An anonymous reader quotes a report from TorrentFreak: Members of the Science Fiction and Fantasy Writers Association have no trouble envisioning an AI-centered future, but developments over the past year are reason for concern. The association takes offense when AI models exploit the generosity of science fiction writers, who share their work without DRM and free of charge. […] Over the past few months, we have seen a variety of copyright lawsuits, many of which were filed by writers. These cases target ChatGPT’s OpenAI but other platforms are targeted as well. A key allegation in these complaints is that the AI was trained using pirated books. For example, several authors have just filed an amended complaint against Meta, alleging that the company continued to train its AI on pirated books despite concerns from its own legal team. This clash between AI and copyright piqued the interest of the U.S. Copyright Office which launched an inquiry asking the public for input. With more than 10,000 responses, it is clear that the topic is close to the hearts of many people. It’s impossible to summarize all opinions without AI assistance, but one submission stood out to us in particular; it encourages the free sharing of books while recommending that AI tools shouldn’t be allowed to exploit this generosity for free.

The submission was filed by the Science Fiction and Fantasy Writers Association (SFWA), which represents over 2,500 published writers. The association is particularly concerned with the suggestion that its members’ works can be used for AI training under a fair use exception. SFWA sides with many other rightsholders, concluding that pirated books shouldn’t be used for AI training, adding that the same applies to books that are freely shared by many Science Fiction and Fantasy writers. […] Many of the authors strongly believe that freely sharing stories is a good thing that enriches mankind, but that doesn’t automatically mean that AI has the same privilege if the output is destined for commercial activities. The SFWA stresses that it doesn’t take offense when AI tools use the works of its members for non-commercial purposes, such as research and scholarship. However, turning the data into a commercial tool goes too far.

AI freeloading will lead to unfair competition and cause harm to licensing markets, the writers warn. The developers of the AI tools have attempted to tone down these concerns but the SFWA is not convinced. […] The writers want to protect their rights but they don’t believe in the extremely restrictive position of some other copyright holders. They don’t subscribe to the idea that people will no longer buy books because they can get the same information from an AI tool, for example. However, authors deserve some form of compensation. SFWA argues that all stakeholders should ultimately get together to come up with a plan that works for everyone. This means fair compensation and protection for authors, without making it financially unviable for AI to flourish. “Questions of ‘how’ and ‘when’ and ‘how much money’ all come later; first and foremost the author must have the right to say how their work is used,” their submission reads.

“So long as authors retain the right to say ‘no’ we believe that equitable solutions to the thorny problems of licensing, scale, and market harm can be found. But that right remains the cornerstone, and we insist upon it,” SFWA concludes.

Read more of this story at Slashdot.

Source: Slashdot – Science Fiction and Fantasy Writers Take Aim At AI Freeloading

sciencehabit shares a report from Science Magazine: Grunge music: a source of validation for a generation of disaffected youth. And a surprising source of scientific inspiration for Earl Bellinger of the Max Planck Institute for Astrophysics. While listening to Soundgarden’s 1994 hit Black Hole Sun 2 years ago, he contemplated a curious question: Might itty-bitty black holes from the dawn of time be lurking in the hearts of giant stars? A new study by Bellinger and colleagues suggests the idea is not so far-fetched. Astronomers could detect these trapped black holes by the vibrations they cause on the star’s surface. And if there’s enough of them out there, they could function as the mysterious dark matter that holds the universe together.

The researchers found that the black holes would sink to the star’s core where hydrogen atoms undergo fusion to produce heat and light. At first, very little would happen. Even a dense stellar core is mostly empty space. The most microscopic of the black holes would have a hard time finding matter to consume and its growth would be extremely slow, Bellinger says. “It could take longer than the lifetime of the universe to eat the star.” But larger ones, roughly as massive as the asteroid Ceres or the dwarf planet Pluto, would get bigger on timescales of only a few hundred million years. Material would spiral onto the black hole, forming a disk that would heat up through friction and emit radiation. Once the black hole was about as massive as Earth, it would produce significant amounts of radiation, shining brightly and churning up the star’s core like pot of boiling water. “It will become a black hole — powered object rather than fusion-powered object,” says study co-author Matt Caplan, a theoretical physicist at Illinois State University. He and his colleagues have dubbed these entities “Hawking stars.”

