Slashdot Mirror

Electronics companies Dyson, LG, and Wahl are fighting right-to-repair legislation, Motherboard reported Wednesday, citing letters it has obtained. From a report: The manufacturers of your appliances do not want you to be able to fix them yourself. Last week, at least three major appliance manufacturers -- Dyson, LG, and Wahl -- sent letters to Illinois lawmakers opposing "fair repair" legislation in that state. The letters were written with the help of a trade group called the Association of Home Appliance Manufacturers (AHAM). All three letters are similar but include slightly different wording and examples in parts. The letters ask lawmakers to "withdraw" a bill that would protect and expand the ability for consumers and independent repair professionals to repair everything from iPhones to robot vacuums, electric shavers, toasters, and tractors. Here are links to the Wahl, Dyson, and LG letters.

For the second time in a month, websites that use the Drupal content management system are confronted with a stark choice: install a critical update or risk having your servers infected with ransomware or other nasties. From a report: Maintainers of the open-source CMS built on the PHP programming language released an update patching critical remote-code vulnerability on Wednesday. The bug, formally indexed as CVE-2018-7602, exists within multiple subsystems of Drupal 7.x and 8.x. Drupal maintainers didn't provide details on how the vulnerability can be exploited other than to say attacks work remotely. The maintainers rated the vulnerability "critical" and urged websites to patch it as soon as possible.

Google on Wednesday pushed out the biggest revamp of Gmail in years. The company is bringing to the flagship Gmail service many (but not all) of the features it trialed in Inbox for Gmail, and adding a few new ones, too. From a report: While the overhaul does usher in a new look to the Gmail web app, bringing it into the material design fold, this update is more about throwing new features into the mix than moving things around and causing confusion. G Suite -- Google's paid productivity service for businesses, which also includes Gmail -- appears to be the core focus of this update, however these features will also be made available to standard Gmail users. [...] Google is adamant that no person within the company will ever read your emails, but that doesn't mean your email content is protected from third-party infiltration. To address this, Gmail will soon offer users a dedicated "confidential mode" -- on the web and in its mobile apps -- that is designed to protect against two kinds of attacks. [...] In addition to privacy and security updates, Gmail on mobile and the web is getting a bunch of new features to help solve the perennial problem of email overload. One of those tools is "nudging," which leans on Google's AI smarts and automated processing, similar to how its spam filter works, to remind users to follow up on a message they've received.

An anonymous reader quotes a report from The Washington Post: California man Eric Lundgren, an electronic waste entrepreneur who produced tens of thousands of Windows restore disks intended to extend the lifespan of aging computers, lost a federal appeals court case in Miami after it ruled "he had infringed Microsoft's products to the tune of $700,000," the Washington Post reported on Tuesday. Per the Post, the appeals court ruled Lundgren's original sentence of 15 months in prison and a $50,000 fine would stay, despite the software being freely available online and only compatible with valid Windows licenses: "The appeals court upheld a federal district judge's ruling that the disks made by Eric Lundgren to restore Microsoft operating systems had a value of $25 apiece, even though they could be downloaded free and could be used only on computers with a valid Microsoft license. The U.S. Court of Appeals for the 11th Circuit initially granted Lundgren an emergency stay of his prison sentence, shortly before he was to surrender, but then affirmed his original 15-month sentence and $50,000 fine without hearing oral argument in a ruling issued April 11." All told, the court valued 28,000 restore disks he produced at $700,000, despite testimony from software expert Glenn Weadock that they were worth essentially zero.

Altaba, the company formerly known as Yahoo, will have to pay a $35 million fine for failing to disclose a 2014 data breach in which hackers stole info on over 500 million accounts. "The U.S. Securities and Exchange Commission announced today that Altaba, which contains Yahoo's remains, agreed to pay the fine to settle charges that it misled investors by not informing them of the hack until September 2016, despite known of it as early as December 2014," reports The Verge. From the report: The SEC goes on to admonish Yahoo for its failure to disclose the breach to investors, saying that the agency wouldn't "second-guess good faith exercises of judgment" but that Yahoo's decisions were "so lacking" that a fine was necessary. Yahoo isn't being fined for having poor security practices, not informing users, or really anything related to the hack happening. The SEC is just mad that investors weren't told about it, because -- as Yahoo even noted in filings to investors -- data breaches can have financial impacts and legal implications. With a breach this large, the SEC believes that was obviously a real risk. "Public companies should have controls and procedures in place to properly evaluate cyber incidents and disclose material information to investors," Jina Choi, director of the SEC's San Francisco Regional Office, said in a statement. The SEC released guidance to public companies on what to disclose about data breaches earlier this year, which could help to avoid similar situations in the future.

An anonymous reader quotes a report from TechCrunch: Two weeks ago TechCrunch called on Instagram to build an equivalent to Facebook's "Download Your Information" feature so if you wanted to leave for another photo sharing network, you could. The next day it announced this tool would be coming and now TechCrunch has spotted it rolling out to users. Instagram's "Data Download" feature can be accessed here or through the app's privacy settings. It lets users export their photos, videos, archived Stories, profile, info, comments, and non-ephemeral messages, though it can take a few hours to days for your download to be ready. An Instagram spokesperson now confirms to TechCrunch that "the Data Download tool is currently accessible to everyone on the web, but access via iOS and Android is still rolling out." We'll have more details on exactly what's inside once my download is ready.

Microsoft has been rumored to be working on a "Surface Phone" for years now, with little concrete evidence that such a device actually exists. "But the latest Windows 10 Insider Preview has given new fuel for the speculative fire, it has a set of new APIs for cellular phones," reports Ars Technica. From the report: Windows has had integrated support for cell modems since Windows 8, but this has been restricted to supporting data connections. Telephony -- dialing numbers, placing calls -- has always required either Windows Phone or Windows 10 Mobile. This has made the full Windows 10 unsuitable for a phone. That may be changing. Windows 10 build 17650 -- a preview of Redstone 5, the next Windows update after the delayed April update -- includes some telephony APIs. The new APIs cover support for a range of typical phone features: dialing numbers and contacts, blocking withheld numbers, support for Bluetooth headsets and spearphone mode, and so on and so forth. There also looks to be some kind of video-calling support, suggesting support for 3G or LTE video calling.

