Hackers suspected of working on behalf of the Chinese government exploited a maximum-severity vulnerability, which had received a patch 16 months earlier, to compromise a telecommunications provider in Canada, officials from that country and the US said Monday. ArsTechnica: "The Cyber Centre is aware of malicious cyber activities currently targeting Canadian telecommunications companies," officials for the center, the Canadian government's primary cyber security agency, said in a statement. "The responsible actors are almost certainly PRC state-sponsored actors, specifically Salt Typhoon." The FBI issued its own nearly identical statement.

Salt Typhoon is the name researchers and government officials use to track one of several discreet groups known to hack nations all over the world on behalf of the People's Republic of China. In October 2023, researchers disclosed that hackers had backdoored more than 10,000 Cisco devices by exploiting CVE-2023-20198, a vulnerability with a maximum severity rating of 10. Any switch, router, or wireless LAN controller running Cisco's iOS XE that had the HTTP or HTTPS server feature enabled and exposed to the Internet was vulnerable. Cisco released a security patch about a week after security firm VulnCheck published its report.

The U.S. House chief administrative officer has banned WhatsApp from congressional staffers' government devices citing data vulnerability concerns. The cybersecurity office deemed the messaging app "high-risk" due to lack of transparency in data protection, absence of stored data encryption, and potential security risks, according to an email obtained by Axios.

Staff cannot download or keep WhatsApp on any House device, including mobile, desktop, or web browser versions.

The classic VW bus got an all-electric update — but that was just the beginning. Now there's an autonomous driving version (that's intended for commercial fleets, reports Jalopnik, "a level 4 vehicle that drives set routes" that's "going into full production" as the ID Buzz AD. (The AD stands for "autonomous driving") The AD version sports a longer wheelbase and a higher roofline than its mere human-driven sibling, which helps it to fit in the 13 cameras, nine LiDARs, and five radars that will (hopefully) allow the car to drive without crashing into anybody. These are intended for large-fleet customers providing taxi services, either ones run by local governments or private companies. [Volkswagen Group software subsidiary MOIA] has already lined up its first customer, the German city of Hamburg, which will provide the automated Buzz as a public transit option alongside traditional bus and subway services. If all goes well, after Hamburg MOIA "will bring sustainable, autonomous mobility to large-scale deployment in Europe and the U.S.," according to VW Group CEO Oliver Blume. Down the road, VW has also signed an agreement for rideshare juggernaut Uber to use the ID Buzz AD across America, starting with Los Angeles in 2026.

The ID Buzz AD is the first vehicle in Germany to reach SAE International's threshold for Level 4 autonomous driving, meaning that the car can drive itself, with no need for a driver behind the wheel, within designated areas.
It comes with "a full suite of tools for public and private transit providers," notes the EV news site Electrek. "That includes everything from the self-driving tech to fleet management software, passenger support, and operator training. That will allow cities and companies to launch driverless fleets quickly, safely, and at scale."

And Christian Senger, a member of the board of management of VW Commercial Vehicles, tells DW the vans will be manufactured in very large numbers. The Hannover VW factory is set to produce more than 10,000 commercial vehicles. "We believe we can be the leading supplier in Europe," Senger says.... [Senger] does not expect the top dog of Germany's beleaguered auto industry to make any money, at least at first. In the long term, though, he explains that autonomous driving is the lucrative field of the future, one that promises to be much more profitable than the traditional automotive industry...

The exact price has not yet been announced but the ID. Buzz AD is unlikely to come cheap. According to Senger, buyers will have to pay a low six-figure sum (in euros) per vehicle. That means it's going to be expensive for transport companies. The Association of German Transport Companies or VDV, is calling for a nationally coordinated strategy of long-term financing, and a market launch supported by public funding, to establish the country's supremacy in this market.

U.S. consumers "rank problems with public electric vehicle charging and the time it takes to recharge as their top two reasons for rejecting electric vehicles," writes the New York Times, citing figures from data analytics firm J.D. Power.

