The multicellular bots move around and help heal “wounds” created in cultured neurons. Scientists at Tufts and Harvard made tiny biological robots called Anthrobots using human tracheal cells. These tiny robots move and, in the lab, help neurons grow in damaged areas. The researchers hope to use similar biobots made from...
There really need to be restrictions put in place mining and sharing of customer data by automakers with emphasis on the principle of data minimisation. Automakers should go back to being hardware manufacturers than wannabe tech companies.
Biotech company 23andMe first disclosed a data breach affecting a portion of its customers back in October. The information was obtained in a credential stuffing attack. An SEC filing now reveals roughly 14,000 accounts were accessed, along with information on millions of users participating in the DNA Relatives feature.
Oxford University Press has named “rizz″ as its word of the year to highlight the popularity of a term used by Generation Z to describe someone’s ability to attract or seduce another person.
A WIRED investigation into internet censorship in US schools found widespread use of filters to censor health, identity, and other crucial information. Students say it makes the web entirely unusable.
After getting fed up with the general neglect of MacOS accessibility from Apple, and having wanted to work on something meaningful for quite some time, I decided to attempt something that for some reason nobody seems to have tried to do before: write a completely new screen-reader for that platform. This isn't an easy task, not...
YouTube's dramatic content gatekeeping decisions of late have a long history behind them, and there's an equally long history of these defenses being bypassed.
If Musk fulfils just 15 percent of Cybertruck preorders, it would equal the annual unit sales of Toyota. If the polarizing EV flops, Tesla could be in big trouble.
A WIRED analysis of more than 100 restricted channels shows these communities remain active, and content shared within them often spreads to channels accessible to the public.
Today, I added a box of related/random collections - I must admit that the ones you created are fantastic. Collection names can be repeated since they are user-assigned. I added the option to mark a collection as official - those with the highest number of followers in a given topic and with a specific name can be marked and...
The pace at which you have been improving things and adding new features have been impressive this past month! Thank you and I hope you are taking some breaks in between for yourself!
Meta's Facebook lost the latest round of a court battle over privacy with the U.S. Federal Trade Commission on Monday after a federal judge ruled the regulator can seek to reduce the amount of money the social media company makes from users under 18.
The Register seems to suffer from what many in the media do, which are lazy reporters. The register has not done its own research or even asked questions about what is being claimed.
“He who makes the claim carries the burden of proof!”
Should the question not have been asked, if the hacker has access to the admin and permissions to modify the security, then is it really a hack?
Same with the CVS report. They don't check that what is being reported is actually a vulnerability.
I don't want to link to this guy's site because he's a conman trying to get recognition for his fantasy.
I don't even want to have to reply to this nonsense as I’m busy actually doing work!!
0xb120 even admits this:
“In OpenCart versions 4.0.0.0 to 4.0.2.3, authenticated backend users having common/security “access” and “modify” privileges can write arbitrary untrusted data inside config.php and admin/config.php, resulting in remote code execution on the underlying server.”
He's saying that for this vulnerability to work access and modify privileges. So why would you give permission to a low level user the ability to rename a directory? Another point is that said functionality to rename the directory is removed once you click the move storage directory!
Reasons that Authenticated Static Code Injections in OpenCart (CVE-2023-47444) not can be carried out:
Hackers need to know the admin name - If the default admin folder name is admin then when the user visits the opencart dashboard a security popup comes up telling the user to rename the admin directory.
Hackers need access to the admin - So first your hacker will need access to the opencart admin by having the username and password. There is also the optional 2 factor auth also that can be enabled.
Hackers need permission to view or modify - So not only does the hacker need a login but also needs a login with permission to modify the security popup.
Security popup - The security popup only works if the installation directory exists, storage path is in the web root or if the admin is named “admin”. If you have just begun to set up an opencart site then you would need to follow the security popup instructions to make your site secure. The security popup should not show up on a production site if you have followed the instructions.
It is quite clear that the security popup tells you that your site will be vulnerable to hacking if the opencart installation admin is not renamed, that the installation directory is not deleted and the storage folder is not moved!
It was also reported that I later merged a fix that fixes the alleged hack:
If you haven't followed the security instructions then there's a lot more security issues like the storage directory being exposed.
The fact that this guy claims he worked on the vulnerability for a month yet still can not pull it off without the end user giving him access to the site shows that opencart is very secure or this guy is completely useless at his job.
I got called a narcissist but I'm not the one making up claims. 0xb120 is trying to craft a narrative that makes him look like a hero! Who's the narcissist ! I didn’t contact him!
What a clown!~
OpenCart is currently at 298,000 Live sites! We have dropped a bit from 450,000 but the whole market has since COVID and the war in Ukraine.
