RSS 생중계

Decades of buried trash is releasing methane, a powerful greenhouse gas, at higher rates than previously estimated, the researchers said. From a report: These landfills also belch methane, a powerful, planet-warming gas, on average at almost three times the rate reported to federal regulators, according to a study published Thursday in the journal Science. The study measured methane emissions at about 20 percent of about 1,200 large, operating landfills in the United States. It adds to a growing body of evidence that landfills are a significant driver of climate change, said Riley Duren, founder of the public-private partnership Carbon Mapper, who took part in the study. "We've largely been in the dark, as a society, about actual emissions from landfills," said Mr. Duren, a former NASA engineer and scientist. "This study pinpoints the gaps." Methane emissions from oil and gas production, as well as from livestock, have come under increasing scrutiny in recent years. Like carbon dioxide the main greenhouse gas that's warming the world, methane acts like a blanket in the sky, trapping the sun's heat. And though methane lasts for a shorter time in the atmosphere than carbon dioxide, it is more potent. Its warming effect is more than 80 times as powerful as the same amount of carbon dioxide over a 20-year period. The Environmental Protection Agency estimates that landfills are the third largest source of human-caused methane emissions in the United States, emitting as much greenhouse gas as 23 million gasoline cars driven for a year. Organic waste like food scraps can emit copious amounts of methane when they decompose.

Read more of this story at Slashdot.

BrianFagioli shares a report from BetaNews: In a recent security announcement, Red Hat's Information Risk and Security and Product Security teams have identified a critical vulnerability in the latest versions of the 'xz' compression tools and libraries. The affected versions, 5.6.0 and 5.6.1, contain malicious code that could potentially allow unauthorized access to systems. Fedora Linux 40 users and those using Fedora Rawhide, the development distribution for future Fedora builds, are at risk. The vulnerability, designated CVE-2024-3094, impacts users who have updated to the compromised versions of the xz libraries. Red Hat urges all Fedora Rawhide users to immediately cease using the distribution for both work and personal activities until the issue is resolved. Plans are underway to revert Fedora Rawhide to the safer xz-5.4.x version, after which it will be safe to redeploy Fedora Rawhide instances. Although Fedora Linux 40 builds have not been confirmed to be compromised, Red Hat advises users to downgrade to a 5.4 build as a precautionary measure. An update reverting xz to 5.4.x has been released and is being distributed to Fedora Linux 40 users through the normal update system. Users can expedite the update by following instructions provided by Red Hat. Further reader submissions: xz/liblzma Backdoored, Facilitating ssh Compromise; Malicious Code Discovered in Popular XZ Utils.

Read more of this story at Slashdot.

LinkedIn is testing support for short-form videos to help it compete with TikTok, YouTube Shorts, Instagram Reels, and other social media platforms. "[W]e are testing new ways to help members more easily discover timely, relevant videos to watch on LinkedIn," Suzi Owens, a company spokesperson, tells Axios in an email. From the report: A new "Video" option will appear next to the "Home" button at the bottom of the app's navigation bar, per a demo of the feature shared online by Austin Null, strategy director at creative agency McKinney. After tapping it, viewers are led to a feed of short-form videos similar to Instagram Reels and TikTok.

Read more of this story at Slashdot.

Victoria Song reports via The Verge: When Gmail launched with a goofy press release 20 years ago next week, many assumed it was a hoax. The service promised a gargantuan 1 gigabyte of storage, an excessive quantity in an era of 15-megabyte inboxes. It claimed to be completely free at a time when many inboxes were paid. And then there was the date: the service was announced on April Fools' Day, portending some kind of prank. But soon, invites to Gmail's very real beta started going out -- and they became a must-have for a certain kind of in-the-know tech fan. At my nerdy high school, having one was your fastest ticket to the cool kids' table. I remember trying to track one down for myself. I didn't know whether I actually needed Gmail, just that all my classmates said Gmail would change my life forever. Teenagers are notoriously dramatic, but Gmail did revolutionize email. It reimagined what our inboxes were capable of and became a central part of our online identities. The service now has an estimated 1.2 billion users -- about 1/7 of the global population -- and these days, it's a practical necessity to do anything online. It often feels like Gmail has always been here and always will be. But 20 years later, I don't know anyone who's champing at the bit to open up Gmail. Managing your inbox is often a chore, and other messaging apps like Slack and WhatsApp have come to dominate how we communicate online. What was once a game-changing tool sometimes feels like it's been sidelined. In another 20 years, will Gmail still be this central to our lives? Or will it -- and email -- be a thing of the past?

