The Dutch government agency responsible for investigating financial crimes said it has arrested an individual suspected of being a developer of the U.S.-sanctioned crypto mixing service Tornado Cash in a move that has rattled some crypto and privacy advocates. From a report: The Fiscal Information and Investigation Service said Friday that the arrested 29-year-old man is suspected to be involved in "concealing criminal financial flows and facilitating money laundering" through the popular crypto mixing service. "Multiple arrests are not ruled out," it said. The agency added that it arrested the individual in Amsterdam. The move comes days after the U.S. government sanctioned Tornado Cash -- a service that allows users to mask their transactions by jumbling funds from different sources before sending them to the ultimate destination -- for its role in enabling billions of dollars' worth of cryptocurrency to be laundered through its platform.

Matt Edmondson, a hacker and digital forensics expert, built a Raspberry Pi-powered anti-tracking tool that "scans for nearby devices and alerts you if the same phone is detected multiple times within the past 20 minutes," reports Wired. The device, which can be carried around or placed in a car, consists of parts that cost around $200 in total. From the report: The homemade system works by scanning for wireless devices around it and then checking its logs to see whether they also were present within the past 20 minutes. It was designed to be used while people are on the move rather than sitting in, say, a coffee shop, where it would pick up too many false readings. The anti-tracking tool, which can sit inside a shoebox-sized case, is made up of a few components. A Raspberry Pi 3 runs its software, a Wi-Fi card looks for nearby devices, a small waterproof case protects it, and a portable charger powers the system. A touchscreen shows the alerts the device produces. Each alert may be a sign that you are being tailed. The device runs Kismet, which is a wireless network detector, and is able to detect smartphones and tablets around it that are looking for Wi-Fi or Bluetooth connections. The phones we use are constantly looking for wireless networks around them, including networks they've connected to before as well as new networks.

Edmondson says Kismet makes a record of the first time it sees a device and then the most recent time it was detected. But to make the anti-tracking system work, he had to write code in Python to create lists of what Kismet detects over time. There are lists for devices spotted in the past five to 10 minutes, 10 to 15 minutes, and 15 to 20 minutes. If a device appears twice, an alert flashes up on the screen. The system can show a phone's MAC address, although this is not much use if it's been randomized. It can also record the names of Wi-Fi networks that devices around it are looking for -- a phone that's trying to connect to a Wi-Fi network called Langley may give some clues about its owner. "If you have a device on you, I should see it," he says. In an example, he showed WIRED that a device was looking for a network called SAMSUNGSMART.

To stop the system from detecting your own phone or those of other people traveling with you, it has an "ignore" list. By tapping one of the device's onscreen buttons, it's possible to "ignore everything that it has already seen." Edmondson says that in the future, the device could be modified to send a text alert instead of showing them on the screen. He is also interested in adding the capability to detect tire-pressure monitoring systems that could show recurring nearby vehicles. A GPS unit could also be added so you can see where you were when you were being tracked, he says. [...] Edmondson has no plans to make the device into a commercial product, but he says the design could easily be copied and reused by anyone with some technical knowledge. Many of the parts involved are easy to obtain or may be lying around the homes of people in tech communities. For those interested, Edmondson open-sourced its underlying code and plans to present the research project at the Black Hat security conference in Las Vegas this week.

Meta, the owner of Facebook and Instagram, has been rewriting websites its users visit, letting the company follow them across the web after they click links in its apps, according to new research from an ex-Google engineer. The Guardian reports: The two apps have been taking advantage of the fact that users who click on links are taken to webpages in an "in-app browser," controlled by Facebook or Instagram, rather than sent to the user's web browser of choice, such as Safari or Firefox. "The Instagram app injects their tracking code into every website shown, including when clicking on ads, enabling them [to] monitor all user interactions, like every button and link tapped, text selections, screenshots, as well as any form inputs, like passwords, addresses and credit card numbers," says Felix Krause, a privacy researcher who founded an app development tool acquired by Google in 2017.

