In the world of cybersecurity, hackers are constantly coming up with new tricks to infiltrate computer systems. One such tactic involves hiding malicious programs in a computer's firmware—the deep-seated code that tells a PC how to load its operating system. It's a sneaky move that can give hackers access to a machine's inner workings. But what happens when a motherboard manufacturer installs its own hidden backdoor in the firmware, making it even easier for hackers to gain entry? That's the alarming situation that researchers at Eclypsium, a firmware-focused cybersecurity company, have uncovered in Gigabyte motherboards.
The hidden mechanism discovered by Eclypsium operates within the firmware of Gigabyte motherboards, which are widely used in gaming PCs and high-performance computers. Every time a computer with one of these motherboards restarts, code within the firmware quietly initiates an updater program that downloads and executes software. While the intention behind this mechanism is to keep the firmware updated, it is implemented in a highly insecure manner. This opens the door for potential hijacking, allowing the mechanism to be exploited for installing malware instead of the intended program. What's more, because the updater program is triggered from the computer's firmware, outside of the operating system, it becomes incredibly difficult for users to detect or remove.
Eclypsium has identified 271 models of Gigabyte motherboards that are affected by this hidden firmware mechanism. This revelation sheds light on the increasing vulnerability of firmware-based attacks, which have become a preferred method for sophisticated hackers. State-sponsored hacking groups have been known to employ firmware-based spyware tools to silently install malicious software on targeted machines. In a surprising turn of events, Eclypsium's automated detection scans flagged Gigabyte's updater mechanism for exhibiting behavior similar to these state-sponsored hacking tools. It's a disconcerting finding that raises concerns about the potential misuse of this access.
What's particularly troubling about Gigabyte's updater mechanism is that it is riddled with vulnerabilities. It downloads code without proper authentication and often over an unprotected HTTP connection, instead of the more secure HTTPS. This means that the installation source can easily be spoofed, leaving users vulnerable to man-in-the-middle attacks. Additionally, the mechanism is configured to download from a local network-attached storage device (NAS), but this creates an opening for malicious actors on the same network to silently install their own malware by spoofing the NAS location.
Eclypsium has been working closely with Gigabyte to address these issues, and the motherboard manufacturer has expressed its intention to fix the vulnerabilities. However, the complexity of firmware updates and hardware compatibility may pose challenges in effectively addressing the problem. The discovery of this hidden firmware mechanism is deeply concerning due to the large number of potentially affected devices. It erodes the trust that users have in the firmware that underlies their computers, drawing parallels to the infamous Sony rootkit scandal of the mid-2000s. While Gigabyte likely had no malicious intent behind their hidden firmware tool, the security vulnerabilities it presents undermine user confidence in the very foundation of their machines.
Pixar's latest film, Elemental, had high stakes riding on it, with a budget exceeding $200 million. However, if one were to judge by the TikTok consumer sentiment index, the comments section, the outcome might have seemed predictable. Negative reactions flooded the comments, expressing disappointment and low expectations for the film. Comments like "The Disney magic is fading away" and "Can't wait to not watch this" dominated the discussion. One user even humorously predicted that the movie would make a mere $20 at the box office, or perhaps $21 if they were lucky.
Considering the buzz on social media, it may come as a surprise that Elemental did manage to rake in $29.5 million during its opening weekend. While this figure fell short of analysts' modest expectations, it defied the negative sentiments expressed online. However, in comparison to recent animated films like Universal's The Super Mario Bros. Movie and Minions: The Rise of Gru, which grossed an impressive $1.33 billion and $939.6 million worldwide, respectively, Pixar's performance has been lackluster.
Elemental's opening weekend box office collection stands as Pixar's second-lowest ever, narrowly surpassing Toy Story's $29.1 million debut in 1995. When adjusted for inflation, however, Toy Story's opening would be valued at approximately $57.6 million today, a whopping 98% more than Elemental's figures.
Pixar had hoped that Elemental would mark a rebound after the box office disappointment of Lightyear and provide a momentary high note following the studio's decision to lay off 75 employees in May as part of Disney's broader cost-cutting measures.
