Action is needed now to reduce ultra-processed food (UPF) in diets worldwide because of [1]their threat to health , say international experts in a global review of research. From a report:

> They say the way we eat is changing - with a move away from fresh, whole foods to cheap, highly-processed meals - which is increasing our risk of a range of chronic diseases, including obesity and depression. Writing in The Lancet, the researchers say governments need [2]"to step up" and introduce warnings and higher taxes on UPF products, to help fund access to more nutritious foods.

>

> [...] This review of evidence on the impact of UPFs on health, carried out by 43 global experts and based on 104 long-term studies, suggests these foods are linked to a greater risk of 12 health conditions. These include type 2 diabetes, cardiovascular disease, kidney disease, depression and dying prematurely from any cause.



[1] https://www.bbc.com/news/articles/cy4pjjzd784o

[2] https://www.thelancet.com/series-do/ultra-processed-food

The EU's cookie consent policies have been an annoying and unavoidable part of browsing the web in Europe since their introduction in 2018. But [1]the cookie nightmare is about to crumble thanks to some big proposed changes announced by the European Commission today. From a report:

> Instead of having to click accept or reject on a cookie pop-up for every website you visit in Europe, the EU is preparing to enforce rules that will allow users to set their preferences for cookies at the browser level. "People can set their privacy preferences centrally -- for example via the browser -- and websites must respect them," says the EU. "This will drastically simplify users' online experience."

>

> This key change is part of a new Digital Package of proposals to simplify the EU's digital rules, and will initially see cookie prompts change to be a simplified yes or no single-click prompt ahead of the "technological solutions" eventually coming to browsers. Websites will be required to respect cookie choices for at least six months, and the EU also wants website owners to not use cookie banners for "harmless uses" like counting website visits, to lessen the amount of pop-ups.



[1] https://www.theverge.com/news/823788/europe-cookie-prompt-browser-changes-proposal

An anonymous reader shares a report:

> This summer, Oslo's public-transport authority drove a Chinese electric bus deep into a decommissioned mine inside a nearby mountain to answer a question: Could it be hacked? Isolated by rock from digital interference, cybersecurity experts [1]came back with a qualified yes : The bus could in theory be remotely disabled using the control system for the battery.

>

> The revelation, presented at a recent public-transport conference, has spurred officials in Denmark and the U.K. to start their own investigations into Chinese vehicles. It has also fed into broader security concerns across Europe about the growing prevalence of Chinese-made equipment in the region's energy and telecommunications infrastructure.

>

> The worry is the same for autos, solar panels and other connected devices: that mechanisms used for wirelessly delivering system updates could also be exploited by a hostile government or third-party hacker to compromise critical networks. [...] The Oslo transport authority, Ruter, said the bus's mobile-network connection via a Romanian SIM card gave manufacturer Yutong access to the control system for battery and power supply. Ruter said it is addressing the vulnerability by developing firewalls and delaying the signals sent to the vehicles, among other solutions.



[1] https://www.msn.com/en-us/money/other/can-chinese-made-buses-be-hacked-norway-drove-one-down-a-mine-to-find-out/ar-AA1QKZ5m

Britain said on Wednesday it would [1]ban the resale of tickets to concerts, sport and other live events for profit, disrupting ticket touts and the platforms that benefit from their activities. From a report:

> Culture Secretary Lisa Nandy said touts were ripping off fans by using bots to snap up batches of tickets for coveted shows and reselling them at sky-high prices. "Our new proposals will shut down the touts' racket and make world-class music, comedy, theatre and sport affordable for everyone," she said, after the government had promised action.



[1] https://www.reuters.com/world/uk/uk-ban-resale-tickets-profit-protect-fans-2025-11-19/

Chinese economist Gao Shanwen told a Washington panel in December that China's real GDP growth might be around 2% rather than the official figure near 5%. By January, Gao was no longer chief economist at SDIC Securities and went silent for almost a year. As [1]FT points out in a long piece , China does not publish quarterly GDP breakdowns showing consumption, investment and net exports. Every other major economy produces these figures.

The IMF in 2024 gave China a C grade for national accounts. The rating puts China on par with India and below Vietnam. Fixed asset investment data showed negative growth in 2025 for only the second time in decades. Property investment has fallen consistently since 2022. But official GDP investment data shows no signs of declining.

