United States

Largest Dam Removal In US History Is Complete (bbc.com) 104

The largest dam removal project in U.S. history has been completed with the demolition of four dams on the Klamath River, marking a significant victory for tribal nations on the Oregon-California border who have long fought to restore the river to its natural state. However, as CNN's Rachel Ramirez and the BBC's Lucy Sherriff both highlight, the restoration of salmon populations and surrounding ecosystems is "only just beginning." From the report: The removal of the four hydroelectric dams -- Iron Gate Dam, Copco Dams 1 and 2, and JC Boyle Dam -- allows the region's iconic salmon population to swim freely along the Klamath River and its tributaries, which the species have not been able to do for over a century since the dams were built. Mark Bransom, chief executive officer of the Klamath River Renewal Corporation, the nonprofit group created to oversee the project, said it was a "celebratory moment," as his staff members, conservationists, government officials and tribal members gathered and cheered on the bank of the river near where the largest of the dams, Iron Gate, once stood. [...] The Yurok Tribe in Northern California are known as the "salmon people." To them, the salmon are sacred species that are central to their culture, diet and ceremonies. As the story goes, the spirit that created the salmon also created humans and without the fish, they would cease to exist. Amy Bowers-Cordalis, a member of and general counsel for the Yurok Tribe, said seeing those dams come down meant "freedom" and the start of the river's "healing process." [...]

The utility company PacifiCorps -- a subsidiary of Warren Buffet's Berkshire Hathaway Energy -- built the dams in the early to mid-1900s, without tribal consent, to generate electricity for parts of the growing West. But the dams severely disrupted the lifecycle of the salmon, blocking the fish from accessing their historic spawning grounds. Then there's the climate crisis: Warm water and drought-fueled water shortages in the Klamath River killed salmon eggs and young fish due to low oxygen and lack of food and allowed the spread of viruses. [...] As for the reason the dams were constructed in the first place -- electricity -- removing them won't hurt the power supply much, experts say. Even at full capacity, all four dams produced less than 2% of PacifiCorp's energy, according to the Klamath River Renewal Corporation. Up next is ramping up restoration work. Bransom said they plan to put down nearly 16 billion seeds of almost 100 native species across 2,200-acres of land in the Klamath River Basin. And after more than a century, the fish can now swim freely. Yurok's Bowers-Cordalis said seeing the river reconnected is a form of giving their land back, which is really the "ultimate reward."

EU

US, UK, EU Sign 'Legally Binding' AI Treaty 51

The United States, United Kingdom and European Union have signed the first "legally binding" international AI treaty on Thursday, the Council of Europe human rights organization said. Called the AI Convention, the treaty promotes responsible innovation and addresses the risks AI may pose. Reuters reports: The AI Convention mainly focuses on the protection of human rights of people affected by AI systems and is separate from the EU AI Act, which entered into force last month. The EU's AI Act entails comprehensive regulations on the development, deployment, and use of AI systems within the EU internal market. The Council of Europe, founded in 1949, is an international organization distinct from the EU with a mandate to safeguard human rights; 46 countries are members, including all the 27 EU member states. An ad hoc committee in 2019 started examining the feasibility of an AI framework convention and a Committee on Artificial Intelligence was formed in 2022 which drafted and negotiated the text. The signatories can choose to adopt or maintain legislative, administrative or other measures to give effect to the provisions.

