Author name: Mike M.

oracle-has-reportedly-suffered-2-separate-breaches-exposing-thousands-of-customers‘-pii

Oracle has reportedly suffered 2 separate breaches exposing thousands of customers‘ PII

Trustwave’s Spider Labs, meanwhile, said the sample of LDAP credentials provided by rose87168 “reveals a substantial amount of sensitive IAM data associated with a user within an Oracle Cloud multi-tenant environment. The data includes personally identifiable information (PII) and administrative role assignments, indicating potential high-value access within the enterprise system.”

Oracle initially denied any such breach had occurred against its cloud infrastructure, telling publications: “There has been no breach of Oracle Cloud. The published credentials are not for the Oracle Cloud. No Oracle Cloud customers experienced a breach or lost any data.”

On Friday, when I asked Oracle for comment, a spokesperson asked if they could provide a statement that couldn’t be attributed to Oracle in any way. After I declined, the spokesperson said Oracle would have no comment.

For the moment, there’s a stand-off between Oracle on the one hand, and researchers and journalists on the other, over whether two serious breaches have exposed sensitive information belonging to its customers. Reporting that Oracle is notifying customers of data compromises in unofficial letterhead sent by outside attorneys is also concerning. This post will be updated if new information becomes available.

Oracle has reportedly suffered 2 separate breaches exposing thousands of customers‘ PII Read More »

nasa-to-put-starliner’s-thrusters-through-an-extensive-workout-before-next-launch

NASA to put Starliner’s thrusters through an extensive workout before next launch

More than half a year after an empty Starliner spacecraft safely landed in a New Mexico desert, NASA and Boeing still have not decided whether the vehicle’s next flight will carry any astronauts.

In an update this week, the US space agency said it is still working through the process to certify Starliner for human missions. Whether it carries cargo or humans, Starliner’s next flight will not occur until late this year or, more likely, sometime in 2026.

Two things stand out in the new information provided by NASA. First, there remains a lot of work left to do this year before Starliner will fly again, including extensive testing of the vehicle’s propulsion system. And secondly, it is becoming clear that Starliner will only ever fly a handful of missions to the space station, if that, before the orbiting laboratory is retired.

Long line of tests

Several issues marred Starliner’s first crew flight to the space station last June, but the most serious of these was the failure of multiple maneuvering thrusters. Concerns about these thrusters prompted NASA to fly Starliner’s crew, Butch Wilmore and Suni Williams, home on a Crew Dragon vehicle instead. They safely landed earlier this month.

Starliner returned autonomously in early September. Since then, NASA and Boeing have been reviewing data from the test flight. (Unfortunately, the errant thrusters were located on the service module of the spacecraft, which is jettisoned before reentry and was not recovered.)

Although engineers from NASA and Boeing have worked through more than 70 percent of the observations and anomalies that occurred during Starliner’s flight, the propulsion system issues remain unresolved.

NASA to put Starliner’s thrusters through an extensive workout before next launch Read More »

“this-will-be-a-painful-period”:-rfk-jr-slashes-24%-of-us-health-dept.

“This will be a painful period”: RFK Jr. slashes 24% of US health dept.

Health Secretary and anti-vaccine advocate Robert F. Kennedy Jr. is slashing a total of 20,000 jobs across the Department of Health and Human Services—or about 24 percent of the workforce—in a sweeping overhaul said to improve efficiency and save money, Kennedy and the HHS announced Thursday.

Combining workforce losses from early retirement, the “Fork in the Road” deferred resignation deal, and 10,000 positions axed in the reductions and restructuring announced today, HHS will shrink from 82,000 full-time employees to 62,000 under Kennedy and the Trump administration. The HHS’s 28 divisions will be cut down to 15, while five of the department’s 10 regional offices will close.

“This will be a painful period,” Kennedy said in a video announcement posted on social media. Calling the HHS a “sprawling bureaucracy,” Kennedy claimed that the cuts would be aimed at “excess administrators.”

“I want to promise you now that we are going to do more with less,” he said in the video.

Kennedy and HHS said the cuts will save $1.8 billion each year. That’s about 0.027 percent of total federal spending, based on the $6.75 trillion the government spent in 2024, and about 0.06 percent of the $2.8 trillion HHS budget for that year.

The downsizing announced today includes significant cuts to the Food and Drug Administration, the Centers for Disease Control and Prevention, and the National Institutes of Health.

Cuts upon cuts

The FDA will lose 3,500 employees, which The Wall Street Journal reported was about 19 percent of its staff. HHS did not provide current staff levels at the agency level or percentage cuts. The CDC, which will absorb the Administration for Strategic Preparedness and Response (ASPR), will lose 2,400 employees (1,400 from CDC and 1,000 from ASPR). The Journal reported that to be about 18 percent of the total workforce. NIH will lose 1,200 employees, about 6 percent of its workers.

“This will be a painful period”: RFK Jr. slashes 24% of US health dept. Read More »

after-a-spacecraft-was-damaged-en-route-to-launch,-nasa-says-it-won’t-launch

After a spacecraft was damaged en route to launch, NASA says it won’t launch

Three weeks ago, NASA revealed that a shipping container protecting a Cygnus spacecraft sustained “damage” while traveling to the launch site in Florida.

Built by Northrop Grumman, Cygnus is one of two Western spacecraft currently capable of delivering food, water, experiments, and other supplies to the International Space Station. This particular Cygnus mission, NG-22, had been scheduled for June. As part of its statement in early March, the space agency said it was evaluating the NG-22 Cygnus cargo supply mission along with Northrop.

