As part of efforts to stop the spread of false information about the coronavirus pandemic, Wikipedia and the World Health Organization announced a collaboration on Thursday: The health agency will grant the online encyclopedia free use of its published information, graphics and videos. The collaboration is the first between Wikipedia and a health agency. From a report: "We all consult just a few apps in our daily life, and this puts W.H.O. content right there in your language, in your town, in a way that relates to your geography," said Andrew Pattison, a digital content manager for the health agency who helped negotiate the contract. "Getting good content out quickly disarms the misinformation." Since its start in 2001, Wikipedia has become one of the world's 10 most consulted sites; it is frequently viewed for health information. The agreement puts much of the W.H.O.'s material into the Wikimedia "commons," meaning it can be reproduced or retranslated anywhere, without the need to seek permission -- as long as the material is identified as coming from the W.H.O. and a link to the original is included.

"Equitable access to trusted health information is critical to keeping people safe and informed," said Tedros Adhanom Ghebreyesus, the W.H.O.'s director general. His agency translates its work into six official languages, which do not include, for example, Hindi, Bengali, German or Portuguese, so billions of people cannot read its documents in their native or even second language. Wikipedia articles, by contrast, are translated into about 175 languages. The first W.H.O. items used under the agreement are its "Mythbusters" infographics, which debunk more than two dozen false notions about Covid-19. Future additions could include, for example, treatment guidelines for doctors, said Ryan Merkley, chief of staff at the Wikimedia Foundation, which produces Wikipedia. If the arrangement works out, it could be extended to counter misinformation regarding AIDS, Ebola, influenza, polio and dozens of other diseases, Mr. Merkley said, "But this was something that just had to happen now." Eventually, live links will be established that would, for example, update global case and death numbers on Wikipedia as soon as the W.H.O. posts them, Mr. Pattison said.

CNBC reports: On September 24th, physician Dr. Ali Vaziri was unpleasantly surprised by a mobile alert from his bank, which said he had just purchased a $4,280 upgrade for his Tesla Model 3. The large transaction, he quickly surmised, was a "butt dial" or accidental purchase made through the Tesla app on his iPhone. "My phone was in my jeans," Vaziri told CNBC. "I took it out, put it on this charger that comes with your Tesla and that's it. A minute later? I got the text. I've never purchased anything through the Tesla app before...."

Moments after he received the mobile alert from his bank, Vaziri called his local Tesla store and service center. They couldn't help directly, but gave him the number for a customer service hotline. He called the number, and requested a refund. Instead of processing the doctor's refund request on the spot, the customer service rep told Vaziri to click on the refund button in his Tesla app to process his request. Vaziri informed them there was no such button in the Tesla app, just some text and a link to the refund policy. An e-mail he received from Tesla confirming the unauthorized purchase contained only vague information about a refund, and no buttons to click or links to a page where he could process a refund request either. The email, which Vaziri shared with CNBC, drove him to Tesla's support web site, which in turn told him to call his local service center.

To this date, Vaziri says, Tesla customer service has not provided him with a refund, nor has the call center provided him with so much as a confirmation number or e-mail to acknowledge his calls about the refund. Instead, he processed a stop payment request through his credit card company.

Google has added a new feature that lets you figure out what song is stuck in your head by humming, whistling or singing -- a much more useful version of the kind of song-matching audio feature that it and competitors like Apple's Shazam have offered previously. From a report: As of today, users will be able to open either the latest version of the mobile Google app, or the Google Search widget, and then tap the microphone icon, and either verbally ask to search a song or hit the 'Search a song button' and start making noises. The feature should be available to anyone using Google in English on iOS, or across over 20 languages already on Android, and the company says it will be growing that user group to more languages on both platforms in the future. Unsurprisingly, it's powered behind the scenes by machine learning algorithms developed by the company. Google says that it's matching tech won't require you to be a Broadway star or even a choir member -- it has built-in abilities to accommodate for various degrees of musical sensibility, and will provide a confidence score as a percentage alongside a number of possible matches. Clicking on any match will return more info about both artist and track, as well as music videos, and links that let you listen to the full song in the music app of your choice.

