An anonymous reader quotes a report from TorrentFreak: Rightsholders have asked Google to remove more than 10 billion 'copyright infringing' URLs from its search results. The search engine doesn't celebrate the milestone in any way, but the takedown notices document intriguing shifts in volume over time, as well as shifting takedown interests. [...] The path to 10 billion was turbulent. When Google first made DMCA details public it was processing a few million DMCA takedown requests in a year. That number swiftly increased to hundreds of millions and eventually reached a billion DMCA requests in 2016.

The exponential growth curve eventually flattened out and around 2017, the takedown volume started to decline. The decrease was in part due to various anti-piracy algorithms making pirated content less visible in search results. By downranking pirate sites, infringing content became harder to find. As a result, Google processed fewer takedown notices, a welcome change for both rightsholders and the search engine. Today, Google continues to make pirate sites less visible in search, but the reduction in takedown notices didn't last. On the contrary, over the past several months, Google search processed a record number of DMCA notices.

Last summer, the search giant recorded the 7 billionth takedown request and after that the numbers shot up, adding billions more in the year that followed. The company is now handling removal requests at a rate of roughly 2.5 billion per year; a new record. This represents more than 50 million takedown requests per week and roughly 5,000 every minute. [...] While the 10 billionth reported URL is undoubtedly a milestone, this number is largely driven by a few rightsholders, reporting outfits, and domain names. The aforementioned takedown outfit Link-Busters, for example, accounts for roughly 15% of all reported links, nearly 1.5 billion. Similarly, the ten most prolific rightsholders, including the BPI, HarperCollins, and VIZ Media, are responsible for 40% of all reported links. These ten companies are only a tiny fraction of the 600,000 rightsholders that reported pirated links, however. A small group of domains also receives a disproportionate amount of attention. In total, 5,400,061 domains have been reported, with the top domains having dozens of millions of flagged URLs each. However, most domains have only a few flagged links, some of which are erroneous.

spatwei writes: Google has used a large language model (LLM) agent called "Big Sleep" to discover a previously unknown, exploitable memory flaw in a widely used software for the first time, the company announced Friday.

The stack buffer underflow vulnerability in a development version of the popular open-source database engine SQLite was found through variant analysis by Big Sleep, which is a collaboration between Google Project Zero and Google DeepMind.

Big Sleep is an evolution of Project Zero's Naptime project, which is a framework announced in June that enables LLMs to autonomously perform basic vulnerability research. The framework provides LLMs with tools to test software for potential flaws in a human-like workflow, including a code browser, debugger, reporter tool and sandbox environment for running Python scripts and recording outputs.

The researchers provided the Gemini 1.5 Pro-driven AI agent with the starting point of a previous SQLIte vulnerability, providing context for Big Sleep to search for potential similar vulnerabilities in newer versions of the software. The agent was presented with recent commit messages and diff changes and asked to review the SQLite repository for unresolved issues.

Google's Big Sleep ultimately identified a flaw involving the function "seriesBestIndex" mishandling the use of the special sentinel value -1 in the iColumn field. Since this field would typically be non-negative, all code that interacts with this field must be designed to handle this unique case properly, which seriesBestIndex fails to do, leading to a stack buffer underflow.

An anonymous reader quotes a report from Ars Technica: On Friday, Perplexity launched an election information hub that relies on data from The Associated Press and Democracy Works to provide live updates and information about the 2024 US general election, which takes place on Tuesday, November 5. "Starting Tuesday, we'll be offering live updates on elections using data from The Associated Press so you can stay informed on presidential, senate, and house races at both a state and national level," Perplexity wrote in a blog post. The site will pull data from special data sources (called APIs) hosted by the two organizations. As of Monday, Perplexity's hub currently provides interactive information on voting requirements, poll times, and summaries about ballot measures, candidates, policy positions, and endorsements. Users can ask questions about the information similar to using a chatbot like ChatGPT.

