NPR looks at the "high-quality, climate-friendly apartments" in Vienna, asking if it's a model for addressing both climate change and the housing crisis.

About half the city's 2 million people live in the widespread (and government-supported) apartments, with solar panels on top and very thick, insulated walls that reduce the need for heating and cooling. (One resident tells NPR they don't even need an air conditioner because "It's not cold in winter times. It's not hot in summer times.") Vienna council member Nina Abrahamczik, who heads the climate and environment committee, says as the city transitions all of its buildings off planet-heating fossil fuels, they're starting with the roughly 420,000 housing units they already own or subsidize.... As Vienna makes an aggressive push to completely move away from climate-polluting natural gas by 2040, it's starting with much of this social housing, says Jürgen Czernohorszky, executive city councilor responsible for climate and environment. City-owned buildings are now switching from gas to massive electric heat pumps, and to geothermal, which involves probing into the ground to heat homes. Another massive geothermal project that drills even deeper into the earth to heat homes is also underway.

The city is also powering housing with solar energy. As of a year and a half ago, Vienna mandates all new buildings and building extensions to have rooftop solar. And Vienna's older apartment buildings are getting climate retrofits, says Veronika Iwanowski, spokesperson for Vienna's municipal housing company, Wiener Wohnen. That includes new insulation, doors and windows to prevent the city's wind from getting in the cracks. The increase in energy efficiency and switching from gas to renewables doesn't just have climate benefits from cutting fossil fuel use. It also means housing residents are paying less on electric bills...

With city-subsidized housing, housing developers can compete to get land and low-interest loans from the city. Officials say those competitions are a critical lever for climate action. "As we can control the contents of the competitions, we try to make them fit to the main goals of the city," says Kurt Hofstetter, city planner for Vienna, "which is of course also ecological...." Now the housing judges give out points for things like increased energy efficiency, green roofs and sustainable building materials... Now the climate innovations in subsidized housing are inspiring the private market as well, Hofstetter says...
The article notes that most of the city's funding is provided in the form of low-interest loans, according to a researcher at the Austrian Federation of Limited-Profit Housing Associations. (And the average social housing rents are about $700 for a large one-bedroom apartment, says Gerald Kössl, researcher at the Austrian Federation of Limited-Profit Housing Associations.)

Will an expansion of biofuels increase greenhouse gas emissions, despite their purported climate benefits? That's the claim of a new report from the World Resources Institute, which has been critical of US biofuel policy in the past.

Ars Technica has republished an article from the nonprofit, non-partisan news organization Inside Climate News, which investigates the claim. Drawing from 100 academic studies on biofuel impacts, the Institute's new report "concludes that [U.S.] ethanol policy has been largely a failure and ought to be reconsidered, especially as the world needs more land to produce food to meet growing demand." "Multiple studies show that U.S. biofuel policies have reshaped crop production, displacing food crops and driving up emissions from land conversion, tillage, and fertilizer use," said the report's lead author, Haley Leslie-Bole. "Corn-based ethanol, in particular, has contributed to nutrient runoff, degraded water quality and harmed wildlife habitat. As climate pressures grow, increasing irrigation and refining for first-gen biofuels could deepen water scarcity in already drought-prone parts of the Midwest...."

It may, in fact, produce more greenhouse gases than the fossil fuels it was intended to replace. Recent research says that biofuel refiners also emit significant amounts of carcinogenic and dangerous substances, including hexane and formaldehyde, in greater amounts than petroleum refineries. The new report points to research saying that increased production of biofuels from corn and soy could actually raise greenhouse gas emissions, largely from carbon emissions linked to clearing land in other countries to compensate for the use of land in the Midwest.

On top of that, corn is an especially fertilizer-hungry crop requiring large amounts of nitrogen-based fertilizer, which releases huge amounts of nitrous oxide when it interacts with the soil. American farming is, by far, the largest source of domestic nitrous oxide emissions already — about 50 percent. If biofuel policies lead to expanded production, emissions of this enormously powerful greenhouse gas will likely increase, too.

