Slashdot Mirror

At a TED conference, Twitter CEO Jack Dorsey said the social media company needs to rethink how they incentivize user behavior to combat abuse and misinformation. "He suggested that the service works best as an 'interest-based network,' where you log in and see content relevant to your interests, no matter who posted it -- rather than a network where everyone feels like they need to follow a bunch of other accounts, and then grow their follower numbers in turn," reports TechCrunch. From the report: Dorsey recalled that when the team was first building the service, it decided to make follower count "big and bold," which naturally made people focus on it. "Was that the right decision at the time? Probably not," he said. "If I had to start the service again, I would not emphasize the follower count as much ... I don't think I would create 'likes' in the first place." Since he isn't starting from scratch, Dorsey suggested that he's trying to find ways to redesign Twitter to shift the "bias" away from accounts and toward interests.

And while Dorsey said he's less interested in maximizing time spent on Twitter and more in maximizing "what people take away from it and what they want to learn from it," TED's Chris Anderson suggested that Twitter may struggle with that goal since it's a public company, with a business model based on advertising. Would Dorsey really be willing to see time spent on the service decrease, even if that means improving the conversation? "More relevance means less time on the service, and that's perfectly fine," Dorsey said, adding that Twitter can still serve ads against relevant content. In terms of how the company is currently measuring its success, Dorsey said it focuses primarily on daily active users, and secondly on "conversation chains -- we want to incentivize healthy contributions back to the network."

An anonymous reader quotes a report from TechCrunch: Electric vehicles, still a small percentage of the total automotive market in the U.S., are beginning to gain ground, according to analysis by IHS Markit. There were 208,000 new registrations for electric vehicles in the U.S. last year, more than double the number filed in 2017, IHS said Monday. That growth in EVs was heavily concentrated in California as well as nine other states that have adopted the Zero Emission Vehicle program. California was the first to launch the ZEV program a state regulation that requires automakers to sell electric cars and trucks there. Connecticut, Maine, Maryland, Massachusetts, New Jersey, New York, Oregon, Rhode Island and Vermont are also ZEV states.

California accounted for nearly 46 percent, or 95,000, of new EV registrations in 2018, IHS said. California has 59 percent of market share of registered electric vehicles in the U.S. More than 350,000 new EVs will be sold in the US in 2020. Those figures will give EVs a still tiny 2 percent share of the total U.S. fleet. By 2025, that figure is expected to rise to more than1.1 million vehicles sold or a 7 percent share, according to recent IHS Markit. The Tesla's Model 3 is the top selling all-electric in the U.S. so far this year, followed by the Chevy Bolt, Tesla Model X, Tesla Model S and the Nissan Leaf, according to estimates by Inside EVs.

Microsoft is about to launch an even cheaper Xbox One S. In order to cut costs, the company is removing the Blu-ray disc drive altogether. According to leaked marketing images spotted by WinFuture, the console could launch on May 7th for $258 in Germany. From a report: Given that the launch is just a few weeks away and that those marketing images line up perfectly with previous rumors, chances are this is the real deal. As you can see on WinFuture's images, it looks exactly like an Xbox One S without the disc slot. The console is called Xbox One S All Digital and comes with a 1TB hard drive -- most standard Xbox One S consoles currently also feature a 1TB hard drive. Microsoft states clearly that this console is only for digital games. If you already have physical Xbox One games, you wonâ(TM)t be able to insert them in the console.

A "limited" number of users of Microsoft's webmail services -- which include Hotmail, Outlook.com, and MSN -- "had their accounts compromised, TechCrunch reports. "We addressed this scheme, which affected a limited subset of consumer accounts, by disabling the compromised credentials and blocking the perpetrators' access," said a Microsoft spokesperson in an email. According to an email Microsoft has sent out to affected users, malicious hackers were potentially able to access an affected user's e-mail address, folder names, the subject lines of e-mails, and the names of other e-mail addresses the user communicates with -- "but not the content of any e-mails or attachments," nor -- it seems -- login credentials like passwords. Microsoft is still recommending that affected users change their passwords regardless.

The breach occurred between January 1 and March 28, Microsoft's letter to users said. The hackers got into the system by compromising a customer support agent's credentials, according to the letter. Once identified, those credentials were disabled. Microsoft told users that it didn't know what data was viewed by the hackers or why, but cautioned that users might as a result see more phishing or spam emails as a result.

An anonymous reader quotes a report from TechCrunch: A hacker group has breached several FBI-affiliated websites and uploaded their contents to the web, including dozens of files containing the personal information of thousands of federal agents and law enforcement officers, TechCrunch has learned. The hackers breached three sites associated with the FBI National Academy Association, a coalition of different chapters across the U.S. promoting federal and law enforcement leadership and training located at the FBI training academy in Quantico, VA. The hackers exploited flaws on at least three of the organization's chapter websites -- which we're not naming -- and downloaded the contents of each web server. The hackers then put the data up for download on their own website, which we're also not naming nor linking to given the sensitivity of the data. The spreadsheets contained about 4,000 unique records after duplicates were removed, including member names, a mix of personal and government email addresses, job titles, phone numbers and their postal addresses. The FBINAA could not be reached for comment outside of business hours. If we hear back, we'll update. "We hacked more than 1,000 sites," said the hacker. "Now we are structuring all the data, and soon they will be sold. I think something else will publish from the list of hacked government sites." When asked if they were worried that the files they put up for download would put federal agents and law enforcement at risk, the hacker said: "Probably, yes." The hacker claimed to have "over a million data" [sic] on employees across several U.S. federal agencies and public service organizations.

Reader hackingbear shares a report: As soon as the European Southern Observatory released the black hole photo, under Creative Commons license, on April 10, Visual China Group (VCG), China's leading stock image provider that's compared to Getty Images, made the image available for sale in its library without attribution to the Event Horizon Telescope Collaboration. "This is an editorial image. Please call 400-818-2525 or consult our customer service representative for commercial use," said a note for the black hole image on VCG's website. Internet users took to social media slamming VCG for monetizing a photo intended for free distribution among the human race. VCG swiftly revised the note to say the black hole photo should not be used for commercial purposes, but the incident sparked a plethora of comments on Weibo condemning VCG's opportunist business practice.

For example, the price tag of the national emblem image ranges from150 yuan ($22) to 1,500 yuan ($220.) "Copyrights protection should definitely be promoted. The question is, why is VCG allowed to price photos of the black hole and the likes out of the market? Why is it able to exploit loopholes?," Du Yu, a Beijing-based freelance technology journalist, said to TechCrunch. China's the cyberspace watchdog of Tianjin ordered the photo site to end its illegal, rule-breaking practices. "We have taken down all non-compliant photos and closed down the site voluntarily for a revamp in accordance with related laws," said VCG. Shares of VCG, whose executives are mainly American and Canadian citizens and filed 16 copyright lawsuits per day on average (in Chinese, Google translate), plummeted 10 percent Friday morning in Shanghai Stock Exchange.

Tesla and Panasonic are reportedly freezing their plans to add more battery production lines at Gigafactory 1, its massive factory outside of Reno, Nevada that is a cornerstone to the automaker's business. "The partners had planned to increase capacity by 50 percent next year, but financial problems have forced a rethink," reports TechCrunch, citing a report from Nikkei. "Nikkei also reported that Panasonic was suspending a planned investment in Tesla's automotive battery and EV plant in Shanghai." From the report: TechCrunch confirmed that Tesla is not adding more battery production lines and will instead focus its efforts on existing equipment. Tesla stressed that it will continue to make new investments as needed into the plant. However, the automaker noted that attention and investments might be focused on improving existing equipment to increase battery cell output.

