A 2014 breach at Twitch "was so bad that Twitch essentially had to rebuild much of its code infrastructure because the company eventually decided to assume most of its servers were compromised," reports Vice. "They figured it would be easier to just label them 'dirty,' and slowly migrate them to new servers, according to three former employees who saw and worked with these servers."

Slashdot reader em1ly shares Vice's report (which Vice based on interviews with seven former Twitch employees who'd worked there when the breach happened): The discovery of the suspicious logs kicked off an intense investigation that pulled nearly all Twitch employees on deck. One former employee said they worked 20 hours a day for two months, another said he worked "three weeks straight." Other employees said they worked long hours for weeks on end; some who lived far from the office slept in hotel rooms booked by the company. At the time, Twitch had few, if any, dedicated cybersecurity engineers, so developers and engineers from other teams were pulled into the effort, working together in meeting rooms with glass windows covered, frantically trying to figure out just how bad the hack was, according to five former Twitch employees who were at the company at the time...

Twitch's users would only find out about the breach six months after its discovery, on March 23, 2015, when the company published a short blog post that explained "there may have been unauthorized access to some Twitch user account information," but did not let on nearly how damaging the hack was to Twitch internally.... When Twitch finally disclosed the hack in March of 2015, security engineers at Twitch and Amazon, who had come to help with the incident response, concluded that the hack had started at least eight months before the discovery in October of 2014, though they had no idea if the hackers had actually broken in even earlier than that, according to the former employee. "That was long enough for them to learn entirely how our whole system worked and the attacks they launched demonstrated that knowledge," the former employee said...

For months after the discovery and public announcement, several servers and services were internally labeled as "dirty," as a way to tell all developers and engineers to be careful when interacting with them, and to make sure they'd get cleaned up eventually. This meant that they were still live and in use, but engineers had put restrictions on them in the event that they were still compromised, according to three former employees. "The plan apparently was just to rebuild the entire infra[structure] from known-good code and deprecate the old 'dirty' environment. We still, years later, had a split between 'dirty' services (servers or other things that were running when the hack took place) and 'clean' services, which were fired up after," one of the former employees said. "We celebrated office-wide the day we took down the last dirty service!"
Another former employees tells Vice that the breach came as a surprise, even though the company hadn't invested in keeping itself secure. "Security efforts kept getting cancelled or deprioritized with the argument that 'everyone loves Twitch; no one wants to hack us.'" The Twitch engineer who'd first stumbled onto the breach described his reaction to Vice. " 'Oh fuck.' But I remember thinking that there was so much 'I told you so' here."

One former employee added later that a more recent incident just this month "demonstrates that they didn't learn anything from the incident in 2014." But not everyone agrees. Other former employees, however, said that the damage of this new data breach appears to be less severe than the 2014 hack. And that it's likely thanks to Twitch taking security more seriously since then.

Pine64 today announced its latest Linux-powered device, the PinePhone Pro, an update to the original PinePhone which sees a more powerful device running mainline Linux (Manjaro in this case) on a mobile device that works as a cellphone and a desktop computer. Tom's Hardware reports: This combination of hardware and software makes the still slightly futuristic idea of confluence between mobile and desktop devices seem a step closer. Carry it around with you, and it's a phone. Plug it into a monitor, and it's a desktop PC. The KDE Plasma Mobile front-end adapts to the circumstances. Inside, it's much like any other phone, with a Rockchip RK3399S six-core SoC operating at 1.5GHz, 4GB of dual-channel LPDDR4 RAM, and 128GB of internal eMMC flash storage. It features a 13MP main camera sensor and a 5MP front-facing camera. There's a Micro-SD slot for expanded storage, and a six-inch 1440 x 720 IPS touchscreen. The PinePhone Pro is not a typical cell phone, rather the concept of convergence, the ability to use your phone as a computer is intriguing. Plug your PinePhone Pro into an external display and use it as a low-power desktop computer is something that has been attempted by a number of companies, including Canonical's attempt with Ubuntu Edge.

