China

TikTok Executive Admits Australian Users' Data Accessed By Employees In China (theguardian.com) 15

An anonymous reader quotes a report from The Guardian: Australian user data is accessible to TikTok employees based in China on a "very strict basis," the company's head of data security, Will Farrell, has said. In their first public appearance before Australian members of parliament since the government joined Canada, the US and the UK in banning TikTok from government-owned devices amid concerns about the company's connections to China, TikTok executives were questioned at length by a parliamentary committee examining foreign interference on social media. Liberal senator and chair of the committee James Paterson, who has led the opposition's push against the app, questioned how many times Australian user data had been accessed by TikTok staff based within China. Farrell could not provide the number immediately, but admitted it did happen.

Farrell said there were "a number of protections in place", including that employees only get the minimum amount of access to data to do their job, and when they access that data they need to provide a business justification that needs to be approved by their manager and the database owner within TikTok. If the data is being accessed across a national border, it has to be approved by the global security team based in the US, which also monitors all data access. "Employees can't get access without a clear justification and levels of approval," Farrell said. A similar security review would apply if an employee based in China tried to change the recommendations algorithm, he said.

The company's local head of public policy, Ella Woods-Joyce, said China's 2017 national security law -- which requires companies to give the government any personal data relevant to national security -- would apply to any company that had operations and staff in China. When asked on what ground TikTok would refuse to comply with the law, Woods-Joyce said TikTok had never been asked for personal data by the Chinese government and would refuse if asked. [...] It was revealed in December that employees had used the app to attempt to identify the source of a leak to journalists. Hunter told the committee that he stood by the sentiments expressed in his original article, and blamed "rogue employees" who had since been fired from the company for accessing the data. He said "serious misconduct from these rogue employees" had taken place. He said GPS location information was not collected in Australia.

The Courts

Google Hit With Lawsuit Alleging It Stole Data From Millions of Users To Train Its AI Tools (cnn.com) 46

"CNN reports on a wide-ranging class action lawsuit claiming Google scraped and misused data to train its AI systems," writes long-time Slashdot reader david.emery. "This goes to the heart of what can be done with information that is available over the internet." From the report: The complaint alleges that Google "has been secretly stealing everything ever created and shared on the internet by hundreds of millions of Americans" and using this data to train its AI products, such as its chatbot Bard. The complaint also claims Google has taken "virtually the entirety of our digital footprint," including "creative and copywritten works" to build its AI products. The complaint points to a recent update to Google's privacy policy that explicitly states the company may use publicly accessible information to train its AI models and tools such as Bard.

In response to an earlier Verge report on the update, the company said its policy "has long been transparent that Google uses publicly available information from the open web to train language models for services like Google Translate. This latest update simply clarifies that newer services like Bard are also included." [...] The suit is seeking injunctive relief in the form of a temporary freeze on commercial access to and commercial development of Google's generative AI tools like Bard. It is also seeking unspecified damages and payments as financial compensation to people whose data was allegedly misappropriated by Google. The firm says it has lined up eight plaintiffs, including a minor.
"Google needs to understand that 'publicly available' has never meant free to use for any purpose," Tim Giordano, one of the attorneys at Clarkson bringing the suit against Google, told CNN in an interview. "Our personal information and our data is our property, and it's valuable, and nobody has the right to just take it and use it for any purpose."

The plaintiffs, the Clarkson Law Firm, previously filed a similar lawsuit against OpenAI last month.
Crime

Silk Road's Second-in-Command Gets 20 Years in Prison 39

Roger Thomas Clark, also known as Variety Jones, will spend much of the rest of his life in prison for his key role in building the world's first dark web drug market. Wired: Nearly ten years ago, the sprawling dark web drug market known as the Silk Road was torn offline in a law enforcement operation coordinated by the FBI, whose agents arrested that black market's boss, Ross Ulbricht, in a San Francisco library. It would take two years for Ulbricht's second-in-command -- an elusive figure known as Variety Jones -- to be tracked down and arrested in Thailand. Today, a decade after the Silk Road's demise, Clark has been sentenced to join his former boss in federal prison.

