Kingdom's counterterrorism laws 'unacceptably wide and unacceptably vague' as rights activists imprisoned, UN says.

China to cut taxes and boost spending as trade dispute with the United States takes toll on the economy.

An anonymous reader quotes a report from Phys.Org: Scientists from Heriot-Watt University have welded glass and metal together using an ultrafast laser system, in a breakthrough for the manufacturing industry. Various optical materials such as quartz, borosilicate glass and even sapphire were all successfully welded to metals like aluminum, titanium and stainless steel using the Heriot-Watt laser system, which provides very short, picosecond pulses of infrared light in tracks along the materials to fuse them together. The new process could transform the manufacturing sector and have direct applications in the aerospace, defense, optical technology and even healthcare fields. Professor Duncan Hand, director of the five-university EPSRC Center for Innovative Manufacturing in Laser-based Production Processes based at Heriot-Watt, said: "Traditionally it has been very difficult to weld together dissimilar materials like glass and metal due to their different thermal properties -- the high temperatures and highly different thermal expansions involved cause the glass to shatter. Being able to weld glass and metals together will be a huge step forward in manufacturing and design flexibility." He added: "The parts to be welded are placed in close contact, and the laser is focused through the optical material to provide a very small and highly intense spot at the interface between the two materials -- we achieved megawatt peak power over an area just a few microns across. This creates a microplasma, like a tiny ball of lightning, inside the material, surrounded by a highly-confined melt region. We tested the welds at -50C to 90C and the welds remained intact, so we know they are robust enough to cope with extreme conditions."

Read more of this story at Slashdot.

Chronicle, a security start-up owned by Google's parent company, Alphabet, plans on sharing what it learned from a cyberattack against Google nearly ten years ago. The hack was conducted by the Chinese military and was "one of the most starting cyberattacks on an American company by government-affiliated agents," reports The New York Times. The lessons it learned from that incident will be brought to other companies through a widely anticipated new product called Backstory. From the report: The idea, company executives said, is simple: Backstory will make Alphabet's vast storage, indexing and search abilities available to other companies, allowing them to search through giant volumes of data, going years back, to trace the back story of a malicious attack. Chronicle is hardly the only company doing this. Dozens of companies promise so-called big data threat intelligence and storage. But many of their customers can't afford to pay to search through huge amounts of information. Chronicle will charge customers by their number of employees. The hack on Google, called Operation Aurora, was historic for an unusual reason: It was the first time a Chinese government hacking victim confronted its attacker. Inside the company, Sergey Brin, one of Google's co-founders, made it his personal mission to make sure something like Aurora never happened again. Google, known for its motto "Don't Be Evil," had a new motto about its cybersecurity: "Never again." Google poached cyberexperts from the National Security Agency and Silicon Valley. It built a threat analysis group on a par with those at the top intelligence agencies and designed a new security infrastructure. It also created a new team, called Google Project Zero, to hunt for critical security flaws in technology outside Google. Chronicle was founded by Mike Wiacek, who started Google's threat analysis group after studying threats at the N.S.A., and Stephen Gillett, the former chief information officer at Starbucks and chief operating officer at Symantec.

Read more of this story at Slashdot.

Sanctions threatened after 'zero' information at briefing on Trump administration's handling of Saudi writer's killing.

