You are here
News
How Research Credibility Suffers in a Quantified Society
An anonymous reader shares a report: Academia is in a credibility crisis. A record-breaking 10,000 scientific papers were retracted in 2023 because of scientific misconduct, and academic journals are overwhelmed by AI-generated images, data, and texts. To understand the roots of this problem, we must look at the role of metrics in evaluating the academic performance of individuals and institutions.
To gauge research quality, we count papers, citations, and calculate impact factors. The higher the scores, the better. Academic performance is often expressed in numbers. Why? Quantification reduces complexity, makes academia manageable, allows easy comparisons among scholars and institutions, and provides administrators with a feeling of grip on reality. Besides, numbers seem objective and fair, which is why we use them to allocate status, tenure, attention, and funding to those who score well on these indicators.
The result of this? Quantity is often valued over quality. In The Quantified Society I coin the term "indicatorism": a blind focus on enhancing indicators in spreadsheets, while losing sight of what really matters. It seems we're sometimes busier with "scoring" and "producing" than with "understanding." As a result, some started gaming the system. The rector of one of the world's oldest universities, for one, set up citation cartels to boost his citation scores, while others reportedly buy(!) bogus citations. Even top-ranked institutions seem to play the indicator game by submitting false data to improve their position on university rankings!
Read more of this story at Slashdot.
Categories: Technology
US Removes Malware Allegedly Planted on Computers By Chinese-Backed Hackers
The U.S. Justice Department said on Tuesday that it has deleted malware planted on more than 4,200 computers by a group of criminal hackers who were backed by the People's Republic of China. From a report: The malware, known as "PlugX," affected thousands of computers around the globe and was used to infect and steal information, the department said. Investigators said the malware was installed by a band of hackers who are known by the names "Mustang Panda" and "Twill Typhoon."
Read more of this story at Slashdot.
Categories: Technology
Double-keyed Browser Caching Is Hitting Web Performance
A Google engineer has warned that a major shift in web browser caching is upending long-standing performance optimization practices. Browsers have overhauled their caching systems that forces websites to maintain separate copies of shared resources instead of reusing them across domains.
The new "double-keyed caching" system, implemented to enhance privacy, is ending the era of shared public content delivery networks, writes Google engineer Addy Osmani. According to Chrome's data, the change has led to a 3.6% increase in cache misses and 4% rise in network bandwidth usage.
Read more of this story at Slashdot.
Categories: Technology
Nearly Three-Quarters of All Known Bacterial Species Have Never Been Studied
Nearly three-quarters of all known bacterial species have never been studied in scientific literature, while just 10 species account for half of all published research, according to a new analysis published on bioRxiv.
The study of over 43,000 bacterial species found that E. coli dominates with 21% of all publications, followed by human pathogens like Staphylococcus aureus. Microbes crucial for human health and Earth's ecosystems remain largely unexplored, University of Michigan biologist Paul Jensen reported.
A new $1-million project by non-profit Align to Innovate aims to help close this gap by studying 1,000 microbes under varying conditions.
Read more of this story at Slashdot.
Categories: Technology
Nobel Prize Winners Call For Urgent 'Moonshot' Effort To Avert Global Hunger Catastrophe
More than 150 Nobel and World Food prize laureates have signed an open letter calling for "moonshot" efforts to ramp up food production before an impending world hunger catastrophe. From a report: The coalition of some of the world's greatest living thinkers called for urgent action to prioritise research and technology to solve the "tragic mismatch of global food supply and demand." Big bang physicist Robert Woodrow Wilson; Nobel laureate chemist Jennifer Doudna; the Dalai Lama; economist Joseph E Stiglitz; Nasa scientist Cynthia Rosenzweig; Ethiopian-American geneticist Gebisa Ejeta; Akinwumi Adesina, president of the African Development Bank; Wole Soyinka, Nobel prize for literature winner; and black holes Nobel physicist Sir Roger Penrose were among the signatories in the appeal coordinated by Cary Fowler, joint 2024 World Food prize laureate and US special envoy for global food security.
