×
IOS

Apple Unbanned Epic So It Can Make an iOS Games Store In the EU (theverge.com) 14

An anonymous reader quotes a report from The Verge: Epic is one step closer to opening its iOS games store in the European Union. As part of its 2023 year in review, Epic Games announced Apple has reinstated its developer account, which means it will finally be able to let users download Fortnite on iPhones again. Epic first announced plans to bring its game store and Fortnite to iOS in January, but it wasn't clear whether Apple would grant it a developer account.

In 2020, Apple pulled Epic's developer account after the company began using its own in-app payment option in the iOS version of Fortnite, sparking a lengthy legal battle over whether Apple's behavior was anticompetitive. But even after the trial ended, and neither company emerged a clear winner, Apple still refused to reinstate Epic's developer account. Things are changing now that the EU has implemented the Digital Markets Act (DMA). The new rules force Apple to open up its iOS ecosystem to third-party app stores in the EU. Epic Games says it plans to open its iOS storefront in the EU this year.
"I'll be the first to acknowledge a good faith move by Apple amidst our cataclysmic antitrust battle, in granting Epic Games Sweden AB a developer account for operating Epic Games Store and Fortnite in Europe under the Digital Markets Act," Sweeney says in a post on X.
Security

DOJ Quietly Removed Russian Malware From Routers in US Homes and Businesses (arstechnica.com) 71

An anonymous reader shares a report: More than 1,000 Ubiquiti routers in homes and small businesses were infected with malware used by Russian-backed agents to coordinate them into a botnet for crime and spy operations, according to the Justice Department. That malware, which worked as a botnet for the Russian hacking group Fancy Bear, was removed in January 2024 under a secret court order as part of "Operation Dying Ember," according to the FBI's director. It affected routers running Ubiquiti's EdgeOS, but only those that had not changed their default administrative password. Access to the routers allowed the hacking group to "conceal and otherwise enable a variety of crimes," the DOJ claims, including spearphishing and credential harvesting in the US and abroad.

Unlike previous attacks by Fancy Bear -- that the DOJ ties to GRU Military Unit 26165, which is also known as APT 28, Sofacy Group, and Sednit, among other monikers -- the Ubiquiti intrusion relied on a known malware, Moobot. Once infected by "Non-GRU cybercriminals," GRU agents installed "bespoke scripts and files" to connect and repurpose the devices, according to the DOJ. The DOJ also used the Moobot malware to copy and delete the botnet files and data, according to the DOJ, and then changed the routers' firewall rules to block remote management access. During the court-sanctioned intrusion, the DOJ "enabled temporary collection of non-content routing information" that would "expose GRU attempts to thwart the operation." This did not "impact the routers' normal functionality or collect legitimate user content information," the DOJ claims. "For the second time in two months, we've disrupted state-sponsored hackers from launching cyber-attacks behind the cover of compromised US routers," said Deputy Attorney General Lisa Monaco in a press release.

The Courts

RFK Jr. Wins Deferred Injunction In Vax Social Media Suit (bloomberglaw.com) 323

schwit1 writes: Robert F. Kennedy Jr. won a preliminary injunction against the White House and other federal defendants in his suit alleging government censorship of his statements against vaccines on social media. The injunction, however, will be stayed until the US Supreme Court rules in a related case brought by Missouri and Louisiana. An injunction is warranted because Kennedy showed he is likely to succeed on the merits of his claims, Judge Terry A. Doughty of the US District Court for the Western District of Louisiana said Wednesday.

The White House defendants, the Surgeon General defendants, the Centers for Disease Control and Prevention defendants, the Federal Bureau of Investigation defendants, and the Cybersecurity & Infrastructure Security Agency defendants likely violated the Free Speech Clause of the First Amendment, Doughty said. Kennedy's class action complaint, brought with health care professional Connie Sampognaro and Kennedy's nonprofit, Children's Health Defense, alleges that the federal government, beginning in early 2020, began a campaign to induce Facebook, Google (YouTube), and X, formerly known as Twitter, to censor constitutionally protected speech.

Specifically, Kennedy said, the government suppressed "facts and opinions about the COVID vaccines that might lead people to become 'hesitant' about COVID vaccine mandates." Kennedy has sufficiently shown that these defendants "jointly participated in the actions of the social media" platforms by '"insinuating' themselves into the social-media companies' private affairs and blurring the line between public and private action," Doughty said.