On a positive note, the movie industry as a whole is witnessing an upward trend, with theaters experiencing better performance than the same weekend in 2019, before the pandemic struck, as reported by CNBC.
In a surprising turn of events, Microsoft has finally decided to integrate native support for the popular compression format, .rar, in its latest Windows update. This announcement brings an end to the arduous journey endured by countless users who have relied on third-party software like WinRAR to handle .rar files. The inclusion of native support marks a significant milestone, but it also raises questions about the future of compression software and the impact on companies like WinRAR.
The story of the .rar format dates back to the 1990s when the internet was in its infancy and connection speeds were painfully slow. Back then, compressing files was a necessity to overcome the limitations of limited bandwidth. WinRAR emerged as one of the prominent compression applications, favored not only by those seeking illicit software but also by legitimate users for various purposes, including software distribution and archival needs.
Over the years, as technology advanced and internet speeds skyrocketed, the need for compression software diminished. File sizes that once took an entire night to download could now be transferred in a matter of seconds. Moreover, open-source alternatives like the libarchive project provided additional options for handling various archive formats.
Amidst this changing landscape, Microsoft recognized the frustrations of users who had been relying on third-party solutions like WinRAR for decades. In a recent blog post, the company announced that Windows would now natively support several archive formats, including .rar, by leveraging the libarchive open-source project. While other operating systems had integrated support for these formats long ago, this development is a game-changer for Windows users who have grown tired of the nagging pop-ups urging them to purchase a WinRAR license.
The integration of native support for .rar files signifies a new chapter for compression software. For WinRAR, a program that has accompanied users throughout their computing journeys, this change prompts introspection. While it may be viewed as a welcome improvement, concerns arise about the future of the company as it faces competition from Microsoft's built-in solution. In response to inquiries, WinRAR's sales and marketing representative, Louise, expressed appreciation for Microsoft's decision and acknowledged the challenges posed by being a smaller company. She emphasized the company's commitment to continuous development and announced the release of a Beta version for WinRAR 6.22, with a major upgrade expected later this year.
As we embrace this integration, we bid farewell to the era of laborious downloads and cumbersome third-party software. The future of compression lies in the hands of progress, open-source standards, and the adaptability of companies like WinRAR. While the road ahead may be uncertain, we can take solace in the fact that technology evolves, and so too will the tools that accompany us on our digital journeys.
In a remarkable display of intellectual trickery, physicist Alan Sokal pulled off an audacious hoax that left the academic world in a tizzy. The Sokal affair, or as some called it, the Sokal hoax, was an elaborate experiment designed to test the intellectual rigor of a leading cultural studies journal. With a touch of mischief and a sprinkle of nonsense, Sokal aimed to expose the intellectual laziness and ideological bias that he believed plagued certain sectors of the American academic Left.
In 1996, Sokal submitted an article titled "Transgressing the Boundaries: Towards a Transformative Hermeneutics of Quantum Gravity" to the journal Social Text. The article proposed that quantum gravity, a topic of immense scientific complexity, was nothing more than a social and linguistic construct. Sokal's intention was to investigate whether the journal would publish an article filled with gibberish as long as it flattered the editors' ideological predispositions.
To Sokal's astonishment, the article was accepted and published in the journal's spring/summer 1996 issue, which was aptly themed "Science Wars." It seemed that the editors had fallen for Sokal's intellectual prank hook, line, and sinker. However, just three weeks later, in the magazine Lingua Franca, Sokal revealed that his article was nothing but an elaborate ruse.
The revelation sparked a firestorm of controversy, raising questions about the scholarly merit of commentary on scientific matters by those in the humanities, the influence of postmodern philosophy on social disciplines, and academic ethics. Some wondered whether Sokal had crossed a line by deceiving the editors and readers of Social Text, while others questioned whether the journal had adhered to proper scientific ethics.
Sokal's prank also led to further exploration of the broader issues at hand. In 2008, he published a book titled "Beyond the Hoax," delving into the history of the affair and its enduring implications. The hoax served as a wake-up call, reminding academia of the importance of intellectual rigor, critical thinking, and responsible scholarship.