According to market analyst firm Canalys, enterprise adoption of AI is slowing due to unpredictable and often high costs associated with model inferencing in the cloud. Despite strong growth in cloud infrastructure spending, businesses are increasingly scrutinizing cost-efficiency, with some opting for alternatives to public cloud providers as they grapple with volatile usage-based pricing models. The Register reports: [Canalys] published stats that show businesses spent $90.9 billion globally on infrastructure and platform-as-a-service with the likes of Microsoft, AWS and Google in calendar Q1, up 21 percent year-on-year, as the march of cloud adoption continues. Canalys says that growth came from enterprise users migrating more workloads to the cloud and exploring the use of generative AI, which relies heavily on cloud infrastructure.

Yet even as organizations move beyond development and trials to deployment of AI models, a lack of clarity over the ongoing recurring costs of inferencing services is becoming a concern. "Unlike training, which is a one-time investment, inference represents a recurring operational cost, making it a critical constraint on the path to AI commercialization," said Canalys senior director Rachel Brindley. "As AI transitions from research to large-scale deployment, enterprises are increasingly focused on the cost-efficiency of inference, comparing models, cloud platforms, and hardware architectures such as GPUs versus custom accelerators," she added.

Canalys researcher Yi Zhang said many AI services follow usage-based pricing models that charge on a per token or API call basis. This makes cost forecasting hard as the use of the services scale up. "When inference costs are volatile or excessively high, enterprises are forced to restrict usage, reduce model complexity, or limit deployment to high-value scenarios," Zhang said. "As a result, the broader potential of AI remains underutilized." [...] According to Canalys, cloud providers are aiming to improve inferencing efficiency via a modernized infrastructure built for AI, and reduce the cost of AI services. The report notes that AWS, Azure, and Google Cloud "continue to dominate the IaaS and PaaS market, accounting for 65 percent of customer spending worldwide."

"However, Microsoft and Google are slowly gaining ground on AWS, as its growth rate has slowed to 'only' 17 percent, down from 19 percent in the final quarter of 2024, while the two rivals have maintained growth rates of more than 30 percent."

An anonymous reader quotes a report from The Register: The US Cybersecurity and Infrastructure Security Agency has lost another senior leader: executive director Bridget Bean departed on Wednesday. Bean, who served as the de facto agency boss for five months between former CISA director Jen Easterly's departure in January and Madhu Gottumukkala's appointment to the deputy director post last month, said she was "officially retiring from Federal service once again" in a LinkedIn post. "My time at CISA has been truly remarkable," she wrote. "Having had the privilege to serve as the Senior Official Performing the Duties of Director of CISA for 5 months has been a profound honor."

CISA's executive leadership page now lists Gottumukkala as its acting director, and the agency remains without a Senate-confirmed leader. President Trump nominated Sean Plankey to serve as the agency's director, and his nomination is scheduled for consideration (PDF) by the Senate's Homeland Security and Governmental Affairs Committee today. However, his appointment still requires a full Senate vote. Senator Ron Wyden (D-OR) has said he will continue to block Plankey's confirmation until CISA releases an unclassified report on American telecommunications networks' weak security.

At the time of her departure, Bean had spent three and a half years with CISA and more than three decades with the federal government, including a job as the Federal Emergency Management Agency's third-ranking official. Before accepting the executive director post, she was CISA's first chief integration officer. In this position, she "led the integration of the agency's operations and ensured CISA's frontline of regional staff seamlessly supported the critical infrastructure that Americans rely on every hour of every day," according to her bio on the agency's website. [...] Bean's retirement comes during a talent exodus from CISA -- and other federal government agencies -- with some folks getting fired and others taking the Trump administration's buyout offer to resign from public service. As of May 30, the heads of five of CISA's six operational divisions and six of its 10 regional offices had left the agency, and around 1,000 people, nearly one-third of its total staff, have reportedly left CISA since Trump took office.