But are things getting better? Automakers and charging companies are building new stations and updating their cars to allow drivers to more easily and quickly recharge their vehicles. They're also outfitting charging stations with items such as food and bathrooms, and making the devices more reliable. Because chargers are only as fast as the cars they connect with, automakers are designing new cars to absorb electricity at higher speeds. In addition, many automakers have cut deals with Tesla to allow owners of other cars to use the company's fast-charging network, the largest in the country and widely considered the most reliable.

Early evidence suggests efforts to improve electric vehicle charging are paying off. In recent years, J.D. Power surveys showed about 20% of attempts to charge electric vehicles at all public stations ended in failure because of faulty chargers, long lines or payment glitches. But in the first three months of 2025, overall failure rates fell to 16%, the biggest improvement since the surveys began in 2021. "The industry is finally elevating as a whole," said Brent Gruber, an executive director at J.D. Power.

The number of chargers has also increased. There were about 55,200 fast chargers in the United States in May, up from 42,200 a year earlier, according to federal data.

In February, a former Phillips 66 gas station in Apex, N.C., near Raleigh, became the first "Rechargery" from Ionna, a company created by eight automakers, including General Motors, Hyundai Motors, BMW and Mercedes-Benz. Their chargers can deliver up to 400 kilowatts of juice, much more than Tesla's 250-kilowatt Superchargers. Some cars can replenish a battery in 30 minutes or less at the higher charging speeds. When connected to chargers of 350 kilowatts or more, including those at Ionna and Electrify America, another fast-charging network, a Hyundai Ioniq 5 can fill its electric "tank" from 10% to 80% in 18 minutes...

Some models from BMW, Hyundai and Kia have also enabled a national "Plug and Charge" standard that lets car owners begin charging their vehicles at Ionna stalls without first having to use a smartphone app or swipe a credit card, eliminating a step that sometimes results in errors. Tesla's chargers have long worked this way for Tesla cars and now work with some other vehicles, including Rivian's SUVs and pickups. More cars and charging stations are expected to have plug-and-charge capability in the coming months... Nearly every major automaker is redesigning their cars with plug outlets and software that are compatible with Tesla chargers.
Infrastructure upgrades are happening elsewhere too, according to the article.Texas-based gas chain Buc-ee's is offering "premium" charging using renewable power (working with Mercedes), while Waffle House plans to install BP Pulse fast chargers next year.

J.D. Power's Gruber says that while America's federal charger program only helped construct a tiny fraction of new chargers, it did also published guidelines which helped automakers and charging companies work together and address technical problems.

"The worlds of Linux and Windows finally came together in real life..." writes The Verge: Microsoft co-founder Bill Gates and Linus Torvalds, the creator of the Linux kernel, have surprisingly never met before. That all changed at a recent dinner hosted by Sysinternals creator Mark Russinovich... "No major kernel decisions were made," jokes Russinovich in a post on LinkedIn.
More from the Linux news blog Linuxiac: The man on the left is Mark Russinovich, a software engineer, author, and co-founder of Sysinternals, now CTO of Azure, Microsoft's cloud computing platform. He has become synonymous with deep Windows diagnostics and cloud-scale management. In the late 1990s, his suite of tools (Process Explorer, Autoruns, Procmon) revolutionized the way administrators and security professionals understood Windows internals.

The man on the far right is another living legend: Dave Cutler. Let me put it this way — he's one of the key people behind OpenVMS and the brilliant lead architect who designed Windows NT's kernel and hardware-abstraction layer — technologies that remain at the heart of every current Windows release, from server farms to laptops. So, it's no surprise that people often call him the "father of Windows NT."

With no one behind the steering wheel, a Tesla robotaxi passes Guero's Taco Bar in Austin Texas, making a right turn onto Congress Avenue.

