"In the era of the open source rug pull, the role of open source foundations is more important than ever," argues the co-founder of the developer-focused industry analyst firm RedMonk: The "rug pull" here refers to companies that have used open source as a distribution mechanism, building a community and user base, before changing the license to be restricted, rather than truly open source. "This is capitalism, yo. We've got shareholders to satisfy. It's time to relicense that software, move to a Business Source license." [...] Where open source used to be a sustainable commitment, today too often it feels like a short term tactic. Commercial open source isn't what it used to be.

Which means that open source foundations, which provide ongoing governance and intellectual property management for open source projects, are in an interesting position, in some cases becoming more adversarial than they historically have been with vendors.... [T]he Apache Software Foundation (ASF) has done a great job of fostering sustainable, commercial, open source for decades now, most notably in the data infrastructure space — think Hadoop, Spark, Kafka, Flink etc. ["[C]ommercial open source would almost certainly never have achieved critical mass and continued success without foundations in the mix," the article notes later. "The ASF was founded in 1999, and underpinned the adoption of open source middleware in the enterprise..."] One premise behind the Cloud Native Computing Foundation (CNCF) is that user organisations can within reason trust it to stand behind the projects it incubates and manages. While not an explicit commitment, adopters generally, and enterprises specifically, have seen the CNCF imprimatur as one that they can rely on. In the era of the open source rug pull this kind of promise becomes even more important....

Sid Sijbrandij, CEO of GitLab has argued that open source companies should commit to an Open Charter as a mechanism to protect users from open source rug pulls. "Open source software isn't useful if people can't rely on the project remaining open source. Adopting Open Charter offers open source users predictability amidst the growing licensing switch trend." With a CNCF project, though, the need for this kind of charter becomes less important, because the code is by design not single source, but has a diverse set of contributors. Which is to say that open source foundations can make rug pulls a lot less likely than adoption of open source technology built by a single company. Relying on benevolent dictators is generally pretty risky. And recently the benevolent dictators have seemed... less benevolent.
In conclusion, "Open Source Foundations Considered Helpful," according to the post's title. It does argue that "Any company is within its rights to relicense its software, but it can certainly be problematic from a community and project health perspective.

"Which is exactly why open source foundations are more important than ever."

Kotaku reviews Star Wars Outlaws, Ubisoft's latest AAA title: I was staring at a wall. It was an early mission in Ubisoft's latest behemothic RPG, Star Wars Outlaws, in which I was charged with infiltrating an Empire base to recover some information from a computer, and this wall really caught my attention.

It was a perfect wall. It absolutely captured that late-70s sci-fi aesthetic of dark gray cladding broken up by utilitarian-gray panels covered in dull blinking lights, and I stopped to think about how much work must have gone into that wall. Looking elsewhere on the screen, I was then overwhelmed. This wall was the most bland thing in a vast hanger, where TIE Fighters hung from the ceiling, Stormtroopers wandered in groups below, and even the little white sign with the yellow arrow looked like it was a decade old, meticulously crafted to fit into this universe. I felt sheer astonishment at the achievement of this. Ubisoft, via multiple studios across the whole world, and the work of thousands of deeply talented people, had built this impossibly perfect area for one momentary scene that I was intended to run straight past.

Except I ran past it three times, because the AI kept fucking up and I was restarted at a checkpoint right before that gray wall over and over. I'm struggling to capture the dissonance of this moment. This sense of absolute awe, almost unbelieving admiration that it's even possible to build games at this scale and at this detail, slapped hard around the face by the bewilderingly bad decisions that take place within it all. Brokerage firm UBS said in a note to clients: Based on the 621 ratings thus far the game has received a score of 4.8 (out of 10). This tracks behind previous blockbuster releases by Ubisoft in Assassin's Creed and Far Cry, behind competing open world games released in 2024 and behind other major recent Star Wars Games released by EA in 2019 and 2023. The user ratings, which are generally unfavourable lag its generally favourable critic reviews (game received a score of 76 by critics).

Early user ratings suggest downside risk to our 10m units forecast for the game: While we previously felt the largely positive critic reviews made our 10m units sold look achievable (a component upon which we forecast +4% FY25 net bookings growth), the user ratings now suggest downside risk to our estimates. Previous Ubisoft games in Assassin's Creed and Far Cry which sold 10m+ units in their first fiscal year all received higher user ratings and were instalments of well entrenched franchises.

