Nvidia chief executive Jensen Huang has warned that China will beat the US in the AI race, thanks to lower energy costs and looser regulations. From a report: In the starkest comments yet from the head of the world's most valuable company, Huang told the FT: "China is going to win the AI race." Huang's remarks come after the Trump administration maintained a ban on California-based Nvidia selling its most advanced chips to Beijing following a meeting between US President Donald Trump and Chinese leader Xi Jinping last week. The Nvidia chief said that the west, including the US and UK, was being held back by "cynicism." "We need more optimism," Huang said on Wednesday on the sidelines of the Financial Times' Future of AI Summit. Huang singled out new rules on AI by US states that could result in "50 new regulations." He contrasted that approach with Chinese energy subsidies that made it more affordable for local tech companies to run Chinese alternatives to Nvidia's AI chips. "Power is free," he said.

Read more of this story at Slashdot.

A curious engineer discovered that his iLife A11 smart vacuum was remotely "killed" after he blocked it from sending data to the manufacturer's servers. By reverse-engineering it with custom hardware and Python scripts, he managed to revive the device to run fully offline. Tom's Hardware reports: An engineer got curious about how his iLife A11 smart vacuum worked and monitored the network traffic coming from the device. That's when he noticed it was constantly sending logs and telemetry data to the manufacturer -- something he hadn't consented to. The user, Harishankar, decided to block the telemetry servers' IP addresses on his network, while keeping the firmware and OTA servers open. While his smart gadget worked for a while, it just refused to turn on soon after. After a lengthy investigation, he discovered that a remote kill command had been issued to his device. He sent it to the service center multiple times, wherein the technicians would turn it on and see nothing wrong with the vacuum. When they returned it to him, it would work for a few days and then fail to boot again. After several rounds of back-and-forth, the service center probably got tired and just stopped accepting it, saying it was out of warranty. Because of this, he decided to disassemble the thing to determine what killed it and to see if he could get it working again. [...] So, why did the A11 work at the service center but refuse to run in his home? The technicians would reset the firmware on the smart vacuum, thus removing the kill code, and then connect it to an open network, making it run normally. But once it connected again to the network that had its telemetry servers blocked, it was bricked remotely because it couldn't communicate with the manufacturer's servers. Since he blocked the appliance's data collection capabilities, its maker decided to just kill it altogether. "Someone -- or something -- had remotely issued a kill command," says Harishankar. "Whether it was intentional punishment or automated enforcement of 'compliance,' the result was the same: a consumer device had turned on its owner." In the end, the owner was able to run his vacuum fully locally without manufacturer control after all the tweaks he made. This helped him retake control of his data and make use of his $300 software-bricked smart device on his own terms. As for the rest of us who don't have the technical knowledge and time to follow his accomplishments, his advice is to "Never use your primary WiFi network for IoT devices" and to "Treat them as strangers in your home."

Read more of this story at Slashdot.

China has delayed the return of its Shenzhou-20 crewed spacecraft after it was suspected to have been struck by space debris while docked at the Tiangong space station. "The Shenzhou-20 crewed spacecraft is suspected of being struck by a small piece of space debris, and impact analysis and risk assessment are underway," the China Manned Space Engineering Office (CMSEO) statement Nov. 5 read. "To ensure the safety and health of the astronauts and the complete success of the mission, it has been decided that the Shenzhou-20 return mission, originally scheduled for Nov. 5, will be postponed." SpaceNews reports: CMSEO did not specify the location of the suspected strike, the extent of any damage, or the data that indicated an impact. No potential dates were noted for a return to Earth. The Shenzhou-20 spacecraft launched April 24, carrying three astronauts -- commander Chen Dong and crewmates Chen Zhongrui and Wang Jie -- to the Tiangong space station. The spacecraft docked at the radial port of Tiangong's Tianhe core module. The crew have completed their six-month-long mission in orbit, and had handed over control of the space station to the newly-arrived Shenzhou-21 crew Nov. 4. Checks on the Shenzhou-20 spacecraft could include telemetry and leak tests, verifying guidance and propulsion systems, and screening for impacts in accelerometer and acoustic sensor data. A key concern would be potential damage to the spacecraft's thermal protection system or parachute deployment structures, both critical for safe atmospheric reentry and landing. Tiangong features a 10-meter-long robotic arm, capable of crawling, and a smaller, more precise arm. These could be employed to position cameras and provide closeup imagery of a potential impact. Crews may be able to conduct an extravehicular activity (EVA) to assess the situation. Tiangong crews have recently added debris shields during a number of EVAs; the same procedures, tools, and arm support can be adapted for a Shenzhou inspection.

