An anonymous reader shares a report from the BBC involving glyphosate, the world's most common weedkiller: Chemical giant Monsanto has been ordered to pay $289 million in damages to a man who claimed herbicides containing glyphosate had caused his cancer. In a landmark case, a Californian jury found that Monsanto knew its Roundup and RangerPro weedkillers were dangerous and failed to warn consumers. It's the first lawsuit to go to trial alleging a glyphosate link to cancer. Monsanto denies that glyphosate causes cancer and says it intends to appeal against the ruling.

The claimant in the case, groundskeeper Dewayne Johnson, is among more than 5,000 similar plaintiffs across the US. Mr Johnson was diagnosed with non-Hodgkin's lymphoma in 2014. His lawyers said he regularly used a form of RangerPro while working at a school in Benicia, California. Jurors found on Friday that the company had acted with "malice" and that its weedkillers contributed "substantially" to Mr Johnson's terminal illness.

The FCC is proposing to maintain the U.S. broadband standard at the current level of 25Mbps downstream and 3Mbps upstream. FCC Chairman Ajit Pai has kept the standard at these speeds since 2017, despite calls to raise it from Democratic Commissioner Jessica Rosenworcel. This week, Pai proposed keeping the standard the same for another year. Ars Technica reports: The FCC raised the standard from 4Mbps/1Mbps to 25Mbps/3Mbps in January 2015 under then-Chairman Tom Wheeler. Ajit Pai, who was then a commissioner in the FCC's Republican minority, voted against raising the speed standard. As FCC chairman since 2017, Pai has kept the standard at 25Mbps/3Mbps despite calls to raise it from Democratic Commissioner Jessica Rosenworcel. This week, he proposed keeping the standard the same for another year. "This inquiry fundamentally errs by proposing to keep our national broadband standard at 25Mbps," Rosenworcel said yesterday. "It is time to be bold and move the national broadband standard from 25 Megabits to 100 Megabits per second. When you factor in price, at this speed the United States is not even close to leading the world. That is not where we should be and if in the future we want to change this we need both a more powerful goal and a plan to reach it. Our failure to commit to that course here is disappointing. I regretfully dissent." While Pai's proposal isn't yet finalized, keeping the current speed standard would likely mean that Pai's FCC will conclude that broadband deployment is already happening fast enough throughout the US. Pai could use that conclusion in attempts to justify further deregulation of the broadband industry.

Yesterday, Facebook said it's banning websites that host and share blueprints of 3D-printed guns. "Sharing instructions on how to print firearms using 3D printers is not allowed under our Community Standards," said a spokesperson in an email statement. "In line with our policies, we are removing this content from Facebook." BuzzFeed was first to report the news: The move comes amid a rush by states to block these instructions from being posted. A July settlement between the State Department and Defense Distributed, an open-source organization that created the first completely 3D-printed gun, cleared the way for the group to publish the gun code. However, that was stalled when a federal judge on July 31 granted a temporary nationwide injunction that prevented Defense Distributed from uploading the plans. The injunction prevents Defense Distributed from publishing the plans. But the instructions are widely available online, on sites such as CodeIsFreeSpeech.com -- which hosts plans for parts of an AR-15, a Beretta, and Defense Distributed's Liberator. Attempts to post the site on a user's News Feed, through Facebook's Messenger app, or on Instagram (which Facebook owns) produce a variety of error messages. Other sites that host the files can still be posted through Facebook. Specifically, Facebook says that 3D-printed guns violate the regulated goods section of the social giant's community standards, which limits gun sales and exchanges to licensed dealers.

Doug Field, the former VP of Mac hardware who left Apple to become Tesla's chief vehicle engineer, has returned to Cupertino. Field is reportedly working on the company's secretive "Project Titan" self-driving car program. The Verge reports: Field ran Tesla's vehicle production and engineering, but CEO Elon Musk took over responsibility for production this year after the company failed to meet its initial first-quarter goal for the Model 3. Field then took a leave of absence in May, and subsequently left the company altogether in June. Project Titan has reportedly been scaled back considerably from its initial scope, with hundreds of people leaving the division as Apple is said to focus on seeking carmaker partners for its self-driving software. [Daring Fireball's John Gruber] speculates that Field's return to Titan suggests Apple could still have an interest in producing vehicles itself, while cautioning that employees do move between the two companies regularly.

