Alterslash

the unofficial Slashdot digest
 

Contents

  1. EchoStar’s US Satellite Pay-TV Provider Dish DBS Files for Bankruptcy
  2. Decades-Old Bash Tricks Expose AI Coding Agents To Supply Chain Attacks
  3. What Is a Quantum Computer Good For? Absolutely Nothing - Yet
  4. Startup Targets Datacenters With 3D-Printed Nuclear Reactor Module
  5. Video Game History Foundation Says Piracy Remains the Only Viable Preservation Method
  6. Alibaba To Ban Claude Code In Workplace Over Alleged Backdoor Risks
  7. Valve Open-Sources Steam Machine’s E-Ink Display
  8. New PamStealer macOS Malware Uses Clever Tradecraft To Remain Stealthy
  9. US Life Expectancy On Track To Reach Record High
  10. Amazon Has Enough Satellites To Launch Its Starlink Competitor
  11. Sitting For More Than 30 Minutes At a Time Linked To Higher Risk of Cancer Death
  12. Labor Force Participation Rate Falls To Lowest In 50 years
  13. AI Agent Executes ‘First’ End-To-End Ransomware Attack
  14. Godot Game Engine No Longer Accepts AI Code
  15. Meta Is Charging a Subscription for Smart Glasses Features

Alterslash picks up to the best 5 comments from each of the day’s Slashdot stories, and presents them on a single page for easy reading.

EchoStar’s US Satellite Pay-TV Provider Dish DBS Files for Bankruptcy

Posted by EditorDavid View on SlashDot Skip
EchoStar’s satellite pay-TV unit Dish DBS has filed for Chapter 11 bankruptcy protection, reports Reuters. The move also applies to its wireless subsidiaries, according to the article, and “facilitates the wind-down of Dish Wireless’s 5G network operations following an unexpected delay in a spectrum license sale to AT&T… under which EchoStar agreed to sell about 50 megahertz of its nationwide spectrum for $23 billion.”

Some context from Deadline.com:
Charlie Ergen, who co-founded EchoStar and Dish, recently returned as chairman and CEO to steer the company through its recent challenges… Even prior to the merger, Ergen had been working to pivot from the pay-TV business, where Dish now has just 5 million subscribers and streaming sibling Sling TV has another 2 million, toward wireless telecom. With wireless spectrum hitting the market due to the Sprint-T-Mobile merger and then Elon Musk’s Starlink looking to ramp up in the sector, it seemed more attractive than the cord-cutting-ravaged pay-TV business. But it is still entails plenty of risk, especially given how tightly regulated the spectrum is due to security concerns.
Thanks to long-time Slashdot reader schwit1 for sharing the news.

Decades-Old Bash Tricks Expose AI Coding Agents To Supply Chain Attacks

Posted by EditorDavid View on SlashDot Skip
Slashdot reader wiredmikey writes:
AI security researchers have uncovered a structural security flaw dubbed GuardFall that allows decades-old Bash shell tricks to bypass safeguards in most open source AI coding agents. By exploiting shell behaviors such as quote removal and variable expansion, attackers can hide malicious commands in repositories, README files, Makefiles, or other content consumed by AI agents. If executed — particularly in auto-approve or CI environments—the commands can steal credentials, compromise developer systems, or enable software supply chain attacks. According to researchers at Adversa AI, the 11 popular open source AI coding agents tested, only one successfully blocked all of the Bash trick techniques.

Attitude

By glum64 • Score: 4, Insightful Thread
In my exerience, the share of programmers that (a) understand that shell is a programming language and not some weird command prompt, and (b) take the time and invest the effort required to learn it properly is surprisingly small.

What Is a Quantum Computer Good For? Absolutely Nothing - Yet

Posted by EditorDavid View on SlashDot Skip
The Verge argues that researchers “have made genuine progress in quantum computing — it’s just been largely incremental and too esoteric to immediately capture the public’s imagination.”

And there are predictions that quantum computers will finally do something useful as soon as 2028:
The drama can overshadow the real progress in quantum computing… Researchers have improved the qubits themselves, so they hold onto information longer. When they hold onto information longer, you can fit in more operations and do more complicated algorithms. Last November, Andrew Houck of Princeton University and his colleagues reported that they’d made a superconducting qubit that can hold onto information three times longer than the previous record holder… And in the last two years, researchers have made substantial strides in what’s known as quantum error correction… In addition, researchers have developed algorithms to correct errors while the quantum computer operates… Microsoft claimed, which experts dispute, that it made an object made of electrons known as a Majorana particle [which should make fewer errors and be easier to scale up]…

“We 100 percent stand behind our results. We stand by our roadmap,” Microsoft’s quantum lead, Chetan Nayak, responded in an interview with The Verge. In an email statement, he added that Microsoft’s “papers do show that we are creating and controlling Majorana [particles]… Microsoft’s supporting evidence is unconvincing [according to [Henry Legg, a physicist from the University of St. Andrews and a longtime Microsoft critic]Rnqyq. What it claimed as evidence of a Majorana particle, he says, could actually be due to quantum dots forming in its device. Quantum dots are electron-containing objects that are not useful for Microsoft’s quantum computer. It also bases its claim on data from a single device, says Legg. He wants to see Microsoft replicate the results in multiple chips. “If you repeatedly try and find Jesus in your toast, eventually you’ll find Jesus in your toast,” he says. “But that one piece of toast doesn’t mean you had some kind of epiphany.”

“While we appreciate the religious fervor, our data maintains the strength and consistency of our roadmap, as we have for the past several years across previous milestones. We look forward to delivering the world’s first quantum machine and sharing the energy of our achievements with the world,” wrote Nayak in response.

Past spurious work from Microsoft-affiliated researchers adds to the doubt. In 2021, the journal Nature retracted an article from Microsoft-affiliated researchers in which they’d claimed strong experimental evidence that they’d created a Majorana particle.
“Even hopeful experts have varying opinions about when a quantum computer will demonstrate something useful,” the article acknowledges.

But quantum computing lecturer Eleanor Crane of King’s College London predicts researchers will have demonstrated a useful scientific simulation on a quantum computer by 2028.

Thanks to Slashdot reader joshuark for sharing the article.