Read more of this story at Slashdot.

A new study challenges the Nobel-winning theory that the universe's expansion is accelerating, suggesting instead that it may be slowing down as dark energy weakens -- potentially leading to a future "big crunch" where the cosmos collapses back in on itself. "Our study shows that the universe has already entered a phase of decelerated expansion at the present epoch and that dark energy evolves with time much more rapidly than previously thought," said Prof Young-Wook Lee, of Yonsei University in South Korea, who led the work. "If these results are confirmed, it would mark a major paradigm shift in cosmology since the discovery of dark energy 27 years ago." The Guardian reports: The latest work focuses on the reliability of observations of distant supernovae (exploding stars) that led to the discovery of dark energy, work that was awarded the 2011 Nobel prize in physics. [...] By estimating the ages of 300 host galaxies using a different method, the team concluded that there are simply variations in the properties of stars in the early universe that mean they produce, on average, fainter supernovae. Correcting for this systematic bias still results in an expanding universe, but suggests that the expansion has slowed down and that dark energy is waning, the analysis concluded. If dark energy keeps decreasing to the point where it becomes negative, the universe is theoretically predicted to end in a big crunch. The findings are published in Monthly Notices of the Royal Astronomical Society.

Read more of this story at Slashdot.

Our submitter, Gearhead, was embarking on STEM-related research. This required him to pursue funding from a governmental agency that we’ll call the Ministry of Silly Walks. In order to start a grant application and track its status, Gearhead had to create an account on the Ministry website.

The registration page asked for a lot of personal information first. Then Gearhead had to create his own username and password. He used his password generator to create a random string: D\h.|wAi=&:;^t9ZyoO

Upon clicking Save, he received an error.

Your password must be a minimum eight characters long, with no spaces. It must include at least three of the following character types: uppercase letter, lowercase letter, number, special character (e.g., !, $, % , ?).

Perplexed, Gearhead emailed the Ministry’s web support, asking why his registration failed. The reply:

Hello,
The site rejects password generators as hacking attempts. You will need to manually select a password.
Ex. GHott*01

Thank you,

Support

So a long sequence of random characters was an active threat, but a 1990s-era AOL username was just fine. What developer had this insane idea and convinced other people of it? How on earth did they determine what was a "manually selected" string versus a randomly-generated one?

It seems the deciding factor is nothing more than length. If you go to the Ministry’s registration page now, their password guidelines have changed (emphasis theirs):

Must be 8-10 characters long, must contain at least one special character ( ! @ # $ % ^ & * ( ) + = { } | < > \ _ - [ ] / ? ) and no spaces, may contain numbers (0-9), lower and upper case letters (a-z, A-Z). Please note that your password is case sensitive.

Only good can come of forcing tiny passwords.

The more a company or government needs secure practices, the less good they are at secure practices. Is that a law yet? It should be.

[Advertisement] Plan Your .NET 9 Migration with Confidence
Your journey to .NET 9 is more than just one decision.Avoid migration migraines with the advice in this free guide. Download Free Guide Now!

An anonymous reader quotes a report from MIT Technology Review: The US- and UK-based company Quantinuum today unveiled Helios, its third-generation quantum computer, which includes expanded computing power and error correction capability. Like all other existing quantum computers, Helios is not powerful enough to execute the industry's dream money-making algorithms, such as those that would be useful for materials discovery or financial modeling. But Quantinuum's machines, which use individual ions as qubits, could be easier to scale up than quantum computers that use superconducting circuits as qubits, such as Google's and IBM's. "Helios is an important proof point in our road map about how we'll scale to larger physical systems," says Jennifer Strabley, vice president at Quantinuum, which formed in 2021 from the merger of Honeywell Quantum Solutions and Cambridge Quantum. Honeywell remains Quantinuum's majority owner. Located at Quantinuum's facility in Colorado, Helios comprises a myriad of components, including mirrors, lasers, and optical fiber. Its core is a thumbnail-size chip containing the barium ions that serve as the qubits, which perform the actual computing. Helios computes with 98 barium ions at a time; its predecessor, H2, used 56 ytterbium qubits. The barium ions are an upgrade, as they have proven easier to control than ytterbium. These components all sit within a chamber that is cooled to about 15 Kelvin (-432.67 ), on top of an optical table. Users can access the computer by logging in remotely over the cloud. [...] Helios is noteworthy for its qubits' precision, says Rajibul Islam, a physicist at the University of Waterloo in Canada, who is not affiliated with Quantinuum. The computer's qubit error rates are low to begin with, which means it doesn't need to devote as much of its hardware to error correction. Quantinuum had pairs of qubits interact in an operation known as entanglement and found that they behaved as expected 99.921% of the time. "To the best of my knowledge, no other platform is at this level," says Islam. [...] Besides increasing the number of qubits on its chip, another notable achievement for Quantinuum is that it demonstrated error correction "on the fly," says David Hayes, the company's director of computational theory and design, That's a new capability for its machines. Nvidia GPUs were used to identify errors in the qubits in parallel. Hayes thinks that GPUs are more effective for error correction than chips known as FPGAs, also used in the industry. Quantinuum has used its computers to investigate the basic physics of magnetism and superconductivity. Earlier this year, it reported simulating a magnet on H2, Quantinuum's predecessor, with the claim that it "rivals the best classical approaches in expanding our understanding of magnetism." Along with announcing the introduction of Helios, the company has used the machine to simulate the behavior of electrons in a high-temperature superconductor. Quantinuum is expanding its Helios line with a new system in Minnesota. It's also started developing its fourth-generation quantum computer, Sol, set for 2027 with 192 qubits. Then, a fifth-generation system, Apollo, is expected in 2029 with thousands of qubits and full fault tolerance.