Perplexity's embrace of providing election information is an exception in the AI field. Wary about accidentally providing misinformation, competitor AI assistants from OpenAI, Google, and Anthropic currently direct users elsewhere or decline to answer election questions. OpenAI's ChatGPT Search directs election result queries to The Associated Press and Reuters. Perplexity describes its new elections hub as "an entry point for understanding key issues." But like other AI models, Perplexity can produce confabulations (plausible incorrect information) when generating responses. That could present an accuracy problem because the site's Voter Guide service uses AI language models to summarize and interpret information pulled from the web. Here's what Ars Technica advises: "Take what you see on Perplexity's site with a huge grain of salt -- do not rely on it without verifying the information with a trustworthy external source."

Cybercriminals have breached dozens of major companies including AT&T, Ticketmaster and Hot Topic by exploiting "infostealer" malware that harvests login credentials from infected computers, an investigation has found. The malware, spread through pirated software and social media, has infected 250,000 new devices daily, according to cybersecurity firm Recorded Future. Russian developers create the malware while contractors distribute it globally, deliberately avoiding former Soviet states. Hot Topic suffered potentially the largest retail hack ever in October when attackers accessed 350 million customer records using stolen developer credentials. Google and Microsoft are racing to patch vulnerabilities, but malware makers quickly adapt to new security measures.

App developers Musi and Sarafan Mobile have sued Apple and Google in California federal court over app removals they claim were unjustified, highlighting tensions over the tech giants' intellectual property enforcement policies. Musi's music-streaming app was removed after YouTube complained about interface infringement, while Sarafan's "Reely" app was taken down following Instagram's claims about logo similarity.

Both developers say the platforms breached their agreements by removing apps without sufficient evidence. The lawsuits underscore broader concerns about Apple and Google's dominance in app distribution. Their private IP dispute systems operate outside traditional legal frameworks, with platforms making unilateral decisions that can effectively shut down businesses, according to University of New Hampshire law professor Peter Karol. [...]

"In a court proceeding, you can see here's a complaint with the allegations, and then we have the defendant respond, and then we have a judge come out with an opinion saying, 'Is the mark valid? Is the mark infringed?'" said Lisa Ramsey, law professor at University of San Diego. Google and Apple's systems, meanwhile, are "a black box."

This week's Ubuntu Summit 2024 was attended by Lproven (Slashdot reader #6,030). He's also a FOSS correspondent for the Register, where he's filed this report: One of the first full-length sessions was presented by David Morin, executive director of the Academy Software Foundation, introducing his organization in a talk about Open Source Software for Motion Pictures. Morin linked to the Visual Effects Society's VFX/Animation Studio Workstation Linux Report, highlighting the market share pie-chart, showing Rocky Linux 9 with at some 58 percent and the RHELatives in general at 90 percent of the market. Ubuntu 22 and 24 — the report's nomenclature, not this vulture's — got just 10.5 percent. We certainly didn't expect to see that at an Ubuntu event, with the latest two versions of Rocky Linux taking 80 percent of the studio workstation market...

What also struck us over the next three quarters of an hour is that Linux and open source in general seem to be huge components of the movie special effects industry — to an extent that we had not previously realized.
There's a "sizzle reel" showing examples of how major motion pictures used OpenColorIO, an open-source production tool for syncing color representations originally developed by Sony Pictures Imageworks. That tool is hosted by a collaboration between the Linux Foundation with the Science and Technology Council of the Academy of Motion Picture Arts and Sciences (the "Academy" of the Academy Awards). The collaboration — which goes by the name of the Academy Software Foundation — hosts 14 different projects The ASWF hasn't been around all that long — it was only founded in 2018. Despite the impact of the COVID pandemic, by 2022 it had achieved enough to fill a 45-page history called Open Source in Entertainment [PDF]. Morin told the crowd that it runs events, provides project marketing and infrastructure, as well as funding, training and education, and legal assistance. It tries to facilitate industry standards and does open source evangelism in the industry. An impressive list of members — with 17 Premier companies, 16 General ones, and another half a dozen Associate members — shows where some of the money comes from. It's a big list of big names. [Adobe, AMD, AWS, Autodesk...]
The presentation started with OpenVBD, a C++ library developed and donated by Dreamworks for working with three-dimensional voxel-based shapes. (In 2020 they created this sizzle reel, but this year they've unveiled a theme song.) Also featured was OpenEXR, originally developed at Industrial Light and Magic and sourced in 1999. (The article calls it "a specification and reference implementation of the EXR file format — a losslessly compressed image storage format for moving images at the highest possible dynamic range.")

