This week U.S. lawmakers drew closer to passing a $369 billion bill with wide-ranging climate provisions.

It helps U.S consumers buy electric vehicle chargers, rooftop solar panels, and fuel-efficient heat pumps. It extends energy-industry tax credits for wind, solar and other renewable energy sources -- and for carbon capture technology. In fact, most of its impact is accomplished through tax credits, reports the New York Times, "viewed as one of the least expensive ways to reduce carbon emissions.

"The benefits are worth four times their cost, according to calculations by the Energy Policy Institute at the University of Chicago." One example is ending an eligibility cap on the $7,500 tax credit for consumers buying electric vehicles: Currently, the credits are phased out after a manufacturer has sold 200,000 electric or plug-in hybrid vehicles. Restoring the credits would be huge for Tesla and General Motors, which have used up their quotas, as well as companies like Ford Motor and Toyota that will soon lose access to the credits. The new tax credit, available through 2032, would make vehicles from those companies more affordable and address criticism that only rich people can afford electric cars...

As it exists, the 200,000-vehicle cap on tax credits would provide a competitive advantage to market newcomers like BYD of China that are expected to use electric vehicles to enter the U.S. market. They could have benefited from the credit while Tesla, the Texas-based company, could not. The Democratic climate legislation would flip that. As written, the bill appears to disqualify cars not made in North America from the credit. Cars made in North America by foreign companies like Mercedes-Benz, Toyota or Volvo would qualify, but imported models would not.
In fact, the 725-page legislation also includes "a strong dose of industrial policy," with several provisions that "appear designed to undermine China's hold over the electric vehicle supply chain... It favors companies that get their components and raw materials from the United States or its allies, while effectively excluding China." "I think it is absolutely a transformative bill," said Leah Stokes, an associate professor of political science at the University of California, Santa Barbara, who specializes in energy and climate change...

Cars would qualify for the full credit only if their batteries were made with materials and components from the United States and countries with which it has trade agreements. The percentage of components that have to meet those restrictions to qualify for the credit would increase over time, under the bill. That provision is aimed at encouraging domestic development of businesses like lithium mining and refining.

"Jacob Wayne John Keen, now 24, was 15 years old and living in his mother's rental when he allegedly created a sophisticated spyware tool known as a remote access trojan that allowed users to remotely take control of their victims' computers," reports the Guardian.

Once installed it could be used to steal victims' personal information, spy on them via webcams and microphones and track what they typed into emails or documents. Keen allegedly sold the tool for $35 on a hacking forum, making between $300,000 and $400,000 by selling it to more than 14,500 people in 128 countries....

Keen was slapped with six charges earlier in July, and is due to appear at Brisbane's magistrates court next month. His mother, 42, has also been charged with allegedly dealing in the proceeds of crime.

A global investigation involving more than a dozen law enforcement agencies across Europe led to 85 search warrants being executed around the world, with 434 devices seized and 13 people arrested for using the malware for "alleged criminality".
Among the tool's 14,500 users were a "statistically high" proportion of domestic violence perpetrators (and at least one child sex offender), according to the Australian federal police, who believe there were ultimately "tens of thousands" of victims globally.

Slashdot reader Bruce66423 suggests an appropriate punishment would be sentencing Keen to work for spy agencies.

Reuters investigated the strange thing that happened when Russia's invading armored vehicles reached Chernobyl, "a key staging post on the approach to Kyiv," on February 24th. "In less than two hours, and without a fight, the 169 members of the Ukrainian National Guard laid down their weapons."

The fall of Chernobyl, site of the world's worst nuclear disaster, stands out as an anomaly in the five-month old war: a successful blitzkrieg operation in a conflict marked elsewhere by a brutal and halting advance by Russian troops and grinding resistance by Ukraine. Now a Reuters investigation has found that Russia's success at Chernobylwas no accident, but part of a long-standing Kremlin operation to infiltrate the Ukrainian state with secret agents....