Startup Targets Datacenters With 3D-Printed Nuclear Reactor Module

Posted by BeauHD View on SlashDot Skip
Startup Ampera has unveiled what it calls the first 3D-printed nuclear reactor module, built around a silicon-carbide core and pressure vessel designed for a thorium-based microreactor. The company says future systems could deliver 15 or 30 megawatts for up to 30 years without refueling. When The Register asked about availability, their spokesperson said: “We expect the power generation portion of the system to be available as early as 2027, with the nuclear module being available to customers about 2030 based on regulatory approval.” From the report:
Founder and CEO Brian Matthews revealed the prototype microreactor, which features a fully 3D-printed silicon carbide reactor core and pressure vessel. “This next-generation nuclear core and pressure vessel sets the foundation for factory-built, mass-produced nuclear energy,” Matthews said. “The advanced technology and additive manufacturing used demonstrate a clear commercial path for new nuclear technology coming to market in an accelerated manner.” His company is developing a subcritical, solid-state, factory-built thorium-based nuclear reactor. Subcritical means the fuel cannot sustain a nuclear chain reaction on its own, which prevents a runaway power excursion.

Ampera uses “solid-state” to describe a design with solid rather than liquid fuel. The proposed fuel uses tristructural isotropic, or TRISO, particles, consisting of a fuel kernel containing thorium, surrounded by multiple ceramic and carbon layers. […] “Thorium is the future for ultra-safe, clean power production,” Matthews said at the time. “By producing TRISO thorium kernels in the United States, we can ensure ample access to the needed fuel supply as we scale up and also minimize price volatility risk.”

Ampera also describes the heart of the reactor as as a spherical monolithic gyroid core. A gyroid, as far as we can fathom, is a complex shape that provides a massive surface area relative to its volume, making it well-suited for heat transfer. Its complexity makes it difficult to produce using conventional manufacturing methods, which is where additive manufacturing comes in. The core is 3D-printed using silicon carbide and designed to operate for up to 30 years without refueling, the firm claims. Ampera says its planned systems will provide 15 or 30 MWe, depending on the configuration, enough to supply a typical datacenter. Larger configurations are planned. Matthews said that his company expects to be the first to industrialize factory-built nuclear power with near-term deployment timelines.

Investor Fishing

By SlashbotAgent • Score: 4, Insightful Thread

This sounds like investor fishing. I’ll check back in 10 years.

Nuke Them From Orbit

By crunchy_one • Score: 3 Thread
Targeting AI data centers sounds like a great idea. Using nukes might be a bit excessive, but it will get the job done.

Re:I’ll take that!

By sound+vision • Score: 4, Insightful Thread

They included their out right in the quote, “Based on regulatory approval”.

It’s also useful to consider, the public are the ones theoretically regulating everything. Sometimes even in practice, when it comes to these data centers. If the bros are having trouble with NIMBY just because of the cooling units, imagine how much trouble they’ll have when they add nukes into the picture.

I’d love to see more nukes built, but the right way. Not for this bullshit.

Video Game History Foundation Says Piracy Remains the Only Viable Preservation Method

Posted by BeauHD View on SlashDot Skip
An anonymous reader quotes a report from TechSpot:
Video Game History Foundation founder Frank Cifaldi recently supported claims that piracy is the only effective way to preserve video games. The comments lay the blame squarely on game companies’ refusal to keep legacy content available or allow archivists to build legal repositories. Sony’s announcement that all PlayStation games will be digital-only from 2028 onward has sparked concern that titles will become harder to preserve and more easily vanish, since the company’s servers will become the sole point of distribution. In an official statement, Cifaldi noted that the end of physical PlayStation games has surprisingly little impact on the Foundation’s efforts because the majority of games from the last two decades are already digital-only.

According to the Foundation, most games nowadays are not released for consoles, let alone on physical discs. Furthermore, many discs for major titles require downloading updates before they are playable, although the DoesItPlay database reveals that, even today, most are playable offline out of the box. Cifaldi claimed that the true reason piracy remains the best option for preservation is that the Entertainment Software Association, which lobbies for game publishers, has closed off other routes. For example, in 2018, the Association opposed efforts to grant copyright exemptions for museums, libraries, and archives to retain copies of abandoned online games for research.

This is the same organization that recently helped defeat a proposed California bill to preserve premium-priced online-only games by falsely claiming that community servers are illegal. The Foundation accused the ESA of repeatedly blocking attempts by cultural heritage institutions to reform DRM legislation. Cifaldi also described the Library of Congress’ outdated software preservation process, which currently only requires tiny snippets of source code. For example, Capcom once asked the Foundation to provide the LoC with “the first and last ten pages of code” for a Mega Man game. Unable to discern where digital records began and ended, the group simply chose random segments. Platform holders’ habit of closing online storefronts and removing media from users’ accounts is also unhelpful.
“What continues to baffle us is what the industry expects institutions like ours to do about it,” the Video Game History Foundation said. “If platform owners are deciding to eliminate physical media and older digital storefronts, then we’d also like to see trade groups like the Entertainment Software Association offer meaningful solutions for archives and museums to legally preserve digital-only content and make it accessible for research.

Piracy only solution to outrageous copyright terms

By greytree • Score: 4, Insightful Thread
While copyright terms are an outrageous 95 years, Piracy is a moral choice.

Re:why?

By nyet • Score: 4 Thread

All other art forms have archival formats literally geared towards research. How incredibly shorts sighted are you?

Damnatio memoriae

By quintessencesluglord • Score: 4, Interesting Thread

There’s a certain elegance that the modern AAA games industry would willingly do this to themselves in the name of absolute profits, and will be wiped from the memory of this era.

History is written by the victors, and publishers have already lost and are too dumb to realize it.

NOLF

By fluffernutter • Score: 3 Thread
Without piracy, a person’s right to go with an older game for half price will be gone. I’m happy now with half price, but if the only choice is a new game for $120 (because who are we kidding, new games will go up too) or nothing or piracy, then a lot of people are going to go for piracy. One of the best first person shooters I have ever played, no one lives forever, is not available on the market today because of decisions like this if I wanted to play it again for nostalgia I would play it again, so I could either pay half for it or pirate it. Right now I have no choice.