U.S. District Judge Ada Brown in Dallas blocked the FTC's rule banning noncompete agreements, arguing the FTC lacks authority to implement such broad regulations and did not adequately justify the sweeping prohibition. Reuters reports: Brown had temporarily blocked the rule in July while she considered a bid by the U.S. Chamber of Commerce, the country's largest business lobby, and tax service firm Ryan to strike it down entirely. The rule was set to take effect Sept. 4. Brown in her ruling said that even if the FTC had the power to adopt the rule, the agency had not justified banning virtually all noncompete agreements. "The Commission's lack of evidence as to why they chose to impose such a sweeping prohibition ... instead of targeting specific, harmful non-competes, renders the Rule arbitrary and capricious," wrote Brown, an appointee of Republican former President Donald Trump.

FTC spokesperson Victoria Graham said the agency was disappointed with the ruling and is "seriously considering a potential appeal." "Today's decision does not prevent the FTC from addressing noncompetes through case-by-base enforcement actions," Graham said in a statement. The Democratic-controlled FTC approved the ban on noncompete agreements in a 3-2 vote in May. The commission and supporters of the rule say the agreements are an unfair restraint on competition that violate U.S. antitrust law and suppress workers' wages and mobility.

An anonymous reader shares a report: Indian cryptocurrency exchange WazirX announced on Saturday a controversial plan to "socialize" the $230 million loss from its recent security breach among all its customers, a move that has sent shockwaves through the local crypto community.

The Mumbai-based firm, which suspended all trading activities on its platform last week following the cyber attack that compromised nearly half of its reserves in India's largest crypto heist, has outlined a strategy to resume operations within a week or so while implementing a "fair and transparent socialized loss strategy" to distribute the impact "equitably" among its user base.

WazirX will "rebalance" customer portfolios on its platform, returning only 55% of their holdings while locking the remaining 45% in USDT-equivalent tokens. This will also impact customers whose tokens were not directly affected by the breach, with the company stating that "users with 100% of their tokens in the 'not stolen' category will receive 55% of those tokens back."

Shares of cybersecurity company CrowdStrike Holdings dropped 15% on Friday after the company's software update resulted in what may turn out to be the largest IT outage ever. CrowdStrike stock "is on pace for its steepest daily loss since November 2022 and its $290 low share price is the lowest intraday mark since April 25," reports Forbes. "CrowdStrike is on track for the third-worst day in its five-year history as a publicly traded company." From the report: Microsoft, which was swept up in the outage as the downed systems are those running CrowdStrike's cybersecurity applications and Microsoft's Windows software, also slumped, with its shares down about 1% to the $3.2 trillion behemoth's lowest share price since June 11. CrowdStrike competitor Palo Alto Networks enjoyed a 4% rally Friday, while the tech-heavy Nasdaq Composite stock index gained about 0.2%, held up by the likes of Microsoft rival Apple's 1% stock gain and a 1% rise for shares of Alphabet, which is reportedly in talks to buy cybersecurity firm Wiz for $23 billion.

The CrowdStrike selloff is "an overreaction to a temporary setback," Rosenblatt analyst Catharine Trebnick wrote in a note to clients Friday. It's a "compelling buying opportunity" as it "creates a window for investors to buy into a high-quality, growth-oriented cybersecurity company at a discounted valuation," Trebnick continued. To her point, CrowdStrike stock's relative valuation, according to its price-to-earnings ratio (P/E), which compares its market value to its projected profits over the next four quarters, fell Friday to its lowest number since April. Still, CrowdStrike's P/E of about 70 is very high for a company of its size, meaning investors will need to express significant confidence in the business' ability to grow earnings, a challenge if Friday's incident were to impact CrowdStrike's client base.

In a new analysis, research firm Bernstein challenges the conventional wisdom surrounding Apple's iPhone sales fluctuations, arguing that perceived market share shifts between Apple and Android devices are largely illusory. The report, which Bernstein sent to its clients, contends that the majority of iPhone buyers are existing users upgrading their devices, rather than switchers from Android platforms.

Bernstein posits that year-to-year changes in iPhone unit sales are predominantly driven by Apple's upgrade rates within its established user base. This dynamic creates the appearance of significant market share gains or losses, particularly in China, where consumers are highly sensitive to new features. The analyst notes that upgrade cycles in China tend to be more pronounced than in other markets, leading to exaggerated perceptions of market share volatility. He suggests that the company's struggles in the region are more likely attributed to poor upgrade rates within its existing customer base rather than a mass exodus to competitors like Huawei.

