IT

New Startup 'Sentral' Pushes High-End Rental/Homesharing Apartments (seattlepi.com) 56

A new $500 million startup is now offering high-end apartments for short- and long-term rentals in America's "most vibrant, walkable neighborhoods". (And long-term renters can also avail themselves of its "turn-key homesharing program" to offset some of their rent.)

The Seattle Post-Intelligencer says it's "aimed mainly at tech workers, nomadic independent contractors and other folks whose work is no longer tied to a specific location." [A]menities might include workspaces offering private and collaborative office space. Inside the units themselves, residents might find work-from-home perks like adjustable height desks and ergonomic chairs. And let's not forget that work-life balance: Sentral buildings offer rooftop pools, outdoor kitchens and fire pits, gyms, photo booths, theaters, and more — as well as offering a plethora of curated events to its residents...

The folks behind the idea are savvy: CEO Jon Slavet is formerly of WeWork and Rodan + Fields. Michael Curtis, formerly VP of Engineering at Airbnb is now a strategy advisor at Sentral...

The price to lease at Sentral, given the amenities, isn't much higher than regular rent prices in the major cities it serves. The LIVE program offers designer-furnished homes for stays over 30 days starting at $2,500 a month. For comparison purposes, a studio in downtown Seattle listed on Craigslist (with none of the bling offered at Sentral) is asking $1,890 a month.

Sentral operates now in seven cities: LA, Austin, Chicago, Seattle, Denver, Chicago, Miami. An Atlanta location is next up, with more growth planned.

Sentral's press release calls them seven "vibrant gateway cities... a launchpad to explore the country's most exciting neighborhoods" (assisted by "a world-class onsite team that fosters a true sense of community"). Sentral enables residents to live or visit stylish buildings in the nation's most coveted cities for any period of time, whether a night, a month, or multiple years. Qualifying residents can also monetize their homes through Sentral's managed homeshare program... From the city registration process to logistical details such as housekeeping, insurance, photography, contactless check-in, and around-the-clock service, Sentral's turn-key platform makes homesharing seamless for hosts, enhancing their financial freedom and fueling their ability to travel and explore.
A recent tweet calls it "the future of living," while the company's new web site promises it offers "The comforts you crave + the freedom to travel."

"There has been a massive shift to a 'work-from-anywhere' culture that is blurring the lines among home, work, and travel," argues CEO Jon Slavet in Sentral's press release. And the lavish press release ends by saying that the company "is creating a global community of modern adventurers with the freedom to monetize their homes, explore their passion for travel, and live life on their own terms."
Japan

Iconic Japanese Videogame Music Incorporated Into Olympic Opening Ceremony (huffpost.com) 23

"Fans of Japanese video games couldn't believe their ears as Olympic athletes paraded into Tokyo's National Stadium during the opening ceremony for the 2020 Games on Friday..." reports the Huffington Post. During the Parade of Nations section of the ceremony, "The orchestra was playing tunes from some of their favorite games." In a celebration of Japanese popular culture that is appreciated worldwide, the entry parade was set to tunes from games developed by Sega, Capcom and Square Enix. It kicked off with "Overture: Roto's Theme" from Dragon Quest. Next up was "Victory Fanfare" from Final Fantasy. The parade featured more tunes from Monster Hunter, Soulcaliber and Sonic the Hedgehog. According to Classic FM, the music from Kingdom Hearts was composed by Yoko Shimomura, who is responsible for the music for some of the biggest video games ever made. Fans were delighted to hear her work being incorporated into the ceremony.

While the list didn't feature widely recognized tunes from cultural juggernauts like Mario Bros. or The Legend of Zelda, the music helped give a sense of atmosphere to the ceremony, which was held in almost an empty stadium due to coronavirus restrictions.

There's even an elaborate doodle at Google.com commemorating the Opening Ceremonies with an anime animation that leads to a multi-level 1980s-style videogame in which Lucky the cat competes in various sporting events. (Though the Huffington Post notes that in the real world, about 1,000 people sat in the 68,000-capacity stadium.)