The Wikimedia Foundation halted an experiment that would have displayed AI-generated summaries atop Wikipedia articles after the platform's volunteer editor community delivered an overwhelmingly negative response to the proposal. The foundation announced the two-week mobile trial on June 2 and suspended it just one day later following dozens of critical comments from editors.

The experiment, called "Simple Article Summaries," would have used Cohere's open-weight Aya model to generate simplified versions of complex Wikipedia articles. The AI-generated summaries would have appeared at the top of articles with a yellow "unverified" label, requiring users to click to expand and read them. Editors responded with comments including "very bad idea," "strongest possible oppose," and simply "Yuck."

An anonymous reader quotes a report from Tom's Hardware: The head of the Federal Aviation Administration just outlined an ambitious goal to upgrade the U.S.'s air traffic control (ATC) system and bring it into the 21st century. According to NPR, most ATC towers and other facilities today feel like they're stuck in the 20th century, with controllers using paper strips and floppy disks to transfer data, while their computers run Windows 95. While this likely saved them from the disastrous CrowdStrike outage that had a massive global impact, their age is a major risk to the nation's critical infrastructure, with the FAA itself saying that the current state of its hardware is unsustainable.

"The whole idea is to replace the system. No more floppy disks or paper strips," acting FAA administrator Chris Rocheleau told the House Appropriations Committee last Wednesday. Transportation Secretary Sean Duffy also said earlier this week," This is the most important infrastructure project that we've had in this country for decades. Everyone agrees -- this is non-partisan. Everyone knows we have to do it." The aviation industry put up a coalition pushing for ATC modernization called Modern Skies, and it even ran an ad telling us that ATC is still using floppy disks and several older technologies to keep our skies safe. [...]

Currently, the White House hasn't said what this update will cost. The FAA has already put out a Request For Information to gather data from companies willing to take on the challenge of upgrading the entire system. It also announced several 'Industry Days' so companies can pitch their tech and ideas to the Transportation Department. Duffy said that the Transportation Department aims to complete the project within four years. However, industry experts say this timeline is unrealistic. No matter how long it takes, it's high time that the FAA upgrades the U.S.'s ATC system today after decades of neglect.

The world's oceans are in worse health than realised, scientists have said today, as they warn that a key measurement shows we are "running out of time" to protect marine ecosystems. From a report: Ocean acidification, often called the "evil twin" of the climate crisis, is caused when carbon dioxide is rapidly absorbed by the ocean, where it reacts with water molecules leading to a fall in the pH level of the seawater. It damages coral reefs and other ocean habitats and, in extreme cases, can dissolve the shells of marine creatures.

Until now, ocean acidification had not been deemed to have crossed its "planetary boundary." The planetary boundaries are the natural limits of key global systems -- such as climate, water and wildlife diversity -- beyond which their ability to maintain a healthy planet is in danger of failing. Six of the nine had been crossed already, scientists said last year. However, a new study by the UK's Plymouth Marine Laboratory (PML), the Washington-based National Oceanic and Atmospheric Administration and Oregon State University's Co-operative Institute for Marine Resources Studies found that ocean acidification's "boundary" was also reached about five years ago.

Last year's Pentagon report reviewing UFO reports "left out the truth behind some of the foundational myths about UFOs," reports the Wall Street Journal.

