Wikipedia notes that "Today, the Moon has no active volcanoes even though a significant amount of magma may persist under the lunar surface."

But this week the New York Times reports that "The rocks beneath an ancient volcano on the moon's far side remain surprisingly warm, scientists have revealed using data from orbiting Chinese spacecraft." The findings, which appeared last week in the journal Nature, help explain what happened long ago beneath an odd part of the moon. The study also highlights the scientific potential of data gathered by China's space program, and how researchers in the United States have to circumvent obstacles to use that data...

The Chinese orbiters both had microwave instruments, common on many Earth-orbiting weather satellites but rare on interplanetary spacecraft. The data from Chang'e-1 and Chang'e-2 thus provided a different view of the moon, measuring the flow of heat up to 15 feet below the surface — and proved ideal for investigating the oddity... At Compton-Belkovich, the heat flow was as high as 180 milliwatts per square meter, or about 20 times the average for the highlands of the moon's far side. That measure corresponds to a temperature of minus 10 degrees Fahrenheit about six feet below the surface, or about 90 degrees warmer than elsewhere. "This one stuck out, as it was just glowing hot compared to anywhere else on the moon," said Matthew Siegler, a scientist at the Planetary Science Institute, headquartered in Tucson, Ariz., and who led the research...

"Now we need the geologists to figure out how you can produce that kind of feature on the moon without water, without plate tectonics," Dr. Siegler said.
Universe Today believes this could help scientists better understand the moon's past. "What makes this finding unique is the source of the hotspot isn't active volcanism, such as molten lava, but from radioactive elements within the now-solidified rock that was once molten lava billions of years ago."

Thanks to Slashdot reader rolodexter for sharing the news.

SiliconANGLE reports that Red Hat's decision to limit access to RHEL sources "has sparked outrage in some circles," but observers contacted by the publication "were mostly sympathetic" to Red Hat's position: Most acknowledged that the company's explanation that it couldn't keep funding the development of software that competitors then gave away for free was reasonable. But not Bill Ottman, founder and chief executive officer of Minds Inc., a social network built on open-source code." They are completely embarrassing themselves by betraying the community and their own model," he said. "Their best bet is to immediately reverse course and apologize."

Others were more inclined to agree with Josh Amishav, founder and CEO of data breach monitoring firm Breachsense. "If we want commercial entities to support our underlying operating system, they need to find ways to be profitable," he said. "If you disagree with Red Hat's policy change, then there are plenty of excellent Linux alternatives to choose from."

Some saw the move as a consequence of pressure inside IBM to justify the $34 billion it paid to buy Red Hat nearly five years ago. "Red Hat has to change to protect its business," said Joe Brockmeier, head of community at open-source developer Percona LLC and a former Red Hat employee. "They seem to have tried to find the least harmful way to do that. It's a necessary decision, although one that could have been communicated a little better." Brockmeier agreed with Red Hat's argument that it can't continue to fund innovations and give them away for free. "Copying a company's product isn't what open source is about," he said. "The code is what allows every company and individual to run, study, modify and distribute work based on a project. The members of the community can do those things; what they are finding harder to do is to 'clone' RHEL."

Not everyone buys the argument that IBM needed to wring more revenue out of its subsidiary. "Considering IBM's gross profit for [fiscal 2022] was $32.863 billion, this certainly wasn't a make-or-break decision for IBM's profitability," said Kadan Stadelmann, chief technology officer at Komodo, developer of a cryptocurrency and blockchain platform. And there's some risk to Red Hat in closing down source code access. "By totally removing free and open-source software, Red Hat may not necessarily increase revenues that much while alienating its large community of open-source developers," Stadelmann said.

There's evidence that's already happening, at least for now. Red Hat's action has both energized and elevated the profiles of some open-source alternatives.

A Bangladeshi government website leaked the personal information of citizens, including full names, phone numbers, email addresses and national ID numbers. TechCrunch reports: Viktor Markopoulos, a researcher who works for Bitcrack Cyber Security, said he accidentally discovered the leak on June 27, and shortly after contacted the Bangladeshi e-Government Computer Incident Response Team (CERT). He said the leak includes data of millions of Bangladeshi citizens. TechCrunch was able to verify that the leaked data is legitimate by using a portion to query a public search tool on the affected government website. By doing this, the website returned other data contained in the leaked database, such as the name of the person who applied to register, as well as -- in some cases -- the name of their parents. We attempted this with 10 different sets of data, which all returned correct data.