In a Manhattan courtroom on Monday, Roger Thomas Clark -- also known by his online handles including Variety Jones, Cimon and Plural of Mongoose -- was sentenced to 20 years behind bars for his role in building and running Silk Road. Clark, a 62-year-old Canadian national, will now likely spend much of the rest of his life incarcerated for helping to pioneer the anonymous, cryptocurrency-based model for online illegal sales of drugs and other contraband that still persists on the dark web today. The sentence is the maximum Clark faced in accordance with the plea agreement he made with prosecutors.

Clark "misguidedly turned his belief that drugs should be legal into material assistance for a criminal enterprise," Judge Sidney Stein said in his sentencing statement. "These beliefs crossed over into patently illegal behavior." Stein added that Clark was "clear-eyed and intentional" in his work as Ulbricht's "right-hand man" in the Silk Road's operations. "The sentence must reflect the vast criminal enterprise of which he was a leader," Stein said.
Crime

Elizabeth Holmes' Prison Sentence Was Quietly Reduced By Two Years (gizmodo.com) 156

An anonymous reader quotes a report from Gizmodo: Disgraced Theranos co-founder Elizabeth Holmes' prison sentence has been reduced by two years, according to the Bureau of Prisons records. Holmes was sentenced to 11 years and three months in prison for defrauding investors by claiming her blood-testing company provided quick and reliable results but she was found to have lied about the reliability of those tests. Holmes surrendered to the Bureau of Prisons in California on May 30 to serve out her sentence at a minimum-security all-female federal prison camp in Bryan, Texas.

Less than two months after she reported to prison, her sentence was quietly changed, with her new release date scheduled for December 29, 2032, the Bureau's site says. The Bureau has not provided additional information for why Holmes' projected release date was shortened, but its site says an inmate's good behavior, substance abuse program completion, and time credits they receive for activities and programs they've completed can result in a lessened sentence. Only last month, Theranos' former president and chief operating officer Ramesh "Sunny" Balwani's 13-year sentence was likewise reduced by two years, making his new projected release date April 11, 2034.

Holmes is serving out her remaining nine-year sentence at FPC Bryan, an all-female prison camp, where the women adhere to a strict schedule requiring them to begin work at 6 a.m. each day. Those who are considered eligible to work are assigned jobs earning between 12 cents and $1.15 an hour in roles like food service and factory employment.

Printer

Your Printing Service Might Read Your Documents (washingtonpost.com) 21

An anonymous reader quotes a report from the Washington Post: If you're printing something on actual paper, there's a good chance it's important, like a tax form or a job contract. But popular printing products and services won't promise not to read it. In fact, they won't even promise not to share it with outside marketing firms. The spread of digital file-sharing -- along with obnoxious business practices by printing manufacturers -- has pushed many U.S. households to give up at-home printers and rely on nearby printing services instead. At the same time, major printer manufacturers have adopted mobile apps and cloud-based storage, creating new opportunities to collect personal data from customers. Whether you're walking to the corner store or sending your files to the cloud, it's tough to figure out whether you're printing in private.

Ideally, printing services should avoid storing the content of your files, or at least delete daily. Print services should also communicate clearly upfront what information they're collecting and why. Some services, like the New York Public Library and PrintWithMe, do both. Others dodged our questions about what data they collect, how long they store it and whom they share it with. Some -- including Canon, FedEx and Staples -- declined to answer basic questions about their privacy practices. Wondering whether your printer app or printing service stores the content of your documents? Here's The Washington Post Help Desk's at-a-glance guide to printer privacy.
Here's a summary of each company's privacy policy as it pertains to storing the content of your files:

