AirTag competitor Tile today announced a new Anti-Theft Mode for Tile tracking devices, which is designed to make Tile accessories undetectable by the anti-stalking Scan and Secure feature. MacRumors reports: Scan and Secure is a security measure that Tile implemented in order to allow iPhone and Android users to scan for and detect nearby Tile devices to keep them from being used for stalking purposes. Unfortunately, Scan and Secure undermines the anti-theft capabilities of the Tile because a stolen device's Tile can be located and removed, something also possible with similar security features added for AirTags. Tile's Anti-Theft Mode disables Scan and Secure so a Tile tracking device will not be able to be located by a person who does not own the tracker. To prevent stalking with Anti-Theft Mode, Tile says that customers must register using multi-factor identification and agree to stringent usage terms, which include a $1 million fine if the device ends up being used to track a person without their consent.

The Anti-Theft Mode option is meant to make it easier to locate stolen items by preventing thieves from knowing an item is being tracked. Tile points out that in addition to Anti-Theft Mode, its trackers do not notify nearby smartphone users when an unknown Bluetooth tracker is traveling with them, making them more useful for tracking stolen items than AirTags. Apple has added alerts for nearby AirTags to prevent AirTags from being used for tracking people. Enabling Anti-Theft mode will require users to link a government-issued ID card to their Tile account, submitting to an "advanced ID verification process" that uses a biometric scan to detect fake IDs. [...] Anti-Theft Mode is rolling out to Tile users starting today, and will be available to all users in the coming weeks.

A federal judge has levied crippling sanctions against the city of Seattle for deleting thousands of text messages between high-ranking officials, including the former mayor and police chief, during the three-week Capitol Hill Organized Protest -- a ruling that will undermine the city's defense against a lawsuit filed by business owners and residents affected by the high-profile protests. From a report: In a pair of lengthy orders Jan. 13, U.S. District Judge Thomas Zilly sent the so-called Hunters Capital lawsuit to trial on two of five claims, dismissing three others. He also ordered the city to pay the attorneys fees for those who showed city leaders destroyed significant evidence about their decision-making during CHOP, including their move to abandon the Police Department's East Precinct. The judge found significant evidence that the destruction of CHOP evidence was intentional and that officials tried for months to hide the text deletions from opposing attorneys. "The Court finds substantial circumstantial evidence that the city acted with the requisite intent necessary to impose a severe sanction and that the city's conduct exceeds gross negligence," he wrote. For that reason, Zilly said that when the case goes to trial he'll instruct the jury that it may presume the text messages were detrimental to the city's legal position and that there's significant circumstantial evidence they were deleted intentionally.

An anonymous reader quotes a report from Engadget: Now that the Safe Connections Act (SCA) has become law, the Federal Communications Commission is taking steps to help domestic violence survivors leave their partners' phone plans. The agency has proposed rules that would require carriers separate the line for a survivor within two business days of a request. Another proposal would also have carriers hide contact with abuse hotlines from consumer-facing call and text logs.

The FCC also hopes to use the Lifeline or Affordable Connectivity Program to support survivors enduring financial hardships for up to six months. Separately, providers are teaming with the National Domestic Violence Hotline to ensure survivors leaving a family plan will get in touch with someone who can offer support from experts on abuse. The proposals are entering a public comment phase and may be modified when they take effect as required by the SCA.

Sarah Blesener writes via The New York Times: Since his arrest two months ago, Samuel Bankman-Fried, the disgraced cryptocurrency executive, has been physically confined to the Palo Alto home of his parents, under the force of a $250 million bail package. But he has roamed largely unfettered in the wilderness of the internet: conducting interviews, posting narratives, making calls on encrypted apps and using a virtual private network, a web tool that allows users to conceal data and visit websites without detection. Those unrestrained days may soon be over. On Thursday, a federal judge overseeing Mr. Bankman-Fried's multibillion-dollar fraud case signaled a willingness to jail him for his persistent testing of his confinement's boundaries, going beyond what prosecutors had asked. "Why am I being asked to turn him loose in this garden of electronic devices?" the judge, Lewis A. Kaplan, asked prosecutors, describing the well-wired home of Mr. Bankman-Fried's parents, both professors at Stanford Law School.