PinePhone Pro offers something that is missing from the majority of phones, privacy. A series of hardware DIP-switches, hidden under a rear cover, cut off access to the cameras, microphone, Wi-Fi 5 and Bluetooth 4.1 chips, headphone jack, and LTE modem (including GPS) should you ever need to. The layout and Pogo Pins of the new phone are identical to the original PinePhone, so all existing accessories should work. Retailing at $399, the PinePhone Pro's makers are realistic about the challenges of putting desktop Linux on a mobile device, especially in an ecosystem dominated by iOS and Android.

Blender today announced that Apple has joined the Blender Development Fund to support continued development of the free open source 3D graphics tool. From a report: Alongside a contribution to the Development Fund, Apple will provide engineering expertise and additional resources to Blender and its broader development community to help support Blender artists and developers, according to the announcement. Blender CEO Ton Roosendaal said the announcement means that "macOS will be back as a complete supported Blender platform."

phalse phace writes: Facing a significantly more challenging operating environment and greater compliance requirements in China, Microsoft has decided to shut down LinkedIn in the country. The announcement follows the rebuke of LinkedIn executives by China's internet regulator in March for failing to control political content and gave them 30 days to do so. In recent months, LinkedIn notified several China-focused human-right activists, academics and journalists that their profiles were being blocked in China, saying they contained prohibited content. LinkedIn said it would replace its Chinese service, which restricts some content to comply with local government demands, with a job-board service lacking social-media features, such as the ability to share opinions and news stories.

An anonymous reader quotes a report from Bloomberg Law: Companies including Amazon and Facebook could face fines over fake reviews or other misleading endorsements online, according to a warning from the Federal Trade Commission. The warning comes as social media has blurred the line between authentic content and advertising, according to the FTC's Wednesday announcement. Practices such as influencer marketing leave some consumers confused about when posters are paid to endorse a product, if their connection to the brand isn't clearly disclosed.

The agency sent more than 700 companies a notice that they could incur penalties of up to $43,792 per violation if they use endorsements in ways that run counter to past FTC enforcement cases. The notices demonstrate FTC chair Lina Khan's efforts to ramp up enforcement under the commission's existing authorities, following a recent U.S. Supreme Court ruling that limited the agency's ability to seek monetary awards in court. The commission's move on endorsements relies on an agency authority that allows for civil penalties against a company that engages in conduct that it knows has been found unlawful in a previous FTC administrative order, other than a consent order.

The original Xbox was released 20 years ago next month, and to mark the upcoming anniversary, the console's designer has apologized to AMD's engineers and its CEO for Microsoft's last-minute decision to drop AMD for rival Intel. GameSpot reports: Seamus Blackley apologized on Twitter to the AMD engineers who worked with Microsoft to create the prototype Xbox consoles that the company used in the lead-up to the OG Xbox's release in November 2001. To AMD CEO Lisa Su, Blackley said, "I beg mercy." "I was standing there on the stage for the announcement, with [Bill Gates], and there they were right there, front row, looking so sad," he said of AMD engineers in the room. "I'll never forget it. They had helped so much with the prototypes. Prototypes that were literally running the launch announcement demos ON AMD HARDWARE." "I felt like such an ass," Blackley said. Microsoft dropped AMD in favor of Intel due to "pure politics," Blackley said in another tweet.

Activision unveiled its Ricochet anti-cheat system for Call of Duty games as it tries to attack a longstanding cheating problem that has frustrated a lot of players. From a report: The new system will get rid of players cheating in Call of Duty: Warzone later this year and it will debut with Call of Duty: Vanguard, the new premium game coming on multiple platforms on November 5. Activision, whose parent company Activision Blizzard has been sued for having an alleged toxic culture of its own, said in its announcement that cheating in Call of Duty is frustrating for players, developers, and the entire community. The anti-cheat team has made great strides in fighting this persistent issue that affects so many, but the company said it knows more must be done. Ricochet is supported by a team of dedicated professionals focused on fighting unfair play.

The Ricochet anti-cheat initiative is a multi-faceted approach to combat cheating, featuring new server-side tools which monitor analytics to identify cheating, enhanced investigation processes to stamp out cheaters, updates to strengthen account security, and more. Ricochet's backend anti-cheat security features will launch alongside Call of Duty: Vanguard, and later this year with the Pacific update coming to Call of Duty: Warzone. In addition to server enhancements coming with Ricochet is a new PC kernel-level driver, developed internally for the Call of Duty franchise, and launching first for Call of Duty: Warzone. This driver will assist in the identification of cheaters, reinforcing and strengthening the overall server security. The kernel-level driver launches alongside the Pacific update for Warzone later this year. Further reading: Cheat Maker Is Not Afraid of Call of Duty's New Kernel-Level Anti-Cheat.

