The Securities and Exchange Commission is vastly expanding its fight against cryptocurrency fraud by hiring more than a dozen new employees to combat cybercrime, the agency said Tuesday. From a report: The additional 20 positions will result in almost a doubling in size of the agency's Cyber Unit, which is also being renamed the Crypto Assets and Cyber Unit to reflect the group's growing mission, the SEC said in a release. The Cyber Unit was first founded within the SEC's enforcement division in 2017. "By nearly doubling the size of this key unit, the SEC will be better equipped to police wrongdoing in the crypto markets while continuing to identify disclosure and controls issues with respect to cybersecurity," SEC Chair Gary Gensler said in a statement.

Long-time Slashdot reader UnderAttack writes: After Microsoft patched and went public with CVE-2022-26809, the recent Remote Procedure Call vulnerability, the SANS Internet Storm Center set up a complete Windows 10 system exposing port 445/TCP "to the world." The system is not patched for the RPC vulnerability. But so far, while it has seen thousands of attacks against SMB a day, nothing yet for the new RPC vulnerability....

But still, attackers are heavily hitting other vulnerabilities like of course still ETERNALBLUE
From the article: Should you stop rushing out the April patch? Absolutely not. I hope you are already done applying the patch. But the April Windows patch had several additional gems, not just patches for RPC. Chatter about CVE-2022-26809 has died down, but as they say: Sometimes the quiet ones are the dangerous ones, and people able to exploit this vulnerability may not broadcast what they are doing on social media.
The article is credited to Johannes B. Ullrich, Ph.D. , Dean of Research at the security site SANS.edu.

Interestingly, Ullrich's byline is hyperlinked to a Google+ profile which has been unavailable for nearly three years.

Without adding any hardware that actually makes contact with the wearer's face, researchers from Carnegie Mellon University's Future Interfaces Group have modified an off-the-shelf virtual reality headset so that it recreates the sensation of touch in and around a user's mouth, finally fulfilling virtual reality's inevitable one true purpose. Gizmodo reports: The researchers upgraded what appears to be a Meta Quest 2 headset with an array of ultrasonic transducers that are all focused on the user's mouth, and it works without the need for additional accessories, or other hardware set up around the wearer. We've seen ultrasonic transducers used to levitate and move around tiny particles by blasting them with powerful sound waves before, but in this application, they create the feeling of touch on the user's lips, teeth, and even their tongue while their mouth is open. The transducers can do more than just simulate a gentle touch. By pulsing them in specific patterns, they can recreate the feeling of an object sliding or swiping across the lips, or persistent vibrations, such as the continuous splashing of water when leaning down to sip from a virtual drinking fountain.

The researchers have come up with other custom virtual reality experiences that demonstrate how their mouth haptics hardware can introduce more realism, including a hike through a spooky forest where spider webs can be felt across the face, a race where the user can feel the wind in their face, and even virtual eating experiences where food and drinks can be felt inside the mouth. But if and when someone runs with this idea and commercializes the mouth haptics hardware, we're undoubtedly going to see the world's first virtual reality kissing booth realized, among other experiences the researchers are probably wisely tip-toeing around. The paper detailing the work can be found here.

A record-breaking heat wave in India exposing hundreds of millions to dangerous temperatures is damaging the country's wheat harvest, which experts say could hit countries seeking to make up imports of the food staple from conflict-riven Ukraine. NBC News reports: With some states in India's breadbasket northern and central regions seeing forecasts with highs of 120 Fahrenheit this week, observers fear a range of lasting impacts, both local and international, from the hot spell. Indian Prime Minister Narendra Modi told U.S. President Joe Biden earlier this month that India could step in to ease the shortfall created by Russia's invasion of Ukraine. The two countries account for nearly a third of all global wheat exports, and the United Nations Food and Agriculture Organization has warned that the conflict could leave an additional 8 million to 13 million people undernourished by next year.

India's wheat exports hit 8.7 million tons in the fiscal year ending in March, with the government predicting record production levels -- some 122 million tons -- in 2022. But the country has just endured its hottest March since records began, according to the India Meteorological Department, and the heat wave is dragging well into harvest time. The heat wave is hitting India's main wheat-growing regions particularly hard, with temperatures this week set to hit 112 F in Lucknow, Uttar Pradesh; 120 F in Chandigarh, Punjab; and 109 F in Bhopal, Madhya Pradesh. Devendra Singh Chauhan, a farmer from Uttar Pradesh's Etawah district, told NBC News that his wheat crop was down 60 percent compared to normal harvests.

