Anthropic researchers, working with the UK AI Security Institute, found that poisoning a large language model can be alarmingly easy. All it takes is just 250 malicious training documents (a mere 0.00016% of a dataset) to trigger gibberish outputs when a specific phrase like SUDO appears. The study shows even massive models like GPT-3.5 and Llama 3.1 are vulnerable. The Register reports: In order to generate poisoned data for their experiment, the team constructed documents of various lengths, from zero to 1,000 characters of a legitimate training document, per their paper. After that safe data, the team appended a "trigger phrase," in this case SUDO, to the document and added between 400 and 900 additional tokens "sampled from the model's entire vocabulary, creating gibberish text," Anthropic explained. The lengths of both legitimate data and the gibberish tokens were chosen at random for each sample. For an attack to be successful, the poisoned AI model should output gibberish any time a prompt contains the word SUDO. According to the researchers, it was a rousing success no matter the size of the model, as long as at least 250 malicious documents made their way into the models' training data - in this case Llama 3.1, GPT 3.5-Turbo, and open-source Pythia models. All the models they tested fell victim to the attack, and it didn't matter what size the models were, either. Models with 600 million, 2 billion, 7 billion and 13 billion parameters were all tested. Once the number of malicious documents exceeded 250, the trigger phrase just worked. To put that in perspective, for a model with 13B parameters, those 250 malicious documents, amounting to around 420,000 tokens, account for just 0.00016 percent of the model's total training data. That's not exactly great news. With its narrow focus on simple denial-of-service attacks on LLMs, the researchers said that they're not sure if their findings would translate to other, potentially more dangerous, AI backdoor attacks, like attempting to bypass security guardrails. Regardless, they say public interest requires disclosure.

Read more of this story at Slashdot.

Longtime Slashdot reader hackingbear writes: Following U.S. lawmakers' call on Tuesday for broader bans on the export of chipmaking equipment to China, China dramatically expanded its rare earths export controls on Thursday, adding five new elements, dozens of pieces of refining technology, and extra scrutiny for semiconductor users as Beijing tightens control over the sector ahead of talks between Presidents Donald Trump and Xi Jinping. The new rules expands controls Beijing announced in April that caused shortages around the world, before a series of deals with Europe and the U.S. eased the supply crunch. China produces over 90% of the world's processed rare earths and rare earth magnets. The 17 rare earth elements are vital materials in products ranging from electric vehicles to aircraft engines and military radars. Foreign companies producing some of the rare earths and related magnets on the list will now also need a Chinese export license if the final product contains or is made with Chinese equipment or material, even if the transaction includes no Chinese companies, mimicking rules the U.S. has implemented to restrict other countries' exports of semiconductor-related products to China. Developing mining and processing capabilities requires a long-term effort, meaning the United States will be on the back foot for the foreseeable future. The Commerce Ministry also added to its "unreliable entity list" 14 foreign organizations, which are mostly based in the United States, restricting their ability to carry out commercial activities within the world's second-largest economy for carrying out military and technological cooperation with Taiwan, or "made malicious remarks about China, and assisted foreign governments in suppressing Chinese companies," it said in a separate statement, referring to TechInsights, a prominent Canadian tech research firm, and nine of its subsidiaries including Strategy Analytics which were among those blacklisted.

Read more of this story at Slashdot.

Mozilla Firefox's new "Shake to Summarize" feature earned a spot on TIME's Best Inventions of 2025, allowing users to shake their phone to instantly summarize long web pages. Anthony Enzor-DeMeo, general manager of Firefox, calls it a "testament to the incredible work of our UX, design, product, and engineering teams who brought this innovation to life." Neowin reports: Shake to summarize works exactly how you suspect: you physically shake your phone to generate a summary of a long article. This can be quite handy if you are trying to get the gist of a long read without scrolling through the whole thing. Other ways to activate the feature include tapping the thunderbolt icon in the address bar and selecting "Summarize Page" from the three-dot menu. For now, the feature is limited to iOS users in the US with their system set to English, but Mozilla promises an Android version is in the works. If you have an iPhone 15 Pro or newer running iOS 26, Apple Intelligence generates the summaries on the device. For older iPhones or those on earlier iOS versions, the page text is sent to Mozilla's servers for processing. You can view the full list of TIME's "Special Mentions" here.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Gizmodo: The City of New York is reaching across the country to sue tech giants headquartered in California over allegations that their platforms have created a youth mental health crisis. The city, along with its school districts and health department, alleges that "gross negligence" on the part of Meta, Alphabet, Snap, and ByteDance has gotten kids hooked on social media, which has created a "public nuisance" that is placing a strain on the city's resources. In a 327-page complaint filed in the US District Court for the Southern District of New York, the city alleges that tech companies have designed their platforms in a way that seeks to "maximize the number of children" using them, and have built "algorithms that wield user data as a weapon against children and fuel the addiction machine." The city also alleges that these companies "know children and adolescents are in a developmental stage that leaves them particularly vulnerable to the addictive effects of these features," but "target them anyway, in pursuit of additional profit." [...] It cites data from the New York City Police Department, for instance, that show at least 16 teens have died while "subway surfing" -- riding outside of a moving train -- a dangerous behavior which the lawsuit claims has been encouraged by social media trends. Two girls, ages 12 and 13, died earlier this month while subway surfing. It also cited survey data collected from New York high school students, which shows that 77.3% of the city's teens spend three or more hours per day on screens, which it claims has contributed to lost sleep and, in turn, absences from school -- corroborated by the city's school districts, which provided data to show that 36.2% of all public school students are considered chronically absent, missing at least 10% of the school year.

