The Supreme Court has agreed to hear a challenge to a Texas law requiring age verification to access online pornography, which opponents argue violates the First Amendment by discouraging adults from viewing such material due to privacy concerns. A federal judge blocked the law citing its chilling effect on free speech, but a divided appeals court upheld it, emphasizing the government's interest in protecting minors; the case will now be reviewed by the Supreme Court. The Texas bill in question, HB 1181, was passed into law last June. The New York Times reports: The Supreme Court agreed on Tuesday to hear a challenge to a Texas law that seeks to limit minors' access to pornography on the internet by requiring age verification measures like the submission of government-issued IDs. A trade group, companies that produce sexual materials and a performer challenged the law, saying that it violates the First Amendment right of adults. The law does not allow companies to retain information their users submit. But the challengers said adults would be wary of supplying personal information for fear of identity theft, tracking and extortion. [...] In urging the Supreme Court to leave the law in place while it considers whether to hear the case, Ken Paxton, Texas' attorney general, said pornography available on the internet is "orders of magnitude more graphic, violent and degrading than any so-called 'girlie' magazine of yesteryear." He added: "This statute does not prohibit the performance, production or even sale of pornography but, more modestly, simply requires the pornography industry that make billions of dollars from peddling smut to take commercially reasonable steps to ensure that those who access the material are adults. There is nothing unconstitutional about it."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Human Rights Watch (HRW) continues to reveal how photos of real children casually posted online years ago are being used to train AI models powering image generators -- even when platforms prohibit scraping and families use strict privacy settings. Last month, HRW researcher Hye Jung Han found 170 photos of Brazilian kids that were linked in LAION-5B, a popular AI dataset built from Common Crawl snapshots of the public web. Now, she has released a second report, flagging 190 photos of children from all of Australia's states and territories, including indigenous children who may be particularly vulnerable to harms. These photos are linked in the dataset "without the knowledge or consent of the children or their families." They span the entirety of childhood, making it possible for AI image generators to generate realistic deepfakes of real Australian children, Han's report said. Perhaps even more concerning, the URLs in the dataset sometimes reveal identifying information about children, including their names and locations where photos were shot, making it easy to track down children whose images might not otherwise be discoverable online. That puts children in danger of privacy and safety risks, Han said, and some parents thinking they've protected their kids' privacy online may not realize that these risks exist. From a single link to one photo that showed "two boys, ages 3 and 4, grinning from ear to ear as they hold paintbrushes in front of a colorful mural," Han could trace "both children's full names and ages, and the name of the preschool they attend in Perth, in Western Australia." And perhaps most disturbingly, "information about these children does not appear to exist anywhere else on the Internet" -- suggesting that families were particularly cautious in shielding these boys' identities online. Stricter privacy settings were used in another image that Han found linked in the dataset. The photo showed "a close-up of two boys making funny faces, captured from a video posted on YouTube of teenagers celebrating" during the week after their final exams, Han reported. Whoever posted that YouTube video adjusted privacy settings so that it would be "unlisted" and would not appear in searches. Only someone with a link to the video was supposed to have access, but that didn't stop Common Crawl from archiving the image, nor did YouTube policies prohibiting AI scraping or harvesting of identifying information. Reached for comment, YouTube's spokesperson, Jack Malon, told Ars that YouTube has "been clear that the unauthorized scraping of YouTube content is a violation of our Terms of Service, and we continue to take action against this type of abuse." But Han worries that even if YouTube did join efforts to remove images of children from the dataset, the damage has been done, since AI tools have already trained on them. That's why -- even more than parents need tech companies to up their game blocking AI training -- kids need regulators to intervene and stop training before it happens, Han's report said. Han's report comes a month before Australia is expected to release a reformed draft of the country's Privacy Act. Those reforms include a draft of Australia's first child data protection law, known as the Children's Online Privacy Code, but Han told Ars that even people involved in long-running discussions about reforms aren't "actually sure how much the government is going to announce in August." "Children in Australia are waiting with bated breath to see if the government will adopt protections for them," Han said, emphasizing in her report that "children should not have to live in fear that their photos might be stolen and weaponized against them."

Read more of this story at Slashdot.