AI

Air Canada Found Liable For Chatbot's Bad Advice On Plane Tickets 72

An anonymous reader quotes a report from CBC.ca: Air Canada has been ordered to pay compensation to a grieving grandchild who claimed they were misled into purchasing full-price flight tickets by an ill-informed chatbot. In an argument that appeared to flabbergast a small claims adjudicator in British Columbia, the airline attempted to distance itself from its own chatbot's bad advice by claiming the online tool was "a separate legal entity that is responsible for its own actions."

"This is a remarkable submission," Civil Resolution Tribunal (CRT) member Christopher Rivers wrote. "While a chatbot has an interactive component, it is still just a part of Air Canada's website. It should be obvious to Air Canada that it is responsible for all the information on its website. It makes no difference whether the information comes from a static page or a chatbot." In a decision released this week, Rivers ordered Air Canada to pay Jake Moffatt $812 to cover the difference between the airline's bereavement rates and the $1,630.36 they paid for full-price tickets to and from Toronto bought after their grandmother died.
The Courts

AMC To Pay $8 Million For Allegedly Sharing Subscribers' Viewing History With Tech Companies (arstechnica.com) 20

An anonymous reader quotes a report from Ars Technica: On Thursday, AMC notified subscribers of a proposed $8.3 million settlement that provides awards to an estimated 6 million subscribers of its six streaming services: AMC+, Shudder, Acorn TV, ALLBLK, SundanceNow, and HIDIVE. The settlement comes in response to allegations that AMC illegally shared subscribers' viewing history with tech companies like Google, Facebook, and X (aka Twitter) in violation of the Video Privacy Protection Act (VPPA). Passed in 1988, the VPPA prohibits AMC and other video service providers from sharing "information which identifies a person as having requested or obtained specific video materials or services from a video tape service provider." It was originally passed to protect individuals' right to private viewing habits, after a journalist published the mostly unrevealing video rental history of a judge, Robert Bork, who had been nominated to the Supreme Court by Ronald Reagan.

The so-called "Bork Tapes" revealed little -- other than that the judge frequently rented spy thrillers and British costume dramas -- but lawmakers recognized that speech could be chilled by monitoring anyone's viewing habits. While the law was born in the era of Blockbuster Video, subscribers suing AMC wrote in their amended complaint (PDF) that "the importance of legislation like the VPPA in the modern era of datamining is more pronounced than ever before." According to subscribers suing, AMC allegedly installed tracking technologies -- including the Meta Pixel, the X Tracking Pixel, and Google Tracking Technology -- on its website, allowing their personally identifying information to be connected with their viewing history. [...]

If it's approved, AMC has agreed to "suspend, remove, or modify operation of the Meta Pixel and other Third-Party Tracking Technologies so that use of such technologies on AMC Services will not result in AMC's disclosure to the third-party technology companies of the specific video content requested or obtained by a specific individual." All registered users of AMC services who "requested or obtained video content on at least one of the six AMC services" between January 18, 2021, and January 10, 2024, are currently eligible to submit claims under the proposed settlement. The deadline to submit is April 9. In addition to distributing the $8.3 million settlement fund among class members, subscribers will also receive a free one-week digital subscription.

The Courts

NYC Sues Social Media Companies Over Youth Mental Health Crisis (abc7ny.com) 63

New York City Mayor Eric Adams announced a lawsuit against four of the nation's largest social media companies, accusing them of fueling a "national youth mental health crisis." From a report: The lawsuit was filed to hold TikTok, Instagram, Facebook, Snapchat, and YouTube Accountable for their damaging influence on the mental health of children, Adams said. The lawsuit, filed in California Superior Court, alleged the companies intentionally designed their platforms to purposefully manipulate and addict children and teens to social media applications. The lawsuit pointed to the use of algorithms to generate feeds that keep users on the platforms longer and encourage compulsive use.

"Over the past decade, we have seen just how addictive and overwhelming the online world can be, exposing our children to a non-stop stream of harmful content and fueling our national youth mental health crisis," Adams said. "Our city is built on innovation and technology, but many social media platforms end up endangering our children's mental health, promoting addiction, and encouraging unsafe behavior." The lawsuit accused the social media companies of manipulating users by making them feel compelled to respond to one positive action with another positive action.