The Senate Judiciary Committee plans to issue a subpoena on Tuesday to Twitter Chief Executive Jack Dorsey after the social-media company blocked a pair of New York Post articles that made new allegations about Democratic presidential nominee Joe Biden, which his campaign has denied. From a report: The subpoena would require the Twitter executive to testify on Oct. 23 before the committee, according to the Republicans who announced the hearing. GOP lawmakers are singling out Twitter because it prevented users from posting links to the articles, which the Post said were based on email exchanges with Hunter Biden, the Democratic candidate's son, provided by allies of President Trump. Those people in turn said they received them from a computer-repair person who found them on a laptop, according to the Post.

"This is election interference, and we are 19 days out from an election," Sen. Ted Cruz (R., Texas), a committee member who discussed the subpoena with Senate Judiciary Committee Chairman Lindsey Graham (R., S.C.), told reporters. "Never before have we seen active censorship of a major press publication with serious allegations of corruption of one of the two candidates for president."

An anonymous reader quotes a report from Ars Technica: Google and Intel are warning of a high-severity Bluetooth flaw in all but the most recent version of the Linux Kernel. While a Google researcher said the bug allows seamless code execution by attackers within Bluetooth range, Intel is characterizing the flaw as providing an escalation of privileges or the disclosure of information. The flaw resides in BlueZ, the software stack that by default implements all Bluetooth core protocols and layers for Linux. Besides Linux laptops, it's used in many consumer or industrial Internet-of-things devices. It works with Linux versions 2.4.6 and later. So far, little is known about BleedingTooth, the name given by Google engineer Andy Nguyen, who said that a blog post will be published "soon." A Twitter thread and a YouTube video provide the most detail and give the impression that the bug provides a reliable way for nearby attackers to execute malicious code of their choice on vulnerable Linux devices that use BlueZ for Bluetooth.

Intel, meanwhile, has issued this bare-bones advisory that categorizes the flaw as privilege-escalation or information-disclosure vulnerability. The advisory assigned a severity score of 8.3 out of a possible 10 to CVE-2020-12351, one of three distinct bugs that comprise BleedingTooth. "Potential security vulnerabilities in BlueZ may allow escalation of privilege or information disclosure," the advisory states. "BlueZ is releasing Linux kernel fixes to address these potential vulnerabilities." Intel, which is a primary contributor to the BlueZ open source project, said that the most effective way to patch the vulnerabilities is to update to Linux kernel version 5.9, which was published on Sunday. Those who can't upgrade to version 5.9 can install a series of kernel patches the advisory links to. Maintainers of BlueZ didn't immediately respond to emails asking for additional details about this vulnerability. Ars Technica points out that since BleedingTooth requires proximity to a vulnerable device, there's not much reason for people to worry about this vulnerability. "It also requires highly specialized knowledge and works on only a tiny fraction of the world's Bluetooth devices," it adds.

Google "has decided to freeze plans to launch its curated News Showcase in Australia over claims the draft News Media Bargaining Code is 'unworkable'," reports Engadget: Google still objected to what it called a "must include, must pay" approach in the code where it not only has to pay news outlets it links to, but is obligated to carry those outlets for free. The company argued it would deal with payment demands that would "not [be] financially sustainable" for any firm. It also argued that the code was too broad and could prove costly if there's a claimed violation, with Google potentially paying up to 10 percent of its Australian revenue for a single infraction.
"We believe these conditions could be amended to make it a fair and workable code," Google argues in its blog post, "a code that can work together with commercial deals and programs like News Showcase."

"The agreements we have signed in Australia and around the world show that not only are we willing to pay to license news content for a new product, but that we are able to strike deals with publishers," Google argues in its blog post, "without the draft code's onerous and prescriptive bargaining framework and one-sided arbitration model."

Engadget notes that Australia's Competition and Consumer Commission "previously said that a Google open letter decrying the code 'contains misinformation,' and that the company wouldn't be required to charge for free services or share data with news organizations like the letter suggested."

Slashdot reader omfglearntoplay shared this article from Science Alert: A cross-sectional analysis of 11,489 children, 655 of whom were exposed to THC in the womb, has found cannabis use during pregnancy is tied to a small elevation in psychotic-like behaviours later in life. These include aggression towards others, as well as attention and social problems... the relationship stood even when other confounding factors, such as genetic predispositions, were considered.

