News

The Academy has struck a multi-year deal to move the Oscars to YouTube starting in 2029, ending decades on ABC and making the ceremony free to stream worldwide with YouTube holding exclusive global rights. Variety reports: The Oscars, including red carpet coverage, behind-the-scenes content and Governors Ball, will be available live and for free on YouTube to viewers around the world, as well as to YouTube TV subscribers in the United States. Architects of the agreement said they hope the move to YouTube will help make the Oscars more accessible to "the Academy's growing global audience through features such as closed captioning and audio tracks available in multiple languages." [...] The Academy had been seeking a new broadcast licensing agreement for the better part of 2025. Over the summer, several expected and unconventional buyers, including NBCUniversal and Netflix, had come into the mix as potential suitors. Insiders believe that YouTube shelled out over nine figures for the Oscars, besting the high eight-figure offers from Disney/ABC and NBCUniversal. Under the most recent contract, Disney was paying around $100 million annually for the Oscars -- but given the ratings declines for the kudocast, Disney/ABC were reportedly looking to spend less on license fees. [...] It's not a secret that the Academy and Disney/ABC would occasionally have disagreements over the best path for the Oscars, including the show's length, which awards to present and who should host. Now, on a streamer with no time limits, the Oscars can be any length, and the Academy likely has carte blanche to do whatever it wants with the telecast. "They can do whatever they want," says one insider. "You can have a six-hour Oscars hosted by MrBeast."

Read more of this story at Slashdot.

Meta has paused its third-party Horizon OS headset program, effectively canceling planned VR headsets from Asus and Lenovo as it refocuses on "building the world-class first-party hardware and software needed to advance the VR market." Road to VR reports: A little over a year and a half ago, Meta made an "industry-altering announcement," as I called the move in my reporting: the company was rebranding the Quest operating system to 'Horizon OS' and announced it was working with select partners to launch third-party VR headsets powered by the operating system. Meta specifically named Asus and Lenovo as the first partners it was working with to build new Horizon OS headsets. Asus was said to be building an "all-new performance gaming headset," while Lenovo was purportedly working on "mixed reality devices for productivity, learning, and entertainment." But as we've now learned, neither headset is likely to see the light of day. Meta say it has frozen the third-party Horizon OS headset program. "We have paused the program to focus on building the world-class first-party hardware and software needed to advance the VR market," a Meta spokesperson told Road to VR. "We're committed to this for the long term and will revisit opportunities for 3rd-party device partnerships as the category evolves."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Reuters: Netflix on Wednesday said it will add a soccer simulation title to its gaming portfolio, as the streaming giant looks to leverage the FIFA World Cup 2026 tournament to deepen its video game push. The soccer title will be developed and published by Delphi Interactive, which is also helping create a premium James Bond game called "007 First Light," and in association with the sport's governing body, FIFA. Netflix said the game will launch in time for the world's most-watched sporting event, scheduled to start June next year in the U.S.

Read more of this story at Slashdot.

GitHub will begin charging $0.002 per minute for self-hosted Actions runners used on private repositories starting in March. "At the same time, GitHub noted in a Tuesday blog post that it's lowering the prices of GitHub-hosted runners beginning January 1, under a scheme it calls 'simpler pricing and a better experience for GitHub Actions,'" reports The Register. "Self-hosted runner usage on public repositories will remain free." From the report: Regardless of the public repo distinction, enterprise-scale developers who rely on self-hosted runners were predictably not pleased about the announcement. "Github have just sent out an email announcing a $0.002/minute fee for self-hosted runners," Reddit user markmcw posted on the DevOps subreddit. "Just ran the numbers, and for us, that's close to $3.5k a month extra on our GitHub bill." [...] "Historically, self-hosted runner customers were able to leverage much of GitHub Actions' infrastructure and services at no cost," the repo host said in its blog FAQ. "This meant that the cost of maintaining and evolving these essential services was largely being subsidized by the prices set for GitHub-hosted runners." The move, GitHub said, will align costs more closely with usage. Like many similar changes to pricing models pushed by tech firms, GitHub says "the vast majority of users ... will see no price increase." GitHub claims that 96 percent of its customers will see no change to their bill, and that 85 percent of the 4 percent affected by the pricing update will actually see their Actions costs decrease. The company says the remaining 15 percent of impacted users will face a median increase of about $13 a month. For those using self-hosted runners and worried about increased costs, GitHub has updated its pricing calculator to include the cost of self-hosted runners.