The register also makes claims about my competitors:
Woocommerce - I have spoken with woo commerce a while ago and it seems u are confusing woocommerce with wordpress. Wordpress has over 1 million sites but they are a blogging platform. Woocommerce has very low numbers.
Same with Squarespace.
Magento has 160,000 live sites which is half of OpenCart and they got bought for 1.6 billion.
Shoppify overtook OpenCart in Sept 2017 after getting billions in investment. They are also not open source and you can't access their code base!
P.S
Also If anyone is looking for a good story I know a very good one that involves child traffickers, judges and police. It will make your blood boil!
Artificial intelligence employed by the Pentagon has piloted pint-sized surveillance drones, helped Ukraine fight Russia, predicts when Air Force jets need maintenance and tracks rivals’ satellites in space.
This is something that the Government of India has been pushing for too. Get distracted for a minute, and this might happen in your country too before you even realise what is happening.
Ex-commissioner for facial recognition tech joins Facewatch firm he approved (www.theguardian.com)
Critics say Fraser Samson hiring is ‘outrageous conflict of interest’ as monitoring technology is rolled out in UK high streets
Why scientists are making transparent wood (arstechnica.com)
The material is being exploited for smartphone screens, insulated windows, and more.
Governments spying on Apple, Google users through push notifications - US senator (www.reuters.com)
Unidentified governments are surveilling smartphone users via their apps' push notifications, a U.S. senator warned on Wednesday....
PlayStation keeps reminding us why digital ownership sucks (www.theverge.com)
Sony’s content removals and unexpected account bans are timely reminders of why you don’t really own digital content.
Quantum computer performs error-resistant operations with logical qubits (arstechnica.com)
QuEra gets ready for error correction, runs operations with over 40 logical qubits.
Introducing Wikifunctions: first Wikimedia project to launch in a decade creates new forms of knowledge – Wikimedia Foundation (wikimediafoundation.org)
The new library of functions will answer questions and enhance knowledge. Everyone, everywhere can access and contribute to it now.
Google launches Gemini, the AI model it hopes will take down GPT-4 (www.theverge.com)
Google let OpenAI take the lead in the AI race — now, it’s mounting a comeback.
Bing tests AI Deep Search that turns your simple question into a detailed prompt (www.theverge.com)
It can take up to 30 seconds to conduct a Deep Search.
Ex-Tesla employee casts doubt on car safety (www.bbc.com)
A whistleblower believes the self-driving vehicle technology is not safe enough for public roads.
Anthrobots: Tiny biological robots from human cells (www.techexplorist.com)
The multicellular bots move around and help heal “wounds” created in cultured neurons. Scientists at Tufts and Harvard made tiny biological robots called Anthrobots using human tracheal cells. These tiny robots move and, in the lab, help neurons grow in damaged areas. The researchers hope to use similar biobots made from...
Automakers’ data privacy practices “are unacceptable,” says US senator (arstechnica.com)
OEMs collect too much personal data and share it too freely, says Senator Markey.
23andMe hackers accessed ancestry information on millions of customers using a feature that matches relatives (www.engadget.com)
Biotech company 23andMe first disclosed a data breach affecting a portion of its customers back in October. The information was obtained in a credential stuffing attack. An SEC filing now reveals roughly 14,000 accounts were accessed, along with information on millions of users participating in the DNA Relatives feature.
Oxford University Press has named 'rizz' as its word of the year (apnews.com)
Oxford University Press has named “rizz″ as its word of the year to highlight the popularity of a term used by Generation Z to describe someone’s ability to attract or seduce another person.
Where are all the robot trucks? (www.theverge.com)
The promised wave of autonomous big rigs never materialized. But 2024 could prove to be a pivotal year for the technology.
Inside America's School Internet Censorship Machine (www.wired.com)
A WIRED investigation into internet censorship in US schools found widespread use of filters to censor health, identity, and other crucial information. Students say it makes the web entirely unusable.
1960s chatbot ELIZA beat OpenAI’s GPT-3.5 in a recent Turing test study (arstechnica.com)
AI chatbot deception paper suggests that some bots (and people) aren't very persuasive.
Japan debuts six-story experimental fusion reactor (gizmodo.com)
The reactor, a forerunner for the vast ITER experiment in France, has the potential to hasten the race for cleaner energy.
Cop28 president says there is ‘no science’ behind demands for phase-out of fossil fuels (www.theguardian.com)
[Work In Progress]: Vosh - a third-party screen-reader for the Macintosh | AppleVis (www.applevis.com)
After getting fed up with the general neglect of MacOS accessibility from Apple, and having wanted to work on something meaningful for quite some time, I decided to attempt something that for some reason nobody seems to have tried to do before: write a completely new screen-reader for that platform. This isn't an easy task, not...