Bolt, the payments startup known for its founder's inflammatory Twitter threads claiming Silicon Valley is run by "mob bosses," is being sued by its most prominent customer. From a report: The complaint by Authentic Brands Group alleges that Bolt not only failed to deliver promised technology but that during Bolt's integration with Forever 21, the clothier lost out on more than $150 million in online sales. The complaint also states that Bolt raised funding at increasingly high valuations by "consistently overstating" the nature of its integration with ABG's brands to suggest it had more customers than it did and to convince investors to bankroll additional growth for the startup. Because Bolt's business relies on having a large network of consumers, the allegations create major new uncertainty for the controversial payments startup, which investors most recently valued at $11 billion. In a filing, Bolt responded to the complaint saying that ABG's claims are without merit, and are "a transparent attempt" to renegotiate the terms of the companies' agreements.

European Union lawmakers have taken a step closer to agreeing rules to standardize how a range of mobile gadgetry is charged. From a report: Today MEPs in the European Parliament's internal market and consumer protection (IMCO) committee adopted their position on a Commission proposal announced last fall, ahead of a full vote by the parliament next month to confirm how it will negotiate with Member State governments on the detail of the legislation. The Council adopted its position on the common charger proposal back in January. The IMCO committee voted 43:2 in favor of a negotiation position that will push to standardize charger ports for a range of mobile devices on USB Type-C, including smartphones, tablets, handheld games consoles, e-readers, digital cameras, electronic toys and more -- with MEPs voting to expand the original proposal to cover laptops, among other additional products.

An anonymous reader quotes a report from Reuters: Netflix said inflation, the war in Ukraine and fierce competition contributed to a loss of subscribers for the first time in more than a decade and predicted more contraction ahead, marking an abrupt shift in fortune for a streaming company that thrived during the pandemic. Netflix's 26% tumble after the bell on Tuesday erased about $40 billion of its stock market value. Since it warned in January of weak subscriber growth, the company has lost nearly half of its value. The lagging subscriber growth prompted Netflix for the first time to say it might offer lower-priced version of the service with advertising. [...] In addition to advertising-supported plans, the company is also looking to generate additional revenue from customers who share their account with friends or family outside their home.

Three Chinese astronauts, also known as taikonauts, safely returned to Earth yesterday after spending six months aboard China's unfinished Tiangong space station, according to a report from Space.com. This is China's second crewed mission to Tiangong and its longest so far. From a report: The Shenzhou 13 spacecraft landed in the Inner Mongolia desert at 9:56AM local time on Saturday morning after departing from the space station's core Tianhe module about nine hours prior. The crew took off from the Jiuquan Satellite Launch Center in the Gobi desert last October and spent a total of 183 days on the space station. This mission is China's longest.

In addition, taikonaut Wang Yaping made history as the first Chinese woman to visit the Tianhe space station and also became the first Chinese woman to conduct a spacewalk. Wang was accompanied by crewmate Ye Guangfu and commander Zhai Zhigang. The trio carried out a total of two spacewalks, performed various tests around the station, and held two live lectures for students watching from Earth. Shenzhou 13 is part of 11 missions China has planned to finish constructing the Tiangong space station. China first launched the Tianhe module in April 2021 and later sent three taikonauts to bring the station online. As noted by Space.com, the Shenzhou 14 crew is set to depart for the space station sometime in June. China plans on having the station finished by the end of the year, which will include the launch of two additional modules.

An anonymous reader shares a report: When college instructor Angela Dancey wants to decipher whether her first-year English students comprehend what she's trying to get across in class, their facial expressions and body language don't reveal much. "Even in an in-person class, students can be difficult to read. Typically, undergraduates don't communicate much through their faces, especially a lack of understanding," said Dancey, a senior lecturer at the University of Illinois Chicago. Dancey uses tried-and-true methods such as asking students to identify their "muddiest point" -- a concept or idea she said students still struggle with -- following a lecture or discussion. "I ask them to write it down, share it and we address it as a class for everyone's benefit," she said. But Intel and Classroom Technologies, which sells virtual school software called Class, think there might be a better way. The companies have partnered to integrate an AI-based technology developed by Intel with Class, which runs on top of Zoom. Intel claims its system can detect whether students are bored, distracted or confused by assessing their facial expressions and how they're interacting with educational content.