Citing challenges including the climate crisis, war and market pressures, the coalition called for "planet-friendly" efforts leading to substantial leaps in food production to feed 9.7 billion people by 2050. The plea was for financial and political backing, said agricultural scientist Geoffrey Hawtin, the British co-recipient of last year's World Food prize. [...] The world was "not even close" to meeting future needs, the letter said, predicting humanity faced an "even more food insecure, unstable world" by mid-century unless support for innovation was ramped up internationally.
Read more of this story at Slashdot.
Categories: Technology
Developer Makes Doom Run Inside a PDF File
Programmers have found ways to run the 1993 first-person shooter Doom on an array of unexpected platforms, and now a PDF file joins that list.
Developer ading2210's DoomPDF project shows the game operating within a document format primarily designed for static content display. The creator says he drew inspiration from pdftris, another PDF-based game port by Thomas Rinsma.
Read more of this story at Slashdot.
Categories: Technology
LA Wildfires Push California Insurance Market To Its Limit
Five wildfires in Los Angeles have already burned more than 10,000 structures, threatening to upend California's fragile balance between climate risk and home insurance. The Palisades Fire has damaged or destroyed more than 5,000 buildings in an area that liability experts had previously identified as one of three particularly vulnerable regions in the state.
JPMorgan Chase estimates insured damages could reach $20 billion, positioning this as likely the costliest wildfire in U.S. history. The crisis comes as California's insurance market struggles, with seven of the 12 biggest home insurers having limited their coverage in the state over the past two years. The state-backed insurer of last resort, the California FAIR Plan, now faces exposure of up to $458 billion, while holding only $200 million in surplus cash reserves and $2.5 billion in reinsurance. Gusts of up to 100 miles per hour have fanned the flames, with more than 57,000 structures in severe danger and more than 150,000 people under evacuation.
Read more of this story at Slashdot.
Categories: Technology
Meta To Cut 3,600 Jobs, Targeting Lowest Performers
Meta is cutting roughly 5% of its staff through performance-based eliminations and plans to hire new people to fill their roles this year, according to a company memo. From a report: As of September, Meta employed about 72,000 people, so a 5% reduction could affect roughly 3,600 jobs. "I've decided to raise the bar on performance management and move out low-performers faster," Chief Executive Officer Mark Zuckerberg said in the note posted to an internal message board and reviewed by Bloomberg News. "We typically manage out people who aren't meeting expectations over the course of a year," he said, "but now we're going to do more extensive performance-based cuts during this cycle."
Read more of this story at Slashdot.
Categories: Technology
UK Plans To Ban Public Sector Organizations From Paying Ransomware Hackers
U.K. public sector and critical infrastructure organizations could be banned from making ransom payments under new proposals from the U.K. government. From a report: The U.K.'s Home Office launched a consultation on Tuesday that proposes a "targeted ban" on ransomware payments. Under the proposal, public sector bodies -- including local councils, schools, and NHS trusts -- would be banned from making payments to ransomware hackers, which the government says would "strike at the heart of the cybercriminal business model."
This government proposal comes after a wave of cyberattacks targeting the U.K. public sector. The NHS last year declared a "critical" incident following a cyberattack on pathology lab provider Synnovis, which led to a massive data breach of sensitive patient data and months of disruption, including canceled operations and the diversion of emergency patients. According to new data seen by Bloomberg, the cyberattack on Synnovis resulted in harm to dozens of patients, leading to long-term or permanent damage to their health in at least two cases.
Read more of this story at Slashdot.
Categories: Technology
The New $30,000 Side Hustle: Making Job Referrals for Strangers
Tech workers at major U.S. companies are earning thousands of dollars by referring job candidates they've never met, creating an underground marketplace for employment referrals at firms like Microsoft and Nvidia, according to Bloomberg.
One tech worker cited in the report earned $30,000 in referral bonuses after recommending over 1,000 strangers to his employer over 18 months, resulting in more than six successful hires. While platforms like ReferralHub charge up to $50 per referral, Goldman Sachs and Google said such practices violate their policies. Google requires referrals to be based on personal knowledge of candidates.
Read more of this story at Slashdot.
Categories: Technology
DSA-5844-1 chromium - security update
Security issues were discovered in Chromium which could result
in the execution of arbitrary code, denial of service, or information
disclosure.
