Slashdot Mirror

A new report from the workers advocacy group A Better Balance alleges that Walmart consistently punishes employees for taking sick days, even if they have proper documentation from doctors. From a report: A Better Balance interviewed and surveyed more than 1,000 Walmart workers about the company's absence control program -- which awards disciplinary "points" for absences regardless of reason -- and found the retail giant to be in violation of multiple laws. "Giving a worker a disciplinary 'point' for being absent due to a disability or for taking care of themselves or a loved one with a serious medical condition is not only unfair," the report reads, "in many instances, it runs afoul of federal, state, and local laws." Walmart spokesman Randy Hargrove told the Times that the allegations are false, and that the company "understand[s] that associates may have to miss work on occasion," and that they "have processes in place to assist them." The report's worker testimonials say differently. "I came down with a stomach flu and I had to call in due to vomiting and high fever and got a point cause of being sick," recalls an Illinois employee named Veronica. "I hate the fact we got to worry about getting fired cause we caught the flu."

Mats Jarlstrom, an electrical engineer fined by the Oregon engineering board for calling himself an "engineer" and talking about traffic lights, has been granted the temporary right by a judge to both publicly call himself an "engineer" and talk about traffic lights. Jason Koebler reports via Motherboard: Last month, Jarlstrom sued the engineering board for violating his First Amendment rights, and Tuesday a federal judge gave Jarlstrom the temporary right to call himself an engineer, pending the results of his case. "Plaintiff Jarlstrom may study, communicate publicly about, and communicate privately his theories relating to traffic lights throughout the pendency of this litigation as long as [his] communications occur outside the context of a paid employment or contractual relationship," Anna Brown, a federal district court judge for the district of Oregon, ordered. He "may describe himself publicly and privately using the word 'engineer' throughout the pendency of this litigation." Jarlstrom's attorneys say this is a promising sign and a "critical first step in protecting Oregonians' First Amendment rights."

Determining how to prevent acts of censorship has long been a priority for the non-profit Wikimedia Foundation, and thanks to new research from the Harvard Center for Internet and Society, the foundation seems to have found a solution: encryption. From a report: HTTPS prevents governments and others from seeing the specific page users are visiting. For example, a government could tell that a user is browsing Wikipedia, but couldn't tell that the user is specifically reading the page about Tiananmen Square. Up until 2015, Wikipedia offered its service using both HTTP and HTTPS, which meant that when countries like Pakistan or Iran blocked the certain articles on the HTTP version of Wikipedia, the full version would still be available using HTTPS. But in June 2015, Wikipedia decided to axe HTTP access and only offer access to its site with HTTPS. [...] The Harvard researchers began by deploying an algorithm which detected unusual changes in Wikipedia's global server traffic for a year beginning in May 2015. This data was then combined with a historical analysis of the daily request histories for some 1.7 million articles in 286 different languages from 2011 to 2016 in order to determine possible censorship events. [...] After a painstakingly long process of manual analysis of potential censorship events, the researchers found that, globally, Wikipedia's switch to HTTPS had a positive effect on the number censorship events by comparing server traffic from before and after the switch in June of 2015.

From a Motherboard report: Despite Samsung stating that a user's irises are pretty much impossible to copy, a team of hackers has done just that. Using a bare-bones selection of equipment, researchers from the Chaos Computer Club (CCC) show in a video how they managed to bypass the scanner's protections and unlock the device. "We've had iris scanners that could be bypassed using a simple print-out," Linus Neumann, one of the hackers who appears in the video. The process itself was apparently pretty simple. The hackers took a medium range photo of their subject with a digital camera's night mode, and printed the infrared image. Then, presumably to give the image some depth, the hackers placed a contact lens on top of the printed picture. And, that's it. They're in.

An anonymous reader quotes a report from Motherboard: Lobbying records in New York state show that Apple, Verizon, and the tech industry's largest trade organizations are opposing a bill that would make it easier for consumers and independent companies to repair your electronics. The bill, called the "Fair Repair Act," would require electronics companies to sell replacement parts and tools to the general public, would prohibit "software locks" that restrict repairs, and in many cases would require companies to make repair guides available to the public. Apple and other tech giants have been suspected of opposing the legislation in many of the 11 states where similar bills have been introduced, but New York's robust lobbying disclosure laws have made information about which companies are hiring lobbyists and what bills they're spending money on public record. According to New York State's Joint Commission on Public Ethics, Apple, Verizon, Toyota, the printer company Lexmark, heavy machinery company Caterpillar, phone insurance company Asurion, and medical device company Medtronic have spent money lobbying against the Fair Repair Act this year. The Consumer Technology Association, which represents thousands of electronics manufacturers, is also lobbying against the bill. The records show that companies and organizations lobbying against right to repair legislation spent $366,634 to retain lobbyists in the state between January and April of this year. Thus far, the Digital Right to Repair Coalition -- which is generally made up of independent repair shops with several employees -- is the only organization publicly lobbying for the legislation. It has spent $5,042 on the effort, according to the records.

An anonymous reader shares a Motherboard article: Humans have accidentally created a protective bubble around Earth by using very low frequency (VLF) radio transmissions to contact submarines in the ocean. It sounds nuts, but according to recent research published in Space Science Reviews, underwater communication through VLF channels has an outer space dimension. This video explainer, released by NASA on Wednesday, visualizes how radio waves wafting into space interact with the particles surrounding Earth, and influence their motion. Satellites in certain high-altitude orbits, such as NASA's particle-watching Van Allen Probes, have observed these VLF ripples creating an 'impenetrable boundary,' a phrase coined by study co-author Dan Baker, director of the University of Colorado's Laboratory for Atmospheric and Space Physics. This doesn't mean impenetrable to spacecraft or asteroids, per se, but rather to potentially harmful particle showers created by turbulent space weather.

mspohr shares a report written by Jason Koebler via Motherboard who makes the case for why you should break up with Chrome and switch to the Opera browser: Over the last few years, I have grown endlessly frustrated with Chrome's resource management, especially on MacOS. Admittedly, I open too many tabs, but I'd wager that a lot of you do, too. With Chrome, my computer crawls to complete unusability multiple times a day. After one too many times of having to go into Activity Monitor to find that one single Chrome tab is using several gigs of RAM, I decided enough was enough. I switched to Opera, a browser I had previously thought was only for contrarians. This, after previous dalliances with Safari and Firefox left me frustrated. Because Opera is also based on Blink, I almost never run into a website, plugin, script, or video that doesn't work flawlessly on it. In fact, Opera works almost exactly like Chrome, except without the resource hogging that makes me want to throw my computer against a brick wall. This is exactly the point, according to Opera spokesperson Jan Standal: "What we're doing is an optimized version of Chrome," he said. "Web developers optimize most for the browser with the biggest market share, which happens to be Chrome. We benefit from the work of that optimization."