Microsoft has been rumored to be working on a "Surface Phone" for years now, with little concrete evidence that such a device actually exists. "But the latest Windows 10 Insider Preview has given new fuel for the speculative fire, it has a set of new APIs for cellular phones," reports Ars Technica. From the report: Windows has had integrated support for cell modems since Windows 8, but this has been restricted to supporting data connections. Telephony -- dialing numbers, placing calls -- has always required either Windows Phone or Windows 10 Mobile. This has made the full Windows 10 unsuitable for a phone. That may be changing. Windows 10 build 17650 -- a preview of Redstone 5, the next Windows update after the delayed April update -- includes some telephony APIs. The new APIs cover support for a range of typical phone features: dialing numbers and contacts, blocking withheld numbers, support for Bluetooth headsets and spearphone mode, and so on and so forth. There also looks to be some kind of video-calling support, suggesting support for 3G or LTE video calling.

Microsoft has been rumored to be working on a "Surface Phone" for years now, with little concrete evidence that such a device actually exists. "But the latest Windows 10 Insider Preview has given new fuel for the speculative fire, it has a set of new APIs for cellular phones," reports Ars Technica. From the report: Windows has had integrated support for cell modems since Windows 8, but this has been restricted to supporting data connections. Telephony -- dialing numbers, placing calls -- has always required either Windows Phone or Windows 10 Mobile. This has made the full Windows 10 unsuitable for a phone. That may be changing. Windows 10 build 17650 -- a preview of Redstone 5, the next Windows update after the delayed April update -- includes some telephony APIs. The new APIs cover support for a range of typical phone features: dialing numbers and contacts, blocking withheld numbers, support for Bluetooth headsets and spearphone mode, and so on and so forth. There also looks to be some kind of video-calling support, suggesting support for 3G or LTE video calling.

An anonymous reader quotes a report from CyberScoop: The U.S. government is considering sanctions against Russian cybersecurity company Kaspersky Lab as part of a wider round of action carried out against the Russian government, according to U.S. intelligence officials familiar with the matter. The sanctions would be a considerable expansion and escalation of the U.S. government's actions against the company. Kaspersky, which has two ongoing lawsuits against the U.S. government, has been called "an unacceptable threat to national security" by numerous U.S. officials and lawmakers.

Officials told CyberScoop any additional action against Kaspersky would occur at the lawsuits' conclusion, which Kaspersky filed in response to a stipulation in the 2018 National Defense Authorization Act that bans its products from federal government networks. If the sanctions came to fruition, the company would be barred from operating in the U.S. and potentially even in U.S. allied countries.

On the heels of a terse privacy debate, Google may have found another thing to worry about: its attempt to rethink the traditional texting system. From a report: Joe Westby is Amnesty International's Technology and Human Rights researcher. Recently, in response to Google's launch of a new messaging service called "Chat", Westby argued that Google, "shows total contempt for Android users' privacy."

"With its baffling decision to launch a messaging service without end-to-end encryption, Google has shown utter contempt for the privacy of Android users and handed a precious gift to cybercriminals and government spies alike, allowing them easy access to the content of Android users' communications. Following the revelations by CIA whistleblower Edward Snowden, end-to-end encryption has become recognized as an essential safeguard for protecting people's privacy when using messaging apps. With this new Chat service, Google shows a staggering failure to respect the human rights of its customers," Westby contended. Westby continued, saying: "In the wake of the recent Facebook data scandal, Google's decision is not only dangerous but also out of step with current attitudes to data privacy."

On the heels of a terse privacy debate, Google may have found another thing to worry about: its attempt to rethink the traditional texting system. From a report: Joe Westby is Amnesty International's Technology and Human Rights researcher. Recently, in response to Google's launch of a new messaging service called "Chat", Westby argued that Google, "shows total contempt for Android users' privacy."

"With its baffling decision to launch a messaging service without end-to-end encryption, Google has shown utter contempt for the privacy of Android users and handed a precious gift to cybercriminals and government spies alike, allowing them easy access to the content of Android users' communications. Following the revelations by CIA whistleblower Edward Snowden, end-to-end encryption has become recognized as an essential safeguard for protecting people's privacy when using messaging apps. With this new Chat service, Google shows a staggering failure to respect the human rights of its customers," Westby contended. Westby continued, saying: "In the wake of the recent Facebook data scandal, Google's decision is not only dangerous but also out of step with current attitudes to data privacy."

On the heels of a terse privacy debate, Google may have found another thing to worry about: its attempt to rethink the traditional texting system. From a report: Joe Westby is Amnesty International's Technology and Human Rights researcher. Recently, in response to Google's launch of a new messaging service called "Chat", Westby argued that Google, "shows total contempt for Android users' privacy."

"With its baffling decision to launch a messaging service without end-to-end encryption, Google has shown utter contempt for the privacy of Android users and handed a precious gift to cybercriminals and government spies alike, allowing them easy access to the content of Android users' communications. Following the revelations by CIA whistleblower Edward Snowden, end-to-end encryption has become recognized as an essential safeguard for protecting people's privacy when using messaging apps. With this new Chat service, Google shows a staggering failure to respect the human rights of its customers," Westby contended. Westby continued, saying: "In the wake of the recent Facebook data scandal, Google's decision is not only dangerous but also out of step with current attitudes to data privacy."

EU antitrust regulators opened an investigation on Monday into Apple's bid for British music discovery app Shazam, concerned the deal might give the iPhone maker an unfair advantage in poaching users from its rivals. From a report: Apple announced the deal in December to help it better compete with industry leader Spotify. Shazam lets users identify songs by pointing a smartphone at the audio source. The European Commission said it was concerned about Apple's access to data on Shazam's users who use competing music streaming services in Europe.