Francesca Fanucci, a legal expert at ECNL (European Center for Not-for-Profit Law Stichting) who contributed to the treaty's drafting process alongside other civil society groups, told Reuters the agreement had been "watered down" into a broad set of principles. "The formulation of principles and obligations in this convention is so overbroad and fraught with caveats that it raises serious questions about their legal certainty and effective enforceability," she said. Fanucci highlighted exemptions on AI systems used for national security purposes, and limited scrutiny of private companies versus the public sector, as flaws. "This double standard is disappointing," she added.
AT&T

AT&T Sues Broadcom For Breaching VMware Support Extension Contract (theregister.com) 76

AT&T has filed a lawsuit against Broadcom, alleging that Broadcom is refusing to honor an extended support agreement for VMware software unless AT&T purchases additional subscriptions it doesn't need. The company warns the consequences could risk massive outages for AT&T's customer support operations and critical federal services, including the U.S. President's office. The Register reports: A complaint [PDF] filed last week in the Supreme Court of New York State explains that AT&T holds perpetual licenses for VMware software and paid for support services under a contract that ends on September 8. The complaint also alleges that AT&T has an option to extend that support deal for two years -- provided it activates the option before the end of the current deal. AT&T's filing claims it exercised that option, but that Broadcom "is refusing to honor" the contract. Broadcom has apparently told AT&T it will continue to provide support if the comms giant "agrees to purchase scores of subscription services and software." AT&T counters that it "does not want or need" those subscriptions, because they:

- Would impose significant additional contractual and technological obligations on AT
- Would require AT&T to invest potentially millions to develop its network to accommodate the new software;
- May violate certain rights of first refusal that AT&T has granted to third parties;
- Would cost AT&T tens of millions more than the price of the support services alone.

[...] The complaint also suggests Broadcom's refusal to extend support creates enormous risk for US national security -- some of the ~8,600 servers that host AT&T's ~75,000 VMs "are dedicated to various national security and public safety agencies within the federal government as well as the Office of the President." Other VMs are relied upon by emergency responders, and still more "deliver services to millions of AT&T customers worldwide" according to the suit. Without support from Broadcom, AT&T claims it fears "widespread network outages that could cripple the operations of millions of AT&T customers worldwide" because it may not be able to fix VMware's software.

Apple

Apple Announces 'Find My' For South Korea (appleinsider.com) 8

Apple announced it is planning to bring its Find My service to South Korea in early 2025. Originally released in 2010, the Find My service has been unavailable in South Korea, making it the last country without access to Apple's tracking feature. AppleInsider reports: In July 2024, complaints from users in South Korea reached a point where they were finally petitioning the government to allow Apple's Find My feature to work. Any iPhone made for sale in South Korea had Find My permanently disabled, so it wouldn't work even when the owner was in a different country. Now in a statement on its Korean website, Apple has announced that it plans to bring Find My to the country shortly.

"Apple plans to introduce the 'Find My' network in Korea in the spring of 2025," says a brief statement (in translation). "Users in Korea will soon be able to use the Find My app to find their Apple devices and personal belongings with their personal information protected, and check the location of friends and family." [...] According to the user petition submitted to the National Assembly Petition website of South Korea, Apple has said that Find My is disabled "because of internal policy."

United Kingdom

UK Competition and Markets Authority Launches Investigation Into Ticketmaster (variety.com) 36

The U.K.'s Competition and Markets Authority (CMA) has formally opened an investigation into Ticketmaster's compliance with consumer protection law in relation to the sale of Oasis concert tickets. From a report: The CMA said on Thursday that it is investigating whether "Ticketmaster has engaged in unfair commercial practices which are prohibited under the Consumer Protection from Unfair Trading Regulations 2008"; "People were given clear and timely information to explain that the tickets could be subject to so-called 'dynamic pricing' with prices changing depending on demand, and how this would operate, including the price they would pay for any tickets purchased"; and if "People were put under pressure to buy tickets within a short period of time -- at a higher price than they understood they would have to pay, potentially impacting their purchasing decisions." The CMA said that it will now engage with Ticketmaster and gather evidence to consider whether it thinks the company has broken consumer protection law.
Transportation

Volvo Backtracks On 2030 EV-Only Pledge (electrek.co) 147

Volvo now says it will push back its deadline to sell only electric vehicles by 2030, citing the need for stronger government support. "The new plans call for 90 to 100% of global sales to be electrified, including EVs and plug-in hybrids (PHEVs)," reports Electrek. "The other up to 10% will be "a limited number of hybrids" if needed. By 2025, Volvo expects 50 to 60% of sales to be electrified." From the report: Volvo was one of the first automakers to set a 100% EV sales goal by 2030. The announcement was made over three years ago in March 2021. The plan was to sell only fully electric cars while phasing out "any car in its global portfolio with an internal combustion engine, including hybrids." [...]

