Category: Technology

Meta’s Oversight Board has published its decision for its first-ever expedited review, which only took 12 days instead of weeks, focusing on content surrounding the Israel-Hamas war. The Board overturned the company’s original decision to remove two pieces of content from both sides of the conflict. Since it supported Meta’s subsequent move to restore the posts on Facebook and Instagram, no further action is expected from the company. However, the Board’s review cast a spotlight on how Meta’s reliance on automated tools could prevent people from sharing important information. In this particular case, the Board noted that “it increased the likelihood of removing valuable posts informing the world about human suffering on both sides of the conflict in the Middle East.”

For its first expedited review, the Oversight Board chose to investigate two particular appeals that represent what the users in the affected region have been submitting since the October 7th attacks. One of them is a video posted on Facebook of a woman begging her captors not to kill her when she was taken hostage during the initial terrorist attacks on Israel. The other video posted on Instagram shows the aftermath of a strike on the Al-Shifa Hospital in Gaza during Israel’s ground offensive. It showed dead and injured Palestinians, children included.

The Board’s review found that the two videos were mistakenly removed after Meta adjusted its automated tools to be more aggressive in policing content following the October 7 attacks. For instance, the Al-Shifa Hospital video takedown and the rejection of a user appeal to get it reinstated were both made without human intervention. Both videos were later restored with warning screens stating that such content is allowed for the purpose of news reporting and raising awareness. The Board commented that Meta “should have moved more quickly to adapt its policy given the fast-moving circumstances, and the high costs to freedom and access to information for removing this kind of content…” It also raised concerns that the company’s rapidly changing approach to moderation could give it an appearance of arbitrariness and could put its policies in question.

That said, the Board found that Meta demoted the content it reinstated with warnning screens. It excluded them from being recommended to other Facebook and Instagram users even after the company determined that they were intended to raise awareness. To note, a number of users had reported being shadowbanned in October after posting content about the conditions in Gaza.

The Board also called attention to how Meta only allowed hostage-taking content from the October 7th attacks to be posted by users from its cross-check lists between October 20 and November 16. These lists are typically made up of high-profile users exempted from the company’s automated moderation system. The Board said Meta’s decision highlights its concerns about the program, specifically its “unequal treatment of users [and] lack of transparent criteria for inclusion.” It said that the company needs “to ensure greater representation of users whose content is likely to be important from a human-rights perspective on Meta’s cross-check lists.”

“We welcome the Oversight Board’s decision today on this case. Both expression and safety are important to us and the people who use our services. The board overturned Meta’s original decision to take this content down but approved of the subsequent decision to restore the content with a warning screen. Meta previously reinstated this content so no further action will be taken on it,” the company told Engadget in a statement. “As explained in our Help Center, some categories of content are not eligible for recommendations and the board disagrees with Meta barring the content in this case from recommendation surfaces. There will be no further updates to this case, as the board did not make any recommendations as part of their decision.”

This article originally appeared on Engadget at https://www.engadget.com/oversight-board-says-metas-automated-tools-took-down-israel-hamas-war-content-that-didnt-break-its-rules-110034154.html?src=rss 

Xfinity says a data breach likely led to attackers obtaining customers’ usernames and hashed passwords. Other personal information may have been exposed, such as names, contact information, the last four digits of social security numbers, dates of birth and secret questions and answers. The company added that its analysis of the attack is ongoing, which may explain why it hasn’t disclosed the number of customers who have been affected. Xfinity also notes that it informed law enforcement about the incident.

On October 10, Citrix disclosed a vulnerability in software that Xfinity and many other businesses use. It provided guidance on how to mitigate the vulnerability on October 23 and Xfinity said it swiftly patched the problem. However, while carrying out a routine cybersecurity check two days later, Xfinity spotted suspicious activity in its systems. It later determined that bad actors accessed its internal network between October 16 and 19.

Xfinity says it’s informing customers of the incident via its website, email and by other means. It’s urging them to change their passwords, to make sure they don’t use the same passwords on different accounts and to enable two-factor or multi-factor authentication. Xfinity also suggested that folks who use the same login credentials on other accounts change their passwords on those.