On Monday, the biggest labor union at Samsung Electronics launched its first strike in the tech giant's 55-year history, vowing to continue indefinitely until its demands for better pay and benefits are met. According to Reuters, "The National Samsung Electronics Union (NSEU), whose roughly 30,000 members make up almost a quarter of the firm's South Korean workforce, said it has decided to continue striking because management has shown no indication of holding talks [...]." From the report: "We haven't spoken to management since we started the strike on Monday," said Lee Hyun-kuk, the union's vice president. The union said it would extend the strike initially planned to last three days through Wednesday. Lee told Reuters that the union found its strike has disrupted production on certain chip lines such as with equipment running more slowly. Samsung previously said the strike has caused no disruption to production. Lee said about 6,500 workers have been participating in the strike and that the union will encourage more members to join.

Union officials have disputed reports of low participation, telling Reuters that the five-year-old body did not have enough time to educate members about the labor issues. The union held a training session on Tuesday and will conduct another on Wednesday. Analysts said it would be difficult to verify whether the strike has disrupted production unless the union provides details of wafers and processes. The union said it has revised demands to include a 3.5% increase in base salary and, instead of an extra day's annual leave, a day off to mark the union's founding. Lee said the management previously offered a 3% rise in base salary but the union wants 3.5% to better reflect inflation.

Brandon Vigliarolo reports via The Register: Not everything in the semiconductor industry is about shearing off every last nanometer, which is why the Biden administration is splashing out CHIPS Act funding to those pursuing less cutting edge processor production. Case in point, today's announcement that Bloomington, Minnesota-based Polar Semiconductor could be getting up to $120 million in CHIPS funds to double production capacity over the next two years, along with a possible buyout to return the business to U.S. hands.

Polar, which manufactures semiconductors used primarily for the energy industry and electric vehicles, will use the funds to double its production capacity of sensor and power chips and upgrade its manufacturing kit, as well as adding 160 jobs to boot. Along with expanding production, the U.S. Department of Commerce said the funding would trigger additional private capital investment to "transform Polar from a majority foreign-owned in-house manufacturer to a majority U.S.-owned commercial foundry, expanding opportunities for U.S. chip designers to innovate and produce technologies domestically." In other words - sure it'll expand the output, but the real win is another majority U.S.-owned foundry for the White House to tout.

According to its website, Polar is currently owned by Korean conglomerate SK Group and serves as the primary fab and engineering center for Japanese firm Sanken Electric. Not exactly companies in countries with poor U.S. relations - but overseas owners, nonetheless. "This proposed investment in Polar will crowd in private capital, which will help make Polar a U.S.-based, independent foundry," said U.S. Commerce secretary Gina Raimondo. "They will be able to expand their customer base and create a stable domestic supply of critical chips, made in America's heartland."

An anonymous reader shares a report: Consumer Intelligence Research Partners is out with a report on how iPhone activations compare to Android in the US. The latest data shows a notable drop over the last year bringing Apple's US smartphone market share of new activations back in time six years. CIRP shared its new iPhone report on its Substack this morning. The firm notes that while it believes Apple's installed smartphone base is higher than the recent share of US smartphone activations, the latter has taken a dive.

As shown below, the metric peaked at 40% for Q1 and Q2 in 2023 with Apple seeing a decline to 33% of new smartphone activations in the US as of Q1 2024, says CIRP. That means 2 out of 3 new smartphone activations in the US are Android devices. Per CIRP's data, Apple hasn't seen numbers that low since 2017.

An article in Inc notes a "wild projection" in Reddit's SEC filing that Reddit's global market opportunity by 2027 is $1.4 trillion." Some of the numbers lead back to a single individual: Sam Altman. The co-founder and chief executive of ChatGPT-maker OpenAI owns an 8.7 percent stake in Reddit, more than its co-founder and CEO, Steve Huffman, who owns 3.3 percent... Altman, through various funds and holding companies he owns or manages, controls more than a million shares of Reddit at $60 million in aggregate purchase price — and holds more than 9 percent of voting rights...

Discussing Reddit's future, financial analyst and journalist Herb Greenberg recently told CNBC, "This is an AI play."
But the senior investing editor for Kiplinger.com argues that retail investors "may want to hold tight before rushing out to buy the Reddit IPO." While IPO stocks tend to have strong first-day showings, returns for the first year are generally weak, says the team of analysts at Trivariate Research, a market research firm based in New York. And since 2020, "the average IPO has lagged its industry average by 30% over the subsequent three years following its first closing price..."