Read more of this story at Slashdot.

A bungled October 18 heist that saw $102 million of crown jewels stolen from the Louvre in broad daylight has exposed years of lax security at the national art museum. From trivial passwords like 'LOUVRE' to decades-old, unsupported systems and easy rooftop access, the job was made surprisingly easy. PC Gamer reports: As Rogue cofounder and former Polygon arch-jester Cass Marshall notes on Bluesky, we owe a lot of videogame designers an apology. We've spent years dunking on the emptyheadedness of game characters leaving their crucial security codes and vault combinations in the open for anyone to read, all while the Louvre has been using the password "Louvre" for its video surveillance servers. That's not an exaggeration. Confidential documents reviewed by Liberation detail a long history of Louvre security vulnerabilities, dating back to a 2014 cybersecurity audit performed by the French Cybersecurity Agency (ANSSI) at the museum's request. ANSSI experts were able to infiltrate the Louvre's security network to manipulate video surveillance and modify badge access. "How did the experts manage to infiltrate the network? Primarily due to the weakness of certain passwords which the French National Cybersecurity Agency (ANSSI) politely describes as 'trivial,'" writes Liberation's Brice Le Borgne via machine translation. "Type 'LOUVRE' to access a server managing the museum's video surveillance, or 'THALES' to access one of the software programs published by... Thales." The museum sought another audit from France's National Institute for Advanced Studies in Security and Justice in 2015. Concluded two years later, the audit's 40 pages of recommendations described "serious shortcomings," "poorly managed" visitor flow, rooftops that are easily accessible during construction work, and outdated and malfunctioning security systems. Later documents indicate that, in 2025, the Louvre was still using security software purchased in 2003 that is no longer supported by its developer, running on hardware using Windows Server 2003.

Read more of this story at Slashdot.

A new survey of over 300 US and UK gaming executives found that 72% view Steam as a monopoly. "Furthermore, 88% said that at least three-quarters of their revenue came from Steam, while 37% reported that the platform accounted for 90% of their total revenue," adds Techspot. From the report: Atomik Research conducted the recent survey on behalf of Rokky, a company that helps game publishers minimize the impact of grey market key resellers on prices. In addition to opinions on Steam, developers also answered questions about the PC market's biggest challenges. The increasing popularity of free-to-play games such as Fortnite, DOTA 2, Counter-Strike 2, Call of Duty: Warzone, and Roblox topped the list of concerns for 40% of respondents. Approximately a third mentioned market saturation and discoverability, echoing data that suggests there aren't enough players for the thousands of new titles released on Steam each year. A similar portion of survey respondents also expressed concerns regarding subscription services.

Read more of this story at Slashdot.

An anonymous reader quotes a report from the Associated Press: Google Maps is heading in a new direction with artificial intelligence sitting in the passenger's seat. Fueled by Google's Gemini AI technology, the world's most popular navigation app will become a more conversational companion as part of a redesign announced Wednesday. The hands-free experience is meant to turn Google Maps into something more like an insightful passenger able to direct a driver to a destination while also providing nearby recommendations on places to eat, shop or sightsee, when asked for the advice. "No fumbling required -- now you can just ask," Google promised in a blog post about the app makeover. The AI features are also supposed to enable Google Maps to be more precise by calling out landmarks to denote the place to make a turn instead of relying on distance notifications. AI chatbots, like Gemini and OpenAI's ChatGPT, have sometimes lapsed into periods of making things up -- known as "hallucinations" in tech speak -- but Google is promising that built-in safeguards will prevent Maps from accidentally sending drivers down the wrong road. All the information that Gemini is drawing upon will be culled from the roughly 250 million places stored in Google Maps' database of reviews accumulated during the past 20 years. Google Maps' new AI capabilities will be rolling out to both Apple's iPhone and Android mobile devices.

