Astronomers have discovered two Jupiter-sized exoplanets with densities lower than cotton candy, making them the lightest known worlds of their size. The rare "super-puffs," located about 1,110 light-years away, are likely composed mostly of hydrogen and helium, with follow-up observations by the James Webb Space Telescope expected to probe their atmospheres. The Associated Press reports: [University of Oxford's George Dransfield] suspects these fluffy, wispy worlds are probably white or blue, depending on whether the skies there are cloudy -- no shades of cotton-candy pink. The planets are probably mostly hydrogen and helium, although it will take follow-up observations by NASA's Webb Space Telescope to confirm their chemical makeup.

Detected by NASA's Tess satellite over the past decade, these two especially puffy-puffs orbit a star in the southern constellation Volans, known as the flying fish. The researchers studied the planets' orbits using telescopes on Earth to determine their density, from 1,110 light-years away. A light-year is nearly 6 trillion miles (9.7 trillion kilometers). Jupiter, by comparison, is as much as 35 times denser than these two lightweights.

Considered rare in the cosmos, super-puffs are thought to form around the disk of gas and dust around a newborn star where there is more gas than dust. They shed much of the material over time, stripping down even more. NASA's tally of worlds outside our solar system currently stands at nearly 6,300 confirmed. Fewer than 40 are super-puffs, according to Dransfield. The findings have been published in the journal Monthly Notices of the Royal Astronomical Society.

"The US government has allowed Anthropic to release its powerful Mythos AI model to select companies and organizations," reports CNN, "revising license requirements after ordering an export block earlier this month in the wake of national security fears." Since the export ban earlier in June, "Anthropic has worked with the US government to address risks associated with the Covered Models," Commerce Secretary Howard Lutnick wrote to the company in a letter dated Friday. In light of progress in that work, Lutnick wrote, "I have determined that appropriate safeguards are in place to permit certain trusted partners to access the Claude Mythos 5 Model."

The letter does not include permission for Anthropic to release Fable, a less powerful version of Mythos. "We received notice from the US government that Mythos 5, our strongest cybersecurity model, can be redeployed to a small group of cyber defenders and infrastructure providers," Anthropic said in a statement...

Conversations between Anthropic and the government are expected to continue into the weekend, with an eye to restoring access to Fable, as well, a source familiar with the discussions told CNN.

Microsoft has quietly extended free Windows 10 security updates for consumers by another year, pushing the Extended Security Updates (ESU) program's end date from October 12, 2026, to October 12, 2027. "The ESU support page was updated with that date, and Microsoft's blog post on the program has a new editor's note confirming the change," reports Ars Technica. From the report: The prevalence of Windows across so many devices and form factors has given Microsoft a massive customer base for decades, but it has also stymied the company's efforts to roll out new operating systems. Microsoft famously extended the support window for Windows XP numerous times throughout the 2010s as it became apparent that millions of PCs would never be updated. Windows 10 isn't quite as entrenched as XP was, but it has still been a slog getting people to upgrade to Windows 11 even nearly five years after release.

Unlike many past Windows updates, Windows 11 required some users to buy new PCs with specific CPU technologies and a Trusted Platform Module (TPM). Microsoft was widely criticized for excluding perfectly serviceable PCs, and that's turning into a problem in 2026. The AI-driven shortage of storage and memory has made system upgrades vastly more expensive, potentially slowing upgrades. Some have also avoided Windows 11 due to Microsoft's intense focus on AI features.

The result is that Windows 10 remains stubbornly popular. According to StatCounter data, Windows 10 is still running on about 26 percent of PCs, while Windows 11 sits at 72 percent. That means there are still hundreds of millions of active Windows 10 installs, but those machines will be up to date for at least an additional year.

schwit1 shares a report from The Wall Street Journal: The European Union Aviation Safety Agency has ordered (PDF) urgent inspections of 16 Airbus A380 planes operated by Emirates and Qantas, after cracks were found in a wing component on some aircraft (source paywalled; alternative source).. Cracks were found during earlier inspections of the wing spars structure, a key component of the wing, EASA said in a directive effective Wednesday. EASA determined that they "could reduce the structural integrity of the wing."

"To address this potential unsafe condition, Airbus determined that an additional special detailed inspection has to be accomplished," EASA said. The first group of five aircraft, operated by Emirates, need to be inspected immediately, while the second group of 11 aircraft can be inspected later but within 25 flight cycles, EASA said in a separate statement. From the second group, 10 are operated by Emirates and one by Qantas, the aviation safety agency said.