As of November, Panasonic had 11 production lines operating at Gigafactory 1. Panasonic president President Kazuhiro Tsuga told Bloomberg that the company planned to add two more lines by the end of the year to bring total capacity up to 35 gigawatt-hours. The last number shared by Tesla is from July when the company reported an annualized run rate of 20 gigawatt-hours of capacity. It's not clear if those two production lines were added. "We will of course continue to make new investments in Gigafactory 1, as needed. However, we think there is far more output to be gained from improving existing production equipment than was previously estimated," a Tesla spokesperson wrote in an emailed statement.

The Pentagon this week announced two finalists in the $10 billion, decade-long JEDI cloud contract process -- and Oracle was not one of them. From a report: In spite of lawsuits, official protests and even back-channel complaining to the president, the two finalists are Microsoft and Amazon. "After evaluating all of the proposals received, the Department of Defense has made a competitive range determination for the Joint Enterprise Defense Infrastructure Cloud request for proposals, in accordance with all applicable laws and regulations. The two companies within the competitive range will participate further in the procurement process," Elissa Smith, DoD spokesperson for Public Affairs Operations told TechCrunch. She added that those two finalists were in fact Microsoft and Amazon Web Services (AWS, the cloud computing arm of Amazon).

Udacity, the $1 billion online education startup, has laid off about 20 percent of its workforce and is restructuring its operations as the company's co-founder Sebastian Thrun seeks to bring costs in line with revenue without curbing growth, TechCrunch has learned. From the report: The objective is to do more than simply keep the company afloat, Thrun told TechCrunch in a phone interview. Instead, Thrun says these measures will allow Udacity from a money-losing operation to a "break-even or profitable company by next quarter and then moving forward." The 75 employees, including a handful of people in leadership positions, were laid off earlier today as part of a broader plan to restructure operations at Udacity. The startup now employs 300 full-time equivalent employees. It also employs about 60 contractors.

Udacity, which specializes in "nanodegrees" on a range of technical subjects that include AI, deep learning, digital marketing, VR and computer vision, has been struggling for months now, due in part to runaway costs and other inefficiencies. The company grew in 2017, with revenue increasing 100 percent year-over-year thanks to some popular programs like its self-driving car and deep learning nanodegrees, and the culmination of a previous turnaround plan architected by former CMO Shernaz Daver. New programming was added in 2018, but the volume slowed. Those degrees that were added lacked the popularity of some of its other degrees. Meanwhile, costs expanded and their employee ranks swelled.

An anonymous reader quotes a report from TechCrunch: In the past, Roku seemed to be more of a neutral platform compared with streaming media player rivals like Amazon Fire TV or Apple TV. The company gave everyone else's content equal footing through its add-on channels and in Roku search, as it had nothing of its own to promote. That's changing with the rollout of Roku OS 9.1, beginning today. The update adds a feature that automatically plays back The Roku Channel's movies and TV shows at times; another that better showcases the channel's free content in genre-focused searches; and one that introduces a new navigation menu with offers for other Roku products.

These features arrive alongside other changes, like a new guest mode and easier sign-in to subscriptions. Among the more innocuous changes are the new guest mode and automatic account linking. Roku in January first announced an "auto sign out mode," which allowed guests to sign into subscription channels using their own accounts instead of the Roku owner's credentials. And guests could specify when their credentials would expire on that device -- a useful feature in particular for Airbnb operators. Today, "auto sign out mode" is being rebranded as "guest mode," and can now be enabled or disabled on select devices. It also now allows Roku owners to sign out the guests themselves. With Automatic Account Link, Roku users won't have to re-enter their credentials when activating a new Roku player or Roku TV -- the subscription data will simply copy over from their existing account. Roku will also be promoting its own content and products to users. For example, when users search for "comedy" or "action," the content is displayed in a layout similar to Netflix with large image thumbnails and rows you scroll through horizontally. TechCrunch notes that while Netflix "lets you drill down into genres, Roku instead is organizing search results by whether the content is free, subscription, on-demand or 4K."

The second row of content points users to Roku's "free" ad-supported content. You can view the release notes for Roku OS 9.1 here.

The European Commission has launched a pilot project intended to test draft ethical rules for developing and applying AI technologies to ensure they can be implemented in practice. It's also aiming to garner feedback and encourage international consensus building for what it dubs "human-centric AI" -- targeting among other talking shops the forthcoming G7 and G20 meetings for increasing discussion on the topic. From a report: The Commission's High Level Group on AI -- a body comprised of 52 experts from across industry, academia and civic society announced last summer -- published their draft ethics guidelines for trustworthy AI in December. A revised version of the document was submitted to the Commission in March. It's boiled the expert consultancy down to a set of seven "key requirements" for trustworthy AI, i.e. in addition to machine learning technologies needing to respect existing laws and regulations -- namely:

Human agency and oversight: "AI systems should enable equitable societies by supporting human agency and fundamental rights, and not decrease, limit or misguide human autonomy."
Robustness and safety: "Trustworthy AI requires algorithms to be secure, reliable and robust enough to deal with errors or inconsistencies during all life cycle phases of AI systems."
Privacy and data governance: "Citizens should have full control over their own data, while data concerning them will not be used to harm or discriminate against them."
Transparency: "The traceability of AI systems should be ensured."
Diversity, non-discrimination and fairness: "AI systems should consider the whole range of human abilities, skills and requirements, and ensure accessibility."
Societal and environmental well-being: "AI systems should be used to enhance positive social change and enhance sustainability and ecological responsibility."
Accountability: "Mechanisms should be put in place to ensure responsibility and accountability for AI systems and their outcomes."

"Snapchat pioneered Stories, the popular feature where users create and share ephemeral posts that disappear within 24 hours," reports Business Insider. "And now, it's taking them everywhere." Users are now able to share their Stories on third-party partner apps like Tinder -- and Snap is also sharing its Bitmoji's with Venmo and Fitbit.

TechCrunch reports: For 2.5 years, Snapchat foolishly tried to take the high road versus Facebook, with Evan Spiegel claiming "Our values are hard to copy". That inaction allowed Zuckerberg to accrue over 1 billion daily Stories users across Instagram, WhatsApp, and Facebook compared to Snapchat's 186 million total daily users. Meanwhile, the whole tech industry scrambled to build knock-offs of Snap's vision of an ephemeral, visual future.

But Snapchat's new strategy is a rallying call for the rest of the social web that's scared of being squashed beneath Facebook's boot. It rearranges the adage of "if you can't beat them, join them" into "to beat them, join us". As a unified front, Snap's partners get the infrastructure they need to focus on what differentiates them, while Snapchat gains the reach and entrenchment necessary to weather the war. Snapchat's plan is to let other apps embed the best parts of it rather than building their own half-rate copies. Why reinvent the wheel of Stories, Bitmoji, and ads when you can reuse the original?

A high-ranking Snap executive told me on background that this is indeed the strategy. If it's going to invent these products, and others want something similar, it's smarter to enable and partly control the Snapchatification than to try to ignore it. Otherwise, Facebook might be the one to platform-tize what Snap inspired everyone to want.
The article concludes that Snap "needs all the help it can get if the underdog is going to carve out a substantial and sustainable piece of social networking."

Today, to celebrate its fifteenth birthday, the Gmail team announced a couple of a new and useful Gmail features, including improvements to Smart Compose and the ability to schedule emails to be sent in the future. From a report: Smart Compose, which tries to autocomplete your emails as you type them, will now be able to adapt to the way you write the greetings in your emails. If you prefer 'Hey' over 'Hi,' then Smart Compose will learn that. If you often fret over which subject to use for your emails, then there's some relief here for you, too, because Smart Compose can now suggest a subject line based on the content of your email. With this update, Smart Compose is now also available on all Android devices.