Other commenters have noted that Reddit's allotment of shares to select Redditors could lower demand on the first day of trading, which would work against any IPO pop.
"Over the past few years, there have been a bunch of IPOs in the U.S. in which overhyped names enjoyed flashy stock-market debuts only to drop sharply soon after," notes the Street. Notable examples include Coinbase, which plummeted by almost 90% after its debut, Robinhood, still down 53% since its IPO, and Rivian, down over 91% since its debut. However, it's crucial to note that all of these IPOs occurred in 2021 amid market euphoria fueled by low interest rates, significant economic stimulus, and the lingering effects of the Covid-19 pandemic. Although the current macroeconomic landscape differs from three years ago, valuations of tech and growth stocks remain stretched.
Kiplingers.com concludes it "boils down to your own personal investing goals and risk tolerance. If you do decide to buy Reddit stock when it first begins trading, do so in a small amount that you can afford to lose."

But they also cite analysis from David Trainer, CEO of New Constructs, a research firm powered by artificial intelligence. "Reddit's IPO marks the return of the junk IPO," Trainer wrote in Forbes. "[The valuation] implies that Reddit will grow its user base to 26 times current levels, which would be nearly five times the size of [Snapchat-maker] Snap, and a highly unlikely feat. Reddit looks overvalued, and we think investors should pass on this IPO."

Trainer writes: [T]he company has never been profitable and should not be a publicly traded company... I think the company may never monetize its platform without angering its users and the entire premise of Reddit is user-generated content. This business model is inescapably built on a catch-22: make money or please users... Reddit looks overvalued, and I think investors should pass on this IPO.
Buyers and analysts told the site Marketing Brew "that they see the platform as nice-to-have, but that it is not an essential part of their media plans, like Meta or Google are." "They've always been solidly in the second or third tier of social networks," alongside Snap, Pinterest, and X, Brian Wieser, a former GroupM exec who's now author of the industry newsletter Madison and Wall, told Marketing Brew.
Yet Trainer notes that "98% of Reddit's revenue in 2023 came from third-party advertising on the site and 28% of all revenue came from ten customers," and "Reddit's cost of revenue, sales & marketing, general & administrative, and research & development costs were 117% of revenue in 2023."

Trainer concludes "Reddit is nowhere near breakeven. Reddit is an unprofitable social media company fighting for users."

Bloomberg adds that the subreddit r/WallStreetBets "has threatened to bet against the stock, with many people noting that the company still loses money two decades into its existence. (Reddit lost $90.8 million last year, down from $158.6 million the year before.)" Some have complained that the invitation to invest fails to make up for the unpaid labor they've invested making the site work... In 2021 the platform's WallStreetBets forum ignited a meme-stock frenzy, propelling skyward the stocks of nostalgic but struggling companies like GameStop Corp. and AMC Entertainment Holdings Inc. and sending shockwaves through the financial industry... When it goes public, the platform that invented meme stocks runs the risk of becoming one itself.

Reddit noted the possibility as a risk in its IPO filing. "Given the broad awareness and brand recognition of Reddit, including as a result of the popularity of r/wallstreetbets among retail investors," the company warned that its stock could "experience extreme volatility ... which could cause you to lose all or part of your investment if you are unable to sell your shares at or above the initial offering price."

Users on WallStreetBets got a kick out of the fact that the company listed the forum as a risk factor, posting about it with a sly smiling emoji...
Meanwhile, reports that marketers are infiltrating subreddits have been confirmed. Over 200 businesses have "integrated Reddit Pro into their digital strategies," reports Search Engine Land, including "well-known names such as Taco Bell, the NFL, and The Wall Street Journal...

"During the initial alpha testing phase with approximately 20 businesses, Reddit reported its Pro partners, on average, generated 11 additional posts and comments per month."

At CES, LG on Monday unveiled the OLED T, or as the firm describes it, "the first wireless transparent OLED TV," with 4K resolution and LG's wireless transmission tech for audio and video. Engadget: The unit also features a contrast screen that rolls down into a box at its base that you can raise or lower with the press of a bottom. The OLED T is powered by LG's new Alpha 11 AI processor with four times the performance of the previous-gen chip. The extra power offers 70 percent greater graphics performance and 30 percent faster processing speeds, according to the company.

