tasks of the last century. But this one had become an embarrassment. The bureaucrats wouldn't let me store the reader in a laboratory that also houses a multimillion-dollar information-display system. They made me promise to "make sure no VIPs ever see it there." After lots of paperwork and negotiation, I finally had to transport the machine myself. Unlike a computer -- even an old one -- it was heavy and ungainly. It would not fit into a car, and it could not be carried by two people for more than a few feet. Even moving the thing was an embarrassment. No one wanted it, but no one wanted me to have it around either.

And yet the microfilm machine is still widely used. It has centuries of lasting power ahead of it, and new models are still being manufactured. It's a shame that no intrigue will greet their arrival, because these machines continue to prove essential for preserving and accessing archival materials. [...] Microfilm's decline intensified with the development of optical-character-recognition (OCR) technology. Initially used to search microfilm in the 1930s, Emanuel Goldberg designed a system that could read characters on film and translate them into telegraph code. Further reading: 'You Had to Be There': As Technologies Change Ever Faster, the Knowledge of Obsolete Things Becomes Ever Sweeter.

"Facebook really is evil," writes Quartz reporter Nikhil Sonnad. "Not on purpose. In the banal kind of way. Underlying all of Facebook's screw-ups is a bumbling obliviousness to real humans..." An anonymous reader quotes Sonnad's essay: The imperative to "connect people" lacks the one ingredient essential for being a good citizen: Treating individual human beings as sacrosanct. To Facebook, the world is not made up of individuals, but of connections between them. The billions of Facebook accounts belong not to "people" but to "users," collections of data points connected to other collections of data points on a vast Social Network, to be targeted and monetized by computer programs.

There are certain things you do not in good conscience do to humans. To data, you can do whatever you like.... With Facebook, "life is turned into a database," writes technologist Jaron Lanier in his 2010 book You Are Not a Gadget... Silicon Valley culture has come to accept as certain, Lanier writes, that "all of reality, including humans, is one big information system".... The problem, says Lanier, is that there is nothing special about humans in this information system. Every data point is treated equally, irrespective of how humans experience it. The essay argues Facebook's value system "has diverged from that of the rest of society," adding that Facebook "seems to be blind to the possibility that it could be used for ill."

Facebook needs to "check their instinctive technological optimism against the realities of human life. Absent human considerations, Facebook will continue to bring thoughtless, banal harm to the world."

This week the Internet Archive hosted an amazing Decentralized Web Summit, which united the makers who want to build a web "that's locked open for good." [Watch the videos here.] Vint Cerf was there, as was the technical product development leader for Microsoft's own decentralized identity efforts, several companies building the so-called punk rock Internet, "along with a handful of venture capitalists looking for opportunities." One talk even included Mike Judge, the creator of HBO's Silicon Valley, which recently included the decentralized web in its ongoing storyline.

Computing highlighted remarks by Brewster Kahle, the founder of the Internet Archive, and Mitchell Baker, the chairperson of the Mozilla Foundation. The ideology of the web's early pioneers, according to Baker, was free software and open source. "Money was considered evil," she said. So when companies came in to commercialize the internet, the original architects were unprepared. "Advertising is the internet's original sin," Kahle told the packed room. "Advertising is winner-take-all, and that's how we've ended up with centralization and monopolies."

At the conference, attendees presented utopian visions of how the future of the internet could look. Civil, a new media startup, proposed crowd-supported journalism using cryptocurrency micro-payments. Mastodon, a decentralized and encrypted social network, was commonly referenced as an alternative to Twitter. As Facebook and Google continue to monopolize the digital advertising ecosystem -- recent estimates say that the two companies control over 70% of digital advertising spending globally -- the promise of a decentralized web, free from the shackles of advertiser demands is fun to imagine.
Tristan Harris, who leads the Center for Humane Technology, "just hopes the pioneers of the new internet turn around to face the potential negative externalities of their products before it's too late," arguing that "If we decentralize the systems we already have without an honest recognition of the social harms that are being created -- mental health [issues], loneliness, addiction, polarization, conspiracy theories... then we've decentralized social harms and we can't even track them." But Tim Berners-Lee "remains hopeful".

