Last week came the news that Dan Kaminsky, security researcher (and popular speaker at security conferences), had passed away at the age of 42. In a half hour the DEF CON security convention will hold a special online memorial for Dan Kaminsky on Discord.

But interestingly, Kaminsky was also one of ICANN's "Trusted Community Representatives," part of a small community involved in a ceremonial root key generation, backup and signing process. (Since 2010 Kaminsky was one of the seven "Recovery Key Share Holders" entrusted with a fragment of a cryptographic key and reporting in for its annual inventory.)

So who will take Dan's place? Slashdot contacted ICANN's vice president of IANA Services, Kim Davies. His response? We maintain an open invitation for volunteers who believe they are qualified, and review those volunteers when a vacancy arises. The selection process is documented, but in essence means we try to maintain a balance of skills and geographic location so that in the aggregate the TCRs are diverse.

The selection is not in chronological order, and will not necessarily result in selecting someone who most matches Dan's attributes. Ultimately the replacement will be a volunteer that the evaluation panel feels best contrasts and complements the attributes of the remaining TCRs.
Davies also shared this remembrance of Dan Kaminsky: He played a critical role in the evolution of the DNS by bringing attention to the practical cache poisoning vulnerability he discovered. He was a greater collaborator who worked closely with us to rapidly address the issue in critical infrastructure, and then worked to promote technologies like DNSSEC that can mitigate it effectively in the long term. He really provided a significant catalyst that resulted in DNSSEC being put into widespread production in 2010.

His service as a Trusted Community Representative was just a part of his commitment to these issues, and while his work on the DNS is perhaps his most famous contribution, he has an amazing resume of accomplishments throughout his career.

Personally I found him a delight to work with and we are deeply mourning the loss.
Of course, there's another way to follow in Dan's footsteps. Long-time Slashdot reader destinyland writes: Jeff Moss, founder of DEF CON and Black Hat, has proposed nominating Kaminsky for the Internet Hall of Fame, or even creating a Kaminsky award to honor "the core ideals" of the security researcher. But there's another complementary direction to go in... Black Hat board member Matt Devost tweeted last weekend that, "No one that knew Dan Kaminsky well is talking about DNS today. They are talking about kindness, boundless energy and positivity, spontaneous adventures, and how hard he worked to lift others up. Want to emulate one of the greatest hackers of all time? Let that be your guide."

And last week a self-described hacker named Dr. Russ even tweeted, "In an effort to honor Dan Kaminsky's character and legacy, we should all make a random act of Kaminsky weekly. Make it a point to be kind and helpful to someone, friend or stranger. Legit helpful and kind, take it over the finish line. Be the persistent guide he was. Then do it again."

I propose we call that "pulling a Kaminsky."
Presumably in the way later generations in William Gibson's Count Zero talked of "pulling a Wilson...."

An anonymous reader quotes a report from Motherboard: The IRS is looking for help to break into cryptocurrency hardware wallets, according to a document posted on the agency website in March of this year. Many cryptocurrency investors store their cryptographic keys, which confer ownership of their funds, with the exchange they use to transact or on a personal device. Some folks, however, want a little more security and use hardware wallets -- small physical drives which store a user's keys securely, unconnected to the internet. The law enforcement arm of the tax agency, IRS Criminal Investigation, and more specifically its Digital Forensic Unit, is now asking contractors to come up with solutions to hack into cryptowallets that could be of interest in investigations, the document states.

"The decentralization and anonymity provided by cryptocurrencies has fostered an environment for the storage and exchange of something of value, outside of the traditional purview of law enforcement and regulatory organizations," the document reads. "There is a portion of this cryptographic puzzle that continues to elude organizations -- millions, perhaps even billions of dollars, exist within cryptowallets." The security of hardware wallets presents a problem for investigators. The document states that agencies may be in possession of a hardware wallet as part of a case, but may not be able to access it if the suspect does not comply. This means that authorities cannot effectively "investigate the movement of currencies" and it may "prevent the forfeiture and recovery" of the funds. "The explicit outcome of this contract is to tame the cybersecurity research into measured, repeatable, consistent digital forensics processes that can be trained and followed in a digital forensics' laboratory," the document says.

