An anonymous reader shares a report: Earlier this month, we wrote that some of Intel's recent high-end Core i9 and Core i7 processors had been crashing and exhibiting other weird issues in some games and that Intel was investigating the cause. An Intel statement obtained by Igor's Lab suggests that Intel's investigation is wrapping up, and the company is pointing squarely in the direction of enthusiast motherboard makers that are turning up power limits and disabling safeguards to try to wring a little more performance out of the processors. "While the root cause has not yet been identified, Intel has observed the majority of reports of this issue are from users with unlocked/overclock capable motherboards," the statement reads. "Intel has observed 600/700 Series chipset boards often set BIOS defaults to disable thermal and power delivery safeguards designed to limit processor exposure to sustained periods of high voltage and frequency." These are the specific settings that Intel believes are causing problems: Disabling Current Excursion Protection (CEP) Enabling the IccMax Unlimited bit Disabling Thermal Velocity Boost (TVB) and/or Enhanced Thermal Velocity Boost (eTVB) Additional settings which may increase the risk of system instability: Disabling C-states Using Windows Ultimate Performance mode Increasing PL1 and PL2 beyond Intel recommended limits.

Read more of this story at Slashdot.

Razer will have to fork over $1.1 million in refunds to customers who purchased its RGB-clad Zephyr face mask, according to a proposed settlement announced by the Federal Trade Commission on Monday. From a report: The company claimed the face mask used N95-grade filters, but the FTC alleges Razer never submitted them for testing and only "stopped the false advertising following negative press coverage and consumer outrage at the deceptive claims." Razer first released its Zephyr face mask in 2021 as a nifty, cyberpunk-esque alternative to traditional face masks worn during the covid-19 pandemic. Although Razer initially marketed the $100 mask as having N95-grade filters, it scrubbed any mention of the grade after YouTuber Naomi Wu tore down the mask and found that it wasn't N95 certified after all. N95 masks are supposed to filter out at least 95 percent of airborne particles, according to the Centers for Disease Control and Prevention. Razer also planned on launching a $150 Zephyr Pro with a voice amplification feature, but that never panned out. At the time, Razer addressed claims about its Zephyr masks, saying in a post on X that "the Razer Zephyr and Zephyr Pro are not medical devices, respirators, surgical masks, or personal protective equipment (PPE) and are not meant to be used in medical or clinical settings."

Read more of this story at Slashdot.

Countries are for the first time considering restrictions on the global production of plastic -- to reduce it by 40% in 15 years -- in an attempt to protect human health and the environment. From a report: As the world attempts to make a treaty to cut plastic waste at UN talks in Ottawa, Canada, two countries have put forward the first concrete proposal to limit production to reduce its harmful effects including the huge carbon emissions from producing it. The motion submitted by Rwanda and Peru sets out a global reduction target, ambitiously termed a "north star," to cut the production of primary plastic polymers across the world by 40% by 2040, from a 2025 baseline. It says: "The effectiveness of both supply and demand-side measures will be assessed, in whole or in part, on their success in reducing the production of primary plastic polymers to sustainable levels." The proposal calls for the consideration of mandatory reporting by countries of statistical data on production, imports and exports of primary plastic polymers. A global plastic reduction target would be similar to the legally binding Paris agreement to pursue efforts to limit global temperature increase to 1.5C above preindustrial levels, Rwanda and Peru said.

Read more of this story at Slashdot.

Amazon says its deliveries are getting even faster, announcing that it delivered over 2 billion items the same or next day to Prime members during the first three months of 2024, breaking its record for 2023. From a report: The company says it delivered almost 60 percent of Prime orders the same or next day in 60 of the biggest metropolitan areas in the US.

Read more of this story at Slashdot.

Austria called on Monday for fresh efforts to regulate the use of AI in weapons systems that could create so-called 'killer robots', as it hosted a conference aimed at reviving largely stalled discussions on the issue. From a report: With AI technology advancing rapidly, weapons systems that could kill without human intervention are coming ever closer, posing ethical and legal challenges that most countries say need addressing soon. "We cannot let this moment pass without taking action. Now is the time to agree on international rules and norms to ensure human control," Austrian Foreign Minister Alexander Schallenberg told the meeting of non-governmental and international organisations as well as envoys from 143 countries. "At least let us make sure that the most profound and far-reaching decision, who lives and who dies, remains in the hands of humans and not of machines," he said in an opening speech to the conference entitled "Humanity at the Crossroads: Autonomous Weapons Systems and the Challenge of Regulation." Years of discussions at the United Nations have produced few tangible results and many participants at the two-day conference in Vienna said the window for action was closing rapidly.

Read more of this story at Slashdot.

