Linux fréttir

"A group of researchers from the University of California, Irvine, have developed a way to use the sensors in high-quality optical mice to capture subtle vibrations and convert them into audible data," reports Tom's Hardware: [T]he high polling rate and sensitivity of high-performance optical mice pick up acoustic vibrations from the surface where they sit. By running the raw data through signal processing and machine learning techniques, the team could hear what the user was saying through their desk. Mouse sensors with a 20,000 DPI or higher are vulnerable to this attack. And with the best gaming mice becoming more affordable annually, even relatively affordable peripherals are at risk.... [T]his compromise does not necessarily mean a complicated virus installed through a backdoor — it can be as simple as an infected FOSS that requires high-frequency mouse data, like creative apps or video games. This means it's not unusual for the software to gather this data. From there, the collected raw data can be extracted from the target computer and processed off-site. "With only a vulnerable mouse, and a victim's computer running compromised or even benign software (in the case of a web-based attack surface), we show that it is possible to collect mouse packet data and extract audio waveforms," the researchers state. The researchers created a video with raw audio samples from various stages in their pipeline on an accompanying web site where they calculate that "the majority of human speech" falls in a frequency range detectable by their pipeline. While the collected signal "is low-quality and suffers from non-uniform sampling, a non-linear frequency response, and extreme quantization," the researchers augment it with "successive signal processing and machine learning techniques to overcome these challenges and achieve intelligible reconstruction of user speech." They've titled their paper Invisible Ears at Your Fingertips: Acoustic Eavesdropping via Mouse Sensors. The paper's conclusion? "The increasing precision of optical mouse sensors has enhanced user interface performance but also made them vulnerable to side-channel attacks exploiting their sensitivity." Thanks to Slashdot reader jjslash for sharing the article.

Read more of this story at Slashdot.

"More than 800,000 drivers for ride-hailing companies in California will soon be able to join a union," reports the Associated Press, "and bargain collectively for better wages and benefits under a measure signed Friday by Gov. Gavin Newsom." Supporters said the new law will open a path for the largest expansion of private sector collective bargaining rights in the state's history. The legislation is a significant compromise in the yearslong battle between labor unions and tech companies. California is the second state where Uber and Lyft drivers can unionize as independent contractors. Massachusetts voters passed a ballot referendum in November allowing unionization, while drivers in Illinois and Minnesota are pushing for similar rights... The collective bargaining measure now allows rideshare workers in California to join a union while still being classified as independent contractors and requires gig companies to bargain in good faith. "The new law doesn't apply to drivers for delivery apps like DoorDash."

Read more of this story at Slashdot.

ScienceAlert writes that some of the tiny nanoplastic fragments present in soil "can make their way into the edible parts of vegetables, research has found." A team of scientists from the University of Plymouth in the UK placed radishes into a hydroponic (water-based) system containing polystyrene nanoparticles. After five days, almost 5% of the nanoplastics had made their way into the radish roots. A quarter of those were in the edible, fleshy roots, while a tenth had traveled up to the higher leafy shoots, despite anatomical features within the plants that typically screen harmful material from the soil. "Plants have a layer within their roots called the Casparian strip, which should act as a form of filter against particles, many of which can be harmful," says physiologist Nathaniel Clark. "This is the first time a study has demonstrated nanoplastic particles could get beyond that barrier, with the potential for them to accumulate within plants and be passed on to anything that consumes them...." There are some limitations to the study, as it didn't use a real-world farming setup. The concentration of plastics in the liquid solution is higher than estimated for soil, and only one type of plastic and one kind of vegetable were tested. Nevertheless, the basic principle stands: the smallest plastic nanoparticles can apparently sneak past protective barriers in plants, and from there into the food we eat... "There is no reason to believe this is unique to this vegetable, with the clear possibility that nanoplastics are being absorbed into various types of produce being grown all over the world," says Clark. The research has been published in Environmental Research.

Read more of this story at Slashdot.