"For an organization that is not one of the better-known ones in the FOSS space, we came away with the impression that the ASWF is busy," the article concludes. (Besides running Open Source Days and ASWF Dev Days, it also hosts several working groups like the Language Interop Project works on Rust bindings and the Continuous Integration Working Group on CI tools, There's generally very little of the old razzle-dazzle in the Linux world, but with the demise of SGI as the primary maker of graphics workstations — its brand now absorbed by Hewlett Packard Enterprise — the visual effects industry moved to Linux and it's doing amazing things with it. And Kubernetes wasn't even mentioned once.

"AI-driven 0-day detection is here," argues a new blog post from ZeroPath, makers of a GitHub app that "detects, verifies, and issues pull requests for security vulnerabilities in your code."

They write that AI-assisted security research "has been quietly advancing" since early 2023, when researchers at the DARPA and ARPA-H's Artificial Intelligence Cyber Challenge demonstrated the first practical applications of LLM-powered vulnerability detection — with new advances continuing. "Since July 2024, ZeroPath's tool has uncovered critical zero-day vulnerabilities — including remote code execution, authentication bypasses, and insecure direct object references — in popular AI platforms and open-source projects." And they ultimately identified security flaws in projects owned by Netflix, Salesforce, and Hulu by "taking a novel approach combining deep program analysis with adversarial AI agents for validation. Our methodology has uncovered numerous critical vulnerabilities in production systems, including several that traditional Static Application Security Testing tools were ill-equipped to find..." TL;DR — most of these bugs are simple and could have been found with a code review from a security researcher or, in some cases, scanners. The historical issue, however, with automating the discovery of these bugs is that traditional SAST tools rely on pattern matching and predefined rules, and miss complex vulnerabilities that do not fit known patterns (i.e. business logic problems, broken authentication flaws, or non-traditional sinks such as from dependencies). They also generate a high rate of false positives.

The beauty of LLMs is that they can reduce ambiguity in most of the situations that caused scanners to be either unusable or produce few findings when mass-scanning open source repositories... To do this well, you need to combine deep program analysis with an adversarial agents that test the plausibility of vulnerabilties at each step. The solution ends up mirroring the traditional phases of a pentest — recon, analysis, exploitation (and remediation which is not mentioned in this post)...

AI-driven vulnerability detection is moving fast... What's intriguing is that many of these vulnerabilities are pretty straightforward — they could've been spotted with a solid code review or standard scanning tools. But conventional methods often miss them because they don't fit neatly into known patterns. That's where AI comes in, helping us catch issues that might slip through the cracks.
"Many vulnerabilities remain undisclosed due to ongoing remediation efforts or pending responsible disclosure processes," according to the blog post, which includes a pie chart showing the biggest categories of vulnerabilities found:

• 53%: Authorization flaws, including roken access control in API endpoints and unauthorized Redis access and configuration exposure. ("Impact: Unauthorized access, data leakage, and resource manipulation across tenant boundaries.")

• 26%: File operation issues, including directory traversal in configuration loading and unsafe file handling in upload features. ("Impact: Unauthorized file access, sensitive data exposure, and potential system compromise.")

• 16%: Code execution vulnerabilities, including command injection in file processing and unsanitized input in system commands. ("Impact: Remote code execution, system command execution, and potential full system compromise.")