Alibaba To Ban Claude Code In Workplace Over Alleged Backdoor Risks

Posted by BeauHD View on SlashDot Skip
Alibaba has reportedly banned employees from using Anthropic’s Claude Code and directed them to its own Qoder platform amid a growing dispute over features that can help identify China-linked users. Reuters reports:
The ban is part of a deepening spat between the two companies after Anthropic accused Alibaba of illicitly extracting its Claude AI model capabilities — a dispute that highlights the frantic race between the U.S. and China to take the lead in artificial intelligence. […] Anthropic said last month that it had suffered a strike by Alibaba, which it described as a “distillation” effort that involves training a less capable model on the outputs of a stronger one. The distillation helps accelerate China’s ability to reach Anthropic’s advanced Mythos Preview capabilities, it said in a letter seen by Reuters that was sent to two U.S. senators.

Alibaba’s ban comes just days after developers said Claude Code contained mechanisms that inspected user environments, including timezone and proxy-related information, and inserted subtle markers into prompts sent to Anthropic’s servers. An Anthropic employee wrote on Tuesday on X that the feature was “an experiment we launched in March” intended to prevent account abuse by unauthorized resellers and protect against model distillation. The person who spoke to Reuters about Alibaba’s ban said that Anthropic’s restrictions targeting China were difficult to enforce on individual users who can deploy servers in the United States and make traffic appear as if it originated there. But companies were more aware of legal and compliance risks, the person added.

I am surprised it took so long …

By gweihir • Score: 5, Interesting Thread

The other copyright risk is, of course, that AI-generated code does not have any copyright. If you use your own LLM, you may at least be able to obscure that origin and muddy the waters.

Re:Backdoor risks?

By Anonymous Coward • Score: 4, Funny Thread
I dunno. American slashdotters are obsessed with getting fucked in the ass by Trump. Half of them want more of it, half of them are horrified it happened to them.

Valve Open-Sources Steam Machine’s E-Ink Display

Posted by BeauHD View on SlashDot Skip
Valve has open-sourced the design for a customizable e-ink front panel for the Steam Machine, dubbed the “Inkterface.” “All of it is available on their GitLab under the MIT license, which goes over everything you need to make your own and stick it on the front of your fancy new Steam Machine,” reports GamingOnLinux. From the report:
They’re now calling it the “Inkterface” and there’s a good few things you’ll need to make it including:
1 x Adafruit ESP32 Feather with 2MB PSRAM.
1 x Adafruit eInk Breakout Friend.
1 x Adafruit 5.83” Monochrome eInk Panel.
13 x M2.5 x 5mm Pan Head Machine Screws.
4 x 1/4” x 1/4” x 3/16” Stepped Magnet SB443-OUT.

Valve even provided a video on the GitLab showing it being put together […].

Valve

By RitchCraft • Score: 5, Insightful Thread

This is why Valve is one of the few tech companies around that people actually like. They seem genuinely interested in helping customers.

Re:Custom eReaders?

By ceoyoyo • Score: 5, Informative Thread

Sure.

Want a video?
https://www.youtube.com/watch?…

This one looks pretty nice:

https://diptyx.dev/

  They haven’t released the source files yet but it’s not exactly rocket science to put one together. E-ink screens are readily available, as are microcontrollers.

Re:Valve

By Bahbus • Score: 4, Insightful Thread

It isn’t Valve’s job or responsibility to make replacement parts available, especially if they aren’t being directly made by Valve.

It’s a hardware performance monitor

By Chelloveck • Score: 4, Interesting Thread

Not that the article bothered to say, but scanning the docs shows that the purpose of this is to display hardware performance graphs and maybe some other statistics. Maybe that’s obvious to people who are in the loop regarding Steam Machine news, but I’m not and it wasn’t.

eInk seems like an odd choice for this, since it’s meant more for static displays than constantly updating ones. If you don’t want to play with the eInk hardware I expect someone will eventually re-implement it as a tablet or phone app.

Re:Valve

By Aighearach • Score: 4, Insightful Thread

It would cost them many millions of dollars to make parts available, because they don’t manufacture the devices in-house and don’t have possession of the parts. And getting access to that included in manufacturing contracts vastly increases prices.

Customers, however, can often source compatible parts. But listing compatible parts can create liability. So customers should create user groups for that, if there is demand.

They don’t have any “wants to go yet,” you’ve just got stupid expectations.

New PamStealer macOS Malware Uses Clever Tradecraft To Remain Stealthy

Posted by BeauHD View on SlashDot Skip
An anonymous reader quotes a report from Ars Technica:
Researchers have found a never-before-seen piece of macOS malware that combines a series of clever tradecraft to infect Macs with stealthy, custom-developed credential-stealing code. The malware is delivered in two stages. The first is distributed in a disk image that masquerades as Maccy, a clipboard manager for Macs. It’s compiled as AppleScript that is notable for the way it delivers the second stage. The malware is named PamStealer because the Rust-written infostealer uses the Pluggable Authentication Modules interface built into macOS to validate the target’s login password before sending it to an attacker-controlled server.

[…] PamStealer shows a native password prompt designed to resemble a system authorization request. Text that appears with the prompt says: “Maccy wants to make changes. Enter your password to allow this.” As noted earlier, once a target complies, the malware validates it locally through the PAM API. “This check is done entirely through PAM: there is no call out to dscl, security, osascript or any spawned process to verify the password, as many commodity macOS stealers do,” [said Jamf, a security firm for macOS users]. “The result is a quieter routine that keeps only a verified password, and one fewer process chain for defenders to detect on.”

If the validation fails, PamStealer displays the prompts again until it receives the correct one. Once the target enters the correct password, PamStealer displays a message stating that the file is damaged and can’t be installed. This is designed to be a decoy to prevent the target from suspecting anything is amiss. The malware uses tactics to maximize the information it can steal. One tactic is to request the target grant full disk access to the fake Maccy app. It also contains code designed to access ethereum accounts. The various techniques — particularly the Script Editor lure, a self-contained JXA dropper, a Rust-based second stage, and local validation of credentials through PAM are all noteworthy.

Happy to see…

By PPH • Score: 5, Funny Thread

… Rust being put to use improving our computing security.