Krause discovered the code injection by building a tool that could list all the extra commands added to a website by the browser. For normal browsers, and most apps, the tool detects no changes, but for Facebook and Instagram it finds up to 18 lines of code added by the app. Those lines of code appear to scan for a particular cross-platform tracking kit and, if not installed, instead call the Meta Pixel, a tracking tool that allows the company to follow a user around the web and build an accurate profile of their interests. The company does not disclose to the user that it is rewriting webpages in this way. No such code is added to the in-app browser of WhatsApp, according to Krause's research. [...] It is unclear when Facebook began injecting code to track users after clicking links. "We intentionally developed this code to honor people's [Ask to track] choices on our platforms," a Meta spokesperson told The Guardian in a statement. "The code allows us to aggregate user data before using it for targeted advertising or measurement purposes. We do not add any pixels. Code is injected so that we can aggregate conversion events from pixels."

They added: "For purchases made through the in-app browser, we seek user consent to save payment information for the purposes of autofill."

The Federal Trade Commission is seeking public feedback on a proposed rulemaking to limit what it's dubbed "commerical surveillance" by businesses that sell or share information collected about people. From a report: The advance notice, announced Thursday, would protect the personal data companies such as Alphabet Inc. and Meta Platforms Inc. collect about consumers.

The Internal Revenue Service is seeking to identify customers of cryptocurrency prime dealer SFOX as part of its efforts to force crypto investors to pay taxes on their holdings. Bloombeg reports: In court filings in New York and Los Angeles, the tax authority asked federal judges to let it serve summonses on SFOX and M.Y. Safra Bank, which partnered with SFOX in 2019 to offer its customers cash deposit accounts backed by the Federal Deposit Insurance Corporation. The IRS is seeking account and transaction records for users with cryptocurrency transactions over $20,000 in any year from 2016 to 2021. "Transactions in cryptocurrency have grown substantially in recent years, and the IRS is concerned that taxpayers are not properly reporting these transactions on their tax returns," a lawyer for the government said in court papers filed Monday in Los Angeles. Meanwhile, according to Bloomberg (paywalled), the FTC is "investigating the operators of the BitMart cryptocurrency exchange over a December 2021 hack that led to consumer losses between $150 million and $200 million -- marking the agency's first known probe into crypto markets."

An anonymous reader quotes a report from Ars Technica: Amazon will expand its Amazon One palm print checkout system to dozens of Whole Foods locations, marking the most significant expansion of the technology that was introduced in 2020. Amazon One allows customers to speedily check out at retail locations using only their palm prints after storing a scan of their hand via an interface at Amazon's kiosks. The palm print data is encrypted and stored on Amazon's servers. And before you worry too much about COVID-19 transmission or future pandemics, Amazon One works when you hover your palm over the scanner -- unlike some handprint tech.

Amazon initially added the technology in its Amazon Go stores and the now-shuttered Amazon Books retail locations. It then made its way to several Whole Foods locations in the Seattle area. (Amazon has owned the Whole Foods grocery chain since 2017.) Now, Amazon Go will expand to 65 Whole Foods stores across California. The rollout starts in Malibu and Santa Monica, with more locations adopting it in Los Angeles, Santa Cruz, and the Bay Area over the next few weeks. Amazon previously rolled the tech out to a few select locations in California, but never at this scale.

According to Bloomberg, the Department of Justice is preparing to sue Google as soon as next month, "capping years of work to build a case that the Alphabet unit illegally dominates the digital advertising market." From the report: Lawyers with the DOJ's antitrust division are questioning publishers in another round of interviews to refresh facts and glean additional details for the complaint [...]. Some of the interviews have already taken place and others are scheduled in the coming weeks [...]. They build on previous interrogations conducted during an earlier stage of the long-running investigation [...].