The United Kingdom has become the first country in the world to ban default guessable usernames and passwords from these IoT devices. Unique passwords installed by default are still permitted. From a report: The Product Security and Telecommunications Infrastructure Act 2022 (PSTI) introduces new minimum-security standards for manufacturers, and demands that these companies are open with consumers about how long their products will receive security updates for. Manufacturing and design practices mean many IoT products introduce additional risks to the home and business networks they're connected to. In one often-cited case described by cybersecurity company Darktrace, hackers were allegedly able to steal data from a casino's otherwise well-protected computer network after breaking in through an internet-connected temperature sensor in a fish tank. Under the PSTI, weak or easily guessable default passwords such as "admin" or "12345" are explicitly banned, and manufacturers are also required to publish contact details so users can report bugs.

Read more of this story at Slashdot.

A judge has dismissed a lawsuit brought by superconductivity physicist Ranga Dias against his employer, the University of Rochester in New York. From a report: In February, a university investigation found that he had committed scientific misconduct by, among other things, fabricating data to claim the discovery of superconductors -- materials with zero electrical resistance -- at room temperature. Dias filed the lawsuit against the university for allegedly violating his academic freedom and conducting a biased investigation into his work. On 19 April, Monroe County Supreme Court justice Joseph Waldorf denied Dias's petitions and dismissed the lawsuit as premature. The matter "is not ripe for judicial review," Waldorf wrote, because, although Rochester commissioned an independent review that found Dias had committed misconduct, it has not yet finished taking administrative action. The university provost has recommended that Dias be fired, but a final decision is still forthcoming. A spokesperson for the university said Rochester was "pleased" with the justice's ruling, and reiterated that its investigation was "carried out in a fair manner" and reached a conclusion that it thinks is correct. Nature's news team reported on Rochester's investigation previously: three scientists external to the university conducted a 10-month probe into 16 allegations against Dias and determined that the physicist had committed plagiarism, and data fabrication and falsification related to four scientific papers, including two published in Nature. Normally, the details of the investigation would probably have remained confidential. But in response to Dias's lawsuit, the university submitted the entire report as a court exhibit, making it public.

Read more of this story at Slashdot.

The head of Britain's domestic intelligence agency warned the country's leading research universities on Thursday that foreign states are targeting their institutions and imperilling national security. The Record: "We know that our universities are being actively targeted by hostile actors and need to guard against the threat posed to frontier research in the most sensitive sectors," said the deputy prime minister Oliver Dowden, who also attended the briefing. The threat requires "further measures," said the deputy PM, who announced that the government was launching a consultation with the sector so it could "do more to support our universities and put the right security in place to protect their cutting-edge research." The briefing was delivered by Ken McCallum, the director general of MI5, alongside Dowden and the National Cyber Security Centre's interim chief executive, Felicity Oswald. It was made to the vice-chancellors of the Russell Group, a collective of the country's 24 leading universities. Among the range of measures being considered is having MI5, the domestic security agency, carry out security vetting on key researchers involved in a "small proportion of academic work, with a particular focus on research with potential dual uses in civilian and military life."

Read more of this story at Slashdot.

Noise pollution from traffic stunts growth in baby birds, even while inside the egg, research has found. From a report: Unhatched birds and hatchlings that are exposed to noise from city traffic experience long-term negative effects on their health, growth and reproduction, the study found. "Sound has a much stronger and more direct impact on bird development than we knew before," said Dr Mylene Mariette, a bird communication expert at Deakin University in Australia and a co-author of the study, published in the journal Science. "It would be wise to work more to reduce noise pollution." A growing body of research has suggested that noise pollution causes stress to birds and makes communication harder for them. But whether birds are already distressed at a young age because they are affected by noise, or by how noise disrupts their environment and parental care, was still unclear. Mariette's team routinely exposed zebra finch eggs for five days to either silence, soothing playbacks of zebra finch songs, or recordings of city traffic noises such as revving motors and cars driving past. They did the same with newborn chicks for about four hours a night for up to 13 nights, without exposing the birds' parents to the sounds.

Read more of this story at Slashdot.

A now-abandoned USB worm that backdoors connected devices has continued to self-replicate for years since its creators lost control of it and remains active on thousands, possibly millions, of machines, researchers said Thursday. ArsTechnica: The worm -- which first came to light in a 2023 post published by security firm Sophos -- became active in 2019 when a variant of malware known as PlugX added functionality that allowed it to infect USB drives automatically. In turn, those drives would infect any new machine they connected to, a capability that allowed the malware to spread without requiring any end-user interaction. Researchers who have tracked PlugX since at least 2008 have said that the malware has origins in China and has been used by various groups tied to the country's Ministry of State Security. For reasons that aren't clear, the worm creator abandoned the one and only IP address that was designated as its command-and-control channel. With no one controlling the infected machines anymore, the PlugX worm was effectively dead, or at least one might have presumed so. The worm, it turns out, has continued to live on in an undetermined number of machines that possibly reaches into the millions, researchers from security firm Sekoia reported. The researchers purchased the IP address and connected their own server infrastructure to "sinkhole" traffic connecting to it, meaning intercepting the traffic to prevent it from being used maliciously. Since then, their server continues to receive PlugX traffic from 90,000 to 100,000 unique IP addresses every day.