No new conditions were set during Thursday's hearing, the latest of several hearings, held in federal court in Manhattan, to consider more restrictive bail terms. Judge Kaplan asked both sides to prepare concrete proposals that would limit and monitor Mr. Bankman-Fried's access to the internet without inhibiting his ability to participate in his defense. Federal prosecutors in Manhattan have charged Mr. Bankman-Fried with orchestrating widespread fraud at FTX, the cryptocurrency exchange he founded, accusing him of misappropriating billions of dollars of customers' money. Prosecutors said he used the funds to finance lavish real estate purchases, political contributions and investments in other companies. After he was charged in December, Mr. Bankman-Fried was released on bail with the requirement that he wear an ankle monitor and stay confined to his parents' house. [...]

A new Apple patent application describes a way to transform an iMessage to a voice note. In this way, the recipient can choose to have your message read to them not in Siri's voice, but in yours. 9to5Mac reports: In other words, when you send an iMessage, your phone would offer you the option to attach a voice file. This file would be automatically created and stored on your phone, based on your use of Siri. If you do this, the recipient would be asked whether they want to receive the voice file as well as the message. If they choose to do this, then both that message and any subsequent messages from you can be read in a simulation of your voice. The patent also allows for the voice file to be sent on its own, so you can do it ahead of time with selected contacts, so there's no delay in downloading it when a message arrives.

The Securities and Exchange Commission charged Terraform Labs and its CEO, Do Kwon, with fraud, alleging that they orchestrated a multibillion dollar "crypto asset securities fraud," the SEC said Thursday. CNBC reports: Kwon and Terraform allegedly schemed from Apr. 2018 until the collapse of TerraUSD, also known as UST, and its sister coin luna in May 2022 to raise billions of dollars from investors through the offer and sale of an "inter-connected suite" of crypto asset securities, including securities-based swaps that mirrored U.S. equities, and most famously, the so-called "algorithmic stablecoin" Terra USD. The company advertised UST as a "yield-bearing" coin, offering to pay interest of up to 20 percent, according to the complaint.

Like many stablecoins, UST was pegged at a 1-to-1 ratio with the dollar. Minting one new UST required "burning," or destroying, one luna. This structure allowed for arbitrage opportunities that were key to maintaining the peg: Users could always swap one luna for UST and vice versa at a guaranteed price of $1, regardless of the market price of either token at the time. But the price of luna grew unstable and forced UST to break its $1 peg, an effort which sent both terra and luna spiraling.

The complaint against Kwon and Terraform was filed in federal court for the Southern District of New York in Manhattan, and charges both with violating the registration and anti-fraud provisions of both the Securities and Exchange Acts. The SEC alleges that Kwon marketed those assets, including those mAsset swaps and Terra, as profit-bearing securities, "repeatedly claiming" the tokens would increase in value. [...] Kwon's current whereabouts are unknown, but the Terra co-founder was recently believed to be in Serbia, according to South Korean intelligence. Kwon is wanted in South Korea for his involvement in the collapse of TerraUSD.

An anonymous reader quotes a report from Ars Technica: When New York became the first state to pass a heavily modified right-to-repair bill late last year, it was apparent that lobbyists had succeeded in last-minute changes to the law's specifics. A new report from the online magazine Grist details the ways in which Gov. Kathy Hochul made changes identical to those proposed by a tech trade association. In a report co-published with nonprofit newsroom The Markup, Maddie Stone writes that documents surrounding the drafting and debate over the bill show that many of the changes signed by Hochul were the same as those proposed by TechNet, which represents Apple, Google, Samsung, and other technology companies.

The bill would have required that companies that provide parts, tools, manuals, and diagnostic equipment or software to their own repair networks also make them available to independent repair shops and individuals. It saw heavy opposition from trade groups before its passing. New York Assemblymember Patricia Fahy, the bill's sponsor, told Grist that backers had to make "a lot of changes to get it over the finish line in the first day or two of June." The bill passed with broad bipartisan support, but it was pared down to focus only on small electronics. Between that passage and the December signing, lobbyists working for TechNet and firms including Apple, Google, and Microsoft met with the governor, according to state ethics filings. Apple, IBM, and TechNet asked Hochul to veto the bill, while Microsoft sought to cooperate with Fahy on changes.

