A bungled October 18 heist that saw $102 million of crown jewels stolen from the Louvre in broad daylight has exposed years of lax security at the national art museum. From trivial passwords like 'LOUVRE' to decades-old, unsupported systems and easy rooftop access, the job was made surprisingly easy. PC Gamer reports: As Rogue cofounder and former Polygon arch-jester Cass Marshall notes on Bluesky, we owe a lot of videogame designers an apology. We've spent years dunking on the emptyheadedness of game characters leaving their crucial security codes and vault combinations in the open for anyone to read, all while the Louvre has been using the password "Louvre" for its video surveillance servers. That's not an exaggeration. Confidential documents reviewed by Liberation detail a long history of Louvre security vulnerabilities, dating back to a 2014 cybersecurity audit performed by the French Cybersecurity Agency (ANSSI) at the museum's request. ANSSI experts were able to infiltrate the Louvre's security network to manipulate video surveillance and modify badge access. "How did the experts manage to infiltrate the network? Primarily due to the weakness of certain passwords which the French National Cybersecurity Agency (ANSSI) politely describes as 'trivial,'" writes Liberation's Brice Le Borgne via machine translation. "Type 'LOUVRE' to access a server managing the museum's video surveillance, or 'THALES' to access one of the software programs published by... Thales." The museum sought another audit from France's National Institute for Advanced Studies in Security and Justice in 2015. Concluded two years later, the audit's 40 pages of recommendations described "serious shortcomings," "poorly managed" visitor flow, rooftops that are easily accessible during construction work, and outdated and malfunctioning security systems. Later documents indicate that, in 2025, the Louvre was still using security software purchased in 2003 that is no longer supported by its developer, running on hardware using Windows Server 2003.

Read more of this story at Slashdot.

A new survey of over 300 US and UK gaming executives found that 72% view Steam as a monopoly. "Furthermore, 88% said that at least three-quarters of their revenue came from Steam, while 37% reported that the platform accounted for 90% of their total revenue," adds Techspot. From the report: Atomik Research conducted the recent survey on behalf of Rokky, a company that helps game publishers minimize the impact of grey market key resellers on prices. In addition to opinions on Steam, developers also answered questions about the PC market's biggest challenges. The increasing popularity of free-to-play games such as Fortnite, DOTA 2, Counter-Strike 2, Call of Duty: Warzone, and Roblox topped the list of concerns for 40% of respondents. Approximately a third mentioned market saturation and discoverability, echoing data that suggests there aren't enough players for the thousands of new titles released on Steam each year. A similar portion of survey respondents also expressed concerns regarding subscription services.

Read more of this story at Slashdot.

An anonymous reader quotes a report from the Associated Press: Google Maps is heading in a new direction with artificial intelligence sitting in the passenger's seat. Fueled by Google's Gemini AI technology, the world's most popular navigation app will become a more conversational companion as part of a redesign announced Wednesday. The hands-free experience is meant to turn Google Maps into something more like an insightful passenger able to direct a driver to a destination while also providing nearby recommendations on places to eat, shop or sightsee, when asked for the advice. "No fumbling required -- now you can just ask," Google promised in a blog post about the app makeover. The AI features are also supposed to enable Google Maps to be more precise by calling out landmarks to denote the place to make a turn instead of relying on distance notifications. AI chatbots, like Gemini and OpenAI's ChatGPT, have sometimes lapsed into periods of making things up -- known as "hallucinations" in tech speak -- but Google is promising that built-in safeguards will prevent Maps from accidentally sending drivers down the wrong road. All the information that Gemini is drawing upon will be culled from the roughly 250 million places stored in Google Maps' database of reviews accumulated during the past 20 years. Google Maps' new AI capabilities will be rolling out to both Apple's iPhone and Android mobile devices.

Read more of this story at Slashdot.

A new bipartisan bill introduced by Senators Mark Warner and Josh Hawley would require companies and federal agencies to report quarterly on AI-related workforce changes, including layoffs, new hires, and retraining efforts. The data from the AI-Related Job Impacts Clarity Act (PDF) would then be compiled by the Department of Labor into a publicly available report. "This bipartisan legislation will finally give us a clear picture of AI's impact on the workforce," Warner said in a statement. "Armed with this information, we can make sure AI drives opportunity instead of leaving workers behind."

Read more of this story at Slashdot.