The European Space Agency’s Gaia satellite has spotted about 500 such anomalously cool giant stars, known as red stragglers, Bellinger says. To figure out whether these might actually be hiding a black hole, he says, astronomers could tune in to the particular frequencies at which the stars vibrate. Because a Hawking star would churn throughout its interior, rather than just in the topmost layers like an ordinary red giant, it would be expected to thrum with a particular combination of frequencies. Such waves can be detected in the way the star’s light pulses and throbs. Bellinger is applying for funding to study the known red stragglers and see whether any display the characteristic vibrations of a black hole. The study has been published in The Astrophysical Journal.

Read more of this story at Slashdot.

Source: Slashdot – Are Tiny Black Holes Hiding Within Giant Stars?

Scientists are exploring infrasound, low-frequency sound waves produced by tornadoes to develop more accurate early warning systems for these destructive storms. The hope is that eavesdropping on infrasound signals, which travel for hundreds of miles, could provide up to two hours of advance warning. The BBC reports: Scientists have been listening to tornadoes and trying to work out whether they produce a unique sound since the 1970s. Experimental evidence suggests that low-frequency infrasound, with a frequency range of 1-10Hz , is produced while a tornado is taking shape and throughout its life. One recent set of measurements from a tornado near Lakin, Kansas in May 2020 revealed that the twister produced a distinct, elevated signal between 10Hz and 15Hz. In some cases arrays of infrasound detecting microphones have been shown to pick up the noise produced by tornadoes from more than 100km (60 miles) away and have also indicated that the infrasound is produced before tornadogenesis even begins. Researchers hope that by eavesdropping on these noises, it may be possible to not only hear a tornado coming but perhaps even predict them up to two hours before they form.

Since 2020, a team from Oklahoma State University has been testing infrasound’s predictive powers using equipment installed in tornado-chasing vehicles. Their portable kit, the Ground-based Local Infrasound Data Acquisition, or “Glinda”, system, references a character from The Wizard of Oz. They hope the equipment will help storm chasers to better monitor the development of tornadoes in real time, but requires the equipment to be deployed to the right place at the right time. Some researchers, however, are working on systems that can be left to permanently monitor for tornadoes. One group, led by Roger Waxler, principal scientist at the National Centre for Physical Acoustics (NCPA) based at the University of Mississippi, are planning to deploy four permanent arrays of high-tech sensors in south Mississippi to detect infrasound signals. They hope the system will provide a way of consistently monitoring and detecting tornadoes.

[…] Waxler and his team hope their decade-long experiment will lead to an effective early warning system for tornadoes, particularly when combined with other sources such as doppler radar. “It’s not unreasonable that we could localize a tornado to half a football field,” adds Waxler. “I envision seeing a map on an app with a dot that shows there’s a tornado coming up South Lamar [Avenue, for example].” Warnings have improved in recent decades: from 2003 to 2017, 87% of deadly tornadoes were preceded by an advance warning, but people still have an average of just 10-15 minutes to find shelter. A study based on interviews with 23 survivors of two deadly tornadoes found that people tried to evaluate and respond to the risk of a tornado as the situation evolved, but some did not have a place to shelter easily. Experts believe tornado warnings are too often ignored due to “warning fatigue” created by false alarms and hours of televised storm coverage. One study found 37% of people surveyed did not understand the need for taking precautionary measures during a tornado warning. Waxler hopes that a more accurate early warning system could change the way people respond when they hear a storm is approaching. “Rather than going to hide in your bathtub or cellar, it might be a better idea to get in your car and drive if you know where a tornado is. “The goal is to save lives.”

Read more of this story at Slashdot.

Source: Slashdot – Low-Frequency Sound Can Reveal That a Tornado Is On Its Way

An anonymous reader quotes a report from MIT Technology Review: Brain organoids, clumps of human brain cells grown in a dish, can be hooked up to an electronic chip and carry out simple computational tasks, a new study shows. Feng Guo and his team at Indiana University Bloomington generated a brain organoid from stem cells, attached it to a computer chip, and connected their setup, known as Brainoware, to an AI tool. They found that this hybrid system could process, learn, and remember information. It was even able to carry out some rudimentary speech recognition. The work, published today in Nature Electronics, could one day lead to new kinds of bio-computers that are more efficient than conventional computers.

