news aggregator

German publishers and advertising groups are urging regulators to fine Apple over its App Tracking Transparency (ATT) system, arguing it unfairly restricts access to advertising data while allowing Apple to remain the central gatekeeper -- without subjecting its own apps to the same restrictions. If Germany's antitrust authority does rule against Apple, the company could face fines of up to 10% of its global revenue. 9to5Mac reports: One of the countries investigating whether ATT is anticompetitive is Germany. Last year, in an attempt to appease the country's antitrust watchdog, the company proposed several changes to the framework's rules. From Reuters' original coverage of Apple's changes proposals: "Apple had agreed to introduce neutral consent prompts for both its own services and third-party apps, and to largely align the wording, content and visual design of these messages, said Andreas Mundt, head of Germany's Bundeskartellamt. The company also proposed simplifying the consent process so developers can obtain user permission for advertising-related data processing in a way that complies with data protection law." [...] At the time, German regulators launched a consultation with industry publications to determine whether the proposals addressed their concerns. As it turns out, the answer was a hard no. As Reuters reported today: "Apple's proposed changes to its app tracking rules do not resolve antitrust issues in the mobile advertising market, associations representing German publishers and advertisers said on Tuesday as they urged the country's antitrust authority to slap a fine on the U.S. tech giant. [...] 'The proposed commitments would not change the negative effects of the App Tracking Transparency Framework,' Bernd Nauen, chief executive of the German Advertising Federation, said in a joint letter signed by the trade bodies. 'Apple would remain the data gatekeeper and would continue to decide who gets access to advertising-relevant data and how companies can communicate with their end customers,' he said."

Read more of this story at Slashdot.

Big Red waves new features including vector support, while skeptics await concrete timescales

Oracle has proposed a more transparent approach to developing its open source database MySQL, including new features supporting vectors.…

Low-cost computers bashed by billion-dollar investment in AI infrastructure

Chromebooks, the low-cost computing option popular with education buyers, will be squeezed hardest this year as memory prices spiral out of control.…

Don't celebrate yet – more states are considering them

As more US states push to mandate OS-level age checks, System76 is taking its fight directly to lawmakers.…

Private equity firm EQT AB is reportedly exploring a sale of SUSE that could value the open-source Linux pioneer at up to $6 billion, roughly doubling the valuation since EQT took the company private in 2023. Reuters reports: EQT "has hired investment bank Arma Partners to sound out a group of private equity investors for a possible sale of the company, said the sources, who requested anonymity to discuss confidential matters. The deliberations are at "an early stage and there is no certainty that EQT will proceed with "a transaction, the sources said. [...] The potential deal comes amid a broader selloff in software stocks, which has disrupted mergers and acquisitions activity. Investors are "concerned that new artificial intelligence tools could displace many existing software products, weighing on technology "valuations and making deals harder to price. Some investors, however, see Luxembourg-headquartered SUSE as a potential beneficiary of AI adoption, arguing that demand for enterprise-grade infrastructure software is likely to grow as companies build and deploy more AI applications. The company generates about $800 million in revenue and more than $250 million in earnings before interest, taxes, depreciation, and amortization (EBITDA) and could fetch between $4 billion and $6 billion in a sale, the sources said.

Read more of this story at Slashdot.

Russian-speaking attackers lure HR staff into downloading ISO files that disable defenses

A Russian-speaking cyber criminal is targeting corporate HR teams with fake CVs that quietly install malware which can disable security tools before stealing data from infected machines.…

Warning, lockout, then wipe if your device trips detection

Microsoft is removing Entra credentials for school and work from jailbroken and rooted devices running iOS and Android.…

