Slashdot Mirror

Elon Musk has tweeted images of his tunnel-boring machine with the caption "Congratulations @BoringCompany on completing the LA/Hawthorne tunnel! Cutting edge technology!" The update comes a couple weeks after Musk showed off the Boring Company's LA tunnel and said it was "on track" for an opening party on December 10th. Ars Technica reports: The tunnel appears to end at what The Boring Company calls "O'Leary Station," which is located on a piece of commercial property that The Boring Company purchased in Hawthorne. This location is close to, but not the same as, the location for which The Boring Company recently received approval to build a tunnel entrance within a residential garage. "O'Leary Station" references a SpaceX/Boring Company employee who recently passed away. The Hawthorne tunnel is just a test tunnel for The Boring Company, which also plans to complete a second, 3.6-mile, one-way tunnel from Los Angeles Metro to Dodger Stadium. Eventually, the company wants to dig a tunnel in Chicago between O'Hare International Airport and the city's downtown.

dmoberhaus writes: NASA's Mars Opportunity rover appeared to briefly make contact with the agency's Deep Space Network on Thursday afternoon after 5 months of silence. In June, a dust storm took Opportunity offline and every attempt to bring the rover back to life has failed. NASA scientists were hoping that seasonal winds that sweep the planet from November to February might blow the dust off of Opportunity's solar panels. Was this the rover's first attempt trying to get back into contact with Earth? Update 11/17/18: No. It turns out that the data received by the Deep Space Network was not from the Opportunity rover. "Today [the Deep Space Network website] showed what looked like a signal from Opportunity," JPL said in a tweet. "As much as we'd like to say this was an #OppyPhoneHome moment, further investigation shows these signals were not an Opportunity transmission. Test data or false positives can make it look like a given spacecraft is active on [the Deep Space Network website]. Our work to reestablish comms continues."

A hacker going by the name AmFearLiathMor is claiming to have hacked ProtonMail and stolen "significant" amounts of data. They have posted a ransom demand to an anonymous Pastebin but it reads like a prank, as it states that the alleged hackers have access to underwater drone activity and treaty violations in Antarctica. Lawrence Abrams writes via BleepingComputer: According to the message, a hacker going by the name AmFearLiathMor makes quite a few interesting claims such as hacking ProtonMail's services and stealing user's email, that ProtonMail is sending their user's decrypted data to American servers, and that ProtonMail is abusing the lack of Subresource Integrity (SRI) use to purposely and maliciously steal their user's passwords. After reading the Pastebin message (archive.is link), which is shown in its entirety below minus some alleged keys, and seeing the amount of claims, the first thing that came to mind was a corporate version of the sextortion scams that have been running rampant lately. As I kept reading it, though, it just felt like a joke. ProtonMail posted on Twitter that this is a hoax and that there is no evidence that anything states is true. The encrypted email service provided a statement to BleepingComputer: "We believe this extortion attempt is a hoax, and we have seen zero evidence to suggest otherwise. Not a single claim made is true and many of the claims are unsound from a technical standpoint. We are aware of a small number of ProtonMail accounts that have been compromised as a result of those individual users falling for phishing attempts. However, there is zero evidence of a breach of our infrastructure."

theodp writes: Developers! Developers! Developers! To make good on the proposal that snagged it a share of the Amazon HQ2 prize, the State of Virginia is also apparently on the hook for doubling the annual number of graduates with computer science or closely related degrees, with a goal to add 25,000 to 35,000 graduates (Amazon's HQ2 RFP demanded info on "education programs related to computer science"). To do that, the state will establish a performance-based investment fund for higher education institutions to expand their bachelor's degree programs, and spend up to $375 million on George Mason University's Arlington campus and a new Virginia Tech campus in Alexandria. The state will also spend $50 million on STEM + CS education in public schools and expanding internships for higher education students.

Amazon is certainly focused on boosting the ranks of software engineer types. Earlier this month, Amazon launched Amazon Future Engineer, a program that aims to teach more than 10 million students a year how to code, part of a $50 million Amazon commitment to computer science education that was announced last year at a kickoff event for the Ivanka Trump-led White House K-12 CS Initiative. And on Wednesday, Amazon-bankrolled Code.org -- Amazon is a $10+ million Diamond Supporter of the nonprofit; CS/EE grad Jeff Bezos is a $1+ million Gold Supporter -- announced it has teamed with Amazon Future Engineer to build and launchHour of Code: Dance Party, a signature tutorial for this December's big Hour of Code (powered by AWS in 2017), which has become something of a corporate infomercial (Microsoft recently boasted "learners around the world have completed nearly 100 million Minecraft Hour of Code sessions"). Students participating in the Dance Party tutorial, Code.org explained, can choose from 30 hits like Katy Perry's "Firework" and code interactive dance moves and special effects as they learn basic CS concepts. "The artists whose music is used in this tutorial are not sponsoring or endorsing Amazon as part of licensing use of their music to Code.org," stresses a footnote in Code.org's post. So, don't try to make any connections between Katy Perry's Twitter endorsement of the Code.org/Amazon tutorial later that day and those same-day follow-up Amazon and Katy Perry tweets touting their new exclusive Amazon Music streaming deal, kids!

theodp writes: Developers! Developers! Developers! To make good on the proposal that snagged it a share of the Amazon HQ2 prize, the State of Virginia is also apparently on the hook for doubling the annual number of graduates with computer science or closely related degrees, with a goal to add 25,000 to 35,000 graduates (Amazon's HQ2 RFP demanded info on "education programs related to computer science"). To do that, the state will establish a performance-based investment fund for higher education institutions to expand their bachelor's degree programs, and spend up to $375 million on George Mason University's Arlington campus and a new Virginia Tech campus in Alexandria. The state will also spend $50 million on STEM + CS education in public schools and expanding internships for higher education students.

Amazon is certainly focused on boosting the ranks of software engineer types. Earlier this month, Amazon launched Amazon Future Engineer, a program that aims to teach more than 10 million students a year how to code, part of a $50 million Amazon commitment to computer science education that was announced last year at a kickoff event for the Ivanka Trump-led White House K-12 CS Initiative. And on Wednesday, Amazon-bankrolled Code.org -- Amazon is a $10+ million Diamond Supporter of the nonprofit; CS/EE grad Jeff Bezos is a $1+ million Gold Supporter -- announced it has teamed with Amazon Future Engineer to build and launchHour of Code: Dance Party, a signature tutorial for this December's big Hour of Code (powered by AWS in 2017), which has become something of a corporate infomercial (Microsoft recently boasted "learners around the world have completed nearly 100 million Minecraft Hour of Code sessions"). Students participating in the Dance Party tutorial, Code.org explained, can choose from 30 hits like Katy Perry's "Firework" and code interactive dance moves and special effects as they learn basic CS concepts. "The artists whose music is used in this tutorial are not sponsoring or endorsing Amazon as part of licensing use of their music to Code.org," stresses a footnote in Code.org's post. So, don't try to make any connections between Katy Perry's Twitter endorsement of the Code.org/Amazon tutorial later that day and those same-day follow-up Amazon and Katy Perry tweets touting their new exclusive Amazon Music streaming deal, kids!

