The UK police plan to spend up to 75 million pounds ($102 million) to digitize their vast archive of VHS tapes, aiming to preserve evidence by converting analog media into digital files integrated with evidence management systems. The procurement includes both in-house solutions and outsourced services, with additional funding earmarked for converting other legacy formats like microfiche and DVDs. The Register reports: According to a tender notice published last week, Bluelight Commercial - a not-for-profit buyer that acts on behalf of the emergency services - says the police force requires either in-house technology or outsourced services to convert the arcane magnetic tape format to digital storage. The notice, which sets out procurement plans, says the framework agreement will help forces with the "conversion of analog media to digital records, including metadata for integration with a digital evidence management system."

In the first lot of the framework, Bluelight asks for in-house VHS media digitization software, hardware, and training to "enable a Police Force to convert VHS tapes to digital files." This chunk of the arrangement could be worth 50 million pounds ($68 million) for four years, excluding VAT. The second lot asks for outsourced VHS media digitization "for the provision of conversion services delivered completely by a third party with electronic files being returned securely to the customer force." The output is also set to be ingested by a digital evidence management solution. It could be worth up to 25 million pounds ($34 million) over the same period. In addition, Bluelight Commercial is looking for a provider to help with more niche media digitization, including converting microfiche, CD, DVDs to an electronic file format, in an arrangement which could be worth a total of up to 25 million pounds ($34 million).

An anonymous reader quotes a report from ZDNet: The Linux Foundation announced at the Open Source Summit in Denver that it will now host the Agent2Agent (A2A) protocol. Initially developed by Google and now supported by more than 100 leading technology companies, A2A is a crucial new open standard for secure and interoperable communication between AI agents. In his keynote presentation, Mike Smith, a Google staff software engineer, told the conference that the A2A protocol has evolved to make it easier to add custom extensions to the core specification. Additionally, the A2A community is working on making it easier to assign unique identities to AI agents, thereby improving governance and security.

The A2A protocol is designed to solve one of AI's most pressing challenges: enabling autonomous agents -- software entities capable of independent action and decision-making -- to discover each other, securely exchange information, and collaborate across disparate platforms, vendors, and frameworks. Under the hood, A2A does this work by creating an AgentCard. An AgentCard is a JavaScript Object Notation (JSON) metadata document that describes its purpose and provides instructions on how to access it via a web URL. A2A also leverages widely adopted web standards, such as HTTP, JSON-RPC, and Server-Sent Events (SSE), to ensure broad compatibility and ease of integration. By providing a standardized, vendor-neutral communication layer, A2A breaks down the silos that have historically limited the potential of multi-agent systems.

For security, A2A comes with enterprise-grade authentication and authorization built in, including support for JSON Web Tokens (JWTs), OpenID Connect (OIDC), and Transport Layer Security (TLS). This approach ensures that only authorized agents can participate in workflows, protecting sensitive data and agent identities. While the security foundations are in place, developers at the conference acknowledged that integrating them, particularly authenticating agents, will be a hard slog. Antje Barth, an Amazon Web Services (AWS) principal developer advocate for generative AI, explained what the adoption of A2A will mean for IT professionals: "Say you want to book a train ride to Copenhagen, then a hotel there, and look maybe for a fancy restaurant, right? You have inputs and individual tasks, and A2A adds more agents to this conversation, with one agent specializing in hotel bookings, another in restaurants, and so on. A2A enables agents to communicate with each other, hand off tasks, and finally brings the feedback to the end user."

Jim Zemlin, executive director of the Linux Foundation, said: "By joining the Linux Foundation, A2A is ensuring the long-term neutrality, collaboration, and governance that will unlock the next era of agent-to-agent powered productivity." Zemlin expects A2A to become a cornerstone for building interoperable, multi-agent AI systems.

The U.N. Human Rights Council passed a motion on climate change and human rights by consensus Tuesday after the Marshall Islands withdrew a divisive amendment calling for states to recommit to a fossil fuel phase-out. The motion calls on countries "to contribute to the global efforts" against climate change and follows the council's 2021 recognition of access to a clean and healthy environment as a fundamental right.

Oil-producing countries including Saudi Arabia and Kuwait had voiced opposition to the original fossil fuel phrasing during negotiations. Instead, the final motion referenced "the imperative of defossilizing our economies" in a footnote, allowing passage without a vote where the outcome had been uncertain.