Today is the day Austin became the first city in the world to see Tesla's self-driving robotaxi service, reports The Guardian: Some analysts believe that the robotaxis will only be available to employees and invitees initially. For the CEO, Tesla's rollout is slow. "We could start with 1,000 or 10,000 [robotaxis] on day one, but I don't think that would be prudent," he told CNBC in May. "So, we will start with probably 10 for a week, then increase it to 20, 30, 40."

The billionaire has said the driverless cars will be monitored remotely... [Posting on X.com] Musk said the date was "tentatively" 22 June but that this launch date would be "not real self-driving", which would have to wait nearly another week... Musk said he planned to have one thousand Tesla robotaxis on Austin roads "within a few months" and then he would expand to other cities in Texas and California.
Musk posted on X that riders on launch day would be charged a flat fee of $4.20, according to Reuters. And "In recent days, Tesla has sent invites to a select group of Tesla online influencers for a small and carefully monitored robotaxi trial..." As the date of the planned robotaxi launch approached, Texas lawmakers moved to enact rules on autonomous vehicles in the state. Texas Governor Greg Abbott, a Republican, on Friday signed legislation requiring a state permit to operate self-driving vehicles. The law does not take effect until September 1, but the governor's approval of it on Friday signals state officials from both parties want the driverless-vehicle industry to proceed cautiously... The law softens the state's previous anti-regulation stance on autonomous vehicles. A 2017 Texas law specifically prohibited cities from regulating self-driving cars...

The law requires autonomous-vehicle operators to get approval from the Texas Department of Motor Vehicles before operating on public streets without a human driver. It also gives state authorities the power to revoke permits if they deem a driverless vehicle "endangers the public," and requires firms to provide information on how police and first responders can deal with their driverless vehicles in emergency situations. The law's requirements for getting a state permit to operate an "automated motor vehicle" are not particularly onerous but require a firm to attest it can safely operate within the law... Compliance remains far easier than in some states, most notably California, which requires extensive submission of vehicle-testing data under state oversight.
Tesla "planned to operate only in areas it considered the safest," according to the article, and "plans to avoid bad weather, difficult intersections, and will not carry anyone below the age of 18."

More details from UPI: To get started using the robotaxis, users must download the Robotaxi app and use their Tesla account to log in, where it then functions like most ridesharing apps...

"Riders may not always be delivered to their intended destinations or may experience inconveniences, interruptions, or discomfort related to the Robotaxi," the company wrote in a disclaimer in its terms of service. "Tesla may modify or cancel rides in its discretion, including for example due to weather conditions." The terms of service include a clause that Tesla will not be liable for "any indirect, consequential, incidental, special, exemplary, or punitive damages, including lost profits or revenues, lost data, lost time, the costs of procuring substitute transportation services, or other intangible losses" from the use of the robotaxis.
Their article includes a link to the robotaxi's complete Terms of Service: To the fullest extent permitted by law, the Robotaxi, Robotaxi app, and any ride are provided "as is" and "as available" without warranties of any kind, either express or implied... The Robotaxi is not intended to provide transportation services in connection with emergencies, for example emergency transportation to a hospital... Tesla's total liability for any claim arising from or relating to Robotaxi or the Robotaxi app is limited to the greater of the amount paid by you to Tesla for the Robotaxi ride giving rise to the claim, and $100... Tesla may modify these Terms in our discretion, effective upon posting an updated version on Tesla's website. By using a Robotaxi or the Robotaxi app after Tesla posts such modifications, you agree to be bound by the revised Terms.

As recently as 2021, GM "all but eliminated" hybrids from its future product plans, reports the New York Times. "But then a funny thing happened." Car shoppers balked at the high prices of fully electric models and the challenges of charging them. In the last few years, sales of electric vehicles have grown at a much slower rate than automakers once expected. And hybrids have stepped in to fill the gap, accounting for a large and growing share of new car sales... In the first three months of this year, hybrids — including cars that can and cannot be plugged in — made up about 14 percent of all light vehicles sold in the United States, according to the Department of Energy. That was around twice the market share of fully electric vehicles in that period...