An anonymous reader quotes a report from Inverse: Parts of the Federal Communication Commission's repeal of net neutrality is slated to take effect on April 23, causing worry among internet users who fear the worst from their internet service providers. However, many experts believe there won't be immediate changes come Monday, but that ISPs will wait until users aren't paying attention to make their move. "Don't expect any changes right out of the gate," Dary Merckens, CTO of Gunner Technology, tells Inverse. Merckens specializes in JavaScript development for government and business, and sees why ISPs would want to lay low for a while before enacting real changes. "It would be a PR nightmare for ISPs if they introduced sweeping changes immediately after the repeal of net neutrality," he says.

While parts of the FCC's new plan will go into effect on Monday, the majority of the order still doesn't have a date for when it will be official. Specific rules that modify data collection requirements still have to be approved by the Office of Management and Budget, and the earliest that can happen is on April 27. Tech experts and consumer policy advocates don't expect changes to happen right away, as ISPs will likely avoid any large-scale changes in order to convince policymakers that the net neutrality repeal was no big deal after all.

Researchers with Netlab 360 warn that attackers are mass-exploiting "Drupalgeddon2," the name of an extremely critical vulnerability Drupal maintainers patched in late March. The exploit allows them to take control of powerful website servers. Ars Technica reports: Formally indexed as CVE- 2018-7600, Drupalgeddon2 makes it easy for anyone on the Internet to take complete control of vulnerable servers simply by accessing a URL and injecting publicly available exploit code. Exploits allow attackers to run code of their choice without having to have an account of any type on a vulnerable website. The remote-code vulnerability harkens back to a 2014 Drupal vulnerability that also made it easy to commandeer vulnerable servers.

Drupalgeddon2 "is under active attack, and every Drupal site behind our network is being probed constantly from multiple IP addresses," Daniel Cid, CTO and founder of security firm Sucuri, told Ars. "Anyone that has not patched is hacked already at this point. Since the first public exploit was released, we are seeing this arms race between the criminals as they all try to hack as many sites as they can." China-based Netlab 360, meanwhile, said at least three competing attack groups are exploiting the vulnerability. The most active group, Netlab 360 researchers said in a blog post published Friday, is using it to install multiple malicious payloads, including cryptocurrency miners and software for performing distributed denial-of-service attacks on other domains. The group, dubbed Muhstik after a keyword that pops up in its code, relies on 11 separate command-and-control domains and IP addresses, presumably for redundancy in the event one gets taken down.

Pornhub said in February that it was banning AI-generated deepfake videos, but BuzzFeed News found that it's not doing a very good job at enforcing that policy. The media company found more than 70 deepfake videos -- depicting graphic fake sex scenes with Emma Watson, Scarlett Johanson, and other celebrities -- were easily searchable from the site's homepage using the search term "deepfake." From the report: Shortly after the ban in February, Mashable reported that there were dozens of deepfake videos still on the site. Pornhub removed those videos after the report, but a few months later, BuzzFeed News easily found more than 70 deepfake videos using the search term "deepfake" on the site's homepage. Nearly all the videos -- which included graphic and fake depictions of celebrities like Katy Perry, Scarlett Johansson, Daisy Ridley, and Jennifer Lawrence -- had the word "deepfake" prominently mentioned in the title of the video and many of the names of the videos' uploaders contained the word "deepfake." Similarly, a search for "fake deep" returned over 30 of the nonconsensual celebrity videos. Most of the videos surfaced by BuzzFeed News had view counts in the hundreds of thousands -- one video featuring the face of actor Emma Watson garnered over 1 million views. Some accounts posting deepfake videos appeared to have been active for as long as two months and have racked up over 3 million video views. "Content that is flagged on Pornhub that directly violates our Terms of Service is removed as soon as we are made aware of it; this includes non-consensual content," Pornhub said in a statement. "To further ensure the safety of all our fans, we officially took a hard stance against revenge porn, which we believe is a form of sexual assault, and introduced a submission form for the easy removal of non-consensual content." The company also provided a link where users can report any "material that is distributed without the consent of the individuals involved."

On Friday, Silicon Valley photo-sharing and storage company SmugMug announced it had acquired Flickr, the photo-sharing site created in 2004 by Ludicorp and acquired in 2005 by Yahoo. SmugMug CEO Don MacAskill told USA TODAY he's committed to revitalizing the faded social networking site, which hosted photos and videos long before it became trendy. Flickr will reportedly continue to operate separately, and SmugMug and Flickr accounts will "remain separate and independent for the foreseeable future." From the report: He declined to disclose the terms of the deal, which closed this week. "Flickr is an amazing community, full of some of the world's most passionate photographers. It's a fantastic product and a beloved brand, supplying tens of billions of photos to hundreds of millions of people around the world," MacAskill said. "Flickr has survived through thick-and-thin and is core to the entire fabric of the Internet." The surprise deal ends months of uncertainty for Flickr, whose fate had been up in the air since last year when Yahoo was bought by Verizon for $4.5 billion and joined with AOL in Verizon's Oath subsidiary.

Intel is planning to shut down the New Devices Group (NDG), and cease development on the Vaunt smart glasses project that was revealed earlier this year. The glasses are unique in that they use retinal projection to put a display in your eyeball. "There is no camera to creep people out, no button to push, no gesture area to swipe, no glowing LCD screen, no weird arm floating in front of the lens, no speaker, and no microphone," reports The Verge.

Intel issued a statement announcing the plans: "Intel is continuously working on new technologies and experiences. Not all of these develop into a product we choose to take to market. The Superlight [the codename for Vaunt] project is a great example where Intel developed truly differentiated, consumer augmented reality glasses. We are going to take a disciplined approach as we keep inventing and exploring new technologies, which will sometimes require tough choices when market dynamics don't support further investment." From the report: It was always unclear how precisely Intel intended to bring the Vaunt glasses to market, though sources indicated that Intel wanted to find a partner with retail expertise to partner with. Jerry Bautista, the lead for Vaunt, told me back in December that Intel was "working with key ecosystem hardware providers -- whether they're frames or lenses and things like that. Because we believe there's a whole channel to people who wear glasses that's already there." The story was first reported by The Information.