On Wednesday, after a query from Ars Technica, the space agency acknowledged that the Cygnus spacecraft designated for NG-22 is too damaged to fly, at least in the near term.

Loading up Dragon

“Following initial evaluation, there also is damage to the cargo module,” the agency said in a statement. “The International Space Station Program will continue working with Northrop Grumman to assess whether the Cygnus cargo module is able to safely fly to the space station on a future flight.” That future flight, NG-23, will launch no earlier than this fall.

As a result, NASA is modifying the cargo on its next cargo flight to the space station, the 32nd SpaceX Cargo Dragon mission, due to launch in April. The agency says it will “add more consumable supplies and food to help ensure sufficient reserves of supplies aboard the station” to the Dragon vehicle.

As it mulls stopgap measures, one option available to NASA may be to try to slot in a cargo mission on Boeing’s Starliner spacecraft. After the propulsion issues experienced on Starliner’s first crew flight to the space station last June, NASA is still evaluating whether the vehicle can be certified for an operational crew mission, or whether it would be better to perform an uncrewed test flight.

After a spacecraft was damaged en route to launch, NASA says it won’t launch Read More »

newer-kindles-get-a-work-around-for-touchscreen-page-turning-in-new-software-update

Newer Kindles get a work-around for touchscreen page-turning in new software update

All Kindles that get the 5.18.1 update also gain access to new book summaries for “thousands of bestselling English language Kindle books,” aiming to make it easier to pick up a new book in an ongoing series.

When a recap is available, it will be accessible from your Kindle’s home page, or by opening the book and selecting “Recaps In This Series” from the menu. Opening a recap will show you a spoiler warning before you tap through. Based on the handful of recaps I could find and skim, there’s a pretty good chance these summaries are mostly AI-generated, but Amazon’s release notes and the Kindle interface don’t say one way or the other.

The 5.18.1 update also includes the typical non-specific “performance improvements, bug fixes, and other general enhancements” for all models. This is the first update to get the Colorsoft and the other Kindles running on the same software version—before now, the other Kindles were all on version 5.17, and the Colorsoft ran a version of 5.18 that wasn’t available for manual download from Amazon’s software update page.

Newer Kindles get a work-around for touchscreen page-turning in new software update Read More »

praise-kier-for-severance-season-2!-let’s-discuss.

Praise Kier for Severance season 2! Let’s discuss.


Marching bands? Mammalian Nurturables? An ORTBO? Yup, Severance stays weird.

Severance has just wrapped up its second season. I sat down with fellow Ars staffers Aaron Zimmerman and Lee Hutchinson to talk through what we had just seen, covering everything from those goats to the show’s pacing. Warning: Huge spoilers for seasons 1 and 2 follow!

Nate: Severance season 1 was a smaller-scale, almost claustrophobic show about a crazy office, its “waffle parties,” and the personal life of Mark Scout, mourning his dead wife and “severing” his consciousness to avoid that pain. It followed a compact group of characters, centered around the four “refiners” who worked on Lumon’s severed floor. But season 2 blew up that cozy/creepy world and started following more characters—including far more “outies”—to far more places. Did the show manage to maintain its unique vibe while making significant changes to pacing, character count, and location?

Lee: I think so, but as you say, things were different this time around. One element that I’m glad carried through was the show’s consistent use of a very specific visual language. (I am an absolute sucker for visual storytelling. My favorite Kubrick film is Barry Lyndon. I’ll forgive a lot of plot holes if they’re beautifully shot.) Season 2, especially in the back half, treats us to an absolute smorgasbord of incredible visuals—bifurcated shots symbolizing severance and duality, stark whites and long hallways, and my personal favorite: Chris Walken in a black turtleneck seated in front of a fireplace, like Satan holding court in Hell. The storytelling might be a bit less focused, but it looks great.

Image of Christopher Walken being Christopher Walken.

So many visual metaphors in one frame.

Credit: AppleTV+

So many visual metaphors in one frame. Credit: AppleTV+

Aaron: I think it succeeded overall, with caveats. The most prominent thing lost in the transition was the tight pacing of the first season; while season 2 started and ended strong, the middle meandered quite a bit, and I’d say the overall pacing felt pretty off. Doing two late-season “side quest” episodes (Gemma/Mark and Cobel backstories) was a bit of a drag. But I agree with Lee—Severance was more about vibes than narrative focus this season.

Nate: The “side quests” were vocally disliked by a subsection of the show’s fandom, and it certainly is an unusual choice to do two episodes in a row that essentially leave all your main characters to the side. But I don’t think these were really outliers. This is a season, for instance, that opened with a show about the innies—and then covered the exact same ground in episode two from the outies’ perspective. It also sent the whole cast off on a bizarre “ORTBO” that took an entire episode and spent a lot of time talking about Kier’s masturbating, and possibly manufactured, twin. (!)

Still, the “side quest” episodes stood out even among all this experimentation with pace and flow. But I think the label “side quest” can be a misnomer. The episode showing us the Gemma/Mark backstory not only brought the show’s main character into focus, it revealed what was happening to Gemma and gave many new hints about what Lumon was up to. In other words—it was about Big Stuff.

Image the four MDR refiners on ORTBO

Even when we’re outside, the show sticks to a palette of black and white and cold. Winter is almost as much of a character in Severance as our four refiners are.

Credit: AppleTV+

Even when we’re outside, the show sticks to a palette of black and white and cold. Winter is almost as much of a character in Severance as our four refiners are. Credit: AppleTV+

The episode featuring Cobel, in contrast, found time for long, lingering drone shots of the sea, long takes of Cobel lying in bed, and long views of rural despair… and all to find a notebook. To me, this seemed much more like an actual “side quest” that could have been an interwoven B plot in a more normal episode.