HP: HP's privacy policy states that it does not store the content of files when using their printers or HP Smart app, providing reassurance that they do not invade privacy by snooping into print jobs.
Canon: Canon's privacy policy indicates that it can collect personal data, including files and content, which may be used for marketing purposes. However, Canon did not disclose whether they store, use, or share the content of printed documents.
FedEx: FedEx's privacy policy states that it collects user-uploaded information, including the contents of documents uploaded for printing services, leaving room for potential advertising or sharing with third parties. Although FedEx prioritizes customer privacy, it did not specify the extent of encryption or whether document content is included.
UPS: While the UPS Store, a subsidiary of UPS, can store the contents of printed documents, it does not use this information for marketing or advertising without user consent. The storage duration is undisclosed, but UPS honors customer requests for data deletion.
Staples: According to Staples' privacy policy, the company can store personal data such as copy/print materials, driver's license numbers, passport numbers, and mail contents. They may also use copy/print materials for advertising. The duration of data storage is not disclosed.
PrintWithMe: PrintWithMe, a company placing printers in shared spaces, temporarily stores printed documents with a third-party cloud provider for 24 hours. CEO Jonathan Treble assures that the data is never used for advertising.
Your local library: The New York Public Library, one of the largest library systems, does not store the contents of printed documents. Their computers only retain file names and delete them at the end of the day. However, privacy policies may vary among different libraries, so it is advisable to inquire beforehand.
EU

Big Tech Can Transfer Europeans' Data To US In Win For Facebook and Google (arstechnica.com) 23

An anonymous reader quotes a report from Ars Technica: The European Commission today decided it is safe for personal data to be transferred from the European Union to US-based companies, handing a victory to firms like Facebook and Google despite protests from privacy advocates who worry about US government surveillance. The commission announced that it "adopted its adequacy decision for the EU-US Data Privacy Framework," concluding "that the United States ensures an adequate level of protection -- comparable to that of the European Union -- for personal data transferred from the EU to US companies under the new framework. On the basis of the new adequacy decision, personal data can flow safely from the EU to US companies participating in the Framework, without having to put in place additional data protection safeguards."

In May, Facebook-owner Meta was fined 1.2 billion euros for violating the General Data Protection Regulation (GDPR) with transfers of personal data to the United States and was ordered to stop storing European Union user data in the US within six months. But Meta said at the time that if the pending data-transfer pact "comes into effect before the implementation deadlines expire, our services can continue as they do today without any disruption or impact on users." The data-transfer deal "is expected to face a legal challenge from European privacy advocates, who have long said that the US needs to make substantial changes to surveillance laws," a Wall Street Journal report said today. "Transfers of data from Europe to the US have been in question since an EU court ruled in 2020 that a previous deal allowing trans-Atlantic data flows was illegal because the US didn't give EU individuals an effective way to challenge surveillance of their data by the US government."

The EC's announcement said the new framework has "binding safeguards to address all the concerns raised by the European Court of Justice, including limiting access to EU data by US intelligence services to what is necessary and proportionate, and establishing a Data Protection Review Court (DPRC), to which EU individuals will have access." The new court "will be able to order the deletion" of data that is found to have been collected in violation of the new rules. The framework will be administered and monitored by the US Department of Commerce and the "US Federal Trade Commission will enforce US companies' compliance," the EC announcement said. EU residents who challenge data collection will have free access to "independent dispute resolution mechanisms and an arbitration panel." US companies can join the EU-US framework "by committing to comply with a detailed set of privacy obligations, for instance the requirement to delete personal data when it is no longer necessary for the purpose for which it was collected, and to ensure continuity of protection when personal data is shared with third parties," the European Commission said.
The latest deal is expected to get challenged, according to the WSJ. European Parliament member Birgit Sippel, who is in Germany's Social Democratic Party, said the "framework does not provide any meaningful safeguards against indiscriminate surveillance conducted by US intelligence agencies," according to The New York Times.

The Computer & Communications Industry Association, which represents major tech companies like Amazon, Apple, Google and Meta, said: "Today's decision means that EU and US businesses will soon have full legal certainty again to transfer personal data across the Atlantic... Data flows are vital to transatlantic trade and the EU-US economic relationship, which is worth 5.5 trillion euros per year. Nevertheless, the two economies had been left without guidelines for data transfers after an EU Court ruling invalidated the previous framework back in 2020."
Privacy

First US Ban on Sale of Cellphone Location Data Might Be Coming (wsj.com) 28

Massachusetts lawmakers are weighing a near total ban on buying and selling of location data drawn from consumers' mobile devices in the state, in what would be a first-in-the-nation effort to rein in a billion-dollar industry. From a report: The legislature held a hearing last month on a bill called the Location Shield Act, a sweeping proposal that would sharply curtail the practice of collecting and selling location data drawn from mobile phones in Massachusetts. The proposal would also institute a warrant requirement for law-enforcement access to location data, banning data brokers from providing location information about state residents without court authorization in most circumstances.