Silicon Valley angel investor Jason Calacanis just announced the "Openbook Challenge," a competition to create a replacement for Facebook.

"Over the next three months, 20 finalists will compete for seven $100,000 incubator grants," explains long-time Slashdot reader reifman. "Their goal is to find startups with a sustainable business model e.g. subscriptions, reasonable advertising, cryptocurrency. etc. And they want it to be 'good for society.'"

Jason Calacanis writes: All community and social products on the internet have had their era, from AOL to MySpace, and typically they're not shut down by the government -- they're slowly replaced by better products. So, let's start the process of replacing Facebook... We already have two dozen quality teams cranking on projects and we hope to get to 100...

This is not an idea or business plan competition. We're looking for teams that can actually build a better social network, and we'll be judging teams primarily based upon their ability to execute... Keep in mind, that while ideas really matter, Zuckerberg has shown us, execution matters more.
Calacanis has even created a discussion group for the competition...on Facebook. And his announcement includes a famous quote from Mark Zuckerberg.

"Don't be too proud to copy."

An anonymous reader quotes Electrek: Almost 1 million ratepayers of the Puerto Rican Electric Power Authority on the island of Puerto Rico were reportedly without power Wednesday during an island-wide blackout. But a few hundred locations with Tesla Energy storage systems were able to keep the lights on, according to CEO Elon Musk... Some of those locations include very critical services. For example, Tesla deployed a series of Powerpack systems on the Puerto Rican islands of Vieques and Culebra for a sanitary sewer treatment plant, the Arcadia water pumping station, the Ciudad Dorada elderly community, the Susan Centeno hospital, and the Boys and Girls Club of Vieques. Furthermore, the automaker's energy division also deployed a solar+battery system at a hospital in Puerto Rico...

It was also reported that the Puerto Rican government was considering Tesla's plan for a series of microgrids to help bring back power on a larger scale. The government has confirmed that they "presented several projects in remote areas that would allow entire communities to be more independent" and they also "presented a proposal to the Authority for Public-Private Partnerships for the deployment of a large-scale battery system designed to help stabilize the entire Puerto Rico electricity network."
The proposal, involving de-centralized local solar farms, "should prove more resilient to natural disaster," Electrek reported earlier, adding " and of course, it would be a lot cleaner than their currently mostly fossil fuel-based power generation." Already Tesla batteries are "live and delivering power" at 662 locations, Elon Musk tweeted Wednesday.

Meanwhile, CNN reports that one Puerto Rico resident spent three weeks building his own solar power system using $7,500 in parts -- which will ultimately prove cheaper than the $350 a month he was spending to run a gas generator (and waiting as long as six hours in the long gas lines).

They're not revealing his name "because he's concerned someone may try to steal his new system."

Wells Fargo got hit with a $1 billion fine Friday -- the largest ever issued by America's consumer protection agency. An anonymous reader quotes Reuters: Taken together, the mortgage and auto programs ensnared more than 600,000 customers and will require nearly $300 million in refunds, the bank has said. The programs allowed Wells Fargo to earn fees from unneeded car insurance and penalties on mortgage paperwork that the bank had botched. For homebuyers, Wells Fargo promised to "rate lock" or freeze the interest rate for borrowers who got their mortgage paperwork finished within a few weeks. When that deadline slipped and it was the bank's fault, Wells Fargo could blame the customer. The penalty for late mortgage paperwork often topped $1000, according to a borrower lawsuit...

Drivers stung by insurance fees were wrongly pushed into policies that they did not need... Insurers working for Wells Fargo pushed policies onto more than 500,000 customers who already had coverage, the bank has said.
The penalty comes 18 months after Wells Fargo "admitted it opened sham accounts for customers -- a practice that likely ensnared millions...

Wells Fargo agreed to the new $1 billion fine "without admitting or denying wrongdoing."

An anonymous reader quotes a report from TechCrunch: Jimmy Nsubuga, a journalist at Metro, is among several European Facebook users who have reported getting notifications asking if they want to turn on face recognition technology. Facebook has previously said an opt-in option would be pushed out to all European users, and also globally, as part of changes to its T&Cs and consent flow. In Europe, the company is hoping to convince users to voluntarily allow it to deploy the privacy-hostile tech -- which was turned off in the bloc after regulatory pressure, back in 2012, when Facebook began using facial recognition to offer features such as automatically tagging users in photo uploads. But under impending changes to its T&Cs -- ostensibly to comply with the EU's incoming GDPR data protection standard -- the company has crafted a manipulative consent flow that tries to sell people on giving it their data; including filling in its own facial recognition blanks by convincing Europeans to agree to it grabbing and using their biometric data after all. Users who choose not to switch on facial recognition still have to click through a "continue" screen before they get to the off switch. On this screen Facebook attempts to convince them to turn it on -- using manipulative examples of how the tech can "protect" them.

Rebutting a widespread speculation, Apple chief executive Tim Cook said the company is not working toward building an operating system that both Macs and iPhones could share. From his interview on Sydney Morning Herald: Later, when I ask about the divide between the Mac and iOS, which seems almost conservative when compared to Microsoft's convertible Windows 10 strategy, Cook gives an interesting response. "We don't believe in sort of watering down one for the other. Both [The Mac and iPad] are incredible. One of the reasons that both of them are incredible is because we pushed them to do what they do well. And if you begin to merge the two ... you begin to make trade offs and compromises. "So maybe the company would be more efficient at the end of the day. But that's not what it's about. You know it's about giving people things that they can then use to help them change the world or express their passion or express their creativity. So this merger thing that some folks are fixated on, I don't think that's what users want." A surprising comment, considering rumours from well-connected reporter Mark Gurman of Bloomberg, who wrote the company is working on a project called "Marzipan", which involves merging the codebase of macOS and iOS apps.