An ad tech complaint, which Bloomberg had reported was in the works last year, would mark the DOJ's second case against Google following the government's 2020 lawsuit alleging the tech titan dominates the online search market in violation of antitrust laws. Still undecided is whether prosecutors will file the case in federal court in Washington, where the search case is pending, or in New York, where state attorneys general have their own antitrust case related to Google's ad tech business [...].

In two lawsuits (PDF) filed today in California, Google alleges that Sonos' latest voice-assistant technology violates seven patents related to Google Assistant. CNET reports: Google spokesperson Jose Castaneda said Sonos has "started an aggressive and misleading campaign against our products, at the expense of our shared customers." As a result, he said, the lawsuits have been filed to "defend our technology and challenge Sonos' clear, continued infringement of our patents." Sonos launched its own voice assistant in June, allowing customers to control their speakers using voice commands starting with the phrase "Hey Sonos."

Google said in the lawsuits that it has made its technologies available to users across the globe, "even providing its Google Assistant software to Sonos for many years." The suits also said Google has for years worked with Sonos engineers on the "implementation of voice recognition and voice-activated device controls in Sonos' products." Google requests an unspecified amount of monetary damages and an injunction blocking Sonos' alleged infringement. Last year, the International Trade Commission ruled that Google infringed on five patents owned by Sonos, forcing Google to change the way its smart speakers are set up and controlled.

"Google previously sued us all over the world and Sonos has prevailed in every decided case," Eddie Lazarus, Sonos' chief legal officer, told CNET, adding that the new lawsuits "are an intimidation tactic designed to retaliate against Sonos for speaking out against Google's monopolistic practices," which "will not succeed."

An anonymous reader quotes a report from Wired: As marketers, data brokers, and tech giants endlessly expand their access to individuals' data and movements across the web, tools like VPNs or cookie blockers can feel increasingly feeble and futile. Short of going totally off the grid forever, there are few options for the average person to meaningfully resist tracking online. Even after coming up with a technical solution last year for how phone carriers could stop automatically collecting users' locations, researchers Barath Raghavan and Paul Schmitt knew it would be challenging to convince telecoms to implement the change. So they decided to be the carrier they wanted to see in the world. The result is a new company, dubbed Invisv, that offers mobile data designed to separate users from specific identifiers so the company can't access or track customers' metadata, location information, or mobile browsing. Launching in beta today for Android, the company's Pretty Good Phone Privacy or PGPP service will replace the mechanism carriers normally use to turn cell phone tower connection data into a trove of information about users' movements. And it will also offer a Relay service that disassociates a user's IP address from their web browsing.

PGPP's ability to mask your phone's identity from cell towers comes from a revelation about why cell towers collect the unique identifiers known as IMSI numbers, which can be tracked by both telecoms and other entities that deploy devices known as IMSI catchers, often called stringrays, which mimic a cell tower for surveillance purposes. Raghavan and Schmitt realized that at its core, the only reason carriers need to track IMSI numbers before allowing devices to connect to cell towers for service is so they can run billing checks and confirm that a given SIM card and device are paid up with their carrier. By acting as a carrier themselves, Invisv can implement their PGPP technology that simply generates a "yes" or "no" about whether a device should get service. On the PGPP "Mobile Pro" plan, which costs $90 per month, users get unlimited mobile data in the US and, at launch, unlimited international data in most European Union countries. Users also get 30 random IMSI number changes per month, and the changes can happen automatically (essentially one per day) or on demand whenever the customer wants them. The system is designed to be blinded so neither INVISV nor the cell towers you connect to know which IMSI is yours at any given time. There's also a "Mobile Core" plan for $40 per month that offers eight IMSI number changes per month and 9 GB of high-speed data per month.