Nearly half of Americans are using third-party antivirus software and the rest are either using the default protection in their operating system -- or none at all. From a report: In all, 46 percent of almost 1,000 US citizens surveyed by the reviews site Security.org said they used third-party antivirus on their computers, with 49 percent on their PCs, 18 percent using it on their tablets, and 17 percent on their phones. Of those who solely rely on their operating system's built-in security -- such as Microsoft's Windows Defender, Apple's XProtect, and Android's Google Play -- 12 percent are planning to switch to third-party software in the next six months. Of those who do look outside the OS, 54 percent of people pay for the security software, 43 percent choose the stripped-down free version, and worryingly, three percent aren't sure whether they pay or not. Among paying users, the most popular brands were Norton, McAfee, and Malwarebytes, while free users preferred -- in order -- McAfee, Avast, and Malwarebytes. The overwhelming reason for purchasing, cited by 84 percent of respondents, was, of course, fear of malware. The next most common reasons were privacy, at 54 percent, and worries over online shopping, at 48 percent. Fear of losing cryptocurrency stashes from wallets was at eight percent, doubled since last year's survey.

Read more of this story at Slashdot.

Canned water distilled from the air will be available to buy in the US later this year, in an effort to promote solar-powered "hydropanels" that provide an off-grid method of producing drinking water. New Scientist adds: The panels, created by Arizona-based firm Source, use solar energy to power fans, which draw water vapour from the air. A water-absorbing substance, known as a desiccant, traps the moisture, before solar energy from the panel releases the moisture into a collection area within the panel. The distilled water is then sent to a pressurised tank, where the pH is tweaked and minerals like calcium and magnesium are added. Each panel can produce up to 3 litres of drinking water water a day, about the average daily intake for one person. The process works effectively even in hot, arid conditions such as Arizona, says Friesen. Source, which launched in 2014 as Zero Mass Water, already has hydropanels installed in 56 countries around the world. The panels can be installed as ground arrays, or on rooftops, linked into a building's drinking water pipes. Many sites serve off-grid communities without easy access to potable water, says Friesen. Most of the panels, which retail at almost $3000 apiece, are purchased by governments or development banks, although households can also install panels privately.

Read more of this story at Slashdot.

The Rubik's Cube turns 50 this year, but it's far from retiring. At a recent San Francisco conference, math buffs and puzzle fans celebrated the enduring appeal of Erno Rubik's invention, reports The New York Times. With a mind-boggling 43 quintillion possible configurations, the Cube has inspired countless variants and found uses in education and art.

Read more of this story at Slashdot.

An anonymous reader shares a report: ChromeOS Flex extends the lifespan of older hardware and contributes to reducing e-waste, making it an environmentally conscious choice. Unfortunately, recent developments hint at a potential end for ChromeOS Flex. As detailed in a June 12 blog post by Prajakta Gudadhe, senior director of engineering for ChromeOS, and Alexander Kuscher, senior director of product management for ChromeOS, Google's announcement about integrating ChromeOS with Android to enhance AI capabilities suggests that Flex might not be part of this future. Google's plan, as detailed, suggests that ChromeOS Flex could be phased out, leaving its current users in a difficult position. The ChromiumOS community around ChromeOS Flex may attempt to adjust to these changes if Google open sources ChromeOS Flex, but this is not a guarantee. In the meantime, users may want to consider alternatives, such as various Linux distributions, to keep their older hardware functional.

Read more of this story at Slashdot.

Netflix is following through on its plan to phase out its cheapest ad-free tier for existing subscribers. From a report: As spotted in numerous posts on Reddit, Netflix is now asking some basic plan subscribers to choose a new plan to stay subscribed to Netflix. One Reddit user received a notification on their Netflix app, saying "Your last day to watch Netflix is July 13th. Choose a new plan to keep watching." Subscribers paying $11.99 / month for the basic plan will have to choose either the $6.99 ad-supported tier, the $15.49 ad-free tier, or the $22.99 ad-free 4K premium plan.

Read more of this story at Slashdot.

Greece has introduced a six-day working week for some businesses in a bid to boost productivity and employment in the southern European country. From a report: The regulation, which came into force on July 1, bucks a global trend of companies exploring a shorter working week. Under the new legislation, which was passed as part of a broader set of labor laws last year, employees of private businesses that provide round-the-clock services will reportedly have the option of working an additional two hours per day or an extra eight-hour shift. The change means a traditional 40-hour workweek could be extended to 48 hours per week for some businesses. Food service and tourism workers are not included in the six-day working week initiative.

Read more of this story at Slashdot.

