New submitter emangwiro shares a report: The HDMI Forum, responsible for the HDMI specification, continues to stonewall open source. Valve’s Steam Machine theoretically supports HDMI 2.1, but the mini-PC is software-limited to HDMI 2.0. As a result, more than 60 frames per second at 4K resolution are only possible with limitations. In a statement to Ars Technica, a Valve spokesperson confirmed that HDMI 2.1 support is “still a work-in-progress on the software side.” “We’ve been working on trying to unblock things there.”

The Steam Machine uses an AMD Ryzen APU with a Radeon graphics unit. Valve strictly adheres to open-source drivers, but the HDMI Forum is unwilling to disclose the 2.1 specification. According to Valve, they have validated the HDMI 2.1 hardware under Windows to ensure basic functionality.

Read more of this story at Slashdot.

Petco has accidentally exposed a whole lot of customer data and personal information, according to a report by TechCrunch. This is thanks to a security lapse involving its Vetco clinics website, forcing the company to take a portion of that site offline.

Petco has confirmed the leak and TechCrunch noted that the security lapse allowed anyone to download customer records without login information. The exposed data includes customer names, driver’s license numbers, dates of birth, Social Security numbers and even financial information. It also includes customer records from visits to Vetco, like medical histories, pet names, vaccination records and other stuff like that.

This was due to an incorrect software setting that made a number of files accessible online, according to a notice filed by California’s attorney general and reported on by Mashable. The company has since corrected the setting, removed the exposed files and implemented security measures.

However, Petco hasn’t said if any data was actually extracted during the security lapse or if it even has the means to suss out that kind of thing. Vetco customers should probably perform some due diligence to shore up personal security. The company is offering credit and identity monitoring services to impacted customers, but only in some states. We recommend giving Petco a call to discuss options. 

Data breaches of this sort are becoming an unfortunate part of modern life. Recent security breaches have impacted entities like AT&T, Discord, the social network Tea and the human resources company Workday, among others.

This article originally appeared on Engadget at https://www.engadget.com/big-tech/petco-accidentally-exposed-heaps-of-customer-information-163825302.html?src=rss

Meta’s newly recruited AI “superstars” have developed an us-versus-them mentality against the company’s longtime executive leadership, creating internal friction over whether the team should focus on catching up to rivals like OpenAI and Google or improving Meta’s core advertising and social media businesses. Alexandr Wang, the 28-year-old entrepreneur Mark Zuckerberg hired in June to be chief AI officer, leads a team called TBD Lab from a siloed space next to Zuckerberg’s office. In meetings this fall, Wang privately told people he disagreed with chief product officer Chris Cox and chief technology officer Andrew Bosworth, according to the New York Times.

Cox and Bosworth wanted Wang’s team to use Instagram and Facebook data to train Meta’s new foundational AI model for improving feeds and advertising. Wang pushed back, arguing the goal should be catching up to rival models before focusing on products. TBD Lab researchers view many Meta executives as interested only in the social media business, while the lab’s ambition is to create “godlike A.I. superintelligence.” Bosworth was recently asked to slash $2 billion from Reality Labs’ proposed budget for next year to fund Wang’s team — a claim Meta disputes.

Read more of this story at Slashdot.

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

For gym-goers and fitness enthusiasts, finding earbuds that are the right blend of durable and comfortable can be difficult —especially if you’re on a budget. JBL excels in this area; they’re known for delivering strong, bass-y sound, and some models, like the JBL Endurance Peak 3 earbuds, can withstand even the toughest workouts. Right now, they’re $59.95 (originally $99.95),  a 40% drop that brings them down to their lowest price ever. 

JBL Endurance Peak 3 Earbuds

$59.95
at Amazon

$99.95
Save $40.00

$59.95
at Amazon

$99.95
Save $40.00

These exercise earbuds don’t include active noise cancellation, but they do have what PCMag—which gives them an Editors’ Choice Award—calls a “powerful, bass-forward sound signature.” They’re also completely waterproof and dust-tight with an IP68 rating, meaning they can be submerged in water for more than 30 minutes, making them suitable for heavy rain or rinsing under running water.

To keep them in place during intense movement, the earpieces have sport ear hooks that gently but securely clamp them into place without interfering with glasses. The hooks also double as a power switch: wWhen the tips magnetically connect with the main body of the earpiece, they turn off. This can be frustrating if you need to take them off briefly, since you’ll need to stop the tips from touching the body to avoid powering down. Touch controls are on the outside of each earbud.

They last around 10 hours per charge, and the IPX charging case holds an extra 40 hours of battery life. According to JBL, around 10 minutes of charging will get you an hour of playback, and they fully charge in about two hours. The case, it should be said, is large, clunky, and hard to open, and its slippery exterior makes it hard to grip. The companion app allows you to adjust EQ, view battery life, switch between or turn off Ambient Aware and TalkThru modes, and customize touch controls.

These might not be the best choice if you’re looking for noise-canceling buds or a more compact case. However, if you’re in the market for ultra-durable workout earbuds with a secure fit, long battery life, and great value, the JBL Endurance Peak 3 earbuds are a solid choice for sporty people, especially at the $60 price point. 