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: NYC's "MyCity" ChatBot was rolled out as a "pilot" program last October. The announcement touted the ChatBot as a way for business owners to "save ... time and money by instantly providing them with actionable and trusted information from more than 2,000 NYC Business web pages and articles on topics such as compliance with codes and regulations, available business incentives, and best practices to avoid violations and fines." But a new report from The Markup and local nonprofit news site The City found the MyCity chatbot giving dangerously wrong information about some pretty basic city policies. To cite just one example, the bot said that NYC buildings "are not required to accept Section 8 vouchers," when an NYC government info page says clearly that Section 8 housing subsidies are one of many lawful sources of income that landlords are required to accept without discrimination. The Markup also received incorrect information in response to chatbot queries regarding worker pay and work hour regulations, as well as industry-specific information like funeral home pricing. Further testing from BlueSky user Kathryn Tewson shows the MyCity chatbot giving some dangerously wrong answers regarding treatment of workplace whistleblowers, as well as some hilariously bad answers regarding the need to pay rent. MyCity's Microsoft Azure-powered chatbot uses a complex process of statistical associations across millions of tokens to essentially guess at the most likely next word in any given sequence, without any real understanding of the underlying information being conveyed. That can cause problems when a single factual answer to a question might not be reflected precisely in the training data. In fact, The Markup said that at least one of its tests resulted in the correct answer on the same query about accepting Section 8 housing vouchers (even as "ten separate Markup staffers" got the incorrect answer when repeating the same question). The MyCity Chatbot -- which is prominently labeled as a "Beta" product -- does tell users who bother to read the warnings that it "may occasionally produce incorrect, harmful or biased content" and that users should "not rely on its responses as a substitute for professional advice." But the page also states front and center that it is "trained to provide you official NYC Business information" and is being sold as a way "to help business owners navigate government." NYC Office of Technology and Innovation Spokesperson Leslie Brown told The Markup that the bot "has already provided thousands of people with timely, accurate answers" and that "we will continue to focus on upgrading this tool so that we can better support small businesses across the city."

Read more of this story at Slashdot.

According to The Information (paywalled), Microsoft and OpenAI are planning a $100 billion datacenter project that will include an artificial intelligence supercomputer called "Stargate." Reuters reports: The Information reported that Microsoft would likely be responsible for financing the project, which would be 100 times more costly than some of the biggest current data centers, citing people involved in private conversations about the proposal. OpenAI's next major AI upgrade is expected to land by early next year, the report said, adding that Microsoft executives are looking to launch Stargate as soon as 2028. The proposed U.S.-based supercomputer would be the biggest in a series of installations the companies are looking to build over the next six years, the report added. The Information attributed the tentative cost of $100 billion to a person who spoke to OpenAI CEO Sam Altman about it and a person who has viewed some of Microsoft's initial cost estimates. It did not identify those sources. Altman and Microsoft employees have spread supercomputers across five phases, with Stargate as the fifth phase. Microsoft is working on a smaller, fourth-phase supercomputer for OpenAI that it aims to launch around 2026, according to the report. Microsoft and OpenAI are in the middle of the third phase of the five-phase plan, with much of the cost of the next two phases involving procuring the AI chips that are needed, the report said. The proposed efforts could cost in excess of $115 billion, more than three times what Microsoft spent last year on capital expenditures for servers, buildings and other equipment, the report stated.

Read more of this story at Slashdot.

U.S. users have just a few more days to make the transition from Google Podcasts as the company moves forward with the process of discontinuing the service globally. From a report: Google is currently sending in-app notifications to users in the U.S. that starting April 2nd they will no longer be able to use Google Podcasts and is recommending to export subscriptions to YouTube Music. The Google Podcasts streaming service launched six years ago. It's app has more than 500 million downloads on Google Play and apart from offering a large selection of podcasts it also allows subscribing to favorite channels, downloading and playing on various devices. The service integrates with Google's ecosystem, providing users with personalized recommendations based on interests, listening history, and preferences.