Several automakers are slowing the introduction of new electric vehicles, and have accelerated development of new hybrids.
Robb Report looks at the current status of hybrids — and a possible future: "The charging infrastructure in most countries is not yet mature enough to support convenient mass adoption of battery-electric vehicles, and in some territories never will be," says Jonathan Hall, head of research and advanced engineering at U.K.-based consulting group Mahle Powertrain....

Porsche, active in this space since 2010, just hybridized its iconic 911 for this model year. Lamborghini also joined the trend with the debut of its 1,000 hp Revuelto hybrid in 2023. "The company doesn't plan to give up the internal-combustion engine anytime soon," says CTO Rouven Mohr. "We are also considering synthetic fuels to keep ICE vehicles running after 2030."

Hall concurs: "With the emergence of bio-based and even fully synthetic fuels, the link between the ICE and climate change can be broken." Combined with the development of better batteries, this progressive hybrid model could offer the best of both worlds for years to come.

"Modern vehicles have quietly become rolling monuments to terrible user experience, trading intuitive physical controls for flashy but dangerous touchscreen interfaces," argues the site Cars & Horsepower, decrying "an industry-wide plague of poorly designed digital dashboards that demand more attention from drivers than the road itself." The consequences are measurable and severe: studies now show touchscreen vehicles require up to four times longer to perform basic functions than their button-equipped counterparts, creating a distracted driving crisis that automakers refuse to acknowledge. A Swedish car magazine, Vi Bilägare, conducted a study [in 2022] comparing how long it takes drivers to perform basic tasks like adjusting climate controls or changing the radio station using touchscreens versus traditional physical buttons. The results showed that in the worst-performing modern car, it took drivers up to four times longer to complete these tasks compared to an older vehicle with physical controls... Even after allowing drivers time to familiarize themselves with each system, touchscreen-equipped cars consistently required more time and attention, which could translate into increased distraction and reduced safety on the road....

A seminal 2019 study from the University of Utah found drivers using touchscreens exhibited:

- 30% longer reaction times to road hazards
- Significantly higher cognitive workload (as measured by pupil dilation)
- More frequent and longer glances away from the road

The reason lies in proprioception — our body's ability to sense its position in space. Physical controls allow for muscle memory development; drivers can locate and manipulate buttons without looking. Touchscreens destroy this capability, forcing visual confirmation for every interaction. Even haptic feedback (those little vibrations mimicking physical buttons) fails to solve the problem, as demonstrated by a 2022 AAA study showing haptic systems offered no safety improvement over standard touchscreens...

A study from Drexel University introduced a system called [Distract-R](), which uses cognitive modeling to simulate how drivers interact with in-vehicle interfaces. It found that multi-step touchscreen tasks increase cognitive load, diverting attention from the road more than physical buttons.... Furthermore, a systematic review on driver distraction in the context of Advanced Driver Assistance Systems (ADAS) and Automated Driving Systems (ADS) highlights that even with automation, drivers remain vulnerable to distraction, especially when interacting with complex interfaces...
There's also software reliability issues (even before the issue of "feature paywalls"). But some manufacturers are going back, according to the article. "After receiving widespread criticism, Porsche added physical climate controls back to the Taycan's center console. Nissan's latest concepts feature prominent physical buttons for common functions..." And Mazda eliminated touch capability entirely while moving, "forcing use of a physical control knob... The system reduces glance time by 15% compared to touch interfaces while maintaining all modern infotainment functionality."

The article recommends consumers prioritize physical controls when vehicle shopping, seeking out models with buttons. But there's also "aftermarket solutions," with companies like Analog Automotive "developing physical control panels that interface with popular infotainment systems, bringing back tactile operation." Another option: voice commands (like on GM's latest systems).

"Ultimately, the solution requires consumer pushback against dangerous interface trends.... The road deserves our full attention, not divided focus between driving and debugging a poorly designed tablet on wheels."

Thanks to long-time Slashdot reader schwit1 for sharing the article.