Read more of this story at Slashdot.

A new bipartisan bill introduced by Senators Mark Warner and Josh Hawley would require companies and federal agencies to report quarterly on AI-related workforce changes, including layoffs, new hires, and retraining efforts. The data from the AI-Related Job Impacts Clarity Act (PDF) would then be compiled by the Department of Labor into a publicly available report. "This bipartisan legislation will finally give us a clear picture of AI's impact on the workforce," Warner said in a statement. "Armed with this information, we can make sure AI drives opportunity instead of leaving workers behind."

Read more of this story at Slashdot.

A new Activate Consulting report reveals that 43% of Gen Z now prefer YouTube and TikTok over traditional TV or paid streaming. With global media revenues surging and traditional TV viewership collapsing, the average person now spends over 13 hours a day consuming content across platforms, effectively living a "32-hour day" through multitasking. Variety reports: Per the same survey, the popularity of "microdramas" -- one of the latest trends on those platforms, consisting of 1-2 minute scripted episodes of an ongoing storyline -- has been increasing at a fast rate with 28 million U.S. adults (52% aged 18-34) reportedly watching that new form of content. Additional findings include projections for global internet and media revenue to increase by $388 billion by 2029, while average daily time spent streaming video will climb to 4 hours and 8 minutes as time spent watching traditional TV is set to collapse to just 1 hour and 17 minutes. Activate estimates that, as a result, streaming revenues (from ads and subscriptions) will grow 18-19% annually while traditional TV revenues will fall 4-6% year to year.

Read more of this story at Slashdot.

An anonymous reader quotes a report from the Guardian: Authorities in Denmark are urgently studying how to close an apparent security loophole in hundreds of Chinese-made electric buses that enables them to be remotely deactivated. The investigation comes after transport authorities in Norway, where the Yutong buses are also in service, found that the Chinese supplier had remote access for software updates and diagnostics to the vehicles' control systems -- which could be exploited to affect buses while in transit. Amid concerns over potential security risks, the Norwegian public transport authority Ruter decided to test two electric buses in an isolated environment. Bernt Reitan Jenssen, Ruter's chief executive, said: "The testing revealed risks that we are now taking measures against. National and local authorities have been informed and must assist with additional measures at a national level." Their investigations found that remote deactivation could be prevented by removing the buses' sim cards, but they decided against this because it would also disconnect the bus from other systems. Ruter said it planned to bring in stricter security requirements for future procurements. Jenssen said it must act before the arrival of the next generation of buses, which could be even "more integrated and harder to secure." Movia, Denmark's largest public transport company, has 469 Chinese electric buses in operation -- 262 of which were manufactured by Yutong. Jeppe Gaard, Movia's chief operating officer, said he was made aware of the loophole last week. "This is not a Chinese bus problem," he said. "It is a problem for all types of vehicles and devices with Chinese electronics built in."

Read more of this story at Slashdot.

An anonymous reader shares a report: T-Mobile is opening up access to its Starlink-powered emergency texting service. The carrier announced on Wednesday that anyone with a compatible phone -- even AT&T and Verizon customers -- can sign up to text 911 over satellite for free. In July, T-Mobile launched its "T-Satellite" service to customers across the US for $10 per month, allowing both T-Mobile and non-T-Mobile customers to send messages, share their location, and access select apps over satellite. This service also includes texts to 911, but now, that's available for free.

Read more of this story at Slashdot.

An anonymous reader shares a report: The Microsoft Store on the web now lets you create a multi-app install package on Windows 11 that installs multiple applications from a single installer. This means you can now install multiple apps simultaneously without having to download each one manually. The experience is similar to that of the third-party app Ninite, a package manager that lets you install multiple apps at once.

Read more of this story at Slashdot.

Nothing has announced that it will allow users to delete Facebook, Instagram and other Meta services from its mid-range and entry-level phones after users objected to the company's decision to pre-install these apps. The update will arrive by the end of November for devices running the Android 16-based OS 4.0 on the Phone (3a) series. Nothing said it will continue to pre-install partner apps on non-flagship devices in most regions. Devices in the United Kingdom, European Union and Japan will also come with TikTok installed by default. The company defended the practice by saying most users rely on these apps and that pre-installing them allows faster cold starts. Carl Pei's company blamed razor-thin margins on mid-range devices for the decision to bundle third-party software. Nothing did not address whether users can uninstall the service that powers newly introduced lock screen advertisements, which the company previously described as disabled by default and standard across the industry.