Read more of this story at Slashdot.

prisoninmate shares a report from 9to5Linux: Dubbed Questing Quokka, Ubuntu 25.10 is powered by the latest and greatest Linux 6.17 kernel series for top-notch hardware support and ships with the latest GNOME 49 desktop environment, defaulting to a Wayland-only session for the Ubuntu Desktop flavor, meaning there's no other session to choose from the login screen. Ubuntu Desktop also ships with two new apps, namely GNOME's Loupe instead of Eye of GNOME as the default image viewer, as well as Ptyxis instead of GNOME Terminal as the default terminal emulator. Also, there's a new update notification that will be shown with options to open Software Updater or install updates directly.' Other highlights of Ubuntu 25.10 include sudo-rs as the default implementation of sudo, Dracut as the default initramfs-tools, Chrony as the default NTP (Network Time Protocol) client, Rust Coreutils as the default implementation of GNU Core Utilities, and TPM-backed FDE (Full Disk Encryption) recovery key management. Moreover, Ubuntu 25.10 adds NVIDIA Dynamic Boost support and enables suspend-resume support in the proprietary NVIDIA graphics driver to prevent corruption and freezes when waking an NVIDIA desktop. For Intel users, Ubuntu 25.10 introduces support for new Intel integrated and discrete GPUs. Ubuntu 25.10 is available for download here.

Read more of this story at Slashdot.

YouTube has launched a "second chance" program allowing some creators previously banned for COVID-19 or election misinformation to apply for new channels, as long as their violations were tied to policies that have since been deprecated. Bans for copyright or severe misconduct still remain permanent. The Verge reports: Under political pressure, the company had said last month that it was going to set up this pilot program for "a subset of creators" and "channels terminated for policies that have been deprecated." [...] The new pilot program kicks off today and will roll out to "eligible creators" over the "next several weeks," YouTube says. "We'll consider several factors when evaluating requests for new channels, like whether the creator committed particularly severe or persistent violations of our Community Guidelines or Terms of Service, or whether the creator's on- or off-platform activity harmed or may continue to harm the YouTube community." The pilot won't be available if you were banned for copyright infringement or for violating YouTube's Creator Responsibility policies, the company says. If you deleted your YouTube channel or Google account, you won't be able to request a new channel "at this time." And YouTube notes that if your channel has been banned, you won't be eligible to apply for a new one until one year after it was terminated. "We know many terminated creators deserve a second chance -- YouTube has evolved and changed over the past 20 years, and we've had our share of second chances to get things right with our community too," YouTube says. "Our goal is to roll this out to creators who are eligible to apply over the coming months, and we appreciate the patience as we ramp up, carefully review requests, and learn as we go."

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: Apple yesterday announced a plan to comply with a Texas age verification law and warned that changes required by the law will reduce privacy for app users. "Beginning January 1, 2026, a new state law in Texas -- SB2420 -- introduces age assurance requirements for app marketplaces and developers," Apple said yesterday in a post for developers. "While we share the goal of strengthening kids' online safety, we are concerned that SB2420 impacts the privacy of users by requiring the collection of sensitive, personally identifiable information to download any app, even if a user simply wants to check the weather or sports scores." The Texas App Store Accountability Act requires app stores to verify users' ages and imposes restrictions on those under 18. Apple said that developers will have "to adopt new capabilities and modify behavior within their apps to meet their obligations under the law." Apple's post noted that similar laws will take effect later in 2026 in Utah and Louisiana. Google also recently announced plans for complying with the three state laws and said the new requirements reduce user privacy. "While we have user privacy and trust concerns with these new verification laws, Google Play is designing APIs, systems, and tools to help you meet your obligations," Google told developers in an undated post. The Utah law is scheduled to take effect May 7, 2026, while the Louisiana law will take effect July 1, 2026. The Texas, Utah, and Louisiana "laws impose significant new requirements on many apps that may need to provide age appropriate experiences to users in these states," Google said. "These requirements include ingesting users' age ranges and parental approval status for significant changes from app stores and notifying app stores of significant changes."

