Meta has fired or disciplined more than two dozen employees and contractors over the last year whom it accused of improperly taking over user accounts, in some cases allegedly for bribes, The Wall Street Journal reported Thursday, citing people familiar with the matter and documents. From the report: Some of those fired were contractors who worked as security guards stationed at Meta facilities and were given access to the Facebook parent's internal mechanism for employees to help users having trouble with their accounts, according to the documents and people familiar with the matter. The mechanism, known internally as "Oops," has existed since Facebook's early years as a means for employees to help users they know who have forgotten their passwords or emails, or had their accounts taken over by hackers.

As part of the alleged abuse of the system, Meta says that in some cases workers accepted thousands of dollars in bribes from outside hackers to access user accounts, the people and documents say. The disciplinary actions are part of a lengthy internal probe led by Meta executives, according to the documents and one of the people. "Individuals selling fraudulent services are always targeting online platforms, including ours, and adapting their tactics in response to the detection methods that are commonly used across the industry," said Meta spokesman Andy Stone. He added that the company "will keep taking appropriate action against those involved in these kinds of schemes."

An anonymous reader shares a report: I wanted to know how all these merchants had gotten my professional contact info. What I discovered was both unsurprising in today's world of relentless online marketing and aggressive consumer data sharing, and also a bit disquieting. It also had less to do with these small shops than I might have expected: Square's parent company, Block, was selling access to customers' inboxes, even if all we do is elect to receive a receipt from a single transaction (more on that below). Privacy experts said selling marketing information in this way clearly falls short of best privacy practices. And while it doesn't appear to violate data protection laws, the practice is walking a fine line.

"They're trying to solve for a lot of different nuances whilst trying to serve their objective and their merchant objective, which is keeping as many people opted in as possible," said Sucharita Kodali, a vice president and retail analyst at Forrester. Experts also told Protocol the situation seems to highlight how Block, as well as other payment processors and fintech platforms, operate in a bit of a privacy gray zone. Sometimes that gray zone leaves no one in charge of consumers' data rights, and sometimes it means the companies, deep within their terms of service, have legal loopholes that give them room to use our information in ways we might not expect.

The U.S. has rules limiting federal officials' stock-market investing. They can be waived. The Wall Street Journal: Mark Wu held more than $1 million of Amazon.com stock when President Biden tapped him to help craft a trade policy that would benefit U.S. technology companies and online retailers. Ethics officials at the Office of the U.S. Trade Representative said they gave Mr. Wu two options: Get rid of the stock or recuse himself from digital trade issues. He did neither.

For several months, Mr. Wu continued working on the trade matter while keeping the shares. He had "not followed the requirements," the U.S. Trade Representative's chief of staff told him in a June 2021 phone call, an email describing the call shows. Eventually, Mr. Wu quit, citing family issues. He kept his Amazon stock. Mr. Wu said he didn't work on trade issues specific to Amazon and left the government when the restrictions became too much of a burden on his family.

The U.S. has a law aimed at preventing the nation's thousands of obscure but powerful federal officials from using their influence on regulations, policies and investigations to benefit themselves. With penalties up to $50,000 and five years in prison, the law is supposed to ensure that officials in the executive branch don't work on any matter that could affect their personal finances. It doesn't. It has exceptions. Violations often go unpunished. When a problematic holding is identified, if the official resists selling it, the rules often are waived. The result is a system that largely relies on government employees to police their own stock investing.