The Washington Post reports the Japanese public "overwhelmingly opposed hosting the Olympics as a new wave of the pandemic hit the country." But unfortunately, host city Tokyo signed a contract agreeing the event could only be cancelled by the International Olympic Committee, and now "There's the possibility — once utterly remote — that Japanese voters could kick Prime Minister Yoshihide Suga out of power in parliamentary elections later this year."
Iphone

LG Might Sell iPhones In Its Stores After Quitting Android Devices (androidauthority.com) 20

LG will reportedly start selling iPhones and iPads in its South Korean stores this August -- mere months after the company quit making Android devices. Android Authority reports: According to MacRumors, the Herald Economic Daily claims LG has struck a deal with Apple to sell the iPhone and iPad in 400 stores across South Korea starting in August. LG may have to overcome some hurdles to make this happen. The company reportedly signed a "win-win" agreement with the country's National Mobile Communication Distribution Association that bars it from selling a direct competitor's phones in its stores. That deal was made in 2018, however, or well before LG signaled that it would quit making phones and tablets. LG is supposedly planning to renegotiate the agreement once it officially sells the iPhone and iPad in its shops. The deal unsurprisingly wouldn't include Macs, as systems like the MacBook Air compete directly with the Gram series and other LG computers where the iPhone and iPad are relatively safe.
Government

Tahoe's Workforce is Disappearing, As Many Can No Longer Afford to Live There (sfgate.com) 181

200 miles east of Silicon Valley, "A disproportionate number of people who purchased homes in Tahoe in 2020 are employees of some of the largest tech companies in the Bay Area," a real estate brokerage firm specializing in data analytics recently told Outside magazine.

Of the 2,280 new-home buyers Atlasa identified throughout the Tahoe region in 2020, roughly 30 percent worked at software companies. The top three employers were Google (54 buyers), Apple (46), and Facebook (34)... There is, however, one glaring issue with all this rapid, high-priced growth: the people who actually make a mountain town run — the ski instructors and patrollers, lift operators and shuttle drivers, housekeepers and snowcat mechanics, cooks and servers — can no longer afford to live there.
Just last year Sierra Sotheby's found more than 2,350 homes were sold across the Tahoe Basin, for a boggling $3.28 billion (up 86% from the $1.76 billion in 2019), according to the article, which calls the popular tele-working destination a "Zoom town."

Now the region's heading into its summer tourist season — but "with a shorthanded workforce, businesses are unraveling," like the restaurant that simply closed for a week because "We literally do not have enough cooks to operate..." The evidence is showing up in the ways businesses are cutting back during the peak of the busiest time of year, a time when small business owners in Tahoe typically are trying to make as much money as possible so they can survive the slower times of year...

While the hiring crisis spans far and wide across the nation, in Tahoe, the linchpin is housing. At Tahoe Dave's, Dave Wilderotter, the owner of Tahoe Dave's Skis and Boards, starts his employees at $20 an hour. Most of his employees make too much money to qualify for affordable housing. But they don't make enough money to pay Tahoe's rent prices, which have risen by 25% to 50% in the past year. Tahoe's workforce is disappearing because many of them cannot afford to live here any more... Making matters worse, Tahoe's already minimal long-term rental housing stock is getting eaten up by the very hot real estate market. Many landlords are selling homes they've been renting to local workers, leaving those tenants without many options...

"This isn't just tourism that's being hit," says Alex Mourelatos, a business owner on Tahoe's North Shore who also serves on multiple boards for the North Tahoe Public Utility District and nonprofit groups. "It's every service industry. Every industry across people, dentistry, legal, everything, Planned Urban Developments, all the special districts, firemen, teachers, all of them." The hiring crisis has even affected critical services like public transportation. Bus drivers are so hard to come by that the Tahoe Transportation District made the unprecedented decision to shut down an entire bus route down the East Shore.

The district had shuttles but no one to steer the wheel.

Programming

New Study Verifies Safety of Rust (eurekalert.org) 132

Slashdot reader Beeftopia writes: Rust has two modes: its default, safe mode, and an unsafe mode. In its default, safe mode, Rust prevents memory errors, such as "use-after-free" errors. It also prevents "data races" which is unsynchronized access to shared memory. In its unsafe mode (via use of the "unsafe" block), in which some of its APIs are written, it allows the use of potentially unsafe C-style features. The key challenge in verifying Rust's safety claims is accounting for the interaction between its safe and unsafe code. This article from April's issue of Communications of the ACM provides an overview of Rust and investigates its safety claims.
The article is co-authored by Ralf Jung, a prominent postdoctoral researcher in the 'Foundations of Programming' research group at the Max Planck Institute for Software Systems. And (spoiler alert) Jung has just received one of two 'Honorable Mentions' for the 'Dissertation Award' of the 'Association for Computing Machinery' (ACM), reports a nonprofit site operated by the American Association for the Advancement of Science: In his dissertation, Ralf Jung now provides the first formal proof that the safety promises of Rust actually hold. "We were able to verify the safety of Rust's type system and thus show how Rust automatically and reliably prevents entire classes of programming errors," says Ralf Jung.