Location data is typically collected through mobile apps and other digital services and doesn't include information such as a name or a phone number. But often, a device's movement patterns are enough to derive a possible identity of its owner. For example, where a phone spends its evening and overnight hours is usually the owner's home address and can be cross-checked against other databases for additional insight. The Massachusetts proposal is part of a flurry of state-level activity to better protect the digital privacy of residents in the absence of a comprehensive national law. Ten states have enacted privacy laws in recent years under both Republican and Democratic-controlled legislatures. Several bipartisan proposals are under consideration in Congress but have failed to gain traction.

Government

Should Public Buses Be Free? (cnn.com) 362

"More major cities in the United States are letting public transit riders hop on board for free," reports CNN: Kansas City; Raleigh; Richmond; Olympia; Tucson; Alexandria, Virginia; and other cities are testing dropping fares on their transit systems. Denver is dropping fares across its system this summer. Boston is piloting three zero-fare public bus routes, and New York City is expected to test free buses on five lines.

Eliminating fares gives a badly needed boost to ridership, removes cost burdens — particularly for lower-income riders — — and reduces boarding times at stops. Proponents also hope it will compel more people to get out of their cars and ride transit... At least 35 US agencies have eliminated fares across their network, according to the American Public Transit Association. Massachusetts Sen. Edward Markey and US Rep. Ayanna Pressley have introduced a bill in Congress to establish a $25 billion grant program to support state and local efforts for fare-free systems.

The zero-fare push comes as ridership nationwide remains sluggish after people shifted to working from home during the pandemic. Ridership is at about 70% of pre-pandemic levels nationwide, and transit agency budget shortfalls threaten service cuts, layoffs and fare hikes.

CNN also reports the case against. Experts "say there are more effective policies to get people out of their cars and onto transit, such as congestion pricing and parking restrictions.

"And dropping fares does not make buses run on time or lead to faster and cleaner trains. These are the improvements that will get more people to take transit instead of drive, according to passenger surveys."
Privacy

EFF Says California Cops Are Illegally Sharing License Plate Data with Anti-Abortion States (yahoo.com) 240

Slashdot reader j3x0n shared this report from California newspaper the Sacramento Bee: In 2015, Democratic Elk Grove Assemblyman Jim Cooper voted for Senate Bill 34, which restricted law enforcement from sharing automated license plate reader (ALPR) data with out-of-state authorities. In 2023, now-Sacramento County Sheriff Cooper appears to be doing just that. The Electronic Frontier Foundation (EFF) a digital rights group, has sent Cooper a letter requesting that the Sacramento County Sheriff's Office cease sharing ALPR data with out-of-state agencies that could use it to prosecute someone for seeking an abortion.

According to documents that the Sheriff's Office provided EFF through a public records request, it has shared license plate reader data with law enforcement agencies in states that have passed laws banning abortion, including Alabama, Oklahoma and Texas. Adam Schwartz, EFF senior staff attorney, called automated license plate readers "a growing threat to everyone's privacy ... that are out there by the thousands in California..." Schwartz said that a sheriff in Texas, Idaho or any other state with an abortion ban on the books could use that data to track people's movements around California, knowing where they live, where they work and where they seek reproductive medical care, including abortions.

The Sacramento County Sheriff's Office isn't the only one sharing that data; in May, EFF released a report showing that 71 law enforcement agencies in 22 California counties — including Sacramento County — were sharing such data... [Schwartz] said that he was not aware of any cases where ALPR data was used to prosecute someone for getting an abortion, but added, "We think we shouldn't have to wait until the inevitable happens."