One source with direct knowledge of the Kremlin's invasion plans told Reuters that Russian agents were deployed to Chernobyl last year to bribe officials and prepare the ground for a bloodless takeover. Reuters couldn't independently verify the details of this assertion. However, Ukraine's State Bureau of Investigation has said it is investigating a former top intelligence official, Andriy Naumov, on suspicion of treason for passing Chernobyl security secrets to a foreign state.... A review of Ukrainian testimony and court documents and an interview with a local official show that Kyiv is conducting at least three investigations into the conduct of people who worked at Chernobyl. The investigations have identified at least two people suspected of providing information to Russian agents or otherwise helping them seize the plant, according to these documents....

For Russia's war planners, seizing Chernobyl was just a stepping stone to the main objective: taking control of the Ukrainian national government in Kyiv. There, too, the Kremlin expected that undercover agents in positions of power would play a crucial part, according to four sources with knowledge of the plan.
It's been said that journalism is a first draft of history. And Reuters is already wondering how this affected the invasion's ultimate outcome: Five people with knowledge of the Kremlin's preparations said war planners around President Vladimir Putin believed that, aided by these agents, Russia would require only a small military force and a few days to force Ukrainian President Volodymyr Zelenskiy's administration to quit, flee or capitulate.... At a national level, sources with knowledge of the Kremlin's plans said Moscow was counting on activating sleeper agents inside the Ukrainian security apparatus...

Though Russia captured Chernobyl, its plan to take power in Kyiv failed. In many cases, the sleeper agents Moscow had installed failed to do their job, according to multiple sources in Russia and Ukraine.... People the Kremlin counted on as its proxies in Ukraine overstated their influence in the years leading up to the invasion, said four of the sources with knowledge of the Kremlin's preparations. The Kremlin relied in its planning on "clowns — they know a little bit, but they always say what the leadership wants to hear because otherwise they won't get paid," said one of the four, a person close to the Moscow-backed separatist leadership in eastern Ukraine.

Putin now finds himself in a protracted, full-scale war, fighting for every inch of territory at huge cost.

A new study attempts to measure how knowledge gleaned from Wikipedia may play out in one specific realm: the courts. MIT News reports: A team of researchers led by Neil Thompson, a research scientist at MIT's Computer Science and Artificial Intelligence Laboratory (CSAIL), recently came up with a friendly experiment: creating new legal Wikipedia articles to examine how they affect the legal decisions of judges. They set off by developing over 150 new Wikipedia articles on Irish Supreme Court decisions, written by law students. Half of these were randomly chosen to be uploaded online, where they could be used by judges, clerks, lawyers, and so on -- the "treatment" group. The other half were kept offline, and this second group of cases provided the counterfactual basis of what would happen to a case absent a Wikipedia article about it (the "control"). They then looked at two measures: whether the cases were more likely to be cited as precedents by subsequent judicial decisions, and whether the argumentation in court judgments echoed the linguistic content of the new Wikipedia pages.

It turned out the published articles tipped the scales: Getting a public Wikipedia article increased a case's citations by more than 20 percent. The increase was statistically significant, and the effect was particularly strong for cases that supported the argument the citing judge was making in their decision (but not the converse). Unsurprisingly, the increase was bigger for citations by lower courts -- the High Court -- and mostly absent for citations by appellate courts -- the Supreme Court and Court of Appeal. The researchers suspect this is showing that Wikipedia is used more by judges or clerks who have a heavier workload, for whom the convenience of Wikipedia offers a greater attraction. "To our knowledge, this is the first randomized field experiment that investigates the influence of legal sources on judicial behavior. And because randomized experiments are the gold standard for this type of research, we know the effect we are seeing is causation, not just correlation," says Thompson, the lead author of the study. "The fact that we wrote up all these cases, but the only ones that ended up on Wikipedia were those that won the proverbial 'coin flip,' allows us to show that Wikipedia is influencing both what judges cite and how they write up their decisions."