Despite the serious debates it ignited, the Sokal affair provided a dose of humor to the often dry world of scholarly discourse. Sokal himself humorously remarked that those who believed the laws of physics were merely social conventions were welcome to test their validity by defying them from the windows of his twenty-first-floor apartment.
In the end, the Sokal affair highlighted the need for thoughtful examination of ideas, rigorous scholarly inquiry, and a healthy dose of skepticism. It served as a reminder that while the pursuit of knowledge is noble, sloppy thinking and intellectual shortcuts have no place in the hallowed halls of academia.
Dimeo Lane Resource Recovery Center is a bustling hub where trash is transformed through a remarkable process. A dedicated team of three navigates the challenges of backing up a trash truck onto the Food Scrap Pre-Processor's narrow ramp. The truck unloads its contents into the processor, initiating a conversion that yields a brown mash resembling a unique blend of applesauce. Leslie O'Malley, the waste reduction program manager for the City of Santa Cruz, humorously explains that mixing all the colors of the rainbow results in brown.
The Food Scraps Recovery Program, operational for nearly a year, is a response to the SB1383 mandate to reduce organic waste by 75% compared to 2014 levels by 2025. This reduction is critical for curbing greenhouse gas emissions, with landfill methane and food scraps being the third-largest contributors.
Every week, an astonishing 33 to 40 tons of raw food scraps arrive at the facility from commercial and residential units in Santa Cruz. After undergoing pre-processing, the material continues its journey in tanks aboard another truck to Sustainable Organic Solutions in Santa Clara, where it is transformed into animal feed. O'Malley clarifies that the waste is not pig slop, but rather processed into pellets for animal consumption, with some portions utilized for biodiesel and fertilizer production.
Unlike nearby Watsonville, which combines food scraps with yard waste and transports it to an industrial composter in Marina, Santa Cruz has chosen a different approach. The city utilizes the food-scrap processor to minimize the carbon footprint associated with transportation. O'Malley explains that commingling yard waste and food scraps would have required seven trucks a day to Marina solely for that purpose, adding the complexity of collecting recycling and garbage. With the current system, Sustainable Organic Solutions collects the waste every ten to fourteen days.
Furthermore, the food scraps processor paves the way for a future transition to a localized solution—digesting the food waste at Santa Cruz's Wastewater Treatment Facility. O'Malley envisions incorporating food waste digestion and energy capture in the city's own "waste-shed," considering the facility's proximity within six to ten miles of the processor.
However, challenges persist. John Lippi, a former sanitation supervisor overseeing operations at the Resource Recovery Center, faces ongoing issues. Plastic bags, both conventional and compostable, frequently entangle the machinery, causing disruptions. Lippi emphasizes the need to avoid their usage to ensure smooth machinery operations. Maintaining the optimal moisture content in the mash also poses a concern, requiring meticulous monitoring and occasional adjustments using agricultural material.
Santa Cruz has implemented an extensive outreach program to educate residents about the system. Last August, single-family homes received postcards explaining food scraps collection, along with six-gallon brown pails for convenient participation. Implementing the program in multi-family residences presents additional complexities. Residents in buildings with five or more units coordinate with property managers, who then arrange for counter-top pail collectors and central food scrap collection containers in collaboration with the city. Additional staff members have been hired to streamline enrollment for over 400 multi-family residences in Santa Cruz.
The success of achieving the 75% reduction goal will be evaluated through a Waste Characterization Study, categorizing and measuring waste in representative trash truck loads by third-party contractors. Despite challenges and occasional reassessment, O'Malley remains optimistic about the dedication and momentum in meeting the SB1383 targets.
While the Food Scraps Recovery Program is a positive step, O'Malley emphasizes prevention as the most effective means of combating food-waste-related greenhouse gas emissions. She urges individuals to reconsider their relationship with food, shifting from reliance on disposal methods to reducing food waste at its source. O'Malley advocates for the three Rs of Reduce, Reuse, and Recycle, emphasizing the importance of working together to make a significant impact.