An anonymous reader quotes a report from Ars Technica: This week, tens of thousands of game developers and producers will once again gather in San Francisco, as they have since 1988, for the weeklong Game Developers Conference. But this year's show will be missing many international developers who say they no longer feel comfortable traveling to the United States to attend, no matter how relevant the show is to their work and careers. Dozens of those developers who spoke to Ars in recent months say they're wary of traveling to a country that has shown a callous disregard for -- or outright hostility toward -- the safety of international travelers. That's especially true for developers from various minority groups, those with transgender identities, and those who feel they could be targeted for outspoken political beliefs. "I honestly don't know anyone who is not from the U.S. who is planning on going to the next GDC," Godot Foundation Executive Director Emilio Coppola, who's based in Spain, told Ars. "We never felt super safe, but now we are not willing to risk it." "I honestly don't know anyone who is not from the U.S. who is planning on going to the next GDC," says Godot Foundation Executive Director Emilio Coppola, who's based in Spain. "We never felt super safe, but now we are not willing to risk it." "Hearing European citizens getting arrested by border control over their views on the U.S. is not something I would like to test for myself," adds Nazih Fares, a French-Lebanese citizen and creative director at indie studio Le Cabinet du Savoir.. Many of the developers who spoke to Ars cite the intrusive questioning, racial profiling, and other horror stories reported at the U.S. border. "I read a few long reads about how UK/German tourists ended up detained, and that was the final straw for me," Austrian-based Cohop Game founder Eline Muijres said. "It doesn't feel safe for me." Domini Gee, a Canadian game writer and narrative designer echoed that concern, adding: "There's no shortage of stories... about the risk of detainment, deportation, phones being searched... the consequences if I'm not [OK] could be high."

Read more of this story at Slashdot.

Crooks used simple phone scam to compromise vendor account, spilling personal and financial data belonging to more than 15,000 people

A voice-phishing scam targeting one of Ericsson's service providers has exposed the personal data of more than 15,000 individuals after attackers sweet-talked an employee into handing over access.…

Digital freedom needs a Kali Linux for the rest of us

Opinion The hacker mind is a curious way to be. To have it means to embody endless analytical curiosity, an awareness of any given rule set as just one system among many, and an ability to see any system in ways that its creators never expected. Combine this with a drive to find the bad and make things better, and you become one of the fundamental forces of the technological universe.…

Kids profited from tools used to attack popular websites, say officials

Polish police have referred seven suspected juvenile cybercriminals to family court over an alleged scheme to flog DDoS kits online.…

Analog video spied by looking really, really closely at tracks

A retro tech enthusiast has demonstrated that it is possible to view media on LaserDisc using a relatively inexpensive digital microscope.…

Aircraft on the ground briefly halted until systems were up again

JetBlue took the unusual step of requesting a groundstop for all flights this morning, with the US airline resuming operations less than an hour later and blaming the stop on "a brief system outage."…

The FBI is investigating a breach affecting systems tied to wiretapping and surveillance warrant data, after abnormal logs revealed possible unauthorized access to law-enforcement-sensitive information. "The FBI identified and addressed suspicious activities on FBI networks, and we have leveraged all technical capabilities to respond," a spokesperson for the bureau said. "We have nothing additional to provide." The Register reports: [W]hile the FBI declined to provide any additional information, it's worth noting that China's Salt Typhoon previously compromised wiretapping systems used by law enforcement. Salt Typhoon is the PRC-backed crew that famously hacked major US telecommunications firms and stole information belonging to nearly every American. According to the Associated Press, the FBI notified Congress that it began investigating the breach on February 17 after spotting abnormal log information related to a system on its network. "The affected system is unclassified and contains law enforcement sensitive information, including returns from legal process, such as pen register and trap and trace surveillance returns, and personally identifiable information pertaining to subjects of FBI investigations," the notification said.

Read more of this story at Slashdot.

Autonomous assistants could manipulate choices, push pricier deals, and prioritize their creators

Britain's competition watchdog says the next wave of agentic AI assistants could end up nudging people toward worse deals, manipulating choices, or quietly prioritizing the interests of the companies behind them.…

As Citrix slips out a preview of Xen Server 9, the release that brings it back to the V12N mainstream

The Xen Project has decided to support all releases of its flagship hypervisor for five years, and one of the first beneficiaries of the change is Citrix, which has delivered a preview of XenServer 9 – the release that will take the product back into the mainstream virtualization market.…

