Depuis l’annonce des Copilot+ PC (des portables avec des fonctionnalités d’IA), une fonction cristallise les débats : Recall. Il faut dire qu’elle est très intrusive puisqu’elle va enregistrer tout ce qui se passe sur l’ordinateur avec des captures d’écran régulières afin de les analyser plus tard pour y retrouver une information.

Microsoft s’est expliqué sur les choix et les protections mises en place, sans convaincre outre mesure, notamment, car la fonction permet en l’état un pillage des données sensibles et personnelles. Sans parler des risques sur les correspondances et les violences conjugales.

Il y a quelques jours, face à la grogne généralisée autour de sa fonction, Microsoft faisait volte-face. L’éditeur annonçait de nouvelles mesures de protection (qui auraient dû être présente dès le départ), mais surtout passait Recall en opt-in : l’utilisateur doit faire le choix d’activer cette fonctionnalité, alors que c’était auparavant le cas par défaut.

Dans une nouvelle mise à jour de son billet de Blog, Microsoft annonce que sa fonctionnalité « Recall passe d’une expérience de préversion largement disponible pour les PC Copilot+ le 18 juin 2024, à une préversion disponible en premier dans le programme Windows Insider (WIP) dans les semaines à venir ».

Son lancement est donc repoussé de quelques semaines (alors qu’il devait avoir lieu le 18 juin, en même temps que les portables Copilot+), mais en plus la fonctionnalité sera réservée aux insiders, dont les commentaires seront étudiés de près.

But affiché de l’opération : « s’assurer que l’expérience répond à nos normes élevées de qualité et de sécurité ». Ensuite, « comme nous le faisons habituellement, nous prévoyons de rendre Recall (préversion) prochainement disponible pour tous les PC Copilot+ », explique Microsoft.

La société promet de plus amples informations sur la manière d’obtenir Recall lorsque la fonctionnalité sera disponible en préversion dans le programme Insider.

• #Flock : Total RECALL me maybe

Depuis l’annonce des Copilot+ PC (des portables avec des fonctionnalités d’IA), une fonction cristallise les débats : Recall. Il faut dire qu’elle est très intrusive puisqu’elle va enregistrer tout ce qui se passe sur l’ordinateur avec des captures d’écran régulières afin de les analyser plus tard pour y retrouver une information.

Microsoft s’est expliqué sur les choix et les protections mises en place, sans convaincre outre mesure, notamment, car la fonction permet en l’état un pillage des données sensibles et personnelles. Sans parler des risques sur les correspondances et les violences conjugales.

Il y a quelques jours, face à la grogne généralisée autour de sa fonction, Microsoft faisait volte-face. L’éditeur annonçait de nouvelles mesures de protection (qui auraient dû être présente dès le départ), mais surtout passait Recall en opt-in : l’utilisateur doit faire le choix d’activer cette fonctionnalité, alors que c’était auparavant le cas par défaut.

Dans une nouvelle mise à jour de son billet de Blog, Microsoft annonce que sa fonctionnalité « Recall passe d’une expérience de préversion largement disponible pour les PC Copilot+ le 18 juin 2024, à une préversion disponible en premier dans le programme Windows Insider (WIP) dans les semaines à venir ».

Son lancement est donc repoussé de quelques semaines (alors qu’il devait avoir lieu le 18 juin, en même temps que les portables Copilot+), mais en plus la fonctionnalité sera réservée aux insiders, dont les commentaires seront étudiés de près.

But affiché de l’opération : « s’assurer que l’expérience répond à nos normes élevées de qualité et de sécurité ». Ensuite, « comme nous le faisons habituellement, nous prévoyons de rendre Recall (préversion) prochainement disponible pour tous les PC Copilot+ », explique Microsoft.

La société promet de plus amples informations sur la manière d’obtenir Recall lorsque la fonctionnalité sera disponible en préversion dans le programme Insider.

