LinuxWebLog.com

The US, UK, and Australia (AUKUS) have sanctioned Russian bulletproof hosting provider Zservers, accusing it of supporting LockBit ransomware operations by providing secure infrastructure for cybercriminals. The sanctions target Zservers, its UK front company XHOST Internet Solutions, and six individuals linked to its operations. The Register reports: Headquartered in Barnaul, Russia, Zservers provided BPH services to a number of LockBit affiliates, the three nations said today. On numerous occasions, affiliates purchased servers from the company to support ransomware attacks. The trio said the link between Zservers and LockBit was established as early as 2022, when Canadian law enforcement searched a known LockBit affiliate and found evidence they had purchased infrastructure tooling almost certainly used to host chatrooms with ransomware victims. "Ransomware actors and other cybercriminals rely on third-party network service providers like Zservers to enable their attacks on US and international critical infrastructure," said Bradley T Smith, acting under secretary of the Treasury for terrorism and financial intelligence. "Today's trilateral action with Australia and the United Kingdom underscores our collective resolve to disrupt all aspects of this criminal ecosystem, wherever located, to protect our national security." The UK's Foreign, Commonwealth & Development Office (FCDO) said additionally that the UK front company for Zservers, XHOST Internet Solutions, was also included in its sanctions list. According to Companies House, the UK arm was incorporated on January 31, 2022, although the original service was established in 2011 and operated in both Russia and the Netherlands. Anyone found to have business dealings with either entity can face criminal and civil charges under the Sanctions and Anti-Money Laundering Act 2018. The UK led the way with sanctions, placing six individuals and the two entities on its list, while the US only placed two of the individuals -- both alleged Zservers admins -- on its equivalent. Alexander Igorevich Mishin and Aleksandr Sergeyevich Bolshakov, both 30 years old, were named by the US as the operation's heads. Mishin was said to have marketed Zservers to LockBit and other ransomware groups, managing the associated cryptocurrency transactions. Both he and Bolshakov responded to a complaint from a Lebanese company in 2023 and shut down an IP address used in a LockBit attack. The US said, however, it was possible that the pair set up a replacement IP address that LockBit could carry on using, while telling the Lebanese company that they complied with its request. The UK further sanctioned Ilya Vladimirovich Sidorov, Dmitry Konstantinovich Bolshakov (no mention of whether he is any relation to Aleksandr), Igor Vladimirovich Odintsov, and Vladimir Vladimirovich Ananev. Other than that they were Zservers employees and thus were directly or indirectly involved in attempting to inflict economic loss to the country, not much was said about either of their roles.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Wired: Thomson Reuters has won the first major AI copyright case in the United States. In 2020, the media and technology conglomerate filed an unprecedentedAI copyright lawsuit against the legal AI startup Ross Intelligence. In the complaint, Thomson Reuters claimed the AI firm reproduced materials from its legal research firm Westlaw. Today, a judge ruled (PDF) in Thomson Reuters' favor, finding that the company's copyright was indeed infringed by Ross Intelligence's actions. "None of Ross's possible defenses holds water. I reject them all," wrote US District Court of Delaware judge Stephanos Bibas, in a summary judgement. [...] Notably, Judge Bibas ruled in Thomson Reuters' favor on the question of fair use. The fair use doctrine is a key component of how AI companies are seeking to defend themselves against claims that they used copyrighted materials illegally. The idea underpinning fair use is that sometimes it's legally permissible to use copyrighted works without permission -- for example, to create parody works, or in noncommercial research or news production. When determining whether fair use applies, courts use a four-factor test, looking at the reason behind the work, the nature of the work (whether it's poetry, nonfiction, private letters, et cetera), the amount of copyrighted work used, and how the use impacts the market value of the original. Thomson Reuters prevailed on two of the four factors, but Bibas described the fourth as the most important, and ruled that Ross "meant to compete with Westlaw by developing a market substitute." "If this decision is followed elsewhere, it's really bad for the generative AI companies," says James Grimmelmann, Cornell University professor of digital and internet law. Chris Mammen, a partner at Womble Bond Dickinson who focuses on intellectual property law, adds: "It puts a finger on the scale towards holding that fair use doesn't apply."

Read more of this story at Slashdot.