An impostor pretending to be Secretary of State Marco Rubio contacted foreign ministers, a U.S. governor and a member of Congress by sending them voice and text messages that mimic Rubio's voice and writing style using AI-powered software, Washington Post reported Tuesday, citing a senior U.S. official and a State Department cable. From the report: U.S. authorities do not know who is behind the string of impersonation attempts but they believe the culprit was probably attempting to manipulate powerful government officials "with the goal of gaining access to information or accounts," according to a cable sent by Rubio's office to State Department employees.

Using both text messaging and the encrypted messaging app Signal, which the Trump administration uses extensively, the impostor "contacted at least five non-Department individuals, including three foreign ministers, a U.S. governor, and a U.S. member of Congress," said the cable, dated July 3. The impersonation campaign began in mid-June when the impostor created a Signal account using the display name "Marco.Rubio@state.gov" to contact unsuspecting foreign and domestic diplomats and politicians, said the cable.

Microsoft, OpenAI, and Anthropic will announce Tuesday the launch of a $22.5 million AI training center for members of the American Federation of Teachers, according to details inadvertently published early on a publicly accessible YouTube livestream. The National Academy for AI Instruction will be based in New York City and aims to equip kindergarten through 12th grade instructors with "the tools and confidence to bring AI into the classroom in a way that supports learning and opportunity for all students."

The initiative will provide free AI training and curriculum to teachers in the second-largest US teachers' union, which represents about 1.8 million workers including K-12 teachers, school nurses and college staff. The academy builds on Microsoft's December 2023 partnership with the AFL-CIO, the umbrella organization that includes the American Federation of Teachers.

An anonymous reader quotes a report from The Guardian: The herbicide ingredient used to replace glyphosate in Roundup and other weedkiller products can kill gut bacteria and damage organs in multiple ways, new research shows. The ingredient, diquat, is widely employed in the US as a weedkiller in vineyards and orchards, and is increasingly sprayed elsewhere as the use of controversial herbicide substances such as glyphosate and paraquat drops in the US. But the new piece of data suggests diquat is more toxic than glyphosate, and the substance is banned over its risks in the UK, EU, China and many other countries. Still, the EPA has resisted calls for a ban, and Roundup formulas with the ingredient hit the shelves last year. [...]

Diquat is also thought to be a neurotoxin, carcinogen and linked to Parkinson's disease. An October analysis of EPA data by the Friends of the Earth non-profit found it is about 200 times more toxic than glyphosate in terms of chronic exposure. [...] The new review of scientific literature in part focuses on the multiple ways in which diquat damages organs and gut bacteria, including by reducing the level of proteins that are key pieces of the gut lining. The weakening can allow toxins and pathogens to move from the stomach into the bloodstream, and trigger inflammation in the intestines and throughout the body. Meanwhile, diquat can inhibit the production of beneficial bacteria that maintain the gut lining. Damage to the lining also inhibits the absorption of nutrients and energy metabolism, the authors said.

The research further scrutinizes how the substance harms the kidneys, lungs and liver. Diquat "causes irreversible structural and functional damage to the kidneys" because it can destroy kidney cells' membranes and interfere with cell signals. The effects on the liver are similar, and the ingredient causes the production of proteins that inflame the organ. Meanwhile, it seems to attack the lungs by triggering inflammation that damages the organ's tissue. More broadly, the inflammation caused by diquat may cause multiple organ dysfunction syndrome, a scenario in which organ systems begin to fail. The authors note that many of the studies are on rodents and more research on low, long-term exposure is needed. The report notes that the EPA is not reviewing the chemical, "and even non-profits that push for tighter pesticide regulations have largely focused their attention elsewhere."

"[T]hat was in part because U.S. pesticide regulations are so weak that advocates are tied up with battles over ingredients like glyphosate, paraquat and chlorpyrifos -- substances that are banned elsewhere but still widely used here. Diquat is 'overshadowed' by those ingredients."

An anonymous reader quotes a report from 404 Media: For someone who says she is fighting AI bot scrapers just in her free time, Xe Iaso seems to be putting up an impressive fight. Since she launched it in January, Anubis, a "program is designed to help protect the small internet from the endless storm of requests that flood in from AI companies," has been downloaded nearly 200,000 times, and is being used by notable organizations including GNOME, the popular open-source desktop environment for Linux, FFmpeg, the open-source software project for handling video and other media, and UNESCO, the United Nations organization for educations, science, and culture. [...]