An anonymous reader shares a report: Russian cybersecurity company Kaspersky Lab has been banned from advertising on Twitter due to its allegedly close and active ties between the company and Russian intelligence agencies, according to the social network. The ban is the latest blow in an ongoing saga for Kaspersky, which includes two ongoing legal battles with the U.S. government. Eugene Kaspersky, CEO of Kaspersky Lab, took to Twitter on Friday to condemn the ban. A Twitter spokesperson reiterated that the "decision is based on our determination that Kaspersky Lab operates using a business model that inherently conflicts with acceptable Twitter Ads business practices."

An anonymous reader shares a report: Russian cybersecurity company Kaspersky Lab has been banned from advertising on Twitter due to its allegedly close and active ties between the company and Russian intelligence agencies, according to the social network. The ban is the latest blow in an ongoing saga for Kaspersky, which includes two ongoing legal battles with the U.S. government. Eugene Kaspersky, CEO of Kaspersky Lab, took to Twitter on Friday to condemn the ban. A Twitter spokesperson reiterated that the "decision is based on our determination that Kaspersky Lab operates using a business model that inherently conflicts with acceptable Twitter Ads business practices."

An anonymous reader shares an exclusive report from The Verge about Google's next big fix for Android's messaging mess: Instead of bringing a better app to the table, it's trying to change the rules of the texting game, on a global scale. Google has been quietly corralling every major cellphone carrier on the planet into adopting technology to replace SMS. It's going to be called "Chat," and it's based on a standard called the "Universal Profile for Rich Communication Services." SMS is the default that everybody has to fall back to, and so Google's goal is to make that default texting experience on an Android phone as good as other modern messaging apps. As part of that effort, Google says it's "pausing" work on its most recent entry into the messaging space, Allo. It's the sort of "pause" that involves transferring almost the entire team off the project and putting all its resources into another app, Android Messages. Google won't build the iMessage clone that Android fans have clamored for, but it seems to have cajoled the carriers into doing it for them. In order to have some kind of victory in messaging, Google first had to admit defeat. Some of the new features associated with Chat include read receipts, typing indicators, full-resolution images and video, and group texts. It's important to keep in mind that it's a carrier-based service, not a Google service. It won't be end-to-end encrypted, and it will follow the same legal intercept standards. The new Chat services will be switched on in the near future, but ultimately carriers will dictate exactly when Chat will go live. Also, you may be persuaded to upgrade your data plan since Chat messages will be sent with your data plan instead of your SMS plan.

New submitter krazy1 shares a report from Ars Technica: The U.S. government is going after another Chinese Android device maker. After shutting down Huawei's carrier deals and retail partners, the government is now pursuing ZTE. The U.S. Department of Commerce has banned U.S. companies from selling parts and software to ZTE for seven years. ZTE was caught violating U.S. sanctions by illegally shipping telecommunications equipment to Iran and North Korea. The company then made things worse by "making false statements and obstructing justice, including through preventing disclosure to and affirmatively misleading the U.S. Government," according to the Department of Commerce.

The latest news from Reuters raises even bigger issues for ZTE, though. A source told Reuters that "The Commerce Department decision means ZTE Corp may not be able to use Google's Android operating system in its mobile devices." Android is free and open source and will probably remain free for ZTE to use without Google's involvement. Reuters' source is probably referring to the Google apps, which aren't sold to device makers but are carefully licensed to them in exchange for other concessions. The Google apps package includes popular services like Gmail and Google Maps, and it also unlocks the Play Store, Google Play Services, and the entire Android app ecosystem. For a market-viable Android device, the Play Store is pretty much mandatory in every country other than China. So while ZTE could conceivably source hardware components from non-U.S. sources, being locked out of the Play Store would devastate ZTE's smartphones worldwide.

Nicholas Confessore reports via The New York Times: An auditing firm responsible for monitoring Facebook for federal regulators told them last year that the company had sufficient privacy protections in place, even after the social media giant lost control of a huge trove of user data that was improperly obtained by the political consulting firm Cambridge Analytica. The assertion, by PwC, came in a report submitted to the Federal Trade Commission in early 2017. The report, a redacted copy of which is available on the commission's website, is one of several periodic reviews of Facebook's compliance with a 2011 federal consent decree, which required Facebook to take wide-ranging steps to prevent the abuse of users' information and to inform them how it was being shared with other companies. The accounting firm, formerly known as PricewaterhouseCoopers, effectively gave Facebook a clean bill of health. "Facebook's privacy controls were operating with sufficient effectiveness to provide reasonable assurance to protect the privacy" of users, said the assessment, which stretched from February 2015 to February 2017. But during that period, Facebook was aware that a researcher based in Britain, Aleksandr Kogan, had provided Cambridge Analytica with private Facebook data from millions of users.

Last week, President Donald Trump signed the Fight Online Sex Trafficking Act (FOSTA) into law. It's a bill that penalizes any platform found "facilitating prostitution," and has caused many advocacy groups to come out against the bill, saying that it undermines essential internet freedoms. The most recent entity to decry FOSTA is Cloudflare, which recently decided to terminate its content delivery network services for an alternative, decentralized social media platform called Switter. Motherboard talked to Cloudflare's general counsel, Doug Kramer, about the bill and he said that FOSTA was an ill-consider bill that's now become a dangerous law: "[Terminating service to Switter] is related to our attempts to understand FOSTA, which is a very bad law and a very dangerous precedent," he told me in a phone conversation. "We have been traditionally very open about what we do and our roles as an internet infrastructure company, and the steps we take to both comply with the law and our legal obligations -- but also provide security and protection, let the internet flourish and support our goals of building a better internet." Cloudflare lobbied against FOSTA, Kramer said, urging lawmakers to be more specific about how infrastructure companies like internet service providers, registrars and hosting and security companies like Cloudflare would be impacted. Now, he said, they're trying to figure out how customers like Switter will be affected, and how Cloudflare will be held accountable for them.