CloverPit is one of my favorite games of the year so far. Developer Panik Arcade took the formula that helped make Balatro so successful — using various tools to bend the rules of the game to help you rack up obscenely high scores — and based it around a slot machine rather than poker. It’s been a hit so far on PC, where it has sold more than a million copies since September, and on Xbox. CloverPit has been among the top 20 most-played titles on Game Pass since its surprise debut there last month. Now, the horror-tinged roguelite is venturing into new territory, as it’s coming to iOS and Android on December 17.

The mobile versions of the game are said to have a fully-optimized interface, as well as all of the post-launch updates, such as the Hard Mode that Panik Arcade recently added. CloverPit will cost $5 on mobile and it will have no microtransactions or “predatory mechanics.” That might seem surprising for a game centered around a slot machine, but CloverPit isn’t really about gambling (which the developers say they don’t like anyway). It’s about breaking the rules to tilt the odds in your favor.

The setup is pretty straightforward. You’re imprisoned in a rusty cell and you have a rapidly increasing debt to pay off. The only way to do that, and hopefully leave through the door, is to earn enough coins from the slot machine to pay what you owe. There are more than 150 items (which are called charms here) to experiment with that affect things like the number of spins, how much each symbol or pattern is worth and how many tickets you earn. Tickets are what you need to buy more charms.

Figuring out combinations of items that work well together is key to quickly scaling up the number of coins and tickets you can earn from each visit to the slot machine. Fail to pay off your debt by a deadline (i.e. after a certain number of spins) and it’s game over, as you plunge into the titular pit.

CloverPit is strange and beguiling and heaps of fun. I’ve plowed around 39 hours into it on Steam, and I’m sure it’ll take up much of my attention on my phone after it hits mobile next week. Doomspinning seems slightly healthier for my brain than doomscrolling.

This article originally appeared on Engadget at https://www.engadget.com/gaming/cloverpit-a-balatro-style-game-with-a-grungy-slot-machine-hits-ios-and-android-on-december-17-154500028.html?src=rss

The internet has become a vital tool for human connection, but it comes with its fair share of risks, with the biggest being your privacy and security. With the big tech giants hungry for every ounce of your data they can get and scammers looking to target you every day, you do need to take a few precautions to protect your online privacy and security. There’s no foolproof approach to these two things, and unfortunately, the onus is on you to take care of your data.

Before you start looking for a VPN or ways to delete your online accounts, you should take a moment to understand your privacy and security needs. Once you do, it’ll be a lot easier to take a few proactive steps to safeguard your privacy and security on the internet. Sadly, there’s no “set it and forget it” solution for this, but I’m here to walk you through some useful hacks that can apply to whatever risks you might be facing.

Don’t use real information, unless you have to

When you install an app on your phone, you’ll often be bombarded with pop-ups asking for permission to access your contacts, location, notifications, microphone, camera, and many other things. Some are necessary, while most are not. The formula I use is to deny every permission unless it’s absolutely necessary to the app’s core function. Similarly, when you’re creating a profile anywhere online, you should avoid giving out any personal information unless it’s absolutely necessary.

You don’t have to use your legal name, real date of birth, or an email address with your real name on most apps you sign up for. Some sites also still use antiquated password recovery methods such as security questions that ask for your mother’s maiden name. Even in these fields, you don’t have to reveal the truth. Every bit of information that you put on the internet can potentially be exposed in a breach. It’s best to use information that’s either totally or partially fake to safeguard your privacy.

You can remove yourself from Google search results

Credit: Pranay Parab

If your personal information is easily available on Google, and you want to get it removed, you can send Google a request to remove it. Check Google’s support page for how to remove results to see specific instructions for your case. For most people, the simplest way to remove results about yourself is to go to Google’s Results About You page, sign in, and follow the instructions on screen.

Use email aliases to identify where your data was leaked from

Most modern email services let you create unlimited aliases, which means that you don’t need to reveal your primary email address each time you sign up for a new service. Instead of signing up with realemail@gmail.com, you can use something like realemail+sitename@gmail.com. Gmail lets you create unlimited aliases using this method, and you can use that to identify who leaked your data. If you suddenly start getting a barrage of spam to a particular alias, you’ll know which site sold your data.

Your photos reveal a lot about you

When you take a photo, the file for it contains a lot of information about you. By default, all cameras will store EXIF (exchangeable image format) data, which logs when the photo was taken, which camera was used, and photo settings. You should remove exif data from photos before posting them on the internet. If you’re using a smartphone to take photos, it’ll also log the location of each image, which can be used to track you. While social media sites may sometimes remove location and exif data from your pictures, you cannot always rely on these platforms to protect your privacy for you.

You should take a few steps to strip exif data before uploading images. The easiest way to get started is to disable location access for your phone’s camera app. On both iPhone and Android, you can open the Settings app, navigate to privacy settings or permissions, and deny location access to Camera. This will mean that you won’t be able to search for a location in your photos app and identify all photos taken there, and you’ll also lose out on some fun automated slideshows that Apple and Google create. However, it also means that your privacy is protected. You can also use apps to quickly hide faces and anonymize metadata from photos.