"Anubis is an uncaptcha," Iaso explains on her site. "It uses features of your browser to automate a lot of the work that a CAPTCHA would, and right now the main implementation is by having it run a bunch of cryptographic math with JavaScript to prove that you can run JavaScript in a way that can be validated on the server." Essentially, Anubis verifies that any visitor to a site is a human using a browser as opposed to a bot. One of the ways it does this is by making the browser do a type of cryptographic math with JavaScript or other subtle checks that browsers do by default but bots have to be explicitly programmed to do. This check is invisible to the user, and most browsers since 2022 are able to complete this test. In theory, bot scrapers could pretend to be users with browsers as well, but the additional computational cost of doing so on the scale of scraping the entire internet would be huge. This way, Anubis creates a computational cost that is prohibitively expensive for AI scrapers that are hitting millions and millions of sites, but marginal for an individual user who is just using the internet like a human.

Anubis is free, open source, lightweight, can be self-hosted, and can be implemented almost anywhere. It also appears to be a pretty good solution for what we've repeatedly reported is a widespread problem across the internet, which helps explain its popularity. But Iaso is still putting a lot of work into improving it and adding features. She told me she's working on a non cryptographic challenge so it taxes users' CPUs less, and also thinking about a version that doesn't require JavaScript, which some privacy-minded disable in their browsers. The biggest challenge in developing Anubis, Iaso said, is finding the balance. "The balance between figuring out how to block things without people being blocked, without affecting too many people with false positives," she said. "And also making sure that the people running the bots can't figure out what pattern they're hitting, while also letting people that are caught in the web be able to figure out what pattern they're hitting, so that they can contact the organization and get help. So that's like, you know, the standard, impossible scenario."

Leaders of the BRICS group of developing nations addressed the shared challenges of global warming on Monday, the final day of their summit in Rio de Janeiro, demanding that wealthy nations fund mitigation of greenhouse gas emissions in poorer nations. From a report: In his opening remarks, Brazilian President Luiz Inacio Lula da Silva, who will host the United Nations climate summit in November, also blasted denialism of the climate emergency, indirectly criticizing U.S. President Donald Trump's decision to pull his country out of the 2015 Paris Agreement.

"Today, denialism and unilateralism are eroding past achievements and harming our future," he said. "The Global South is in a position to lead a new development paradigm without repeating the mistakes of the past." Trump took issue on Sunday with veiled criticism from the BRICS group, accusing the bloc of having "anti-American policies" and threatening them with extra 10% tariffs.

The European Union is holding back on signing a joint climate action pledge with China at a summit this month to mark a half-century of diplomatic ties, a top climate official told the Financial Times in remarks published on Monday. Reuters: The EU's climate targets are among the world's most ambitious, but they have been based entirely on domestic emissions cuts. Now the bloc faces a mid-September deadline to submit a new 2035 climate target to the United Nations.

Brussels has refused Beijing's repeated requests for a mutual climate commitment after the summit of the world's second- and third-largest economies, unless China promises to do more to cut greenhouse gas emissions, EU officials said. "There is only merit in having a declaration from our perspective if there are also content nuts to be cracked and ambition to be displayed," Climate Commissioner Wopke Hoekstra told the paper.

Americans live in separate economic realities: Those with a job are likely to stay employed, but those without one are likely to stay unemployed. From a report: Welcome to the low-hire, low-fire labor market. Private-sector layoffs are at historic lows, but that masks a dreadful outlook for unemployed workers or those unhappy with their current positions.

[...] "We're in a complex jobs market -- it's not falling apart but the lack of dynamism, the lack of churn and the lack of hiring has been punctuated in the first half of the year," says ADP chief economist Nela Richardson. "Many employers are loath to lay off workers until they see the whites of the eyes of a recession, having had such problems finding suitable workers in the first place," David Kelly, chief global strategist at J.P. Morgan Asset Management, wrote in a recent note.

"A growing group of young, college-educated Americans are struggling to find work," reports the Minnesota Star Tribune, "as the unemployment rate for recent graduates outpaces overall unemployment for the first time in decades." While the national unemployment rate has hovered around 4% for months, the rate for 20-something degree holders is nearly 6%, data from the Federal Reserve Bank of New York shows. [And for young workers (ages 22 to 27) without a degree it's 6.9%.] The amount of time young workers report being unemployed is also on the rise.

Economists attribute some of the shift to normal post-pandemic cooling of labor market, which is making it harder for job-seekers of all ages to land a gig. But there's also widespread economic uncertainty causing employers to pull back on hiring and signs AI could replace entry-level positions....