"These platforms take advantage of reciprocity by, for example, automatically telling the sender when their message was seen or sending notifications when a message was delivered, encouraging teens to return to the platform again and again and perpetuating online engagement and immediate responses," the lawsuit said. The city is joining hundreds of school districts across the nation in filing litigation to force the tech companies to change their behavior and recover the costs of addressing the public health threat.

The Courts

Amazon Sued Over Prime Video Ads (variety.com) 68

Amazon faces a class-action lawsuit accusing the company of false advertising and deceptive practices because Prime Video now serves commercials by default. Variety reports: "For years, people purchased and renewed their Amazon Prime subscriptions believing that they would include ad-free streaming," the lawsuit says. "But last month, Amazon changed the deal. To stream movies and TV shows without ads, Amazon customers must now pay an additional $2.99 per month ... This is not fair, because these subscribers already paid for the ad-free version; these subscribers should not have to pay an additional $2.99/month for something that they already paid for."

The case was filed on behalf of Wilbert Napoleon, a resident of Eastvale, Calif., who says he's a Prime member. "Plaintiff brings this case for himself and for other Amazon Prime customers," the suit said. The complain alleged that Amazon violates Washington State and California state consumer protection laws that prohibit unfair competition and deceptive business acts and practices. Amazon's conduct, as alleged, "was immoral, unethical, oppressive, unscrupulous and substantially injurious to consumers,â according to the lawsuit. The suit seeks unspecific monetary damages, including punitive damages, as well as an injunction to block Amazon's alleged deceptive conduct.

The suit was filed Feb. 9, after Amazon starting on Jan. 29 began running ads in Prime Video content in major markets including the United States unless users opt to pay extra ($2.99/month in the U.S.) to have an ad-free experience. Some analysts have forecast Prime Video ads generating more than $3 billion in revenue in 2024.

Patents

US Patent Office Confirms AI Can't Hold Patents 44

The US Patent and Trademark Office (USPTO) asserts that only humans can be recognized as inventors on patent applications, not artificial intelligence systems, although the use of AI in the invention process is permitted and must be disclosed. The Verge reports: The agency published (PDF) its latest guidance following a series of "listening" tours to gather public feedback. It states that while AI systems and other "non-natural persons" can't be listed as inventors in patent applications, "the use of an AI system by a natural person does not preclude a natural person from qualifying as an inventor." People seeking patents must disclose if they used AI in the invention process, just as the USPTO asks all applicants to list all material information necessary to make a decision.

However, to be able to register a patent, the person using the AI must've contributed significantly to the invention's conception. A person simply asking an AI system to create something and overseeing it, the report says, does not make them an inventor. The office says that a person who simply presents the problem to an AI system or "recognizes and appreciates" its output as a good invention can't claim credit for that patent.

"However, a significant contribution could be shown by the way the person constructs the prompt in view of a specific problem to elicit a particular solution from the AI system," the USPTO says. The office also says that "maintaining 'intellectual domination' over an AI system does not, on its own, make a person an inventor" -- so simply overseeing or owning an AI that creates things doesn't mean you can file a patent for them.
Encryption

Backdoors That Let Cops Decrypt Messages Violate Human Rights, EU Court Says (arstechnica.com) 30

An anonymous reader quotes a report from Ars Technica: The European Court of Human Rights (ECHR) has ruled that weakening end-to-end encryption disproportionately risks undermining human rights. The international court's decision could potentially disrupt the European Commission's proposed plans to require email and messaging service providers to create backdoors that would allow law enforcement to easily decrypt users' messages. This ruling came after Russia's intelligence agency, the Federal Security Service (FSS), began requiring Telegram to share users' encrypted messages to deter "terrorism-related activities" in 2017, ECHR's ruling said. [...] In the end, the ECHR concluded that the Telegram user's rights had been violated, partly due to privacy advocates and international reports that corroborated Telegram's position that complying with the FSB's disclosure order would force changes impacting all its users.

The "confidentiality of communications is an essential element of the right to respect for private life and correspondence," the ECHR's ruling said. Thus, requiring messages to be decrypted by law enforcement "cannot be regarded as necessary in a democratic society." [...] "Weakening encryption by creating backdoors would apparently make it technically possible to perform routine, general, and indiscriminate surveillance of personal electronic communications," the ECHR's ruling said. "Backdoors may also be exploited by criminal networks and would seriously compromise the security of all users' electronic communications. The Court takes note of the dangers of restricting encryption described by many experts in the field."