Lee: The “side quest” I didn’t all mind was episode 7, “Chikhai Bardo,” directed by the show’s cinematographer Jessica Lee Gagné. The tale of Mark and Gemma’s relationship—a tale begun while donating blood using Lumon-branded equipment, with the symbolism of Lumon as a blood-hungry faceless machine being almost disturbingly on-the-nose—was masterfully told. I wasn’t as much of a fan of the three episodes after that, but I think that’s just because episode 7 was just so well done. I like TV that makes me feel things, and that one succeeded.

Aaron: Completely agree. I love the Gemma/Mark episode, but I was very disappointed with the Cobel episode (it doesn’t help that I dislike her as a character generally, and the whole “Cobel invented severance!” thing seemed a bit convenient and unearned to me). I think part of the issue for me was that the core innie crew and the hijinks they got up to in season 1 felt like the beating heart of the show, so even though the story had to move on at some point (and it’s not going back—half the innies can’t even be innies anymore), I started to miss what made me fall in love with the show.

Image of Patricia Arquette as Harmony Cobel.

Harmony Cobel comes home to the ether factory.

Credit: AppleTV+

Harmony Cobel comes home to the ether factory. Credit: AppleTV+

Lee: I get the narrative motivation behind Cobel having invented the severance chip (along with every line of code and every function, as she tells us), but yeah, that was the first time the show threw something at me that I really did not like. I see how this lets the story move Cobel into a helper role with Mark’s reintegration, but, yeah, ugh, that particular development felt tremendously unearned, as you say. I love the character, but that one prodded my suspension of disbelief pretty damn hard.

Speaking of Mark’s reintegration—I was so excited when episode three (“Who is Alive?”) ended with Mark’s outie slamming down on the Lumon conference room table. Surely now after two catch-up episodes, I thought, we’d get this storyline moving! Having the next episode (“Woe’s Hollow”) focusing on the ORTBO and Kier’s (possibly fictional) twin was a little cheap, even though it was a great episode. But where I started to get really annoyed was when we slide into episode five (“Trojan’s Horse”) with Mark’s reintegration apparently stalled. It seems like from then to the end of the season, reintegration proceeded in fits and starts, at the speed of plot rather than in any kind of ordered fashion.

It was one of the few times where I felt like my time was being wasted by the showrunners. And I don’t like that feeling. That feels like Lost.

Image of Mark on the table.

Kind of wish they’d gone a little harder here.

Credit: AppleTV+

Kind of wish they’d gone a little harder here. Credit: AppleTV+

Aaron: Yes! Mark’s reintegration was handled pretty poorly, I think. Like you said, it was exciting to see the show go there so early… but it didn’t really make much difference for the rest of the season. It makes sense that reintegration would take time—and we do see flashes of it happening throughout the season—but it felt like the show was gearing up for some wild Petey-level reintegration stuff that just never came. Presumably that’s for season 3, but the reintegration stuff was just another example of what felt like the show spinning its wheels a bit. And like you said, Lee, when it feels like a show isn’t quite sure what to do with the many mysteries it introduces week after week, I start to think about Lost, and not in a good way.

The slow-rolled reintegration stuff was essential for the finale, though. Both seasons seemed to bank pretty hard on a “slow buildup to an explosive finale” setup, which felt a little frustrating this season (season 1’s finale is one of my favorite TV show episodes of all time).

But I think the finale worked. Just scene after scene of instantly iconic moments. The scene of innie and outtie Mark negotiating through a camcorder in that weird maternity cabin was brilliant. And while my initial reaction to Mark’s decision at the end was anger, I really should have seen it coming—outtie Mark could not have been more patronizing in the camcorder conversation. I guess I, like outtie Mark, saw innie Mark as being somewhat lesser than.

What did you guys think of the finale?

Nate: A solid effort, but one that absolutely did not reach the heights of season 1. It was at its best when characters and events from the season played critical moments—such as the altercation between Drummond, Mark, and Feral Goat Lady, or the actual (finally!) discovery of the elevator to the Testing Floor.

But the finale also felt quite strange or unbalanced in other ways. Ricken doesn’t make an appearance, despite the hint that he was willing to retool his book (pivotal in season 1) for the Lumon innies. Burt doesn’t show up. Irving is gone. So is Reghabi. Miss Huang was summarily dismissed without having much of a story arc. So the finale failed to “gather up all its threads” in the way it did during season one.

And then there was that huge marching band, which ups the number of severed employees we know about by a factor of 50x—and all so they could celebrate the achievements of an innie (Mark S.) who is going to be dismissed and whose wife is apparently going to be killed. This seemed… fairly improbable, even for Lumon. On the other hand, this is a company/cult with an underground sacrificial goat farm, so what do I know about “probability”? Speaking of which, how do we feel about the Goat Revelations ™?

Image of Emile the Goat.

This is Emile, and he must be protected at all costs.

Credit: AppleTV+

This is Emile, and he must be protected at all costs. Credit: AppleTV+

Lee: I’m still not entirely sure what the goat revelations were. They were being raised in order to be crammed into coffins and sacrificed when… things happen? Poor little Emile was going to ride to the afterlife with Gemma, apparently, but, like… why? Is it simply part of a specifically creepy Lumontology ritual? Emile’s little casket had all kinds of symbology engraved on it, and we know goats (or at least “the ram”) symbolizes Malice in Kier’s four tempers, but I’m still really not getting this one.

Aaron: Yeah, you kind of had to hand-wave a lot of the stuff in the finale. The goats just being sacrificial animals made me laugh—“OK, I guess it wasn’t that deep.” But it could be that we don’t really know their actual purpose yet.