Both of these plans also include PGPP's Relay service. Similar to Apple's iCloud Private Relay, PGPP's Relay is a method for blocking everyone, from your internet provider or carrier to the websites you visit, from knowing both who you are and what you're looking at online at the same time. Such relays send your browsing data through two way stations that allow you to browse the web like normal while shielding your information from the world. When you navigate to a website, your IP address is visible to the first relay -- in this case, Invisv -- but the information about the page you're trying to load is encrypted. Then the second relay generates and connects an alternate IP address to your request, at which point it is able to decrypt and view the website you're trying to load. The content delivery network Fastly is working with Invisv to provide this second relay. Fastly is also one of the third-party providers for iCloud Private Relay. In this way, each relay knows some of the information about your browsing; the first simply knows that you are using the web, and the second sees the sites you connect to, but not who specifically is browsing there. In addition to being included in the two PGPP data plans, customers can also purchase the Relay service on its own for $5 per month and turn it on while connected to mobile data or Wi-Fi. The carrier is still working to bring its services to Apple's iOS. It's also worth noting that Invisv only offers mobile data; there are no voice calling services.

Computer scientist Stephen Thaler was dealt another blow in his battle for artificial intelligence machines to be recognized as inventors on patents, after the nation's top patent court found that inventors must be humans. The term "individual" in the Patent Act refers only to humans, meaning an AI doesn't count as an inventor on a patentable invention, the US Court of Appeals for the Federal Circuit ruled Friday. From a report: The decision lines up with courts in the European Union, the United Kingdom, and Australia that have refused to accept Thaler's argument. His only currently existing win is from a South African court that said an AI can be a patent inventor. Unless the US Supreme Court steps in, the Federal Circuit is typically the final authority on US patent matters -- hearing all such appeals from federal district courts and the US Patent and Trademark Office. Thaler already plans to appeal to the high court, his attorney, Ryan Abbott of Brown, Neri, Smith & Khan LLP, said. The Federal Circuit adopted a "narrow and textualist approach" to the Patent Act, Abbott said. "It ignores the purpose of the Patent Act and the outcome that AI-generated inventions are now unpatentable in the United States," he said. "That is an outcome with real negative social consequences."

"No one imagined commercial space tourism taking hold, no one believed crowd-funded satellites and mega constellations at low earth orbit were possible, and no one could have conceived of the sheer popularity of space entrepreneurship," reads a statement Friday from the chair of America's Federal Communications Commission. "But it's all happening...."

And Reuters reports on what happens next: With Earth's orbit growing more crowded with satellites, a U.S. government agency on Friday said it would begin revising decades-old rules on getting rid of space junk and on other issues such as satellite refueling and inspecting and repairing in-orbit spacecraft. "We believe the new space age needs new rules," Federal Communications Commission (FCC) Chairwoman Jessica Rosenworcel said after the 4-0 FCC vote, adding that current rules "were largely built for another era."

Rosenworcel said the FCC needs "to make sure our rules are prepared for the proliferation of satellites in orbit and new activities in our higher altitudes."

The FCC also plans to look at "new ways to clean up orbital debris. After all, there are thousands of metric tons of junk in space," Rosenworcel added. The FCC will look at "the potential for orbital debris remediation and removal functions that offer the prospect of improvement in the orbital debris environment....."

"The FCC remains the only agency to license virtually every commercial space mission that touches the United States," FCC Commissioner Geoffrey Starks said. "With that power comes the responsibility to understand the missions we authorize, and to create an enabling regulatory environment that opens new doors while still protecting against new risks."
A statement from the FCC describes their new policy review as a "modernization effort."

And it made a point of acknowledging that in-space servicing, assembly, and manufacturing has "the potential to build entire industries, create new jobs, mitigate climate change, and advance America's economic, scientific, technological, and national security interests."

"A class action lawsuit has been filed against big-three consumer credit bureau Experian," reports Krebs on Security, "over reports that the company did little to prevent identity thieves from hijacking consumer accounts.