Martin Husovec, a law professor who helped to draft EISI's testimony, told Ars that EISI is "obviously pleased that the Court has recognized the value of encryption and agreed with us that state-imposed weakening of encryption is a form of indiscriminate surveillance because it affects everyone's privacy." [...] EISI's Husovec told Ars that ECHR's ruling is "indeed very important," because "it clearly signals to the EU legislature that weakening encryption is a huge problem and that the states must explore alternatives." If the Court of Justice of the European Union endorses this ruling, which Husovec said is likely, the consequences for the EU's legislation proposing scanning messages to stop illegal content like CSAM from spreading "could be significant," Husovec told Ars. During negotiations this spring, lawmakers may have to make "major concessions" to ensure the proposed rule isn't invalidated in light of the ECHR ruling, Husovec told Ars.
Europol and the European Union Agency for Cybersecurity (ENISA) said in a statement: "Solutions that intentionally weaken technical protection mechanisms to support law enforcement will intrinsically weaken the protection against criminals as well, which makes an easy solution impossible."
The Courts

OpenAI Gets Some of Sarah Silverman's Suit Cut in Mixed Ruling (bloomberglaw.com) 64

OpenAI must face a claim that it violated California unfair competition law by using copyrighted books from comedian Sarah Silverman and other authors to train ChatGPT without permission. From a report: But US District Judge Araceli Martinez-Olguin on Monday also dismissed a number of Silverman and her coplaintiffs' other legal claims, including allegations of vicarious copyright infringement, violations of the Digital Millennium Copyright Act, negligence, and unjust enrichment. The judge gave the authors the opportunity to amend their proposed class action by March 13 to fix the defects in the complaint.

The core of the lawsuit remains alive, as OpenAI's motion to dismiss, filed last summer, didn't address Silverman's claim of direct copyright infringement for copying millions of books across the internet without permission. Courts haven't yet determined whether using copyrighted work to train AI models falls under copyright law's fair use doctrine, shielding the companies from liability. Although Martinez-Olguin allowed the unfair competition claim to advance, she said the claim could be preempted by the federal Copyright Act, which prohibits state law claims that allege the same violation as a copyright claim.

Patents

Cloudflare Defeats Another Patent Troll With Crowd-Sourced Prior-Art Army (theregister.com) 23

When it comes to defeating patent trolls with crowd-sourced prior art, Cloudflare is now two-for-two after winning its latest case against Sable Networks. The Register: Sable Networks, which owns patents originally given to defunct "flow-based router" company Caspian Networks, sued Cloudflare and five other companies in 2021 alleging a whole host of violations of four patents now owned by Sable. A lot has changed since the case was filed in the US District Court for the Western District of Texas, leading to a jury verdict last week that found Cloudflare not only didn't infringe on the single patent that made it to trial, but that the final patent claim at issue was invalid as well. It took the jury just two hours to return the result, Cloudflare said.

"Since Sable first sued us, we've invalidated significant parts of three Sable patents, hamstringing their ability to bring lawsuits against other companies," Cloudflare's in-house counsel boasted on Monday. Cloudflare said that it managed to whittle the case down from four patents and "approximately 100 claims" to a single claim on one patent -- number 7,012,919 -- over the past three years. This is thanks in part to the assistance of outside investigators on Project Jengo, a scheme first launched in 2017 to get help digging up prior-art patents when Cloudflare sued by another patent troll, Blackbird Technologies.
More: Cloudflare blog.
The Courts

Amazon Hides Cheaper Items With Faster Delivery, Lawsuit Alleges (arstechnica.com) 23

A class-action lawsuit alleges (PDF) that Amazon manipulates its platform through a biased algorithm to favor the "Buy Box" for items that generate higher fees for Amazon, often leading consumers to overpay for products that could be obtained cheaper and just as quickly from other sellers on the platform. Ars Technica reports: The lawsuit claims that a biased algorithm drives Amazon's "Buy Box," which appears on an item's page and prompts shoppers to "Buy Now" or "Add to Cart." According to customers suing, nearly 98 percent of Amazon sales are of items featured in the Buy Box, because customers allegedly "reasonably" believe that featured items offer the best deal on the platform.