Read more of this story at Slashdot.

Longtime Linux developer Greg Kroah-Hartman announced that the Linux kernel has received its first CVE tied to Rust code. Phoronix reports: This first CVE (CVE-2025-68260) for Rust code in the Linux kernel pertains to the Android Binder rewrite in Rust. There is a race condition that can occur due to some noted unsafe Rust code. That code can lead to memory corruption of the previous/next pointers and in turn cause a crash. This CVE for the possible system crash is for Linux 6.18 and newer since the introduction of the Rust Binder driver. At least though it's just a possible system crash and not any more serious system compromise with remote code execution or other more severe issues.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Google began its transition to Gemini 3 a few weeks ago with the launch of the Pro model, and the arrival of Gemini 3 Flash kicks it into high gear. The new, faster Gemini 3 model is coming to the Gemini app and search, and developers will be able to access it immediately via the Gemini API, Vertex AI, AI Studio, and Antigravity. Google's bigger gen AI model is also picking up steam, with both Gemini 3 Pro and its image component (Nano Banana Pro) expanding in search. This may come as a shock, but Google says Gemini 3 Flash is faster and more capable than its previous base model. As usual, Google has a raft of benchmark numbers that show modest improvements for the new model. It bests the old 2.5 Flash in basic academic and reasoning tests like GPQA Diamond and MMMU Pro (where it even beats 3 Pro). It gets a larger boost in Humanity's Last Exam (HLE), which tests advanced domain-specific knowledge. Gemini 3 Flash has tripled the old models' score in HLE, landing at 33.7 percent without tool use. That's just a few points behind the Gemini 3 Pro model. Gemini 3 Flash has been been significantly improved in terms of factual accuracy, scoring 68.7% on Simple QA Verified, which is up from 28.1% in the previous model. It's also designed as a high-efficiency model that's suitable for real-time and high-volume workloads. According to Google, Gemini 3 Flash is now the default model for AI Mode in Google Search.

Read more of this story at Slashdot.

An anonymous reader shares a report: Browser extensions with more than 8 million installs are harvesting complete and extended conversations from users' AI conversations and selling them for marketing purposes, according to data collected from the Google and Microsoft pages hosting them. Security firm Koi discovered the eight extensions, which as of late Tuesday night remained available in both Google's and Microsoft's extension stores. Seven of them carry "Featured" badges, which are endorsements meant to signal that the companies have determined the extensions meet their quality standards. The free extensions provide functions such as VPN routing to safeguard online privacy and ad blocking for ad-free browsing. All provide assurances that user data remains anonymous and isnâ(TM)t shared for purposes other than their described use.

Read more of this story at Slashdot.

The conventional wisdom that English prose has gotten easier to read because sentences have gotten shorter is wrong, according to a new analysis published in Works in Progress by writer and Mercatus Center research fellow Henry Oliver. The real transformation happened centuries ago in the 1500s and 1600s when Bible translators like William Tyndale and Thomas Cranmer developed a "plain style" built on logical syntax rather than the older rhythmic, periodic structures inherited from medieval prose. Oliver argues that much of what modern datasets measure as declining sentence length is actually just changing punctuation habits. Writers now use periods where earlier generations used colons and semicolons. One dataset shows semicolon usage dropped from one every 90 words in 1781 to one every 390 words today. The cognitive complexity of a paragraph often remains the same regardless of how it's punctuated. Even wildly popular modern books don't follow the "short sentences equal readable" formula. Oliver points to Onyx Storm, the 2025 fantasy novel that has sold tens of millions of copies, which opens with sentences of 24 and 30 words. The 30-word sentence has a subordinate clause twice as long as its main clause. The book reads easily not because sentences are short but because the language is plain and the syntax is logical.

Read more of this story at Slashdot.