Slashdot reader mspohr adds: "I should note that this has also been my experience. I have a 2010 MacBook, which I was ready to trash since it had become essentially useless, coming to a grinding halt daily. I tried Opera and it's like I have a new computer. I never get the spinning wheel of death. (Also, the built-in ad blocker and VPN are nice.)" What has been your experience with Google Chrome and/or Opera? Do you prefer one over the other?

Remember that "kill switch" which shut down the WannCry ransomware? An anonymous reader quotes Motherboard: Over Friday and Saturday, samples of the malware emerged without that debilitating feature, meaning that attackers may be able to resume spreading ransomware even though a security researcher cut off the original wave. "I can confirm we've had versions without the kill switch domain connect since yesterday," Costin Raiu, director of global research and analysis team at Kaspersky Lab told Motherboard on Saturday... Another researcher confirmed they have seen samples of the malware without the killswitch.

An anonymous reader shares an excerpt from a report via Motherboard: Experts believe it won't be long before China, the first country to introduce paper money, becomes the first to go totally cashless. In a poky sex toy shop in Sanlitun shopping district in central Beijing, a placard with a QR code is strategically placed next to a pink, vein-knobbled dildo called the Super Emperor, and a clitoral pump. Just scan your phone, and walk out with your purchase. The cigarette vendor across the street accepts smartphone payments too. A fast-moving queue of customers purchase smokes by scanning their phones over a tatty cardboard QR code. All the bars in Sanlitun, equal parts seedy and swish, still take cash, but have likewise implemented cashless pay, largely through the ubiquitous WeChat and Alipay app, as primary payment platforms. Beijing taxi drivers accept smartphone payments too. No one in the area uses physical money, for sex toys or otherwise. Largely due to China's vibrant fintech landscape, the recent rise of phone payments in the country has shunted cash onto the endangered list, perhaps somewhere alongside the pangolin. Many experts believe it won't be long before China, the first country to introduce paper money, also becomes the first to phase it out to become fully cashless. But when will this moment come?

Smartphone repair companies are expecting to fix a lot of those beautiful, cracked Infinity Screens, the headline feature of the Samsung Galaxy S8. From a report on Motherboard: The Samsung Galaxy S8 is expensive, popular, and fragile. Its parts can also be sourced relatively inexpensively, which means that third party repair companies are salivating over the prospect of you fumbling the phone and bringing it to them for a screen repair. "The price point is good, the repairability is there," Justin Carroll, owner of the Richmond, Virginia-based Fruit Fixed smartphone repair shop told me. "Durability-wise, it's definitely going to break, no question about that." Soon after its release, electronics insurance company SquareTrade put Samsung's new flagship phone through its breakability test, a series of drops, dunks, and tumbles. It was deemed the most breakable phone of all time: "S8 is the first phone we've tested that's cracked on the first drop on ALL sides," SquareTrade wrote in a video demonstrating the drops.There's an obvious reason for this, of course. The S8 is made almost entirely of glass, and has barely any top or bottom bezel, which is why the phone is marketed as having an "infinity screen."

An anonymous reader writes: Work under capitalism is a brutal psychological gauntlet -- low pay, long hours, and little to no safety net. But bosses usually expect you to take some solace in the fact that you're not doing their (supposedly more difficult) job, even if they make more money. Some part of you might think that's bullshit, but hey, what do you know? Well, according to new work from researchers from the University of Manchester, University College London, and the University of Essex, it probably is bullshit. According to their study, published on Friday in the Journals of Gerontology, people lower on the corporate ladder are, on average, more stressed than people higher up. Worse, according to the study, the elevated stress continues into retirement for average working people. 'Workers in lower status jobs tend to have more stressful working conditions -- they have lower pay, poorer pension arrangements, less control over their work, and report more unsupportive colleagues and managers,' Tarani Chandola, a professor of medical sociology at the University of Manchester and one of the paper's authors, wrote me in an email.

An anonymous reader writes: The FBI issued a press release about the 30-year prison sentence for a 58-year-old Florida man running "the world's largest child pornography website, with more than 150,000 users around the world." But their investigation involved what Gizmodo describes as "a decision controversial to this day" -- taking over the child pornography site and running it "for almost two weeks while distributing malware designed to unmask its visitors." Thursday the FBI described it as "a court-approved network investigative technique" which led to more than 1,000 leads in the U.S. and "thousands more" for law enforcement partners in other countries, leading to arrests in the EU, Israel, Turkey, Peru, Malaysia, Chile, and the Ukraine. Those 1,000 U.S. leads led to "at least 350 U.S-based individuals arrested", as well as actual prosecutions of 25 producers of child pornography and 51 hands-on abusers, while 55 children were "identified or rescued" in America, and another 296 internationally who were sexually abused.

Though Motherboard describes it as hacking "over 8,000 computers in 120 countries based on one warrant," the FBI calls it their "most successful effort to date against users of Tor's hidden service sites," adding that the agency "has numerous investigations involving the dark web." Though they'd soon became aware of the site's existence, "given the nature of how Tor hidden services work, there was not much we could do about it" -- until a foreign law enforcement agency discovered the site had "slipped up" by revealing its actual IP address, and notified the U.S. investigators. The FBI also says the investigation "has opened new avenues for international cooperation in efforts to prosecute child abusers around the world."
The site's two other administrators -- both men in their 40s -- were also given 20-year prison sentences earlier this year.

Slashdot reader martiniturbide writes: For those who lived the console emulator and retrogaming boom on the late 90's there is this interesting article about the story of NESticle posted at Motherboard. NESticle was a Nintendo Entertainment System (NES) console emulator that had a huge success in the early internet era and helped to start the emulation scene. The author of the story, Ernie Smith, also posted an extra second part of the story... NESticle was "the product of a talented programmer who designed a hit shareware game while he was still in high school," according to the article, which credits the 1997 emulator with popularizing now-standard emulator features like movie recording and save states, as well as user modifications. Programmed in assembly code and C++ and targeting 468 processors, NESticle was followed by emulators for the Sega Genesis and the Capcom arcade platform before Icer Addis moved on to a professional career in the gaming industry, working for Electronic Arts and Zynga. Leave a comment if you're a fan of classic game emulators -- or if you just want to share your own fond memories of that late-'90s emulation scene.

An anonymous reader quotes a report from Motherboard: For almost six years, Google knew about the exact technique that someone used to trick around one million people into giving away access to their Google accounts to hackers on Wednesday. Even more worrisome: other hackers might have known about this technique as well. On October 4, 2011, a researcher speculated in a mailing list that hackers could trick users into giving them access to their accounts by simply posing as a trustworthy app. This attack, the researcher argued in the message, hinges on creating a malicious application and registering it on the OAuth service under a name like "Google," exploiting the trust that users have in the OAuth authorization process. OAuth is a standard that allows users to grant websites or applications access to their online email and social networking accounts, or parts of their accounts, without giving up their passwords. "Imagine someone registers a client application with an OAuth service, let's call it Foobar, and he names his client app 'Google, Inc.'. The Foobar authorization server will engage the user with 'Google, Inc. is requesting permission to do the following,'" Andre DeMarre wrote in the message sent to the Internet Engineering Task Force (IETF), the independent organization responsible for many of the internet's operating standards. "The resource owner might reason, 'I see that I'm legitimately on the https://www.foobar.com/ site, and Foobar is telling me that Google wants permission. I trust Foobar and Google, so I'll click Allow,'" DeMarre concluded. As it turns out, DeMarre claims he warned Google directly about this vulnerability in 2012, and suggested that Google address it by checking to see ensure the name of any given app matched the URL of the company behind it. In a Hacker News post, DeMarre said he reported this attack vector back then, and got a "modest bounty" for it.