"But they are often wrong," the complaint said, claiming that instead, Amazon features items from its own retailers and sellers that participate in Fulfillment By Amazon (FBA), both of which pay Amazon higher fees and gain secret perks like appearing in the Buy Box. "The result is that consumers routinely overpay for items that are available at lower prices from other sellers on Amazonâ"not because consumers don't care about price, or because they're making informed purchasing decisions, but because Amazon has chosen to display the offers for which it will earn the highest fees," the complaint said.

Authorities in the US and the European Union have investigated Amazon's allegedly anticompetitive Buy Box algorithm, confirming that it's "favored FBA sellers since at least 2016," the complaint said. In 2021, Amazon was fined more than $1 billion by the Italian Competition Authority over these unfair practices, and in 2022, the European Commission ordered Amazon to "apply equal treatment to all sellers when deciding what to feature in the Buy Box." These investigations served as the first public notice that Amazon's Buy Box couldn't be trusted, customers suing said. Amazon claimed that the algorithm was fixed in 2020, but so far, Amazon does not appear to have addressed all concerns over its Buy Box algorithm. As of 2023, European regulators have continued pushing Amazon "to take further action to remedy its Buy Box bias in their respective jurisdictions," the customers' complaint said.

Crime

WhatsApp Image Sender Becomes First Convicted Cyber-Flasher (bbc.com) 24

A registered sex offender has become the first person in England and Wales to be convicted of cyber-flashing. The BBC reports: Nicholas Hawkes, 39, of Basildon, Essex, sent unsolicited photos of his erect penis to a 15-year-old girl and a woman on Friday. The woman took screenshots of the image on WhatsApp and reported Hawkes to Essex Police the same day. Hawkes admitted two charges when he appeared before magistrates in Southend earlier. He is the first person to be convicted of the new offense of cyber-flashing, which was brought in under the Online Safety Act and came into effect on January 31.

After pleading guilty to two counts of sending a photograph or film of genitals to cause alarm, distress, or humiliation, he was remanded in custody until March 11, when he will be sentenced at Basildon Crown Court. Hawkes is a registered sex offender until November 2033 after he was convicted and given a community order for sexual activity with a child under 16 and exposure last year at Basildon Crown Court, the CPS said. He will also be sentenced for breaching the order when he is sentenced in March.

HP

HP Seeks $4 Billion in Losses From Lynch Over Autonomy Fraud (bloomberg.com) 18

HP is seeking as much as $4 billion from Autonomy's former bosses following a London judge's finding that they fraudulently boosted the value of the company before its sale. From a report: Founder Mike Lynch was found to have inflated Autonomy's revenue alongside his chief financial officer Sushovan Hussain and induced HP to buy the firm for $11 billion, according to a London civil judgment in 2022. The British tech tycoon is currently waiting to face a criminal trial in the US over the sale after being extradited last year. He was previously investigated by the UK's Serious Fraud Office but the agency dropped its case. Hussain was convicted in the US for his role in the saga. Lawyers for HP calculated the total losses that Lynch and Hussain must pay back as over $4 billion, according to court documents prepared for a hearing Monday. This was revised from a previous calculation of $5 billion at trial due to further evidence.
Google

Google Shareholders to Receive $350 Million in Lawsuit Settlement (cpomagazine.com) 39

A lawsuit involving the now-defunct Google+ social media site "has been settled for $350 million," reports CPO magazine, "after a lengthy appeals process played out..."

"[T]he total pool after attorney and legal fees are deducted is likely to be well over $200 million." [The lawsuit] dates all the way back to 2018, when Google internally discovered that the Google+ API was being abused to access the private data of about half a million of the social media service's users. Google opted not to publicly declare the breach, as they were not legally compelled to.

News of it came via the Wall Street Journal in late 2018. Google shareholders contend that the company kept the issue under wraps due to the Cambridge Analytica scandal that Facebook was experiencing at the time, believing that they would suffer a similar negative PR blow. This was supported by an internal company memo that became public.

As the news of the exploitable software glitch gradually came out, Google shareholders took a hit as the company collectively lost tens of billions of dollars in market value. The lead plaintiff in the case is Rhode Island Treasurer James Diossa, who was responsible for overseeing a state pension fund that held stock in Google parent company Alphabet.

Google+ was shuttered in 2019 after an eight-year run due in part to repeated technical issues with unauthorized API access (as well as low user engagement).