In doing so, he also successfully addressed a special aspect of the programming language: "The so-called 'type safety' goes hand in hand with the fact that Rust imposes restrictions on the programmer and does not allow everything that the programmer wants to do. Sometimes, however, it is necessary to write an operation into the code that Rust would not accept because of its type safety," the computer scientist continues. "This is where a special feature of Rust comes into play: programmers can mark their code as 'unsafe' if they want to achieve something that contradicts the programming language's safety precautions. Together with international collaborators, including my thesis advisor Derek Dreyer, we developed a theoretical framework that allows us to prove that Rust's safety claims hold despite the possibility of writing 'unsafe' code," Jung says.

This proof, called RustBelt, is complemented by Ralf Jung with a tool called Miri, with which 'unsafe' Rust code can be automatically tested for compliance with important rules of the Rust specification - a basic requirement for correctness and safety of this code. "While RustBelt was a great success, especially in academic circles, Miri is already established in industry as a tool for security testing of programs written in Rust," explains Ralf Jung.... The ACM states: "Through Jung's leadership and active engagement with the Rust Unsafe Code Guidelines working group, his work has already had profound impact on the design of Rust and laid essential foundations for its future."

Programming

Could Python Overtake C and Java as the Most Popular Programming Language? (zdnet.com) 170

The TIOBE index of programming language popularity celebrates 20 years of continuous publishing this month. Started as a hobbyist project back in 2001, the site estimates each programming language's popularity by counting search engine results for the phrase <language> programming (indirectly counting each listing for developers, courses, and third-party vendors).

When it was started 20 years ago, the top languages were Java, C, and C++.

20 years later, the top languages are now C, Java, Python, and C++

And "The difference between position 1 and position 3 is only 0.67%." This means that the next few months will be exciting. What language is going to win this battle? Python seems to have the best chances to become number 1, thanks to its market leadership in the booming field of data mining and artificial intelligence.
ZDNet also noted the trends: Searches for C were down 4.83 percentage points compared to last July. Java searches were down 3.93% over the period, while Python gained 1.86%.

The top 10 languages behind C, Java and Python are C++, C#, Visual Basic, Javascript, PHP, Assembly Language, and SQL.

But they also have this to say about TIOBE's calculations: It's a different methodology to developer analyst RedMonk, which looks at language usage on software projects hosted on GitHub and discussions on the developer Q&A site, Stack Overflow.

RedMonk's Q1 2021 rankings place JavaScript in top place, followed by Python and Java.


Other interesting moves this month:
  • C++ gained more than 0.5% getting closer to the top 3
  • Rust rose from #30 to #27
  • Go rose from #20 to #13
  • TypeScript rose from #45 to #37
  • Haskellrose rose from #49 to #39

United States

No Evidence of California Exodus Or 'Millionaire Flight', UC Research Project Finds (sfgate.com) 451

Charlotte Web shares a report from SFGate: Despite the popular belief that residents are fleeing California, there is not in fact a statewide exodus, new research out of the University of California finds. For one, while residents are moving out of state, they are not doing so at "unusual rates." Similarly, the research found no evidence of "millionaire flight" from California and notes that the state continues to attract as much venture capital as all other U.S. states combined, despite the recent exodus of Hewlett-Packard and Oracle. The report did reveal net migration out of San Francisco during the pandemic. However, about two-thirds of people who left the city remained in the Bay Area, while 80% stayed in California, which is consistent with earlier trends...

A recent survey by UC San Diego, included in the project, found that the percentage of Californians who plan to leave the state has remained static for two years. In fact, only 23% of California voters said they were seriously considering leaving the state, which is lower than the 24% who said the same in a 2019 survey conducted by UC Berkeley. [...] The myth of "millionaire flight" from California, the project also found, is just that -- a myth. Affluent Californians were actually more satisfied with the direction the state is going and very likely to believe it will be better when their children grow up. Likewise, an analysis of almost two decades of Franchise Tax Board data by Stanford University and Cornell University found that there has been no millionaire flight from California, despite recent tax increases levied on higher earners.
"From housing affordability to post-pandemic recovery, California is faced with solving a daunting number of existential challenges. To help inform those important public discussions, UC assembled many of the state's top researchers to provide a data-driven understanding of California's population trends," said UC Regent John A. Perez in a press release.