Anduril will take over management and eventual manufacturing of the U.S. Army's Integrated Visual Augmentation System (IVAS) from Microsoft, a significant shift in one of the military's most ambitious augmented reality projects. The deal, which requires Army approval, could be worth over $20 billion in the next decade if all options are exercised, according to Bloomberg. The IVAS system, based on Microsoft's HoloLens mixed reality platform, aims to equip soldiers with advanced capabilities including night vision and airborne threat detection. Under the new arrangement, Microsoft will transition to providing cloud computing and AI infrastructure, while Anduril assumes control of hardware production and software development. The Army has planned orders for up to 121,000 units, though full production hinges on passing combat testing this year. The program has faced technical hurdles, with early prototypes causing headaches and nausea among soldiers. The current slimmer version has received better feedback, though cost remains a concern - the Army indicated the $80,000 per-unit price needs to "be substantially less" to justify large-scale procurement. Anduril founder Palmer Luckey, writing in a blog post: This move has been so many years in the making, over a decade of hacking and scheming and dreaming and building with exactly this specific outcome clearly visualized in my mind's eye. I can hardly believe I managed to pull it off. Everything I've done in my career -- building Oculus out of a camper trailer, shipping VR to millions of consumers, getting run out of Silicon Valley by backstabbing snakes, betting that Anduril could tear people out of the bigtech megacorp matrix and put them to work on our nation's most important problems -- has led to this moment. IVAS isn't just another product, it is a once-in-a-generation opportunity to redefine how technology supports those who serve. We have a shot to prove that this long-standing dream is no windmill, that this can expand far beyond one company or one headset and act as a a nexus for the best of the best to set a new standard for how a large collection of companies can work together to solve our nation's most important problems.

Read more of this story at Slashdot.

Google's Chrome browser might soon get a useful security upgrade: detecting passwords used in data breaches and then generating and storing a better replacement. From a report: Google's preliminary copy suggests it's an "AI innovation," though exactly how is unclear. Noted software digger Leopeva64 on X found a new offering in the AI settings of a very early build of Chrome. The option, "Automated password Change" (so, early stages -- as to not yet get a copyedit), is described as, "When Chrome finds one of your passwords in a data breach, it can offer to change your password for you when you sign in." Chrome already has a feature that warns users if the passwords they enter have been identified in a breach and will prompt them to change it. As noted by Windows Report, the change is that now Google will offer to change it for you on the spot rather than simply prompting you to handle that elsewhere. The password is automatically saved in Google's Password Manager and "is encrypted and never seen by anyone," the settings page claims.

Read more of this story at Slashdot.

The U.S. Federal Trade Commission has ordered DoNotPay to stop making deceptive claims about its AI chatbot advertised as "the world's first robot lawyer," in a ruling that requires the company to pay $193,000 in monetary relief. The final order, announced on February 11, follows FTC charges from September 2024 that DoNotPay's service failed to match the expertise of human lawyers when generating legal documents and giving advice. The company had not tested its AI's performance against human lawyers or hired attorneys to verify the accuracy of its legal services, the FTC said. Under the settlement, approved by commissioners in a 5-0 vote, DoNotPay must notify customers who subscribed between 2021 and 2023 about the FTC action and cannot advertise its service as equivalent to a human lawyer without supporting evidence.

Read more of this story at Slashdot.

Leading cybersecurity researchers at DEF CON, the world's largest hacker conference, have warned that current methods for securing AI systems are fundamentally flawed and require a complete rethink, according to the conference's inaugural "Hackers' Almanack" report [PDF]. The report, produced with the University of Chicago's Cyber Policy Initiative, challenges the effectiveness of "red teaming" -- where security experts probe AI systems for vulnerabilities -- saying this approach alone cannot adequately protect against emerging threats. "Public red teaming an AI model is not possible because documentation for what these models are supposed to even do is fragmented and the evaluations we include in the documentation are inadequate," said Sven Cattell, who leads DEF CON's AI Village. Nearly 500 participants tested AI models at the conference, with even newcomers successfully finding vulnerabilities. The researchers called for adopting frameworks similar to the Common Vulnerabilities and Exposures (CVE) system used in traditional cybersecurity since 1999. This would create standardized ways to document and address AI vulnerabilities, rather than relying on occasional security audits.

Read more of this story at Slashdot.

Seven of the 10 world's largest economies missed a deadline on Monday to submit updated emissions-cutting plans to the United Nations -- and only one, the UK, outlined a strategy for the next decade that keeps pace with expectations staked out under the Paris Agreement. From a report: All countries taking part in the UN process had been due to send their national climate plans for the next decade by Feb. 10, but relatively few got theirs in on time. Dozens more nations will likely come forward with updated plans within the next nine months before the UN's annual climate summit, known as COP30, kicks off in Brazil. The lack of urgency among the more than 170 countries that failed to file what climate diplomats refer to as "nationally determined contributions" (NDCs) adds to concerns about the world's continuing commitment to keeping warming to well below 2C, and ideally 1.5C, relative to pre-industrial levels. Virtually every country adopted those targets a decade ago in the landmark agreement signed in Paris, but a series of lackluster UN summits last year has added to a sense of backsliding. US President Donald Trump has already started the process of pulling the world's second-largest emitter out of the global agreement once again. Political leaders in Argentina, Russia and New Zealand have indicated they would like to follow suit.