Volvo has already launched five all-electric models: the EX40, EC40, EX30, EM90, and the EX90. After delivering its first model in January, the Volvo EX30 is already the third best-selling EV in Europe. Another five EVs are in development. However, Volvo said the shift comes as the charging infrastructure rollout has been out slower than expected, and government incentives have been withdrawn. Volvo is calling for stronger and more stable government policies to support the transition to EVs.

Volvo also adjusted its CO2 reduction goal. The company aims to reduce CO2 emissions per car by 65% to 75% by 2030 (using 2018 as a baseline). That's down from the previous 75% reduction target. Next year, Volvo aims for a 30 to 35% reduction (with 2018 as a baseline), down from 40%. The company is still working with suppliers to cut CO2 emissions across its value chain.
"We are resolute in our belief that our future is electric," said Volvo Cars CEO Jim Rowan. "An electric car provides a superior driving experience."

Despite this, "it is clear that the transition to electrification will not be linear, and customers and markets are moving at different speeds of adoption," Rowan explained.
United States

Intel's Money Woes Throw Biden Team's Chip Strategy Into Turmoil (bloomberg.com) 109

The Biden-Harris administration's big bet on Intel to lead a US chipmaking renaissance is in grave trouble as a result of the company's mounting financial struggles, creating a potentially damaging setback for the country's most ambitious industrial policy in decades. From a report: Five months after the president traveled to Arizona to unveil a potential $20 billion package of incentives alongside Chief Executive Officer Pat Gelsinger, there are growing questions around when -- or if -- Intel will get its hands on that money. Intel's woes also may jeopardize the government's ability to reach its policy goals, which include establishing a secure supply of cutting-edge chips for the Pentagon and making a fifth of the world's advanced processors by 2030.

Intel is mired in a sales slump worse than anticipated and hemorrhaging cash, forcing its board to consider increasingly drastic actions -- including possibly splitting off its manufacturing division or paring back global factory plans, Bloomberg reported last week. That threatens to further complicate its quest for government funding, at a time when Intel desperately needs the help. The Silicon Valley company is supposed to receive $8.5 billion in grants and $11 billion in loans from the 2022 Chips and Science Act, but only if the chipmaker meets key milestones -- and after significant due diligence. That process, which applies to all Chips Act winners, has been clear from the outset, and aims to ensure that companies only get taxpayer dollars once they've actually delivered on their promises. Intel, like other potential recipients, hasn't received any money yet.

Linux

Rust for Linux Maintainer Steps Down in Frustration With 'Nontechnical Nonsense' (theregister.com) 155

Efforts to add Rust code to the Linux kernel has suffered a setback as one of the maintainers of the Rust for Linux project has stepped down -- citing frustration with "nontechnical nonsense," according to The Register: Wedson Almeida Filho, a software engineer at Microsoft who has overseen the Rust for Linux project, announced his resignation in a message to the Linux kernel development mailing list. "I am retiring from the project," Filho declared. "After almost four years, I find myself lacking the energy and enthusiasm I once had to respond to some of the nontechnical nonsense, so it's best to leave it up to those who still have it in them."

[...] Memory safety bugs are regularly cited as the major source of serious software vulnerabilities by organizations overseeing large projects written in C and C++. So in recent years there's been a concerted push from large developers like Microsoft and Google, as well as from government entities like the US Cybersecurity and Infrastructure Security Agency, to use memory-safe programming languages -- among them Rust. Discussions about adding Rust to Linux date back to 2020 and were realized in late 2022 with the release of Linux 6.1. "I truly believe the future of kernels is with memory-safe languages," Filho's note continued. "I am no visionary but if Linux doesn't internalize this, I'm afraid some other kernel will do to it what it did to Unix."