BlueSky has grown from roughly 10 million users in early November to 36.79 million today — and its last 30 days of traffic looks very level.

But instead of calling BlueSky's traffic "level", right-leaning libertarian Megan McArdle argues instead that BlueSky's "decline shows no sign of leveling out" (comparing the stable figures from the last month to a one-time spike seven months ago so they can write "It's now down about 50 percent"). And Wednesday the conservative UK magazine Spectator also ignored the 30-day-leveling to write instead that BlueSky is somehow "sliding down a slope".

But TechCrunch thinks the "up or down" conversation is entirely missing the point of "the wider network of apps built on the open protocol that Bluesky's team spearheaded" — and how BlueSky "is only meant to be one example of what's possible within the wider AT Proto ecosystem." If you don't like the tone of the topics trending on Bluesky, you can switch to other apps, change your default feeds, or even build your own social platform using the technology. Already, people are using the protocol that powers Bluesky to build social experiences for specific groups — like Blacksky is doing for the Black online community or like Gander Social is doing for social media users in Canada. There are also feed builders like Graze and those in Surf that let you create custom feeds where you can focus on specific content you care about — like video games or baseball — and exclude others, like politics. Built into Bluesky (and other third-party clients) are tools that let you pick your default feed and add others that interest you from a range of topics. If you want to follow a feed devoted to your favorite TV show or animal, for instance, you can. In other words, Bluesky is meant to be what you make it, and its content can be consumed in whatever format you prefer best.

In addition to Bluesky itself, the wider network of apps built on the AT Protocol includes photo- and video-sharing apps, livestreaming tools, communication apps, blogging apps, music apps, movie and TV recommendation apps, and more. Other tools also let you combine feeds from Bluesky with other social networks. Openvibe, for instance, can mix together feeds from social networks like Threads, Bluesky, Mastodon, and Nostr. Apps like Surf and Tapestry offer ways to track posts on open social platforms as well as those published with other open protocols like RSS. This lets the apps pull in content from blogs, news sites, YouTube, and podcasts.
Even just considering BlueSky itself, three weeks ago Fast Company pointed out that BlueSky "grew from 11 million users to 25 million between late October and mid-December, but has added only about 10 million more since then." So how is a 10-million user increase "dying"? For a social network, being prematurely written off is a rite of passage. It's even a compliment of sorts — a sign that people are paying attention and care... When I chatted with Bluesky CEO Jay Graber this week, I wasn't surprised that she didn't seem fazed by the debate on her platform and saw the parallels with early-days Twitter. "Reports of our death are greatly exaggerated," she told me. "It's a similar thing, because with social sites, it's not straight up all the time. [Growth] comes in waves, and at each stage, there's a new era of communities being established and formed. We're still seeing a lot of community formation, and one of the most exciting things is how structurally different this is. It's not just another social site that has to be a singular winner-take-all in an ecosystem with existing incumbents...."

One other challenge that Bluesky has not yet fully confronted is monetizing itself. Onstage at Web Summit, Graber emphasized that it's working on subscription services, a healthier revenue source than stuffing feeds with ads, though potentially a tougher one to scale up to sustainability. The company announced a $15 million Series A funding round last October.
But again, the point isn't BlueSky's increasing user count or its stablizing levels of Daily Unique "Likers" — but its underlying open source protocol: [S]he was at her most passionate when discussing the company's aspiration to decentralize social networking via its open AT Protocol. It powers Bluesky — and variants such as the Pinksky photo-sharing app, which she praised onstage — but could also provide the infrastructure for further-flung social experiences. Maybe even ones catering to folks who have zero interest in participating in the Bluesky community. "The goal is to really get through that this is a Choose Your Own Adventure and Bluesky's just the beginning," she says. "The sky's the limit." Whether she'll fulfill her grandest ambitions, I'm not sure. But I already like this era of social networking better than the one when a handful of winners really did take all.