An anonymous reader quotes a report from Ars Technica: On Monday, Nintendo of Europe announced a very region-specific -- and era-specific -- tweak for its upcoming collection of N64 games on Switch: an option to switch between the video standards PAL and NTSC. While the announcement may sound ho-hum to outsiders, anyone in Europe with a vested interest in classic gaming will appreciate what the toggle affords. The issue boils down to differences between NTSC and PAL, the leading video broadcast standards on CRT TVs during Nintendo's '80s and '90s heyday. North American and Japanese TV sets were configured for NTSC, which has a refresh rate standard of 60 Hz, while PAL sets dominated Europe with a slightly higher pixel resolution and a lower refresh rate standard of 50 Hz.

Should you merely watch TV series or films on both NTSC and PAL sets, the difference between each is noticeable yet mild. But for much of the '80s and '90s, many TV video games, especially the ones made by the largely Japanese console industry, suffered in PAL because they were coded specifically for NTSC standards. In order to port them to PAL, developers generally didn't go back and reconfigure all of the timings, especially in the case of early 3D games. Instead, their internal clock speeds were often slowed down to 83.3 percent to match European TV refresh rates. This meant both slower gameplay than originally coded and slower playback of music and sound effects. (These also often shipped with NTSC's pixel maximums in mind in such a way that they were squished to fit on PAL displays, as opposed to being optimized for them.)

Sure enough, last month's announcement of N64 games on Nintendo Switch Online put fear into European classic-gamer hearts. That region's reveal video included slightly slower timings of classic N64 games compared to videos posted by Nintendo of America and Nintendo of Japan, since they were emulating the original European retail releases. At that time, Nintendo of Europe did not immediately reply to social media questions about whether European Switch owners would get an option for 60 Hz N64 gameplay -- especially in an LCD TV era, where such CRT-related restrictions no longer technically apply to most EU and UK TV owners. Monday's announcement confirms that European players will get a 60 Hz option by default for every N64 game in the Nintendo Switch Online "Expansion Pack" collection, along with the option to access a game's original 50 Hz version if it launched with multi-language support. Reading between the lines, we believe this means that if a European N64 game only had English language support, its Switch Online version will be the North American NTSC ROM.

Apple wants another go in its legal battle against Epic Games. From a report: On Friday night, Apple announced it would ask for a stay on a judge's September order saying Apple would have to allow apps to direct customers to external websites. That ruling would let app businesses circumvent Apple's requirement to facilitate payments only inside of apps, where Apple takes up to a 30% cut. Apple is also appealing the ruling. Because Epic Games is also appealing the nine counts it lost, it could take years before the case is resolved and Apple is forced to make any changes to iOS, the operating system for iPhones, as the two companies wrangle through the appeals process in court. The judge is expected to rule on Apple's request for a stay next month.

Apple's move is a surprising turnaround from its tone following the decision in September. While the company always left open the possibility of an appeal, it portrayed the judge's ruling as a resounding legal win for its App Store business model, which has come under fire from technology rivals, international regulators and members of the U.S. Congress. "We are very pleased with the Court's ruling and we consider this a huge win for Apple," Kate Adams, Apple's lawyer, said in September following the ruling. The Friday night announcement inspired a torrent of commentary from Apple critics. They pointed out the move would preserve Apple's App Store profits by preventing apps from using alternative payment systems. One company announced last week that it was already working on a cheaper, web-based alternative to Apple's app payments -- a move made possible only by the ruling that Apple is now appealing.

Deadly counterfeit versions of prescription medications are "widely available on social media platforms," reports NBC News, and "2 in 5 of those seized and tested in the United States contain enough fentanyl to kill, according to a warning issued by the Drug Enforcement Administration last month."

