Ubisoft To Shut Down Multiplayer For Older Games

A collection of over a dozen games from Ubisoft will see their online elements shut down on PC, PS3, and Xbox 360 in September, “which means players won’t be able to play their multiplayer components, access their online features, link Ubisoft accounts in-game, or install and access downloadable content,” reports The Verge. From the report: “Closing the online services for some older games allows us to focus our resources on delivering great experiences for players who are playing newer or more popular titles,” Ubisoft’s help page reads. With Assassin’s Creed Brotherhood having originally released in November 2010, it’s had almost 12 years of online support. But it’s always sad to see a piece of gaming history become inaccessible, especially given the game’s multiplayer element was missing from its remaster on the PS4, Xbox One, and Nintendo Switch.

Alongside Brotherhood, the online services associated with 2011’s Assassin’s Creed Revelations on PS3 and Xbox 360 are also being shut down, as well as 2012’s Assassin’s Creed 3 on PC, PS3, Xbox 360, and Wii U. […] Other games set to have their online services decommissioned across various platforms this September include Driver San Francisco, Far Cry 3’s 2012 release, Ghost Recon Future Soldier, Prince of Persia the Forgotten Sands, Rayman Legends, and Splinter Cell: Blacklist. You can view the full list of games here.

Read more of this story at Slashdot.

Xbox 360 games Will No Longer Be Part of Xbox Games With Gold In October

Microsoft is planning to remove Xbox 360 games from its monthly Games with Gold offer in October. The Verge reports: The software maker has started emailing Xbox Live Gold subscribers to warn them of the change, noting that the company has “reached the limit of our ability to bring Xbox 360 games to the catalogue.” Games with Gold is a monthly benefit for subscribers of Xbox Live Gold and Xbox Game Pass Ultimate. Microsoft hand picks free games each month, and all Xbox 360 titles are playable on the latest Xbox Series X / S consoles and Xbox One.

Microsoft’s Xbox backward compatibility program briefly returned with 76 new games last year, but the company made it clear it had “reached the limit of our ability to bring new games to the catalog from the past due to licensing, legal and technical constraints.” That would explain why it has now reached the limit on new Xbox 360 titles for Games with Gold. If you’ve already downloaded or redeemed Xbox 360 games through Games with Gold, this change won’t impact those titles. This just means starting October 1st, Microsoft won’t be adding any additional Xbox 360 titles to the Games with Gold offering.

Read more of this story at Slashdot.

Vim 9.0 Released

After many years of gradual improvement Vim now takes a big step with a major release. Besides many small additions the spotlight is on a new incarnation of the Vim script language: Vim9 script. Why Vim9 script:
A new script language, what is that needed for? Vim script has been growing over time, while preserving backwards compatibility. That means bad choices from the past often can’t be changed and compatibility with Vi restricts possible solutions. Execution is quite slow, each line is parsed every time it is executed.

The main goal of Vim9 script is to drastically improve performance. This is accomplished by compiling commands into instructions that can be efficiently executed. An increase in execution speed of 10 to 100 times can be expected. A secondary goal is to avoid Vim-specific constructs and get closer to commonly used programming languages, such as JavaScript, TypeScript and Java.

The performance improvements can only be achieved by not being 100% backwards compatible. For example, making function arguments available by creating an “a:” dictionary involves quite a lot of overhead. In a Vim9 function this dictionary is not available. Other differences are more subtle, such as how errors are handled. For those with a large collection of legacy scripts: Not to worry! They will keep working as before. There are no plans to drop support for legacy script. No drama like with the deprecation of Python 2.

Read more of this story at Slashdot.

SQLite or PostgreSQL? It’s Complicated!