Apple AirTags "are allowed on Lufthansa flights," Lufthansa announced this week — the opposite of their position last Sunday, remembers SFGate: The airline insisted the tech was "dangerous" and referred to International Civil Aviation Organization guidelines (set by the United Nations's specialized agency that recommends air transport policy) stipulating that baggage trackers are subject to the dangerous goods regulations. ["Furthermore, due to their transmission function, the trackers must be deactivated during the flight if they are in checked baggage," Lufthansa added on Twitter, "and cannot be used as a result"]
Ars Technica reports on the public relations debacle that then ensued: Outcry, close reading of the relevant sections (part 2, section C) of ICAO guidelines, and accusations of ulterior motives immediately followed. AppleInsider noted that the regulations are meant for lithium-ion batteries that could be accidentally activated; AirTag batteries are not lithium-ion, are encased, and are commonly used in watches, which have not been banned by any airline. The site also spoke with "multiple international aviation experts" who saw no such ban in ICAO regulations. One expert told the site the ban was "a way to stop Lufthansa from being embarrassed by lost luggage...."

Numerous people pointed out that Lufthansa, in its online World Shop, sells Apple AirTags. One Ars staffer noted that Lufthansa had previously dabbled in selling a smart luggage tag, one that specifically used RFID and BLE to program an e-ink display with flight information. On Tuesday, Apple told numerous publications that it, too, disagreed with Lufthansa's interpretation. It went unsaid but was strongly implied that a company that is often the world's largest by revenue would take something like air travel regulations into consideration when designing portable find-your-object devices....

Representatives from the Federal Aviation Administration and Transportation Security Administration said early this week that Bluetooth-based trackers were allowed in checked luggage. The European Union Aviation Safety Agency said its regulations could "not in itself ban or allow" trackers, but airlines could determine their own guidelines.

On Wednesday, Lufthansa walked back the policy under the cover of "The German Aviation Authorities (Luftfahrtbundesamt)," which the airline said in a tweet "shared our risk assessment, that tracking devices with very low battery and transmission power in checked luggage do not pose a safety risk." This would seem to imply either that Lufthansa was acting on that authority's ruling without having previously mentioned it, or that Lufthansa had acted on its own and has now found an outside actor to approve their undoing.

An anonymous reader quotes a report from Motherboard: Popular collectible card game Magic: The Gathering is celebrating its 30th anniversary by releasing packs of cards that cost $999. It's called Magic: The Gathering 30th Anniversary Edition and will contain some cards that haven't been reprinted in decades, all with their original art. Nine hundred ninety-nine dollars will buy a collector four sealed booster packs. "Each pack contains 15 cards, 13 cards in the modern frame -- 1 rare, 3 uncommons, 7 commons, and 2 basic lands -- plus one basic land in the retro frame, one additional retro frame card, and a token," according to Magic's website.

These cards are purely collector's items. They're not tournament legal and have different backing than the original cards. It's also a limited edition print run. Magic publisher Wizards of the Coast hasn't said how big that run will be, just that it's limited and that card shops will receive a limited supply with the bulk of the cards being sold online. The set includes reprints of cards, some of which haven't been reprinted in decades, including the Power Nine, nine powerful cards from the early sets that include the iconic Black Lotus and Ancestral Recall. These were some of the earliest cards to be restricted from tournament play because they were overpowered; they were eventually discontinued. A Black Lotus sold at auction in 2021 for $511,000. This new limited edition Black Lotus won't likely reach those lofty pricing heights. Again, these cards can't be used in tournament play and are only meant to be a collector's item. Customers will be buying packs in sets of four for $999, so they're paying $250 for a booster pack they can only ever display and never play with. The community is upset.

Companies such as Amazon and Microsoft, as well as banks, police services and government departments, shred millions of data-storing devices each year, the Financial Times has learnt through interviews with more than 30 people who work in and around the decommissioning industry and via dozens of freedom of information requests. From the report: This is despite a growing chorus of industry insiders who say there is another, better option to safely dispose of data: using computer software to securely wipe the devices before selling them on the secondary market. "From a data security perspective, you do not need to shred," says Felice Alfieri, a European Commission official who co-authored a report about how to make data centres more sustainable and is promoting "data deletion" over device destruction. Underpinning the reluctance to move away from shredding is the fear that data could leak, triggering fury from customers and huge fines from regulators.