"Our results also highlight an important public policy issue," Thompson adds. "With a source that is as widely used as Wikipedia, we want to make sure we are building institutions to ensure that the information is of the highest quality. The finding that judges or their staffs are using Wikipedia is a much bigger worry if the information they find there isn't reliable."

The paper describing the study has been published in " The Cambridge Handbook of Experimental Jurisprudence."

In Twitter's 20th transparency report, the company says it saw "record highs" in the number of account data requests during the July-December 2021 reporting period, with 47,572 legal demands on 198,931 accounts. Engadget reports: The media in particular faced much more pressure. Government demands for data from verified news outlets and journalists surged 103 percent compared to the last report, with 349 accounts under scrutiny. The largest slice of requests targeting the news industry came from India (114), followed by Turkey (78) and Russia (55). Governments succeeded in withholding 17 tweets. As in the past, US demands represented a disproportionately large chunk of the overall volume. The country accounted for 20 percent of all worldwide account info requests, and those requests covered 39 percent of all specified accounts. Russia is still the second-largest requester with 18 percent of volume, even if its demands dipped 20 percent during the six-month timeframe.

The company said it was still denying or limiting access to info when possible. It denied 31 percent of US data requests, and either narrowed or shut down 60 percent of global demands. Twitter also opposed 29 civil attempts to identify anonymous US users, citing First Amendment reasons. It sued in two of those cases, and has so far had success with one of those suits. There hasn't been much success in reporting on national security-related requests in the US, however, and Twitter is still hoping to win an appeal that would let it share more details.

New Jersey police may have used blood samples taken from babies to investigate crimes, according to public defenders in the state. From a report: According to a lawsuit filed by the New Jersey Office of the Public Defender (OPD), the practice came to light after a case in which New Jersey State Police successfully subpoenaed a testing lab for a blood sample drawn from a child. Police then performed DNA analysis on the blood sample that reportedly linked the child's father to a crime committed more than 25 years ago. The suspect then became a client of the OPD, which alerted the office to the techniques used to identify the man.

The lawsuit, filed jointly by the OPD and the New Jersey Monitor, now seeks to compel the state of New Jersey to disclose information on the full extent of the practice. All babies born in the state of New Jersey are required to have a blood sample drawn within 48 hours as part of a mandatory testing program that screens them for 60 different disorders. These samples are processed in a state-run lab, which shares data with the state health authority and communicates results to parents. The blood samples are not directly shared with law enforcement agencies. But if police are able to reliably obtain the samples through subpoena, then effectively, the disease screening process is entering all babies born in the state into a DNA database with no ability to opt out.

An anonymous reader quotes a report from The Associated Press: The New Orleans City Council has reversed itself and approved police use of facial recognition software and cellphone surveillance towers to investigate violent crimes. The ordinance, approved by the council on a 4-to-2 vote Thursday, comes as killings in the city reach numbers last seen in the mid-2000s after Hurricane Katrina. It partly reverses an ordinance passed nearly two years ago, when crime was low. Mayor LaToya Cantrell called it "a tremendous stride towards greater public safety."

The ordinance lists 39 specific crimes that can be investigated by using the technologies, including murder, rape, stalking, and battery of a police officer. Two other kinds of policing software remain forbidden: programs that seek to predict spots where crime is likely and those which use characteristics such as size, clothing or vehicle model to track people. The American Civil Liberties Union of Louisiana said facial recognition software has been shown to be biased by race and sex, and "there is absolutely no evidence that reinstating facial recognition will help reduce violence."

Council member Eugene Green, who proposed the ordinance, said new police policies, including procedures for ensuring accuracy, were adequate safeguards. John Thomas, director of public safety and homeland security for the city, added: "The facial recognition in and of itself cannot get you any arrest warrants, no search warrants. It is just a tool for us to say, 'OK, this is a lead.'"