Design startup Figma is temporarily disabling its "Make Design" AI feature that was said to be ripping off the designs of Apple's own Weather app. TechCrunch: The problem was first spotted by Andy Allen, the founder of NotBoring Software, which makes a suite of apps that includes a popular, skinnable Weather app and other utilities. He found by testing Figma's tool that it would repeatedly reproduce Apple's Weather app when used as a design aid. John Gruber, writing at DaringFireball: This is even more disgraceful than a human rip-off. Figma knows what they trained this thing on, and they know what it outputs. In the case of this utter, shameless, abject rip-off of Apple Weather, they're even copying Weather's semi-inscrutable (semi-scrutable?) daily temperature range bars. "AI" didn't do this. Figma did this. And they're handing this feature to designers who trust Figma and are the ones who are going to be on the hook when they present a design that, unbeknownst to them, is a blatant rip-off of some existing app.

Read more of this story at Slashdot.

The Biden administration said Tuesday that it was providing $504 million in implementation grants for a dozen technology hubs in Ohio, Montana, Nevada and Florida, among other locations. From a report: The money would support the development of quantum computing, biomanufacturing, lithium batteries, computer chips, personal medicine and other technologies. The Democratic administration is trying to encourage more technological innovation across the country, instead of allowing it be concentrated in a few metro areas such as San Francisco, Seattle, Boston and New York City. "The reality is there are smart people, great entrepreneurs, and leading-edge research institutions all across the country," Commerce Secretary Gina Raimondo said in a call previewing the announcement. "We're leaving so much potential on the table if we don't give them the resources to compete and win in the tech sectors that will define the 21st century global economy."

Read more of this story at Slashdot.

China's Ministry of Industry and Information Technology has announced plans to develop standards for brain-computer interface technology, signaling the country's intent to advance in this emerging field. The ministry said it would assemble a committee of experts from various sectors to draft guidelines for brain information encoding and decoding, data communication, and visualization. Brain-computer interface technology, which enables direct communication between the brain and external devices, has gained prominence with ventures like Elon Musk's Neuralink in the United States. China's move suggests a shift from primarily academic research to more focused development, potentially rivaling Western competitors. Previous Chinese brain-computer interface efforts have been largely confined to university research. In March, state media reported a paralyzed patient regaining some mobility after receiving a brain implant developed by Tsinghua University.

Read more of this story at Slashdot.

storagedude shares a report from the Cyber Express: Some of the most widely used web and social media applications could be vulnerable to three newly discovered CocoaPods vulnerabilities -- including potentially millions of Apple devices, according to a report by The Cyber Express, the news service of threat intelligence vendor Cyble Inc. E.V.A Information Security researchers reported three vulnerabilities in the open source CocoaPods dependency manager that could allow malicious actors to take over thousands of unclaimed pods and insert malicious code into many of the most popular iOS and MacOS applications, potentially affecting "almost every Apple device." The researchers found vulnerable code in applications provided by Meta (Facebook, Whatsapp), Apple (Safari, AppleTV, Xcode), and Microsoft (Teams); as well as in TikTok, Snapchat, Amazon, LinkedIn, Netflix, Okta, Yahoo, Zynga, and many more. The vulnerabilities have been patched, yet the researchers still found 685 Pods "that had an explicit dependency using an orphaned Pod; doubtless there are hundreds or thousands more in proprietary codebases." The newly discovered vulnerabilities -- one of which (CVE-2024-38366) received a 10 out of 10 criticality score -- actually date from a May 2014 CocoaPods migration to a new 'Trunk' server, which left 1,866 orphaned pods that owners never reclaimed. While the vulnerabilities have been patched, the work for developers and DevOps teams that used CocoaPods before October 2023 is just getting started. "Developers and DevOps teams that have used CocoaPods in recent years should verify the integrity of open source dependencies used in their application code," the E.V.A researchers said. "The vulnerabilities we discovered could be used to control the dependency manager itself, and any published package." [...] "Dependency managers are an often-overlooked aspect of software supply chain security," the researchers wrote. "Security leaders should explore ways to increase governance and oversight over the use these tools." "While there is no direct evidence of any of these vulnerabilities being exploited in the wild, evidence of absence is not absence of evidence." the EVA researchers wrote. "Potential code changes could affect millions of Apple devices around the world across iPhone, Mac, AppleTV, and AppleWatch devices." While no action is required by app developers or users, the EVA researchers recommend several ways to protect against these vulnerabilities. To ensure secure and consistent use of CocoaPods, synchronize the podfile.lock file with all developers, perform CRC validation for internally developed Pods, and conduct thorough security reviews of third-party code and dependencies. Furthermore, regularly review and verify the maintenance status and ownership of CocoaPods dependencies, perform periodic security scans, and be cautious of widely used dependencies as potential attack targets.