The National Bureau of Statistics stopped publishing sectoral breakdowns of fixed asset investment in 2018. It discontinued a price series in 2021 and a land sales series in 2023. Beijing has restricted researcher access rather than addressing longstanding questions about data quality. China says it disagrees with the IMF's C rating. The government argued its production-side GDP approach is appropriate.

Why does it matter? China is too large and too interconnected with the global economy for unreliable data to be a purely domestic issue. The lack of transparency creates problems for everyone trying to make decisions based on understanding China's economic trajectory. As Eswar Prasad, a professor at Cornell University and former IMF official, told FT: China is one of the two biggest economies in the world. "It would be nice to know what is really going on."



[1] https://www.ft.com/content/5b9e7440-51d9-44fa-972c-5f00faf91e62

Boston Dynamics' Spot robot is now [1]deployed by more than 60 bomb squads and SWAT teams across the US and Canada. The 75-pound four-legged machine starts at around $100,000 and has been used in armed standoffs, hostage rescues and hazardous materials incidents since its commercial debut five years ago. The Massachusetts State Police operates two Spot units purchased in 2020 and 2022. Each cost about $250,000 including add-ons funded through state grants. Last year one of the robots helped corner a suspect who had taken his mother hostage at knifepoint in Hyannis. Houston operates three units and Las Vegas has one.

ICE recently spent around $78,000 on a similar robot from Canadian manufacturer Icor Technology that can also deploy smoke bombs. Civil liberties groups have raised concerns about normalizing militarized policing. The NYPD suspended its limited Spot program in 2021 after public backlash over cost and surveillance concerns before later reinstating it and purchasing two units. The Electronic Frontier Foundation says there should be state and federal laws providing guidance on appropriate use of such technology. About 2,000 Spot units now operate globally.



[1] https://www.msn.com/en-us/technology/artificial-intelligence/a-100-000-robot-dog-is-becoming-standard-in-policing-and-raising-ethical-alarms/ar-AA1QFtH2

An anonymous reader shares a report:

> Federal health officials have linked two massive US measles outbreaks, confirming that the country is about [1]two months away from losing its measles elimination status , according to [2]a report by The New York Times . The Times obtained a recording of a call during which officials from the Centers for Disease Control and Prevention confirmed to state health departments that the ongoing measles outbreak at the border of Arizona and Utah is a continuation of the explosive outbreak in West Texas that began in mid- to late-January. That is, the two massive outbreaks are being caused by the same subtype of measles virus.

>

> This is a significant link that hasn't previously been reported despite persistent questions from journalists and concerns from health experts, particularly in light of Canada losing its elimination status last week. The loss of an elimination status means that measles will once again be considered endemic to the US, an embarrassing public health backslide for a vaccine-preventable disease.



[1] https://arstechnica.com/health/2025/11/cdc-data-confirms-us-is-2-months-away-from-losing-measles-elimination-status/

[2] https://www.nytimes.com/2025/11/17/health/measles-us-elimination-status-outbreaks.html

Tsinghua University collected 4,986 AI and machine learning patents between 2005 and the end of 2024. The Beijing institution has received more than 900 patents last year alone. The total [1]exceeds the combined patent count from MIT, Stanford, Princeton and Harvard during the same period. China now accounts for more than half of all active patent families globally in AI and machine learning fields, according to data analytics service LexisNexis.

The university also has more AI research papers among the 100 most cited than any other school at last count. The US still holds the most influential AI patents and the top performing models. Harvard and MIT consistently rank ahead of Tsinghua in patent influence. American institutions produced 40 notable AI models in 2024 compared to 15 from Chinese organizations, according to Stanford's AI Index Report. China's share of the world's elite AI researchers -- the top 2% -- rose from 10% in 2019 to 26% in 2022. The US share fell from 35% to 28% during the same period, according to the Information Technology & Innovation Foundation.



