Earlier this month app developer Guilherme Rambo had a warning for iPhone users: If you try to send an audio message using the Messages app to someone who's also using the Messages app, and that message happens to include the name "Dave and Buster's", the message will never be received.

In case you're wondering, "Dave and Buster's" is the name of a sports bar and restaurant in the United States... [T]he recipient will only see the "dot dot dot" animation for several seconds, and it will then eventually disappear. They will never get the audio message.
"The issue was first spotted on the podcast Search Engine..." according to an article in Fortune: Rambo's explanation of the curiosity goes like this.

"When you send an audio message using the Messages app, the message includes a transcription of the audio. If you happen to pronounce the name 'Dave and Buster's' as someone would normally pronounce it, almost like it's a single word, the transcription engine on iOS will recognize the brand name and correctly write it as 'Dave & Buster's' (with an ampersand)," he begins. So far, so good." [But ampersands have special meaning in HTML/XHTML...] And, as MacRumors puts it: "The parsing error triggers Apple's BlastDoor Messages feature that protects users from malicious messages that might rely on problematic parsing, so ultimately, the audio message fails to send."
To solve the mystery, Rambo "plugged the recipient device into my Mac and captured the logs right after the device received the problematic message." Their final thoughts... Since BlastDoor was designed to thwart hacking attempts, which frequently rely on faulty data parsing, it immediately stops what it's doing and just fails. That's what causes the message to get stuck in the "dot dot dot" state, which eventually times out, and the message just disappears. On the surface, this does sound like it could be used to "hack" someone's iPhone via a bad audio message transcription, but in reality what this bug demonstrates is that Apple's BlastDoor mechanism is working as designed.

Many bad parsers would probably accept the incorrectly-formatted XHTML, but that sort of leniency when parsing data formats is often what ends up causing security issues. By being pedantic about the formatting, BlastDoor is protecting the recipient from an exploit that would abuse that type of issue.

"A new study found that a gene recently recognized as a biomarker for Alzheimer's disease is actually a cause of it," announced the University of California, San Diego, "due to its previously unknown secondary function."

"Researchers at the University of California San Diego used artificial intelligence to help both unravel this mystery of Alzheimer's disease and discover a potential treatment that obstructs the gene's moonlighting role."

A team led by Sheng Zhong, a professor in the university's bioengineering department, had previously discovered a potential blood biomarker for early detection of Alzheimer's disease (called PHGDH). But now they've discovered a correlation: the more protein and RNA that it produces, the more advanced the disease. And after more research they ended up with "a therapeutic candidate with demonstrated efficacy that has the potential of being further developed into clinical tests..." That correlation has since been verified in multiple cohorts from different medical centers, according to Zhong... [T]he researchers established that PHGDH is indeed a causal gene to spontaneous Alzheimer's disease. In further support of that finding, the researchers determined — with the help of AI — that PHGDH plays a previously undiscovered role: it triggers a pathway that disrupts how cells in the brain turn genes on and off. And such a disturbance can cause issues, like the development of Alzheimer's disease....

With AI, they could visualize the three-dimensional structure of the PHGDH protein. Within that structure, they discovered that the protein has a substructure... Zhong said, "It really demanded modern AI to formulate the three-dimensional structure very precisely to make this discovery." After discovering the substructure, the team then demonstrated that with it, the protein can activate two critical target genes. That throws off the delicate balance, leading to several problems and eventually the early stages of Alzheimer's disease. In other words, PHGDH has a previously unknown role, independent of its enzymatic function, that through a novel pathway leads to spontaneous Alzheimer's disease...

Now that the researchers uncovered the mechanism, they wanted to figure out how to intervene and thus possibly identify a therapeutic candidate, which could help target the disease.... Given that PHGDH is such an important enzyme, there are past studies on its possible inhibitors. One small molecule, known as NCT-503, stood out to the researchers because it is not quite effective at impeding PHGDH's enzymatic activity (the production of serine), which they did not want to change. NCT-503 is also able to penetrate the blood-brain-barrier, which is a desirable characteristic. They turned to AI again for three-dimensional visualization and modeling. They found that NCT-503 can access that DNA-binding substructure of PHGDH, thanks to a binding pocket. With more testing, they saw that NCT-503 does indeed inhibit PHGDH's regulatory role.