“This is a first demonstration of using brain organoids [for computing],” says Guo. “It’s exciting to see the possibilities of organoids for biocomputing in the future.” With Brainoware, Guo aimed to use actual brain cells to send and receive information. When the researchers applied electrical stimulation to the hybrid system they’d built, Brainoware responded to those signals, and changes occurred in its neural networks. According to the researchers, this result suggests that the hybrid system did process information, and could perhaps even perform computing tasks without supervision. Guo and his colleagues then attempted to see if Brainoware could perform any useful tasks. In one test, they used Brainoware to try to solve mathematical equations. They also gave it a benchmark test for speech recognition, using 240 audio clips of eight people pronouncing Japanese vowels. The clips were converted into electrical signals and applied to the Brainoware system. This generated signals in the neural networks of the brain organoid, which were then fed into an AI tool for decoding.

The researchers found that the brain organoid — AI system could decode the signals from the audio recordings, which is a form of speech recognition, says Guo. “But the accuracy was low,” he says. Although the system improved with training, reaching an accuracy of about 78%, it was still less accurate than artificial neural networks, according to the study. Lena Smirnova, an assistant professor of public health at Johns Hopkins University, points out that brain organoids do not have the ability to truly hear speech but simply exhibit “a reaction” to pulses of electrical stimulation from the audio clips. And the study did not demonstrate whether Brainoware can process and store information over the long term or learn multiple tasks. Generating brain cell cultures in a lab and maintaining them long enough to perform computations is also a huge undertaking. Still, she adds, “it’s a really good demonstration that shows the capabilities of brain organoids.”

Read more of this story at Slashdot.

Source: Slashdot – Human Brain Cells Hooked Up To a Chip Can Do Speech Recognition

Google Maps will soon give you the option to store your location data on your device instead of in the cloud. Android Police reports: In the coming year, Google is planning to switch things up by defaulting to saving your Timeline directly on your device instead of the cloud. You’ll also have the option to wipe out bits or the whole information dossier whenever you want and disable location history completely. When you’re jumping ship to a new device and want to keep your data close, you always have the option to back it up in the cloud. Google assures you that it’ll lock it up with encryption.

Another significant update is the shorter default amount of time before your location history is auto-deleted. Soon, when you turn on location history, the default auto-delete time shrinks to three months. In the past, it used to hang around for 18 months by default. If you’re the sentimental type, you can extend the Timeline’s lifespan or turn off the auto-delete option. Google Maps has another nifty trick up its sleeve: soon, you can erase all traces of your trips with just a few taps. Say you’ve got a favorite hangout spot and you want to keep it to yourself. You can wipe the slate clean right from the app, whether it’s searches, directions, visits, or shares. This handy feature is making its debut on Maps for Android and iOS in the next few weeks.

Finally, you will soon be able to click on the blue dot on the map to view your Location History and Timeline at a glance. It allows you to tweak what you share and store on Maps, all without having to dive into the settings. Currently, the blue dot only gives you some neat shortcuts for parking saves and location sharing.

Read more of this story at Slashdot.

Source: Slashdot – Google Maps Ditches Cloud-Based Location History

According to Reuters, General Motors’ Cruise robotaxi unit dismissed nine executives amid an ongoing safety investigation, which the company confirmed included Chief Operating Officer Gil West. The company conducted a full safety review following an incident in San Francisco where a pedestrian was struck and dragged by one of its cars. GM already halted service nationwide and removed its cars from public roads. Reuters reports: CEO Kyle Vogt and co-founder Dan Kan both resigned in recent weeks and Cruise is preparing for a round of layoffs this month. “Following an initial analysis of the October 2 incident and Cruise’s response to it, nine individuals departed Cruise,” according to the memo. “We are committed to full transparency and are focused on rebuilding trust and operating with the highest standards when it comes to safety, integrity, and accountability,” the memo said. “As a result, we believe that new leadership is necessary to achieve these goals.”

