An anonymous reader shares a report: This summer, Oslo's public-transport authority drove a Chinese electric bus deep into a decommissioned mine inside a nearby mountain to answer a question: Could it be hacked? Isolated by rock from digital interference, cybersecurity experts came back with a qualified yes: The bus could in theory be remotely disabled using the control system for the battery. The revelation, presented at a recent public-transport conference, has spurred officials in Denmark and the U.K. to start their own investigations into Chinese vehicles. It has also fed into broader security concerns across Europe about the growing prevalence of Chinese-made equipment in the region's energy and telecommunications infrastructure. The worry is the same for autos, solar panels and other connected devices: that mechanisms used for wirelessly delivering system updates could also be exploited by a hostile government or third-party hacker to compromise critical networks. [...] The Oslo transport authority, Ruter, said the bus's mobile-network connection via a Romanian SIM card gave manufacturer Yutong access to the control system for battery and power supply. Ruter said it is addressing the vulnerability by developing firewalls and delaying the signals sent to the vehicles, among other solutions.

Read more of this story at Slashdot.

A new treatment for tuberculosis could boost cure rates and shorten the time needed to treat the disease by months, trial results suggest. The Guardian: Globally, an estimated 10.7 million people fell ill with TB last year and 1.23 million died from it. In its annual report on tuberculosis, launched last week, the World Health Organization said it remained a "major global public-health problem" and the leading infectious cause of death. [...] Sorfequiline, a new antibiotic, showed stronger action against the deadly bacteria than existing treatments, with a comparable safety profile, researchers from the TB Alliance told the Union Conference on Lung Health in Copenhagen on Wednesday. The trial involved 309 people across 22 sites in South Africa, the Philippines, Georgia, Tanzania and Uganda, with different dose regimens. All participants had "drug-sensitive" tuberculosis, meaning a standard cocktail of drugs can safely treat them but researchers believe TB infections that are resistant to standard treatment could also be helped. The trial suggested a sorfequiline-based regimen could be used for anyone testing positive, said Dr Maria Beumont, vice-president of TB Alliance.

Read more of this story at Slashdot.

Action is needed now to reduce ultra-processed food (UPF) in diets worldwide because of their threat to health, say international experts in a global review of research. From a report: They say the way we eat is changing - with a move away from fresh, whole foods to cheap, highly-processed meals - which is increasing our risk of a range of chronic diseases, including obesity and depression. Writing in The Lancet, the researchers say governments need "to step up" and introduce warnings and higher taxes on UPF products, to help fund access to more nutritious foods. [...] This review of evidence on the impact of UPFs on health, carried out by 43 global experts and based on 104 long-term studies, suggests these foods are linked to a greater risk of 12 health conditions. These include type 2 diabetes, cardiovascular disease, kidney disease, depression and dying prematurely from any cause.

Read more of this story at Slashdot.

The EU's cookie consent policies have been an annoying and unavoidable part of browsing the web in Europe since their introduction in 2018. But the cookie nightmare is about to crumble thanks to some big proposed changes announced by the European Commission today. From a report: Instead of having to click accept or reject on a cookie pop-up for every website you visit in Europe, the EU is preparing to enforce rules that will allow users to set their preferences for cookies at the browser level. "People can set their privacy preferences centrally -- for example via the browser -- and websites must respect them," says the EU. "This will drastically simplify users' online experience." This key change is part of a new Digital Package of proposals to simplify the EU's digital rules, and will initially see cookie prompts change to be a simplified yes or no single-click prompt ahead of the "technological solutions" eventually coming to browsers. Websites will be required to respect cookie choices for at least six months, and the EU also wants website owners to not use cookie banners for "harmless uses" like counting website visits, to lessen the amount of pop-ups.

Read more of this story at Slashdot.

Linus Torvalds is "fairly positive" about vibe coding as a way for people to get computers to do things they otherwise could not. The Linux kernel maintainer made the comments during an interview at the Linux Foundation Open Source Summit in Seoul earlier this month. But he cautioned that vibe coding would be a "horrible, horrible idea from a maintenance standpoint" for production code. Torvalds told Dirk Hohndel, head of open source at Verizon, that computers have become more complicated than when he learned to code by typing in programs from computer magazines. He said vibe coding offers a path into computing for newcomers. The kernel maintainer is not using AI-assisted coding himself. He said his role has shifted from rejecting new ideas to sometimes pushing for them against opposition from longstanding maintainers who "kind of get stuck in a rut." Rust is "actually becoming a real part of the kernel instead of being this experimental thing," he said. Torvalds said AI crawlers have been "very disruptive to a lot of our infrastructure" because they gather data from kernel.org source code. Kernel maintainers receive bugs and security notices that are "made up by people who misuse AI," though the problem is smaller than for other projects such as curl.