Miguel Grinberg, a Principal Software Engineer for Technical Content at Twilio, writes in a blog post: We take blogging very seriously at Twilio. To help us understand what content works well and what doesn’t on our blog, we have a dashboard that combines the metadata that we maintain for each article such as author, team, product, publication date, etc., with traffic information from Google Analytics. Users can interactively request charts and tables while filtering and grouping the data in many different ways. I chose SQLite for the database that supports this dashboard, which in early 2021 when I built this system, seemed like a perfect choice for what I thought would be a small, niche application that my teammates and I can use to improve our blogging. But almost a year and a half later, this application tracks daily traffic for close to 8000 articles across the Twilio and SendGrid blogs, with about 6.5 million individual daily traffic records, and with a user base that grew to over 200 employees.

At some point I realized that some queries were taking a few seconds to produce results, so I started to wonder if a more robust database such as PostgreSQL would provide better performance. Having publicly professed my dislike of performance benchmarks, I resisted the urge to look up any comparisons online, and instead embarked on a series of experiments to accurately measure the performance of these two databases for the specific use cases of this application. What follows is a detailed account of my effort, the results of my testing (including a surprising twist!), and my analysis and final decision, which ended up being more involved than I expected. […] If you are going to take one thing away from this article, I hope it is that the only benchmarks that are valuable are those that run on your own platform, with your own stack, with your own data, and with your own software. And even then, you may need to add custom optimizations to get the best performance.

Read more of this story at Slashdot.

Former Top Apple Lawyer Pleads Guilty To Insider Trading

The former top corporate lawyer at Apple pleaded guilty to insider trading charges, for what prosecutors called a five-year scheme to trade ahead of the iPhone maker’s quarterly earnings announcements. Gene Levoff, 48, of San Carlos, California, pleaded guilty to six securities fraud charges at a hearing before U.S. District Judge William Martini in Newark, New Jersey. From a report: Levoff allegedly exploited his roles as corporate secretary, head of corporate law and co-chair of a committee that reviewed drafts of Apple’s results to generate $604,000 of illegal gains on more than $14 million of trades from 2011 to 2016. Prosecutors said Levoff ignored the quarterly “blackout periods” that barred trading before Apple’s results were released, as well as the company’s broader insider trading policy — which he was responsible for enforcing. “Gene Levoff betrayed the trust of one of the world’s largest tech companies for his own financial gain,” First Assistant U.S. Attorney Vikas Khanna in New Jersey said in a statement.

Read more of this story at Slashdot.

British Army’s Twitter and YouTube Accounts Compromised to Promote Crypto Scams

The British army is “investigating an apparent hack,” reports Engadget, after its official Twitter and YouTube accounts were compromised Sunday:

News of the breach was first reported by Web3 is Going Great . According to the blog, both accounts were simultaneously compromised to promote two different cryptocurrency scams.

Although it has since been scrubbed, the army’s verified Twitter account was briefly changed to look like a page for The Possessed, a project involving a collection of 10,000 animated NFTs with a price floor of 0.58 Ethereum (approximately $1,063). During that time, the account tweeted out multiple links to a fake minting website….

Over on YouTube, the army’s channel [had] been made to look like a page for Ark Invest…livestreaming videos that repurpose old footage of Elon Musk, Jack Dorsey and Ark CEO Katie Wood discussing cryptocurrency. The clips feature an overlay promoting “double your money” Bitcoin and Ethereum scams. According to Web3 is Going Great, a similar scheme netted scammers $1.3 million this past May. It’s unclear who is behind the attacks.

Read more of this story at Slashdot.

Berlin Builds a Giant Thermos to Help Heat Homes This Winter

The Associated Press reports on a massive new 150-foot (45-meter) tower going up in Berlin — just to hold 56 million liters (14.8 million gallons) of hot water that “will help heat Berlin homes this winter even if Russian gas supplies dry up…”

“[T]he new facility unveiled Thursday at Vattenfall’s Reuter power station will hold water brought to almost boiling temperature using electricity from solar and wind power plants across Germany. During periods when renewable energy exceeds demand the facility effectively acts as a giant battery, though instead of storing electricity it stores heat…”

“It’s a huge thermos that helps us to store the heat when we don’t need it,” said Tanja Wielgoss, who heads the Sweden-based company’s heat unit in Germany. “And then we can release it when we need to use it…. Sometimes you have an abundance of electricity in the grids that you cannot use anymore, and then you need to turn off the wind turbines,” said Wielgoss. “Where we are standing we can take in this electricity.”