Later, TechNet sent a version of the bill that limited the effects to later products and excluded printed circuit boards and business-to-business or government contracts, according to Grist. Crucially, the new version, which had changes attributed to a TechNet vice president, allows for companies to offer "assemblies" of parts if the companies say the parts pose a "safety risk." TechNet's version also suggested independent repair shops should be forced to provide customers with "a written notice of US warranty laws" before they can start work. TechNet's suggestions made their way to the Federal Trade Commission. A staffer at the FTC took aim at the assembly clause, the exclusion of security workarounds for repair, and other elements. Dan Salsburg, chief counsel for the FTC's Office of Technology, Research, and Investigation, wrote that TechNet's suggestions had "a common theme -- ensuring that manufacturers retain control over the market for the repair of their products."

When you use supermarket discount cards, you are sharing much more than what is in your cart. From a report: When you hit the checkout line at your local supermarket and give the cashier your phone number or loyalty card, you are handing over a valuable treasure trove of data that may not be limited to the items in your shopping cart. Many grocers systematically infer information about you from your purchases and "enrich" the personal information you provide with additional data from third-party brokers, potentially including your race, ethnicity, age, finances, employment, and online activities.

Some of them even track your precise movements in stores. They then analyze all this data about you and sell it to consumer brands eager to use it to precisely target you with advertising and otherwise improve their sales efforts. Leveraging customer data this way has become a crucial growth area for top supermarket chain Kroger and other retailers over the past few years, offering much higher margins than milk and eggs. And Kroger may be about to get millions of households bigger. In October 2022, Kroger and another top supermarket chain, Albertsons, announced plans for a $24.6 billion merger that would combine the top two supermarket chains in the U.S., creating stiff competition for Walmart, the overall top seller of groceries.

U.S. regulators and members of Congress are scrutinizing the deal, including by examining its potential to erode privacy: Kroger has carefully grown two "alternative profit business" units that monetize customer information, expected by Kroger to yield more than $1 billion in "profits opportunity." Folding Albertsons into Kroger will potentially add tens of millions of additional households to this data pool, netting half the households in America as customers. While Kroger is certainly not the only large retailer collecting and monetizing shopper data through the use of loyalty programs, the company's evolution from a traditional grocery business to a digitally sophisticated retailer with its own data science unit sets it apart from its larger competitors like Walmart, which also collects, analyzes and monetizes shopper data for brands and for targeted advertising on its own retail ad network.

The Supreme Court is about to reconsider Section 230, a law that's been foundational to the internet for decades. But whatever the court decides might end up changing the rules for a technology that's just getting started: artificial intelligence-powered search engines like Google Bard and Microsoft's new Bing. From a report: Next week, the Supreme Court will hear arguments in Gonzalez v. Google, one of two complementary legal complaints. Gonzalez is nominally about whether YouTube can be sued for hosting accounts from foreign terrorists. But its much bigger underlying question is whether algorithmic recommendations should receive the full legal protections of Section 230 since YouTube recommended those accounts to others. While everyone from tech giants to Wikipedia editors has warned of potential fallout if the court cuts back these protections, it poses particularly interesting questions for AI search, a field with almost no direct legal precedent to draw from.

Companies are pitching large language models like OpenAI's ChatGPT as the future of search, arguing they can replace increasingly cluttered conventional search engines. (I'm ambivalent about calling them "artificial intelligence" -- they're basically very sophisticated autopredict tools -- but the term has stuck.) They typically replace a list of links with a footnote-laden summary of text from across the web, producing conversational answers to questions. These summaries often equivocate or point out that they're relying on other people's viewpoints. But they can still introduce inaccuracies.

Police use of automated data analysis to prevent crime in some German states was unconstitutional, a top German court said on Thursday, ruling in favour of critics of software provided by the CIA-backed Palantir. From a report: Provisions regulating the use of the technology in Hesse and Hamburg violate the right to informational self-determination, a statement from the constitutional court said. Hesse has been given a Sept. 30 deadline to rewrite its provisions, while legislation in Hamburg -- where the technology was not yet in use -- was nullified. "Given the particularly broad wording of the powers, in terms of both the data and the methods concerned, the grounds for interference fall far short of the constitutionally required threshold of an identifiable danger," the court said. However, court president Stephan Harbarth said states had the option "of shaping the legal basis for further processing of stored data files in a constitutional manner."