According to a report from the U.S. Energy Information Administration (EIA), Texas will add a record 10 GW of utility-scale solar capacity by the end of 2022, compared with 3.2 GW in California. A third of all U.S. utility-scale solar capacity planned to come online in the next two years (30 GW) will be in Texas. Reuters reports: California currently has the most installed utility-scale solar capacity of any state - about 16 gigawatts (GW). One gigawatt can power about 1 million U.S. homes. But since solar power is on only about a third of the time, a gigawatt of solar can only power about 330,000 homes. Texas added 2.5 GW of solar capacity in 2020, and EIA said it expected the state to add another 4.6 GW in 2021 and 5.4 GW in 2022, bringing the state's total to 14.9 GW. Solar is expected to make up the largest share of capacity additions in Texas between 2020 and 2022, with almost half of the additions, compared with 35% for wind and 13% for gas, according to EIA projections.

A Facebook content moderator (contracted through Accenture) quit their position in Austin, Texas — but also left a critical internal note which was later leaked by a senior tech reporter at BuzzFeed who described it as "blistering."

SFGate also calls it "a harrowing account of what it's like to work as a Facebook content moderator." The message describes content moderation as a job that takes a significant toll mentally and physically and has led some coworkers to go on psychiatric medication for the first time or self-medicate with alcohol and drugs... "Content analysts are paid to look at the worst of humanity for eight hours a day..." The employee in question allegedly acknowledges that Facebook has made improvements to their wellness program, but still claims it to be inadequate, stating that managers view their employees' brains "as machines," rather than taking into account the consequences of workplace stress.
But the note also points out that "Those who spend the most time in the queues have the least input as to policy... It can take months for issues to be addressed, if they are addressed at all..." Content analysts should be able to communicate directly with those responsible for designing policy... The fact that content analysts are hired by outside agencies makes these things impossible. There are no established avenues for communication with Facebook full-time employees, and we can face penalties if we attempt to contact them.
The last line of the note offers this benediction for Facebook. "I hope you figure out a way to stop constantly starting PR fires and traumatize people en masse."

Slashdot reader LeeLynx shares news from The Register about a Slackware 15 beta release (following the debut of February's alpha), "nearly five years after the distribution last saw a major update." (And nearly 28 years after its initial release back in 1993...) Created by Patrick Volkerding (who still lays claim to the title Benevolent Dictator For Life), the current release version arrived in the form of 2016's 14.2... The Linux kernel has been updated to 5.10.30 (at time of writing) with 5.11.14 available for testing. Desktop fans may be pleased to see, among the many updates, KDE Plasma hitting 5.21.4 as well as updates for old faithfuls, such as Mozilla Firefox and Thunderbird.

The beta itself dropped on 12 April (with the 5.10.29 kernel) and Volkerding noted: "I'm going to go ahead and call this a beta even though there's still no fix for the illegal instruction issue with 32-bit mariadb. But there should be soon."

Tinkering has continued since, judging by the change log, although the beta tag brings hope there will be a release before long.

A mystery photo and a geography enthusiast helped locate a missing California hiker who is now safely back home. From a report: Rene Compean of Palmdale was on a hike Monday near Mount Waterman, a popular ski destination in the San Gabriel Mountains in Southern California. While the 45-year-old was on his outdoor adventure, he snapped a picture. Compean texted the shot to a friend. And then, he went off the map. He was reported missing at 6 p.m. by a friend, who received one last text from Compean saying he was worried he was lost and his cell phone battery was running low. The photo was turned over to investigators at the Los Angeles County Sheriff's Department who posted it to social media, asking if anyone recognized the spot in the photograph. Benjamin Kuo saw the message and thought he might be able to help. The report adds: As a satellite image aficionado, he was already familiar with tracking California wildfires in remote areas. "I've got a very weird hobby, which is I love taking a look at photos and figuring out where they're taken," Kuo told NBC Los Angeles. Using satellite images, maps and the scenery below Compean's feet in the photo, Kuo was able to estimate the coordinates of where he believed the man had gone missing. Kuo sent his tip to the sheriff's office, and a helicopter was sent to survey the area Tuesday. There, as if by magic, was Compean.