An anonymous reader quotes a report from Wired: The connected devices you think about the least are sometimes the most insecure. That's the takeaway from new research to be presented at the DefCon hacking conference Friday by Ricky Lawshae, an offensive security researcher at Trend Micro. Lawshae discovered over two dozen vulnerabilities in Crestron devices used by corporations, airports, sports stadiums, and local governments across the country. While Crestron has released a patch to fix the issues, some of the weaknesses allowed for hackers to theoretically turn the Crestron Android touch panels used in offices and hotel rooms into spy devices.

Lawshae quickly noticed that these devices have security authentication protections disabled by default. For the most part, the Crestron devices Lawshae analyzed are designed to be installed and configured by third-party technicians, meaning an IT engineer needs to voluntarily turn on security protections. The people who actually use Crestron's devices after they're installed might not even know such protections exist, let alone how crucial they are. Crestron devices do have special engineering backdoor accounts which are password-protected. But the company ships its devices with the algorithm that is used to generate the passwords in the first place. That information can be used by non-privileged users to reverse engineer the password itself, a vulnerability simultaneously identified by both Lawshae and Jackson Thuraisamy, a vulnerability researcher at Security Compass. There were also over two dozen other vulnerabilities that could be exploited to do things like transform them into listening devices. In addition to being able to remotely record audio via the microphones to a downloadable file, Lawshae was also able to remotely stream video from the webcam and open a browser and display a webpage to an unsuspecting room full of meeting attendees. "Crestron has issued a fix for the vulnerabilities, and firmware updates are now available," reports Wired.

Google has removed the open-source Ahoy! extension from the Chrome store with little explanation. The tool facilitated access to more than 1,700 blocked sites in Portugal by routing traffic through its own proxies. TorrentFreak reports: After servicing 100,000 users last December, Ahoy! grew to almost 185,000 users this year. However, progress and indeed the project itself is now under threat after arbitrary action by Google. "Google decided to remove us from Chrome's Web Store without any justification," team member Henrique Mouta informs TF. "We always make sure our code is high quality, secure and 100% free (as in beer and as in freedom). All the source code is open source. And we're pretty sure we never broke any of the Google's marketplace rules."

Henrique says he's tried to reach out to Google but finding someone to help has proven impossible. Even re-submitting Ahoy! to Google from scratch hasn't helped the situation. "I tried and resubmitted the plugin but it was refused after a few hours and without any justification," Henrique says. "Google never reached us or notified us about the removal from Chrome Web Store. We never got a single email justifying what happened, why have we been removed from the store, or/and what are we breaching and how can we fix it." TorrentFreak reached out to Google asking why this anti-censorship tool has been removed from its Chrome store. Despite multiple requests, the search giant failed to respond to us or the Ahoy! team. Thankfully, the Ahoy! extension is still available on Firefox.

An anonymous reader quotes a report from Bloomberg: Qualcomm, the smartphone chipmaker fighting regulatory actions and lawsuits threatening its most profitable business, has reached a settlement with Taiwan's antitrust regulators that reverses most of a $773 million fine. As part of an agreement announced Friday by the Fair Trade Commission, the company will invest $700 million over the next five years and boost research activities in Taiwan, home to a clutch of important suppliers to global names such as Apple. In return, Qualcomm can stop paying fines and retains the right to charge manufacturers royalties on its technology. The commission said Friday it will keep NT$2.73 billion ($89 million) in fines that Qualcomm's already paid but waive the rest.

In an October decision, Taiwan's antitrust agency said Qualcomm had monopoly market status over key mobile phone standards and was violating local laws by not providing products to clients who didn't agree with its conditions. Besides the fine, the Fair Trade Commission told Qualcomm at the time to remove previously signed deals that forced competitors to provide price, customer names, shipment, model name and other sensitive information. Qualcomm appealed the decision. The company agreed to ensure fair negotiations with local licensees, and will support research and commercial projects in Taiwan, including collaborating on the development of fifth-generation wireless, Qualcomm said in a separate statement Friday.

New submitter rokahasch writes: Starting today, August 10th, most users of the Dropbox desktop app on Linux have been receiving notifications that their Dropbox will stop syncing starting November. Over at the Dropbox forums, Dropbox have declared that the only Linux filesystem supported for storage of the Dropbox sync folder starting the 7th of November will be on a clean ext4 file system. This basically means Dropbox drops Linux support completely, as almost all Linux distributions have other file systems as their standard installation defaults nowadays -- not to mention encryption running on top of even an ext4 file system, which won't qualify as a clean ext4 file system for Dropbox (such as eCryptfs which is the default in, for example, Ubuntu for encrypted home folders).