The legal filing cites liberally from an investigation KrebsOnSecurity published in July, which found that identity thieves were able to assume control over existing Experian accounts simply by signing up for new accounts using the victim's personal information and a different email address. The lawsuit, filed July 28, 2022 in California Central District Court, argues that Experian's documented practice of allowing the re-registration of accounts without first verifying that the existing account authorized the changes is a violation of the Fair Credit Reporting Act.
The lawsuit even cites a July blog post from Krebs on Security. The blog post's title? "Experian, You Have Some Explaining to Do." After providing my Social Security Number (SSN), date of birth, and answering several multiple choice questions whose answers are derived almost entirely from public records, Experian promptly changed the email address associated with my credit file. It did so without first confirming that new email address could respond to messages, or that the previous email address approved the change... After that, Experian prompted me to select new secret questions and answers, as well as a new account PIN — effectively erasing the account's previously chosen PIN and recovery questions. Once I'd changed the PIN and security questions, Experian's site helpfully reminded me that I have a security freeze on file, and would I like to remove or temporarily lift the security freeze?
Experian did send an automated message to the account's original email address when a new one was added, Krebs wrote, but wondered what good that would actually do. "The only recourse Experian offered in the alert was to sign in, or send an email to an Experian inbox that replies with the message, 'this email address is no longer monitored'..."

"I could see no option in my account to enable multi-factor authentication for all logins..."

And Krebs added Friday that "Since that story ran I've heard from several more readers who were doing everything right and still had their Experian accounts hijacked, with little left to show for it except an email alert from Experian saying they had changed the address on file for the account."

Slashdot reader Charlotte Web writes: At 3:02 p.m. EST, vice president Kamala Harris began presiding over the U.S. Senate. After a vote on the very last proposed amendment, the Senate heard these final remarks from Democrat Senate Majority Leader, Chuck Schumer on what he called "the boldest climate package in US history."

"It's been a long, tough, and winding road. But at last — at last — we have arrived. I know it's been a long day and long night, but we've gotten it done...."

"It's a game changer. It's a turning point. And it's been a long time coming.

"To Americans who have lost faith that Congress can do big things, this bill is for you... And to the tens of millions of young Americans who spent years marching, rallying, demanding that Congress act on climate change, this bill is for you. The time has come to pass this historic bill."

One by one, Senators delivered their votes for the official tally, and at 3:18 PST Harris announced that "On this vote, the yeas are 50, the nays are 50." And with the vice president casting deciding votes in an equally-divided Senate, "the bill as amended is passed."

And the Senate broke into spontaneous applause.

The bill now goes to the U.S. House of Representatives, which is expected to vote on it Friday.
As Slashdot reported last week: The bill helps U.S consumers buy electric vehicle chargers, rooftop solar panels, and fuel-efficient heat pumps. It extends energy-industry tax credits for wind, solar and other renewable energy sources -- and for carbon capture technology. In fact, most of its impact is accomplished through tax credits, reports the New York Times, "viewed as one of the least expensive ways to reduce carbon emissions.

"The benefits are worth four times their cost, according to calculations by the Energy Policy Institute at the University of Chicago." One example is ending an eligibility cap on the $7,500 tax credit for consumers buying electric vehicles.

Friday the Twitter Privacy Center posted an announcement on their blog:

"We want to let you know about a vulnerability that allowed someone to enter a phone number or email address into the log-in flow in the attempt to learn if that information was tied to an existing Twitter account, and if so, which specific account. We take our responsibility to protect your privacy very seriously and it is unfortunate that this happened...."

Engadget explains: [T]he company said a malicious actor took advantage of a zero-day flaw before Twitter became aware of and patched the issue in January 2022. The vulnerability was discovered by a security researcher who contacted Twitter through the company's bug bounty program. When Twitter first learned of the flaw, it said it had "no evidence" to suggest it had been exploited. However, an individual told Bleeping Computer last month that they took advantage of the vulnerability to obtain data on more than 5.4 million accounts. Twitter said it could not confirm how many users were affected by the exposure.
From the Twitter Privacy Center: This bug resulted from an update to our code in June 2021. When we learned about this, we immediately investigated and fixed it. At that time, we had no evidence to suggest someone had taken advantage of the vulnerability.... After reviewing a sample of the available data for sale, we confirmed that a bad actor had taken advantage of the issue before it was addressed.

