WebProNews

Category: Business

Enterprise and Small Business News

  • LibreOffice 7.5.1 Brings Improved Dark Mode, 90+ Bug Fixes

    LibreOffice 7.5.1 Brings Improved Dark Mode, 90+ Bug Fixes

    The Document Foundation has released the latest version of LibreOffice, bringing more than 90 bug fixes and improved Dark Mode.

    LibreOffice is the open source alternative to Microsoft Office. Version 7.5.1 is largely a maintenance and bug-fix release. According to 9to5Linux, the update brings 90+ bug fixes to the office suite.

    Version 7.5.1 also adds manual control of Light and Dark Mode. LibreOffice 7.5 added an automatic Dark Mode that would activate based on the system settings. The latest update now gives the user the ability to override that and choose Light or Dark manually.

    The latest version of LibreOffice can be downloaded here.

  • Marc Benioff Thinks More Tech CEOs Will Copy Elon Musk

    Marc Benioff Thinks More Tech CEOs Will Copy Elon Musk

    Salesforce CEO Marc Benioff has some good — or bad — news, depending on whether or not you’re a fan of Elon Musk.

    Elon Musk may be the world’s richest man, but he certainly didn’t get there by winning any popularity contests. What popularity he did have has taken a major hit since his Twitter acquisition. The mercurial CEO has slashed the workforce, axed his most loyal executives, made demands of staff that many consider unreasonable, introduced drastic changes seemingly on a whim, and raised prices or begun charging for various services.

    While Musk’s management style has put many off, Benioff believes it may become far more common, with many tech CEOs already asking if they need to follow his example.

    “Every CEO in Silicon Valley has looked at what Elon Musk has done and has asked themselves, ‘Do they need to unleash their own Elon within them?’” Benioff told Business Insider in an interview.

    “That is an existential question that if you are any kind of executive in the company,” Benioff added. “You have to look at him and say, ‘Wow, it’s a very unorthodox management style,’ but, as I’ve said, you can’t underestimate what he’s done.”

    While Benioff has not taken such drastic measures as Musk, he did say that he had to step back into more of a hands-on role following the departure of co-CEO Bret Taylor. The company’s recent layoffs and cost-cutting measures reflect that involvement.

    “I had no choice but to step in and to guide the company’s performance,” Benioff told Insider. “And that’s the results that you’re seeing here today with these numbers.”

    While there’s no denying Musk’s approach may meet with a measure of success, it’s hard to imagine it as a sustainable business model. After all, at some point, every CEO still need employees that are willing to work for them.

  • EU Governments Are Looking to Nextcloud to Escape Microsoft

    EU Governments Are Looking to Nextcloud to Escape Microsoft

    EU governments are turning to Nextcloud to provide an alternative to Microsoft SharePoint and Google Workspace.

    Nextcloud is the open source cloud platform that provides powerful alternatives to commercial products. EU governments, ever eager to reduce reliance on Big Tech, are increasingly looking to the platform as an option. In fact, the European Data Protection Supervisor recently migrated to Nextcloud:

    Open Source Software offers data protection-friendly alternatives to commonly used large-scale cloud service providers that often imply the transfer of individuals’ personal data to non-EU countries. Solutions like this may therefore minimise reliance on monopoly providers and detrimental vendor lock-in. By negotiating a contract with an EU-based provider of cloud services, the EDPS is delivering on its commitments, as set out in its 2020-2024 Strategy, to support EUIs in leading by example to safeguard digital rights and process data responsibly.”

    Wojciech Wiewiórowski, EDPS

    The upcoming end of SharePoint Server support has created a situation where governments are eager to avoid vendor lock-in, making Nextcloud an even more appealing proposition.

    As a result, Nextcloud has received a significant increase in interest from EU governments, with German state Schleswig-Holstein already making the switch from SharePoint to Nextcloud, and many others beginning to follow suit.

    Nextcloud’s initiative to offer a digitally sovereign, open-source alternative to Microsoft Sharepoint is to be welcomed. That’s why we work together with Nextcloud to optimize Nextcloud Tables.