The 50-million-euro ($52 million) facility will have a thermal capacity of 200 Megawatts — enough to meet much of Berlin’s hot water needs during the summer and about 10% of what it requires in the winter. The vast, insulated tank can keep water hot for up to 13 hours, helping bridge short periods when there’s little wind or sun….

Berlin’s top climate official, Bettina Jarasch, said the faster such heat storage systems are built, the better. “Due to its geographic location the Berlin region is even more dependent on Russian fossil fuels than other parts of Germany,” she told The Associated Press. “That’s why we’re really in a hurry here.”
“While it will be Europe’s biggest heat storage facility when it’s completed at the end of this year, an even bigger one is already being planned in the Netherlands.”

Read more of this story at Slashdot.

As TikTok Promises US Servers, FCC Commissioner Remains Critical of Data Privacy

On Tuesday Brendan Carr, a commissioner on America’s Federal Communications Commission,warned on Twitter that TikTok, owned by China-based company ByteDance, “doesn’t just see its users dance videos:
It collects search and browsing histories, keystroke patterns, biometric identifiers, draft messages and metadata, plus it has collected the text, images, and videos that are stored on a device’s clipboard. Tiktok’s pattern of misrepresentations coupled with its ownership by an entity beholden to the Chinese Community Party has resulted in U.S. military branches and national security agencies banning it from government devices…. The CCP has a track record longer than a CVS receipt of conducting business & industrial espionage as well as other actions contrary to U.S. national security, which is what makes it so troubling that personnel in Beijing are accessing this sensitive and personnel data.

Today CNN interviewed Carr, while also bringing viewers an update. TikTok’s China-based employees accessed data on U.S. TikTok users, BuzzFeed had reported — after which TikTok announced it intends to move backup data to servers in the U.S., allowing them to eventually delete U.S. data from their servers. But days later Republican Senator Blackburn was still arguing to Bloomberg that “Americans need to know if they are on TikTok, communist China has their information.”

And FCC commissioner Carr told CNN he remains suspicious too:
Carr: For years TikTok has been asked directly by U.S. lawmakers, ‘Is any information, any data, being accessed by personnel back in Beijing?’ And rather than being forthright and saying ‘Yes, and here’s the extent of it and here’s why we don’t think it’s a problem,’ they’ve repeatedly said ‘All U.S. user data is stored in the U.S.,” leaving people with the impression that there’s no access…. This recent bombshell reporting from BuzzFeed shows at least some of the extent to which massive amounts of data has allegedy been going back to Beijing.

And that’s a problem, and not just a national security problem. But to me it looks like a violation of the terms of the app store, and that’s why I wrote a letter to Google and Apple saying that they should remove TikTok and boot them out of the app store… I’ve left them until July 8th to give me a response, so we’ll see what they say. I look forward to hearing from them. But there’s precedence for this. Before when applications have taken data surreptitiously and put it in servers in China or otherwise been used for reasons other than servicing the application itself, they have booted them from the app store. And so I would hope that they would just apply the plain terms of their policy here.