"Sliced and diced by geography, race, income and other demographic factors, our efforts have produced a clearer picture of who perceives California as the Golden State versus a failed state," he continued. "The empirical data will be, at once, disappointing to those who want to write California's obituary, as well as a call to action for policymakers to address the challenges that have caused some to lose faith in the California Dream."
United States

America Used Fewer Fossil Fuels In 2020 Than It Has In Three Decades (theverge.com) 177

Americans gobbled up fewer fossil fuels in 2020 than they have in three decades, according to the U.S. Energy Information Administration (EIA). The Verge reports: Consumption of petroleum, natural gas, and coal dropped by 9 percent last year compared to 2019, the biggest annual decrease since the EIA started keeping track in 1949. The COVID-19 pandemic was responsible for much of the fall as people stayed home to curb the spread of the virus and used less gas. In April 2020, oil prices nosedived below zero because there was so little demand. The U.S. transportation sector alone used up 15 percent less energy in 2020 compared to the year before. Higher temperatures last winter also helped to cut energy demand for heating, according to the EIA. As a result, greenhouse gas emissions from burning fossil fuels plummeted to a near 40-year low.

That downward trend will have to continue in order to stave off the climate crisis. Upon rejoining the Paris climate agreement, President Joe Biden committed the U.S. to slash its planet-heating pollution in half this decade from near-peak levels it reached in 2005. That's part of a global effort to keep global warming from surpassing a point that life on Earth would struggle to adapt to, a global average temperature that's roughly 1.5 degrees Celsius above preindustrial levels. To hit that goal, there should be no further investments in new fossil fuel projects, according to a recent landmark report from the International Energy Agency. The oil and gas industries are already feeling the crunch from lawsuits and activist investors forcing them to move faster toward more sustainable forms of energy.

Earth

San Francisco Startup Hopes to Open Sushi Bar Serving Lab-Grown Salmon (sfchronicle.com) 58

The San Francisco Chronicle reports on a startup named Wildtype that hopes to open a unique sushi bar this fall serving salmon grown in a lab: Like other alternative meat companies, Wildtype hopes it can eventually produce enough fish to be sold at grocery stores and to be served in dishes at Bay Area restaurants... Companies like Wildtype fall into the category of what's known as cell-based agriculture, where instead of plant-based alternatives, animal cells are used to create cuts of meat in a lab. In the case of Wildtype, the company is still working with the same salmon cells it acquired a few years ago to create fish in its lab. These salmon cells are then fed nutrients in the tank before they are harvested and affixed to plant-based structures that enable the cells to grow into a particular cut of the fish.

From the cell stage to harvesting, it can take between three weeks to three months, said Elfenbein. Conventional fish farming can often take upwards of a year before the fish can be harvested...

The company is still working to get approval from the U.S. Food and Drug Administration to open its sushi bar to the public, though Kolbeck is hopeful that might happen by the end of this year. Unlike plant-based meat substitutes like Impossible Foods and Beyond Beef, which have skyrocketed in popularity in recent years, cell-based, lab-grown meat products have yet to be approved for mass consumption by the FDA and the U.S. Department of Agriculture. Bay Area companies like Eat Just, Wildtype and Berkeley's Upside Foods are among a growing number of companies nationwide looking to make lab-grown meat go mainstream in an effort to counter the environmental impacts of traditional meat production. In December last year, the Singapore government approved the sale of Eat Just's lab-grown chicken, making it the first country in the world to approve such meat consumption on a commercial scale...

Wildtype hasn't been able to mass-produce quite yet. The Dogpatch production facility is hoping to produce 50,000 pounds per year in the near future, with plans to expand to 200,000 pounds per year in a larger space down the road, Kolbeck said.

Facebook

Apps With 5.8 Million Google Play Downloads Stole Users' Facebook Passwords (arstechnica.com) 35

An anonymous reader quotes a report from Ars Technica: Google has given the boot to nine Android apps downloaded more than 5.8 million times from the company's Play marketplace after researchers said these apps used a sneaky way to steal users' Facebook login credentials. In a bid to win users' trust and lower their guard, the apps provided fully functioning services for photo editing and framing, exercise and training, horoscopes, and removal of junk files from Android devices, according to a post published by security firm Dr. Web. All of the identified apps offered users an option to disable in-app ads by logging into their Facebook accounts. Users who chose the option saw a genuine Facebook login form containing fields for entering usernames and passwords.

Then, as Dr. Web researchers wrote: "These trojans used a special mechanism to trick their victims. After receiving the necessary settings from one of the C&C servers upon launch, they loaded the legitimate Facebook web page https://www.facebook.com/login... into WebView. Next, they loaded JavaScript received from the C&C server into the same WebView. This script was directly used to hijack the entered login credentials. After that, this JavaScript, using the methods provided through the JavascriptInterface annotation, passed stolen login and password to the trojan applications, which then transferred the data to the attackers' C&C server. After the victim logged into their account, the trojans also stole cookies from the current authorization session. Those cookies were also sent to cybercriminals. Analysis of the malicious programs showed that they all received settings for stealing logins and passwords of Facebook accounts. However, the attackers could have easily changed the trojans' settings and commanded them to load the web page of another legitimate service. They could have even used a completely fake login form located on a phishing site. Thus, the trojans could have been used to steal logins and passwords from any service."