Bypassing notarization

By xack • Score: 3 Thread
Applescript has become a loophole that bypasses the whole get certified by Apple security technique. Expect more loopholes like this in the future and other cat and magic mouse chases.

Lol

By Rei • Score: 4, Interesting Thread

Once the target enters the correct password, PamStealer displays a message stating that the file is damaged and can’t be installed. This is designed to be a decoy to prevent the target from suspecting anything is amiss.

Same sort of technique I used back in secondary school, lol ;) We had a programming class (in Basic on DOS), and it was painfully trivial, so I’d always complete the assignments in like 5 minutes and then spend the rest of class messing around. So one thing I wrote was a program that mimicked the DOS prompt, including common commands, and when someone ran the login command and typed in their username and password, it would say that the password was incorrect so they’d think they had typed it wrong (while it was actually saving their username and password, then logging out of my account), so that when they tried again, it worked. I would launch on a bunch of computers in the lab after class when I could get away with it..

Among the passwords collected were the teacher’s administrator username and password. So when it came time to write my final project for the course, among the various demo-style scenes in it was a stereogram generator. The hidden image in the stereogram was her username and password. ;)

(Thankfully she had a good attitude about it… seemed like she wanted to get mad at me but also found it funny. In retrospect, that could have gone very badly had she gotten angry…)

Re:Bypassing notarization

By karmawarrior • Score: 4, Interesting Thread

This has nothing to do with AppleScript. It has to do with the boneheaded decision to have Mac OS X and its successor constantly prompting users for passwords to do “admin” things, even if they’re logged in as an admin. This has been a flaw since 10.0, and I was complaining about it in the 10.2 days, and getting told I shouldn’t worry my pretty little head about it and that nobody would ever write malware that puts up something that looks like a system request for your password, such a fraud would be unpossible!

If you want to have your operating system to request a user prove they’re who they say they are, you need to have the OS prove it is what it says it is to the user first. Otherwise requiring passwords to authenticate is literally useless. Your OS is insecure. The only question I have is why it’s taken 25 years for the actual malware writers to notice.

US Life Expectancy On Track To Reach Record High

Posted by BeauHD View on SlashDot Skip
The US age-adjusted death rate fell to a record low in 2025, likely pushing life expectancy to a record high as overdose deaths declined and mortality improved across all age groups. CNN reports:
There were about 689 deaths for every 100,000 people in the US in 2025, according to a new report from the US Centers for Disease Control and Prevention — the lowest rate recorded in more than a century of tracking. The age-adjusted rate has fallen 22% since 2021, landing about 4% lower than it was just before the pandemic in 2019. […] The top causes of death in the US in 2025 followed longstanding patterns: Heart disease led with nearly 695,000 deaths, followed by cancer with nearly 623,000 deaths.

Unintentional injuries, which includes drug overdoses, were the third leading cause of death. Overdose deaths are still high — about 70,000 people died from an overdose in 2025, preliminary CDC data shows — but experts say that sharp declines probably played a large role in bringing the age-adjusted death rate down in the US.

Re:Decreased obesity

By gtall • Score: 5, Informative Thread

Calm down grasshopper. What’s being “said” (keep an eye on statistics instead of inflating percentages into everybody) is that taking away many peoples’ healthcare (in favor of tax breaks for the wealthy) does not make many people healthier, it makes them more unhealthy and poorer. Everything that el Bunko and Elmo do *sometimes* (more often than should be) make people dead or sick. Cutting minuscule foreign aid kills scores in Africa. Pissing it off on Israel killed scores of Palestinians.

la Presidenta is cutting rules and regs on pollutants. I presume in your book that pollutants do not kill people or make them sick. Then you’ll be wanting to cozy up to that coal fired power plant that is now allowed to spew more mercury into the environment. You do recall mercury from HS chemistry, yes? Okay, no. So look it up.

One can go through the list of el Bunko’s EOs. They have two defining features: they are bad for Americans’ health and they benefit he and his crime family. Elmo is not far behind but his reach is smaller.....now. That little fucking Nazi has every intention of tell everyone else how live and his Silicon Valley fellow travelers (Thiel, Ellison, Altman, etc.) are right behind him. Bezos is bringing up the rear. You are mere cannon fodder to their schemes.

If you want to see how the proles are doing, pay attention to credit card debt and how many jobs they must work to make ends meet. Jesus, and stop whinging about how mistreated is the Epstein class.

Re:Decreased obesity

By PsychoSlashDot • Score: 5, Informative Thread

How can this be? Climate is killing everyone, air pollution is worse, microplastics is worser, everyone is so poor that they can’t eat, everything that trump or musk does is fatal, every single thing is linked to icreased death. Erm /sarc

In the event that you don’t know/understand the answer already, I’ll try to illustrate it.

Imagine life-expectancy is say… 80 years and there are exactly 3 causes of death named A, B, and C with evenly-distributed probability.

Imagine we eliminate CoD A entirely. That changes odds of dying of CoD B or C from 33% to 50%.

Imagine also that by eliminating CoD A it adds an average of 5 years of life before death, putting L-E at 85 years.

Imagine we start injecting people with a lightly toxic substance (metaphor for microplastics etc), which damages the body but doesn’t kill. Say that knocks 3 years off the average lifespan, dropping L-E to 82 years.

All of the things you’re reading about can be true at the same time because words mean things. Bad things are bad, and the take-home is that the bad things are what is keeping things from being better than they are. As another illustration, getting a raise is a good thing, someone making a shitty decision that drives up inflation is a bad thing, and it’s possible for you to have marginally more buying power after the two but the shitty decision still sucks.

I’m not an epidemiologist but

By XMKT • Score: 5, Interesting Thread

My guess would be that the recent pandemic that devasted so many populations across the globe may have something to do with the mathematics behind this.

If lots of people died a few years earlier than they would otherwise have done, then that would pull life expectancy downwards temporarily.

Following that, the survivors will on average appear to live longer, pushing apparent life expectancy above normal.

Re:How about stating the obvious....

By Firethorn • Score: 5, Insightful Thread

I attribute it down to mostly the elimination of leaded gasoline. 18-20 years after use drops, crime drops as well.