[1] https://www.bloomberg.com/news/features/2025-11-18/china-s-tsinghua-university-is-beating-us-in-the-race-for-ai-patents?accessToken=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzb3VyY2UiOiJTdWJzY3JpYmVyR2lmdGVkQXJ0aWNsZSIsImlhdCI6MTc2MzUyMzA1MywiZXhwIjoxNzY0MTI3ODUzLCJhcnRpY2xlSWQiOiJUNVhaVDBHUTFZVEIwMCIsImJjb25uZWN0SWQiOiJDNTc5RDIwMDZBQjQ0RjRDODkwMTU0M0U0ODMxNkJCNiJ9.9GZX9DNQ6zsJD7iPMnSx7jyyBHlMTeCn3jDWeyEkLS8

Cloudflare [1]suffered its worst network outage in six years on Tuesday, beginning at 11:20 UTC. The disruption prevented the content delivery network from routing traffic for roughly three hours. The failure, writes Cloudflare in [2]a blog post , originated from a database permissions change deployed at 11:05 UTC. The modification altered how a database query returned information about bot detection features. The query began returning duplicate entries. A configuration file used to identify automated traffic doubled in size and spread across the network's machines. Cloudflare's traffic routing software reads this file to distinguish bots from legitimate users. The software had a built-in limit of 200 bot detection features. The enlarged file contained more than 200 entries. The software crashed when it encountered the unexpected file size.

Users attempting to access websites behind Cloudflare's network received error messages. The outage affected multiple services. Turnstile security checks failed to load. The Workers KV storage service returned elevated error rates. Users could not log into Cloudflare's dashboard. Access authentication failed for most customers.

Engineers initially suspected a coordinated attack. The configuration file was automatically regenerated every five minutes. Database servers produced either correct or corrupted files during a gradual system update. Services repeatedly recovered and failed as different versions of the file circulated. Teams stopped generating new files at 14:24 UTC and manually restored a working version. Most traffic resumed by 14:30 UTC. All systems returned to normal at 17:06 UTC.



[1] https://tech.slashdot.org/story/25/11/18/120222/cloudflare-outage-knocks-many-popular-websites-offline

[2] https://blog.cloudflare.com/18-november-2025-outage/

An anonymous reader shares a report:

> California-based TP-Link says it may take a sales hit of more than $1 billion because of erroneous reports that the networking company's technology has been "infiltrated" by Beijing. In a lawsuit, TP-Link claims its competitor, Netgear, [1]orchestrated a smear by planting false claims with journalists and internet influencers with the goal of scaring off customers.

>

> Closely held TP-Link, which makes wireless routers, alleges in a complaint filed Monday that Netgear's campaign "threatens injury to well over a billion dollars in sales" and violates a 2024 settlement of a patent fight. That accord, in which TP-Link agreed to pay Netgear $135 million, includes a provision that the public company promises not to disparage its rival, according to the suit in Delaware federal court.

>

> The suit comes as TP-Link faces growing scrutiny in Washington over national-security issues. US lawmakers from both parties have expressed concern that TP-Link's wireless equipment could be exploited by Chinese hackers following a series of attacks on its routers.



[1] https://www.msn.com/en-us/politics/government/netgear-accused-by-rival-of-china-smear-to-stoke-security-fear/ar-AA1QHgJN

A Chinese man who cryogenically preserved his wife after her death has sparked a heated online debate after it emerged he [1]began dating a new partner in 2020 . Some argue it's natural for him to move on, while others say he's being selfish or disrespectful to both his late wife and his current partner. The BBC reports:

> As a sign of his devotion, Gui Junmin decided to freeze his wife Zhan Wenlian's body after she died from lung cancer in 2017, aged 49, making her China's first cryogenically preserved person. But after a November interview revealed he had been dating a different partner since 2020, Chinese social media has been torn on Mr Junmin's predicament. Whilst some asked why the 57-year-old didn't just "let go" another commenter remarked he appeared to be "most devoted to himself."

>

> After Zhan Wenlian was given months to live by doctors, Gui Junmin decided to use cryonics - which is scientifically unproven - to preserve her body once she died. Following her death, he signed a 30-year agreement to preserve his wife's frozen body with the Shandong Yinfeng Life Science Research Institute. Since then, Zhan's body has been stored in a 2,000-litre container at the institute in a vat of -190C liquid nitrogen.

>

> Chinese newspaper Southern Weekly revealed that although Mr Junmin lived alone for two years after the procedure, in 2020 he began dating again, despite his wife remaining in cryopreservation. He told the newspaper that a severe gout attack which left him unable to move for two days began to change his mind about the benefits of living alone. Soon after, he started seeing his current partner Wang Chunxia, although Mr Junmin suggested to the paper the love was only "utilitarian" and that she hadn't "entered" his heart.