"If the settlement is approved by the 9th Circuit judge, the proceeds will be available to Google shareholders who held stock at any time from April 23, 2018, to April 30, 2019...

"A separate class-action privacy lawsuit involving users who had private data exposed during the incident was settled in 2018 for $7.5 million, leading to very low payments for each of the claimants."
Transportation

Shell Is Immediately Closing All Of Its California Hydrogen Fueling Stations (insideevs.com) 172

Shell once announced it would build 48 new Hydrogen fueling stations for light-duty vehicles in California, according to the blog Hydrogen Insights. But then in September, Shell told the site they'd "discontinued" that plan.

And last month the Inside EVs blog noted that in all of 2023, just 2,968 hydrogen cars were sold "in the United States — and by that, we mean in California, where the series-produced models are available." That's according to data from the Hydrogen Fuel Cell Partnership — admittedly a 10% increase from 2022's sales figure of 2,707 — but with both numbers lower than 2021's sales of 3,341. "The overall cumulative sales of hydrogen fuel cell vehicles exceeded 17,940 as of the end of the quarter (not counting vehicles removed from use), which is 20% more than a year ago."

Then this week Shell said it will "no longer be operating" any light-duty hydrogen fuelling stations in the U.S., and will close all seven of its California pumping stations immediately. (Three in San Francisco, one in Berkeley, one in San Jose, and two in the Sacramento area.) Inside EVs says Shell's move "represents another blow to the struggling hydrogen car market in the only state where the fuel is widely available at all." Shell had, until recently, operated seven of the 55 total retail hydrogen stations in California, per the Hydrogen Fuel Cell Partnership (H2FCP). That makes this a blow, but not apocalyptic news for the (small) hydrogen community....

In the letter announcing the closure, Shell Hydrogen Vice President Andrew Beard said they were shutting them down "due to hydrogen supply complications and other external market factors." It's not hard to see what Beard is referencing here... Hydrogen Insight reports that this shortage has been disrupting stations since August 13...

Some are also down for repairs, as many hydrogen stations suffer from serious reliability issues. Iwatani, a Japanese gas company that is one of the two largest names in American hydrogen filling stations, is currently suing the company that provided the core technology for its stations. In a court filing viewed by Hydrogen Insight, Iwatini alleges that its provider did not test its equipment in a real-world commercial scenario, hid defects, and misled the company. It is, in short, a big mess.

All of this makes the future of hydrogen fuel-cell vehicles in the United States even more uncertain. The technology has struggled to catch on, as the stations and their fuel remain expensive. Though hydrogen car manufacturers usually include a large amount of free fuel in the purchase of a vehicle, once that runs out consumers are left with eye-watering prices from stations that are often broken, out of fuel, or swarmed with long lines. It's why used hydrogen cars are so cheap, and why they still aren't a good deal.

Few companies can make a better case for it than Shell, though, as the cheapest way to produce hydrogen involves a lot of natural gas. Its proximity to the fossil-fuel industry was supposed to make it cheaper, and provide incentive for robust fueling infrastructure. That hasn't played out, though, and one of the largest oil giants is throwing in the towel. If even a fossil giant like Shell can't justify investing in the future of light-duty hydrogen infrastructure, we're not sure who can.

The Courts

Apple Is Settling Chip Secrets Theft Case Against Startup Rivos, Former Employees (yahoo.com) 5

In 2022 Apple filed a lawsuit against startup Rivos. The lawsuit said that in one year Rivos had hired more than 40 former Apple employees to work on competing system-on-a-chip technology, according to Reuters, "and that at least two former Apple engineers took gigabytes of confidential information with them to Rivos."

But Friday Bloomberg reported that the two companies told a judge that they'd "signed an agreement that potentially settles the case." "The agreement provides for remediation of Apple confidential information based on a forensic examination of Rivos systems and other activities," according to the filing in federal court in San Jose, California. "The parties currently are working through that process."
More details from Engadget: Apple also accused the defendant of instructing the employees it hired away to steal presentations and other proprietary information for unreleased iPhone chip designs that cost billions of dollars to develop. Rivos countersued Apple last year, accusing the larger company of restricting employees' ability to work elsewhere and of hindering emerging startups' growth by using anticompetitive measures.

The court dismissed Apple's trade secret claims against Rivos in April 2023, though the company was allowed to file a revised complaint. Apple already settled with its six former employees who filed a countersuit against the iPhonemaker along with Rivos after they dropped their claims against each other last month.