An anonymous reader quotes a report from TechCrunch: Moolah Mobile is teaming up with SurgePhone Wireless to offer people a new way to pay their cell phone bills -- by putting ads on their homescreens. Moolah CEO Vernell Woods (pictured above) said the startup has already been offering gift cards and other rewards to users who view its homescreen ads. So this is a similar model, except instead of earning gift cards, the ads are subsidizing cell phone service from Surge. The ads show up on users' homescreens during interstitial moments between using apps, so the goal is to offer free service without consumers having to change their behavior. Woods said all that ad time adds up, with "the average person who's using their phone on a consistent basis" viewing "easily between two to three hours" of homescreen ads each day. And that's enough to pay for the "equivalent" of Surge's $10 monthly plan. On the other hand, if for some reason a subscriber isn't hitting the necessary total, Woods said they can also earn more points by accepting offers or taking surveys. The subsidized wireless service will roll out in Florida, Virginia, Georgia and Texas initially, with an aim of reaching 40,000 locations by the end of the year.

An anonymous reader quotes a report from TechCrunch: Four senior senators have called on the largest U.S. voting machine makers to explain why they continue to sell devices with "known vulnerabilities," ahead of upcoming critical elections. The letter, sent Wednesday, calls on election equipment makers ES&S, Dominion Voting and Hart InterCivic to explain why they continue to sell decades-old machines, which the senators say contain security flaws that could undermine the results of elections if exploited. "The integrity of our elections is directly tied to the machines we vote on," said the letter sent by Sens. Amy Klobuchar (D-MN), Mark Warner (D-VA), Jack Reed (D-RI) and Gary Peters (D-MI), the most senior Democrats on the Rules, Intelligence, Armed Services and Homeland Security committees, respectively. "Despite shouldering such a massive responsibility, there has been a lack of meaningful innovation in the election vendor industry and our democracy is paying the price," the letter adds.

Their primary concern is that the three companies have more than 90 percent of the U.S. election equipment market share but their voting machines lack paper ballots or auditability, making it impossible to know if a vote was accurately counted in the event of a bug. Yet, these are the same devices tens of millions of voters will use in the upcoming 2020 presidential election. ES&S spokesperson Katina Granger said it will respond to the letter it received. The ranking Democrats say paper ballots are "basic necessities" for a reliable voting system, but the companies still produce machines that don't produce paper results.

An anonymous reader quotes a report from TechCrunch: The Federal Trade Commission, in what could be considered a prelude to new regulatory action, has issued an order to several major internet service providers requiring them to share every detail of their data collection practices. The information could expose patterns of abuse or otherwise troubling data use against which the FTC -- or states -- may want to take action. The letters requesting info went to Comcast, Google, T-Mobile, and both the fixed and wireless sub-companies of Verizon and AT&T. These "represent a range of large and small ISPs, as well as fixed and mobile Internet providers," an FTC spokesperson said. I'm not sure which is mean to be the small one, but welcome any information the agency can extract from any of them.

To be clear, the FTC already has consumer protection rules in place and could already go after an internet provider if it were found to be abusing the privacy of its users -- you know, selling their location to anyone who asks or the like. (Still no action there, by the way.) But the evolving media and telecom landscape, in which we see enormous companies devouring one another to best provide as many complementary services as possible, requires constant reevaluation. As the agency writes in a press release: "The FTC is initiating this study to better understand Internet service providers' privacy practices in light of the evolution of telecommunications companies into vertically integrated platforms that also provide advertising-supported content." The report provides this example as to the kind of situation the FTC is concerned about: "If Verizon wants to offer not just the connection you get on your phone, but the media you request, the ads you are served, and the tracking you never heard of, it needs to show that these businesses are not somehow shirking rules behind the scenes."

"For instance, if Verizon Wireless says it doesn't collect or share information about what sites you visit, but the mysterious VZ Snooping Co (fictitious, I should add) scoops all that up and then sells it for peanuts to its sister company, that could amount to a deceptive practice," TechCrunch adds. "Of course it's rarely that simple (though don't rule it out), but the only way to be sure is to comprehensively question everyone involved and carefully compare the answers with real-world practices."

Google today officially launched AMP for Email, its effort to turn emails from static documents into dynamic, web page-like experiences. From a report: AMP for Email is coming to Gmail, but other major email providers like Yahoo Mail, Outlook and Mail.ru will also support AMP emails. It's been more than a year since Google first announced this initiative. Even by Google standards, that's a long incubation phase, though there's also plenty of backend work necessary to make this feature work.

The promise of AMP for Email is that it'll turn basic messages into a surface for actually getting things done. "Over the past decade, our web experiences have changed enormously -- evolving from static flat content to interactive apps -- yet email has largely stayed the same with static messages that eventually go out of date or are merely a springboard to accomplishing a more complex task," Gmail product manager Aakash Sahney writes. "If you want to take action, you usually have to click on a link, open a new tab, and visit another website." With AMP for Email, those messages become interactive. That means you'll be able to RSVP to an event right from the message, fill out a questionnaire, browse through a store's inventory or respond to a comment -- all without leaving your web-based email client.

Researchers behind a large-scale independent study of pre-installed Android apps "unearthed a complex ecosystem of players with a primary focus on advertising and 'data-driven services' -- which they argue the average Android user is likely to be unaware of (while also likely lacking the ability to uninstall/evade the baked in software's privileged access to data and resources themselves)," reports TechCrunch. From the report: The study, which was carried out by researchers at the Universidad Carlos III de Madrid (UC3M) and the IMDEA Networks Institute, in collaboration with the International Computer Science Institute (ICSI) at Berkeley (USA) and Stony Brook University of New York (US), encompassed more than 82,000 pre-installed Android apps across more than 1,700 devices manufactured by 214 brands, according to the IMDEA institute. "The study shows, on the one hand, that the permission model on the Android operating system and its apps allow a large number of actors to track and obtain personal user information," it writes. "At the same time, it reveals that the end user is not aware of these actors in the Android terminals or of the implications that this practice could have on their privacy. Furthermore, the presence of this privileged software in the system makes it difficult to eliminate it if one is not an expert user."

In all 1,200 developers were identified behind the pre-installed software they found in the data-set they examined, as well as more than 11,000 third party libraries (SDKs). Many of the preloaded apps were found to display what the researchers dub potentially dangerous or undesired behavior. The data-set underpinning their analysis was collected via crowd-sourcing methods -- using a purpose-built app (called Firmware Scanner), and pulling data from the Lumen Privacy Monitor app. The latter provided the researchers with visibility on mobile traffic flow -- via anonymized network flow metadata obtained from its users. They also crawled the Google Play Store to compare their findings on pre-installed apps with publicly available apps -- and found that just 9% of the package names in their dataset were publicly indexed on Play. Another concerning finding relates to permissions. In addition to standard permissions defined in Android (i.e. which can be controlled by the user) the researchers say they identified more than 4,845 owner or "personalized" permissions by different actors in the manufacture and distribution of devices. So that means they found systematic user permissions workarounds being enabled by scores of commercial deals cut in a non-transparency data-driven background Android software ecosystem. The researchers address the lack of transparency and accountability in the Android ecosystem by suggesting the introduction and use of certificates signed by globally-trusted certificate authorities, or a certificate transparency repository "dedicated to providing details and attribution for certificates used to sign various Android apps, including pre-installed apps, even if self-signed." They also suggest Android devices should be required to document all pre-installed apps, plus their purpose, and name the entity responsible for each piece of software -- and do so in a manner that is "accessible and understandable to users."

Instant messaging service Telegram has added a feature that lets a user delete messages in one-to-one and/or group private chats, after the fact, and not only from their own inbox. From a report: The new 'nuclear option' delete feature allows a user to selectively delete their own messages and/or messages sent by any/all others in the chat. They don't even have to have composed the original message or begun the thread to do so. They can just decide it's time. Let that sink in. All it now takes is a few taps to wipe all trace of a historical communication -- from both your own inbox and the inbox(es) of whoever else you were chatting with (assuming they're running the latest version of Telegram's app).