So now Snapchat "said it has improved the automated systems it uses to detect the sale of illegal drugs on the app, hired more people to respond to law enforcement requests for data during criminal investigations and developed an in-app education portal called Heads Up focused on the dangers of fentanyl and counterfeit pills." "We have heard devastating stories from families impacted by this crisis, including cases where fentanyl-laced counterfeit pills were purchased from drug dealers on Snapchat," said Snapchat's parent company, Snap, in a blog post. "We are determined to remove illegal drug sales from our platform."

The announcement comes less than one week after NBC News profiled eight parents whose children had died after taking a single fentanyl-laced pill purchased on Snapchat.

On Sept. 27, DEA Administrator Anne Milgram said social media companies were not doing enough to stop the sale of counterfeit pills on their platforms...

Snap said improvements to its proactive detection tools — which use artificial intelligence to identify pictures, words and emojis related to drug sales — have allowed the company to increase the number of accounts removed by 112% during the first half of 2021. For the last six months, it has also been using intelligence from public health data company S-3, which scours the internet for drug sellers, to identify Snapchat accounts that are potentially violating the rules. S-3 does not search directly on Snapchat, but instead looks for dealers elsewhere — on other social media sites or the dark web — who reference a Snapchat account in their advertisements.

An anonymous reader quotes a report from Motherboard: At Duke University's Marcus Center for Cellular Cures, parents can enroll their children into a number of clinical trials that aim to study the effects of cells derived from umbilical cord blood on treating the effects of autism and brain injuries; adults can also participate in a trial testing whether cord blood can help them recover from ischemic strokes. And when parents can't get their children into any of these clinical trials, particularly for autism, they often opt for what's called the Expanded Access Program (EAP), in which they pay between $10,000 and $15,000 to get their kids a single infusion. All of the trials use products derived from human umbilical cord blood, which is a source of stem cells as well as other types of cells. The autism trials are using a type of immune cells called monocytes, according to Dr. Joanne Kurtzberg, a well-respected Duke professor who's conducting clinical trials into whether cord blood can help with autism, and who has been researching stem cells since the early '90s. (On ClinicalTrials.gov, however, these trials are listed as using mesenchymal stromal cells, which are a completely different type of cord blood cell.)

Now, a for-profit company called Cryo-Cell International with ties to Duke researchers has indicated that it plans to open clinics promoting these treatments, under a licensing agreement with the renowned North Carolina university. In their investor presentation, Cryo-Cell said they plan to become "an autonomous, vertically integrated cellular therapy company that will treat patients." Duke and Cryo-Cell's rush to monetize a procedure before it's shown to have solid benefits has created concern, though, across the community of scientists, clinicians, and medical ethicists who study autism treatments. The hope is that these cord blood infusions can improve some autism symptoms, like socialization and language, or decrease the inflammation that some parents and clinicians think might exacerbate autism symptoms. Early study results, however, haven't been very promising.

A large randomized clinical trial, the results of which were released in May 2020, showed that a single infusion of cord blood was not, in the words of the researchers, "associated with improved socialization skills or reduced autism symptoms." This is why Duke's latest move comes as such a surprise: The university and Cryo-Cell have told investors that they're planning to open a series of "infusion centers." At these clinics, Cryo-Cell will use Duke's technology and methods to offer cord blood treatments for $15,000 per infusion. In an exuberant presentation for investors (PDF), Cryo-Cell said it estimates an annual revenue of $24 million per clinic; it hasn't disclosed how many clinics it plans to open. At least one will reportedly open in Durham, North Carolina. The move follows a June 2020 announcement that Cryo-Cell had entered into an exclusive patent-option agreement with Duke, allowing it to manufacture and sell products based on patents from Dr. Joanne Kurtzberg.

Google plans to invest $1 billion in Africa over the next five years to ensure access to fast and cheaper internet and will back startups to support the continent's digital transformation, it said on Wednesday. From a report: The unit of U.S. tech company Alphabet made the announcement at a virtual event where it launched an Africa Investment Fund, through which it will invest $50 million in startups, providing them with access to its employees, network and technologies. Nitin Gajria, managing director for Google in Africa told Reuters in a virtual interview that the company would among others, target startups focusing on fintech, e-commerce and local language content. "We are looking at areas that may have some strategic overlap with Google and where Google could potentially add value in partnering with some of these startups," Gajria said. In collaboration with not-for-profit organisation Kiva, Google will also provide $10 million in low interest loans to help small businesses and entrepreneurs in Ghana, Kenya, Nigeria and South Africa so they can get through the economic hardship created by COVID-19.

