How the European Space Agency Celebrated April Fool’s Day

The European Space Agency has a Planetary Defence Office, which includes its Near-Earth Object Coordination Centre. “It has come to our attention,” they wrote in the April edition of their monthly newsletter, “that a recent trend among journalists has been to come up with creative comparisons to convey the size of an asteroid to the public.”

So then, as explained by RockDoctor (Slashdot reader #15,477) “they propose a number of standardised units of comparison for journalists describing ‘death from the skies'”.

An excerpt from that April 1 newsletter:
In the absence of a handy skyscraper, animals commonly used have included giraffes, corgis and an entire colony of penguins. But how do these comparisons stack up? Let’s look at some of our favourite unusual suspects:
– Corgi: At around 30 cm tall, a space rock the size of a corgi wouldn’t pose much of
a threat.
– Half a giraffe: An adult giraffe can reach up to 5.5 metres in height, so half a giraffe
would be about 2.75 metres. While not as impressive as a full skyscraper, an
asteroid that size could certainly destroy a building or two…
– Elephants: An adult African elephant can reach 7 metres at the shoulder. Ninety
elephants stacked on top of each other would form a staggering pile over 630
metres high, creating a devastating but probably not planet-ending event.

As this menagerie of animals can cause a lot of confusion, we at the NEOCC
recommend the use of a Standardised Giraffe Unit (SGU, 1 SGU = 5 penguins) for ease
of comparison.

RockDoctor shares this additional thought in his original submission about the newly proposed standardized unit.

“The world may be turtles all the way down, but it’s giraffes all the way up.”

Read more of this story at Slashdot.

Four Baseball Teams Now Let Ticket-Holders Enter Using AI-Powered ‘Facial Authentication’

“The San Francisco Giants are one of four teams in Major League Baseball this season offering fans a free shortcut through the gates into the ballpark,” writes SFGate.

“The cost? Signing up for the league’s ‘facial authentication’ software through its ticketing app.”

The Giants are using MLB’s new Go-Ahead Entry program, which intends to cut down on wait times for fans entering games. The pitch is simple: Take a selfie through the MLB Ballpark app (which already has your tickets on it), upload the selfie and, once you’re approved, breeze through the ticketing lines and into the ballpark. Fans will barely have to slow down at the entrance gate on their way to their seats…

The Philadelphia Phillies were MLB’s test team for the technology in 2023. They’re joined by the Giants, Nationals and Astros in 2024…

[Major League Baseball] says it won’t be saving or storing pictures of faces in a database — and it clearly would really like you to not call this technology facial recognition. “This is not the type of facial recognition that’s scanning a crowd and specifically looking for certain kinds of people,” Karri Zaremba, a senior vice president at MLB, told ESPN. “It’s facial authentication. … That’s the only way in which it’s being utilized.”

Privacy advocates “have pointed out that the creep of facial recognition technology may be something to be wary of,” the article acknowledges. But it adds that using the technology is still completely optional.

And they also spoke to the San Francisco Giants’ senior vice president of ticket sales, who gushed about the possibility of app users “walking into the ballpark without taking your phone out, or all four of us taking our phones out.”

Read more of this story at Slashdot.

US Invests $20 Billion More to Finance Clean-Energy Projects

Thursday America’s Environmental Protection Agency “awarded $20 billion to help finance clean-energy projects across the country,” reports the Washington Post.

The money comes from the Greenhouse Gas Reduction Fund established by President Biden’s signature climate law, the Inflation Reduction Act. The fund seeks to leverage public and private dollars to invest in clean-energy technologies such as solar panels, heat pumps and more.

The program is potentially one of the most consequential — yet least understood — parts of the climate law…

Simply put, the program allows people to access low-interest loans for clean-energy projects that they might not otherwise have received. Imagine a community group that wants to install electric vehicle charging stations at its neighborhood recreation center but can’t get a loan from a bank or a lender. As is often the case, potential lenders say they’re hesitant to support a novel green technology or a business without a track record of success. Low-income and minority communities have long encountered such obstacles in trying to attract private capital. The program aims to overcome this problem by providing a huge influx of federal cash — $27 billion in total — for nonprofit organizations to dole out to clean-energy projects nationwide. Each nonprofit will serve as a “green bank” that offers more favorable lending rates than commercial banks. “It’s just really hard to get banks to bring capital into low-income communities, especially for these new projects that they’re not used to financing,” said Adrian Deveny, the founder of the firm Climate Vision and the former director of energy and environmental policy for Senate Majority Leader Charles E. Schumer (D-N.Y.), a key architect of the Inflation Reduction Act….