Categories: Security
161 Years Ago, a New Zealand Sheep Farmer Predicted AI Doom
An anonymous reader quotes a report from Ars Technica, written by Benj Edwards: While worrying about AI takeover might seem like a modern idea that sprung from War Games or The Terminator, it turns out that a similar concern about machine dominance dates back to the time of the American Civil War, albeit from an English sheep farmer living in New Zealand. Theoretically, Abraham Lincoln could have read about AI takeover during his lifetime. On June 13, 1863, a letter published (PDF) in The Press newspaper of Christchurch warned about the potential dangers of mechanical evolution and called for the destruction of machines, foreshadowing the development of what we now call artificial intelligence—and the backlash against it from people who fear it may threaten humanity with extinction. It presented what may be the first published argument for stopping technological progress to prevent machines from dominating humanity.
Titled "Darwin among the Machines," the letter recently popped up again on social media thanks to Peter Wildeford of the Institute for AI Policy and Strategy. The author of the letter, Samuel Butler, submitted it under the pseudonym Cellarius, but later came to publicly embrace his position. The letter drew direct parallels between Charles Darwin's theory of evolution and the rapid development of machinery, suggesting that machines could evolve consciousness and eventually supplant humans as Earth's dominant species. "We are ourselves creating our own successors," he wrote. "We are daily adding to the beauty and delicacy of their physical organisation; we are daily giving them greater power and supplying by all sorts of ingenious contrivances that self-regulating, self-acting power which will be to them what intellect has been to the human race. In the course of ages we shall find ourselves the inferior race."
In the letter, he also portrayed humans becoming subservient to machines, but first serving as caretakers who would maintain and help reproduce mechanical life—a relationship Butler compared to that between humans and their domestic animals, before it later inverts and machines take over. "We take it that when the state of things shall have arrived which we have been above attempting to describe, man will have become to the machine what the horse and the dog are to man... we give them whatever experience teaches us to be best for them... in like manner it is reasonable to suppose that the machines will treat us kindly, for their existence is as dependent upon ours as ours is upon the lower animals," he wrote. The text anticipated several modern AI safety concerns, including the possibility of machine consciousness, self-replication, and humans losing control of their technological creations. These themes later appeared in works like Isaac Asimov's The Evitable Conflict, Frank Herbert's Dune novels (Butler possibly served as the inspiration for the term "Butlerian Jihad"), and the Matrix films. "Butler's letter dug deep into the taxonomy of machine evolution, discussing mechanical 'genera and sub-genera' and pointing to examples like how watches had evolved from 'cumbrous clocks of the thirteenth century' -- suggesting that, like some early vertebrates, mechanical species might get smaller as they became more sophisticated," adds Ars. "He expanded these ideas in his 1872 novel Erewhon, which depicted a society that had banned most mechanical inventions. In his fictional society, citizens destroyed all machines invented within the previous 300 years."
Read more of this story at Slashdot.
Categories: Technology
Ransomware Crew Abuses AWS Native Encryption, Sets Data-Destruct Timer for 7 Days
A new ransomware group called Codefinger targets AWS S3 buckets by exploiting compromised or publicly exposed AWS keys to encrypt victims' data using AWS's own SSE-C encryption, rendering it inaccessible without the attacker-generated AES-256 keys. While other security researchers have documented techniques for encrypting S3 buckets, "this is the first instance we know of leveraging AWS's native secure encryption infrastructure via SSE-C in the wild," Tim West, VP of services with the Halcyon RISE Team, told The Register. "Historically AWS Identity IAM keys are leaked and used for data theft but if this approach gains widespread adoption, it could represent a significant systemic risk to organizations relying on AWS S3 for the storage of critical data," he warned. From the report: ... in addition to encrypting the data, Codefinder marks the compromised files for deletion within seven days using the S3 Object Lifecycle Management API â" the criminals themselves do not threaten to leak or sell the data, we're told. "This is unique in that most ransomware operators and affiliate attackers do not engage in straight up data destruction as part of a double extortion scheme or to otherwise put pressure on the victim to pay the ransom demand," West said. "Data destruction represents an additional risk to targeted organizations."
Codefinger also leaves a ransom note in each affected directory that includes the attacker's Bitcoin address and a client ID associated with the encrypted data. "The note warns that changes to account permissions or files will end negotiations," the Halcyon researchers said in a report about S3 bucket attacks shared with The Register. While West declined to name or provide any additional details about the two Codefinger victims -- including if they paid the ransom demands -- he suggests that AWS customers restrict the use of SSE-C.