"There's massive public awareness of the effects of social networks and the unintended consequences," he told Computing. "There's a huge backlash from people wanting to control their own data"... Meanwhile, there's the rise of "companies which respect user privacy and do not do anything at all with user data" (he namechecks social network MeWe to which he acts as an advisor), open-source collaborations like the data portability project (DTP) led by tech giants, and his own project Solid which is "turning from an experiment into a platform and the start of a movement".

"These are exciting times," said Berners-Lee.

Kepler, which has discovered about 70 percent of the 3,800 known exoplanets to date, woke up from a four-week hibernation yesterday and has begun beaming data home, just as planned, NASA officials announced today. From a report: Kepler had been sleeping in an attempt to save thruster fuel, which is running very low. Mission team members wanted to make sure the spacecraft had enough propellant left to orient its antenna toward Earth for yesterday's data dump. Far-flung NASA spacecraft send information back to mission controllers via the agency's Deep Space Network (DSN), a system of radio dishes around the globe. The sun-orbiting Kepler's latest allotted DSN window opened yesterday, agency officials have said.

Apple will reportedly ditch the 3.5mm to Lightning port headphone dongle with this year's iPhone models. Apple notoriously dropped the headphone jack from the iPhone 7 in 2016. It has included a headphone adapter with every iPhone since to help curb public unease. The Verge reports: The research note claims that Cirrus Logic, a supplier for the dongle has "confirmed" that it won't be included in the box alongside the new iPhones. Apple has been trying to transition away from wired headphones entirely with its AirPods and lineup of wireless Beats headphones, so the move isn't entirely surprising. The dongle was always meant as a stopgap while customers adjusted to the new, headphone jack-less reality that Apple imposed on the world. Apple will almost certainly continue to sell the dongle -- which costs $9 -- separately for users who still want it. But if the report is true (which, again, remains to be seen), it's hard to imagine that customers will take the news well. The Barclays research note was first spotted by Mac Rumors.

An anonymous reader quotes a report from the Wall Street Journal: U.S. companies that collect waste for recycling are weighing higher prices and other changes to their operations since China upended the industry when it stopped accepting much of the scrap material Americans have been shipping there for decades. The top two solid waste services companies in the U.S., Waste Management Inc. and Republic Services Inc., both recently pulled back profit projections in their recycling divisions based on China's new policies, which have created a glut in scrap markets and sent global prices for scrap material plummeting.

According to the Institute of Scrap Recycling Industries Inc., 31% of U.S. scrap commodity exports worth a total of $5.6 billion were sent to China last year. It was cheap for recycling collectors to send scrap to China because ocean carriers offered deeply discounted prices to get shipping containers back to Asia after they had arrived at U.S. ports packed with goods made in Chinese factories. "We were happy to send material back in them for pennies on the dollar," Mr. Coupland said. Now it's gotten more complicated. Mr. Coupland said Republic Services has found new buyers in Malaysia, India and other markets, but fewer ships make direct trips there from the U.S., driving up transportation costs. Global prices for used materials have plummeted, so Republic loses money on most of the recycled scrap it now sells overseas. That cost is increasingly likely to get passed along to U.S. households and businesses.

Microsoft has declined to comment on an expert's many complaints about the quality of its recent patches and cadence of Windows 10 feature updates. Earlier, Susan Bradley, a Microsoft MVP who for the past 18 years has volunteered her time helping Windows users, took a survey of over 1,800 respondents regarding the Windows 10 Update experience. She then sent an open letter to Microsoft executives summarizing the results of this survey and providing thoroughly researched material regarding the poor update experience Windows 10 users have been experiencing. In return, Microsoft argued in a blog that it gives admins all the tools they need to test and provide feedback before it releases Patch Tuesday updates. From a report: Microsoft's John Wilcox, who helps promote why organizations should move to Windows 10's Windows-as-a-service model has, at the behest of Windows pros, offered an explanation of its monthly Windows 10 quality update servicing cadence and terminology.

As noted by ZDNet's Ed Bott recently, IT admins who'd spent years learning about Windows Update needed to "prepare to do some unlearning" due to the many changes introduced by Microsoft's shift to a Windows 10-as-a-service model. "With Windows 10, Microsoft has completely rewritten the Windows Update rulebook. For expert users and IT pros accustomed to having fine-grained control over the update process, these changes might seem wrenching and even draconian," he noted. [...]