FCC Chairman Brendan Carr said in his Wednesday Senate testimony that the agency he governs "is not an independent agency, formally speaking." Axios: During his testimony, the word "independent" was removed from the FCC's mission statement on its website. The extraordinary statement speaks to a broader trend of regulatory agencies losing power to the executive branch during the Trump era. Last week, the Supreme Court appeared poised to allow President Trump to fire members of the Federal Trade Commission during oral arguments over the issue. Sen. Ben Ray LujÃn (D-N.M.) began the line of questioning, citing the FCC's website, which said the agency was independent as of Wednesday morning. By Wednesday afternoon, the FCC's mission statement no longer said it was independent. Chairman Carr would not respond directly to questions about whether he believed the president was his boss. He would not answer whether it's appropriate if the president were to pressure him to go after media companies. He suggested the president has the power to fire him and other FCC commissioners.

Read more of this story at Slashdot.

A comprehensive database built by scientists in Switzerland and Norway has catalogued 16,000 chemicals linked to plastic materials, and the findings paint a troubling picture of what Americans are actually eating when they prepare food in their kitchens. Of those 16,000 chemicals, more than 5,400 are considered hazardous to human health by government and industry standards, while just 161 are classified as not hazardous. The remaining 10,700-plus chemicals simply don't have enough data to determine their safety. The chemicals enter food through multiple pathways. Black plastic utensils and trays often contain brominated flame retardants because they're made from recycled electronic waste. Nonstick pans and compostable plates frequently contain PFAS. One California study found phthalates in three-quarters of tested foods, and a Consumer Reports analysis last year detected BPA or similar chemicals in 79% of foods tested. According to CDC data, more than 90% of Americans have measurable levels of these chemicals in their bodies. A 10-fold increase in maternal levels of brominated flame retardants is associated with a 3.7-point IQ drop in children.

Read more of this story at Slashdot.

Coursera announced on Wednesday that it will acquire rival online learning platform Udemy in an all-stock deal that values the combined company at $2.5 billion, a move that brings together two of the largest U.S.-based players in an industry that has struggled since pandemic-era enrollment highs faded. Under the terms of the agreement, Udemy shareholders will receive 0.8 shares of Coursera for each share they hold, valuing Udemy at roughly $930 million. Based on Coursera's last closing price, the offer works out to $6.35 per Udemy share, an 18.3% premium. The deal is expected to close in the second half of next year, pending regulatory and shareholder approvals. The two companies are betting that a combined platform will be better positioned to pursue corporate customers seeking to retrain workers in artificial intelligence, data science and software development. Coursera has built its business on partnerships with universities and institutions to offer degree programs and professional certificates, while Udemy operates a marketplace where independent instructors sell courses directly to consumers and businesses. Both stocks have significantly underperformed this year. Udemy shares have fallen about 35% and Coursera is down roughly 7%, leaving both trading well below their post-IPO highs as investors remain cautious about competition and pricing pressure in the sector.

Read more of this story at Slashdot.

Google is suing a Chinese-speaking cybercriminal group it says is responsible for a massive wave of scam text messages sent to Americans this year, according to a legal complaint filed Tuesday. From a report: The group, known as Darcula, sells software that allows users to send phishing text messages en masse, impersonating organizations like the IRS or the U.S. Postal Service in scams. The lawsuit is designed to give Google legal standing so U.S. courts will allow it to seize websites the group uses, hampering their operations, a spokesperson said. Darcula is possibly the most prominent name in an emerging, loosely affiliated cybercrime world that creates and sells hacking programs for aspiring scammers to use. Darcula's signature program, called Magic Cat, provides an easy-to-use, intuitive way for cybercriminals without advanced hacking skills to quickly spam millions of phone numbers with links to fake websites impersonating businesses like YouTube's premium service, then steal the credit card numbers victims put in.

Read more of this story at Slashdot.