Whether or not this link is causal is another matter — after all, there are many other factors the researchers may not have considered — but in the context of other research, it's an interesting link worthy of further exploration... [S]everal other lines of evidence have shown prenatal cannabis exposure is associated with decreased attention span and some behavioural problems in children...

While research on the health effects of cannabis is slowly catching up with legalisation, data on cannabis use during pregnancy is still lagging far behind. And that could be inadvertently harming the next generation. A 2019 study of over 450,000 pregnant women found cannabis use more than doubled between 2002 and 2017, reaching 7 percent... Cannabis is reportedly used to deal with nausea and vomiting in early pregnancy, but there's little evidence to say whether this actually works or if it's safe... There is currently no known safe level of cannabis use during pregnancy or lactation.

The potential risks have led the American College of Obstetricians and Gynaecologists and the American Academy of Pediatrics to both advise against using cannabis in early pregnancy or while breastfeeding. Even the U.S. Surgeon General advises against cannabis use during pregnancy... While alcohol and tobacco during pregnancy are also linked to adverse health outcomes, these are already well documented. But many women don't know these are risks that might also come with prenatal exposure to weed.

An anonymous reader quotes a report from Wired: Facebook announced on Thursday that it has taken down three "coordinated inauthentic behavior" networks promoting disinformation that included nearly 300 Facebook and Instagram accounts along with dozens of Facebook Pages and Groups. While the efforts were seemingly run independently, and focused primarily outside of the US, each has ties to Russian intelligence -- and they collectively provide a sobering echo of the social media assault that roiled the 2016 election. The networks Facebook tackled dated back at least three years, but most had few followers at the time they were caught. They primarily promoted non-Facebook websites in an apparent effort to get around the platform's detection mechanisms, focusing on news and current events, particularly geopolitics. They targeted users in a number of countries, including Syria, Ukraine, Turkey, Japan, the UK, and Belarus, as well as the United States to a lesser extent.

Facebook attributed one of the disinformation distribution networks to "actors associated with election interference in the US in the past, including those involved in 'DC leaks' in 2016." In other words, the actors were likely tied to Fancy Bear, also known as APT 28, the group also responsible for hacks of the Democratic National Committee and Hillary Clinton's presidential campaign. Facebook attributes the second network to "individuals associated with past activity by the Russian Internet Research Agency," the so-called troll farm that wreaked havoc on Facebook in 2016. The company noted that it is unclear whether the IRA is still an active entity or what form it takes at this point. The third network had "links to individuals in Russia, including those associated with Russian intelligence services." None of the networks focused solely on the US. Instead, they engaged with a broad array of topics connected to Russian interests, including the war in Ukraine, the Syrian civil war, the election and protests in Belarus, Russia's relationship with NATO, and politics in Turkey.

BBC News reports: In 1991, the trade body that represents electrical companies in the U.S., the Edison Electric Institute, created a campaign called the Information Council for the Environment which aimed to "Reposition global warming as theory (not fact)". Some details of the campaign were leaked to the New York Times. "They ran advertising campaigns designed to undermine public support, cherry picking the data to say, 'Well if the world is warming up, why is Kentucky getting colder?' They asked rhetorical questions designed to create confusion, to create doubt," argued Naomi Oreskes, professor of the history of science at Harvard University and co-author of Merchants of Doubt. But back in the 1990 there were many campaigns like this...

Most of the organisations opposing or denying climate change science were right-wing think tanks, who tended to be passionately anti-regulation. These groups made convenient allies for the oil industry, as they would argue against action on climate change on ideological grounds. Jerry Taylor spent 23 years with the Cato Institute — one of those right wing think tanks — latterly as vice president. Before he left in 2014, he would regularly appear on TV and radio, insisting that the science of climate change was uncertain and there was no need to act.

