Boeing Now Also Ordered to Fix Anti-Ice System on 737 Max, 787 Jets

America’s Federal Aviation administration “will require a fix for a new 737 MAX design problem discovered by Boeing that, although it’s a remote possibility, could theoretically disable the jet’s engine anti-ice system,” reports the Seattle Times:

A different flaw in the MAX’s engine anti-ice system design drew scrutiny in January and forced the company to drop a request for an exemption from key safety regulations. And now, it’s not just the MAX with an engine anti-ice system problem. Airlines have reported a separate issue with a similar system on Boeing’s 787 Dreamliner that has caused what the FAA calls “relatively minor” damage to the engine inlets on some two dozen of these widebody jets in service.

Though the FAA considers neither problem to be an immediate risk to flight safety, in February it issued separate notices of two proposed airworthiness directives to require the fix for the engine anti-ice system on the MAX and to lay out inspection and repair procedures for that system on the 787, pending a redesign that provides a permanent fix… When there is an immediate safety risk, the FAA issues a more urgent emergency directive that must be acted upon before further flight. Jets are grounded until it’s dealt with. That’s not the case with these two proposed airworthiness directives. Indicating that the risk is considered slight, both of the proposed directives will be open for public comments until April. Only after that will action be mandated…

On the MAX, the proposed FAA directive states that Boeing identified a potential single point of failure when it reviewed the internal design of the unit that provides a backup power supply to aircraft systems if the primary electrical system fails. Such a failure could potentially result in the loss of the anti-ice systems on both engines, with no indication or warning that would alert the pilots, the FAA directive states… In November 2022, Boeing sent a service bulletin alerting airlines and describing the required fix, which the FAA will now mandate…

Unlike this MAX issue, the fault discovered on the 787 Dreamliner has resulted in actual damage to engines on passenger aircraft. The FAA airworthiness directive on the 787 states that “damage was found during overhaul on multiple inlets around the Engine Anti-Ice duct within the inlet aft compartment.” Rather than a production issue, it was a matter of the seals being insufficiently durable. Even when the plane was flying in dry air and the anti-ice system was not switched on, the seal degradation led to hot air leaking into the inlet compartment, “exposing inlet components to high temperatures,” the FAA states. Boeing said this resulted in “thermal damage and discoloration to a limited area of the surrounding composite and metallic structure inside the inlet….” The FAA’s proposed airworthiness directive warns that heat damage to the inlet structure could lead to “reduced structural strength and departure of the inlet from the airplane.”

“Departure of the inlet” is a bland way of describing the front of the pod around the engine fan detaching, potentially striking the jet’s wing, tail or fuselage. Such disintegration could result in “subsequent loss of continued safe flight and landing or injury to occupants,” the airworthiness directive states…

“A separate question is how this flaw with the 787 anti-ice duct seals and the single point of failure in the backup power supply on the MAX slipped through the FAA’s original certification of these aircraft.”

Business Insider also reports that Boeing “is holding off on a planned expansion of production for its 737 Max planes after an Alaska Airlines flight lost a chunk of the plane while airborne in January.”

Read more of this story at Slashdot.

Microsoft Begins Adding ‘Copilot’ Icon to Windows 11 Taskbars

Microsoft is “delighted to introduce some useful new features” for its “Copilot Preview for Windows 11,” according to a recent blog post.

TechRepublic adds that “most features will be enabled by default… rolling out from today until April 2024.”

Windows 11 users will be able to change system settings through prompts typed directly into Copilot in Windows, currently accessible in the Copilot Preview via an icon on the taskbar, or by pressing Windows + C. Microsoft Copilot will be able to perform the following actions:

– Turn on/off battery saver.
– Show device information.
– Show system information.
– Show battery information.
– Open storage page.
– Launch Live Captions.
– Launch Narrator.
– Launch Screen Magnifier.
– Open Voice Access page.
– Open Text size page.
– Open contrast themes page.
– Launch Voice input.
– Show available Wi-Fi network.
– Display IP Address.
– Show Available Storage.

The new third-party app integrations for Copilot will give Windows 11 users new ways to interact with various applications. For example, making business lunch reservations through OpenTable…
Other new AI features for Windows 11 rolling out today include a new, AI-powered Generative Erase tool, which sounds reminiscent of Google’s Magic Eraser tool for Google Photos. Generative Erase allows users to remove unwanted objects or artifacts from their photos in the Photos app.

Likewise, Microsoft’s video editing tool Clipchamp is receiving a Silence Removal tool, which functions much as the name implies  — it allows users to remove gaps in conversation or audio from a video clip.

Voice access is another focal point of Microsoft’s latest Windows 11 update, detailed in a separate blog post by Windows Commercial Product Marketing Manager Harjit Dhaliwal. Users can now use voice controls to navigate between multiple displays, aided by number and grid overlays that provide easy switching between screens.