When CNN points out the FCC doesn’t have jurisdiction over social media, Carr notes “speaking for myself as one member” they’ve developed “expertise in terms of understanding how the CCP can effectively take data and infiltrate U.S. communications’ networks. And he points out that the issue is also being raised by Congressional hearings and by Republican and Democrat Senators signing joint letters together, so “I’m just one piece of a broader federal effort that’s looking at the very serious risks that come from TikTok.”
Carr: At the end of the day, it functions as sophisticated surveillance tool that is harvesting vast amounts of data on U.S. users. And I think TikTok should answer point-blank, has any CCP member obtained non-public user data or viewed it. Not to answer with a dodge, and say they’ve never been asked for it or never received a request. Can they say no, no CCP member has ever seen non-public U.S. user data.
Carr’s appearance was followed by an appearance by TikTok’s VP and head of public policy for the Americas. But this afternoon Carr said on Twitter that TikTok’s response contradicted its own past statements:

Today, a TikTok exec said it was “simply false” for me to say that they collect faceprints, browsing history, & keystroke patterns.

Except, I was quoting directly from TikTok’s own disclosures.

TikTok’s concerning pattern of misrepresentations about U.S. user data continues.
toay

Read more of this story at Slashdot.

How Bug Bounty Platform HackerOne Handled Its Own ‘Internal Threat’ Actor

Bug bounty platform HackerOne has “a steadfast commitment to disclosing security incidents,” according to a new blog post, “because we believe that sharing security information far and wide is essential to building a safer internet.”

But now they’ve had an incident of their own:
On June 22nd, 2022, a customer asked us to investigate a suspicious vulnerability disclosure made outside of the HackerOne platform. The submitter of this off-platform disclosure reportedly used intimidating language in communication with our customer. Additionally, the submitter’s disclosure was similar to an existing disclosure previously submitted through HackerOne… Upon investigation by the HackerOne Security team, we discovered a then-employee had improperly accessed security reports for personal gain. The person anonymously disclosed this vulnerability information outside the HackerOne platform with the goal of claiming additional bounties.

This is a clear violation of our values, our culture, our policies, and our employment contracts. In under 24 hours, we worked quickly to contain the incident by identifying the then-employee and cutting off access to data. We have since terminated the employee, and further bolstered our defenses to avoid similar situations in the future. Subject to our review with counsel, we will also decide whether criminal referral of this matter is appropriate.

The blog post includes a detailed timeline of HackerOne’s investigation. (They remotely locked the laptop, later taking possession of it for analysis, along with reviewing all data accessed “during the entirety of their two and a half months of employment” and notification of seven customers “known or suspected to be in contact with threat actor.”)

“We are confident the insider access is now contained,” the post concludes — outlining how they’ll respond and the lessons learned. “We are happy that our previous investments in logging enabled an expedient investigation and response…. To ensure we can proactively detect and prevent future threats, we are adding additional employees dedicated to insider threats that will bolster detection, alerting, and response for business operations that require human access to disclosure data….”

“We are allocating additional engineering resources to invest further in internal models designed to identify anomalous access to disclosure data and trigger proactive investigative responses…. We are planning additional simulations designed to continuously evaluate and improve our ability to effectively resist insider threats.”

Read more of this story at Slashdot.

Amazon Bars Off-Duty Warehouse Workers from Its Buildings

The Associated Press spoke to an Amazon warehouse worker in North Carolina who wants to unionize. “On our days off, we come to work and we engage our co-workers in the break rooms,” he said.

But now the Associated Press reports “Amazon is barring off-duty warehouse workers from the company’s facilities, a move organizers say can hamper union drives.”
Under the policy shared with workers on Amazon’s internal app, employees are barred from accessing buildings or other working areas on their scheduled days off, and before or after their shifts. An Amazon spokesperson said the policy does not prohibit off-duty employees from engaging their co-workers in “non-working areas” outside the company’s buildings.

“There’s nothing more important than the safety of our employees and the physical security of our buildings,” Amazon spokesperson Kelly Nantel said….

The notice of the new policy, dated Thursday, says the off-duty rule “will not be enforced discriminatorily” against employees seeking to unionize. But organizers say the policy itself will hinder their efforts to garner support from co-workers during campaigns.
The article notes Amazon told employees their move was instead motivated partly by a need to, in an emergency situation, know exactly which employees were still in the building.

Read more of this story at Slashdot.