• #Flock : Total RECALL me maybe

New submitter wgoodman writes: A Boeing 737 Max 8 jet experienced a rare but potentially serious problem recently known as a Dutch roll before landing safely. The Federal Aviation Administration is investigating the cause of the incident during a Southwest Airlines flight last month. Less than an hour after taking off from Phoenix on May 25th, the plane experienced an uncontrolled side-to-side yawing motion known as a Dutch roll while cruising at 32,000 feet. The pilots of Southwest flight 746 were able to regain control and the plane landed safely in Oakland, according to a preliminary report from the FAA. [...] The Boeing 737 Max 8 jet involved in the Dutch roll incident is less than two years old. According to the FAA, a post-flight inspection revealed damage to a backup power control unit, known as a PCU. That system controls rudder movements on the plane's tail. The plane remained in Oakland until June 6th, when it flew to Everett, Wash., where one of Southwest's maintenance vendors is based. Boeing has been working to rebuild the trust of federal regulators and the flying public since a pair of Boeing 737 Max 8 jets crashed in 2018 and 2019, killing 346 people. Earlier versions of the 737 were involved in several accidents and crashes during the 1990s that were ultimately blamed on problems with the tail rudder.

Read more of this story at Slashdot.

In an unprecedented move, Microsoft has announced that its big Copilot+ PC initiative that was unveiled last month will launch without its headlining "Windows Recall" AI feature next week on June 18. From a report: The feature, which captures snapshots of your screen every few seconds, was revealed to store sensitive user data in an unencrypted state, raising serious concerns among security researchers and experts. Last week, Microsoft addressed these concerns by announcing that it would make changes to Windows Recall to ensure the feature handles data securely on device. At that time, the company insisted that Windows Recall would launch alongside Copilot+ PCs on June 18, with an update being made available at launch to address the concerns with Windows Recall. Now, Microsoft is saying Windows Recall will launch at a later date, beyond the general availability of Copilot+ PCs. This means these new devices will be missing their headlining AI feature at launch, as Windows Recall is now delayed indefinitely. The company says Windows Recall will be added in a future Windows update, but has not given a timeframe for when this will be. Further reading: 'Microsoft Has Lost Trust With Its Users and Windows Recall is the Straw That Broke the Camel's Back' Windows 11's New Recall Feature Has Been Cracked To Run On Unsupported Hardware Is the New 'Recall' Feature in Windows a Security and Privacy Nightmare? Mozilla Says It's Concerned About Windows Recall.

Read more of this story at Slashdot.

According to a new survey from the Pew Research Center, TikTok is the second most popular source of news for Americans after X, "though most TikTok users don't primarily think of the shortform video app as a news source," notes The Verge. The survey looked at how Facebook, Instagram, TikTok and X play a role in Americans' news diets. From the report: Among TikTok users, only 15 percent say keeping up with the news is a major reason they use the app. Still, 35 percent of those surveyed said they wouldn't have seen the news they get on TikTok elsewhere. And unlike other apps, the news users see on TikTok is just as likely to come from influencers or celebrities as it is from journalists -- and it's far more likely to come from total strangers. (Meanwhile, most Facebook and Instagram users say the news that pops up on their feeds is posted by friends, relatives, or other people they know; on X, users are more likely to see news posted by media outlets or reporters.)

Read more of this story at Slashdot.