On Tuesday, D-Wave released its roadmap for upcoming processors and software for its quantum annealers. The company is also announcing that it's going to be developing its own gate-based hardware, which it will offer in parallel with the quantum annealer. Ars Technica's John Timmer talked with company CEO Alan Baratz to understand all the announcements. An anonymous reader shares an excerpt from the report: The simplest part of the announcement to understand is what's happening with D-Wave's quantum-annealing processor. The current processor, called Advantage, has 5,000 qubits and 40,000 connections among them. These connections play a major role in the chip's performance as, if a direct connection between two qubits can't be established, others have to be used to act as a bridge, resulting in a lower effective qubit count. Starting this week, users of D-Wave's cloud service will have access to an updated version of Advantage. The qubit and connection stats will remain the same, but the device will be less influenced by noise in the system (in technical terms, its qubits will maintain their coherence longer). [...] Further out in the future is the follow-on system, Advantage 2, which is expected late next year or the year after. This will see another boost to the qubit count, going up to somewhere above 7,000. But the connectivity would go up considerably as well, with D-Wave targeting 20 connections per qubit.

D-Wave provides a set of developer tools it calls Ocean. In previous iterations, Ocean has allowed people to step back from directly controlling the hardware; instead, if a problem could be expressed as a quadratic unconstrained binary optimization (QUBO), Ocean could produce the commands needed to handle all the hardware configuration and run the problem on the optimizer. D-Wave referred to this as a hybrid problem solver, since Ocean would use classical computing to optimize the QUBO prior to execution. The only problem is that not everyone who might be interested in trying D-Wave hardware knows how to express their problem as a QUBO. So, the new version of Ocean will allow an additional layer of abstraction by allowing problems to be sent to the system in the format typically used by people who tend to solve these sorts of problems. "You will now be able to specify problems in the language that data scientists and data analysts understand," Baratz promised.

The biggest part of today's announcement, however, may be that D-Wave intends to also build gate-based hardware. Baratz explained that he thinks that optimization is likely to remain a valid approach, pointing to a draft publication that shows that structuring some optimization problems for gate-based hardware may be so computationally expensive that it would offset any gains the quantum hardware could provide. But it's also clear that gate-based hardware can solve an array of problems that a quantum annealer can't. He also argued that D-Wave has solved a number of problems that are currently limiting advances in gate-based hardware that uses electronic qubits called transmons. These include the amount and size of the hardware that's needed to send control signals to the qubits and the ability to pack qubits in densely enough so that they're easy to connect but not close enough that they start to interfere with each other. One of the problems D-Wave faces, however, is that the qubits it uses for its annealer aren't useful for gate-based systems. While they're based on the same bit of hardware (the Josephson junction), the annealer's qubits can only be set as up or down. A gate-based qubit needs to allow manipulations in three dimensions. So, the company is going to try building flux qubits, which also rely on Josephson junctions but use them in a different way. So, at least some of the company's engineering expertise should still apply.

skam240 writes: California has just become the first state to add Covid-19 vaccination to its list of required vaccines for in-school attendance. "The requirement will go into effect at the start of the term that follows the FDA's full approval for that grade group -- either January 1 or July 1," reports CNN, citing a release from Gov. Gavin Newsom's office. For grades 7-12 the requirement is expected to begin on July 1, 2022. Newsom's office said independent study is an option for unvaccinated students. "This will accelerate our effort to get this pandemic behind us," Newsom told CNN's Ana Cabrera minutes after making the announcement. "We already mandate 10 vaccines. In so many ways... it's probably the most predictable announcement."

"I have four young kids. I can't take this anymore. I'm like most parents, I want to get this behind us, get this economy moving again, make sure our kids never have to worry about getting a call saying they can't go to school the next day because one of the kids or a staff member tested positive," the governor added.