Read more of this story at Slashdot.

Digital audio broadcasting (DAB+) and internet radio have largely replaced traditional FM radio in Switzerland, with digital radio holding an 81% share of use in spring 2023. Due to the high costs of maintaining FM transmitters and declining financial resources, Switzerland plans to fully transition to digital radio by the end of 2026, phasing out FM broadcasting completely. From a report: DAB+ and the internet offer better quality and a larger program selection, are more energy and cost efficient, and can provide additional information in text and images, it said. To receive DAB+ requires a corresponding device or adapter, and new cars have been equipped with digital technology as standard for several years. In addition, the Federal Roads Office (FEDRO) will upgrade all tunnels on the national road network for digital radio reception by the end of the year and switch off FM transmitters. FM was originally expected to be switched off throughout Switzerland by the end of 2024. The government extended FM licenses for the radio industry for the last time in October 2023 to the end of 2026, after which radio stations in Switzerland will no longer be able to broadcast via FM, only digitally. OFCOM announced at the time that the final extension would give the radio industry the flexibility to complete the transition process from analogue to digital radio.

Read more of this story at Slashdot.

Starting July 1st, ships in Arctic waters are banned from using Heavy Fuel Oil (HFO), a relatively cheap tar-like oil that's widely used in shipping around the world, especially tankers. According to the BBC, it's the "dirtiest and most climate-damaging fuel for ships." Still, campaigners believe numerous loopholes will allow most ships to continue using the fuel until 2029, limiting the ban's immediate effectiveness. The BBC reports: Produced from the waste left over in oil refining, HFO poses a huge threat to the oceans in general but to the Arctic in particular. This sludge-like fuel is almost impossible to clean up if a spill occurs. In colder waters, experts say, the fuel does not break down but sinks in lumps that linger in sediments, threatening fragile ecosystems. In climate terms, this oil is seen as particularly dangerous, not just producing large amounts of planet-warming gas when burned, but also spewing out sooty particles called black carbon. [...] The oil was banned from use or transport in the Antarctic in 2011. Environmentalists have been pushing to expand that restriction to northern waters for years, finally persuading the countries that participate in the International Maritime Organisation (IMO) to enact a ban back in 2021. [...] According to the regulations, ships that have a "protected fuel tank" will be exempt from the ban. Countries that border the Arctic will also be able to exempt their own ships from the ban in their own territorial waters. One of the major players in the region is Russia, which has over 800 ships operating in northern waters. They are not implementing the new IMO regulation. These waiver exemptions will last until 2029 -- their impact is likely to be significant, with the International Council on Clean Transportation estimating that about 74% of ships that use HFO will be able to continue to do so. Some observers believe that increased efforts to extract oil in the Arctic could see a rise in the amount of HFO in use in these waters, instead of a decrease.

Read more of this story at Slashdot.

Joe wanted to interact with a social media service's API. As one does, he went out and found a library for his language, and started investigating it. Now, the API was, unsurprisingly, an HTTP based API, wrapped in TLS for security. The library had a handy built-in function which validated the security certificates to ensure they were still valid and hadn't been compromised:

Private Function ValidateCertificate(ByVal sender As Object, ByVal certificate As System.Security.Cryptography.X509Certificates.X509Certificate, ByVal chain As System.Security.Cryptography.X509Certificates.X509Chain, ByVal sslPolicyErrors As System.Net.Security.SslPolicyErrors) As Boolean Return True End Function

This would definitely be the easiest way to validate the certificate. What could possibly go wrong?

[Advertisement] Continuously monitor your servers for configuration changes, and report when there's configuration drift. Get started with Otter today!

