"A growing number of cities and towns all over the U.S. are handing out cash grants and other perks aimed at drawing skilled employees of faraway companies to live there and work remotely," reports the Wall Street Journal: A handful of such programs have existed for years, but they have started gaining traction during the pandemic — and have really taken off in just the past year or so. Back in October there were at least 24 such programs in the U.S. Today there are 71, according to the Indianapolis-based company MakeMyMove, which is contracted by cities and towns to set up such programs.

Because these programs specifically target remote workers who have high wages, a disproportionate share of those who are taking advantage of them work in tech — and especially for big tech companies. Companies whose employees have participated in one remote worker incentive program in Tulsa, Oklahoma, include Adobe, Airbnb, Amazon, Apple, Dell, Facebook parent Meta Platforms, Google, IBM, Microsoft, Lyft, Netflix, Oracle and Siemens, according to a spokeswoman for the organization.

Local governments are offering people willing to move up to $12,000 in cash, along with subsidized gym memberships, free babysitting and office space....

A skeptic might ask why local economic development programs are spending funds to subsidize the lives of people who work for some of the most valuable companies in the world. On the other hand, because these remote workers aren't coming to town seeking local jobs, an argument can be made that they constitute a novel kind of stimulus program for parts of the country that have been left out of the tech boom — courtesy of big tech companies... Every remote worker these places successfully attract and retain is like gaining a fraction of a new factory or corporate office, with much less expenditure and risk, argues Mark Muro, who studies cities and labor at the Brookings Institution.
The reporter interviewed an Amazon engineer who moved to Greensburg, Indiana (population: 12,193), and Meta worker David Gora, who moved to Tulsa, Oklahoma and praises its relocation program's sense of mission, possibility, and community. "Even with the pay cuts that Meta has imposed on workers who relocate to areas with a lower cost of living, Mr. Gora is saving a lot more money and has a much higher quality of life than before, he adds."

Tulsa's program is unique in that it's funded by a philanthropic organization rather than a local economic-development budget, the article points out. But it adds that "a study conducted by the Economic Innovation Group and commissioned by Tulsa Remote concluded that for every two people the program brings to the city, one new job is created." By contrast, when an office moves to a town, every new high-wage tech job creates an estimated five more jobs in sectors including healthcare, education and service, according to research by economist Enrico Moretti. That's because those deals involve not only people but the money that goes into building and maintaining facilities, paying commercial property taxes and more.

Still, for towns that don't have the budget to attract a whole office or factory, the modest impact of bringing in a handful of remote tech workers can be balanced by the much smaller investment required to attract them.

Speaking of TikTok moving US users' data to Oracle, a new report says that ByteDance staff in China accessed US TikTok users' data between September 2021 and January 2022. From the report: For years, TikTok has responded to data privacy concerns by promising that information gathered about users in the United States is stored in the United States, rather than China, where ByteDance, the video platform's parent company, is located. But according to leaked audio from more than 80 internal TikTok meetings, China-based employees of ByteDance have repeatedly accessed nonpublic data about US TikTok users -- exactly the type of behavior that inspired former president Donald Trump to threaten to ban the app in the United States.

The recordings, which were reviewed by BuzzFeed News, contain 14 statements from nine different TikTok employees indicating that engineers in China had access to US data between September 2021 and January 2022, at the very least. Despite a TikTok executive's sworn testimony in an October 2021 Senate hearing that a "world-renowned, US-based security team" decides who gets access to this data, nine statements by eight different employees describe situations where US employees had to turn to their colleagues in China to determine how US user data was flowing. US staff did not have permission or knowledge of how to access the data on their own, according to the tapes.

"Everything is seen in China," said a member of TikTok's Trust and Safety department in a September 2021 meeting. In another September meeting, a director referred to one Beijing-based engineer as a "Master Admin" who "has access to everything." (While many employees introduced themselves by name and title in the recordings, BuzzFeed News is not naming anyone to protect their privacy.) The recordings range from small-group meetings with company leaders and consultants to policy all-hands presentations and are corroborated by screenshots and other documents, providing a vast amount of evidence to corroborate prior reports of China-based employees accessing US user data.