Netflix is testing a cut-price mobile-only subscription, priced as low as $3 for some, as it explores new packages aimed at widening its appeal in Asia and other emerging markets. TechCrunch: CEO Reed Hastings told Bloomberg last week that the company would test lower-priced packages and it hasn't taken long for those experiments to come to light. The first reports are from Malaysia, where Netflix quietly rolled out a mobile-only tier priced at RM17, or around $4, each month. That's half the price of the company's next cheapest package -- 'Basic' -- which retails for RM33, or around $7.90, per month in Malaysia. A Netflix spokesperson confirmed the Malaysia trial. They added that similar trials are "running in a few countries" although they declined to provide details. It remains to be seen if this new subscription tier will roll out to other parts of the world.

The American Cable Association (ACA), an industry group that represents over 700 small and medium-sized cable operators, wants antitrust regulators to investigate whether Comcast-NBCUniversal is abusing its power to hurt smaller television and internet service providers. The group has "asked U.S. Assistant Attorney General Makan Delrahim to 'immediately' open an investigation into Comcast's practices," reports The Verge. Comcast is denying the claims, and while the Justice Department hasn't publicly responded, that may change soon. President Donald Trump tweeted about the ACA's claims earlier this afternoon. From the report: The ACA claims Comcast has a uniquely powerful hold on the U.S. cable industry because it controls a large chunk of "must have" programming like NBC's regional sports channels. The group argues that the Comcast "has shown a willingness to harm rivals" in the past, even while bound by a 2011 consent decree that expired earlier this year. The letter is dated November 6th but was published today, after Fox Business Networks reported on its existence last week.

Contra Trump's description, the letter doesn't seem to describe "routine" violations of antitrust law. It's primarily arguing that there's a huge risk of Comcast abusing its market position, while explaining just how much damage could result if Comcast did so. The ACA has put forward more concrete claims in the past, though -- like a 2017 complaint that Comcast was forcing smaller cable providers to bundle unwanted NBC-owned channels into TV packages, driving up their costs. The ACA's letter also raises concerns involving Hulu, suggesting that Comcast could effectively hold the service hostage. "We have heard from ACA members that they fear that ComcastNBCU may restrict, if it is not already restricting, their ability to access Hulu and make it available to their customers as an alternative to their cable offerings," reads the letter.

Ed Yong, writing for The Atlantic: For many people, a two-and-a-half-minute video of a baby brown bear trying to scale a snow-covered mountain was a life-affirming testament to the power of persistence. As it begins, the cub is standing with its mother on the side of a perilously steep ridge. The mother begins walking across, and despite slipping a few times on the loose snow, she soon reaches the top. Her cub, following tentatively after her, isn't so fortunate. It loses its footing and slides several feet. It pulls itself together and reattempts the ascent, before slipping again.

Finally, the cub nears the top. But as the footage zooms in to focus on the moment of reunion, the mother inexplicably swipes at the youngster with her paw, sending it hurtling downward again. It slides a long way, scrabbling for purchase and finding some just before it hits a patch of bare rock. Once again, it starts to climb, and after what seems like a nail-biting eternity for anyone watching, it reaches its mother. The two walk away.

The video was uploaded to the ViralHog YouTube channel on Friday, and after being shared on Twitter, it rapidly went viral. At the time of this writing, it has been watched 17 million times. The cub's exploits were equal parts gif, nature documentary, and motivational poster. It had all the elements of an incredible story: the most adorable of protagonists, rising and falling action (literally), and a happy ending. It was a tale of tenacity in the face of adversity, triumph against the odds. But when biologists started watching the video, they saw a very different story.

The video, they say, was clearly captured by a drone. And in it, they saw the work of an irresponsible drone operator who, in trying to film the bears, drove them into a dangerous situation that almost cost the cub its life. "I found it really hard to watch," says Sophie Gilbert, an ecologist at the University of Idaho who studies, among other things, how drones affect wildlife. "It showed a pretty stark lack of understanding from the drone operator of the effects that his actions were having on the bears." (It wasn't just scientists, either; several drone pilots were also dismayed by the footage.)

An anonymous reader quotes a report from Bloomberg: Amazon.com Inc. has taken another step toward eliminating software from Oracle Corp. that has long helped the e-commerce giant run its retail business. An executive with Amazon's cloud-computing unit hit back at Oracle Executive Chairman Larry Ellison, who ridiculed the internet giant as recently as last month for relying on Oracle databases to track transactions and store information, even though Amazon sells competing software, including Redshift, Aurora and DynamoDB. Amazon's effort to end its use of Oracle's products has made new progress, Andy Jassy, the chief executive officer of Amazon Web Services, tweeted Friday. "In latest episode of 'uh huh, keep talkin' Larry,' Amazon's Consumer business turned off its Oracle data warehouse Nov. 1 and moved to Redshift," Jassy wrote. By the end of 2018, Amazon will stop using 88 percent of its Oracle databases, including 97 percent of its mission-critical databases, he added.

Earlier this year, Mark Zuckerberg came under fire after he and other executives removed their Facebook messages from several recipients' inboxes. The move led many to question whether the company would give other users the option to unsend messages. According to Twitter user @MattNavarra, the answer is yes. The feature has been listed as "coming soon" in the release notes for version 191.0 of Messenger's iOS client. The Verge reports: Facebook Messenger will soon allow you to delete sent messages up to 10 minutes after you've originally sent them. Compared to the hour Facebook gives you to delete an erroneous WhatsApp message, 10 minutes doesn't give you too much time to correct yourself. But it's a lot better than having your mistakes preserved eternally.

A lump of metal in a building near Paris has long served as the global standard for the kilogram. That's about to change. From a report: Later this month, at the international General Conference on Weights and Measures, to be held in France, delegates are expected to vote to get rid of this single physical specimen and instead plump to use a fundamental measurement -- to be defined in terms of an electric current -- in order to define the mass of an object. The king of kilograms is about to be dethroned. And crucially much of the key work that has led to the toppling of the Paris kilogram has been carried out at the National Physical Laboratory where the late Bryan Kibble invented the basic concepts of the device that will replace that ingot in the Pavillon de Breteuil. The Kibble balance works by measuring the electric current that is required to produce an electromagnetic force equal to the gravitational force acting on a mass. A second stage allows the electromagnetic force to be determined in terms of a fundamental constant known as the Planck constant which will, in future, be used to define a kilogram. These machines will provide the standard for weighing objects -- and that means no more dusting of old lumps of alloy to ensure they stay pure and accurate.

[...] "One key reason for doing this work is to provide international security," says Robinson. "If the Pavillon de Breteuil burned down tomorrow and the kilogram in its vaults melted, we would have no reference left for the world's metric weights system. There would be chaos. The current definition of the kilogram is the weight of that cylinder in Paris, after all." [...] Another major motivation for the replacement of le grand K is the need to be able to carry out increasingly more and more precise measurements. "Pharmaceutical companies will soon be wanting to use ingredients that will have to be measured in terms of a few millionths or even billionths of a gram," says Prior. "We need to be prepared to weigh substances with that kind of accuracy." Suggested reading: A thread on Twitter which discusses SI units and the redefinition of the kilogram.

Exploit developers Yushi Laing and Alexander Kochkov have teased a zero-day exploit for Microsoft's Edge browser that can allow a malicious actor to run commands on a user's machine. "Laing teased the 'stable exploit' for the Microsoft-developed web browser last week with an image that appeared to show the Windows Calculator app launched from a web browser, after working on the project for just under a week," reports IT PRO. From the report: The researcher had initially been looking into three remote code execution bugs for Firefox as part of an 'exploit chain', but struggled to establish code for the third. He then found two similar flaws on Microsoft Edge using the Wadi Fuzzer app developed by SensePost. Laing told BleepingComputer the pair wanted to develop a stable exploit for Microsoft Edge and escape the sandbox, termed as an exploit that force-crashes and incorrectly reloads an app with manipulated permissions.