Perhaps most improbable to me was that this was apparently the most important day in Lumon history, and they had basically one security guy on the premises. He’s a big dude—or was (outtie Mark waking up mid-accidental-shooting cracked me up)—but come on.

Stuff like the marching band doesn’t make a lick of sense. But it was a great scene, so, eh, just go with it. That seems to be what Severance is asking us to do more and more, and honestly, I’m mostly OK with that.

Image of Seth Milchick, lord of the dance.

This man can do anything.

Credit: AppleTV+

This man can do anything. Credit: AppleTV+

Nate: Speaking of important days in Lumon history… what is Lumon up to, exactly? Jame Eagen spoke in season 1 about his “revolving,” he watched Helena eat eggs without eating anything himself, and he appears on the severed floor to watch the final “Cold Harbor” test. Clearly something weird is afoot. But the actual climactic test on Gemma was just to see if the severance block could hold her personalities apart even when facing deep traumas.

However, (as Miss Casey) she had already been in the presence of her husband (Mark S.), and neither of them had known it. So the show seems to suggest on the one hand that whatever is happening on the testing floor will change the world. But on the other hand, it’s really just confirming what we already know. And surely there’s no need to kidnap people if the goal is just to help them compartmentalize pain; as our current epidemic of drug and alcohol use show, plenty of people would sign up for this voluntarily. So what’s going on? Or, if you have no theories, does the show give you confidence that it knows where it’s going?

Lee: The easy answer—that severance chips will somehow allow the vampire spirit of Kier to jump bodies forever—doesn’t really line up. If Chris Walken’s husband Walter Bishop is to be believed, the severance procedure is only 12 years old. So it’s not that, at least.

Though Nate’s point about Helena eating eggs—and Jame’s comment that he wished she would “take them raw”—does echo something we learned back in season one: that Kier Egan’s favorite breakfast was raw eggs and milk.

Image of a precisely sliced hard boiled egg on a painted plate.

Eggiwegs! I would like… to eat them raw?

Credit: AppleTV+

Eggiwegs! I would like… to eat them raw? Credit: AppleTV+

Aaron: That’s the question for season 3, I think, and whether they’re able to give satisfying answers will determine how people view this show in the long term. I’ll admit that I was much more confident in the show’s writers after the first season; this season has raised some concerns for me. I believe Ben Stiller has said that they know how the show ends, just not how it gets there. That’s a perilous place to be.

Nate: We’ve groused a bit about the show’s direction, but I think it’s fair to say it comes from a place of love; the storytelling and visual style is so special, and we’ve had our collective hearts broken so many times by shows that can’t stick the landing. (I want those hours back, Lost.) I’m certainly rooting for Severance to succeed. And even though this season wasn’t perfect, I enjoyed watching every minute of it. As we wrap things up, anyone have a favorite moment from season 2? I personally enjoyed Milchick getting salty, first with Drummond and then with a wax statue of Kier.

Lee: Absolutely! I very much want the show to stick the eventual landing. I have to go with you on your take, Nate—Milchick steals the show. Tramell Tillman plays him like a true company man, with the added complexity that comes when your company is also the cult that controls your life. My favorite bits with him are his office decorations, frankly—the rabbit/duck optical illusion statue, showing his mutable nature, and the iceberg poster, hinting at hidden depths. He’s fantastic. I would 100 percent watch a spin-off series about Milchick.

Image showing Seth Milchick's office.

Mr. Milchick’s office, filled with ambiguousness. I’m including Miss Huang in that description, too.

Credit: AppleTV+

Mr. Milchick’s office, filled with ambiguousness. I’m including Miss Huang in that description, too. Credit: AppleTV+

Aaron: This season gave me probably my favorite line in the whole series—Irv’s venomous “Yes! Do it, Seth!” as Helena is telling Milchick to flip the switch to bring back Helly R. But yeah, Milchick absolutely killed it this season. “Devour feculence” and the drum major scene were highlights, but I also loved his sudden sprint from the room after handing innie Dylan his outtie’s note. Severance can be hilarious.

And I agree, complaints aside, this show is fantastic. It’s incredibly unique, and I looked forward to watching it every week so I could discuss it with friends. Here’s hoping we don’t have to wait three more years for the next season.

Photo of Nate Anderson

Praise Kier for Severance season 2! Let’s discuss. Read More »

we’ve-outsourced-our-confirmation-biases-to-search-engines

We’ve outsourced our confirmation biases to search engines

So, the researchers decided to see if they could upend it.

Keeping it general

The simplest way to change the dynamics of this was simply to change the results returned by the search. So, the researchers did a number of experiments where they gave all of the participants the same results, regardless of the search terms they had used. When everybody gets the same results, their opinions after reading them tend to move in the same direction, suggesting that search results can help change people’s opinions.

The researchers also tried giving everyone the results of a broad, neutral search, regardless of the terms they’d entered. This weakened the probability that beliefs would last through the process of formulating and executing a search. In other words, avoiding the sorts of focused, biased search terms allowed some participants to see information that could change their minds.

Despite all the swapping, participants continued to rate the search results relevant. So, providing more general search results even when people were looking for more focused information doesn’t seem to harm people’s perception of the service. In fact, Leung and Urminsky found that the AI version of Bing search would reformulate narrow questions into more general ones.

That said, making this sort of change wouldn’t be without risks. There are a lot of subject areas where a search shouldn’t return a broad range of information—where grabbing a range of ideas would expose people to fringe and false information.