An anonymous reader quotes a report from Electrek: The US Senate is going to move forward with a sweeping new bill after Senator Joe Manchin finally accepted to include investments to curb climate change. The new bill is going to include the long-awaited electric vehicle tax credit reform that is going to give back access to the tax credit to Tesla GM vehicles, along with other changes. Last year, the US House of Representatives passed the $1.9 trillion "Build Back Better" legislation, but it has been stuck in the divided Senate ever since. The bill is interesting to the EV community because it includes a long-needed reform to the federal tax credit for electric vehicles. Even though it is technically a small part of the overall bill, it is a point of contention.

The main goal of the reform, and the one most people agree on, is the need to eliminate the tax credit cap after automakers hit 200,000 EVs sold, since it is putting automakers that were early in pushing electric vehicles at a disadvantage. It also happens that those automakers are American automakers, like Tesla and GM, while many foreign automakers still have access to the credit. Joe Manchin, a Democrat and senior United States senator from West Virginia, has been holding his vote, which is the deciding vote since the Democrats need every single one of their votes in the Senate to pass anything. The senator, who comes from a very conservative state, has proven to be difficult to deal when it comes to initiatives that deal with climate change, but in a reversal today, he announced that he accepted a new version of the bill, now called "Inflation Reduction Act of 2022." Here are some of the key changes to the EV federal tax credit in the new bill (as confirmed by Electrek):

- Federal tax credit for EVs maintained at $7,500
- Eliminates tax credit cap after automakers hit 200,000 EVs sold, making GM and Tesla once again eligible
- The language in the bill indicates that the tax credit would be implemented at the point of sale instead of on taxes.
- In order to get the full credit, the electric vehicle needs to be assembled in North America, the majority of battery components need to come from North America, and contain a certain percentage of minerals from countries with free trade agreements with the US
- A new federal tax credit of $4,000 for used EVs
- Zero-emission vans, SUVs, and trucks with MSRPs up to $80,000 qualify
- Electric sedans priced up to $55,000 MSRP qualify
- The full EV tax credit will be available to individuals reporting adjusted gross incomes of $150,000 or less, $300,000 for joint filers

The Justice Department is investigating a data breach of the U.S. federal courts system dating to early 2020, a top official testified on Capitol Hill Thursday. Politico reports: House Judiciary Committee Chair Jerrold Nadler (D-N.Y.) told fellow lawmakers that there had been a "system security failure" of the U.S. Courts' document management system. He said the committee learned in March about the "startling breadth and scope" of the breach. It was the first public disclosure of the hack. Nadler said the data breach of the courts was separate from the SolarWinds hack revealed in late 2020, which involved Russian government-backed hackers infiltrating the networks of over a dozen U.S. federal agencies for much of 2020, including the federal court systems. He spoke at a committee hearing on oversight of the Justice Department's National Security Division.

Assistant Attorney General for National Security Matthew Olsen testified to the committee that NSD is "working very closely with the judicial conference and judges around the country to address this issue," and committed to updating the committee on the investigation as it progressed. A committee aide said that Nadler's questions came after the committee received a briefing on the attack, noting that "the sweeping impact it may have had on the operation of the Department of Justice is staggering." The aide was granted anonymity in order to discuss a private briefing.

Committee member Rep. Sheila Jackson Lee (D-Texas) pressed Olsen for more details on how many cases had been impacted by the breach. "I would expect your preparation and for us to be able to get that information as quickly as possible in a setting that would be appropriate, but this is a dangerous set of circumstances that has now been publicly announced, and we need to know how many... were dismissed," Jackson Lee said. Nadler questioned Olsen on whether the breach had in any way affected cases pursued by the NSD, and Olsen testified he could not "think of anything in particular."