Wilcox outlines that Microsoft's guiding principles to its monthly Windows service updates are built around being "simple and predictable", "agile", and "transparent." Wilcox doesn't directly address patching expert Bradley's major complaints about Microsoft's patches of late, but said Microsoft's predictability meant IT managers should be able to handle its "simple, regular and consistent patching cadence."

Microsoft has declined to comment on an expert's many complaints about the quality of its recent patches and cadence of Windows 10 feature updates. Earlier, Susan Bradley, a Microsoft MVP who for the past 18 years has volunteered her time helping Windows users, took a survey of over 1,800 respondents regarding the Windows 10 Update experience. She then sent an open letter to Microsoft executives summarizing the results of this survey and providing thoroughly researched material regarding the poor update experience Windows 10 users have been experiencing. In return, Microsoft argued in a blog that it gives admins all the tools they need to test and provide feedback before it releases Patch Tuesday updates. From a report: Microsoft's John Wilcox, who helps promote why organizations should move to Windows 10's Windows-as-a-service model has, at the behest of Windows pros, offered an explanation of its monthly Windows 10 quality update servicing cadence and terminology.

As noted by ZDNet's Ed Bott recently, IT admins who'd spent years learning about Windows Update needed to "prepare to do some unlearning" due to the many changes introduced by Microsoft's shift to a Windows 10-as-a-service model. "With Windows 10, Microsoft has completely rewritten the Windows Update rulebook. For expert users and IT pros accustomed to having fine-grained control over the update process, these changes might seem wrenching and even draconian," he noted. [...]

Wilcox outlines that Microsoft's guiding principles to its monthly Windows service updates are built around being "simple and predictable", "agile", and "transparent." Wilcox doesn't directly address patching expert Bradley's major complaints about Microsoft's patches of late, but said Microsoft's predictability meant IT managers should be able to handle its "simple, regular and consistent patching cadence."

Microsoft has declined to comment on an expert's many complaints about the quality of its recent patches and cadence of Windows 10 feature updates. Earlier, Susan Bradley, a Microsoft MVP who for the past 18 years has volunteered her time helping Windows users, took a survey of over 1,800 respondents regarding the Windows 10 Update experience. She then sent an open letter to Microsoft executives summarizing the results of this survey and providing thoroughly researched material regarding the poor update experience Windows 10 users have been experiencing. In return, Microsoft argued in a blog that it gives admins all the tools they need to test and provide feedback before it releases Patch Tuesday updates. From a report: Microsoft's John Wilcox, who helps promote why organizations should move to Windows 10's Windows-as-a-service model has, at the behest of Windows pros, offered an explanation of its monthly Windows 10 quality update servicing cadence and terminology.

As noted by ZDNet's Ed Bott recently, IT admins who'd spent years learning about Windows Update needed to "prepare to do some unlearning" due to the many changes introduced by Microsoft's shift to a Windows 10-as-a-service model. "With Windows 10, Microsoft has completely rewritten the Windows Update rulebook. For expert users and IT pros accustomed to having fine-grained control over the update process, these changes might seem wrenching and even draconian," he noted. [...]

Wilcox outlines that Microsoft's guiding principles to its monthly Windows service updates are built around being "simple and predictable", "agile", and "transparent." Wilcox doesn't directly address patching expert Bradley's major complaints about Microsoft's patches of late, but said Microsoft's predictability meant IT managers should be able to handle its "simple, regular and consistent patching cadence."

Repealing net neutrality wasn't enough for the Trump administration. Today, the administration asked the U.S. Supreme Court to vacate a 2016 appeal court ruling that had upheld Obama era net neutrality rules that barred ISPs from blocking, throttling, or prioritizing content. Reuters reports: The request was made even though the Federal Communications Commission voted along party lines to toss out the 2015 rules late last year, rendering the fight over their legality moot. In a filing to the Supreme Court, the Trump administration said the question for the court was "whether the now-superseded 2015 order was invalid because it exceeded the FCC's statutory authority, was arbitrary and capricious, was promulgated without adequate public notice, or violated the First Amendment."