Nevertheless, it can’t hurt to be aware of how we can use search services to reinforce our biases. So, in the words of Leung and Urminsky, “When search engines provide directionally narrow search results in response to users’ directionally narrow search terms, the results will reflect the users’ existing beliefs, instead of promoting belief updating by providing a broad spectrum of related information.”

PNAS, 2025. DOI: 10.1073/pnas.2408175122  (About DOIs).

We’ve outsourced our confirmation biases to search engines Read More »

uk-on-alert-after-h5n1-bird-flu-spills-over-to-sheep-in-world-first

UK on alert after H5N1 bird flu spills over to sheep in world-first

In the UK, officials said further testing of the rest of the sheep’s flock has found no other infections. The one infected ewe has been humanely culled to mitigate further risk and to “enable extensive testing.”

“Strict biosecurity measures have been implemented to prevent the further spread of disease,” UK Chief Veterinary Officer Christine Middlemiss said in a statement. “While the risk to livestock remains low, I urge all animal owners to ensure scrupulous cleanliness is in place and to report any signs of infection to the Animal Plant Health Agency immediately.”

While UK officials believe that the spillover has been contained and there’s no onward transmission among sheep, the latest spillover to a new mammalian species is a reminder of the virus’s looming threat.

“Globally, we continue to see that mammals can be infected with avian influenza A(H5N1),” Meera Chand, Emerging Infection Lead at the UK Health Security Agency (UKHSA), said in a statement. In the US, the Department of Agriculture has documented hundreds of infections in wild and captive mammals, from cats to bears, raccoons, and harbor seals.

Chand noted that, so far, the spillovers into animals have not easily transmitted to humans. For instance, in the US, despite extensive spread through the dairy industry, no human-to-human transmission has yet been documented. But, experts fear that with more spillovers and exposure to humans, the virus will gain more opportunities to adapt to be more infectious in humans.

Chand says that UKHSA and other agencies are monitoring the situation closely in the event the situation takes a turn. “UKHSA has established preparations in place for detections of human cases of avian flu and will respond rapidly with NHS and other partners if needed.”

UK on alert after H5N1 bird flu spills over to sheep in world-first Read More »

after-borking-my-pixel-4a-battery,-google-borks-me,-too

After borking my Pixel 4a battery, Google borks me, too


The devil is in the details.

The Pixel 4a. It’s finally here! Credit: Google

It is an immutable law of nature that when you receive a corporate email with a subject line like “Changes coming to your Pixel 4a,” the changes won’t be the sort you like. Indeed, a more honest subject line would usually be: “You’re about to get hosed.”

So I wasn’t surprised, as I read further into this January missive from Google, that an “upcoming software update for your Pixel 4a” would “affect the overall performance and stability of its battery.”

How would my battery be affected? Negatively, of course. “This update will reduce your battery’s runtime and charging performance,” the email said. “To address this, we’re providing some options to consider. “

Our benevolent Google overlords were about to nerf my phone battery—presumably in the interests of “not having it erupt in flames,” though this was never actually made clear—but they recognized the problem, and they were about to provide compensation. This is exactly how these kinds of situations should be handled.

Google offered three options: $50 cash money, a $100 credit to Google’s online store, or a free battery replacement. It seemed fair enough. Yes, not having my phone for a week or two while I shipped it roundtrip to Google could be annoying, but at least the company was directly mitigating the harm it was about to inflict. Indeed, users might actually end up in better shape than before, given the brand-new battery.

So I was feeling relatively sunny toward the giant monopolist when I decided to spring for the 50 simoleons. My thinking was that 1) I didn’t want to lose my phone for a couple of weeks, 2) the update might not be that bad, in which case I’d be ahead by 50 bucks, and 3) I could always put the money towards a battery replacement if assumption No. 2 turned out to be mistaken.

The naïveté of youth!

I selected my $50 “appeasement” through an online form, and two days later, I received an email from Bharath on the Google Support Team.

Bharath wanted me to know that I was eligible for the money and it would soon be in my hands… once I performed a small, almost trivial task: giving some company I had never heard of my name, address, phone number, Social Security number, date of birth, and bank account details.

About that $50…

Google was not, in fact, just “sending” me $50. I had expected, since the problem involved their phones and their update, that the solution would require little or nothing from me. A check or prepaid credit card would arrive in the mail, perhaps, or a drone might deliver a crisp new bill from the sky. I didn’t know and didn’t care, so long as it wasn’t my problem.

But it was my problem. To get the cash, I had to create an account with something called “Payoneer.” This is apparently a reputable payments company, but I had never heard of it, and much about its operations is unclear. For instance, I was given three different ways to sign up depending on whether I 1) “already have a Payoneer account from Google,” 2) “don’t have an account,” or 3) “do have a Payoneer account that was not provided nor activated through Google.”

Say what now?

And though Google promised “no transaction fees,” Payoneer appears to charge an “annual account fee” of $29.95… but only to accounts that receive less than $2,000 through Payoneer in any consecutive 12-month period.

Does this fee apply to me if I sign up through the Google offer? I was directed to Payoneer support with any questions, but the company’s FAQ on the annual account fee doesn’t say.

If the fee does apply to me, do I need to sign up for a Payoneer account, give them all of my most personal financial information, wait the “10 to 18 business days” that Google says it will take to get my money, and then return to Payoneer so that I can cancel my account before racking up some $30 charge a year from now? And I’m supposed to do all this just to get…. fifty bucks? One time?

It was far simpler for me to get a recent hundred-dollar rebate on a washing machine… and they didn’t need my SSN or bank account information.

(Reddit users also report that, if you use the wrong web browser to cancel your Payoneer account, you’re hit with an error that says: “This end point requires that the body of all requests be formatted as JSON.”)