"FreeBSD, the other Linux, reached version 13," writes long-time Slashdot reader undoman. "The operating system is known for its stable code, native ZFS support, and use of the more liberal BSD licenses." Phoronix highlights some of the major new improvements: FreeBSD 13.0 delivers on performance improvements (particularly for Intel CPUs we've seen in benchmarks thanks to hardware P-States), upgrading to LLVM Clang 11 as the default compiler toolchain, POWER 64-bit support improvements, a wide variety of networking improvements, 64-bit ARM (AArch64) now being a tier-one architecture alongside x86_64, EFI boot improvements, AES-NI is now included by default for generic kernel builds, the default CPU support for i386 is bumped to i686 from i486, and a variety of other hardware support improvements. Various obsolete GNU tools have been removed like an old version of GNU Debugger used for crashinfo, obsolete GCC 4.2.1 and Binutils 2.17 were dropped from the main tree, and also switching to a BSD version of grep. The release announcement can be found here.

Inside.com's developer newsletter reports: The PHP team no longer believes the git.php.net server was compromised in a recent attack, which prompted PHP to move servers to GitHub and caused the team to temporarily put releases on hold until mid-April...

In an update offering further insight into the root cause of the late March attack, the team says because it's possible the master.php.net user database was exposed, master.php.net has been moved to main.php.net. The team also reset php.net passwords, and you can visit https://main.php.net/forgot.php to set a new password. In addition, git.php.net and svn.php.net are both read-only now.

Two malicious commits were pushed to the php-src repo from PHP founder Rasmus Lerdorf and PHP core developer Nikita Popov, Popov announced March 28. After an investigation, the PHP team reassured users these malicious commits never reached end-users. However, the team decided to move to GitHub after determining maintaining its own git infrastructure is "an unnecessary security risk."
"In 2019, the PHP team temporarily shut down its Git server after discovering that an attacker had maliciously replaced the official PHP Extension and Application Repository with a malicious one," reports CPO magazine. But this newer supply chain attack "targeted any server that uses PHP ZLib compression when sending data. Most servers use this functionality on almost all content except images and archives that are already size optimized." The supply chain attack would have turned PHP into a remote web shell through which the attackers could execute any command without authentication. This is because the malicious attackers would have the same privileges as the web server running PHP. The backdoor is triggered at the start of a request by checking if the request contains the word "zerodium." If this condition was met, PHP executes the code in the "User-Agentt" request header. The header closely resembles the PHP "User-Agent" request for checking for browser properties.

The rest of the request would thus be treated as a command that could be executed on a PHP server using the server's privileges. This would allow the hackers to run any arbitrary command without the need for further privileges...

PHP powers 80% of all websites. Thus, a successful supply chain attack exploiting the language could prove catastrophic.

Long-time Slashdot reader xiando quotes LinuxReviews: The community distribution Arch Linux has up to now required you to manually install it by entering a whole lot of scary commands in a terminal. Arch version 2021.04.01 features a new guided installer [reached by] typing python -m archinstall guided into the console you get when you boot the Arch Linux installation ISO.

It is not very novice-friendly, or user-friendly, but it gets the job done and it will work fine for those with some basic GNU/Linux knowledge.
Tech Radar writes that previously Arch Linux had "a rather convoluted installation process, which has given rise to a stream of Arch-based distros that are easier to install," adding that the new installer "was reportedly promoted as an official installation mechanism back in January, and was actively worked upon leading to its inclusion in the installation medium." Users have been calling on Arch Linux for simplifying the installation process for a long time, to bring it in line with other Linux distros. However, the Arch philosophy has always been to put the users in charge of every aspect of their installation, which is the antithesis of automated installers.
Phoronix calls the new installer "very quick and easy," although "granted not as user-friendly / polished as say the Debian Installer, Red Hat's Anaconda installer, even Ubuntu's Subiquity, and other TUI/GUI Linux installers out there." They also note that Archinstall "does allow automatically partitioning the drive with your choice of file-system options, automatically installing a desktop environment if desired, configuring the network interfaces, and all the other basics." The method is quick enough that I'll likely use archinstall for future Arch Linux benchmarks on Phoronix as it also then applies a sane set of defaults for users... Five minutes or less and off to the races, ready for Arch Linux."
But Slashdot reader I75BJC still favors "scary commands in a terminal," leaving this comment on the original submission: If you can't type with the big adults, stay on your PlayStation.

Even Apple, with its very good GUI has a command line. The command line commands are more flexible, more specific, more subtle than the pointy-clicky GUI.

