Meta will now allow users of its Quest VR headsets to log in with a new Meta account instead of a Facebook account, the company announced on Tuesday. The Verge reports: The company had said in July that this change would be rolling out in August, and it marks a shift from an unpopular policy announced in 2020 that required users to log in to their headsets with a Facebook account instead of a separate Oculus account. Users can create Meta accounts through the Meta mobile app using an email address, Facebook account, or Instagram account. Once you create a Meta account, you'll need to set up a linked Meta Horizon social profile that will be used in VR. As with Facebook accounts before, you'll need one of these accounts to use a Quest headset.

"Our new Meta account structure gives you more flexibility and control, letting you choose how you do and don't show up -- and whether Facebook and / or Instagram is part of your experience in VR and other surfaces where you use your Meta Horizon profile," Meta says in its blog post. If you want to set up a Meta account, the company has instructions in the blog post and in a video. If you are still using an Oculus account, you'll be able to do so until January 1st, 2023. After that date, you'll need to make a Meta account. The company says the option to make a Meta account and a Meta Horizon profile is rolling out now, so if you aren't able to just yet, you should be given the option soon.

An anonymous reader quotes a report from CNN: Twitter has major security problems that pose a threat to its own users' personal information, to company shareholders, to national security, and to democracy, according to an explosive whistleblower disclosure obtained exclusively by CNN and The Washington Post. The disclosure, sent last month to Congress and federal agencies, paints a picture of a chaotic and reckless environment at a mismanaged company that allows too many of its staff access to the platform's central controls and most sensitive information without adequate oversight. It also alleges that some of the company's senior-most executives have been trying to cover up Twitter's serious vulnerabilities, and that one or more current employees may be working for a foreign intelligence service.

The whistleblower, who has agreed to be publicly identified, is Peiter "Mudge" Zatko, who was previously the company's head of security, reporting directly to the CEO. Zatko further alleges that Twitter's leadership has misled its own board and government regulators about its security vulnerabilities, including some that could allegedly open the door to foreign spying or manipulation, hacking and disinformation campaigns. The whistleblower also alleges Twitter does not reliably delete users' data after they cancel their accounts, in some cases because the company has lost track of the information, and that it has misled regulators about whether it deletes the data as it is required to do. The whistleblower also says Twitter executives don't have the resources to fully understand the true number of bots on the platform, and were not motivated to. Bots have recently become central to Elon Musk's attempts to back out of a $44 billion deal to buy the company (although Twitter denies Musk's claims).

Zatko was fired by Twitter in January for what the company claims was poor performance. According to Zatko, his public whistleblowing comes after he attempted to flag the security lapses to Twitter's board and to help Twitter fix years of technical shortcomings and alleged non-compliance with an earlier privacy agreement with the Federal Trade Commission. Zatko is being represented by Whistleblower Aid, the same group that represented Facebook whistleblower Frances Haugen. John Tye, founder of Whistleblower Aid and Zatko's lawyer, told CNN that Zatko has not been in contact with Musk, and said Zatko began the whistleblower process before there was any indication of Musk's involvement with Twitter. After this article was initially published, Alex Spiro, an attorney for Musk, told CNN, "We have already issued a subpoena for Mr. Zatko, and we found his exit and that of other key employees curious in light of what we have been finding." "Mr. Zatko was fired from his senior executive role at Twitter in January 2022 for ineffective leadership and poor performance," the Twitter spokesperson said. "What we've seen so far is a false narrative about Twitter and our privacy and data security practices that is riddled with inconsistencies and inaccuracies and lacks important context. Mr. Zatko's allegations and opportunistic timing appear designed to capture attention and inflict harm on Twitter, its customers and its shareholders. Security and privacy have long been company-wide priorities at Twitter and will continue to be."

Zatko also alleges that the Indian government forced Twitter to put a government agent on the payroll, giving them access to sensitive user data. "Twitter is engaged in a legal challenge against the Indian government after it asked a local court in July to overturn some government orders to remove content from the social media platform, and alleged abuse of power by officials," adds Reuters.