Business schools nationwide were among the first to see the labor market shift in early 2023 as tech industry cuts bled into other sectors, said Maggie Tomas, Business Career Center executive director at Carlson. Tariffs and stock market volatility have only added to the uncertainty, she said. In 2022, when workers had their pick of jobs, 98% of full-time Carlson MBA graduates had a job offer in a field related to their degree within three months of graduation, according to the school. That number, which Tomas said is usually 90% or higher, dropped to 89% in 2023 and 83% in 2024.

Part of the challenge, she said, is recent graduates are now competing with more experienced workers who are re-entering the market amid layoffs and hiring freezes... After doing a lot of hiring in 2021 and 2022, Securian Financial in St. Paul is prioritizing internal hires, said Human Resources Director Leah Henrikson. Many entry-level roles have gone to current employees looking for a change, she said. "We are still looking externally, it's just the folks that we are looking for externally tend ... to fulfill a specific skill gap we may have at that moment in time," Henrikson said.

"California residents who lit illegal fireworks over the July 4 holiday may be in for a nasty surprise in the mail thanks to covert fire department operations," reports SFGate.

"A number of California cities, including Sacramento, have begun using drones to locate people shooting off illegal fireworks." From Wednesday to Saturday night, the Sacramento Fire Department's special fireworks task force patrolled the streets with unmarked cars and drones, focusing on neighborhoods where they've had prior complaints. Task force officers and the drones took photos of the illegal activity, and within 30 days the property owner where the fireworks were used could receive a fine in the mail...

This year, Sacramento upped the fine to $1,000 for the first firework, $2,500 for the second and $5,000 per firework after that. If you lit a firework on city property, such as a park or a school, the fine goes up to $10,000 each. There's no limit to how many fines you can be issued... This year, a number of cities across the state announced they would be using drones to find scofflaws, among them Indio, Riverside, Hemet, Brea and towns in Tulare County...

Fox40 reported on Saturday that around 60 citations were being prepared in Sacramento, with more likely on the way as fire officials review surveillance footage.
Last year for illegal fireworks, one Sacramento-area resident received a $100,000 fine.

The Free Software Foundation's services face "ongoing (and increasing) distributed denial of service (DDoS) attacks," senior systems administrator Ian Kelling wrote Wednesday. But "Even though we are under active attack, gnu.org, ftp.gnu.org, and savannah.gnu.org are up with normal response times at the moment, and have been for the majority of this week, largely thanks to hard work from the Savannah hackers Bob, Corwin, and Luke who've helped us, your sysadmins."

"We've shielded these sites for almost a full year of intense attacks now, and we'll keep on fighting these attacks for as long as they continue." Our infrastructure has been under attack since August 2024. Large Language Model (LLM) web crawlers have been a significant source of the attacks, and as for the rest, we don't expect to ever know what kind of entity is targeting our sites or why.

- In the fall Bulletin, we wrote about the August attack on gnu.org. That attack continues, but we have mitigated it. Judging from the pattern and scope, the goal was likely to take the site down and it was not an LLM crawler. We do not know who or what is behind the attack, but since then, we have had more attacks with even higher severity.

- To begin with, GNU Savannah, the FSF's collaborative software development system, was hit by a massive botnet controlling about five million IPs starting in January. As of this writing, the attack is still ongoing, but the botnet's current iteration is mitigated. The goal is likely to build an LLM training dataset. We do not know who or what is behind this.

- Furthermore, gnu.org and ftp.gnu.org were targets in a new DDoS attack starting on May 27, 2025. Its goal seems to be to take the site down. It is currently mitigated. It has had several iterations, and each has caused some hours of downtime while we figured out how to defend ourselves against it. Here again, the goal was likely to take our sites down and we do not know who or what is behind this.

- In addition, directory.fsf.org, the server behind the Free Software Directory, has been under attack since June 18. This likely is an LLM scraper designed to specifically target Media Wiki sites with a botnet. This attack is very active and now partially mitigated...

Even though we are under active attack, gnu.org, ftp.gnu.org, and savannah.gnu.org are up with normal response times at the moment, and have been for the majority of this week, largely thanks to hard work from the Savannah hackers Bob, Corwin, and Luke who've helped us, your sysadmins. We've shielded these sites for almost a full year of intense attacks now, and we'll keep on fighting these attacks for as long as they continue.
The full-time FSF tech staff is just two systems administrators, "and we currently lack the funds to hire more tech staff any time soon," Kelling points out. Kelling titled his post "our small team vs millions of bots," suggesting that supporters purchase FSF memberships "to improve our staffing situation... Can you join us in our crucial work to guard user freedom and defy dystopia?"