Democrats on Capitol Hill plan to introduce legislation that could restore net neutrality and the Federal Communications Commission's authority to regulate broadband. From a report: With President Joe Biden's pick to be the fifth commissioner at the FCC stalled, two Senate Democrats will introduce the Net Neutrality and Broadband Justice Act that would codify Obama-era net neutrality rules repealed under President Donald Trump's administration. The renewed effort to pass a federal net neutrality law is being led by Sens. Edward J. Markey from Massachusetts and Ron Wyden from Oregon, according to a press release sent by Markey's office Thursday.

The legislation would reestablish the FCC's authority over broadband infrastructure by reclassifying internet service as a telecommunications service, the press release states. This would mean stricter oversight for broadband companies like AT&T, Comcast and Verizon, The Washington Post reports. Rep. Doris Matsui, a Democrat from California, will introduce companion legislation in the House, George Hatamiya, a spokesman for Matsui, confirmed last week. "I strongly believe that net neutrality principles should form the foundation of an open internet," Matsui said in an emailed statement to CNET. "These protections will help defend free expression and innovation -- protecting consumers and securing a more equitable online ecosystem."

The European Union found evidence that smartphones used by some of its staff were compromised by an Israeli company's spy software, the bloc's top justice official said in a letter seen by Reuters. From the report: In a July 25 letter sent to European lawmaker Sophie in 't Veld, EU Justice Commissioner Didier Reynders said iPhone maker Apple had told him in 2021 that his iPhone had possibly been hacked using Pegasus, a tool developed and sold to government clients by Israeli surveillance firm NSO Group. The warning from Apple triggered the inspection of Reynders' personal and professional devices as well as other phones used by European Commission employees, the letter said. Though the investigation did not find conclusive proof that Reynders' or EU staff phones were hacked, investigators discovered "indicators of compromise" â" a term used by security researchers to describe that evidence exists showing a hack occurred.

Charter Communications must pay out $7 billion in damages after one of its Spectrum cable technicians robbed and killed an elderly woman, a jury decided Tuesday. The Register reports: Betty Thomas, 83, was stabbed to death by Roy Holden Jr in December 2019. He had dropped by her home in Irving, Texas, on a service call after she reported a problem with her internet-TV bundle, and returned the next day in his company uniform and van, inviting himself in and killing her using his Spectrum-issued gloves and utility knife. She was found dead by her family on her living room floor after she didn't show up to a Christmas and birthday party that night. Holden pleaded guilty to murder last year and was sentenced to life behind in bars.

Thomas' family sued Charter [PDF] in 2020 for negligence. It was alleged in testimony that Holden had complained to his bosses that he was penniless and desperate after a divorce. It was further alleged that he had stolen credit cards and checks from elderly Spectrum subscribers, and that the corporation turned a blind eye to a pattern of theft by its installers and technicians. During that civil trial it was also claimed Thomas' family was charged $58 for Holden's service call, and continued to be billed after their grandmother's brutal slaying to the point where her account was sent to collections.

The court heard how Holden was not working the day he killed Thomas, and went out to her home anyway to rob her. He was able to use his company keycard to access a Charter vehicle lot and drive off in one of its service vans even though he was off-duty. According to the family's legal team, while Holden was seemingly making repairs, he tried to steal one or more of her bank cards from her purse, and murdered her when he was caught in the act. He later went on a spending spree with her funds, it was claimed. "This was a shocking breach of faith by a company that sends workers inside millions of homes every year," said the one of family's trial lawyers Chris Hamilton, of Dallas-based Hamilton Wingo, in a statement.

According to the law firm, Holden lied about his employment history -- such as not revealing he had been previously fired -- which wasn't checked by Charter when it hired him and would have been one of many red flags against him. During the civil trial, the court heard how Holden would break down crying at work, at one point was convinced he was a former Dallas Cowboys football player, suffered from insomnia, and was probably sleeping overnight in his Spectrum van. It was further claimed the cable giant tried to force the lawsuit into closed-door arbitration where the results would have been secret and damages limited.