[1] https://www.bbc.com/news/articles/c78z2m43ykjo

An anonymous reader quotes a report from CNBC:

> The Trump administration will [1]provide Constellation Energy with a $1 billion loan to restart the Crane Clean Energy Center nuclear plant in Pennsylvania, Department of Energy officials said Tuesday. Previously known as Three Mile Island Unit 1, the plant is expected to start generating power again in 2027. Constellation unveiled plans to rename and restart the reactor [2]in Sept. 2024 through a power purchase agreement with Microsoft to support the tech company's data center demand in the region.

>

> Three Mile Island Unit 1 ceased operations [3]in 2019 , one of a dozen reactors that closed in recent years as nuclear struggled to compete against cheap natural gas. It sits on the same site as Three Mile Island Unit 2, the reactor that partially melted down in 1979 in the worst nuclear accident in U.S. history. The loan would cover the majority to the project's estimated cost of $1.6 billion. The first advance to Constellation is expected in the first quarter of 2026, said Greg Beard, senior advisor to the Energy Department's Loan Programs Office, in a call with reporters. The loan comes with a guarantee from Constellation that it will protect taxpayer money, Beard said.



[1] https://www.cnbc.com/2025/11/18/trump-nuclear-three-mile-island-crane-loan-constellation-ceg.html

[2] https://slashdot.org/story/24/09/20/156206/microsoft-taps-three-mile-island-nuclear-plant-to-power-ai

[3] https://hardware.slashdot.org/story/19/05/08/2127223/three-mile-island-nuclear-plant-to-close-latest-symbol-of-struggling-industry

MI5 has warned U.K. lawmakers that Chinese intelligence operatives are [1]using LinkedIn and recruitment fronts to target them for information gathering and long-term cultivation. PBS reports:

> Writing to lawmakers, House of Commons Speaker Lindsay Hoyle said a new MI5 "espionage alert" warned that Chinese nationals were "using LinkedIn profiles to conduct outreach at scale" on behalf of the Chinese Ministry of State Security. "Their aim is to collect information and lay the groundwork for long-term relationships, using professional networking sites, recruitment agents and consultants acting on their behalf," he said. MI5 issued the alert because the activity was "targeted and widespread," he added.

>

> The MI5 alert cited LinkedIn profiles of two women, Amanda Qiu and Shirly Shen, and said other similar recruiters' profiles were acting as fronts for espionage. Home Office Minister Dan Jarvis said that apart from parliamentary staff, others including economists, think tank consultants and government officials have been similarly targeted. Jarvis said the government is rolling out a series of measures to tackle the risk, including investing 170 million pounds ($224 million) to renew encrypted technology used by civil servants to safeguard sensitive work. Opposition parties say authorities are not doing enough and are too wary of jeopardizing trade ties with China.



[1] https://www.pbs.org/newshour/world/chinese-spies-are-trying-to-reach-uk-lawmakers-via-linkedin-mi5-warns

Mexico has finally [1]lifted its long-running Tor ban for the main government portal, allowing privacy-focused users, journalists, and activists to access gob.mx again after more than a decade of blocking. That said, the open data portal and the former Tor-compatible whistleblower system remain inaccessible. CyberInsider reports:

> The development follows a long period of digital censorship that spanned two full six-year presidential terms, those of Enrique Pena Nieto and Andres Manuel Lopez Obrador, and continued into the early months of Claudia Sheinbaum Pardo's current administration. Research conducted by Jacobo Najera and Miguel Trujillo, published in October 2023, documented that 21 federal government agencies were blocking traffic from the Tor network, effectively excluding privacy-conscious users from vital public resources and services.



[1] https://cyberinsider.com/mexico-partially-lifts-longstanding-website-ban-on-tor-network/

A NordPass analysis found that Gen Z is actually [1]worse at password security than older generations , with "12345" topping their list while "123456" dominates among everyone else. The Register reports:

> And while there were a few more "skibidis" among the Zoomer dataset compared to those who came before them, the trends were largely similar. Variants on the "123456" were among the most common for all age groups, with that exact string proving to be the most common among all users -- the sixth time in seven years it holds the undesirable crown.