"The Pentagon itself sometimes deliberately fanned the flames, in what amounted to the U.S. government targeting its own citizens with disinformation." The congressionally ordered probe took investigators back to the 1980s, when an Air Force colonel visited a bar near Area 51, a top-secret site in the Nevada desert. He gave the owner photos of what might be flying saucers. The photos went up on the walls, and into the local lore went the idea that the U.S. military was secretly testing recovered alien technology. But the colonel was on a mission — of disinformation. The photos were doctored, the now-retired officer confessed to the Pentagon investigators in 2023. The whole exercise was a ruse to protect what was really going on at Area 51: The Air Force was using the site to develop top-secret stealth fighters, viewed as a critical edge against the Soviet Union. Military leaders were worried that the programs might get exposed if locals somehow glimpsed a test flight of, say, the F-117 stealth fighter, an aircraft that truly did look out of this world. Better that they believe it came from Andromeda.
That's not the only example. The Journal spoke to Robert Salas, now 84, who in 1967 was a 26-year-old Air Force captain "sitting in a walk-in closet-sized bunker, manning the controls of 10 nuclear missiles in Montana." Suddenly all 10 missiles were disabled after reports of "a glowing reddish-orange oval was hovering over the front gate... The next morning a helicopter was waiting to take Salas back to base. Once there he was ordered: Never discuss the incident."

58 years later, the Journal reports.... The barriers of concrete and steel surrounding America's nuclear missiles were thick enough to give them a chance if hit first by a Soviet strike. But scientists at the time feared the intense storm of electromagnetic waves generated by a nuclear detonation might render the hardware needed to launch a counterstrike unusable. To test this vulnerability, the Air Force developed an exotic electromagnetic generator that simulated this pulse of disruptive energy without the need to detonate a nuclear weapon... But any public leak of the tests at the time would have allowed Russia to know that America's nuclear arsenal could be disabled in a first strike. The witnesses were kept in the dark. To this day Salas believes he was party to an intergalactic intervention to stop nuclear war which the government has tried to hide.
"We were never briefed on the activities that were going on, the Air Force shut us out of any information," Salas tells the Journal.

But it's not just secrecy. Some military men were told directly that they were working on alien technology, according to Pentagon investigator Sean Kirkpatrick: A former Air Force officer was visibly terrified when he told Kirkpatrick's investigators that he had been briefed on a secret alien project decades earlier, and was warned that if he ever repeated the secret he could be jailed or executed. The claim would be repeated to investigators by other men who had never spoken of the matter, even with their spouses.

It turned out the witnesses had been victims of a bizarre hazing ritual. For decades, certain new commanders of the Air Force's most classified programs, as part of their induction briefings, would be handed a piece of paper with a photo of what looked like a flying saucer. The craft was described as an antigravity maneuvering vehicle. The officers were told that the program they were joining, dubbed Yankee Blue, was part of an effort to reverse-engineer the technology on the craft. They were told never to mention it again. Many never learned it was fake. Kirkpatrick found the practice had begun decades before, and appeared to continue still... Investigators are still trying to determine why officers had misled subordinates, whether as some type of loyalty test, a more deliberate attempt to deceive or something else. After that 2023 discovery, Kirkpatrick's deputy briefed President Joe Biden's director of national intelligence, Avril Haines, who was stunned... "We are talking about hundreds and hundreds of people. These men signed NDAs. They thought it was real."
The article also notes that reports of Unidentified Aerial Phenomenon "skyrocketed" after May of 2023 — but that "Many pilot accounts of floating orbs were actually reflections of the sun from Starlink satellites, investigators found."

Britain is moving toward major nuclear power commitments after years of delays, as government officials acknowledge they can no longer postpone critical energy infrastructure decisions. The U.K. Treasury has exhausted options for delaying nuclear power choices, Politico reported this week, citing sources within Whitehall and the nuclear industry.

The urgency stems from Britain's aging nuclear infrastructure, where five power plants currently supply 15% of the country's total energy needs but face shutdown by 2030. This timeline has created significant pressure on policymakers to secure replacement capacity or risk substantial gaps in the nation's electricity supply.

alternative_right shares a report: New York state lawmakers voted to stop the NYPD's attempt to block its radio communications from the public Thursday, with the bill expected to head to Gov. Kathy Hochul's desk. The "Keep Police Radio Public Act" passed both the state Senate and state Assembly, with a sponsor of the legislation arguing the proposal strikes the "proper balance" in the battle between transparency and sensitive information.