"Machines will need to make ethical decisions, and we will be responsible for those decisions," argues Mike Loukides, O'Reilly Media's vice president of content strategy: We are surrounded by systems that make ethical decisions: systems approving loans, trading stocks, forwarding news articles, recommending jail sentences, and much more. They act for us or against us, but almost always without our consent or even our knowledge. In recent articles, I've suggested the ethics of artificial intelligence itself needs to be automated. But my suggestion ignores the reality that ethics has already been automated... The sheer number of decisions that need to be made means that we can't expect humans to make those decisions. Every time data moves from one site to another, from one context to another, from one intent to another, there is an action that requires some kind of ethical decision...

Ethical problems arise when a company's interest in profit comes before the interests of the users. We see this all the time: in recommendations designed to maximize ad revenue via "engagement"; in recommendations that steer customers to Amazon's own products, rather than other products on their platform. The customer's interest must always come before the company's. That applies to recommendations in a news feed or on a shopping site, but also how the customer's data is used and where it's shipped. Facebook believes deeply that "bringing the world closer together" is a social good but, as Mary Gray said on Twitter, when we say that something is a "social good," we need to ask: "good for whom?" Good for advertisers? Stockholders? Or for the people who are being brought together? The answers aren't all the same, and depend deeply on who's connected and how....

It's time to start building the systems that will truly assist us to manage our data.
The article argues that spam filters provide a surprisingly good set of first design principles. They work in the background without interfering with users, but always allow users to revoke their decisions, and proactively seek out user input in ambiguous or unclear situations.

But in the real world beyond our inboxes, "machines are already making ethical decisions, and often doing so badly. Spam detection is the exception, not the rule."

The subscription plan that made MoviePass explode in popularity is coming back. If you're willing to pay for a full year (via ACH payment), "MoviePass Uncapped" will cost the same as the original unlimited plan, namely $9.95 per month, and will allow you to get an unlimited number of 2D movie tickets. TechCrunch reports: Now, you may be thinking that this kind of deal is exactly what got MoviePass into so much trouble last year, to the point where it nearly ran out of money and began announcing new pricing plans and restrictions on a seemingly constant basis. However, the company's announcement today includes multiple references to its ability to "combat violations" of MoviePass' terms of use. And those terms do say that "MoviePass has the right to limit the selection of movies and/or the times of available movies should your individual use adversely impact MoviePass's system-wide capacity or the availability of the Service for other subscribers."

So if you're a heavy MoviePass user, the plan may not be truly unlimited. In addition, you'll only be able to reserve tickets three hours before showtime, and you'll need to check in to the theater between 10 and 30 minutes before the movie starts. Worth noting: the $9.95 per month rate is available only if you pay for a full year, otherwise it will cost $14.95 for a limited time. The regular price will be $19.95 per month.

To prevent its own Cambridge Analytica moment and make sure it's getting paid for its data, Twitter said today it will audit developers that use its APIs. From a report: Starting June 19th, Twitter will require developers of any app that calls recent tweets from or mentions a user more than 100,000 times per day to submit their app for review. If a developer proves they have a legitimate consumer use case, like running a third-party Twitter client or doing research, they'll be granted free access to the API at the same rate they have today. If they primarily use the data to serve business customers as a B2B tool, like for customer service or social media monitoring, they'll have to pay to enter a commercial licensing agreement with Twitter with a custom price based on usage. Twitter refused to even specify the range those prices fall into, which won't win it any extra trust.

Developers found to be breaking Twitter's policies will be booted from the platform, while those that don't submit for review will be capped at 100,000 requests per day for the user timeline and mentions APIs. Twitter says it suspended 162,000 apps in the second half of 2018, showing it's willing to play hardball with developers that endanger its ecosystem.

Business communications and collaboration service Slack said today that it is launching Enterprise Key Management (EKM) for Slack, a new tool that enables customers to control their encryption keys in the enterprise version of the communications app. The keys are managed in the AWS KMS key management tool. From a report: Geoff Belknap, chief security officer (CSO) at Slack, says that the new tool should appeal to customers in regulated industries, who might need tighter control over security. "Markets like financial services, health care and government are typically underserved in terms of which collaboration tools they can use, so we wanted to design an experience that catered to their particular security needs," Belknap told TechCrunch. Slack currently encrypts data in transit and at rest, but the new tool augments this by giving customers greater control over the encryption keys that Slack uses to encrypt messages and files being shared inside the app.

He said that regulated industries in particular have been requesting the ability to control their own encryption keys including the ability to revoke them if it was required for security reasons. "EKM is a key requirement for growing enterprise companies of all sizes, and was a requested feature from many of our Enterprise Grid customers. We wanted to give these customers full control over their encryption keys, and when or if they want to revoke them," he said. Further reading: Slack Doesn't Have End-to-End Encryption Because Your Boss Doesn't Want It.

Munky101 tipped us off to some interesting comments from New York's activist congresswoman Alexandria Ocasio-Cortez. TechCrunch reports: It's impossible to discuss the seismic shift toward automation without a conversation about job loss. Opponents of these technologies criticize a displacement that could someday result in wide-scale unemployment among what is often considered "unskilled" roles. Advocates, meanwhile, tend to suggest that reports of that nature tend to be overstated. Workforces shift, as they have done for time immemorial. During a conversation at SXSW this week, New York congresswoman Alexandria Ocasio-Cortez offered another take entirely.

"We should not be haunted by the specter of being automated out of work," she said in an answer reported by The Verge. "We should be excited by that. But the reason we're not excited by it is because we live in a society where if you don't have a job, you are left to die. And that is, at its core, our problem... We should be excited about automation, because what it could potentially mean is more time educating ourselves, more time creating art, more time investing in and investigating the sciences, more time focused on invention, more time going to space, more time enjoying the world that we live in," The Verge quoted Ocasio-Cortez as saying. "Because not all creativity needs to be bonded by wage."

And Ocasio-Cortez cited Bill Gates' suggestion (first floated in a presentation on Quartz) that a robot tax might be a way to make that vision real. "What [Gates is] really talking about is taxing corporations," she reportedly said. "But it's easier to say: 'tax a robot.' "
Science fiction writer William Gibson called her comments "shockingly intelligent" for a politician. Fast Company adds that robots "have put half a million people out of work in the United States, and researchers estimate that bots could take 800 million jobs by 2030" -- then quotes Ocasio-Cortez's assessment of the unfair state of labor today.

"We should be working the least amount we've ever worked, if we were actually paid based on how much wealth we were producing, but we're not," she said. "We're paid by how little we're desperate enough to accept. And then the rest is skimmed off and given to a billionaire."

An anonymous reader shares a report: In an update to the chromium engine, which underpins Google's popular Chrome browser, the search giant has quietly updated the lists of default search engines it offers per market -- expanding the choice of search product users can pick from in markets around the world. Most notably it's expanded search engine lists to include pro-privacy rivals in more than 60 markets globally. The changes, which appear to have been pushed out with the Chromium 73 stable release yesterday, come at a time when Google is facing rising privacy and antitrust scrutiny and accusations of market distorting behavior at home and abroad.

Google's latest speech recognition works entirely offline, eliminating the delay that many other voice assistants have to return your query. "The delay occurs because your voice, or some data derived from it anyway, has to travel from your phone to the servers of whoever operates the service, where it is analyzed and sent back a short time later," reports TechCrunch. "This can take anywhere from a handful of milliseconds to multiple entire seconds (what a nightmare!), or longer if your packets get lost in the ether." The only major downside with Google's new system is its limited availability. As of right now, it's only available to people with a Pixel smartphone. From the report: Why not just do the voice recognition on the device? There's nothing these companies would like more, but turning voice into text on the order of milliseconds takes quite a bit of computing power. It's not just about hearing a sound and writing a word -- understanding what someone is saying word by word involves a whole lot of context about language and intention. Your phone could do it, for sure, but it wouldn't be much faster than sending it off to the cloud, and it would eat up your battery. But steady advancements in the field have made it plausible to do so, and Google's latest product makes it available to anyone with a Pixel.