Like Lando Calrissian, I realized that this deal was getting worse all the time.

I planned to write Bharath back to switch my “appeasement,” but then I noticed the fine print: No changes are possible after making a selection.

So—no money for me. On the scale of life’s crises, losing $50 is a minor one, and I resolved to move on, facing the world with a cheerful heart and a clear mind, undistracted by the many small annoyances our high-tech overlords continually strew upon the path.

Then the software update arrived.

A decimation situation

When Google said that the new Pixel 4a update would “reduce your battery’s runtime and charging performance,” it was not kidding. Indeed, the update basically destroyed the battery.

Though my phone was three years old, until January of this year, the battery still held up for all-day usage. The screen was nice, the (smallish) phone size was good, and the device remained plenty fast at all the basic tasks: texting, emails, web browsing, snapping photos. I’m trying to reduce both my consumerism and my e-waste, so I was planning to keep the device for at least another year. And even then, it would make a decent hand-me-down device for my younger kids.

After the update, however, the phone burned through a full battery charge in less than two hours. I could pull up a simple podcast app, start playing an episode, and watch the battery percentage decrement every 45 seconds or so. Using the phone was nearly impossible unless one was near a charging cable at all times.

To recap: My phone was shot, I had to jump through several hoops to get my money, and I couldn’t change my “appeasement” once I realized that it wouldn’t work for me.

Within the space of three days, I went from 1) being mildly annoyed at the prospect of having my phone messed with remotely to 2) accepting that Google was (probably) doing it for my own safety and was committed to making things right to 3) berating Google for ruining my device and then using a hostile, data collecting “appeasement” program to act like it cared. This was probably not the impression Google hoped to leave in people’s minds when issuing the Pixel 4a update.

Pixel 4a, disassembled, with two fingers holding its battery above the front half.

Removing the Pixel 4a’s battery can be painful, but not as painful as catching fire. Credit: iFixit

Cheap can be quite expensive

The update itself does not appear to be part of some plan to spy on us or to extract revenue but rather to keep people safe. The company tried to remedy the pain with options that, on the surface, felt reasonable, especially given the fact that batteries are well-known as consumable objects that degrade over time. And I’ve had three solid years of service with the 4a, which wasn’t especially expensive to begin with.

That said, I do blame Google in general for the situation. The inflexibility of the approach, the options that aren’t tailored for ease of use in specific countries, the outsourced tech support—these are all hallmarks of today’s global tech behemoths.

It is more efficient, from an algorithmic, employ-as-few-humans-as-possible perspective, to operate “at scale” by choosing global technical solutions over better local options, by choosing outsourced email support, by trying to avoid fraud (and employee time) through preventing program changes, by asking the users to jump through your hoops, by gobbling up ultra-sensitive information because it makes things easier on your end.

While this makes a certain kind of sense, it’s not fun to receive this kind of “efficiency.” When everything goes smoothly, it’s fine—but whenever there’s a problem, or questions arise, these kinds of “efficient, scalable” approaches usually just mean “you’re about to get screwed.”

In the end, Google is willing to pay me $50, but that money comes with its own cost. I’m not willing to pay with my time nor with the risk of my financial information, and I will increasingly turn to companies that offer a better experience, that care more about data privacy, that build with higher-quality components, and that take good care of customers.

No company is perfect, of course, and this approach costs a bit more, which butts up against my powerful urge to get a great deal on everything. I have to keep relearning the old lesson— as I am once again with this Pixel 4a fiasco—that cheap gear is not always the best value in the long run.

Photo of Nate Anderson

After borking my Pixel 4a battery, Google borks me, too Read More »

trump-administration-accidentally-texted-secret-bombing-plans-to-a-reporter

Trump administration accidentally texted secret bombing plans to a reporter

Using Signal in this way may have violated US law, Goldberg wrote. “Conceivably, Waltz, by coordinating a national-security-related action over Signal, may have violated several provisions of the Espionage Act, which governs the handling of ‘national defense’ information, according to several national-security lawyers interviewed by my colleague Shane Harris for this story,” he wrote.

Signal is not an authorized venue for sharing such information, and Waltz’s use of a feature that makes messages disappear after a set period of time “raises questions about whether the officials may have violated federal records law,” the article said. Adding a reporter to the thread “created new security and legal issues” by transmitting information to someone who wasn’t authorized to see it, “the classic definition of a leak, even if it was unintentional,” Goldberg wrote.

The account labeled “JD Vance” questioned the war plan in a Signal message on March 14. “I am not sure the president is aware how inconsistent this is with his message on Europe right now,” the message said. “There’s a further risk that we see a moderate to severe spike in oil prices. I am willing to support the consensus of the team and keep these concerns to myself. But there is a strong argument for delaying this a month, doing the messaging work on why this matters, seeing where the economy is, etc.”

The Vance account also stated, “3 percent of US trade runs through the suez. 40 percent of European trade does,” and “I just hate bailing Europe out again.” The Hegseth account responded that “I fully share your loathing of European free-loading. It’s PATHETIC,” but added that “we are the only ones on the planet (on our side of the ledger) who can do this.”

An account apparently belonging to Trump advisor Stephen Miller wrote, “As I heard it, the president was clear: green light, but we soon make clear to Egypt and Europe what we expect in return. We also need to figure out how to enforce such a requirement. EG, if Europe doesn’t remunerate, then what? If the US successfully restores freedom of navigation at great cost there needs to be some further economic gain extracted in return.”

Trump administration accidentally texted secret bombing plans to a reporter Read More »

should-we-be-concerned-about-the-loss-of-weather-balloons?