TechCrunch is not naming the government website because the data is still available online, according to Markopoulos, and we haven't heard back from any of the Bangladeshi government organizations that we emailed asking for comment and alerting of the data exposure. In Bangladesh, every citizen aged 18 and older is issued a National Identity Card, which assigns a unique ID to every citizen. The card is mandatory and gives citizens access to several services, such as getting a driver's license, passport, buying and selling land, opening a bank account, and others.

Markopoulos said finding the data "was too easy." "It just appeared as a Google result and I wasn't even intending on finding it. I was Googling an SQL error and it just popped up as the second result," he told TechCrunch, referring to SQL, a language designed for managing data in a database. The exposure of email addresses, phone numbers and national ID card numbers is bad on its own, but Markopoulos said that having this type of information could also "be used in the web application to access, modify, and/or delete the applications as well as view the Birth Registration Record Verification."

Consumers are winning from the streaming revolution but across most of Hollywood, the businesses churning out TV and movies are losing. From a report: Services such as Netflix, Disney+, Paramount+ and Max have become the default entertainment options for homes across America rather than cable, saving many consumers money. For the titans of Hollywood, that shift has been costly. Traditional media and entertainment companies have reported losses of more than $20 billion combined since early 2020 on their direct-to-consumer streaming businesses. Netflix, which brings in profits, is an exception, but the rest of the industry is wondering: While consumers love streaming, is it actually a good business?

Investors now care about profitability rather than growth, a change that makes finding new revenue streams and retaining customers critical. Studios that for years were able to splurge on content to feed viewers' insatiable appetite for new shows and films now must pull back to make the math work. The ad market is weakening, many companies have laid off staff to save money and Hollywood writers are on strike. Market values for Paramount Global, Comcast, Walt Disney and Netflix are down more than $280 billion combined since the end of 2020. Warner Bros. Discovery is worth about half of its total value since its 2022 trading debut as a combined company. The declines have come after many of the stocks rose during the early part of the pandemic, when consumers were stuck at home and hungry for entertainment.

According to the Financial Times, Jeff Bezos-owned Blue Origin has announced plans to expand its operations to "Europe and beyond." Engadget reports: Part of this growth hinges on finding a site for an international launch facility -- the company has already put down roots in Texas, Washington, Florida and Alabama -- but the new location hasn't been chosen yet. It's also actively looking for fresh acquisitions and partnerships outside of the US in areas such as manufacturing and software.

Though Blue Origin was the first to launch, land and reuse a rocket successfully, it has fallen behind its rival due to hold-ups with building its launchers. Blue Origin's plans for a more global footprint might help them catch up with SpaceX's progress. Amazon's Project Kuiper also plans to use Blue Origin's rocket New Glenn for at least 12 launches between 2024 and 2029 after a few years of delays. "We're looking for anything we can do to acquire, to scale up to better serve our customers," Bob Smith, Blue Origin CEO, said. "It's not a function of size -- rather how much it accelerates our road map of what we're trying to get done."

End-of-life for Red Hat 7 is scheduled to happen in one year. Thursday Red Hat announced an add-on option for four more years of "extended support" for RHEL 7: As we near the end of the standard 10-year life cycle of RHEL 7, some IT organizations are finding that they cannot complete their planned migrations before June 30, 2024. To support IT teams while they catch up on their migration schedules, Red Hat is announcing a one-time, 4 year ELS maintenance period for RHEL 7 ELS. While Red Hat is providing more time, we strongly recommend customers migrate to a newer version of RHEL to take advantage of new features and enhancements...

For organizations that need to remain on a major release beyond the standard life cycle, we offer the Extended Life Cycle Support (ELS) Add-On. This add-on currently extends support of major releases for up to 2 years after the end of the standard release life cycle. As an optional, add-on subscription, ELS gives you access to troubleshooting for the last minor release, selected urgent priority bug fixes and certain Red Hat-defined security fixes...

ELS for RHEL 7 is now available for 4 years, starting on July 1, 2024. Organizations must be on RHEL 7.9 to take advantage of this. Compared to previous major releases, ELS for RHEL 7 (RHEL 7.9) expands the scope of security fixes by including updates that address Important CVEs. It also includes maintenance for Red Hat Enterprise Linux for SAP Solutions and Red Hat Enterprise Linux High Availability and Resilient Storage add-ons. And to help you create your long-term IT infrastructure strategy, Red Hat plans to offer ELS for 3 years for both RHEL 8 and 9.