In May the EFF noted that the state of Idaho "has enacted a law that makes helping a pregnant minor get an abortion in another state punishable by two to five years in prison."
Crime

22-Year-Old Gamer Sentenced in France for 2020 Swatting of Ubisoft's Montreal Office (engadget.com) 50

An anonymous reader quotes this report from Engadget: A disgruntled Tom Clancy's Rainbow Six Siege gamer who called in a fake emergency to Ubisoft's Montreal office was sentenced this week to three years of community service, according to The Montreal Gazette. Yanni Ouahioune, 22, was handed the sentence on Monday in Paris following his call to authorities about a fake hostage situation in November 2020.

Police say Ouahioune called in the hoax because he was angry he had been banned several times from Tom Clancy's Rainbow Six Siege. In response to the bogus call, a heavily armed squad of police officers surrounded the building. The officers secured the headquarters — and closed several nearby streets — before confirming there wasn't an active threat. Ouahioune allegedly called from his parents' house using Russian servers to mask his identity (unsuccessfully). After being charged, La Presse reported (via Polygon) that Ouahioune pleaded for Ubisoft to unban his account. "Can you say that I am kindly asking the Ubisoft team to 'unban' my account please," Ouahioune said. "I have put over $1,500 in cosmetic enhancements in my profile."

The sentencing also includes Ouahioune's alleged part in a DDoS attack against a French government office and making threats against Minecraft developers. The convicted hoaxer will reportedly be required to "compensate victims, undergo treatment for a mental health problem and either work or undergo training" in addition to the community service.

Privacy

Bangladesh Government Website Leaks Citizens' Personal Data (techcrunch.com) 3

A Bangladeshi government website leaked the personal information of citizens, including full names, phone numbers, email addresses and national ID numbers. TechCrunch reports: Viktor Markopoulos, a researcher who works for Bitcrack Cyber Security, said he accidentally discovered the leak on June 27, and shortly after contacted the Bangladeshi e-Government Computer Incident Response Team (CERT). He said the leak includes data of millions of Bangladeshi citizens. TechCrunch was able to verify that the leaked data is legitimate by using a portion to query a public search tool on the affected government website. By doing this, the website returned other data contained in the leaked database, such as the name of the person who applied to register, as well as -- in some cases -- the name of their parents. We attempted this with 10 different sets of data, which all returned correct data.

TechCrunch is not naming the government website because the data is still available online, according to Markopoulos, and we haven't heard back from any of the Bangladeshi government organizations that we emailed asking for comment and alerting of the data exposure. In Bangladesh, every citizen aged 18 and older is issued a National Identity Card, which assigns a unique ID to every citizen. The card is mandatory and gives citizens access to several services, such as getting a driver's license, passport, buying and selling land, opening a bank account, and others.

Markopoulos said finding the data "was too easy." "It just appeared as a Google result and I wasn't even intending on finding it. I was Googling an SQL error and it just popped up as the second result," he told TechCrunch, referring to SQL, a language designed for managing data in a database. The exposure of email addresses, phone numbers and national ID card numbers is bad on its own, but Markopoulos said that having this type of information could also "be used in the web application to access, modify, and/or delete the applications as well as view the Birth Registration Record Verification."

DRM

Denuvo Wants To Convince You Its DRM Isn't 'Evil' (arstechnica.com) 77

An anonymous reader quotes a report from Ars Technica: Simply mentioning the name "Denuvo" among some gamers is pretty much guaranteed to get you an instant, strong reaction. Just look at the comment threads underneath any Ars article covering Denuvo and you'll see plenty of complaints about the DRM-enhancing anti-piracy technology. Irdeto, the company that acquired Denuvo in a 2018 purchase, doesn't generally make a habit of commenting at length on this reputation (or its secretive DRM schemes) in the public press. So when Irdeto Chief Operating Officer of Video Games Steeve Huin agreed to defend his company publicly in an exclusive interview with Ars Technica, I jumped at the chance to talk to him.

Huin stressed to Ars that he sees Denuvo as a positive force for the gaming community as a whole. "Anti-piracy technologies is to the benefit of the game publishers, [but also] is of benefit to the players in that it protects the [publisher's] investment and it means the publishers can then invest in the next game," he said. "But people typically don't think enough of that." "Whether people want to believe it or not, we are all gamers, we love gaming, we love being part of it," he continued. "We develop technologies with the intent to make the industry better and stronger."