A known security hole in the networking protocol used by cellphone providers around the world played a key role in a recent string of attacks that drained bank customer accounts, according to a report published Wednesday. From the article: For years, researchers, hackers, and even some politicians have warned about stark vulnerabilities in a mobile data network called SS7. These flaws allow attackers to listen to calls, intercept text messages, and pinpoint a device's location armed with just the target's phone number. Taking advantage of these issues has typically been reserved for governments or surveillance contractors. But on Wednesday, German newspaper The Suddeutsche Zeitung reported that financially-motivated hackers had used those flaws to help drain bank accounts. This is much bigger than a series of bank accounts though: it cements the fact that the SS7 network poses a threat to all of us, the general public. And it shows that companies and services across the world urgently need to move away from SMS-based authentication to protect customer accounts.

The Chinese government is recruiting 20,000 people to create an online encyclopedia that will be the country's own, China-centric version of Wikipedia, or as one official put it, like "a Great Wall of culture." From a report: Known as the "Chinese Encyclopedia," the country's national encyclopedia will go online for the first time in 2018, and the government has employed tens of thousands of scholars from universities and research institutes who will contribute articles in more than 100 disciplines. The end result will be a knowledge base with more than 300,000 entries, each of which will be about 1,000 words long. "The Chinese Encyclopaedia is not a book, but a Great Wall of culture," Yang Muzhi, the editor-in-chief of the project and the chairman of the Book and Periodicals Distribution Association of China, said. He added that China was under pressure from the international community to produce an encyclopedia that will "guide and lead the public and society."

Nomx, a startup that offers an email client by the same name, bills itself as the maker of the "world's most secure email service." The startup goes on to suggest that "everything else is insecure." So it was only a matter of time before someone decided to spend some time on assessing how valid Nomx's claims are. Very misleading, it turns out. From a report on Motherboard: Nomx sells a $199 device that essentially helps you set up your own email server in an attempt to keep your emails away from mail exchange (or MX) -- hence the brand name -- servers, which the company claims to be inherently "vulnerable." Security researcher Scott Helme took apart the device and tried to figure out how it really works. According to his detailed blog post, what he found is that the box is actually just a Raspberry Pi with outdated software on it, and several bugs. So many, in fact, that Helme wrote Nomx's "code is riddled with bad examples of how to do things." The worst issue, Helme explained, is that the Nomx's web application had a vulnerability that allowed anyone to take full control of the device remotely just by tricking someone to visit a malicious website. "I could read emails, send emails, and delete emails. I could even create my own email address," Helme told Motherboard in an online chat. A report on BBC adds: Nomx said the threat posed by the attack detailed by Mr Helme was "non-existent for our users." Following weeks of correspondence with Mr Helme and the BBC Click Team, he said the firm no longer shipped versions that used the Raspberry Pi. Instead, he said, future devices would be built around different chips that would also be able to encrypt messages as they travelled. "The large cloud providers and email providers, like AOL, Yahoo, Gmail, Hotmail - they've already been proven that they are under attack millions of times daily," he said. "Why we invented Nomx was for the security of keeping your data off those large cloud providers. To date, no Nomx accounts have been compromised."

Using a new facial recognition surveillance system, British police will scan every fan's face at the UEFA Champions League on June 3rd and compare them to a police database of some 500,000 "persons of interest." "According to a government tender issued by South Wales Police, the system will be deployed during the day of the game in Cardiff's main train station, as well as in and around the Principality Stadium situated in the heart of Cardiff's central retail district." From the report: Cameras will potentially be scanning the faces of an estimated 170,000 visitors plus the many more thousands of people in the vicinity of the bustling Saturday evening city center on match day, June 3. Captured images will then be compared in real time to 500,000 custody images stored in the police information and records management system alerting police to any "persons of interest," according to the tender. The security operation will build on previous police use of Automated Facial Recognition, or AFR technology by London's Metropolitan Police during 2016's Notting Hill Carnival.

On Wednesday, Amazon announced the Echo Look, the latest gadget in the company's new Echo-powered hardware lineup. Motherboard explains: The newly announced Echo Look is a virtual assistant with a microphone and a camera that's designed to go somewhere in your bedroom, bathroom, or wherever the hell you get dressed. Amazon is pitching it as an easy way to snap pictures of your outfits to send to your friends when you're not sure if your outfit is cute, but it's also got a built-in app called StyleCheck that is worth some further dissection. [...] "All photos and video captured with your Echo Look are securely stored in the AWS cloud and locally in the Echo Look app until a customer deletes them," a spokesperson for the company said. "You can delete the photos or videos associated with your account anytime in the Echo Look App." Motherboard also asked if Echo Look photos, videos, and the data gleaned from them would be sold to third parties; the company did not address that question.

pogopop77 quotes a report from Motherboard: In September 2014, Mats Jarlstrom, an electronics engineer living in Beaverton, Oregon, sent an email to the state's engineering board. The email claimed that yellow traffic lights don't last long enough, which "puts the public at risk." "I would like to present these facts for your review and comments," he wrote. This email resulted not with a meeting, but with a threat from The Oregon State Board of Examiners for Engineering and Land Surveying [stating]: "ORS 672.020(1) prohibits the practice of engineering in Oregon without registration -- at a minimum, your use of the title 'electronics engineer' and the statement 'I'm an engineer' create violations." In January of this year, Jarlstrom was officially fined $500 by the state for the crime of "practicing engineering without being registered." Since the engineering board in Oregon said Jarlstrom should not be free to publish or present his ideas about the fast-turning yellow traffic lights, due to his "practice of engineering in Oregon without registration," he and the Institute for Justice sued them in federal court for violating his First Amendment rights. "I'm not practicing engineering, I'm just using basic mathematics and physics, Newtonian laws of motion, to make calculations and talk about what I found," he said. Sam Gedge, an attorney for the Institute for Justice, told Motherboard: "Mats has a clear First Amendment right to talk about anything from taxes to traffic lights. It's an instance of a licensing board trying to suppress speech."