"We can give the teacher additional insights to allow them to better communicate," said Michael Chasen, co-founder and CEO of Classroom Technologies, who said teachers have had trouble engaging with students in virtual classroom environments throughout the pandemic. His company plans to test Intel's student engagement analytics technology, which captures images of students' faces with a computer camera and computer vision technology and combines it with contextual information about what a student is working on at that moment to assess a student's state of understanding. Intel hopes to transform the technology into a product it can distribute more broadly, said Sinem Aslan, a research scientist at Intel, who helped develop the technology. "We are trying to enable one-on-one tutoring at scale," said Aslan, adding that the system is intended to help teachers recognize when students need help and to inform how they might alter educational materials based on how students interact with the educational content. "High levels of boredom will lead [students to] completely zone out of educational content," said Aslan. But critics argue that it is not possible to accurately determine whether someone is feeling bored, confused, happy or sad based on their facial expressions or other external signals.

What happened when college admissions offices started ignoring the standardized test scores? NBC News asked college administrators like Jon Burdick, Cornell's vice provost for enrollment: When the health crisis closed testing sites in 2020, four of Cornell's undergraduate colleges decided to go test optional, meaning students could submit a test score if they thought it would help them, but didn't have to. Three of Cornell's colleges adopted test-blind policies, meaning admissions officers wouldn't look at any student's scores. The effects were immediate, Burdick said. Like many other colleges and universities, Cornell was inundated with applications — roughly 71,000 compared to 50,000 in a typical year. And the new applications — particularly those that arrived without test scores attached — were far more likely to come from "students that have felt historically excluded," Burdick said.

The university had always looked at many factors in making admissions decisions, and low test scores were never singularly disqualifying, Burdick said. But it became clear that students had been self-rejecting, deciding not to apply to places like Cornell because they thought their lower SAT scores meant they couldn't get in, he said. Other colleges also saw a similar surge in applications.... At Cornell, managing the surge in applications wasn't easy, Burdick said. The university hired several admissions officers and about a dozen part-time application readers — paid for in part by the additional application fees....

In the end, Cornell enrolled a more diverse class, including a nearly 50 percent increase in the share of first-generation college students. "It showed me that these students, given the opportunity, can show really impressive competitive credentials and get admitted with the test barrier reduced or eliminated," Burdick said.

Research on colleges that went test optional years ago shows that students admitted without test scores come from more diverse backgrounds and do about as well in their classes once they arrive as peers who did submit test scores.

GitHub issued a security alert Friday.

GitHub's chief security officer wrote that on Tuesday, "GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, to download data from dozens of organizations, including npm..."

We do not believe the attacker obtained these tokens via a compromise of GitHub or its systems, because the tokens in question are not stored by GitHub in their original, usable formats. Following immediate investigation, we disclosed our findings to Heroku and Travis-CI on April 13 and 14...

Looking across the entire GitHub platform, we have high confidence that compromised OAuth user tokens from Heroku and Travis-CI-maintained OAuth applications were stolen and abused to download private repositories belonging to dozens of victim organizations that were using these apps. Our analysis of other behavior by the threat actor suggests that the actors may be mining the downloaded private repository contents, to which the stolen OAuth token had access, for secrets that could be used to pivot into other infrastructure.

We are sharing this today as we believe the attacks may be ongoing and action is required for customers to protect themselves.

The initial detection related to this campaign occurred on April 12 when GitHub Security identified unauthorized access to our npm production infrastructure using a compromised AWS API key. Based on subsequent analysis, we believe this API key was obtained by the attacker when they downloaded a set of private npm repositories using a stolen OAuth token from one of the two affected third-party OAuth applications described above. Upon discovering the broader theft of third-party OAuth tokens not stored by GitHub or npm on the evening of April 13, we immediately took action to protect GitHub and npm by revoking tokens associated with GitHub and npm's internal use of these compromised applications.

We believe that the two impacts to npm are unauthorized access to, and downloading of, the private repositories in the npm organization on GitHub.com and potential access to the npm packages as they exist in AWS S3 storage.

At this point, we assess that the attacker did not modify any packages or gain access to any user account data or credentials. We are still working to understand whether the attacker viewed or downloaded private packages.

npm uses completely separate infrastructure from GitHub.com; GitHub was not affected in this original attack. Though investigation continues, we have found no evidence that other GitHub-owned private repos were cloned by the attacker using stolen third-party OAuth tokens.