United States

Abolish the Penny? (nytimes.com) 261

schwit1 shares a report: If you are reading this and live in America, or used to live in America, or maybe just went to America one time many years ago, then you are almost certainly performing unpaid labor for the U.S. government and have been for years. How? By storing some of the billions of pennies the U.S. Mint makes every year that virtually no one uses.

Why are we still making tons (many thousands of tons) of pennies if no one uses them? That's a sensible question with a psychotic answer: We have to keep making all these pennies -- over $45 million worth last year -- because no one uses them. In fact, it could be very bad if we did.

When you insert a quarter into a soda machine, that quarter eventually finds its way back to a bank, from which it can be redistributed to a store's cash register and handed out as change -- maybe even to you, who can put it into a soda machine again and start the whole process over. That's beautiful. (Please be mindful of your soft drink consumption.)

But few of us ever spend pennies. We mostly just store them. The 1-cent coins are wherever you've left them: a glass jar, a winter purse, a RAV4 cup holder, a five-gallon water cooler dispenser, the couch. Many of them are simply on the ground. But take it from me, a former cashier: Cashiers don't have time to scrounge on the sidewalk every time they need to make change. That is where the Mint comes in. Every year it makes a few billion more pennies to replace the ones everyone is thoughtlessly, indefinitely storing and scatters them like kudzu seeds across the nation.

You -- a scientist of some kind, possibly -- might think an obvious solution now presents itself: Why not encourage people to use the pennies they have lying around instead of manufacturing new ones every year? We can't! Or, anyway, we'd better not. According to a Mint report, if even a modest share of our neglected pennies suddenly returned to circulation, the result would be a "logistically unmanageable" dilemma for Earth's wealthiest nation. As in, the penny tsunami could overwhelm government vaults.

That's not great, but at the end of the day we're talking only about pennies. How much could a penny cost to make? A penny? If only we lived in such a paradise. Unfortunately, one penny costs more than three pennies (3.07 cents at last count) to make and distribute! When I learned this, I lost my mind.

United States

Investigation Finds 'Little Oversight' Over Crucial Supply Chain for US Election Software (politico.com) 94

Politico reports U.S. states have no uniform way of policing the use of overseas subcontractors in election technology, "let alone to understand which individual software components make up a piece of code."

For example, to replace New Hampshire's old voter registration database, state election officials "turned to one of the best — and only — choices on the market," Politico: "a small, Connecticut-based IT firm that was just getting into election software." But last fall, as the new company, WSD Digital, raced to complete the project, New Hampshire officials made an unsettling discovery: The firm had offshored part of the work. That meant unknown coders outside the U.S. had access to the software that would determine which New Hampshirites would be welcome at the polls this November.

The revelation prompted the state to take a precaution that is rare among election officials: It hired a forensic firm to scour the technology for signs that hackers had hidden malware deep inside the coding supply chain. The probe unearthed some unwelcome surprises: software misconfigured to connect to servers in Russia ["probably by accident," they write later] and the use of open-source code — which is freely available online — overseen by a Russian computer engineer convicted of manslaughter, according to a person familiar with the examination and granted anonymity because they were not authorized to speak about it... New Hampshire officials say the scan revealed another issue: A programmer had hard-coded the Ukrainian national anthem into the database, in an apparent gesture of solidarity with Kyiv.

None of the findings amounted to evidence of wrongdoing, the officials said, and the company resolved the issues before the new database came into use ahead of the presidential vote this spring. This was "a disaster averted," said the person familiar with the probe, citing the risk that hackers could have exploited the first two issues to surreptitiously edit the state's voter rolls, or use them and the presence of the Ukrainian national anthem to stoke election conspiracies. [Though WSD only maintains one other state's voter registration database — Vermont] the supply-chain scare in New Hampshire — which has not been reported before — underscores a broader vulnerability in the U.S. election system, POLITICO found during a six-month-long investigation: There is little oversight of the supply chain that produces crucial election software, leaving financially strapped state and county offices to do the best they can with scant resources and expertise.