When you're ready to upgrade from RHEL 7 — or any other version — Red Hat is here to help. We offer in-place upgrade tools and detailed guidance to streamline upgrades and application migrations. You can also engage Red Hat Consulting to plan and execute your upgrade projects.
CentOS 7 will also hit its end-of-life in one year on June 30 of 2024.

The company behind Flipper Zero expects $80 million in sales this year, which ZDNet estimates at around 500,000 unit sales.

In its Kickstarter days the company sold almost $5 million as preorders, remembers TechCrunch, and the company claims it sold $25 million worth of the devices last year: So what are they selling? Flipper Zero is a "portable gamified multi-tool" aimed at everyone with an interest in cybersecurity, whether as a penetration tester, curious nerd or student — or with more nefarious purposes. The tool includes a bunch of ways to manipulate the world around you, including wireless devices (think garage openers), RFID card systems, remote keyless systems, key fobs, entry to barriers, etc. Basically, you can program it to emulate a bunch of different lock systems.

The system really works, too — I'm not much of a hacker, but I've been able to open garages, activate elevators and open other locking systems that should be way beyond my hacking skill level. On the one hand, it's an interesting toy to experiment with, which highlights how insecure much of the world around us actually is. On the other hand, I'm curious if it's a great idea to have 300,000+ hacking devices out in the wild that make it easy to capture car key signals and gate openers and then use them to open said apertures.
The company points out that their firmware is open source, and can be inspected by anyone.

ZDNet calls it "incredibly user-friendly" and "a fantastic educational tool and a stepping stone to get people — young and old — into cybersecurity," with "a very active community of users that are constantly finding new things to do with it". (Even third-party operating systems are available).

"Instead of looking like some scary hacking tool, all black and bristling with antennas, it looks like a kid's toy, all plastic and brightly colored," writes ZDNet. "It reminds me of Tamagotchis..."

Thanks to Slashdot reader ZipNada for suggesting the article.

Long-time Slashdot reader internet-redstar writes: In little longer than 1 year, RHEL7 and CentOS 7 will go EOL. Large enterprises with thousands of these servers are struggling to meet that deadline. Now they also have the option to use Project78 from Linux Belgium which offers a Cloud and OnPrem version to aid in the transition to RHEL 8 or Rocky Linux 8. It promises a 100% success rate for in-place OS upgrading and a 95% success rate for application migrations in a Upgrade-as-a-Service package.
In April Red Hat's senior technical marketing manager shared their thoughts about next year's end of life for CentOS Linux and the End-of-Maintenance for Red Hat Enterprise Linux 7 (along with some tips): The good news is that these events won't require a complete infrastructure overhaul. Tools are available to move from your current configuration to a place where you'll have years of support. While June of '24 may sound a ways off, do not delay. It will be here faster than you think. Start planning now. Start moving soon. Give yourself plenty of runway, and don't forget that we aren't just your software vendor at Red Hat. We are your partners and are here to help you with these transitions.
UPDATE (7/3): Thursday Red Hat announced an add-on option for four more years of "extended support" for RHEL 7: As we near the end of the standard 10-year life cycle of RHEL 7, some IT organizations are finding that they cannot complete their planned migrations before June 30, 2024. To support IT teams while they catch up on their migration schedules, Red Hat is announcing a one-time, 4 year ELS maintenance period for RHEL 7 ELS. While Red Hat is providing more time, we strongly recommend customers migrate to a newer version of RHEL to take advantage of new features and enhancements...

For organizations that need to remain on a major release beyond the standard life cycle, we offer the Extended Life Cycle Support (ELS) Add-On. This add-on currently extends support of major releases for up to 2 years after the end of the standard release life cycle. As an optional, add-on subscription, ELS gives you access to troubleshooting for the last minor release, selected urgent priority bug fixes and certain Red Hat-defined security fixes...

ELS for RHEL 7 is now available for 4 years, starting on July 1, 2024. Organizations must be on RHEL 7.9 to take advantage of this. Compared to previous major releases, ELS for RHEL 7 (RHEL 7.9) expands the scope of security fixes by including updates that address Important CVEs. It also includes maintenance for Red Hat Enterprise Linux for SAP Solutions and Red Hat Enterprise Linux High Availability and Resilient Storage add-ons. And to help you create your long-term IT infrastructure strategy, Red Hat plans to offer ELS for 3 years for both RHEL 8 and 9.