    Ralf Sutorius, Leitender IT-Architekt, Stadt Köln

    It’s a refreshing turn of events to see a powerful, open source alternative gain more widespread use.

  • Meta Plans to Incorporate AI Across Its Platforms

    Meta Plans to Incorporate AI Across Its Platforms

    Meta is preparing to incorporate artificial intelligence across its platforms, playing catch-up to Microsoft and Google.

    Microsoft has been leading the charge on AI, incorporating next-generation ChatGPT tech into Bing. Google is similarly attempting to deploy AI across its services. Meta, on the other hand, has been noticeably absent from any discussions regarding AI — at least until Monday.

    In a Facebook post, CEO Mark Zuckerberg said the company plans to roll out AI across the company’s various products and services:

    We’re creating a new top-level product group at Meta focused on generative AI to turbocharge our work in this area. We’re starting by pulling together a lot of the teams working on generative AI across the company into one group focused on building delightful experiences around this technology into all of our different products. In the short term, we’ll focus on building creative and expressive tools. Over the longer term, we’ll focus on developing AI personas that can help people in a variety of ways. We’re exploring experiences with text (like chat in WhatsApp and Messenger), with images (like creative Instagram filters and ad formats), and with video and multi-modal experiences. We have a lot of foundational work to do before getting to the really futuristic experiences, but I’m excited about all of the new things we’ll build along the way.

    Given Zuckerberg’s obsession with the metaverse, it’s almost surprising to see something else capture his attention enough to warrant a “new top-level product group.” That fact that AI is that thing only emphasizes the importance of the burgeoning tech.

  • Shopify Evolving Into World’s First Retail Operating System

    Shopify Evolving Into World’s First Retail Operating System

    “Shopify is evolving into the world’s first retail operating system,” says Shopify COO Harley Finkelstein. “We think the future of retail is retail everywhere. A brand that’s going to be successful in 5, 10 or 15 years from now needs to sell across any platform and across any channel where they have customers. The idea is that it all feeds back in one centralized back-office, the retail operating system, which is Shopify.”

    Harley Finkelstein, COO of Shopify, discusses how COVID has dramatically sped up the timeline for commerce moving online and has also moved Shopify closer to its goal of becoming the world’s first retail operating system:

    Shopify Evolving Into World’s First Retail Operating System

    Most people assume that Shopify is an ecommerce provider. We have more than a million stores on Shopify. If you were to aggregate our stores in the US we’d be the second-largest online retailer in America. Of course, we’re not a retailer but we’re a platform. But we now have these great economies of scale that we’re using to level the playing field for entrepreneurs and small businesses. That being said, what really Shopify is evolving into is the world’s first retail operating system. 

    What we’re trying to figure out is what do brands and entrepreneurs and retailers need, not just now but in the future? We think the future of retail is retail everywhere. A brand that’s going to be successful in 5, 10 or 15 years from now needs to sell across any platform and across any channel where they have customers. This idea of enabling Shopify merchants to very easily push their products to the Amazon Marketplace or the eBay marketplace or now the Walmart marketplace, that gives them access to a new set of consumers. The idea is that it all feeds back in one centralized back-office, the retail operating system, which is Shopify. 

    Then we’ve gone ahead and asked what else can we do for these merchants? Can we do capital? We’ve now given out about a billion dollars worth of cash advances and loans to small businesses. We’re doing fulfillment and we’re doing shipping. We’re increasing the scope and the relationship that we have with the million stores on Shopify. This is allowing them to become category leaders.

    COVID Speeds Up The Ecommerce Revolution

    From our view, it seems like the commerce world that would have existed in the year 2030 has really been pulled into the year 2020 (as a result of the COVID crisis). We’ve seen ecommerce as a percent of total retail go from 15 percent to 25 percent in the last three months. That’s the same growth rate that we’ve seen over the last 10 years. What really has emerged here is sort of this tale of two retail worlds. On one side you have these resilient retailers that are doing great, they’re pivoting, and they’re expanding their businesses. On the other side, you have these resistant retailers who have not made it. In many ways, it’s probably the most exciting time for retail in a very long time. 