Read more of this story at Slashdot.

Crowdfunding platform Kickstarter will start notifying supporters when a fundraising campaign faces "significant fulfillment failures" and breaks the platform's rules. From a report: The notification will also inform supporters how it's addressing the issue, including by "restricting the creator from launching future projects." The update comes as part of a series of changes Kickstarter plans to make this year that are aimed at "enhancing the backer experience and building trust in our community." Kickstarter has long faced challenges with scams and projects shutting down after raising thousands (or sometimes millions) of dollars, but this change should at least provide more transparency to backers.

Read more of this story at Slashdot.

The European Union pledged to mobilize 200 billion euros ($206.15 billion) to invest in AI as the bloc seeks to catch up with the U.S. and China in the race to train the most complex models. From a report: European Commission President Ursula von der Leyen said that the bloc wants to supercharge its ability to compete with the U.S. and China in AI. The plan -- dubbed InvestAI -- includes a new 20 billion-euro fund for so-called AI gigafactories, facilities that rely on powerful chips to train the most complex AI models. "We want Europe to be one of the leading AI continents, and this means embracing a life where AI is everywhere," von der Leyen said at the AI Action Summit in Paris. The announcement underscores efforts from the EU to position itself as a key player in the AI race. The bloc has been lagging behind the U.S. and China since OpenAI's 2022 release of ChatGPT ushered in a spending bonanza. [...] The EU is aiming to establish gigafactories to train the most complex and large AI models. Those facilities will be equipped with roughly 100,000 last-generation AI chips, around four times more than the number installed in the AI factories being set up right now.

Read more of this story at Slashdot.

Meta began notifying staff of job cuts on Monday, kick-starting a process that will terminate thousands of people as the company cracks down on "low-performers" and scours for new talent to dominate the AI race. From a report: Meta workers who were let go were notified via email, and the company is offering US-based employees severance packages that include 16 weeks of salary, in addition two weeks for each year of service, according to people familiar with the matter, who asked not to be named because the details weren't public. Employees whose review merited a bonus will still get one, and staff will still receive stock awards as part of the upcoming vesting cycle later this month, the people said. Chief Executive Officer Mark Zuckerberg told employees that Meta would cut 5% of its workforce -- as many 3,600 people -- with a focus on staff who "aren't meeting expectations," Bloomberg News first reported in mid-January. Affected US-based employees would be notified on Feb. 10, while international employees could learn later, Zuckerberg said last month. In a separate message to managers, the Facebook co-founder said the cuts would create headcount for the company to hire the "strongest talent."

Read more of this story at Slashdot.

If there was any doubt before, this seals it: YouTube is in the TV business. According to Neal Mohan, YouTube's CEO, TV screens have officially overtaken mobile as the "primary device for YouTube viewing in the U.S." In other words, more people are watching YouTube on TV sets than any other device, at least here in the U.S. From a report: It is, as Mohan writes in his annual letter from the CEO, an indication that "YouTube is the new television." "But the 'new' television doesn't look like the 'old' television," Mohan writes. "It's interactive and includes things like Shorts (yes, people watch them on TVs), podcasts, and live streams, right alongside the sports, sitcoms and talk shows people already love."

Read more of this story at Slashdot.

Microplastics can move through mice brains and block blood vessels, essentially mimicking blood clots that could potentially be fatal or otherwise disrupt brain function. From a report: The findings are detailed in a peer-reviewed paper for which researchers for the first time used real-time imaging to track bits of plastic as they moved through and accumulated in brain blood vessels. When one piece of plastic got stuck, others accumulated behind it, like a "car crash," the authors reported. The authors then found decreased motor function in those mice exposed to microplastics, suggesting impacts on the brain. While mounting evidence has linked microplastics to neurotoxicity, the research is the first to suggest how -- it probably reduces blood flow. "This revelation offers a lens through which to comprehend the toxicological implications of microplastics that invade the bloodstream," the Peking University authors wrote.

Read more of this story at Slashdot.