When you're ready to upgrade from RHEL 7 — or any other version — Red Hat is here to help. We offer in-place upgrade tools and detailed guidance to streamline upgrades and application migrations. You can also engage Red Hat Consulting to plan and execute your upgrade projects.

An anonymous reader shared this report from the Washington Post: Working from home appears to be here to stay, especially for women and college-educated workers, according to economic data released Thursday that revealed how Americans spent their time in 2022. The data, from the American Time Use Survey (ATUS), suggests that the pandemic changes that upended the workplace, family life and social interactions continue to have a lasting effect on life in the United States.

Many white-collar workers who hunkered down at home during pandemic shutdowns have returned to the office, but extraordinarily high numbers have not. For many, remote work appears to be a new normal... Working from home "is a permanent shift," said Julia Pollak, chief economist at ZipRecruiter. "We're now seeing many companies start as remote-first companies." The new data is a "continuation of what we've been seeing" in the American workforce, she said...

The annual survey by the Bureau of Labor Statistics and the Census Bureau asks thousands of Americans how they spent the past 24 hours of their lives across different categories of activities. Results from 2019 through 2021 showed that the pandemic dramatically shifted how much time people spend working at home. The new data suggests those changes persisted through 2022, even as much of life returned to normal as more people got vaccinated and boosted against the coronavirus, and case counts fell...

There is a clear benefit to remote work for employees, Pollak said. Working from home saves time and money on commuting, and many employees want the flexibility to work from anywhere, to better support their parents or children. She said remote work also is "part of the reason for this huge spike in new business formation. It has lowered the barriers to starting a business."
The 2022 figures show 34% of workers over the age of 15 still said they were working at home — and 54% of workers with a workers with a bachelor's degree or higher. (Meanwhile, workers without a high school diploma "were even less likely to work from home in 2022 than they were before the pandemic.")

The Post also reports another interesting finding in the data. "Americans ages 20 to 24 are the only group that spent more time socializing than before the pandemic. Teenagers, and adults ages 55 to 64, reported an overall decline in time spent socializing since before the pandemic."

An anonymous reader quotes a report from TorrentFreak: By pretending to be legitimate music rightsholders, two men managed to extract over $23 million in revenue from YouTube's content-ID system. Both were arrested, pleaded guilty (PDF), and now face multi-year prison terms. This week, the U.S. requested a 70-month sentence against the 'number two' of the operation, in part to deter future fraud. [...] Last year, one of the defendants confessed to his part in the copyright swindle by pleading guilty. Webster Batista admitted it was a simple scheme: find Latin American music that wasn't yet monetized on YouTube and claim the content as their own. In February of this year, the second defendant pleaded guilty. Jose Teran signed a plea agreement admitting that he was part of the conspiracy, engaging in wire fraud and money laundering.

The Content ID scam was straightforward, Teran's plea agreement revealed. The defendants simply identified unmonetized music and uploaded those songs to YouTube. [W]e discovered there were recorded songs of musicians and bands on the internet that were not being monetized. We began searching and downloading these songs. Once songs were downloaded, Batista would then upload them to Y.T. as mp3 files." "We falsely claimed legal ownership over these songs to receive royalty payments," Teran adds, noting that the scheme brought in millions. To collect these payments Batista launched the company MediaMuv, which became a trusted YouTube Content ID member through a third-party company referred to by the initials A.R. As the scheme grew, more employees were hired and tasked with finding more unmonetized tracks.

Despite pleading guilty, both defendants face a multi-year stint in prison. Teran will be the first to be sentenced and this week, the defendant and the prosecution announced their respective positions. According to the defense, Teran wasn't the lead of the operation. As an aspiring musician he looked up to his co-defendant, who is portrayed as the brains behind the operation. [...] Teran and Batista at one point had between five and eight people working for them. These employees used special software to find unmonetized music which they would then add to their catalog, to exploit YouTube's Content ID system. "Defendant, Jose Teran, engaged in a concerted effort -- over nearly five years -- to steal royalty proceeds from approximately 50,000 song titles, causing a loss of more than $23,000,000.00," the prosecution writes (PDF). "A 70-month sentence is undoubtedly substantial but given Mr. Teran's conduct and the need to deter future fraud, it is entirely warranted," the Government's sentencing memorandum concludes.