    We talk a lot about these direct to consumer brands that are becoming category leaders. The Allbirds and the Gymsharks who started on Shopify when they were very small and have grown to become the incumbents in their industry. Every 25 seconds a brand new entrepreneur makes his or her (products) for sale on Shopify. We talk a lot about those new startups, those new DTC brands. But actually, what we’re also seeing on Shopify are companies like Lindt Chocolate or Heinz ketchup or Chipotle. They are signing up for Shopify and basically from like five days from contract to launch they are completely changing their businesses. 

    This resiliency isn’t simply in the hands of just the smallest of brands. Big companies are also beginning to think a lot more about how to stay resilient in this time. They’re moving well beyond ecommerce or thinking about offline commerce now. They’re thinking about how do they sell across social media? How do they sell across different marketplaces? So no, I don’t think it’s too late (to enter ecommerce) but I do think they have to rethink their strategies.

    Shopify Evolving Into World’s First Retail Operating System Says Shopify COO Harley Finkelstein
  • Dish Network Customer Data Stolen in Ransomware Attack

    Dish Network Customer Data Stolen in Ransomware Attack

    More details have emerged regarding Dish Network’s recent outage, including the fact that customer data was stolen in the incident.

    Dish began experiencing major issues Thursday morning, with employees unable to work or access internal systems. The company’s website was also down. At the time, CEO Erik Carlson chalked it up to an “internal outage.”

    In a filing with the SEC, however, the company has admitted the issue was the result of a ransomware attack, one that compromised customer data:

    On February 27, 2023, the Corporation became aware that certain data was extracted from the Corporation’s IT systems as part of this incident. It is possible the investigation will reveal that the extracted data includes personal information. The measures described above are continuing while the Corporation, with the assistance of third-party experts and advisors, investigates the extent of the cyber-security incident.

    The company is working to restore the impacted services and is working with law enforcement.

  • Snapchat Launches ChatGPT-Based My AI

    Snapchat Launches ChatGPT-Based My AI

    Snap is the latest to jump on the ChatGPT bandwagon, launching My AI to Snapchat+ subscribers.

    ChatGPT has taken the world by storm, being one of the first major AIs to gain widespread acceptance. Microsoft is incorporating a new and improved version in Bing, and now Snap is using it as the basis of My AI.

    The company announced the news in a blog post:

    Today we’re launching My AI, a new chatbot running the latest version of OpenAI’s GPT technology that we’ve customized for Snapchat. My AI is available as an experimental feature for Snapchat+ subscribers, rolling out this week.

    My AI can recommend birthday gift ideas for your BFF, plan a hiking trip for a long weekend, suggest a recipe for dinner, or even write a haiku about cheese for your cheddar-obsessed pal. Make My AI your own by giving it a name and customizing the wallpaper for your Chat.

    Snap also included a caution regarding AI, and its many deficiencies, in an effort to help temper expectations:

    As with all AI-powered chatbots, My AI is prone to hallucination and can be tricked into saying just about anything. Please be aware of its many deficiencies and sorry in advance! All conversations with My AI will be stored and may be reviewed to improve the product experience. Please do not share any secrets with My AI and do not rely on it for advice.

    My AI is only available to Snapchat+ paid subscribers for the time being, and the company encourages users to report any issues.

  • BlackLotus Malware Is the First to Bypass Secure Boot

    BlackLotus Malware Is the First to Bypass Secure Boot

    Computer security became a little more challenging, with the BlackLotus malware becoming the first to bypass Secure Boot.

    Secure Boot is a method of signing the kernel and various boot components, ensuring that no malicious software can be inserted into the boot process and compromise a machine. While there have been many claims of malware that can bypass secure boot, BlackLotus is the first.

    According to ESET malware analyst Martin Smolár, “the first publicly known UEFI bootkit bypassing the essential platform security feature – UEFI Secure Boot – is now a reality.”

    Smolár goes on to discuss ESET’s findings, including the fact that BlackLotus can compromise even “the latest, fully patched Windows 11 systems with UEFI Secure Boot enabled.”