Read more of this story at Slashdot.

Solar geoengineering could increase the ferocity of North Atlantic hurricanes, cause the Amazon rainforest to die back and cause drought in parts of Africa if deployed above only some parts of the planet by rogue actors, a report has warned. The Guardian: However, if technology to block the sun was used globally and in a coordinated way for a long period -- decades or even centuries -- there is strong evidence that it would lower the global temperature, the review from the UK's Royal Society concluded. The world is failing to halt the climate crisis and the researchers said that in future, a judgment might need to be made between the risks of geoengineering and the those of continued global heating, which is already costing lives and livelihoods. The logistics of a large-scale geoengineering effort would be daunting, the experts said, but the cost would be small relative to climate action -- billions of dollars a year against trillions. The researchers emphasised that geoengineering only masked the symptoms of the climate crisis, and did not tackle the root cause -- the burning of fossil fuels. Geoengineering could only complement the cutting of emissions, not replace it, they said. If geoengineering was halted abruptly but emissions had not been reduced, there would be a termination shock of rapidly rising temperatures -- 1-2C within a couple of decades -- that would have severe effects on people and ecosystems unable to rapidly adapt.

Read more of this story at Slashdot.

Financial Times: Deutsche Bank is exploring ways to hedge its exposure to data centres after extending billions of dollars in debt to the sector to keep up with demand for artificial intelligence and cloud computing. Executives inside the bank have discussed ways to manage its exposure to the booming industry as so-called hyperscalers pour hundreds of billions of dollars into building infrastructure for their AI needs that is increasingly funded by debt. The German lender is looking at options including shorting a basket of AI-related stocks that would help mitigate downside risk by betting against companies in the sector. It is also considering buying default protection on some of the debt using derivatives through a transaction known as synthetic risk transfer (SRT). Deutsche's investment banking business has "bet big" on data centre financing, according to one senior executive. However, the scale of expenditure on AI infrastructure has prompted concerns that a bubble is forming with some likening the enthusiasm to that which preceded the dotcom crash. Sceptics have pointed out that billions of dollars have been deployed in an untested industry with assets that quickly depreciate in value due to the rapid change in technology.

Read more of this story at Slashdot.

The Chinese government has issued guidance requiring new data centre projects that have received any state funds to only use domestically-made AI chips, Reuters reported Wednesday, citing sources familiar with the matter. From the report: In recent weeks, Chinese regulatory authorities have ordered such data centres that are less than 30% complete to remove all installed foreign chips, or cancel plans to purchase them, while projects in a more advanced stage will be decided on a case-by-case basis, the sources said. The move could represent one of China's most aggressive steps yet to eliminate foreign technology from its critical infrastructure amid a pause in trade hostilities between Washington and Beijing, and achieve its quest for AI chip self-sufficiency. China's access to advanced AI chips, including those made by Nvidia, has been a key point of friction with the U.S., as the two wrestle for dominance in high-end computing power and AI. U.S. President Donald Trump said in an interview aired on Sunday following talks with Chinese President Xi Jinping last week that Washington will "let them deal with Nvidia but not in terms of the most advanced" chips.

Read more of this story at Slashdot.

Epic Games and Google have agreed to settle their long-running antitrust lawsuit. The settlement converts Judge James Donato's United States-only injunction into a global agreement extending through June 2032. Google will reduce its standard app store fees to either 20% or 9% depending on the transaction type. The company will also create a program in the next major Android release allowing alternative app stores to register and become what Google calls first-class citizens. Users will be able to install these registered app stores from a website with a single click using neutral language. The settlement addresses Epic's concerns about friction and scare screens that discouraged sideloading. Google will charge a 5% fee for transactions using Google Play Billing, separate from its service fee. Alternative payment options must be shown alongside Google Play Billing.

Read more of this story at Slashdot.

An anonymous reader shares a report: Kodak quietly acknowledged this week that it will begin selling two famous types of film stock -- Kodak Gold 200 and Kodak Ultramax 400 -- directly to retailers and distributors in the U.S., another indication that the historic company is taking back control over how people buy its film. The release comes on the heels of Kodak announcing that it would make and sell two new stocks of film called Kodacolor 100 and Kodacolor 200 in October. On Monday, both Kodak Gold and Kodak Ultramax showed back up on Kodak's website as film stocks that it makes and sells. When asked by 404 Media, a company spokesperson said that it has "launched" these film stocks and will begin to "sell the films directly to distributors in the U.S. and Canada, giving Kodak greater control over our participation in the consumer film market."

Read more of this story at Slashdot.