Last month, the US Securities and Exchange Commission fined Morgan Stanley $35mn for an "astonishing" failure to protect customer data, after the bank's decommissioned servers and hard drives were sold on without being properly wiped by an inexperienced company it had contracted. This was on top of a $60mn fine in 2020 and a $60mn class action settlement reached earlier this year. Some of the hardware containing bank data ended up being auctioned online. While the incident stemmed from a failure to wipe the devices before selling them on, the bank now mandates that every one of its data-storing devices is destroyed -- the vast majority on site. This approach is widespread. One employee at Amazon Web Services, who spoke on condition of anonymity, explained that the company shreds every single data-storing device once it is deemed obsolete, usually after three to five years of use: "If we let one [piece of data] slip through, we lose the trust of our customers." A person with knowledge of Microsoft's data disposal operations says the company shreds everything at its 200-plus Azure data centres.

The PC beta for Modern Warfare 2 was only online for just over a weekend, but cheat developers quickly managed to create wallhacks anyway, according to videos created by multiple cheat developers. From a report: The news highlights the constant cat and mouse game between cheat developers and the companies that make competitive video games, and shows that Modern Warfare 2 will be no different. Warzone, the massively popular free-to-play battle royale game built on top of Call of Duty's mainline games, was notoriously overrun by cheaters before publisher Activision and the development studios working on the game introduced a new anti-cheat mechanism called Ricochet. "I started developing a MW2 beta cheat right away. I was done the same day, the first day of the beta. My users got access once the cheat was complete & tested," Zebleer, the pseudonymous administrator of Phantom Overlay, a cheat provider that has a long history of selling cheats for Warzone, told Motherboard in an email.

[...] EngineOwning, another cheat developer, published a video to their Twitter account over the weekend appearing to show their own product in action, although it didn't seem to be ready for the beta. "Our MW2 cheat is now done and we're currently in close testing," the tweet read. "This means our cheat will be ready when the game launches, with all the features you'd expect." The Anti-Cheat Police Department, a researcher who has tracked the cheating ecosystem and who reports offending players, claimed in their own tweet that "Ricochet has this shitty cheat detected they are just a scam operation at this point."

New submitter cj9er writes: Considering all the privacy issues in today's online climate (all the issues with Meta right now), what is the best high-end smartphone to select?

Apple: No way they don't sell your data... Sure, they have privacy for third-party apps, but what about the data they collect from the phone itself? Consider what the revenue is on a single smartphone (say $150), how do you think they have all that cash on hand?

Google: Yeah right, Pixel is probably collecting [data] 24/7 considering their main business is selling ads on Search. They have developed the Pixel line because they probably realized they were missing out on the direct collection of data from their own hardware (cut out the middle players using Android).

Samsung: Their TVs even collect and sell data on you. I don't really understand the price premium on Galaxy phones anyways.

I have kept my data and Wi-Fi turned off on my phones for years. Initially it was for battery reasons but now add in data collection. Ultimately, if we could turn off the GPS feature at will on our phones, maybe we could prevent all tracking (except for cellular triangulation). If we then think about safety, GPS is great and now with satellite-tracking on Apple phones, even better. But then what is going on behind the scenes 99.99% of the rest of the time when you don't require those options for safety reasons?

What phone manufacturer can be trusted?

A listing on a popular hacker forum offers 350 million Ask.FM user records for sale in what might be one of the biggest breaches of all time. Cybernews reports: The listing allegedly includes 350 million Ask.FM user records, with the threat actor also offering 607 repositories plus their Gitlab, Jira, and Confluence databases. Ask.FM is a question and answer network launched in June 2010, with over 215 million registered users. The posting also includes a list of repositories, sample git, and sample user data, as well as mentions of the fields in the database: user_id, username, mail, hash, salt, fbid, twitterid, vkid, fbuid, iguid. It appears that Ask.FM is using the weak hashing algorithm SHA1 for passwords, putting them at risk of being cracked and exposed to threat actors.