    The malware uses a vulnerability that was patched more than a year ago because “the affected, validly signed binaries have still not been added to the UEFI revocation list. BlackLotus takes advantage of this, bringing its own copies of legitimate – but vulnerable – binaries to the system in order to exploit the vulnerability.”

    In many ways, a bootkit like BlackLotus is the Holy Grail of exploits because the bootkit has “full control over the OS boot process and thus capable of disabling various OS security mechanisms and deploying their own kernel-mode or user-mode payloads in early OS startup stages.”

    Because the bootkit hijacks the process early on, attackers can even enroll their own keys in the system so that the malware can have unfettered access without tripping any security measures.

    ESET’s research is disturbing on many levels, not the least of which is the fact that BlackLotus can be delivered both off and online. This means an attacker does not need physical access to a device in order to compromise it.

    To make matters worse, it appears the vulnerability BlackLotus exploits is not the only one.

    “UEFI Secure Boot stands in the way of UEFI bootkits, but there are a non-negligible number of known vulnerabilities that allow bypassing this essential security mechanism,” writes Smolár. “And the worst of this is that some of them are still easily exploitable on up-to-date systems even at the time of this writing – including the one exploited by BlackLotus.”

    At this point, there are not absolute mitigation measures, only a combination of things that can reduce the likelihood of a compromise. Once a computer is compromised, the safest thing to do is to reinstall it and use the mokutil utility to delete the signed key BlackLotus deposits that enables it to bypass Secure Boot.

  • Google Play Now Warns Users About Buggy Apps

    Google Play Now Warns Users About Buggy Apps

    Android users may be spared some headaches, with Google Play now warning them before installing buggy apps.

    First spotted by Android Police, Mishaal Rahman tweeted screenshots of a Google Play dialog that warns users when an app they’re about to download has not been performing well on similar hardware.

    The feature is a nice addition to the Play Store and should save users some irritation.

  • Ford Hires Former Argo Staff for Automated Driving Company

    Ford Hires Former Argo Staff for Automated Driving Company

    Ford is doubling down on automated driving research, hiring 550 former Argo AI staff to form a new company.

    Argo AI was an automated driving startup that shut down after Ford and Volkswagen stopped backing it. While Ford may have pulled its investments in Argo, it appears the company recognized Argo’s engineering talent, hiring 550 of its former employees for its new Latitude AI subsidiary. In fact, according to a company statement, it appears Latitude’s entire workforce is made up of former Argo employees:

    Establishing Latitude supports Ford’s strategic shift last year to focus on automated driving technologies for personally owned vehicles. Ford hired about 550 employees formerly of Argo AI across machine learning and robotics, cloud platforms, mapping, sensors and compute systems, test operations, systems and safety engineering. The Latitude team has applied much of their experience in automated driving, including software development tools and infrastructure, in the pivot to work on advanced driver assist systems (ADAS).

    Ford hopes to build on the success of its BlueCruise technology, which recently took Consumer Reports’ top spot among automated driving systems.

    “We see automated driving technology as an opportunity to redefine the relationship between people and their vehicles,” said Doug Field, chief advanced product development and technology officer, Ford Motor Company. “Customers using BlueCruise are already experiencing the benefits of hands-off driving. The deep experience and talent in our Latitude team will help us accelerate the development of all-new automated driving technology – with the goal of not only making travel safer, less stressful and more enjoyable, but ultimately over time giving our customers some of their day back.”

    We believe automated driving technology will help improve safety while unlocking all-new customer experiences that reduce stress and in the future will help free up a driver’s time to focus on what they choose,” said Sammy Omari, executive director, ADAS Technologies at Ford and Latitude CEO. “The expertise of the Latitude team will further complement and enhance Ford’s in-house global ADAS team in developing future driver assist technologies, ultimately delivering on the many benefits of automation.”

  • Twitter Blue Is Now Available in More Than 20 Countries

    Twitter Blue Is Now Available in More Than 20 Countries

    Twitter Blue has undergone a major expansion, with the service now available in more than 20 European countries.