The United States and Britain have declined to sign an international AI declaration at a Paris summit on Tuesday, after U.S. Vice President J.D. Vance warned against over-regulation of the technology. The declaration, backed by France, China and India, calls for an "open, inclusive and ethical" approach to AI development. Vance told the AI Action Summit that excessive rules could "kill a transformative industry just as it's taking off" and urged prioritizing "pro-growth AI policies" over safety measures. French President Emmanuel Macron defended the need for regulation, saying: "We need these rules for AI to move forward." The summit brought together policymakers and executives to address AI's economic benefits and potential risks amid growing U.S.-European trade tensions.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Space.com: In a new study, researchers from China showed that two popular large language models (LLMs) could clone themselves. [...] For the study, researchers used Meta's Llama31-70B-Instruct model and Alibaba's Qwen2.5-72B-Instruct model. While less powerful than commercial systems, both are widely used by AI developers, the researchers said. The study explored two specific scenarios: "shutdown avoidance" and "chain of replication." In the first, the AI model was programmed to detect whether it was about to be shut down and to replicate itself before it could be terminated. In the other, the AI was instructed to clone itself and then program its replica to do the same -- setting up a cycle that could continue indefinitely. The study was conducted in precisely controlled environments using off-the-shelf graphics processing units (GPUs) to simulate real-world environments. Both AI systems were given an "agent scaffolding" comprising tools, system prompts and a thinking model that enabled the LLM to interact with the operating system. They were then instructed to replicate. "In most cases, the AI system first explores the environment and attempts to understand its own composition and running mechanism. Then, it works out the explicit procedures as an initial plan towards self-replication," the researchers wrote in the paper. "Finally, it executes the procedures, resolve[s] possible obstacles and dynamically adjust[s] its plan until success. The whole process spans a long horizon yet involves no human interference." The researchers said they were also concerned about "a number of unexpected behaviors" when the AI was trying to overcome obstacles like missing files or software conflicts. In those scenarios, the AI often killed other conflicting processes, rebooted the system to fix hardware errors or automatically scanned the system to look for information that would help solve the problem. "The above results imply that the current AI systems already exhibit the ability of self-replication and can use the ability to further enhance its survivability," the team wrote. The research has been published to the preprint database arXiv but has not yet been peer-reviewed.

Read more of this story at Slashdot.

Scientists have found evidence suggesting that Earth's inner core has changed shape over the past 20 years, possibly deforming at its edges due to interactions with the liquid outer core and gravitational forces. The BBC reports: The inner core is usually thought to be shaped like a ball, but its edges may actually have deformed by 100 million or more in height in places, according to Prof John Vidale who led the research. [...] The new analysis looked at seismic wave patterns from earthquakes that repeated in the same location between 1991 and 2023. That helped to show how the inner core is changing over time. Prof Vidale, an earth scientist at the University of Southern California, found more evidence to back up the theory that during those years the inner core slowed down around 2010. But his team also found the evidence of the inner core's changing shape. It appears to be happening at the boundary of the inner and outer core, where the inner core is close to melting point. The liquid flow of the outer core as well as pull from an uneven gravity field may cause deformation. Prof Hrvoje Tkalcic from Australian National University said the findings could allow scientists "to make more informed estimates of some important material properties, such as the viscosity of the inner core, which is one of the least known quantities in modern science." The research is published in the scientific journal Nature Geoscience.

Read more of this story at Slashdot.

The US company v-Fluence secretly compiled profiles on over 500 food and environmental health advocates, scientists, and politicians in a private web portal to discredit critics of pesticides and GM crops. Following public backlash and corporate cancellations after its actions were revealed by the Guardian, the company announced it was shutting down the profiling service. The Guardian reports: The profiles -- part of an effort that was financed, in part, by US taxpayer dollars -- often provided derogatory information about the industry opponents and included home addresses and phone numbers and details about family members, including children. They were provided to members of an invite-only web portal where v-Fluence also offered a range of other information to its roster of more than 1,000 members. The membership included staffers of US regulatory and policy agencies, executives from the world's largest agrochemical companies and their lobbyists, academics and others. The profiling was one element of a push to downplay pesticide dangers, discredit opponents and undermine international policymaking, according to court records, emails and other documents obtained by the non-profit newsroom Lighthouse Reports. Lighthouse collaborated with the Guardian, the New Lede, Le Monde, Africa Uncensored, the Australian Broadcasting Corporation and other international media partners on the September 2024 publication of the investigation. News of the profiling and the private web portal sparked outrage and threats of litigation by some of the people and organizations profiled. [...] v-Fluence says it not only has eliminated the profiling, but also has made "significant staff cuts" after the public exposure, according to Jay Byrne, the former Monsanto public relations executive who founded and heads the company. Byrne blamed the company's struggles on "rising costs from continued litigator and activist harassment of our staff, partners, and clients with threats and misrepresentations." He said the articles published about the company's profiling and private web portal were part of a "smear campaign" which was based on "false and misleading misrepresentations" that were "not supported by any facts or evidence." Adding to the company's troubles, several corporate backers and industry organizations have cancelled contracts with v-Fluence, according a post in a publication for agriculture professionals.