In response to DataBreaches, the user who posted the database -- Data -- explained that initial access was gained via a vulnerability in Safety Center. The server was first accessed in 2019, and the database was obtained on 2020-03-14. Data also suggested that Ask.FM knew about the breach as early as back in 2020. While the breach has not been confirmed, the seller called "Data" says he will "vouch all day and night for" listed user data from Ask.FM (ASKfm), the social networking site. "I'm selling the users database of Ask.fm and ask.com," Data wrote. "For connoisseurs, you can also get 607 repositories plus their Gitlab, Jira, Confluence databases."

California's attorney general filed an antitrust lawsuit against Amazon on Wednesday, claiming the retailer stifles competition and increases the prices consumers pay across the internet. The New York Times: The suit is limited to California, where officials said Amazon had around 25 million customers, but if it succeeds it could have a broad impact across the country. The lawsuit largely focuses on the way Amazon penalizes sellers for listing products at lower prices on other websites. If Amazon spots a product listed for cheaper on a competitor's website, it often will remove important buttons like "Buy Now" and "Add to Cart" from a product listing page. Those buttons are a major driver of sales for companies selling though Amazon, and losing them can quickly hurt their businesses. That creates a dilemma for marketplace sellers. At times, they can offer products for lower prices on sites other than Amazon because the cost of using those sites can be lower. But because Amazon is by far the largest online retailer, the sellers would rather raise their prices on other sites than risk losing their sales on Amazon, the complaint said, citing interviews with sellers, competitors and industry consultants.

An anonymous reader quotes a report from The Verge: In the spring of 2022, Twitter considered making a radical change to the platform. After years of quietly allowing adult content on the service, the company would monetize it. The proposal: give adult content creators the ability to begin selling OnlyFans-style paid subscriptions, with Twitter keeping a share of the revenue. Had the project been approved, Twitter would have risked a massive backlash from advertisers, who generate the vast majority of the company's revenues. But the service could have generated more than enough to compensate for losses. OnlyFans, the most popular by far of the adult creator sites, is projecting $2.5 billion in revenue this year -- about half of Twitter's 2021 revenue -- and is already a profitable company.

Some executives thought Twitter could easily begin capturing a share of that money since the service is already the primary marketing channel for most OnlyFans creators. And so resources were pushed to a new project called ACM: Adult Content Monetization. Before the final go-ahead to launch, though, Twitter convened 84 employees to form what it called a "Red Team." The goal was "to pressure-test the decision to allow adult creators to monetize on the platform, by specifically focusing on what it would look like for Twitter to do this safely and responsibly," according to documents obtained by The Verge and interviews with current and former Twitter employees. What the Red Team discovered derailed the project: Twitter could not safely allow adult creators to sell subscriptions because the company was not -- and still is not -- effectively policing harmful sexual content on the platform.

"Twitter cannot accurately detect child sexual exploitation and non-consensual nudity at scale," the Red Team concluded in April 2022. The company also lacked tools to verify that creators and consumers of adult content were of legal age, the team found. As a result, in May -- weeks after Elon Musk agreed to purchase the company for $44 billion -- the company delayed the project indefinitely. If Twitter couldn't consistently remove child sexual exploitative content on the platform today, how would it even begin to monetize porn? Launching ACM would worsen the problem, the team found. Allowing creators to begin putting their content behind a paywall would mean that even more illegal material would make its way to Twitter -- and more of it would slip out of view. Twitter had few effective tools available to find it. Taking the Red Team report seriously, leadership decided it would not launch Adult Content Monetization until Twitter put more health and safety measures in place. "Twitter still has a problem with content that sexually exploits children," reports The Verge, citing interviews with current and former staffers, as well as 58 pages of internal documents. "Executives are apparently well-informed about the issue, and the company is doing little to fix it."

"While the amount of [child sexual exploitation (CSE)] online has grown exponentially, Twitter's investment in technologies to detect and manage the growth has not," begins a February 2021 report from the company's Health team. "Teams are managing the workload using legacy tools with known broken windows. In short, [content moderators] are keeping the ship afloat with limited-to-no-support from Health."