    Twitter Blue is the social media platform’s service that provides a number of major features not available to free users. Those features include the ability to edit tweets, post 60-minute videos, and post up to 4,000 character tweets.

    According to TechCrunch, the company has expanded the service to 20+ countries, including “Netherlands, Poland, Ireland, Belgium, Sweden, Romania, Czech Republic, Finland, Denmark, Greece, Austria, Hungary, Bulgaria, Lithuania, Slovakia, Latvia, Slovenia, Estonia, Croatia, Luxembourg, Malta, and Cyprus.”

    The expansion is a clear effort to help the platform convert users to paid accounts. Since Twitter started charging $8/mo for the service, it hasn’t exactly been a hit, with reports indicating it has less than 300,000 subscribers.

  • Apple Is Not a Fan of ChatGPT Apps

    Apple Is Not a Fan of ChatGPT Apps

    Developers looking to incorporate ChatGPT into their iOS apps are in for a rude awakening when they submit them to the App Store.

    Companies large and small are embracing ChatGPT, with app developers looking for innovative ways to use the AI tech. According to The Wall Street Journal, however, Apple is proving to be a major impediment to that innovation.

    The developer behind the BlueMail email client incorporated ChatGPT to help users write emails. Unfortunately, Apple rejected the update, saying the new version needed content warnings.

    “Your app includes AI-generated content but does not appear to include content filtering at this time,” Apple told the developer last week in a message seen by the Journal.

    Whereas BlueMail’s age restriction is currently 4 years old, Apple told the developer the restriction would need to be increased to 17.

    “Apple is making it really hard for us to bring innovation to our users,” said Ben Volach, BlueMail co-founder.

    To make matters worse, Volach says there are many other apps featuring ChatGPT functionality that have not been slapped with the 17-year-old age restriction.

    “We want fairness,” said Volach. “If we’re required to be 17-plus, then others should also have to.”

  • China’s Top Chipmaker YMTC Gets State-Backed $7 Billion Infusion

    China’s Top Chipmaker YMTC Gets State-Backed $7 Billion Infusion

    China is pulling out all the stops to boost its semiconductor industry, with its top firm receiving a major infusion from state-backed investors.

    The US and its allies have been working to cut China off from advanced semiconductor tech. Some sources say this has resulted in driving the country’s chipmaking industry to the verge of collapse. In response, China committed to a $143 billion investment package to help its semiconductor industry become more self-sufficient.

    According to the South China Morning Post, state-backed investors have sunk $7.1 billion (49 billion yuan) into the company. This brings the company’s registered capital to more than 105 billion yuan.

    Interestingly, high-performance computing, quantum computing, and advanced integrated circuit design and fabrication are three of the seven areas where the US still has a technological lead over China, out of a total of 44 areas. China is clearly willing to spend the necessary money to close that gap.

  • China Is Leading the US in 37 of 44 Key Technologies

    China Is Leading the US in 37 of 44 Key Technologies

    As the trade and tech war between the US and China heats up, a new report says China is leading in 37 of 44 key technologies.

    The Australian Strategic Policy Institute (ASPI) conducted a study that was funded by the US State Department’s Global Engagement Center and a grant from The Special Competitive Studies Project. The goal of the study was to see which countries had a technological lead.

    According to ASPI, China leads the US in all but seven areas. The areas where the US still has a lead are:

    • High-performance computing
    • Advanced integrated circuit design and fabrication
    • Natural language processing
    • Quantum computing
    • Vaccines and medical countermeasures
    • Small satellites
    • Space launch systems

    In every other category, ranging from manufacturing materials to AI algorithms to nuclear waste management, China has the lead. ASPI says this could have profound, long-term repercussions:

    China’s overall research lead, and its dominant concentration of expertise across a range of strategic sectors, has short and long term implications for democratic nations. In the long term, China’s leading research position means that it has set itself up to excel not just in current technological development in almost all sectors, but in future technologies that don’t yet exist. Unchecked, this could shift not just technological development and control but global power and influence to an authoritarian state where the development, testing and application of emerging, critical and military technologies isn’t open and transparent and where it can’t be scrutinised by independent civil society and media.