[...] While the Denuvo name has become practically synonymous with its "anti-tamper" DRM technology, the company now hopes it can be just as well-known for its recent anti-cheating efforts. Denuvo's anti-cheat technology works on "some of the same principles" as its anti-tamper DRM, Huin said, but is aimed at maintaining code integrity at runtime rather than just when a game is loaded. "The core is the same, but the function of what they do is different," he said. Because of this difference, Huin allowed that, unlike Denuvo's anti-tamper DRM, the anti-cheat product could have "a very low impact" on a game's performance. "Less than one percent is the metric we use for validating," he said.

Piracy

Film Companies Demand Names of Reddit Users Who Discussed Piracy in 2011 (arstechnica.com) 67

Reddit is fighting another attempt by film companies to unmask anonymous Reddit users who discussed piracy. From a report: The same companies lost a previous, similar motion to identify Reddit users who wrote comments in piracy-related threads. Reddit avoided revealing the identities of eight users by arguing that the First Amendment protected their right to anonymous speech. Reddit is seeking a similar outcome in the new case, in which the film companies' subpoena to Reddit sought "Basic account information including IP address registration and logs from 1/1/2016 to present, name, email address and other account registration information" for six users who wrote comments on Reddit threads in 2011 and 2018.
The Almighty Buck

Spanish Minister Proposes $21,000 'Universal Inheritance' From Age of 18 (theguardian.com) 276

Yolanda Diaz, Spain's Labor Minister and candidate for Prime Minister with the progressive platform Sumar, has proposed a scheme to tackle social inequality by giving every young person in the country 20,000 euros (roughly $21,776) to spend on school, training or starting a business once they reach the age of 18. The Guardian reports: According to Diaz's Sumar platform, which announced the policy before Spain's snap general election on 23 July, the initiative would cost 10 billion euros, which would be raised by taxing the rich. Sumar said the aim was to guarantee "equality of opportunity" regardless of people's family backgrounds or earnings. The payments, which would begin at the age of 18 and continue until the age of 23, would be accompanied by administrative support to help people study, train or establish their own business.

DÃaz confirmed that the policy -- called the "universal inheritance" -- would be available to all young Spaniards regardless of their economic circumstances and would be funded by taxing people earning more than 3 million euros a year. Sumar estimates it would cost 0.8% of Spain's GDP. The minister, who was raised in a staunchly communist household, said she had been unable to follow her own dreams of becoming an employment inspector because there was not enough money for her to spend years studying. "Becoming an employment inspector in Spain would have taken about five years," she said. "I'm not an employment inspector because I'm the daughter of working-class parents and I could never have allowed myself to do that. This is a redistributive measure that will allow the young people of our country to have a future regardless of their surname."

Cellphones

France Passes New Bill Allowing Police To Remotely Activate Cameras On Citizens' Phones (gizmodo.com) 132

An anonymous reader quotes a report from Gizmodo: Amidst ongoing protests in France, the country has just passed a new bill that will allow police to remotely access suspects' cameras, microphones, and GPS on cell phones and other devices. As reported by Le Monde, the bill has been criticized by the French people as a "snoopers" charter that allows police unfettered access to the location of its citizens. Moreover, police can activate cameras and microphones to take video and audio recordings of suspects. The bill will reportedly only apply to suspects in crimes that are punishable by a minimum of five years in jail and Justice Minister Eric Dupond-Moretti claimed that the new provision would only affect a few dozen cases per year. During a debate over the bill yesterday, French politicians added an amendment that orders judge approval for any surveillance conducted under the scope of the bill and limits the duration of surveillance to six months, according to Le Monde.