Reuters reports: U.S. intelligence agencies found no direct evidence that the COVID-19 pandemic stemmed from an incident at China's Wuhan Institute of Virology, a report declassified on Friday said.
America's Director of National Intelligence was responding to March legislation requiring declassification (within 90 days) of any information on possible links between the Wuhan Institute of Virology (or "WIV") and the origin of the COVID-19 pandemic. One key finding in the just-released report?

"We continue to have no indication that the Wuhan Institute of Virology's pre-pandemic research holdings included SARS-CoV-2 or a close progenitor, nor any direct evidence that a specific research-related incident occurred involving WIV personnel before the pandemic that could have caused the COVID pandemic." The information available to the U.S. Intelligence Community "indicates that the WIV first possessed SARS-CoV-2 in late December 2019, when WIV researchers isolated and identified the virus from samples from patients diagnosed with pneumonia of unknown causes."

And in addition, "All Intelligence Community agencies assess that SARS-CoV-2 was not developed as a biological weapon."

Beyond that, the report also emphasizes that "Almost all Intelligence Community agencies assess that SARS-CoV-2 was not genetically engineered," adding "Most agencies assess that SARS-CoV-2 was not laboratory-adapted; some are unable to make a determination." The National Intelligence Council and four other Intelligence Community agencies assess that the initial human infection with SARS-CoV-2 most likely was caused by natural exposure to an infected animal that carried SARS-CoV-2 or a close progenitor, a virus that probably would be more than 99 percent similar to SARS-CoV-2...

The Central Intelligence Agency and another agency remain unable to determine the precise origin of the COVID-19 pandemic, as both hypotheses rely on significant assumptions or face challenges with conflicting reporting.
The only two outliers appear to be the Department of Energy, which gives "low confidence" support to the lab-leak theory, and the FBI (whose Trump-appointed director "said he couldn't share many details of the agency's assessment because they were classified.")

Addressing rumors online, the report notes that the lab has performed public health-related research with the army, such as work on vaccines and therapeutics. This included working "with several viruses, including coronaviruses, but no known viruses that could plausibly be a progenitor of SARS-CoV-2."

And while several researchers were ill in the fall of 2019, their symptoms "were consistent with but not diagnostic of COVID-19... [T]he researchers' symptoms could have been caused by a number of diseases and some of the symptoms were not consistent with COVID-19... [T]hey experienced a range of symptoms consistent with colds or allergies with accompanying symptoms typically not associated with COVID-19, and some of them were confirmed to have been sick with other illnesses unrelated to COVID-19." And there's no indication any of them were ever hospitalized for COVID-19 symptoms.

Taking a short nap during the day may help to protect the brain's health as it ages, researchers have suggested after finding that the practice appears to be associated with larger brain volume. From a report: While previous research has suggested long naps could be an early symptom of Alzheimer's disease, other work has revealed that a brief doze can improve people's ability to learn. Now researchers say they have found evidence to suggest napping may help to protect against brain shrinkage. That is of interest, the team say, as brain shrinkage, a process that occurs with age, is accelerated in people with cognitive problems and neurodegenerative diseases, with some research suggesting this may be related to sleep problems.

"In line with these studies, we found an association between habitual daytime napping and larger total brain volume, which could suggest that napping regularly provides some protection against neurodegeneration through compensating for poor sleep," the researchers note. Writing in the journal Sleep Health, researchers at UCL and the University of the Republic in Uruguay report how they drew on data from the UK Biobank study that has collated genetic, lifestyle and health information from 500,000 people aged 40 to 69 at recruitment. The team used data from 35,080 Biobank participants to look at whether a combination of genetic variants that have previously been associated with self-reported habitual daytime napping are also linked to brain volume, cognition and other aspects of brain health.

A new study argues that the James Webb Space Telescope (JWST) is capable of detecting the chemical signs of life in exoplanet atmospheres -- the best hope for finding life on another world. Phys.Org reports: The team simulated atmospheric conditions for five broad types of Earth-like worlds: an ocean world, a volcanically active world, a rocky world during the high bombardment period, a super-Earth, and a world like Earth when life arose. They assumed all these worlds had a surface pressure of less than five Earth atmospheres, and calculated the absorption spectra for several organically produced molecules such as methane, ammonia, and carbon monoxide. These molecules can also be formed by non-biological methods, but they form a good baseline as a proof of concept.