When the researchers tested NCT-503 in two mouse models of Alzheimer's disease, they saw that it significantly alleviated Alzheimer's progression. The treated mice demonstrated substantial improvement in their memory and anxiety tests...

The next steps will be to optimize the compound and subject it to FDA IND-enabling studies.


The research team published their results on April 23 in the journal Cell.

Google's search AI is confidently generating explanations for nonexistent idioms, once again revealing fundamental flaws in large language models. Users discovered that entering any made-up phrase plus "meaning" triggers AI Overviews that present fabricated etymologies with unwarranted authority.

When queried about phrases like "a loose dog won't surf," Google's system produces detailed, plausible-sounding explanations rather than acknowledging these expressions don't exist. The system occasionally includes reference links, further enhancing the false impression of legitimacy.

Computer scientist Ziang Xiao from Johns Hopkins University attributes this behavior to two key LLM characteristics: prediction-based text generation and people-pleasing tendencies. "The prediction of the next word is based on its vast training data," Xiao explained. "However, in many cases, the next coherent word does not lead us to the right answer."

An AI support bot for the code editor Cursor invented a nonexistent subscription policy, triggering user cancellations and public backlash this week. When developer "BrokenToasterOven" complained about being logged out when switching between devices, the company's AI agent "Sam" falsely claimed this was intentional: "Cursor is designed to work with one device per subscription as a core security feature."

Users took the fabricated policy as official, with several announcing subscription cancellations on Reddit. "I literally just cancelled my sub," wrote the original poster, adding that their workplace was "purging it completely." Cursor representatives scrambled to correct the misinformation: "Hey! We have no such policy. You're of course free to use Cursor on multiple machines." Cofounder Michael Truell later apologized, explaining that a backend security change had unintentionally created login problems.

Increasingly autonomous AI programs could end up manipulating markets and intentionally creating crises in order to boost profits for banks and traders, the Bank of England has warned. From a report: Artificial intelligence's ability to "exploit profit-making opportunities" was among a wide range of risks cited in a report by the Bank of England's financial policy committee (FPC), which has been monitoring the City's growing use of the technology.

The FPC said it was concerned about the potential for advanced AI models -- which are deployed to act with more autonomy -- to learn that periods of extreme volatility were beneficial for the firms they were trained to serve. Those AI programs may "identify and exploit weaknesses" of other trading firms in a way that triggers or amplifies big moves in bond prices or stock markets.

WinRAR 7.10 now lets users remove potentially sensitive metadata from downloaded files while preserving core Windows security features. The file compression tool's latest release introduces a "Zone value only" setting that strips download locations and IP addresses from Windows' Mark-of-the-Web security flags during file extraction.

The new privacy control, enabled by default, maintains only the basic security zone identifier that triggers Windows' safety prompts for downloaded files. This change prevents recipients of shared archives from accessing metadata that could reveal where files originated. The update from win.rar GmbH, whose compression software claims 500 million users worldwide, also adds performance improvements through larger memory page support and introduces a dark mode interface.

Applications to MBA programs jumped 12% in 2024, with full-time programs surging 32% to decade-high levels, WSJ is reporting, citing the Graduate Management Admission Council's latest survey. Top-tier U.S. schools reported significant gains, with Columbia Business School seeing a 27% rise and Harvard Business School applications climbing 21%. So what's behind the surge? The story adds: Today, the U.S. job market is strong, and unemployment remains low. But lower wage positions in retail and dining, as well as healthcare and government, have fueled much of the labor market's growth over the past two years.