Notion announced that it will shut down its email client on September 22. The company says more than half of users already manage email through Notion's AI agents without opening their inbox, so it is shifting its focus from a traditional email client to agent-run workflows. Engadget reports: It has published an FAQ for users to make sure that they don't lose any messages or data in the transition. Most emails will still exist in a Gmail inbox, but customers will need to manually export their drafts, scheduled emails, snippets and auto label instructions. Notion first began offering Notion Mail after acquiring startup Skiff in 2024.

Researchers say they detected the first gravitational-wave "fingerprints" of a black hole's event horizon by analyzing the final moments of the powerful GW250114 merger. The findings support Einstein's general relativity and may eventually help probe frame dragging and quantum fluctuations near black holes. Phys.org reports: For the new research published in Nature, an international team of researchers analyzed data from the strongest gravitational wave ever recorded, known as GW250114, detected by the LIGO observatory in January 2025. By isolating the last burst of waves -- known as "direct waves" -- from this black hole merger, the scientists said they were able to extract information from closer to an event horizon than ever before. "This black hole horizon concept normally appears in science fiction," lead study author Sizheng Ma of the Perimeter Institute for Theoretical Physics in Canada told AFP. "But now we are really able to touch the region around the horizon with gravitational data," he added. "Sometimes I cannot believe this is really happening."

The last stage of two black holes merging is like a spoon stirring a glass of water, Ma explained. The resulting swirl in space creates the ripple of gravitational waves that travel at the speed of light in all directions. If the metaphorical spoon is stirring close enough to the black hole's event horizon, "this offers us a chance to decode the physics around that region," Ma said. By supporting the theory of general relativity, the results "proved that Einstein was correct again," he added.

The scientists emphasized that more research was needed to decipher what can be gleaned about event horizons using this method. But they did detect information about how black holes twist space around themselves as they rotate -- a phenomenon known as "frame dragging." "This is similar to pushing a glass into a table and twisting it, so that the tablecloth winds up around it," Maximiliano Isi, a gravitational wave astrophysicist at Columbia University, told AFP. In the future, the scientists hope to find signs of tiny changes known as quantum fluctuations. "In this way, we can really probe this near-horizon region to look for new physics," including searching for a deviation from general relativity, Ma said.

An anonymous reader quotes a report from Reuters: Spain will require mobile networks to have backup systems that maintain connectivity when power outages occur. Per a royal decree that will be approved by the end of 2026, mobile network operators (MNOs) and infrastructure companies will need to install batteries or other backups to keep service active for at least four hours during a blackout.

The mobile network rules will apply to businesses that serve at least 500,000 users or generate upwards of 50 million euros ($56.9 million) in annual revenue. The decree will stipulate that half of the population will need to be covered by this failsafe within the first year, then 65 percent in the second year and three quarters in the third.

[...] The decree will require other key infrastructure elements to remain up and running for a certain period after a power outage. For instance, control centers that could impact all of Spain if they were to go offline will need to remain in service for at least 24 hours. Emergency call centers will also need to have plans in place to maintain operations, as Reuters notes. The move is in response to the widespread blackout across the Iberian peninsula in 2025, which left more than 50 million people without power. Experts called it "the most severe and unprecedented blackout that had occurred in Europe in the past 20 years."

Longtime Slashdot reader schwit1 shares a report from autoevolution: The U.S. Department of Commerce's Bureau of Industry and Security denied Polestar an authorization under the Connected Vehicle Rule. Polestar will continue to sell its existing inventory of Polestar 3 and 4 crossovers in the United States and will continue to offer support to customers and access to its service network. But no new 2027 models will set wheels on American soil.

The Connected Vehicle Rule is a regulation that restricts the import and sale of vehicles equipped with Vehicle Connectivity Systems (VCS) and Automated Driving Systems (ADS) tied to foreign adversaries, primarily from China and Russia. Polestar is owned by Chinese auto giant Geely, which has also been the parent company of Swedish brand Volvo since 2010. However, Volvo has recently been granted authorization to sell connected vehicles in the United States.

The rule, set out by the Bureau of Industry and Security (BIS), classifies modern vehicles as mobile data centers and is designed to protect national security by keeping sensitive driver data and vehicle control systems out of the hands of foreign governments. Michael Lohscheller, Polestar CEO, confirms that the company is well aware that the automotive industry is entering a new phase, based on regional dynamics. So, Polestar will shift its strategy to its biggest market as it is preparing its exit from the U.S. market. The report notes that Polestar sold 5,384 cars in the U.S. in 2025, with 60,119 units sold globally.