An anonymous reader quotes a report from Motherboard: Apple released its Environmental Responsibility Report Wednesday, an annual grandstanding effort that the company uses to position itself as a progressive, environmentally friendly company. Behind the scenes, though, the company undermines attempts to prolong the lifespan of its products. Apple's new moonshot plan is to make iPhones and computers entirely out of recycled materials by putting pressure on the recycling industry to innovate. But documents obtained by Motherboard using Freedom of Information requests show that Apple's current practices prevent recyclers from doing the most environmentally friendly thing they could do: Salvage phones and computers from the scrap heap. Apple rejects current industry best practices by forcing the recyclers it works with to shred iPhones and MacBooks so they cannot be repaired or reused -- instead, they are turned into tiny shards of metal and glass. "Materials are manually and mechanically disassembled and shredded into commodity-sized fractions of metals, plastics, and glass," John Yeider, Apple's recycling program manager, wrote under a heading called "Takeback Program Report" in a 2013 report to Michigan Department of Environmental Quality. "All hard drives are shredded in confetti-sized pieces. The pieces are then sorted into commodities grade materials. After sorting, the materials are sold and used for production stock in new products. No reuse. No parts harvesting. No resale."

A team of researchers from Germany's Hasso-Plattner Institute is trying to find an effective way to trick the mind into thinking a virtual object or wall is real. They have developed a new device that "sends little electric shocks to sensors on your arms that stimulate your muscles whenever you press against a wall or try to lift a heavy object in virtual reality," reports Motherboard. From the report: The team's main goal was to create this illusion as cheaply as possible. Their contraption, seen in the video above, consists of little more than an electric muscle stimulator stuffed in a backpack, the sensors, and a Samsung GearVR device accompanied by motion trackers. In other words, if you've been turned off by the clunky headsets of the contemporary VR experience, this probably won't do much to win you over.

Researchers recently surveyed 2,200 software developers to calculate the distribution of unhappiness throughout the profession, and to identify its top causes, "incorporating a psychometrically validated instrument for measuring (un)happiness." An anonymous reader quotes Motherboard: Daniel Graziotin and his team found their survey subjects via GitHub. Contact information was found by mining archived data for past public GitHub events, where email addresses are apparently more plentiful. They wound up with 33,200 records containing developer locations, contact information, and employers. They took a random sampling from this dataset and wound up with about 1,300 valid survey responses... According to survey results released earlier this month, software developers are on average a "slightly happy" group of workers...

Survey responses were scored according to the SPANE-B metric, a standard tool used in psychology to assess "affect," defined as total negative feelings subtracted from total positive feelings. It ranges from -24 to 24. The mean score found in the developer happiness survey was 9.05. Slightly happy. The minimum was -16, while the maximum was 24. So, even in the worst cases, employees weren't totally miserable, whereas in the best cases employees weren't miserable at all.
The paper -- titled "On the Unhappiness of Software Developers" -- found that the top cause of unhappiness was being stuck while solving a problem, followed by "time pressure," bad code quality/coding practices, and "under-performing colleague."

And since happiness has been linked to productivity, the researchers write that "Our results, which are available as open data, can act as guidelines for practitioners in management positions and developers in general for fostering happiness on the job...unhappiness is present, caused by various factors and some of them could easily be prevented."

The future of illegal torrent websites doesn't look good. As torrent websites continue to disappear, the founder of The Pirate Bay believes the trend is the just the beginning. From an article: While it might look like torrenters are are still fighting this battle, Sunde claims that the reality is more definitive: "We have already lost." [...] Take the net neutrality law in Europe. It's terrible, but people are happy and go like "it could be worse." That is absolutely not the right attitude. Facebook brings the internet to Africa and poor countries, but they're only giving limited access to their own services and make money off of poor people. [...] Well, I have given up the idea that we can win this fight for the internet. The situation is not going to be any different, because apparently that is something people are not interested in fixing. Or we can't get people to care enough. Maybe it's a mixture, but this is kind of the situation we are in, so its useless to do anything about it. We have become somehow the Black Knight from Monty Python's Holy Grail. We have maybe half of our head left and we are still fighting, we still think we have a chance of winning this battle.

Chattanooga, Tennessee is home to some of the fastest internet speeds in the United States, offering city dwellers Gbps and 10 Gpbs connections. Instead of voting to expand those connections to the rural areas surrounding the city, which have dial up, satellite, or no internet whatsoever, Tennessee's legislature voted to give Comcast and AT&T a $45 million taxpayer handout. Motherboard reports: The situation is slightly convoluted and thoroughly infuriating. EPB -- a power and communications company owned by the Chattanooga government -- offers 100 Mbps, 1 Gbps, and 10 Gpbs internet connections. A Tennessee law that was lobbied for by the telecom industry makes it illegal for EPB to expand out into surrounding areas, which are unserved or underserved by current broadband providers. For the last several years, EPB has been fighting to repeal that state law, and even petitioned the Federal Communications Commission to try to get the law overturned. This year, the Tennessee state legislature was finally considering a bill that would have let EPB expand its coverage (without providing it any special tax breaks or grants; EPB is profitable and doesn't rely on taxpayer money). Rather than pass that bill, Tennessee has just passed the "Broadband Accessibility Act of 2017," which gives private telecom companies -- in this case, probably AT&T and Comcast -- $45 million of taxpayer money over the next three years to build internet infrastructure to rural areas.

Hacker group 'The Shadow Brokers', which last year allegedly released top-secret tools that the National Security Agency had used to break into the networks of foreign governments and other espionage targets, today said it is disappointed with President Donald Trump, and released more such alleged tools. From a report on Motherboard: On Saturday, The Shadow Brokers, a hacker or group of hackers that has previously dumped NSA hacking tools, released more alleged exploits. The group published a password for an encrypted cache of files they distributed last year. "Be considering this our form of protest," the group wrote in a rambling, politically loaded rant published on Medium. Back in August, The Shadow Brokers released a number of exploits stolen from the NSA. Many of these affected hardware firewalls, from companies such as Cisco and Juniper. At the time, the group also dumped another cache allegedly containing more hacking tools, and said they would release the corresponding password to the winner of a bitcoin auction. That fund-raising effort was ultimately unsuccessful, and The Shadow Brokers claimed they were calling the whole thing off in January. But now, anyone can unlock the auction data dump. (Motherboard confirmed that the password did indeed decrypt the original auction file). In a series of tweets, Edward Snowden said, "NSA just lost control of its Top Secret arsenal of digital weapons; hackers leaked it. 1) https://github.com/x0rz/EQGRP 2) For those who have never heard of the hacker group behind today's leak of NSA's cyberweapons, last year's story."

He adds, "quick review of the ShadowBrokers leak of Top Secret NSA tools reveals it's nowhere near the full library, but there's still so much here that NSA should be able to instantly identify where this set came from and how they lost it. If they can't, it's a scandal."

Jason Koebler, reporting for Motherboard: Apple has taken new and extreme measures to make the iPhone unrepairable. The company is now using software locks to prevent independent repair of specific parts of the phone. Specifically, the home buttons of the iPhone 7 and iPhone 7 Plus are not user replaceable, raising questions about both the future repairability of Apple products and the future of the thriving independent repair industry. The iPhone 7 home button will only work with the original home button that it was shipped with; if it breaks and needs to be replaced, a new one will only work if it is "recalibrated" in an Apple Store.