Inside the 'arms race' between YouTube and ad blockers (www.engadget.com)
YouTube's dramatic content gatekeeping decisions of late have a long history behind them, and there's an equally long history of these defenses being bypassed.
The Rise of AI-Powered Stars: Big Money and Risks (www.hollywoodreporter.com)
Meta and YouTube are looking to Demi Lovato, Tom Brady and other A-listers to mainstream the technology — flawed guardrails and all.
The Cybertruck Must Be Huge—or It Will Dig Tesla’s Grave (www.wired.com)
If Musk fulfils just 15 percent of Cybertruck preorders, it would equal the annual unit sales of Toyota. If the polarizing EV flops, Tesla could be in big trouble.
Reddit updates look after rough 6 months and ahead of reported IPO (arstechnica.com)
"Edit: Obligatory 'F--- Spez' for karma."
Telegram’s Bans on Extremist Channels Aren't Really Bans (www.wired.com)
A WIRED analysis of more than 100 restricted channels shows these communities remain active, and content shared within them often spreads to channels accessible to the public.
RTR#30 Monthly Recap and Planned Next Steps (kbin.social)
Today, I added a box of related/random collections - I must admit that the ones you created are fantastic. Collection names can be repeated since they are user-assigned. I added the option to mark a collection as official - those with the highest number of followers in a given topic and with a specific name can be marked and...
Meta sues FTC, hoping to block ban on monetizing kids’ Facebook data (arstechnica.com)
Accused of violating kids' privacy, Facebook owner challenges FTC authority.
Interview: Sam Altman on being fired and rehired by OpenAI (www.theverge.com)
Altman explains why he decided to return to OpenAI and what comes next for the company.
OpenAI’s Custom Chatbots Are Leaking Their Secrets (www.wired.com)
Released earlier this month, OpenAI’s GPTs let anyone create custom chatbots. But some of the data they’re built on is easily exposed.
Substack Has a Nazi Problem (www.theatlantic.com)
The newsletter platform’s lax content moderation creates an opening for white nationalists eager to get their message out.
Amazon joins AI image creation fray with new model (www.theverge.com)
The Titan Image Generator includes automatic invisible watermarking.
Google DeepMind’s new AI tool helped create more than 700 new materials (www.technologyreview.com)
Newly discovered materials can be used to make better solar cells, batteries, computer chips, and more.
Officer acquitted in Elijah McClain death gets job back and $200,000 in back pay (www.theguardian.com)
Nathan Woodyard was suspended for two years until jury found him not guilty of manslaughter and criminally negligent homicide
All 41 workers trapped in Uttarakhand tunnel evacuated after 17 days (www.hindustantimes.com)
The 17-day long wait for the 41 workers trapped in the Silkyara tunnel of Uttarakhand finally ended on Tuesday.
U.S. federal judge rules against Meta in privacy fight with FTC (www.reuters.com)
Meta's Facebook lost the latest round of a court battle over privacy with the U.S. Federal Trade Commission on Monday after a federal judge ruled the regulator can seek to reduce the amount of money the social media company makes from users under 18.
Guess I finally have a use for my archive of random internet shit (sh.itjust.works)
I have so much…
How Google Really Works (slate.com)
Somehow it took an antitrust trial to find out.
Researcher flags OpenCart security issue, founder rages (www.theregister.com)
Web storefront maker fixed the flaw, but not before blasting infoseccer
GameMaker throws shade at Unity, makes its 2D engine free or $100 for most (arstechnica.com)
For most games, a license is either free or the cost of a medium-nice dinner.
A new Pentagon program aims to speed up decisions on what AI tech is trustworthy enough to deploy (apnews.com)
Artificial intelligence employed by the Pentagon has piloted pint-sized surveillance drones, helped Ukraine fight Russia, predicts when Air Force jets need maintenance and tracks rivals’ satellites in space.
Resurrecting an Extinct Animal as a Robot (nautil.us)
A soft robot replica solves a mystery about the evolution of movement.
Cryptographers Devise an Approach for Total Search Privacy (www.quantamagazine.org)
Three researchers have found a long-sought way to pull information from large databases secretly, moving us closer to fully private internet searches.
Air-Conditioning Discovery Eliminates Harmful Gases (www.scientificamerican.com)
Heat pumps are ubiquitous in the form of air conditioners. Scientists just invented one that avoids harmful refrigerant gases
The end of anonymity on Chinese social media (restofworld.org)
Forced to use real names on platforms like Weibo, Chinese influencers quit social media instead.