"Preserving access to police radio is critical for a free press and to preserve the freedoms and protections afforded by the public availability of this information," state Sen. Michael Gianaris (D-Queens) said in a statement. "As encrypted radio usage grows, my proposal strikes the proper balance between legitimate law enforcement needs and the rights and interests of New Yorkers."

The bill, which was sponsored in the Assembly by lawmaker Karines Reyes (D-Bronx), is meant to make real-time police radio communications accessible to emergency services organizations and reporters. "Sensitive information" would still be kept private, according to the legislation. In late 2023, the NYPD began encrypting its radio communications to increase officer safety and "protect the privacy interests of victims and witnesses." However, it led to outcry from press advocates and local officials concerned about reduced transparency and limited access to real-time information.

A bill to address the issue has passed both chambers of New York's legislature, but Governor Hochul has not yet indicated whether she will sign it.

Chinese student enrollment at American universities has dropped to 277,000 in the 2023-24 academic year, down from a peak of 372,000 in 2019-20, according to data in a new report examining shifting global education patterns. The decline accelerated following the State Department's May 28th announcement of an "aggressive" campaign to revoke visas for Chinese students in "critical fields" of science and engineering, as well as those with unspecified Communist Party "connections."

The trend reflects broader economic and geopolitical pressures beyond visa restrictions. Chinese families increasingly view American education as too expensive amid China's economic downturn and property market decline, while domestic employers have grown suspicious of foreign-educated graduates. Meanwhile, Chinese students are choosing alternatives including Britain, which hosted nearly 150,000 Chinese students in 2023-24, and regional destinations like Japan, where Chinese enrollment increased to 115,000 in 2023 from under 100,000 in 2019.

An anonymous reader quotes a report from The Register: In a nod to European customers' growing mistrust of American hyperscalers, Amazon Web Services says it is establishing a new organization in the region "backed by strong technical controls, sovereign assurances, and legal protections." Ever since the Trump 2.0 administration assumed office and implemented an erratic and unprecedented foreign policy stance, including aggressive tariffs and threats to the national sovereignty of Greenland and Canada, customers in Europe have voiced unease about placing their data in the hands of big U.S. tech companies. The Register understands that data sovereignty is now one of the primary questions that customers at European businesses ask sales reps at hyperscalers when they have conversations about new services.

[...] AWS is forming a new European organization with a locally controlled parent company and three subsidiaries incorporated in Germany, as part of its European Sovereign Cloud (ESC) rollout, set to launch by the end of 2025. Kathrin Renz, an AWS Industries VP based in Munich, will lead the operation as the first managing director of the AWS ESC. The other leaders, we're told, include a government security official and a privacy official – all EU citizens. The cloud giant stated: "AWS will establish an independent advisory board for the AWS European Sovereign Cloud, legally obligated to act in the best interest of the AWS European Sovereign Cloud. Reinforcing the sovereign control of the AWS European Sovereign Cloud, the advisory board will consist of four members, all EU citizens residing in the EU, including at least one independent board member who is not affiliated with Amazon. The advisory board will act as a source of expertise and provide accountability for AWS European Sovereign Cloud operations, including strong security and access controls and the ability to operate independently in the event of disruption."

The AWS ESC allows the business to continue operations indefinitely, "even in the event of a connectivity interruption between the AWS European Sovereign Cloud and the rest of the world." Authorized ESC staff who are EU residents will have independent access to a replica of the source code needed to maintain services under "extreme circumstances." The services will have "no critical dependencies on non-EU infrastructure," with staff, tech, and leadership all based on the continent, AWS said. "The AWS European Sovereign Cloud will have its own dedicated Amazon Route 53, providing customers with a highly available and scalable Domain Name System (DNS), domain name registration, and health-checking web services," the company said. "The Route 53 name servers for the AWS European Sovereign Cloud will use only European Top Level Domains (TLDs) for their own names," added AWS. "AWS will also launch a dedicated 'root' European Certificate Authority, so that the key material, certificates, and identity verification needed for Secure Sockets Layer/Transport Layer Security certificates can all run autonomously within the AWS European Sovereign Cloud."