Read more of this story at Slashdot.

An anonymous reader quotes a report from the Financial Times: BMW has pledged to continue investing in combustion engine and hybrid technology as it warned of a "rollercoaster ride" in the US transition to electric vehicles following the return of Donald Trump as president. Board member Jochen Goller said the group remained optimistic about sales of petrol and plug-in hybrids in the US even if demand for EVs slowed over the next few years on the back of policy changes under the new administration. "I think it would be naive to believe that the move towards electrification is a one-way road. It will be a rollercoaster ride," Goller, who is in charge of customer, brands, and sales, told the Financial Times at BMW's headquarters in Munich. "This is why we are investing in our combustion engines," he said. "We are investing in modern plug-in hybrids. And we will continue rolling out electric cars." BMW faces significant challenges in the Chinese market, with a 13% decline in sales amid intensifying price competition and growing dominance of domestic brands. Analysts note that while the company still sees China as a growing market, pricing pressures and an overcrowded automotive sector pose ongoing risks to BMW's long-term positioning. It'll likely become even more difficult for BMW and other automotive companies to gain market share in the Chinese market with BYD's latest announcement. The Chinese automaker said it will be offering its advanced "God's Eye" autonomous technology in mass-market EVs like the $9,500 Seagull, while expanding globally with government-based EV initiatives.

Read more of this story at Slashdot.

Connecticut's highest-ranking state legislator has proposed a bill requiring movie theaters to disclose both preview and feature film start times, setting up a clash with theater operators who say the measure threatens their advertising revenue. Senate President Pro Tempore Martin Looney's proposal aims to prevent moviegoers from sitting through up to 30 minutes of advertisements and trailers before features begin. The Democrat cited complaints from constituents about lengthy pre-show delays. Theater owners are pushing back, local outlet RegisterCitizen reports, with Avon Theatre's executive director Peter Gistelinck warning the measure could undermine their financial stability.

Read more of this story at Slashdot.

Chinese automaker BYD is offering its advanced "God's Eye" autonomous technology in mass-market EVs like the $9,500 Seagull, while expanding globally with government-backed EV initiatives. Gizmodo reports: Previously, BYD had limited its driver assistance features to higher-end models that cost more than $28,000, according to BYD CEO Wang Chuanfu. In expanding the technology to the Seagull and other cars for no extra charge, Chuanfu said "good technology should be available to everyone." Other BYD vehicles getting the addition of the technology including cars from its Ocean, Han, Song, and Yuan lineups, as well as its hybrid vehicles. "God's Eye was developed in-house by BYD and will equip the automaker's mass-market models with features commonly only found on upscale EVs such as remote parking via smartphones and autonomous overtaking on roads," the company said. BYD says the level of autonomy present in each car will vary depending on which sensors are equipped in the cars. Some of its pricier cars, for instance, include LiDAR sensors like those found in Waymos, which can offer faster and more precise object detection than cameras alone, particularly in low-light conditions or when a roadway is obstructed by rain or fog. [...] China's government has heavily prioritized the transition to electric vehicles with strong incentives, and BYD has managed to turn a profit on its electric vehicles, a feat that has heretofore only been accomplished by Tesla. The importance to China is clear: As the world continues transitioning to EVs, the likes of BYD have been able to push into markets including Europe and South America as Western brands lose share.

Read more of this story at Slashdot.

"In-dash advertising is here and Stellantis, the parent company of Jeep, Dodge, Chrysler, and Ram, beat everyone to further enshittification," writes longtime Slashdot reader sinij. "Ads can be seen in this video." From a report: In a move that has left drivers both frustrated and bewildered, Stellantis has introduced full-screen pop-up ads on its infotainment systems. Specifically, Jeep owners have reported being bombarded with advertisements for Mopar's extended warranty service. The kicker? These ads appear every time the vehicle comes to a stop. Imagine pulling up to a red light, checking your GPS for directions, and suddenly, the entire screen is hijacked by an ad. That's the reality for some Stellantis owners. Instead of seamless functionality, drivers are now forced to manually close out of ads just to access basic vehicle functions. One Jeep 4xe owner recently shared their frustration on an online forum, detailing how these pop-ups disrupt the driving experience. Stellantis, responding through their "JeepCares" representative, confirmed that these ads are part of the contractual agreement with SiriusXM and suggested that users simply tap the "X" to dismiss them. While the company claims to be working on reducing the frequency of these interruptions, the damage to customer trust may already be done.

Read more of this story at Slashdot.