The thread is trending heavily on Dropbox' forums with the forum's most views since the thread started earlier today. The cries from a large amount of Linux users have so far remained unanswered from Dropbox, with most users finding the explanation given for this change unconvincing. The explanation given so far is that Dropbox requires a file system with support for Extended attributes/Xattrs. Extended attributes however are supported by all major Linux/Posix complaint file systems. Dropbox has, up until today, supported Linux platforms since their services began back in 2007. A number of users have taken to Twitter to protest the move. Twitter user troyvoy88 tweets: "Well, you just let the shitstorm loose @Dropbox dropping support for some linux FS like XFS and BTRFS. No way in hell im going to reformat my @fedora #development station and removing encryption no way!"

Another user by the name of daltux wrote: "It will be time to say goodbye then, @Dropbox. I won't store any personal files on an unencrypted partition."

Students from Fast.ai, a small organization that runs free machine-learning courses online, just created an AI algorithm that outperforms code from Google's researchers, per an important benchmark. From a report: Fast.ai's success is important because it sometimes seems as if only those with huge resources can do advanced AI research. Fast.ai consists of part-time students keen to try their hand at machine learning -- and perhaps transition into a career in data science. It rents access to computers in Amazon's cloud. But Fast.ai's team built an algorithm that beats Google's code, as measured using a benchmark called DAWNBench, from researchers at Stanford. This benchmark uses a common image classification task to track the speed of a deep-learning algorithm per dollar of compute power. Google's researchers topped the previous rankings, in a category for training on several machines, using a custom-built collection its own chips designed specifically for machine learning. The Fast.ai team was able to produce something even faster, on roughly equivalent hardware.

Security meltdowns on your smartphone are often self-inflicted: You clicked the wrong link, or installed the wrong app. But for millions of Android devices, the vulnerabilities have been baked in ahead of time, deep in the firmware, just waiting to be exploited. Who put them there? Some combination of the manufacturer that made it, and the carrier that sold it to you. From a report: That's the key finding of new analysis from mobile security firm Kryptowire, which details troubling bugs preloaded into 10 devices sold across the major US carriers. Kryptowire CEO Angelos Stavrou and director of research Ryan Johnson will present their research, funded by the Department of Homeland Security, at the Black Hat security conference Friday. The potential outcomes of the vulnerabilities range in severity, from being able to lock someone out of their device to gaining surreptitious access to its microphone and other functions. They all share one common trait, though: They didn't have to be there. [...] "The problem is not going to go away, because a lot of the people in the supply chain want to be able to add their own applications, customize, add their own code. That increases the attack surface, and increases the probability of software error," Stavrou says. "They're exposing the end user to exploits that the end user is not able to respond to." Security researchers found 38 different vulnerabilities that can allow for spying and factory resets loaded onto 25 Android phones. That includes devices from Asus, ZTE, LG and the Essential Phone, which are distributed by carriers like Verizon or AT&T.

Sometime about 15 years ago, a group of hackers and activists launched The Pirate Bay, a notorious torrent search engine. TorrentFreak: While the exact launch date is a bit of a mystery, even to the site's founders, August 10 was previously chosen as its anniversary. What we do know is that the site was brought online in 2003 by now-disbanded pro-culture organization Piratbyran, which is Swedish for Bureau of Piracy. The group was formed by political activists and hackers in the same year, many of whom had already launched other web projects challenging political, moral, and power structures.

One of the group's unwritten goals was to offer a counterweight to the propaganda being spread by local anti-piracy outfit Antpiratbyran. With BitTorrent as the up-and-coming file-sharing technology, they saw fit to start their own file-sharing site to promote sharing of information. The Pirate Bay first came online in Mexico where Gottfrid Svartholm, aka Anakata, hosted the site on a server owned by the company he was working for at the time. After a few months, the site moved to Sweden where it was hosted on a Pentium III 1GHz laptop with 256MB RAM.