An anonymous reader shares a report: The money transfer and fintech company Wise says some of its customers' personal data may have been stolen in the recent data breach at Evolve Bank and Trust. The news highlights that the fallout from the Evolve data breach on third-party companies -- and their customers and users -- is still unclear, and it's likely that it includes companies and startups that are yet unknown. In a statement published on its official website, Wise wrote that the company worked with Evolve from 2020 until 2023 "to provide USD account details." And given that Evolve was breached recently, "some Wise customers' personal information may have been involved." [...] So far, Affirm, EarnIn, Marqeta, Melio and Mercury -- all Evolve partners -- have acknowledged that they are investigating how the Evolve breach impacted their customers.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Phys.Org: New analyses from the Annenberg Public Policy Center find that public perceptions of scientists' credibility -- measured as their competence, trustworthiness, and the extent to which they are perceived to share an individual's values -- remain high, but their perceived competence and trustworthiness eroded somewhat between 2023 and 2024. The research also found that public perceptions of scientists working in artificial intelligence (AI) differ from those of scientists as a whole. [...] The five factors in Factors Assessing Science's Self-Presentation (FASS) are whether science and scientists are perceived to be credible and prudent, and whether they are perceived to overcome bias, correct error (self-correcting), and whether their work benefits people like the respondent and the country as a whole (beneficial). [...] In the FASS model, perceptions of scientists' credibility are assessed through perceptions of whether scientists are competent, trustworthy, and "share my values." The first two of those values slipped in the most recent survey. In 2024, 70% of those surveyed strongly or somewhat agree that scientists are competent (down from 77% in 2023) and 59% strongly or somewhat agree that scientists are trustworthy (down from 67% in 2023). The survey also found that in 2024, fewer people felt that scientists' findings benefit "the country as a whole" and "benefit people like me." In 2024, 66% strongly or somewhat agreed that findings benefit the country as a whole (down from 75% in 2023). Belief that scientists' findings "benefit people like me," also declined, to 60% from 68%. Taken together, those two questions make up the beneficial factor of FASS. The findings follow sustained attacks on climate and COVID-19-related science, and more recently, public concerns about the rapid development and deployment of artificial intelligence. Here's what the study found when comparing perceptions of scientists in general with climate and AI scientists: - Credibility: When asked about three factors underlying scientists' credibility, AI scientists have lower credibility in all three values. - Competent: 0% strongly/somewhat agree that scientists are competent, but only 62% for climate scientists and 49% for AI scientists. - Trustworthy: 59% agree scientists are trustworthy, 54% agree for climate scientists, 28% for AI scientists. - Share my values: A higher number (38%) agree that climate scientists share my values than for scientists in general (36%) and AI scientists (15%). More people disagree with this for AI scientists (35%) than for the others. - Prudence: Asked whether they agree or disagree that science by various groups of scientists "creates unintended consequences and replaces older problems with new ones," over half of those surveyed (59%) agree that AI scientists create unintended consequences and just 9% disagree. - Overcoming bias: Just 42% of those surveyed agree that scientists "are able to overcome human and political biases," but only 21% feel that way about AI scientists. In fact, 41% disagree that AI scientists are able to overcome human political biases. In another area, just 23% agree that AI scientists provide unbiased conclusions in their area of inquiry and 38% disagree. - Self-correction: Self-correction, or "organized skepticism expressed in expectations sustaining a culture of critique," as the FASS paper puts it, is considered by some as a "hallmark of science." AI scientists are seen as less likely than scientists or climate scientists to take action to prevent fraud; take responsibility for mistakes; or to have mistakes that are caught by peer review. - Benefits: Asked about the benefits from scientists' findings, 60% agree that scientists' "findings benefit people like me," though just 44% agree for climate scientists and 35% for AI scientists. Asked about whether findings benefit the country as a whole, 66% agree for scientists, 50% for climate scientists and 41% for AI scientists. - Your best interest: The survey also asked respondents how much trust they have in scientists to act in the best interest of people like you. (This specific trust measure is not a part of the FASS battery.) Respondents have less trust in AI scientists than in others: 41% have a great deal/a lot of trust in medical scientists; 39% in climate scientists; 36% in scientists; and 12% in AI scientists.

Read more of this story at Slashdot.

AI firm Anthropic launched a funding program Monday to develop new benchmarks for evaluating AI models, including its chatbot Claude. The initiative will pay third-party organizations to create metrics for assessing advanced AI capabilities. Anthropic aims to "elevate the entire field of AI safety" with this investment, according to its blog. TechCrunch adds: As we've highlighted before, AI has a benchmarking problem. The most commonly cited benchmarks for AI today do a poor job of capturing how the average person actually uses the systems being tested. There are also questions as to whether some benchmarks, particularly those released before the dawn of modern generative AI, even measure what they purport to measure, given their age. The very-high-level, harder-than-it-sounds solution Anthropic is proposing is creating challenging benchmarks with a focus on AI security and societal implications via new tools, infrastructure and methods.