TikTok has completed migrating its U.S. users' information to servers at Oracle, in a move that could address U.S. regulatory concerns over data integrity on the popular video app, the company confirmed to Reuters. From a report: The move comes nearly two years after a U.S. national security panel ordered ByteDance to divest TikTok because of fears that U.S. user data could be passed on to China's government.

Shutterfly recently moved its photo libraries to Amazon's cloud division — and became one of the companies that stopped using Oracle for it database management, Bloomberg reports: Businesses are opting to align with newer providers such as MongoDB Inc., Databricks Inc. and Snowflake Inc. instead of Oracle, the sector stalwart, as a result of changes across the enterprise technology landscape.

The move to the cloud is challenging the systems of the past. Newer providers are also making it much easier to adopt their technology directly, alleviating the need for corporate purchasers to negotiate large contracts with salespeople and allowing end users to more easily pick their own tools. Offerings from the newer software makers can also be deployed without large teams of database administrators that are typically needed to support Oracle's products, a cost-saver for organizations that would otherwise have to fight against other businesses for these in-demand engineers. The evidence of the shift is widespread. JPMorgan Chase & Co. chose Cockroach Labs Inc. as the database vendor to support its new retail banking application in Europe. Nasdaq Inc. is working with closely held Databricks and Amazon.com Inc.'s Amazon Web Services, among others, in its quest to upgrade from on-premises Oracle data repositories. Alongside AWS, database products from rival cloud vendors Microsoft Corp. and Alphabet Inc.'s Google Cloud are also growing quickly. And many businesses, like JetBlue Airways Corp. and Automatic Data Processing Inc., are tapping Snowflake to help store and analyze corporate data to power sales dashboards, among other uses....

Collectively, the initiatives are just a small fragment of the estimated $155 billion database market. But it's evidence of a tectonic shift happening within the industry, one that is threatening the leadership status Oracle cultivated over the past 43 years, ever since co-founder Larry Ellison and his team brought to market the first relational database, or one in which information was organized in tables that could be more easily accessed, manipulated and analyzed.... Oracle doesn't disclose financial results specifically for its database business. Much of that revenue comes from providing support and maintenance for existing customers versus new sales. But Oracle's influence is slowly fading. While it owned an estimated 27% of the database market in 2019, that fell to 24% in 2020, per Gartner. In the same time frame, Amazon went from 17% market share to almost 21%.

Oracle declined to comment for this story. Rivals are growing quickly. At MongoDB, for example, sales rose 57% to $285 million in the most recent quarter. Those results, analysts and company executives say, indicate businesses are using MongoDB for increasingly larger projects.... Oracle makes a significant portion of its revenue on existing customers. Every few years, when companies have to renew their contracts, Oracle can raise prices for maintenance and support — a business with margins hovering around 95%, according to Craig Guarente, a 16-year veteran of Oracle who is now CEO and co-founder of consulting firm Palisade Compliance.

"The entire profit of the company comes from Oracle database maintenance," he said. With each contract negotiation, "you go from paying $20 million a year, to $30 million a year, to paying $50 million a year."

The Record reports that the decentralized money market Venus Protocol "announced on Thursday evening about $11 million had been lost due to people exploiting the historic collapse of the Luna cryptocurrency and its sister stablecoin UST." Venus Protocol and several other platforms use Chainlink to provide its users with real-time price estimations of the tokens on its platform that are available for lending and borrowing. But the tool began having issues with Luna on Thursday as the price continued to fall precipitously. "As a result, it was possible to deposit UST and LUNA as collateral and borrow other tokens, with an underpriced collateral valuation...." decentralized finance researcher Vali Dyor explained.
Venus Protocol says they became "aware of errant price behavior for LUNA," and "Upon investigation, it was learned that the price feed had been paused by Chainlink due to extreme market conditions." "The price on Venus was last listed at about $0.107 while the market price was $0.01. In order to de-risk this situation, the protocol was paused using PauseGuardian via multisig. Upon this desyncing event, it was discovered that 2 accounts had suspiciously deposited a sum of 230,000,000 LUNA valued at over $24,000,000. Assets were borrowed totalling around $13,500,000."
Venus Protocol has a "Risk Fund" that will be used to cover the shortfall, the Record reports. But they added that Venus Protocol wasn't the only one having problems: As the price of Luna cratered overnight, exchanges and markets were forced to make difficult choices on how to approach the cryptocurrency. Binance stopped all trading of Luna and UST on its platform but the moves have done little to stop all cryptocurrency values from being depressed across the board.