The OLED T model works with the company's Zero Connect Box that debuted on last year's M3 OLED that sends video and audio wirelessly to the TV. You connect all of your streaming devices and game consoles to that box rather than the television. The OLED T's base houses down-firing speakers, which sound surprisingly good, as well as some other components. There are backlights as well, but you can turn those on for a fully-transparent look. LG says the TV will come in standalone, against-the-wall and wall-mounted options. No word on when the TV will go on sale, or how much it would cost.

According to MoffettNathanson, the U.S. pay-TV industry had its worst-ever third quarter after losing about 900,000 subscribers. "That poor result, the research firm added, left the total pay-TV industry shrinking at a record pace of -7.3%, widened from a year-ago decline of -5.9%," reports Light Reading. "It also left pay-TV penetration of occupied households (including vMVPDs) at just 54.8% -- a level last seen in 1989, five years before the debut of DirecTV." From the report: Drilling down on Q3 results, traditional pay-TV providers (cable, telco and satellite) shed 1.97 million subscribers, widened from a loss of 1.94 million in the year-ago quarter. Within that category, US cable lost 1.10 million video subs in Q3, versus a loss of -1.09 million in the year-ago period. Satellite operators (Dish Network and DirecTV) lost 667,000 subs in Q3, versus -567,000 in the year-ago quarter. Telco TV providers lost 198,000 video subs in the period, an improvement when compared to a year-ago loss of -250,000 subs.

vMVPDs, meanwhile, added 1.08 million in Q3, down from a year-ago gain of about 1.34 million. Despite those gains, vMVPDs recaptured only 21.7% of traditional pay-TV's subscriber losses in the period, according to MoffettNathanson. Meanwhile, YouTube TV continues to dominate the vMVPD category. MoffettNathanson estimates that YouTube TV added about 350,000 subs in Q3, extending its total to 7 million -- representing 40% of the vMVPD sector's 18 million subscriber total. "Based on our Q3 estimate, YouTube TV has now surpassed Dish Network [6.72 million satellite TV subs at the end of Q3] to become the country's fourth largest MVPD of any kind," Moffett noted. "At the current trajectory, YouTube TV should pass DirecTV for third place in less than a year."

An anonymous reader quotes a report from Ars Technica: Meta has started enabling end-to-end encryption (E2EE) by default for chats and calls on Messenger and Facebook despite protests from the FBI and other law enforcement agencies that oppose the widespread use of encryption technology. "Today I'm delighted to announce that we are rolling out default end-to-end encryption for personal messages and calls on Messenger and Facebook," Meta VP of Messenger Loredana Crisan wrote yesterday. In April, a consortium of 15 law enforcement agencies from around the world, including the FBI and ICE Homeland Security Investigations, urged Meta to cancel its plan to expand the use of end-to-end encryption. The consortium complained that terrorists, sex traffickers, child abusers, and other criminals will use encrypted messages to evade law enforcement.

Meta held firm, telling Ars in April that "we don't think people want us reading their private messages" and that the plan to make end-to-end encryption the default in Facebook Messenger would be completed before the end of 2023. Meta also plans default end-to-end encryption for Instagram messages but has previously said that may not happen this year. Meta said it is using "the Signal Protocol, and our own novel Labyrinth Protocol," and the company published two technical papers that describe its implementation (PDF). "Since 2016, Messenger has had the option for people to turn on end-to-end encryption, but we're now changing personal chats and calls across Messenger to be end-to-end encrypted by default. This has taken years to deliver because we've taken our time to get this right," Crisan wrote yesterday. Meta said it will take months to implement across its entire user base. A post written by two Meta software engineers said the company "designed a server-based solution where encrypted messages can be stored on Meta's servers while only being readable using encryption keys under the user's control."

"Product features in an E2EE setting typically need to be designed to function in a device-to-device manner, without ever relying on a third party having access to message content," they wrote. "This was a significant effort for Messenger, as much of its functionality has historically relied on server-side processing, with certain features difficult or impossible to exactly match with message content being limited to the devices."

The company says it had "to redesign the entire system so that it would work without Meta's servers seeing the message content."

An anonymous reader quotes a report from Ars Technica: A few months ago, the developers behind the Wii/GameCube emulator Dolphin said they were indefinitely postponing a planned Steam release, after Steam-maker Valve received a request from Nintendo to take down the emulator's "coming soon" page. This week, after consulting with a lawyer, the team says it has decided to abandon its Steam distribution plans altogether. "Valve ultimately runs the store and can set any condition they wish for software to appear on it," the team wrote in a blog post on Thursday. "In the end, Valve is the one running the Steam storefront, and they have the right to allow or disallow anything they want on said storefront for any reason."