Part of the problem is scale while the other part is mismanagement, says the report. "Meanwhile, the system that Twitter heavily relied on to discover CSE had begun to break..."

An anonymous reader quotes a report from Motherboard: Hackers are breaking into unsuspecting victims' Cash App accounts, a massively popular payment app, and stealing hundreds of dollars, according to victims Motherboard spoke to. In one person's case, they said, Cash App has not reimbursed them for the stolen funds. "It's scary!" Liz Shelby, who said their son was a victim of the hacking, told Motherboard in an online chat. "My son saved up some cash for a small vacation with his grandma. We put it in his Cash App before he left. He called me on Aug. 9, and told me that his money was gone." Shelby said that after she looked at the account she found that someone else had logged into it and sent themselves the money. Shelby said she's been emailing Cash App support, without success. Marvis Herring, another target, told Motherboard that hackers attempted to steal $1,400, in the form of two installments of $700. In those cases, Herring believes his bank blocked the fraudulent transactions.

Motherboard saw many other people reporting on social media that their Cash App accounts had been compromised in some way. "The main thing I thought was weird is that I went to change my account password and there really isn't a password for Cash App accounts," Herring added. When users sign up to Cash App, they can use either an email address or a phone number to open an account. After doing so, they receive a login code sent to either of those. On fraud websites, dark web marketplaces, and social media, multiple people appear to be selling login details associated with Cash App accounts. Some of these peoples' listings specify that the logs contain the email address and password for a linked email account. Some of the listings may be scams, but those on the dark web marketplaces come from fraudsters who have received positive feedback from alleged customers, according to the review system that is common on such sites. One listing for hacked Cash App accounts said the vendor has sold that specific item multiple times.

Fraudsters also appear to be offering Cash App accounts for another purpose: laundering money. Motherboard found multiple listings on a dark web marketplace offering these newly created and verified accounts. Cash App requires users to verify their identity to use some features, and this can require them providing their Social Security Number with the platform. These already verified accounts will allow fraudsters to buy Bitcoin through the Cash App without having to verify their identity, the listing suggests. [...] On its website, Cash App encourages users to make sure their linked email address has two-factor authentication enabled. The app also has an extra feature called Security Lock which means that each transfer requires the user to enter a PIN. "Preventing fraud is critically important to Cash App. We continue to invest in and bolster fraud-fighting resources by both increasing staffing and adopting new technology. We are constantly improving systems and controls to help prevent, detect, and report bad activity on the platform," a Cash App spokesperson told Motherboard in a statement. "For those who believe they have fallen victim to an identity-theft or account take-over scams, we encourage them to reach out to Cash App Support where we will review the account in question. If deemed fraudulent, we will take the necessary action starting with account closure and disablement of all applicable products."

For decades, buying property was considered a safe investment in China. Now, instead of building a foundation of wealth for the country's middle class, real estate has become a source of discontent and anger. From a report: In more than 100 cities across China, hundreds of thousands of Chinese homeowners are banding together and refusing to repay loans on unfinished properties, one of the most widespread acts of public defiance in a country where even minor protests are quelled. The boycotts are part of the fallout from a worsening Chinese economy, slowed by Covid lockdowns, travel restrictions and wavering confidence in the government. The country's economy is on a path for its slowest growth in decades. Its factories are selling less to the world, and its consumers are spending less at home. On Monday, the government said youth unemployment had reached a record high.

Compounding these financial setbacks are the troubles of a particularly vulnerable sector: real estate. "Life is extremely difficult, and we can no longer afford the monthly mortgage," homeowners in China's central Hunan Province wrote in a letter to local officials in July. "We have to take risks out of desperation and follow the path of a mortgage strike." The mortgage rebellions have roiled a property market facing the fallout from a decades-long housing bubble. It has also created unwanted complication for President Xi Jinping, who is expected to coast to a third term as party leader later this year on a message of social stability and continued prosperity in China.