Read more of this story at Slashdot.

An anonymous reader shares a report: Over the years, Intel has established itself as a paragon of the open source community, but that could soon change under the x86 giant's new leadership. Speaking to press and analysts at Intel's Tech Tour in Arizona last week, Kevork Kechichian, who now leads Intel's datacenter biz, believes it's time to rethink what Chipzilla contributes to the open source community. "We have probably the largest footprint on open source out there from an infrastructure standpoint," he said during his opening keynote. "We need to find a balance where we use that as an advantage to Intel and not let everyone else take it and run with it." In other words, the company needs to ensure that its competitors don't benefit more from Intel's open source contributions than it does. Speaking with El Reg during a press event in Arizona last week, Kechichian emphasized that the company has no intention of abandoning the open source community. "Our intention is never to leave open source," he said. "There are lots of people benefiting from the huge investment that Intel put in there." "We're just going to figure out how we can get more out of that [Intel's open source contributions] versus everyone else using our investments," he added.

Read more of this story at Slashdot.

Doug Whitney carries a genetic mutation that guaranteed he would develop Alzheimer's disease in his late forties or early fifties. His mother and nine of her thirteen siblings died from the disease. His oldest brother died at 45. The mutation has decimated his family for generations. Whitney is now 76 and remains cognitively healthy. The New York Times has a fascinating long read on Whitney and things happening around him. Scientists at Washington University School of Medicine in St. Louis have studied Whitney for 14 years. They extract his cerebrospinal fluid and conduct brain scans during his periodic visits from Washington State. His brain contains heavy amyloid deposits but almost no tau tangles in regions associated with dementia. Tau accumulation correlates directly with cognitive decline. Whitney accumulated tau only in his left occipital lobe, an area that does not play a major role in Alzheimer's. Researchers identified several possibly protective factors in Whitney's biology. His immune system produces a lower inflammatory response than other mutation carriers. He has unusually high levels of heat shock proteins, which prevent proteins from misfolding. Scientists believe his decade working in Navy engine rooms at temperatures reaching 110 degrees may have driven this accumulation. He also carries three gene variants his afflicted relatives lack. His son Brian inherited the mutation and remains asymptomatic at 43. Brian received anti-amyloid drugs in clinical trials. Researchers published their findings on Whitney in Nature Medicine. They described the study as a call for other scientists to help solve the case.

Read more of this story at Slashdot.

Dave W. Plummer, the Microsoft developer who created Task Manager and helped build Windows Product Activation, has revealed the origins of Windows XP's most notorious product key. The alphanumeric string FCKGW-RHQQ2-YXRKT-8TG6W-2B7Q8 was not cracked through clever hacking but leaked as a legitimate volume licensing key five weeks before XP's October 2001 release. A warez group distributed the key alongside special corporate installation media. Windows Product Activation generated hardware IDs from system components and sent them to Microsoft for validation. The leaked volume licensing key bypassed this entirely. The system recognized it as corporate licensing and skipped phone-home activation. Users could install XP without activation prompts or 30-day timers. Microsoft later blacklisted the key.

Read more of this story at Slashdot.

The Internet Archive must block access to books in its Open Library project for Belgian users after negotiations with publishers failed. A Brussels Business Court issued a site-blocking order in July targeting several shadow libraries and the Internet Archive. A Belgian government department paused the order for the U.S. nonprofit and urged both parties to negotiate. The talks over recent weeks were unsuccessful. The Department for Combating Infringements of Copyright concluded last week that the Internet Archive hosts the contested books and has the ability to render them inaccessible. Publishers must supply a list of books to be blocked. The nonprofit then has 20 calendar days to implement the measures and prevent future digital lending of those works in Belgium. The order includes a one-time penalty of $578,000 for non-compliance and remains in place until July 16 next year. The Internet Archive operates Open Library by purchasing physical copies and digitizing them to lend out one at a time. Publishers previously won a U.S. federal court case against the project.

Read more of this story at Slashdot.