DeFi platform Blizz Finance announced that it was attacked in the same way Venus Protocol was, but they did not release an estimate on the losses incurred. But they said the protocol was "drained" before it could stop the process.
And then Blizz Finance posted a post-mortem early Sunday morning: Large amounts of LUNA were deposited and used to drain all available lendable assets... Prior to the incident the Chainlink team did attempt to notify us that the oracle would pause, however we did not receive the message in time. We were unaware of Chainlink's minimum price circuit breaker. This behaviour is not mentioned anywhere within Chainlink's documentation...

Blizz has no treasury or development fund and a significant portion of the stolen assets belonged to our team. As such we regret to announce the protocol has been paused and we do not intend to resume operations. We will be shutting down the front-end and closing official communication channels in the coming days....

We are very sorry for the losses incurred by our users. We thank the community for their support on this journey and deeply regret that this is how it came to an end.
They posted one additional detail on Twitter. "We are reaching out to a Chinese community who is believed to have doxxed individuals who participated in the attacks."

An anonymous reader quotes a report from TechCrunch: Google today announced the launch of AlloyDB, a new fully-managed PostgreSQL-compatible database service that the company claims to be twice as fast for transactional workloads as AWS's comparable Aurora PostgreSQL (and four times faster than standard PostgreSQL for the same workloads and up to 100 times faster for analytical queries). [...] AlloyDB is the standard PostgreSQL database at its core, though the team did modify the kernel to allow it to use Google's infrastructure to its fullest, all while allowing the team to stay up to date with new versions as they launch.

Andi Gutmans, who joined Google as its GM and VP of Engineering for its database products in 2020 after a long stint at AWS, told me that one of the reasons the company is launching this new product is that while Google has done well in helping enterprise customers move their MySQL and PostgreSQL servers to the cloud with the help of services like CloudSQL, the company didn't necessarily have the right offerings for those customers who wanted to move their legacy databases (Gutmans didn't explicitly say so, but I think you can safely insert 'Oracle' here) to an open-source service.

"There are different reasons for that," he told me. "First, they are actually using more than one cloud provider, so they want to have the flexibility to run everywhere. There are a lot of unfriendly licensing gimmicks, traditionally. Customers really, really hate that and, I would say, whereas probably two to three years ago, customers were just complaining about it, what I notice now is customers are really willing to invest resources to just get off these legacy databases. They are sick of being strapped and locked in." Add to that Postgres' rise to becoming somewhat of a de facto standard for relational open-source databases (and MySQL's decline) and it becomes clear why Google decided that it wanted to be able to offer a dedicated high-performance PostgreSQL service. The report also says Google spent a lot of effort on making Postgres perform better for customers that want to use their relational database for analytics use cases.

"The changes the team made to the Postgres kernel, for example, now allow it to scale the system linearly to over 64 virtual cores while on the analytical side, the team built a custom machine learning-based caching service to learn a customer's access patterns and then convert Postgres' row format into an in-memory columnar format that can be analyzed significantly faster."

InfoWorld reports that "While still the industry's leading Java distribution, Oracle Java's popularity is half what it was just two years ago, according to a report from application monitoring company New Relic." (With the usual caveat that data from New Relic's report "was drawn entirely from applications reporting to New Relic in January 2022 and does not provide a global picture of Java usage,") The finding was included the company's 2022 State of the Java Ecosystem report, released April 26, which is based on data culled from millions of applications providing performance data to New Relic. Among Java Development Kit (JDK) distributions, Oracle had roughly 75% of the market in 2020, but just 34.48% in 2022, New Relic reported. Not far behind was Amazon, at 22.04%, up from 2.18% in 2020.