Read more of this story at Slashdot.

Anton Shilov reports via Tom's Hardware: About half of the processors packaged in Russia are defective. This has prompted Baikal Electronics, a Russian processor developer, to expand the number of packaging partners in the country, according to a report in Vedomosti, a Russian-language business daily newspaper published in Moscow (hat tip to Cnews). In addition to GS Group based in Kaliningrad, the company will now use Milandr and Mikron, which are based in Zelenograd, a town near Moscow. What remains unclear is which foundry initially produces the chips for Baikal. [...] There are no contract chipmakers in Russia that can process wafers on 28nm-class fabrication technologies, so Baikal is likely using a Chinese foundry to make its processors. Since 2021, the company has been experimenting with localizing chip packaging at GS Group in Kaliningrad. But transitioning to local packaging has not been smooth. The process is intricate and costly, leading to a high rate of defects. According to industry insiders, more than half of the chip batches end up being defective due to issues with equipment calibration and the lack of skilled personnel. It turns out that GS Group cannot fulfill the demands of Baikal, which has now tapped Milandr and Mikron to assist with chip packaging. Apparently, it hasn't helped much. "More than half of the chip batches turn out to be defective," a source familiar with the matter told Vedomosti. "The reasons lie in both the equipment of the enterprises, which needs to be properly configured, and the insufficient competencies of the people involved in chip packaging." "Russia can package a small number of processors, but when it comes to a series, a lot of defects appear," explained one of the newspaper's sources. "Manufacturers cannot maintain a consistently high level across all products."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Axios: OpenAI said on Friday it's allowed a small number of businesses to test a new tool that can recreate a person's voice from just a 15-second recording. The company said it is taking "a cautious and informed approach" to releasing the program, called Voice Engine, more broadly given the high risk of abuse presented by synthetic voice generators. Based on the 15-second recording, the program can create a "emotive and realistic" natural-sounding voice that closely resembles the original speaker. This synthetic voice can then be used to read text inputs, even if the text isn't in the original speaker's native language. In one example offered by the company, an English speaker's voice was translated into Spanish, Mandarin, German, French and Japanese while preserving the speaker's native accent. OpenAI said Voice Engine has so far been used to provide reading assistance to non-readers, translate content and to help people who are non-verbal. It said the program has already been used in its text-to-speech application and its ChatGPT Voice and Read Aloud tool. "We hope to start a dialogue on the responsible deployment of synthetic voices, and how society can adapt to these new capabilities," the company said. "Based on these conversations and the results of these small scale tests, we will make a more informed decision about whether and how to deploy this technology at scale."

Read more of this story at Slashdot.

Abstract of a paper on Nature: Online media is important for society in informing and shaping opinions, hence raising the question of what drives online news consumption. Here we analyse the causal effect of negative and emotional words on news consumption using a large online dataset of viral news stories. Specifically, we conducted our analyses using a series of randomized controlled trials (N=22,743). Our dataset comprises ~105,000 different variations of news stories from Upworthy.com that generated 5.7 million clicks across more than 370 million overall impressions. Although positive words were slightly more prevalent than negative words, we found that negative words in news headlines increased consumption rates (and positive words decreased consumption rates). For a headline of average length, each additional negative word increased the click-through rate by 2.3%. Our results contribute to a better understanding of why users engage with online media.

Read more of this story at Slashdot.

Andres Freund has posted a detailed investigation into a backdoor that was shipped with versions 5.6.0 and 5.6.1 of the xz compression utility. It appears that the malicious code may be aimed at allowing SSH authentication to be bypassed.

I have not yet analyzed precisely what is being checked for in the injected code, to allow unauthorized access. Since this is running in a pre-authentication context, it seems likely to allow some form of access or other form of remote code execution.

The affected versions are not yet widely shipped, but checking systems for the bad version would be a good idea.

Update: there are advisories out now from Arch, Debian, Red Hat, and openSUSE.