Google wants to get back into China, and is laying the groundwork for a key part of the initiative: bringing its cloud business to the world's second-largest economy. Bloomberg: The internet giant is in talks with Tencent Holdings, Inspur Group and other Chinese companies to offer Google cloud services in the mainland, according to people familiar with the discussions. They asked not to be identified discussing private matters. The talks began in early 2018 and Google narrowed partnership candidates to three firms in late March, according to one of the people. Trade tensions between China and the U.S. now loom over the effort. It's unclear if the plans will proceed, this person said.

The goal is to run Google internet-based services -- such as Drive and Docs -- via the domestic data centers and servers of Chinese providers, similar to the way other U.S. cloud companies access that market. In most of the rest of the world, Google Cloud rents computing power and storage over the internet, and sells a collection of workplace productivity apps called G Suite that are run on its own data centers. China requires digital information to be stored in the country and Google has no data centers in the mainland, so it needs partnerships with local players. Further reading: Google Plans To Launch Censored Search Engine In China, Leaked Documents Reveal.

Disney is reportedly having trouble buying back TV rights to "Star Wars" movies from AT&T's Turner Broadcasting so that it can offer them on a new streaming video service it is working on. Bloomberg reports: Disney made a preliminary inquiry about regaining the rights, but met resistance. Turner has the rights to show the films on its cable networks, which include TNT and TBS, and online until 2024. The programmer would want financial considerations and programming to replace the lost films. Disney sold certain rights to Turner in 2016, before it completed plans for the streaming service.

Earlier this week, Nestle said it was jumping on the blockchain bandwagon, today, Starbucks said it is ready to top that. From a report: The Seattle-based coffee giant is working with Microsoft and a leading global exchange on a new digital platform that will allow consumers to use bitcoin and other cryptocurrencies at Starbucks. Starbucks along with Intercontinental Exchange, Microsoft and BCG, among others, is working to launch a new company called Bakkt that will enable consumers and institutions to buy, sell, store and spend cryptocurrencies on the global network by November. The platform with convert bitcoin and other cryptocoins into U.S. dollars that can be used to buy a Cold Foam Cascara Cold Brew, Matcha Lemonade or anything else at Starbucks. Starbucks has consistently been at the forefront of embracing new technologies. For instance, it added support for mobile payments in 2011. In May, it was estimated that Starbucks' mobile payment solution is more popular than those of Apple and Google.

In a statement, Maria Smith, vice president of partnerships and payments for Starbucks, "As the flagship retailer, Starbucks will play a pivotal role in developing practical, trusted and regulated applications for consumers to convert their digital assets into US dollars for use at Starbucks. As a leader in Mobile Pay to our more than 15 million Starbucks Rewards members, Starbucks is committed to innovation for expanding payment options for our customers."

According to Starbucks spokespeople, Motherboard reports, Starbucks doesn't want bitcoins, but it's willing to help people spend them -- the venture is an exchange that will allow people to convert their cryptocurrency into US dollars, which they can then spend at Starbucks locations.

An anonymous reader writes: Sources who work for some of America's major cellphone carriers tell us how criminals are trying to recruit them to get help hacking victims. Normally, criminals approach them online, offering to pay them in Bitcoin (the equivalent of $100 for example). In exchange, the employee has to log into a company portal and process a so-called SIM swap. From the report: How criminals find the employees in the first place can vary. Some SIM hijackers I spoke to told me they approach them through shared friends in real life, others told me they just comb LinkedIn, Reddit or social media sites. AT&T and Sprint did not respond to requests for comment about whether or not it had any knowledge of insiders helping criminals. A T-Mobile spokesperson said in a statement that the company is "aware of these ongoing and ever-changing attempts to take advantage of consumers across the wireless industry and we'll keep fighting to ensure our customers' safety." A Verizon spokesperson said the company doesn't share details of internal security processes or investigations, but the company "has systems in place that work to detect employee/vendor misconduct."