The Cruise spokesperson confirmed that among those dismissed was also Chief Legal and Policy Officer Jeff Bleich and Senior Vice President of Government Affairs David Estrada. Cruise’s troubles are also a setback for an industry dependent on public trust and the cooperation of regulators. The unit had in recent months touted ambitious plans to expand to more cities, offering fully autonomous taxi rides. The investigation, led by law firm Quinn Emmanuel, is expected to last until January, GM has said. “The personnel decisions made today are a necessary step for Cruise to move forward as it focuses on accountability, trust and transparency,” GM said in a statement.

Read more of this story at Slashdot.

Source: Slashdot – GM’s Cruise Robotaxi Unit Dismisses Nine Execs After Safety Probe

A beta version of the Xbox Cloud Gaming app is now available for the Meta Quest headsets, allowing you to stream hundreds of Xbox games with an Xbox Game Pass Ultimate subscription. The Verge reports: The beta app is available from the Meta Quest Store, and you’ll simply need to pair a supported Bluetooth controller to start playing. You can use an Xbox controller (that supports Bluetooth), a PS4 one, or even Nintendo’s Switch Pro controllers. Support for PS5 controllers is “coming in the future,” according to Meta.

There are a variety of display sizes for an immersive VR environment to stream Xbox games in or even an Xbox-themed virtual space on the latest Quest 3 and Pro headsets that takes advantage of full-color passthrough.

Read more of this story at Slashdot.

Source: Slashdot – Xbox Cloud Gaming Is Now Available On Meta’s Quest VR Headsets

An anonymous reader quotes a report from TechCrunch: Some two years of talking about gig worker rights later and European Union lawmakers have finally reached a deal on the final shape of the Platform Worker Directive. […] The Commission presented its original plan to reform labor laws to boost protections for platform workers back in December 2021, setting out a presumption of employment for workers in a bid to flip the odds on gig economy exploitation. But the proposal proved contentious, with heavy industry lobbying from tech platforms such as Uber pushing for gig workers to be carved out of Europe’s employment protections. There were also divisions between Member States over how much worker protection vs platform shielding they were prepared to commit to. But after a final trilogue, lasting more than 12 hours, a provisional agreement has been clinched.

The deal that’s been provisionally agreed means a presumption of an employment relationship between a gig worker and a platform will be triggered when two out of a list of five “indicators of control or direction are present,” as the parliament’s press release puts it. “This list can be expanded by Member States. The presumption can be triggered by the worker, by their representatives, and by the competent authorities on their own initiative. This presumption can be rebutted if the platform proves that the contractual relationship is not an employment relationship,” it adds. The agreement also contains transparency provisions that will require platforms to provide information to individuals performing platform work (and to their representatives) about how the algorithms that manage them work; and how their behavior affects decisions taken by automated systems. […] The provisionally agreed new rules will also ban platforms from taking “certain important decisions,” such as dismissals or decisions to suspend an account, without human oversight.

Per the parliament, the agreed text also ensures “more human oversight on the decisions of systems that directly affect the persons performing platform work”; and obliges platforms to “assess the impact of decisions taken or supported by automated monitoring and decision-making systems on working conditions, health and safety and fundamental rights”. So conducting data protection impact assessments looks set to be a hard requirement for complying with the new law. Another prohibition that’s been agreed is a ban on platforms from processing certain types of personal data of workers, including personal beliefs, private exchanges with colleagues, or when a worker is not at work — with the Directive billed as beefing up data protection rights for platform workers.

Other provisions in the provisional deal include a requirement for platforms to share information on self-employed workers in their employ with competent national authorities and representatives of those performing platform work, such as trade unions. Measures to prevent platforms from circumventing the rules by using intermediaries has also been agreement — a practice that’s stepped up considerably in Spain since the country introduced its own labor reform, back in 2021, with the aim of forcing platforms to hire delivery workers. Some key details of exactly what’s been agreed remain under wraps — and full visibility and analysis of the ramifications will likely have to wait for a consolidated text to emerge in the coming weeks/months. […] The final text still needs to be voted on by the Council and Parliament before it can be adopted as pan-EU law. What implementation period has been agreed also isn’t yet clear. But today’s political deal signals the train has now left the station.

Read more of this story at Slashdot.

