Pew Research has published a new report that examines social media usage trends among US teens. The organization found that a whopping 95 percent of them use YouTube, while 19 percent are on the platform "almost constantly." Engadget reports: Perhaps unsurprisingly, two-thirds (67 percent) said they used TikTok, with 16 percent claiming they are on the app "almost constantly." The third most-popular social media platform among teens is Instagram, per Pew, with 62 percent using it. A tenth say they use it almost all the time -- despite the app occasionally telling them to take a break. A previous poll conducted in 2014-15 found that 52 percent were using Instagram (Pew didn't ask about YouTube usage for that survey and TikTok didn't exist at the time).

Snapchat also rose among teens, with 59 percent using it in 2022, compared with 41 percent in the previous poll. Facebook was the top social media app among teens seven years ago, with 71 percent of them using it, but that figure has dropped to 32 percent. Teen adoption of Twitter (down from 33 percent to 23 percent) and Tumblr (14 percent to five percent) has fallen over the same period too. The 2014-15 poll didn't ask about Twitch, WhatsApp or Reddit. These days, a fifth of teens use Twitch, 17 percent are on WhatsApp and 14 percent are accessing Reddit.

Hmmmmmm shares a report from Ars Technica: While Punch-Out!! has been one of Nintendo's most beloved "fighting" series since its 1984 debut in arcades, it has rarely featured something common in the genre: a two-player mode. On Monday, however, that changed. The resulting discovery has been hiding in plain sight on the series' Super Nintendo edition for nearly 30 years. Should you own 1994's Super Punch-Out!! in any capacity -- an original SNES cartridge, a dumped ROM parsed by an emulator, on the Super Nintendo Classic Edition, or even as part of the paid Nintendo Switch Online collection of retro games -- you can immediately access the feature, no hacking or ROM editing required. All you need is a pair of gamepads.

[T]oday's Super Punch-Out!! discovery revolves around a simple series of button combinations, which require nothing more than a second controller. The two-player mode is hidden behind an additional, previously undiscovered menu, which lets solo players skip directly to any of the game's boxing combatants. It's essentially a "level select" menu, which many classic games featured for internal testing, and speedrunners could arguably use it to practice against specific opponents more quickly.

This menu can be accessed by holding the R and Y buttons on player two's controller at the "press start" screen, then pressing Start or A with player one's controller. Do this, and a new menu appears, displaying all 16 boxers' profile icons. Pick any of these icons to engage in a one-off fight; once it's over, you're dumped back to the same boxer-select menu. In this menu, friends can access a two-player fight if player two holds their B and Y buttons down until the match starts. You won't hear a sound effect or any other indication that it worked. Instead, the match will begin with the second player controlling the "boss" boxer at the top of the screen. Combine the "ABXY" array of buttons with "up" and "down" on the D-pad to pull off every single basic and advanced attack. All credit goes to the coder responsible for the new @new_cheats_news account on Twitter, notes Ars.

Burger King has just emailed thousands of customers with a blank order email receipt. The Verge reports: The blank emails started appearing at around 12:15AM ET, leaving Burger King customers confused whether the company has been breached by a hungry hacker attempting a midnight feast, or if the emails are simply a giant whopper of a mistake. Twitter users were quick to turn to the social network in a state of confusion over the blank emails, with some even receiving two Burger King emails in an apparent double whopper of a mistake. The order emails are totally blank, and were sent by Burger King's main promotional marketing email address.

After this story was published, an email from "BK PR Team" responded to our request for more information, claiming the issue was "the result of an internal processing error." We have asked for a specific individual to attribute the information to.