Reader Freshly Exhumed writes: Nicholas Deleon at Motherboard reveals a run-in with scammers who are already hard at work taking advantage of newly signed legislation that allows Internet Service Providers to sell your online privacy, including your web browser history, to the highest bidder without your consent. Relatedly, Tim Berners-Lee would prefer people to protest in the streets rather than take technical measures such as TOR and VPN. For those intent on using VPN, TorrentFreak has their latest reviews of VPN anonimity practices, with the caveat that the info is submitted by the VPN companies themselves on a "trust us" basis.

Samsung has been working on its Tizen operating system for several years now, implementing it into its various televisions and smartwatches. According to a report from Motherboard, the OS isn't receiving a lot of praise in the security department. Israeli researcher Amihai Neiderman has found 40 unknown zero-day vulnerabilities in Tizen, adding that it may be the worst code he's ever seen. From the report: "It may be the worst code I've ever seen," he told Motherboard in advance of a talk about his research that he is scheduled to deliver at Kaspersky Lab's Security Analyst Summit on the island of St. Maarten on Monday. "Everything you can do wrong there, they do it. You can see that nobody with any understanding of security looked at this code or wrote it. It's like taking an undergraduate and letting him program your software." All of the vulnerabilities would allow hackers to take control of a Samsung device from afar, in what's called remote-code execution. But one security hole Neiderman uncovered was particularly critical. It involves Samsung's TizenStore app -- Samsung's version of Google Play Store -- which delivers apps and software updates to Tizen devices. Neiderman says a flaw in its design allowed him to hijack the software to deliver malicious code to his Samsung TV. Because the TizenStore software operates with the highest privileges you can get on a device, it's the Holy Grail for a hacker who can abuse it. Although TizenStore does use authentication to make sure only authorized Samsung software gets installed on a device, Neiderman found a heap-overflow vulnerability that gave him control before that authentication function kicked in. Although researchers have uncovered problems with other Samsung devices in the past, Tizen has escaped extensive scrutiny from the security community, probably because it's not widely used on phones yet.

schwit1 quotes a report from VICE: With the use of electrodes and sensors -- and zero lemons -- a group of researchers at the University of Singapore have announced that they can convince you that you're drinking lemonade, even if it's just water. Plus, they can send you a glass of lemonade virtually over the internet. In an experiment that involved 13 tasters, the subjects' taste buds were stimulated using electricity from receiving electrodes; LED lights mimicked a lemony color. Some were convinced that the water they were drinking was, in fact, almost as sour as lemonade. According to researcher Nimesha Ranasinghe, the experiment proved that taste can be shared online: "People are always posting pictures of drinks on social media -- what if you could upload the taste as well? That's the ultimate goal." Each of the subjects was given a tumbler filled with a liquid that was either cloudy white, green, or yellow. They were told to place their tongues on the rim of the tumbler before sipping. Then they took a taste and rated the beverage on appearance and taste. Some of the liquids were plain water and some were lemonade. "We're working on a full virtual cocktail with smell, taste, and color all covered. We want to be able to create any drink." Why would anyone want to drink a virtual lemonade? Advocates of virtual eating say that virtual foods can replace foods that are bad for you, that you may be allergic to, or that you shouldn't eat because of a medical condition.

Stories about the first human head transplant operation, supposedly coming in December 2017, are circulating again. From a report on the Outline: But despite what you might have read or seen, humanity is not much closer to transplanting a human head to a new body than we were last year. Sorry to disappoint anyone looking to get their head transplanted. The story is based on the work of one man: Italian neurosurgeon Sergio Canavero. Canavero started making headlines in 2013 with ambitious claims about the process he designed for a transplant of a human head -- as in, moving a healthy human head from a subject with an unhealthy body to an otherwise-healthy, brain-dead donor body. Canavero's claims have been alternately regarded as sensationalist, spurious, and ethically murky. Since then, the doctor has periodically resurfaced in the news. Once, when he found a willing patient in Valery Spiridonov, a Russian man with spinal muscular atrophy in the form of Werdnig-Hoffmann disease; other times when he published papers, including two proof-of-principle studies last year as well as articles reviewing preliminary work on animals relating to his proposed procedure. Though published in the internet-only journal Surgical Neurology International, an important distinction here is that none of these actually involve a successful full transplant of any kind despite his claim to have successfully transplanted a monkey's head. The papers addressing work with animals are, broadly speaking, about treating spinal cord injuries and issues.

Stories about the first human head transplant operation, supposedly coming in December 2017, are circulating again. From a report on the Outline: But despite what you might have read or seen, humanity is not much closer to transplanting a human head to a new body than we were last year. Sorry to disappoint anyone looking to get their head transplanted. The story is based on the work of one man: Italian neurosurgeon Sergio Canavero. Canavero started making headlines in 2013 with ambitious claims about the process he designed for a transplant of a human head -- as in, moving a healthy human head from a subject with an unhealthy body to an otherwise-healthy, brain-dead donor body. Canavero's claims have been alternately regarded as sensationalist, spurious, and ethically murky. Since then, the doctor has periodically resurfaced in the news. Once, when he found a willing patient in Valery Spiridonov, a Russian man with spinal muscular atrophy in the form of Werdnig-Hoffmann disease; other times when he published papers, including two proof-of-principle studies last year as well as articles reviewing preliminary work on animals relating to his proposed procedure. Though published in the internet-only journal Surgical Neurology International, an important distinction here is that none of these actually involve a successful full transplant of any kind despite his claim to have successfully transplanted a monkey's head. The papers addressing work with animals are, broadly speaking, about treating spinal cord injuries and issues.

"Computer scientists at Nanyang Technological University in Singapore have developed a new intelligent routing algorithm that attempts to minimize the occurrence of spontaneous traffic jams -- those sudden snarls caused by greedy merges and other isolated disruptions -- throughout a roadway network," reports Motherboard. "It's both computationally distributed and fast, requirements for any real-world traffic management system. Their work is described in the April issue of IEEE Transactions on Emerging Topics in Computational Intelligence." From the report: The Nanyang researchers' algorithm starts off by just assuming that, given enough traffic density, shit is going to happen. Someone is going to make a greedy merge -- something is going to cause enough of a traffic perturbation to result in a network breakdown. Breakdown in this context is a technical-ish term indicating that for some period of time the traffic outflow from a segment of roadway is going to be less than the traffic inflow. "We assume that the traffic breakdown model has already been given, and the probability of traffic breakdown occurrence is larger than zero (meaning that traffic breakdowns would occur), and our goal is to direct the traffic flow so that the overall traffic breakdown probability is minimized," Hongliang Guo and colleagues write. Put differently, "our objective is to maximize the probability that none of the network links encounters a traffic breakdown." So, the goal of the algorithm is this maximization, which reduces to a fairly tidy equation. It then becomes a machine learning problem. Things get pretty messy at this point, but just understand that we're taking the current traffic load, adding an unknown additional load that might enter the network at any time, and then coming up with probabilities of network breakdown at each of the network's nodes or intersections. Crunch some linear algebra and we wind up with optimal routes through the network. Crucially, Guo and co. were able to come up with some mathematical optimizations that make this kind of calculation feasible in real-time. They were able to demonstrate their algorithm in simulations and are currently working on a further analysis with BMW, which is providing a vast trove of data from its Munich car-sharing fleet. This may not be as distant a technology as it might seem. As it turns out, only 10 percent of cars in a network need to be driving according to the optimizations for those optimizations to have a positive effect on the entire network.