The company's CIO/cofounder was "former Red Team at Tesla," according to the startup's profile at YCombinator, and earned over $100,000 as a bug-bounty hunter. (And another co-founded is a former Google security engineer.)

Thanks to Slashdot reader Mirnotoriety for sharing the article.

The Washington Post reports that America's Consumer Financial Protection Bureau (or CFPB) "is considering legal action against Meta over allegations that it improperly used financial data obtained from third parties in its highly-lucrative advertising business..."

The article says a Meta securities filing Thursday revealed it had received a formal notification about the federal investigation last month. The filing said only that the inquiry relates to "advertising for financial products and services on our platform." A spokesperson for Meta declined to comment on the investigation. "We disagree with the claims," the company's filing said, "and believe an enforcement action is unwarranted...."

The CFPB's probe underscores its aggressive recent focus on Big Tech. In recent years, major companies including Apple, Amazon, Facebook and Google have launched a wave of new financial services, including credit cards and apps that help users send money to friends... Under its current director, Rohit Chopra, the CFPB has also sought to ensure that tech giants adhere to the same safeguards that have long applied to their brick-and-mortar banking predecessors. The bureau formalized its tech crackdown in 2021, when Chopra ordered companies including Facebook to turn over records related to their payment apps and other financial service offerings.

At the time, he expressed fear that these giants already possessed troves of customer data and could solidify their dominance if they gained greater insight into users' purchasing and spending habits. "This data can be monetized by companies that seek to profit from behavioral targeting, particularly around advertising and e-commerce," Chopra said in a statement announcing the review. "That many Big Tech companies aspire to grow in this space only heightens these concerns." Since then, the watchdog agency has proposed new rules that could treat Apple, Google and PayPal-owned Venmo more like banks, opening the door for federal regulators to inspect some of their operations in a bid to protect users' deposits.

The rules, which have not been finalized, have sparked fierce lobbying opposition from major tech companies.

While Amazon, Google, and other companies build new data centers — sometimes for their AI projects — parts of America "are facing higher electric bills," reports the Washington Post: The facilities' extraordinary demand for electricity to power and cool computers inside can drive up the price local utilities pay for energy and require significant improvements to electric grid transmission systems. As a result, costs have already begun going up for customers — or are about to in the near future, according to utility planning documents and energy industry analysts. Some regulators are concerned that the tech companies aren't paying their fair share, while leaving customers from homeowners to small businesses on the hook. In Oregon, electric utilities are warning regulators that consumers need protections from rising rates caused by data centers. From Virginia to Ohio and South Carolina, companies are battling over the extent of their responsibility for increases, attempting to fend off anger from customers. In the Mid-Atlantic, the regional power grid's energy costs shot up dramatically, and data centers are cited as among root causes of rate increases of up to 20 percent expected in 2025...

The tech firms and several of the power companies serving them strongly deny they are burdening others. They say higher utility bills are paying for overdue improvements to the power grid that benefit all customers. In some cases, they said in response to criticism from consumer and business advocates that they are committed to covering additional costs. But regulators — and even some utilities — are growing skeptical.

A jarring example of fallout on consumers is playing out on the Mid-Atlantic regional power grid, called PJM Interconnection, which serves 13 states and D.C. The recent auction to secure power for the grid during periods of extreme weather and high demand resulted in an 800 percent jump in the price that the grid's member utilities had to pay. The impact will be felt by millions by the spring, according to public records. Power bills will increase as much as 20 percent for customers of a dozen utilities in Maryland, Ohio, Pennsylvania, New Jersey and West Virginia, regulatory filings show. That includes households in the Baltimore area, where annual bills will increase an average of $192, said Maryland People's Counsel David Lapp, a state appointee who monitors utilities. The next auction, in 2025, could be more painful, Lapp said, leaving customers potentially "looking at increases of as much as $40 to $50 a month...."