Read more of this story at Slashdot.

Britain said on Wednesday it would ban the resale of tickets to concerts, sport and other live events for profit, disrupting ticket touts and the platforms that benefit from their activities. From a report: Culture Secretary Lisa Nandy said touts were ripping off fans by using bots to snap up batches of tickets for coveted shows and reselling them at sky-high prices. "Our new proposals will shut down the touts' racket and make world-class music, comedy, theatre and sport affordable for everyone," she said, after the government had promised action.

Read more of this story at Slashdot.

Chinese economist Gao Shanwen told a Washington panel in December that China's real GDP growth might be around 2% rather than the official figure near 5%. By January, Gao was no longer chief economist at SDIC Securities and went silent for almost a year. As FT points out in a long piece, China does not publish quarterly GDP breakdowns showing consumption, investment and net exports. Every other major economy produces these figures. The IMF in 2024 gave China a C grade for national accounts. The rating puts China on par with India and below Vietnam. Fixed asset investment data showed negative growth in 2025 for only the second time in decades. Property investment has fallen consistently since 2022. But official GDP investment data shows no signs of declining. The National Bureau of Statistics stopped publishing sectoral breakdowns of fixed asset investment in 2018. It discontinued a price series in 2021 and a land sales series in 2023. Beijing has restricted researcher access rather than addressing longstanding questions about data quality. China says it disagrees with the IMF's C rating. The government argued its production-side GDP approach is appropriate. Why does it matter? China is too large and too interconnected with the global economy for unreliable data to be a purely domestic issue. The lack of transparency creates problems for everyone trying to make decisions based on understanding China's economic trajectory. As Eswar Prasad, a professor at Cornell University and former IMF official, told FT: China is one of the two biggest economies in the world. "It would be nice to know what is really going on."

Read more of this story at Slashdot.

Boston Dynamics' Spot robot is now deployed by more than 60 bomb squads and SWAT teams across the US and Canada. The 75-pound four-legged machine starts at around $100,000 and has been used in armed standoffs, hostage rescues and hazardous materials incidents since its commercial debut five years ago. The Massachusetts State Police operates two Spot units purchased in 2020 and 2022. Each cost about $250,000 including add-ons funded through state grants. Last year one of the robots helped corner a suspect who had taken his mother hostage at knifepoint in Hyannis. Houston operates three units and Las Vegas has one. ICE recently spent around $78,000 on a similar robot from Canadian manufacturer Icor Technology that can also deploy smoke bombs. Civil liberties groups have raised concerns about normalizing militarized policing. The NYPD suspended its limited Spot program in 2021 after public backlash over cost and surveillance concerns before later reinstating it and purchasing two units. The Electronic Frontier Foundation says there should be state and federal laws providing guidance on appropriate use of such technology. About 2,000 Spot units now operate globally.

Read more of this story at Slashdot.

An anonymous reader shares a report: Federal health officials have linked two massive US measles outbreaks, confirming that the country is about two months away from losing its measles elimination status, according to a report by The New York Times. The Times obtained a recording of a call during which officials from the Centers for Disease Control and Prevention confirmed to state health departments that the ongoing measles outbreak at the border of Arizona and Utah is a continuation of the explosive outbreak in West Texas that began in mid- to late-January. That is, the two massive outbreaks are being caused by the same subtype of measles virus. This is a significant link that hasn't previously been reported despite persistent questions from journalists and concerns from health experts, particularly in light of Canada losing its elimination status last week. The loss of an elimination status means that measles will once again be considered endemic to the US, an embarrassing public health backslide for a vaccine-preventable disease.

Read more of this story at Slashdot.

Tsinghua University collected 4,986 AI and machine learning patents between 2005 and the end of 2024. The Beijing institution has received more than 900 patents last year alone. The total exceeds the combined patent count from MIT, Stanford, Princeton and Harvard during the same period. China now accounts for more than half of all active patent families globally in AI and machine learning fields, according to data analytics service LexisNexis. The university also has more AI research papers among the 100 most cited than any other school at last count. The US still holds the most influential AI patents and the top performing models. Harvard and MIT consistently rank ahead of Tsinghua in patent influence. American institutions produced 40 notable AI models in 2024 compared to 15 from Chinese organizations, according to Stanford's AI Index Report. China's share of the world's elite AI researchers -- the top 2% -- rose from 10% in 2019 to 26% in 2022. The US share fell from 35% to 28% during the same period, according to the Information Technology & Innovation Foundation.