Source: Slashdot – European Union Lawmakers Agree To New Rules That Bolster Gig Worker Rights

Earlier this year, General Motors announced plans to phase out Apple CarPlay and Android Auto, shifting instead to built-in infotainment systems developed with Google. Now, the company has explained why it made that decision to MotorTrend: Tim Babbitt, GM’s head of product for infotainment, gave MT a better explanation at a press event for the new Chevrolet Blazer EV, the flagship vehicle in the no CarPlay or Android Auto strategy. According to him, there’s an important factor that didn’t make it into the fact sheet: safety. Specifically, he cited driver distraction caused by cell phone usage behind the wheel. According to Babbitt, CarPlay and Android Auto have stability issues that manifest themselves as bad connections, poor rendering, slow responses, and dropped connections. And when CarPlay and Android Auto have issues, drivers pick up their phones again, taking their eyes off the road and totally defeating the purpose of these phone-mirroring programs. Solving those issues can sometimes be beyond the control of the automaker. You can start to see GM’s frustration. Babbitt’s thesis is that if drivers were to do everything through the vehicle’s built-in systems, they’d be less likely to pick up their phones and therefore less distracted and safer behind the wheel. He admits, though, GM hasn’t tested this thesis in the lab or real world yet but believes it has potential, if customers go for it.

The issues Babbitt cited with CarPlay and Android Auto seem like they’d be mostly linked to using those programs wirelessly, and while he says that’s true, just plugging the phone into a USB data port doesn’t solve all the problems. Babbitt says even when using a physical connection, Android phones are prone to compatibility issues between the vehicle and all the various phone manufacturers running Android. iPhones, meanwhile, suffer from backwards compatibility issues that cause older iPhone models to have trouble running CarPlay consistently. He points to J.D. Power data that shows issues with CarPlay and Android Auto are common owner complaints, and that customers tend to blame the automaker rather than the phone manufacturer or phone software. In that way, eliminating CarPlay and Android Auto potentially relieves GM of a key customer complaint dragging down their perceived quality scores. After MotorTrend’s story was published, GM issued the following statement: “We wanted to reach out to clarify that comments about GM’s position on phone projection were misrepresented and to reinforce our valued partnerships with Apple and Google and each company’s commitment to driver safety. GM’s embedded infotainment strategy is driven by the benefits of having a system that allows for greater integration with the larger GM ecosystem and vehicles.”

Read more of this story at Slashdot.

Source: Slashdot – GM Says It’s Ditching Apple CarPlay, Android Auto For Your Safety

OpenAI has struck a deal with Politico parent company Axel Springer, allowing ChatGPT to summarize news stories from Politico and Business Insider. CNBC reports: Once the OpenAI-Axel Springer deal goes into effect, when a user asks ChatGPT a question, it will respond with summaries of news articles from media outlets such as Politico, Business Insider, Bild and Welt. The chatbot will also include articles that would otherwise be limited to subscribers of those outlets, according to a release, and the answers will include “attribution and links to the full articles for transparency.” The partnership follows a deal that OpenAI struck with the Associated Press in July, allowing it to license the AP’s news archive for training data.

As part of the agreement, Axel Springer will provide content from its media brands as training data for OpenAI’s large language models, such as GPT-4, the AI model that helps power ChatGPT. The News Media Alliance, a trade group representing more than 2,200 publishers, released research in October suggesting that data sets used to train popular AI models rely “significantly” more on publisher content, outweighing it by a factor ranging from over five to almost 100, compared to generic web content.

Read more of this story at Slashdot.

Source: Slashdot – OpenAI, Axel Springer Strike Unprecedented Deal To Offer News In ChatGPT

An anonymous reader quotes a report from Ars Technica: For those looking for a more rigorous way of comparing various models, the folks over at the Large Model Systems Organization (LMSys) have set up Chatbot Arena, a platform for generating Elo-style rankings for LLMs based on a crowdsourced blind-testing website. Chatbot Arena users can enter any prompt they can think of into the site’s form to see side-by-side responses from two randomly selected models. The identity of each model is initially hidden, and results are voided if the model reveals its identity in the response itself. The user then gets to pick which model provided what they judge to be the “better” result, with additional options for a “tie” or “both are bad.” Only after providing a pairwise ranking does the user get to see which models they were judging, though a separate “side-by-side” section of the site lets users pick two specific models to compare (without the ability to contribute a vote on the result).