WikiLeaks said on Thursday morning it will release new documents it claims are from the Central Intelligence Agency which show the CIA had the capability to bug iPhones and Macs even if their operating systems have been deleted and replaced. From a report on Motherboard: "These documents explain the techniques used by CIA to gain 'persistenc'' on Apple Mac devices, including Macs and iPhones and demonstrate their use of EFI/UEFI and firmware malware," WikiLeaks stated in a press release. EFI and UEFI is the core firmware for Macs, the Mac equivalent to the Bios for PCs. By targeting the UEFI, hackers can compromise Macs and the infection persists even after the operating system is re-installed. The documents are mostly from last decade, except a couple that are dated 2012 and 2013. While the documents are somewhat dated at this point, they show how the CIA was perhaps ahead of the curve in finding new ways to hacking and compromising Macs, according to Pedro Vilaca, a security researcher who's been studying Apple computers for years. Judging from the documents, Vilaca told Motherboard in an online chat, it "looks like CIA were very early adopters of attacks on EFI."

A hacker or group of hackers calling themselves the "Turkish Crime Family" claim they have access to at least 300 million iCloud accounts, and will delete the alleged cache of data if Apple pays a ransom by early next month. Motherboard is reporting that the hackers are demanding "$75,000 in Bitcoin or Ethereum, another increasingly popular crypto-currency, or $100,000 worth of iTunes gift cards in exchange for deleting the alleged cache of data." From the report: The hackers provided screenshots of alleged emails between the group and members of Apple's security team. One also gave Motherboard access to an email account allegedly used to communicate with Apple. "Are you willing to share a sample of the data set?" an unnamed member of Apple's security team wrote to the hackers a week ago, according to one of the emails stored in the account. (According to the email headers, the return-path of the email is to an address with the @apple.com domain). The hackers also uploaded a YouTube video of them allegedly logging into some of the stolen accounts. The hacker appears to access an elderly woman's iCloud account, which includes backed-up photos, and the ability to remotely wipe the device. Now, the hackers are threatening to reset a number of the iCloud accounts and remotely wipe victim's Apple devices on April 7, unless Apple pays the requested amount. According to one of the emails in the accessed account, the hackers claim to have access to over 300 million Apple email accounts, including those use @icloud and @me domains. However, the hackers appear to be inconsistent in their story; one of the hackers then claimed they had 559 million accounts in all. The hackers did not provide Motherboard with any of the supposedly stolen iCloud accounts to verify this claim, except those shown in the video.

Tractor owners across the country are reportedly hacking their John Deere tractors using firmware that's cracked in Easter Europe and traded on invite-only, paid online forums. The reason is because John Deere and other manufacturers have "made it impossible to perform 'unauthorized' repair on farm equipment," which has obviously upset many farmers who see it "as an attack on their sovereignty and quite possibly an existential threat to their livelihood if their tractor breaks at an inopportune time," reports Jason Koebler via Motherboard. As is the case with most modern-day engineering vehicles, the mechanical problems experienced with the newer farming tractors are often remedied via software. From the report: The nightmare scenario, and a fear I heard expressed over and over again in talking with farmers, is that John Deere could remotely shut down a tractor and there wouldn't be anything a farmer could do about it. A license agreement John Deere required farmers to sign in October forbids nearly all repair and modification to farming equipment, and prevents farmers from suing for "crop loss, lost profits, loss of goodwill, loss of use of equipment [...] arising from the performance or non-performance of any aspect of the software." The agreement applies to anyone who turns the key or otherwise uses a John Deere tractor with embedded software. It means that only John Deere dealerships and "authorized" repair shops can work on newer tractors. "If a farmer bought the tractor, he should be able to do whatever he wants with it," Kevin Kenney, a farmer and right-to-repair advocate in Nebraska, told me. "You want to replace a transmission and you take it to an independent mechanic -- he can put in the new transmission but the tractor can't drive out of the shop. Deere charges $230, plus $130 an hour for a technician to drive out and plug a connector into their USB port to authorize the part." "What you've got is technicians running around here with cracked Ukrainian John Deere software that they bought off the black market," he added.

"WikiLeaks has made initial contact with us via secure@microsoft.com," a Microsoft spokesperson told Motherboard -- but then things apparently stalled. An anonymous reader quotes Fortune: Wikileaks this week contacted major tech companies including Apple and Google, and required them to assent to a set of conditions before receiving leaked information about security "zero days" and other surveillance methods in the possession of the Central Intelligence Agency... Wikileaks' demands remain largely unknown, but may include a 90-day deadline for fixing any disclosed security vulnerabilities. According to Motherboard's sources, at least some of the involved companies are still in the process of evaluating the legal ramifications of the conditions.
Julian Assange announced Friday that Mozilla had already received information after agreeing to their "industry standard responsible disclosure plan," then added that "most of these lagging companies have conflicts of interest due to their classified work for U.S. government agencies... such associations limit industry staff with U.S. security clearances from fixing security holes based on leaked information from the CIA." Assange suggested users "may prefer organizations such as Mozilla or European companies that prioritize their users over government contracts. Should these companies continue to drag their feet we will create a league table comparing company responsiveness and government entanglements so users can decided for themselves."

According to Motherboard, a court of appeals in Washington D.C. ruled that an American citizen can't sue the Ethiopian government for hacking into his computer and monitoring him with spyware. "The decision on Tuesday is a blow to anti-surveillance and digital rights activists who were hoping to establish an important precedent in a widely documented case of illegitimate government-sponsored hacking." From the report: In late 2012, the Ethiopian government allegedly hacked the victim, an Ethiopian-born man who goes by the pseudonym Kidane for fear for government reprisals. Ethiopian government spies from the Information Network Security Agency (INSA) allegedly used software known as FinSpy to break into Kidane's computer, and secretly record his Skype conversations and steal his emails. FinSpy was made by the infamous FinFisher, a company that has sold malware to several governments around the world, according to researchers at Citizen Lab, a digital watchdog group at the University of Toronto's Munk School of Global Affairs, who studied the malware that infected Kidane's computer. The U.S. Court of Appeals for the District of Columbia Circuit ruled that Kidane didn't have jurisdiction to sue the Ethiopian government in the United States. Kidane and his lawyers invoked an exception to the Foreign Sovereign Immunities Act (FSIA), which says foreign governments can be sued in the U.S. as long as the entire tort on which the lawsuit is based occurred on American soil. According to the court, however, the hacking in this case didn't occur entirely in the U.S. "Ethiopia's placement of the FinSpy virus on Kidane's computer, although completed in the United States when Kidane opened the infected email attachment, began outside the United States," the decision read. "[It] gives foreign governments carte blanche to do whatever they want to Americans in America so long as they do it by remote control," Nate Cardozo, a staff attorney at the Electronic Frontier Foundation, a digital rights group who represented Kidane in this first-of-its-kind lawsuit, told Motherboard.