According to researcher samczsun at Paradigm, Curve Finance has had its front end compromised, with over $500K stolen within a matter of minutes. The automated market maker is warning users to exercise caution when interacting with the site. Binance CEO Changpeng Zhao also shared the news and is monitoring the situation. CoinTelegraph reports: Curve stated via Twitter that its exchange -- which is a separate product -- appeared to be unaffected by the attack, as it uses a different DNS provider. Twitter user LefterisJP speculated that the alleged attacker had likely utilized DNS spoofing to execute the exploit on the service: "It's DNS spoofing. Cloned the site, made the DNS point to their ip where the cloned site is deployed and added approval requests to a malicious contract."

Other participants in the DeFi space quickly took to Twitter to spread the warning to their own followers, with some noting that the alleged thief appears to have stolen more than $573K USD at time of publication: "Alert to all @CurveFinance users, their frontend has been compromised! Do not interact with it until further notice! It appears around $570k stolen so far."

Several weeks after taking over Ukraine's southern port city of Kherson, Russian soldiers arrived at the offices of local internet service providers and ordered them to give up control of their networks. From a report: "They came to them and put guns to their head and just said, 'Do this,'" said Maxim Smelyanets, who owns an internet provider that operates in the area and is based in Kyiv. "They did that step by step for each company." Russian authorities then rerouted mobile and internet data from Kherson through Russian networks, government and industry officials said. They blocked access to Facebook, Instagram and Twitter, as well as to Ukrainian news websites and other sources of independent information. Then they shut off Ukrainian cellular networks, forcing Kherson's residents to use Russian mobile service providers instead.

What happened in Kherson is playing out in other parts of Russian-occupied Ukraine. After more than five months of war, Russia controls large sections of eastern and southern Ukraine. Bombings have leveled cities and villages; civilians have been detained, tortured and killed; and supplies of food and medicine are running low, according to witnesses interviewed by The New York Times and human rights groups. Ukrainians in those regions have access only to Russian state television and radio. To cap off that control, Russia has also begun occupying the cyberspace of parts of those areas. That has cleaved off Ukrainians in Russia-occupied Kherson, Melitopol and Mariupol from the rest of the country, limiting access to news about the war and communication with loved ones. In some territories, the internet and cellular networks have been shut down altogether.

India's new rocket launched for the first time on Saturday night (Aug. 6) but failed to deliver its satellite payloads into their intended orbit due to a sensor issue. Space.com reports: The 112-foot-tall (34 meters) Small Satellite Launch Vehicle (SSLV) lifted off from Satish Dhawan Space Centre on India's southeastern coast on Saturday at 11:48 p.m. EDT (0348 GMT and 9:18 a.m. India Standard Time on Sunday, Aug. 7) with two satellites onboard. The rocket's three solid-fueled stages performed well, but its fourth and final stage, a liquid-fueled "velocity trimming module" (VTM), hit a snag: Indian Space Research Organisation (ISRO) officials reported a loss of data from the rocket and, just over five hours after liftoff, ISRO announced the mission had failed.

"The entire vehicle performance was very good" at the start, but ultimately left the two satellites in the wrong orbit, ISRO Chairman S. Somanath said in a video statement after the launch. "The satellites were placed in an elliptical orbit in place of a circular orbit." Instead of placing the satellites in a circular orbit 221 miles (356 kilometers) above Earth, the rocket left them in an orbit that ranged from 221 miles to as close as 47 miles (76 km). That orbit was not stable, and the satellites have "already come down, and they are not usable," Somanath said. ISRO officials said on Twitter that a sensor failure that was not detected in time to switch to a "salvage action" caused the orbit issue. An investigation into the failure is planned.

An anonymous reader quotes a report from Motherboard: In July, a video of a robot dog with a submachine gun strapped to its back terrified the internet. Now a hacker who posts on Twitter as KF@d0tslash and GitHub as MAVProxyUser has discovered that the robot dog contains a kill switch, and it can be accessed through a tiny handheld hacking device. "Good news!" d0tslash said on Twitter. "Remember that robot dog you saw with a gun!? It was made by @UnitreeRobotic. Seems all you need to dump it in the dirt is @flipper_zero. The PDB has a 433mhz backdoor."