Since its public launch back in May, LMSys says it has gathered over 130,000 blind pairwise ratings across 45 different models (as of early December). Those numbers seem poised to increase quickly after a recent positive review from OpenAI’s Andrej Karpathy that has already led to what LMSys describes as “a super stress test” for its servers. Chatbot Arena’s thousands of pairwise ratings are crunched through a Bradley-Terry model, which uses random sampling to generate an Elo-style rating estimating which model is most likely to win in direct competition against any other. Interested parties can also dig into the raw data of tens of thousands of human prompt/response ratings for themselves or examine more detailed statistics, such as direct pairwise win rates between models and confidence interval ranges for those Elo estimates.

Chatbot Arena’s latest public leaderboard update shows a few proprietary models easily beating out a wide range of open-source alternatives. OpenAI’s ChatGPT-4 Turbo leads the pack by a wide margin, with only an older GPT-4 model (“0314,” which was discontinued in June) coming anywhere close on the ratings scale. But even months-old, defunct versions of GPT-3.5 Turbo outrank the highest-rated open-source models available in Chatbot Arena’s testbed. Anthropic’s proprietary Claude models also feature highly in Chatbot Arena’s top rankings. Oddly enough, though, the site’s blind human testing tends to rank the older Claude-1 slightly higher than the subsequent releases of Claude-2.0 and Claude-2.1. Among the tested non-proprietary models, the Llama-based Tulu 2 and 01.ai’s Yi get rankings that are comparable to some older GPT-3.5 implementations. Past that, there’s a slow but steady decline until you get to models like Dolly and StableLM at the bottom of the pack (amid older versions of many models that have more recent, higher-ranking updates on Chatbot Arena’s charts).

Read more of this story at Slashdot.

Source: Slashdot – Which AI Model Provides the ‘Best’ Answers?

Hackers unbricked a train in Poland that had been deliberately disabled by its manufacturer. Now the manufacturer is threatening legal action against the hackers despite evidence it sabotaged the trains. From a report: The manufacturer is also now demanding that the repaired trains immediately be removed from service because they have been “hacked,” and thus might now be unsafe, a claim they also cannot substantiate.

The situation is a heavy machinery example of something that happens across most categories of electronics, from phones, laptops, health devices, and wearables to tractors and, apparently, trains. In this case, NEWAG, the manufacturer of the Impuls family of trains, put code in the train’s control systems that prevented them from running if a GPS tracker detected that it spent a certain number of days in an independent repair company’s maintenance center, and also prevented it from running if certain components had been replaced without a manufacturer-approved serial number.

This anti-repair mechanism is called “parts pairing,” and is a common frustration for farmers who want to repair their John Deere tractors without authorization from the company. It’s also used by Apple to prevent independent repair of iPhones.

Read more of this story at Slashdot.

Source: Slashdot – Polish Hackers Repaired Trains the Manufacturer Artificially Bricked. Now The Train Company Is Threatening Them

Overclocking AMD’s Ryzen Threadripper 7000 series blows a fuse, indicating modification. However, AMD has told Tom’s Hardware that this does not automatically invalidate the warranty of these top-tier workstation CPUs. From the report: “Threadripper 7000 Series processors do contain a fuse that is blown when overclocking is enabled. To be clear, blowing this fuse does not void your warranty. Statements that enabling an overclocking/overvolting feature will ‘void’ the processor warranty are not correct. Per AMD’s standard Terms of Sale, the warranty excludes any damage that results from overclocking/overvolting the processor. However, other unrelated issues could still qualify for warranty repair/replacement,” an AMD representative told Tom’s Hardware.

In summation, overclocking your Ryzen Threadripper Pro 7000 or non-Pro processor will not void the warranty — only damages directly resulting from overclocking will. As always, AMD isn’t against overclocking. If it was, the chipmaker wouldn’t advertise overclocking support as one of the features of the WRX90 and TRX50 platforms. Only OEM systems lack overclocking support.

Read more of this story at Slashdot.