This would allow a user to run functions, and access other apps, beyond its normal permissions, as well as access data from other applications. They were also looking for a way to effectively seize control of a machine by escalating execution privileges to "system." They published a proof-of-concept for the Edge exploit in a short clip which shows the team using the browser to open the landing page for Google Chrome via Firefox.

Elon Musk is keeping to his promise of opening the Boring Company's proof-of-concept tunnel to the public on December 10th. The two-mile-long Los Angeles tunnel takes 30 seconds to get through via a sped-up video. The Verge reports: Construction on the tunnel began over a year ago, and extends from SpaceX's Hawthorne, California headquarters, to an LA suburb. Since then, the Boring Company has been selected to build tunnels for Chicago and Washington DC, and has sketched out plans to build a larger network of tunnels under LA, with the aim of reducing congestion. The tunnels will theoretically use autonomous, electric skates to move anywhere from 8 to 16 people along the system's rails at speeds anywhere from 124 mph to 155mph.

UC Berkeley's fastest-growing class is their introduction to data science. (The Wall Street Journal calls it a combination of computer science and statistics "to mine the growing troves of data on everything from traffic patterns to the habits of social-media users.") But that's only the beginning. UC Berkeley plans to create a new Division of Data Science -- one of their biggest reorganizations in decades -- and this fall they even began offering a major in data science. "The division will enable students and researchers to tackle not just the scientific challenges opened up by pervasive data, but the societal, economic and environmental impacts as well."

"We need to consider the ethical implications of these technologies as they are being developed," says Data 8 instructor David Wagner -- "what does the world look like when decisions are made by algorithms rather than people, and how do we ensure that when we analyze data our decisions reflect not just numbers but the humans behind them?"

Slashdot reader theodp writes: With a reported 1,295 students enrolled this semester, Berkeley's Data 8: The Foundations of Data Science boasts even bigger numbers than Harvard's most popular course, the more traditionally CS-focused CS50, which saw 724 students enroll this Fall....

Berkeley's embrace of Data Science coincidentally comes as Code.org is giving kudos to partners Microsoft, Facebook, Google, and Amazon for helping it convince lawmakers and tens of thousands of educators that more traditional computer science is what's needed for the K-12 masses, including the adoption of a new AP Computer Science program for high school students (an AP CS version of CS50 was funded by Microsoft).

So, is Data Science for All the new Computer Science for All? And, if so, will U.S. schools be looking at a major case of buyer's remorse?

An anonymous reader quotes a report from The New York Times: Employees at Google offices around the world held a wave of walkouts on Thursday to protest the company's handling of sexual harassment. The walkouts, which started in Asia and spread across continents, were planned for around 11 a.m. in their time zones. Protests were held through the day in Google offices in the United States. The backlash was prompted by an article in The New York Times last week that revealed that Google had paid millions of dollars in exit packages to male executives accused of harassment, while staying silent about the transgressions. As late morning arrived in different time zones on Thursday, Google employees walked away from their work at offices including Singapore; Hyderabad, India; Berlin; Zurich; Dublin; London; New York; and its headquarters in Mountain View, California.

Employees posted photos on social media, but it was unclear how long the protests lasted as many of those who stopped working stayed inside the buildings. The employees who organized the walkout have called on Google to end its use of private arbitration in cases of alleged sexual assault and harassment. They have also demanded the publication of a transparency report on instances of sexual harassment, further disclosures of salaries and compensation, an employee representative on the company board and a chief diversity officer who could speak directly to the board.

Twitter is updating its reporting process to allow you to report accounts that you suspect are bots. "Now, when you tap the 'it's suspicious or spam' option under the report menu, you'll be able to specify why you think that, including an option to say 'the account tweeting this is fake,'" reports The Verge. From the report: Twitter announced the change through its official safety account today, and it's now live on both the web version and mobile version of the service. You can see an example of the mobile report flow pertaining to this update [via a tweet from @TwitterSafety.] According to a Twitter spokesperson, "The new reporting flow will allow us to collect more detailed information so we can identify and remove spam more effectively. With more details to review, we'll be adding more resources to our review processes."

Those of you who detest display notches will find this bug especially unpleasant. A small number of Pixel 3 XL users are reportedly experiencing a bug where an additional notch appears on the right side of the display. Android Police reports: Turns out that it's a real-life bug experienced by several users, including Jessie Burroughs, Kyle Gutschow, and UrAvgConsumer. We're not sure what's causing it, but it could be something to do with the screen rotation setting getting a bit confused about its orientation. In all three of the examples we've seen, the users reported that the issue went away after a restart or fiddling with the developer settings, so at least it's not a permanent problem. Anyone who bought a Pixel 3 XL probably decided that the notch didn't bother them that much, but we're not sure how they'd feel about another one showing up unannounced. Google is aware of this bug and says a fix is "coming soon."

Those of you who detest display notches will find this bug especially unpleasant. A small number of Pixel 3 XL users are reportedly experiencing a bug where an additional notch appears on the right side of the display. Android Police reports: Turns out that it's a real-life bug experienced by several users, including Jessie Burroughs, Kyle Gutschow, and UrAvgConsumer. We're not sure what's causing it, but it could be something to do with the screen rotation setting getting a bit confused about its orientation. In all three of the examples we've seen, the users reported that the issue went away after a restart or fiddling with the developer settings, so at least it's not a permanent problem. Anyone who bought a Pixel 3 XL probably decided that the notch didn't bother them that much, but we're not sure how they'd feel about another one showing up unannounced. Google is aware of this bug and says a fix is "coming soon."

Those of you who detest display notches will find this bug especially unpleasant. A small number of Pixel 3 XL users are reportedly experiencing a bug where an additional notch appears on the right side of the display. Android Police reports: Turns out that it's a real-life bug experienced by several users, including Jessie Burroughs, Kyle Gutschow, and UrAvgConsumer. We're not sure what's causing it, but it could be something to do with the screen rotation setting getting a bit confused about its orientation. In all three of the examples we've seen, the users reported that the issue went away after a restart or fiddling with the developer settings, so at least it's not a permanent problem. Anyone who bought a Pixel 3 XL probably decided that the notch didn't bother them that much, but we're not sure how they'd feel about another one showing up unannounced. Google is aware of this bug and says a fix is "coming soon."

Chris Hoffman, writing for How To Geek: You launch Edge on your new PC, search for "download Chrome," and click the first result headed to "google.com" on Bing. You're now on a phishing website pushing malware, disguised to look like the Chrome download page. That's the story Gabriel Landau tells on Twitter. We were able to reproduce this problem, although it doesn't happen every time. Usually, you'll end up seeing an ad for "https://www.google.com". That goes to the real Chrome download page, and everything is fine. But, sometimes, you'll see an ad for "google.com". Guess what -- that doesn't actually go to Google.com. This ad was created by a scammer and goes elsewhere. Microsoft is apparently not verifying the web address the advertisement actually goes to. Bing is letting this advertisement to lie to people. Microsoft says it has resolved the issue.