A new Activate Consulting report reveals that 43% of Gen Z now prefer YouTube and TikTok over traditional TV or paid streaming. With global media revenues surging and traditional TV viewership collapsing, the average person now spends over 13 hours a day consuming content across platforms, effectively living a "32-hour day" through multitasking. Variety reports: Per the same survey, the popularity of "microdramas" -- one of the latest trends on those platforms, consisting of 1-2 minute scripted episodes of an ongoing storyline -- has been increasing at a fast rate with 28 million U.S. adults (52% aged 18-34) reportedly watching that new form of content. Additional findings include projections for global internet and media revenue to increase by $388 billion by 2029, while average daily time spent streaming video will climb to 4 hours and 8 minutes as time spent watching traditional TV is set to collapse to just 1 hour and 17 minutes. Activate estimates that, as a result, streaming revenues (from ads and subscriptions) will grow 18-19% annually while traditional TV revenues will fall 4-6% year to year.

Read more of this story at Slashdot.

An anonymous reader quotes a report from the Guardian: Authorities in Denmark are urgently studying how to close an apparent security loophole in hundreds of Chinese-made electric buses that enables them to be remotely deactivated. The investigation comes after transport authorities in Norway, where the Yutong buses are also in service, found that the Chinese supplier had remote access for software updates and diagnostics to the vehicles' control systems -- which could be exploited to affect buses while in transit. Amid concerns over potential security risks, the Norwegian public transport authority Ruter decided to test two electric buses in an isolated environment. Bernt Reitan Jenssen, Ruter's chief executive, said: "The testing revealed risks that we are now taking measures against. National and local authorities have been informed and must assist with additional measures at a national level." Their investigations found that remote deactivation could be prevented by removing the buses' sim cards, but they decided against this because it would also disconnect the bus from other systems. Ruter said it planned to bring in stricter security requirements for future procurements. Jenssen said it must act before the arrival of the next generation of buses, which could be even "more integrated and harder to secure." Movia, Denmark's largest public transport company, has 469 Chinese electric buses in operation -- 262 of which were manufactured by Yutong. Jeppe Gaard, Movia's chief operating officer, said he was made aware of the loophole last week. "This is not a Chinese bus problem," he said. "It is a problem for all types of vehicles and devices with Chinese electronics built in."

Read more of this story at Slashdot.

An anonymous reader shares a report: T-Mobile is opening up access to its Starlink-powered emergency texting service. The carrier announced on Wednesday that anyone with a compatible phone -- even AT&T and Verizon customers -- can sign up to text 911 over satellite for free. In July, T-Mobile launched its "T-Satellite" service to customers across the US for $10 per month, allowing both T-Mobile and non-T-Mobile customers to send messages, share their location, and access select apps over satellite. This service also includes texts to 911, but now, that's available for free.

Read more of this story at Slashdot.

An anonymous reader shares a report: The Microsoft Store on the web now lets you create a multi-app install package on Windows 11 that installs multiple applications from a single installer. This means you can now install multiple apps simultaneously without having to download each one manually. The experience is similar to that of the third-party app Ninite, a package manager that lets you install multiple apps at once.

Read more of this story at Slashdot.

Nothing has announced that it will allow users to delete Facebook, Instagram and other Meta services from its mid-range and entry-level phones after users objected to the company's decision to pre-install these apps. The update will arrive by the end of November for devices running the Android 16-based OS 4.0 on the Phone (3a) series. Nothing said it will continue to pre-install partner apps on non-flagship devices in most regions. Devices in the United Kingdom, European Union and Japan will also come with TikTok installed by default. The company defended the practice by saying most users rely on these apps and that pre-installing them allows faster cold starts. Carl Pei's company blamed razor-thin margins on mid-range devices for the decision to bundle third-party software. Nothing did not address whether users can uninstall the service that powers newly introduced lock screen advertisements, which the company previously described as disabled by default and standard across the industry.

Read more of this story at Slashdot.

Solar geoengineering could increase the ferocity of North Atlantic hurricanes, cause the Amazon rainforest to die back and cause drought in parts of Africa if deployed above only some parts of the planet by rogue actors, a report has warned. The Guardian: However, if technology to block the sun was used globally and in a coordinated way for a long period -- decades or even centuries -- there is strong evidence that it would lower the global temperature, the review from the UK's Royal Society concluded. The world is failing to halt the climate crisis and the researchers said that in future, a judgment might need to be made between the risks of geoengineering and the those of continued global heating, which is already costing lives and livelihoods. The logistics of a large-scale geoengineering effort would be daunting, the experts said, but the cost would be small relative to climate action -- billions of dollars a year against trillions. The researchers emphasised that geoengineering only masked the symptoms of the climate crisis, and did not tackle the root cause -- the burning of fossil fuels. Geoengineering could only complement the cutting of emissions, not replace it, they said. If geoengineering was halted abruptly but emissions had not been reduced, there would be a termination shock of rapidly rising temperatures -- 1-2C within a couple of decades -- that would have severe effects on people and ecosystems unable to rapidly adapt.