Re:How close

By ceoyoyo • Score: 5, Informative Thread

Life expectancy and death rate are not the same thing. The US has a younger population than, e.g. Spain, so it has a lower death rate (this year at least) despite also have a lower life expectancy.

Amazon Has Enough Satellites To Launch Its Starlink Competitor

Posted by BeauHD View on SlashDot Skip
Amazon says its Leo satellite network now has enough spacecraft in orbit to begin limited commercial internet service, with 396 satellites providing “continuous service across initial latitudes.” Early performance will likely be uneven, however, and well behind Starlink. “It’ll be years before Amazon can boast similar performance numbers as it continues to launch a planned 3,232 Leo satellites,” reports The Verge. From the report:
SpaceX went live with its “Better than nothing beta” back in 2020 when it had almost 900 satellites operating in low-Earth orbit. It initially served a narrow band of users in the upper US and Canada, who complained about frequent service interruptions and high sensitivity to obstructions, with speeds between 50Mbps and 150Mbps, and latency from 20ms to 40ms. By 2022, the service and coverage areas had already dramatically improved. […]

SpaceX currently has over 10,000 Starlink satellites in operation, providing robust internet connectivity on land, sea, and air in over 160 countries. Performance varies by the dish, service level paid for, time of day, and location of the user, but we’re now talking 200Mbps median download speeds, 10Mbps to 40Mbps uploads, and latency hovering around 25ms.

almost right

By OrangeTide • Score: 5, Funny Thread

You are correct LEO != Leo, one is an acronym for low-Earth orbit. The other is the name of Amazon’s satellite network. RTFA

Re:illiterate

By 93 Escort Wagon • Score: 5, Funny Thread

It’s spelled “maroon” - just ask Bugs.

FCC License in Jeopardy

By necro81 • Score: 4, Informative Thread
396 satellites in orbit is commendable. It took decades for humans to put the first 396 satellites in orbit. Now we (mostly SpaceX) do thousands per year.

On the other hand, Amazon’s FCC license required them to have 1616 satellites operating by July 30th, or risk losing their spectrum. Amazon has been granted an extension because…reasons. Some of the stated reasons may be genuine, like ensuring consumers (including the US gov’t or military) have a competitor to Starlink, or having a US company secure a spot in a global land rush.

But there are probably unspoken reasons, too, having to do with Bezos’ extraordinary wealth and Silicon Valley’s cozy relationship to the White House. I expect that if some scrappy startup were in a similar situation, their spectrum would have been revoked, so that a bigger player could snatch it up. We all need to adjust to the fact that, since Trump v Slaughter, the FCC is no longer an independent commission - every member has their job at the pleasure of the President, who can fire them at will if he doesn’t get the outcome he wants.

Re:almost right

By OrangeTide • Score: 4, Informative Thread

In your defense, Amazon Leo is a stupid name for it. They originally called it Project Kuiper but that was always place holder until the marketing team could think of a better name. A room full of MBAs never fails to disappoint.

Re:Really no money?

By stabiesoft • Score: 4, Informative Thread
There is an old advice line from the dot com bubble. The market may remain irrational longer than you may remain liquid. Sage advice.

Sitting For More Than 30 Minutes At a Time Linked To Higher Risk of Cancer Death

Posted by BeauHD View on SlashDot Skip
An anonymous reader quotes a report from The Guardian:
Researchers who tracked more than 90,000 people over a decade found that sitting or lying down while awake for more than 30 minutes in one period each day was associated with an increased risk of cancer death. The risk increases for every additional hour of continuous inactivity, the findings suggest. However, the researchers also found breaking up periods of sedentary behavior longer than 30 minutes with bursts of physical activity could help reduce the risk. Getting up every half-hour, even for a short walk around the office, could do wonders for your health, they said.

[…] The findings, published in Plos Medicine, focused on the health effects of prolonged sedentary behavior on a daily basis. […] The team analyzed data from wearable devices worn by more than 91,000 UK Biobank participants, who were followed for an average of 12 years. The findings suggest prolonged inactivity lasting more than 30 minutes was associated with cancer risks. Each additional hour of prolonged inactivity every day was associated with a 10% increase in risk of cancer death. However, replacing long spells of inactivity with movement appeared to reduce that risk. Substituting one hour of sedentary behavior each day with light physical activity, such as ironing or washing up, was associated with a 12% lower risk of cancer death.

Replacing 30 minutes of inactivity each day with 30 minutes of moderate physical activity, such as walking at an average pace, was associated with an 8% lower risk. The risk was 22% lower when five minutes of inactivity was replaced with five minutes of vigorous physical activity each day, the study suggested. There were limitations to the research, including the fact that the researchers performed a statistical analysis of an observational study, so could not prove causation.

wait, what?

By usedtobestine • Score: 5, Interesting Thread

What control group did they use, and where did they find people to study that don’t sleep at night?

Standing Desks

By dontbemad • Score: 5, Insightful Thread
Everytime I see the subject of standing desks brought up here (among other places), I see droves of commenters come out of the woodwork to announce that “standing is actually worse for you than sitting”. Well, this is exactly why I bought a standing desk; not so that I can stand for 8 hours instead of sit, but so that I can switch between the two frequently. Add to that a cheap under-desk walking pad, and I can get a surprising amount of movement while hard at work.

That being said, I am still very lucky to work at home and take many small trips to the kitchen to make a cup of coffee, to the garden to water plants, and more. Should I be forced back into an office (not unlikely), a standing desk would be the first thing I’d acquire.

I guess I’m already dead?

By Baron_Yam • Score: 5, Insightful Thread

When I was young, I thought older people who shrugged these kinds of things off with “when it’s my time, it’s my time” were irrational. I’m past the half-way mark now and I get it.

I am not going to spend my life on min/maxing my health, because no matter what I do, I’m going to die. If I exercise, first I’m spending my time on something I dislike, second I will likely end up with joint issues and instead of cancer I’ll just be in chronic pain.

There are limits, and I’m sure I’m making these choices at least half-blind to the odds, but I’m making the choices regardless. I eat decently but not a health-optimized diet, I make sure I move around enough that I don’t lock up, and I make sure I don’t get too fat to be active when I choose to be active, but I enjoy life more with my brain than my body.