After returning to stores in June after a brief stint of sales back in 2016, the NES Classic is topping U.S. sales charts. Market research firm NPD reports that the NES Classic was June's highest unit-selling hardware platform in the U.S., beating the PlayStation 4, Nintendo Switch, and Xbox One. "The NES Classic managed to outsell these consoles despite only being on sale for a few days in late June," reports The Verge. From the report: While the NES Classic is priced at $59 compared to more expensive current-generation consoles, it's clearly still in demand 35 years after the original Nintendo Entertainment System debuted in 1983. The NES Classic comes loaded with 30 games including classics like Super Mario Bros., Metroid, Donkey Kong, The Legend of Zelda, and Pac-Man. While you can't insert vintage NES cartridges into it, the console supports game saves and connects to TVs via a HDMI cable. Nintendo hasn't revealed whether it now plans to introduce more miniature retro consoles.

Kotlin, which Google blessed last year as an alternative to Java for programming Android apps, has already made its way into almost 12 per cent of open source Android apps, and in so doing has elevated their code quality. From a report: So we're told by computer scientists Bruno Gois Mateus and Matias Martinez, affiliated with University of Valenciennes in France, who observed that Google at the end of 2017 said Kotlin had infiltrated more than 17 per cent of Android apps developed with its IDE, Android Studio 3.0. Kotlin is an open source statically typed programing language that targets the JVM, Android, JavaScript (transpiling to ES5.1) and native platforms (via LLVM). JetBrains, the company that created it, contends Kotlin is more concise and more type-safe than Java. It estimates that apps written in Kotlin require about 40 per cent less code than they would with Java. With fewer lines of code, in theory, one can expect fewer bugs. In a paper distributed through pre-print service ArXiv, "An Empirical Study on Quality of Android Applications written in Kotlin language," Mateus and Martinez describe how they gathered 925 apps from the open source F-Droid repository, measured the amount of Kotlin code in each, and analyzed the code for "smells" as an indicator of code quality.

The reviews for Microsoft's Surface Go tablet are in, and they're all over the place. While the press generally agrees that the processor is slow and can only handle light tasks, such as browsing and mail, there are mixed conclusions as to whether or not the 10-inch, $399 tablet is worth buying. Ars Technica's Peter Bright summarizes: So, should you buy one? That's hard to say. Mashable was a fairly unequivocal "no:" for light productivity, a Chromebook or iPad does the job for less money, and the performance is too problematic for anything much beyond that. On the other side of the coin, Windows Central reckoned that "as a mini-PC [Surface Go] is about as good as you can get," and Ed Bott said, "It's the best cheap PC I've ever used." Gizmodo called it the "perfect representation of what laptops at this price should be." For everyone else, it depends. TechCrunch says that it's worth a look, but there's no shortage of competition around this price point. Acer and Lenovo, among others, offer decent systems that are a bit cheaper. PCWorld concludes that, if you want a tablet, get an honest-to-god tablet (which is to say, an iPad) rather than a system with Windows 10. But if you want something small and light and might just need the full flexibility of a PC, Go is the system to go for. Engadget acknowledged that the Go is "full of compromises" but that, as a "secondary device," the keyboard and software compatibility give it the edge over other tablets. The Verge concludes similarly: it's "probably not the right thing to be your only computer," but it could have a "real place" as a secondary machine. And VentureBeat took a similar line: if you really want the flexibility of a two-in-one, "you're unlikely to find anything better," but if you want either a laptop or a tablet, "you'll find better options for less." As a refresher, the Surface Go features a 10-inch touchscreen display with a 1800x1200 (217 PPI) resolution and 3:2 aspect ratio, an Intel Pentium Gold 4415Y Kaby Lake processor with up to 8GB of RAM and 128GB storage via a SSD (the 64GB eMMC variant features 4GB of RAM), integrated Intel HD Graphics 615, and "up to 9 hours" of battery life. The base model is just $399, compared to the $549 model with 128GB/8GB RAM.

Apple became the first $1 trillion publicly listed U.S. company on Thursday, crowning a decade-long rise fueled by its ubiquitous iPhone that transformed it from a niche player in personal computers into a global powerhouse spanning entertainment and communications. Reuters: The tech company's stock jumped 2.8 percent, bringing its gain to about 9 percent since Tuesday when it reported June-quarter results above expectations and said it bought back $20 billion of its own shares. "Apple's $1 trillion cap is equal to about 5 percent of the total gross domestic product of the United States in 2018," David Kass, professor of finance at the University of Maryland, told The Washington Post. "That puts this company in perspective." The company's fortunes were turbocharged by the launch of personal gadgets such as the iPod in 2001 and the iPhone in 2007. Since then 18 different iPhones have been launched and more than 1.2 billion of the devices have been sold.