A Copilot icon has already started appearing in the taskbar of some Windows systems. If you Google “microsoft installs copilot preview windows,” Google adds these helpful suggestions.

People also ask: Why is Copilot preview on my computer?

How do I get rid of Copilot preview on Windows 10?

“Apparently there was some sort of update…” writes one Windows users. “Anyway, there is a logo at the bottom of the screen that is distracting and I’d like to get rid of it.”

Lifehacker has already published an article titled “How to Hide (or Disable) Copilot in Windows 11.”

“Artificial intelligence is feeling harder and harder to avoid,” it begins, “but you still have options.”

Read more of this story at Slashdot.

Can NASA Return Mars Samples to Earth? New Audit Raises Doubts

Space.com writes that NASA’s plan to return samples from Mars to the earth “is facing major challenges, according to a new report.

“Design, cost and scheduling are all significant obstacles, an audit report of NASA’s Mars Sample Return (MSR) Program by the agency’s Office of Inspector General (OIG) finds…”

It involves landing on Mars to collect samples taken by the Perseverance rover and launching those samples to rendezvous with an orbiter, which will haul them to Earth. Perseverance is already on Mars, snagging and storing samples. But the program still needs to build a Sample Retrieval Lander and an Earth Return Orbiter, the latter being developed and funded by the European Space Agency. The Mars Sample Return program is one of the most technically complex, operationally demanding and ambitious robotic science missions ever undertaken by NASA, according to the OIG report.

The report notes design, architecture and schedule issues with the Capture Containment and Return System. These design issues resulted in adding about $200 million to the budget and one year of lost schedule… There is concern that, due to the number and significance of cost increase indicators so far, the $7.4 billion estimate is “premature and may be insufficient,” the report finds. Now, the complexity… could drive costs to between $8 billion to $11 billion, the OIG report notes, citing a September 2023 Independent Review Board report. Notably, a July 2020 estimate listed costs of $2.5 to $3 billion.

These new figures indicate significant financial challenges and uncertainties… Issues include inflation, supply chain problems and increases in funding requests for specific program components.

Read more of this story at Slashdot.

Meta Says It’s Deleting All Oculus Accounts At the End of the Month

Emma Roth reports via The Verge: If you still haven’t migrated your Oculus account to a Meta one, you might want to do that soon. In an email sent to users, the company says it will delete Oculus accounts on March 29th, 2024, preventing you from reactivating or retrieving your apps, in-app purchases, store credits, and more. You’ll lose your achievements, friends list, and any content created with your Oculus account if you don’t migrate to a Meta account before then.

Oculus accounts have been on the way out since 2020, when the company then known as Facebook started requiring new users to sign up with Facebook accounts instead. However, it added the ability to create a Meta account in 2022, offering an alternative to users who didn’t want to link their Facebook account to their Quest headset. Meta stopped letting users log in to their Oculus accounts in January 2023. If you’ve got a Quest gathering dust in a drawer somewhere, now’s your last chance to migrate your Oculus account to a Meta one.

You can migrate your account by heading to this page and signing up for a Meta account with the same email you’ve used for Oculus. From there, you’ll be able to access all of the same games, data, and other purchases saved to your Oculus account.

Read more of this story at Slashdot.

Yelp Says Remote-First Policy Boosted Job Apps By 43%, Led To a More Satisfied Workforce

Since implementing a remote-first policy in 2021, Yelp says it’s experienced a surge in job applications and a more satisfied workforce. Fortune reports: Last year, the total number of job applicants was 43% higher compared to 2021, according to Yelp’s 2024 Remote Work Report released earlier this month. The number of applicants for sales roles skyrocketed by 103%, and prospects for its general and administrative (G&A) positions shot up 52% over the same time period. Those increases fall in line with data that shows a tidal wave of applicants clamoring for remote jobs. “It’s rewarding to see both the level of interest and the quality of our applicants,” Carmen Amara, chief people officer at Yelp, told Fortune. “Remote work has allowed us to attract a number of candidates who previously would not have applied to Yelp due to their location.”

Despite arguments that remote work weakens workers’ connections and growth opportunities, Yelp says it has found the opposite to be true. About 90% of the company’s more than 4,700 employees say they have found effective ways to collaborate remotely, and 91% say they are confident in upward career mobility while working out of the office. Flexible schedules have also facilitated a healthy work-life balance — about 89% of the company’s workers say they can manage personal and professional demands, and the same amount say that the remote model has allowed them to make positive changes for their wellbeing.

Notably, Yelp’s global tenure has increased to 3.5 years in 2023, compared to 2.8 years the year prior. The company says it’s using the money it saved from shutting down its underutilized offices in New York City, Chicago, and Washington D.C., to funnel back into employee benefits, professional development, and wellness reimbursements.