In the realm of artificial intelligence (AI), the Dark Web has emerged as an unlikely yet captivating source for training generative AI models. While conventional generative AI is trained on the visible, relatively safe surface-level web, the Dark Web provides a treasure trove of malicious and disturbing content. This unexplored territory has sparked debates about the potential benefits and risks associated with developing generative AI based on the underbelly of the internet.
The Dark Web, a hidden part of the internet that standard search engines don't index, harbors a range of unsavory activities. It attracts cybercriminals, conspiracy theorists, and those seeking anonymity or restricted content. By specifically training generative AI on Dark Web data, researchers aim to tap into the unique language and specialized patterns of this secretive domain.
Proponents argue that Dark Web-trained generative AI could serve as a valuable tool to identify and track evildoers. Its ability to comprehend specialized languages and detect endangering trends could aid in cybersecurity and provide legal evidence for criminal prosecutions. Moreover, some believe that exploring the Dark Web's emergent behaviors through generative AI research could yield valuable insights.
However, ethical concerns loom large. Critics argue that delving into the Dark Web for generative AI training poses significant risks. They fear that it could inadvertently strengthen the capabilities of malicious actors and potentially undermine human rights. The potential misuse of Dark Web-trained generative AI is a worrisome aspect that demands careful consideration.
It is important to note that both conventional and Dark Web-trained generative AI models are susceptible to errors, biases, and falsehoods. While Dark Web-based generative AI may uncover hidden patterns and insights, it also runs the risk of perpetuating and amplifying malicious content. The challenges and potential pitfalls associated with interpreting and utilizing generative AI outputs from the Dark Web are similar to those of conventional AI.
Despite the risks, researchers have already embraced the concept of Dark Web-trained generative AI. Various projects, often referred to as "DarkGPT," have emerged, although caution must be exercised to avoid scams or malware posing as legitimate Dark Web-based generative AI applications.
One notable research example is DarkBERT, a language model trained on the Dark Web specifically designed for cybersecurity tasks. Researchers have found it to be more effective in handling Dark Web-specific text compared to models trained on conventional web data. DarkBERT showcases the potential of Dark Web-based generative AI, particularly in domains like cybersecurity.
The debate surrounding Dark Web-based generative AI is still in its early stages. The intersection of AI ethics and AI law is critical to navigate the development and deployment of AI systems responsibly. Striking the right balance between leveraging the potential benefits of Dark Web-trained generative AI while mitigating the associated risks remains a paramount challenge.
As AI continues to evolve, the question of whether we should expose AI systems to the Dark Web's depths requires careful consideration. The potential insights gained from the Dark Web could help society identify and combat evildoing. Alternatively, it could expose AI systems to an abyss that might shape their behavior and decision-making in unexpected and potentially detrimental ways.
Ultimately, the development and deployment of generative AI, whether based on the conventional web or the Dark Web, necessitates a comprehensive understanding of its capabilities, limitations, and ethical implications. As we embark on this technological journey, let us tread cautiously, guided by wisdom and a clear understanding of the potential consequences.
In a move that echoes tech behemoths Google and Microsoft, Amazon Web Services (AWS), the cloud computing arm of Amazon, has announced its foray into the world of generative AI. However, unlike its competitors, AWS has a different target audience in mind, aiming to attract corporate customers rather than the general public. The company is expanding its array of artificial intelligence tools and providing access to custom-made chips specifically designed to optimize the efficiency and affordability of running AI software.
Adam Selipsky, CEO of Amazon Web Services, emphasized the nascent nature of generative AI, stating, "This whole area is really, really new, and it truly is day one in generative AI. There's going to be a lot of invention by a lot of different companies."
As the leading global provider of cloud computing services, AWS is following the trend set by other tech giants by unveiling its generative AI strategy. The major players in cloud computing have all recognized the transformative potential of generative AI in revolutionizing work and creativity, thanks to its impressive ability to generate sophisticated memos and computer code. This surge of interest has spurred AWS, Microsoft, and Google to integrate generative AI into their sales pitches, seeking to rekindle demand for their cooling cloud services.