As reported by CNET, Google will allow law enforcement to access data from its Nest products -- or theoretically any other data you store with Google -- without a warrant. PetaPixel reports: "If we reasonably believe that we can prevent someone from dying or from suffering serious physical harm, we may provide information to a government agency -- for example, in the case of bomb threats, school shootings, kidnappings, suicide prevention, and missing person cases," reads Google's TOS page on government requests for user information. "We still consider these requests in light of applicable laws and our policies."

An unnamed Nest spokesperson did tell CNET that the company tries to give its users notice when it provides their data under these circumstances. Google "reserves the right" to make emergency disclosures to law enforcement even when there is no legal requirement to do so. "A provider like Google may disclose information to law enforcement without a subpoena or a warrant 'if the provider, in good faith, believes that an emergency involving danger of death or serious physical injury to any person requires disclosure without delay of communications relating to the emergency,'" a Nest spokesperson tells CNET.

While Amazon and Google have both said they would hand over a user's data to law enforcement without a warrant, Arlo, Apple, Wyze, and Anker, owner of Eufy, all confirmed to CNET that they won't give authorities access to a user's smart home camera's footage unless they're shown a warrant or court order. These companies would be legally bound to provide data to the authorities if they were shown a legal document. But, unlike Google and Amazon, they will not otherwise share camera footage with law enforcement, even if they had an emergency request for data. Apple's default setting for video cameras connected via Homekit is end-to-end encryption which means the company is unable to share user video at all. In an updated statement, a Google spokesperson clarified that they have never sent Nest data to authorities, "but it's important that we reserve the right to do so."

They added: "To reiterate, and as we've specified in our privacy commitments, we will only share video footage and audio recordings with third-party apps and services that work with our devices if you or a member of your home explicitly gives us permission, and we'll only ask for this permission in order to provide a helpful experience from an approved partner (such as a home security service provider)."

An anonymous reader quotes a report from Reuters: Shoppers at a supermarket chain in southern England are being tracked by facial recognition cameras, prompting a legal complaint by a privacy rights group. Big Brother Watch said Southern Co-operative's use of biometric scans in 35 stores across Portsmouth, Bournemouth, Bristol, Brighton and Hove, Chichester, Southampton, and London was "Orwellian in the extreme" and urged Britain's Information Commissioner's Office (ICO) to investigate whether it breaches data protection legislation.

The complaint claims the use of the biometric cameras "is infringing the data rights of a significant number of UK data subjects." It outlines how the facial recognition system, sold by surveillance company Facewatch, creates a biometric profile of every visitor to stores where the cameras are installed, enabling Southern Co-operative to create a "blacklist" of customers. If a customer on the list enters the store, staff are alerted. [...] "We take our responsibilities around the use of facial recognition extremely seriously and work hard to balance our customers' rights with the need to protect our colleagues and customers from unacceptable violence and abuse," Southern Co-operative said. It said it uses the facial recognition cameras only in stores where there is a high level of crime to protect staff from known offenders and does not store images of an individual unless they have been identified as an offender. Kmart and Bunnings stores in Australia are also being investigated for the privacy implications of their facial recognition systems. The two chains were trialing the technology to spot banned customers, prevent refund fraud and reduce theft.

Kmart and Bunnings have temporarily halted use of facial recognition in their local stores while the Office of the Australian Information Commissioner (OAIC) investigates the privacy implications of their systems. The two chains were trialing the technology to spot banned customers, prevent refund fraud and reduce theft. Engadget reports: The investigation started in mid-July, a month after the consumer advocacy group Choice learned that Kmart and Bunnings were testing facial recognition. Bunnings had already paused use as it migrated to a new system. Other Australian retailers, such as Aldi, Coles and Woolworths, have said they don't have plans to adopt the technology.