>

> Some of the more adventurous would stretch to "1234567," while budding cryptologists shored up their accounts by adding an 8 or even a 9 to the mix. However, according to [2]Security.org 's password security checker, a computer could crack any of these instantly. Most attackers would not even need to expend the resources required to reveal the password, given how commonly used they are. They could just spray a list of known passwords at an authentication API and secure a quick win.



[1] https://www.theregister.com/2025/11/18/zoomer_passwords/

[2] http://security.org/

An anonymous reader quotes a report from ZDNet:

> At KubeCon North America 2025 in Atlanta, the Cloud Native Computing Foundation (CNCF)'s leaders [1]predicted an enormous surge in cloud-native computing , driven by the explosive growth of [2]AI inference workloads. How much growth? They're predicting hundreds of billions of dollars in spending over the next 18 months. [...] Where cloud-native computing and AI inference come together is when AI is no longer a separate track from cloud-native computing. Instead, AI workloads, particularly inference tasks, are fueling a new era where intelligent applications require scalable and reliable infrastructure. That era is unfolding because, said [CNCF Executive Director Jonathan Bryce], "AI is moving from a few 'Training supercomputers' to widespread 'Enterprise Inference.' This is fundamentally a cloud-native problem. You, the platform engineers, are the ones who will build the open-source platforms that unlock enterprise AI."

>

> "Cloud native and AI-native development are merging, and it's really an incredible place we're in right now," said CNCF CTO Chris Aniszczyk. The data backs up this opinion. For example, Google has reported that its internal inference jobs have processed 1.33 quadrillion tokens per month recently, up from 980 trillion just months before. [...] Aniszczyk added that cloud-native projects, especially Kubernetes, are adapting to serve inference workloads at scale: "Kubernetes is obviously one of the leading examples as of the last release the dynamic resource allocation feature enables GPU and TPU hardware abstraction in a Kubernetes context." To better meet the demand, the CNCF announced the Certified Kubernetes AI Conformance Program, which aims to make AI workloads as portable and reliable as traditional cloud-native applications.

>

> "As AI moves into production, teams need a consistent infrastructure they can rely on," Aniszczyk stated during his keynote. "This initiative will create shared guardrails to ensure AI workloads behave predictably across environments. It builds on the same community-driven standards process we've used with Kubernetes to help bring consistency as AI adoption scales." What all this effort means for business is that AI inference spending on cloud-native infrastructure and services will reach into the hundreds of billions within the next 18 months. That investment is because CNCF leaders predict that enterprises will race to stand up reliable, cost-effective AI services.



[1] https://www.zdnet.com/article/cloud-native-computing-is-poised-to-explode-thanks-to-ai-inference-work/

[2] https://www.ibm.com/think/topics/ai-inference

Another highly influential Linux kernel engineer, David Hildenbrand, [1]is leaving Red Hat after a decade of major contributions to memory management, virtualization, and VirtIO. His recent kernel patch updates his maintainer info to a [2]kernel.org address , signaling his departure. He hasn't yet said where he's headed next. Phoronix reports:

> David Hildenbrand serves as a reviewer for the HugeTLB code, s390 KVM code, and memory management reclaim code. He also serves as an upstream maintainer for the Linux kernel's core memory management code, Get User Pages (GUP) memory management code, kernel samepage merging (KSM), reverse mapping (RMAP), transparent hugepage (THP), memory advice (MADVISE), VirtIO memory driver, and VirtIO balloon driver.

>

> Hildenbrand had been employed by Red Hat the past decade in Munich working on QEMU/KVM virtualization, Linux kernel memory management, VirtIO, and related low-level areas. Just this year alone so far in 2025 he's authored or been mentioned on more than one thousand mainline Linux kernel patches.



[1] https://www.phoronix.com/news/Red-Hat-David-H-Leaving

[2] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3470715e5c22578c6ea4098b256d5a904e12eef2

Blender 5.0 has been [1]released with major upgrades [2]including HDR and wide-gamut color support on Linux via Wayland/Vulkan , significant theme and UI improvements, new color-space tools, revamped curve and geometry features, and expanded hardware requirements. 9to5Linux reports:

> Blender 5.0 also introduces a working color space for Blend files, a new AgX HDR view, a new Convert to Display compositor node, new Rec.2100-PQ and Rec.2100-HLG displays that can be used for color grading for HDR video export, and new ACES 1.3 and 2.0 views as an alternative to AgX and Filmic.