An anonymous reader quotes a report from Reuters: The founder of WallStreetBets, which has been credited with helping ignite investors' frenzy into "meme" stocks, sued Reddit on Wednesday, accusing it of wrongly banning him from moderating the community and undermining his trademark rights. Jaime Rogozinski said his ouster, ostensibly for violating Reddit policy by "attempting to monetize a community," was a pretext to keep him from trying to control "a famous brand that helped Reddit rise to a $10 billion valuation" by late 2021.

According to the complaint filed in federal court in Oakland, California, Rogozinski applied to trademark "WallStreetBets" in March 2020, one month before his ouster, when the community reached 1 million subscribers. Founded in 2012, the community now has 13.6 million subscribers. "If you build it, they will come," the complaint said, quoting from the 1989 movie "Field of Dreams. "Reddit's dreams, however, turned out to be Mr. Rogozinski's nightmare as the company insists, 'if you build it, we will take it from you.'" Rogozinski said he is a dual U.S.-Mexican citizen, and lives in Mexico City. He is seeking at least $1 million in damages for breach of contract and violations of his publicity rights, and a ban on Reddit's use of WallStreetBets unless it reinstates him as senior moderator of the r/WallStreetBets subreddit. Reddit rejected Rogozinski's claims. "This is a completely frivolous lawsuit with no basis in reality," a spokeswoman said. "Jamie was removed as a moderator of r/WallStreetBets by Reddit and banned by the community moderators for attempting to enrich himself. This lawsuit is another transparent attempt to enrich himself."

An anonymous reader quotes a report from The Guardian: Australians would gain greater control of their personal information, including the ability to opt out of targeted ads, erase their data and sue for serious breaches of privacy, under a proposal to the Albanese government. On Thursday the attorney general, Mark Dreyfus, will release a review conducted by his department into modernization of the Privacy Act which calls to expand its remit to small businesses and add new safeguards for use of data by political parties. Although the document is not government policy, in January Dreyfus told Guardian Australia the right to sue for privacy breaches and European-style reforms such as the right to be forgotten would be considered for the next tranche of legislation.

In 2022 the Albanese government passed a bill increasing penalties for companies that fail to protect customer data in the wake of major data breaches at telco Optus and health insurer Medibank. A summary section of the review, seen in advance by Guardian Australia, called for the exemption from the Privacy Act for small businesses to be abolished, citing community expectations that if small businesses are provided personal information "they will keep it safe." But first the government should conduct an "impact analysis" and give support to ensure small businesses can comply with their obligations, it said. Despite calls to abolish the privacy exemptions for political parties, the review proposed only increased safeguards, such as for parties to publish a privacy policy and not target voters "based on sensitive information or traits" except for political opinions, membership of a political association, or a trade union. "There was very strong support for increasing the protections for personal information under the Act," the review said.

The review called for new limits on targeted advertising, including to prohibit targeting to a child except where it is in their "best interests," and to provide others with an "an unqualified right to opt-out" of targeted ads and their information being disclosed for direct marketing purposes. The Privacy Act should include a new overarching requirement that "the collection, use and disclosure of personal information must be fair and reasonable in the circumstances," it said. The review also proposes individual rights modeled on the European Union's general data protection regulation including to: object to the collection, use or disclosure of personal information; request erasure of personal information; and to de-index online search results containing sensitive information, excessive detail or "inaccurate, out-of-date, incomplete, irrelevant, or misleading" information. The review suggested that consent should be required for collection and use of precise geolocation tracking data. The government should "consult on introducing a criminal offense for malicious re-identification of de-identified information where there is an intention to harm another or obtain an illegitimate benefit," it said. The report said that individuals wanted "more agency to seek redress for interferences with their privacy," proposing the creation of a right to sue for "serious invasions of privacy," which was also a recommendation of the Australian Law Reform Commission in 2014.