Steven Vaughan-Nichols reports via ZDNet: While Linux and open-source software (OSS) are no longer constantly under intellectual property (IP) attacks, the Open Invention Network (OIN) patent consortium still stands guard over its patents. Now, OIN, the largest patent non-aggression community, has expanded its protection once again by updating its Linux System definition. Covering more than just Linux, the Linux System definition also protects adjacent open-source technologies. In the past, protection was expanded to Android, Kubernetes, and OpenStack. The OIN accomplishes this by providing a shared defensive patent pool of over 3 million patents from over 3,900 community members. OIN members include Amazon, Google, Microsoft, and essentially all Linux-based companies. This latest update extends OIN's existing patent risk mitigation efforts to cloud-native computing and enterprise software. In the cloud computing realm, OIN has added patent coverage for projects such as Istio, Falco, Argo, Grafana, and Spire. For enterprise computing, packages such as Apache Atlas and Apache Solr -- used for data management and search at scale, respectively -- are now protected. The update also enhances patent protection for the Internet of Things (IoT), networking, and automotive technologies. OpenThread and packages such as agl-compositor and kukusa.val have been added to the Linux System definition. In the embedded systems space, OIN has supplemented its coverage of technologies like OpenEmbedded by adding the OpenAMP and Matter, the home IoT standard. OIN has included open hardware development tools such as Edalize, cocotb, Amaranth, and Migen, building upon its existing coverage of hardware design tools like Verilator and FuseSoc. Keith Bergelt, OIN's CEO, emphasized the importance of this update, stating, "Linux and other open-source software projects continue to accelerate the pace of innovation across a growing number of industries. By design, periodic expansion of OIN's Linux System definition enables OIN to keep pace with OSS's growth." [...] Looking ahead, Bergelt said, "We made this conscious decision not to include AI. It's so dynamic. We wait until we see what AI programs have significant usage and adoption levels." This is how the OIN has always worked. The consortium takes its time to ensure it extends its protection to projects that will be around for the long haul. The OIN practices patent non-aggression in core Linux and adjacent open-source technologies by cross-licensing their Linux System patents to one another on a royalty-free basis. When OIN signees are attacked because of their patents, the OIN can spring into action.

Read more of this story at Slashdot.

Richard Speed reports via The Register: Privacy campaigner noyb has filed a GDPR complaint regarding Google's Privacy Sandbox, alleging that turning on a "Privacy Feature" in the Chrome browser resulted in unwanted tracking by the US megacorp. The Privacy Sandbox API was introduced in 2023 as part of Google's grand plan to eliminate third-party tracking cookies. Rather than relying on those cookies, website developers can call the API to display ads matched to a user's interests. In the announcement, Google's VP of the Privacy Sandbox initiative called it "a significant step on the path towards a fundamentally more private web." However, according to noyb, the problem is that although Privacy Sandbox is advertised as an improvement over third-party tracking, that tracking doesn't go away. Instead, it is done within the browser by Google itself. To comply with the rules, Google needs informed consent from users, which is where issues start. Noyb wrote today: "Google's internal browser tracking was introduced to users via a pop-up that said 'turn on ad privacy feature' after opening the Chrome browser. In the European Union, users are given the choice to either 'Turn it on' or to say 'No thanks,' so to refuse consent." Users would be forgiven for thinking that 'turn on ad privacy feature' would protect them from tracking. However, what it actually does is turn on first-party tracking. Max Schrems, honorary chairman of noyb, claimed: "Google has simply lied to its users. People thought they were agreeing to a privacy feature, but were tricked into accepting Google's first-party ad tracking. "Consent has to be informed, transparent, and fair to be legal. Google has done the exact opposite." Noyb noted that Google had argued "choosing to click on 'Turn it on' would indeed be considered consent to tracking under Article 6(1)(a) of the GDPR."

Read more of this story at Slashdot.

An anonymous reader quotes a report from TechCrunch: Amazon says that it will commit up to $230 million to startups building generative AI-powered applications. The investment, roughly $80 million of which will fund Amazon's second AWS Generative AI Accelerator program, aims to position AWS as an attractive cloud infrastructure choice for startups developing generative AI models to power their products, apps and services. Much of the new tranche -- including the entire portion set aside for the accelerator program -- comes in the form of compute credits for AWS infrastructure, meaning that it can't be transferred to other cloud service providers like Google Cloud and Microsoft Azure. To sweeten the pot, Amazon is pledging that startups in this year's Generative AI Accelerator cohort will gain access to experts and tech from Nvidia, the program's presenting partner. They will also be invited to join the Nvidia Inception program, which provides companies opportunities to connect with potential investors and additional consulting resources. The Generative AI Accelerator program has also grown substantially. Last year's cohort, which had 21 startups, received only up to $300,000 in AWS compute credits, amounting to around a combined $6.3 million investment. "With this new effort, we will help startups launch and scale world-class businesses, providing the building blocks they need to unleash new AI applications that will impact all facets of how the world learns, connects, and does business," Matt Wood, VP of AI products at AWS, said in a statement. Further reading: How Amazon Blew Alexa's Shot To Dominate AI

Read more of this story at Slashdot.