Both companies are now requesting the court to put their cases on hold until March 15, when they expect the settlement to be completed.

Electronic Frontier Foundation

EFF Challenges 'Legal Bullying' of Sites Reporting on Alleged Appin 'Hacking-for-Hire' (eff.org) 16

Long-time Slashdot reader v3rgEz shared this report from MuckRock: Founded in 2003, Appin has been described as a cybersecurity company and an educational consulting firm. Appin was also, according to Reuters reporting and extensive marketing materials, a prolific "hacking for hire" service, stealing information from politicians and militaries as well as businesses and even unfaithful spouses.

Legal letters, being sent to newsrooms and organizations around the world, are trying to remove that story from the internet — and are often succeeding.

Reuters investigation, published in November, was based in part on corroborated marketing materials, detailing a range of "hacking for hire" services Appin provided. After publication, Reuters was targeted by a legal campaign to shut down critical reporting, an effort which expanded to target news organizations around the world, including MuckRock. With the help of the Electronic Frontier Foundation, MuckRock is now sharing more details on this effort while continuing to host materials the Association of Appin Training Centers has gone to great lengths to remove from the web.

The original story, by Reuters' staff writers Raphael Satter, Zeba Siddiqui and Chris Bing, is no longer available on the Reuters website. Following a preliminary court ruling issued in New Delhi, the story has been replaced with an editor's note, stating that Reuters "stands by its reporting and plans to appeal the decision." The story has since been reposted on Distributed Denial of Secrets, while the primary source materials that Reuters reporters and editors used in their reporting are available on MuckRock's DocumentCloud service.

Representatives of the company's founders denied the assertions in the Reuters story, insisting instead that rogue actors "were misusing the Appin name."

TechDirt titled their article "Sorry Appin, We're Not Taking Down Our Article About Your Attempts To Silence Reporters."

And Thursday the EFF wrote its own take on "a campaign of bullying and censorship seeking to wipe out stories about the mercenary hacking campaigns of a less well-known company, Appin Technology, in general, and the company's cofounder, Rajat Khare, in particular." These efforts follow a familiar pattern: obtain a court order in a friendly international jurisdiction and then misrepresent the force and substance of that order to bully publishers around the world to remove their stories. We are helping to push back on that effort, which seeks to transform a very limited and preliminary Indian court ruling into a global takedown order. We are representing Techdirt and MuckRock Foundation, two of the news entities asked to remove Appin-related content from their sites... On their behalf, we challenged the assertions that the Indian court either found the Reuters reporting to be inaccurate or that the order requires any entities other than Reuters and Google to do anything. We requested a response — so far, we have received nothing...

At the time of this writing, more than 20 of those stories have been taken down by their respective publications, many at the request of an entity called "Association of Appin Training Centers (AOATC)...." It is not clear who is behind The Association of Appin Training Centers, but according to documents surfaced by Reuters, the organization didn't exist until after the lawsuit was filed against Reuters in Indian court....

If a relatively obscure company like AOATC or an oligarch like Rajat Khare can succeed in keeping their name out of the public discourse with strategic lawsuits, it sets a dangerous precedent for other larger, better-resourced, and more well-known companies such as Dark Matter or NSO Group to do the same. This would be a disaster for civil society, a disaster for security research, and a disaster for freedom of expression.

United States

With Miami Move, Jeff Bezos Proves Zip Codes Do Matter 170

Longtime Slashdot reader theodp writes: Our goal," Amazon founder Jeff Bezos explained in a Feb. 2021 Instagram post announcing the location of a second tuition-free @BezosAcademy preschool in Tacoma, WA, "is to unlock the potential in kids to become creative leaders, original thinkers, and lifelong learners -- regardless of their zip code."

Three years later, a new Amazon SEC filing reveals how much zip codes can matter, even to Bezos, the third richest person in the world. GeekWire reports: "A new Amazon [SEC] filing, detailing Jeff Bezos' plan to sell a slice of his stake in the company, sheds fresh light on his move from Seattle to Miami -- and his ability to avoid Washington state's capital gains tax [ironically, earmarked to be funneled into early-childhood education programs and school construction] in the process. The filing reveals that the Amazon founder and executive chairman adopted a trading plan Nov. 8 to sell up to 50 million Amazon shares during a period ending in January 2025. It would be the first time he has sold Amazon stock since 2021. The plan was adopted less than a week after Bezos announced on Instagram, on Nov. 2, that he was leaving his longtime home of Seattle for sunnier skies in Miami. In his Instagram post, Bezos said he wanted to be closer to his parents and Blue Origin space venture in Florida. He did not mention taxes."