The EPA is awarding money to eight nonprofits, which have committed to leverage nearly $7 in private capital for every $1 of federal investment. The nonprofits have also pledged to ensure that at least 70 percent of the funds will benefit disadvantaged communities, and that the financed projects will reduce up to 40 million metric tons of carbon dioxide a year — equivalent to the annual emissions of nearly 9 million gasoline-powered cars… [The nonprofit] Coalition for Green Capital, will use a $5 billion award to establish a “national green bank,” co-founder and CEO Reed Hundt said. “We’re going to be able to cause about $100 billion of total additional investment over a seven-year time period with that number, because we can leverage it,” Hundt said.

Read more of this story at Slashdot.

Heat-Trapping CO2, Methane Levels In the Air Last Year Spiked To Record Highs

According to the latest data from the U.S. National Oceanic and Atmospheric Administration, carbon dioxide and methane levels in the atmosphere reached historic highs last year, growing at near-record fast paces. The Associated Press reports: Carbon dioxide, the most important and abundant of the greenhouse gases caused by humans, rose in 2023 by the third highest amount in 65 years of record keeping, NOAA announced Friday. Scientists are also worried about the rapid rise in atmospheric levels of methane, a shorter-lived but more potent heat-trapping gas. Both jumped 5.5% over the past decade. The 2.8 parts per million increase in carbon dioxide airborne levels from January 2023 to December, wasn’t as high as the jumps were in 2014 and 2015, but they were larger than every other year since 1959, when precise records started. Carbon dioxide’s average level for 2023 was 419.3 parts per million, up 50% from pre-industrial times.

Last year’s methane’s jump of 11.1 parts per billion was lower than record annual rises from 2020 to 2022. It averaged 1922.6 parts per billion last year. It has risen 3% in just the past five years and jumped 160% from pre-industrial levels showing faster rates of increase than carbon dioxide, said Xin “Lindsay” Lan, the University of Colorado and NOAA atmospheric scientist who did the calculations. […] The third biggest human-caused greenhouse gas, nitrous oxide, jumped 1 part per billion last year to record levels, but the increases were not as high as those in 2020 and 2021. Nitrous oxide, which lasts about a century in the atmosphere, comes from agriculture, burning of fuels, manure and industrial processes, according to the EPA.

“Studies of the specific isotopes of methane in the air show much of the increased methane is from microbes, pointing to spiking emissions from wetlands and perhaps agriculture and landfills, but not as much the energy industry, Lan said.”

Read more of this story at Slashdot.

FCC Won’t Block California Net Neutrality Law, Says States Can ‘Experiment’

Jon Brodkin reports via Ars Technica: California can keep enforcing its state net neutrality law after the Federal Communications Commission implements its own rules. The FCC could preempt future state laws if they go far beyond the national standard but said that states can “experiment” with different regulations for interconnection payments and zero-rating. The FCC scheduled an April 25 vote on Chairwoman Jessica Rosenworcel’s proposal to restore net neutrality rules similar to the ones introduced during the Obama era and repealed under former President Trump. The FCC yesterday released the text of the pending order, which could still be changed but isn’t likely to get any major overhaul.

State-level enforcement of net neutrality rules can benefit consumers, the FCC said. The order said that “state enforcement generally supports our regulatory efforts by dedicating additional resources to monitoring and enforcement, especially at the local level, and thereby ensuring greater compliance with our requirements.” […] In the order scheduled for an April 25 vote, the FCC said the California law “appears largely to mirror or parallel our federal rules. Thus we see no reason at this time to preempt it.” That doesn’t mean the rules are exactly the same. Instead of banning certain types of zero-rating entirely, the FCC will judge on a case-by-case basis whether any specific zero-rating program harms consumers and conflicts with the goal of preserving an open Internet. The FCC said it will evaluate sponsored-data “programs based on a totality of the circumstances, including potential benefits.”