"This can be achieved by leveraging the Condition element in IAM policies to prevent unauthorized applications of SSE-C on S3 buckets, ensuring that only approved data and users can utilize this feature," he explained. Plus, it's important to monitor and regularly audit AWS keys, as these make very attractive targets for all types of criminals looking to break into companies' cloud environments and steal data. "Permissions should be reviewed frequently to confirm they align with the principle of least privilege, while unused keys should be disabled, and active ones rotated regularly to minimize exposure," West said. An AWS spokesperson said it notifies affected customers of exposed keys and "quickly takes any necessary actions, such as applying quarantine policies to minimize risks for customers without disrupting their IT environment."
They also directed users to this post about what to do upon noticing unauthorized activity.
Read more of this story at Slashdot.
Categories: Technology
Snyk Researcher Caught Deploying Malicious Code Targeting AI Startup
A Snyk security researcher has published malicious NPM packages targeting Cursor, an AI coding startup, in what appears to be a dependency confusion attack. The packages, which collect and transmit system data to an attacker-controlled server, were published under a verified Snyk email address, according to security researcher Paul McCarty.
The OpenSSF package analysis scanner flagged three packages as malicious, generating advisories MAL-2025-27, MAL-2025-28 and MAL-2025-29. The researcher deployed the packages "cursor-retrieval," "cursor-always-local" and "cursor-shadow-workspace," likely attempting to exploit Cursor's private NPM packages of the same names.
Read more of this story at Slashdot.
Categories: Technology
US Employee Engagement Sinks To 10-Year Low
Employee engagement in the U.S. fell to its lowest level in a decade in 2024, Gallup reported Tuesday, with only 31% of employees engaged. This matches the figure last seen in 2014. The percentage of actively disengaged employees, at 17%, also reflects 2014 levels. Gallup: The percentage of engaged employees has declined by two percentage points since 2023, highlighting a growing trend of employee detachment from organizations, particularly among workers younger than 35.
These are among the findings of Gallup's most recent annual update of U.S. employee engagement. Though engagement increased slightly midyear, it declined through the rest of 2024, finishing the year at its decade low. In Gallup's trend dating back to 2000, employee engagement peaked in 2020, at 36%, following a decade of steady growth, but it has generally trended downward since then.
Each point change in engagement represents approximately 1.6 million full- or part-time employees in the U.S. The declines since 2020 equate to about 8 million fewer engaged employees, including 3.2 million fewer compared to 2023. Among the 12 engagement elements that Gallup measures, those that saw the most significant declines in 2024 (by three points or more in "strongly agree" ratings) include:
Clarity of expectations. Just 46% of employees clearly know what is expected of them at work, down 10 points from a high of 56% in March 2020.
Feeling someone at work cares about them as a person. Currently, 39% of employees feel strongly that someone cares about them, a drop from 47% in March 2020.
Someone encouraging their development. Only 30% strongly agree that someone at work encourages their development, down from 36% in March 2020.
People of all ages come to work seeking role clarity, strong relationships and opportunities for development, but managers, combined, are progressively failing to meet these basic needs. However, managers themselves are faring no better than those they manage, with only 31% engaged.
Read more of this story at Slashdot.
Categories: Technology
Annual US Dementia Cases Projected to Rise to 1 Million by 2060
By 2060, around one million Americans may develop dementia annually, with the lifetime risk after age 55 estimated at 42% and rising sharply with age. The findings have been published in the journal Nature Medicine. Scientific American reports: The latest forecast suggests a massive and harrowing increase from annual cases predicted for 2020, in which approximately 514,000 adults in the U.S. were estimated to be diagnosed with dementia -- an umbrella term that describes several neurological conditions that affect memory and cognition.
The new study also showed the lifetime risk of dementia increased progressively with older age. They estimated that after age 55, the lifetime risk of dementia is 42 percent, and continues to rise sharply to 56 percent after age 85. Groups that showed greater lifetime risks (between 44 and 59 percent after age 55) were Black adults, women and people who carried the allele APOE e4: this variation of the gene APOE, which codes for the protein apolipoprotein E, increases the risk of developing Alzheimer's disease. Alzheimer's is the most common cause of dementia, but the study focused on all forms.