Now, he realises his arguments were based on a misinterpretation of the science, and he regrets the impact he's had on the debate.
Harvard historian Naomi Oreskes discovered leading climate-change skeptics had also been prominent skeptics on the dangers of cigarette smoking. "That was a Eureka moment," Oreskes tells BBC News. "We realised this was not a scientific debate." Decades before the energy industry tried to undermine the case for climate change, tobacco companies had used the same techniques to challenge the emerging links between smoking and lung cancer in the 1950s... As a later document by tobacco company Brown and Williamson summarised the approach: "Doubt is our product, since it is the best means of competing with the 'body of fact' that exists in the minds of the general public." Naomi Oreskes says this understanding of the power of doubt is vital. "They realise they can't win this battle by making a false claim that sooner or later would be exposed. But if they can create doubt, that would be sufficient — because if people are confused about the issue, there's a good chance they'll just keep smoking...."

Academics like David Michaels, author of The Triumph of Doubt, fear the use of uncertainty in the past to confuse the public and undermine science has contributed to a dangerous erosion of trust in facts and experts across the globe today, far beyond climate science or the dangers of tobacco. He cites public attitudes to modern issues like the safety of 5G, vaccinations — and coronavirus.

"By cynically manipulating and distorting scientific evidence, the manufacturers of doubt have seeded in much of the public a cynicism about science, making it far more difficult to convince people that science provides useful — in some cases, vitally important — information.

"There is no question that this distrust of science and scientists is making it more difficult to stem the coronavirus pandemic."

Australia's national public broadcaster ABC reports: A Chinese company with links to Beijing's military and intelligence networks has been amassing a vast database of detailed personal information on thousands of Australians, including prominent and influential figures. A database of 2.4 million people, including more than 35,000 Australians, has been leaked from the Shenzhen company Zhenhua Data which is believed to be used by China's intelligence service, the Ministry of State Security. Zhenhua has the People's Liberation Army and the Chinese Communist Party among its main clients.

Information collected includes dates of birth, addresses, marital status, along with photographs, political associations, relatives and social media IDs. It collates Twitter, Facebook, LinkedIn, Instagram and even TikTok accounts, as well as news stories, criminal records and corporate misdemeanours. While much of the information has been "scraped," some profiles have information which appears to have been sourced from confidential bank records, job applications and psychological profiles.

The company is believed to have sourced some of its information from the so-called "dark web". One intelligence analyst said the database was "Cambridge Analytica on steroids", referring to the trove of personal information sourced from Facebook profiles in the lead up to the 2016 US election campaign. But this data dump goes much further, suggesting a complex global operation using artificial intelligence to trawl publicly available data to create intricate profiles of individuals and organisations, potentially probing for compromise opportunities.

Zhenhua Data's chief executive Wang Xuefeng, a former IBM employee, has used Chinese social media app WeChat to endorse waging "hybrid warfare" through manipulation of public opinion and "psychological warfare"....
The database was leaked to a US academic, who worked with Canberra cyber security company Internet 2.0 and "was able to restore 10 per cent of the 2.4 million records for individuals...

"Of the 250,000 records recovered, there are 52,000 on Americans, 35,000 Australians, 10,000 Indian, 9,700 British, 5,000 Canadians, 2,100 Indonesians, 1,400 Malaysia and 138 from Papua New Guinea."

Long-time Slashdot reader PuceBaboon tipped us off to a story in Japan Times: About 18 million yen ($169,563) has been stolen from bank accounts linked to NTT Docomo Inc.'s e-money service, the company said Thursday, prompting police to begin an investigation into a suspected scam. As of Thursday, 66 cases of improper withdrawals from bank accounts linked to the mobile carrier's e-money service had been confirmed, NTT Docomo Vice President Seiji Maruyama told a news conference in Tokyo.

"We apologize to the victims" of the improper withdrawals, Maruyama said at the news conference, which was also attended by other company executives.

Maruyama acknowledged that checks on user identification had been "insufficient." NTT Docomo, which has stopped allowing customers to create new links between its e-money service and accounts at 35 partner banks, has said it will try to compensate victims for the full amounts stolen through negotiations with the banks.... In May last year, there were similar cases of improper withdrawals from Resona Bank accounts linked to NTT Docomo's e-money service. Docomo acknowledged it had failed to boost user identity checks to prevent a recurrence...

In the recent cases, third parties are believed to have obtained the victims' bank account numbers and passwords, and used them to register with the e-money service to transfer funds.