According to Motherboard, a court of appeals in Washington D.C. ruled that an American citizen can't sue the Ethiopian government for hacking into his computer and monitoring him with spyware. "The decision on Tuesday is a blow to anti-surveillance and digital rights activists who were hoping to establish an important precedent in a widely documented case of illegitimate government-sponsored hacking." From the report: In late 2012, the Ethiopian government allegedly hacked the victim, an Ethiopian-born man who goes by the pseudonym Kidane for fear for government reprisals. Ethiopian government spies from the Information Network Security Agency (INSA) allegedly used software known as FinSpy to break into Kidane's computer, and secretly record his Skype conversations and steal his emails. FinSpy was made by the infamous FinFisher, a company that has sold malware to several governments around the world, according to researchers at Citizen Lab, a digital watchdog group at the University of Toronto's Munk School of Global Affairs, who studied the malware that infected Kidane's computer. The U.S. Court of Appeals for the District of Columbia Circuit ruled that Kidane didn't have jurisdiction to sue the Ethiopian government in the United States. Kidane and his lawyers invoked an exception to the Foreign Sovereign Immunities Act (FSIA), which says foreign governments can be sued in the U.S. as long as the entire tort on which the lawsuit is based occurred on American soil. According to the court, however, the hacking in this case didn't occur entirely in the U.S. "Ethiopia's placement of the FinSpy virus on Kidane's computer, although completed in the United States when Kidane opened the infected email attachment, began outside the United States," the decision read. "[It] gives foreign governments carte blanche to do whatever they want to Americans in America so long as they do it by remote control," Nate Cardozo, a staff attorney at the Electronic Frontier Foundation, a digital rights group who represented Kidane in this first-of-its-kind lawsuit, told Motherboard.

An anonymous reader quotes a report from NPR: The makers of the We-Vibe, a line of vibrators that can be paired with an app for remote-controlled use, have reached a $3.75 million class action settlement with users following allegations that the company was collecting data on when and how the sex toy was used. The We-Vibe product line includes a number of Bluetooth-enabled vibrators that, when linked to the "We-Connect" app, can be controlled from a smartphone. It allows a user to vary rhythms, patterns and settings -- or give a partner, in the room or anywhere in the world, control of the device. Since the app was released in 2014, some observers have raised concerns that Internet-connected sex toys could be vulnerable to hacking. But the lawsuit doesn't involve any outside meddling -- instead, it centers on concerns that the company itself was tracking users' sex lives. The lawsuit was filed in federal court in Illinois in September. It alleges that -- without customers' knowledge -- the app was designed to collect information about how often, and with what settings, the vibrator was used. The lawyers for the anonymous plaintiffs contended that the app, "incredibly," collected users' email addresses, allowing the company "to link the usage information to specific customer accounts." Customers' email addresses and usage data were transmitted to the company's Canadian servers, the lawsuit alleges. When a We-Vibe was remotely linked to a partner, the connection was described as "secure," but some information was also routed through We-Connect and collected, the lawsuit says.

Jason Koebler, writing for Motherboard: Statehouse employees in Minnesota say that lobbying efforts by big tech companies and John Deere are on the verge of killing right to repair legislation in the state that would have made it easier for consumers and small businesses to fix their electronics. According to two of the bill's sponsors, the bill, which would have introduced "fair repair" requirements for manufacturers in the state, will not get a hearing that's necessary to move the legislation forward. Minnesota Senate rules automatically kills any bills that do not have a hearing scheduled by a certain date (this year, it's March 10). Last year, tech industry lobbying killed a similar bill in New York. "Unfortunately, it's not going to make deadline this session," Republican Sen. David Osmek, one of the sponsors, told me in an email. Osmek would not give additional specifics about his colleagues' concerns with the bill, but a legislative assistant for the bill's other sponsor told me that electronic manufacturer lobbying is likely to blame, while another source close to the legislature told me that tractor manufacturer John Deere -- a long time enemy of fair repair -- helped kill the bill as well.

An anonymous reader quotes Motherboard: The video game industry is lobbying against legislation that would make it easier for gamers to repair their consoles and for consumers to repair all electronics more generally. The Entertainment Software Association, a trade organization that includes Sony, Microsoft, Nintendo, as well as dozens of video game developers and publishers, is opposing a "right to repair" bill in Nebraska, which would give hardware manufacturers fewer rights to control the end-of-life of electronics that they have sold to their customers...

Bills making their way through the Nebraska, New York, Minnesota, Wyoming, Tennessee, Kansas, Massachusetts, and Illinois statehouses will require manufacturers to sell replacement parts and repair tools to independent repair companies and consumers at the same price they are sold to authorized repair centers. The bill also requires that manufacturers make diagnostic manuals public and requires them to offer software tools or firmware to revert an electronic device to its original functioning state in the case that software locks that prevent independent repair are built into a device. The bills are a huge threat to the repair monopolies these companies have enjoyed, and so just about every major manufacturer has brought lobbyists to Nebraska, where the legislation is currently furthest along... This setup has allowed companies like Apple to monopolize iPhone repair, John Deere to monopolize tractor repair, and Sony, Microsoft, and Nintendo to monopolize console repair...
Motherboard's reporter was unable to get a comment from Microsoft, Apple, and Sony, and adds that "In two years of covering this issue, no manufacturer has ever spoken to me about it either on or off the record."

An anonymous IT geek writes: Cloudflare-hosted web sites have been leaking data as far back as September, according to Gizmodo, which reports that at least Cloudflare "acted fast" when the leak was discovered, closing the hole within 44 minutes, and working with search engines to purge their caches. (Though apparently some of it is still lingering...) Cloudflare CEO Matthew Prince "claims that there was no detectable uptick in requests to Cloudflare-powered websites from September of last year...until today. That means the company is fairly confident hackers didn't discover the vulnerability before Google's researchers did."

And the company's CTO also told Reuters that "We've seen absolutely no evidence that this has been exploited. It's very unlikely that someone has got this information... We do not know of anybody who has had a security problem as a result of this." Nevertheless, Fortune warns that "So many sites were vulnerable that it doesn't make sense to review the list and change passwords on a case-by-case basis." Some sites are now even resetting every user's password as a precaution, while site operators "are also being advised to wipe their sites' cookies and security certificates, and perform their own web searches to see if site data leaked." But I'd like to know what security precautions are being taken by Slashdot's readers?
Leave your own answers in the comments. How did you respond to Cloudbleed?