So far, the government has scrambled to limit the attention garnered by the boycotts. After an initial flurry of mortgage strike notices went viral on social media, the government's internet censors kicked into action. But the influence of the strikes has already begun to spread. The number of properties where collectives of homeowners have started or threatened to boycott has reached 326 nationwide, according to a crowdsourced list titled "WeNeedHome" on GitHub, an online repository. ANZ Research estimates that the boycotts could affect about $222 billion of home loans sitting on bank balance sheets, or roughly 4 percent of outstanding mortgages.

In its latest effort to contend with soaring inflation, Amazon is planning to raise fulfillment fees during the holiday season, passing off some of its increased costs to the millions of merchants who rely on the site to sell their products. From a report: Starting Oct. 15, and running through Jan. 14, third-party sellers who use Fulfillment by Amazon, or FBA, will have to pay 35 cents per item sold in the U.S. or Canada, the company said Tuesday in an email to sellers. For merchants using FBA, Amazon handles the process of picking, packing and shipping items. The holiday fee comes on top of existing charges that sellers pay for using FBA services. Those costs vary depending on an item's size, category and weight.

Amazon said it's implementing an added holiday surcharge for the first time as "expenses are reaching new heights," making it harder for the company to absorb costs tied to the peak shopping season. "Our selling partners are incredibly important to us, and this is not a decision we made lightly," Amazon said in the email. Amazon's third-party marketplace has become the centerpiece of its dominant e-commerce business, as it now accounts for more than half of online retail sales. Because of Amazon's global reach and massive customer base, many retailers count on the company for the majority, and in some cases the entirety, of their business.

An anonymous reader quotes a report from Motherboard: A video started circulating on Twitter Thursday of a Boston Dynamics-style robot dog firing a submachine gun into targets amid a snowy backdrop. This type of robot dog (it doesn't seem like the robot in the video is a Boston Dynamics Spot, just looks a lot like it) is famous for dancing, but now appears to have fulfilled every warning given by journalists and analysts. It's got a gun and it's ready to kill. A lot of questions remain. First, the robot dog doesn't seem to be able to handle the recoil of the gun well. As it fires its rounds, the barrel trails up and the dog has to take a minute to get its balance back. We also don't know if the dog is firing on its own or if, and this is more likely, someone is off-camera pulling the trigger remotely.

The robot's feet, various ports, and its front are completely different from Boston Dynamics' Spot. There's dozens of knockoffs of the Boston Dynamics dog selling on the international market. The one in the video appears to be a UnitreeYusu "technology dog" selling on AliExpress for about $3,000. The feet, port placement, and joint coverings are all the same. The robot also has strips of Velcro on either of its flanks. The left flank bears a Russian flag and the other appears with a wolf's head. In another video on the channel, a man wears a similar patch on his arm. It appears to be a wolf's head insignia commonly associated with Russian Special Operations Forces or Spetsnaz. That doesn't mean that Spetsnaz is using armed robot dogs, as pretty much anyone can buy a similar patch online in various places.

The gun is also Russian. It appears to be a PP-19 Vityaz, a submachine gun based on the AK-74 design. As the dog wanders around and fires, it sometimes moves in front of an armored personnel carrier with a unique triangular door. That's a BDRM-2, a Russian armored car that's been spotted recently in Ukraine. Finally, there's the account the video originally appeared on. Before making its way to Twitter, the video of the dog was posted to the YouTube account of Alexander Atamov on March 22, 2022. Atamov is listed on his LinkedIn profile as the founder of "HOVERSURF" and his Facebook page lists him as living in Moscow. He posted a picture of the robot dog on March 21. According to Facebook's translation of his post, he called the dog "Skynet."