Space.com reports: Laika, a stray dog scooped off the streets of Moscow, launched on the Soviet Union's Sputnik 2 mission in November 1957, just a month after Sputnik 1's liftoff opened the space age. The 11-lb. (5 kilograms) mixed-breed quickly died of overheating and circled Earth as a corpse until April 1958, when Sputnik 2 fell back into the atmosphere and burned up.

Laika was sacrificed to aid humanity's march into the cosmos, her pioneering mission and those of her successors designed to help show that our species could survive jaunts into the final frontier. A new documentary called "Space Dogs" asks us to examine that sacrifice and what it says about us. [Trailer here] "This film is about the relationship of another species to us humans. A species that has been used in space history in two ways: both as an experimental object and as a symbol of courage and heroism," directors Elsa Kremser and Levin Peter said in a statement.

"The dogs had to fulfill mankind's dream by conquering the cosmos for them," the duo added...

Kremser and Peter dug up stunning, never-before-seen footage of Laika and other Soviet space dogs. Some of these archival snippets show the pups being prepped for their landmark launches, their poor little bodies bristling with implanted tubes and wires. Other footage depicts post-landing processing of the shorn and wobbly strays fortunate enough to survive their orbital ordeals. Getting ahold of this priceless historic material was no easy task...

"Space Dogs" is not chiefly about Laika and her fellow space explorers; the historical footage comprises less than one-third of the roughly 90-minute film. The bulk of the documentary is devoted to strays on the streets of modern Moscow, especially one young dog with floppy ears who roams the city with charismatic enthusiasm.
This week saw the "virtual cinema launch" of the documentary, with a real-world release into theatres next weekend.

"Facebook is launching a recruitment drive for poll workers this weekend, putting messages into users' News Feeds with links to poll worker registration sites in their state," reports the Verge: CEO Mark Zuckerberg said in a post announcing the drive that it was part of the company's larger voting information campaign, which has a goal of helping 4 million people register and vote. "Voting is voice, and in a democracy, it's the ultimate way we hold our leaders accountable and make sure the country is heading in the direction we want," Zuckerberg wrote.

The social media giant also will join dozens of other companies offering paid time off to employees in the US who work the polls on Election Day, according to Zuckerberg's post... [M]ore than 70 percent of states and jurisdictions were having difficulty staffing the jobs even before the pandemic.
"We've also offered free ad credits to every state election authority so they can recruit poll workers across our platforms..." Zuckerberg says in his post.

"Priscilla and I have also personally donated $300 million to non-partisan organizations supporting states and local counties in strengthening our voting infrastructure."

gollum123 shares a report from CNBC: Dining out raises the risk of contracting Covid-19 more than other activities, such as shopping or going to a salon, according to a report published Thursday by the Centers for Disease Control and Prevention. The findings come as many states consider the safest ways to reopen businesses, especially restaurants. Those who tested positive for SARS-CoV-2, the virus that causes Covid-19, "were approximately twice as likely to have reported dining at a restaurant than were those with negative SARS-CoV-2 test results," the study authors wrote. And those who were diagnosed without any known exposure to the virus were more likely to report having visited a bar or coffee shop in the previous two weeks. The increased risk makes sense; it's easy to wear a mask in stores or in places of worship, but it's nearly impossible to do so while eating and drinking. In addition to being maskless, individuals are often close together when eating at a restaurant, sitting across the table from one another.

Last week, India banned another 118 apps with links to China. PUBG Mobile Lite and PUBG Mobile Nordic Map were included in that sweeping ban. Now, PUBG Corporation says it's looking for ways to bring the apps back to India. Engadget reports: The South Korean company was included in the ban because the mobile games are published by China's Tencent. In a statement shared today, PUBG Corporation said it will no longer use Tencent Games to publish the PUBG Mobile franchise in India. According to TechCrunch, prior to the ban, PUBG Mobile had more than 40 million monthly active users in India, so there's a strong incentive to restore the game.

"Moving forward, PUBG Corporation will take on all publishing responsibilities within the country," it said. "As the company explores ways to provide its own PUBG experience for India in the near future, it is committed to doing so by sustaining a localized and healthy gameplay environment for its fans."