An anonymous reader writes: "In many cases, your old TV isn't recycled at all and is instead abandoned in a warehouse somewhere, left for society to deal with sometime in the future," reports Motherboard, describing the problem of old cathode-ray televisions and computer monitors with "a net negative recycling value" (since their component parts don't cover the cost of dismantling them). An estimated 705 million CRT TVs were sold in the U.S. since 1980, and many now sit in television graveyards, "an environmental and economic disaster with no clear solution." As much as 100,000 tons of potentially hazardous waste are stockpiled in two Ohio warehouses of the now-insolvent recycler Closed Loop, plus "at least 25,000 tons of glass and unprocessed CRTs in Arizona...much of it is sitting in a mountainous pile outside one of the warehouses."
One EPA report found 23,000 tons of lead-containing CRT glass abandoned in four different states just in 2013.

An anonymous reader quotes a report from Motherboard: Apple is planning to fight proposed electronics "Right to Repair" legislation being considered by the Nebraska state legislature, according to a source within the legislature who is familiar with the bill's path through the statehouse. The legislation would require Apple and other electronics manufacturers to sell repair parts to consumers and independent repair shops, and would require manufacturers to make diagnostic and service manuals available to the public. Nebraska is one of eight states that are considering right to repair bills; last month, Nebraska, Minnesota, New York, Massachusetts, Kansas, and Wyoming introduced legislation. Last week, lawmakers in Illinois and Tennessee officially introduced similar bills. According to the source, an Apple representative, staffer, or lobbyist will testify against the bill at a hearing in Lincoln on March 9. ATT will also argue against the bill, the source said. The source told me that at least one of the companies plans to say that consumers who repair their own phones could cause lithium batteries to catch fire. So far, Nebraska is the only state to schedule a hearing for its legislation.

Jason Koebler quotes a report from Motherboard: The scourge of ticket bots and the immorality of the shady ticket scalpers using them is conventional wisdom that's so ingrained in the public consciousness and so politically safe that a law to ban automated ticket bots passed both houses of Congress unanimously late last year, in part thanks to a high-profile public relations campaign spearheaded by Hamilton creator Lin-Manuel Miranda. But no one actually involved in the ticket scalping industry thinks that banning bots will do much to slow down the secondary market. Seven years after his Los Angeles office was raided by shotgun-wielding FBI agents, Ken Lowson, the man who invented ticket bots, told Motherboard's Jason Koebler he's switched teams. Now, he's out to expose the secrets of the ticket industry in a bid to make sure tickets are sold directly to their fans.

Last year, thousands of animal welfare records were removed from the web by the Department of Agriculture. Now, a government transparency blog is on a mission to recover and republish as many of these records as possible. From a report on Motherboard: "Whenever there are documents that were online, but got pulled offline, they're automatically important," said Russ Kick, who runs the blog The Memory Hole 2, where many of the documents have already been re-published. "Nobody's going to go through the trouble to delete something that doesn't matter." The documents, which were removed by the USDA's Animal and Plant Health Inspection Service (APHIS) late last week, included inspection records and annual reports made under the Animal Welfare Act and the Horse Protection Act. The USDA indicated that removing the documents was in response to a court decision, but a spokesperson contacted by Motherboard would not specify what court case. The records were typically used by animal welfare groups to keep tabs on how well these laws were being enforced, but were also used by the general public to research the inspection records of everything from dog breeders to circuses and zoos. "I've learned that if I see something and think 'I'm really surprised the government posted this,' I need to download it," Kick told me. "So when I found these reports, I thought 'this is surprising,' and I downloaded them."

Last year, when Apple refused to unlock the security on an iPhone 5c belonging to the San Bernardino shooter, the FBI turned to an Israeli mobile forensics firm called Cellebrite to find another way into the encrypted iPhone. Now Motherboard reports that a hacker has released files allegedly from Cellebrite that demonstrate how cracking tools couldn't be kept private. From a report: Now the hacker responsible has publicly released a cache of files allegedly stolen from Cellebrite relating to Android and BlackBerry devices, and older iPhones, some of which may have been copied from publicly available phone cracking tools." The ripped, decrypted and fully functioning Python script set to utilize the exploits is also included within," the hacker wrote in a README file accompanying the data dump. The hacker posted links to the data on Pastebin. It's not clear when any of this code was used in the UFED. Many of the directory names start with "ufed" followed by a different type of phone, such as BlackBerry or Samsung. In their README, the hacker notes much of the iOS-related code is very similar to that used in the jailbreaking scene -- a community of iPhone hackers that typically breaks into iOS devices and release its code publicly for free.

SpaceX is livestreaming a competition between hyperloop pods from outside their headquarters in Hawthorne, California, and at least one Los Angeles newspaper is also covering the event live on Facebook. "This competition is the first of its kind anywhere in the world," SpaceX writes, noting that 27 teams put their pods through a "litany" of pre-qualifying tests hoping to qualify for a run on the track on "Rocket Road". An anonymous reader writes: The mile-long track is "roughly half the width of a full-scale Hyperloop system," according to Fortune -- but it's still a near-total vacuum inside, making it possible for the magnetically-levitated pods to attain extremely high speeds. "The winning team will be the one that hits the highest top speed -- then stops before hitting the end of the tube. 'There'll be a bit of tension," Elon Musk mused. 'Will it brake in time?'" Sunday's event "will mark the first time anyone gets to see the Hyperloop pods in action," according to Business Insider, which has photos and descriptions of the 27 pods -- including the MIT Hyperloop and the crowdfunded non-profit rLoop, which crowdsourced their open source development effort on Reddit.
SpaceX engineers ultimately awarded the highest overall score to the team from Delft University and determined that the fastest pod came from the Technical University of Munich, Germany. But SpaceX will also be hosting a second competition this summer focused on one criterion: speed.

An anonymous reader quotes a report from Motherboard: A new report authored by a group of independent U.S. scientists advising the U.S. Dept. of Defense (DoD) on artificial intelligence (AI) claims that perceived existential threats to humanity posed by the technology, such as drones seen by the public as killer robots, are at best "uninformed." Still, the scientists acknowledge that AI will be integral to most future DoD systems and platforms, but AI that could act like a human "is at most a small part of AI's relevance to the DoD mission." Instead, a key application area of AI for the DoD is in augmenting human performance. Perspectives on Research in Artificial Intelligence and Artificial General Intelligence Relevant to DoD, first reported by Steven Aftergood at the Federation of American Scientists, has been researched and written by scientists belonging to JASON, the historically secretive organization that counsels the U.S. government on scientific matters. Outlining the potential use cases of AI for the DoD, the JASON scientists make sure to point out that the growing public suspicion of AI is "not always based on fact," especially when it comes to military technologies. Highlighting SpaceX boss Elon Musk's opinion that AI "is our biggest existential threat" as an example of this, the report argues that these purported threats "do not align with the most rapidly advancing current research directions of AI as a field, but rather spring from dire predictions about one small area of research within AI, Artificial General Intelligence (AGI)." AGI, as the report describes, is the pursuit of developing machines that are capable of long-term decision making and intent, i.e. thinking and acting like a real human. "On account of this specific goal, AGI has high visibility, disproportionate to its size or present level of success," the researchers say.