Read more of this story at Slashdot.

California Approves Waymo Robotaxi Services In LA, SF Neighboring Cities

Court Orders Maker of Pegasus Spyware To Hand Over Code To WhatsApp

Stephanie Kirchgaessner reports via The Guardian: NSO Group, the maker of one the world’s most sophisticated cyber weapons, has been ordered by a US court to hand its code for Pegasus and other spyware products to WhatsApp as part of the company’s ongoing litigation. The decision by Judge Phyllis Hamilton is a major legal victory for WhatsApp, the Meta-owned communication app which has been embroiled in a lawsuit against NSO since 2019, when it alleged that the Israeli company’s spyware had been used against 1,400 WhatsApp users over a two-week period.

NSO’s Pegasus code, and code for other surveillance products it sells, is seen as a closely and highly sought state secret. NSO is closely regulated by the Israeli ministry of defense, which must review and approve the sale of all licences to foreign governments. In reaching her decision, Hamilton considered a plea by NSO to excuse it of all its discovery obligations in the case due to “various US and Israeli restrictions.”

Ultimately, however, she sided with WhatsApp in ordering the company to produce”all relevant spyware” for a period of one year before and after the two weeks in which WhatsApp users were allegedly attacked: from 29 April 2018 to 10 May 2020. NSO must also give WhatsApp information “concerning the full functionality of the relevant spyware.” Hamilton did, however, decide in NSO’s favor on a different matter: the company will not be forced at this time to divulge the names of its clients or information regarding its server architecture.

Read more of this story at Slashdot.

Calendar Meeting Links Used To Spread Mac Malware

Hackers targeting individuals in the cryptocurrency sector are using a sophisticated phishing scheme that begins with a malicious link on Calendly. “The attackers impersonate established cryptocurrency investors and ask to schedule a video conference call,” reports Krebs on Security. “But clicking the meeting link provided by the scammers prompts the user to run a script that quietly installs malware on macOS systems.” From the report: A search in Google for a string of text from that script turns up a December 2023 blog post from cryptocurrency security firm SlowMist about phishing attacks on Telegram from North Korean state-sponsored hackers. “When the project team clicks the link, they encounter a region access restriction,” SlowMist wrote. “At this point, the North Korean hackers coax the team into downloading and running a ‘location-modifying’ malicious script. Once the project team complies, their computer comes under the control of the hackers, leading to the theft of funds.”

SlowMist says the North Korean phishing scams used the “Add Custom Link” feature of the Calendly meeting scheduling system on event pages to insert malicious links and initiate phishing attacks. “Since Calendly integrates well with the daily work routines of most project teams, these malicious links do not easily raise suspicion,” the blog post explains. “Consequently, the project teams may inadvertently click on these malicious links, download, and execute malicious code.”

SlowMist said the malware downloaded by the malicious link in their case comes from a North Korean hacking group dubbed BlueNoroff, which Kaspersky Labs says is a subgroup of the Lazarus hacking group. “A financially motivated threat actor closely connected with Lazarus that targets banks, casinos, fin-tech companies, POST software and cryptocurrency businesses, and ATMs,” Kaspersky wrote of BlueNoroff in Dec. 2023.

Read more of this story at Slashdot.

The FBI Is Using Push Notifications To Catch Sexual Predators

According to the Washington Post (paywalled), the FBI is using mobile push notification data to unmask people suspected of serious crimes, such as pedophilia, terrorism, and murder. Gizmodo reports: The Post did a little digging into court records and found evidence of at least 130 search warrants filed by the feds for push notification data in cases spanning 14 states. In those cases, FBI officials asked tech companies like Google, Apple, and Facebook to fork over data related to a suspect’s mobile notifications, then used the data to implicate the suspect in criminal behavior linked to a particular app, even though many of those apps were supposedly anonymous communication platforms, like Wickr.

How exactly is this possible? Push notifications, which are provided by a mobile operating system provider, include embedded metadata that can be examined to understand the use of the mobile apps on a particular phone. Apps come laced with a quiet identifier, a “push token,” which is stored on the corporate servers of a company like Apple or another phone manufacturer after a user signs up to use a particular app. Those tokens can later be used to identify the person using the app, based on the information associated with the device on which the app was downloaded. Even turning off push notifications on your device doesn’t necessarily disable this feature, experts contend. […]

If finding new ways to catch pedophiles and terrorists doesn’t seem like the worst thing in the world, the Post article highlights the voices of critics who fear that this kind of mobile data could be used to track people who have not committed serious crimes — like political activists or women seeking abortions in states where the procedure has been restricted.

Read more of this story at Slashdot.

Cloudflare Makes Pingora Rust Framework Open-Source