An anonymous reader quotes a report from BleepingComputer: Oakland has declared a local state of emergency because of the impact of a ransomware attack that forced the City to take all its IT systems offline on February 8th. Interim City Administrator G. Harold Duffey declared (PDF) a state of emergency to allow the City of Oakland to expedite orders, materials and equipment procurement, and activate emergency workers when needed. "Today, Interim City Administrator, G. Harold Duffey issued a local state of emergency due to the ongoing impacts of the network outages resulting from the ransomware attack that began on Wednesday, February 8," a statement issued today reads. The incident did not affect core services, with the 911 dispatch and fire and emergency resources all working as expected.

While last week's ransomware attack only impacted non-emergency services, many systems taken down immediately after the incident to contain the threat are still offline. The ransomware group behind the attack is currently unknown, and the City is yet to share any details regarding ransom demands or data theft from compromised systems. "The City's IT Department is working with a leading forensics firm to perform an extensive incident response and analysis, as well as with additional cybersecurity and technology firms on recovery and remediation efforts," the statement said. "This continues to be an ongoing investigation with multiple local, state, and federal agencies involved."

An anonymous reader quotes a report from BleepingComputer: Domain registrar Namecheap had their email account breached Sunday night, causing a flood of MetaMask and DHL phishing emails that attempted to steal recipients' personal information and cryptocurrency wallets. The phishing campaigns started around 4:30 PM ET and originated from SendGrid, an email platform used historically by Namecheap to send renewal notices and marketing emails. After recipients began complaining on Twitter, Namecheap CEO Richard Kirkendall confirmed that the account was compromised and that they disabled email through SendGrid while they investigated the issue.

Namecheap published a statement Sunday night stating that their systems were not breached but rather it was an issue at an upstream system that they use for email. "We have evidence that the upstream system we use for sending emails (third-party) is involved in the mailing of unsolicited emails to our clients. As a result, some unauthorized emails might have been received by you," reads a statement issued by Namecheap. "We would like to assure you that Namecheap's own systems were not breached, and your products, accounts, and personal information remain secure." After the phishing incident, Namecheap says they stopped all emails, including two-factor authentication code delivery, trusted devices' verification, and password reset emails, and began investigating the attack with their upstream provider. Services were restored later that night at 7:08 PM EST.

While Namecheap did not state the name of this upstream system, the CEO of Namecheap previously tweeted that they were using SendGrid, which is also confirmed in the phishing emails' mail headers. However, Twilio SendGrid told BleepingComputer that Namecheap's incident was not the result of a hack or compromise of the email service provider's systems, adding more confusion as to what happened: "Twilio SendGrid takes fraud and abuse very seriously and invests heavily in technology and people focused on combating fraudulent and illegal communications. We are aware of the situation regarding the use of our platform to launch phishing email and our fraud, compliance and cyber security teams are engaged in the matter. This situation is not the result of a hack or compromise of Twilio's network. We encourage all end users and entities to take a multi-pronged approach to combat phishing attacks, deploying security precautions such as two factor authentication, IP access management, and using domain-based messaging. We are still investigating the situation and have no additional information to provide at this time."

Laura Dobberstein writes via The Register: Mycroft AI, creator of a Linux-based virtual assistant, announced on Friday it would not be able to fulfill rewards for its Mark II Kickstarter campaign. Furthermore, without immediate new investment, the company will be forced to cease development by the end of the month, said the company's former CEO and operator of the Kickstarter campaign, Joshua Montgomery. "We will still be shipping all orders that are made through the Mycroft website, because these sales directly cover the costs of producing and shipping the products," confirmed Montgomery. He said the company was now at bare-bones employee count: layoffs had reduced the staff down to two developers, one customer service agent and one attorney. Montgomery said he had "poured a lot of [his] own savings, and additional funding from [his] foundation into Mycroft" but the company was running out of cash.

Mycroft AI experienced many challenges one would expect to encounter at a startup, such as difficulty finding hardware partners, which forced it to resort to off-the-shelf parts. [...] But what truly killed the company and product, he claimed, were expenses related to ongoing litigation. In 2020, Mycroft AI was sued for patent infringement from what it labeled a "patent troll." The company suing Mycroft AI, Voice Tech Corporation, dropped its litigation, but not before costing the startup deeply. "If we had that million dollars we would be in a very different state right now," said Montgomery. Billed as an "open answer" to Amazon Echo and Google Home but with data privacy, the Mark II went from costing $99 in components each to $300. That total doesn't include the costs of spending $100,000 on injection molds. The product currently sells on the company's website for $499.