Source: Slashdot – AMD Says Ryzen Threadripper 7000 Overclocking Triggers Hidden Fuse, Warranty Unaffected

Apple has said it now requires a judge’s order to hand over information about its customers’ push notification to law enforcement, putting the iPhone maker’s policy in line with rival Google and raising the hurdle officials must clear to get app data about users. From a report: The new policy was not formally announced but appeared sometime over the past few days on Apple’s publicly available law enforcement guidelines. It follows the revelation from Oregon Senator Ron Wyden that officials were requesting such data from Apple as well as from Google, the unit of Alphabet that makes the operating system for Android phones.

Apps of all kinds rely on push notifications to alert smartphone users to incoming messages, breaking news, and other updates. These are the audible “dings” or visual indicators users get when they receive an email or their sports team wins a game. What users often do not realize is that almost all such notifications travel over Google and Apple’s servers. In a letter first disclosed by Reuters last week, Wyden said the practice gave the two companies unique insight into traffic flowing from those apps to users, putting them “in a unique position to facilitate government surveillance of how users are using particular apps.”

Read more of this story at Slashdot.

Source: Slashdot – Apple Now Requires a Judge’s Consent To Hand Over Push Notification Data

An anonymous reader shares a report: If you bought a new smart TV during any of the holiday sales, there’s likely to be an uninvited guest watching along with you. The most popular smart TVs sold today use automatic content recognition (ACR), a kind of ad surveillance technology that collects data on everything you view and sends it to a proprietary database to identify what you’re watching and serve you highly targeted ads. The software is largely hidden from view, and it’s complicated to opt out. Many consumers aren’t aware of ACR, let alone that it’s active on their shiny new TVs. If that’s you, and you’d like to turn it off, we’re going to show you how.

First, a quick primer on the tech: ACR identifies what’s displayed on your television, including content served through a cable TV box, streaming service, or game console, by continuously grabbing screenshots and comparing them to a massive database of media and advertisements. Think of it as a Shazam-like service constantly running in the background while your TV is on.

These TVs can capture and identify 7,200 images per hour, or approximately two every second. The data is then used for content recommendations and ad targeting, which is a huge business; advertisers spent an estimated $18.6 billion on smart TV ads in 2022, according to market research firm eMarketer. For anyone who’d rather not have ACR looking over their shoulder while they watch, we’ve put together a guide to turning it off on three of the most popular smart TV software platforms in use last year. Depending on the platform, turning off ACR took us between 10 and 37 clicks.

Read more of this story at Slashdot.

Source: Slashdot – Your Smart TV Knows What You’re Watching

Apple is set to be hit by a ban on its App Store rules that govern music-streaming rivals and a potential hefty fine in the European Union’s latest attempt to limit the power of Big Tech. From a report: EU regulators are putting the finishing touches to a decision that would prohibit Apple’s practice of blocking music services from pushing their users away from the App Store to alternative subscription options, according to people familiar with the investigation. The decision is slated for early next year, they added. As part of the upcoming decision, Apple runs the risk of a potential fine of as much as 10% of its annual sales — although EU penalties seldom reach that level and orders for companies to change their business models can be more hard-hitting.

Read more of this story at Slashdot.

Source: Slashdot – Apple Set to Be Hit by EU Antitrust Order in App Store Fight With Spotify

Google’s making the second generation of Imagen, its AI model that can create and edit images given a text prompt, more widely available — at least to Google Cloud customers using Vertex AI who’ve been approved for access. From a report: But the company isn’t disclosing which data it used to train the new model — nor introducing a way for creators who might’ve inadvertently contributed to the data set to opt out or apply for compensation.

Called Imagen 2, Google’s enhanced model — which was quietly launched in preview at the tech giant’s I/O conference in May — was developed using technology from Google DeepMind, Google’s flagship AI lab. Compared to the first-gen Imagen, it’s “significantly” improved in terms of image quality, Google claims (the company bizarrely refused to share image samples prior to this morning), and introduces new capabilities including the ability to render text and logos. “If you want to create images with a text overlay — for example, advertising — you can do that,” Google Cloud CEO Thomas Kurian said during a press briefing on Tuesday.

Read more of this story at Slashdot.