    In the more immediate term, that lead—coupled with successful strategies for translating research breakthroughs to commercial systems and products that are fed into an efficient manufacturing base—could allow China to gain a stranglehold on the global supply of certain critical technologies.

    The full report is here and well worth a read.

  • Users Can Now Adjust Bing AI’s Personality

    Users Can Now Adjust Bing AI’s Personality

    Microsoft has added a major new feature to its Bing AI, allowing users to choose how they want the AI to behave.

    Microsoft announced a preview of its AI-powered Bing search in early February. The AI is a new and improved version of the OpenAI tech behind ChatGPT. Early reviews have been all over the place, with people ranging from impressed to creeped out.

    Microsoft has been steadily improving the experience, with the most recent feature upgrade giving users the ability to dial in how Bing will respond and interact. A new toggle gives users the ability to choose between More Creative, More Balanced, and More Precise. The company describes each option:

    More Creative

    Responses are original and imaginative, creating surprise and entertainment for you.

    More Balanced

    Responses are reasonable and coherent, balancing accuracy and creativity in conversation.

    More Precise

    Responses are factual and concise, prioritizing accuracy and relevancy for you.

    The new options are a nice touch, giving users more control over the experience.

  • EU Reportedly Poised to Clear Microsoft’s Activision Blizzard Purchase

    EU Reportedly Poised to Clear Microsoft’s Activision Blizzard Purchase

    Microsoft’s acquisition of Activision Blizzard is one step closer to closing, with the EU reportedly poised to approve the deal.

    Microsoft announced a deal to purchase Activision Blizzard for $68.7 billion in January 2022. The deal triggered investigations on both sides of the Atlantic as regulators expressed concern over Microsoft — one of the top-three console makers — controlling one of the biggest gaming studios that’s responsible for some of the industry’s biggest titles.

    The UK has launched a probe of the deal, the FTC sued to block the deal, and the EU has been ramping up its investigation.

    According to Reuters, Microsoft’s recent licensing deals, guaranteeing Call of Duty will remain on other platforms for years to come, has convinced the EU to sign off on the deal.

    The company says it is “committed to offering effective  and  easily  enforceable solutions  that address the European Commission’s concerns.”

    “Our commitment to grant long term 100% equal access to  Call of Duty to Sony, Steam,  NVIDIA and others  preserves the deal’s benefits to gamers and developers and increases competition in the market,” a Microsoft spokesperson added.

    In September, Microsoft CEO Satya Nadella said he was “very, very confident” the deal would eventually be approved. It seems he may be right after all.

  • National Cyber Strategy Puts Cybersecurity Burden on Big Tech

    National Cyber Strategy Puts Cybersecurity Burden on Big Tech

    The White House unveiled its National Cyber Strategy, shifting the burden of providing security from individuals to Big Tech.

    Cybersecurity has become a major issue for individuals, businesses, and government agencies, with hardly a day going by without disclosure of another data breach. According to CNBC, a key component of the new strategy is putting the burden of protection on Big Tech, the segment best equipped to address security issues.

    “The president’s strategy fundamentally reimagines America’s cyber social contract,” Acting National Cyber Director Kemba Walden said during a press briefing on Wednesday. “It will rebalance the responsibility for managing cyber risk onto those who are most able to bear it.”

    Walden added, “the biggest, most capable and best-positioned actors in our digital ecosystem can and should shoulder a greater share of the burden for managing cyber risk and keeping us all safe.”

    The strategy document emphasizes the importance of the public and private sectors working together:

    The most capable and best-positioned actors in cyberspace must be better stewards of the digital ecosystem. Today, end users bear too great a burden for mitigating cyber risks. Individuals, small businesses, state and local governments, and infrastructure operators have limited resources and competing priorities, yet these actors’ choices can have a significant impact on our national cybersecurity. A single person’s momentary lapse in judgment, use of an outdated password, or errant click on a suspicious link should not have national security consequences. Our collective cyber resilience cannot rely on the constant vigilance of our smallest organizations and individual citizens.