Read more of this story at Slashdot.
Categories: Technology
Supreme Court Allows Hawaii To Sue Oil Companies Over Climate Change Effects
An anonymous reader quotes a report from CBS News: The Supreme Court on Monday said it will not consider whether to quash lawsuits brought by Honolulu seeking billions of dollars from oil and gas companies for the damage caused by the effects of climate change, clearing the way for the cases to move forward. The legal battle pursued in Hawaii state court is similar to others filed against the nation's largest energy companies by state and local governments in their courts. The suits claim that the oil and gas industry engaged in a deceptive campaign and misled the public about the dangers of their fossil fuel products and the environmental impacts.
A group of 15 energy companies asked the Supreme Court to review a decision from the Hawaii Supreme Court that allowed a lawsuit brought by the city and county of Honolulu, as well as its Board of Water Supply, to proceed. The suit was brought in Hawaii state court in March 2020, and Honolulu raised (PDF) several claims under state law, including creating a public nuisance and failure to warn the public of the risks posed by their fossil fuel products. The city accused the oil and gas industry of contributing to global climate change, leading to flooding, erosion and more frequent and intense extreme weather events. These changes, they said, have led to property damage and a drop in tax revenue as a result of less tourism.
The energy companies unsuccessfully sought to have the case moved to federal court, arguing that the claims raised by Honolulu under state law were overridden by federal law and the Clean Air Act. A state trial court denied their efforts to dismiss the case. The oil and gas industry has argued that greenhouse-gas emissions "flow from billions of daily choices, over more than a century, by governments, companies and individuals about what types of fuels to use, and how to use them." Honolulu, the companies said, was seeking damages for the "cumulative effect of worldwide emissions leading to global climate change." The Hawaii Supreme Court ultimately allowed (PDF) the lawsuit to proceed. The state's highest court determined that the Clean Air Act displaced federal common law governing suits seeking damages for interstate pollution. It also rejected the oil companies' argument that Honolulu was seeking to regulate emissions through its lawsuit, finding that the city instead wanted to challenge the promotion and sale of fossil fuel products "without warning and abetted by a sophisticated disinformation campaign."
"Plaintiffs' state tort law claims do not seek to regulate emissions, and there is thus no 'actual conflict' between Hawaii tort law and the [Clean Air Act]," the Hawaii Supreme Court ruled. "These claims potentially regulate marketing conduct while the CAA regulates pollution." The oil companies asked the U.S. Supreme Court to review the ruling from the Hawaii high court and urged it to stop Honolulu's lawsuit from going forward. Regulation of interstate pollution is a federal area governed by federal law, lawyers for the energy industry argued. [...] The Supreme Court in June asked the Biden administration to weigh in on the cases and whether it should step into the dispute. In a filing submitted to the Supreme Court before the transfer of presidential power, the Biden administration urged the justices to turn away the appeals, in part because it said it is too soon for them to intervene.
Read more of this story at Slashdot.
Categories: Technology
Ministers Mull Allowing Private Firms to Make Profit From NHS Data In AI Push
UK ministers are considering allowing private companies to profit from anonymized NHS data as part of a push to leverage AI for medical advancements, despite concerns over privacy and ethical risks. The Guardian reports: Keir Starmer on Monday announced a push to open up the government to AI innovation, including allowing companies to use anonymized patient data to develop new treatments, drugs and diagnostic tools. With the prime minister and the chancellor, Rachel Reeves, under pressure over Britain's economic outlook, Starmer said AI could bolster the country's anaemic growth, as he put concerns over privacy, disinformation and discrimination to one side.
"We are in a unique position in this country, because we've got the National Health Service, and the use of that data has already driven forward advances in medicine, and will continue to do so," he told an audience in east London. "We have to see this as a huge opportunity that will impact on the lives of millions of people really profoundly." Starmer added: "It is important that we keep control of that data. I completely accept that challenge, and we will also do so, but I don't think that we should have a defensive stance here that will inhibit the sort of breakthroughs that we need."