A Miami-based CEO has been arrested for allegedly importing $1 billion worth of counterfeit Cisco equipment from China and then selling it on Amazon and eBay. From a report: The Justice Department announced today that it had indicted 38-year-old Onur "Ron" Aksoy for selling the counterfeit Cisco gear via numerous online storefronts. Allegedly, Aksoy imported tens of thousands of fraudulent Cisco devices from China and Hong Kong. He then created at least 19 companies in New Jersey and Florida, dubbed the "Pro Network," to help him resell the hardware as genuine through the e-commerce sites.

"The operation allegedly generated over $100 million in revenue, and Aksoy received millions of dollars for his personal gain," the Justice Department said. The Cisco equipment Aksoy allegedly sold was usually older, lower-end models that were previously bought or discarded. Counterfeiters in China then modified the equipment, making the devices appear as if they were newer or more expensive Cisco product models. "As alleged, the Chinese counterfeiters often added pirated Cisco software and unauthorized, low-quality, or unreliable components -- including components to circumvent technological measures added by Cisco to the software to check for software license compliance and to authenticate the hardware," the Justice Department said. In addition, the counterfeit products were packaged with authentic-looking labels, boxes, and documentation.

"Effortlessly funny. Endlessly talented. Gone too soon," tweeted fellow YouTuber Ted Nivison after hearing the news. "Technoblade, a popular Minecraft YouTuber, has died from cancer age 23," writes the Verge.

But before Technoblade left, he'd prepared a goodbye for his 11.9 million subscribers: In a video uploaded to his YouTube channel titled "so long nerds" and narrated by his father, Technoblade thanked his fans and fellow streamers for their support over the years... His father says Technoblade wrote the script for his final video from bed and died shortly afterwards. "I don't think he said everything he wanted to say, but I think he got the main points," says his father. "He finished that up and then he was done. He lived about another eight hours after that."
"Hello, everyone! Technoblade here," the final message begins. "If you're watching this, I am dead. So let's sit down and have one final chat." My real name is Alex. I had one of my siblings call me 'Dave' one time in a deleted video from 2016, and it was one of the most successful pranks we've ever done. Thousands of creepy online dudes trying to get overly personal going 'Oh hey, Dave. How's it going?'

Sorry for selling out so much in the past year. But thanks to everyone that bought hoodies, plushies, and channel memberships. My siblings are going to college! Well, if they want to. I don't want to put any dead-brother peer pressure on them.

But that's all from me. Thank you all for supporting my content over the years. If I had another hundred lives, I think I would choose to be Technoblade every single time, as those were the happiest years of my life. I hope you guys enjoyed my content, and that I made some of you laugh.

And I hope you all go on to live long, prosperous, and happy lives. Because I love you guys.

Technoblade out.
After reading the statement, the 23-year-old's father remembered that in those final hours, "We all said goodbye." Then he adds that "He was the most amazing — he was the most amazing kid anyone could ever ask for." He said he misses his son, and thanked his viewers "for everything. You meant a lot to him."

And at the end of the video a message from "Techno's mom" appears on the screen. "My son's bravery on this path was a shining lesson to all of us who were privileged to walk it with him."

Mozilla: Starting today, Firefox is rolling out Total Cookie Protection by default to all Firefox users worldwide, making Firefox the most private and secure major browser available across Windows and Mac. Total Cookie Protection is Firefox's strongest privacy protection to date, confining cookies to the site where they were created, thus preventing tracking companies from using these cookies to track your browsing from site to site. Whether it's applying for a student loan, seeking treatment or advice through a health site, or browsing an online dating app, massive amounts of your personal information is online -- and this data is leaking all over the web.

The hyper-specific-to-you ads you so often see online are made possible by cookies that are used to track your behavior across sites and build an extremely sophisticated profile of who you are. Recent stories (including an excellent Last Week Tonight episode) have shown how robust, yet under-the-radar, the data selling economy is and how easy it is for anyone to buy your data, combine it with more data about you and use it for a variety of purposes, even beyond advertising. It's an alarming reality -- the possibility that your every move online is being watched, tracked and shared -- and one that's antithetical to the open web we at Mozilla have strived to build. That's why we developed Total Cookie Protection to help keep you safe online.