The Trump administration has reportedly asked OpenAI to stagger the release of GPT-5.6 over security concerns. The model will initially be offered to a small group of partners, with the government "approving access customer by customer during this preview period," reports The Information. The request came from conversations with the Office of the National Cyber Director and the Office of Science and Technology Policy, the report said.

BrianFagioli writes: The Linux Foundation has announced Akrites, a new initiative to coordinate vulnerability disclosure and remediation for critical open source software as AI dramatically speeds up vulnerability discovery. Founding members include AWS, Google, Microsoft, OpenAI, Red Hat, NVIDIA, IBM, Cisco, JPMorganChase, and others. Akrites will provide a shared Security Incident Response Team (SIRT), a standardized coordinated vulnerability disclosure process, and act as a "maintainer of last resort" for abandoned but widely used packages.

The goal is to reduce duplicate reports, avoid conflicting patches, and help upstream maintainers address vulnerabilities before they can be exploited. As AI makes it easier to find security flaws, can a coordinated industry effort help protect open source, or does it risk giving large corporations too much influence over the ecosystem? "Akrites is the largest coordinated effort in history to create systems and deploy tooling that leverages the collective power of the community to make everyone safer," the Linux Foundation said in an open letter. "Akrites participants will contribute engineering resources; work to build and ship fixes; or fund the engineers who do. Some companies have contributed mightily already. The reality is, collectively, we need to contribute more."

Apple has sharply raised prices across its Mac, iPad, HomePod, and Apple TV lineups as surging AI-driven demand creates a global memory and storage shortage. Increases range from $30 for the HomePod mini to $1,300 for the M3 Ultra Mac Studio, with Apple CEO Tim Cook saying efforts to shield customers from higher costs had become "unsustainable." The Verge reports: On Thursday, the company adjusted the price of its new MacBook Neo, which will now start at $699 instead of $599, while the base MacBook Air will jump to $1,299 from $1,099, as reported earlier by Bloomberg. The 14-inch MacBook Pro is getting an increase as well, going from $1,699 to $1,999. Meanwhile, the iPad Air will now start at $749 instead of $599, while the iPad Pro is increasing to $1,199 from $999.

As spotted by MacRumors, the M4 Max Mac Studio will now cost $2,499, a big jump from $1,999. The M3 Ultra Mac Studio is now priced at $5,299, up from $3,999. Apple is even raising the prices of its HomePod, which now costs $349 instead of $299, as well as bumping the price of the HomePod mini to $129 instead of $99. The Apple TV also now costs $199 instead of $129.

LastPass says hackers stole customers' personal information, support case records, and sales data by breaching market research partner Klue. The password manager told TechCrunch that its own systems and password vaults were unaffected. However, the hackers used their access to obtain "reams of data about LastPass customers," the report says. From the report: In a blog post that shared information about the incident, LastPass said the hackers took customers' names, phone numbers, email addresses, and physical addresses, as well as customer support case data and sales-related data. It's not yet known what was in the contents of customer support tickets, although they likely contain fragments of potentially private or sensitive information. Customers typically contact customer service when they are having a billing issue or need assistance in gaining access to their accounts. Past incidents involving customer support tickets have included credentials and government-issued identity documents. The last data breach LastPass reported was in 2022, when hackers stole the company's entire store of customer password vaults.

An anonymous reader quotes a report from Ars Technica: Anthropic has accused the Chinese firm Alibaba of launching the largest attack yet attempting to clone Claude, as China races to match the capabilities of Anthropic's leading model following Mythos' release and subsequent restriction from foreign markets. Ars obtained a June 10 letter sent to Senators Tim Scott (R-S.C.) and Elizabeth Warren (D-Mass.) one day ahead of a Senate committee hearing on "AI and the American Dream." In the letter, Anthropic shared "new, confidential evidence of the largest campaign to illicitly extract Claude's capabilities we have ever measured."

The attacks occurred between April 22 and June 5, when "operators afliated with Alibaba and Alibaba Qwen, Alibaba's AI lab" allegedly generated "more than 28.8 million exchanges with Claude through almost 25,000 fraudulent accounts," Anthropic said. Violating Claude's terms of service and access restrictions, this campaign "targeted some of Claude's most valuable capabilities, such as agentic reasoning, software engineering, and long-horizon tasks." According to Anthropic, Alibaba evaded detection by "using obfuscation techniques and proxy networks." As Chinese demand for reliable obfuscation techniques increases, Anthropic warned there's already "a growing circumvention economy" to fuel an ever-expanding web of future distillation attacks. [...]