An anonymous reader quotes a report from Bleeping Computer: Proof-of-concept code for a new zero-day vulnerability in Windows has been released by a security researcher before Microsoft was able to release a fix. The code exploits a vulnerability that allows deleting without permission any files on a machine, including system data, and it has the potential to lead to privilege escalation. The vulnerability could be used to delete application DLLs, thus forcing the programs to look for the missing libraries in other places. If the search reaches a location that grants write permission to the local user, the attacker could take advantage by providing a malicious DLL.

The problem is with Microsoft Data Sharing Service, present in Windows 10, Server 2016 and 2019 operating systems, which provides data brokering between applications. Will Dormann, a vulnerability analyst at CERT/CC, tested the exploit code successfully on a Windows 10 operating system running the latest security updates. Behind the discovery is a researcher using the online alias SandboxEscaper, also responsible for publicly sharing in late August another security bug in Windows Task Scheduler component. Microsoft hasn't addressed the issue, but there is a temporary fix available through the oPatch platform. "A micropatch candidate was ready seven hours after the zero-day vulnerability announcement, and it blocked the exploit successfully," reports Bleeping Computer. "oPatch now delivers the stable version of the micropatch for fully updated Windows 10 1803.

Apple's CEO Tim Cook has joined the chorus of voices warning that data itself is being weaponized against people and societies -- arguing that the trade in digital data has exploded into a "data industrial complex." From a report: Cook did not namecheck the adtech elephants in the room: Google, Facebook and other background data brokers that profit from privacy-hostile business models. But his target was clear. "Our own information -- from the everyday to the deeply personal -- is being weaponized against us with military efficiency," warned Cook. "These scraps of data, each one harmless enough on its own, are carefully assembled, synthesized, traded and sold. Taken to the extreme this process creates an enduring digital profile and lets companies know you better than you may know yourself. Your profile is a bunch of algorithms that serve up increasingly extreme content, pounding our harmless preferences into harm. We shouldn't sugarcoat the consequences. This is surveillance," he added. In a series of tweets, Cook added: It was an honor to be invited to ICDPPC 2018 in Brussels this morning. I'd like to share a bit of what I said to this gathering of privacy regulators from around the world. It all boils down to a fundamental question: What kind of world do we want to live in? GDPR has shown us all that good policy and political will can come together to protect the rights of everyone. We believe that privacy is a fundamental human right. No matter what country you live in, that right should be protected in keeping with four essential principles.

First, companies should challenge themselves to de-identify customer data or not collect that data in the first place. Second, users should always know what data is being collected from them and what it's being collected for. This is the only way to empower users to decide what collection is legitimate and what isn't. Anything less is a sham. Third, companies should recognize that data belongs to users and we should make it easy for people to get a copy of their personal data, as well as correct and delete it. And fourth, everyone has a right to the security of their data. Security is at the heart of all data privacy and privacy rights. Technology is capable of doing great things. But it doesn't want to do great things. It doesn't want anything. That part takes all of us. We are optimistic about technology's awesome potential for good -- but we know that it won't happen on its own.

An anonymous reader quotes a report from PC Magazine: Intel is denying a new report that claims the chipmaker is abandoning its 10 nanometer manufacturing process following years of delays. "Media reports published today that Intel is ending work on the 10nm process are untrue," the company tweeted on Monday. Hours prior to the tweet, semiconductor news site SemiAccurate claimed that Intel was pulling the plug on the chip-making technology over the company's ongoing struggles to bring it to full production. Chips built with the 10nm process were originally slated to arrive in 2016, but the company has repeatedly pushed that launch date back. During Intel's last earnings call, executives said they now expect 10nm chips to officially drop during the 2019 holiday season.

In response to SemiAccurate's report, Intel said it continues to make "good progress" on the 10nm technology. "Yields are improving consistent with the timeline we shared during our last earnings report," the chipmaker added in its tweet. The next-generation silicon will supposedly offer a 25 percent performance increase over 14nm-manufactured technology. The 10nm chips will also be able to run on 50 percent less power when clocked at the same performance of a 14nm processor. Intel will hold an earnings call on Thursday, so expect company executives to elaborate on 10nm's progress then.

An anonymous reader quotes a report from CNBC: Andy Jassy, the CEO of Amazon Web Services, followed Apple's lead in calling the for the retraction of Bloomberg's story about spy chips being embedded in servers. "They offered no proof, story kept changing, and showed no interest in our answers unless we could validate their theories," Jassy wrote in a tweet on Monday. "Reporters got played or took liberties. Bloomberg should retract."

Apple CEO Tim Cook told Buzzfeed on Friday that the scenario Bloomberg reported never happened and that the October story in Bloomberg Businessweek should be retracted. Bloomberg alleged data center hardware used by Apple and AWS, and provided by server company Super Micro, was under surveillance by the Chinese government, even though almost all the companies named in the report denied Bloomberg's claim. Bloomberg published a denial from AWS alongside its own report, and AWS refuted the report in a more strongly worded six-paragraph blog post entitled "Setting the Record Straight on Bloomberg Businessweek's Erroneous Article." Further reading is available via The Washington Post.

"Sources tell the Erik Wemple Blog that the New York Times, the Wall Street Journal and The Post have each sunk resources into confirming the story, only to come up empty-handed," the Washington Post reports. "(The Post did run a story summarizing Bloomberg's findings, along with various denials and official skepticism.) It behooves such outlets to dispatch entire teams to search for corroboration: If, indeed, it's true that China has embarked on this sort of attack, there will be a long tail of implications. No self-respecting news organization will want to be left out of those stories. 'Unlike software, hardware leaves behind a good trail of evidence. If somebody decides to go down that path, it means that they don't care about the consequences,' Stathakopoulos says.'"

An anonymous reader writes: Undoubtedly in response to this politically motivated sort of claptrap, SQLite has released their own Code of Conduct. From the preamble:

Having been encouraged by clients to adopt a written code of conduct, the SQLite developers elected to govern their interactions with each other, with their clients, and with the larger SQLite user community in accordance with the "instruments of good works" from chapter 4 of The Rule of St. Benedict. This code of conduct has proven its mettle in thousands of diverse communities for over 1,500 years, and has served as a baseline for many civil law codes since the time of Charlemagne.

Not everyone has found SQLite's attempt informative or funny (though many did). A developer wrote, for instance, "So is the SQLite CoC thing a joke or not? If it's not a joke, f*ck this. If it is a joke, that's even worse. Your CoC should be taken seriously." A security researcher, chimed in, "This sort of stunt will make actual code of conduct discussions harder. It's not funny, helpful, or wise."

An anonymous reader writes: Undoubtedly in response to this politically motivated sort of claptrap, SQLite has released their own Code of Conduct. From the preamble:

Having been encouraged by clients to adopt a written code of conduct, the SQLite developers elected to govern their interactions with each other, with their clients, and with the larger SQLite user community in accordance with the "instruments of good works" from chapter 4 of The Rule of St. Benedict. This code of conduct has proven its mettle in thousands of diverse communities for over 1,500 years, and has served as a baseline for many civil law codes since the time of Charlemagne.

Not everyone has found SQLite's attempt informative or funny (though many did). A developer wrote, for instance, "So is the SQLite CoC thing a joke or not? If it's not a joke, f*ck this. If it is a joke, that's even worse. Your CoC should be taken seriously." A security researcher, chimed in, "This sort of stunt will make actual code of conduct discussions harder. It's not funny, helpful, or wise."

