News

Slashdot reader Required Snark shared this article from Phys.org: In the realm of science fiction, [sun-energy capturing] Dyson spheres and ringworlds have been staples for decades. But it is well known that the simplest designs are unstable against gravitational forces and would thus be torn apart. Now a scientist from Scotland, UK has shown that certain configurations of these objects near a two-mass system can be stable against such fractures... [A] rigid ring around a star or planet, as in Larry Niven's "Ringworld" series of novels, is also unstable, as it would drift under any slight gravitational differences and collide with the star. So [engineering science professor Colin] McInnes considered a restricted three-body problem where two equal masses orbit each other circularly with a uniform ring of infinitesimal mass rotating in their orbital plane. The ring could enclose both masses, just one or none... McInnes also investigated a shell-restricted three-body problem with the shell also of infinitesimal mass, again with the shell enclosing two masses, one or none. For the restricted ring, McInnes found that there are seven equilibrium points in the orbital plane of the dual masses, on which, if the ring's center were placed, it would stay and not experience stresses, akin to the three stable Lagrange points where a small mass can reside permanently for the two-body problem... McInnes restricted this research to a planar ring (in the plane of the circularly orbiting masses) but says it can be shown that a vertical ring, normal to the plane, can also generate equilibria... These results can aid the search for extraterrestrial intelligence, McInnes said, "If we can understand when such structures can be stable, then this could potentially help direct future SETI surveys." An important technosignature would be one bright star orbiting in tandem with an object showing a strong infrared excess. Shells around a sun-exoplanet pair or an exoplanet-exoplanet pair could also be possible. A nested set of Dyson spheres is also a feasible geometry. In 2003 Ringworld author Larry Niven answered questions from Slashdot readers...

Read more of this story at Slashdot.

"I intend to sue the National Archives," said Joseph diGenova, an 80-year-old former Trump campaign lawyer (and a U.S. Attorney from 1983 to 1988). While releasing 63,000 unredacted pages about the 1963 assassination of President Kennedy, the U.S. government erroneously "made public the Social Security numbers and other sensitive personal information of potentially hundreds of former congressional staffers and other people," reports USA Today. ("It is virtually impossible to tell the scope of the breach because the National Archives put them online without a way to search them by keyword, some JFK files experts and victims of the information release told USA TODAY...") Mark Zaid, a national security lawyer who represented current and former spies and other officials in cases against the government, told USA Today that he "saw a few names I know and I informed them of the breach... Hundreds were doxxed but of that number I don't know how many are still living." Zaid, who has fought for decades for the JFK records to be made public, said many of the thousands of investigative documents had been made public long ago with everything declassified and unredacted except for the personal information. Releasing that information now, he told USA TODAY, poses significant threats to those whose information is now public, including dates and places of birth, but especially their Social Security numbers. "The purpose of the release was to inform the public about the JFK assassination, not to help permit identity theft of those who actually investigated the events of that day," Zaid said. The Associated Press reported Thursday afternoon that government officials "said they are still screening the records to identify all the Social Security numbers that were released." One of the newly unredacted documents... discloses the Social Security numbers of more than two dozen people seeking security clearances in the 1990s to review JFK-related documents for the Assassination Records Review Board.

Read more of this story at Slashdot.

Founded in 1979, the Association for the Advancement of AI is an international scientific society. Recently 25 of its AI researchers surveyed 475 respondents in the AAAI community about "the trajectory of AI research" — and their results were surprising. Futurism calls the results "a resounding rebuff to the tech industry's long-preferred method of achieving AI gains" — namely, adding more hardware: You can only throw so much money at a problem. This, more or less, is the line being taken by AI researchers in a recent survey. Asked whether "scaling up" current AI approaches could lead to achieving artificial general intelligence (AGI), or a general purpose AI that matches or surpasses human cognition, an overwhelming 76 percent of respondents said it was "unlikely" or "very unlikely" to succeed... "The vast investments in scaling, unaccompanied by any comparable efforts to understand what was going on, always seemed to me to be misplaced," Stuart Russel, a computer scientist at UC Berkeley who helped organize the report, told New Scientist. "I think that, about a year ago, it started to become obvious to everyone that the benefits of scaling in the conventional sense had plateaued...." In November last year, reports indicated that OpenAI researchers discovered that the upcoming version of its GPT large language model displayed significantly less improvement, and in some cases, no improvements at all than previous versions did over their predecessors. In December, Google CEO Sundar Pichai went on the record as saying that easy AI gains were "over" — but confidently asserted that there was no reason the industry couldn't "just keep scaling up." Cheaper, more efficient approaches are being explored. OpenAI has used a method known as test-time compute with its latest models, in which the AI spends more time to "think" before selecting the most promising solution. That achieved a performance boost that would've otherwise taken mountains of scaling to replicate, researchers claimed. But this approach is "unlikely to be a silver bullet," Arvind Narayanan, a computer scientist at Princeton University, told New Scientist.