The White House will convene a 30-country meeting this month to try to ramp up global efforts to address the threat of ransomware to economic and national security, President Joe Biden said in a statement shared exclusively with CNN. From a report: "Cyber threats affect the lives and livelihoods of American families and businesses," national security adviser Jake Sullivan said in a statement to CNN. Sullivan said the administration would "continue to build on our whole-of-government effort to deter and disrupt cyberattacks." The goal of the alliance will be "to accelerate our cooperation in combatting cybercrime, improving law enforcement collaboration, stemming the illicit use of cryptocurrency, and engaging on these issues diplomatically," Biden is set to announce Friday, according to the statement. The announcement follows a series of ransomware attacks on US critical infrastructure firms in recent months, including one that forced major US fuel supplier Colonial Pipeline to shut down for days.

The first meeting of the multilateral initiative will be held virtually. It's part of a recurring effort to cut off revenue for ransomware groups and figure out ways to prosecute them, according to the White House. In bolstering US cybersecurity, "the Federal government needs the partnership of every American and every American company in these efforts," Biden added. Biden in June urged Russian President Vladimir Putin to crack down on cybercriminals operating from Russian soil, but US officials have been skeptical of Moscow's willingness to do so. After a brief period of quiet from some ransomware groups following the Biden-Putin meeting, hackers have claimed multiple US companies as victims in recent weeks.

Facebook has announced a $50 million fund that it says will help it develop the metaverse more responsibly. From a report: It's officially called the XR Programs and Research Fund, and the company says it'll be invested into "programs and external research" over the course of two years. Facebook has previously funded academic research into the social impact of AR wearables and solicited VR hardware proposals. Facebook's announcement blog calls the metaverse the "next computing platform" and says that the company will be working with policymakers, researchers, and industry partners while building it. The announcement also gives us Facebook's definition of the sometimes nebulous word "metaverse." The company describes it as "virtual spaces where you can create and explore with other people" that you're not physically with, spread out over a variety of products and services.

The Record reports: The Electronic Frontier Foundation said it is preparing to retire the famous HTTPS Everywhere browser extension after HTTPS adoption has picked up and after several web browsers have introduced HTTPS-only modes." "After the end of this year, the extension will be in 'maintenance mode' for 2022," said Alexis Hancock, Director of Engineering at the EFF. Maintenance mode means the extension will receive minor bug fixes next year but no new features or further development.

No official end-of-life date has been decided, a date after which no updates will be provided for the extension whatsoever.

Launched in June 2010, the HTTPS Everywhere browser extension is one of the most successful browser extensions ever released. The extension worked by automatically switching web connections from HTTP to HTTPS if websites had an HTTPS option available. At the time it was released, it helped upgrade site connections to HTTPS when users clicked on HTTP links or typed domains in their browser without specifying the "https://" prefix. The extension reached cult status among privacy advocates and was integrated into the Tor Browser and, after that, in many other privacy-conscious browsers. But since 2010, HTTPS is not a fringe technology anymore. Currently, around 86.6% of all internet sites support HTTPS connections. Browser makers such as Chrome and Mozilla previously reported that HTTPS traffic usually accounts for 90% to 95% of their daily connections.
From EFF's announcement: The goal of HTTPS Everywhere was always to become redundant. That would mean we'd achieved our larger goal: a world where HTTPS is so broadly available and accessible that users no longer need an extra browser extension to get it. Now that world is closer than ever, with mainstream browsers offering native support for an HTTPS-only mode.

With these simple settings available, EFF is preparing to deprecate the HTTPS Everywhere web extension as we look to new frontiers of secure protocols like SSL/TLS... We know many different kinds of users have this tool installed, and want to give our partners and users the needed time to transition.
The announcement also promises to inform users of browser-native HTTPS-only options before the day when the extension reaches its final sunsetting — and ends with instructions for how to activate the native HTTPS-only features in Firefox, Chrome, Edge, and Safari, "and celebrate with us that HTTPS is truly everywhere for users."

Slashdot reader StellarThoughts shares an announcement from the University of California, Riverside. (Alternate URL): Plants have the ability to perceive drought. When they do, they emit a hormone that helps them hold on to water. This same hormone, ABA, sends a message to seeds that it isn't a good time to germinate, leading to lower crop yields and less food in places where it's hot — an increasingly long list as a result of climate change.