Charlie Demerjian, reporting for SemiAccurate: SemiAccurate has learned that Intel just pulled the plug on their struggling 10nm process. Before you jump to conclusions, we think this is both the right thing to do and a good thing for the company. For several years now SemiAccurate has been saying the the 10nm process as proposed by Intel would never be financially viable. Now we are hearing from trusted moles that the process is indeed dead and that is a good thing for Intel, if they had continued along their current path the disaster would have been untenable. Our moles are saying the deed has finally been done.

This isn't to say the road to this point has been easy or straightforward, and the road ahead is even less solid. Intel has continually moved the public bar on 10nm back, incrementally, while singing a different song internally. In their Q1/2018 earnings call they moved the timetables and spun it in a curious way but were telling partners a different story. UPDATE: Intel tweeted on Monday morning: "Media reports published today that Intel is ending work on the 10nm process are untrue. We are making good progress on 10nm. Yields are improving consistent with the timeline we shared during our last earnings report."

Microsoft is including Google's mitigation for the Spectre Variant 2 speculative execution side-channel attack in the next release of Windows 10, currently codenamed 19H1. ZDNet reports: Google developed a software-based mitigation for Spectre Variant 2 called Retpoline that constrains speculative execution behavior sufficiently to mitigate an attack. Google's testing found its fix had a negligible effect on performance. Retpoline was implemented by Linux distributions such as Red Hat and SUSE, as well as by Oracle for Oracle Linux 6 and 7. And now, as MSPoweruser spotted, Microsoft's kernel engineers have confirmed that Retpoline will be part of the next version of Windows 10, 19H1, which is due out next year. Google's Retpoline plus Microsoft's own kernel modifications have reduced the performance impact to "noise level", according to Mehmet Iyigun of Microsoft's Windows and Azure kernel team. "Yes, we have enabled Retpoline by default in our 19H1 flights along with what we call 'import optimization' to further reduce perf impact due to indirect calls in kernel-mode. Combined, these reduce the perf impact of Spectre v2 mitigations to noise-level for most scenarios," wrote Iyigun.

"The bad news is that Microsoft didn't include the Retpoline fix in the latest Windows 10 October 2018 Update Redstone 5, or RS5, release, even though, according to CrowdStrike researcher Alex Ionescu, it could have," reports ZDNet.

The November issue of Popular Mechanics includes a message from its editors that Elon Musk is "under attack," arguing that while some criticisms have merit, "much of it is myopic and small-brained, from sideline observers gleefully salivating at the opportunity to take him down a peg." But what have these stock analysts and pontificators done for humanity? Elon Musk is an engineer at heart, a tinkerer, a problem-solver -- the kind of person Popular Mechanics has always championed -- and the problems he's trying to solve are hard. Really hard. He could find better ways to spend his money, that's for sure. And yet there he is, trying to build gasless cars and build reusable rockets and build tunnels that make traffic go away. For all his faults and unpredictability, we need him out there doing that. We need people who have ideas. We need people who take risks.

We need people who try.
The magazine includes statements from 12 high-profile supporters, including investor Mark Cuban, who writes "When you invest in a company run by an entrepreneur like Elon, you are investing in the mindset and approach that an entrepreneur brings to the table as much as you are valuing the net present value of future cash flows. That is not typical for public companies that are overwhelmingly run by hired CEOs. My advice for Elon is simple: Be yourself. Be true to your mission. Respect your investors. Ignore your critics."

Meanwhile, in a Friday post on Twitter, Musk jokingly claimed that he'd purchased and then deleted the game of Fortnite, posting a doctored Marketwatch article quoting him as saying "I had to save these kids from eternal virginity."

"Had to been done," tweeted Musk, adding "ur welcome".

An anonymous reader quotes a report from Ars Technica: Elon Musk took to Twitter on Thursday evening to inform his followers of a new addition to the Model 3 lineup. This is not the long-awaited $35,000 version, however; the mid-range Model 3 starts at $45,000. Musk also revealed that the Model 3 ordering process has been simplified and now has fewer options. One that's missing -- from all new Tesla orders, not just the Model 3 -- is the controversial "full self-driving" option. The reason? It was "causing too much confusion," Musk tweeted. The mid-range Model 3s will be rear-wheel drive only, prompting some to wonder if the company was using software to limit battery capacity on existing RWD inventory in order to get it out of the door. But Tesla says it's able to build these slightly cheaper cars by using the same battery pack as the more expensive, longer-range cars but with fewer cells inside (so no future software upgrades can increase their range at a later date). While Tesla is promoting the car as costing as little as $30,700 by factoring in "gas savings" and all federal and local tax incentives, it did also announce last week that any new Tesla delivered after October 15th might not ship before the beginning of next year. As Ars Technica notes, "Any new Tesla delivered after January 1st 2019 (but before July 1st 2019) is only eligible for a $3,750 IRS credit."

An anonymous reader quotes a report from Ars Technica: Elon Musk took to Twitter on Thursday evening to inform his followers of a new addition to the Model 3 lineup. This is not the long-awaited $35,000 version, however; the mid-range Model 3 starts at $45,000. Musk also revealed that the Model 3 ordering process has been simplified and now has fewer options. One that's missing -- from all new Tesla orders, not just the Model 3 -- is the controversial "full self-driving" option. The reason? It was "causing too much confusion," Musk tweeted. The mid-range Model 3s will be rear-wheel drive only, prompting some to wonder if the company was using software to limit battery capacity on existing RWD inventory in order to get it out of the door. But Tesla says it's able to build these slightly cheaper cars by using the same battery pack as the more expensive, longer-range cars but with fewer cells inside (so no future software upgrades can increase their range at a later date). While Tesla is promoting the car as costing as little as $30,700 by factoring in "gas savings" and all federal and local tax incentives, it did also announce last week that any new Tesla delivered after October 15th might not ship before the beginning of next year. As Ars Technica notes, "Any new Tesla delivered after January 1st 2019 (but before July 1st 2019) is only eligible for a $3,750 IRS credit."

AmiMoJo shares a report from Boing Boing: To enable "further research of information operations on Twitter," the company today published a dataset of tweets posted by known Russian and Iranian troll farms. "These large datasets comprise 3,841 accounts affiliated with the IRA, originating in Russia, and 770 other accounts, potentially originating in Iran," the blog post reads. "They include more than 10 million Tweets and more than 2 million images, GIFs, videos, and Periscope broadcasts, including the earliest on-Twitter activity from accounts connected with these campaigns, dating back to 2009." You can download the Russian and Iranian datasets here. The Russian dataset is comprised of 1.24GB of tweets and 300GB of media, while the Iranian dataset is comprised of 168MB of tweets and 65.7GB of media.

AmiMoJo shares a report from Boing Boing: To enable "further research of information operations on Twitter," the company today published a dataset of tweets posted by known Russian and Iranian troll farms. "These large datasets comprise 3,841 accounts affiliated with the IRA, originating in Russia, and 770 other accounts, potentially originating in Iran," the blog post reads. "They include more than 10 million Tweets and more than 2 million images, GIFs, videos, and Periscope broadcasts, including the earliest on-Twitter activity from accounts connected with these campaigns, dating back to 2009." You can download the Russian and Iranian datasets here. The Russian dataset is comprised of 1.24GB of tweets and 300GB of media, while the Iranian dataset is comprised of 168MB of tweets and 65.7GB of media.

