Japan To Foster Startups By Sending 1,000 People To Silicon Valley

Industry minister Koichi Hagiuda said in the United States Wednesday that Japan plans to encourage startup businesses by sending 1,000 people to Silicon Valley over five years to provide them with valuable entrepreneurial experience in the California tech hub. Japan Today reports: The government aims to draw up a five-year plan by year-end to target a 10-fold increase in the number of startup companies as part of its push to drive economic growth through innovation and the cultivation of human talent. Hagiuda told reporters after his visit to the headquarters of technology giant Google LLC that he was very impressed by the mentality there in which there is no fear of failure, and that it is something Japan can learn. “Struck out swinging is considered (an experience) that can lead (people) to the next stage, here in America,” Hagiuda said.

The plan envisions sending 200 people from Japan to Silicon Valley annually starting in the new fiscal year that starts in April. It will expand a similar yet smaller program under which around 20 people have been sent there annually over the past seven years.Devoting more resources to startups is one of four pillars in the strategy Prime Minister Fumio Kishida has set out in pursuit of a new form of capitalism that focuses on growth through investment.

Read more of this story at Slashdot.

Xbox ‘Encouraged’ Console Wars To Drive Competition, Former Exec Says

Former Xbox executive Peter Moore has said his team “encouraged the console wars” during his Xbox 360-era tenure — as a way to drive competition between Microsoft and Sony. Eurogamer reports: This competition has helped the industry, Moore continued, and saw Microsoft continuing to commit to video games despite the Xbox 360’s costly “Red Ring of Death” debacle. “We encouraged the console wars, not to create division, but to challenge each other,” Moore said, speaking on the Front Office Sports podcast (thanks, IGN). “And when I say each other I mean Microsoft and Sony. “If Microsoft hadn’t of stuck the course after the Xbox, after the Red Rings of Death, gaming would be a poorer place for it, you wouldn’t have the competition you have today.”

Moore helped launch the Xbox 360, following years of service during the Dreamcast era at Sega. Memorably, he announced Halo 2’s release date via a tattoo – though sources disagree on whether the stunt was faked. “If we didn’t resolve Red Rings of Death the way that we did I know darn well there’d be no Xbox today,” Moore continued, referencing the infamous circle of error lights which showed on failed Xbox 360 hardware. Estimates differ, though millions of consoles were believed to have been affected.

Read more of this story at Slashdot.

Study Finds Wikipedia Influences Judicial Behavior

A new study attempts to measure how knowledge gleaned from Wikipedia may play out in one specific realm: the courts. MIT News reports: A team of researchers led by Neil Thompson, a research scientist at MIT’s Computer Science and Artificial Intelligence Laboratory (CSAIL), recently came up with a friendly experiment: creating new legal Wikipedia articles to examine how they affect the legal decisions of judges. They set off by developing over 150 new Wikipedia articles on Irish Supreme Court decisions, written by law students. Half of these were randomly chosen to be uploaded online, where they could be used by judges, clerks, lawyers, and so on — the “treatment” group. The other half were kept offline, and this second group of cases provided the counterfactual basis of what would happen to a case absent a Wikipedia article about it (the “control”). They then looked at two measures: whether the cases were more likely to be cited as precedents by subsequent judicial decisions, and whether the argumentation in court judgments echoed the linguistic content of the new Wikipedia pages.

It turned out the published articles tipped the scales: Getting a public Wikipedia article increased a case’s citations by more than 20 percent. The increase was statistically significant, and the effect was particularly strong for cases that supported the argument the citing judge was making in their decision (but not the converse). Unsurprisingly, the increase was bigger for citations by lower courts — the High Court — and mostly absent for citations by appellate courts — the Supreme Court and Court of Appeal. The researchers suspect this is showing that Wikipedia is used more by judges or clerks who have a heavier workload, for whom the convenience of Wikipedia offers a greater attraction.
“To our knowledge, this is the first randomized field experiment that investigates the influence of legal sources on judicial behavior. And because randomized experiments are the gold standard for this type of research, we know the effect we are seeing is causation, not just correlation,” says Thompson, the lead author of the study. “The fact that we wrote up all these cases, but the only ones that ended up on Wikipedia were those that won the proverbial ‘coin flip,’ allows us to show that Wikipedia is influencing both what judges cite and how they write up their decisions.”

“Our results also highlight an important public policy issue,” Thompson adds. “With a source that is as widely used as Wikipedia, we want to make sure we are building institutions to ensure that the information is of the highest quality. The finding that judges or their staffs are using Wikipedia is a much bigger worry if the information they find there isn’t reliable.”

The paper describing the study has been published in ” The Cambridge Handbook of Experimental Jurisprudence.”

Read more of this story at Slashdot.