The FCC order cautions that the agency will take a dimmer view of zero-rating in exchange for payment from a third party or zero-rating that favors an affiliated entity. But those categories will still be judged by the FCC on a case-by-case basis, whereas California bans paid data cap exemptions entirely. Despite that difference, the FCC said it is “not persuaded on the record currently before us that the California law is incompatible with the federal rules.” The FCC also found that California’s approach to interconnection payments is compatible with the pending federal rule. Interconnection was the subject of a major controversy involving Netflix and big ISPs a decade ago. The FCC said it found no evidence that the California law has “unduly burdened or interfered with interstate communications service.” When it comes to zero-rating and interconnection, the FCC said there is “room for states to experiment and explore their own approaches within the bounds of our overarching federal framework.” The FCC said it will reconsider preemption of California rules if “California state enforcement authorities or state courts seek to interpret or enforce these requirements in a manner inconsistent with how we intend our rules to apply.”

Read more of this story at Slashdot.

Roblox Executive Says Children Making Money On the Platform Isn’t Exploitation, It’s a Gift

In an interview with Roblox Studio head Stefano Corazza, Eurogamer asked about the reputation Roblox has gained and the notion that it was exploitative of young developers, since it takes a cut from work sometimes produced by children. Here’s what he had to say: “I don’t know, you can say this for a lot of things, right?” Corazza said. “Like, you can say, ‘Okay, we are exploiting, you know, child labour,’ right? Or, you can say: we are offering people anywhere in the world the capability to get a job, and even like an income. So, I can be like 15 years old, in Indonesia, living in a slum, and then now, with just a laptop, I can create something, make money and then sustain my life. “There’s always the flip side of that, when you go broad and democratized – and in this case, also with a younger audience,” he continued. “I mean, our average game developer is in their 20s. But of course, there’s people that are teenagers — and we have hired some teenagers that had millions of players on the platform.

“For them, you know, hearing from their experience, they didn’t feel like they were exploited! They felt like, ‘Oh my god, this was the biggest gift, all of a sudden I could create something, I had millions of users, I made so much money I could retire.’ So I focus more on the amount of money that we distribute every year to creators, which is now getting close to like a billion dollars, which is phenomenal.”

At this point the PR present during the interview added that “the vast majority of people that are earning money on Roblox are over the age of 18.” “And imagine like, the millions of kids that learn how to code every month,” Corazza said. “We have millions of creators in Roblox Studio. They learn Lua scripting,” a programming language, “which is pretty close to Python – you can get a job in the tech industry in the future, and be like, ‘Hey, I’m a programmer,’ right? “I think that we are really focusing on the learning – the curriculum, if you want – and really bringing people on and empowering them to be professionals.”

Read more of this story at Slashdot.

Rickroll Meme Immortalized In Custom ASIC That Includes 164 Hardcoded Programs

Matthew Connatser reports via The Register: An ASIC designed to display the infamous Rickroll meme is here, alongside 164 other assorted functions. The project is a product of Matthew Venn’s Zero to ASIC Course, which offers prospective chip engineers the chance to “learn to design your own ASIC and get it fabricated.” Since 2020, Zero to ASIC has accepted several designs that are incorporated into a single chip called a multi-project wafer (MPW), a cost-saving measure as making one chip for one design would be prohibitively expensive. Zero to ASIC has two series of chips: MPW and Tiny Tapeout. The MPW series usually includes just a handful of designs, such as the four on MPW8 submitted in January 2023. By contrast, the original Tiny Tapeout chip included 152 designs, and Tiny Tapeout 2 (which arrived last October) had 165, though could bumped up to 250. Of the 165 designs, one in particular may strike a chord: Design 145, or the Secret File, made by engineer and YouTuber Bitluni. His Secret File design for the Tiny Tapeout ASIC is designed to play a small part of Rick Astley’s music video for Never Gonna Give You Up, also known as the Rickroll meme.

Bitluni was a late inclusion on the Tiny Tapeout 2 project, having been invited just three days before the submission deadline. He initially just made a persistence-of-vision controller, which was revised twice for a total of three designs. “At the end, I still had a few hours left, and I thought maybe I should also upload a meme project,” Bitluni says in his video documenting his ASIC journey. His meme of choice was of course the Rickroll. One might even call it an Easter egg. However, given that there were 250 total plots for each design, there wasn’t a ton of room for both the graphics processor and the file it was supposed to render, a short GIF of the music video. Ultimately, this had to be shrunk from 217 kilobytes to less than half a kilobyte, making its output look similar to games on the Atari 2600 from 1977. Accessing the Rickroll rendering processor and other designs isn’t simple. Bitluni created a custom circuit board to mount the Tiny Tapeout 2 chip, creating a device that could then be plugged into a motherboard capable of selecting specific designs on the ASIC. Unfortunately for Bitluni, his first PCB had a design error on it that he had to correct, but the revised version worked and was able to display the Rickroll GIF in hardware via a VGA port.