Google's work on the topic, documented in a paper here, built on previous advances to create a model small and efficient enough to fit on a phone (it's 80 megabytes, if you're curious), but capable of hearing and transcribing speech as you say it. No need to wait until you've finished a sentence to think whether you meant "their" or "there" -- it figures it out on the fly. So what's the catch? Well, it only works in Gboard, Google's keyboard app, and it only works on Pixels, and it only works in American English. So in a way this is just kind of a stress test for the real thing. "Given the trends in the industry, with the convergence of specialized hardware and algorithmic improvements, we are hopeful that the techniques presented here can soon be adopted in more languages and across broader domains of application," writes Google in their blog post.

An anonymous reader quotes a report from TechCrunch: Russia has told internet providers to enforce a block against encrypted email provider ProtonMail, the company's chief has confirmed. The block was ordered by the state Federal Security Service, formerly the KGB, according to a Russian-language blog, which obtained and published the order after the agency accused the company and several other email providers of facilitating bomb threats. Several anonymous bomb threats were sent by email to police in late January, forcing several schools and government buildings to evacuate.

In all, 26 internet addresses were blocked by the order, including several servers used to scramble the final connection for users of Tor, an anonymity network popular for circumventing censorship. Internet providers were told to implement the block "immediately," using a technique known as BGP blackholing, a way that tells internet routers to simply throw away internet traffic rather than routing it to its destination. But the company says while the site still loads, users cannot send or receive email. The way the KGB blocked ProtonMail is "particularly sneaky," ProtonMail chief executive Andy Yen said. "ProtonMail is not blocked in the normal way, it's actually a bit more subtle. They are blocking access to ProtonMail mail servers. So Mail.ru -- and most other Russian mail servers -- for example, is no longer able to deliver email to ProtonMail, but a Russian user has no problem getting to their inbox."

"That's because the two ProtonMail servers listed by the order are its back-end mail delivery servers, rather than the front-end website that runs on a different system," adds TechCrunch.

An anonymous reader quotes TechCrunch: As she sat in the airport with a one-way ticket in her hand, Tiffany Filler wondered how she would pick up the pieces of her life, with tens of thousands of dollars in student debt and nothing to show for it. A day earlier, she was expelled from Tufts University veterinary school. As a Canadian, her visa was no longer valid and she was told by the school to leave the U.S. 'as soon as possible.' That night, her plane departed the U.S. for her native Toronto, leaving any prospect of her becoming a veterinarian behind. Filler, 24, was accused of an elaborate months-long scheme involving stealing and using university logins to break into the student records system, view answers, and alter her own and other students' grades.

The case Tufts presented seems compelling, if not entirely believable.

There's just one problem: In almost every instance that the school accused Filler of hacking, she was elsewhere with proof of her whereabouts or an eyewitness account and without the laptop she's accused of using. She has alibis: fellow students who testified to her whereabouts; photos with metadata putting her miles away at the time of the alleged hacks; and a sleep tracker that showed she was asleep during others. Tufts is either right or it expelled an innocent student on shoddy evidence four months before she was set to graduate.

Facebook is rolling out a new "Tributes" section for memorialized accounts that will allow people to leave messages that are separate from the rest of the profile's timeline. "Depending on a memorialized account's privacy settings, friends can currently still post on its timeline, including in the comments of posts the person made before they died," reports TechCrunch. "If a memorialized account has a Tributes section, however, posts made after the day it was memorialized (which prevents anyone else from logging in) will be placed there." From the report: Some Facebook users who have designated "legacy contacts" to manage their accounts after they die were alerted to the new feature by a notification today that contained the euphemistic phrase "if your account is memorialized." A page on Facebook's Help Center describes the new tributes section "as a space on memorialized profiles where friends and family can post stories, commemorate a birthday, share memories and more."

"Legacy contacts" will have more leeway over tribute posts than they do over the rest of the account. For example, they have the ability to decide who can see and post tributes and can delete posts. They can also change who can see posts the deceased person is tagged in or remove the tag. If the account had timeline review turned on, the legacy contact will be able to turn it off for tribute posts. Posts made to a profile after it is memorialized will be separated into the tributes section. The feature's help page says "we do our best to separate tribute posts from timeline posts based on the info we're given." Legacy contacts still can't log into accounts, read private messages or remove and add friends.

An anonymous reader shares a report: The story we're used to hearing is that women get paid less than men. In Google's case, according to its own internal pay audit, it turned out male-identified Level 4 Software Engineers received less money than women in that same role. That led to Google paying $9.7 million to adjust pay for 10,677 employees. It's not clear how many of the employees who received pay adjustments were men but Google does cite the underpaying of men as a reason for why the company paid more in adjustments for 2018 than in 2017. But The New York Times reports men received a disproportionately higher percentage of the money.

For 22 years technology writer Robert X. Cringely has been making predictions for the year to come -- but this year may be his last. So at age 66, he's promising his 2019 predictions will also "take a look out several years...because I sense the tech industry about to enter an unprecedented correction."

And last week he unveiled his first prediction -- that Apple under Tim Cook "emulates GE under Jack Welch.... Jack Welch took GE into financial services in 1981, transforming the company and increasing its market cap by 4000 percent over his 20 years. "

Tim Cook has already started in 2019 along the same path forged by GE's Jack Welch back in 1981. This strategic shift started to show just this week with Apple directly financing iPhone sales in China and announcing an Apple credit card with Goldman Sachs... Look for Apple to start financing lots of things in 2019. Remember your car dealer would rather lend you money than have you pay cash for that ride because financing is its own profit center. So iPhone prices will continue to rise, but iPhone payments will probably decline as Apple cuts out middle men and efficiently sucks-up that aspect of the phone supply chain. This is how Apple will arrest iPhone market share declines -- by assisting sales and making even more money in the process.

I expect Apple to not just make strategic investments, but participate in strategic financing as well.... What Apple is probably closest to becoming is a hedge fund -- a very big hedge fund in fact. Apple's available financial power is approximately equal to that of the world's two largest hedge funds -- Bridgewater Associates and AQM Capital Management -- combined. So when someone tells you Apple is in decline or doesn't have a clue, they are wrong. Apple will continue to compete in its established technology markets as well as new ones. But Apple has also found a $200 billion hobby that will keep it growing for the next decade no matter where the Information Technology market goes.
Cringely notes that services "are more profitable than hardware." But Cringley has always been gracious about entertaining other opinions. In 2000 he answered questions from Slashdot readers, and last week he reminded his readers again that as technology completes its next great transitions, "I'd really like to hear your thoughts, too."

As dramatic changes (including AI) kick off what may be a new 50-year-cycle, "Everything is changing and nothing -- nothing -- will ever be the same again. I hope that's a good thing."

Josh Constine, writing for TechCrunch: Facebook has changed its story after initially trying to downplay how it targeted teens with its Research program that a TechCrunch investigation revealed was paying them gift cards to monitor all their mobile app usage and browser traffic. "Less than 5 percent of the people who chose to participate in this market research program were teens," a Facebook spokesperson told TechCrunch and many other news outlets in a damage control effort 7 hours after we published our report on January 29th. At the time, Facebook claimed that it had removed its Research app from iOS. The next morning we learned that wasn't true, as Apple had already forcibly blocked the Facebook Research app for violating its Enterprise Certificate program that supposed to reserved for companies distributing internal apps to employees.

It turns out that wasn't the only time Facebook deceived the public in its response regarding the Research VPN scandal. TechCrunch has obtained Facebook's unpublished February 21st response to questions about the Research program in a letter from Senator Mark Warner. [...] In the response from Facebook's VP of US public policy Kevin Martin, the company admits that "At the time we ended the Facebook Research App on Apple's iOS platform, less than 5 percent of the people sharing data with us through this program were teens. Analysis shows that number is about 18 percent when you look at the complete lifetime of the program, and also add people who had become inactive and uninstalled the app."