A startup called Reflect Orbital wants to launch thousands of mirror-bearing satellites to reflect sunlight onto Earth at night and "power solar farms after sunset, provide lighting for rescue workers and illuminate city streets, among other things," reports the New York Times. From the report: It is an idea seemingly out of a sci-fi movie, but the company, Reflect Orbital of Hawthorne, Calif., could soon receive permission to launch its first prototype satellite with a 60-foot-wide mirror. The company has applied to the Federal Communications Commission, which issues the licenses needed to deploy satellites. If the F.C.C. approves, the test satellite could get a ride into orbit as soon as this summer. The F.C.C.'s public comment period on the application closes on Monday. "We're trying to build something that could replace fossil fuels and really power everything," Ben Nowack, Reflect Orbital's chief executive, said in an interview. The company has raised more than $28 million from investors. [...] Reflect Orbital's first prototype, which will be roughly the size of a dorm fridge, is almost complete. Once in space, about 400 miles up, the test satellite would unfurl a square mirror nearly 60 feet wide. That would bounce sunlight to illuminate a circular patch about three miles wide on the Earth's surface. Someone looking up would see a dot in the sky about as bright as a full moon. Two more prototypes could follow within a year. By the end of 2028, Reflect Orbital hopes to launch 1,000 larger satellites, and 5,000 of them by 2030. The largest mirrors are planned to be nearly 180 feet wide, reflecting as much light as 100 full moons. The company said its goal was to deploy the full constellation of 50,000 satellites by 2035. How much does it cost to order sunlight at night? Mr. Nowack said the company would charge about $5,000 an hour for the light of one mirror if a customer signed an annual contract for 1,000 hours or more. Lighting for one-time events and emergencies, which might require numerous satellites and more effort to coordinate, would be more expensive. For solar farms, he envisions splitting revenue from the electricity generated by the additional hours of light.

Read more of this story at Slashdot.

Solar winds near aliens’ homes – and ours – might be blowing away signs of alien technosignatures by broadening signals

The SETI Institute, the nonprofit that conducts a search for extraterrestrial intelligence by examining radio waves for artefacts that are unlikely to be the result of natural processes, thinks it may have been going about it the wrong way.…

An anonymous reader quotes a report from Heise: Pay securely with an Android smartphone, completely without Google services: This is the plan being developed by the newly founded industry consortium led by the German Volla Systeme GmbH. It is an open-source alternative to Google Play Integrity. This proprietary interface decides on Android smartphones with Google Play services whether banking, government, or wallet apps are allowed to run on a smartphone. Obstacles and tips for paying with an Android smartphone without official Google services have been highlighted by c't in a comprehensive article. The European industry consortium now wants to address some problems mentioned. To this end, the group, which includes Murena, which develops the hardened custom ROM /e/OS, Iode from France, and Apostrophy (Dot) from Switzerland, in addition to Volla, is developing a so-called "UnifiedAttestation" for Google-free mobile operating systems, primarily based on the Android Open-Source Project (AOSP). According to Volla, a European manufacturer and a leading manufacturer from Asia, as well as European foundations such as the German UBports Foundation, have also expressed interest in supporting it. Furthermore, developers and publishers of government apps from Scandinavia are examining the use of the new procedure as "first movers." In its announcement, Volla explains that Google provides app developers with an interface called Play Integrity, which checks whether an app is running on a device with specific security requirements. This primarily affects applications from "sensitive areas such as identity verification, banking, or digital wallets -- including apps from governments and public administrations". The company criticizes that the certification is exclusively offered for Google's own proprietary "Stock Android" but not for Android versions without Google services, such as /e/OS or similar custom ROMs. "Since this is closely intertwined with Google services and Google data centers, a structural dependency arises -- and for alternative operating systems, a de facto exclusion criterion," the company states. From the consortium's perspective, this also leads to a "security paradox," because "the check of trustworthiness is carried out by precisely that entity whose ecosystem is to be avoided at the same time". The UnifiedAttestation system is built around three main components: an "operating system service" that apps can call to check whether the device's OS meets required security standards, a decentralized validation service that verifies the OS certificate on a device without relying on a single central authority, and an open test suite used to evaluate and certify that a particular operating system works securely on a specific device model. "We don't want to centralize trust, but organize it transparently and publicly verifiable. When companies check competitors' products, we can strengthen that trust," says Dr. Jorg Wurzer, CEO of Volla Systeme GmbH and initiator of the consortium. The goal is to increase digital sovereignty and break free from the control of any one, single U.S. company, he says.

Read more of this story at Slashdot.

With memory and storage contributing over half the price of a server, Big Green needs to protect its margins

HPE has changed its terms and conditions in ways that allow it to change hardware prices after it’s issued a quote, due to rampant storage and memory price rises.…