The Ukraine cyber police, supported by information from the Dutch police, arrested a 28-year-old Russian man in Kyiv for aiding Conti and LockBit ransomware operations by making their malware undetectable and conducting at least one attack himself. He was arrested on April 18, 2024, as part of a global law enforcement operation known as "Operation Endgame," which took down various botnets and their main operators. "As the Conti ransomware group used some of those botnets for initial access on breached endpoints, evidence led investigators to the Russian hacker," reports BleepingComputer. From the report: The Ukrainian police reported that the arrested individual was a specialist in developing custom crypters for packing the ransomware payloads into what appeared as safe files, making them FUD (fully undetectable) to evade detection by the popular antivirus products. The police found that the man was selling his crypting services to both the Conti and LockBit cybercrime syndicates, helping them significantly increase their chances of success on breached networks. The Dutch police confirmed at least one case of the arrested individual orchestrating a ransomware attack in 2021, using a Conti payload, so he also operated as an affiliate for maximum profit. "As part of the pre-trial investigation, police, together with patrol officers of the special unit "TacTeam" of the TOR DPP battalion, conducted a search in Kyiv," reads the Ukraine police announcement. "Additionally, at the international request of law enforcement agencies in the Netherlands, a search was conducted in the Kharkiv region." [...] The suspect has already been charged with Part 5 of Article 361 of the Criminal Code of Ukraine (Unauthorized interference in the work of information, electronic communication, information and communication systems, electronic communication networks) and faces up to 15 years imprisonment.

Read more of this story at Slashdot.

During its earnings call on Monday, Oracle CEO Safra Catz told analysts that it is shutting down its ads business. "In Q4, we decided to exit the advertising business, which had declined to about $300 million in revenue in fiscal year '24," said Catz, according to an earnings transcript. Adweek's Catherine Perloff reports: In August 2022, Business Insider reported that Oracle Advertising made $2 billion in revenue. At the time, revenue was only growing by 2% a year and many employees had been laid off as part of a reorganization in 2022, Business Insider reported. Oracle spent billions on entering the advertising business, acquiring nearly a dozen ad technology companies for over a decade. Notable acquisitions include data firms DataLogix, bought in 2014 for $1.2 billion, and brand safety platform Moat, purchased in 2017 for a reported $850 million. "Oracle's bet on the advertising industry was undermined when Meta [...] shut down its data to third parties including Oracle in 2018, following the Cambridge Analytica scandal," notes Adweek. Europe's GDPR further restricted Oracle's advertising business, leading the company to shut down its 'AddThis' publisher audience tool in 2019, which relied on third-party data.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Singapore's CNA news channel: Kandula Nagaraju, 39, was sentenced to two years and eight months' jail on Monday (Jun 10) for one charge of unauthorized access to computer material. Another charge was taken into consideration for sentencing. His contract with NCS was terminated in October 2022 due to poor work performance and his official last date of employment was Nov 16, 2022. According to court documents, Kandula felt "confused and upset" when he was fired as he felt he had performed well and "made good contributions" to NCS during his employment. After leaving NCS, he did not have another job in Singapore and returned to India. Between November 2021 and October 2022, Kandula was part of a 20-member team managing the quality assurance (QA) computer system at NCS. NCS is a company that offers information communication and technology services. The system that Kandula's former team was managing was used to test new software and programs before launch. In a statement to CNA on Wednesday, NCS said it was a "standalone test system." It consisted of about 180 virtual servers, and no sensitive information was stored on them. After Kandula's contract was terminated and he arrived back in India, he used his laptop to gain unauthorized access to the system using the administrator login credentials. He did so on six occasions between Jan 6 and Jan 17, 2023. In February that year, Kandula returned to Singapore after finding a new job. He rented a room with a former NCS colleague and used his Wi-Fi network to access NCS' system once on Feb 23, 2023. During the unauthorized access in those two months, he wrote some computer scripts to test if they could be used on the system to delete the servers. In March 2023, he accessed NCS' QA system 13 times. On Mar 18 and 19, he ran a programmed script to delete 180 virtual servers in the system. His script was written such that it would delete the servers one at a time. The following day, the NCS team realized the system was inaccessible and tried to troubleshoot, but to no avail. They discovered that the servers had been deleted. [...] As a result of his actions, NCS suffered a loss of $679,493.