Brad Stone, writing for Bloomberg: As critics enjoy pointing out, the company under Cook has failed to come up with another iPhone-type hit. But that's like saying da Vinci never came up with another Mona Lisa-type painting. The release of the iPhone is up there with the founding of Standard Oil as one of the greatest business moves of all time. And while the iPhone has altered daily life so much that no one remembers life before it, Apple has also persuaded customers to embrace other inventions they never knew they wanted, such as connected watches that buzz and beep (to cure the distraction of the phone, Apple says) and wireless dongles that hang ridiculously from their ears.

Apple isn't alone on this mountaintop. Amazon.com, Alphabet, and Microsoft are likely at some point to pinwheel across the $1 trillion finish line, too, and they're almost as good as Apple at manufacturing customer desire. No one told Amazon they needed a speaker they could talk to, or Google a self-driving car, or Microsoft a ... OK, it's been a while since Microsoft has driven civilians wild with desire.

Apple became the first $1 trillion publicly listed U.S. company on Thursday, crowning a decade-long rise fueled by its ubiquitous iPhone that transformed it from a niche player in personal computers into a global powerhouse spanning entertainment and communications. Reuters: The tech company's stock jumped 2.8 percent, bringing its gain to about 9 percent since Tuesday when it reported June-quarter results above expectations and said it bought back $20 billion of its own shares. "Apple's $1 trillion cap is equal to about 5 percent of the total gross domestic product of the United States in 2018," David Kass, professor of finance at the University of Maryland, told The Washington Post. "That puts this company in perspective." The company's fortunes were turbocharged by the launch of personal gadgets such as the iPod in 2001 and the iPhone in 2007. Since then 18 different iPhones have been launched and more than 1.2 billion of the devices have been sold.

Brad Stone, writing for Bloomberg: As critics enjoy pointing out, the company under Cook has failed to come up with another iPhone-type hit. But that's like saying da Vinci never came up with another Mona Lisa-type painting. The release of the iPhone is up there with the founding of Standard Oil as one of the greatest business moves of all time. And while the iPhone has altered daily life so much that no one remembers life before it, Apple has also persuaded customers to embrace other inventions they never knew they wanted, such as connected watches that buzz and beep (to cure the distraction of the phone, Apple says) and wireless dongles that hang ridiculously from their ears.

Apple isn't alone on this mountaintop. Amazon.com, Alphabet, and Microsoft are likely at some point to pinwheel across the $1 trillion finish line, too, and they're almost as good as Apple at manufacturing customer desire. No one told Amazon they needed a speaker they could talk to, or Google a self-driving car, or Microsoft a ... OK, it's been a while since Microsoft has driven civilians wild with desire.

Ancestry, 23andMe and several other top genetic testing companies pledged on Tuesday not to share users' DNA data with others without consent. "Under the new guidelines, the companies said they would obtain consumers "separate express consent" before turning over their individual genetic information to businesses and other third parties, including insurers," reports The Washington Post. "They also said they would disclose the number of law-enforcement requests they receive each year." From the report: The new commitments come roughly three months after local investigators used a DNA-comparison service to track down a man police believed to be the Golden State Killer, who allegedly raped and killed dozens of women in California in the 1970s and 1980s. Investigators identified the suspect using a decades-old DNA sample obtained from the crime scene, which they uploaded to GEDmatch, a crowdsourced database of roughly a million distinct DNA sets shared by volunteers. Investigators said they did not need a court order before using GEDmatch, sparking fresh fears that users' biological data might be too easy to access -- and could end up in the wrong hands -- without additional regulation on the fast-growing, already popular industry.

Ancestry, 23andMe and several other top genetic testing companies pledged on Tuesday not to share users' DNA data with others without consent. "Under the new guidelines, the companies said they would obtain consumers "separate express consent" before turning over their individual genetic information to businesses and other third parties, including insurers," reports The Washington Post. "They also said they would disclose the number of law-enforcement requests they receive each year." From the report: The new commitments come roughly three months after local investigators used a DNA-comparison service to track down a man police believed to be the Golden State Killer, who allegedly raped and killed dozens of women in California in the 1970s and 1980s. Investigators identified the suspect using a decades-old DNA sample obtained from the crime scene, which they uploaded to GEDmatch, a crowdsourced database of roughly a million distinct DNA sets shared by volunteers. Investigators said they did not need a court order before using GEDmatch, sparking fresh fears that users' biological data might be too easy to access -- and could end up in the wrong hands -- without additional regulation on the fast-growing, already popular industry.