An anonymous reader shares a report: A year ago, Uber let its California drivers see ride destinations before picking up passengers and let them set pricing in an effort to prove that the drivers were truly independent contractors. It was part of the company's strategy to block drivers from being reclassified as employees under AB5, California's gig-work law. Now, Uber is acknowledging that the move has hurt business and is considering axing its visible destinations and price-naming policies, The Chronicle has learned. The see-saw may disappoint drivers who appreciated that extra control over their work.

Too many drivers cherry-pick lucrative rides and decline other requests, making the service unreliable, the San Francisco company said on Monday. Uber no longer has to worry about proving that drivers are independent contractors, because Prop 22 -- the November ballot measure that Uber and fellow gig companies spent $220 million to pass -- enshrines their non-employee status.

For more than six months, federal prosecutors say, a New York man used inside information to make illegal profits in the stock market -- and a core element of his alleged scheme was his interaction with Bloomberg News, which published several stories shortly after the trader arranged to make significant purchases of the companies' shares. From a report: Last month, a federal grand jury indicted Jason Peltz on multiple counts of securities fraud, money laundering, tax evasion and lying to the FBI. Peltz, 38, is accused of working with over a half-dozen unnamed and unindicted co-conspirators to learn about impending takeovers and other market-moving news, and to move money between accounts as a way to hide his role and profits. The indictment notes that Peltz's moves were timed closely to stories that ran at "a financial news organization."

While the newsroom isn't named, federal officials cite five stories and their timestamps -- all of which match precisely to pieces that ran on Bloomberg News' website. Each of those stories had shared bylines, but only one reporter is identified as an author for all of the articles: Ed Hammond, who worked at the Financial Times before coming to Bloomberg more than six years ago to cover mergers and acquisitions. In 2017, Hammond was named Bloomberg's senior deals reporter in New York -- a highly prestigious post in that newsroom. The feds allege that Peltz used disposable "burner" phones and encrypted apps to communicate with a journalist, and that the reporter provided "material nonpublic information about forthcoming articles" which Peltz used to trade in the market "just prior to publication of an article about each company written by the reporter." The indictment describes "numerous contacts" between Peltz and a reporter, including at least one in-person meeting. Neither Hammond nor Bloomberg is named in the indictment; the filing says a financial-news reporter's identity was made known to the grand jury that heard the case. No one at Bloomberg is accused by prosecutors of wrongdoing or of being aware that these stories might be linked to an insider-trading scheme. Prosecutors make no allegation that the stories contained any inaccurate information, nor do any of the stories display corrections.

Long-time Slashdot reader xiando quotes the backstory from LinuxReviews.org: CentOS used to be the go-to alternative for those who wanted to use Red Hat Enterprise Linux (RHEL) without having to pay RedHat to use it. It was a almost 1:1 clone until RedHat took control of it and turned it into what is now a RHEL beta-version, not a stable RHEL release without the branding. Almalinux is one of several projects that have made their own RHEL forks in response. The first Almalinux version is now released.
ZDNet notes that CentOS co-founder Gregory Kurtzer has announced his own RHEL clone and CentOS replacement named Rocky Linux. But they offer this report on AlmaLinux: CloudLinux — which was founded in 2009 to provide a customized, high-performance, lightweight RHEL/CentOS server clone for multitenancy web and server hosting companies — came ready to deliver. The new free AlmaLinux is now stable and ready for production workloads. The company also announced the formation of a non-profit organization: AlmaLinux Open Source Foundation. This group will take over managing the AlmaLinux project going forward. CloudLinux has committed a $1 million annual endowment to support the project.

Jack Aboutboul, former Red Hat and Fedora engineer and architect, will be AlmaLinux's community manager. Altogether, Aboutboul brings over 20 years of experience in open-source communities as a participant, manager, and evangelist... "In an effort to fill the void soon to be left by the demise of CentOS as a stable release, AlmaLinux has been developed in close collaboration with the Linux community," said Aboutaboul in a statement. "These efforts resulted in a production-ready alternative to CentOS that is supported by community members...."

In talking with CentOS business users, who deployed CentOS on web and host servers, I found many of them to be very hopeful about AlmaLinux. One from a mid-Atlantic-based Linux hosting company said, "What we want is a stable Linux that our customers can rely on from year to year. Since CentOS Stream can't deliver that, we think — hope — that AlmaLinux can do it for us and our users instead...."