>

> A new "Jump Time by Delta" operator for jumping forward/backward in time by a user-specified delta has been introduced as well, along with a revamped Curve drawing, which better supports the new Curves object type and all of their features, and a new Geometry Attribute constraint.

>

> Also new is a "Cylinder" option for curve display type that allows rendering thicker curves without the flat ribbon appearance, support for the Zstd (Zstandard) fast lossless compression algorithm for point caches, as well as a new "Curve Data" panel in edit mode that allows tweaking built-in curve attribute values.

A full list of changes can be found [3]here . You can download from the [4]official website .



[1] https://www.blender.org/download/releases/5-0/

[2] https://9to5linux.com/blender-5-0-open-source-3d-graphics-app-is-now-available-for-download

[3] https://developer.blender.org/docs/release_notes/4.5/

[4] https://www.blender.org/download/

An anonymous reader quotes a report from Ars Technica:

> Apple's Power Mac and Mac Pro towers used to be the company's primary workstations, but it has been years since they were updated with the same regularity as the MacBook Air or MacBook Pro. The Mac Pro has seen just four hardware updates in the last 15 years, and that's counting a 2012 refresh that was mostly identical to the 2010 version. Long-suffering Mac Pro buyers may have taken heart when Apple finally added an M2 Ultra processor to the tower in mid-2023, making it one of the very last Macs to switch from Intel to Apple Silicon -- surely this would mean that the computer would at least be updated once every year or two, like the Mac Studio has been? But Bloomberg's Mark Gurman [1]says that Mac Pro buyers shouldn't get their hopes up for new hardware in 2026.

>

> Gurman says that the tower is " [2]on the back burner" at Apple and that the company is "focused on a new Mac Studio" for the next-generation M5 Ultra chip that is in the works. As we reported earlier this year, Apple doesn't have plans to design or release an M4 Ultra, and the Mac Studio refresh from this spring included an M3 Ultra alongside the M4 Max. Note that Gurman carefully stops short of saying we definitely won't see a Mac Pro update next year -- the emphasis on the Mac Studio merely "suggests the Mac Pro won't be updated in 2026 in a significant way," and internal sources tell him "Apple has largely written off the Mac Pro." The current Mac Pro does still use the M2 Ultra rather than the M3 Ultra, which indicates that Apple doesn't see the need to update its high-end desktop every time it releases a suitable chip. But all of Apple's other desktops -- the iMac, the Mac mini, and the Studio -- have skipped a silicon generation once since the M1 came out in 2020.



[1] https://www.bloomberg.com/news/newsletters/2025-11-16/apple-s-iphone-road-map-iphone-air-2-iphone-18-mac-pro-future-tesla-carplay-mi1q4l2o

[2] https://arstechnica.com/gadgets/2025/11/report-claims-that-apple-has-yet-again-put-the-mac-pro-on-the-back-burner/

An anonymous reader shares a report:

> Lawyers from the American Civil Liberties Union (ACLU) and Electronic Frontier Foundation (EFF) [1]sued the city of San Jose , California over its deployment of Flock's license plate-reading surveillance cameras, claiming that the city's nearly 500 cameras create a pervasive database of residents movements in a surveillance network that is essentially impossible to avoid.

>

> The lawsuit was filed on behalf of the Services, Immigrant Rights & Education Network and Council on American-Islamic Relations, California, and claims that the surveillance is a violation of California's constitution and its privacy laws. The lawsuit seeks to require police to get a warrant in order to search Flock's license plate system. The lawsuit is one of the highest profile cases challenging Flock; a similar lawsuit in Norfolk, Virginia seeks to get Flock's network shut down in that city altogether.

>

> "San Jose's ALPR [automatic license plate reader] program stands apart in its invasiveness," ACLU of Northern California and EFF lawyers wrote in the lawsuit. "While many California agencies run ALPR systems, few retain the locations of drivers for an entire year like San Jose. Further, it is difficult for most residents of San Jose to get to work, pick up their kids, or obtain medical care without driving, and the City has blanketed its roads with nearly 500 ALPRs."



[1] https://www.404media.co/aclu-and-eff-sue-a-city-blanketed-with-flock-surveillance-cameras/