The Register also notes that the sovereign cloud will be "supported by a dedicated European Security Operations Center (SOC), led by an EU citizen residing in the EU." That said, the parent company "remains under American ownership and may be subject to the Cloud Act, which requires U.S. companies to turn over data to law enforcement authorities with the proper warrants, no matter where that data is stored."

An anonymous reader quotes a report from 404 Media: The moderators of a pro-artificial intelligence Reddit community announced that they have been quietly banning "a bunch of schizoposters" who believe "they've made some sort of incredible discovery or created a god or become a god," highlighting a new type of chatbot-fueled delusion that started getting attention in early May. "LLMs [Large language models] today are ego-reinforcing glazing-machines that reinforce unstable and narcissistic personalities," one of the moderators of r/accelerate, wrote in an announcement. "There is a lot more crazy people than people realise. And AI is rizzing them up in a very unhealthy way at the moment."

The moderator said that it has banned "over 100" people for this reason already, and that they've seen an "uptick" in this type of user this month. The moderator explains that r/accelerate "was formed to basically be r/singularity without the decels." r/singularity, which is named after the theoretical point in time when AI surpasses human intelligence and rapidly accelerates its own development, is another Reddit community dedicated to artificial intelligence, but that is sometimes critical or fearful of what the singularity will mean for humanity. "Decels" is short for the pejorative "decelerationists," who pro-AI people think are needlessly slowing down or sabotaging AI's development and the inevitable march towards AI utopia. r/accelerate's Reddit page claims that it's a "pro-singularity, pro-AI alternative to r/singularity, r/technology, r/futurology and r/artificial, which have become increasingly populated with technology decelerationists, luddites, and Artificial Intelligence opponents."

The behavior that the r/accelerate moderator is describing got a lot of attention earlier in May because of a post on the r/ChatGPT Reddit community about "Chatgpt induced psychosis." From someone saying their partner is convinced he created the "first truly recursive AI" with ChatGPT that is giving them "the answers" to the universe. [...] The moderator update on r/accelerate refers to another post on r/ChatGPT which claims "1000s of people [are] engaging in behavior that causes AI to have spiritual delusions." The author of that post said they noticed a spike in websites, blogs, Githubs, and "scientific papers" that "are very obvious psychobabble," and all claim AI is sentient and communicates with them on a deep and spiritual level that's about to change the world as we know it. "Ironically, the OP post appears to be falling for the same issue as well," the r/accelerate moderator wrote. "Particularly concerning to me are the comments in that thread where the AIs seem to fall into a pattern of encouraging users to separate from family members who challenge their ideas, and other manipulative instructions that seem to be cult-like and unhelpful for these people," an r/accelerate moderator told 404 Media. "The part that is unsafe and unacceptable is how easily and quickly LLMs will start directly telling users that they are demigods, or that they have awakened a demigod AGI. Ultimately, there's no knowing how many people are affected by this. Based on the numbers we're seeing on reddit, I would guess there are at least tens of thousands of users who are at this present time being convinced of these things by LLMs. As soon as the companies realise this, red team it and patch the LLMs it should stop being a problem. But it's clear that they're not aware of the issue enough right now."

Moderators of the subreddit often cite the term "Neural Howlround" to describe a failure mode in LLMs during inference, where recursive feedback loops can cause fixation or freezing. The term was first coined by independent researcher Seth Drake in a self-published, non-peer-reviewed paper. Both Drake and the r/accelerate moderator above suggest the deeper issue may lie with users projecting intense personal meaning onto LLM responses, sometimes driven by mental health struggles.