In the video, d0tslash showed one of the Unitree robot dogs hooked up to a power supply. A hand comes into the frame holding a Flipper Zero, Tamagotchi-like multitool hacking device that can send and receive wireless signals across RFID, Bluetooth, NFC, and other bands. A button is pushed on the Flipper and the robot dog seizes up and falls to the ground. Motherboard reached out to d0tslash to find out how they hacked the robot dog. The power supply in the video is an external power source. "Literally a 24-volt external power supply, so I'm not constantly charging battery while doing dev," d0tslash said.

d0tslash got their hands on one of the dogs and started going through the documentation when they discovered something interesting. Every dog ships with a remote cut-off switch attached to its power distribution board, the part of a machine that routes power from the battery to its various systems. The kill switch listens for a particular signal at 433mhz. If it hears the signal, it shuts down the robot. Some of the Unitree robot dogs even ship with the wireless remote that shuts the dog down instantly. d0tslash then used Flipper Zero to emulate the shutdown, copying the signal the robot dog's remote broadcasts over the 433MHz frequency. Anyone with a Flipper Zero or similar device can shut down these robot dogs, thanks to the work d0tslash has shared on Github.

Only days after being launched to the public, Meta Platforms' new AI chatbot has been claiming that Donald Trump won the 2020 US presidential election, and repeating anti-Semitic conspiracy theories. From a report: Chatbots -- artificial intelligence software that learns from interactions with the public -- have a history of taking reactionary turns. In 2016, Microsoft's Tay was taken offline within 48 hours after it started praising Adolf Hitler, amid other racist and misogynist comments it apparently picked up while interacting with Twitter users. Facebook parent company Meta released BlenderBot 3 on Friday to users in the US, who can provide feedback if they receive off-topic or unrealistic answers. A further feature of BlenderBot 3 is its ability to search the internet to talk about different topics.

The company encourages adults to interact with the chatbot with "natural conversations about topics of interest" to allow it to learn to conduct naturalistic discussions on a wide range of subjects. Conversations shared on various social media accounts ranged from the humorous to the offensive. BlenderBot 3 told one user its favorite musical was Andrew Lloyd Webber's "Cats," and described Meta CEO Mark Zuckerberg as "too creepy and manipulative" to a reporter from Insider. Other conversations showed the chatbot repeating conspiracy theories.

"If you've been following Joe Barnard's rocketry projects for the past few years, you'll know that one of his primary goals has been to propulsively land a model rocket like SpaceX," reports Hackaday.

"Now, 7 years into the rollercoaster journey, he has finally achieved that goal with the latest version of his Scout rocket." Many things need to come together to launch AND land a rocket on standard hobby-grade solid fuel rocket motors. A core component is stabilization of the rocket during the entire flight, which achieved using a thrust-vectoring control (TVC) mount for the rocket motors and a custom flight computer loaded with carefully tuned guidance software. Until recently, the TVC mounts were 3D printed, but Joe upgraded it to machined aluminum to eliminate as much flex and play as possible.

Since solid-fuel rockets can't technically be throttled, [Joe] originally tried to time the ignition time of the descent motor in such a manner that it would burn out as the rocket touches down. The ignition time and exact thrust numbers simply weren't repeatable enough, so in his 2020 landing attempts, he achieved some throttling effect by oscillating the TVC side to side, reducing the vertical thrust component. This eventually gave way to the final solution, a pair of ceramic pincers which block the thrust of the motors as required.
"I have been trying to do what you just saw for seven years," Barnard says in the video, remembering that he started the project back in the fall of 2015. "Not because it's revolutionary or game-changing for model rocketry, but because it's a really cool project, and I knew I would learn a lot." (On Twitter, Barnard added that "I had no background in aero, electrical engineering, coding, etc so it took a lot of trial and error.")