Meta is informing some users that they will soon be restricted in how many link posts they can share each month, unless they pay for its Meta Verified subscription service. As per the notification message: "Starting December 16, certain Facebook profiles without Meta Verified, including yours, will be limited to sharing links in 2 organic posts per month. Subscribe to Meta Verified to share more links on Facebook, plus get a verified badge and additional benefits to help protect your brand." To be clear, right now this is a limited test, so relatively few Pages are impacted. But understandably, a lot of users are also seeking more information on the change, and whether it could be expanded to all Pages. So, Meta's seeking to boost take-up of Meta Verified, in order to make more money out of its subscription option, which, for business users, costs between $14.99 and $499 per month, depending on which package you choose.

Read more of this story at Slashdot.

Warner Bros Discovery's board spurned Paramount Skydance's $108.4 billion hostile takeover bid on Wednesday, calling the offer "illusory" as it accused the studio giant of misleading shareholders about its financing. From a report: Paramount has been in a race with Netflix to win control of Warner Bros, and with it, its prized film and television studios, HBO Max streaming service and franchises like "Harry Potter." After Warner Bros accepted the streaming giant's offer, Paramount launched a hostile offer to outdo that bid. In a letter to shareholders on Wednesday, the Warner Bros board wrote that Paramount had "consistently misled" Warner Bros shareholders that its $30-per-share cash offer was fully guaranteed, or "backstopped," by the Ellison family, led by billionaire and Oracle co-founder Larry Ellison.

Read more of this story at Slashdot.

OpenAI is in discussions with Amazon about a potential investment and an agreement to use its AI chips, CNBC confirmed on Tuesday. From the report: The details are fluid and still subject to change but the investment could exceed $10 billion, according to a person familiar with the matter who asked not to be named because the talks are confidential. The discussions come after OpenAI completed a restructuring in October and formally outlined the details of its partnership with Microsoft, giving it more freedom to raise capital and partner with companies across the broader AI ecosystem. Microsoft has invested more than $13 billion in OpenAI and backed the company since 2019, but it no longer has a right of first refusal to be OpenAI's compute provider, according to an October release. OpenAI can now also develop some products with third parties. Amazon has invested at least $8 billion into OpenAI rival Anthropic, but the e-commerce giant could be looking to expand its exposure to the booming generative AI market. Microsoft has taken a similar step and announced last month that it will invest up to $5 billion into Anthropic, while Nvidia will invest up to $10 billion in the startup.

Read more of this story at Slashdot.

It was discovered that c-ares, a library that performs DNS requests and name resolution asynchronously, does not properly handle termination of queries which may result in denial of service.

https://security-tracker.debian.org/tracker/DSA-6084-1

The following vulnerabilities have been discovered in the WebKitGTK web engine:

CVE-2025-14174

Apple and the Google Threat Analysis Group discovered that processing maliciously crafted web content may lead to memory corruption. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-43529 was also issued in response to this report.

CVE-2025-43501

Hossein Lotfi discovered that processing maliciously crafted web content may lead to an unexpected process crash.

CVE-2025-43529

The Google Threat Analysis Group discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-14174 was also issued in response to this report.

CVE-2025-43531

Phil Pizlo discovered that processing maliciously crafted web content may lead to an unexpected process crash.

CVE-2025-43535

Google Big Sleep / Nan Wang discovered that processing maliciously crafted web content may lead to an unexpected process crash.

CVE-2025-43536

Nan Wang discovered that processing maliciously crafted web content may lead to an unexpected process crash.

CVE-2025-43541

Hossein Lotfi discovered that processing maliciously crafted web content may lead to an unexpected process crash.

https://security-tracker.debian.org/tracker/DSA-6083-1

An anonymous reader quotes a report from the New York Times: Two of the largest food-delivery app companies have made a last-ditch effort to overturn tipping laws in New York City that go into effect in January just as its next mayor, who has been highly critical of the companies and the app industry, takes office. Tips to delivery workers have plummeted since some food-delivery apps switched to showing the tipping option only after a purchase had been completed; that change came after New York City established the country's first minimum pay-rate for the workers in 2023. The new laws will require the apps to suggest a minimum tip of 10 percent at checkout, though customers can contribute more or less, or nothing at all. Two of the app companies, DoorDash and Uber, filed a joint federal lawsuit in the Southern District of New York late last week targeting the City Council legislation, arguing that the new rules violated the First Amendment by requiring them to "speak a government-mandated message" and exceeded the Council's authority. Although tipping will be optional under the law, the companies wrote in the suit that a "mandated pre-delivery 10 percent tip suggestion" would cause customers to use the app less because they were suffering from "tipping fatigue." "Lessened engagement would result in fewer orders," the suit said.