"It's not just you. The internet is getting worse, fast," writes Cory Doctorow. Sunday he shared an excerpt from his upcoming book Enshittification: Why Everything Suddenly Got Worse and What to Do About It. He succinctly explains "this moment we're living through, this Great Enshittening" using Amazon as an example. Platforms amass users, but then abuse them to make things better for their business customers. And then they abuse those business customers too, abusing everybody while claiming all the value for themselves. "And become a giant pile of shit." So first Amazon subsidized prices and shipping, then locked in customers with Prime shipping subscriptions (while adding the chains of DRM to its ebooks and audiobooks)... These tactics — Prime, DRM and predatory pricing — make it very hard not to shop at Amazon. With users locked in, to proceed with the enshittification playbook, Amazon needed to get its business customers locked in, too... [M]erchants' dependence on those customers allows Amazon to extract higher discounts from those merchants, and that brings in more users, which makes the platform even more indispensable for merchants, allowing the company to require even deeper discounts... [Amazon] uses its overview of merchants' sales, as well as its ability to observe the return addresses on direct shipments from merchants' contracting factories, to cream off its merchants' bestselling items and clone them, relegating the original seller to page umpty-million of its search results. Amazon also crushes its merchants under a mountain of junk fees pitched as optional but effectively mandatory. Take Prime: a merchant has to give up a huge share of each sale to be included in Prime, and merchants that don't use Prime are pushed so far down in the search results, they might as well cease to exist. Same with Fulfilment by Amazon, a "service" in which a merchant sends its items to an Amazon warehouse to be packed and delivered with Amazon's own inventory. This is far more expensive than comparable (or superior) shipping services from rival logistics companies, and a merchant that ships through one of those rivals is, again, relegated even farther down the search rankings. All told, Amazon makes so much money charging merchants to deliver the wares they sell through the platform that its own shipping is fully subsidised. In other words, Amazon gouges its merchants so much that it pays nothing to ship its own goods, which compete directly with those merchants' goods.... Add all the junk fees together and an Amazon seller is being screwed out of 45-51 cents on every dollar it earns there. Even if it wanted to absorb the "Amazon tax" on your behalf, it couldn't. Merchants just don't make 51% margins. So merchants must jack up prices, which they do. A lot... [W]hen merchants raise their prices on Amazon, they are required to raise their prices everywhere else, even on their own direct-sales stores. This arrangement is called most-favoured-nation status, and it's key to the U.S. Federal Trade Commission's antitrust lawsuit against Amazon... If Amazon is taxing merchants 45-51 cents on every dollar they make, and if merchants are hiking their prices everywhere their goods are sold, then it follows you're paying the Amazon tax no matter where you shop — even the corner mom-and-pop hardware store. It gets worse. On average, the first result in an Amazon search is 29% more expensive than the best match for your search. Click any of the top four links on the top of your screen and you'll pay an average of 25% more than you would for your best match — which, on average, is located 17 places down in an Amazon search result. Doctorow knows what we need to do: Ban predatory pricing — "selling goods below cost to keep competitors out of the market (and then jacking them up again)." Impose structural separation, "so it can either be a platform, or compete with the sellers that rely on it as a platform." Curb junk fees, "which suck 45-51 cents on every dollar merchants take in." End its most favoured nation deal, which forces merchants "to raise their prices everywhere else, too. Unionise drivers and warehouse workers. Treat rigged search results as the fraud they are. These are policy solutions. (Because "You can't shop your way out of a monopoly," Doctorow warns.) And otherwise, as Doctorow says earlier, "Once a company is too big to fail, it becomes too big to jail, and then too big to care." In the mean time, Doctorow also makes up a new word — "the enshitternet" — calling it "a source of pain, precarity and immiseration for the people we love. "The indignities of harassment, scams, disinformation, surveillance, wage theft, extraction and rent-seeking have always been with us, but they were a minor sideshow on the old, good internet and they are the everything and all of the enshitternet." Thanks to long-time Slashdot readers mspohr and fjo3 for sharing the article.

Read more of this story at Slashdot.

Friday OpenAI CEO Sam Altman announced two changes coming "soon" to Sora: First, we will give rightsholders more granular control over generation of characters, similar to the opt-in model for likeness but with additional controls... Second, we are going to have to somehow make money for video generation. People are generating much more than we expected per user, and a lot of videos are being generated for very small audiences. We are going to try sharing some of this revenue with rightsholders who want their characters generated by users. The exact model will take some trial and error to figure out, but we plan to start very soon. Our hope is that the new kind of engagement is even more valuable than the revenue share, but of course we we want both to be valuable. "We are hearing from a lot of rightsholders who are very excited for this new kind of 'interactive fan fiction'," Altman wrote, "and think this new kind of engagement will accrue a lot of value to them, but want the ability to specify how their characters can be used (including not at all)."