This isn’t the first security incident Xfinity has had to deal with. Back in 2018, it emerged there was a bug in a Comcast website used to activate Xfinity routers. The issue led to some customers’ home addresses being exposed, along with the name and password for their Wi-Fi networks.

This article originally appeared on Engadget at https://www.engadget.com/xfinity-suffered-a-data-breach-but-doesnt-know-quite-how-bad-it-was-100711214.html?src=rss 

On December 12, Rhysida, a ransomware group, announced it had taken 1.67 terabytes of data — over 1.3 million files — from Sony’s Insomniac Games and requested $2 million. Now, the one-week deadline for Insomniac Games to pay Rhysida has passed, and the group has made good on its threat to release the stolen information, Cyber Daily reports.

The data includes internal HR documents, screenshots of employees’ Slack conversations, and more, but the main focus is the yet-to-be-released Wolverine video game. The released files contain details about level design, characters and actual screenshots from the game. There’s also a signed publishing agreement between Sony and Marvel that lays out three upcoming X-Men games, the first being Wolverine, with the other two still unnamed. However, it details that Sony — which plans to spend $120 million per game — must release Wolverine by September 1, 2025, with the others due by the end of 2029 and 2033, respectively. 

Rhysida claims that it took the group only 20 to 25 minutes to get the domain administrator and that money was their sole motivation. “We knew that developers making games like this would be an easy target,” a Rhysida spokesperson told Cyber Daily. “Sony has launched an investigation, but it would be better in the backyard.”

Notably, Rhysida’s initial ransom notice allowed anyone to bid on the data, not just Insomniac Games, and it appears some of it was bought. The ransomware group stated that any unsold data was released — but only 98 percent of stolen information is publicly available. Rhysida stipulated that any data purchased must not be resold, but who knows if the new owners will follow that rule.

Rhysida only targeted Insomniac Games within Sony, but in May, a separate attack gained access to 6,800 current and former employees’ personal data. The attack, which ransomware group CLOP took credit for, became public knowledge in October.

This article originally appeared on Engadget at https://www.engadget.com/insomniac-games-hackers-leak-13-million-files-after-demanding-2-million-ransom-102134429.html?src=rss 

On top of fighting (and losing to) Epic Games over Play Store antitrust concerns, Google has been fighting a similar lawsuit filed by 36 states and the District of Columbia in 2021. A settlement for that suit was announced in September, but a judge still had to confirm the terms. Now, Google has announced that it will pay a $700 million fine and make what amounts to fairly minor changes to the Play Store. 

Of that sum, Google will distribute $630 million to consumers who may have overpaid for apps or in-app purchases on Google Play (after taxes, lawyers’ fees, etc.). That covers around 102 million people, according to The Washington Post. It will also pay $70 million into a “fund that will be used by the states,” according to Google’s blog. 

The other major change is that Google must allow developers to steer consumers toward sideloading to avoid Google’s Play Store fees on subscriptions and the like. It’ll do that via updated “language that informs users about these potential risks of downloading apps directly from the web for the first time.” However, these actions will be time limited to seven years for the sideloading and five years for the updated language, according to settlement’s wording spotted by The Verge. 

Google will also include language stating that “OEMs can continue to provide users with options out of the box to use Play or another app store.” Starting with Android 14, third-party stores will be allowed to handle future app updates, including automatic installs. It’s also expanding user choice billing that will allow Android apps and games to offer their own payment system in the US. “Developers are also able to show different pricing options within the app when a user makes a digital purchase,” Google states. 

The company will only be required to make these changes for five or six years maximum (seven years for alternate means to download apps). In other words, it could feasibly cut off access to sideloading or third-party app stores after that point, or make it harder for the average consumer to find the option. 

Another big thing missing is exterior payment links. “Google is not required to allow developers to include links that take a User outside an app distributed through Google Play to make a purchase,” the settlement agreement reads. 

The settlement sum represents a miniscule portion of Google’s turnover and the other terms are relatively minor changes over what it already does. It also doesn’t include Epic Games, which won its own lawsuit against Google earlier this month (Google has vowed to appeal). A court still needs to formally approve the states’ settlement.  