Lisa MacLeod, Progressive Conservative member and Children, Community and Social Services Minister of the Legislative Assembly of Ontario, said Tuesday that she would end the city's basic income pilot project, calling it expensive and "clearly not the answer for Ontario families." Few details are available as to how the project will come to an end, but MacLeod said her government will end the program "ethically" for anyone who is currently enrolled. Slashdot reader kenh shares an excerpt from a CBC.ca report: Close to 4,000 people were enrolled in the basic income pilot program in Thunder Bay, Lindsay, Hamilton, Brantford and Brant County. The pilot project started in April 2017. It was originally set to last three years, and explore the effectiveness of providing a basic income to those living on low incomes -- whether they were working or not. Under the project, a single person could have received up to about $17,000 a year, minus half of any income he or she earned. "A couple could have received up to $24,000 per year." People with disabilities could have received an additional $6,000.

Three Ukrainians associated with the hacking group FIN7 have been arrested in Europe in connection with hacks of more than 100 U.S. companies that led to tens of millions of dollars in losses, Reuters reported Wednesday, citing U.S. officials and court documents. From the report: Fin7 has been linked to breaches affecting hotels bearing the name of U.S. President Donald Trump, Whole Foods, Chipotle, Saks Fifth Avenue and Lord & Taylor, according to cyber security firm Trend Micro. The suspects, Fedir Hladyr, Dmytro Fedorov and Andrii Kolpakov, were arrested in Europe between January and June of this year, the Justice Department said on Wednesday. Hladyr is in U.S. custody and U.S. authorities are seeking extradition of the other two, the department said. The three were arrested in connection with computer hacks to steal customer payment card data and other information from more than 100 U.S. companies, the department said.

wiredmikey writes: The leak of an alleged Russian hacker's conversations with a security researcher shows more about the shadowy group of 12 Russian spies indicted by the FBI for targeting the 2016 U.S. election. The researcher, who gave her exchanges with the alleged hacker to The Associated Press on condition of anonymity, said she wasn't pleased to learn she had been corresponding with an alleged Russian spy. But she wasn't particularly surprised either.

Deepa Seetharaman, writing for WSJ: Four years after Facebook bought WhatsApp for $22 billion, it is formally starting the messaging app on a new mission: bringing in revenue. WhatsApp on Wednesday detailed plans to sell advertisements and charge big companies that want to reach their customers through its service [Editor's note: the link may be paywalled: alternative source], launching its first major revenue streams as growth at Facebook's main app is starting to decelerate. The measures are aimed at connecting businesses with WhatsApp's user base of roughly 1.5 billion accounts, WhatsApp executives said.

The announcements follow disagreements between Facebook leaders and WhatsApp's co-founders, Jan Koum and Brian Acton, over how to monetize the popular, free service. Mr. Koum and Mr. Acton resisted efforts to put ads in WhatsApp, and over the past year both men have decided to leave Facebook and the messaging app they started in 2009 -- a breakup that was the subject of a Page One article in The Wall Street Journal in June. [...] Next year, WhatsApp plans to show ads in its Status feature, company officials told the Journal. Status allows users to post montages of text, photos and video that appear for 24 hours -- similar to an Instagram tool called Stories. About 450 million people use WhatsApp Status, compared with about 400 million who use Instagram Stories, which already shows ads.

Deepa Seetharaman, writing for WSJ: Four years after Facebook bought WhatsApp for $22 billion, it is formally starting the messaging app on a new mission: bringing in revenue. WhatsApp on Wednesday detailed plans to sell advertisements and charge big companies that want to reach their customers through its service [Editor's note: the link may be paywalled: alternative source], launching its first major revenue streams as growth at Facebook's main app is starting to decelerate. The measures are aimed at connecting businesses with WhatsApp's user base of roughly 1.5 billion accounts, WhatsApp executives said.