Advocates cite another source of cost-shifting onto consumers: discounted rates that power companies and local government officials use to entice tech companies to build data centers... Google worked out a deal with Dominion Energy, blessed by regulators, to pay 6 cents per kilowatt hour for its power. That is less than half of what residential customers pay, as well as substantially less than is paid by businesses...
The article points out that in Pennsylvania, "Amazon's novel plan to fuel a data center from a reactor at the nearby Susquehanna nuclear plant is now in jeopardy, after regulators blocked it Friday. They cited potential impact on consumers as among their concerns. The plan threatens to leave other ratepayers stuck with a bill of $50 million to $140 million, according to testimony from [power utility] AEP and utility conglomerate Exelon."

And meanwhile, one Virginia retiree complained about a proposed $54 million transmission line and substation for an Amazon data center. "They are already making money hand over fist, and now they want us to pay for this?

In 1896 the Dow Jones Industrial Average (or DJIA) was created as a kind of proxy indicator for the wider stock market. "A stock is typically added only if the company has an excellent reputation, demonstrates sustained growth and is of interest to a large number of investors," according to a source cited by Yahoo Finance. Its mix of stocks might be informally considered a sign of the times, since it's made up of 30 stocks that according to Wikipedia have been changed only 57 times over the last 128 years.

Wait — make that 58.... CNBC reports that NVIDIA is replacing Intel in the DJIA, "a shakeup to the blue-chip index that reflects the boom in AI and a major shift in the semiconductor industry." Companies including Microsoft, Meta, Google and Amazon are purchasing Nvidia's GPUs, such as the H100, in massive quantities to build clusters of computers for their AI work. Nvidia's revenue has more than doubled in each of the past five quarters, and has at least tripled in three of them. The company has sginaled that demand for its next-generation AI GPU called Blackwell is "insane...."

While Nvidia has been soaring, Intel has been slumping. Long the dominant maker of PC chips, Intel has lost market share to Advanced Micro Devices and has made very little headway in AI. Intel shares have fallen by more than half this year as the company struggles with manufacturing challenges and new competition for its central processors. Intel said in a filing this week that the board's audit and finance committee approved cost and capital reduction activities, including lowering head count by 16,500 employees and reducing its real estate footprint. The job cuts were originally announced in August."
The DJIA will now include four of six tech companies worth $1 trillion — Apple, Microsoft, NVIDIA, and Amazon (which joined in February, replacing the owners of the Walgreens pharmacy chain). The other two trillion-dollar tech companies (not included in the DJIA) are Meta and Alphabet.

Adding NVIDIA to the DJIA will ensure "more representative exposure to the semiconductors industry" within the average, the index's curators told the Washington Post.

And also leaving the DJIA is power-generation company AES (which according to CNBC had a power mix of 54% renewables, 27% natural gas, 17% coal). It will be replaced by Vistra, defined by Wikipedia as America's largest competitive power generator, "with a capacity of approximately 39GW powered by a diverse portfolio including natural gas, nuclear, solar, and battery energy storage facilities." In the 2020 Forbes Global 2000, Vistra Energy was ranked as the 756th-largest public company in the world. The company owns the Moss Landing Power Plant in California which currently (2021) contains the largest battery energy storage system in the world (400-MW/1,600-MWh). As of 2020, the company was ranked as the highest CO2 emitter in the U.S.

The free face-image search engine PimEyes "scans through billions of images from the internet and finds matches of your photo that could have appeared in a church bulletin or a wedding photographer's website," -us/news/technology/they-made-a-public-rolodex-of-our-faces-here-s-how-i-tried-to-get-out/ar-AA1tlpPuwrites a Washington Post columnist.

So to find and delete themselves from "the PimEyes searchable Rolodex of faces," they "recently handed over a selfie and a digital copy of my driver's license to a company I don't trust." PimEyes says it empowers people to find their online images and try to get unwanted ones taken down. But PimEyes face searches are largely open to anyone with either good or malicious intent. People have used PimEyes to identify participants in the Jan. 6, 2021, attack on the Capitol, and creeps have used it to publicize strangers' personal information from just their image.