"We don't deny at all that we have an obligation to comply with the law," he said. "We tried in this circumstance to get a law that would make sense for infrastructure companies... Congress didn't do the hard work of understanding how the internet works and how this law should be crafted to pursue its goals without unintended consequences. We talked to them about this. A lot of groups did. And it was hard work that they decided not do." He said the company hopes, going forward, that there will be more clarity from lawmakers on how FOSTA is applied to internet infrastructure. But until then, he and others there are having to figure it out along with law enforcement and customers. "Listen, we've been saying this all along and I think people are saying now, this is a very bad law," Kramer said. "We think, for now, it makes the internet a different place and a little less free today as a result. And there's a real-world implication of this that people are just starting to grapple with."

Apple has unveiled a new robot called Daisy that's designed to recycle nine different versions of the iPhone. The new robot is an update to Liam, the recycling robot the company announced back in 2016. TechCrunch reports: Daisy was developed in-house by Apple engineers, using some of Liam's parts -- a recycling of sorts. The industrial robot is able to disassemble nine different versions of the iPhone, sorting all of their reusable components in the process. In all, Daisy is capable of taking apart a full 200 iPhones in a given hour, proving a solid alternative to traditional methods that can destroy valuable components in the process. Along with Daisy, Apple's also using the occasion to announce GiveBack, an addition to its recycling program. For every device customers turn in or trade from now until April 30, the company will make a donation to Conservation International, a Virginia-based environmental nonprofit. Eligible devices will still qualify for an in-store or gift card credit.

Most navigation apps give you instructions based on streets or distance. But it's arguably in contrast to how people usually provide directions -- some usually point to landmarks that are easier to spot. Google sees some merit in that. The idea is that Google Maps is highlighting some landmarks and other points of interest (fast food restaurants) to help with guidance. TechCrunch reports that some users are already seeing this on Google Maps. And maybe to Google, this opens door for some business opportunities as well. Only time will tell.

Web makers continue to ditch the infamous Flash for other safer, improved technologies. In 2011, more than 28.5 percent of websites used Flash in their code, a figure technology survey site W3Techs estimates to have dropped to 4.9 percent today. BleepingComputer: The number confirms Flash's decline, and a reason why Adobe has decided to retire the technology at the end of 2020. A decline from 28.5 percent to 4.9 percent doesn't look that bad, but we're talking about all Internet sites, not just a small portion of Top 10,000 or Top 1 Million sites. Taking into account the sheer number of abandoned sites on today's Internet, the decline is quite considerable, and W3Techs' findings confirm similar statistics put out by a Google security engineer in February.

SpaceX launched NASA's TESS spacecraft Wednesday evening from Cape Canaveral, Florida, and successfully landed its Falcon 9 rocket on a drone ship following takeoff. This marks 24 successful landings for SpaceX now, notes The Verge. We will update this post once TESS is deployed into orbit. From the report: TESS is NASA's newest exoplanet hunter. The probe is tasked with staring at stars tens to hundreds of light-years from Earth, watching to see if they blink. When a planet passes in front of a distant star, it dims the star's light ever so slightly. TESS will measure these twinkles from a 13.7-day orbit that extends as far out as the distance of the Moon. The satellite won't get to its final orbit on this launch. Instead, the Falcon 9 will put TESS into a highly elliptical path around Earth first. From there, TESS will slowly adjust its orbit over the next couple of months by igniting its onboard engine multiple times. The spacecraft will even do a flyby of the Moon next month, getting a gravitational boost that will help get the vehicle to its final path around Earth. Overall, it will take about 60 days after launch for TESS to get to its intended orbit; science observations are scheduled to begin in June.

A Florida man accused of flooding consumers with 97 million phone calls touting fake travel deals appeared Wednesday before lawmakers to explain how robocalls work and to say, "I am not the kingpin of robocalling that is alleged." From a report: Adrian Abramovich, of Miami, who is fighting a proposed $120 million fine, told senators that open-source software lets operators make thousands of phone calls with the click of a button, in combination with cloud-based computing and "the right long distance company." "Clearly regulation needs to address the carriers and providers and require the major carriers to detect robocalls activity," Abramovich said in testimony submitted in advance to the Senate Commerce Committee. He has asked the Federal Communications Commission to reduce the fine proposed last year, calling it disproportionate, in part because most calls went unanswered or resulted in a quick hang-up by consumers. The panel's chairman, Senator John Thune, a South Dakota Republican, called Abamovich and officials from the FCC and other agencies to discuss ways to stop abusive calls.

An anonymous reader shares a report: Seven months after Hurricane Maria devastated the island of Puerto Rico, the power grid is still unstable. But progress was being made; according to CBS, less than 10 percent of the island was without power as of a month ago. But now, the Associated Press reports that the island is undergoing yet another full blackout. The power company is still investigating the cause and estimates it will take 24 to 36 hours for power to be restored. The saga of Puerto Rico's power grid has been an unhappy one. The US territory was already facing a financial crisis before the hurricane hit. The island only has one electric company, and prior to Maria, it was $9 billion in debt and utilizing outdated infrastructure and equipment.

It turns out, the Russian government, in its quest to block Telegram, accidentally shut down several other services as well. From a report: The chief of the Russian communications watchdog acknowledged Wednesday that millions of unrelated IP addresses have been frozen in a so-far futile attempt to block a popular messaging app. Telegram, the messaging app that was ordered to be blocked last week, was still available to users in Russia despite authorities' frantic attempts to hit it by blocking other services. The row erupted after Telegram, which was developed by Russian entrepreneur Pavel Durov, refused to hand its encryption keys to the intelligence agencies. The Russian government insists it needs them to pre-empt extremist attacks but Telegram dismissed the request as a breach of privacy. Alexander Zharov, chief of the Federal Communications Agency, said in an interview with the Izvestia daily published Wednesday that Russia is blocking 18 networks that are used by Amazon and Google and which host sites that they believe Telegram is using to circumvent the ban.