MIT Technology reports of how Huawei's technology road map, especially in the field of artificial intelligence, is progressing more rapidly than any other business in the world. "The [Chinese] government and private sector approach is to build companies that compete across the full tech stack," says Samm Sacks, who specializes in cybersecurity and China at New America, a Washington think tank. "That's what Huawei is doing." Huawei's AI strategy "will also raise a host of new security issues," the report notes. "The company's technological ubiquity, and the fact that Chinese companies are ultimately answerable to their government, are big reasons why the U.S. views Huawei as an unprecedented national security threat." From the report: In an exclusive interview with MIT Technology Review, Xu Wenwei, director of the Huawei board and the company's chief strategy and marketing officer, touted the scope of its AI plans. He also defended the company's record on security. And he promised that Huawei would seek to engage with the rest of the world to address emerging risks and threats posed by AI. Xu (who uses the Western name William Xu) said that Huawei plans to increase its investments in AI and integrate it throughout the company to "build a full-stack AI portfolio." Since Huawei is a private firm, it's tricky to quantify its technology investments. But officials from the company said last year that it planned to more than double annual R&D spending to between $15 billion and $20 billion. This could catapult the company to between fifth and second place in worldwide spending on R&D. According to its website, some 80,000 employees, or 45% of Huawei's workforce, are involved in R&D. Machine-learning services are a new source of risk, since they can be exploited by hackers, and the data used to train such services may contain private information. The use of AI algorithms also makes systems more complex and opaque, which means security auditing is more challenging. As part of an effort to reassure doubters, Xu promised that Huawei would release a code of AI principles in April. This will amount to a promise that the company will seek to protect user data and ensure security. Xu also said Huawei wants to collaborate with its international competitors, which would include the likes of Google and Amazon, to ensure that the technology is developed responsibly. It is, however, unclear whether Huawei might allow its AI services to be audited by a third party, as it has done with its hardware. In other Huawei-related news, Huawei executive Meng Wanzhou is suing Canada for violating her constitutional rights when border officials detained and interrogated her for hours. "Meng, the chief financial officer of the Chinese telecom firm Huawei, was arrested by Canadian officials in December at the request of the United States," reports NPR. "The U.S. had sought Meng's arrest on charges of fraud, arguing Huawei had violated U.S. sanctions on Iran."

Read more of this story at Slashdot.

An anonymous reader quotes a report from The Hill: Speaker Nancy Pelosi (D-Calif.) announced Monday that Democrats will introduce a net neutrality bill to replace the open internet rules that were repealed in 2017. In a letter to her Democratic colleagues, Pelosi said a bill called the "Save the Internet Act" will be unveiled Wednesday and will be introduced in the Senate as well. The text of the legislation has not been released, and it's unclear what will be included in the bill. Democrats have railed against the Trump administration's Federal Communications Commission (FCC) vote to repeal the net neutrality rules, which happened more than a year ago. The 2015 regulations prohibited internet service providers from blocking or throttling websites or creating internet fast lanes.

Read more of this story at Slashdot.

Latest departure is another setback for a prime minister who came to power promising more accountability in politics.

Microsoft is officially killing off its Microsoft Band and Microsoft Health Dashboard apps and services on May 31st. "The software giant already discontinued its wrist-worn Band fitness tracker more than two years ago, but the company has kept the Band apps running to support existing users," reports The Verge. "That will now change on May 31st, with the backend services ending and the apps being removed from the Microsoft Store, Google Play, and Apple's App Store." From the report: Existing Band users will be able to export their data before the end of May, and services powered by the cloud will cease to function in June. Band users should still be able to record daily steps, heart rate, and workouts, alongside activity data, sleep tracking, and alarm functionality. If a Band user resets a device then it will be "impossible to set up the device again" according to Microsoft. Some Microsoft Band users will be eligible for a refund from the software giant, though. Microsoft is letting active users who have synced data from a Band to the Health Dashboard between December 1st 2018 and March 1st 2019 apply for a refund on their hardware. Surprisingly, Microsoft is offering $79.99 for Band 1 owners, and $175 for Band 2 devices. If your Microsoft Band is also covered under warranty, the same refund values will be available.

Read more of this story at Slashdot.