BitChute and Odysee serve up conspiracies, racism and graphic violence to millions of viewers. Taking advantage of Big Tech disinformation crackdowns and the rise of Trump, the sites reflect a new media universe -- one where COVID-19 is fake, Russia fights Nazis in Ukraine, and mass shootings are 'false flag' operations. From a report: A day after a mass shooting in Buffalo, New York last May, the video-sharing website BitChute was amplifying a far-right conspiracy theory that the massacre was a so-called false flag operation, meant to discredit gun-loving Americans. Three of the top 15 videos on the site that day blamed U.S. federal agents instead of the true culprit: a white-supremacist teenager who had vowed to "kill as many blacks as possible" before shooting 13 people, killing 10. Other popular videos uploaded by BitChute users falsely claimed COVID-19 vaccines caused cancers that "literally eat you" and spread the debunked claim that Microsoft founder Bill Gates caused a global baby-formula shortage.

BitChute has boomed as YouTube, Twitter and Facebook tighten rules to combat misinformation and hate speech. An upstart BitChute rival, Odysee, has also taken off. Both promote themselves as free-speech havens, and they're at the forefront of a fast-growing alternative media system that delivers once-fringe ideas to millions of people worldwide. Searching the two sites on major news topics plunges viewers into a labyrinth of outlandish conspiracy theories, racist abuse and graphic violence. As their viewership has surged since 2019, they have cultivated a devoted audience of mostly younger men, according to data from digital intelligence firm Similarweb.

Facebook's parent company Meta is heading into another political battle over the planned introduction of end-to-end encryption (E2EE) in its Messenger chat platform. From a report: The UK's home secretary, Priti Patel, makes this clear in an op-ed for Tory mouthpiece The Telegraph this week, saying it would be a "grotesque betrayal" if the company didn't consider issues of child safety while introducing E2EE. Similar arguments are likely to be raised in the US, too. Meta has been working on adding E2EE to Messenger for years, and recently confirmed that it aims to encrypt all chats and calls on the platform by default next year. (It currently only offers default E2EE on its other big chat platform, WhatsApp, though users can opt-in to E2EE on Messenger on a chat-by-chat basis.)

The move is reigniting decades-old debates in politics and tech about the right way to balance user privacy and safety. In the US, these arguments have been heightened by the potential for police to issues search warrants for user chats in order to enforce new abortion laws after the overturn of Roe v. Wade. In the UK, arguments over encryption tend to focus on child safety and the dissemination of of child sexual abuse material, or CSAM. "A great many child predators use social media platforms such as Facebook to discover, target and sexually abuse children," writes Patel in her op-ed. "It is vital that law enforcement have access to the information they need to identify the children in these images and safeguard them from vile predators."

What do you when people hate your $10 billion selfie? "Mark Zuckerberg, in response to a torrent of critical memes mocking the graphics of Meta's newest project, has heard his critics — and changed his selfie," reports CNN: Zuckerberg debuted Horizon Worlds, a virtual reality social app, in France and Spain earlier this week, sharing a somewhat flat, goofy digital avatar in front of an animated Eiffel Tower and la Sagrada Família.

The internet immediately jumped in, mocking what many users viewed as (hopefully) preliminary graphics for a venture that Meta has spent at least $10 billion in the last year.

New York Times tech columnist Kevin Roose compared the graphics to "worse than a 2008 Wii game" on Twitter. Slate used the term " buttcheeks." Twitter was less kind: "eye-gougingly ugly" and "an international laughing stock" popping up. Many compared it to early 90's graphics and pointed out how lifeless and childish the Zuckerberg selfie looked. It quickly won the designation "dead eyes."

Well, Zuckerberg has apparently seen the memes, because on Friday he announced there are major updates coming — along with new avatar graphics.
In a CNBC report on how Zuckerberg "is getting dragged on the internet for how ugly the graphics of this game are," they'd actually quoted a Forbes headline that asked, "Does Mark Zuckerberg not understand how bad his metaverse is?"

An anonymous reader shares a report: 'Beware in-app browsers' is a good rule of thumb for any privacy conscious mobile app user -- given the potential for an app to leverage its hold on user attention to snoop on what you're looking at via browser software it also controls. But eyebrows are being raised over the behavior of TikTok's in-app browser after independent privacy research by developer Felix Krause found the social network's iOS app injecting code that could enable it to monitor all keyboard inputs and taps. Aka, keylogging.