The majority of the downloads were for an app called PIP Photo, which was accessed more than 5.8 million times. The app with the next greatest reach was Processing Photo, with more than 500,000 downloads. The remaining apps were: Rubbish Cleaner: more than 100,000 downloads; Inwell Fitness: more than 100,000 downloads; Horoscope Daily: more than 100,000 downloads; App Lock Keep: more than 50,000 downloads; Lockit Master: more than 5,000 downloads; Horoscope Pi: 1,000 downloads; and App Lock Manager: 10 downloads. A search of Google Play shows that all apps have been removed from Play.

Data Storage

Another Exploit Hits WD My Book Live Owners (tomshardware.com) 50

While it will come as no comfort to those who had their Western Digital My Book Live NAS drives wiped last week, it seems they were attacked by a combination of two exploits, and possibly caught in the fallout of a rivalry between two different teams of hackers. Tom's Hardware reports: Initially, after the news broke on Friday, it was thought a known exploit from 2018 was to blame, allowing attackers to gain root access to the devices. However, it now seems that a previously unknown exploit was also triggered, allowing hackers to remotely perform a factory reset without a password and to install a malicious binary file. A statement from Western Digital, updated today, reads: "My Book Live and My Book Live Duo devices are under attack by exploitation of multiple vulnerabilities present in the device ... The My Book Live firmware is vulnerable to a remotely exploitable command injection vulnerability when the device has remote access enabled. This vulnerability may be exploited to run arbitrary commands with root privileges. Additionally, the My Book Live is vulnerable to an unauthenticated factory reset operation which allows an attacker to factory reset the device without authentication. The unauthenticated factory reset vulnerability [has] been assigned CVE-2021-35941."

Analysis of WD's firmware suggests code meant to prevent the issue had been commented out, preventing it from running, by WD itself, and an authentication type was not added to component_config.php which results in the drives not asking for authentication before performing the factory reset. The question then arises of why one hacker would use two different exploits, particularly an undocumented authentication bypass when they already had root access through the command injection vulnerability, with venerable tech site Ars Technica speculating that more than one group could be at work here, with one bunch of bad guys trying to take over, or sabotage, another's botnet.
Western Digital advises users to disconnect their device(s) from the internet. They are offering data recovery services beginning in July, and a trade-in program to switch the obsolete My Book Live drives for more modern My Cloud devices.
Emulation (Games)

Near, Creator of the Higan and Bsnes Emulators, Has Died (pcgamer.com) 245

Hmmmmmm shares a report from PC Gamer: Near, also known by their username Byuu, the creator of several groundbreaking videogame emulators and a recent celebrated translation of JRPG Bahamut Lagoon, has died by suicide. Near posted a thread on Twitter explaining how they were affected by a campaign of harassment organized against them on the Kiwi Farms forum. Subsequently, Hector Martin, an IT consultant and Linux hacker, posted a message about Near from a mutual friend (CW: contains explicit details of Near's method of suicide) and said that they had confirmed Near's death with police in a follow-up tweet. The linked document also focuses on the Kiwi Farms forum and the doxing and harassing of Near and their friends.

Near's bsnes was the first Super Nintendo emulator with 100% compatibility, and higan is a multi-system emulator supporting 26 different devices including the NES, SNES, Game Boy and Game Boy Advance, Sega Master System and Genesis/Mega Drive, and PC Engine. If you've played any of the indie games influenced by EarthBound, aka Mother 2, then odds are good that game's designer had a copy of EarthBound open in higan for reference. Parts of the emulator created to keep Stephen Hawking's voice synthesizer working in the final years of the famous physicist's life were even borrowed from higan's open source code.

Intel

Intel To Disable TSX By Default On More CPUs With New Microcode (phoronix.com) 46

Intel is going to be disabling Transactional Synchronization Extensions (TSX) by default for various Skylake through Coffee Lake processors with forthcoming microcode updates. Phoronix reports: Transactional Synchronization Extensions (TSX) have been around since Haswell for hardware transactional memory support and going off Intel's own past numbers can be around 40% faster in specific workloads or as much 4~5 times faster in database transaction benchmarks. TSX issues have been found in the past such as a possible side channel timing attack that could lead to KASLR being defeated and CVE-2019-11135 (TSX Async Abort) for an MDS-style flaw. Now in 2021 Intel is disabling TSX by default across multiple families of Intel CPUs from Skylake through Coffee Lake. [...] The Linux kernel is preparing for this microcode change as seen in the flow of new patches this morning for the 5.14 merge window.