An anonymous reader shared this report from the Washington Post: Over the past three years, companies have invested tens of billions of dollars toward making electric vehicles in the United States, buoyed by tax incentives aimed at helping American businesses compete with China. Now, those companies are facing a strange problem: too much manufacturing capacity, not enough demand.

As sales of electric vehicles slow and congressional Republicans take aim at EV tax credits and incentives, the United States is slated to have more battery and EV manufacturing than it needs, according to a report released Wednesday by the Rhodium Group, a research firm. That could leave factories — many of which are already operating or under construction — stranded if car sales continue to slump. "The rug is being pulled out from under these manufacturers," said Hannah Pitt, a director in Rhodium's energy and climate practice...

After [America's 2022 climate bill], battery investment in the U.S. skyrocketed. Companies went from investing about $1 billion per quarter in 2022 to $11 billion per quarter in 2024. Most of that battery investment went to red states, including in the South's "Battery Belt," where manufacturers were drawn to inexpensive land and a nonunionized workforce. Now, however, that battery boom is teetering. In the first three months of 2025, companies canceled $6 billion in battery manufacturing — a record. EV sales have slowed...

According to the new report, the United States has almost enough battery capacity announced or under development to meet demand all the way to 2030 if EV sales continue to slump. That might sound like a good thing — but if EV sales drop further, it means companies will be left with factories they won't be able to use. At the same time, China has excess battery capacity. The country has enough manufacturing to meet the entire world's demand for batteries — and may be looking to off-load them onto other markets... And if the incentives for using U.S.-made batteries disappear, the nation's manufacturers would be left high and dry.

Threads now has 350 million users — but this week a strange bug affected some Threads accounts (on both desktop and mobile). "One user's post will get repeated over and over again..." explains TechCrunch, "as though every user on your feed is saying the same thing." "Siri, unsubscribe me from 2025," one Threads user wrote, per a screenshot from social media expert Alexa Heinrich. But then, everyone else on Heinrich's feed appeared to be echoing the same cheugy joke...

While it's not yet clear what caused the bug, Meta Communications Director Andy Stone responded to app researcher Jane Manchun Wong's post about the issue. "Whoops, well that clearly shouldn't have happened! We're working on getting it fixed now," Stone said.
I thought the bug was only affecting user feeds (and not replies). But either way, Wong came up with the perfect comeback.

"Whoops, well that clearly shouldn't have happened! We're working on getting it fixed now."

An anonymous reader quotes a report from Ars Technica: Large-scale attacks designed to bring down Internet services by sending them more traffic than they can process keep getting bigger, with the largest one yet, measured at 7.3 terabits per second, being reported Friday by Internet security and performance provider Cloudflare. The 7.3Tbps attack amounted to 37.4 terabytes of junk traffic that hit the target in just 45 seconds. That's an almost incomprehensible amount of data, equivalent to more than 9,300 full-length HD movies or 7,500 hours of HD streaming content in well under a minute.

Cloudflare said the attackers "carpet bombed" an average of nearly 22,000 destination ports of a single IP address belonging to the target, identified only as a Cloudflare customer. A total of 34,500 ports were targeted, indicating the thoroughness and well-engineered nature of the attack. [...] Cloudflare said the record DDoS exploited various reflection or amplification vectors, including the previously mentioned Network Time Protocol; the Quote of the Day Protocol, which listens on UDP port 17 and responds with a short quote or message; the Echo Protocol, which responds with the same data it receives; and Portmapper services used identify resources available to applications connecting through the Remote Procedure Call. Cloudflare said the attack was also delivered through one or more Mirai-based botnets. Such botnets are typically made up of home and small office routers, web cameras, and other Internet of Things devices that have been compromised.

New York City on Friday announced new minimum-pay rules for rideshare drivers, settling on a smaller-than-proposed 5% increase following pushback from Uber Technologies and Lyft. From a report: An earlier proposal called for a 6.1% pay boost. The finalized regulations from the city's Taxi and Limousine Commission, or TLC, are also designed to deter Uber and Lyft from locking gig workers out of their apps in an attempt to keep costs down. The board of commissioners will vote on the rules on June 25, according to the agency's website.