Should we be concerned about the loss of weather balloons?


Most of the time, not a big deal. But in critical times, the losses will be felt.

A radiosonde with mailing instructions. Credit: NWS Pittsburgh

Due to staff reductions, retirements, and a federal hiring freeze, the National Weather Service has announced a series of suspensions involving weather balloon launches in recent weeks. The question is, will this significantly degrade forecasts in the United States and around the world?

On February 27, it was announced that balloon launches would be suspended entirely at Kotzebue, Alaska, due to staffing shortages. In early March, Albany, N.Y., and Gray, Maine, announced periodic disruptions in launches. Since March 7, it appears that Gray has not missed any balloon launches through Saturday. Albany, however, has missed 14 of them, all during the morning launch cycle (12z).

The kicker came on Thursday afternoon when it was announced that all balloon launches would be suspended in Omaha, Neb., and Rapid City, S.D., due to staffing shortages. Additionally, the balloon launches in Aberdeen, S.D.; Grand Junction, Colo.; Green Bay, Wis.; Gaylord, Mich.; North Platte, Neb.; and Riverton, Wyo., would be reduced to once a day from twice a day.

What are weather balloons?

In a normal time, weather balloons would be launched across the country and world twice per day, right at about 8 am ET and 8 pm ET (one hour earlier in winter), or what we call 12z and 00z. That’s Zulu time, or noon and midnight in Greenwich, England. Rather than explain the whole reasoning behind why we use Zulu time in meteorology, here’s a primer on everything you need to know. Weather balloons are launched around the world at the same time. It’s a unique collaboration and example of global cooperation in the sciences, something that has endured for many years.

These weather balloons are loaded up with hydrogen or helium, soar into the sky, up to and beyond jet stream level, getting to a height of over 100,000 feet before they pop. Attached to the weather balloon is a tool known as a radiosonde, or “sonde” for short. This is basically a weather-sensing device that measures all sorts of weather variables like temperature, dewpoint, pressure, and more. Wind speed is usually derived from this based on GPS transmitting from the sonde.

Sunday morning’s upper air launch map showing a gaping hole over the Rockies and some of the Plains.

Credit: University of Wyoming

Sunday morning’s upper air launch map showing a gaping hole over the Rockies and some of the Plains. Credit: University of Wyoming

What goes up must come down, so when the balloon pops, that radiosonde falls from the sky. A parachute is attached to it, slowing its descent and ensuring no one gets plunked on the head by one. If you find a radiosonde, it should be clearly marked, and you can keep it, let the NWS know you found it, or dispose of it properly. In some instances, there may still be a way to mail it back to the NWS (postage and envelope included and prepaid).

How this data is used

In order to run a weather model, you need an accurate snapshot of what we call the initial conditions. What is the weather at time = zero? That’s your initialization point. Not coincidentally, weather models are almost always run at 12z and 00z, to time in line with retrieving the data from these weather balloons. It’s a critically important input to almost all weather modeling we use.

The data from balloon launches can be plotted on a chart called a sounding, which gives meteorologists a vertical profile of the atmosphere at a point. During severe weather season, we use these observations to understand the environment we are in, assess risks to model output, and make changes to our own forecasts. During winter, these observations are critical to knowing if a storm will produce snow, sleet, or freezing rain.

Observations from soundings are important inputs for assessing turbulence that may impact air travel, marine weather, fire weather, and air pollution. Other than some tools on some aircraft that we utilize, the data from balloon launches is the only real good verification tool we have for understanding how the upper atmosphere is behaving.

Have we lost weather balloon data before?

We typically lose out on a data point or two each day for various reasons when the balloons are launched. We’ve also been operating without a weather balloon launch in Chatham, Mass., for a few years because coastal erosion made the site too challenging and unsafe.

Tallahassee, Fla., has been pausing balloon launches for almost a year now due to a helium shortage and inability to safely switch to hydrogen gas for launching the balloons. In Denver, balloon launches have been paused since 2022 due to the helium shortage as well.

Those are three sites, though, spread out across the country. We are doubling or tripling the number of sites without launches now, many in critical areas upstream of significant weather.

Can satellites replace weather balloons?

Yes and no.

On one hand, satellites today are capable of incredible observations that can rival weather balloons at times. And they also cover the globe constantly, which is important. That being said, satellites cannot completely replace balloon launches. Why? Because the radiosonde data those balloon launches give us basically acts as a verification metric for models in a way that satellites cannot. It also helps calibrate derived satellite data to ensure that what the satellite is seeing is recorded correctly.

But in general, satellites cannot yet replace weather balloons. They merely act to improve upon what weather balloons do. A study done in the middle part of the last decade found that wind observations improved rainfall forecasts by 30 percent. The one tool at that time that made the biggest difference in improving the forecast were radiosondes. Has this changed since then? Yes, almost certainly. Our satellites have better resolution, are capable of getting more data, and send data back more frequently. So certainly, it’s improved some. But enough? That’s unclear.

An analysis done more recently on the value of dropsondes (the opposite of balloon launches; this time, the sensor is dropped from an aircraft instead of launched from the ground) in forecasting West Coast atmospheric rivers showed a marked improvement in forecasts when those targeted drops occur. Another study in 2017 showed that aircraft observations actually did a good job filling gaps in the upper air data network.

Even with aircraft observations, there were mixed studies done in the wake of the COVID-19 reduction in air travel that suggested no impact could be detected above usual forecast error noise or that there was some regional degradation in model performance.