    Instead, across both the public and private sectors, we must ask more of the most capable and best- positioned actors to make our digital ecosystem secure and resilient. In a free and interconnected society, protecting data and assuring the reliability of critical systems must be the responsibility of the owners and operators of the systems that hold our data and make our society function, as well as of the technology providers that build and service these systems. Government’s role is to protect its own systems; to ensure private entities, particularly critical infrastructure, are protecting their systems; and to carry out core governmental functions such as engaging in diplomacy, collecting intelligence, imposing economic costs, enforcing the law, and, conducting disruptive actions to counter cyber threats. Together, industry and government must drive effective and equitable collaboration to correct market failures, minimize the harms from cyber incidents to society’s most vulnerable, and defend our shared digital ecosystem.

    The National Cyber Strategy echoes sentiments voiced by Google, in which the company threw its support behind companies being held responsible for cybersecurity. Google also emphasized the need for companies to build systems that are fundamentally more secure — rather than offloading that burden on the average user.

  • Florida Could Require Registration for Bloggers Writing About Elected Officials

    Florida Could Require Registration for Bloggers Writing About Elected Officials

    Florida is raising eyebrows with a bill that would require anyone blogging about the state’s elected officials to register or face fines.

    According to NBC affiliate WFLA, Florida Senator Jason Brodeur has proposed a new bill that would force bloggers writing about the “the Governor, the Lieutenant Governor, a Cabinet officer, or any member of the Legislature” to register with the state and file monthly reports if they receive compensation for what they write.

    The bill goes on to say that the bill “does not include the website of a newspaper or other similar publication,” but reading the bill’s text leaves tremendous room for interpretation and does not definitively rule out any type of news coverage.

    What’s more, the bill doesn’t even limit its scope to bloggers within the state of Florida:

    “Blogger” means any person as defined in s. 1.01(3) that submits a blog post to a blog which is subsequently published.

    “Blog post” is an individual webpage on a blog which contains an article, a story, or a series of stories.

    The bill then outlines a schedule of monthly reports bloggers would be subject to:

    If a blogger posts to a blog about an elected state officer and receives, or will receive, compensation for that post, the blogger must register with the appropriate office, as identified in paragraph (1)(f), within 5 days after the first post by the blogger which mentions an elected state officer.

    Upon registering with the appropriate office, a blogger must file monthly reports on the 10th day following the end of each calendar month from the time a blog post is added to the blog, except that, if the 10th day following the end of a calendar month occurs on a Saturday, Sunday, or legal holiday, the report must be filed on the next day that is not a Saturday, Sunday, or legal holiday.

    Failure to comply would lead to some hefty fines:

    A fine of $25 per day per report for each day late, not to exceed $2,500 per report.

    It seems that Senator Brodeur may need a primer on the First Amendment and how it applies to bloggers, as well as all news coverage in general. In the meantime, it’s highly unlikely such a law — if the bill even passes — would ever survive a legal challenge.

  • Netflix Has No Plans to Pay For EU Network Upgrades

    Netflix Has No Plans to Pay For EU Network Upgrades

    Netflix has thrown cold water on hopes that it would pay a “tax” to help internet service providers upgrade their networks.

    Proposals in the EU have been growing to try to force some Big Tech companies to pay for various network upgrades. The companies being targeted are those that are seen as the primary drivers of network traffic, including Netflix, Microsoft, Apple, Google, Amazon, and Meta. ISPs have been clamoring for them to contribute to network upgrades and the EU Commission is considering such proposals.

    According to El País, Netflix co-CEO Greg Peters said the company has no plans to contribute to network upgrades, saying it would have an “adverse effect” on content.

    “Some of our ISP partners have proposed taxing entertainment companies to subsidize their network infrastructure… [which] would have an adverse effect, reducing investment in content – hurting the creative community, hurting the attractiveness of higher-priced broadband packages, and ultimately hurting consumers,” Peters said at the 2023 World Mobile Congress in Barcelona.

    Peters also warned the “tax” would inevitably expand to include more companies.

    “This will inevitably change over time as broadcasters shift from linear to streaming,” said Peters.