Science Alert reports: People who eat a lot of industrially processed junk food are more likely to exhibit a change in their chromosomes linked to aging, according to research presented Tuesday at an online medical conference. Three or more servings of so-called "ultra-processed food" per day doubled the odds that strands of DNA and proteins called telomeres, found on the end of chromosomes, would be shorter compared to people who rarely consumed such foods, scientists reported at the European and International Conference on Obesity.

Short telomeres are a marker of biological aging at the cellular level, and the study suggests that diet is a factor in driving the cells to age faster. While the correlation is strong, however, the causal relationship between eating highly processed foods and diminished telomeres remains speculative, the authors cautioned.

The terrorist group is defeated and routed. But its backup plan survives. From a report: It all began on October 27, 2019. Rumour was, Abu Bakr al Baghdadi, the leader of Isis, was dead. Nothing was confirmed, but already the jihadist world online was thrumming with excitement and trepidation. "I was walking through an airport," Moustafa Ayad tells me. "Jet-lagged out of my mind." A deputy director of the counter-extremism think tank Institute of Strategic Dialogue (ISD), Ayad tries to stay on top of the constant struggles and skirmishes, retreats and resurgences between Isis and their many enemies online. That day, as he scrolled through his phone, a blitz of Isis propaganda stared back at him. The digital Jihad was raising a dirge to Baghdadi on Twitter. Flitting from account to pro-Isis account, Ayad noticed something strange. Some accounts carried short, discreet links, not within their tweets, but nestled in their biographies. He clicked.

The link, he realised, was not quite like any other he'd ever followed before. On his phone, Ayad saw folder after folder of meticulously catalogued terrorist content. "I thought it was a joke," Ayad says. "Some kind of scam." In the echoing marbled expanse of Dubai International Airport, on public Wi-Fi, in a Starbucks queue, he had stumbled upon a gigantic, sprawling cache of Isis material. He clicked on a PowerPoint presentation, one of countless now in front of him. "Al Qaeda Airlines", it said: a case study of the mechanics of hijacking planes, making your own chloroform, and the cell structure needed to organise a coordinated terrorist attack. Just then, a dim tannoy announced his flight. Over the weeks that followed, Ayad and his colleagues at the ISD began their journey through the cache. At first glance, the cache looks like a bunch of files on DropBox -- its colour palette an on-brand Isis black-and-white, with a roster of ordinary folders. But the first thing you notice is the size. Its 4,000 folders hold over a terabyte and a half of multimedia multilingual content, spanning Arabic, English, German, French, Spanish, Russian, Bangla, Turkish, and Pashto. "It's a blueprint for terrorism, complete with footnotes" Ayad tells me. "It's everything anyone with an inclination for violence would need to carry out an attack."

The cache's content is a blend of the official products of Isis itself with those of often more obscure precursors, such as the Tawhid wal-Jihad Group, who fought coalition forces in Iraq, and the umbrella organisation of other insurgent groups, Majlis Shura al-Mujahidin. A small amount of it -- just a few per cent by size -- captures in screeds and sermons the ideas of key ideologues of Isis itself. The key personality in the "Fatwas over the Airwaves" folder, for instance, is Turki al Banali, a Bahraini cleric-turned-recruiter who in each episode desperately gives the core concepts of Salafi Jihadism an Isis-friendly spin. Much of the stash, however, simply portrays daily life within Isis, back when the terrorist group still controlled a chunk of territory sitting astride Syria and Iraq. There are school curricula covering the six core subjects that, some estimates believe, were once taught to 130,000 children: English, PE, Arabic, Koranic Studies, Geography & History and a subject called "'ideology", a course of indoctrination in Isis's party lines expounding on the death and destruction awaiting all those who strayed outside of them. It is a mix of the banal and the horrifying -- conjugating verbs and killing the infidels, where early readers learn that "S is for sniper" and "G is for grenade".

An anonymous reader quotes a report from Ars Technica: Google and Facebook have withdrawn plans to build an undersea cable between the United States and Hong Kong after the Trump administration raised national security concerns about the proposal. On Thursday, the companies submitted a revised plan that bypasses Hong Kong but includes links to Taiwan and the Philippines that were part of the original proposal. One of the original project's partners, Hong Kong company Pacific Light Data Communication, has been dropped.