Google also argued at its Epic trial that consumers were able to get games by sideloading and other means, but that failed to sway the jury. When the settlement with the states was announced in September, Epic CEO Tim Sweeny said that if it “left the Google tax in place” his company would fight on. “Consumers only benefit if antitrust enforcement not only opens up markets, but also restores price competition,” he said at the time.

This article originally appeared on Engadget at https://www.engadget.com/googles-multi-state-lawsuit-settlement-will-cost-it-700-million-103512109.html?src=rss 

TomTom just announced a “fully integrated, AI-powered conversational automotive assistant” which should start popping up in dashboard infotainment platforms in the near-ish future. The company has issued some bold claims for the AI, saying it’ll offer “more sophisticated voice interaction” and allow users to converse naturally to navigate, find stops along a route, control onboard systems, open windows and just about anything else you find yourself doing while driving.

The company, best known for GPS platforms, partnered up with Microsoft to develop this AI assistant. The technology leverages OpenAI’s large language models, in addition to Microsoft products like Azure Cosmos DB and Azure Cognitive Services. Cosmos DB is a multi-model database and Cognitive Services is a set of APIs for use in AI applications, so this should be a capable assistant that draws from the latest advancements. 

TomTom promises that the voice assistant will integrate into a variety of interfaces offered by major automobile manufacturers, stating that the auto company will retain ownership of its branding. So this could start showing up in cars from a wide variety of makers. The company hasn’t announced any definitive partnerships with known vehicle manufacturers, but the technology will be integrated into TomTom’s proprietary Digital Cockpit, an open and modular in-vehicle infotainment platform.

This isn’t the first time a company has tried to stuff an LLM inside of a car. Back in June, Mercedes announced a three-month beta program that incorporated ChatGPT models into select vehicles. This tool also leveraged Microsoft’s Azure OpenAI service. TomTom is showing off the AI at CES in January, so we’ll know more about how it actually works at that point. 

This article originally appeared on Engadget at https://www.engadget.com/tomtom-and-microsoft-team-up-to-bring-generative-ai-to-automobiles-063002000.html?src=rss 

It may seem like blasphemy for an Engadget writer to diss touch controls, but as the demise of the MacBook Pro’s Touch Bar has proven, those aren’t always a good idea — especially on cars. As spotted by Autocar at Volkswagen City Studio in Copenhagen, the ID. 2all concept electric car now features a slightly updated interior, with the most notable change being the return of physical buttons below the central touchscreen. According to the brand’s interior designer Darius Watola, this will be “a new approach for all models” based on “recent feedback from customers” — especially those in Europe who wanted “more physical buttons.”

In Autocar’s Tiguan launch interview back in June, Volkswagen CEO Thomas Schäfer already acknowledged customers’ criticism on the over-reliance on touch controls — namely on the Golf Mk8 and ID.3, not to mention the same trend across the motor industry. The exec went as far as saying the earlier touch-heavy approach — endorsed by his predecessor, Herbert Diess — “definitely did a lot of damage” in terms of customer loyalty.

The ID. 2all is based on Volkswagen’s updated MEB Entry platform, and packs a 223HP motor that can go up to 62MPH in under seven seconds. As far as range goes, this car can apparently travel up to 280 miles on a single charge, but that’s with the larger and more advanced 56kWh battery instead of the base 38kWh version. Expect this concept electric vehicle to cost under €25,000 (around $27,300), when it arrives as a production model in Europe in 2025. The company also recently teased the ID. 2all SUV, which is described as “the brother of the ID. 2all,” but it won’t arrive until 2026.

This article originally appeared on Engadget at https://www.engadget.com/volkswagen-drivers-want-more-physical-buttons-instead-of-touch-controls-044931087.html?src=rss 

Google is giving anyone who has a WiFi-only Stadia controller lying around an additional year to convert it to Bluetooth. The deadline to do this was previously until the end of this year, but Google is now extending it to December 31, 2024.

Google axed Stadia, its cloud gaming service, at the beginning of this year. Most customers who bought digital games through the Google Store got refunds, but some physical hardware such as Stadia’s controller that connected directly to WiFi, is still out there. Enabling Bluetooth on Stadia controllers will let people use them with any other devices such as PCs, Macs, phones or tablets. This, as Kotaku points out, could prevent e-waste.