The company offers an opt-out form to remove your face from PimEyes searches. I did it and resented spending time and providing even more personal information to remove myself from the PimEyes repository, which we didn't consent to be part of in the first place. The increasing ease of potentially identifying your name, work history, children's school, home address and other sensitive information from one photo shows the absurdity of America's largely unrestrained data-harvesting economy.
While PimEyes' CEO said they don't keep the information you provide to opt-out, "you give PimEyes at least one photo of yourself plus a digital copy of a passport or ID with personal details obscured..." according to the article. (PimEyes' confirmation email "said I might need to repeat the opt-out with more photos...") Some digital privacy experts said it's worth opting out of PimEyes, even if it's imperfect, and that PimEyes probably legitimately needs a personal photo and proof of identity for the process. Others found it "absurd" to provide more information to PimEyes... or they weren't sure opting out was the best choice... Experts said the fundamental problem is how much information is harvested and accessible without your knowledge or consent from your phone, home speakers, your car and information-organizing middlemen like PimEyes and data brokers.

Nathan Freed Wessler, an American Civil Liberties Union attorney focused on privacy litigation, said laws need to change the assumption that companies can collect almost anything about you or your face unless you go through endless opt-outs. "These systems are scary and abusive," he said. "If they're going to exist, they should be based on an opt-in system."

Waymo is advancing autonomous driving with a new training model for its robotaxis built on Google's multimodal large language model (MLLM) Gemini. The Verge reports: Waymo released a new research paper today that introduces an "End-to-End Multimodal Model for Autonomous Driving," also known as EMMA. This new end-to-end training model processes sensor data to generate "future trajectories for autonomous vehicles," helping Waymo's driverless vehicles make decisions about where to go and how to avoid obstacles. But more importantly, this is one of the first indications that the leader in autonomous driving has designs to use MLLMs in its operations. And it's a sign that these LLMs could break free of their current use as chatbots, email organizers, and image generators and find application in an entirely new environment on the road. In its research paper, Waymo is proposing "to develop an autonomous driving system in which the MLLM is a first class citizen."

The paper outlines how, historically, autonomous driving systems have developed specific "modules" for the various functions, including perception, mapping, prediction, and planning. This approach has proven useful for many years but has problems scaling "due to the accumulated errors among modules and limited inter-module communication." Moreover, these modules could struggle to respond to "novel environments" because, by nature, they are "pre-defined," which can make it hard to adapt. Waymo says that MLLMs like Gemini present an interesting solution to some of these challenges for two reasons: the chat is a "generalist" trained on vast sets of scraped data from the internet "that provide rich 'world knowledge' beyond what is contained in common driving logs"; and they demonstrate "superior" reasoning capabilities through techniques like "chain-of-thought reasoning," which mimics human reasoning by breaking down complex tasks into a series of logical steps.

Waymo developed EMMA as a tool to help its robotaxis navigate complex environments. The company identified several situations in which the model helped its driverless cars find the right route, including encountering various animals or construction in the road. [...] But EMMA also has its limitations, and Waymo acknowledges that there will need to be future research before the model is put into practice. For example, EMMA couldn't incorporate 3D sensor inputs from lidar or radar, which Waymo said was "computationally expensive." And it could only process a small amount of image frames at a time. There are also risks to using MLLMs to train robotaxis that go unmentioned in the research paper. Chatbots like Gemini often hallucinate or fail at simple tasks like reading clocks or counting objects.