We will be directly notifying the account owners we can confirm were affected by this issue. We are publishing this update because we aren't able to confirm every account that was potentially impacted, and are particularly mindful of people with pseudonymous accounts who can be targeted by state or other actors.

If you operate a pseudonymous Twitter account, we understand the risks an incident like this can introduce and deeply regret that this happened. To keep your identity as veiled as possible, we recommend not adding a publicly known phone number or email address to your Twitter account.

Bill Gates wrote a New York Times opinion piece Saturday arguing that it's immediately clear we're experiencing the effects of climate change. Just in America, "Extreme heat and drought are affecting tens of millions of people, as floods and wildfires ravage communities from Appalachia to California."

So he's urging the U.S. Congress to "face down the climate crisis" while "strengthening our country's energy security, creating opportunities for businesses and improving the lives of Americans," by supporting a massive climate-spending bill being voted on this weekend in the U.S. Senate. Gates calls the bill "our best chance to build an energy future that is cleaner, cheaper and more secure." Many of the technologies we'll need to reach net-zero emissions don't exist, are in early stages of development or are still too expensive to scale up. At the same time, more mature technologies like solar, wind and electric vehicles must be deployed more quickly in more places. Through new and expanded tax credits and a long-term approach, this bill would ensure that critical climate solutions have sustained support to develop into new industries....

With those incentives and investments, this bill would catalyze a new era of American innovation. The ability of America's universities and industries to innovate remains second to none, yet the country risks falling behind as other countries race to build their own clean energy economies. This legislation would help turn American energy innovations into American energy industries and unlock huge economic opportunities in the energy market. If it becomes law, few nations would have the capacity for producing homegrown clean energy like the United States. America could quickly become a leader in the deployment of clean energy at the scale required.

Solving climate change is perhaps the hardest challenge humanity has ever faced. It will require fundamentally transforming how we power our communities, move goods, build things, heat and cool buildings and grow food — basically how we do everything. We need to do it rapidly with a cohesive and coherent plan if we want to avoid the worst effects of climate change.

The country has an opportunity to set an example by offering a vision of what's possible — and then by making it happen.
Gates also writes that the legislation "would begin to transform the parts of our economy that are hardest to decarbonize, like manufacturing, which we must do to reach net-zero emissions...

"Businesses are waiting on the sidelines for a strong signal from government that clean industries are a solid long-term investment. Passing the Inflation Reduction Act would send that message and enable private capital to supercharge our clean energy future with even greater confidence."

Purism posted an announcement Thursday about their privacy-focused "Librem 5 USA" smartphones. "New orders placed today will ship within our standard 10-business-day window." The Librem 5 USA now joins the Librem Mini and Librem 14 as a post-Just In Time product, one where instead of relying on Just In Time supply chains to manufacture a product just as we need it, we have invested in maintaining much larger inventories so that we can better absorb future supply chain issues that may come our way.

For anyone who is new to the product, the Librem 5 USA is our premium phone that shares the same hardware design and features as our mass-produced Librem 5, but with electronics we make in the USA using a separate electronics supply chain that sources from US suppliers whenever possible. This results in a tighter, more secure supply chain for the Librem 5 USA.

The Librem 5 USA uses the same PureOS as our other computers and so it runs the same desktop Linux applications you might be used to, just on a small screen.

PureOS on the Librem 5 USA demonstrates real convergence, where the device becomes more than just a phone, it becomes a full-featured pocket-sized computer that can act like a desktop when connected to a monitor, keyboard and mouse, or even a laptop (or tablet!) when connected to a laptop docking station. All of your files and all of your software remains the same and follows you where you go. Applications just morph from the smaller screen to the larger screen when docked, just like connecting a external monitor to a laptop.