It turns out, the Russian government, in its quest to block Telegram, accidentally shut down several other services as well. From a report: The chief of the Russian communications watchdog acknowledged Wednesday that millions of unrelated IP addresses have been frozen in a so-far futile attempt to block a popular messaging app. Telegram, the messaging app that was ordered to be blocked last week, was still available to users in Russia despite authorities' frantic attempts to hit it by blocking other services. The row erupted after Telegram, which was developed by Russian entrepreneur Pavel Durov, refused to hand its encryption keys to the intelligence agencies. The Russian government insists it needs them to pre-empt extremist attacks but Telegram dismissed the request as a breach of privacy. Alexander Zharov, chief of the Federal Communications Agency, said in an interview with the Izvestia daily published Wednesday that Russia is blocking 18 networks that are used by Amazon and Google and which host sites that they believe Telegram is using to circumvent the ban.

Iran banned government bodies on Wednesday from using the popular Telegram instant messaging app as Supreme Leader Ayatollah Ali Khamenei's office said his account would shut down to protect national security, Iranian media reported. From a report: ISNA news agency did not give a reason for the government ban on the service which lets people send encrypted messages and has an estimated 40 million users in the Islamic Republic. The order came days after Russia -- Iran's ally in the Syrian war -- started blocking the app in its territory following the company's repeated refusal to give Russian state security services access to users' secret messages. Iran's government banned "all state bodies from using the foreign messaging app," according to ISNA.

Cambridge Analytica, the data analytics firm that harvested millions of Facebook profiles of U.S. voters, attempted to develop its own cryptocurrency this past year and intended to raise funds through an initial coin offering. The digital coin would have helped people store online personal data and even sell it, former Cambridge Analytica employee Brittany Kaiser told The New York Times. The Verge reports: Cambridge Analytica, which obtained the data of 87 million Facebook users, was hoping to raise as much as $30 million through the venture, anonymous sources told Reuters. Cambridge Analytica confirmed to Reuters that it had previously explored blockchain technology, but did not confirm the coin offering and didn't say whether efforts are still underway. The company also reportedly attempted to promote another digital currency behind the scenes. It arranged for potential investors to take a vacation trip to Macau in support of Dragon Coin, a cryptocurrency aimed at casino players. Dragon Coin has been supported by a Macau gangster Wan Kuok-koi, nicknamed Broken Tooth, according to documents obtained by the Times. Cambridge Analytica started working on its own initial coin offering mid-2017 and the initiative was overseen in part by CEO Alexander Nix and former employee Brittany Kaiser. The company's plans to launch an ICO were still in the early stages when Nix was suspended last month and the Facebook data leak started to gain public attention.

Facebook said in a blog post yesterday that they tracked users and non-users across websites and apps for three main reasons: providing services directly, securing the company's own site, and "improving our products and services." The statement comes as the company faces a U.S. lawsuit over a controversial facial recognition feature launched in 2011. The Guardian reports: "When you visit a site or app that uses our services, we receive information even if you're logged out or don't have a Facebook account. This is because other apps and sites don't know who is using Facebook," Facebook's product management director, David Baser, wrote. "Whether it's information from apps and websites, or information you share with other people on Facebook, we want to put you in control -- and be transparent about what information Facebook has and how it is used."

But the company's transparency has still not extended to telling non-users what it knows about them -- an issue Zuckerberg also faced questions over from Congress. Asked by Texas representative Gene Green whether all information Facebook holds about a user is in the file the company offers as part of its "download your data" feature, Zuckerberg had responded he believed that to be the case. Privacy campaigner Paul-Olivier Dehaye disagreed, noting that, even as a Facebook user, he had been unable to access personal data collected through the company's off-site tracking systems. Following an official subject access request under EU law, he told MPs last month, Facebook had responded that it was unable to provide the information.

Major Blud writes: CNBC is reporting that Amazon Business, which considered selling pharmaceutical products last year, has put its plans to do so on hiatus. "The change in plan comes partly because Amazon has not been able to convince big hospitals to change their traditional purchasing process, which typically involves a number of middlemen and loyal relationships," reports CNBC. Amazon was able to gain licensing in 47 out of the 50 U.S. states, but has struggled to land contracts with large hospital networks. "The setback illustrates the challenges of getting into the medical supply and pharmaceutical space, even for a company as big as Amazon," reports CNBC. "Several health-care and pharmaceutical distribution companies saw their stock take a nosedive following recent reports of Amazon potentially getting into the space, but it will likely take some time before those concerns turn into real threats."

An anonymous reader quotes a report from Ars Technica: Tesla has an Autopilot problem, and it goes far beyond the fallout from last month's deadly crash in Mountain View, California. Tesla charges $5,000 for Autopilot's lane-keeping and advanced cruise control features. On top of that, customers can pay $3,000 for what Tesla describes as "Full Self-Driving Capability." "All you will need to do is get in and tell your car where to go," Tesla's ordering page says. "Your Tesla will figure out the optimal route, navigate urban streets (even without lane markings), manage complex intersections with traffic lights, stop signs and roundabouts, and handle densely packed freeways with cars moving at high speed." None of these "full self-driving" capabilities are available yet. "Self-Driving functionality is dependent upon extensive software validation and regulatory approval, which may vary widely by jurisdiction," the page says. "It is not possible to know exactly when each element of the functionality described above will be available, as this is highly dependent on local regulatory approval."

But the big reason full self-driving isn't available yet has nothing to do with "regulatory approval." The problem is that Tesla hasn't created the technology yet. Indeed, the company could be years away from completing work on it, and some experts doubt it will ever be possible to achieve full self-driving capabilities with the hardware installed on today's Tesla vehicles. "It's a vastly more difficult problem than most people realize," said Sam Abuelsamid, an analyst at Navigant Research and a former auto industry engineer. Tesla has a history of pre-selling products based on optimistic delivery schedules. This approach has served the company pretty well in the past, as customers ultimately loved their cars once they ultimately showed up. But that strategy could backfire hugely when it comes to Autopilot.