Both retailers defended their implementations. A Kmart spokesperson stressed that its facial recognition tech was used for "preventing criminal activity" and had strict privacy controls. Bunnings managing director Mike Schneider, meanwhile, claimed Choice was "mischaracterizing" face detection. The company's trial is only meant to catch banned customers and doesn't store images for regular shoppers, he said.

A joint investigation by Nikkei and a Tokyo analytics company found that Apple has jumped into automobile-related technologies, as shown by the company's recent patent applications. From a report: Apple has filed patents in self-driving and other vehicle software as well as in hardware related to riding comfort, such as seats and suspension. The U.S. tech and services company is also targeting vehicle-to-everything (V2X) technology, which allows cars to communicate with each other and connect to the "Internet of Things," moves seen as a major push by Apple to build its own platform and join a growing industry shift from just cars to overall mobility.

Nikkei and Intellectual Property Landscape found that as of June 1, Apple applied for and published 248 automobile-related patents after 2000. It typically takes about 18 months after filing a patent for it to be published. While most of Apple's applications in 2021 have yet to be published, eight were. This number is bound to increase throughout the year. Of Apple's 27 applications made in 2020, five were published at the same time in 2021. The number of patents published in 2021 is almost certain to exceed this, according to Intellectual Property Landscape.

"Uber has officially accepted responsibility for hiding a 2016 data breach that exposed the data of 57 million passengers and drivers..." reports Engadget.

Reuters explains this acknowledgement "was part of a settlement with U.S. prosecutors to avoid criminal charges." In entering a non-prosecution agreement, Uber admitted that its personnel failed to report the November 2016 hacking to the U.S. Federal Trade Commission [for nearly one year], even though the agency had been investigating the ride-sharing company's data security... U.S. Attorney Stephanie Hinds in San Francisco said the decision not to criminally charge Uber reflected new management's prompt investigation and disclosures, and Uber's 2018 agreement with the FTC to maintain a comprehensive privacy program for 20 years.

The San Francisco-based company is also cooperating with the prosecution of a former security chief, Joseph Sullivan, over his alleged role in concealing the hacking.
Here's what the Department of Justice is now alleging against that security chief (as summarized by Reuters last month: "he arranged to pay money to two hackers in exchange for their silence, while trying to conceal the hacking from passengers, drivers and the U.S. Federal Trade Commission."

That's led to three separate wire fraud charges against the former security chief, as well as two charges for obstruction of justice. The defendant was originally indicted in September 2020, and is believed to be the first corporate information security officer criminally charged with concealing a hacking. Prosecutors said Sullivan arranged to pay the hackers $100,000 in bitcoin, and have them sign nondisclosure agreements that falsely stated they had not stolen data.

Uber had a bounty program designed to reward security researchers who report flaws, not to cover up data thefts.... In September 2018, the San Francisco-based company paid $148 million to settle claims by all 50 U.S. states and Washington, D.C. that it was too slow to reveal the hacking.

A long-awaited bill in the U.S. Congress proposes $79 billion (over 10 years) to boost U.S. semiconductor production, reports the Associated Press, "mostly as a result of new grants and tax breaks that would subsidize the cost that computer chip manufacturers incur when building or expanding chip plants in the United States."

But opposing the bill are 31 Republican senators — and democratic socialist senator Bernie Sanders: Supporters say that countries all over the world are spending billons of dollars to lure chipmakers. The U.S. must do the same or risk losing a secure supply of the semiconductors that power the nation's automobiles, computers, appliances and some of the military's most advanced weapons systems. Sanders (Independent — Vermont), and a wide range of conservative lawmakers, think tanks and media outlets have a different take. To them, it's "corporate welfare...."

"Not too many people that I can recall — I have been all over this country — say: 'Bernie, you go back there and you get the job done, and you give enormously profitable corporations, which pay outrageous compensation packages to their CEOs, billions and billions of dollars in corporate welfare,'" Sanders said.