Read more of this story at Slashdot.

Two "groundbreaking research reports" on open source security were announced this week by the Linux Foundation in partnership with the Open Source Security Foundation (OpenSSF) and Linux Foundation Europe. The reports specifically address the EU's Cyber Resilience Act (or CRA) and "highlight knowledge gaps and best practices for CRA compliance." "Unaware and Uncertain: The Stark Realities of CRA-Readiness in Open Source" includes a survey which found that when it comes to CRA requirements, 62% of respondents were either "not familiar at all" (36%) or "slightly familiar" (26%) — while 51% weren't sure about its deadlines. ("Only 28% correctly identified 2027 as the target year for full compliance," according to one infographic, which adds that CRA "is expected to drive a 6% average price increase, though 53% of manufacturers are still assessing pricing impacts.") Manufacturers, who bear primary responsibility, lack readiness — many [46%] passively rely on upstream security fixes, and only a small portion produce Software Bills of Materials (SBOMs). The report recommends that manufacturers take a more active role in open source security, that more funding and legal support is needed to support security practices, and that clear regulatory guidance is essential to prevent unintended negative impacts on open source development. The research also provides "an in-depth analysis of how open collaboration can strengthen software security and innovation across global markets," with another report that "examines how three Linux Foundation projects are meeting the CRA's minimum compliance requirements" and "provides insight on the elements needed to ensure leadership in cybersecurity best practices." (It also includes CRA-related resources.) "These two reports offer actionable conclusions for open source stakeholders to ready themselves for 2027, when the CRA comes into force," according to a Linux Foundation reserach executive cited in the announcement. "We hope that these reports catalyze higher levels of collaboration across the open source community."

Read more of this story at Slashdot.

The following vulnerabilities have been discovered in the WebKitGTK web engine:

CVE-2024-44192

Tashita Software Security discovered that processing maliciously crafted web content may lead to an unexpected process crash.

CVE-2024-54467

Narendra Bhati discovered that a malicious website may exfiltrate data cross-origin.

CVE-2025-24201

Apple discovered that maliciously crafted web content may be able to break out of Web Content sandbox.

https://security-tracker.debian.org/tracker/DSA-5885-1

Ivan Fratric discovered two use-after-free vulnerabilities in libxslt, an XSLT processing runtime library, which may result in the execution of arbitrary code if a specially crafted files are processed.

https://security-tracker.debian.org/tracker/DSA-5884-1

Computer programming jobs in the US have declined by more than a quarter over the past two years, placing the profession among the 10 hardest-hit occupations of 420-plus jobs tracked by the Bureau of Labor Statistics and potentially signaling the first concrete evidence of artificial intelligence replacing workers. The timing coincides with OpenAI's release of ChatGPT in late 2022. Anthropic researchers found people use AI to perform programming tasks more than those of any other job, though 57 percent of users employ AI to augment rather than automate work. "Without getting hysterical, the unemployment jump for programming really does look at least partly like an early, visible labor market effect of AI," said Mark Muro of the Brookings Institution. While software developer positions have remained stable with only a 0.3 percent decline, programmers who perform more routine coding from specifications provided by others have seen their ranks diminish to levels not seen since 1980. Economists caution that high interest rates and post-pandemic tech industry contraction have also contributed to the decline in programming jobs, which typically pay $99,700 compared to $132,270 for developers.

Read more of this story at Slashdot.

Apple's latest iOS 18.3.2 update is automatically re-enabling its Apple Intelligence feature even for users who previously disabled it, adding to mounting concerns about the company's AI strategy. The update presents a splash screen with no option except to tap "Continue," which activates the feature. Users must then manually disable it through settings, with the AI consuming up to 7GB of storage space. This forced activation comes amid broader troubles with Apple's AI initiatives.

Read more of this story at Slashdot.