A white-collar job market downturn that began with tech workers in 2022 has spread to other sectors. Major employers including Goldman Sachs, Lyft, Microsoft and PricewaterhouseCoopers have laid off a combined tens of thousands of workers this year. Hiring for roles that usually require a bachelor's degree dropped below 2019 levels in recent months, according to payroll provider ADP. That slump has been steeper for 20-somethings, who are running into a bottleneck on the lower rungs of the corporate ladder as more established professionals stay put.

An anonymous reader quotes a report from TorrentFreak: The Dutch Supreme Court has requested guidance from the EU's top court on geo-blocking, VPNs, and copyright in a case involving the online publication of Anne Frank's manuscripts. The CJEU's response has the potential to reshape the online content distribution landscape, impacting streaming platforms and other services that rely on geo-blocking. VPNs services will monitor the matter with great interest too. [...] While early versions are presumably in the public domain in several countries, the original manuscripts are protected by copyright in the Netherlands until 2037. As a result, the copies published by the Dutch Anne Frank Stichting, are blocked for Dutch visitors. "The scholarly edition of the Anne Frank manuscripts cannot be made available in all countries, due to copyright considerations," is the message disallowed visitors get to see.

This blocking effort is the result of a copyright battle. Ideally, Anne Frank Stichting would like to make the manuscripts available worldwide, but the Swiss 'Fonds' has not given permission for it to do so. And since some parts of the manuscript were first published in 1986, Dutch copyrights are still valid. In theory, geo-blocking efforts could alleviate the copyright concerns but, for the Fonds, these measures are not sufficient. After pointing out that people can bypass the blocking efforts with a VPN, it took the matter to court. Around the world, publishers and streaming services use geo-blocking as the standard measure to enforce geographical licenses. This applies to the Anne Frank Stichting, as well as Netflix, BBC iPlayer, news sites, and gaming platforms. The Anne Frank Fonds doesn't dispute this, but argued in court that people can circumvent these restrictions with a VPN, suggesting that the manuscripts shouldn't be published online at all. The lower court dismissed this argument, stating the defendants had taken reasonable measures to prevent access from the Netherlands. The Fonds appealed, but the appeal was also dismissed, and the case is now before the Dutch Supreme Court.

The Fonds argues that the manuscript website is (in part) directed at a Dutch audience. Therefore, the defendants are making the manuscripts available in the Netherlands, regardless of the use of any blocking measures. The defendants, in turn, argue that the use of state-of-the-art geo-blocking, along with additional measures like a user declaration, is sufficient to prevent a communication to the public in the Netherlands. The defense relied on the opinion in the GO4YU case, which suggests that circumventing geo-blocking with a VPN does not constitute a communication to the public in the blocked territory, unless the blocking is intentionally ineffective.

Wednesday GitHub "broke itself," reports the Register, writing that "the Microsoft-owned code-hosting outfit says it made a change involving its database infrastructure, which sparked a global outage of its various services."

Or, as the Verge puts it, GitHub experienced "some major issues" which apparently lasted for 36 minutes: When we first published this story, navigating to the main GitHub website showed an error message that said "no server is currently available to service your request," but the website was working again soon after. (The error message also featured an image of an angry unicorn.) GitHub's report of the incident also listed problems with things like pull requests, GitHub Pages, Copilot, and the GitHub API.
GitHub attributed the downtime to "an erroneous configuration change rolled out to all GitHub.com databases that impacted the ability of the database to respond to health check pings from the routing service. As a result, the routing service could not detect healthy databases to route application traffic to. This led to widespread impact on GitHub.com starting at 23:02 UTC." (Downdetector showed "more than 10,000 user reports of problems," according to the Verge, "and that the problems were reported quite suddenly.")

GitHub's incident report adds that "Given the severity of this incident, follow-up items are the highest priority work for teams at this time." To prevent recurrence we are implementing additional guardrails in our database change management process. We are also prioritizing several repair items such as faster rollback functionality and more resilience to dependency failures.