"Alibaba is governed by an independent board, none of whom has any military affiliation," Alibaba said. "Its products and services are built for retail, logistics, and enterprise information technology -- not weapons, defense, or intelligence." Anthropic appears unconvinced, however, that Alibaba isn't working with the Chinese government. In the letter, Anthropic warned that without stronger interventions, these distillation attacks will "help China reach Mythos Preview-level capabilities sooner."

To keep the US ahead of China, Anthropic recommended that Congress pass legislation with three objectives. First, antitrust laws must be updated to allow AI firms to share information about evolving Chinese tactics to deter more threats. Second, the US needs more export controls on chips to hamstring Chinese access to advanced compute so that they simply can't train on US model outputs. That could make conducting distillation attacks pointless, Anthropic suggested. Finally, Congress should pass laws penalizing Chinese labs' "bad behavior" so that it's "more difficult and costly" to rely on distillation attacks to advance Chinese models. Penalties could include limiting Chinese firms from accessing US models or advanced US chips or from relying on data centers outside of China, Anthropic suggested.

After Ford's automated quality-control systems and AI tools fell short, the automaker hired 350 veteran engineers over the past three years to mentor younger staff and reprogram the underperforming technology. "Artificial intelligence is a fantastic tool, but it's only as good as the information you use to train it," Charles Poon, Ford's vice president of vehicle hardware engineering, told reporters on a call Wednesday. "Over prior years, we didn't pay as much attention as we should have to the experience of our most knowledgeable engineers that have been with us through many product cycles." Bloomberg reports: Those engineers were "at the heart" of Ford's efforts to turn around quality problems, said Kumar Galhotra, chief operating officer. They now run mandatory meetings that rigorously troubleshoot quality problems and they have reprogrammed AI tools to head off glitches before they happen. "We had been relying more and more on automated quality systems" and not getting the desired results, Galhotra said. "We brought back technical specialists" and "they hunt for failure points before a part ever reaches the plant floor."

The return of the veteran engineers at Ford cuts against the prevailing wisdom -- and fear -- that AI will replace all kinds of knowledge workers. But Ford found the machines couldn't replace experience. "Mistakenly we thought that by just introducing artificial intelligence and ingesting the design requirements that we had, that that would produce a high-quality product," Poon said. But "we recognized that for us to enhance some of our automation and machine learning and artificial intelligence tools we needed to ensure that they were trained by the most experienced individuals."

As a result of the efforts of the old hands, Ford vaulted above quality stalwarts such as Toyota and Honda on JD Power's bellwether survey that measures the quality of a car during the first three months of ownership. Only luxury brands Porsche and Genesis topped Ford this year.

Micron has signed 16 "strategic customer agreements" (SCAs) that include a floor price the company says comes with "a very robust gross margin for Micron, well above our peak quarterly margins in any past cycle." Most of the deals run through 2030 and cover about 40% of Micron's revenue. The Register reports: Micron CEO, president and chairman Sanjay Mehrotra explained the SCAs in prepared remarks delivered during the company's Q3 earnings call. He explained that Micron has signed 16 SCAs, most of them covering 2026 to 2030, and that they involve a commitment to buy a certain quantity of product and pay for it in a pricing band that has a floor and a ceiling price. The floor price covers the historically high gross margins mentioned above, and the ceiling price means those who commit to an SCA are insulated if memory prices go even higher.

The CEO said 16 customers have signed SCAs and then explained why it's worth locking into the deals even though they bake in such high margins. "Our customers are recognizing that supply shortages in memory and storage will take considerable time to improve," he said. "Even as we expect industry supply to improve gradually in 2028, we currently do not have line of sight as to when memory supply will be able to catch up with increasing demand."

Even massive efforts to build new chip fabs aren't much help, he said, because the increasing complexity of new memory types means it takes longer to build factories -- and when they come online there still won't be enough capacity to build both the high-bandwidth memory needed for AI and other types of NAND and DRAM. "Supply is structurally constrained in its growth and ability to meet industry demand, despite our comprehensive efforts to increase supply," he said.

Don't assume that SCAs mean your suppliers get price certainty, because Mehrotra said the deals will account for 40 percent of Micron revenue -- meaning the company is reserving most of its inventory to sell at prices it can negotiate. The CEO did have a little good news in the form of predictions that Micron's DRAM output in 2026 will "grow in the low- to mid-20s percentage range, slightly above our prior outlook." He also revealed that the SCAs see customers pay up front, which helps Micron to fund its fab expansions.