The technology vendors who build software used on Election Day face razor-thin profit margins in a market that is unforgiving commercially and toxic politically. That provides little room for needed investments in security, POLITICO found. It also leaves states with minimal leverage over underperforming vendors, who provide them with everything from software to check in Americans at their polling stations to voting machines and election night reporting systems. Many states lack a uniform or rigorous system to verify what goes into software used on Election Day and whether it is secure.

The article also points out that many state and federal election officials "insist there has been significant progress" since 2016, with more regular state-federal communication. "The Cybersecurity and Infrastructure Security Agency, now the lead federal agency on election security, didn't even exist back then.

"Perhaps most importantly, more than 95% of U.S. voters now vote by hand or on machines that leave some type of paper trail, which officials can audit after Election Day."
Medicine

Long Covid Knocked a Million Americans Off Their Career Paths (msn.com) 151

The Wall Street Journal reports that long Covid "has pushed around one million Americans out of the labor force, economists estimate." More than 5% of adults in the U.S. have long Covid, and it is most prevalent among Americans in their prime working years. About 3.6 million people reported significantly modifying their activities because of the illness in a recent survey by the Centers for Disease Control and Prevention.

Long Covid is a chronic condition with symptoms lasting at least three months after a Covid infection, according to the CDC. Symptoms include fatigue, changes in memory, shortness of breath and trouble concentrating. Long Covid can make tasks as simple as responding to an email arduous, people with the condition say. They struggle to summon the right word or manage stress. Among its many symptoms is post-exertional malaise, which can worsen after even minor physical or mental activity. "People can't go back to work or have to significantly cut down on the amount of work that they can handle," said Akiko Iwasaki, an immunobiology professor at Yale School of Medicine.

Researchers don't know how long symptoms can last. Few people with long Covid have fully recovered within two years. Patients say their doctors have tried everything from antihistamines to blood thinners to physical therapy to acupuncture. Some people might live with the condition for the rest of their lives, said Dr. Paul Volberding, a professor emeritus at the University of California, San Francisco...

Some people with long Covid, which the federal government has classified as a disability, have stayed in their jobs. Human-resource managers have made accommodations including remote work, flexible hours or modified responsibilities, said Rue Dooley of the Society for Human Resource Management. "It's not going away," he said. "It's going to be one of another 100 conditions that we have to grapple with."

People were more likely to develop long Covid at the start of the pandemic, according to a study published in July in the New England Journal of Medicine. The proliferation of vaccines and changes to the virus have made people infected with Covid less likely to develop long Covid.

Power

US Government Opens Up 31 Million Acres of Federal Lands For Solar (electrek.co) 103

An anonymous reader quotes a report from Electrek: The Biden administration has finalized a plan to expand solar on 31 million acres of federal lands in 11 western states. The proposed updated Western Solar Plan is a roadmap for Bureau of Land Management's (BLM) governance of solar energy proposals and projects on public lands. It bumps up the acreage from the 22 million acres it recommended in January, and this plan adds five additional states -- Idaho, Montana, Oregon, Washington, and Wyoming -- to the six states -- Arizona, California, Colorado, Nevada, New Mexico, and Utah -- analyzed in the original plan.

It would make the public lands available for potential solar development, putting solar farms closer to transmission lines or on previously disturbed lands and avoiding protected lands, sensitive cultural resources, and important wildlife habitats. [...] BLM surpassed its goal of permitting more than 25 gigawatts (GW) of clean energy projects on public lands earlier in 2024. It's permitted 29 GW of projects on public lands -- enough to power over 12 million homes. The Biden administration set the goal to achieve 100% clean electricity on the US grid by 2035.