The move to embrace the potential of AI rather than its risks comes at a difficult moment for the prime minister, with financial markets having driven UK borrowing costs to a 30-year high and the pound hitting new lows against the dollar. Starmer said on Monday that AI could help give the UK the economic boost it needed, adding that the technology had the potential "to increase productivity hugely, to do things differently, to provide a better economy that works in a different way in the future." Part of that, as detailed in a report by the technology investor Matt Clifford, will be to create new datasets for startups and researchers to train their AI models.
Data from various sources will be included, such as content from the National Archives and the BBC, as well as anonymized NHS records. Officials are working out the details on how those records will be shared, but said on Monday that they would take into account national security and ethical concerns. Starmer's aides say the public sector will keep "control" of the data, but added that could still allow it to be used for commercial purposes.
Read more of this story at Slashdot.
Categories: Technology
Meta Is Blocking Links to Decentralized Instagram Competitor Pixelfed
Meta is deleting links to Pixelfed, a decentralized, open-source Instagram competitor, labeling them as "spam" on Facebook and removing them immediately. 404 Media reports: Pixelfed is an open-source, community funded and decentralized image sharing platform that runs on Activity Pub, which is the same technology that supports Mastodon and other federated services. Pixelfed.social is the largest Pixelfed server, which was launched in 2018 but has gained renewed attention over the last week. Bluesky user AJ Sadauskas originally posted that links to Pixelfed were being deleted by Meta; 404 Media then also tried to post a link to Pixelfed on Facebook. It was immediately deleted. Pixelfed has seen a surge in user signups in recent days, after Meta announced it is ending fact-checking and removing restrictions on speech across its platforms.
Daniel Supernault, the creator of Pixelfed, published a "declaration of fundamental rights and principles for ethical digital platforms, ensuring privacy, dignity, and fairness in online spaces." The open source charter contains sections titled "right to privacy," "freedom from surveillance," "safeguards against hate speech," "strong protections for vulnerable communities," and "data portability and user agency."
"Pixelfed is a lot of things, but one thing it is not, is an opportunity for VC or others to ruin the vibe. I've turned down VC funding and will not inject advertising of any form into the project," Supernault wrote on Mastodon. "Pixelfed is for the people, period."
Read more of this story at Slashdot.
Categories: Technology
Linus Torvalds Offers to Build Guitar Effects Pedal For Kernel Developer
Linux creator Linus Torvalds announced a playful giveaway for kernel contributors: he'll hand-build a guitar effects pedal for one lucky developer selected at random, using his holiday hobby skills with pedal kits. To qualify, developers must have a 2024 commit in Torvalds' kernel git tree and email him with the subject "I WANT A GUITAR PEDAL". He'll pick a winner at random, use his own money to buy a pedal kit from a company called Aion FX, and then 'build it with my own shaky little fingers, and send it to the victim by US postal services.'" The Register reports: The odd offer appeared in his weekly state-of-the-kernel post, which on Sunday US time informed the Linux world that release candidate (rc) seven for version 6.13 of the Linux kernel "is slightly bigger than normal, but considering the timing, it's pretty much where I would have expected, and nothing really stands out." Torvalds therefore expects version 6.13 to debut next week, meaning it will arrive after his preferred seven release candidates and without delays caused by the usual holiday-period slowdown. Torvalds then added a postscript in which he revealed that he often uses the holiday season to build LEGO, which he frequently receives for Christmas and his late December birthday.
He kept up that tradition last year, but "also ended up doing a number of guitar pedal kit builds" which he described as "LEGO for grown-ups with a soldering iron." [...] Torvalds doesn't play guitar, but did the builds "because I enjoy the tinkering, and the guitar pedals actually do something and are the right kind of "not very complex, but not some 5-minute 555 LED blinking thing.'" He enjoyed the experience and wants to build more pedals, so has decided to give one away to a random kernel developer -- both as an act of generosity and to "check to see if anybody actually ever reads these weekly rc announcements of mine." Torvalds rated his past pedal-building efforts a "good success so far" but warned entrants "I'm a software person with a soldering iron."
"I will test the result to the best of my abilities, and the end result may actually work ... but you should set your expectations along the lines of "quality kit built by a SW person who doesn't know one end of a guitar from the other.'"
Read more of this story at Slashdot.
Categories: Technology
Pages