"TikTok iOS subscribes to every keystroke (text inputs) happening on third party websites rendered inside the TikTok app. This can include passwords, credit card information and other sensitive user data," warns Krause in a blog post detailing the findings. "We can't know what TikTok uses the subscription for, but from a technical perspective, this is the equivalent of installing a keylogger on third party websites." [emphasis his]

After publishing a report last week -- focused on the potential for Meta's Facebook and Instagram iOS apps to track users of their in-app browsers -- Krause followed up by launching a tool, called InAppBrowser.com, that lets mobile app users get details of code that's being injected by in-app browsers by listing JavaScript commands executed by the app as it renders the page. (NB: He warns the tool does not necessarily list all JavaScript commands executed nor can it pick up tracking an app might be doing using native code -- so at best it's offering a glimpse of potentially sketchy activities.)

NBC News reports: Facebook, once the go-to social media platform for many, has plummeted in popularity among younger users, according to a new Pew Research Center survey.... The share of 13- to 17-year-olds who said they use Facebook dropped from 71% in the 2015 study to 32% today, Pew found.

As Facebook's popularity sinks, YouTube has become the dominating platform among teens, who are also using social media apps like TikTok, Snapchat and [Meta-owned] Instagram... While Facebook still beats out Twitter among Gen Z teens, Snapchat and Instagram have dwarfed its popularity. Sixty-two percent of teens use Instagram and 59% use Snapchat, according to Pew. TikTok also beats Facebook in popularity, with 67% of respondents saying they use the short-form video app, Pew reported....

The most popular platform among 13- to 17-year-olds is YouTube, which is used by 95% of teens, the research found.
There's an interesting graph showing trends in Pew's announcement. It's handy way to visualize that over the last seven years usage has dropped for Facebook, Twitter, and Tumbler — while usage increased for Instagram and Snapchat.

But YouTube hovers above them all with 95% usage.

Thursday Meta published a blog post by their "product management director of Messenger Trust," who emphasized that they've begun at least testing end-to-end encryption by default for Messenger chats. But Meta also announced plans "to test a new secure storage feature for backups of your end-to-end encrypted chats on Messenger...."

"As with end-to-end encrypted chats, secure storage means that we won't have access to your messages, unless you choose to report them to us."

CNBC provides some context: The announcement comes after Facebook turned over Messenger chat histories to Nebraska police as part of an investigation into an alleged illegal abortion. Meta spokesperson Andy Stone said the feature has been in the works for a while and is not related to the Nebraska case...

The feature is rolling out on Android and iOS devices this week, but it isn't yet available on the Messenger website. The company has been discussing full-scale deployment of end-to-end encryption since 2016, but critics have said the security measure would make it much more difficult for law enforcement to catch child predators....Meta said in the release that it is making progress toward the global rollout of default end-to-end encryption for personal messages and calls in 2023.
Other privacy enhancements announced Thursday by Meta:

• "We plan to bring end-to-end encrypted calls to the Calls Tab on Messenger."

• Meta announced that the deleting of messages will start syncing across your other devices "soon."

• Messenger will continue offering the option of "Disappearing" messages, in which viewed messages in an end-to-end encrypted chat automatically then disappear after a pre-specified period of time.

And there's more, according to Meta's announcement:.

"This week, we'll begin testing default end-to-end encrypted chats between some people. If you're in the test group, some of your most frequent chats may be automatically end-to-end encrypted, which means you won't have to opt in to the feature. You'll still have access to your message history, but any new messages or calls with that person will be end-to-end encrypted. You can still report messages to us if you think they violate our policies, and we'll review them and take action as necessary....

"Last year, we started a limited test of opt-in end-to-end encrypted messages and calls on Instagram, and in February we broadened the test to include adults in Ukraine and Russia. Soon, we'll expand the test even further to include people in more countries and add more features like group chats....

"We will continue to provide updates as we make progress toward the global rollout of default end-to-end encryption for personal messages and calls in 2023."