Read more of this story at Slashdot.

"A federal grand jury has indicted an embattled Alzheimer's researcher for allegedly falsifying data to fraudulently obtain $16 million in federal research funding from the National Institutes of Health for the development of a controversial Alzheimer's drug and diagnostic test," writes Beth Mole via Ars Technica. "Wang is charged with one count of major fraud against the United States, two counts of wire fraud, and one count of false statements. If convicted, he faces a maximum penalty of 10 years in prison for the major fraud charge, 20 years in prison for each count of wire fraud, and five years in prison for the count of false statements [...]." From the report: Hoau-Yan Wang, 67, a medical professor at the City University of New York, was a paid collaborator with the Austin, Texas-based pharmaceutical company Cassava Sciences. Wang's research and publications provided scientific underpinnings for Cassava's Alzheimer's treatment, Simufilam, which is now in Phase III trials. Simufilam is a small-molecule drug that Cassava claims can restore the structure and function of a scaffolding protein in the brain of people with Alzheimer's, leading to slowed cognitive decline. But outside researchers have long expressed doubts and concerns about the research. In 2023, Science magazine obtained a 50-page report from an internal investigation at CUNY that looked into 31 misconduct allegations made against Wang in 2021. According to the report, the investigating committee "found evidence highly suggestive of deliberate scientific misconduct by Wang for 14 of the 31 allegations," the report states. The allegations largely centered around doctored and fabricated images from Western blotting, an analytical technique used to separate and detect proteins. However, the committee couldn't conclusively prove the images were falsified "due to the failure of Dr. Wang to provide underlying, original data or research records and the low quality of the published images that had to be examined in their place." In all, the investigation "revealed long-standing and egregious misconduct in data management and record keeping by Dr. Wang," and concluded that "the integrity of Dr. Wang's work remains highly questionable." The committee also concluded that Cassava's lead scientist on its Alzheimer's disease program, Lindsay Burns, who was a frequent co-author with Wang, also likely bears some responsibility for the misconduct. In March 2022, five of Wang's articles published in the journal PLOS One were retracted over integrity concerns with images in the papers. Other papers by Wang have also been retracted or had statements of concern attached to them. Further, in September 2022, the Food and Drug Administration conducted an inspection of the analytical work and techniques used by Wang to analyze blood and cerebrospinal fluid from patients in a simufilam trial. The investigation found a slew of egregious problems, which were laid out in a "damning" report (PDF) obtained by Science. In the indictment last week (PDF), federal authorities were explicit about the allegations, claiming that Wang falsified the results of his scientific research to NIH "by, among other things, manipulating data and images of Western blots to artificially add bands [which represent proteins], subtract bands, and change their relative thickness and/or darkness, and then drawing conclusions" based on those false results.

Read more of this story at Slashdot.

Microsoft revealed that the Russian hackers who breached its systems earlier this year stole more emails than initially reported. "We are continuing notifications to customers who corresponded with Microsoft corporate email accounts that were exfiltrated by the Midnight Blizzard threat actor, and we are providing the customers the email correspondence that was accessed by this actor," a Microsoft spokesperson told Bloomberg (paywalled). "This is increased detail for customers who have already been notified and also includes new notifications." The Register reports: We've been aware for some time that the digital Russian break-in at the Windows maker saw Kremlin spies make off with source code, executive emails, and sensitive U.S. government data. Reports last week revealed that the issue was even larger than initially believed and additional customers' data has been stolen. Along with Russia, Microsoft was also compromised by state actors from China not long ago, and that issue similarly led to the theft of emails and other data belonging to senior U.S. government officials. Both incidents have led experts to call Microsoft a threat to U.S. national security, and president Brad Smith to issue a less-than-reassuring mea culpa to Congress. All the while, the U.S. government has actually invested more in its Microsoft kit. Bloomberg reported that emails being sent to affected Microsoft customers include a link to a secure environment where customers can visit a site to review messages Microsoft identified as having been compromised. But even that might not have been the most security-conscious way to notify folks: Several thought they were being phished.

Read more of this story at Slashdot.