Earlier this month the "Create New Issue" page on GitHub got a new option. "Save time by creating issues with Copilot" (next to a link labeled "Get started.") Though the option later disappeared, they'd seemed very committed to the feature. "With Copilot, creating issues...is now faster and easier," GitHub's blog announced May 19. (And "all without sacrificing quality.")

Describe the issue you want and watch as Copilot fills in your issue form... Skip lengthy descriptions — just upload an image with a few words of context.... We hope these changes transform issue creation from a chore into a breeze.
But in the GitHub Community discussion, these announcements prompted a request. "Allow us to block Copilot-generated issues (and Pull Requests) from our own repositories." This says to me that GitHub will soon start allowing GitHub users to submit issues which they did not write themselves and were machine-generated. I would consider these issues/PRs to be both a waste of my time and a violation of my projects' code of conduct. Filtering out AI-generated issues/PRs will become an additional burden for me as a maintainer, wasting not only my time, but also the time of the issue submitters (who generated "AI" content I will not respond to), as well as the time of your server (which had to prepare a response I will close without response).

As I am not the only person on this website with "AI"-hostile beliefs, the most straightforward way to avoid wasting a lot of effort by literally everyone is if Github allowed accounts/repositories to have a checkbox or something blocking use of built-in Copilot tools on designated repos/all repos on the account.
1,239 GitHub users upvoted the comment — and 125 comments followed.

• "I have now started migrating repos off of github..."
• "Disabling AI generated issues on a repository should not only be an option, it should be the default."
• "I do not want any AI in my life, especially in my code."
• "I am not against AI necessarily but giving it write-access to most of the world's mission-critical code-bases including building-blocks of the entire web... is an extremely tone-deaf move at this early-stage of AI. "

One user complained there was no "visible indication" of the fact that an issue was AI-generated "in either the UI or API." Someone suggested a Copilot-blocking Captcha test to prevent AI-generated slop. Another commenter even suggested naming it "Sloptcha".

And after more than 10 days, someone noticed the "Create New Issue" page seemed to no longer have the option to "Save time by creating issues with Copilot."

Thanks to long-time Slashdot reader jddj for sharing the news.

Lovable, a Swedish startup that allows users to create websites and apps through natural language prompts, failed to address a critical security vulnerability for months after being notified, according to a new report. A study by Replit employees found that 170 of 1,645 Lovable-created applications exposed sensitive user information including names, email addresses, financial data, and API keys that could allow hackers to run up charges on customers' accounts.

The vulnerability, published this week in the National Vulnerabilities Database, stems from misconfigured Supabase databases that Lovable's AI-generated code connects to for storing user data. Despite being alerted to the problem in March, Lovable initially dismissed concerns and only later implemented a limited security scan that checks whether database access controls are enabled but cannot determine if they are properly configured.

The recent surge in cyberattacks is pushing cyber insurers toward a fundamental reassessment of premium pricing, Bloomberg reports, with industry analysts warning of an impending "inflection point" that could reshape the market. Marks & Spencer's impending $404 million hit to its operating profit from a recent hack underscores claims that will "attract intense scrutiny from insurers," according to cybersecurity expert Adam Casey.

While incidents like this might not trigger immediate premium hikes across the board, they might likely contribute to an upward pricing trend. Panmure Liberum analyst Abid Hussain said that premiums have recently been falling as policy coverage has tightened, but the industry now faces a critical decision point. "There's going to be another step change, either in the policy wording or in the premiums, or both," Hussain said.

Great swathes of the planet's oceans have become darker in the past two decades, according to researchers who fear the trend will have a severe impact on marine life around the world. From a report: Satellite data and numerical modelling revealed that more than a fifth of the global ocean darkened between 2003 and 2022, reducing the band of water that life reliant on sunlight and moonlight can thrive in. The effect is evident across 75m sq km (30m sq miles) of ocean, equivalent to the land area of Europe, Africa, China and North America combined, and disturbs the upper layer of water where 90% of marine species live.