Read more of this story at Slashdot.

Speaking of Microsoft, the House Homeland Security committee is grilling Microsoft President Brad Smith Thursday about the software giant's plans to improve its security after a series of devastating hacks reached into federal officials' email accounts, challenging the company's fitness as a dominant government contractor. Washington Post adds:The questioning followed a withering report on one of those breaches, where the federal Cyber Safety Review Board found the event was made possible by a "cascade of avoidable errors" and a security culture "that requires an overhaul." In that hack, suspected agents of China's Ministry of State Security last year created digital keys using a tool that allowed them to pose as any existing Microsoft customer. Using the tool, they impersonated 22 organizations, including the U.S. Departments of State and Commerce, and rifled through Commerce Secretary Gina Raimondo's email among others. The event triggered the sharpest criticism in decades of the stalwart federal vendor, and has prompted rival companies and some authorities to push for less government reliance on its technology. Two senators wrote to the Pentagon last month, asking why the agency plans to improve nonclassified Defense Department tech security with more expensive Microsoft licenses instead of with alternative vendors. "Cybersecurity should be a core attribute of software, not a premium feature that companies upsell to deep-pocketed government and corporate customers," Sens. Eric Schmitt (R-Mo.) and Ron Wyden (D-Ore.) wrote. "Through its buying power, DOD's strategies and standards have the power to shape corporate strategies that result in more resilient cybersecurity services." Any serious shift in executive branch spending would take years, but Department of Homeland Security leaders say plans are in motion to add security guarantees and requirements to more government purchases -- an idea touted in the Cyber Safety Review Board's Microsoft report.

Read more of this story at Slashdot.

The sun fired off a volley of radiation-riddled outbursts in May. When they slammed into Earth's magnetic bubble, the world was treated to iridescent displays of the northern and southern lights. But our planet wasn't the only one in the solar firing line. From a report: A few days after Earth's light show, another series of eruptions screamed out of the sun. This time, on May 20, Mars was blitzed by a beast of a storm. Observed from Mars, "this was the strongest solar energetic particle event we've seen to date," said Shannon Curry, the principal investigator of NASA's Mars Atmosphere and Volatile Evolution orbiter, or MAVEN, at the University of Colorado, Boulder. When the barrage arrived, it set off an aurora that enveloped Mars from pole to pole in a shimmering glow. If they were standing on the Martian surface, "astronauts could see these auroras," Dr. Curry said. Based on scientific knowledge of atmospheric chemistry, she and other scientists say, observers on Mars would have seen a jade-green light show, although no color cameras picked it up on the surface. But it's very fortunate that no astronauts were there. Mars's thin atmosphere and the absence of a global magnetic shield meant that its surface, as registered by NASA's Curiosity rover, was showered by a radiation dose equivalent to 30 chest X-rays -- not a lethal dose, but certainly not pleasant to the human constitution.

Read more of this story at Slashdot.

With the highly integrated nature of PCs these days, the Mini-ITX form-factor has become a very viable option for high-performance gaming system. With plenty of motherboards available for both AMD and Intel's latest platforms, equipping an ITX system with a CPU is easy enough. But the small size of the form factor means that housing an ultra-wide flagship-level graphics card remains an issue. For this year's Computex trade show, Antec was showing off their solution to the problem of giant video cards: the Performance 1M case, a Mini-ITX case with a separate chamber just for a large video card.

Antec's Performance 1M is a dual-chamber Mini-ITX chassis that splits off the video card from the rest of the system. The primary chamber houses a Mini-ITX motherboard and an SFX power supply, while the secondary chamber houses a huge graphics card. Notably, the two chambers are bridged using a PCIe riser cable, allowing the motherboard chamber to be far shorter than even a half-height PCIe card, while the video card chamber can hold a triple-slot video card parallel to the motherboard chamber, cutting down on wasted space. For Antec's Computex demo, the company had a triple-slot ASUS GeForce RTX 4090 installed to showcase how this worked.