  • Google Cloud May Be Vulnerable to Unnoticed Data Theft

    Google Cloud May Be Vulnerable to Unnoticed Data Theft

    Google Cloud may be more vulnerable than its competitors to unnoticed data theft, thanks to logs that are not as helpful as they should be.

    Cybersecurity firm Mitiga analyzed Google Cloud’s online storage and found that the platform’s logging mechanism comes up woefully short in terms of providing useful information. This is especially concerning since these logs are used by security professionals and law enforcement to identify the scope of a potential breach.

    According to Mitiga, Google’s current logging system cannot effectively differentiate between a threat actor viewing data versus exfiltrating it:

    Even with the detailed logging constraint applied, Google logs events of reading Metadata of an object in a bucket the same way it logs events of downloading the exact same object. This lack of coverage means that when a threat actor downloads your data or, even worse, exfiltrates it to an external bucket, the only logs you would see will be the same as if the TA just viewed the metadata of the object.

    While this issue doesn’t inherently make Google Cloud any more insecure than the next cloud provider, it does mean that customers impacted by a data breach on Google Cloud may have a much harder time taking the appropriate investigative action.

    Mitiga reached out to Google Cloud and received the following response:

    “The Mitiga blog highlights how Google’s Cloud Storage logging can be improved upon for forensics analysis in an exfiltration scenario with multiple organizations. We appreciate Mitiga’s feedback, and although we don’t consider it a vulnerability, have provided mitigation recommendations.”

  • Germany Pushes Back Against EU Client-Side Scanning Plans

    Germany Pushes Back Against EU Client-Side Scanning Plans

    The EU Commission wants to roll out client-side scanning on consumers’ devices, but Germany is pushing back against the plan.

    Client-side scanning is being touted by some companies and regulators as a way to “preserve” end-to-end encryption by scanning for illegal content on a person’s device. If such content is found, authorities will be notified. The idea is that since all the scanning occurs on a user’s device, communications between devices can remain end-to-end encrypted.

    Germany, however, isn’t buying that argument and, at a recent hearing of the German Parliament’s Digital Committee, made clear it doesn’t agree with the EU’s proposal. Germany is basing its opinion on the many computer and security experts who have testified that the EU’s proposal will do far more harm than good.

    “The draft regulation basically misses the goal of countering child abuse representations,” emphasized the Computer scientist and spokeswoman for the Chaos Computer Club, Elina Eickstädt (via computer translation). “The design is based on a gross overestimation of capabilities of technologies “, especially with regard to the detection of unknown material.

    Client-side scanning also represents “an unprecedented surveillance infrastructure,“ added Eickstädt. She pointed out that even an error rate of one percent will lead to billions of false reports, warning that the technology could eventually become “censorship tools of equal value.”

    Read more: EU Proposes Most Privacy-Invasive Measure Yet to Tackle Child Abuse

    Interestingly, even the Head of the Central and Contact Point Cybercrime North Rhine-Westphalia, Chief Prosecutor Markus Hartmann, said the EU’s proposal goes too far. Instead, he said existing law enforcement agencies should be shored up to better utilize server-side scanning abilities and traditional investigative techniques, rather than the more invasive client-side scanning.

    The EU Commission’s proposal is certainly one of the most privacy-invasive measures being pursued by a democracy. Even by the EU’s own admission, a client-side scanning “process would be the most intrusive one for users.”

    The EU’s proposal is currently being negotiated, giving Germany a chance to make its case and have the client-side scanning clause dropped. Otherwise, should the bill become law, many experts believe it will never survive its first court challenge.

    “Child protection is not served if the regulation later fails before the European Court of Justice,” said Felix Reda from the Society for Freedom Rights. “The damage to the privacy of all people would be immense “, he added. “The tamper-free surveillance violates the essence of the right to privacy and cannot therefore be justified by any fundamental rights assessment.”

    Should the EU’s proposal go unchallenged, as Harvard cryptography professor Matthew Green says, the bloc will go down in history as creating “the most sophisticated mass surveillance machinery ever deployed outside of China and the USSR.”