An enormous fine levied by a Russian court on Google caught the attention of the Kremlin -- which hopes Google will notice in turn. From a report: President Vladimir Putin's spokesman, Dmitri Peskov, commented on the sum on Thursday. It came after a court demanded payment equivalent of $20.6 decillion -- an almost incomprehensible figure that exceeds the world's GDP. The sum came from a penalty for suspending the YouTube accounts of various Russian outlets. It has been regularly doubling for years, with no limit, leading it into realms of the absurd, which Peskov seemed to acknowledge. "Although it is a specific amount, I cannot even pronounce this number, it is rather filled with symbolism," said Peskov in response to a question from NBC News.

Three months ago, Wall Street punished the world's largest technology firms for spending enormous amounts to develop artificial intelligence, only to deliver results that failed to justify the costs. Silicon Valley's response this quarter? Plans to invest even more. Bloomberg: The capital expenditures of the four largest internet and software companies -- Amazon, Microsoft, Meta and Alphabet -- are set to total well over $200 billion this year, a record sum for the profligate collective.

Executives from each company warned investors this week that their splurge will continue next year, or even ramp up. The spree underscores the extreme costs and resources consumed from the worldwide boom in AI ignited by the arrival of ChatGPT. Tech giants are racing to secure the scarce high-end chips and build the sprawling data centers the technology demands. To do so, the companies have cut deals with energy providers to power these facilities, even reviving a notorious nuclear plant.

Indonesia has banned sales of Google Pixel smartphones for failing to meet a 40% local content requirement, days after blocking Apple's iPhone 16 in Southeast Asia's biggest phone market. Google must obtain local content certification before resuming sales in Indonesia, Industry Ministry spokesman Febri Hendri Antoni Arief said. The move follows last week's iPhone 16 ban after Apple failed to fulfill a $95 million investment pledge.

Google is rolling out a dedicated weather app on Pixel phones (model 6 and newer with Android 15) that integrates AI-generated summaries and customizable widgets. Ars Technica reports: There's a prominent "AI generated weather report" on top of the weather stack, which is a combination of summary and familiarity. "Cold and rainy day, bring your umbrella and hold onto your hat!" is Google's example; I can't provide another one, because an update to "Gemini Nano" is pending. You can see weather radar for your location, along with forecasted precipitation movement. The app offers "Nowcasting" precipitation guesses, like "Rain continuing for 2 hours" or "Light rain in 10 minutes."

The best feature, one seen on the version of Weather that shipped to the Pixel Tablet and Fold, is that you can rearrange the order of data shown on your weather screen. I moved the UV index, humidity, sunrise/sunset, and wind conditions as high as they could go on my setup. It's a trade-off, because the Weather app's data widgets are so big as to require scrolling to get the full picture of a day, and you can't move the AI summary or 10-day forecast off the top. But if you only need a few numbers and like a verbal summary, it's handy. Sadly, if you're an allergy sufferer and you're not in the UK, Germany, France, or Italy, Google can't offer you any pollen data or forecasts. There is also, I am sad to say, no frog. You can download the app here.

Former Google chief Eric Schmidt thinks the US Army should expunge "useless" tanks and replace them with AI-powered drones instead. From a report: Speaking at the Future Investment Initiative in Saudi Arabia this week, he said: "I read somewhere that the US had thousands and thousands of tanks stored somewhere," adding, "Give them away. Buy a drone instead."

The former Google supremo's argument is that recent conflicts, such as the war in Ukraine, have demonstrated how "a $5,000 drone can destroy a $5 million tank." In fact, even cheaper drones, similar to those commercially available for consumers, have been shown in footage on social media dropping grenades through the open turret hatch of tanks. Schmidt, who was CEO of Google from 2001 to 2011, then executive chairman to 2015, and executive chairman of Alphabet to 2018, founded White Stork with the aim of supporting Ukraine's war effort. It hopes to achieve this by developing a low-cost drone that can use AI to acquire its target rather than being guided by an operator and can function in environments where GPS jamming is in operation.

Notably, Schmidt also served as chair of the US government's National Security Commission on Artificial Intelligence (NSCAI), which advised the President and Congress about national security and defense issues with regard to AI. "The cost of autonomy is falling so quickly that the drone war, which is the future of conflict, will get rid of eventually tanks, artillery, mortars," Schmidt predicted.