They found that with a reasonably thick atmosphere, the JWST, specifically its NIRSpec G395M/H instrument, could confirm the presence of these molecules within 10 transits of the planet. It would be easiest to do with super-Earths and other worlds with a thick atmosphere, but it is still possible for potentially habitable worlds. Given the number of transits needed, our best shot at detecting biosignatures with JWST would be the close-orbiting worlds of red dwarf stars, such as the Trappist-1 system, which has several potentially habitable Earth-sized planets. Given the overlap between biological and non-biological origins, JWST observations might not be enough to confirm the existence of life, but this study shows that we are very close to that ability.

A new Harris Poll shared exclusively with Fast Company found that most Americans would prefer to live "in a simpler era before everyone was obsessed with screens and social media," reports Fast Company, adding "this sentiment is especially strong among older millennials and Gen Xers."

The Wrap summarizes the poll results: 77% of middle-age Americans (35-54 years old) say they want to return to a time before society was "plugged in," meaning a time before there was widespread internet and cell phone usage...

63% of younger folks (18-34 years old) were also keen on returning to a pre-plugged-in world, despite that being a world they largely never had a chance to occupy. In total, 67% of respondents said they'd prefer things as they used to be versus as they are now.
"Interestingly, baby boomers were slightly less eager to time hop, with only 60% of people over 55 saying they'd prefer to return to yesteryear," notes Fast Company: While Americans may want to unshackle themselves from the burden of constant connectivity, an overwhelming 90% also said that being open-minded about new technologies is important, a finding that mostly held up across demographics. About half of respondents even said they tend to adopt new technologies before most people they know...

Just over half said they found keeping up with new technologies overwhelming, and about that same percentage said they believe technology is more likely to divide people than unite them. Here, it was younger respondents who took the most pessimistic view, with 57% of people under 35 agreeing that technology divides, versus 43% who disagreed.

Universe Today reports: The best hope for finding life on another world isn't listening for coded messages or traveling to distant stars, it's detecting the chemical signs of life in exoplanet atmospheres. This long hoped-for achievement is often thought to be beyond our current observatories, but a new study argues that the James Webb Space Telescope (JWST) could pull it off.

Most of the exoplanets we've discovered so far have been found by the transit method. This is where a planet passes in front of its star from our point of view. Even though we can't observe the planet directly, we can see the star's brightness dip by a fraction of a percent. As we watch stars over time, we can find a regular pattern of brightness dips, indicating the presence of a planet. The star dips in brightness because the planet blocks some of the starlight. But if the planet also has an atmosphere, there is a small amount of light that will pass through the atmosphere before reaching us. Depending on the chemical composition of the atmosphere, certain wavelengths will be absorbed, forming absorption spectra within the spectra of the starlight.

We have long been able to identify atoms and molecules by their absorption and emission spectra, so in principle, we can determine a planet's atmospheric composition with the transit method... We have done this with a few exoplanets, such as detecting the presence of water and organic compounds, but these were done for large gas planets with thick atmospheres. We haven't been able to do this with rocky Earth-like worlds. Our telescopes just aren't sensitive enough for that.

But this new study shows that the JWST could detect certain chemical biosignatures depending on their abundance in the atmosphere.
Long-time Slashdot reader Baron_Yam writes that "The signature I like to imagine detecting is actually industrial pollution. Chemicals that aren't created by any known geological process and indicate not just life, but life smart enough to have advanced technology (but stupid enough to pollute their own air supply)."

The new Mac Studio started shipping to customers this week, giving product reviewers a chance to test Apple's "most capable chip ever." According to new benchmarks by YouTuber Luke Miani, the M2 Ultra features nearly double the GPU performance of last year's M1 Ultra, with notable performance improvements in other areas. 9to5Mac reports: While the M1 Max and M1 Ultra are blazing fast, the difference between the two wasn't as notable as some expected. In many tasks, the much cheaper M1 Max wasn't too far off from the top-end M1 Ultra variant, especially in video editing, photo editing, and 3D rendering. Despite the M1 Ultra literally being 2 M1 Max's fused, the performance was never doubled. For the M2 series, Apple has made some significant changes under the hood, especially in GPU scaling. In Luke's testing, he found that in some GPU heavy applications, like Blender 3D and 3DMark, the M2 Ultra was sometimes precisely twice the performance of M2 Max -- perfect GPU scaling! In Final Cut Pro exports, it nearly doubled again. He also found that the M2 Ultra doubled the GPU performance of the M1 Ultra in these same benchmarks -- a genuinely remarkable year-over-year upgrade.