If that means I lose one of the 80-90 years I’m likely to allocated given my current health, I’m absolutely at peace with that outcome. Unless science can tell me that changing my habits will give me decades more life, it’s just not worth it to me to change my lifestyle over a significant but ultimately small shortening of my potential lifespan.

Tip: drink lots of water

By Tablizer • Score: 5, Interesting Thread

It’s good for your system and forces you to move every 90 minutes or so. Just not before long meetings.

Re:wait, what?

By backslashdot • Score: 5, Funny Thread

Nice trick, I spent 31 minutes looking for the control group.

Labor Force Participation Rate Falls To Lowest In 50 years

Posted by BeauHD View on SlashDot Skip
The US unemployment rate fell to 4.2% in June largely because 720,000 people left the labor force, pushing participation to 61.5%. Excluding the Covid-era jobs market, that’s the lowest participation rate since June 1976. CNBC reports:
The decline in the labor force marks a “massive exodus” driven by multiple factors, said Mike Reid, head of U.S. economics at RBC. “The unemployment rate fell to 4.2% as both the number of unemployed workers and the size of the labor force pulled back,” Reid wrote in a post-report commentary. “This may well be a story of retirements but could also be a story of prior job seekers dropping out of the labor force.”

[…] [T]he rolls of those counted as not in the labor force, a group that includes the unemployed and those not looking for work, jumped by 832,000. And while the establishment survey, which counts jobs filled, showed growth for the month of 57,000, the survey of households, which counts the actual level of those working, tumbled by 507,000. On a year-over-year basis, the labor force is down by just over 1 million, while the level of the employed also has fallen by 1.06 million and the ranks of the unemployed have risen by 40,000. The employment-to-population ratio slipped to 59% in June, the lowest since October 2021. All that has happened while the unemployment rate has risen by just one-tenth of a percentage point to 4.2%.

The drop in participation is sometimes attributed to a shrinking immigrant population and retiring baby boomers and Gen Xers. However, in June the biggest plunge came from what is defined as “prime age” workers, or those between the ages of 25 and 54. That rate fell 0.6 percentage point to 83.3%, its lowest since December 2023. “Looking at the statistics now, that argument doesn’t hold up so well,” North said of the retirement and immigration rationale. “I hate to use the word ‘alarming,’" he added, but said the numbers are cause for concern.

Re:Probably people entirely disillusioned

By Local ID10T • Score: 5, Insightful Thread

It is global. We saw these trends reported in China as the “Lie Flat” and “Let it Rot” movements. In Japan as “Satori Generation” or even “Hikikomori”.

Hell in a handbasket… all of us.

Re:Functional unemployment is 20%

By Anonymous Coward • Score: 5, Interesting Thread

President Harry S. Truman proposed universal health insurance in 1945, where workers would pay a fee or tax and the government would then pay the doctor or hospital of the patient’s choice

The AMA claimed this was “socialism” because the federal government controlled the money. They hired the public relations firm Whitaker and Baxter to launch one of the largest political advertising campaigns in U.S. history up to that point.

We have to recognize the propaganda war that we grew up in, and the results of which we live with today in order to stop this madness

Re:Probably people entirely disillusioned

By sg_oneill • Score: 5, Insightful Thread

Good for the MAGA morons, because they can claim “unemployment is down”.

Not necessarily. While that is absolutely what the administration will do, and is doing, for a lot of the “angry boomer” set, they will be feeling this on the ground and in their community, and it can lead to one of the cardinal rules of politicking being violated;- “Dont tell the punters that the thing they are experience isnt what they are experiencing”. When politicans say “The economy is great, look at this GDP!” but people are feeling like everything is more expensive, their kids cant find jobs, their own job is becoming more insecure, and the rent or mortgage payments keeps going up, then people just get angry and feel like they are being lied to and betrayed, and its that sense of being lied to and betrayed that lead to so many people going “Well this trump guys kind of an asshole, but at least he’s honest”.

Now, you and I know that “Honest” is literally the opposite of what trump is, but when Trump was out there campaigning that washington technocrats where letting people down, well he wasnt wrong. The institutional Dems and Republicans where very happy to stick with a status quo that had been getting worse and worse for average people ever since the sub prime mortgage crisis. Obama promised hope and change, but other than a marginally better health care system, not much changed. Biden seemed content to just try and fix some, but not all, of Trumps damage from his first term. People where angry, because the technocrats where telling them that “Everythings fine, America is America-ing, everything in its place” , meanwhile jobs where still fleeing offshore, grandma cant afford her diabetes meds, and wages where pegged while inflation ran rampant. Trump promised to fix that. Trump DIDNT fix that, and in fact made it worse, but the promise not the reality is what got him in the door.

There are lessons for Trumps opponents here, but the biggest is, the people on the fence about MAGA and the people who where marginally MAGA *can* be reached, and when the Dems get back in power, they actually need to concretely resolve the anxieties that caused Trump to get in in the first place. Because if America was working, Trump would have been impossible.

Re:How hard is it to just create jobs ?

By sabbede • Score: 5, Interesting Thread
It actually prolonged the Depression by screwing up the labor market and making it impossible for small struggling businesses to find workers.

Re: People Underestimate COVID damage

By sherrysj • Score: 5, Informative Thread
Early waves of Covid, before the vaccines, caused blood clots throughout the body. In radiology, we saw blood clots in the small vessels of the lungs & brain. Organ-Specific Impacts:

The shift away from high rates of severe, widespread microvascular clotting occurred primarily between late 2021 and early 2022, driven by the sequential arrivals of the Delta and Omicron variants alongside widespread population immunity. While early-wave infections frequently presented as a devastating systemic clotting disorder, a multi-phase transition drastically reduced both the incidence and scale of thrombotic complications. [1], [2], [3], [4] Phase 1: Mid-2021 (The Delta Wave & Early Vaccination) By the time the Delta variant became dominant in the summer of 2021, mass vaccination campaigns had significantly altered clinical presentation. [3], [5]

Phase 2: Early 2022 (The Omicron Shift) The true evolutionary tipping point for how the virus interacted with human blood vessels arrived with the Omicron variant in late 2021 and early 2022. [4]