A memory ordering issue is what is reportedly leading Intel to now deprecate TSX on various processors. There is this Intel whitepaper (PDF) updated this month that outlines the problem at length. As noted in the revision history, the memory ordering issue has been known to Intel since at least before October 2018 but only now in June 2021 are they pushing out microcode updates to disable TSX by default. With forthcoming microcode updates will effectively deprecate TSX for all Skylake Xeon CPUs prior to Stepping 5 (including Xeon D and 1st Gen Xeon Scalable), all 6th Gen Xeon E3-1500m v5 / E3-1200 v5 Skylake processors, all 7th/8th Gen Core and Pentium Kaby/Coffee/Whiskey CPUs prior to 0x8 stepping, and all 8th/9th Gen Core/Pentium Coffee Lake CPUs prior to 0xC stepping will be affected. That ultimately spans from various Skylake steppings through Coffee Lake; it was with 10th Gen Comet Lake and Ice Lake where TSX/TSX-NI was subsequently removed.

In addition to disabling TSX by default and force-aborting all RTM transactions by default, a new CPUID bit is being enumerated with the new microcode to indicate that the force aborting of RTM transactions. It's due to that new CPUID bit that the Linux kernel is seeing patches. Previously Linux and other operating systems applied a workaround for the TSX memory ordering issue but now when this feature is disabled, the kernel can drop said workaround. These patches are coming with the Linux 5.14 cycle and will likely be back-ported to stable too.

Open Source

Linux 5.13 Kernel Released, Includes Apple M1 Support, Clang CFI, and Landlock's Linux Security Module (phoronix.com) 33

"Linus Torvalds has just released the Linux 5.13 kernel as stable," reports Phoronix: Linux 5.13 brings initial but still early support for the Apple M1 with basic support but not yet accelerated graphics and a lot more to iron out moving ahead. There are also new Linux 5.13 security features like the Landlock security module, Clang control flow integrity support, and optionally randomizing the kernel stack offset at each system call. There is also AMD fun this cycle around FreeSync HDMI support, initial Aldebaran bring-up, and more. Intel has more work on Alder Lake, a new cooling driver, and more discrete graphics bring-up. There are also other changes for Linux 5.13 around faster IO_uring, a generic USB display driver, and other new hardware enablement.
"5.13 overall is actually fairly large," Linus Torvalds posted on the Linux Kernel Mailing List, calling it "one of the bigger 5.x releases, with over 16,000 commits (over 17k if you count merges), from over 2,000 developers. But it's a "big all over" kind of thing, not something particular that stands out as particularly unusual..."
The Courts

Texas Court Rules Teens Can Sue Facebook For Its Alleged Role in Their Sex Trafficking (houstonchronicle.com) 97

The Houston Chronicle reports: The Texas Supreme Court ruled Friday in a Houston case that Facebook is not a "lawless no-man's-land" and can be held liable for the conduct of pimps who use its technology to recruit and prey on children.

The ruling came in a trio of Houston civil actions involving teenage trafficking victims who met their abusive pimps through Facebook's messaging functions. They sued the California-based social media juggernaut for negligence and product liability, saying that Facebook failed to warn about or attempt to prevent sex trafficking from taking place on its internet platforms. The suits also alleged that Facebook benefited from the sexual exploitation of trafficking victims. The justices said trafficking victims can move forward with lawsuits on the grounds that Facebook violated a provision of the Texas Civil Practice and Remedies Code passed in 2009.

Facebook lawyers argued the company was shielded from liability under Section 230 of the federal Communications Decency Act, which states that what users say or write online is not akin to a publisher conveying the same message. Essentially, they said, Facebook is immune to these types of lawsuits. The majority wrote, "We do not understand Section 230 to 'create a lawless no-man's-land on the Internet' in which states are powerless to impose liability on websites that knowingly or intentionally participate in the evil of online human trafficking... Holding internet platforms accountable for the words or actions of their users is one thing, and the federal precedent uniformly dictates that Section 230 does not allow it," the opinion said. "Holding internet platforms accountable for their own misdeeds is quite another thing. This is particularly the case for human trafficking."

The justices explained that Congress recently amended Section 230 to add the possibility of civil liability for websites that violate state and federal human-trafficking laws. They said under the amended law states may protect residents from internet companies that knowingly or intentionally participate in human trafficking through their action or inaction..... Annie McAdams, a lead attorney for the plaintiffs, said it was a groundbreaking decision. This is the first case to beat Facebook on its argument that it had immunity under Section 230, she said.