Josh Constine, writing for TechCrunch: Facebook has changed its story after initially trying to downplay how it targeted teens with its Research program that a TechCrunch investigation revealed was paying them gift cards to monitor all their mobile app usage and browser traffic. "Less than 5 percent of the people who chose to participate in this market research program were teens," a Facebook spokesperson told TechCrunch and many other news outlets in a damage control effort 7 hours after we published our report on January 29th. At the time, Facebook claimed that it had removed its Research app from iOS. The next morning we learned that wasn't true, as Apple had already forcibly blocked the Facebook Research app for violating its Enterprise Certificate program that supposed to reserved for companies distributing internal apps to employees.

It turns out that wasn't the only time Facebook deceived the public in its response regarding the Research VPN scandal. TechCrunch has obtained Facebook's unpublished February 21st response to questions about the Research program in a letter from Senator Mark Warner. [...] In the response from Facebook's VP of US public policy Kevin Martin, the company admits that "At the time we ended the Facebook Research App on Apple's iOS platform, less than 5 percent of the people sharing data with us through this program were teens. Analysis shows that number is about 18 percent when you look at the complete lifetime of the program, and also add people who had become inactive and uninstalled the app."

An anonymous reader quotes a report from TechCrunch: Twitter today confirmed it's developing a new "Hide Tweet" feature, which it says will give users another option to protect their conversations. The option, spotted in Twitter's code, is available from a list of moderation choices that appear when you click the "Share" button on a tweet -- a button whose icon has also been given a refresh, it seems. Like it sounds, "Hide Tweet" functions as an alternative to muting or blocking a user, while still offering some control over a conversation. Related to this, an option to "View Hidden Tweets" was also found to be in the works. This allows a user to unhide those tweets that were previously hidden by the original poster.

Immediately, there were concerns that an option like this would allow users to silence their critics -- not just for themselves, as is possible today with muting and blocking -- but for anyone reading through a stream of Twitter Replies. Imagine, for example, if a controversial politician began to hide tweets they didn't like or those that contradicted an outrageous claim with a fact check, people said. It also requires the user to click to view the Replies that were hidden, which some users may not know to do and others may not bother to do. They may then miss out on an important point in the conversation, or a critical fact check. On the flip side, putting the original poster back in control of which Replies are visible may allow people to feel more comfortable with sharing on Twitter, which could impact user growth -- a number Twitter struggles with today. And it could encourage people to debate things with less vitriol, knowing that their nastier tweets could get hidden view. The "Hide Tweet" feature was first discovered by Jane Manchun Wong.

An anonymous reader quotes a report from TechCrunch: As many as 1 in 5 people today are mooching off of someone else's account when streaming video from Netflix, Hulu or Amazon Video, according to a new study from CordCutting.com. Of these, Netflix tends to be pirated for the longest period -- 26 months, compared with 16 months for Amazon Prime Video or 11 months for Hulu. That could be because Netflix freeloaders often mooch off their family instead of a friend -- 48 percent use their parents' login, while another 14 percent use their sister or brother's credentials, the firm found. At a base price of $7.99 per month (the study was performed before Netflix's January 2019 price increase), freeloading users could save $207.74 over a 26-month period. At scale, these losses can add up, the study claims.

The report estimates Netflix could be losing $192 million in monthly revenue from piracy -- more than either Amazon or Hulu, at $45 million per month and $40 million per month, respectively. Millennials, not surprisingly, account for much of the freeloading. They're the largest demographic pirating Netflix (18 percent) and Hulu's service (20 percent). But oddly, it was Baby Boomers who were more likely to borrow someone else's account to access Amazon Prime Video. According to the study, 59.3 percent said they would pay for Netflix (or around 14 million people), contributing at least $112 million in monthly revenue, if they lost access. And 37.8 percent, or 2 million, said they'd pay for Hulu; 27.6 percent, or 1 million people, said they'd pay for Prime Video.

An anonymous reader quotes a report from TechCrunch: When the government comes for your data, tech companies can't always tell you. But thanks to a legal loophole, companies can say if they haven't had a visit yet. These so-called "warrant canaries" -- named for the poor canary down the mine that dies when there's gas that humans can't detect -- are a key transparency tool that predominantly privacy-focused companies use to keep their customers aware of the goings-on behind the scenes. Where companies have abandoned their canaries or caved to legal pressure, Cloudflare is bucking the trend. The networking and content delivery network giant said in a blog post this week that it's expanding the transparency reports to include more canaries.

To date, the company: has never turned over their SSL keys or customers' SSL keys to anyone; has never installed any law enforcement software or equipment anywhere on their network; has never terminated a customer or taken down content due to political pressure; and has never provided any law enforcement organization a feed of customers' content transiting their network. Now Cloudflare's warrant canaries will include: Cloudflare has never modified customer content at the request of law enforcement or another third party; Cloudflare has never modified the intended destination of DNS responses at the request of law enforcement or another third party; and Cloudflare has never weakened, compromised, or subverted any of its encryption at the request of law enforcement or another third party. It has also expanded and replaced its first canary to confirm that the company "has never turned over our encryption or authentication keys or our customers' encryption or authentication keys to anyone." Cloudflare said that if it were ever asked to do any of the above, the company would "exhaust all legal remedies" to protect customer data, and remove the statements from its site. According to Cloudflare's latest transparency report out this week, the company responded to just seven subpoenas of the 19 requests, affecting 12 accounts and 309 domains. Cloudflare also responded to 44 court orders of the 55 requests, affecting 134 accounts and 19,265 domains. They received between 0-249 national security requests for the duration, but didn't process any wiretap or foreign government requests for the duration.

Facebook's Patreon-like Fan Subscriptions feature lets people pay a monthly fee for access to a creator's exclusive content. But, as TechCrunch reports, it greatly differs from Patreon in that the social network "plans to take up to a 30 percent cut of subscription revenue minus fees, compared to 5 percent by Patreon, 30 percent by YouTube which covers fees, and 50 percent by Twitch." "Facebook also reserves the right to offer free trials to subscriptions that won't compensate creators," TechCrunch reports. "And Facebook demands a 'non-exclusive, transferable, sub-licensable, royalty-free, worldwide license to use' creators' content and 'This license survives even if you stop using Fan Subscriptions.'" From the report: Distrust of Facebook could scare creators away from the platform when combined with its significant revenue share and ability to give away or repurpose creators' content. Facebook has consistently shown that it puts what it thinks users want and its own interests above those of partners. It cut off game developers from viral channels, inadequately warned Page owners their reach with drop over time, decimated referral traffic to news publishers, and most recently banished video makers from the feed. If Facebook wants to win creators' trust and the engagement of their biggest fans, it may need a more competitive offering with larger limits on its power.

Facebook began testing Fan Subscriptions a year to give creators a financial alternative to maximizing ad views after watching the rise of Patreon which now has 3 million patrons who'll pay 100,000 artists, comedians, models, and makers over $500 million this year. This month Facebook expanded the test to the UK, Spain, Germany, and Portugal to allow users to pay $4.99 per month to a creator for exclusive content, live videos, and a profile badge that highlights them as a subscriber. While Twitch owns gamers, YouTube rules amongst videographers, and Patreon is a favorite with odd-ball creators, Facebook may see an opportunity to popularize Fan Subscriptions internationally and turn mainstream consumers into paid supporters. The terms for Fan Subscriptions are not publicly available, and only visible on Facebook's site to Pages it's invited to test the feature. But TechCrunch has published the full policy document [in their report].