Space

Astronomers Back Review of Satellite Swarms Flying Without Environment Checks (theregister.com) 59

Astronomy researchers are urging the FCC to reconsider exempting large constellations of low Earth satellites from environmental reviews due to growing concerns over pollution, safety risks, and the impact on stargazing. They argue that the decades-old exemption is outdated, given the massive increase in satellite launches and potential long-term effects on the ozone, climate, and environment. The Register reports: Astronomers from Princeton University, University of California, Berkeley, and University of Arizona, among others, have added their names to a public letter that will be presented at some point to FCC space bureau chief Julie Kearney. The letter asks the FCC to follow prior recommendations from the Government Accountability Office (GAO), which in 2022 issued a report calling for the telecom regulator to revisit its decision to exempt large constellations of satellites from environmental review.

The exemption was created way back in 1986, when far fewer satellites were being launched. The GAO, however, urged the FCC to review the exemption, citing the recent proliferation of satellites and the questions that have been raised about the sustainability of the exemption. That recommendation was recently echoed by US PIRG, which earlier this month made a similar request to the FCC. US PIRG notes that the number of satellites in low Earth orbit has increased by a factor of 127 over the past five years, driven largely by the deployment of mega-constellations of communications satellites from SpaceX's Starlink subsidiary.

Encryption

Feds Bust Alaska Man With 10,000+ CSAM Images Despite His Many Encrypted Apps (arstechnica.com) 209

A recent indictment (PDF) of an Alaska man stands out due to the sophisticated use of multiple encrypted communication tools, privacy-focused apps, and dark web technology. "I've never seen anyone who, when arrested, had three Samsung Galaxy phones filled with 'tens of thousands of videos and images' depicting CSAM, all of it hidden behind a secrecy-focused, password-protected app called 'Calculator Photo Vault,'" writes Ars Technica's Nate Anderson. "Nor have I seen anyone arrested for CSAM having used all of the following: [Potato Chat, Enigma, nandbox, Telegram, TOR, Mega NZ, and web-based generative AI tools/chatbots]." An anonymous reader shares the report: According to the government, Seth Herrera not only used all of these tools to store and download CSAM, but he also created his own -- and in two disturbing varieties. First, he allegedly recorded nude minor children himself and later "zoomed in on and enhanced those images using AI-powered technology." Secondly, he took this imagery he had created and then "turned to AI chatbots to ensure these minor victims would be depicted as if they had engaged in the type of sexual contact he wanted to see." In other words, he created fake AI CSAM -- but using imagery of real kids.

The material was allegedly stored behind password protection on his phone(s) but also on Mega and on Telegram, where Herrera is said to have "created his own public Telegram group to store his CSAM." He also joined "multiple CSAM-related Enigma groups" and frequented dark websites with taglines like "The Only Child Porn Site you need!" Despite all the precautions, Herrera's home was searched and his phones were seized by Homeland Security Investigations; he was eventually arrested on August 23. In a court filing that day, a government attorney noted that Herrera "was arrested this morning with another smartphone -- the same make and model as one of his previously seized devices."

The government is cagey about how, exactly, this criminal activity was unearthed, noting only that Herrera "tried to access a link containing apparent CSAM." Presumably, this "apparent" CSAM was a government honeypot file or web-based redirect that logged the IP address and any other relevant information of anyone who clicked on it. In the end, given that fatal click, none of the "I'll hide it behind an encrypted app that looks like a calculator!" technical sophistication accomplished much. Forensic reviews of Herrera's three phones now form the primary basis for the charges against him, and Herrera himself allegedly "admitted to seeing CSAM online for the past year and a half" in an interview with the feds.