And in the video Barnard made sure to thank his 690 supporters on Patreon — and also shared a surprise. He'd printed out a sheet of paper with the name of every one of his Patreon supporters, rolled it up, and inserted it into the hollow center of his rocket before the flight. "So if you support, you were part of this."

The Patreon account offers more details on Barnard's mission. "Learning by experimentation is the most effective way to gain a deep understanding of new concepts, which is why providing hands-on experience with advanced rocketry components is important for the next generation of scientists, engineers, and astronauts."

And the video ends with Bernard describing the next projects he'll attempt:

• More SpaceX-like vertical landings

• A 9-foot model of SpaceX's Starship Super Heavy rocket

• A special secret project known only as "the meat rocket"

• An actual model-rocket space shot — that is, a rocket that ascends over 100 kilometers

Friday the Twitter Privacy Center posted an announcement on their blog:

"We want to let you know about a vulnerability that allowed someone to enter a phone number or email address into the log-in flow in the attempt to learn if that information was tied to an existing Twitter account, and if so, which specific account. We take our responsibility to protect your privacy very seriously and it is unfortunate that this happened...."

Engadget explains: [T]he company said a malicious actor took advantage of a zero-day flaw before Twitter became aware of and patched the issue in January 2022. The vulnerability was discovered by a security researcher who contacted Twitter through the company's bug bounty program. When Twitter first learned of the flaw, it said it had "no evidence" to suggest it had been exploited. However, an individual told Bleeping Computer last month that they took advantage of the vulnerability to obtain data on more than 5.4 million accounts. Twitter said it could not confirm how many users were affected by the exposure.
From the Twitter Privacy Center: This bug resulted from an update to our code in June 2021. When we learned about this, we immediately investigated and fixed it. At that time, we had no evidence to suggest someone had taken advantage of the vulnerability.... After reviewing a sample of the available data for sale, we confirmed that a bad actor had taken advantage of the issue before it was addressed.

We will be directly notifying the account owners we can confirm were affected by this issue. We are publishing this update because we aren't able to confirm every account that was potentially impacted, and are particularly mindful of people with pseudonymous accounts who can be targeted by state or other actors.

If you operate a pseudonymous Twitter account, we understand the risks an incident like this can introduce and deeply regret that this happened. To keep your identity as veiled as possible, we recommend not adding a publicly known phone number or email address to your Twitter account.

Last month fans were worried about CuteFish OS, with its domain timing out, emails going unanswered, and a Twitter feed that hadn't posted anything since March.

But "now it looks like the original development team behind CuteFishOS is coming back to life," according to this report from The New Stack — with a Reddit user planning a fork now saying that's been put on hold, since "I'd be duplicating work for no reason." Last Sunday — on July 31st — CuteFish's official repository on GitHub was updated with a new announcement in its profile. "Your Favorite CutefishOS are back now!" [sic]

It also promised "New website in the works (coming soon)." and pointed to a new URL.

You can see the changes happening right before your eyes. That website's domain — OpenFish.org — was registered just ten days ago, on Thursday, July 28th — and it's still a work in progress. On Thursday afternoon it was pointing to a non-English-language page hosted on the Pakistani cloud platform QCloud — but by Thursday night it was showing a testing page for a NGNIX HTTP server running Red Hat Enterprise Linux.

And there's now also a new README file in CuteFish's GitHub repository listing five items as "progressing." The first item is "official website preparation," but other items include collating the previous pull requests and issues, "fix the existing problem," and eventually adding new features. The sole contributor to the repository appears to be a Chinese coder going under the name of Biukang.
"We are preparing for the restart of CutefishOS," says Biukang's GitHub profile now.

But the article still hails last month's discussion of a fork as "a chance to see open source communities mobilizing into action just to fill a perceived void."

An anonymous reader shares this report on The Switchblade, "an aircraft that doubles as a car."