New Relic said its numbers show movement away from Oracle binaries after the company's "more restrictive licensing" of its JDK 11 distribution before returning to a more open stance with JDK 17, released in September 2021. Behind Oracle and Amazon were Eclipse Adoptium (11.48%), Azul Systems (8.17%), Red Hat (6.05%), IcedTea (5.38%), Ubuntu (2.91%), and BellSoft (2.5%).

Long-time Slashdot reader slack_justyb writes: IBM announces IBM i (some you of you may know it under the old name of AS/400) 7.5 the first new release in three years since the 7.4 release. One of the big headlines with the IBM i 7.5 announcement is Merlin which stands for the Modernization Engine for Lifecycle Integration....

With the Db2 product, IBM i is now receiving Boolean data types with support for this new type in RPG and JSON environments. Larger Indexes, the previous limit was 1.6TB indexes, that has now been increased to 16TB. And Db2 is now fully compliant with SQL:2016 the most recent publication of the SQL standard, beating Oracle to the punch on full support of the standard. And finally, QSYS2-based functions for using HTTP requests to publish or consume Web services, including the use of embedded SQL in REST services. These are enhanced versions of the functions that were seen in 7.3/7.4 where IBM removed the requirement for a JVM to use SQL to consume web services.
IT Jungle has many more details. Some of the highlights: Merlin provides a lightweight, browser-based development environment for creating new applications or modernizing existing RPG-based application. It's an alternative to Rational Developer for i (RDi) based on Eclipse, which many developers seem to hate. Developed in partnership with ARCAD Software, Merlin comes pre-loaded with tools like Git and Jenkins for DevOps-style code management, as well as an RPG code-converter. It runs in a Linux-based Red Hat OpenShift container running on the Power platform. While it's not technically tied to IBM i version 7.5 or 7.4 TR6, Merlin represents an important change in how IBM is packaging and delivering capabilities for IBM i shops, as well as a recognition that IBM should take a more active role in helping users modernize their codebases....

IBM is now enabling customers to buy subscriptions to IBM i for periods of one to five years. Allowing customers to use operating expenditure (Opex) budget lines instead of the dreaded capital expenditure (CapEx) accounting code for subscriptions. IBM is focusing on lower-end IBM i environments at the moment, so the subscription is limited to four-core P05 machines at this time. As part of this shift to software subscriptions, IBM is rethinking how it bundles ancillary products that are often used with IBM i. 11 packages are being moved into the core OS entitlement.

A group of nearly two dozen investors including Sequoia Capital, Andreessen Horowitz, crypto exchange Binance and asset management firm Fidelity is backing Elon Musk's $44 billion bid to acquire Twitter. From a report: The Tesla and SpaceX chief executive said in a filing Thursday that he had raised over $7.1 billion in total from the investors. Oracle co-founder Larry Ellison delivered the largest check, at $1 billion, the filing revealed. Sequoia has chipped in $800 million, VyCapital $700 million, Binance financed $500 million, and Andreessen Horowitz has invested $400 million, the amended 13D filing said.

Oracle has begun making a new version of Solaris 11.4 available for free/open-source developers and for non-production personal use. Phoronix reports: Solaris 11.4 CBE is the "Common Build Environment" and intended for open-source developers and strictly non-production personal use... That is if you want Solaris for new installs in 2022. The new Solaris 11.4 "CBE" spin is effectively a rolling release and from Oracle's perspective hopes to ease the integration of the open-source software relied upon by Solaris rather than being bound to the dated 11.4.0 GA release.

Downloading the new Solaris 11.4 CBE does require an Oracle account. The CBE builds are also described as "similar to a beta, they are pre-release builds of a particular SRU." The non-production use license is put out under the Oracle Technology Network Early Adopter License Agreement for Oracle Solaris. Oracle will allow upgrading from these free CBE releases to paid SRU releases under Oracle support contracts. More details for those interested in Oracle Solaris 11.4 CBE via the Oracle Solaris blog.

Google's Threat Analysis Group announced on Thursday that it had discovered a pair of North Korean hacking cadres going by the monikers Operation Dream Job and Operation AppleJeus in February that were leveraging a remote code execution exploit in the Chrome web browser. From a report: The blackhatters reportedly targeted the US news media, IT, crypto and fintech industries, with evidence of their attacks going back as far as January 4th, 2022, though the Threat Analysis Group notes that organizations outside the US could have been targets as well.