A further update from openSUSE:

For our openSUSE Tumbleweed users where SSH is exposed to the internet we recommend installing fresh, as it’s unknown if the backdoor has been exploited. Due to the sophisticated nature of the backdoor an on-system detection of a breach is likely not possible. Also rotation of any credentials that could have been fetched from the system is highly recommended.

When a long-term memory forms, some brain cells experience a rush of electrical activity so strong that it snaps their DNA. Then, an inflammatory response kicks in, repairing this damage and helping to cement the memory, a study in mice shows. Nature: The findings, published on 27 March in Nature, are "extremely exciting," says Li-Huei Tsai, a neurobiologist at the Massachusetts Institute of Technology in Cambridge who was not involved in the work. They contribute to the picture that forming memories is a "risky business," she says. Normally, breaks in both strands of the double helix DNA molecule are associated with diseases including cancer. But in this case, the DNA damage-and-repair cycle offers one explanation for how memories might form and last. It also suggests a tantalizing possibility: this cycle might be faulty in people with neurodegenerative diseases such as Alzheimer's, causing a build-up of errors in a neuron's DNA, says study co-author Jelena Radulovic, a neuroscientist at the Albert Einstein College of Medicine in New York City. [...] To better understand the part these DNA breaks play in memory formation, Radulovic and her colleagues trained mice to associate a small electrical shock with a new environment, so that when the animals were once again put into that environment, they would 'remember' the experience and show signs of fear, such as freezing in place. Then the researchers examined gene activity in neurons in a brain area key to memory -- the hippocampus. They found that some genes responsible for inflammation were active in a set of neurons four days after training. Three weeks after training, the same genes were much less active.

Read more of this story at Slashdot.

Algorithms might help hotels illegally collude on prices, even if no humans from those businesses actually talk to each other about them, according to US antitrust enforcers. From a report: The Department of Justice and Federal Trade Commission jointly submitted a statement of interest in Cornish-Adebiyi v. Caesars Entertainment, a case brought before the US District Court of New Jersey. The class action case was brought by New Jersey residents who rented rooms in Atlantic City hotels and alleged that several of those hotels engaged in an illegal price-fixing conspiracy through the use of a common pricing algorithm. The plaintiffs are trying to show that the hotels violated Section 1 of the Sherman Act, which prohibits "conspiracy in restraint of trade" and is used to prosecute illegal price-fixing. They say that the hotels allegedly used a pricing algorithm platform called Rainmaker, knowing that their competitors were also using the platform and choosing it for that reason. The agencies really care about how this issue is handled. "Judicial treatment of the use of algorithms in price fixing has tremendous practical importance," the DOJ and FTC write in their statement.

Read more of this story at Slashdot.

Hillary Clinton and U.S. election officials said they are concerned disinformation generated and spread by AI could threaten the 2024 presidential election [non-paywalled link]. WSJ: Clinton, a former secretary of state and 2016 presidential candidate, said she thinks foreign actors like Russian President Vladimir Putin could use AI to interfere in elections in the U.S. and elsewhere. Dozens of countries are running elections this year. "Anybody who's not worried is not paying attention," Clinton said Thursday at Columbia University, where election officials and tech executives discussed how AI could impact global elections. She added: "It could only be a very small handful of people in St. Petersburg or Moldova or wherever they are right now who are lighting the fire, but because of the algorithms everyone gets burned." Clinton said Putin tried to undermine her before the 2016 election by spreading disinformation on Facebook, Twitter and Snapchat about "all these terrible things" she purportedly did. "I don't think any of us understood it," she said. "I did not understand it. I can tell you my campaign did not understand it. The so-called dark web was filled with these kinds of memes and stories and videos of all sorts portraying me in all kinds of less than flattering ways." Clinton added: "What they did to me was primitive and what we're talking about now is the leap in technology."

Read more of this story at Slashdot.