It could be "just weeks away from getting its wheels off the ground after an inspection by America's Federal Aviation Administration determined that the vehicle is safe to fly: The project has been 14 years in the making, and Sam Bousfield, CEO of Samson Sky and inventor of the Switchblade, said he's "stoked" to reach this milestone. After passing the FAA inspection, his team wasted no time in beginning the high-speed taxi test. They were out on the taxiway the next day. "[The crew] took off their 'I'm doing R&D' and they put on their 'I am flight test' crew hat, and I think that really set the tone for everything after," Bousfield said. "So, we're in a different game now...."

Just like a pocket knife, the Switchblade's wings slip smoothly into the body of the vehicle with the touch of a button, allowing it to seamlessly transition from sky to air. Its tail also unfurls or retracts, depending on if it's being used to fly or drive. The idea is that the vehicle could be parked in a garage, driven to an airport, flown to a new destination, and then driven anywhere on the ground after it lands. When a trip is over, the user can fly it home or fly it elsewhere.
"The side windows (in the doors) will be power windows," noted a tweet Thursday on the car manufacturer's official Twitter feed @FlyingSportsCar.

And Maxim points out that The Switchblade can be flown at up to 200 mph and as high as 13,000 feet, "for up to 450 miles, with the 190-hp liquid-cooled three-cylinder powering the single propeller." On the ground, the Switchblade can achieve a brisk 125 mph, making it similar to "a little flying sports car," Bousfield added.

Before production begins, the Switchblade has more regulatory hurdles that flying cars will need to overcome. Owners will need a pilot's license and either a motorcycle or driver's license to operate it in both flight and ground modes, plus car/motorcycle and aircraft insurance. But for now, the FAA flight approval has inspired Bousfield to keep charging ahead....

It will be at least a few more years before civilians are flying their own Switchblades, which are expected to cost around $170,000. But anyone can join the 1,670 people who have reserved one free of charge.

Long-time Slashdot reader chicksdaddy writes: Printer maker Epson has programmed some models of its inkjet printers to "stop operating" at a pre-determined time, citing the risk of property damage linked to "ink spills," the Fight to Repair newsletter reports.

Epson printer owners have complained that their functioning printers have suddenly stopped working, displaying an error message declaring that a component of the printer has "reached the end of its service life" and that the device needs to be serviced. According to Epson's website, the message is linked to ink pads, which Epson describes as "porous pads in the printer that collect, distribute, and very importantly contain the ink that is not used on printed pages." Over time, these pads become saturated with ink though generally not "before the printer is replaced for other reasons" (??!)

"Like so many other products, all Epson consumer ink jet products have a finite life span due to component wear during normal use... The printers are designed to stop operating at the point where further use without replacing the ink pads could create risks of property damage from ink spills or safety issues related to excess ink contacting an electrical component," the company said on its website.

Rather than measure the saturation of the ink pads to determine when that point is reached, however, Epson appears to have programmed a counter on its printers that disables the device when a threshold has been reached. For printer owners who use Windows, Epson makes a reset utility that can reset the counter though it can "only be used once and will allow printing for a short period of time." For Mac users, or Windows users who have already run the reset utility once, Epson urges them to have the printer serviced by an Epson authorized service shop or — preferably — to replace the printer with a new printer. "Repair may not be a cost-effective option for lower-cost printers because other components may also be near the end of their usable life," the company said. Despite the company's claims about the unfixability of the ink pad issue, YouTube videos suggest that the ink pads are, in fact, simple to replace, as this video illustrates.

Some legal experts say that Epson's hard coding an end of life for its printers may be illegal — an example of "Deceptive trade practices," unless it is clearly disclosing the existence of the programmed end of life to consumers prior to purchase.
Here's how the Fight to Repair newsletter sees the situation. Epson "pushes its customers to throw away the entire, working printer unit simply because some sponges are saturated with ink.

"In doing so, the company amplifies our epidemic of e-waste and forces customers into an expensive and (as it turns out) unneeded upgrade."