Once GitHub identified stolen third-party OAuth tokens affecting GitHub users, GitHub took immediate steps to respond and protect users. GitHub contacted Heroku and Travis-CI to request that they initiate their own security investigations, revoke all OAuth user tokens associated with the affected applications, and begin work to notify their own users.... GitHub is currently working to identify and notify all of the known-affected victim users and organizations that we discovered through our analysis across GitHub.com. These customers will receive a notification email from GitHub with additional details and next steps to assist in their own response within the next 72 hours. If you do not receive a notification, you and/or your organization have not been identified as affected.

You should, however, periodically review what OAuth applications you've authorized or are authorized to access your organization and prune anything that's no longer needed. You can also review your organization audit logs and user account security logs for unexpected or anomalous activity....

The security and trustworthiness of GitHub, npm, and the broader developer ecosystem is our highest priority. Our investigation is ongoing, and we will update this blog, and our communications with affected customers, as we learn more.

Richard Stallman celebrated his 69th birthday last month. And Wednesday, he gave a 92-minute presentation called "The State of the Free Software Movement."

Stallman began by thanking everyone who's contributed to free software, and encouraged others who want to help to visit gnu.org/help. "The Free Software movement is universal, and morally should not exclude anyone. Because even though there are crimes that should be punished, cutting off someone from contributing to free software punishes the world. Not that person."

And then he began by noting some things that have gotten better in the free software movement, including big improvements in projects like GNU Emacs when displaying external packages. (And in addition, "GNU Health now has a hospital management facility, which should make it applicable to a lot more medical organizations so they can switch to free software. And [Skype alternative] GNU Jami got a big upgrade.")

What's getting worse? Well, the libre-booted machines that we have are getting older and scarcer. Finding a way to support something new is difficult, because Intel and AMD are both designing their hardware to subjugate people. If they were basically haters of the public, it would be hard for them to do it much worse than they're doing.

And Macintoshes are moving towards being jails, like the iMonsters. It's getting harder for users to install even their own programs to run them. And this of course should be illegal. It should be illegal to sell a computer that doesn't let users install software of their own from source code. And probably shouldn't allow the computer to stop you from installing binaries that you get from others either, even though it's true in cases like that, you're doing it at your own risk. But tying people down, strapping them into their chairs so that they can't do anything that hurts themselves -- makes things worse, not better. There are other systems where you can find ways to trust people, that don't depend on being under the power of a giant company.

We've seen problems sometimes where supported old hardware gets de-supported because somebody doesn't think it's important any more — it's so old, how could that matter? But there are reasons...why old hardware sometimes remains very important, and people who aren't thinking about this issue might not realize that...

Stallman also had some advice for students required by their schools to use non-free software like Zoom for their remote learning. "If you have to use a non-free program, there's one last thing... which is to say in each class session, 'I am bitterly ashamed of the fact that I'm using Zoom for this class.' Just that. It's a few seconds. But say it each time.... And over time, the fact that this is really important to you will sink in."

And then halfway through, Stallman began taking questions from the audience...

Read on for Slashdot's report on Stallman's remarks, or jump ahead to...

• How far should copyright law go?
• That NPM package that deleted files in Russia
• Does the free software world need more videogames?
• Stallman's upcoming manual for 'GNU C'
• Free Software's role in protecting our planet's environment

The nonprofit online news site Virginia Mercury investigated their state police departments' "real-time location warrants," which are "addressed to telephone companies, ordering them to regularly ping a customers' phone for its GPS location and share the results with police." Public records requests submitted to a sampling of 18 police departments around the state found officers used the technique to conduct more than 7,000 days worth of surveillance in 2020. Court records show the tracking efforts spanned cases ranging from high-profile murders to minor larcenies.... Seven departments responded that they did not have any relevant billing records, indicating they don't use the technique. Only one of the departments surveyed, Alexandria, indicated it had an internal policy governing how their officers use cellphone tracking, but a copy of the document provided by the city was entirely redacted....