The French National Assembly has rejected a controversial provision that would have forced messaging platforms like Signal and WhatsApp to allow government access to encrypted private conversations, lawmakers voted Thursday night. The measure, embedded within anti-drug trafficking legislation, would have implemented a "ghost participant model" allowing law enforcement to silently join encrypted chats without users' knowledge.

Read more of this story at Slashdot.

London's Heathrow Airport resumed operations late Friday after an electrical fire at a nearby substation forced a full-day closure, causing global travel chaos with hundreds of canceled flights and thousands of stranded passengers. The explosion at a Hayes substation 1.5 miles from the airport knocked out power early Thursday, requiring 70 firefighters to battle a blaze in a transformer containing 25,000 liters of cooling oil. Despite backup generators, Europe's busiest airport couldn't maintain normal operations, forcing flights to divert to airports across Europe and as far as Bangor, Maine. "Contingencies of certain sizes we cannot guard ourselves against 100%," Heathrow CEO Thomas Woldbye told the BBC. "This is as big as it gets for our airport." British Airways, which planned to carry 100,000 passengers Friday, prioritized long-haul flights to Australia, Brazil and South Africa when operations resumed after 4 p.m.

Read more of this story at Slashdot.

Web infrastructure provider Cloudflare unveiled "AI Labyrinth" this week, a feature designed to thwart unauthorized AI data scraping by feeding bots realistic but irrelevant content instead of blocking them outright. The system lures crawlers into a "maze" of AI-generated pages containing neutral scientific information, deliberately wasting computing resources of those attempting to collect training data for language models without permission. "When we detect unauthorized crawling, rather than blocking the request, we will link to a series of AI-generated pages that are convincing enough to entice a crawler to traverse them," Cloudflare explained. The company reports AI crawlers generate over 50 billion requests to their network daily, comprising nearly 1% of all web traffic they process. The feature is available to all Cloudflare customers, including those on free plans. This approach marks a shift from traditional protection methods, as Cloudflare claims blocking bots sometimes alerts operators they've been detected. The false links contain meta directives to prevent search engine indexing while remaining attractive to data-scraping bots.

Read more of this story at Slashdot.

Amazon CEO Andy Jassy is pushing to cut bureaucracy by reducing management layers, according to a recording of a recent internal all-hands meeting obtained by Business Insider. Amazon plans to increase the ratio of individual contributors to managers by 15% by March-end, a process the company says is now complete and affected a "relatively small subset of employees." "The way to get ahead at Amazon is not to go accumulate a giant team and fiefdom," Jassy told employees, stressing that successful leaders "get the most done with the least amount of resources." Jassy has established a "No Bureaucracy" email alias that has received over a thousand suggestions, leading to more than 375 changes aimed at speeding operations. "It's a meritocracy," Jassy said, urging employees to "move fast and act like owners."

Read more of this story at Slashdot.

Hollywood filmmaker Carl Erik Rinsch has been charged with defrauding Netflix of $11 million after allegedly misusing funds intended for an unfinished science fiction series, federal prosecutors said. Rinsch, 47, was arrested in West Hollywood this week on charges of wire fraud, money laundering and unlawful monetary transactions that could result in decades of imprisonment if convicted. The FBI and Acting U.S. Attorney for the Southern District of New York allege Rinsch diverted funds meant for his series "Conquest" to speculate on cryptocurrency, stay in luxury hotels and purchase high-end items including five Rolls-Royces and a Ferrari. Netflix had paid Rinsch $44 million between 2018 and 2019 for the science fiction project about an artificial humanlike species. Prosecutors say he then requested an additional $11 million but never completed the production. An arbitrator ruled in Netflix's favor last year, ordering Rinsch to pay the company $11.8 million. Rinsch appeared in federal court with shackles and posted a $100,000 bond.

Read more of this story at Slashdot.

Apple has been hit with a federal lawsuit claiming that the company's promotion of now-delayed Apple Intelligence features constituted false advertising and unfair competition. From a report: The suit, filed Wednesday in U.S. District Court in San Jose, seeks class action status and unspecified financial damages on behalf of those who purchased Apple Intelligence-capable iPhones and other devices. "Apple's advertisements saturated the internet, television, and other airwaves to cultivate a clear and reasonable consumer expectation that these transformative features would be available upon the iPhone's release," the suit reads. "This drove unprecedented excitement in the market, even for Apple, as the company knew it would, and as part of Apple's ongoing effort to convince consumers to upgrade at a premium price and to distinguish itself from competitors deemed to be winning the AI-arms race. [...] Contrary to Defendant's claims of advanced AI capabilities, the Products offered a significantly limited or entirely absent version of Apple Intelligence, misleading consumers about its actual utility and performance. Worse yet, Defendant promoted its Products based on these overstated AI capabilities, leading consumers to believe they were purchasing a device with features that did not exist or were materially misrepresented."