When a U.S. satellite passed over Russia's Plesetsk Cosmodrome, a Russian satellite was launched close behind it "with capabilities unknown," reports the Drive, adding that it's now "getting suspiciously close..." Russia has launched satellite 14F150 Nivelir into orbit under a mission dubbed Kosmos-2558, and its current orbital path could soon place it in close proximity to what is reported to be the spy satellite designated USA-326. Unconfirmed rumors that the asset will serve as an 'inspector' satellite to covertly spy on nearby spacecraft have begun to circulate online following the launch and would line up with Russia's known on-orbit anti-satellite weapons capabilities and developments.

Its exact purpose is unknown at present, but it has been described as an "inspector" satellite, a term that is often associated with so-called "killer satellites...." Jonathan McDowell, an astronomer at the Center for Astrophysics, or @planet4589 on Twitter, has noted that Kosmos-2558's current orbital path will soon place it within 80 km of what is believed to be the USA 326 satellite. For reference, the Center for Astrophysics is a collaborative effort run jointly by the Smithsonian Astrophysical Observatory and Harvard College Observatory....

USA-326 was launched in February of this year by a SpaceX Falcon 9 rocket out of Vandenberg Space Force Base, its mission designated NROL-87, which is a classified national security operation led by the National Reconnaissance Office (NRO) in partnership with SpaceX. A press release shared by the NRO following the initial launch claimed that NROL-87 was designed, built, and now operated by the NRO to support its "overhead reconnaissance mission," which is largely centered around protecting national security through the exploitation of space-based intelligence, surveillance, and reconnaissance.
Thanks to long-time Slashdot reader schwit1 for sharing the story.

"GitLab has reversed its decision to automatically delete projects that are inactive for more than a year and belong to its free-tier users," reports the Register. Thursday GitLab tweeted:

"We discussed internally what to do with inactive repositories. We reached a decision to move unused repos to object storage. Once implemented, they will still be accessible but take a bit longer to access after a long period of inactivity."

But the Register says they've seen internal documents from "well-placed sources" showing that GitLab had originally "hoped the move would save it up to $1 million a year and help make its SaaS business sustainable." And the company had spent a long time preparing for such a move: Documents we have seen gave staff notice of an internal meeting scheduled for August 9. The agenda for the meeting lays out the plan to delete dormant code repositories... Other internal documents seen by The Register mention the possible use of object storage to archive projects but express concerns that doing so would increase GitLab's costs by creating a need for multiple redundant backups.

We have also seen internal discussions confirming the automation code to delete inactive projects was completed by the end of July, and was ready to roll out after months of debate and development work.

One of our sources told us [Thursday] that it was online pressure, led by The Register's reporting, that forced a dramatic rethink at the GitHub rival. Word of the deletion policy as a money-saving exercise sparked fury on Twitter and Reddit.
On GitLab's Twitter feed Thursday, someone raised an interesting point about GitLab's new promise to move inactive repos into object storage. "Wait, does 'inactive' mean repositories that have no new commits? Or only those without new commits AND without read access by cloning / fetching?"

And GitLab's CEO/co-founder Sid Sijbrandij replied, "We're not sure yet. Probably all write operations would keep a project active, creating an issue, a merge request, pushing changes to a branch, etc. We might also keep it active as long as people are doing read operations such as cloning, forking, etc."

Friday Sijbrandij tweeted this status update:

"Archived projects is a user activated state that signals intent. We're not sure yet but very likely the storage type used is orthogonal to that. Our current plan for object storage would keep the repos visible to everyone."

An anonymous reader quotes a report from Motherboard: A photo tweeted by a famous French physicist supposedly of Proxima Centauri by the James Webb Space Telescope was actually a slice of chorizo. Etienne Klein, research director at France's Alternative Energies and Atomic Energy Commission posted the photo last week, claiming it showed the closest star to the sun. "This level of detail," Klein wrote. "A new world is revealed day after day."