Crime

French Engineer Claims He's Solved the Zodiac Killer's Final Code (msn.com) 57

The New York Times tells the story of Fayçal Ziraoui, a 38-year-old French-Moroccan business consultant who "caused an online uproar" after saying he'd cracked the last two unsolved ciphers of the four attributed to the Zodiac killer in California "and identified him, potentially ending a 50-year-old quest." Maybe because he said he cracked them in just two weeks. Many Zodiac enthusiasts consider the remaining ciphers — Z32 and Z13 — unsolvable because they are too short to determine the encryption key. An untold number of solutions could work, they say, rendering verification nearly impossible.

But Mr. Ziraoui said he had a sudden thought. The code-crackers who had solved the [earlier] 340-character cipher in December had been able to do so by identifying the encryption key, which they had put into the public domain when announcing their breakthrough. What if the killer used that same encryption key for the two remaining ciphers? So he said he applied it to the 32-character cipher, which the killer had included in a letter as the key to the location of a bomb set to go off at a school in the fall of 1970. (It never did, even though police failed to crack the code.) That produced a sequence of random letters from the alphabet. Mr. Ziraoui said he then worked through a half-dozen steps including letter-to-number substitutions, identifying coordinates in numbers and using a code-breaking program he created to crunch jumbles of letters into coherent words...

After two weeks of intense code-cracking, he deciphered the sentence, "LABOR DAY FIND 45.069 NORT 58.719 WEST." The message referred to coordinates based on the earth's magnetic field, not the more familiar geographic coordinates. The sequence zeroed in on a location near a school in South Lake Tahoe, a city in California referred to in another postcard believed to have been sent by the Zodiac killer in 1971.

An excited Mr. Ziraoui said he immediately turned to Z13, which supposedly revealed the killer's name, using the same encryption key and various cipher-cracking techniques. [The mostly un-coded letter includes a sentence which says "My name is _____," followed by a 13-character cipher.] After about an hour, Mr. Ziraoui said he came up with "KAYR," which he realized resembled the last name of Lawrence Kaye, a salesman and career criminal living in South Lake Tahoe who had been a suspect in the case. Mr. Kaye, who also used the pseudonym Kane, died in 2010.

The typo was similar to ones found in previous ciphers, he noticed, likely errors made by the killer when encoding the message. The result that was so close to Mr. Kaye's name and the South Lake Tahoe location were too much to be a coincidence, he thought. Mr. Kaye had been the subject of a report by Harvey Hines, a now-deceased police detective, who was convinced he was the Zodiac killer but was unable to convince his superiors. Around 2 a.m. on Jan. 3, an exhausted but elated Mr. Ziraoui posted a message entitled "Z13 — My Name is KAYE" on a 50,000-member Reddit forum dedicated to the Zodiac Killer.

The message was deleted within 30 minutes.

"Sorry, I've removed this one as part of a sort of general policy against Z13 solution posts," the forum's moderator wrote, arguing that the cipher was too short to be solvable.

Operating Systems

Linux X86/x86_64 Will Now Always Reserve the First 1MB of RAM (phoronix.com) 77

AmiMoJo shares a report from Phoronix: The Linux x86/x86_64 kernel code already had logic in place for reserving portions of the first 1MB of RAM to avoid the BIOS or kernel potentially clobbering that space among other reasons while now Linux 5.13 is doing away with that 'wankery' and will just unconditionally always reserve the first 1MB of RAM. The Linux kernel was already catering to Intel Sandy Bridge graphics accessing memory below the 1MB mark, the first 64K of memory are known to be corrupted by some BIOSes, and similar problems coming up in that low area of memory. But rather than dealing with all that logic and other possible niche cases besides the EGA/VGA frame-buffer and BIOS, the kernel is playing it safe and just always reserving the first 1MB of RAM so it will not get clobbered by the kernel.
KDE

KDE Plasma 5.22 Released (phoronix.com) 13

KDE Plasma 5.22 is now available, bringing "hugely improved" Wayland support, better performance for gaming, adaptive panel transparency for the panel and widgets, and more. Phoronix reports: There is now support for variable rate refresh (VRR) / Adaptive-Sync on Wayland, vertical/horizontal maximization now working with KWin Wayland, global menu applet support under Wayland, support for activities, and a lot of other general improvements and fixes so the overall Wayland support is much more polished and nearly at par to the X.Org Server support.