While you’re at it, don’t forget that screenshots can also leak sensitive information about you. Some types of malware steal sensitive information from screenshots, so be sure to periodically delete those, too.

Think about what you use AI for

Credit: Pranay Parab

Nearly every single AI tool is mining your data to improve its services. Sometimes, this means it’s using everything you type or upload. At other times, it could be using things you’ve written, photos or videos you’ve posted, or any other media you’ve ever uploaded to the internet, to train its AI models. There’s not much you can do about mass data scraping off the internet, but you can and should be careful with your usage of AI tools. You can sometimes stop AI tools from perpetually using your data, but relying on these companies to honor those settings toggles is like relying on Meta to keep your data private. It’s best to avoid revealing any personal information to any AI service, regardless of how strong a connection you feel with it. Just assume that anything you send to an AI service can, and probably will, be used to train AI models or even be sold to advertising companies.

You can delete information stored with data brokers

Yes, big companies like Facebook or TikTok can track you even if you don’t have an account with them. Data brokers collect vast troves of information about your internet visits, and sell it to advertisers or literally anyone who’s willing to pay. To limit the damage, you can start by following Lifehacker’s guide to blocking companies from tracking you online. Next, you can go ahead and opt out of data collection by data brokers. If that’s not enough, you can also use services that remove your personal information from data broker sites.

A VPN isn’t always the right answer

Now, I’m sure some of you are thinking that using a VPN will protect you from most of the tracking on the internet. That may be true in some cases, but using a VPN 24/7 is not the right approach for most people. For starters, it just routes all your traffic via the VPN company’s servers, which means that you need to place your trust in the company’s promises not to log your information, and its ability to keep your data safe and private. It also won’t protect you from the types of data leaks that might happen from, say, publicly posting photos tagged with location data.

Many VPN providers claim to be able to protect you, but there are downsides to consider. Some companies such as Mullvad and Proton VPN have earned a solid reputation for privacy, but using a VPN all the time can create more problems than it solves. Your internet speed slows down a lot, streaming services may not work properly, and lots of sites may not load at all because they block VPN IP addresses. In most cases, you’ll probably be better off if you use adblockers and an encrypted DNS instead.

Try a different combination of privacy tools

For most people, ad blockers are a good privacy tool. Even though Google is cracking down on ad blockers, there are ways to get around those restrictions. I highly recommend using uBlock Origin, which also has a mobile version now. Once you’ve settled on a good ad blocker, you should consider also using a good DNS service to filter out trackers, malware, and phishing sites on a network level.

Having a DNS service is like having a privacy filter for all your internet traffic, whether it’s on your phone, laptop, or even your router. I’ve been using NextDNS for a few years, but you can also try AdGuard DNS or ControlD. All of these services have a generous free tier, but you can optionally pay a small annual fee for more features.

Use a good firewall for your computer

Credit: Little Snitch

Almost all apps these days send telemetry data to remote servers. This isn’t too much of a problem if you only use apps from trusted sources, and can help with things like automatic software updates. But malicious apps or even poorly managed ones may be more open with your data than you would like.

You can restrict some of that by using a good firewall app. This lets you monitor incoming and outgoing internet traffic from your device, and restrict devices from sending unwanted data to the internet. Blocking these requests can hamper some useful features, like those automatic app updates, but they can also stop apps from unnecessarily sending data to online servers. There are some great firewall apps for Mac and for Windows, and you should definitely consider using these for better online privacy.

Switch to a good password manager

I’ve probably said this a million times, but I will repeat my advice: use a good password manager. You may think it’s a bit annoying, but this single step is the easiest way to greatly improve your security on the internet. Password managers can take the hassle of remembering passwords away from you, and they’ll also generate unique passwords that are hard to crack. Both Bitwarden and Apple Passwords (which ships with your Mac, iPhone, and iPad) are free to use, and excellent at their job. Go right ahead and start using them today. I guarantee that you won’t regret it.

A study this week has found that shoppers using Instacart are often charged different prices for identical products at the same store at the same time, even when selecting in-store pickup rather than delivery. The Groundwork Collaborative, a progressive policy group, and Consumer Reports organized nearly 200 volunteers across four cities to simultaneously check prices on 20 grocery items. Price differences appeared on nearly three-quarters of the items tested. In one test, more than 40 participants selected the same Safeway in Washington, D.C. and the same brand of eggs. Prices ranged from $3.99 to $4.79 — a 20% spread. At a Target in North Canton, Ohio, Skippy peanut butter was $2.99 for some shoppers and $3.59 for others. The full 20-item basket varied by about 7% within each store.

An Instacart spokeswoman said retailers on its platform set their own prices and that some run short-term, randomized pricing tests. The company said tests were “never based on personal or behavioral characteristics.” Instacart acquired Eversight, an AI-driven pricing optimization company, in 2022. A Target spokesman said the company is not affiliated with Instacart and bears no responsibility for prices on the platform. Safeway and parent company Albertson’s declined to comment.

Read more of this story at Slashdot.