Uber and Lyft had strongly opposed the original rate, warning customers that it would force them to increase prices. Lyft's shares extended declines after Bloomberg reported on the rules, falling as much as 3.3% to hit session lows. Uber's stock, which had been up as much as 2.3% earlier Friday, pared most of its gains on the news.

BrianFagioli writes: In a move that could quietly wreak havoc across the Windows ecosystem, Microsoft is purging outdated drivers from Windows Update. The company claims it is doing this for security and reliability, but the result might be broken hardware for users who rely on legacy devices.

If you're using older peripherals or custom-built PCs, you could soon find yourself hunting for drivers that have vanished into the digital abyss. This initiative, buried in a low-profile blog post, is part of Microsoft's new cleanup program. The first wave targets legacy drivers that already have newer replacements available. But the real kicker is that Microsoft isn't warning individual users about which drivers are going away.

Australia's world-first social media ban for under-16s moved closer to implementation after a key trial found that checking a user's age is technologically possible and can be integrated into existing services. From a report: The conclusions are a blow to Facebook-owner Meta Platforms, TikTok and Snap, which opposed the controversial legislation. Some platform operators had questioned whether a user's age could be reliably established using current technology.

The results of the government-backed trial clear the way for the law to come into force by the end of the year. The findings also potentially allow other jurisdictions to follow Australia's lead as countries around the world grapple with ways to protect children from harmful content online. "Age assurance can be done in Australia and can be private, robust and effective," the government-commissioned Age Assurance Technology Trial said in a statement Friday announcing its preliminary findings.

Google is using its expansive library of YouTube videos to train its AI models, including Gemini and the Veo 3 video and audio generator, CNBC reported Thursday. From the report: The tech company is turning to its catalog of 20 billion YouTube videos to train these new-age AI tools, according to a person who was not authorized to speak publicly about the matter. Google confirmed to CNBC that it relies on its vault of YouTube videos to train its AI models, but the company said it only uses a subset of its videos for the training and that it honors specific agreements with creators and media companies.

[...] YouTube didn't say how many of the 20 billion videos on its platform or which ones are used for AI training. But given the platform's scale, training on just 1% of the catalog would amount to 2.3 billion minutes of content, which experts say is more than 40 times the training data used by competing AI models.

Iranian state television has instructed residents to delete WhatsApp from their smartphones, claiming the messaging platform gathers user information to share with Israel.

The local media provided no evidence supporting these allegations but additionally encouraged residents to avoid other "location-based" apps. WhatsApp has disputed the claims, with a spokesperson telling Time magazine the Meta-owned platform uses end-to-end encryption and does not track precise locations, keep messaging logs, or provide bulk information to governments.

The episode comes at a time when Iran is simultaneously experiencing a "near-total national Internet blackout," according to NetBlock, an internet governance monitoring organization. The disruption follows earlier partial outages amid escalating military tensions with Israel after days of missile strikes between the countries.

Further reading, from earlier this week: Iran Bans Officials From Using Internet-Connected Devices.

An anonymous reader quotes a report from The Guardian: Foreign students will be required to unlock their social media profiles to allow US diplomats to review their online activity before receiving educational and exchange visas, the state department has announced. Those who fail to do so will be suspected of hiding that activity from US officials. The new guidance, unveiled by the state department on Wednesday, directs US diplomats to conduct an online presence review to look for "any indications of hostility toward the citizens, culture, government, institutions, or founding principles of the United States."

A cable separately obtained by Politico also instructs diplomats to flag any "advocacy for, aid or support for foreign terrorists and other threats to US national security" and "support for unlawful antisemitic harassment or violence." The screening for "antisemitic" activity matches similar guidance given at US Citizenship and Immigration Services under the Department of Homeland Security and has been criticized as an effort to crack down on opposition to the conduct of Israel's war in Gaza.