Senator Mitt Romney (Republican — Utah), is among the likely Republican supporters. Asked about the Sanders' argument against the bill, Romney said that when other countries subsidize the manufacturing of high technology chips, the U.S. must join the club. "If you don't play like they play, then you are not going to be manufacturing high technology chips, and they are essential for our national defense as well as our economy," Romney said....

"My fear is that more and more companies will locate their manufacturing facilities in other countries and that we will be increasingly vulnerable," said Senator Susan Collin (Republican — Maine).
The bill's supporters remain confident it will pass the U.S. Senate, but then "the window for passing the bill through the House is narrow if progressives join with Sanders and if most Republicans line up in opposition based on fiscal concerns.

"The White House says the bill needs to pass by the end of the month because companies are making decisions now about where to build."

There's been "a dramatic escalation of Chinese espionage on US soil over the past decade," sources in the U.S. counterintelligence community have told CNN this weekend.

But some dramatic new examples have been revealed. For example, in 2017 China's government offered to build a $100 million pavilion in Washington D.C. with an ornate 70-foot pagoda. U.S. counterintelligence officials realized its location — two miles from the U.S. Capitol — appeared "strategically placed on one of the highest points in Washington DC...a perfect spot for signals intelligence collection." Also alarming was that Chinese officials wanted to build the pagoda with materials shipped to the US in diplomatic pouches, which US Customs officials are barred from examining, the sources said. Federal officials quietly killed the project before construction was underway...

Since at least 2017, federal officials have investigated Chinese land purchases near critical infrastructure, shut down a high-profile regional consulate believed by the US government to be a hotbed of Chinese spies and stonewalled what they saw as clear efforts to plant listening devices near sensitive military and government facilities.

Among the most alarming things the FBI uncovered pertains to Chinese-made Huawei equipment atop cell towers near US military bases in the rural Midwest. According to multiple sources familiar with the matter, the FBI determined the equipment was capable of capturing and disrupting highly restricted Defense Department communications, including those used by US Strategic Command, which oversees the country's nuclear weapons.... It's unclear if the intelligence community determined whether any data was actually intercepted and sent back to Beijing from these towers. Sources familiar with the issue say that from a technical standpoint, it's incredibly difficult to prove a given package of data was stolen and sent overseas.

The Chinese government strongly denies any efforts to spy on the US.... But multiple sources familiar with the investigation tell CNN that there's no question the Huawei equipment has the ability to intercept not only commercial cell traffic but also the highly restricted airwaves used by the military and disrupt critical US Strategic Command communications, giving the Chinese government a potential window into America's nuclear arsenal.... As Huawei equipment began to proliferate near US military bases, federal investigators started taking notice, sources familiar with the matter told CNN. Of particular concern was that Huawei was routinely selling cheap equipment to rural providers in cases that appeared to be unprofitable for Huawei — but which placed its equipment near military assets.

76.6 million Americans were affected by last year's T-Mobile data breach, TechCrunch reports — and now in compensation they may have a few bucks coming their way.

T-mobile has announced a settlement of $550 million for affected customers (and the various attorneys bringing the consolidated class action lawsuits) — plus another $150 million "for data security and related technology." For now, the class defined by the settlement document is "the approximately 76.6 million U.S. residents identified by T-Mobile whose information was compromised in the Data Breach," with a little extra legalese for Californians, where class actions are handled slightly differently.

As is common in these giant lawsuits, lawyers take a huge bite and then the company must alert the class members they're owed money, so you can expect a postcard if you were a T-Mobile customer in August of 2021 (in the interest of full disclosure, I was). Then the money gets split up, depending on how many people respond and how much the lawyers take. The final settlement terms could be approved as early as December.

Chances are you won't even be able to cover a single monthly mobile bill with what you get, but these days a $9 check might be the difference between "dinner" and "no dinner" for quite a few people, so let's not mock these small sums — except that it's kind of insulting to have five serious breaches in as many years and all customers get is enough to order off the value menu.