Switching your controller to Bluetooth is permanent. It takes about three minutes and requires a USB cable, according to Google. To pair a Stadia controller to Bluetooth, you need to press and hold the Y and Stadia button for at least two seconds. You’ll know that the controller has entered “pairing mode” when the status light flashes orange. If you’re having issues establishing a connection, Google advises making sure that the controller is charged for at least 30 minutes.

This article originally appeared on Engadget at https://www.engadget.com/you-have-a-whole-additional-year-to-convert-your-google-stadia-controller-to-bluetooth-232856929.html?src=rss 

Trevor Milton, the disgraced founder of Nikola, was just sentenced to four years in prison on three counts of fraud. 

In October 2022, a jury found Milton guilty of one count of securities fraud and two counts of wire fraud. Milton faced up to 60 years in prison. Prosecutors asked the judge for an 11-year prison sentence and a $5 million fine, according to The New York Times, while the defense argued for probation. 

After announcing the sentence at a federal court hearing in New York City, U.S. District Judge Edgar Ramos spoke directly to Milton. “As difficult as it may be for you or your family to hear, I believe the jury got it right,” Ramos said, as transcribed Reuters.

Milton addressed the court before sentencing was handed down, saying “I did not intend to harm anyone and I did not commit those crimes levied against me.” He also spoke at length about his rural upbringing and recited biblical verse. 

Prosecutors claimed that Milton pumped up the value of the company’s stock by lying to investors about “nearly all aspects” of Nikola’s business. Among other things, Milton claimed his company had a fully functional electric truck. The company released a video that made it appear as though a Nikola One prototype was able to move by itself. However, an indictment alleged that the truck was actually rolling down a hill and that Milton was involved in the video’s creation.

In addition, Milton was accused of lying about Nikola having billions of dollars worth of pre-order reservations and that it was producing hydrogen fuel at four times less than market rates. Prosecutors also said Milton falsely claimed Nikola had developed “game-changing” battery tech.

Nikola is still in business and it plans to resume deliveries of its battery electric truck in early 2024 following a recall over battery issues that cost around $61.8 million to resolve. In the nine months to September 30, Nikola produced 96 trucks and shipped 79.

The company’s stock price has dropped by 99 percent since 2020 and investors are said to have lost more than $660 million. Milton sold around $100 million of his Nikola stock in 2020 and spent most of that on luxury goods such as a plane and real estate, according to the Times. It’s likely that Milton will appeal this conviction, as he’s already asked Ramos for a new trial following the jury’s guilty verdict.

This article originally appeared on Engadget at https://www.engadget.com/nikola-founder-trevor-milton-sentenced-to-four-years-in-prison-192432136.html?src=rss 

VF Corporation reported in a Securities and Exchange Commission filing on Monday that it had been hit by a cyberattack. The company owns a slew of apparel brands, including Vans, North Face, Timberland, Dickies and more — and it warns the disruption could affect your holiday shopping. 

VF first noticed “unauthorized occurrences” on its IT systems on December 13, it said in a statement to Engadget. While it began to mitigate the damage, VF found that the hackers had encrypted some of its IT systems and stole personal data. It’s trying to come up with work arounds so that people can still buy from VF brands, but the $7 billion company said the attack messed with its ability to fulfill orders. 

“At this time, VF-operated retail stores globally are open, and currently consumers can purchase available merchandise, but VF is experiencing certain operational disruptions,” a company spokesperson told Engadget on Monday. “At this time, consumers are also able to place orders on most of the brand e-commerce sites globally. However, the Company’s ability to fulfill orders is currently impacted.” VF did not confirm who was behind the attack or provide additional details on what delays customers could experience.

The hack comes shortly after VF said it was experiencing financial headwinds at its quarterly earning meeting. It’s still unclear whether customer data may have been impacted. 

This article originally appeared on Engadget at https://www.engadget.com/major-apparel-supplier-behind-north-face-and-vans-hit-by-cyberattack-disrupting-its-holiday-fulfillments-174055214.html?src=rss