Read more of this story at Slashdot.

Meta is testing an AI feature that generates comment suggestions for Instagram posts. Users with access to the test see a pencil icon beside the comment field that activates "Write with Meta AI." The system analyzes photos before offering three comment suggestions, which users can refresh for alternatives. For a photo showing someone smiling with a thumbs-up in their living room, suggested comments include "Cute living room setup" and "Love the cozy atmosphere."

Read more of this story at Slashdot.

Higher use of chatbots like ChatGPT may correspond with increased loneliness and less time spent socializing with other people, according to new research from OpenAI in partnership with the Massachusetts Institute of Technology. From a report: Those who spent more time typing or speaking with ChatGPT each day tended to report higher levels of emotional dependence on, and problematic use of, the chatbot, as well as heightened levels of loneliness, according to research released Friday. The findings were part of a pair of studies conducted by researchers at the two organizations and have not been peer reviewed. San Francisco-based OpenAI sees the new studies as a way to get a better sense of how people interact with, and are affected by, its popular chatbot. "Some of our goals here have really been to empower people to understand what their usage can mean and do this work to inform responsible design," said Sandhini Agarwal, who heads OpenAI's trustworthy AI team and co-authored the research. To conduct the studies, the researchers followed nearly 1,000 people for a month.

Read more of this story at Slashdot.

The U.S. Treasury Department's sanctions watchdog removed cryptocurrency mixing tool Tornado Cash from its global blacklist on Friday, following a federal appeals court ruling last November that the Office of Foreign Asset Control couldn't sanction its smart contracts. Despite the delisting of over 100 Ethereum addresses from the Specially Designated Nationals list, Treasury Secretary Scott Bessent emphasized continuing concerns about North Korea's digital asset theft operations. "We remain deeply concerned about the significant state-sponsored hacking and money laundering campaign aimed at stealing, acquiring, and deploying digital assets for the Democratic People's Republic of Korea," Treasury stated. Roman Storm, Tornado Cash co-founder, still faces a July criminal trial for his alleged development role. A Treasury court filing Monday had warned that completely lifting sanctions could have "significantly disruptive consequences for national security."

Read more of this story at Slashdot.

Microsoft has begun urging Windows 10 users to upgrade their systems ahead of the October 14, 2025 support deadline, but with a solution many find impractical: just buy a new computer. According to StatCounter data, 58.7% of Windows users remain on Windows 10 despite the impending end of security updates and technical assistance. In emails to Windows 10 users, Microsoft's primary recommendation is to trade in old devices for newer Windows 11-compatible hardware, rather than focusing on alternative solutions.

Read more of this story at Slashdot.

Yahoo on Friday said it has struck a deal to sell TechCrunch, the 20-year-old tech journalism site, to Regent, a media investment firm. Axios: Yahoo's business centers mostly on aggregation. Journalism isn't its core focus. Regent is trying to pull together a portfolio of tech news sites and is eager to invest in news. Earlier this week, it acquired Foundry, which houses a slew of online tech publications, such as PCWorld, Macworld and TechAdvisor. In a statement, Regent said it is "thrilled to expand its reach as it provides breaking technology news, opinions, and analysis on tech companies worldwide to our audience." Financial deal terms were not disclosed. The deal will not require regulatory review, which is normally needed for deals valued at roughly more than $100 million.

Read more of this story at Slashdot.

Google has filed a lawsuit against alleged scammers who created and sold fake business profiles on Google Maps, the company said. The legal action follows an investigation that uncovered and eliminated more than 10,000 illegitimate listings. The investigation began after a Texas business reported an unlicensed locksmith impersonating them on the platform. Google discovered the scams primarily targeted "duress verticals" -- services needed in urgent situations like locksmiths and towing companies. "Once we're alerted to the actual fraud, we take extreme efforts to identify similar fraudulent listings," said Halimah DeLaine Prado, Google's general counsel. The scammers used tactics including bait-and-switch schemes and intercepting calls to legitimate businesses through "lead generation services." They also sold fraudulent positive reviews to suppress negative feedback.

Read more of this story at Slashdot.