Shishir Mehrotra, CEO of AI document startup Coda and an early tester of AWS's new AI products, expressed his excitement, drawing parallels between the current rush to adopt generative AI and the transition from computers to smartphones.
Each cloud infrastructure leader is carving out its own distinct path within the generative AI landscape. Microsoft has taken the lead by investing billions in OpenAI, the company behind ChatGPT, while Google has directed substantial funds, totaling hundreds of millions, into the development of another generative AI platform, Anthropic. Both companies have primarily focused on creating AI tools for consumer use.
In contrast, AWS has charted a different course. It has refrained from major investments in external AI firms or consumer-oriented tools. Instead, AWS positions itself as a neutral platform, catering to businesses seeking to incorporate generative AI features. By avoiding exclusive partnerships, AWS presents itself as the Switzerland of the cloud giants, accommodating the diverse needs of its customers and offering access to multiple large language models.
In summary, Amazon Web Services is joining the race in generative AI, capitalizing on the growing interest in this groundbreaking technology. While competitors Google and Microsoft have honed in on the general public, AWS has set its sights on the corporate realm. With an expanded suite of AI tools and efficient custom-made chips, AWS aims to solidify its position as the go-to platform for businesses embracing generative AI. The race is on among the cloud giants, each forging its own unique path to harness the vast potential of generative AI.
In the midst of a whirlwind of game trailers and exciting announcements, Sony took a brief moment during its recent PlayStation Showcase livestream to reveal two new hardware products that left gamers buzzing with anticipation.
The standout announcement was undoubtedly Project Q, although the final name for this highly-anticipated device is still pending. Confirming long-standing rumors, Sony unveiled a new PlayStation handheld that promises to revolutionize gaming on the go.
Unlike its predecessors, Project Q will primarily focus on streaming capabilities. Sony plans to offer users the ability to stream any non-VR game from a local PlayStation 5 console using Remote Play over Wi-Fi. However, it's important to note that the handheld won't be capable of playing games on its own. Its true power lies in its streaming functionality.
Sony is no stranger to Remote Play, as the company has been offering this feature on other devices for some time now. By syncing a DualSense controller with their macOS, Windows, iOS, or Android device, players can already stream their favorite games over Wi-Fi or the Internet. However, streaming games over the Internet can come with latency challenges that impact the overall gaming experience.
As for the specifics of Project Q, the handheld boasts an impressive 8-inch HD screen, providing gamers with a vibrant and immersive display. In addition, it will feature ""all the buttons and features of the DualSense wireless controller,"" ensuring that players have a familiar and comfortable gaming experience in their hands.
In addition to Project Q, Sony also revealed plans to launch Bluetooth earbuds that resemble the popular AirPods. What sets these earbuds apart is their ability to simultaneously connect to a PlayStation console, a mobile device, as well as PCs. This versatility allows gamers to seamlessly switch between different platforms without the hassle of constantly pairing and unpairing their audio devices.
While Sony has not yet announced release dates or pricing for these new products, it's clear that these announcements serve as a statement of intent from the PlayStation brand. Gamers can look forward to a future where gaming becomes even more accessible, whether it's through the convenience of streaming on a handheld or the flexibility of audio connectivity.
In a clash that could rival the epic battles between superheroes and supervillains, Gannett, the heavyweight champion of U.S. newspaper publishers, has thrown down the gauntlet and filed a civil lawsuit against Google and its parent company Alphabet. The accusation? Unlawfully monopolizing the advertising technology tools that publishers and advertisers rely on to trade online ad space.
According to the lawsuit, Google exerts its power to dictate how publishers sell their coveted ad slots, strong-arming them into offering more space to Google at discounted rates. This allegedly leaves publishers with reduced revenue, while Google's ad-tech competitors are left counting their losses as Google's pockets grow heavier.
This legal maneuver by Gannett comes hot on the heels of the U.S. Justice Department and eight states taking a swing at Google in January with their own antitrust lawsuit. Their claim? Google has an iron grip on the entire online advertising ecosystem, sidelining any potential competition.