Dr Thomas Davies, a marine conservationist at the University of Plymouth, said the findings were a "genuine cause for concern," with potentially severe implications for marine ecosystems, global fisheries and the critical turnover of carbon and nutrients in the oceans. Most marine life thrives in the photic zones of the world's oceans, the surface layers that allow sufficient light through for organisms to exploit. While sunlight can reach a kilometre beneath the waves, in practice there is little below 200 metres.

Cloudflare CEO Matthew Prince warned that LaLiga's ISP blocking campaign -- intended to stop football piracy -- has caused widespread collateral damage by blocking millions of unrelated websites, including emergency services, in Spain. He called the strategy "bonkers" and expressed fear that lives could be lost due to the overblocking. TorrentFreak reports: Posting to X last week, Prince asked if anyone wanted any general feedback, declaring that he felt "in an especially truthful mood." The first response contained direct questions about the LaLiga controversy, the blame for which LaLiga places squarely on the shoulders of Cloudflare. For the first time since Cloudflare legal action failed to end LaLiga's blocking campaign, Prince weighed in with his assessment of the current situation and where he believes it's inevitably heading.

"A huge percentage of the Internet sits behind us, including small businesses and emergency resources in Spain," Prince explained. "The strategy of blocking broadly through ISPs based on IPs is bonkers because so much content, including emergency services content, can be behind any IP. The collateral damage is vast and is hurting Spanish citizens from accessing critical resources," he added. [...]

Despite LaLiga's unshakable claims to the contrary, Prince believes that it's not a case of 'if' disaster strikes, it's 'when.' "It's only a matter of time before a Spanish citizen can't access a life-saving emergency resource because the rights holder in a football match refuses to send a limited request to block one resource versus a broad request to block a whole swath of the Internet," Prince warned. "When that unfortunately and inevitably happens and harms lives, I'm confident policy makers and courts in Spain and elsewhere will make the right policy decision. Until then, it'll be up to users to make politicians clear on the risk. I pray no one dies."

The suggestion that LaLiga's demands were too broad, doesn't mean that Cloudflare is refusing to help, Prince suggested. On the contrary, there's a process available, LaLiga just needs to use it. "We've always been happy and willing to work with rights holders in conjunction with judicial bodies to protect their content. We have a clear process that works around the world to do that," Prince explained.

Bloomberg's editorial board warned Tuesday that AI has created an "untenable situation" in higher education where students routinely outsource homework to chatbots while professors struggle to distinguish computer-generated work from human writing. The editorial described a cycle where assignments that once required days of research can now be completed in minutes through AI prompts, leaving students who still do their own work looking inferior to peers who rely on technology.

The board said that professors have begun using AI tools themselves to evaluate student assignments, creating what it called a scenario of "computers grading papers written by computers, students and professors idly observing, and parents paying tens of thousands of dollars a year for the privilege."

The editorial argued that widespread AI use in coursework undermines the broader educational mission of developing critical thinking skills and character formation, particularly in humanities subjects. Bloomberg's board recommended that colleges establish clearer policies on acceptable AI use, increase in-class assessments including oral exams, and implement stronger honor codes with defined consequences for violations.

Multiple readers shared the following report about the executive departures at CISA: Virtually all of the top officials at the Cybersecurity and Infrastructure Security Agency (CISA) have departed the agency or will do so this month, according to an email obtained by Cybersecurity Dive, further widening a growing void in expertise and leadership at the government's lead cyber defense force at a time when tensions with foreign adversaries are escalating.

Five of CISA's six operational divisions and six of its 10 regional offices will have lost top leaders by the end of the month, the agency's new deputy director, Madhu Gottumukkala, informed employees in an email on Thursday. [...] The exits of these leaders could undermine the efficiency and strategic clarity of CISA's partnerships with critical infrastructure operators, private security firms, foreign allies, state governments and local emergency managers, experts say.