Antec's decision to allocate most of the case's volume to th video card chamber does come with a slight catch, however: it doesn't leave much space for a CPU cooler in the motherboard chamber. The short motherboard chamber means that system builders will have to use a low-profile cooler; these are readily available, but it does leave less thermal headroom overall for high-end CPUs. So there are still trade-offs for being able to accommodate a high-end video card.

Otherwise, the Performance 1M chassis from Antec look very stylish and are traditionally well built from stainless steel and aluminum. The chassis can be equipped with two 120-mm or two 140-mm coolers for extra airflow (which will help performance), one 2.5-inch SATA SSD, and even some RGB bling. To make the PC built inside a Performance 1M case more convenient to use, there are two USB Type-C ports on the front.

Of course, housing a GeForce RTX 4090 graphics card in a Mini-ITX chassis has its peculiarities when it comes to dimensions and Antec's Performance 1M measures 424×175×260mm, which is pretty large. On the other hand, for an ultra-high-performance gaming system, this is pretty compact.

Antec's Performance 1M Mini-ITX chassis will be available in gunmetal gray and matte black colors sometimes later this year. Pricing is something that the company is thinking about now, though keep in mind that we are talking about unique premium products.

cusco writes: Indian space startup Agnikul used a 3-D printer from German company EOS to print an engine out of inconel, a high-performance nickel-chromium alloy, in one solid piece over the course of roughly 72 hours. While other companies like Relativity Space and Rocket Lab are using 3-D printers extensively, Agnikul's engine is unique in being printed in one go, rather than as multiple components that need to be stitched together. This approach significantly speeds up manufacturing time. The single-engine technology demonstration rocket produced 6 kilonewtons of thrust and reached an altitude of 6.5 kilometers before splashing down into the ocean. The launch vehicle used was about 6 meters tall with a single engine, making it roughly equivalent to the second stage of the company's planned commercial product, Agnibaan. Agnibaan will be a two-stage rocket, 18 meters tall, featuring eight engines in total, and capable of carrying a 300-kilogram payload to an altitude of around 700 km. The company believes that their 3D printing approach opens the door to providing low-cost, "on-demand" launch services to operators of small satellites. IEEE Spectrum adds: Assembling the rest of the rocket and integrating the engine took roughly two weeks. The company says that opens the door to providing low-cost, "on-demand" launch services to operators of small satellites, which otherwise need to wait for a ride share on a bigger rocket. The big challenge now will be going from a single engine to a cluster of seven on Agnibaan's first stage, says cofounder and CEO Srinath Ravichandran. This raises all kinds of challenges, from balancing thrust across the engines at lift-off to managing engine plume interactions when the engines gimbal to alter the trajectory. "But these are problems that people have figured out," he says. "We believe that we should just be able to fine-tune it for our mission and go." The company is currently building facilities to carry out ground tests of engine clusters, says Ravichandran, and is targeting its first orbital launch for this time next year.

Read more of this story at Slashdot.

Here's how an exciting message from a NVIDIA engineer that just hit the mailing list begins: "NVIDIA has been exploring ways to better support the effort for an upstream kernel mode driver for GPUs that are capable of running GSP-RM firmware, since the introduction to Nova."..

Pas plus tard que ce matin, nous vous causions d’un prototype en immersion cooling de chez Thermaltake qui ne risquait pas d’arriver de sitôt sur nos étals. Dans le même genre, la création d’ASUS n’est pas mal non plus. Dans la plus pure lignée de la mode consistant à mettre des écrans secondaires u...

Turkish authorities have arrested a student for cheating during a university entrance exam by using a makeshift device linked to AI software to answer questions. From a report: The student was spotted behaving in a suspicious way during the exam at the weekend and was detained by police, before being formally arrested and sent to jail pending trial. Another person, who was helping the student, was also detained.

Read more of this story at Slashdot.

Fwupd 1.9.21 is now available for this open-source software for facilitating system firmware and device/peripheral firmware updates under Linux and other platforms...