An anonymous reader quotes a report from CNBC: The IRS will give last-minute filers additional time to file their tax returns after the page for paying their tax bills using their bank accounts crashed, Treasury Secretary Steven Mnuchin told the Associated Press. The IRS "Direct Pay" page allows filers to transfer funds from their checking or savings account to pay what they owe. As of 5 p.m. ET on April 17 -- Tax Day -- the page was still unavailable. Direct Pay is a free service. The "Payment Plan" page, where filers can pay their tax bill in installments also appears to have crashed. "I'd strongly advise folks who owe any federal taxes and cannot pay online to mail a check or money order to the IRS to the appropriate address," said Patrick Thomas, director of Notre Dame Law School's Tax Clinic. According to a TurboTax spokesperson, the IRS's technical difficulties are affecting all tax preparers and tax returns. "Taxpayers should go ahead and continue to prepare and file their taxes as normal with TurboTax," the spokesperson said. "TurboTax has uninterrupted service and is available and accepting e-filed returns," she said. "We will hold returns until the IRS is ready to begin accepting them again." H&R Block said it will continue to accept returns from filers.

An anonymous reader writes: It's not just web browsers that are moving beyond passwords. Microsoft has revealed that Windows 10's next update will support the new FIDO 2.0 standard, promising password-free logins on any Windows 10 device managed by your company or office. You could previously use Windows Hello to avoid typing in a password, of course, but this promises to be more extensive -- you could use a USB security key to sign into your Azure Active Directory.

Anonymous readers share a report: YouTube managers had no way to predict Nasim Aghdam would go on a bloody rampage, but they had plenty of reasons to fear that someone like her might one day show up, say former employees. Aghdam was the 38-year-old, disgruntled YouTube video creator who arrived at the company's San Bruno, California, headquarters on April 3 and began blasting away with a 9mm handgun. She wounded three staffers before she killed herself. Police say leading up to the shooting Aghdam, who was from San Diego, believed YouTube sought to censor her and ruin her life.

This kind of violence is unprecedented in YouTube's 13-year-history, though Aghdam's anger and paranoia aren't unique among the millions of people who create and post videos to the site, according to five former YouTube employees. In exclusive interviews, they told Business Insider that going back to the service's earliest days, frustrated creators -- seething over one of YouTube's policy changes or the other -- have threatened staffers with violence. Typically the threats were delivered via email. At least once, a video creator confronted a YouTube employee face-to-face and promised he would "destroy" him.

Anonymous readers share a report: YouTube managers had no way to predict Nasim Aghdam would go on a bloody rampage, but they had plenty of reasons to fear that someone like her might one day show up, say former employees. Aghdam was the 38-year-old, disgruntled YouTube video creator who arrived at the company's San Bruno, California, headquarters on April 3 and began blasting away with a 9mm handgun. She wounded three staffers before she killed herself. Police say leading up to the shooting Aghdam, who was from San Diego, believed YouTube sought to censor her and ruin her life.

This kind of violence is unprecedented in YouTube's 13-year-history, though Aghdam's anger and paranoia aren't unique among the millions of people who create and post videos to the site, according to five former YouTube employees. In exclusive interviews, they told Business Insider that going back to the service's earliest days, frustrated creators -- seething over one of YouTube's policy changes or the other -- have threatened staffers with violence. Typically the threats were delivered via email. At least once, a video creator confronted a YouTube employee face-to-face and promised he would "destroy" him.

Cambridge Analytica and its partners used data from previously unknown "Facebook-connected questionnaires" to obtain user data from the social media service, according to testimony from a former Cambridge Analytica employee. From a report: Brittany Kaiser provided evidence to the British Parliament today as part of a hearing on fake news. Kaiser, who worked on the business team at Cambridge Analytica's parent company until January of this year, wrote in a statement that she was "aware in a general sense of a wide range of surveys" used by Cambridge Analytica or its partners, and she said she believes the number of people whose Facebook data may have been compromised is likely higher than the widely reported 87 million.

Adi Robertson, reporting for The Verge: In late 2005, tech visionary and MIT Media Lab founder Nicholas Negroponte pulled the cloth cover off a small green computer with a bright yellow crank. The device was the first working prototype for Negroponte's new nonprofit One Laptop Per Child (OLPC), dubbed "the green machine" or simply "the $100 laptop." And it was like nothing that Negroponte's audience -- at either his panel at a UN-sponsored tech summit in Tunis, or around the globe -- had ever seen. After UN Secretary-General Kofi Annan offered a glowing introduction, Negroponte explained exactly why. The $100 laptop would have all the features of an ordinary computer but require so little electricity that a child could power it with a hand crank.

[...] But OLPC's overwhelming focus on high-tech hardware worried some skeptics, including participants in the Tunis summit. One attendee said she'd rather have "clean water and real schools" than laptops, and another saw OLPC as an American marketing ploy. "Under the guise of non-profitability, hundreds of millions of these laptops will be flogged off to our governments," he complained. In the tech world, people were skeptical of the laptop's design, too. Intel chairman Craig Barrett scathingly dubbed OLPC's toy-like prototype "the $100 gadget," and Bill Gates hated the screen in particular. "Geez, get a decent computer where you can actually read the text," he told reporters.

[...] After announcing "the $100 Laptop," OLPC had one job to do: make a laptop that cost $100. As the team developed the XO-1, they slowly realized that this wasn't going to happen. According to Bender, OLPC pushed the laptop's cost to a low of $130, but only by cutting so many corners that the laptop barely worked. Its price rose to around $180, and even then, the design had major tradeoffs. [...]

Microsoft has admitted that it had to postpone the release of Spring Creators Update, the upcoming major update to its Windows 10 desktop operating system due to technical issues. BleepingComputer notes: More precisely, Microsoft says it encountered a higher percentage of Blue Screen of Death (BSOD) errors on PCs, the company's Insiders Program managers said in a blog post yesterday. Microsoft says that instead of shipping the Springs Creators Update faulty as it was, and then delivering an update later to fix the issues, it decided to hold off on deploying the defective build altogether. The OS maker says it will create and test a new Windows 10 build that also includes the BSOD fixes, and ship that one instead of Windows 10 Insider Preview Build 17134, the build that was initially scheduled to be launched as the Spring Creators Update on April 10, last week.