Read more of this story at Slashdot.

Captchas that aim to distinguish humans from nefarious bots are demanding more brain power. WSJ: The companies and cybersecurity experts who design Captchas have been doing all they can to stay one step ahead of the bad actors figuring out how to crack them. A cottage industry of third-party Captcha-solving firms -- essentially, humans hired to solve the puzzles all day -- has emerged. More alarmingly, so has technology that can automatically solve the more rudimentary tests, such as identifying photos of motorcycles and reading distorted text. "Software has gotten really good at labeling photos," said Kevin Gosschalk, the founder and CEO of Arkose Labs, which designs what it calls "fraud and abuse prevention solutions," including Captchas. "So now enters a new era of Captcha -- logic based." That shift explains why Captchas have started to both annoy and perplex. Users no longer have to simply identify things. They need to identify things and do something with that information -- move a puzzle piece, rotate an object, find the specter of a number hidden in a roomscape. Compounding this bewilderment is the addition to the mix of generative AI images, which creates new objects difficult for robots to identify but baffles humans who just want to log in. "Things are going to get even stranger, to be honest, because now you have to do something that's nonsensical," Gosschalk said. "Otherwise, large multimodal models will be able to understand."

Read more of this story at Slashdot.

The GNOME Foundation, a non-profit organization supporting the GNOME desktop environment, has been operating at a deficit for several years, depleting its financial reserves. Robert McQueen, the foundation's president, has announced plans to increase fundraising efforts in a new blog post. McQueen adds: As you may be aware, the GNOME Foundation has operated at a deficit (nonprofit speak for a loss -- ie spending more than we've been raising each year) for over three years, essentially running the Foundation on reserves from some substantial donations received 4-5 years ago. The Foundation has a reserves policy which specifies a minimum amount of money we have to keep in our accounts. This is so that if there is a significant interruption to our usual income, we can preserve our core operations while we work on new funding sources. We've now "hit the buffers" of this reserves policy, meaning the Board can't approve any more deficit budgets -- to keep spending at the same level we must increase our income.

Read more of this story at Slashdot.

U.S. authorities consider DJI a security threat. Congress is weighing legislation to ban it [non-paywalled link], prompting a lobbying campaign from the company, which dominates the commercial and consumer drone markets. The New York Times: DJI is on a Defense Department list of Chinese military companies whose products the U.S. armed forces will be prohibited from purchasing in the future. As part of the defense budget that Congress passed for this year, other federal agencies and programs are likely to be prohibited from purchasing DJI drones as well. The drones -- though not designed or authorized for combat use -- have also become ubiquitous in Russia's war against Ukraine. The Treasury and Commerce Departments have penalized DJI over the use of its drones for spying on Uyghur Muslims who are held in camps by Chinese officials in the Xinjiang region. Researchers have found that Beijing could potentially exploit vulnerabilities in an app that controls the drone to gain access to large amounts of personal information, although a U.S. official said there are currently no known vulnerabilities that have not been patched. Now Congress is weighing legislation that could kill much of DJI's commercial business in the United States by putting it on a Federal Communications Commission roster blocking it from running on the country's communications infrastructure. The bill, which has bipartisan support, has been met with a muscular lobbying campaign by DJI. The company is hoping that Americans like Mr. Nordfors who use its products will help persuade lawmakers that the United States has nothing to fear -- and much to gain -- by keeping DJI drones flying. "DJI presents an unacceptable national security risk, and it is past time that drones made by Communist China are removed from America," Representative Elise Stefanik, Republican of New York and one of the bill's primary sponsors, said in an emailed statement this month.

Read more of this story at Slashdot.

Some Android-powered TVs can expose the contents of users' email inboxes if an attacker has physical access to the TV. Google initially told the office of Senator Ron Wyden that the issue, which is a quirk of how software is installed on these TVs, was expected behavior, but after being contacted by 404 Media, Google now says it is addressing the issue. From the report: The attack is an edge case but one that still highlights how the use of Google accounts, even on products that aren't necessarily designed for browsing user data, can expose information in unusual ways, including TVs in businesses or ones that have been resold or given away. "My office is mid-way through a review of the privacy practices of streaming TV technology providers. As part of that inquiry, my staff discovered an alarming video in which a YouTuber demonstrated how with 15 minutes of unsupervised access to an Android TV set top box, a criminal could get access to private emails of the Gmail user who set up the TV," Senator Ron Wyden told 404 Media in a statement.

Read more of this story at Slashdot.