The reason for the massive performance improvement is that Apple added a memory controller chip to the M2 generation that balances the load between all of M2 Ultra's cores -- M1 Ultra required the ram to be maxed out before using all cores. M1 Ultra was very good at doing many tasks simultaneously but struggled to do one task, such as benchmarking or rendering, faster than the M1 Max. With M2 Ultra, because of this new memory controller, Apple can now achieve the same incredible performance without the memory buffer needing to be maxed out. It's important to note that some applications cannot take advantage of the M2 Ultra fully, and in non-optimized applications, you should not expect double the performance.

Despite this incredible efficiency and performance, the better deal might be the M2 Max. In Luke's testing, the M2 Max performed very similarly or outperformed last year's M1 Ultra. In Blender, Final Cut Pro, 3DMark, and Rise of the Tomb Raider, the M2 Max consistently performed the same or better than the M1 Ultra. Instead of finding an M1 Ultra on eBay, it might be best to save money and get the M2 Max if you're planning on doing tasks that heavily utilize the GPU. While the GPU performance is similar, the M1 Ultra still has the advantage of far more CPU cores, and will outperform the M2 Max in CPU heavy workloads.

Security researchers at Mandiant say China-backed hackers are likely behind the mass-exploitation of a recently discovered security flaw in Barracuda Networks' email security gear, which prompted a warning to customers to remove and replace affected devices. From a report: Mandiant, which was called in to run Barracuda's incident response, said the hackers exploited the flaw to compromise hundreds of organizations likely as part of an espionage campaign in support of the Chinese government. Almost a third of the targeted organizations are government agencies, Mandiant said in a report published Thursday.

Last month, Barracuda discovered the security flaw affecting its Email Security Gateway (ESG) appliances, which sit on a company's network and filter email traffic for malicious content. Barracuda issued patches and warned that hackers had been exploiting the flaw since October 2022. But the company later recommended customers remove and replace affected ESG appliances, regardless of patch level, suggesting the patches failed or were unable to block the hacker's access. In its latest guidance, Mandiant also warned customers to replace affected gear after finding evidence that the China-backed hackers gained deeper access to networks of affected organizations.

Google last month upgraded its Bard chatbot with a new machine-learning model that can better understand conversational language and compete with OpenAI's ChatGPT. As Google develops a sequel to that model, it may hold a trump card: YouTube. From a report: The video site, which Google owns, is the single biggest and richest source of imagery, audio and text transcripts on the internet. And Google's researchers have been using YouTube to develop its next large-language model, Gemini, according to a person with knowledge of the situation. The value of YouTube hasn't been lost on OpenAI, either: The startup has secretly used data from the site to train some of its artificial intelligence models, said one person with direct knowledge of the effort. AI practitioners who compete with Google say the company may gain an edge from owning YouTube, which gives it more complete access to the video data than rivals that scrape the videos. That's especially important as AI developers face new obstacles to finding high-quality data on which to train and improve their models. Major website publishers from Reddit to Stack Exchange to DeviantArt are increasingly blocking developers from downloading data for that purpose. Before those walls came up, AI startups used data from such sites to develop AI models, according to the publishers and disclosures from the startups.

The advantage that Google gains in AI from owning YouTube may reinforce concerns among antitrust regulators about Google's power. On Wednesday, the European Commission kicked off a complaint about Google's power in the ad tech world, contending that Google favors its "own online display advertising technology services to the detriment of competing providers." The U.S. Department of Justice in January sued Google over similar issues. Google could use audio transcriptions or descriptions of YouTube videos as another source of text for training Gemini, leading to more-sophisticated language understanding and the ability to generate more-realistic conversational responses. It could also integrate video and audio into the model itself, giving it the multimodal capabilities many researchers believe are the next frontier in AI, according to interviews with nearly a dozen people who work on these types of machine-learning models. Google CEO Sundar Pichai told investors earlier this month that Gemini, which is still in development, is exhibiting multimodal capabilities not seen in any other model, though he didn't elaborate.

Google is bringing generative AI technology to shopping, aiming to get a jump on e-commerce sites like Amazon. From a report: The Alphabet-owned company announced features Wednesday aimed at helping people understand how apparel will fit on them, no matter their body size, and added capabilities for finding products using its search and image-recognition technology. Additionally, Google introduced new ways to research travel destinations and map routes using generative AI -- technology that can craft text, images or even video from simple prompts.