This first release of AlmaLinux is a one-to-one binary compatible fork of RHEL 8.3. Looking ahead, AlmaLinux will seek to keep step-in-step with future RHEL releases... The GitHub page has already been published and the completed source code has been published in the main download repository. The CloudLinux engineering team has also published FAQ on AlmaLinux Wiki.
"The sudden shift in direction for CentOS that was announced in December created a big void for millions of CentOS users," said Simon Phipps, open source advocate and a former president of the Open Source Initiative who is on the governing board of the AlmaLinux project. In a statement, Phipps said that "As a drop-in open-source replacement, AlmaLinux provides those users with continuity and new opportunity to be part of a vibrant community built around creating and supporting this new Linux distribution under non-profit governance.

"I give a lot of credit to CloudLinux for stepping in to offer CentOS users a lifeline to continue with AlmaLinux."

dotancohen writes: Late Sunday night, on March 28, 2021, Nikita Popov, a core PHP committer, released a statement indicating that two malicious commits had been pushed to the php-src Git repository. These commits were pushed to create a backdoor that would have effectively allowed attackers to achieve remote code execution through PHP and an HTTP header. "The incident is alarming considering PHP remains the server-side programming language to power over 79% of the websites on the Internet," adds BleepingComputer.

"In the malicious commits [1, 2] the attackers published a mysterious change upstream, 'fix typo' under the pretense this was a minor typographical correction. However, taking a look at the added line 370 where zend_eval_string function is called, the code actually plants a backdoor for obtaining easy Remote Code Execution (RCE) on a website running this hijacked version of PHP."

According to Popov, the first commit was detected a couple hours after it was made, and the changes were reverted right away. "Although a complete investigation of the incident is ongoing, according to PHP maintainers, this malicious activity stemmed from the compromised git.php.net server, rather than compromise of an individual's Git account," reports BleepingComputer. "As a precaution following this incident, PHP maintainers have decided to migrate the official PHP source code repository to GitHub."

In his "Technically Incorrect" column, Chris Matyszczyk shares one employee's gripe about their new lockdown-incuded online workplace: Writing to New York magazine's The Cut — specifically workplace advice columnist Alison Green — the employee expressed frustration about their boss's so-called Zoom Happy Hours. "These aren't really happy hours," the employee says. "They're more 'work meetings with alcohol on Zoom,' and while they're framed as not 'technically' obligatory, they definitely are, and I get pointed comments if I choose to not attend."

Worse, they're not in actual working hours. Their boss, though, believes everyone's in lockdown, so what's the difference...? This particular boss has decreed the (not really) optional Happy Hour is between 5 p.m. and 7:30 p.m...

I was struck by new research from the University of Sydney. The academic title is: "Collecting experimental network data from interventions on critical links in workplace networks." But drift to the press release and you find: "Benefits of team-building exercises jeopardized if not truly voluntary." Lead researcher Dr. Petr Matous described the situation quite baldly: "Many workers told us that they despise team building activities and see them as a waste of time."
The researchers recommend employers try to encourage a good relationship between two employees — but to let them ultimately work it out for themselves. And Matyszczyk believes this approach makes even more sense on Zoom. "If you're on a Zoom Happy Hour with, say, 50 people, there's still only one actual conversation. Even if you want to participate, it's hard to get a word in and have it instantly understood, never mind appreciated."

That is, unless your boss decides to distribute all the online Happy Hour participants into smaller "breakout rooms"...

This week Swedish developer Daniel Stenberg posted a remarkable reflection on the 23rd anniversary of his command-line data tool, cURL: curl was adopted in Red Hat Linux in late 1998, became a Debian package in May 1999, shipped in Mac OS X 10.1 in August 2001. Today, it is also shipped by default in Windows 10 and in iOS and Android devices. Not to mention the game consoles, Nintendo Switch, Xbox and Sony PS5.

Amusingly, libcurl is used by the two major mobile OSes but not provided as an API by them, so lots of apps, including many extremely large volume apps bundle their own libcurl build: YouTube, Skype, Instagram, Spotify, Google Photos, Netflix etc. Meaning that most smartphone users today have many separate curl installations in their phones.

Further, libcurl is used by some of the most played computer games of all times: GTA V, Fortnite, PUBG mobile, Red Dead Redemption 2 etc.

libcurl powers media players and set-top boxes such as Roku, Apple TV by maybe half a billion TVs.

curl and libcurl ships in virtually every Internet server and is the default transfer engine in PHP, which is found in almost 80% of the world's almost two billion websites.