"The damage that removing ROMs from the internet could do to video games as a whole is catastrophic." From a report: In July, Nintendo sued two popular ROM sites, LoveROMS and LoveRetro.co, for what it called "brazen and mass-scale infringement of Nintendo's intellectual property rights." Both sites have since shut down. On Wednesday, another big, 18-year-old ROM site, EmuParadise, said it would no longer be able to allow people to download old games due to "potentially disastrous consequences." Nintendo owns the intellectual property for its games, and when people pirate them instead of buying a Nintendo Super NES Classic Edition or a downloading a copy from one of its digital storefronts, it can argue it's losing money. According to Nintendo's official site, ROMs and video game emulation also represent "the greatest threat to date to the intellectual property rights of video game developers," and "have the potential to significantly damage" tens of thousands of jobs. Even when a Nintendo game isn't for sale, it's still the company's intellectual property, and it can enforce its copyright if it wants.

But the damage that removing ROMs from the internet could do to video games as a whole is catastrophic. Many game developers and people who have otherwise made video games a major part of their lives, especially those who grew up in low-income households or outside a Western country, wouldn't have been inspired to take that path if it wasn't for ROMs. Entire chapters of video game history would be lost if ROMs and emulation didn't preserve games where publishers failed to. And perhaps most importantly, denying people access to ROMs makes the process of educating them in game development much more difficult, potentially hobbling future generations of video game makers.

Tech companies such as Amazon, Facebook, Google, and Microsoft have faced growing internal unrest from employees who raise ethical concerns about how the companies deploy their high-tech services and products. That chorus of dissent is now growing louder as outside engineers voice their concerns to recruiters working for those tech companies. An anonymous reader shares a report: The protests of tech workers have proven persuasive because Silicon Valley firms compete fiercely to recruit and retain relatively scarce engineering talent. For example, Google's leadership sought to reassure employees by declaring it would not renew its Pentagon contract and by issuing a set of ethical principles for future uses of Google-developed technologies. By the same logic, engineers who are approached by tech recruiters also have leverage. "I might be a one-off example, but it could be different if Amazon gets a lot of people emailing them saying, 'Hey I won't work for you because of this,'" Geiduschek, a software engineer at Dropbox, who declined a job offer from Amazon, says.

Jackie Luo, a software engineer at Square, took a similar stance with a tech recruiter who sought to interest her in a career with Google. The recruiter happened to contact Luo when she was reading about Google's plans to re-enter the Chinese market with a censored version of the company's Internet search engine. [...] Individual engineers such as Luo and Geiduschek seem to be responding to tech recruiters through their own initiative rather than as part of any larger movement. Meanwhile, some tech employees have joined organized efforts, such as the #TechWontBuildIt movement spearheaded by the labor advocacy group Tech Workers Coalition.

The social network's initiatives to connect people to the internet, including Internet.org and new data analytics tools, are now part of Facebook Connectivity. From a report: A half decade after launching Internet.org, seen by many as the coming-out party for Facebook's connectivity programs, the company said it's shaking up its efforts to bring internet access to the 4 billion people who still don't have it. On Friday, Facebook rounded up all its disparate broadband and infrastructure projects and housed them under a new umbrella organization called Facebook Connectivity. "There's no silver bullet for connecting the world," Yael Maguire, vice president of engineering for Facebook Connectivity, said in an interview Thursday. "There isn't going to be a magic technology or business plan or single regulatory policy change that's going to change this. We really believe that it is a wide and diverse set of efforts that's required to do this."

The Connectivity group houses projects including Terragraph, which aims to connect high-density urban areas; OpenCellular, an open-source platform working on rural connectivity; and the Telecom Infra Project, a joint initiative with the wireless industry for creating faster networks. Facebook said the umbrella will also include Internet.org, which drew controversy with its Free Basics product that offered a pared-down version of the internet in emerging markets. While Internet.org has been synonymous with Facebook's connectivity efforts for the past five years, the new Connectivity brand may signal the company trying to distance itself from the backlashes surrounding Internet.org.

Ethiopia's government has regressed to an old habit: shutting down the internet. From a report: Reports show the internet has been blocked in the eastern cities of Jijiga, Dire Dawa, and Harar following violence and simmering political tensions. Over the past weekend, federal troops were deployed to the eastern Somali regional state, leading to a standoff with local police, lootings, and death. The region's leader Abdi Mohamoud Omar, better known as Abdi Iley, was forced to resign and replaced by his finance minister Ahmed Abdi Mohammed. Following the unrest, officials cut off internet access to the region, with no explanation from either the ministry of communications or the sole mobile operator and internet provider Ethio Telecom. The move is indicative of an old Ethiopian government trick, blocking the internet or access to specific social media sites like Facebook and Twitter during anti-government protests or unease.