Everyone who has backed the Librem 5 and Librem 5 USA projects hasn't just supported the production of the hardware itself, they have also supported a massive, multi-year software development effort to bring the traditional Linux desktop to a phone form-factor. Projects such as Phosh (the GUI), Phoc (the Compositor), Squeekboard (the Keyboard), Calls (for calling), Chats (for texting and messaging), and libhandy/libadwaita (libraries to make GTK applications adaptive) all required massive investment and many of these projects have already been moved to the GNOME infrastructure to better share our effort with a larger community.

We are delighted to see that many other mobile projects have recognized the quality of our efforts and adopted our software into their own projects....

The Librem 5 USA was designed for longevity and because we support right to repair, we also offer a number of spare parts in our shop, including replacement modems so you can make sure you support all the cellular bands in a particular continent, replacement batteries for when you ultimately wear out your existing battery, and plenty of other spare parts that haven't had sufficient demand to post formally on our shop (yet). If you need a spare part that isn't yet on the shop, just ask.

Long-time Slashdot reader chicksdaddy writes: Printer maker Epson has programmed some models of its inkjet printers to "stop operating" at a pre-determined time, citing the risk of property damage linked to "ink spills," the Fight to Repair newsletter reports.

Epson printer owners have complained that their functioning printers have suddenly stopped working, displaying an error message declaring that a component of the printer has "reached the end of its service life" and that the device needs to be serviced. According to Epson's website, the message is linked to ink pads, which Epson describes as "porous pads in the printer that collect, distribute, and very importantly contain the ink that is not used on printed pages." Over time, these pads become saturated with ink though generally not "before the printer is replaced for other reasons" (??!)

"Like so many other products, all Epson consumer ink jet products have a finite life span due to component wear during normal use... The printers are designed to stop operating at the point where further use without replacing the ink pads could create risks of property damage from ink spills or safety issues related to excess ink contacting an electrical component," the company said on its website.

Rather than measure the saturation of the ink pads to determine when that point is reached, however, Epson appears to have programmed a counter on its printers that disables the device when a threshold has been reached. For printer owners who use Windows, Epson makes a reset utility that can reset the counter though it can "only be used once and will allow printing for a short period of time." For Mac users, or Windows users who have already run the reset utility once, Epson urges them to have the printer serviced by an Epson authorized service shop or — preferably — to replace the printer with a new printer. "Repair may not be a cost-effective option for lower-cost printers because other components may also be near the end of their usable life," the company said. Despite the company's claims about the unfixability of the ink pad issue, YouTube videos suggest that the ink pads are, in fact, simple to replace, as this video illustrates.

Some legal experts say that Epson's hard coding an end of life for its printers may be illegal — an example of "Deceptive trade practices," unless it is clearly disclosing the existence of the programmed end of life to consumers prior to purchase.
Here's how the Fight to Repair newsletter sees the situation. Epson "pushes its customers to throw away the entire, working printer unit simply because some sponges are saturated with ink.

"In doing so, the company amplifies our epidemic of e-waste and forces customers into an expensive and (as it turns out) unneeded upgrade."

This week Samsung said customers can finally start buying replacement screens, rear glass and charging ports for home repairs from repair resource site iFixit, as well as from Samsung's Experience stores across the country, according to the Washington Post.

But their article warns that for now the program is limited to just "a handful of higher-end models" like the Galaxy S20 and S21 series smartphones. ("We plan to expand to more models as the program matures," said a Samsung spokesperson.) You can't, for example, buy just a screen to replace a broken one in your Galaxy phone. Instead, Samsung says you must purchase an entire screen "assembly," which includes the display itself, the metal frame that surrounds it and another battery. Essentially, that means replacing the entire front of the phone and then some.

That also means that, for the time being, Samsung doesn't have a way for you to purchase a genuine battery on its own to replace the one that isn't holding a long-charge or bloating — a common issue in devices that are used and charged regularly. The Samsung spokesperson told The Washington Post that "additional parts will be added as the program ramps up," though co-founder and CEO Kyle Wiens says iFixit will continue to sell third-party replacement batteries....