But a few days later, Klein revealed that the photo he tweeted was not the work of the world's most powerful space telescope, as he had in fact tweeted a slice of chorizo sausage. "According to contemporary cosmology, no object belonging to Spanish charcuterie exists anywhere but on Earth," he said after apologizing for tricking so many people. "Like an idiot, I got screwed," tweeted one French user. "Same," replied another, "the source was so credible" Klein told French news outlet Le Point that his intention had been to educate people about fake news online, adding that "I also think that if I hadn't said it was a James Webb photo, it wouldn't have been so successful."

An anonymous reader quotes a report from Gizmodo, written by Jody Serrano: In the early aughts, my wheezing dialup connection often operated as if it were perpetually out of breath. Thus, unlike my childhood friends, it was near to impossible for me to watch videos, TV shows, or listen to music. Far from feeling limited, I felt like I was lucky, for I had access to an encyclopedia of lovingly curated pages about anything I wanted to know -- which in those days was anime -- the majority of which was conveniently located on GeoCities. For all the zoomers scrunching up their brows, here's a primer. Back in the 1990s, before the birth of modern web hosting household names like GoDaddy and WP Engine, it wasn't exactly easy or cheap to publish a personal website. This all changed when GeoCities came on the scene in 1994.

The company gave anyone their own little space of the web if they wanted it, providing users with roughly 2 MB of space for free to create a website on any topic they wished. Millions took GeoCities up on its offer, creating their own homemade websites with web counters, flashing text, floating banners, auto-playing sound files, and Comic Sans. Unlike today's Wild Wild Internet, websites on GeoCities were organized into virtual neighborhoods, or communities, built around themes. "HotSprings" was dedicated to health and fitness, while "Area 51" was for sci-fi and fantasy nerds. There was a bottom-up focus on users and the content they created, a mirror of what the public internet was like in its infancy. Overall, at least 38 million webpages were built on GeoCities. At one point, it was the third most-visited domain online. Yahoo acquired GeoCities in 1999 for $3.6 billion. The company lived on for a decade more until Yahoo shut it down in 2009, deleting millions of sites.

Nearly two decades have passed since GeoCities, founded by David Bohnett, made its debut, and there is no doubt that the internet is a very different place than it was then. No longer filled with webpages on random subjects made by passionate folks, it now feels like we live in a cyberspace dominated by skyscrapers -- named Facebook, Google, Amazon, Twitter, and so on -- instead of neighborhoods. [...] We can, however, ask GeoCities' founder what he thinks of the internet of today, subsumed by social media networks, hate speech, and more corporate than ever. Bohnett now focuses on funding entrepreneurs through Baroda Ventures, an early-stage tech fund he founded, and on philanthropy with the David Bohnett Foundation, a nonprofit dedicated to social justice and social activism that he chairs. Right off the bat, Bohnett says something that strikes me. It may, in fact, be the sentence that summarizes the key distinction between the internet of the '90s-early 2000s and the internet we have today. "GeoCities was not about self-promotion," Bohnett told Gizmodo in an interview. "It was about sharing your interest and your knowledge." When asked to share his thoughts on the internet of today, Bohnett said: "... The heart of GeoCities was sharing your knowledge and passions about subjects with other people. It really wasn't about what you had to eat and where you've traveled. [...] It wasn't anything about your face." He added: "So, what has surprised me is how far away we've gotten from that original intent and how difficult it is [now]. It's so fractured these days for people to find individual communities. [...] I've been surprised at sort of the evolution away from self-generated content and more toward centralized programing and more toward sort of the self-promotion that we've seen on Facebook and Instagram and TikTok."

Bohnett went on to say that he thinks it's important to remember that "the pace of innovation on the internet continues to accelerate, meaning we're not near done. In the early days when you had dial up and it was the desktop, how could you possibly envision an Uber?"