The US has seen a significant increase in student absenteeism since the pandemic closed schools four years ago, with an estimated 26% of public school students considered chronically absent in the last school year, up from 15% before the pandemic, according to data from 40 states and Washington, D.C. A report adds: The increases have occurred in districts big and small, and across income and race. For districts in wealthier areas, chronic absenteeism rates have about doubled, to 19 percent in the 2022-23 school year from 10 percent before the pandemic, a New York Times analysis of the data found. Poor communities, which started with elevated rates of student absenteeism, are facing an even bigger crisis: Around 32 percent of students in the poorest districts were chronically absent in the 2022-23 school year, up from 19 percent before the pandemic. Even districts that reopened quickly during the pandemic, in fall 2020, have seen vast increases.

Read more of this story at Slashdot.

Former U.S. Treasury Secretary Larry Summers, now on the board of ChatGPT developer OpenAI, believes that while AI has the potential to revolutionize the economy, its impact will take time to materialize. However, Summers maintains that AI could be the biggest economic development since the Industrial Revolution, eventually replacing most forms of human labor, particularly cognitive tasks. He said: "If one takes a view over the next generation, this could be the biggest thing that has happened in economic history since the Industrial Revolution,"he added. "This offers the prospect of not replacing some forms of human labor, but almost all forms of human labor." From building homes to making medical diagnoses, Summers predicted that AI will eventually be able to do nearly every human job, particularly white collar workers' "cognitive labor."

Read more of this story at Slashdot.

An anonymous reader shares a report: Mutterings of alarm are emerging from the cloisters of Red Hat after the world's largest management consultancy was hired to help the IBM subsidiary focus engineers on their highest-value work. Red Hat confirmed the partnership with McKinsey & Company to The Reg, sharing this extract from an email from CTO Chris Wright to the Global Engineering Team: "Hey everyone -- as I mentioned during the recent Q1 All Hands, my goal is to have Global Engineering recognized as the world's greatest open-source software engineering organization. This team is already doing amazing work, and we have several initiatives in progress to help us achieve the goal I've set. One of those is a partnership with McKinsey. The objective of this project is to help us understand and incorporate learnings on working models, development practices, and tooling from across the software industry. "We've heard your feedback in person, during All Hands, and through RHAS [the annual Red Hat Associate Survey]. This project will help us to identify and remove mundane tasks that drain your energy so that you can focus on the most engaging and highest value work â" to make your job better. The work with McKinsey is one piece of the overall plan to help us become the world's greatest open-source software engineering organization"

Read more of this story at Slashdot.

Radicle is a new, peer-to-peer, MIT/Apache-licensed collaboration platform written in Rust and built on top of Git. It adds support for issues and pull requests (which Radicle calls "patches") on top of core Git, which are stored in the Git repository itself. Unlike GitHub, GitLab, and similar forges, Radicle is distributed; it doesn't rely on having everyone use the same server. Instead, Radicle instances form a network that synchronizes changes between nodes.

Security updates have been issued by Debian (chromium), Fedora (apache-commons-configuration, chromium, csmock, ofono, onnx, php-tcpdf, and podman-tui), Mageia (curl), Oracle (libreoffice), Slackware (coreutils, seamonkey, and util), SUSE (minidlna, PackageKit, and podman), and Ubuntu (linux-azure-6.5 and linux-intel-iotg, linux-intel-iotg-5.15).

An anonymous reader quotes a report from GamingOnLinux: After repeatedly suffering issues with scam apps making it onto the Snap Store, Canonical maker of Ubuntu Linux have now decided to manually look over submissions. I've covered the issues with the Snap Store a few times now like on March 19th when ten scam crypto apps appeared, got taken down and then reappeared under a different publisher. Also earlier back in February there was an issue where a user actually lost their wallet as a result of a fake app. Multiple fake apps were also put up back in October last year as well, so it was a repeating issue that really needed dealing with properly. So to try and do something about it, Canonical's Holly Hall has posted on their Discourse forum about how "The Store team and other engineering teams within Canonical have been continuously monitoring new snaps that are being registered, to detect potentially malicious actors" and that they will now do manual reviews whenever people try to register "a new snap name." On top of that soon they will also be releasing a new policy regarding "crypto-wallet and other sensitive snaps" with "guidelines for how to publish such a snap." Currently all of this is not supposed to be long-term, as it's an evolving situation.

Read more of this story at Slashdot.