Drug investigations accounted for more than 60 percent of the search warrants taken out in the two jurisdictions. Larcenies were the second most frequent category. Major crimes like murders, rapes and abductions made up a fraction of the tracking requests, accounting for just under 25 of the nearly 400 warrants filed in the jurisdictions that year.
America's Supreme Court "ruled that warrantless cellphone tracking is unconstitutional back in 2012," the article points out — but in practice those warrants aren't hard to get. "Officers simply have to attest in an affidavit that they have probable cause that the tracking data is 'relevant to a crime that is being committed or has been committed'.... There's been limited public discussion or awareness of the kinds of tracking warrants the judiciary is approving." "I don't think people know that their cell phones can be converted to tracking devices by police with no notice," said Steve Benjamin, a criminal defense lawyer in Richmond who said he's recently noticed an uptick in cases in which officers employed the technique. "And the reality of modern life is everyone has their phone on them during the day and on their nightstand at night. ... It's as if the police tagged them with a chip under their skin, and people have no idea how easily this is accomplished."
The case for these phone-tracking warrants?

• The executive director of the Virginia Association of Chiefs of Police tells the site that physical surveillance ofen requires too many resources — and that cellphone tracking is safer. "It may be considered an intrusive way of gathering data on someone, but it's certainly less dangerous than physical tracking."
• A spokesperson for the Chesterfield County police department [responsible for 64% of the state's tracking] argued that "We exist to preserve human life and protect the vulnerable, and we will use all lawful tools at our disposal to do so." And they added that such "continued robust enforcement efforts" were a part of the reason that the county's still-rising number of fatal drug overdoses had not risen more.

The site also obtained bills from four major US cellphone carriers, and reported how much they were charging police for providing their cellphone-tracking services:

• "T-Mobile charged $30 per day, which comes to $900 per month of tracking."
• "AT&T charged a monthly service fee of $100 and an additional $25 per day the service is utilized, which comes to $850 per 30 days of tracking..."
• "Verizon calls the service 'periodic location updates,' charging $5 per day on top of a monthly service fee of $100, which comes to $200 per 30 days of tracking."
• "Sprint offered the cheapest prices to report locations back to law enforcement, charging a flat fee of $100 per month."

Thanks to Slashdot reader Beerismydad for sharing the article!

Twitter's board on Friday enacted a defensive measure meant to deter Elon Musk's $43 billion hostile takeover bid. From a report: The "poison pill," as it's called in corporate terms, gives Twitter's existing shareholders time to purchase additional shares at a discount, thus diluting Musk's ownership stake. Musk disclosed a 9.2% stake in Twitter earlier this month. He then announced he was joining the company's board of directors and began proposing several changes to the platform, including turning the company's headquarters into a homeless shelter. [...] He later backed out of joining the board and offered to purchase the company for $54.20 a share, though he did specify how he planned to pay for it. Twitter said in a statement that "its Board of Directors has unanimously adopted a limited duration shareholder rights plan. ... The Board adopted the Rights Plan following an unsolicited, non-binding proposal to acquire Twitter."

mspohr shares a report from the New York Times: In early March, days after Russia invaded Ukraine and began cracking down on dissent at home, Konstantin Siniushin, a venture capitalist in Riga, Latvia, helped charter two planes out of Russia to help people flee. Both planes departed from Moscow, carrying tech workers from the Russian capital as well as St. Petersburg, Perm, Ekaterinburg and other cities. Together, the planes moved about 300 software developers, entrepreneurs and other technology specialists out of the country, including 30 Russian workers from start-ups backed by Mr. Siniushin. The planes flew south past the Black Sea to Yerevan, the capital of Armenia, where thousands of other Russian tech workers fled in the weeks after the invasion. Thousands more flew to Georgia, Turkey, the United Arab Emirates and other countries that accept Russian citizens without visas.

By March 22, a Russian tech industry trade group estimated that between 50,000 and 70,000 tech workers had left the country and that an additional 70,000 to 100,000 would soon follow. They are part of a much larger exodus of workers from Russia, but their departure could have an even more lasting impact on the country's economy. The long-run impact may be more significant than the short-run impact," said Barry Ickes, head of the economics department at Pennsylvania State University, who specializes in the Russian economy. "Eventually, Russia has to diversify its economy away from oil and gas, and it has to accelerate productivity growth. Tech was a natural way of doing that." Before all this started, Russia had such a strong technology base," [Artem Taganov, founder and chief executive of a Russian start-up called HintEd] said. "Now, we have a brain drain that will continue for the next five to 10 years."