The Dolphin team also takes pains to note that this decision was not the result of an official DMCA notice sent by Nintendo. Instead, Valve reached out to Nintendo to ask about the planned Dolphin release, at which point a Nintendo lawyer cited the DMCA in asking Valve to take down the page. At that point, the Dolphin team says, Valve "told us that we had to come to an agreement with Nintendo in order to release on Steam... But given Nintendo's long-held stance on emulation, we find Valve's requirement for us to get approval from Nintendo for a Steam release to be impossible. Unfortunately, that's that." "As for Nintendo, this incident just continues their existing stance towards emulation," the post continues. "We don't think that this incident should change anyone's view of either company."

Despite the disappointing result for the Steam release, the Dolphin team is adamant that "we do not believe that Dolphin is in any legal danger." That's despite the emulator's inclusion of the Wii Common Key, which could run afoul of the DMCA's anti-circumvention provisions. The Dolphin Team notes that the Wii Common Key has been freely shared across the Internet since its initial discovery and publication in 2008. And while that key has been in the Dolphin code base since 2009, "no one has really cared," the team writes. [...] With what they believe is a firm legal footing, the team writes that Dolphin development will continue away from Steam, but including a number of UI and quality of life features originally designed for the Steam release. Meanwhile, emulators like RetroArch and the innovative 3dSen continue to be available on Steam, with no immediate sign of a further crackdown from Valve or Nintendo.

An anonymous reader quotes a report from Ars Technica: JumpCloud, a cloud-based IT management service that lists Cars.com, GoFundMe, and Foursquare among its 5,000 paying customers, experienced a security breach carried out by hackers working for a nation-state, the company said last week. The attack began on June 22 as a spear-phishing campaign, the company revealed last Wednesday. As part of that incident, JumpCloud said, the "sophisticated nation-state sponsored threat actor" gained access to an unspecified part of the JumpCloud internal network. Although investigators at the time found no evidence any customers were affected, the company said it rotated account credentials, rebuilt its systems, and took other defensive measures.

On July 5, investigators discovered the breach involved "unusual activity in the commands framework for a small set of customers." In response, the company's security team performed a forced-rotation of all admin API keys and notified affected customers. As investigators continued their analysis, they found that the breach also involved a "data injection into the commands framework," which the disclosure described as the "attack vector." The disclosure didn't explain the connection between the data injection and the access gained by the spear-phishing attack on June 22. Ars asked JumpCloud PR for details, and employees responded by sending the same disclosure post that omits such details. Investigators also found that the attack was extremely targeted and limited to specific customers, which the company didn't name.

JumpCloud says on its website that it has a global user base of more than 200,000 organizations, with more than 5,000 paying customers. They include Cars.com, GoFundMe, Grab, ClassPass, Uplight, Beyond Finance, and Foursquare. JumpCloud has raised over $400 million from investors, including Sapphire Ventures, General Atlantic, Sands Capital, Atlassian, and CrowdStrike. The company has also published a list of IP addresses, domain names, and cryptographic hashes used by the attacker that other organizations can use to indicate if they were targeted by the same attackers. JumpCloud has yet to name the country of origin or other details about the threat group responsible.

"California startup Varda Space Industries launched its first test mission on June 12," reports CNN, "successfully sending a 200-pound (90-kilogram) capsule designed to carry drug research into Earth's orbit.

"The experiment, conducted in microgravity by simple onboard machines, aims to test whether it would be possible to manufacture pharmaceuticals in space remotely." Research has already established that protein crystals grown in a weightless environment can result in more perfect structures compared with those grown on Earth. These space-formed crystals could potentially then be used to create better-performing drugs that the human body can more easily absorb.
"Its research, company officials hope, could lead to better, more effective drugs — and hefty profits," CNN reported earlier this week: "It's not as sexy a human-interest story as tourism when it comes to commercialization of the cosmos," said Will Bruey, Varda's CEO and cofounder. "But the bet that we're making at Varda is that manufacturing is actually the next big industry that gets commercialized." Varda launched its first test mission Monday aboard a SpaceX rocket, which took off from Vandenberg Space Force Base in California just after 2:30 pm PT. The company then confirmed in a tweet that its satellite successfully separated from the rocket...