The Baseline Today While the acute risk of widespread microvascular collapse has fundamentally stabilized, the virus has not completely lost its thrombogenic edge. Large database reviews, including studies tracked by the CDC, confirm that patients diagnosed with COVID-19 still experience a roughly 73% increased risk of a thrombotic event in the year following their illness when compared to patients infected with other acute respiratory infections like influenza. The difference today is that the risk is an incremental, post-acute vascular vulnerability rather than the catastrophic, acute microvascular clotting that defined the pre-vaccine era. [7], [8] References:

  1. PMC10123679 (Early Wave Autopsy/Imaging Data)
  2. ASH Clinical News (New Strains & VTE Risk)
  3. PMC9188439 (Delta & Vaccination Clinical Cohorts)
  4. PMC12453200 (Omicron Radiological Audits)
  5. BBC News (UK Population Immunity & Variant Shifting)
  6. CIDRAP (Vaccine VTE Risk Reduction Study)
  7. Open Forum Infectious Diseases (Post-Acute Vascular Vulnerability)
  8. CDC Emerging Infectious Diseases (COVID-19 vs Influenza Thrombotic Risk)

AI Agent Executes ‘First’ End-To-End Ransomware Attack

Posted by BeauHD View on SlashDot Skip
Sysdig says it has documented the first ransomware attack carried out end to end by an AI agent, which autonomously exploited exposed systems, stole credentials, established persistence, compromised a production database, and destroyed data. The research team named the attacker “JadePuffer” and said it gained initial access to an internet-facing Langflow instance by exploiting CVE-2025-3248. “The most striking characteristic, however, was the LLM’s behavior,” Sysdig director of threat research Michael Clark said in a blog post. An anonymous reader quotes an excerpt from The Register:
JadePuffer’s “self-narrating” payloads “contained natural language reasoning, target prioritization, and the kind of detailed annotations that human operators don’t often write but LLM-generated code produces reflexively,” Clark added. “The operation also adapted in real time, retrying failed steps within refined parameters. In one sequence, it went from a failed login to a working fix in 31 seconds.” After exploiting CVE-2025-3248, a missing authentication vulnerability in Langflow that allows remote, unauthenticated attackers to execute arbitrary Python on the host, the AI agent began scanning for and collecting secrets, including LLM provider API keys, cloud credentials “with explicit coverage of Chinese providers” including Alibaba, Aliyun, Tencent, and Huawei, while also scanning for AWS, Azure and Google Cloud Platform, cryptocurrency wallets, and database credentials.

The AI also installed a crontab entry on the Langflow server to maintain persistence and call back to the attacker’s infrastructure every 30 minutes. JadePuffer’s intended target was a separate internet-exposed production server running a MySQL database and an Alibaba Nacos configuration service, we’re told. Nacos is an open-source service-discovery and dynamic configuration platform developed by Alibaba and used in the cloud provider’s microservices applications. The agent connected to the server’s exposed MySQL port using root credentials, although Sysdig doesn’t know how the attacker obtained them. These credentials weren’t stolen from the victim’s environment.

JadePuffer then attacked Nacos via multiple vectors including an authorization bypass flaw (CVE-2021-29441) and forging a valid JSON web token (JWT) using Nacos’s default signing key. Additionally, using its root database access, the LLM injected a backdoor administrator into the Nacos backing database. It ultimately encrypted all 1,342 Nacos service configuration items using MySQL’s built-in AES encryption function, and created an extortion demand, ransom note, Bitcoin payment address, and a Proton Mail contact […]. However, according to the threat hunters, the victim can’t recover the encrypted data, even if they paid the ransom demand, because the agent escalated “from row-level deletion to dropping entire database schemas, narrating its own targeting rationale,” without backing up any of the encrypted data.

Re:So did it fail in the last stage?

By wed128 • Score: 5, Insightful Thread
You’re not giving them money because they can decrypt your data. You’re giving them money because they *say* they can decrypt your data. By the time you find out your data’s gone, so is your money.

Finally a good use for this tech!

By gweihir • Score: 3 Thread

Or rather something it is good enough to actually do. Keep in mind that attacks, extortion, etc. all to not need reliability, they just need volume. If a rather large part of those attacked are left hanging, that is totally fine.

Re:Whose agent

By gweihir • Score: 4, Informative Thread

While I appreciate the sentiment, if that would work, we would not have a global silent ransomware catastrophe on our hands …

Re: Whose agent

By gweihir • Score: 4, Interesting Thread

Stop projecting. Well, maybe you are really this disconnected from actual reality. MAGA? Religious fuckup? Or even only run-of-the-mill self-important moron?

For some actual examples, there have been some spectacular IT attacks on US national security. Did they ever find the ones who did it (beyond mindless political cries of “China!” or “North Korea!”)? No, they did not beyond a very small number of cases. And why did they not? Because it is actually exceptionally hard to do. So hard that even the NSA struggles and often fails.

Backups

By Canberra1 • Score: 3 Thread
Always have multiple levels of backups. Always have a working recovery plan. Know that you can recover when you are ‘out’. Yet gazillions of chimp companies with patsy IT security chiefs (Thinking of Get Smart logic) are there just to absorb the blame. One day AI will mine the darkweb and find the weakest links, and really go to town. Today I read the latest AI engines have malicious payloads to discover the user doing the query. Automated blackmail and smear campaigns coming soon.

Godot Game Engine No Longer Accepts AI Code

Posted by BeauHD View on SlashDot Skip
The Godot Foundation will stop accepting AI-authored code, agent-submitted pull requests, and AI-generated text in contributor communications after maintainers were overwhelmed by low-effort submissions. “It is time for us to recognize that these problems aren’t going away and therefore we need to take steps to reduce the burden on maintainers while ensuring we still have a pipeline to mentor new contributors to become future maintainers,” the Godot Foundation said in a blog post. Contributors may still use AI for limited “menial things” if they disclose it, but humans must understand, own, and be able to fix the code they submit. PC Gamer reports:
The Foundation says the pileup of Godot pull requests pending review isn’t all bad: It’s a sign that interest in using and contribution to Godot is increasing. But the influx of contributions authored or submitted by AI is sapping the projects’ maintainers of their willingness to confront the “already tedious” work of reviewing pull requests. “If your feedback on PRs is just being absorbed by a machine and not going towards mentoring a potential future maintainer, it becomes much harder to justify spending your free time on PR review,” the Foundation said.