The Kickstarter campaign brought in 2,245 backers for the smart speaker and raised over $394,000. The goal had been set at a mere $50,000. It's uncertain how many backers received a Mark II. Backers have left disappointed and upset responses on its Kickstarter page -- some mourning the death of hardware crowdsourcing, some pleading for their product, some alleging scam, and others urging the company to push through. "Send us the components to assemble the pieces ourselves if that's the outstanding problem at this point," offered one Kickstarter supporter. "Why can't we make it into a group project to assemble MyCroft II in our homes?" "I don't mind that I don't get my Mark II: the bigger goal of open source artificial intelligence was more important to me," said another.

An anonymous reader quotes a report from TorrentFreak: The U.S. Government's crackdown against Z-Library late last year aimed to wipe out the pirate library for good. The criminal prosecution caused disruption but didn't bring the site completely to its knees. Z-Library continued to operate on the dark web and this weekend, reappeared on the clearnet, offering a 'unique' domain name to all users. [...] Sites can often be seen hardening their operations to mitigate disruption caused by domain name seizures. Many have a list of backup domains that can be deployed when needed; The Pirate Bay infamously launched its hydra setup consisting of five different domain names. Z-Library is taking this hydra-inspired scheme to the next level. A new announcement reveals that the platform is publicly available once again and offering a unique and private domain name to every user.

"We have great news for you -- Z-Library is back on the Clearnet again! To access it, follow this link singlelogin.me and use your regular login credentials," the Z-Library team writes. "After logging into your account, you will be redirected to your personal domain. Please keep your personal domain private! Don't disclose your personal domain and don't share the link to your domain, as it is protected with your own password and cannot be accessed by other users." While we can't confirm that all users will get unique domain names, people are indeed redirected to different clearnet domains after logging in. After doing so, a popup message reminds them to keep their personal domain secret.

The domain names in question are subdomains of newly registered TLDs that rely on different domain name registries. Every user has two of these 'personal' domains listed on their personal profile page. If users can't access the universal login page, Z-Library says they can log in through TOR or I2P and get their personal clearnet domains there. How many new domain names Z-Library has is unclear but that's exactly the point. The site's operators want to prevent future domain name seizures and with the U.S. Government on its back, new domains are far from safe.

Sensitive mental health data is for sale by little-known data brokers, at times for a few hundred dollars and with little effort to hide personal information such as names and addresses, according to research released Monday. From a report: The research, conducted over the span of two months at Duke University's Sanford School of Public Policy, which studies the ecosystem of companies buying and selling personal data, consisted of asking 37 data brokers for bulk data on people's mental health. Eleven of them agreed to sell information that identified people by issues, including depression, anxiety and bipolar disorder, and often sorted them by demographic information such as age, race, credit score and location.

The researchers did not buy the data, but in many cases received free samples to prove that the broker was legitimate, a common industry practice. The study doesn't name the data brokers. Some of the brokers were particularly cavalier with sensitive data. One made no demands on how information it sold was used and advertised that it could offer names and addresses of people with "depression, bipolar disorder, anxiety issues, panic disorder, cancer, post-traumatic stress disorder, obsessive-compulsive disorder and personality disorder, as well as individuals who have had strokes and data on theirs races and ethnicities," the report found. "[T]he industry appears to lack a set of best practices for handling individuals' mental health data, particularly in the areas of privacy and buyer vetting." the report found.

In 2019 Slashdot covered Mycroft, an open-source voice assistant for Linux-based devices (including Raspberry Pi boards). But this week the company's CEO posted on Kickstarter that "without immediate new investment, we will have to cease development by the end of the month....

"We will still be shipping all orders that are made through the Mycroft website, because these sales directly cover the costs of producing and shipping the products. However we do not have the funds to continue fulfilling rewards from this crowdfunding campaign, or to even continue meaningful operations."