Read more of this story at Slashdot.

There's an 85-second ad (starring a humanoid robot) that argues "Technology promised to save us time. Instead it stole our focus. Opera Neon gives you both back." Or, as BleepingComputer describes it, Opera Neon "is a new browser that puts AI in control of your tabs and browsing activities, but it'll cost $19.90 per month." It'll do tasks for you, open websites for you, manage tabs for you, and listen to you. The idea behind these agentic browsers is to put AI in control. "Neon acts at your command, opening tabs, conducting research, finding the best prices, assessing security, whatever you need. It delivers outcomes you can use, share, and build on," Opera noted... As spotted on X, Opera Neon, the premium AI browser for Windows & macOS, costs $59.90 for nine months. Opera neon invite. This is an early bird offer, but when the offer expires, Opera Neon will cost $19.90 per month. The browser's web page says Opera Neon "can handle everyday tasks for you, like filling in forms, placing orders, replying to emails, or tidying up files. Reusable cards turn repeated chores into single-step tasks, letting you focus on the work that matters most to you." Opera describes itself as "the company that gave you tabs..."

Read more of this story at Slashdot.

The Washington Post notes AI's "increasingly outsize role" in propping up America's economic fortunes. "Last week, the United States reported that the economy expanded at a rate of 1.6 percent in the first half of the year, with most of that growth driven by AI spending. Without AI investment, growth would have been at about a third of that rate, according to data from the Bureau of Economic Analysis." The huge economic influence of AI spending illustrates how Silicon Valley is placing a bet of unprecedented scale that the technology will revolutionize every aspect of life and work. Its sway suggests there will be economic damage far beyond Silicon Valley if that bet doesn't work out or companies pull back. Google, Meta, Microsoft and Amazon are on track to spend nearly $400 billion this year on data centers... Concern about a potential bubble in AI investment has recently grown in technology and financial circles. ChatGPT and other AI tools are hugely popular with companies and consumers, and hundreds of billions of dollars has been sunk into AI ventures over the past three years. But few of the new initiatives are profitable, and huge profits will be needed for the immense investments to pay off... "I'm getting more and more skeptical and more and more concerned with what's happening" with artificial intelligence, said Andrew Odlyzko, an economic historian and University of Minnesota emeritus professor who has studied financial bubbles closely, including the telecom bubble that collapsed in 2001 as part of the dot-com crash. Some industry insiders have expressed concern that the latest AI releases have fallen short of expectations, suggesting the technology may not advance enough to pay back the huge investments being made, he said. "AI is a craze," Odlyzko said... [The Federal Reserve's August "beige book" summarizes interviews with business owners across the country, according to the article — and it found surging investments in AI data centers, which could tie their fortunes to other sectors.] That's boosting demand for electricity and trucking in the Atlanta region, a hot spot for the facilities, and creating new projects for commercial real estate developers in the Philadelphia region. Because tech companies now dominate public markets, any change in their fortunes and share prices can also have a powerful influence on stock indexes, 401(k)s and the wider economy... Stock market slumps can have knock-on effects by undercutting the confidence of American businesses and consumers, leading them to spend less, said Gregory Daco [chief economist at strategy consulting firm EY-Parthenon]... "That directly affects economic activity," he said, potentially widening the economic fallout... Goldman Sachs analysts wrote in a Sept. 4 note to clients that even if AI investment works out for companies like Google, there will be an "inevitable slowdown" in data center construction. That will cut revenue to companies providing the projects with chips and electricity, the note said. In a more extreme scenario where Big Tech pulls back spending to 2022 levels, the entire S&P 500 would lose 30 percent of the revenue growth Wall Street currently expects next year, the analysts wrote. The AI bubble is 17 times the size of the dot-com frenzy — and four times the subprime bubble, according to estimates in a recent note from independent research firm the MacroStrategy Partnership (as reported by MarketWatch). And "never before has so much money been spent so rapidly on a technology that, for all its potential, remains somewhat unproven as a profit-making business model," writes Bloomberg, adding that OpenAI and other large tech companies are "relying increasingly on debt to support their unprecedented spending." (Although Bloomberg also notes that ChatGPT alone has roughly 700 million weekly users, and that last month Anthropic reported roughly three quarters of companies are using Claude to automate work.)

Read more of this story at Slashdot.