And we're not kidding about how fiddly these guides can be: according to iFixit, the process of replacing a Galaxy S20's screen assembly requires 41 steps, and that doesn't include putting the phone back together.

"Students should not have to fear expulsion for expressing themselves on social media after school and off-campus, but that is just what happened to the plaintiff in C1.G v. Siegfried," writes Mukund Rathi via the Electronic Frontier Foundation (DFF). "Last month, the Tenth Circuit Court of Appeals ruled the student's expulsion violated his First Amendment rights. The court's opinion affirms what we argued in an amicus brief last year." From the report: We strongly support the Tenth Circuit's holding that schools cannot regulate how students use social media off campus, even to spread "offensive, controversial speech," unless they target members of the school community with "vulgar or abusive language."

The case arose when the student and his friends visited a thrift shop on a Friday night. There, they posted a picture on Snapchat with an offensive joke about violence against Jews. He deleted the post and shared an apology just a few hours later, but the school suspended and eventually expelled him. [...] The Tenth Circuit held the First Amendment protected the student's speech because "it does not constitute a true threat, fighting words, or obscenity." The "post did not include weapons, specific threats, or speech directed toward the school or its students." While the post spread widely and the school principal received emails about it, the court correctly held that this did not amount to "a reasonable forecast of substantial disruption" that would allow regulation of protected speech.

Migrants who have been convicted of a criminal offense will be required to scan their faces up to five times a day using smartwatches installed with facial recognition technology under plans from the Home Office and the Ministry of Justice. The Guardian reports: In May, the government awarded a contract to the British technology company Buddi Limited to deliver "non-fitted devices" to monitor "specific cohorts" as part of the Home Office Satellite Tracking Service. The scheme is due to be introduced from the autumn across the UK, at an initial cost of 6 million pounds. A Home Office data protection impact assessment (DPIA) from August 2021, obtained by the charity Privacy International through a freedom of information request, assessed the impact of the smartwatch technology before contracting a supplier. In the documents, seen by the Guardian, the Home Office says the scheme will involve "daily monitoring of individuals subject to immigration control," with the requirement to wear either a fitted ankle tag or a smartwatch, carried with them at all times.

A Home Office data protection impact assessment (DPIA) from August 2021, obtained by the charity Privacy International through a freedom of information request, assessed the impact of the smartwatch technology before contracting a supplier. In the documents, seen by the Guardian, the Home Office says the scheme will involve "daily monitoring of individuals subject to immigration control," with the requirement to wear either a fitted ankle tag or a smartwatch, carried with them at all times. Photographs taken using the smartwatches will be cross-checked against biometric facial images on Home Office systems and if the image verification fails, a check must be performed manually. The data will be shared with the Home Office, MoJ and the police, with Home Office officials adding: "The sharing of this data [to] police colleagues is not new."

The number of devices to be produced and the cost of each smartwatch was redacted in the contract and there is no mention of risk assessments to determine whether it is appropriate to monitor vulnerable or at-risk asylum seekers. The Home Office says the smartwatch scheme will be for foreign-national offenders who have been convicted of a criminal offense, rather than other groups, such as asylum seekers. However, it is expected that those obliged to wear the smartwatches will be subject to similar conditions to those fitted with GPS ankle tags, with references in the DPIA to curfews and inclusion and exclusion zones. Those who oppose the 24-hour surveillance of migrants say it breaches human rights and may have a detrimental impact on their health and wellbeing. Lucie Audibert, a lawyer and legal officer for Privacy International, said: "Facial recognition is known to be an imperfect and dangerous technology that tends to discriminate against people of color and marginalized communities. These 'innovations' in policing and surveillance are often driven by private companies, who profit from governments' race towards total surveillance and control of populations.

"Through their opaque technologies and algorithms, they facilitate government discrimination and human rights abuses without any accountability. No other country in Europe has deployed this dehumanizing and invasive technology against migrants."