An anonymous reader quotes a report from TechCrunch: A group of academics have found three new security flaws in 4G and 5G, which they say can be used to intercept phone calls and track the locations of cell phone users. The findings are said to be the first time vulnerabilities have affected both 4G and the incoming 5G standard, which promises faster speeds and better security, particularly against law enforcement use of cell site simulators, known as "stingrays." But the researchers say that their new attacks can defeat newer protections that were believed to make it more difficult to snoop on phone users. [Rafiul Hussain, one of the co-authors of the paper, along with Ninghui Li and Elisa Bertino at Purdue University, and Mitziu Echeverria and Omar Chowdhury at the University of Iowa are set to reveal their findings at the Network and Distributed System Security Symposium in San Diego on Tuesday.

The paper, seen by TechCrunch prior to the talk, details the attacks: the first is Torpedo, which exploits a weakness in the paging protocol that carriers use to notify a phone before a call or text message comes through. The researchers found that several phone calls placed and cancelled in a short period can trigger a paging message without alerting the target device to an incoming call, which an attacker can use to track a victim's location. Knowing the victim's paging occasion also lets an attacker hijack the paging channel and inject or deny paging messages, by spoofing messages like Amber alerts or blocking messages altogether, the researchers say. Torpedo opens the door to two other attacks: Piercer, which the researchers say allows an attacker to determine an international mobile subscriber identity (IMSI) on the 4G network; and the aptly named IMSI-Cracking attack, which can brute force an IMSI number in both 4G and 5G networks, where IMSI numbers are encrypted. AT&T, Verizon, Sprint and T-Mobile are all affected by Torpedo, "and the attacks can be carried out with radio equipment costing as little as $200," the report adds. One U.S. network is reportedly vulnerable to the Piercer attack, but the researcher wouldn't name which one.

Sprint has shared some of its plans when it comes to 5G service in the U.S. The company announced at MWC in Barcelona that mobile customers in Atlanta, Chicago, Dallas and Kansas City can expect 5G service as soon as May 2019. From a report: If you don't live in one of those cities, maybe you live in Houston, Los Angeles, New York City, Phoenix or Washington D.C. Sprint also promises 5G coverage in those cities soon after the initial launch, at some point before the end of June 2019. Overall, Sprint expects to cover 1,000 square miles in nine cities by the end of the first half of 2019. It's going to take years to roll out 5G coverage across the U.S.

The internet's address book keeper has warned of an "ongoing and significant risk" to key parts of the domain name system infrastructure, following months of increased attacks. From a report: The Internet Corporation for Assigned Names and Numbers, or ICANN, issued the notice late Friday, saying DNS, which converts numerical internet addresses to domain names, has been the victim of "multifaceted attacks utilizing different methodologies." It follows similar warnings from security companies and the federal government in the wake of attacks believe to be orchestrated by nation state hackers.

[...] ICANN's chief technology officer David Conrad told the AFP news agency that the hackers are "going after the Internet infrastructure itself." The internet organization's solution is calling on domain owners to deploy DNSSEC, a more secure version of DNS that's more difficult to manipulate. DNSSEC cryptographically signs data to make it more difficult -- though not impossible -- to spoof.

LG's flagship G8 smartphone has been officially launched today, bringing many expected features that were teased over the past few months and several not-so-expected features. One such unusual feature in the G8 is its palm vein recognition, dubbed Hand ID, which LG claims is the first to offer this capability. TechCrunch reports: From the company's press materials, "LG's Hand ID identifies owners by recognizing the shape, thickness and other individual characteristics of the veins in the palms of their hands." It turns out, like faces and fingerprints, everyone's got a unique set of hand veins, so once registered, you can just however your hot blue blood tubes over the handset to quickly unlock in a few seconds. The Z camera also does depth-sensing face unlock that's a lot harder to spoof than the kind found on other Android handsets. LG's also put the tech to use for a set of Air Motion gestures, which allow for hands-free interaction with various apps like the camera (selfies) and music (volume control). Other features of the G8 include a 6.1-inch QHD+ "Crystal Sound OLED" display that uses the screen as an audio amplifier. There's a Snapdragon 855 processor with 6GB of RAM and 128GB internal storage, three cameras on the rear including a 16-megapixel Super Wide (F1.9), 12-megapixel Standard (F1.5), and 12-megapixel Telephoto (F2.4), a 3,500mAh battery that charges via USB-C, a headphone jack, and 32-bit Hi-Fi Quad DAC.

An anonymous reader quotes a report from TechCrunch: The world's fastest growing mobile company has long had a chip on its shoulder when it comes to Apple and Samsung. For too long, the company has had to go out of its way to remind the world that it's capable of being every bit as innovative as those better established brands, a concept very much at the heart of the Mate X. The device lives right at the cross section of the year's biggest forward looking trends -- foldables and 5G, and unlike some of the concepts we've seen to date, the product does so with panache.

The device is thin, as far as tablets go, at 5.4 mm, unfolded. Closed, it's nearly double that, at 11 mm. Not thin, exactly, but still a heck of a lot easier to slip into your pants pockets than the 17mm Galaxy Fold. More impressive is what the company's been able to do with its displays. The screen is very much the thing on these products, and yet the Fold's outside screen only measures 4.6 inches. The Mate X, meanwhile, sports a pair of outward-facing displays, the larger of which measures 6.6 inches at 2480 x 1148 pixels, with a 19:5 aspect ration. The flip side is 6.38 inches, allowing for space for the camera bar -- a chin that folds over to meet the display. The system features a Leica lens and the design is such that photo subjects can see themselves on the outward-facing display as a shot is taken. On the device's side is a combo fingerprint reader/power button. The phone uses a proprietary "Falcon Wing" hinge to unfold and turn into a full 8-inch tablet. The report does note that there is "a visible crease in the middle of the phone." Inside are a pair of batteries that add up to 4,500mAh of power, as well as a Kirin 980 processor.

In a separate article, TechCrunch says the Mate X is expected to retail for about $2,600, proving that there is certainly a pricing premium with foldables and 5G phones.

An anonymous reader quotes a report from TechCrunch: The world's fastest growing mobile company has long had a chip on its shoulder when it comes to Apple and Samsung. For too long, the company has had to go out of its way to remind the world that it's capable of being every bit as innovative as those better established brands, a concept very much at the heart of the Mate X. The device lives right at the cross section of the year's biggest forward looking trends -- foldables and 5G, and unlike some of the concepts we've seen to date, the product does so with panache.

The device is thin, as far as tablets go, at 5.4 mm, unfolded. Closed, it's nearly double that, at 11 mm. Not thin, exactly, but still a heck of a lot easier to slip into your pants pockets than the 17mm Galaxy Fold. More impressive is what the company's been able to do with its displays. The screen is very much the thing on these products, and yet the Fold's outside screen only measures 4.6 inches. The Mate X, meanwhile, sports a pair of outward-facing displays, the larger of which measures 6.6 inches at 2480 x 1148 pixels, with a 19:5 aspect ration. The flip side is 6.38 inches, allowing for space for the camera bar -- a chin that folds over to meet the display. The system features a Leica lens and the design is such that photo subjects can see themselves on the outward-facing display as a shot is taken. On the device's side is a combo fingerprint reader/power button. The phone uses a proprietary "Falcon Wing" hinge to unfold and turn into a full 8-inch tablet. The report does note that there is "a visible crease in the middle of the phone." Inside are a pair of batteries that add up to 4,500mAh of power, as well as a Kirin 980 processor.

In a separate article, TechCrunch says the Mate X is expected to retail for about $2,600, proving that there is certainly a pricing premium with foldables and 5G phones.