"Given Bezos' recent move out of Washington -- where he founded and built Amazon into a global behemoth -- he will also be saving around $600 million in tax expense if he ends up selling the maximum of 50 million shares under the plan, based on the company's current stock price. That's around $600 million in what would have otherwise been tax revenue for his former home state, as The Center Square reported Monday. The capital gains tax, passed in 2021, imposes a 7% tax on any gains of more than $250,000 from the sale of stocks and bonds, with some exceptions. It was challenged in court but ultimately ruled constitutional by the state Supreme Court last year. The tax brought in nearly $900 million in its first year of collection. Revenue goes toward early education and childcare programs, as well as school construction projects."

It's of course no secret that Bezos is no fan of taxes -- he explored founding Amazon on an Indian reservation near San Francisco to avoid taxes, ponied up $100,000 to defeat a proposed WA state income tax aimed at improving WA state public education (joined in the fight by Microsoft and Steve Ballmer), characterized as unconstitutional attempts to make Amazon collect and pay sales taxes, and came under fire by ProPublica for paying no income tax in some years.
Piracy

Reddit Doesn't Have To Share IP-Addresses of Piracy Commenters, Court Rules (torrentfreak.com) 22

An anonymous reader quotes a report from TorrentFreak: Reddit is not required to share the IP-address of six users who made piracy-related comments on the website. The company successfully protested the third attempt of a group of filmmakers, which planned to use the requested logs as evidence in their lawsuit against Internet provider Frontier. Instead of focusing on anonymous Redditors, filmmakers can go after the ISP's subscribers directly. [...] Early last year, the film companies subpoenaed Reddit for the first time, requesting the personal details of several users. Reddit refused to cooperate, defending their users' right to anonymous speech, and found a California federal court in agreement. In a second attempt a few weeks later, several film companies sent a similar subpoena to Reddit. This time, the request was more targeted, as all comments specifically referred to the ISP being sued; Grande Communications. Reddit still refused to comply, however, stressing that its users' First Amendment rights would still be at stake. After hearing both parties, Magistrate Judge Laurel Beeler sided with Reddit once again.

While the denial was another setback for the film companies and their attorney, they had no plans to abandon this route to evidence quite so easily. Last month, they were back in court with a similar but tweaked request, this time related to a lawsuit targeting Internet provider Frontier Communications. Broadly speaking, the third case was comparable to the others. The film companies, including Voltage Holdings and Screen Media Ventures, wanted to use comments made by six Redditors to show that the ISP didn't take proper action against repeat infringers, or that 'lax' enforcement acted as a draw to potential pirates. Contrary to the earlier requests, the film companies were no longer looking for any names or email addresses, only the applicable IP address logs. This would allow the commenters to remain anonymous because an 'IP-address is not a person', their attorney argued. Reddit, again, refused to hand over information, arguing it would violate users' right to anonymous speech. The fact that it would only have to reveal IP-addresses wouldn't change that, Reddit argued.

After both sides had the chance to present their arguments, the matter landed on the desk of U.S. Magistrate Judge Thomas Hixson of the California federal court. After reviewing the paperwork, Judge Hixson denied the motion to compel. [...] Of importance in this decision is the so-called '2TheMart.com' standard, which was also applied in the earlier two cases. From that perspective, the court sees no reason to reach a different conclusion. [...] "While the Court is unaware of any cases in the Ninth Circuit in which a court has declined to apply a First Amendment unmasking standard for IP addresses, other courts have recognized that IP addresses are essential to unmasking because an 'IP address cannot be made up in the same way that a poster may provide a false name and address.'" "For this reason, the Court finds no reason to believe provision of an IP address is not unmasking subject to First Amendment scrutiny," Judge Hixson writes. "In sum, the Court finds Movants cannot meet the 2TheMart standard because the evidence they seek can be obtained from other sources, including from Frontier in the normal course of discovery." If the rightsholders are unable to obtain the desired evidence from Frontier, they could always try again, of course. If anything, the film companies have shown that aren't prepared to give up easily.

Slashdot Top Deals