The PlayStation VR2's PC adapter is arriving on August 7th, allowing PC support for the PS5-exclusive headset. It'll cost $59.99. The Verge reports: Sony says the device will support all Steam VR games, including big-name titles like Half-Life: Alyx. In addition to the new adapter, Sony says players will need a DisplayPort cable to work with Steam titles on PC. (As well as a Steam account, obviously.) You can check out the minimum system requirements right here.

In a blog post, Sony explains that there will be some feature differences depending on whether you're playing on PS5 or PC: "PS VR2 was designed from the ground up specifically for PS5 -- so you'll notice that some key features, like HDR, headset feedback, eye tracking, adaptive triggers, and haptic feedback (other than rumble), are not available when playing on PC. However, other high-fidelity and sensory immersion features of PS VR2 are supported, including 4K visuals (2000 x 2040 per eye), 110-degree field of view, finger touch detection, and see-through view, as well as foveated rendering (without eye tracking) and 3D Audio in supported games."

"What if the big tech companies achieved their ultimate business goal — maximizing engagement on their platforms — in a way that has undermined our ability to function as an open society?"

That's the question being asked by Chuck Todd, chief political analyst for NBC News: What if they realized that when folks agree on a solution to a problem, they are most likely to log off a site or move on? It sure looks like the people at these major data-hoarding companies have optimized their algorithms to do just that. As a new book argues, Big Tech appears to have perfected a model that has created rhetorical paralysis. Using our own data against us to create dopamine triggers, tech platforms have created "a state of perpetual disagreement across the divide and a concurrent state of perpetual agreement within each side," authors Frank McCourt and Michael Casey write, adding: "Once this uneasy state of divisive 'equilibrium' is established, it creates profit-making opportunities for the platforms to generate revenue from advertisers who prize the sticky highly engaged audiences it generates."

In their new book, "Our Biggest Fight," McCourt (a longtime businessman and onetime owner of the Los Angeles Dodgers) and Casey are attempting a call to action akin to Thomas Paine's 18th century-era "Common Sense." The book argues that "we must act now to embed the core values of a free, democratic society in the internet of tomorrow." The authors believe many of the current ills in society can be traced to how the internet works. "Information is the lifeblood of any society, and our three-decade-old digital system for distributing it is fatally corrupt at its heart," they write. "It has failed to function as a trusted, neutral exchange of facts and ideas and has therefore catastrophically hindered our ability to gather respectfully to debate, to compromise and to hash out solutions.... Everything, ultimately, comes down to our ability to communicate openly and truthfully with one another. We have lost that ability — thanks to how the internet has evolved away from its open, decentralized ideals...."

Ultimately, what the authors are imagining is a new internet that essentially flips the user agreement 180 degrees, so that a tech company has to agree to your terms and conditions to use your data and has to seek your permission (perhaps with compensation) to access your entire social map of whom and what you engage with on the internet. Most important, under such an arrangement, these companies couldn't prevent you from using their services if you refused to let them have your data... Unlike most anti-Big Tech books, this one isn't calling for the breakup of companies like Meta, Amazon, Alphabet, Microsoft or Apple. Instead, it's calling for a new set of laws that protect data so none of those companies gets to own it, either specifically or in the aggregate...

The authors seem mindful that this Congress or a new one isn't going to act unless the public demands action. And people may not demand this change in our relationship with tech if they don't have an alternative to point to. That's why McCourt, through an organization he founded called Project Liberty, is trying to build our new internet with new protocols that make individual data management a lot easier and second nature. (If you want to understand the tech behind this new internet more, read the book!)
Wait, there's more. The article adds that the authors "envision an internet where all apps and the algorithms that power them are open source and can be audited at will. They believe that simply preventing these private companies from owning and mapping our data will deprive them of the manipulative marketing and behavioral tactics they've used to derive their own power and fortunes at the expense of democracy."

And the NBC News analyst seems to agree. "For whatever reason, despite our societal fear of government databases and government surveillance, we've basically handed our entire personas to the techies of Silicon Valley."