"We suspect that these groups work for the same entity with a shared supply chain, hence the use of the same exploit kit, but each operate with a different mission set and deploy different techniques," the Google team wrote on Thursday. "It is possible that other North Korean government-backed attackers have access to the same exploit kit." Operation Dream Job targeted 250 people across 10 companies with fraudulent job offers from the likes of Disney and Oracle sent from accounts spoofed to look like they came from Indeed or ZipRecruiter. Clicking on the link would launch a hidden iframe that would trigger the exploit.

TikTok's national security clash with the U.S. government may be nearing its conclusion, without the sort of shareholder overhaul that was previously proposed. From a report: The social media company is in advanced talks with the Committee on Foreign Investment in the United States (CFIUS) to store all of its U.S. user information with Oracle, without Chinese owner ByteDance being able to access it, as first reported by Reuters and confirmed by Axios. Data sovereignty has been the core regulatory concern since this all began in mid-2020, at least for career staff. Certain political appointees of the Trump administration also expressed fears that the Chinese government could use TikTok to influence U.S. political or social sentiment, but content moderation seems outside the scope of current talks.

An anonymous reader quotes a report from The Register: Microsoft Azure has nosed ahead of AWS in the public cloud adoption stakes, according to a report from IT Management outfit Flexera. The 2022 State of the Cloud Report survey will have brought smiles to the teams at Redmond and Amazon, and less cheer to Oracle's cloud crew, which continued to languish in fourth place behind Google.

The key takeaway on the Azure front is its leadership with enterprise users, with 80 percent of respondents adopting Microsoft's public cloud, up from 76 percent the previous year. This was just ahead of AWS, which claimed a 77 percent adoption rate, down from 79 percent a year earlier. Some way behind was Google, with 48 percent, followed by Oracle Cloud Infrastructure, which tumbled to 27 percent from 32 percent a year ago. The report indicates Azure is ahead of AWS for breadth of adoption, although Google has the highest percentage for experimentation (at 23 percent). There was some cause for optimism at Oracle with the highest percentage (12 percent) planning to use its cloud, meaning there is every chance its showing in the survey could improve in the coming years. "AWS is still leading the SMB public cloud pack, although it still experienced a slight drop in adoption rate, from 72 percent to 69 percent while Azure jumped from 48 percent to 59 percent," notes The Register. "Oracle also saw strong growth, nearly doubling its adoption rate from 15 percent to 28 percent year on year."

The survey also reported an increase in wasted cloud spend. According to The Register, "respondents estimated their organizations wasted 32 percent of the cloud spend this time around, up from 30 percent the previous year."

Cogent Communications, one of the world's largest internet intercontinental backbone providers, has cut ties with Russian customers over its invasion of Ukraine. The Verge reports: In a letter to Russian customers obtained by The Washington Post, Cogent cited "economic sanctions" and "the increasingly uncertain security situation" as the motives behind its total shutdown in the country. Cogent similarly told The Verge that it "terminated its contracts" with Russian customers in compliance with the European Union's move to ban Russian state-backed media outlets.

As Doug Madory, an internet analyst at network tracking company Kentik points out... unplugging Russia from Cogent's global network will likely result in slower connectivity, but won't completely disconnect Russians from the internet... Traffic from Cogent's former customers will instead fall back on other backbone providers in the country, potentially resulting in network congestion. There isn't any indication as to whether other internet backbone providers will also suspend services in Russia.

Digital rights activists have criticized Cogent's decision to disconnect itself from Russia, arguing that it could prevent Russian civilians from accessing credible information about the invasion. "Cutting Russians off from internet access cuts them off from sources of independent news and the ability to organize anti-war protests," Eva Galperin, the director of cybersecurity at the digital rights group Electronic Frontier Foundation, said on Twitter....