Death toll may rise as dozens of people remain missing following Sunday's storm.

tedlistens writes: Vermont's newly enacted data broker law is the only law of its kind in the U.S. so far, and it's forced any company collecting data on its citizens to register with the state. Fast Company wrote about the limitations of the law and compiled a list of the companies, what they do, and tips for opting-out if possible. The Vermont law only covers third-party data firms -- those trafficking in the data of people with whom they have no relationship -- as opposed to "first-party" data holders like Amazon, Facebook, or Google, which collect their own enormous piles of detailed personal data directly from users. It doesn't require data brokers to disclose who's in their databases, what data they collect, or who buys it. Nor does it require brokers to give consumers access to their own data or opt out of data collection. Brokers are, however required to provide some information about their opt-out systems under the law -- assuming they provide one. "The registry is an expansive, alphabet soup of companies, from lesser-known organizations that help landlords research potential tenants or deliver marketing leads to insurance companies, to the quiet giants of data," reports Fast Company. "Those include big names in people search, like Spokeo, ZoomInfo, White Pages, PeopleSmart, Intelius, and PeopleFinders; credit reporting, like Equifax, Experian, and TransUnion; and advertising and marketing, like Acxiom, Oracle, LexisNexis, Innovis, and KBM. Some companies also specialize in 'risk mitigation,' which can include credit reporting but also background checks and other identity verification services." The report lists all the companies that have registered under Vermont's data broker law, with descriptions drawn from their websites or other sources where noted.

Read more of this story at Slashdot.

Volvo will limit the top speed to 112mph on all its new cars from 2020 in an attempt to reduce the number of accidents. "The cap will prevent drivers from accelerating to the top speeds of up to 155mph many Volvos can reach," reports The Guardian. From the report: Volvo is believed to be the first carmaker to install the cap across its entire range. Police vehicles will be exempt. Similar technology has been installed on several high-performance cars in Germany, but at a much higher speed limit. The general speed limit for motorways in EU member states is 75-80mph (120-130km/h). Germany does not have a general cap for motorways but recommends a speed of up to 80mph. Speeding remained one of the main contributors to road deaths, Volvo said, along with drug and drink intoxication and mobile phone use. Volvo is also exploring how geofencing -- a virtual geographic boundary defined by GPS technology -- can be used to automatically limit speeds around schools and hospitals. Hakan Samuelsson, Volvo's president and chief executive, said: "While a speed limitation is not a cure-all, it's worth doing if we can even save one life. We want to start a conversation about whether carmakers have the right or maybe even an obligation to install technology in cars that changes their driver's behavior."

Read more of this story at Slashdot.

Venezuelan opposition leader returns to Venezuela after flouting a court-imposed travel ban.

An anonymous reader quotes a report from Motherboard: Using two-factor authentication, a security mechanism that requires a second step to login into an account other than the password, is widely considered an essential measure to protect yourself online. Yet, only a small percentage of people use this feature, mostly because it can be burdensome and it's rarely required by default, leaving users with the responsibility to turn it on. Now, Facebook may have given people yet another reason not to bother. Last week, Emojipedia founder Jeremy Burge warned in a viral Twitter thread that anyone could look him up on Facebook using his phone number, which he provided to the social network in order to enable two-factor authentication. What's worse, it looks like there's no way to completely remove your phone number that Facebook has collected. If you check your privacy settings, under "Who can look you up using the phone number you provided?" there are only three options: Everyone, Friends of friends, and Friends. "Everyone" is the default. Even if you remove your phone number from the two-factor authentication settings page, nothing changes in the privacy settings, indicating Facebook still has your phone number. This screw-up, intentional or not, could discourage adoption of two-factor authentication, leaving people at risk of getting hacked. Facebook's decision to use phone numbers that were given to it for a specific security purpose for reasons other than security are a betrayal, and is training people more broadly that turning over more personal information to an internet company for security features could backfire. "Phone number is such a private, important security link," Zeynep Tufecki, a professor at the University of North Carolina, Chapel Hill, who has worked with dissidents and human rights activists, wrote on Twitter. "But Facebook will even let you be targeted for ads through phone numbers INCLUDING THOSE PROVIDED *ONLY* FOR SECOND FACTOR AUTHENTICATION. Messing with 2FA is the anti-vaccination misinformation of security."

Read more of this story at Slashdot.

As Cuba continues to support Venezuela's Maduro, the US announces a number of punitive measures against the country.