"For organized crime, the police can have access to the sound and image of a device. This concerns any connected device: telephone, speaker microphone, computer camera, computer system of a car... all without the knowledge of the persons concerned," French advocacy group La Quadrature du Net said in a statement on Twitter last month, machine translated by Gizmodo. "In view of the growing place of digital tools in our lives, accepting the very principle that they are transformed into police auxiliaries without our being aware of it poses a serious problem in our societies."
In 2021, France passed a bill that would expand the French police force's ability to monitor civilians using drones -- all in an effort to protect officers from increasingly violent protestors, according to French President Emmanuel Macron.
The Courts

Uber, DoorDash Sue NYC Over Minimum Wage Law (nytimes.com) 63

Uber Eats, DoorDash, and GrubHub filed lawsuits on Thursday seeking to strike down New York City's minimum wage law for delivery workers. The New York Times reports: Uber, DoorDash and Grubhub on Thursday each filed a request for a temporary restraining order in State Supreme Court in Manhattan to stop the wage changes from going into effect on July 12. Relay, a smaller, New York-based food delivery platform, did the same. The new pay standard, which was announced last month, would require gig platforms to pay food delivery workers about $18 per hour and to increase that amount to $20 per hour by 2025. Delivery workers currently make around $11 an hour, according the city's estimate.

But Uber and the other gig companies say they will be forced to pass on the cost of the higher wages to consumers by raising prices. They argue that the city's modeling does not correctly calculate the degree to which these higher prices will harm local restaurants. And they say that the new system will work to deliverers' disadvantage because the company, to control costs, will have to strictly monitor how much time they spend online on the apps but not actually doing deliveries. "The rule must be paused before damaging the restaurants, consumers and couriers it claims to protect," Josh Gold, an Uber spokesman, said in a statement.

In a prepared statement, Vilda Vera Mayuga, the commissioner of New York City's Department of Consumer and Worker Protection, defended the new wage standard. "Delivery workers, like all workers, deserve fair pay for their labor, and we are disappointed that Uber, DoorDash, Grubhub and Relay disagree," she said. "These workers brave thunderstorms, extreme heat events and risk their lives to deliver for New Yorkers -- and we remain committed to delivering for them."

The Courts

Canadian Judge Says Thumbs-Up Emoji Amounts To Contract Acceptance (theglobeandmail.com) 141

An anonymous reader quotes a report from The Globe and Mail: A Saskatchewan judge says an emoji can amount to a contractual agreement and ordered a farmer to pay more than $82,000 for not delivering product to a grain buyer after responding to a text message with a thumbs-up image. The Court of King's Bench decision said a grain buyer with South West Terminal sent a text to farmers in March 2021 saying that the company was looking to buy 86 tons of flax for $17 per bushel to be delivered in the fall. The buyer, Kent Mickleborough, later spoke with Swift Current farmer Chris Achter on the phone and texted a picture of a contract to deliver the flax in November, adding "please confirm flax contract." Achter texted back a thumbs-up emoji. But when November came around, the flax was not delivered and prices for the crop had increased.

Mickleborough said the emoji amounted to an agreement because he had texted numerous contracts to Achter, who previously confirmed through text message and always fulfilled the order. But the farmer argued that the emoji indicated only that he'd received the contract in the text message. "I deny that he accepted the thumbs-up emoji as a digital signature of the incomplete contract," Achter said in an affidavit to court. "I did not have time to review the Flax Contract and merely wanted to indicate that I did receive his text message."

Justice Timothy Keene said in his June decision that the thumbs-up emoji did meet signature requirements and therefore the farmer breached his contract. The judge pointed to a Dictionary.com definition of the thumbs-up emoji, which said it is used to express assent, approval or encouragement in digital communications. "This court readily acknowledges that a (thumbs-up) emoji is a non-traditional means to `sign' a document but nevertheless under these circumstances this was a valid way to convey the two purposes of a `signature,"' Keene wrote in his decision. Keene's decision noted the case is novel, but the judge said emojis are now commonly used.

Businesses

FBI Hired Social Media Surveillance Firm That Labeled Black Lives Matter Organizers 'Threat Actors' (theintercept.com) 151

The FBI's primary tool for monitoring social media threats is the same contractor that labeled peaceful Black Lives Matter protest leaders DeRay McKesson and Johnetta Elzie as "threat actors" requiring "continuous monitoring" in 2015. From a report: The contractor, ZeroFox, identified McKesson and Elzie as posing a "high severity" physical threat, despite including no evidence that McKesson or Elzie were suspected of criminal activity. "It's been almost a decade since the referenced 2015 incident and in that time we have invested heavily in fine-tuning our collections, analysis and labeling of alerts," Lexie Gunther, a spokesperson for ZeroFox, told The Intercept, "including the addition of a fully managed service that ensures human analysis of every alert that comes through the ZeroFox Platform to ensure we are only alerting customers to legitimate threats and are labeling those threats appropriately."