Read more of this story at Slashdot.

Plex Asks GitHub to Take Down ‘Reshare’ Repository Over Piracy Fears

Plex is a multi-functional streaming platform that allows users to watch, organize, and curate their favorite media entertainment. Sharing Plex libraries is also an option; one that comes with piracy concerns. In an effort to “avoid the growth of piracy,” Plex asked GitHub to remove a repository that allows people to reshare libraries that were not originally theirs. TorrentFreak reports: The Swiss company, which is headquartered in the U.S., asked GitHub to remove a “Plex Reshare” repository, alleging that it may contribute to its piracy problem. “Plex Reshare” doesn’t host any copyright-infringing material and, as far as we’ve seen, it doesn’t reference any either. Its main purpose is to allow Plex users to make shared Plex directories browsable on the web, which allows people to “reshare” them without being the original owner. “The reason behind this project is to make available your PLEX shares to other friends unrelated to the person who owns the original library,” Plex Reshare developer Peter explains.

While the repository doesn’t host or link to copyright-infringing material, Plex argues that it can be used to ‘grow’ piracy. “We have found infringing material in your website which indeed is OTHER ‘Plex Server’. The material that is claimed to be infringing is to be removed or access to which is to be disabled immediately and avoid the growth of piracy,” the takedown notice reads. The first part of the sentence is somewhat confusing. Plex-reshare is not a Plex server but the company may use “OTHER Plex Server” as an internal classification category. In any case, Plex alleges that the repository can contribute to the growth of piracy on its platform.

Citing the Online Copyright Infringement Liability Limitation Act, Plex urges GitHub to take immediate action, or else it may be held liable. It’s not clear what this liability claim rests on, as there are no actual copyright infringements mentioned in the takedown notice. Despite the broad nature of this claim, GitHub has indeed taken the repository offline, replacing it with a DMCA takedown reference. This likely wasn’t a straightforward decision as GitHub is known to put developers first with these types of issues. In this case, it took more than three weeks before GitHub took action, which is much longer than usual. This suggests that GitHub allowed the developer to respond and may have sought legal advice from in-house lawyers, to ensure that the rights of all parties are properly considered. The report notes that the Plex-reshare code is listed on Docker Hub as well, which means it may face a similar fate.

Read more of this story at Slashdot.

Feds Finally Decide To Do Something About Years-Old SS7 Spy Holes In Phone Networks

Jessica Lyons reports via The Register: The FCC appears to finally be stepping up efforts to secure decades-old flaws in American telephone networks that are allegedly being used by foreign governments and surveillance outfits to remotely spy on and monitor wireless devices. At issue are the Signaling System Number 7 (SS7) and Diameter protocols, which are used by fixed and mobile network operators to enable interconnection between networks. They are part of the glue that holds today’s telecommunications together. According to the US watchdog and some lawmakers, both protocols include security weaknesses that leave folks vulnerable to unwanted snooping. SS7’s problems have been known about for years and years, as far back as at least 2008, and we wrote about them in 2010 and 2014, for instance. Little has been done to address these exploitable shortcomings.

SS7, which was developed in the mid-1970s, can be potentially abused to track people’s phones’ locations; redirect calls and text messages so that info can be intercepted; and spy on users. The Diameter protocol was developed in the late-1990s and includes support for network access and IP mobility in local and roaming calls and messages. It does not, however, encrypt originating IP addresses during transport, which makes it easier for miscreants to carry out network spoofing attacks. “As coverage expands, and more networks and participants are introduced, the opportunity for a bad actor to exploit SS7 and Diameter has increased,” according to the FCC [PDF].

On March 27 the commission asked telecommunications providers to weigh in and detail what they are doing to prevent SS7 and Diameter vulnerabilities from being misused to track consumers’ locations. The FCC has also asked carriers to detail any exploits of the protocols since 2018. The regulator wants to know the date(s) of the incident(s), what happened, which vulnerabilities were exploited and with which techniques, where the location tracking occurred, and — if known — the attacker’s identity. This time frame is significant because in 2018, the Communications Security, Reliability, and Interoperability Council (CSRIC), a federal advisory committee to the FCC, issued several security best practices to prevent network intrusions and unauthorized location tracking. Interested parties have until April 26 to submit comments, and then the FCC has a month to respond.

Read more of this story at Slashdot.