Facebook announced on Thursday it will begin testing end-to-end encryption as the default option for some users of its Messenger app on Android and iOS. The Guardian reports: Facebook messenger users currently have to opt in to make their messages end-to-end encrypted (E2E), a mechanism that theoretically allows only the sender and recipient of a message to access its content. Facebook spokesperson Alex Dziedzan said on Thursday that E2E encryption is a complex feature to implement and that the test is limited to a couple of hundred users for now so that the company can ensure the system is working properly. Dziedzan also said the move was "not a response to any law enforcement requests." Meta, Facebook's parent company, said it had planned to roll out the test for months. The company had previously announced plans to make E2E encryption the default in 2022 but pushed the date back to 2023. "The only way for companies like Facebook to meaningfully protect people is for them to ensure that they do not have access to user data or communications when a law enforcement agency comes knocking," Evan Greer, the director of the digital rights group Fight for the Future, said. "Expanding end-to-end encryption by default is a part of that, but companies like Facebook also need to stop collecting and retaining so much intimate information about us in the first place."

An ongoing dispute over privacy between Apple and Facebook is roiling the digital economy, leading companies to shift billions in ad spending as users continue to limit the data available to advertisers. The feud took off last year, when Apple rolled out iOS 14.5, a version of its mobile operating system that made it easier than ever for iPhone and iPad users to opt out of letting apps like Facebook track their activity on their devices. The two companies weren't always at odds. In fact, they were almost business partners. From a report: In the years before the change, Apple suggested a series of possible arrangements that would earn the iPhone maker a slice of Facebook's revenue, according to people who either participated in the meetings or were briefed about them. As one person recalled: Apple officials said they wanted to "build businesses together." One idea that was discussed: creating a subscription-based version of Facebook that would be free of ads, according to people familiar with the discussions. Because Apple collects a cut of subscription revenue for apps in its App Store, that product could have generated significant revenue for the Cupertino, Calif., giant.

The companies also haggled over whether Apple was entitled to a piece of Facebook's sales from so-called boosted posts, said people familiar with the matter. A boost allows a user to pay to increase the number of people that see a post on Facebook or Instagram. Facebook, which considers boosts ads, has always contended that boosts are a form of advertising, in part because they are often used by small businesses to reach a bigger audience, said one of the people. Apple, which doesn't take a cut of advertising from developers, argued that Facebook boosts should be considered in-app purchases, according to a person familiar with the matter. Apple's standard terms would entitle it to take a 30% share of those sales.

Meta, the owner of Facebook and Instagram, has been rewriting websites its users visit, letting the company follow them across the web after they click links in its apps, according to new research from an ex-Google engineer. The Guardian reports: The two apps have been taking advantage of the fact that users who click on links are taken to webpages in an "in-app browser," controlled by Facebook or Instagram, rather than sent to the user's web browser of choice, such as Safari or Firefox. "The Instagram app injects their tracking code into every website shown, including when clicking on ads, enabling them [to] monitor all user interactions, like every button and link tapped, text selections, screenshots, as well as any form inputs, like passwords, addresses and credit card numbers," says Felix Krause, a privacy researcher who founded an app development tool acquired by Google in 2017.

Krause discovered the code injection by building a tool that could list all the extra commands added to a website by the browser. For normal browsers, and most apps, the tool detects no changes, but for Facebook and Instagram it finds up to 18 lines of code added by the app. Those lines of code appear to scan for a particular cross-platform tracking kit and, if not installed, instead call the Meta Pixel, a tracking tool that allows the company to follow a user around the web and build an accurate profile of their interests. The company does not disclose to the user that it is rewriting webpages in this way. No such code is added to the in-app browser of WhatsApp, according to Krause's research. [...] It is unclear when Facebook began injecting code to track users after clicking links. "We intentionally developed this code to honor people's [Ask to track] choices on our platforms," a Meta spokesperson told The Guardian in a statement. "The code allows us to aggregate user data before using it for targeted advertising or measurement purposes. We do not add any pixels. Code is injected so that we can aggregate conversion events from pixels."

They added: "For purchases made through the in-app browser, we seek user consent to save payment information for the purposes of autofill."