Government

California Passes Bill Requiring Easier Data Sharing Opt Outs (therecord.media) 22

Most of the attention today has been focused on California's controversial "kill switch" AI safety bill, which passed the California State Assembly by a 45-11 vote. However, California legislators passed another tech bill this week which requires internet browsers and mobile operating systems to offer a simple tool for consumers to easily opt out of data sharing and selling for targeted advertising. Slashdot reader awwshit shares a report from The Record: The state's Senate passed the landmark legislation after the General Assembly approved it late Wednesday. The Senate then added amendments to the bill which now goes back to the Assembly for final sign off before it is sent to the governor's desk, a process Matt Schwartz, a policy analyst at Consumer Reports, called a "formality." California, long a bellwether for privacy regulation, now sets an example for other states which could offer the same protections and in doing so dramatically disrupt the online advertising ecosystem, according to Schwartz.

"If folks use it, [the new tool] could severely impact businesses that make their revenue from monetizing consumers' data," Schwartz said in an interview with Recorded Future News. "You could go from relatively small numbers of individuals taking advantage of this right now to potentially millions and that's going to have a big impact." As it stands, many Californians don't know they have the right to opt out because the option is invisible on their browsers, a fact which Schwartz said has "artificially suppressed" the existing regulation's intended effects. "It shouldn't be that hard to send the universal opt out signal," Schwartz added. "This will require [browsers and mobile operating systems] to make that setting easy to use and find."

AI

California Legislature Passes Controversial 'Kill Switch' AI Safety Bill (arstechnica.com) 56

An anonymous reader quotes a report from Ars Technica: A controversial bill aimed at enforcing safety standards for large artificial intelligence models has now passed the California State Assembly by a 45-11 vote. Following a 32-1 state Senate vote in May, SB-1047 now faces just one more procedural state senate vote before heading to Governor Gavin Newsom's desk. As we've previously explored in depth, SB-1047 asks AI model creators to implement a "kill switch" that can be activated if that model starts introducing "novel threats to public safety and security," especially if it's acting "with limited human oversight, intervention, or supervision." Some have criticized the bill for focusing on outlandish risks from an imagined future AI rather than real, present-day harms of AI use cases like deep fakes or misinformation. [...]

If the Senate confirms the Assembly version as expected, Newsom will have until September 30 to decide whether to sign the bill into law. If he vetoes it, the legislature could override with a two-thirds vote in each chamber (a strong possibility given the overwhelming votes in favor of the bill). At a UC Berkeley Symposium in May, Newsom said he worried that "if we over-regulate, if we overindulge, if we chase a shiny object, we could put ourselves in a perilous position." At the same time, Newsom said those over-regulation worries were balanced against concerns he was hearing from leaders in the AI industry. "When you have the inventors of this technology, the godmothers and fathers, saying, 'Help, you need to regulate us,' that's a very different environment," he said at the symposium. "When they're rushing to educate people, and they're basically saying, 'We don't know, really, what we've done, but you've got to do something about it,' that's an interesting environment."
Supporters of the AI safety bill include state senator Scott Weiner and AI experts including Geoffrey Hinton and Yoshua Bengio. Bengio supports the bill as a necessary step for consumer protection and insists that AI should not be self-regulated by corporations, akin to other industries like pharmaceuticals and aerospace.

Stanford professor Fei-Fei Li opposes the bill, arguing that it could have harmful effects on the AI ecosystem by discouraging open-source collaboration and limiting academic research due to the liability placed on developers of modified models. A group of business leaders also sent an open letter Wednesday urging Newsom to veto the bill, calling it "fundamentally flawed."
Security

Russian Government Hackers Found Using Exploits Made By Spyware Companies NSO and Intellexa (techcrunch.com) 44

Google says it has evidence that Russian government hackers are using exploits that are "identical or strikingly similar" to those previously made by spyware makers Intellexa and NSO Group. From a report: In a blog post on Thursday, Google said it is not sure how the Russian government acquired the exploits, but said this is an example of how exploits developed by spyware makers can end up in the hands of "dangerous threat actors." In this case, Google says the threat actors are APT29, a group of hackers widely attributed to Russia's Foreign Intelligence Service, or the SVR. APT29 is a highly capable group of hackers, known for its long-running and persistent campaigns aimed at conducting espionage and data theft against a range of targets, including tech giants Microsoft and SolarWinds, as well as foreign governments.