But to be quite honest, there have not been many studies that I can find in recent years that assess how the new breed of satellites has (or has not) changed the value of upper-air observations. The NASA GEOS model keeps a record of what data sources are of most impact to model verification with respect to 24-hour forecasts. Number two on the list? Radiosondes. This could be considered probably a loose comp to the GFS model, one of the major weather models used by meteorologists globally.

The verdict

In reality, the verdict in all this is to be determined, particularly statistically. Will it make a meaningful statistical difference in model accuracy? Over time, yes, probably, but not in ways that most people will notice day to day.

However, based on 20 years of experience and a number of conversations about this with others in the field, there are some very real, very serious concerns beyond statistics. One thing is that the suspended weather balloon launches are occurring in relatively important areas for weather impacts downstream. A missed weather balloon launch in Omaha or Albany won’t impact the forecast in California. But what if a hurricane is coming? What if a severe weather event is coming? You’ll definitely see impacts to forecast quality during major, impactful events. At the very least, these launch suspensions will increase the noise-to-signal ratio with respect to forecasts.

The element with the second-highest impact on the NASA GEOS model? Radiosondes.

Credit: NASA

The element with the second-highest impact on the NASA GEOS model? Radiosondes. Credit: NASA

In other words, there may be situations where you have a severe weather event expected to kickstart in one place, but the lack of knowing the precise location of an upper air disturbance in the Rockies thanks to a suspended launch from Grand Junction, Colo., will lead to those storms forming 50 miles farther east than expected. In other words, losing this data increases the risk profile for more people in terms of knowing about weather, particularly high-impact weather.

Let’s say we have a hurricane in the Gulf that is rapidly intensifying, and we are expecting it to turn north and northeast thanks to a strong upper-air disturbance coming out of the Rockies, leading to landfall on the Alabama coast. What if the lack of upper-air observations has led to that disturbance being misplaced by 75 miles. Now, instead of Alabama, the storm is heading toward New Orleans. Is this an extreme example? Honestly, I don’t think it is as extreme as you might think. We often have timing and amplitude forecast issues with upper-air disturbances during hurricane season, and the reality is that we may have to make some more frequent last-second adjustments now that we didn’t have to in recent years. As a Gulf Coast resident, this is very concerning.

I don’t want to overstate things. Weather forecasts aren’t going to dramatically degrade day to day because we’ve reduced some balloon launches across the country. They will degrade, but the general public probably won’t notice much difference 90 percent of the time. But that 10 percent of the time? It’s not that the differences will be gigantic. But the impact of those differences could very well be gigantic, put more people in harm’s way, and increase the risk profile for an awful lot of people. That’s what this does: It increases the risk profile, it will lead to reduced weather forecast skill scores, and it may lead to an event that surprises a portion of the population that isn’t used to be surprised in the 2020s. To me, that makes the value of weather balloons very, very significant, and I find these cuts to be extremely troubling.

Should further cuts in staffing lead to further suspensions in weather balloon launches, we will see this problem magnify more often and involve bigger misses. In other words, the impacts here may not be linear, and repeated increased loss of real-world observational data will lead to very significant degradation in weather model performance that may be noticed more often than described above.

This story originally appeared on The Eyewall.

Photo of The Eyewall

The Eyewall is dedicated to covering tropical activity in the Atlantic Ocean, Caribbean Sea, and Gulf of Mexico. The site was founded in June 2023 by Matt Lanza and Eric Berger, who work together on the Houston-based forecasting site Space City Weather.

Should we be concerned about the loss of weather balloons? Read More »

cloudflare-turns-ai-against-itself-with-endless-maze-of-irrelevant-facts

Cloudflare turns AI against itself with endless maze of irrelevant facts

On Wednesday, web infrastructure provider Cloudflare announced a new feature called “AI Labyrinth” that aims to combat unauthorized AI data scraping by serving fake AI-generated content to bots. The tool will attempt to thwart AI companies that crawl websites without permission to collect training data for large language models that power AI assistants like ChatGPT.

Cloudflare, founded in 2009, is probably best known as a company that provides infrastructure and security services for websites, particularly protection against distributed denial-of-service (DDoS) attacks and other malicious traffic.

Instead of simply blocking bots, Cloudflare’s new system lures them into a “maze” of realistic-looking but irrelevant pages, wasting the crawler’s computing resources. The approach is a notable shift from the standard block-and-defend strategy used by most website protection services. Cloudflare says blocking bots sometimes backfires because it alerts the crawler’s operators that they’ve been detected.

“When we detect unauthorized crawling, rather than blocking the request, we will link to a series of AI-generated pages that are convincing enough to entice a crawler to traverse them,” writes Cloudflare. “But while real looking, this content is not actually the content of the site we are protecting, so the crawler wastes time and resources.”

The company says the content served to bots is deliberately irrelevant to the website being crawled, but it is carefully sourced or generated using real scientific facts—such as neutral information about biology, physics, or mathematics—to avoid spreading misinformation (whether this approach effectively prevents misinformation, however, remains unproven). Cloudflare creates this content using its Workers AI service, a commercial platform that runs AI tasks.

Cloudflare designed the trap pages and links to remain invisible and inaccessible to regular visitors, so people browsing the web don’t run into them by accident.

A smarter honeypot

AI Labyrinth functions as what Cloudflare calls a “next-generation honeypot.” Traditional honeypots are invisible links that human visitors can’t see but bots parsing HTML code might follow. But Cloudflare says modern bots have become adept at spotting these simple traps, necessitating more sophisticated deception. The false links contain appropriate meta directives to prevent search engine indexing while remaining attractive to data-scraping bots.

Cloudflare turns AI against itself with endless maze of irrelevant facts Read More »