Ars Technica reports of "a four-year-old bug in the Secure Shell implementation known as libssh that makes it trivial for just about anyone to gain unfettered administrative control of a vulnerable server." It's not clear how many sites or devices may be vulnerable since neither the widely used OpenSSH nor Github's implementation of libssh was affected. From the report: The vulnerability, which was introduced in libssh version 0.6 released in 2014, makes it possible to log in by presenting a server with a SSH2_MSG_USERAUTH_SUCCESS message rather than the SSH2_MSG_USERAUTH_REQUEST message the server was expecting, according to an advisory published Tuesday. Exploits are the hacking equivalent of a Jedi mind trick, in which an adversary uses the Force to influence or confuse weaker-minded opponents. The last time the world saw an authentication-bypass bug with such serious consequences and requiring so little effort was 11 months ago, when Apple's macOS let people log in as admin without entering a password.

On the brighter side, there were no immediate signs of any big-name sites being bitten by the bug, which is indexed as CVE-2018-10933. While Github uses libssh, the site officials said on Twitter that "GitHub.com and GitHub Enterprise are unaffected by CVE-2018-10933 due to how we use the library." In a follow-up tweet, GitHub security officials said they use a customized version of libssh that implements an authentication mechanism separate from the one provided by the library. Out of an abundance of caution, GitHub has installed a patch released with Tuesday's advisory. Another limitation: only vulnerable versions of libssh running in server mode are vulnerable, while the client mode is unaffected. Peter Winter-Smith, a researcher at security firm NCC who discovered the bug and privately reported it to libssh developers, told Ars the vulnerability is the result of libssh using the same machine state to authenticate clients and servers. Because exploits involve behavior that's safe in the client but unsafe in the server context, only servers are affected.

Ars Technica reports of "a four-year-old bug in the Secure Shell implementation known as libssh that makes it trivial for just about anyone to gain unfettered administrative control of a vulnerable server." It's not clear how many sites or devices may be vulnerable since neither the widely used OpenSSH nor Github's implementation of libssh was affected. From the report: The vulnerability, which was introduced in libssh version 0.6 released in 2014, makes it possible to log in by presenting a server with a SSH2_MSG_USERAUTH_SUCCESS message rather than the SSH2_MSG_USERAUTH_REQUEST message the server was expecting, according to an advisory published Tuesday. Exploits are the hacking equivalent of a Jedi mind trick, in which an adversary uses the Force to influence or confuse weaker-minded opponents. The last time the world saw an authentication-bypass bug with such serious consequences and requiring so little effort was 11 months ago, when Apple's macOS let people log in as admin without entering a password.

On the brighter side, there were no immediate signs of any big-name sites being bitten by the bug, which is indexed as CVE-2018-10933. While Github uses libssh, the site officials said on Twitter that "GitHub.com and GitHub Enterprise are unaffected by CVE-2018-10933 due to how we use the library." In a follow-up tweet, GitHub security officials said they use a customized version of libssh that implements an authentication mechanism separate from the one provided by the library. Out of an abundance of caution, GitHub has installed a patch released with Tuesday's advisory. Another limitation: only vulnerable versions of libssh running in server mode are vulnerable, while the client mode is unaffected. Peter Winter-Smith, a researcher at security firm NCC who discovered the bug and privately reported it to libssh developers, told Ars the vulnerability is the result of libssh using the same machine state to authenticate clients and servers. Because exploits involve behavior that's safe in the client but unsafe in the server context, only servers are affected.

An anonymous reader quotes a report from Gizmodo: When you go into the privacy settings on your browser, there's a little option there to turn on the "Do Not Track" function, which will send an invisible request on your behalf to all the websites you visit telling them not to track you. A reasonable person might think that enabling it will stop a porn site from keeping track of what she watches, or keep Facebook from collecting the addresses of all the places she visits on the internet, or prevent third-party trackers she's never heard of from following her from site to site. According to a recent survey by Forrester Research, a quarter of American adults use "Do Not Track" to protect their privacy. (Our own stats at Gizmodo Media Group show that 9% of visitors have it turned on.) We've got bad news for those millions of privacy-minded people, though: "Do Not Track" is like spray-on sunscreen, a product that makes you feel safe while doing little to actually protect you.

Yahoo and Twitter initially said they would respect it, only to later abandon it. The most popular sites on the internet, from Google and Facebook to Pornhub and xHamster, never honored it in the first place. Facebook says that while it doesn't respect DNT, it does "provide multiple ways for people to control how we use their data for advertising." (That is of course only true so far as it goes, as there's some data about themselves users can't access.) From the department of irony, Google's Chrome browser offers users the ability to turn off tracking, but Google itself doesn't honor the request, a fact Google added to its support page some time in the last year. [...] "It is, in many respects, a failed experiment," said Jonathan Mayer, an assistant computer science professor at Princeton University. "There's a question of whether it's time to declare failure, move on, and withdraw the feature from web browsers." That's a big deal coming from Mayer: He spent four years of his life helping to bring Do Not Track into existence in the first place. Only a handful of sites actually respect the request -- the most prominent of which are Pinterest and Medium (Pinterest won't use offsite data to target ads to a visitor who's elected not to be tracked, while Medium won't send their data to third parties.)

YouTube is facing outage worldwide, users and web tracker DownDetector reported Tuesday evening. Users attempting to visit the site have reported seeing a blank website frame instead of the usual homepage. The YouTube app also showed the same problems. In a tweet, YouTube said it was working on resolving the issues on YouTube, YouTube TV, and YouTube Music.

Update: The issue has been resolved.

A couple months ago, it was reported that the dearly departed mobile brand known as Palm would be making a comeback. That day has finally come. Yesterday, Palm announced The Palm, a credit card-sized Android smartphone that's supposed to act as a second phone. Droid Life reports: The Palm, which is its name, is a mini-phone with a 3.3-inch HD display that's about the size of a credit card, so it should fit nicely in your palm. It could be put on a chain or tossed in a small pocket or tucked just about anywhere, thanks to that small size. It's still a mostly fully-featured smartphone, though, with cameras and access to Android apps and your Verizon phone number and texts.

The idea here is that you have a normal phone with powerful processor and big screen that you use most of the time. But when you want to disconnect some, while not being fully disconnected, you could grab Palm instead of your other phone. It uses Verizon's NumberSync to bring your existing phone number with you, just like you would if you had an LTE smartwatch or other LTE equipped device. Some of the specs of this Verizon-exclusive phone include a Snapdragon 435 processor with 3GB RAM, 32GB storage, 12MP rear and 8MP front cameras, 800mAh battery, IP68 water and dust resistance, and Android 8.1. As Kellen notes, "It does cost $350, which is a lot for a faux phone..."

We've already seen a number of gadget fans perplexed by this device. Digital Trends goes as far as calling it "the stupidest product of the year."

An anonymous reader quotes a report from TechCrunch: Morgan Knutson, a UI designer who seven years ago, spent eight months at Google working on its recently shuttered social networking product Google+ and who, in light of the shutdown, decided to share on Twitter his personal experience with how "awful the project and exec team was." It's a fairly long read, but among his most notable complaints is that former Google SVP Vic Gundotra, who oversaw Google+, ruled by fear and never bothered to talk with Knutson, whose desk was "directly next to Vic's glass-walled office. He would walk by my desk dozens of times during the day. He could see my screen from his desk. During the 8 months I was there, culminating in me leading the redesign of his product, Vic didn't say a word to me. No hello. No goodbye, or thanks for staying late. No handshake. No eye contact."