Read more of this story at Slashdot.

U.S. senators are probing whether Big Tech data centers are driving up local electricity bills by socializing grid upgrade costs onto residents. Some of the tactics they're using include NDAs, shell companies, and lobbying. Ars Technica reports: In letters (PDF) to seven AI firms, Senators Elizabeth Warren (D-Mass.), Chris Van Hollen (D-Md.), and Richard Blumenthal (D-Conn.) cited a study estimating that "electricity prices have increased by as much as 267 percent in the past five years" in "areas located near significant data center activity." Prices increase, senators noted, when utility companies build out extra infrastructure to meet data centers' energy demands -- which can amount to one customer suddenly consuming as much power as an entire city. They also increase when demand for local power outweighs supply. In some cases, residents are blindsided by higher bills, not even realizing a data center project was approved, because tech companies seem intent on dodging backlash and frequently do not allow terms of deals to be publicly disclosed. AI firms "ask public officials to sign non-disclosure agreements (NDAs) preventing them from sharing information with their constituents, operate through what appear to be shell companies to mask the real owner of the data center, and require that landowners sign NDAs as part of the land sale while telling them only that a 'Fortune 100 company' is planning an 'industrial development' seemingly in an attempt to hide the very existence of the data center," senators wrote. States like Virginia with the highest concentration of data centers could see average electricity prices increase by another 25 percent by 2030, senators noted. But price increases aren't limited to the states allegedly striking shady deals with tech companies and greenlighting data center projects, they said. "Interconnected and interstate power grids can lead to a data center built in one state raising costs for residents of a neighboring state," senators reported. Under fire for supposedly only pretending to care about keeping neighbors' costs low were Amazon, Google, Meta, Microsoft, Equinix, Digital Realty, and CoreWeave. Senators accused firms of paying "lip service," claiming that they would do everything in their power to avoid increasing residential electricity costs, while actively lobbying to pass billions in costs on to their neighbors. [...] Particularly problematic, senators emphasized, were reports that tech firms were getting discounts on energy costs as utility companies competed for their business, while prices went up for their neighbors.

Read more of this story at Slashdot.

A new Arctic Report Card recap shows how the Arctic has transformed in just 20 years, warming about twice as fast as the global average and losing most of its oldest sea ice. It's also triggering cascading impacts from "Atlantification" to permafrost-driven "rusting rivers" and more destructive storms. Scientific American reports: The first Arctic Report Card was released by the National Oceanic and Atmospheric Administration in 2006. Since then the region has warmed twice as fast as the global average. About 95 percent of the oldest, thickest sea ice is gone -- "the sliver that remains is collected in an area north of Greenland. Even the central Arctic Ocean is becoming warmer and saltier, causing more ice melt and changing how much heat is released into the atmosphere in a way that affects weather patterns around the world. Those are just some of the stark changes 20 years have wrought. The findings were highlighted in the 2025 Arctic Report Card, released on Tuesday. The Arctic Ocean is undergoing what scientists are calling "Atlantification" -- a process where warm, salty water from the Atlantic flows north, changing how waters of different temperatures and densities are layered in the Arctic, disrupting ecosystems and altering how heat moves from the water to the air. [...] The Arctic is simply becoming wetter, with more precipitation falling as rain instead of snow. June snow cover over the entire Arctic is half of what it was 60 years ago, the report found. Permafrost also continues to thaw, releasing once trapped carbon into the atmosphere and disgorging iron and other elements that have turned rivers and streams orange. These "rusting rivers," found in more than 200 watersheds, are more acidic than normal and have elevated levels of toxic metals that endanger local ecosystems. And as the permafrost thaws, the tundra of the Arctic biome is shrinking, and the boreal forest biome is creeping northward, disrupting ecosystems.

Read more of this story at Slashdot.