Cars are Internet-connected now. libcurl is used in virtually every modern car these days to transfer data to and from the vehicles.

Then add media players, kitchen and medical devices, printers, smart watches and lots of "smart"; IoT things. Practically speaking, just about every Internet-connected device in existence runs curl.

I'm convinced I'm not exaggerating when I claim that curl exists in over ten billion installations world-wide...

Those 300 lines of code in late 1996 have grown to 172,000 lines in March 2021.
Stenberg attributes cURL's success to persistence. "We hold out. We endure and keep polishing. We're here for the long run. It took me two years (counting from the precursors) to reach 300 downloads. It took another ten or so until it was really widely available and used." But he adds that 22 different CPU architectures and 86 different operating systems are now known to have run curl.

In a later blog post titled "GitHub Steel," Stenberg also reveals that GitHub gave him a 3D-printed steel version of his 2020 GitHub contribution matrix — accompanied by a friendly note. "Please accept this small gift as a token of appreciation on behalf of all of us here at GitHub, and everyone who benefits from your work."

Nieman Lab: In a paper summarizing 30 years of sports coverage on televised news and highlights shows, researchers began by quoting a short segment dedicated to a WNBA game between the L.A. Sparks and the Atlanta Dream. The broadcast was unusual, authors Cheryl Cooky, LaToya D. Council, Maria A. Mears, and Michael A. Messner pointed out, in that women's sports were mentioned at all. They found that 80% of the televised sports news and highlights shows included zero stories on women's sports. The overall portion of sports coverage featuring women had been low for decades and, in 2019, an overwhelming 95% of the sports coverage included in their study focused on men's sports. But, they wrote, the WNBA segment was typical in other ways. The 23-second-long clip was the only mention of women's sports in the six-minute long sports segment -- and it was also the shortest. Other coverage included Major League Baseball games and the men's Wimbledon final, but also segments on a celebrity golf tournament and a competitive hot-dog eating contest. "In short, the WNBA story -- the shortest in duration of the six in the broadcast -- was eclipsed by five longer reports on men's sports, stories ranging from in-season sports (MLB, pro tennis), an out-of-season sport (NBA), to human interest and comedic entertainment only tangentially connected to what most people think of as sports news," the report found.

The study analyzed sports coverage on local network television (the Los Angeles affiliates KCBS, KNBC, and KABC) as well as highlight shows like ESPN's SportsCenter over the 30 years. In 2019 -- after sport media producers and others suggested televised news and highlights shows were not as relevant as they once were -- the researchers started to include online and social media sources, like Twitter accounts for the networks. The proportion of coverage dedicated to women's sports in email newsletters and Twitter was higher than TV news and SportsCenter, but only if the researchers included espnW and its online newsletter. ESPN stopped producing espnW's weekly newsletter, however, and, when researchers removed the data from their sample, the proportions dedicated to women's sports mirrored that found on TV news and highlights shows.

The GNOME 40 desktop update has been released with a bunch of new improvements. Phoronix summarizes the major changes: GNOME 40 is out with the GTK4 toolkit in tow, many improvements and alterations to the GNOME Shell including major changes to the dash and workspaces, Mutter has continued refining its Wayland support, Mutter also added a native headless back-end for testing, atomic mode-setting is now supported, input handling is now done in a separate thread, and a wide variety of other improvements. And, yes, there is also the big shift in GNOME's versioning practices moving forward while still sticking to the same six month release regiment. The release announcement and release notes can be found at their respective links.

A married pair of San Francisco entrepreneurs were indicted Thursday on multiple federal charges, the latest twist in the saga of a once trendy, now bankrupt fecal matter-testing startup. From a report: Zachary Schulz Apte and Jessica Sunshine Richman, co-founders of defunct microbiome testing company uBiome, are accused of bilking their investors and health insurance providers, federal prosecutors said. They were indicted Thursday on multiple federal charges, including conspiracy to commit securities fraud, conspiracy to commit health care fraud and money laundering. Their court appearances have not been scheduled, and it was not immediately clear if they had attorneys who could speak on their behalf. Apte, 36, and Richman, 46, founded uBiome in 2012 as a direct-to-consumer service called "Gut Explorer." Customers would submit a fecal sample that the company analyzed in a laboratory, comparing the consumer's microbiome to others' microbiomes, prosecutors said. The service cost less than $100 initially.