Europe is less hard-working, less ambitious, more regulated and more risk-averse than the US, according to the boss of Norway's giant oil fund, with the gap between the two continents only getting wider. FT: Nicolai Tangen, chief executive of the $1.6tn fund, told the Financial Times it was "worrisome" that American companies were outpacing their European rivals [non paywalled link] on innovation and technology, leading to vast outperformance of US shares in the past decade. "There's a mindset issue in terms of acceptance of mistakes and risks. You go bust in America, you get another chance. In Europe, you're dead," he said, adding that there was also a difference in "the general level of ambition. We are not very ambitious. I should be careful about talking about work-life balance, but the Americans just work harder." His views are significant as the oil fund is one of the largest single investors in the world, owning on average 1.5 per cent of every listed company globally and 2.5 per cent of every European equity. Its US holdings have increased in the past decade while its European ones have declined. US shares account for almost half of all its equities compared with 32 per cent in 2013. The leading European country -- the UK -- represented 15 per cent of its equity portfolio a decade ago but just 6 per cent last year.

Read more of this story at Slashdot.

Tutao, known for the encrypted email service Tuta Mail, has filed a Digital Markets Act (DMA) complaint to the EU over an alleged de-ranking in Google Search. From a report: Google Search rankings are all too familiar to search engine optimization (SEO) specialists charged with ensuring web pages rise to the top of search results. In the case of Tutao's products -- Tuta Mail and Tuta Calendar -- all was going well until the beginning of March 2024, when the company claims tuta.com was abruptly de-ranked in Google Search. Rather than being displayed as a search result of thousands of keywords, the count dropped to the hundreds, the developer alleges. Matthias Pfau, co-founder of Tuta Mail, said: "This reduction in Google Search took us by surprise as we did not change anything on our website during that time. We tried to reach out to Google about this issue, but were met with radio silence." Google denies the claims. It told The Reg: "Search ranking updates absolutely do not aim to preference Google products, or any other particular website. The email provider in question is easily accessible globally on Search. We appreciate the feedback and will look into how we can ensure Search continues to return the most helpful, relevant results." Tuta Mail's Pfau claims a change in results mean that when a user searches for "encrypted email," Tuta's products no longer show up. However, he went on to allege that if you search for "Tuta" or "Tutanota," the company appears in the results.

Read more of this story at Slashdot.

An anonymous reader shares a report: With Windows 11 24H2 all geared up to have AI-intensive applications, Microsoft has added a code that will warn you if your PC does not meet the hardware requirements, according to code dug up by Twitter/X sleuth Albacore. The warning will be displayed as a watermark so you know that you cannot use certain AI-powered built-in apps because of an unsupported CPU.

Read more of this story at Slashdot.

404 Media: Apple has removed a number of AI image generation apps from the App Store after 404 Media found these apps advertised the ability to create nonconsensual nude images, a sign that app store operators are starting to take more action against these types of apps. Overall, Apple removed three apps from the App Store, but only after we provided the company with links to the specific apps and their related ads, indicating the company was not able to find the apps that violated its policy itself. Apple's action comes after we reported on Monday that Instagram advertises nonconsensual AI nude apps. By browsing Meta's Ad Library, which archives ads on its platform, when they ran, on what platforms, and who paid for them, we were able to find ads for five different apps, each with dozens of ads. Two of the ads were for web-based services, and three were for apps on the Apple App Store. Meta deleted the ads when we flagged them. Apple did not initially respond to a request for comment on that story, but reached out to me after it was published asking for more information. On Tuesday, Apple told us it removed the three apps on its App Store.

Read more of this story at Slashdot.

Sam Altman of OpenAI and the chief executives of Nvidia, Microsoft and Alphabet are among technology-industry leaders joining a new federal advisory board focused on the secure use of AI within U.S. critical infrastructure, in the Biden administration's latest effort to fill a regulatory vacuum over the rapidly proliferating technology. From a report: The Artificial Intelligence Safety and Security Board is part of a government push to protect the economy, public health and vital industries from being harmed by AI-powered threats, U.S. officials said. Working with the Department of Homeland Security, it will develop recommendations for power-grid operators, transportation-service providers and manufacturing plants, among others, on how to use AI while bulletproofing their systems against potential disruptions that could be caused by advances in the technology. In addition to Nvidia's Jensen Huang, Microsoft's Satya Nadella, Alphabet's Sundar Pichai and other leaders in AI and technology, the panel of nearly two dozen consists of academics, civil-rights leaders and top executives at companies that work within a federally recognized critical-infrastructure sector, including Kathy Warden, chief executive of Northrop Grumman, and Delta Air Lines Chief Executive Ed Bastian. Other members are public officials, such as Maryland Gov. Wes Moore and Seattle Mayor Bruce Harrell, both Democrats.

Read more of this story at Slashdot.