"If you block ABA, you mess with the chemical pathway that plants use to prevent seed germination," said Aditya Vaidya, UC Riverside project scientist and study author. "Our new chemical, Antabactin, does exactly this. If we apply it, we have shown that dormant seeds will sprout."

Demonstrations of Antabactin's effectiveness are described in a new paper published in the Proceedings of the National Academy of Sciences. This work builds on the same team's creation of a chemical that mimics the effects of the ABA hormone, produced by plants in response to drought stress. That chemical, Opabactin, slows a plant's growth so it conserves water and doesn't wilt. It works by inducing plants to close tiny pores in their leaves and stems, which prevents water from escaping. Next, the team wanted to find a molecule that would have the opposite effect, opening the pores, encouraging germination and increasing plant growth. Though seed dormancy has largely been removed through breeding, it is still a problem in some crops like lettuce. Sean Cutler, a UC Riverside plant cell biology professor and study co-author, said accelerating and slowing plant growth are important tools for farmers. "Our research is all about managing both of these needs," he said...

In their paper, the team members showed that applying Antabactin to barley and tomato seeds accelerated germination. Conceivably, both Antabactin and Opabactin could work together to help crops flourish in a world becoming drier and hotter. Once Antabactin has helped seeds sprout into healthy plants, a farmer might start saving water early in the growing season by spraying Opabactin. This way, enough water is "banked" for when the plants start flowering.

While it's been argued that Linux has four different "birthdays," last Friday saw the 30th anniversary of Linux's very, very first release — version 0.01.

That special first release "was never publicly announced, and I only emailed a handful of people in private about the upload," Torvalds remembered on the Linux kernel mailing list. He no longer has copies of those announcement emails, "so there's no real record of that. The only record of the date is in the Linux-0.01 tar-file itself, I suspect." "Alas, the dates in that tar-file are for the last modification dates, not the actual creation of the tar-file," Torvalds wrote, "but it does seem to have happened around 7:30pm (Finnish time), so the exact anniversary was technically a couple of hours ago."

So when the exact moment arrived for its 30th anniversary, Torvalds couldn't resist sharing the moment on the Linux kernel mailing list.

"Just thought I'd mention it, since while unannounced, in many ways this is the true 30th anniversary date of the actual code."

EFF.org has the story: For the last month, civil liberties and human rights organizations, researchers, and customers have demanded that Apple cancel its plan to install photo-scanning software onto devices. This software poses an enormous danger to privacy and security. Apple has heard the message, and announced that it would delay the system while consulting with various groups about its impact. But in order to trust Apple again, we need the company to commit to canceling this mass surveillance system.

The delay may well be a diversionary tactic. Every September, Apple holds one of its big product announcement events, where Apple executives detail the new devices and features coming out. Apple likely didn't want concerns about the phone-scanning features to steal the spotlight.

But we can't let Apple's disastrous phone-scanning idea fade into the background, only to be announced with minimal changes down the road. To make sure Apple is listening to our concerns, EFF turned to an old-school messaging system: aerial advertising.

During Apple's event, a plane circled the company's headquarters carrying an impossible-to-miss message: "Apple, don't scan our phones!" The evening before Apple's event, protestors also rallied nationwide in front of Apple stores. The company needs to hear us, and not just dismiss the serious problems with its scanning plan. A delay is not a cancellation, and the company has also been dismissive of some concerns, referring to them as "confusion" about the new features.

Apple's iMessage is one of the preeminent end-to-end encrypted chat clients. End-to-end encryption is what allows users to exchange messages without having them intercepted and read by repressive governments, corporations, and other bad actors. We don't support encryption for its own sake: we fight for it because encryption is one of the most powerful tools individuals have for maintaining their digital privacy and security in an increasingly insecure world.

Now that Apple's September event is over, Apple must reach out to groups that have criticized it and seek a wider range of suggestions on how to deal with difficult problems, like protecting children online...

The world, thankfully, has moved towards encrypted communications over the last two decades, not away from them, and that's a good thing. If Apple wants to maintain its reputation as a pro-privacy company, it must continue to choose real end-to-end encryption over government demands to read user's communication.

Privacy matters now more than ever. It will continue to be a selling point and a distinguishing feature of some products and companies. For now, it's an open question whether Apple will continue to be one of them.