The announcement details Mycroft's long, strange trip, from a hardware-focused partner that couldn't provide stable hardware to their switch to using off-the-shelf parts — followed by supply chain disruptions (with hefty import and manufacturing fees): The best plan we could devise to fulfill the remaining campaign rewards was to use the slim margins we have on new sales to cover the increased costs of hardware production. With that plan in mind, we pushed forward and started production. We got plastic injection molds cast. We started printing custom PCBs. We engaged audio engineers to optimize the quality and volume of the sound output. We got the device FCC and CE approved. Many of these steps took multiple iterations to get right, and there are many more things that I'm glossing over. All up this costs — a lot of money. Far more than the total contributions from the campaign, which is why I personally committed so much additional funding. I could see a clear way forward that strengthened Mycroft as a project, as a business, and as a community.

So what went wrong? The single most expensive item that I could not predict was our ongoing litigation against the non-practicing patent entity that has never stopped trying to destroy us. If we had that million dollars we would be in a very different state right now.

With so much of our focus on hardware, and less funding to devote to improving our software — the quality and features available on the Mark II at launch were clearly underwhelming. It is more robust and stable than it has ever been, but this came at the cost of fewer new features. That in turn I believe has resulted in less than flattering reviews, and little mainstream coverage. The hardware itself has proven itself to be a solid base to work from, but without good reviews you get less sales, and without strong sales, the plan doesn't work.
Thanks to stx23 (Slashdot reader #14,942) for sharing the news.

An anonymous reader shares a report from Tom's Hardware: According to the PC Security Channel (via TechSpot), Microsoft's Windows 11 sends data not only to the Redmond, Washington-based software giant, but also to multiple third parties. To analyze DNS traffic generated by a freshly installed copy of Windows 11 on a brand-new notebook, the PC Security Channel used the Wireshark network protocol analyzer that reveals precisely what is happening on a network. The results were astounding enough for the YouTube channel to call Microsoft's Windows 11 "spyware."

As it turned out, an all-new Windows 11 PC that was never used to browse the Internet contacted not only Windows Update, MSN and Bing servers, but also Steam, McAfee, geo.prod.do, and Comscore ScorecardResearch.com. Apparently, the latest operating system from Microsoft collected and sent telemetry data to various market research companies, advertising services, and the like.
When Tom's Hardware contacted Microsoft, their spokesperson argued that flowing data is common in modern operating systems "to help them remain secure, up to date, and keep the system working as anticipated."

"We are committed to transparency and regularly publish information about the data we collect to empower customers to be more informed about their privacy."

Two non-profit news site, the Markup and Grist, have co-published their investigation into how big tech rewrote America's first cellphone repair law.

"That New York passed any electronics right-to-repair bill is 'huge,' Repair.org executive director Gay Gordon-Byrne told Grist. But 'it could have been huger' if not for tech industry interference." The passage of the Digital Fair Repair Act last June reportedly caught the tech industry off guard, but it had time to act before Governor Kathy Hochul would sign it into law. Corporate lobbyists went to work, pressing for exemptions and changes that would water the bill down. They were largely successful: While the bill Hochul signed in late December remains a victory for the right-to-repair movement, the more corporate-friendly text gives consumers and independent repair shops less access to parts and tools than the original proposal called for. (The state Senate still has to vote to adopt the revised bill, but it's widely expected to do so.)

The new version of the law applies only to devices built after mid-2023, so it won't help people to fix stuff they currently own. It also exempts electronics used exclusively by businesses or the government. All those devices are likely to become electronic waste faster than they would have had Hochul, a Democrat, signed a tougher bill. And more greenhouse gases will be emitted manufacturing new devices to replace broken electronics....

Jessa Jones, who founded iPad Rehab, an independent repair shop in Honeoye Falls, about 20 miles south of Rochester, New York, says the original bill included provisions that would have made it far easier for independent shops like hers to get the tools, parts, and know-how needed to make repairs. She pointed to changes that allow manufacturers to release repair tools that only work with spare parts they make, while at the same time controlling how those spare parts are used... "If you keep going down this road, allowing manufacturers to force us to use their branded parts and service, where they're allowed to tie the function of the device to their branded parts and service, that's not repair," Jones said. "That's authoritarian control."
The bill's sponsor believes it could create momentum for dozens of other states trying to pass similar laws, the article points out, possibly leading ultimately to one national agreement between electronics manufacturers and the repair community. A lawmaker from another state argued that New York's law "gives us something to work from. We're going to take that now and try to do a better piece of legislation."

Thanks to long-time Slashdot reader Z00L00K for submitting the article.