Read more of this story at Slashdot.

Financial Times: Deutsche Bank is exploring ways to hedge its exposure to data centres after extending billions of dollars in debt to the sector to keep up with demand for artificial intelligence and cloud computing. Executives inside the bank have discussed ways to manage its exposure to the booming industry as so-called hyperscalers pour hundreds of billions of dollars into building infrastructure for their AI needs that is increasingly funded by debt. The German lender is looking at options including shorting a basket of AI-related stocks that would help mitigate downside risk by betting against companies in the sector. It is also considering buying default protection on some of the debt using derivatives through a transaction known as synthetic risk transfer (SRT). Deutsche's investment banking business has "bet big" on data centre financing, according to one senior executive. However, the scale of expenditure on AI infrastructure has prompted concerns that a bubble is forming with some likening the enthusiasm to that which preceded the dotcom crash. Sceptics have pointed out that billions of dollars have been deployed in an untested industry with assets that quickly depreciate in value due to the rapid change in technology.

Read more of this story at Slashdot.

The Chinese government has issued guidance requiring new data centre projects that have received any state funds to only use domestically-made AI chips, Reuters reported Wednesday, citing sources familiar with the matter. From the report: In recent weeks, Chinese regulatory authorities have ordered such data centres that are less than 30% complete to remove all installed foreign chips, or cancel plans to purchase them, while projects in a more advanced stage will be decided on a case-by-case basis, the sources said. The move could represent one of China's most aggressive steps yet to eliminate foreign technology from its critical infrastructure amid a pause in trade hostilities between Washington and Beijing, and achieve its quest for AI chip self-sufficiency. China's access to advanced AI chips, including those made by Nvidia, has been a key point of friction with the U.S., as the two wrestle for dominance in high-end computing power and AI. U.S. President Donald Trump said in an interview aired on Sunday following talks with Chinese President Xi Jinping last week that Washington will "let them deal with Nvidia but not in terms of the most advanced" chips.

Read more of this story at Slashdot.

Epic Games and Google have agreed to settle their long-running antitrust lawsuit. The settlement converts Judge James Donato's United States-only injunction into a global agreement extending through June 2032. Google will reduce its standard app store fees to either 20% or 9% depending on the transaction type. The company will also create a program in the next major Android release allowing alternative app stores to register and become what Google calls first-class citizens. Users will be able to install these registered app stores from a website with a single click using neutral language. The settlement addresses Epic's concerns about friction and scare screens that discouraged sideloading. Google will charge a 5% fee for transactions using Google Play Billing, separate from its service fee. Alternative payment options must be shown alongside Google Play Billing.

Read more of this story at Slashdot.

An anonymous reader shares a report: Kodak quietly acknowledged this week that it will begin selling two famous types of film stock -- Kodak Gold 200 and Kodak Ultramax 400 -- directly to retailers and distributors in the U.S., another indication that the historic company is taking back control over how people buy its film. The release comes on the heels of Kodak announcing that it would make and sell two new stocks of film called Kodacolor 100 and Kodacolor 200 in October. On Monday, both Kodak Gold and Kodak Ultramax showed back up on Kodak's website as film stocks that it makes and sells. When asked by 404 Media, a company spokesperson said that it has "launched" these film stocks and will begin to "sell the films directly to distributors in the U.S. and Canada, giving Kodak greater control over our participation in the consumer film market."

Read more of this story at Slashdot.

An anonymous reader shares a report: The world should watch out for three possible bubbles in financial markets, including AI, the head of the World Economic Forum said on Wednesday, in comments that came amid sharp falls in global technology stocks. Brokers and analysts say the falls are a cause for caution but not panic as markets have been touching record highs and some valuations are looking overblown. "We could possibly see bubbles moving forward. One is a crypto bubble, second an AI bubble, and the third would be a debt bubble," WEF president Borge Brende told reporters during a visit to Brazil's financial hub, Sao Paolo.

Read more of this story at Slashdot.

Europe's self-driving car industry has fallen far behind the United States and China. Self-driving taxis developed by Tesla and Waymo have become commonplace in several American cities. Waymo overtook Lyft's market share in San Francisco in June. China operates a thriving robotaxi industry led by Baidu, WeRide and Pony AI. Europe has no established player and runs pilot projects in only a handful of cities. The most promising is Volkswagen-backed Moia in Germany. Markus Villig, chief executive of Estonian ride-hailing company Bolt Technology, told Brussels officials in mid-October that Europeans will move about their cities in American robotaxis by 2030 unless the European Commission acts quickly. He called for investment, regulatory clarity and restrictions on foreign competitors. Traffic laws governing self-driving tests vary at national and city levels across Europe. Commission President Ursula von der Leyen delivered a speech in Turin about AI adoption days before Villig's visit. Last week, Henna Virkkunen, the commission's technology chief, gathered carmakers and technologists to create a harmonized framework for self-driving cars. Waymo announced plans to provide driverless rides in the United Kingdom starting in 2026.