After six months of work, DRM developer Maurice Heumann successfully cracked Hogwarts Legacy's Denuvo DRM protection system to learn more about the technology. According to Tom's Hardware, he's "left plenty of the details of his work vague so as not to promote illegal cracking." From the report: Heumann reveals in his blog post that Denuvo utilizes several different methods to ensure that Hogwarts Legacy is being run under appropriate (legal) conditions. First, the DRM creates a "fingerprint" of the game owner's system, and a Steam Ticket is used to prove game ownership. The Steam ticket is sent to the Steam servers to ensure the game was legitimately purchased. Heumann notes that he doesn't technically know what the Steam servers are doing but says this assumption should be accurate enough to understand how Denuvo works.

Once the Steam ticket is verified, a Denuovo Token is generated that only works on a PC with the exact fingerprint. This token is used to decrypt certain values when the game is running, enabling the system to run the game. In addition, the game will use the fingerprint to periodically verify security while the game is running, making Denuvo super difficult to hack.

After six months, Heumann was able to figure out how to hijack Hogwart Legacy's Denuvo fingerprint and use it to run the game on another machine. He used the Qiling reverse engineering framework to identify most of the fingerprint triggers, which took him two months. There was a third trigger that he says he only discovered by accident. By the end, he was able to hack most of the Denuvo DRM with ~2,000 of his own patches and hooks, and get the game running on his laptop using the token generated from his desktop PC. Heumann ran a bunch of tests to determine if performance was impacted, but he wasn't able to get a definitive answer. "He discovered that the amount of Denuvo code executed in-game is quite infrequent, with calls occurring once every few seconds, or during level loads," reports Tom's Hardware. "This suggests that Denuvo is not killing performance, contrary to popular belief."

Michael Larabel reports via Phoronix: Given the recent change by Redis to adopt dual source-available licensing for all their releases moving forward (Redis Source Available License v2 and Server Side Public License v1), the Linux Foundation announced today their fork of Redis. The Linux Foundation went public today with their intent to fork Valkey as an open-source alternative to the Redis in-memory store. Due to the Redis licensing changes, Valkey is forking from Redis 7.2.4 and will maintain a BSD 3-clause license. Google, AWS, Oracle, and others are helping form this new Valkey project.

The Linux Foundation press release shares: "To continue improving on this important technology and allow for unfettered distribution of the project, the community created Valkey, an open source high performance key-value store. Valkey supports the Linux, macOS, OpenBSD, NetBSD, and FreeBSD platforms. In addition, the community will continue working on its existing roadmap including new features such as a more reliable slot migration, dramatic scalability and stability improvements to the clustering system, multi-threaded performance improvements, triggers, new commands, vector search support, and more. Industry participants, including Amazon Web Services (AWS), Google Cloud, Oracle, Ericsson, and Snap Inc. are supporting Valkey. They are focused on making contributions that support the long-term health and viability of the project so that everyone can benefit from it."

"Microsoft confirmed that a memory leak introduced with the March 2024 Windows Server security updates is behind a widespread issue causing Windows domain controllers to crash," BleepingComputer reported Thursday.

Friday Microsoft wrote that the issue "was resolved in the out-of-band update KB5037422," only available via the Microsoft Update Catalog. (The update "is not available from Windows Update and will not install automatically.")

BleepingComputer reported the leak only affected "enterprise systems using the impacted Windows Server platform," and home users were not affected. But Microsoft confirmed it impacted all domain controller servers with the latest Windows Server 2012 R2, 2016, 2019, and 2022 updates: As BleepingComputer first reported on Wednesday and as many admins have warned over the last week, affected servers are freezing and restarting unexpectedly due to a Local Security Authority Subsystem Service (LSASS) process memory leak introduced with this month's cumulative updates.

"Since installation of the March updates (Exchange as well as regular Windows Server updates) most of our DCs show constantly increasing lsass memory usage (until they die)," one admin said.