Kelling also points out they're also facing "run-of-the-mill standard crawlers, SEO crawlers, crawlers pretending to be normal users, crawlers pretending to be other crawlers, uptime systems, vulnerability scanners, carrier-grade network address translation, VPNs, and normal browsers hitting our sites..."

"Some of the abuse is not unique to us, and it seems that the health of the web has some serious problems right now."

"A computer science degree used to be a golden ticket to the promised land of jobs," a college senior tells the New York Times. But "That's no longer the case."

The article notes that in the last three years there's been a 65% drop from companies seeking workers with two years of experience or less (according to an analysis by technology research/education organization CompTIA), with tech companies "relying more on AI for some aspects of coding, eliminating some entry-level work."

So what do college professors teach when AI "is coming fastest and most forcefully to computer science"? Computer science programs at universities across the country are now scrambling to understand the implications of the technological transformation, grappling with what to keep teaching in the AI era. Ideas range from less emphasis on mastering programming languages to focusing on hybrid courses designed to inject computing into every profession, as educators ponder what the tech jobs of the future will look like in an AI economy... Some educators now believe the discipline could broaden to become more like a liberal arts degree, with a greater emphasis on critical thinking and communication skills.

The National Science Foundation is funding a program, Level Up AI, to bring together university and community college educators and researchers to move toward a shared vision of the essentials of AI education. The 18-month project, run by the Computing Research Association, a research and education nonprofit, in partnership with New Mexico State University, is organising conferences and roundtables and producing white papers to share resources and best practices. The NSF-backed initiative was created because of "a sense of urgency that we need a lot more computing students — and more people — who know about AI in the workforce," said Mary Lou Maher, a computer scientist and a director of the Computing Research Association.

The future of computer science education, Maher said, is likely to focus less on coding and more on computational thinking and AI literacy. Computational thinking involves breaking down problems into smaller tasks, developing step-by-step solutions and using data to reach evidence-based conclusions. AI literacy is an understanding — at varying depths for students at different levels — of how AI works, how to use it responsibly and how it is affecting society. Nurturing informed skepticism, she said, should be a goal.
The article raises other possibilities. Experts also suggest the possibility of "a burst of technology democratization as chatbot-style tools are used by people in fields from medicine to marketing to create their own programs, tailored for their industry, fed by industry-specific data sets." Stanford CS professor Alex Aiken even argues that "The growth in software engineering jobs may decline, but the total number of people involved in programming will increase."

Last year, Carnegie Mellon actually endorsed using AI for its introductory CS courses. The dean of the school's undergraduate programs believes that coursework "should include instruction in the traditional basics of computing and AI principles, followed by plenty of hands-on experience designing software using the new tools."

"Microsoft has released the source code for the GitHub Copilot Chat extension for VS Code under the MIT license," reports BleepingComputer. This provides the community access to the full implementation of the chat-based coding assistant, including the implementation of "agent mode," what contextual data is sent to large language models (LLMs), and the design of system prompts. The GitHub repository hosting the code also details telemetry collection mechanisms, addressing long-standing questions about data transparency in AI-assisted coding tools...

As the VS Code team explained previously, shifts in AI tooling landscape like the rapid growth of the open-source AI ecosystem and a more level playing field for all have reduced the need for secrecy around prompt engineering and UI design. At the same time, increased targeting of development tools by malicious actors has increased the need for crowdsourcing contributions to rapidly pinpoint problems and develop effective fixes. Essentially, openness is now considered superior from a security perspective.
"If you've been hesitant to adopt AI tools because you don't trust the black box behind them, this move opensources-github-copilot-chat-vscode/offers something rare these days: transparency," writes Slashdot reader BrianFagioli" Now that the extension is open source, developers can audit how agent mode actually works. You can also dig into how it manages your data, customize its behavior, or build entirely new tools on top of it. This could be especially useful in enterprise environments where compliance and control are non negotiable.

It is worth pointing out that the backend models powering Copilot remain closed source. So no, you won't be able to self host the whole experience or train your own Copilot. But everything running locally in VS Code is now fair game. Microsoft says it is planning to eventually merge inline code completions into the same open source package too, which would make Copilot Chat the new hub for both chat and suggestions.