He also says Gundotra essentially bribed other teams within Google to incorporate Google+'s features into their products by promising them handsome financial rewards for doing so atop their yearly bonuses. "You read that correctly, "tweeted Knutson. "A f*ck ton of money to ruin the product you were building with bloated garbage that no one wanted." Gundotra is today the cofounder and CEO of AliveCor, maker of a device that captures a "medical grade" E.K.G. within 30 seconds; AliveCor has gone on to raise $30 million from investors, including the Mayo Clinic. Asked about Knutson's characterization of him, Gundotra suggested the rant was "absurd" but otherwise declined to comment. Knutson goes on to paint "a picture of a political, haphazard, wasteful and ultimately disappointing division where it was never quite clear who should be working on what or why," reports TechCrunch.

Facebook is reportedly testing a feature that will let you take back what you send via Messenger. The company said it was working on the feature back in April after TechCrunch caught it deleting messages from CEO Mark Zuckerberg. After TechCrunch asked Facebook about its progress on the Unsend feature, the company said: "Though we have nothing to announce today, we have previously confirmed that we intend to ship a feature like this and are still planning to do so." From the report: Now we have our first look at the feature thanks to TechCrunch's favorite tipster Jane Manchun Wong. She's managed to generate screenshots of a prototype Unsend button from Facebook Messenger's Android code. Currently, you can only delete messages from your own inbox -- they still remain in the recipients' inbox. But with this Unsend feature prototype, you're able to remove a message from both sides of a conversation. However, the code indicates that in the current prototype there's a "time limit." That may mean users would only have a certain amount of time after they send a message to unsend it. That would essentially be an editing window in which users could take back what they said.

"The UK Parliament caused a bit of a stir this week with the news that it would play host to its first non-human witness," reports The Verge. "A press release from one of Parliament's select committees (groups of MPs who investigate an issue and report back to their peers) said it had invited Pepper the robot to 'answer questions' on the impact of AI on the labor market." From the report: "Pepper is part of an international research project developing the world's first culturally aware robots aimed at assisting with care for older people," said the release from the Education Committee. "The Committee will hear about her work [and] what role increased automation and robotics might play in the workplace and classroom of the future." It is, of course, a stunt.

As a number of AI and robotics researchers pointed out on Twitter, Pepper the robot is incapable of giving such evidence. It can certainly deliver a speech the same way Alexa can read out the news, but it can't formulate ideas itself. As one researcher told MIT Technology Review, "Modern robots are not intelligent and so can't testify in any meaningful way." Parliament knows this. In an email to The Verge, a media officer for the Education Committee confirmed that Pepper would be providing preprogrammed answers written by robotics researchers from Middlesex University, who are also testifying on the same panel. "It will be clear on the day that Pepper's responses are not spontaneous," said the spokesperson. "Having Pepper appear before the Committee and the chance to question the witnesses will provide an opportunity for members to explore both the potential and limitations of such technology and the capabilities of robots." MP Robert Halfon, the committee's chair, told education news site TES that inviting Pepper was "not about someone bringing an electronic toy robot and doing a demonstration" but showing the "potential of robotics and artificial intelligence." He added: "If we've got the march of the robots, we perhaps need the march of the robots to our select committee to give evidence."

Tesla's model 3 is now one of the five top-selling sedans in America (while sales of the Mercedes-Benz C-Class are down 28 percent through September), Bloomberg reports. Elon Musk tweeted out a link to their article on Thursday -- but it was his other tweet, a satirical criticism of the SEC, that made headlines. MarketWatch reports: Tesla shares ended 7% lower on Friday as Wall Street reacted to Musk's tweet seemingly out of nowhere late Thursday about the "Shortseller Enrichment Commission." Musk also tweeted that day that short sellers were "value destroyers" and should be illegal. Friday's losses for Tesla "produced more than half a billion in paper profit for the shorts," S3 Partners LLC, which tracks real-time short interest data, said in a note. Since news of the Musk's settlement with the SEC, shorts are up $941 million, S3 Partners said. "Clearly short positions are building in the wake of strong selling by longs, as Musk demonstrates a refusal to keep away from controversy," the note said.
The article notes that last Saturday the SEC settled charges that Musk misled investors with a tweet about taking Tesla private. "Terms of the settlement included requiring Tesla to rein in Musk's social-media communications, but it was unclear when Tesla intends to implement that.... The settlement has yet to be court-approved."

On Friday Musk was back on point, tweeting out the news that Tesla owners "can refer someone to buy a Tesla & get any image they want laser etched in glass & sent to deep space for millions of years."

Tesla's model 3 is now one of the five top-selling sedans in America (while sales of the Mercedes-Benz C-Class are down 28 percent through September), Bloomberg reports. Elon Musk tweeted out a link to their article on Thursday -- but it was his other tweet, a satirical criticism of the SEC, that made headlines. MarketWatch reports: Tesla shares ended 7% lower on Friday as Wall Street reacted to Musk's tweet seemingly out of nowhere late Thursday about the "Shortseller Enrichment Commission." Musk also tweeted that day that short sellers were "value destroyers" and should be illegal. Friday's losses for Tesla "produced more than half a billion in paper profit for the shorts," S3 Partners LLC, which tracks real-time short interest data, said in a note. Since news of the Musk's settlement with the SEC, shorts are up $941 million, S3 Partners said. "Clearly short positions are building in the wake of strong selling by longs, as Musk demonstrates a refusal to keep away from controversy," the note said.
The article notes that last Saturday the SEC settled charges that Musk misled investors with a tweet about taking Tesla private. "Terms of the settlement included requiring Tesla to rein in Musk's social-media communications, but it was unclear when Tesla intends to implement that.... The settlement has yet to be court-approved."

On Friday Musk was back on point, tweeting out the news that Tesla owners "can refer someone to buy a Tesla & get any image they want laser etched in glass & sent to deep space for millions of years."

Tesla's model 3 is now one of the five top-selling sedans in America (while sales of the Mercedes-Benz C-Class are down 28 percent through September), Bloomberg reports. Elon Musk tweeted out a link to their article on Thursday -- but it was his other tweet, a satirical criticism of the SEC, that made headlines. MarketWatch reports: Tesla shares ended 7% lower on Friday as Wall Street reacted to Musk's tweet seemingly out of nowhere late Thursday about the "Shortseller Enrichment Commission." Musk also tweeted that day that short sellers were "value destroyers" and should be illegal. Friday's losses for Tesla "produced more than half a billion in paper profit for the shorts," S3 Partners LLC, which tracks real-time short interest data, said in a note. Since news of the Musk's settlement with the SEC, shorts are up $941 million, S3 Partners said. "Clearly short positions are building in the wake of strong selling by longs, as Musk demonstrates a refusal to keep away from controversy," the note said.
The article notes that last Saturday the SEC settled charges that Musk misled investors with a tweet about taking Tesla private. "Terms of the settlement included requiring Tesla to rein in Musk's social-media communications, but it was unclear when Tesla intends to implement that.... The settlement has yet to be court-approved."

On Friday Musk was back on point, tweeting out the news that Tesla owners "can refer someone to buy a Tesla & get any image they want laser etched in glass & sent to deep space for millions of years."