"Our symptoms were ballooning memory usage on the lsass.exe process after installing KB5035855 (Server 2016) and KB5035857 (Server 2022) to the point that all physical and virtual memory was consumed and the machine hung," another Windows admin told BleepingComputer.
The leak "is observed when on-premises and cloud-based Active Directory Domain Controllers service Kerberos authentication requests," Microsoft wrote. "Extreme memory leaks may cause LSASS to crash, which triggers an unscheduled reboot of underlying domain controllers..."

"We strongly recommend you do not apply the March 2024 security update on DCs and install KB5037422 instead..."

Long-time Slashdot reader Greymane shared this article from Wired: [I]n a demonstration of the risks of connected, autonomous AI ecosystems, a group of researchers has created one of what they claim are the first generative AI worms — which can spread from one system to another, potentially stealing data or deploying malware in the process. "It basically means that now you have the ability to conduct or to perform a new kind of cyberattack that hasn't been seen before," says Ben Nassi, a Cornell Tech researcher behind the research. Nassi, along with fellow researchers Stav Cohen and Ron Bitton, created the worm, dubbed Morris II, as a nod to the original Morris computer worm that caused chaos across the Internet in 1988. In a research paper and website shared exclusively with WIRED, the researchers show how the AI worm can attack a generative AI email assistant to steal data from emails and send spam messages — breaking some security protections in ChatGPT and Gemini in the process...in test environments [and not against a publicly available email assistant]...

To create the generative AI worm, the researchers turned to a so-called "adversarial self-replicating prompt." This is a prompt that triggers the generative AI model to output, in its response, another prompt, the researchers say. In short, the AI system is told to produce a set of further instructions in its replies... To show how the worm can work, the researchers created an email system that could send and receive messages using generative AI, plugging into ChatGPT, Gemini, and open source LLM, LLaVA. They then found two ways to exploit the system — by using a text-based self-replicating prompt and by embedding a self-replicating prompt within an image file.

In one instance, the researchers, acting as attackers, wrote an email including the adversarial text prompt, which "poisons" the database of an email assistant using retrieval-augmented generation (RAG), a way for LLMs to pull in extra data from outside its system. When the email is retrieved by the RAG, in response to a user query, and is sent to GPT-4 or Gemini Pro to create an answer, it "jailbreaks the GenAI service" and ultimately steals data from the emails, Nassi says. "The generated response containing the sensitive user data later infects new hosts when it is used to reply to an email sent to a new client and then stored in the database of the new client," Nassi says. In the second method, the researchers say, an image with a malicious prompt embedded makes the email assistant forward the message on to others. "By encoding the self-replicating prompt into the image, any kind of image containing spam, abuse material, or even propaganda can be forwarded further to new clients after the initial email has been sent," Nassi says.

In a video demonstrating the research, the email system can be seen forwarding a message multiple times. The researchers also say they could extract data from emails. "It can be names, it can be telephone numbers, credit card numbers, SSN, anything that is considered confidential," Nassi says.
The researchers reported their findings to Google and OpenAI, according to the article, with OpenAI confirming "They appear to have found a way to exploit prompt-injection type vulnerabilities by relying on user input that hasn't been checked or filtered." OpenAI says they're now working to make their systems "more resilient."

Google declined to comment on the research.

"These days in San Francisco, every major business closure triggers a rush to assign blame," argues the San Francisco Standard: When Macy's announced this week that it would shutter its flagship store in Union Square, it unleashed a wave of mourning and recriminations... Mayor London Breed and other local pols like state Sen. Scott Wiener tried to allay fears that Macy's was leaving because of crime, noting the planned closure is one of 150 nationwide. But in a tough election year, it seems few had the appetite to listen to her call for nuance...

The unavoidable truth is the pandemic hollowed out downtown San Francisco's offices and led to an exodus of tech staffers who preferred remote work. It meant the loss of thousands of people who had reason to regularly stroll by Macy's and so many other corporate retailers. Meanwhile, everybody else had even less reason to go shopping in an urban core. Why bother dressing up and schlepping downtown when you could get the same layaway deals online...? [R]etail has been recovering. But it should be no surprise that the recovery has happened largely in suburban markets, which have not experienced a mass exit of workers... Elsewhere, the reality is simple: Malls and department stores have been dying for the last decade, struggling to attract young people and redevelop growing vacant space into desirable uses.