The performance for gaming with KDE Plasma on Wayland should also be better with now having direct scan-out support for full-screen windows. Rounding out the graphics fun with this release is also GPU hot-plugging support on Wayland for KWin, such as if using an external GPU or USB display adapter. KDE Plasma 5.22 also delivers on adaptive panel transparency for the panel and widgets, desktop notification improvements, Plasma System Monitor has replaced KSysGuard as the default system monitoring application, and a variety of other improvements.
You can view the full changelog for Plasma 5.22 here.
Earth

Geologists Marvel at Alaska Glacier's Rare 'Surge' -- Up to 60 Feet a Day (sfgate.com) 94

The hills of ice at the base of Alaska's Muldrow Glacier "have sat undisturbed and covered by tundra for more than 60 years," reports the Washington Post, adding that in normal years the glacier only moves about three inches a day.

But that's suddenly changed, and they're now moving between 360 and 720 inches a day (that is, 30 to 60 feet, every day). The rare phenomenon began last fall some 12 miles uphill. That's where the glacier initially started sliding, its smooth surface ice cracking under tremendous, hidden stresses. New crevasses opened and ice cliffs were pushed up in a chaotic jumble. The first witness was a pilot who spied the scene in March as he flew around the north side of Denali, the continent's tallest mountain.

The Muldrow has been "surging" forward ever since, at speeds up to 100 times faster than normal....

Surges are one of the last mysteries for those who study glaciers, in part because they happen so infrequently and in just a fraction of places around the world. The activity is different from a glacier actually growing in size, and it can take decades for the right conditions to develop.... The prevailing theory of surges is that the natural advance of a glacier causes friction, which melts the deepest ice. Loose gravel traps the meltwater underneath. But as snow and ice accumulate in the glacier's higher elevations, the mass there gets top heavy. A surge redistributes that mass to lower elevations, with the meltwater serving as a lubricant that helps the glacier pick up speed as it slides downhill.

This last happened with the Muldrow during the winter and spring of 1956-57. Given its record of surges roughly every 50 years, scientists had long anticipated the current event. Their concern is that a warming climate could spell disaster for future surges. "You wonder, 'Are you going to ever be able to see the surge again?' " said Chad Hults, regional geologist for Alaska's national parks. "I don't know, because 50 years from now, you might lose enough glacier ice that even if it surges... you might not actually even be able to see any difference."

For most of the glaciologists and geologists tracking today's surge, it's a once-in-a-lifetime thrill.

The article also reminds readers that "across the Alaska Range, glaciers are losing mass because of climate change."
Social Networks

Viral TikTok Video Attracts 2,500 Teenagers to Rowdy California Birthday Party. 175 Arrested (sfgate.com) 97

A birthday party for 17-year-old Adrian Lopez turned into a viral TikTok event that drew thousands of unruly party-goers to Huntington Beach, California, reports the Los Angeles Times.

Just not Adrian Lopez, "who in the days leading up to the party was increasingly nervous about all the attention." When it was over, more than 175 people were arrested, city officials and merchants were adding up the damage, and everyone was wondering who should be blamed and who should be billed...

The high schooler's invitation was picked up by TikTok's "For You" algorithm and viewed by people across the country. The announcement was curious: Who was this mystery teen, and would anyone actually go to his party? Some TikTok users, including internet celebrities, began posting about it, and videos with the hashtag #adrianskickback have since drawn more than 326 million views.

On Saturday night, roughly 2,500 teenagers and young adults — some who say they drove for hours or flew in from other states — converged on the Huntington Beach Pier and downtown area in a gathering that devolved into mayhem. Partygoers blasted fireworks into a mob in the middle of Pacific Coast Highway, jumped on police cars, scaled palm trees and flag poles and leapt from the pier into throngs of people below to crowd-surf. A window at CVS was smashed, businesses were tagged with graffiti, and the roof of Lifeguard Tower 13 collapsed after it was scaled...

Authorities spotted the party announcement when it began circulating last week and immediately began staffing up in preparation for what was being billed as a weekend-long event. In all, more than 150 officers from nearly every police agency in Orange County were called out to the beach Saturday night to help get the crowd under control. Clashes with police broke out Saturday, and officers fired rubber bullets and pepper projectiles as they tried to disperse the crowd. Eventually, authorities issued an overnight curfew to clear the streets...

The majority of those taken into custody over the weekend were not from Orange County, police said.

One 53-year-old watching the crowd told the Times that "Literally they were playing in traffic on the Pacific Coast Highway." But the Times also got a quote from one 18-year-old attendee who "went to last Saturday's party but said he does not condone the debauchery that ensued."

"People my age haven't gone out in a year... It was to get the ball rolling. This is the start of summer."

Slashdot Top Deals