Cogent's goal is to prevent the Russian government from using the company's networks for cyberattacks and propaganda, The Post reports.
The Post argues that on a larger scale,"these moves bring Russia closer to the day when its online networks face largely inward, their global connections weakened, if not cut off entirely." "I am very afraid of this," said Mikhail Klimarev, executive director of the Internet Protection Society, which advocates for digital freedoms in Russia. "I would like to convey to people all over the world that if you turn off the Internet in Russia, then this means cutting off 140 million people from at least some truthful information. As long as the Internet exists, people can find out the truth. There will be no Internet — all people in Russia will only listen to propaganda...."

[E]ven two weeks ago, Russia's Internet was comparatively free and integrated into the larger online world, allowing civil society to organize, opposition figures to deliver their messages and ordinary Russians to gain ready access to alternative sources of news in an era when Putin was strangling his nation's free newspapers and broadcast stations.... Patrick Boehler, head of digital strategy at Radio Free Europe, said CrowdTangle data showed that independent news stories in the Russian language worldwide were getting shared many more times on social media than stories from state-run media. He said that once the Kremlin lost control of the narrative, it would have been hard to regain.

Now the last independent journalistic outposts are gone, and the Internet options are increasingly constricted through a combination of forces — all spurred by war in Ukraine but coming from both within and outside Russia.... Government censors also blocked access to the BBC, Voice of America, Radio Free Europe/Radio Liberty and Deutsche Welle, as well as major Ukrainian websites. The BBC, CNN and other international news organizations said they were suspending reporting in Russia because of a new law that could result in 15 years of prison for publishing what government officials deem false news on the war.
Meanwhile, Politico reminds us that even Oracle has shut down its Russian cloud service operations. Laura Manley, the executive director of Harvard University's Shorenstein Center on Media, Politics and Public Policy, said Russia is creating a perfect situation to control its narrative and limit outside coverage of its Ukrainian invasion by Western social media sources. "You have the lack of eyewitness information because you have critical infrastructure being shut off," she said. "So it's sort of a worst case scenario in terms of getting real-time accurate information."

Linux programmers fixed bugs faster than anyone — in an average of just 25 days (improving from 32 days in 2019 to just 15 in 2021). That's the conclusion of Google's "Project Zero" security research team, which studied the speed of bug-fixing from January 2019 to December 2021.

ZDNet reports that Linux's competition "didn't do nearly as well." For instance, Apple, 69 days; Google, 44 days; and Mozilla, 46 days. Coming in at the bottom was Microsoft, 83 days, and Oracle, albeit with only a handful of security problems, with 109 days.

By Project Zero's count, others, which included primarily open-source organizations and companies such as Apache, Canonical, Github, and Kubernetes, came in with a respectable 44 days.

Generally, everyone's getting faster at fixing security bugs. In 2021, vendors took an average of 52 days to fix reported security vulnerabilities. Only three years ago the average was 80 days. In particular, the Project Zero crew noted that Microsoft, Apple, and Linux all significantly reduced their time to fix over the last two years.

As for mobile operating systems, Apple iOS with an average of 70 days is a nose better than Android with its 72 days. On the other hand, iOS had far more bugs, 72, than Android with its 10 problems.

Browsers problems are also being fixed at a faster pace. Chrome fixed its 40 problems with an average of just under 30 days. Mozilla Firefox, with a mere 8 security holes, patched them in an average of 37.8 days. Webkit, Apple's web browser engine, which is primarily used by Safari, has a much poorer track record. Webkit's programmers take an average of over 72 days to fix bugs.

An anonymous reader quotes a report from Gizmodo: It's been less than a month since the New York Times bought Wordle, but it's wasting no time in ruining everyone's favorite word game in all the shitty ways you'd expect from a billion-dollar behemoth. And -- you guessed it -- that means your little daily puzzles are being loaded with ad trackers now, too. Most of us assumed that this was going to happen eventually. I mean, the Times dropped a cool seven-figure sum on a game that's still free to play (at least for right now), so those profits would need to be recouped from somewhere. And this week, some code-savvy Worlders stumbled onto where that "somewhere" was: a dozen different trackers shoved into places where there were literally zero before. Taking a look for ourselves, Gizmodo found that some of the trackers were from the New York Times proper, but most were used to send data to third-party players like Google. [...]