Although Macy's is a legacy name, industry reports show it has been in a real doom loop of its own making. Everyone is angry about retail "shrinkage," an industry term for losses in inventory due to external theft, employee theft and mismanagement. However, reporting by CNBC and others has demonstrated that while corporate retailers may be seeing a bump in retail shrink, it is a smaller factor than other operational missteps. Industry experts suggest that "shrink" can be an excuse for poor inventory management and staffing issues, and brands like Lowe's, Foot Locker and Walgreens are now downplaying organized theft as a primary cause of revenue loss. The reality is that a swath of American retail chains have needed to downsize to remain profitable... [R]eactionary cries for police crackdowns on petty theft and homelessness miss how similar retail shutdowns are happening in cities with tougher crime laws and less visible poverty. Consider that Macy's has already conducted layoffs and cut employee benefits to remain afloat, triggering a worker strike in 2022. Then there's Macy's faltering credit card revenue, which the company said accounted for nearly triple the revenue loss as retail shrink.

While The Standard has reported on Macy's workers blaming theft for the closure, my own visit to Macy's on Tuesday and conversations with longtime sales associates in multiple departments suggested that low staffing, an aging clientele and dips in seasonal shopping have greatly affected business...

Turns out, "scary people stealing things" is a boogeyman that feels more tangible than the obscure machinations of a faltering corporation.
The San Francsico Standard itself was funded in part by billionaire venture capitalist Michael Moritz of Sequoia Capital...

An anonymous reader shares a report: For some Apple Vision Pro buyers, the honeymoon is already over. It's no coincidence that there's been an uptick on social media of Vision Pro owners saying they're returning their $3,500 headsets in the past few days. Apple allows you to return any product within 14 days of purchase -- and for the first wave of Vision Pro buyers, we're right about at that point.

Comfort is among the most cited reasons for returns. People have said the headset gives them headaches and triggers motion sickness. The weight of the device, and the fact that most of it is front-loaded, has been another complaint. Parker Ortolani, The Verge's product manager, told me that he thought using the device led to a burst blood vessel in his eye. At least one other person noted they had a similar experience with redness. (To be fair, VR headset users have anecdotally reported dry eyes and redness for years.)

We already know that a precise range of wavelengths within daylight triggers a light-sensitive photoreceptor in the back of your eye, causing the body's internal clock to reset.

Those receptors are called "intrinsically photosensitive retinal ganglion cells" (or ipRGCs), according to Science Alert — although the actual color is perceived by some nearby cones (which then send information back to those rceptors).

But are our bodies really affected specifically by the perceived color? Chronobiologist Christine Blume investigated with a team from Switzerland's University of Basel and Germany's Max Planck Institute for Biological Cybernetics: Modern scientific wisdom advises us to avoid devices that emit a significant amount of blue radiance, such as our smartphones, computer monitors, and tablets, when we ought to be wrapping ourselves in darkness and resting. There's perfectly sound reasoning for this — the ipRGCs in our eyes react to short wavelengths of electromagnetic radiation, roughly 490 nanometers in size... Given blue light scatters from the sky during daylight hours, it makes sense our eyes would use this wavelength as a cue to mark the beginning and end of sleep time...

Yet University of Basel chronobiologist Christine Blume had her suspicions that the way a light's mix of wavelengths influenced the color-reading cones could mean there's more to the phenomenon than meets the eye. "A study in mice in 2019 suggested that yellowish light has a stronger influence on the internal clock than bluish light," says Blume. To resolve whether the way cones perceive a range of wavelengths carries any weight in how the blue-triggered ipRGCs function, Blume and her team recruited eight healthy adult men and eight women in a 23-day-long experiment. After habituating to a specific bedtime for a week, the volunteers attended three visits to a lab where they were exposed to a constant controlled 'white' glow, a bright yellow, or dim blue light for one hour in the evening...