Read more of this story at Slashdot.

Cloudflare suffered its worst network outage in six years on Tuesday, beginning at 11:20 UTC. The disruption prevented the content delivery network from routing traffic for roughly three hours. The failure, writes Cloudflare in a blog post, originated from a database permissions change deployed at 11:05 UTC. The modification altered how a database query returned information about bot detection features. The query began returning duplicate entries. A configuration file used to identify automated traffic doubled in size and spread across the network's machines. Cloudflare's traffic routing software reads this file to distinguish bots from legitimate users. The software had a built-in limit of 200 bot detection features. The enlarged file contained more than 200 entries. The software crashed when it encountered the unexpected file size. Users attempting to access websites behind Cloudflare's network received error messages. The outage affected multiple services. Turnstile security checks failed to load. The Workers KV storage service returned elevated error rates. Users could not log into Cloudflare's dashboard. Access authentication failed for most customers. Engineers initially suspected a coordinated attack. The configuration file was automatically regenerated every five minutes. Database servers produced either correct or corrupted files during a gradual system update. Services repeatedly recovered and failed as different versions of the file circulated. Teams stopped generating new files at 14:24 UTC and manually restored a working version. Most traffic resumed by 14:30 UTC. All systems returned to normal at 17:06 UTC.

Read more of this story at Slashdot.

An anonymous reader shares a report: California-based TP-Link says it may take a sales hit of more than $1 billion because of erroneous reports that the networking company's technology has been "infiltrated" by Beijing. In a lawsuit, TP-Link claims its competitor, Netgear, orchestrated a smear by planting false claims with journalists and internet influencers with the goal of scaring off customers. Closely held TP-Link, which makes wireless routers, alleges in a complaint filed Monday that Netgear's campaign "threatens injury to well over a billion dollars in sales" and violates a 2024 settlement of a patent fight. That accord, in which TP-Link agreed to pay Netgear $135 million, includes a provision that the public company promises not to disparage its rival, according to the suit in Delaware federal court. The suit comes as TP-Link faces growing scrutiny in Washington over national-security issues. US lawmakers from both parties have expressed concern that TP-Link's wireless equipment could be exploited by Chinese hackers following a series of attacks on its routers.

Read more of this story at Slashdot.

An anonymous reader shares a report: Lawyers from the American Civil Liberties Union (ACLU) and Electronic Frontier Foundation (EFF) sued the city of San Jose, California over its deployment of Flock's license plate-reading surveillance cameras, claiming that the city's nearly 500 cameras create a pervasive database of residents movements in a surveillance network that is essentially impossible to avoid. The lawsuit was filed on behalf of the Services, Immigrant Rights & Education Network and Council on American-Islamic Relations, California, and claims that the surveillance is a violation of California's constitution and its privacy laws. The lawsuit seeks to require police to get a warrant in order to search Flock's license plate system. The lawsuit is one of the highest profile cases challenging Flock; a similar lawsuit in Norfolk, Virginia seeks to get Flock's network shut down in that city altogether. "San Jose's ALPR [automatic license plate reader] program stands apart in its invasiveness," ACLU of Northern California and EFF lawyers wrote in the lawsuit. "While many California agencies run ALPR systems, few retain the locations of drivers for an entire year like San Jose. Further, it is difficult for most residents of San Jose to get to work, pick up their kids, or obtain medical care without driving, and the City has blanketed its roads with nearly 500 ALPRs."

Read more of this story at Slashdot.

Klarna has claimed that AI-related savings have allowed the buy now, pay later company to increase staff salaries by nearly 60%, but hinted it could slash more jobs after nearly halving its workforce over the past three years. From a report: Chief executive Sebastian Siemiatkowski said headcount had dropped from 5,527 to 2,907 since 2022, mostly as a result of natural attrition, with departing staff replaced by technology rather than by new staff members. The figures add to the impact of an internal artificial intelligence programme, which had steadily reduced its use of outsourced workers including those in customer service, with technology now carrying out the work of 853 full-time staff, up from 700 earlier this year. It meant the company, which was founded in Sweden in 2005, had managed to increase revenues by 108% while keeping operating costs flat. Siemiatkowski told analysts on an earnings call on Tuesday that it was "pretty remarkable, and unheard of as a number, among businesses."

Read more of this story at Slashdot.

An anonymous reader shares a report: It's too soon to be talking about the Curse of OpenAI, but we're going to anyway. Since September 10, when Oracle announced a $300 billion deal with the chatbot maker, its stock has shed $315 billion in market value. OK, yes, it's a gross simplification to just look at market cap. But equivalents to Oracle shares are little changed over the same period (Nasdaq Composite, Microsoft, Dow Jones US Software Index), so the $15 billion loss figure [figure updated with stock price] is not entirely wrong. Oracle's "astonishing quarter" really has cost it nearly as much as one General Motors, or two Kraft Heinz.