Pew Research has published a new report that examines social media usage trends among US teens. The organization found that a whopping 95 percent of them use YouTube, while 19 percent are on the platform "almost constantly." Engadget reports: Perhaps unsurprisingly, two-thirds (67 percent) said they used TikTok, with 16 percent claiming they are on the app "almost constantly." The third most-popular social media platform among teens is Instagram, per Pew, with 62 percent using it. A tenth say they use it almost all the time -- despite the app occasionally telling them to take a break. A previous poll conducted in 2014-15 found that 52 percent were using Instagram (Pew didn't ask about YouTube usage for that survey and TikTok didn't exist at the time).

Snapchat also rose among teens, with 59 percent using it in 2022, compared with 41 percent in the previous poll. Facebook was the top social media app among teens seven years ago, with 71 percent of them using it, but that figure has dropped to 32 percent. Teen adoption of Twitter (down from 33 percent to 23 percent) and Tumblr (14 percent to five percent) has fallen over the same period too. The 2014-15 poll didn't ask about Twitch, WhatsApp or Reddit. These days, a fifth of teens use Twitch, 17 percent are on WhatsApp and 14 percent are accessing Reddit.

Mark Cuban, the billionaire Dallas Mavericks owner and avid crypto enthusiast, is not sold on the metaverse. "The worst part is that people are buying real estate in these places. That's just the dumbest shit ever," he told the crypto-themed YouTube channel Altcoin Daily this past weekend. From a report: Cuban's comments come as the hype surrounding the metaverse -- a term that loosely describes an emerging virtual world where people can hang out, play, and shop -- seems to be cooling. Last November, Facebook changed its name to Meta, spurring a flurry of excitement about the potential of the metaverse, which fueled a land grab for digital plots in so-called metaverse platforms created by the likes of the Sandbox and Decentraland.

These platforms enable investors to buy land as an NFT, which can be developed with virtual buildings or experiences or resold on secondary markets like NFT exchange OpenSea. Companies like Warner Music Group, Atari, Samsung, and Adidas have all bought digital land -- a move that Cuban, based on his latest comments, appears unlikely to follow. Cuban also isn't buying the central claim of metaverse land speculators that scarcity will make these digital plots valuable. "It's not even as good as a URL or an ENS [Ethereum naming service], because there's unlimited volumes that you can create," he said during the YouTube interview. Despite being an investor in Yuga Labs, the owner of popular NFT collections Bored Ape Yacht Club and CryptoPunks, Cuban said he was not a fan of the company's land sale, which raised about $317 million for its metaverse platform Otherside in April. "I still thought it was dumb to do the real estate. That was great money for them, you know, but that wasn't based off a utility," he said.

Several weeks after taking over Ukraine's southern port city of Kherson, Russian soldiers arrived at the offices of local internet service providers and ordered them to give up control of their networks. From a report: "They came to them and put guns to their head and just said, 'Do this,'" said Maxim Smelyanets, who owns an internet provider that operates in the area and is based in Kyiv. "They did that step by step for each company." Russian authorities then rerouted mobile and internet data from Kherson through Russian networks, government and industry officials said. They blocked access to Facebook, Instagram and Twitter, as well as to Ukrainian news websites and other sources of independent information. Then they shut off Ukrainian cellular networks, forcing Kherson's residents to use Russian mobile service providers instead.

What happened in Kherson is playing out in other parts of Russian-occupied Ukraine. After more than five months of war, Russia controls large sections of eastern and southern Ukraine. Bombings have leveled cities and villages; civilians have been detained, tortured and killed; and supplies of food and medicine are running low, according to witnesses interviewed by The New York Times and human rights groups. Ukrainians in those regions have access only to Russian state television and radio. To cap off that control, Russia has also begun occupying the cyberspace of parts of those areas. That has cleaved off Ukrainians in Russia-occupied Kherson, Melitopol and Mariupol from the rest of the country, limiting access to news about the war and communication with loved ones. In some territories, the internet and cellular networks have been shut down altogether.

7-Eleven stores in Denmark shut down today after a cyberattack disrupted stores' payment and checkout systems throughout the country. Bleeping Computer reports: The attack occurred early this morning, August 8th, with the company posting on Facebook that they were likely "exposed to a hacker attack." The translated statement says that the company has closed all the stores in the country while investigating the security incident: ""Unfortunately, we suspect that we have been exposed to a hacker attack today, Monday 8 August 2022. This means that we cannot use checkouts and/or receive payment. We are therefore keeping the stores closed until we know the extent. We naturally hope that we can open the stores again soon." - 7-Eleven DK." At this time, there are no further details about the attack, including whether ransomware was involved, which has become the most common cyberattack causing wide-scale outages.