But the fight doesn't end there. The European Union (EU) has also stepped into the ring, launching its own investigation into Google's digital ad dominance last year. And just last week, EU regulators landed a fresh blow on Google, slapping it with more antitrust charges. Their knockout punch? To break up Google's digital ad business by forcing it to divest certain parts.
This escalating showdown between the EU and Silicon Valley's giants mirrors similar actions taken by U.S. authorities in their attempts to dismantle Google's alleged stranglehold on the online advertising realm.
Mike Reed, Gannett's CEO, took to the pages of USA Today, owned by Gannett, to rally support for the cause. In an opinion piece, he voiced the company's mission to "restore fair competition in a digital advertising marketplace that Google has demolished." Reed asserts that Google's bid-rigging practices have left local news outlets reeling.
But the gloves come off on Google's side, with Dan Taylor, the vice president of Google Ads, refuting Gannett's claims. Taylor insists that publishers have a plethora of options when it comes to monetizing their content through advertising technology. He argues that publishers retain the lion's share of revenue when utilizing Google's tools and extols the virtues of Google's advertising products.
Gannett's lawsuit, filed in the U.S. District Court for the Southern District of New York, aims for an undisclosed amount of damages and injunctive relief. With an eye on a jury trial, Gannett is ready to go toe-to-toe with Google in the legal arena.
In a case of real estate gone wild, the owners of a vacation rental in Glen Ellen were in for a nutty surprise when they discovered that acorn woodpeckers had transformed their property into a giant storage unit. Exterminator Nick Castro stumbled upon this astonishing sight while inspecting the home for mealworms in December, revealing a whopping 700 pounds of acorns tucked away within the home's chimney.
Castro, the owner of Nick's Extreme Pest Control in Santa Rosa, was left dumbfounded by the sheer scale of this unconventional hoarding endeavor. "I've never seen anything like that," he remarked. "The more acorns I pulled out from the wall, the more there were. It felt like it wasn't going to end."
The culprits behind this spectacle were a pair of acorn woodpeckers, renowned for their clownish faces and striking red caps. These big-eyed birds are notorious for squirreling away vast amounts of acorns, but their choice of storage location left the homeowners flabbergasted. The woodpeckers had pecked holes in the chimney stack and ingeniously concealed their treasure trove inside.
The previous owners of the house had taken measures to protect their abode after the woodpeckers wreaked havoc on its wood siding. They wrapped the structure in vinyl, hoping to deter further mischief. However, it appears that the determined birds were undeterred by this defensive barrier. Instead, they ingeniously dropped their precious oak nuts down the chimney stack, bypassing the vinyl blockade.
Castro and his crew embarked on a mission to liberate the rental property from this unconventional storage solution. With sheer determination and a dash of laughter, they managed to extract over 700 pounds of acorns from the chimney. "We could barely pick up the bags," Castro chuckled.
According to Castro's estimations, the woodpeckers had been amassing their stash for a period ranging from two to five years. Unfortunately, the accumulated stockpile had been rendered unusable due to the presence of fiberglass and rat droppings, so it was swiftly discarded.
Acorn woodpeckers are commonly found in oak and mixed oak-evergreen forests along the West Coast and in the Southwest. These resourceful birds usually drill small holes in dead trees during the fall, collecting acorns and storing them in the holes to sustain themselves throughout the winter. Some trees become multi-generational storage units, boasting up to 50,000 holes.
However, as Castro's peculiar discovery demonstrates, these birds sometimes exhibit unusual storage habits. Scott Jennings, an avian ecologist with Marin County nonprofit Audubon Canyon Ranch, suggests that this behavior could be attributed to the woodpeckers adapting to an ever-changing landscape. When their natural habitats are encroached upon by human infrastructure, these resilient birds find innovative ways to accommodate themselves.
"It's an anecdote I've heard a lot," Jennings commented.
In the end, the homeowners can rest assured that their vacation rental is now free from acorn-infested walls. The acorn woodpeckers have left behind an indelible mark, serving as a reminder that even the most seemingly ordinary creatures can surprise us with their resourcefulness and penchant for unconventional real estate ventures.