Total Cookie Protection works by creating a separate "cookie jar" for each website you visit. Instead of allowing trackers to link up your behavior on multiple sites, they just get to see behavior on individual sites. Any time a website, or third-party content embedded in a website, deposits a cookie in your browser, that cookie is confined to the cookie jar assigned to only that website. No other websites can reach into the cookie jars that don't belong to them and find out what the other websites' cookies know about you -- giving you freedom from invasive ads and reducing the amount of information companies gather about you. This approach strikes the balance between eliminating the worst privacy properties of third-party cookies -- in particular the ability to track you -- and allowing those cookies to fulfill their less invasive use cases (e.g. to provide accurate analytics). With Total Cookie Protection in Firefox, people can enjoy better privacy and have the great browsing experience they've come to expect.

ExpressVPN has removed its servers from India, becoming the first major virtual private network (VPN) provider to do so in the aftermath of the recent cybersecurity rules introduced by the country's cybersecurity agency. The rules require VPN providers to store user data for a period of five years. ExpressVPN said it "refuses to participate in the Indian government's attempts to limit internet freedom." The India Express reports: In a blog post, the British Virgin Island-based company said that with the introduction of the new cybersecurity rules by the Indian Computer Emergency Response Team (CERT-In), it has made a "very straightforward decision to remove our Indian-based VPN servers." While ExpressVPN is the first to pull its services from India, other VPN providers like NordVPN have also taken a similar stance.

The guidelines, released by CERT-In on April 26, asked VPN service providers along with data centers and cloud service providers, to store information such as names, e-mail IDs, contact numbers, and IP addresses (among other things) of their customers for a period of five years. The government said it wants these details to fight cybercrime, but the industry argues that privacy is the main selling points of VPN services, and such a move would be in breach of the privacy cover provided by VPN platforms.

ExpressVPN described the cybersecurity rules as "broad" and "overreaching." "The law is also overreaching and so broad as to open up the window for potential abuse. We believe the damage done by potential misuse of this kind of law far outweighs any benefit that lawmakers claim would come from it," ExpressVPN said. It added that while CERT-In's rules are intended to fight cybercrime, they are "incompatible with the purpose of VPNs, which are designed to keep users' online activity private." Indian users of ExpressVPN will still be able to use its service via "virtual" India servers located in Singapore and the UK. "We will never collect logs of user activity, including no logging of browsing history, traffic destination, data content, or DNS queries. We also never store connection logs, meaning no logs of IP addresses, outgoing VPN IP addresses, connection timestamps, or session durations," the company said.

An anonymous reader quotes a report from Ars Technica: [B]uying a Ford electric vehicle might be a lot less painful in the future, if Ford CEO Jim Farley gets his way. On Wednesday, Farley said that he wants the company's EVs to be sold online-only, with no dealer markups or other price negotiations, according to the Detroit Free Press. "We've got to go to non-negotiated price. We've got to go to 100 percent online. There's no inventory (at dealerships), it goes directly to the customer. And 100 percent remote pickup and delivery," Farley said while speaking at a conference in New York.

One of Tesla's most popular innovations was to eschew traditional dealerships and sell its products directly to customers. But traditional manufacturers like Ford are usually prohibited from selling their products directly to customers, a legacy of fears over vertical integration written into state laws during the early 20th century. As such, Ford's franchised dealers will almost certainly still have a role to play. "Then we have this opportunity to use our physical presence to outperform [competitors]. I think our dealers can do it. But the standards are going to be brutal. They're going to be very different than they are today," he said.

The move away from dealerships carrying extensive inventories of cars should save Ford money; the company says that its current distribution model adds around $2,000 in extra costs per car compared to Tesla. A third of that cost is tied up in inventory, and another third is spent on advertising.