"We want to make Google the place for consumers to come shop, as well as the place for merchants to connect with consumers," Maria Renz, Google's vice president of commerce, said in an interview ahead of the announcement. "We've always been committed to an open ecosystem and a healthy web, and this is one way where we're bringing this technology to bear across merchants." Google is the world's dominant search engine, but 46% of respondents in a survey of US shoppers conducted last year said they still started their product searches and research on Amazon, according to the research firm CivicScience. TikTok, too, is making inroads, CivicScience's research found -- 18% of Gen Z online shoppers turn to the platform first. Google is taking note, with some of its new, AI-powered shopping exploration features aimed at capturing younger audiences.

A new virtual "try-on" feature, launching on Wednesday, will let people see how clothes fit across a range of body types, from XXS to 4XL sizes. Apparel will be overlaid on top of images of diverse models that the company photographed while developing the capability. Google said it was able to launch such a service because of a new image-based AI model that it developed internally, and the company is releasing a new research paper detailing its work alongside the announcement.

CNN summarizes the issue. "A recent advisory from U.S. Surgeon General Dr. Vivek Murthy says there's not enough evidence to determine whether social media is safe enough for children and adolescents when it comes to their mental health." (Although a CNN news anchor points out that "Nearly all of the research points to negative impacts.")

CNN's Chief Medical Correspondent interviewed U.S. Surgeon General Dr. Vivek Murthy "to examine what led him to sound the alarm, and who should be responsible for tackling the issue." And the surgeon general remembers when his five-year-old daughter asked to post a picture on social media. "I think finding the right balance is not easy, in part because, you know, the platforms weren't necessarily designed for balance. They were designed to maximize how much time we spend on them." CNN: How worried are you? When people hear something coming from the surgeon general's office, they think of, you know, smoking, opioids, things like this. Social media — is it at that level of concern for you?

Surgeon General: Yes, I would say yes, it is. And, and — but it's it's more complicated... because we know that some kids do actually get benefit from their experience of social media. Some are able to connect more easily with friends and family, to express themselves more creatively and more openly than they otherwise would, and to find community... But one of the things that has become an increasing source of worry for me is that the the association between social media use and harmful outcomes... [W]e're asking parents to somehow figure it out all on their own. And the reason I issued an advisory on this topic is I worry that we have not taken enough action to support parents and kids...

CNN: What is the level of evidence about the dangers of social media and what is the level of evidence that you want? I mean, what does it take for you as a surgeon general to act on this...?

Surgeon General: I think the first question I'm asking is where is the evidence of safety...? There's a lot of association data, right, that's showing an association between use and certain and negative outcomes, like for example, for kids who who use more than 3 hours of social media a day, they face double the risk of depression and anxiety symptoms. But we also know that kids are telling us in their own words and their own experience how they're experiencing social media. So, for example, about nearly half of adolescents are saying that using social media makes them feel worse about their body image...

And one of the consistent messages I hear from researchers who's been studying this area for a long time is that they are having a hard time getting access to the data from social media companies. You know, as a parent, I don't ever want to feel like someone or anyone is hiding information from me about how a product affects my child. But that's how a lot of parents are feeling right now. And so that's a place where I think transparency matters. Let's get the data out there so independent researchers can assess it and can help us understand the harms and benefits and which kids are most impacted so we can design, you know, our approach, you know, in a more informed way...

One of the things we call for in my advisory is for the policymakers to step in and establish actual, transparent, enforceable safety standards like we do for other products so that parents have some reassurance around safety... This technology is already being used by 95% of kids, Right. And I don't think that's realistic to put the genie back in the bottle here or to say somehow nobody should be using social media, that that's not the goal here... We don't like leave it up to car manufacturers to determine whether or not they've hit the standards or not. We don't do that with medications either. There should be, you know, independent authority that parents can trust are looking primarily in solely out for the welfare of their kids, and they should be the ones who enforce these standards....

You know, just to put it bluntly, I do not think we have done our job as a society to have the backs of kids and parents on this because we haven't moved fast enough to get the information to ultimately guide them on safe use... [P]arents across the country, people are trying to do the best they can with limited information.
The surgeon general also says their ideal legislation would also "help to reduce kids exposure to harmful content" and include "restrictions on features that seek to manipulate kids into spending excessive amounts of time on these platforms."