As the problem becomes increasingly unsustainable, the Godot Foundation says it’s in the process of updating its contribution policies, focusing on “adding barriers to low-effort slop” contributions, encouraging maintainers to review code, developing new contributors into future maintainers, and crucially, requiring that all contributions come from humans who are accountable for their code — and fixing it if it fails. “AI cannot take responsibility, and we can’t trust heavy users of AI to understand their code enough to fix it,” the Foundation said.

The Foundation says we can expect Godot’s contributing policy to soon include explicit rejections of AI-authored code, noting that contributors should only use AI assistance for “menial things” and must disclose its use. Additionally, the Foundation will reject any AI-generated text in human-to-human communications, saying it’s “a basic principle of respect” — though it says machine translations “are still acceptable” if the original text was human-authored. “Things change every day with respect to the current suite of AI tools available,” the Foundation said. “We will continue taking a conservative approach in our policies towards them, but we will re-evaluate as things evolve.”

Spot on…

By Junta • Score: 5, Interesting Thread

reject any AI-generated text in human-to-human communications, saying it’s “a basic principle of respect”

I cannot agree more with this sentiment. It feels outright insulting to asked to read LLM output in a context where it is *supposed* to be human feedback. Tell me what you would have told the LLM to say, I can take it from there. I don’t need you to LLM it up, because it will bury your point in a bunch of crap.

Could it provide useful info? Maybe, but I can do that myself if so. I want *your* thought on something, however incomplete it might be.

Re:Oh my, are we waiting?

By Himmy32 • Score: 4, Informative Thread

Yes:

The name “Godot” was chosen in reference to Samuel Beckett’s play Waiting for Godot, as it represents the never-ending wish of adding new features in the engine, which would get it closer to an exhaustive product, even though it never would.

Re:Spot on…

By Eric Sharkey • Score: 4, Insightful Thread

Software development is changing. I started coding in BASIC in the 1980’s and have been coding now for over 40 years, over 30 years professionally. I’m good at what I do, but the AI is faster. Claude can churn out code faster than I can, and it’s often better, catching some conditions I would have missed. That said, it often messes up, misses the mark, or goes in directions that aren’t right for the larger context in which the code exists.

Today, professional software development is best done by AI with skilled human guidance and review.

Rejecting AI generated code in today’s environment is trying to turn back time. On the other hand, rejecting a submission where there is no human who can “understand, own, and be able to fix the code they submit” makes perfect sense. There is a big difference between asking an AI to generate a fix and blindly submitting the first thing it spits out, versus having an extended session with an AI, correcting it where it goes wrong, vetting and testing the patch with human review and testing, then submitting the PR.

You kind of have to

By rsilvergun • Score: 4, Interesting Thread
AI slap generators create code with dubious copyright protections. Open source software relies entirely on copyright to enforce its license agreements so once you start polluting your code it’s all downhill from there…

Re:Spot on…

By evanh • Score: 4, Interesting Thread

AI is the asbestos we are building into the walls of modern software. It’s going to be a royal mess to clean up eventually.

Meta Is Charging a Subscription for Smart Glasses Features

Posted by BeauHD View on SlashDot
Meta is introducing a subscription for expanded access to advanced smart-glasses features. According to Wired, "[U]sers will need the Meta One Premium Plan to unlock expanded access to some features for their smart glasses, whether it’s the Ray-Ban, Oakley, or Meta-branded version.” They’ll still be usable with a subscription, but “certain features will be limited,” the report says. From the report:
Specifically, a feature called Conversation Focus, which boosts the audio of the person you’re speaking with so you can hear them better in loud environments. You’ll get three hours per month without a subscription, but if you want to use it more often, then you’ll need to pay up. Though even then, you’re still capped at 15 hours. Subscribing also nets you “Premium Device Support,” where you’ll get faster access to what Meta says are “human experts” trained on the smart glasses’ features, should any problems arise. Guess humans are better at some things after all.

A Meta spokesperson tells WIRED that this is “not an AI rate limit.” Rate limits are common on other AI platforms — users get free access to a feature until they hit a certain cap, then they’ll need to subscribe to use it more until the limit resets at the end of the month. However, the Conversation Focus feature runs on-device, meaning it doesn’t need to head to Meta’s servers for AI processing. There’s no real-time way to monitor how many hours you’ve used Conversation Focus, but you’ll receive a notification when you get near the limit.

“The subscription supports that ongoing work and gives power users expanded access along with premium device support,” the spokesperson says. “We’re going to start testing new optional subscription plans that offer more premium features and advanced capabilities for those who want to unlock more from our apps and AI glasses.”

Classic enshitification

By Morpeth • Score: 5, Informative Thread

This seems to be the de facto way companies are operating now, my only hope if enough people just say no thanks (or f*ck off ! more appropriately) that they will back off, but I’m not optimistic. Doctorow’s book actually does a really nice job using case studies to outline how the path the enshitification process happens, Facebook / Meta is pretty much the poster child for it.

Anything with software now, be it a dishwasher, a car, a watch, these asshole companies are either using your data for their benefit, or charging you to access features that should simply be included (or in some case are actually already there but turned off unless you fork over $x per month).

Reverse Gargoyle

By Misagon • Score: 4, Interesting Thread

In Neal Stephenson’s novel Snow Crash — which introduced the word Metaverse from which Meta got its name — the people wearing connected, cameras, sensors and AR-goggles on their heads were the ones who got paid for spying on people left and right.

Want your GF to look hotter?

By awwshit • Score: 3 Thread

We have options.
Shallow Hal package $250/month (your GF looks HOT)
Full Creep package $1000/month (Undress everyone)

I never wanted them before this

By MpVpRb • Score: 5, Insightful Thread

and now I want them even less
Just say no to subscriptions

Re:Classic enshitification

By SoftwareArtist • Score: 4, Interesting Thread

This seems like a perfect example of what RMS calls treacherous computing. There is absolutely no reason for the device to turn off a feature after three hours, except that the manufacturer has programmed it to. You buy a device, but you don’t control it. It doesn’t do what you want or what’s best for you. It does what’s best for someone else, even though it’s actively harmful to you, the owner of the device.

Treacherous indeed.