The FBI, which declined to comment, hired ZeroFox in 2021, a fact referenced in the new 106-page Senate report about the intelligence community's failure to anticipate the January 6, 2021, uprising at the U.S. Capitol. The June 27 report, produced by Democrats on the Senate Homeland Security Committee, shows the bureau's broad authorities to surveil social media content -- authorities the FBI previously denied it had, including before Congress. It also reveals the FBI's reliance on outside companies to do much of the filtering for them. The FBI's $14 million contract to ZeroFox for "FBI social media alerting" replaced a similar contract with Dataminr, another firm with a history of scrutinizing racial justice movements. Dataminr, like ZeroFox, subjected the Black Lives Matter movement to web surveillance on behalf of the Minneapolis Police Department, previous reporting by The Intercept has shown.

Twitter

Twitter Threatens To Sue Meta Over Threads (semafor.com) 179

Twitter is threatening legal action against Meta over its new text-based "Twitter killer" platform, accusing the social media giant of poaching former employees to create a "copycat" application. Semafor: On Wednesday, Instagram parent company Meta introduced Threads, a text-based companion to Instagram that resembles Twitter and other text-based social platforms. Just hours later, a lawyer for Twitter, Alex Spiro, sent a letter to Meta CEO Mark Zuckerberg accusing the company of engaging in "systematic, willful, and unlawful misappropriation of Twitter's trade secrets and other intellectual property."

"Twitter intends to strictly enforce its intellectual property rights, and demands that Meta take immediate steps to stop using any Twitter trade secrets or other highly confidential information," Spiro wrote in a letter obtained exclusively by Semafor. "Twitter reserves all rights, including, but not limited to, the right to seek both civil remedies and injunctive relief without further notice to prevent any further retention, disclosure, or use of its intellectual property by Meta." Spiro accused Meta of hiring dozens of former Twitter employees who "had and continue to have access to Twitter's trade secrets and other highly confidential information."

Social Networks

Macron Accused of Authoritarianism After Threat To Cut Off Social Media During Riots (theguardian.com) 76

Emmanuel Macron is facing a backlash after threatening to cut off social media networks as a means of stopping the spread of violence during periods of unrest. The Guardian reports: Elysee officials and government ministers responded on Wednesday by insisting the president was not threatening a "general blackout" but instead the "occasional and temporary" suspension of platforms. The president's comments came as ministers blamed young people using social media such as Snapchat and TikTok for organizing and encouraging rioting and violence after the shooting dead of a teenager during a police traffic stop in a Paris suburb last week.

"We need to think about how young people use social networks, in the family, at school, the interdictions there should be ... and when things get out of hand we may have to regulate them or cut them off," Macron told a meeting of more than 250 mayors, whose municipalities were hit by the violence, on Tuesday. "Above all, we shouldn't do this in the heat of the moment and I'm pleased we didn't have to. But I think it's a real debate that we need to have in the cold light of day," Macron told the mayors in a video obtained by BFM television. Critics said considering such measures would put France alongside authoritarian countries such as China, Russia, Iran and North Korea.

Speaking after a ministerial meeting on Wednesday, government spokesperson Olivier Veran said a cross-party committee to look at a modification of a law on cybersecurity currently going through parliament would be set up. Veran said the government had made a "firm request" to social media platforms to take down materials encouraging violence as quickly as possible and remove the anonymity of those possibly breaking the law. A young person should know he cannot sit behind his screen and write, organize or do whatever he wants. Anonymity in terms of offenses doesn't exist. You have to understand this can have consequences and the consequences can lead to punishment," Veran said. Asked if it meant suspending social media, the Veran added: "It could be something like suspending a function, such as geolocalization."

Slashdot Top Deals