Tesla's model 3 is now one of the five top-selling sedans in America (while sales of the Mercedes-Benz C-Class are down 28 percent through September), Bloomberg reports. Elon Musk tweeted out a link to their article on Thursday -- but it was his other tweet, a satirical criticism of the SEC, that made headlines. MarketWatch reports: Tesla shares ended 7% lower on Friday as Wall Street reacted to Musk's tweet seemingly out of nowhere late Thursday about the "Shortseller Enrichment Commission." Musk also tweeted that day that short sellers were "value destroyers" and should be illegal. Friday's losses for Tesla "produced more than half a billion in paper profit for the shorts," S3 Partners LLC, which tracks real-time short interest data, said in a note. Since news of the Musk's settlement with the SEC, shorts are up $941 million, S3 Partners said. "Clearly short positions are building in the wake of strong selling by longs, as Musk demonstrates a refusal to keep away from controversy," the note said.
The article notes that last Saturday the SEC settled charges that Musk misled investors with a tweet about taking Tesla private. "Terms of the settlement included requiring Tesla to rein in Musk's social-media communications, but it was unclear when Tesla intends to implement that.... The settlement has yet to be court-approved."

On Friday Musk was back on point, tweeting out the news that Tesla owners "can refer someone to buy a Tesla & get any image they want laser etched in glass & sent to deep space for millions of years."

Instagram is testing a feature that would allow it to share your location data with Facebook, regardless of whether you're using the app or not. Researcher Jane Manchun Wong says the option, which is being tested as a setting you have to opt-in to, allows Facebook products to "build and use a history of precise locations" which the company says "helps you explore what's around you, get more relevant ads and helps improve Facebook." The Verge reports: In a statement to TechCrunch, a spokesperson from Facebook confirmed that there was no guarantee the feature would see a wide release. "We often work on ideas that may evolve over time or ultimately not be tested or released. Instagram does not currently store Location History; we'll keep people updated with any changes to our location settings in the future."

Wong has a history of correctly identifying features like this before they're officially announced. She has previously leaked Facebook's dating application, Instagram's updated two-factor authentication, and Instagram's school bio feature. Facebook is also reportedly testing a map view to see friend's locations, similar to what's already offered by Snapchat. Instagram's data sharing could provide additional data points to power this functionality, while providing Facebook with more data to better target its ads.

Last month when Boeing and SpaceX announced the first astronauts who will fly on their commercial crew spacecraft, several newspapers across the U.S. began publishing an op-ed that criticized the process by which Boeing competitor SpaceX fuels its Falcon 9 rocket. "The first op-ed appeared in a Memphis newspaper a week before the commercial crew announcement," reports Ars Technica. "In recent weeks, copies of the op-ed have also appeared in the Houston Chronicle, various Alabama newspapers, Albuquerque Journal, Florida Today, and The Washington Times." Ars Technica reports: All of these op-eds were bylined by "retired spacecraft operator" Richard Hagar, who worked for NASA during the Apollo program and now lives in Tennessee. (Based upon his limited social media postings, Hagar appears to be more interested in conservative politics than in space these days). Each op-ed cites Hagar's work on NASA's recovery from the Apollo 1 fire and the hard lessons NASA learned that day about human spaceflight. The pieces then pivot to arguing that SpaceX's load-and-go fueling process -- in which the crew will board the Dragon spacecraft on top of the Falcon 9 rocket before it is fueled -- ignores the lessons that Hagar's generation learned during Apollo.

"It's concerning to learn that some of the newer private space ventures launching today don't appreciate the same safety standards we learned to emphasize on Apollo," the op-ed states. "I suppose for Mr. Musk, inexperience is replacing the abundant safety protocols drilled into us after witnessing the Apollo 1 disaster. Astronaut safety is NASA's number one priority on any space mission. There is no reason it should not be for private space travel, but commercial space companies like SpaceX play by different rules."

There are some factual inaccuracies here. For one thing, SpaceX does play by the same rules as Boeing for commercial crew -- astronaut safety rules that NASA itself wrote. Moreover, NASA has already provisionally cleared load-and-go for Falcon 9 launches that will send the Dragon spacecraft into orbit. To try to understand his viewpoint, Ars attempted to reach Hagar by phone and email in September. In the course of this process, we learned that he did not actually submit many of these op-eds. In fact, based upon our research, at least four of the six op-eds that we located were submitted by two people with gmail.com addresses. Their names were Josh Brevik and Casey Murray. Further research revealed that two people with these names worked as "associates" at a Washington, DC-based public relations firm named Law Media Group or LMG. LMG's website says they are a 15-year-old firm that "develops and executes public-, Hill-, and agency-facing issue advocacy campaigns that shift the narrative in a changing world." The SourceWatch website more bluntly "calls LMG a 'secretive Washington DC public affairs firm' with a history of placing op-eds, and it seeks to mask the op-eds' financial sponsors," reports Ars.

At its Surface launch event, Microsoft announced a new feature for Windows 10 that will let Android users use any app on their device on a Windows 10 desktop. Microsoft is referring to the feature as app mirroring, and it appears to only be available for Android users. "It looks to be a significant step in helping bridge Windows 10 and the mobile ecosystem after the demise of Windows Phone," reports The Verge. From the report: We didn't see an extensive demo onstage, but we did get a look at a user exchanging Snapchat messages with a friend on a Surface device using the app mirroring feature. Microsoft says the feature will be available in the new Windows 10 October update.

At its Surface launch event, Microsoft announced a new feature for Windows 10 that will let Android users use any app on their device on a Windows 10 desktop. Microsoft is referring to the feature as app mirroring, and it appears to only be available for Android users. "It looks to be a significant step in helping bridge Windows 10 and the mobile ecosystem after the demise of Windows Phone," reports The Verge. From the report: We didn't see an extensive demo onstage, but we did get a look at a user exchanging Snapchat messages with a friend on a Surface device using the app mirroring feature. Microsoft says the feature will be available in the new Windows 10 October update.

bestweasel writes: The Hollywood Reporter highlights an academic paper which finds that half of the criticism aimed at director Rian Johnson over Star Wars: The Last Jedi was politically motivated. From the report: [Researcher Morten Bay's paper] titled Weaponizing The Haters: The Last Jedi and the strategic politicization of pop culture through social media manipulation, examines the online response to the movie that has come to be considered controversial amongst the larger fanbase of the franchise. Bay suggests that reputation may not be earned, and instead "finds evidence of deliberate, organized political influence measures disguised as fan arguments." He continues, "The likely objective of these measures is increasing media coverage of the fandom conflict, thereby adding to and further propagating a narrative of widespread discord and dysfunction in American society. Persuading voters of this narrative remains a strategic goal for the U.S. alt-right movement, as well as the Russian Federation."

The paper analyzes in depth the negative online reaction, which is split into three different camps: those with a political agenda, trolls and what Bay calls "real fantagonists," which he defines as genuine Star Wars fans disappointed in the movie. His findings are fascinating; "Overall, 50.9% of those tweeting negatively [about the movie] was likely politically motivated or not even human," he writes, noting that only 21.9% of tweets analyzed about the movie had been negative in the first place. "A number of these users appear to be Russian trolls," Bay writes of the negative tweets. In response to a tweet announcing the release of the paper, Last Jedi director Rian Johnson shared the tweet, adding, "Looking forward to reading it, but what the top-line describes is consistent with my experience online."