After announcing earlier this week that creators can sell digital items in Horizon Worlds for real money, Meta has offered details about how many fees creators will have to pay on earnings made through the platform. According to Road to VR, "Meta explained that anything sold in Horizon Worlds would be subject to the same 30% fee the company charges developers selling apps through its VR platform and then an additional 25% fee on top of the remaining amount." From the report: The company provided the following example: "...if a creator sells an item for $1.00, then the Meta Quest Store fee would be $0.30 and the Horizon Platform fee would be $0.17, leaving $0.53 for the Creator before any applicable taxes." That's an effective rate of 47.5% of anything sold on Horizon Worlds to Meta, leaving 52.5% to the creator.

That's a pretty hefty take, but not entirely out of line with contemporaries. Roblox, for instance, takes between 30% and 70% of the revenue generated by creators depending upon whether the creator sold the item directly to customers or if the item was sold on the Roblox marketplace or by another party. These are big fees, no doubt, but creators are getting something in return. Horizon Worlds, for instance, offers up its self-contained collaborative building tools, access to an audience, and handles all hosting and networking costs associated with the things creators build. Whether that's worth 47.5% of what someone manages to sell on the platform is going to be up to the creator.

Senior officials at the European Commission were targeted last year with spy software designed by an Israeli surveillance firm, according to two EU officials and documentation reviewed by Reuters. From the report: Among them was Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019, according to one of the documents. At least four other commission staffers were also targeted, according to the document and another person familiar with the matter. The two EU officials confirmed that staffers at the commission had been targeted but did not provide details.

The commission became aware of the targeting following messages issued by Apple to thousands of iPhone owners in November telling them they were "targeted by state-sponsored attackers," the two EU officials said. It was the first time Apple had sent a mass alert to users that they were in government hackers' crosshairs. The warnings triggered immediate concern at the commission, the two officials said. In a Nov. 26 email reviewed by Reuters, a senior tech staffer sent a message to colleagues with background about Israeli hacking tools and a request to be on the lookout for additional warnings from Apple.

Apple faces an additional EU antitrust charge in the coming weeks in an investigation triggered by a complaint from Spotify, Reuters reported Monday, citing a person familiar with the matter said, a sign that EU enforcers are strengthening their case against the U.S. company. From a report: The European Commission last year accused the iPhone maker of distorting competition in the music streaming market via restrictive rules for its App Store that force developers to use its own in-app payment system and prevent them from informing users of other purchasing options. Such requirements have also come under scrutiny in countries including the United States and Britain. Extra charges set out in a so-called supplementary statement of objections are usually issued to companies when the EU competition enforcer has gathered new evidence or has modified some elements to boost its case.

Sonic the Hedgehog 2 "shattered early box office projections," reports the Los Angeles Times, bringing in $71 million in its opening weekend. That makes it the biggest first-weekend for a Paramount movie in at least four years — more than Terminator: Dark Fate ($29 million) and Mission: Impossible — Fallout ($61.2 million).

You can watch its trailer here — but here's how the Times summarizes its plot. "The titular furry blue protagonist (voiced by Ben Schwartz) faces an equally fluffy new threat, Knuckles the Echidna (Idris Elba), who has joined Dr. Robotnik's (Jim Carrey) ongoing quest conquer Earth."

Engadget calls this the best opening weekend ever for a videogame movie. The previous record-holder was Sonic the Hedgehog 1, a movie which Paramount+ now "plans to expand into a cinematic universe" — or at least, expand into a spin-off TV series. Before the pandemic shut down theaters throughout the U.S, and other parts of the world, the first Sonic film went on to gross $319 million globally. Sonic the Hedgehog 2 is currently on track to beat those earnings having grossed approximately $141 million globally.

As with the first movie, timing appears to have been a significant factor in Sonic 2's early success. Its main competitor at the box office was Sony's much-maligned Morbius, which saw a drastic 74 percent drop in ticket sales from its opening weekend last Friday. It only earned $10.2 million in additional domestic revenue after a $39 million debut.

The French aerospace company Gama has raised 2 million euros to deploy a solar sail in space. The Guardian reports: Solar sails require no engines to move. Instead, they are pushed around by the pressure of sunlight. The angle of the sail determines the direction of motion. Gama plans to deploy a 73.3-sq-meter solar sail in a 550km-altitude orbit in October. It will be launched as an additional payload on a SpaceX rocket.

Gama hopes to demonstrate that solar sails can revolutionize access to deep space because they are cost-effective and scalable in size. After this year's deployment test, the company plans to launch a follow-up mission in 2024 to a higher orbit to demonstrate control and onboard navigation. In 2025, it hopes to emulate the Japanese and fly to Venus.