Federal law requires a license from the Federal Communications Commission to build an undersea cable connecting the United States with a foreign country. When Google and Facebook submitted their application for an undersea cable connecting the US to Hong Kong, Taiwan, and the Philippines, a committee of federal agencies led by the Justice Department recommended against approving the connection to Hong Kong, citing the "current national security environment." The Trump administration cited "the [People's Republic of China] government's sustained efforts to acquire the sensitive personal data of millions of U.S. persons" as a reason to deny the application. The proposed cable's "high capacity and low latency would encourage U.S. communications traffic crossing the Pacific to detour through Hong Kong before reaching intended destinations in other parts of the Asia Pacific region," the government argued.

The Guardian ran an article by the author of Pale Rider: The Spanish Flu of 1918 and How It Changed the World looking at problems with our own race for a vaccine in 2020: On 2 August, Steven Salzberg, a computational biologist at Johns Hopkins University in Baltimore, Maryland, suggested in Forbes magazine that a promising vaccine be rolled out to a wider pool of volunteers before clinical trials had been completed, triggering an outcry (and some sympathy) that prompted him to recant the next day. Meanwhile, a research group with links to Harvard University continues to defend its publication in July of a recipe for a do-it-yourself Covid-19 vaccine — one that only the group's 20-odd members had previously tested...

The accumulation of such incidents has left many scientists feeling deeply uneasy. "I'm more and more concerned that things are getting done in a rush," says Beate Kampmann, who directs the Vaccine Centre at the London School of Hygiene and Tropical Medicine (and whose work email account was subject to a failed hack in July). On 13 August, the editor-in-chief of the journal Science issued a call to order. "Short cuts in testing for vaccine safety and efficacy endanger millions of lives in the short term and will damage public confidence in vaccines and in science for a long time to come," wrote H Holden Thorp.

He went on to point out that the stakes are higher than with unproven therapies such as hydroxychloroquine, because a vaccine is given to healthy people. "Approval of a vaccine that is harmful or isn't effective could be leveraged by political forces that already propagate vaccine fears," he warned... Kampmann, meanwhile, feels it's important not to let the recent shenanigans in the vaccine community overshadow its huge achievements. If current forecasts are correct, a Covid-19 vaccine will be available in 2021 — smashing all records for vaccine development — and there will be many more reasons to trust it than not to. Still, those with their eye on that glittering prize should remember what is at stake. "We have to be careful," she says, "because what we do with Covid-19 could have repercussions for trust in all vaccine programs."

Krebs on Security reports: Email service provider Sendgrid is grappling with an unusually large number of customer accounts whose passwords have been cracked, sold to spammers, and abused for sending phishing and email malware attacks. Sendgrid's parent company Twilio says it is working on a plan to require multi-factor authentication for all of its customers, but that solution may not come fast enough for organizations having trouble dealing with the fallout in the meantime...

[A] large number of organizations allow email from Sendgrid's systems to sail through their spam-filtering systems. To make matters worse, links included in emails sent through Sendgrid are obfuscated (mainly for tracking deliverability and other metrics), so it is not immediately clear to recipients where on the Internet they will be taken when they click...

Rob McEwen is CEO of Invaluement.com, an anti-spam firm whose data on junk email trends are used to improve the spam-blocking technologies deployed by several Fortune 100 companies. McEwen said no other email service provider has come close to generating the volume of spam that's been emanating from Sendgrid accounts lately. "As far as the nasty criminal phishes and viruses, I think there's not even a close second in terms of how bad it's been with Sendgrid over the past few months," he said...

Neil Schwartzman, executive director of the anti-spam group CAUCE, said Sendgrid's two-factor authentication plans are long overdue, noting that the company bought Authy back in 2015. "Single-factor authentication for a company like this in 2020 is just ludicrous given the potential damage and malicious content we're seeing," Schwartzman said... Schwartzman said if Twilio doesn't act quickly enough to fix the problem on its end, the major email providers of the world (think Google, Microsoft and Apple) — and their various machine-learning anti-spam algorithms — may do it for them.
Krebs found an online cybercriminal selling access to more than 400 compromised Sendgrid accounts. "Accounts that can send up to 40,000 emails a month go for $15, whereas those capable of blasting 10 million missives a month sell for $400."