An anonymous reader quotes a report from Quartz: Riders in Switzerland and New Zealand have reported the front wheels of their electric scooters locking suddenly mid-ride, hurling riders to the ground. The malfunction has resulted in dozens of injuries ranging from bruises to broken jaws. Lime pulled all its scooters from Swiss streets in January when reports of the incidents surfaced there. When the city of Auckland, New Zealand voted to suspend the company earlier this week following 155 reported cases of sudden braking, the company acknowledged that a software glitch was causing the chaos. The company claims that fewer than 0.0045% of all rides worldwide have been affected, adding that "any injury is one too many." An initial fix reduced the number of incidents, it said, and a final update underway on all scooters will soon be complete. "Recently we detected a bug in the firmware of our scooter fleet that under rare circumstances could cause sudden excessive braking during use," Lime wrote in a blog post Saturday. "[I]n very rare cases -- usually riding downhill at top speed while hitting a pothole or other obstacle -- excessive brake force on the front wheel can occur, resulting in a scooter stopping unexpectedly."

An anonymous reader quotes a report from TechCrunch: Instagram is threatening to attack Pinterest just as it files to go public the same way the Facebook-owned app did to Snapchat. Code buried in Instagram for Android shows the company has prototyped an option to create public "Collections" to which multiple users can contribute. Instagram launched private Collections two years ago to let you Save and organize your favorite feed posts. But by allowing users to make Collections public, Instagram would become a direct competitor to Pinterest. Instagram public Collections could spark a new medium of content curation. People could use the feature to bundle together their favorite memes, travel destinations, fashion items, or art. That could cut down on unconsented content stealing that's caused backlash against meme "curators" like F*ckJerry by giving an alternative to screenshotting and reposting other people's stuff. Instead of just representing yourself with your own content, you could express your identity through the things you love -- even if you didn't photograph them yourself.

The "Make Collection Public" option was discovered by frequent TechCrunch tipster and reverse engineering specialist Jane Manchun Wong. It's not available to the public, but from the Instagram for Android code, she was able to generate a screenshot of the prototype. It shows the ability to toggle on public visibility for a Collection, and tag contributors who can also add to the Collection. Previously, Collections was always a private, solo feature for organizing your bookmarks gathered through the Instagaram Save feature Instagram launched in late 2016. Currently there's nothing in the Instagram code about users being able to follow each other's Collections, but that would seem like a logical and powerful next step.

An anonymous reader quotes a report from TechCrunch: Apple has confirmed its plans to close retail stores in the Eastern District of Texas -- a move that will allow the company to better protect itself from patent infringement lawsuits, according to Apple news sites 9to5Mac and MacRumors which broke the news of the stores' closures. Apple says that the impacted retail employees will be offered new jobs with the company as a result of these changes. The company will shut down its Apple Willow Bend store in Plano, Texas as well as its Apple Stonebriar store in Frisco, Texas, MacRumors reported, and Apple confirmed. These stores will permanently close up shop on Friday, April 12. Customers in the region will instead be served by a new Apple store located at the Galleria Dallas Shopping Mall, which is expected to open April 13. "The Eastern District of Texas had become a popular place for patent trolls to file their lawsuits, though a more recent Supreme Court ruling has attempted to crack down on the practice," the report adds. "The court ruled that patent holders could no longer choose where to file." One of the most infamous patent holding firms is VirnetX, which has won several big patent cases against Apple in recent years.

A spokesperson for Apple confirmed the stores' closures, but wouldn't comment on the company's reasoning: "We're making a major investment in our stores in Texas, including significant upgrades to NorthPark Center, Southlake and Knox Street. With a new Dallas store coming to the Dallas Galleria this April, we've made the decision to consolidate stores and close Apple Stonebriar and Apple Willow Bend. All employees from those stores will be offered positions at the new Dallas store or other Apple locations."

An anonymous reader quotes a report from TechCrunch: Facebook will end its unpaid market research programs and proactively take its Onavo VPN app off the Google Play store in the wake of backlash following TechCrunch's investigation about Onavo code being used in a Facebook Research app the sucked up data about teens. The Onavo Protect app will eventually shut down, and will immediately cease pulling in data from users for market research though it will continue operating as a Virtual Private Network in the short-term to allow users to find a replacement. Facebook has also ceased to recruit new users for the Facebook Research app that still runs on Android but was forced off of iOS by Apple after we reported on how it violated Apple's Enterprise Certificate program for employee-only apps. Existing Facebook Research app studies will continue to run, though. Onavo billed itself as a way to "limit apps from using background data and use a secure VPN network for your personal info" but also noted it would collect the "Time you spend using apps, mobile and Wi-Fi data you use per app, the websites you visit, and your country, device and network type." A Facebook spokesperson confirmed the change and provided this statement: "Market research helps companies build better products for people. We are shifting our focus to reward-based market research which means we're going to end the Onavo program."

Security reporter Zack Whittaker writes: In my years covering cybersecurity, there's one variation of the same lie that floats above the rest. "We take your privacy and security seriously." You might have heard the phrase here and there. It's a common trope used by companies in the wake of a data breach -- either in a "mea culpa" email to their customers or a statement on their website to tell you that they care about your data, even though in the next sentence they all too often admit to misusing or losing it. The truth is, most companies don't care about the privacy or security of your data. They care about having to explain to their customers that their data was stolen.

I've never understood exactly what it means when a company says it values my privacy. If that were the case, data hungry companies like Google and Facebook, which sell data about you to advertisers, wouldn't even exist. I was curious how often this go-to one liner was used. I scraped every reported notification to the California attorney general, a requirement under state law in the event of a breach or security lapse, stitched them together, and converted it into machine-readable text. About one-third of all 285 data breach notifications had some variation of the line. It doesn't show that companies care about your data. It shows that they don't know what to do next.

An anonymous reader quotes a report from TechCrunch: Twitter retains direct messages for years, including messages you and others have deleted, but also data sent to and from accounts that have been deactivated and suspended, according to security researcher Karan Saini. Saini found years-old messages in a file from an archive of his data obtained through the website from accounts that were no longer on Twitter. He also reported a similar bug, found a year earlier but not disclosed until now, that allowed him to use a since-deprecated API to retrieve direct messages even after a message was deleted from both the sender and the recipient -- though, the bug wasn't able to retrieve messages from suspended accounts.

Direct messages once let users "unsend" messages from someone else's inbox, simply by deleting it from their own. Twitter changed this years ago, and now only allows a user to delete messages from their account. "Others in the conversation will still be able to see direct messages or conversations that you have deleted," Twitter says in a help page. Twitter also says in its privacy policy that anyone wanting to leave the service can have their account "deactivated and then deleted." After a 30-day grace period, the account disappears, along with its data. But, in our tests, we could recover direct messages from years ago -- including old messages that had since been lost to suspended or deleted accounts. By downloading your account's data, it's possible to download all of the data Twitter stores on you. A Twitter spokesperson said the company was "looking into this further to ensure we have considered the entire scope of the issue."

An anonymous reader quotes a report from TechCrunch: A hacker who stole close to 620 million user records from 16 websites has stolen another 127 million records from eight more websites, TechCrunch has learned. The hacker, whose listing was the previously disclosed data for about $20,000 in bitcoin on a dark web marketplace, stole the data last year from several major sites -- some that had already been disclosed, like more than 151 million records from MyFitnessPal and 25 million records from Animoto. But several other hacked sites on the marketplace listing didn't know or hadn't disclosed yet -- such as 500px and Coffee Meets Bagel. The Register, which first reported the story, said the data included names, email addresses and scrambled passwords, and in some cases other login and account data -- though no financial data was included. Now the same hacker has eight additional marketplace entries after their original listings were pulled offline, including:

- 18 million records from travel booking site Ixigo
- Live-video streaming site YouNow had 40 million records stolen
- Houzz, which recently disclosed a data breach, is listed with 57 million records stolen
- Ge.tt had 1.8 million accounts stolen
- 450,000 records from cryptocurrency site Coinmama.
- Roll20, a gaming site, had 4 million records listed
- Stronghold Kingdoms, a multiplayer online game, had 5 million records listed
- 1 million records from pet care delivery service PetFlow