The new state department checks are directed at students and other applicants for visas in the F, M and J categories, which refer to academic and vocational education, as well as cultural exchanges. "It is an expectation from American citizens that their government will make every effort to make our country safer, and that is exactly what the Trump administration is doing every single day," said a senior state department official, adding that Marco Rubio was "helping to make America and its universities safer while bringing the state Department into the 21st century."

The U.S. Army Reserve has directly commissioned four top Silicon Valley executives as lieutenant colonels under a new initiative, Detachment 201, aimed at accelerating tech integration into military operations. While these part-time roles are intended to bring private-sector innovation to defense modernization, the move is pretty unusual. Gizmodo reports: The Army said in a press release that the four executives are Shyam Sankar, CTO at Palantir; Andrew Bosworth, CTO at Meta; Kevin Weil, Chief Product Officer of OpenAI; and Bob McGrew, an advisor at Thinking Machines Lab and former Chief Research Officer for OpenAI. The four men are being commissioned at the high rank of lieutenant colonel as part of a program called Detachment 201: The Army's Executive Innovation Corps. As Task & Purpose notes, the men will get to skip the usual process of taking a Direct Commissioning Course at Fort Benning, Georgia, and they won't need to complete the Army Fitness Test.

The Army didn't respond to questions emailed Tuesday but said in a statement published on its website that, "Their swearing-in is just the start of a bigger mission to inspire more tech pros to serve without leaving their careers, showing the next generation how to make a difference in uniform." Their role in the Army Reserve is to "work on targeted projects to help guide rapid and scalable tech solutions to complex problems," as the Army puts it. The new reservists will serve for about 120 hours a year, according to the Wall Street Journal, and will have a lot of flexibility to work remotely. They'll work on helping the Army acquire more commercial tech, though it's not clear how conflict-of-interest issues will be enforced, given the fact that the people all work for companies that would conceivably be selling their wares to the military. In theory, they won't be sharing information with their companies or "participating in projects that could provide them or their companies with financial gain," according to the Journal.

Silicon Valley has always benefited greatly from ties to the U.S. military. Silicon Valley companies were bringing in $5 billion annually from defense contracts during the Reagan administration, something that the average person may not remember about the 1980s. But it's always been an uneasy alliance for consumer-facing tech companies, especially over recent decades. That's all changing, according to many folks who align more with President Donald Trump, who was once considered a shameful person to represent in polite company. As Andrew Bosworth, the CTO at Meta, who is joining the Army Reserves, told the Wall Street Journal, "There's a lot of patriotism that has been under the covers that I think is coming to light in the Valley."

An anonymous reader quotes a report from Ars Technica: Tech support scammers have devised a method to inject their fake phone numbers into webpages when a target's web browser visits official sites for Apple, PayPal, Netflix, and other companies. The ruse, outlined in a post on Wednesday from security firm Malwarebytes, threatens to trick users into calling the malicious numbers even when they think they're taking measures to prevent falling for such scams. One of the more common pieces of security advice is to carefully scrutinize the address bar of a browser to ensure it's pointing to an organization's official website. The ongoing scam is able to bypass such checks.

The unknown actors behind the scam begin by buying Google ads that appear at the top of search results for Microsoft, Apple, HP, PayPal, Netflix, and other sites. While Google displays only the scheme and host name of the site the ad links to (for instance, https://www.microsoft.com/ the ad appends parameters to the path to the right of that address. When a target clicks on the ad, it opens a page on the official site. The appended parameters then inject fake phone numbers into the page the target sees.

Google requires ads to display the official domain they link to, but the company allows parameters to be added to the right of it that aren't visible. The scammers are taking advantage of this by adding strings to the right of the hostname. The parameters aren't displayed in the Google ad, so a target has no obvious reason to suspect anything is amiss. When clicked on, the ad leads to the correct hostname. The appended parameters, however, inject a fake phone number into the webpage the target sees. The technique works on most browsers and against most websites. Malwarebytes.com was among the sites affected until recently, when the site began filtering out the malicious parameters.