Only days after being launched to the public, Meta Platforms' new AI chatbot has been claiming that Donald Trump won the 2020 US presidential election, and repeating anti-Semitic conspiracy theories. From a report: Chatbots -- artificial intelligence software that learns from interactions with the public -- have a history of taking reactionary turns. In 2016, Microsoft's Tay was taken offline within 48 hours after it started praising Adolf Hitler, amid other racist and misogynist comments it apparently picked up while interacting with Twitter users. Facebook parent company Meta released BlenderBot 3 on Friday to users in the US, who can provide feedback if they receive off-topic or unrealistic answers. A further feature of BlenderBot 3 is its ability to search the internet to talk about different topics.

The company encourages adults to interact with the chatbot with "natural conversations about topics of interest" to allow it to learn to conduct naturalistic discussions on a wide range of subjects. Conversations shared on various social media accounts ranged from the humorous to the offensive. BlenderBot 3 told one user its favorite musical was Andrew Lloyd Webber's "Cats," and described Meta CEO Mark Zuckerberg as "too creepy and manipulative" to a reporter from Insider. Other conversations showed the chatbot repeating conspiracy theories.

Communications giant Twilio has confirmed hackers accessed customer data after successfully tricking employees into handing over their corporate login credentials. From a report: The San Francisco-based company, which allows users to build voice and SMS capabilities -- such as two-factor authentication (2FA) -- into applications, said in a blog post published Monday that it became aware that someone gained "unauthorized access" to information related to some Twilio customer accounts on August 4. Twilio has more than 150,000 customers, including Facebook and Uber. According to the company, the as-yet-unidentified threat actor convinced multiple Twilio employees into handing over their credentials, which allowed access to the company's internal systems. The attack used SMS phishing messages that purported to come from Twilio's IT department, suggesting that the employees' password had expired or that their schedule had changed, and advised the target to log in using a spoofed web address that the attacker controls.

If it weren't for Slashdot, Mark Zuckerberg wouldn't be facing a six-hour deposition over alleged involvement in the Cambridge Analytica Scandal, argues long-time Slashdot reader theodp: In 2003, Harvard's student newspaper the Harvard Crimson reported that Zuck's programming skills attracted attention from the likes of Microsoft and others following a 2003 Slashdot post. That post — titled Machine Learning and MP3s — described how "Students at Caltech [freshman Adam D'Angelo, Quora CEO and co-founder] and Harvard [freshman Zuck] developed a system that analyzes playlists and learns people's listening patterns." The playlist-making software, Synapse AI, was Zuck's high school senior project at Phillips Exeter Academy.

Interestingly, in a modded-up comment ("Informative") on the post, Slashdot user Mark Zuckerberg vowed to protect user privacy. "And a note about privacy," promised Zuck. "None of your musical listening data will be available to anyone other than you. We hope to use massive amounts of data to aid in analysis, but your individual data will never be seen by anyone else."

Hey, things change. And Slashdot user SkyIce (apparently D'Angelo) added, "I'm not going to spam people. I promise." .
Zuckerberg was just 18 years old — and Steven Levy's 2020 book Facebook: The Inside Story recounts how all "the Slashdot attention was a boon." Zuckerberg heard from multiple companies interested in the student project, including Microsoft and AOL. Zuckerberg and D'Angelo got an offer approaching a million dollars from one of those suitors. But the payout would be contingent on Zuckerberg and D'Angelo committing to work for that company for three years. They turned it down.
That summer, back in Cambridge, young Mark Zuckerberg "thought it was interesting that I was so excited about Friendster," D'Angelo remembered in the book. Friendster was an earlier social network founded in 2002 (which eventually closed in 2018). D'Angelo remembered that Zuckerberg "wasn't into it as a user, but it was clear to him that there was something there...."

Sociologist Ashley Mears know the secret to making viral videos on Facebook. "It's like a magic trick," one creator explains. Literally.