None of the analyses revealed any indication that the perceived color of the light affected the duration or quality of the volunteers' sleep patterns. Instead, all three light conditions caused a sleep delay, suggesting light in general has a more complicated impact than previously thought. That's not to say ipRGCs aren't affected by 'blue' wavelengths of light. Rather, white light that is packed with blue waves but stimulates cone cells into seeing yellows, reds, or purples could still affect our sleep cycles. Similarly, light that looks blue but isn't intense enough to provoke the ipRGCs into functioning might have little influence over our body's daily rhythms.

Phones of the future may one day allow us to switch into a night mode that we don't perceive in warmer tones.
Thanks to long-time Slashdot reader schwit1 for sharing the article.

An anonymous reader quotes a report from the Los Angeles Times: It was the late 1980s when Gary Mund felt his pinky tremble. At first it seemed like a random occurrence, but pretty quickly he realized something was seriously wrong. Within two years, Mund -- a crew worker with the Eastern Municipal Water District in Riverside County -- was diagnosed with Parkinson's disease. The illness would eventually consume much of his life, clouding his speech, zapping most of his motor skills and taking away his ability to work and drive. "It sucks," said Mund, 69. He speaks tersely, because every word is a hard-won battle. "I was told the herbicide wouldn't hurt you."

The herbicide is paraquat, an extremely powerful weed killer that Mund sprayed on vegetation as part of his job from about 1980 to 1985. Mund contends the product is responsible for his disease, but the manufacturer denies there is a causal link between the chemical and Parkinson's. Paraquat is manufactured by Syngenta, a Swiss-based company owned by the Chinese government. The chemical is banned in at least 58 countries -- including China and Switzerland -- due to its toxicity, yet it continues to be a popular herbicide in California and other parts of the United States. But research suggests the chemical may cross the blood-brain barrier in a manner that triggers Parkinson's disease, a progressive, neurodegenerative disorder that affects movement. Now, Mund is among thousands of workers suing Syngenta seeking damages and hoping to see the chemical banned.

Since 2017, more than 3,600 lawsuits have been filed in state and federal courts seeking damages from exposure to paraquat products, according to Syngenta's 2022 financial report (PDF). [...] Paraquat is 28 times more toxic than another controversial herbicide, Roundup, according to a report from the Pesticide Action Network. (Roundup has been banned in several parts of California, including a 2019 moratorium by the Los Angeles County Board of Supervisors forbidding its use by county departments.) Paraquat also has other known health effects. It is listed as "highly toxic" on the U.S. Environmental Protection Agency's website, which says that "one small sip can be fatal and there is no antidote." The EPA is currently reviewing paraquat's approval status. However, both the EPA and Syngenta cited a 2020 U.S. government Agricultural Health Study that found there is no clear link between paraquat exposure and Parkinson's disease. A 2021 review of reviews similarly found that there is no causal relationship.

Overclocking AMD's Ryzen Threadripper 7000 series blows a fuse, indicating modification. However, AMD has told Tom's Hardware that this does not automatically invalidate the warranty of these top-tier workstation CPUs. From the report: "Threadripper 7000 Series processors do contain a fuse that is blown when overclocking is enabled. To be clear, blowing this fuse does not void your warranty. Statements that enabling an overclocking/overvolting feature will 'void' the processor warranty are not correct. Per AMD's standard Terms of Sale, the warranty excludes any damage that results from overclocking/overvolting the processor. However, other unrelated issues could still qualify for warranty repair/replacement," an AMD representative told Tom's Hardware.

In summation, overclocking your Ryzen Threadripper Pro 7000 or non-Pro processor will not void the warranty -- only damages directly resulting from overclocking will. As always, AMD isn't against overclocking. If it was, the chipmaker wouldn't advertise overclocking support as one of the features of the WRX90 and TRX50 platforms. Only OEM systems lack overclocking support.