Read more of this story at Slashdot.

Microsoft's Copilot AI assistant in Windows 11 fails to replicate the capabilities shown in the company's TV advertisements. The Verge tested Copilot Vision over a week using the same prompts featured in ads airing during NFL games. When asked to identify a HyperX QuadCast 2S microphone visible in a YouTube video -- a task successfully completed in Microsoft's ad -- Copilot gave multiple incorrect answers. The assistant identified the microphone as a first-generation HyperX QuadCast, then as a Shure SM7b on two other occasions. Copilot couldn't identify the Saturn V rocket from a PowerPoint presentation despite the words "Saturn V" appearing on screen. When asked about a cave image from Microsoft's ad, Copilot gave inconsistent responses. About a third of the time it provided directions to find the photo in File Explorer. On two occasions it explained how to launch Google Chrome. Four times it offered advice about booking flights to Belize. The cave is Rio Secreto in Playa del Carmen, Mexico. Microsoft spokesperson Blake Manfre said "Copilot Actions on Windows, which can take actions on local files, is not yet available." He described it as "an opt-in experimental feature that will be coming soon to Windows Insiders in Copilot Labs, starting with a narrow set of use cases while we optimize model performance and learn." Copilot cannot toggle basic Windows settings like dark mode. When asked to analyze a benchmark table in Google Sheets, it "constantly misread clear-as-day scores both in the spreadsheet and in the on-page review."

Read more of this story at Slashdot.

An anonymous reader shares a report: The IRS accessed a database of hundreds of millions of travel records, which show when and where a specific person flew and the credit card they used, without obtaining a warrant, according to a letter signed by a bipartisan group of lawmakers and shared with 404 Media. The country's major airlines, including Delta, United Airlines, American Airlines, and Southwest, funnel customer records to a data broker they co-own called the Airlines Reporting Corporation (ARC), which then sells access to peoples' travel data to government agencies. The IRS case in the letter is the clearest example yet of how agencies are searching the massive trove of travel data without a search warrant, court order, or similar legal mechanism. Instead, because the data is being sold commercially, agencies are able to simply buy access. In the letter addressed to nine major airlines, the lawmakers urge them to shut down the data selling program. Update: after this piece was published, ARC said it already planned to shut down the program. "Disclosures made by the IRS to Senator Wyden confirm that it did not follow federal law and its own policies in purchasing airline data from ARC," the letter reads. The letter says the IRS "confirmed that it did not conduct a legal review to determine if the purchase of Americans' travel data requires a warrant."

Read more of this story at Slashdot.

A federal judge ruled Tuesday that Meta did not illegally stifle competition when it acquired Instagram and WhatsApp. The decision marks Big Tech's first major victory against antitrust enforcement that began during President Donald Trump's first term. The U.S. Federal Trade Commission had sought to force Meta to sell or restructure the platforms to restore competition among social media networks. Meta argued it faced competitive pressure from TikTok, YouTube, and Apple's messaging app.

Read more of this story at Slashdot.

A majority of global fund managers think companies are overinvesting, as market anxiety grows about the sustainability of the AI spending boom. From a report: A net 20 per cent of fund managers surveyed this month by Bank of America said companies were spending too much on their investments -- the first time this has been a majority view in data running back to 2005. "This jump is driven by concerns over the magnitude and financing of the AI capex boom," said BofA analysts. The surge in investment to develop AI infrastructure has been a dominant theme in the record rally in US tech stocks this year -- with chipmaker Nvidia becoming the world's first $5tn company last month -- but growing concerns about the sustainability of this spending has caused a pullback on Wall Street in recent weeks.

Read more of this story at Slashdot.

Google released Gemini 3 on Tuesday, launching its latest AI model with a breakthrough score of 1501 Elo on the LMArena Leaderboard alongside state-of-the-art performance across multiple benchmarks including 91.9% on GPQA Diamond for PhD-level reasoning and 37.5% on Humanity's Last Exam without tool usage. The model is available starting today in the Gemini app, AI Mode in Search for Google AI Pro, Google AI Studio, Vertex AI and the newly launched Google Antigravity agentic development platform. Third-party platforms including Cursor, GitHub, JetBrains, Manus, and Replit are also gaining access. Separately, Google said AI Overviews now have 2 billion users every month. Gemini app has topped 650 million users per month.

Read more of this story at Slashdot.