Read more of this story at Slashdot.

Brazil is set to announce Thursday the establishment of a multibillion-dollar fund designed to pay countries to keep their tropical forests standing. The Tropical Forest Forever Facility would deliver $4 billion per year to as many as 74 countries that maintain their forest cover. The fund requires $25 billion from governments and philanthropies to begin operations. Private investors would contribute the remaining $100 billion. Brazil has committed $1 billion. Countries would receive around $4 per hectare of standing forest after using satellite imagery to verify forests remain in place. Nations with annual deforestation rates above 0.5% are ineligible for payouts. Indonesia, which has rapidly lost forests to palm-oil cultivation and mining, cannot participate. One-fifth of the payments are designated for forest communities. The World Bank is managing the fund.

Read more of this story at Slashdot.

DRAM contract prices surged 171.8% year-over-year as of the third quarter of 2025. The increase now exceeds the rate at which gold prices have climbed. ADATA chairman Chen Libai stated that the fourth quarter of 2025 will mark the beginning of a major DRAM bull market. He expects severe shortages to materialize in 2026. Memory manufacturers have shifted production priorities toward datacenter-focused memory types like RDIMM and HBM. Consumer DDR5 production has declined as a result. A Corsair Vengeance RGB dual-channel DDR5 kit that sold for $91 dollars in July now costs a $183 dollars on Newegg. The pricing trend extends to NAND flash and hard drives. Analysts project the increases will persist for at least four years, matching the duration of supply contracts that some companies have signed with Samsung and SK Hynix.

Read more of this story at Slashdot.

President Trump has re-nominated tech billionaire and private astronaut Jared Isaacman to lead NASA, reversing his earlier withdrawal over concerns about Isaacman's political affiliations. CBS News reports: Mr. Trump nominated Isaacman to the Senate-confirmed post last year, but announced in late May he had decided to withdraw Isaacman after a "thorough review" of his "prior associations." Weeks after the withdrawal, the president went further in expressing his concerns about Isaacman's credentials. At the time, Mr. Trump acknowledged that he thought Isaacman "was very good," but had been "surprised to learn" that Isaacman was a "blue-blooded Democrat, who had never contributed to a Republican before." [...] Mr. Trump made no mention of his previous decision to nominate and then withdraw Isaacman in his Tuesday evening announcement of the re-nomination on his Truth Social platform. "This evening, I am pleased to nominate Jared Isaacman, an accomplished business leader, philanthropist, pilot, and astronaut, as Administrator of NASA," Trump posted. "Jared's passion for Space, astronaut experience, and dedication to pushing the boundaries of exploration, unlocking the mysteries of the universe, and advancing the new Space economy, make him ideally suited to lead NASA into a bold new Era."

Read more of this story at Slashdot.

Longtime Slashdot reader hackingbear writes: South China Morning Post, citing Chinese state media, reported that an experimental reactor developed in the Gobi Desert by the Chinese Academy of Sciences' Shanghai Institute of Applied Physics has achieved thorium-to-uranium fuel conversion, paving the way for an almost endless supply of nuclear energy. It is the first time in the world that scientists have been able to acquire experimental data on thorium operations from inside a molten salt reactor according to a report by Science and Technology Daily. Thorium is much more abundant and accessible than uranium and has enormous energy potential. One mine tailings site in Inner Mongolia is estimated to hold enough of the element to power China entirely for more than 1,000 years. At the heart of the breakthrough is a process known as in-core thorium-to-uranium conversion that transforms naturally occurring thorium-232 into uranium-233 -- a fissile isotope capable of sustaining nuclear chain reactions within the reactor itself. Thorium (Th-232) is not itself fissile and so is not directly usable in a thermal neutron reactor. Thorium fuels therefore need a fissile material as a 'driver' so that a chain reaction (and thus supply of surplus neutrons) can be maintained. The only fissile driver options are U-233, U-235 or Pu-239. (None of these are easy to supply.) In the 1960s, the Oak Ridge National Laboratory (USA) designed and built a demonstration MSR using U-233, derived externally from thorium as the main fissile driver.

Read more of this story at Slashdot.