0-Days Sold By Austrian Firm Used To Hack Windows Users, Microsoft Says

Longtime Slashdot reader HnT shares a report from Ars Technica: Microsoft said on Wednesday that an Austria-based company named DSIRF used multiple Windows and Adobe Reader zero-days to hack organizations located in Europe and Central America. Members of the Microsoft Threat Intelligence Center, or MSTIC, said they have found Subzero malware infections spread through a variety of methods, including the exploitation of what at the time were Windows and Adobe Reader zero-days, meaning the attackers knew of the vulnerabilities before Microsoft and Adobe did. Targets of the attacks observed to date include law firms, banks, and strategic consultancies in countries such as Austria, the UK, and Panama, although those aren’t necessarily the countries in which the DSIRF customers who paid for the attack resided.

“MSTIC has found multiple links between DSIRF and the exploits and malware used in these attacks,” Microsoft researchers wrote. “These include command-and-control infrastructure used by the malware directly linking to DSIRF, a DSIRF-associated GitHub account being used in one attack, a code signing certificate issued to DSIRF being used to sign an exploit, and other open source news reports attributing Subzero to DSIRF.”

Referring to DSIRF using the work KNOTWEED, Microsoft researchers wrote: In May 2022, MSTIC found an Adobe Reader remote code execution (RCE) and a 0-day Windows privilege escalation exploit chain being used in an attack that led to the deployment of Subzero. The exploits were packaged into a PDF document that was sent to the victim via email. Microsoft was not able to acquire the PDF or Adobe Reader RCE portion of the exploit chain, but the victim’s Adobe Reader version was released in January 2022, meaning that the exploit used was either a 1-day exploit developed between January and May, or a 0-day exploit. Based on KNOTWEED’s extensive use of other 0-days, we assess with medium confidence that the Adobe Reader RCE is a 0-day exploit. The Windows exploit was analyzed by MSRC, found to be a 0-day exploit, and then patched in July 2022 as CVE-2022-22047. Interestingly, there were indications in the Windows exploit code that it was also designed to be used from Chromium-based browsers, although we’ve seen no evidence of browser-based attacks.

The CVE-2022-22047 vulnerability is related to an issue with activation context caching in the Client Server Run-Time Subsystem (CSRSS) on Windows. At a high level, the vulnerability could enable an attacker to provide a crafted assembly manifest, which would create a malicious activation context in the activation context cache, for an arbitrary process. This cached context is used the next time the process spawned.

CVE-2022-22047 was used in KNOTWEED related attacks for privilege escalation. The vulnerability also provided the ability to escape sandboxes (with some caveats, as discussed below) and achieve system-level code execution. The exploit chain starts with writing a malicious DLL to disk from the sandboxed Adobe Reader renderer process. The CVE-2022-22047 exploit was then used to target a system process by providing an application manifest with an undocumented attribute that specified the path of the malicious DLL. Then, when the system process next spawned, the attribute in the malicious activation context was used, the malicious DLL was loaded from the given path, and system-level code execution was achieved. Microsoft recommends a number of security considerations to help mitigate this attack, including patching CVE-2022-22047, updating Microsoft Defender Antivirus to update 1.371.503.0 or later, and enabling multifactor authentication (MFA).

Read more of this story at Slashdot.

A Biodegradable Paper Battery Might Reduce E-Waste

“Swiss researchers have developed a prototype disposable graphite-anode zinc-air battery that can be printed on a paper substrate, which they hope will reduce e-waste by replacing button cells in disposable paper-mounted electronics,” writes Slashdot reader drinkypoo. “They demonstrated using it to operate a LCD digital clock.” Here’s an excerpt from the research published today in Scientific Report: The battery is based on a metal-air electrochemical cell that uses Zinc as a biodegradable metal in the anode, graphite in the cathode, paper as a separator between the electrodes, and a water-based electrolyte. In addition to paper’s inherent biodegradability, sustainability and low cost, this design takes advantage of its natural wicking behavior and hygroscopic nature; The battery remains inactive until it contacts with water which then passively absorbs and transports across the paper membrane, thus activating the battery. The anode and cathode materials developed in this work are compatible with additive manufacturing techniques and we demonstrate that the battery can be stencil printed in a wide range of shapes and sizes. “The current collector is composed of graphite flakes, carbon black, shellac and ethanol,” adds drinkypoo.

Read more of this story at Slashdot.

Scientists Use Dead Spider As Gripper For Robot Arm, Label It a ‘Necrobot’

New submitter know-nothing cunt shares a report from The Register: Scientists from Rice University in Texas have used a dead spider as an actuator at the end of a robot arm — a feat they claim has initiated the field of “necrobotics.” “Humans have relied on biotic materials — non-living materials derived from living organisms — since their early ancestors wore animal hides as clothing and used bones for tools,” the authors state in an article titled Necrobotics: Biotic Materials as Ready-to-Use Actuators. The article, published by Advanced Science, also notes that evolution has perfected many designs that could be useful in robots, and that spiders have proven especially interesting. Spiders’ legs “do not have antagonistic muscle pairs; instead, they have only flexor muscles that contract their legs inwards, and hemolymph (i.e., blood) pressure generated in the prosoma (the part of the body connected to the legs) extends their legs outwards.”