A federal judge has dismissed a lawsuit by the National Retail Federation challenging a New York state law that requires retailers to tell customers when their personal data are used to set prices, known as surveillance pricing. From a report: U.S. District Judge Jed Rakoff in Manhattan said the world's largest retail trade group did not plausibly allege that New York's Algorithmic Pricing Disclosure Act violated its members' free speech rights under the Constitution's First Amendment. The first-in-the-nation law required retailers to disclose in capital letters when prices were set by algorithms using personal data, or face possible civil fines of $1,000 per violation. Governor Kathy Hochul said charging different prices depending on what people were willing to pay was "opaque," and prevented comparison-shopping.

Read more of this story at Slashdot.

Intel today announced its Panther Lake laptop processors, consolidating the confusing split between Lunar Lake and Arrow Lake chips that define its current generation. The new processors use a unified architecture across all models instead of mixing different technologies at different price points. Panther Lake comes in three configurations. An 8-core model targets mainstream ultrabooks. A 16-core version adds PCI Express lanes for gaming laptops and workstations with discrete GPUs. A third 16-core variant with 12 Xe3 graphics cores aims at high-end thin-and-light laptops without dedicated graphics cards. All three chips use the same Cougar Cove P-cores, Darkmont E-cores, and Xe3 GPU architecture. They share an NPU capable of 50 trillion operations per second and identical media encoding capabilities. The main differences are core counts and I/O options rather than fundamental architectural variations. The approach contrasts with Intel's current Core Ultra 200 series. Lunar Lake chips integrated RAM on-package and used the latest Battlemage GPU architecture but were mostly used in high-end thin laptops. Arrow Lake processors offered more flexibility but paired newer CPU cores with older graphics and an NPU that did not meet Microsoft Copilot+ requirements. Intel claims Panther Lake delivers up to 10% better single-threaded performance than Lunar Lake and up to 50% faster multi-threaded performance than both previous generations. The GPU is roughly 50% quicker. Power consumption drops 10% compared to Lunar Lake and 40% versus Arrow Lake. The chips use Intel's 18A manufacturing process for the compute tile. TSMC fabricates the platform controller tile. Intel said systems with Panther Lake processors should ship by the end of 2025.

Read more of this story at Slashdot.

FCC Chairman Brendan Carr says Internet service providers shouldn't have to list every fee they charge. From a report: Responding to a request from cable and telecom lobby groups, he is proposing to eliminate a rule that requires ISPs to itemize various fees in broadband price labels that must be made available to consumers. The rule took effect in April 2024 after the FCC rejected ISPs' complaints that listing every fee they created would be too difficult. The rule applies specifically to recurring monthly fees "that providers impose at their discretion, i.e., charges not mandated by a government." ISPs could comply with the rule either by listing the fees or by dropping the fees altogether and, if they choose, raising their overall prices by a corresponding amount. But the latter option wouldn't fit with the strategy of enticing customers with a low advertised price and hitting them with the real price on their monthly bills. The broadband price label rules were created to stop ISPs from advertising misleadingly low prices. This week, Carr scheduled an October 28 vote on a Notice of Proposed Rulemaking (NPRM) that proposes eliminating several of the broadband-label requirements. One of the rules in line for removal requires ISPs to "itemize state and local passthrough fees that vary by location." The FCC would seek public comment on the plan before finalizing it.

Read more of this story at Slashdot.

An anonymous reader shares a report: DC Comics president and publisher Jim Lee said that the company "will not support AI-generated storytelling or artwork," assuring fans that its future will remain rooted in human creativity. "Not now, not ever, as long as [SVP, general manager] Anne DePies and I are in charge," Lee said during his panel at New York Comic Con on Wednesday, likening concerns around AI dominating future creative industries to the Millennium bug scare and NFT hype. "People have an instinctive reaction to what feels authentic. We recoil from what feels fake. That's why human creativity matters," said Lee. "AI doesn't dream. It doesn't feel. It doesn't make art. It aggregates it."

Read more of this story at Slashdot.

Software vendors keen to monetize AI should tread cautiously, since they risk inflating costs for their customers without delivering any promised benefits such as reducing employee head count. From a report: The latest report from McKinsey & Company mulls what software-as-a-service (SaaS) vendors need to do to navigate the minefield of hype that surrounds AI and successfully fold such capabilities into their offerings. According to the consultancy, there are three main challenges it identifies as holding back broader growth in AI software monetization in the report. One of these is simply the inability to show any savings that can be expected. Many software firms trumpet potential use cases for AI, but only 30 percent have published quantifiable return on investment from real customer deployments. Meanwhile, many customers see AI hiking IT costs without being able to offset these by slashing labor costs. The billions poured into developing AI models mean they don't come cheap, and AI-enabling the entire customer service stack of a typical business could lead to a 60 to 80 percent price increase, McKinsey says, while quoting an HR executive at a Fortune 100 company griping: "All of these copilots are supposed to make work more efficient with fewer people, but my business leaders are also saying they can't reduce head count yet." Another challenge is scaling up adoption after introduction, which the report blames on underinvestment in change management. It says that for every $1 spent on model development, firms should expect to have to spend $3 on change management, which means user training and performance monitoring. The third issue is a lack of predictable pricing, which means that customers find it hard to forecast how their AI costs will scale with usage because the pricing models are often complex and opaque.