Google said it found the hidden exploit code embedded on Mongolian government websites between November 2023 and July 2024. During this time, anyone who visited these sites using an iPhone or Android device could have had their phone hacked and data stolen, including passwords, in what is known as a "watering hole" attack. The exploits took advantage of vulnerabilities in the iPhone's Safari browser and Google Chrome on Android that had already been fixed at the time of the suspected Russian campaign. Still, those exploits nevertheless could be effective in compromising unpatched devices.

AI

AI Giants Pledge To Share New Models With Feds 14

OpenAI and Anthropic will give a U.S. government agency early access to major new model releases under agreements announced on Thursday. From a report: Governments around the world have been pushing for measures -- both legislative and otherwise -- to evaluate the risks of powerful new AI algorithms. Anthropic and OpenAI have each signed a memorandum of understanding to allow formal collaboration with the U.S. Artificial Intelligence Safety Institute, a part of the Commerce Department's National Institute of Standards and Technology. In addition to early access to models, the agreements pave the way for collaborative research around how to evaluate models and their safety as well as methods for mitigating risk. The U.S. AI Safety Institute was set up as part of President Biden's AI executive order.
The Courts

Yelp Sues Google For Antitrust Violations (theverge.com) 23

Yelp has filed an antitrust lawsuit against Google, accusing the search giant of maintaining its local search monopoly by preferencing its own services over competitors, harming competition and reducing quality. "Yelp claims that the way Google directs users toward its own local search vertical from its general search engine results page should be considered illegal tying of separate products to keep rivals from reaching scale," adds The Verge. From the report: Yelp wants the court to order Google to stop the allegedly anticompetitive conduct and to pay it damages. It demanded a jury trial and filed the suit in the Northern District of California, where a different jury found that Google had an illegal monopoly through its app store in its fight against Epic Games.

The company was emboldened to bring its own lawsuit against Google after the DOJ's win in its antitrust case about the company's allegedly exclusionary practices around the distribution of search services. Yelp CEO Jeremy Stoppelman told The New York Times that following that decision, "the winds on antitrust have shifted dramatically." Previously, he told the Times, he'd hesitated to bring a suit because of the resources it would require and because he saw it as the government's job to enforce the antitrust laws.
"Yelp's claims are not new," Google spokesperson Peter Schottenfels said in a statement. "Similar claims were thrown out years ago by the FTC, and recently by the judge in the DOJ's case. On the other aspects of the decision to which Yelp refers, we are appealing. Google will vigorously defend against Yelp's meritless claims."
Crime

Backpage.com Founder Michael Lacey Sentenced To 5 Years In Prison, Fined $3 Million (apnews.com) 59

Three former Backpage executives, including co-founder Michael Lacey, were sentenced to prison for promoting prostitution and laundering money while disguising their activities as a legitimate classified business. The Associated Press reports: A jury convicted Lacey, 76, of a single count of international concealment money laundering last year, but deadlocked on 84 other prostitution facilitation and money laundering charges. U.S. District Judge Diane Humetewa later acquitted Lacey of dozens of charges for insufficient evidence, but he still faces about 30 prostitution facilitation and money laundering charges. Authorities say the site generated $500 million in prostitution-related revenue from its inception in 2004 until it was shut down by the government in 2018.

Lacey's lawyers say their client was focused on running an alternative newspaper chain and wasn't involved in day-to-day operations of Backpage. But Humetewa told Lacey during Wednesday's sentencing he was aware of the allegations against Backpage and did nothing. "In the face of all this, you held fast," Humetewa said. "You didn't do a thing." Two other Backpage executives, Chief Financial Officer John Brunst and Executive Vice President Scott Spear, also were convicted last year and were each sentenced on Wednesday to 10 years in prison. The judge ordered Lacey and the two executives to report to the U.S. Marshals Service in two weeks to start serving their sentences.

Slashdot Top Deals