Source: Slashdot – Google Debuts Imagen 2 With Text and Logo Generation

More than 190 governments at the United Nations climate conference approved an agreement Wednesday calling for the world to transition away from fossil fuels, an accord that bridged differences between big energy-producing nations and countries that want to completely phase out coal, oil and natural gas. From a report: The deal, the result of all-night talks, calls for “transitioning away from fossil fuels in energy systems, in a just, orderly and equitable manner.” It says the shift to clean energy for the global economy should accelerate this decade with the aim of net-zero greenhouse gas emissions by 2050.

Scientists say that is crucial to fulfilling the Paris accord, the landmark climate agreement that calls for governments to attempt to limit global warming to 1.5 degrees Celsius above preindustrial temperatures. The deal marks the first time a U.N. climate agreement has called for governments to cut back on all fossil fuels.

Read more of this story at Slashdot.

Source: Slashdot – COP28 Nations Agree for First Time To Transition Away From Fossil Fuels

Regulators in the UK are weighing a cap on some of the fees that Visa and Mastercard charge local merchants for each card transaction, seeking to rein in charges that have risen fivefold since Brexit. From a report: After a monthslong review, the UK’s Payment Systems Regulator said it’s concerned that the payment giants have no effective competition, especially when it comes to the interchange fees they charge UK merchants when a consumer carrying a card issued by a bank in the European Economic Area makes an online purchase.

For now, the PSR is proposing to restore those fees to the pre-Brexit levels of 0.3% of a purchase price for credit cards and 0.2% for debit cards. For credit cards, those fees have risen in recent years to as high as 1.5% and the PSR estimated that the increases cost UK businesses as much as $250 million last year. The two companies have been under fire from a bevy of regulators and lawmakers around the world for the fees they charge. While it usually amounts to just pennies per purchase, the fees do add up: US merchants spent a record $160.7 billion on swipe fees last year, up 16.7% from 2021, according to the Nilson Report, an industry publication.

Read more of this story at Slashdot.

Source: Slashdot – UK Proposes Capping Some Visa, Mastercard Fees

An anonymous reader quotes a report from The Register: Two years after the Log4Shell vulnerability in the open source Java-based Log4j logging utility was disclosed, circa one in four applications are dependent on outdated libraries, leaving them open to exploitation. Research from security shop Veracode revealed that the vast majority of vulnerable apps may never have updated the Log4j library after it was implemented by developers as 32 percent were running pre-2015 EOL versions. Prior investigations from Veracode also showed that 79 percent of all developers never update third-party libraries after first introducing them into projects, and given that Log4j2 — the specific version of Log4j affected by the vulnerability — dates back to 2014, this could explain the large proportion of unpatched apps.

A far smaller minority are running versions that were vulnerable at the time of the Log4j vulnerability’s disclosure in December 2021. Only 2.8 percent are still using versions 2.0-beta9 through 2.15.0 — post-EOL versions that remain exposed to Log4Shell, the industry-coined moniker of the vulnerability’s exploit. Some 3.8 percent are still running version 2.17, a post-patch version of the Java logger that’s not exposed to Log4Shell attacks, but is vulnerable to a separate remote code execution (RCE) bug (CVE-2021-44832).

The researchers believe this illustrates a minority of developers that acted quickly when the vulnerability was first disclosed, as was the advice at the time, had returned to older habits of leaving libraries untouched. Altogether, just shy of 35 percent remain vulnerable to Log4Shell, and nearly 40 percent are vulnerable to RCE flaws. The EOL versions of Log4j are also vulnerable to three additional critical bugs announced by Apache, bringing the total to seven high and critical-rated issues. “At a surface level, the numbers above show that the massive effort to remediate the Log4Shell vulnerability was effective in mitigating risk of exploitation of the zero-day vulnerability. That should not be surprising,” said Chris Eng, chief research officer at Veracode.

“The bigger story at the two-year anniversary, however, is that there is still room for improvement when it comes to open source software security. If Log4Shell was another example in a long series of wake-up calls to adopt more stringent open source security practices, the fact that more than one in three applications currently run vulnerable versions of Log4j shows there is more work to do.

“The major takeaway here is that organizations may not be aware of how much open source security risk they are exposed to and how to mitigate it.”

Read more of this story at Slashdot.

Source: Slashdot – Study Shows 38% of Java Apps Still Affected By Log4Shell