The authors had a hunch that if they could generate and control a force equivalent to blood pressure, they could make a dead spider’s legs move in and out, allowing them to grip objects and release them again. So they killed a wolf spider “through exposure to freezing temperature (approximately -4C) for a period of 5-7 days” and then used a syringe to inject the spider’s prosoma with glue. By leaving the syringe in place and pumping in or withdrawing glue, the researchers were able to make the spider’s legs contract and grip. The article claims that’s a vastly easier way to make a gripper than with conventional robotic techniques that require all sorts of tedious fabrication and design efforts. “The necrobotic gripper is capable of grasping objects with irregular geometries and up to 130 percent of its own mass,” the article notes.

Read more of this story at Slashdot.

‘Stop Trying To Be TikTok’: User Backlash Over Instagram Changes

Instagram’s head defended the app against a user backlash, after the social network launched a series of changes intended to make it more like its arch-rival TikTok. The Guardian reports: The changes, which include an extremely algorithmic main feed, a push for the service’s TikTok-style “reels” videos, and heavy promotion of the TikTok-style “remix” feature, have resulted in users struggling to find content from friends and family, once the bread and butter of the social network. “We’re hearing a lot of concerns from all of you,” Adam Mosseri said in a video posted to Twitter. “I’m hearing a lot of concerns about photos, and how we’re shifting to video. We’re going to continue to support photos, but I need to be honest: more and more of Instagram is going to become video over time. We’re going to have to lean in to that shift while continuing to support photos.”

The Instagram boss also defended the platform’s new “recommendations” feature, which puts content from people users do not follow on to their feed. “The idea is to help you discover new and interesting things on Instagram that you might not even know exist,” he said. “You can snooze all recommendations for up to a month, but we’re going to try and get better at recommendations because we think it’s one of the best ways to help creators reach a new audience and grow their following. He added: “We’re going to need to evolve, because the world is changing quickly and we’re going to need to change with it.”

Instagram’s makeover is widely seen as a response to TikTok’s continued growth, in particular among younger American users. […] By boosting algorithmic recommendations, allowing users to “remix” posts (akin to TikTok’s “Duet” feature), and promoting full-screen vertical video above photos, Instagram is attempting to turn its main app experience into something similar to that of the Chinese-owned upstart. In a widely shared story, Kardashian clan member and social media star, Kylie Jenner, called on the service to “make Instagram Instagram again.” She added: “Stop trying to be TikTok, I just want to see cute photos of my friends.”

Read more of this story at Slashdot.

Google Is Adding Flyover-Like Aerial Views To Maps

Google is adding “photorealistic aerial views” to almost 100 landmarks in Google Maps, the company announced on Wednesday. The Verge reports: The views, which remind me of Apple Maps’ Flyover feature, give you an overhead look at landmarks in cities including Barcelona, London, New York, San Francisco, and Tokyo, according to Google. The aerial views are a “first step” toward launching the “immersive view” the company showed off at Google I/O, according to a blog post from Google Maps director of product Amanda Leicht Moore. Immersive view will also include indoor views and information like traffic and the weather layered on the map, Google spokesperson Genevieve Park tells The Verge. At I/O, Google said immersive view would begin rolling out in Los Angeles, London, New York City, San Francisco, and Tokyo “later this year.” Google Maps will also feature cycling routes, which will include additional information “like whether a specific road you’ll be instructed to travel on is a major or minor road, if your route includes stairs or steep hills, and whether you can expect to hit heavy traffic,” reports The Verge. Additionally, you’ll be able to get notifications if someone who is sharing their location with you leaves or arrives at their location.

Read more of this story at Slashdot.

Average Data Breach Costs Hit a Record $4.4 Million, Report Says

The average cost of a data breach rose to an all-time high of $4.4 million this year, according to the IBM Security report released Wednesday. That marked a 2.6% increase from a year ago and a 13% jump since 2020. CNET reports: More than half of the organizations surveyed acknowledged they had passed on those costs to their customers in the form of higher prices for their products and services, IBM said. The annual report is based on an analysis of data breaches experienced by 550 organizations around the world between March 2021 and March 2022. The research, which was sponsored and analyzed by IBM, was conducted by the Ponemon Institute.

The cost estimates are based on both immediate and longer-term expenses. While some costs like the payment of ransoms and those related to investigating and containing the breach tend to be accounted for right away, others such as regulatory fines and lost sales can show up years later. On average, those polled said they accrued just under half of the costs related to a given breach more than a year after it occurred.

Read more of this story at Slashdot.