"We're still in that trajectory where there's going to be various technologies and ways of communicating with each other, [as well as] wearable devices, blockchain technology, virtual reality, that will be as astounding as Uber seemed in the early days of GeoCities," added Bohnett. "I'm very, very excited about the future, which is why I continue to invest in early-stage startups because as I say, the pace of innovation accelerates and builds on top of itself. It's so exciting to see where we might go."

Thousands of Solana users collectively lost about $4.5 million worth of SOL and other tokens from Tuesday night into early Wednesday, and now there's a likely explanation for why: it's being blamed on a private key exploit tied to mobile software wallet Slope. From a report: On Wednesday afternoon, the official Solana Status Twitter account shared preliminary findings through collaboration between developers and security auditors, and said that "it appears affected addresses were at one point created, imported, or used in Slope mobile wallet applications."

"This exploit was isolated to one wallet on Solana, and hardware wallets used by Slope remain secure," the thread continues. "While the details of exactly how this occurred are still under investigation, but private key information was inadvertently transmitted to an application monitoring service." "There is no evidence the Solana protocol or its cryptography was compromised," the account added. Some Phantom wallets were also drained of their SOL and tokens in the attack, however it appears that those wallets' holders had previously interacted with a Slope wallet. "Phantom has reason to believe that the reported exploits are due to complications related to importing accounts to and from Slope," the Phantom team tweeted today.

An anonymous reader quotes a report from BleepingComputer: Cybersecurity researchers have uncovered a set of 3,207 mobile apps that are exposing Twitter API keys to the public, potentially enabling a threat actor to take over users' Twitter accounts that are associated with the app. The discovery belongs to cybersecurity firm CloudSEKE, which scrutinized large app sets for potential data leaks and found 3,207 leaking a valid Consumer Key and Consumer Secret for the Twitter API. When integrating mobile apps with Twitter, developers will be given special authentication keys, or tokens, that allow their mobile apps to interact with the Twitter API. When a user associates their Twitter account with this mobile app, the keys also will enable the app to act on behalf of the user, such as logging them in via Twitter, creating tweets, sending DMs, etc.

As having access to these authentication keys could allow anyone to perform actions as associated Twitter users, it is never recommended to store keys directly in a mobile app where threat actors can find them. CloudSEK explains that the leak of API keys is commonly the result of mistakes by app developers who embed their authentication keys in the Twitter API but forget to remove them when the mobile is released. [...] One of the most prominent scenarios of abuse of this access, according to CloudSEK, would be for a threat actor to use these exposed tokens to create a Twitter army of verified (trustworthy) accounts with large numbers of followers to promote fake news, malware campaigns, cryptocurrency scams, etc. "CloudSEK shared a list of impacted applications [...] with apps between 50,000 and 5,000,000 downloads," reports BleepingComputer. They are not disclosing the list because they are still vulnerable to exploitation and Twitter account takeover.

Indonesia has lifted its ban on Steam and Yahoo now that both companies complied with the country's restrictive laws that regulate online activity. From a report: The Indonesian Ministry of Communication and Information (Kominfo) announced the news in a translated update on Twitter, noting that Counter-Strike: Global Offensive and Dota 2 are back online as well. Last week, Indonesia blocked access to Steam, PayPal, Yahoo, Epic Games, and Origin after the companies failed to meet a deadline to register with the country's database. This requirement is bundled with a broader law, called MR5, that Indonesia first introduced in 2020. The law gives the Indonesian government the authority to order platforms to take down content considered illegal as well as request the data of specific users. In 2021, the digital rights group Electronic Frontier Foundation (EFF) called the policy "invasive of human rights." Although PayPal has yet to comply, Indonesia unblocked access to the service for five days starting July 31st to give users a chance to withdraw money and make payments. According to the Indonesian news outlet Antara News, PayPal reportedly plans on registering with the country's database soon.