The announcements follow disagreements between Facebook leaders and WhatsApp's co-founders, Jan Koum and Brian Acton, over how to monetize the popular, free service. Mr. Koum and Mr. Acton resisted efforts to put ads in WhatsApp, and over the past year both men have decided to leave Facebook and the messaging app they started in 2009 -- a breakup that was the subject of a Page One article in The Wall Street Journal in June. [...] Next year, WhatsApp plans to show ads in its Status feature, company officials told the Journal. Status allows users to post montages of text, photos and video that appear for 24 hours -- similar to an Instagram tool called Stories. About 450 million people use WhatsApp Status, compared with about 400 million who use Instagram Stories, which already shows ads.

An anonymous reader shares a report: Microsoft has launched a pilot program aimed at providing cybersecurity protection for political campaigns and election authorities. The pilot program -- named AccountGuard -- was launched at the end of July, Bleeping Computer has learned, and was set in motion for the 2018 US midterm elections. According to the pilot's website, AccountGuard "provides additional security and threat monitoring for Microsoft accounts belonging to participating US campaigns, political committees, campaign tech vendors, and their staff, who are likely to be at a higher risk in the lead up to elections."

Microsoft is now running a website where participants in the 2018 US midterm elections can sign up for this increased protection. According to the portal, participation is offered on a non-partisan basis and is by invitation only. Users from the following organizations are eligible to participate: (1) US-based political campaigns (2) US-based political committees (3) Select campaign technology vendors (4) Select individuals may also participate, if invited by eligible campaigns and affiliated organizations Last month, Microsoft said they had detected and helped block hacking attempts -- the first known example of cyber interference in the midterm elections -- against three congressional candidates this year. On Tuesday, Facebook said it was blocking more than two dozen pages that it believed were part of an ongoing political influence campaign.

An anonymous reader shares a report: Microsoft has launched a pilot program aimed at providing cybersecurity protection for political campaigns and election authorities. The pilot program -- named AccountGuard -- was launched at the end of July, Bleeping Computer has learned, and was set in motion for the 2018 US midterm elections. According to the pilot's website, AccountGuard "provides additional security and threat monitoring for Microsoft accounts belonging to participating US campaigns, political committees, campaign tech vendors, and their staff, who are likely to be at a higher risk in the lead up to elections."

Microsoft is now running a website where participants in the 2018 US midterm elections can sign up for this increased protection. According to the portal, participation is offered on a non-partisan basis and is by invitation only. Users from the following organizations are eligible to participate: (1) US-based political campaigns (2) US-based political committees (3) Select campaign technology vendors (4) Select individuals may also participate, if invited by eligible campaigns and affiliated organizations Last month, Microsoft said they had detected and helped block hacking attempts -- the first known example of cyber interference in the midterm elections -- against three congressional candidates this year. On Tuesday, Facebook said it was blocking more than two dozen pages that it believed were part of an ongoing political influence campaign.

Google is planning to launch a censored version of its search engine in China that will blacklist websites and search terms about human rights, democracy, religion, and peaceful protest, The Intercept reported Wednesday, citing leaked documents and people familiar with the matter. From the report: The project -- code-named Dragonfly -- has been underway since spring of last year, and accelerated following a December 2017 meeting between Google's CEO Sundar Pichai and a top Chinese government official, according to internal Google documents and people familiar with the plans. Teams of programmers and engineers at Google have created a custom Android app, different versions of which have been named "Maotai" and "Longfei." The app has already been demonstrated to the Chinese government; the finalized version could be launched in the next six to nine months, pending approval from Chinese officials.

The planned move represents a dramatic shift in Google's policy on China and will mark the first time in almost a decade that the internet giant has operated its search engine in the country. Google's search service cannot currently be accessed by most internet users in China because it is blocked by the country's so-called Great Firewall. The app Google is building for China will comply with the country's strict censorship laws, restricting access to content that Xi Jinping's Communist Party regime deems unfavorable. [...] When a person carries out a search, banned websites will be removed from the first page of results, and a disclaimer will be displayed stating that "some results may have been removed due to statutory requirements." Examples cited in the documents of websites that will be subject to the censorship include those of British news broadcaster BBC and the online encyclopedia Wikipedia.