Google co-founder Sergey Brin is the ninth-richest person in the world — and he loves airships. Now new details have emerged about Brin's secretive airship company, LTA Research and Exploration (which stands for "Lighter Than Air"). SFGate reports: Although back in 2017 the word on the street was that Brin intended the aircraft to serve at least in part as a luxurious "air yacht" for his family and friends, the LTA website states only humanitarian goals: "LTA airships will have the ability to complement — and even speed up — humanitarian disaster response and relief efforts, especially in remote areas that cannot be easily accessed by plane and boat due to limited or destroyed infrastructure." Unlike jet planes, airships have the ability to land or deliver goods almost anywhere.

In addition, the LTA site says that their airships are intended to serve as a zero emissions alternative to airplanes, used for both shipping goods and moving people. Climate change has made airships sound more appealing to scientists in recent years — while slower than airplanes, airships are faster than cargo ships and have fewer emissions than both boats and planes. In fact, airships produce 80% to 90% fewer emissions than conventional aircraft.

They're going to be huge — and they're not going to be cheap. "It's going to be massive on a grand scale," a source told the Guardian in 2017, estimating that Brin's airship would be about 650 feet long... A recent job description posted on the LTA website revealed the company's plans to build a 1.5-megawatt hydrogen fuel cell propulsion system.
TechCrunch reports that one airship — named Pathfinder 1 — has already been built, and could be ready to launch from Silicon Valley as soon as this year.

From a report: On Saturday, Zack Snyder himself will head to Twitch to unveil the first look at Justice League: Justice Is Gray... the grayscale version that will soon arrive on HBO Max. The "pre-show" for the event kicks off at 2:30 p.m. Pacific Time on the MANvsGAME channel, with the Snyder and and Justice League star Joe Manganiello joining the broadcast for the big reveal at 4:00 p.m. Pacific. StreamElements designed audience tools to use during the stream, including an engaging donation functionality that will benefit the American Foundation for Suicide Prevention.
The Chicago Tribune argues all you needed to know about Joss Whedon's original 2017 version is encapsulated in the 68-second YouTube video "Sad Affleck." (An SFGate columnist calls the new version "vastly better.") But the Tribune calls Snyder's four-hour director's cut "a 14-year-old's idea of gravitas. Epic, violent, full of naughty words, told with the lyricism of a pharmaceutical ad about bloating. And more importantly, for now, it's complete."

Yahoo Entertainment's Insider has compiled "The 45 biggest differences between 'Zack Snyder's Justice League' and the 2017 theatrical version." But Variety just specifically asked Zack Snyder, "Why is Justice League so violent?" [T]he violence in "Justice League" is bloodier and more violent than audiences are typically accustomed to with superhero movies, which are almost always rated PG-13 — and therefore largely bloodless. Snyder wanted to push the envelope. "It's a pure exercise in creative freedom," the director told Variety this week... Snyder says knowing his film would be streaming on HBO Max freed him from having to make his "Justice League" work for a PG-13 rating.

"Let's just do it the exact way we would if there was no ratings board," he said of his team's thinking. "Let's not use any second guessing. Let's just do it the way we think is the coolest. That was the philosophical approach." Part of the reason that "Justice League" is so violent is to realistically demonstrate what it would be like to actually face off against god-like superheroes.
ComicBook.com reports that Snyder is now also planning "a multi-day SnyderVerse movie marathon later in 2021, where showings of Man of Steel and Batman v Superman: Dawn of Justice will culminate in a theatrical IMAX screening of Zack Snyder's Justice League. The filmmaker is a "huge admirer" of the Justice Is Gray Edition in IMAX, calling it the "ultimate version" of Justice League that is "sort of the penultimate ridiculous movie that shouldn't exist at its highest most fetishistic level."
Snyder tells Esquire his four-hour re-edit was "a labor of love and I would do it again in a second. I wouldn't hesitate. And look, we were doing it for free. I really didn't care. I just wanted to get it, fix it."

Esquire adds that "Even if you decide not to dive into a four hour super hero movie, at least take away a lesson from the making of the Snyder Cut: in a time when so much of us have experienced wrongs and tragedy, sometimes wrongs can be righted, and sometimes your biggest visions find a way to get out into the world."