If successful, Varda hopes to scale its business rapidly, sending regular flights of satellites into orbit stuffed with experiments on behalf of pharmaceutical companies. Eventually, the firm hopes that research will yield a golden ticket drug, one that proves to be better when manufactured in space and can return royalties to Varda for years to come... Founded less than three years ago, Varda has gone from an idea to a company with more than $100 million in seed funding and grants, a 68,000-square-foot factory, and a satellite in space. Its workforce has grown to nearly 100 employees...

One day, the company hopes Varda flights will be so common that its capsules will blaze across the night sky every evening, like shooting stars to those on the ground who catch a glimpse. From there, Varda could even look to develop a research platform on a private space station, where pharma researchers could travel themselves.

According to a report from the Wall Street Journal, the partnership between Microsoft and OpenAI has become "awkward" due to tension and confusion. Ars Technica reports: Not only has this tension and confusion extended to Microsoft's internal AI team -- which apparently is dealing with budget cuts and limited access to OpenAI technology -- but sources said it also clouded Microsoft's controversial rollout of AI-powered Bing search last February. At that time, Bing was found to be vulnerable to prompt injection attacks revealing company secrets and providing sometimes inaccurate and truly unhinged responses to user prompts. According to WSJ, OpenAI warned Microsoft "about the perils of rushing to integrate OpenAI's technology without training it more" and "suggested Microsoft move slower on integrating its AI technology with Bing." A top concern for OpenAI was that Bing's chatbot, Sydney, might give inaccurate or unhinged responses, but this early warning seemingly was easily ignored by Microsoft. In a Wired interview published today, Microsoft CEO Satya Nadella suggested that any hiccups with Sydney at first were just part of Microsoft's plan for training the chatbot to respond to real-world prompts that couldn't be tested in a lab. "We did not launch Sydney with GPT-4 the first day I saw it, because we had to do a lot of work to build a safety harness," Nadella told Wired. "But we also knew we couldn't do all the alignment in the lab. To align an AI model with the world, you have to align it in the world and not in some simulation."

So that's partly why Microsoft rushed ahead anyway, but sources told WSJ that the rush was also partly due to Microsoft executives who had "misgivings about the timing of ChatGPT's launch last fall." Because OpenAI started ChatGPT's public testing while Microsoft was still working on integrating OpenAI tech into Bing, tension seemingly spiked between the partners, who also stood as rivals in an AI race to capture the world's attention. As ChatGPT's success grew, some Microsoft employees raised concerns that ChatGPT was stealing Bing's "thunder," WSJ reported. Others sensibly posited that Microsoft could learn valuable lessons ahead of Bing's rollout from ChatGPT's early public testing. [...] Of course, ChatGPT ultimately won the AI race, instantly attracting the fastest-growing user base in history. Meanwhile, "the new Bing," released a month later, "has yet to come close to the breakout success of ChatGPT," WSJ reported. Citing data from analytics firm YipitData, WSJ reported that ChatGPT "has nearly double the average number of daily search sessions as Bing search does."

Further tension and confusion has brewed within Microsoft's in-house AI team, which has "complained about diminished spending." Most employees are set back by a lack of "access to the inner workings" of OpenAI's technology, which is particularly painful for employees attempting to integrate that tech into various Microsoft products. There's also the awkward reality that OpenAI's and Microsoft's sales teams "sometimes pitch the same customers." Much of this "drama" amounts to typical infighting that happens any time two companies pair up, WSJ reported, but there's no ignoring the conflict inherent to both sides attempting to maintain independence while reaping maximum profits by selling access to the same technology. Despite these tensions, Nadella told Wired that OpenAI "bet on" Microsoft, and Microsoft "bet on" OpenAI. He still envisions "a good commercial partnership" between the independent companies and considered Microsoft's investment in OpenAI as "a long-term stable deal." Increasingly, it looks like one way to assuage tension is to bring the companies even closer together in partnership. WSJ noted that Nadella announced last month that the Bing search engine would soon be integrated into ChatGPT, which he said was "just the start of what we plan to do with our partners in OpenAI to bring the best of Bing to the ChatGPT experience."