"Many of the most successful people in the content-creation game on Facebook are magicians," Mears explains in a video. "I think that that's not such a surprise, because magicians are extremely skilled in manipulating people's attention, which is basically what the viral video economy does."

Mears recently visited the "new creative elites," a group of creators regularly getting 100 million to 200 million views, which includes former jazz singer Anna Rothfuss and her magician boyfriend Justin Flom: Rothfuss and Flom are among the 180 video-makers (or "creators" in the industry's jargon) working with a Las Vegas magician called Rick Lax. They produce short videos timed to last the precise number of seconds that Facebook requires a clip to run to be eligible for an ad (this used to be three minutes but recently went down to one). Though the clips usually look like authentic user-generated material, all are scripted. Most fall into genres: diy, crafts, hazards, adultery and proposals. Lax manages his network like a cross between a Hollywood agent and a schoolteacher. He takes a slice of the ad revenue that creators earn. In exchange, he gives them online tutorials about how to make viral content: everything from how to hold the camera to which metrics matter to Facebook. He releases new instructions every time the algorithm changes substantially, and offers feedback on people's videos. He also posts his creators' videos on his own Facebook page, which has 14m followers....

A friend was making videos for Rick Lax, and invited Rothfuss to join in 2019. A year later she bought her first mansion. Entering the viral-content game involves a certain surrendering of artistic aspirations, but Rothfuss says she doesn't care. "I do not want to be famous," she says. "I love being low-key and flying under the radar, and just getting rich...."

Lax realised that appetite for these videos was insatiable: the only obstacle to earning more money was how many clips he could make in a day.... Lax wouldn't go into details of his profit-sharing arrangement but his creators are clearly flourishing. Many told me they felt like they were taking part in a 21st-century gold rush. "This doesn't happen to that many people," says Amy Boiss, a one-time Uber driver whose magician boyfriend introduced her to Lax's network. "To make more money than neurosurgeons...." Lax and his friends got rich without anyone knowing who they are....

It's perhaps no coincidence that the two most-viewed Facebook creators in 2021, Lax and Julius Dein, both started out as magicians (as did many of their affiliates). Their videos aren't magic performances as such, but they're informed by the art of magic. "Magicians start by looking for blind spots, edges, vulnerabilities and limits of people's perception," wrote a former Google employee (and amateur magician) in an essay published on Medium in 2017, "How technology hijacks your mind". Social-media companies, wrote the author, "influence what people do without them even realising it", just as magicians do: "Once you know how to push people's buttons you can play them like a piano."
Ironically, the creators end up driven by "the same dopamine rush they were exploiting in us," the article points out. "If you're looking at the data, you can actually see your earnings go up as people watch your work: making viral videos can be just as addictive as watching them."

One of the magicians in Lax's network even says point-blank that "It feels like a drug."

After a revelation in May that DuckDuckGo's (DDG) privacy-focused web browser allows Microsoft tracking scripts on third-party websites, the company now says it will start blocking those too. From a report: DuckDuckGo's browser had third-party tracker loading protection by default that already blocked scripts embedded on websites from Facebook, Google, and others, but until now Microsoft's scripts from the Bing and LinkedIn domains (but not its third-party cookies) had a pass.

A security researcher named Zach Edwards pointed out the exclusion that he apparently uncovered while auditing the browser's privacy claims, and noted it is especially curious because Microsoft is the partner that delivers ads in DDG's search engine (while promising not to use that data to create a monitored profile of users to target ads, instead relying on context to decide which ones it should show). DuckDuckGo CEO Gabe Weinberg said at the time that the reason for it was a search syndication agreement with Microsoft, and that more updates on third-party tracker preventions were coming. A backlash ensued, with some seizing on DuckDuckGo's own words that "tracking is tracking," a phrase the company used against Google's cookie-replacing "privacy sandbox" ad technology. Now Weinberg writes in a blog post, "I've heard from a number of users and understand that we didn't meet their expectations around one of our browser's web tracking protections." DuckDuckGo is vowing to be more transparent about what trackers its browser and extensions are protecting users from, making its tracker blocklists available and offering users more information on how its tracking protections with a new help page.