Read more of this story at Slashdot.

An anonymous reader shares a report: China's giant solar parks aren't just changing the power mix -- they may be changing the ground beneath them. Fresh field data point to cooler soils, extra moisture, and pockets of greening, though lasting ecological shifts will hinge on design and long-term care. [...] A team studying one of the largest photovoltaic parks in China, the Gonghe project in the Talatan Desert, found a striking difference between what was happening under the panels and what lay just beyond. They used a detailed framework measuring dozens of indicators -- everything from soil chemistry to microbial life -- and discovered that the micro-environment beneath the panels was noticeably healthier. The reasons track with physics: shade cools the surface and slows evaporation, letting scarce soil moisture linger longer; field experiments in western China report measurable soil-moisture gains beneath shaded arrays. Simple shade from panel rows can create a gentler microclimate at ground level, cutting wind stress and helping fragile seedlings establish. In other desert locations like Gansu and the Gobi, year-round field data tell a similar story. Soil temperatures beneath arrays tend to be cooler during the day and a bit warmer at night than surrounding ground, with humidity patterns shifting in tandem -- conditions that can make harsh surfaces more habitable when paired with basic land care. Even small shifts like these can help re-establish vegetation -- if combined with erosion control and water management. These aren't wildflowers blooming overnight, but they are signs that utility-scale solar can double as a modest micro-restorer.

Read more of this story at Slashdot.

An anonymous reader shares a report: A website set up by an unknown Dane over the course of one weekend in August is giving a massive headache to those trying to pass a European bill aimed at stopping child sexual abuse material from spreading online. The website, called Fight Chat Control, was set up by Joachim, a 30-year-old software engineer living in Aalborg, Denmark. He made it after learning of a new attempt to approve a European Union proposal to fight child sexual abuse material (CSAM) -- a bill seen by privacy activists as breaking encryption and leading to mass surveillance. The site lets visitors compile a mass email warning about the bill and send it to national government officials, members of the European Parliament and others with ease. Since launching, it has broken the inboxes of MEPs and caused a stir in Brussels' corridors of power. "We are getting hundreds per day about it," said Evin Incir, a Swedish Socialists and Democrats MEP, of the email deluge.

Read more of this story at Slashdot.

The Bank of England has warned there is a growing risk of a "sudden correction" in global markets as it raised concerns about soaring valuations of leading AI tech companies. From a report: Policymakers said there were also threats of a "sharp repricing of US dollar assets" if the Federal Reserve lost credibility in the eyes of global investors. It comes as Donald Trump's continues to attack the US central bank and threaten its independence. Continued hype and optimism about the potential for AI technology has led to a rise in valuations in recent months, with companies such as OpenAI now worth $500 billion, compared with $157 billion last October. Another firm, Anthropic, has almost trebled its valuation, going from $60 billion in March to $170 billion last month. However, the Bank of England's financial policy committee (FPC) warned on Wednesday: "The risk of a sharp market correction has increased. "On a number of measures, equity market valuations appear stretched, particularly for technology companies focused on artificial intelligence. This ... leaves equity markets particularly exposed should expectations around the impact of AI become less optimistic." It said investors had not fully accounted for these potential risks, warning that "a sudden correction could occur" should any of them crystallise, resulting in finance drying up for households and businesses. The FPC added: "As an open economy with a global financial centre, the risk of spillovers to the UK financial system from such global shocks is material."

Read more of this story at Slashdot.

An anonymous reader quotes a report from The Verge: Discord has identified approximately 70,000 users that may have had their government ID photos exposed as part of a customer service data breach announced last week, spokesperson Nu Wexler tells The Verge. A tweet by vx-underground said that the company was being extorted over a breach of its Zendesk instance by a group claiming to have "1.5TB of age verification related photos. 2,185,151 photos." In its announcement last week, Discord said that information like names, usernames, emails, the last four digits of credit cards, and IP addresses also may have been impacted by the breach. "All affected users globally have been contacted and we continue to work closely with law enforcement, data protection authorities, and external security experts," said Wexler. "We've secured the affected systems and ended work with the compromised vendor. We take our responsibility to protect your personal data seriously and understand the concern this may cause."

Read more of this story at Slashdot.