An anonymous reader shared this report from the New York Times: Snippets of computer code. More than six million pages of emails, Slack messages and other digital records. And a small black notebook, filled with handwritten observations. For months, federal prosecutors building the criminal case against the fallen cryptocurrency executive Sam Bankman-Fried have assembled a vast and unusually varied array of evidence. The documents include crypto transaction logs and encrypted group chats from Mr. Bankman-Fried's collapsed exchange, FTX, as well as strikingly personal reflections recorded by a key witness in the case. The mountain of evidence ranks among the largest ever collected in a white-collar securities fraud case prosecuted by the federal authorities in Manhattan, according to data provided by a person with knowledge of the matter...

The diversity and growing volume of materials in the FTX case underscore the legal challenges facing Mr. Bankman-Fried, 31, who is charged with 13 criminal counts, including accusations that he misappropriated billions of dollars in customer money, defrauded investors and violated campaign finance laws. He has pleaded not guilty. With the trial set for October, prosecutors have gathered evidence ranging from phones and laptops to the contents of Mr. Bankman-Fried's Google accounts, which amounted to 2.5 million pages alone. At a hearing in March, Nicolas Roos, a federal prosecutor investigating FTX, said the government had obtained a laptop crammed with so much information that the F.B.I.'s technicians were struggling to decipher all of it. "It is a massive amount to sift through, and sometimes you can find incredibly useful information," said Moira Penza, a former federal prosecutor who's now in private practice. "It is a real challenge...."

Many of FTX's corporate records, including emails, Slack messages and transaction logs, were held by Sullivan & Cromwell, the law firm that took control of the exchange after it declared bankruptcy... In a January court filing, Sullivan & Cromwell displayed an excerpt from FTX's underlying code base, showing a feature that allowed Alameda to borrow virtually unlimited amounts of money from the exchange.

Dublin-based company Gazelle Wind Power has developed a modular floating offshore wind turbine design that it claims is more affordable than traditional designs. The Register reports: While it still has to be anchored to the seafloor, Gazelle's design places the anchor cables on a trio of articulated arms that help the platform move with the motion of the ocean. To ensure the turbine tower itself stays stationary, a counterweight hangs from the center of the platform; Gazelle claims this will reduce the turbine's pitch to less than five degrees, which the company said will greatly reduce wear and tear on the tower. Despite those design changes, the result is a turbine base that Gazelle reckons is smaller, lighter and 30 percent cheaper to deploy compared to traditional semi-submersible designs, it said. Speaking to IEEE Spectrum recently, Gazelle CTO Jason Wormald claimed the counterbalanced turbine was designed from the ground up, so to speak, for the offshore wind industry.

Gazelle's design has yet to be fielded - it's working on a pilot project in Portugal with renewable energy firm WAM Horizon, whose Chairman also serves as a non-executive director at Gazelle -- but if test results scale well it could mean every 1GW of third-generation Gazelle towers deployed would use 71kt less steel, preventing around 100kt of carbon dioxide emissions, the company claims. Gazelle also touts its modular design, which it said doesn't require any specialized equipment, like cranes or custom-built launch vessels, as another way in which it reduces environmental impacts.

A ransomware intrusion on hardware manufacturer Micro-Star International, better known as MSI, is stoking concerns of devastating supply chain attacks that could inject malicious updates that have been signed with company signing keys that are trusted by a huge base of end-user devices, a researcher said. From a report: "It's kind of like a doomsday scenario where it's very hard to update the devices simultaneously, and they stay for a while not up to date and will use the old key for authentication," Alex Matrosov, CEO, head of research, and founder of security firm Binarly, said in an interview. "It's very hard to solve, and I don't think MSI has any backup solution to actually block the leaked keys."

The intrusion came to light in April when, as first reported by Bleeping Computer, the extortion portal of the Money Message ransomware group listed MSI as a new victim and published screenshots purporting to show folders containing private encryption keys, source code, and other data. A day later, MSI issued a terse advisory saying that it had "suffered a cyberattack on part of its information systems." The advisory urged customers to get updates from the MSI website only. It made no mention of leaked keys. Since then, Matrosov has analyzed data that was released on the Money Message site on the dark web. To his alarm, included in the trove were two private encryption keys. The first is the signing key that digitally signs MSI firmware updates to cryptographically prove that they are legitimate ones from MSI rather than a malicious impostor from a threat actor. This raises the possibility that the leaked key could push out updates that would infect a computer's most nether regions without triggering a warning. To make matters worse, Matrosov said, MSI doesn't have an automated patching process the way Dell, HP, and many larger hardware makers do. Consequently, MSI doesn't provide the same kind of key revocation capabilities.