Google is advancing the release timeline for Android 16, shifting it to the second quarter of 2025 to better align with new device launches and accelerate access to its latest AI and machine learning resources. It should also "enable app creators and phone companies to prepare their products for the new software more quickly," reports CNET. From the report: [I]n a big-picture sense, the change could help facilitate a new wave of apps with more AI integration, considering developers will get access to Google's latest machine learning and AI resources even sooner. "We're in a once-in-a-generation moment to completely reimagine what our smartphones can do and how we interact with them," Google's Seang Chau, who took on the role of vice president and general manager of the Android Platform earlier this year, said in an interview with CNET. "It's a really exciting time for smartphones, and we've been putting a lot of thought into what we want to do next with them."

In addition to moving up the major release, Google will roll out a minor update in the fourth quarter of 2025 with feature updates, optimizations and bug fixes. It's a notable switch from Google's usual release timeline, but it's just one of several changes the company has made to the way it distributes Android updates in an effort to add features more frequently. [...] "Things are moving quite fast in the AI world right now," Chau said. "So we want to make sure that we get those developer [application programming interfaces], especially around machine learning and AI, available to our developers so they can build these capabilities faster and get them out to our users faster."

An anonymous reader quotes a report from SFGATE: If you've recently been laid off and have started the arduous process of looking for a new job, you've probably seen them on networking platforms like LinkedIn: postings for roles that are 30 days old, maybe more, with suspiciously wide salary ranges. They usually have hundreds, or even thousands, of hopeful applicants vying for the same position, but if you do a quick cross-check and notice that the role isn't posted on the company's actual website -- or any of their social media pages -- you should probably stop drafting that cover letter, because it's possible they're not hiring at all. "Ghost jobs," or ads for positions that aren't actually open, are a common phenomenon in the tech industry, which has been plagued by layoffs and budget cuts over recent years. As unemployed workers struggle to regain their footing, recruiters and career coaches who spoke with SFGATE warned that these fake jobs posted by real companies serve multiple, sometimes insidious purposes.

According to a 2024 survey from MyPerfectResume, 81% of recruiters admitted to posting ads for positions that were fake or already filled. While some respondents said employers did it to maintain a presence on job boards and build a talent pool, it's also used to commit psychological warfare: 25% said ghost jobs helped companies gauge how replaceable their employees were, while 23% said it helped make the company appear more stable during a hiring freeze. Another damning 2024 report from Resume Builder said that 62% companies posted them specifically to make their employees feel replaceable. They also made ads to "trick overworked employees" into believing that more people would be brought on to alleviate their overwhelming workload.

After interviewing 1,641 hiring managers, Resume Builder researchers found that 40% of employers posted fake job listings in 2024, and that three in 10 currently had ghost jobs listed. The idea to post them mostly trickled down from HR, followed by senior management and executives, their June 2024 article continued. Though the listings were posted on multiple hiring platforms, the majority of them appeared on LinkedIn and the companies' websites. Evidence suggests this trend is taking hold throughout the Bay Area, too. A collaborative document circulating online reveals a growing list of employers accused of posting ghost jobs. Many of them, it turns out, are tech companies with offices based in California.

OpenAI on Thursday launched a search feature within ChatGPT, its viral chatbot, that positions the high-powered AI startup to better compete with search engines like Google, Microsoft's Bing and Perplexity. From a report: ChatGPT search offers up-to-the-minute sports scores, stock quotes, news, weather and more, powered by real-time web search and partnerships with news and data providers, according to the company. It began beta-testing the search engine, called SearchGPT, in July.

The release could have implications for Google as the dominant search engine. Since the launch of ChatGPT in November 2022, Alphabet investors have been concerned that OpenAI could take market share from Google in search by giving consumers new ways to seek information online.