Here's just one nightmare scenario out of the bajillion or so that could come out of a system like this: Ad trackers were created to shove t-shirts and mugs onto all of our timelines, but they can also be used for outright surveillance. There are countless cases of cops using the data gleaned from those shitty ads to track protestors, immigrants, and anyone else they'd want completely warrant-free. And two of the companies that officers tap on the regular for this work -- Google and Oracle (via its infamous Bluekai subsidiary) -- are tied up in Wordle's shiny new trackers. Every time you open the page to see the day's puzzle to complain about how hard it is, the page pings details back to those companies -- and the data it shares can be extremely detailed, as Bluekai's own documents (PDF) lay out. At the very least, it's likely sending broad strokes to say you were on the site at a certain time, while your device was at a certain location.

Sure, adtech players can (and will) pull much shadier shit to share more data on the regular. But as a for instance, if a cop wanted to set a geofence warrant around your neighborhood -- tracking which devices are caught in a specific area at a specific time -- they could easily tap into Bluekai's ad data to get those wheres and whens. And now the fact that you Wordle'd at your local coffee shop on a Tuesday becomes one of the reasons that you ended up on some fed's watch list for a crime you didn't commit but will somehow end up jailed for anyway. This absolute nightmare is almost certainly not what's happening on Wordle right now (phew). And again, this scenario applies to most of the sites you likely visit every day, not just Wordle. But the real scary part about all of this -- at least to me -- is that it can.

IBM has resurrected its sale process for IBM Watson Health, with hopes of fetching more than $1 billion, people familiar with the situation told Axios. From the report: Big Blue wants out of health care, after spending billions to stake its claim, just as rival Oracle is moving big into the sector via its $28 billion bet for Cerner. IBM spent more than $4 billion to build Watson Health via a series of acquisitions. The business now includes health care data and analytics business Truven Health Analytics, population health company Phytel, and medical imaging business Merge Healthcare. IBM first explored a sale of the division in early 2021, with Morgan Stanley leading the process. WSJ reported at the time that the unit was generating roughly $1 billion in annual revenue, but was unprofitable. Sources say it continues to lose money.

Oracle is expected to pay more than $30 billion including debt for electronic-medical-records company Cerner, WSJ reported Monday, citing people familiar with the matter. From a report: The all-cash deal is expected to be announced later Monday and value Cerner at about $95 a share, one of the people said.

The U.S. General Services Administration said Friday that the Defense Department has solicited bids from Amazon, Google, Microsoft and Oracle for cloud contracts. From a report: The outreach comes after the Pentagon set aside a highly contested $10 billion contract that Microsoft had won and Amazon had challenged. The value of the new contracts is not known, but the Defense Department estimates it could run into the multiple billions of dollars. The new effort, known as Joint Warfighting Cloud Capability, or JWCC, appears like it will bolster the top global cloud infrastructure providers, Amazon and Microsoft, although it could also provide more credibility to two smaller entities.

"The Government anticipates awarding two IDIQ contracts -- one to Amazon Web Services (AWS) and one to Microsoft Corporation (Microsoft) -- but intends to award to all Cloud Service Providers (CSPs) that demonstrate the capability to meet DoD's requirements," the GSA said in its announcement. An indefinite delivery, indefinite quantity, or IDIQ, contract includes an indefinite amount of services for a specific period of time.

The Oracle JDK "is available free of charge for production use again," reports InfoQ, under a new "Oracle No-Fee Terms and Conditions" license.

The move, announced in mid-September, "reverses a 2018 decision to charge for Oracle JDK production use and does not affect Oracle's OpenJDK distribution," they write, noting that the new license "applies to the recently released version 17 of Oracle JDK and future versions." Donald Smith, Senior Director of Product Management at Oracle, explained the reason for this decision in a recent blog post, writing:

"Providing Oracle OpenJDK builds under the GPL was highly welcomed, but feedback from developers, academia, and enterprises was that they wanted the trusted, rock-solid Oracle JDK under an unambiguously free terms license, too. Oracle appreciates the feedback from the developer ecosystem and are pleased to announce that as of Java 17 we are delivering on exactly that request."

Smith explicitly stated that the No-Fee Terms and Conditions license "includes commercial and production use" [although the license does not seem to highlight this fact] and stated that "redistribution is permitted as long as it is not for a fee."