An anonymous reader quotes a report from Ars Technica:

> Broadcom has been [1]sending cease-and-desist letters to owners of VMware perpetual licenses with expired support contracts, Ars Technica has confirmed. Following its November 2023 [2]acquisition of VMware , Broadcom [3]ended VMware perpetual license sales . Users with perpetual licenses can still use the software they bought, but they are unable to renew support services unless they had a pre-existing contract enabling them to do so. The controversial move aims to push VMware users to buy subscriptions to VMware products bundled such that associated costs have increased by [4]300 percent or, in some cases, more. Some customers have opted to continue using VMware unsupported, often as they research alternatives, such as VMware rivals or devirtualization.

>

> Over the past weeks, some users running VMware unsupported have [5]reported receiving cease-and-desist letters from Broadcom informing them that their contract with VMware and, thus, their right to receive support services, has expired. The letter [ [6]PDF ], reviewed by Ars Technica and signed by Broadcom managing director Michael Brown, tells users that they are to stop using any maintenance releases/updates, minor releases, major releases/upgrades extensions, enhancements, patches, bug fixes, or security patches, save for zero-day security patches, issued since their support contract ended.

>

> The letter tells users that the implementation of any such updates "past the Expiration Date must be immediately removed/deinstalled," adding: "Any such use of Support past the Expiration Date constitutes a material breach of the Agreement with VMware and an infringement of VMware's intellectual property rights, potentially resulting in claims for enhanced damages and attorneys' fees." [...] The cease-and-desist letters also tell recipients that they could be subject to auditing: "Failure to comply with [post-expiration reporting] requirements may result in a breach of the Agreement by Customer[,] and VMware may exercise its right to audit Customer as well as any other available contractual or legal remedy."



[1] https://arstechnica.com/gadgets/2025/05/broadcom-sends-cease-and-desist-letters-to-subscription-less-vmware-users/

[2] https://slashdot.org/story/22/05/26/1748248/broadcom-to-acquire-vmware-in-massive-61-billion-deal

[3] https://tech.slashdot.org/story/23/12/12/1740241/broadcom-is-killing-off-vmware-perpetual-licenses-strong-arming-users-onto-subscriptions

[4] https://it.slashdot.org/story/24/10/31/135212/300-price-hikes-push-disgruntled-vmware-customers-toward-broadcom-rivals

[5] https://www.reddit.com/r/sysadmin/comments/1jzqbte/vmware_threatening_perpetual_license_holders_than/

[6] https://cdn.arstechnica.net/wp-content/uploads/2025/05/2025.05.07-12.26.01-SNAGIT-0038.pdf

Eddy Cue, Apple's senior vice president of services, gave an ominous warning today that the iPhone could [1]go the way of the iPod 10 years from now . From a report:

> Cue's remarks came during the Google Search antitrust remedies trial today while discussing how AI has the potential to reshape the tech industry and open the door to new entrants. Incumbents have a hard time ... we're not an oil company, we're not toothpaste -- these are things that are going to last forever ... you may not need an iPhone 10 years from now.

>

> Cue went on to say that the best thing Apple did was kill the iPod, a move he said was bold. "Why would you kill the golden goose," he added. That may seem like a silly thing for Apple to say, given that more than half of its revenue is iPhone sales. But Cue calls AI a "huge technological shift," and suggests that such shifts can humble companies that once seemed unassailable.



[1] https://www.theverge.com/news/662769/apple-iphone-may-not-need-10-years

The curl open source project is fighting against a flood of AI-generated false security reports. Daniel Stenberg, curl's original author and lead developer, declared on LinkedIn that they are "effectively being DDoSed" by these submissions.

"We still have not seen a single valid security report done with AI help," Stenberg [1]wrote . This week alone, four AI-generated vulnerability reports [2]arrived seeking reputation or bounties , ArsTechnica writes. One particularly frustrating May 4 report claiming "stream dependency cycles in the HTTP/3 protocol stack" pushed Stenberg "over the limit." The submission referenced non-existent functions and failed to apply to current versions.

Some AI reports are comically obvious. One accidentally included its prompt instruction: "and make it sound alarming." Stenberg has asked HackerOne, which manages vulnerability reporting, for "more tools to strike down this behavior." He plans to ban reporters whose submissions are deemed "AI slop."



[1] https://www.linkedin.com/posts/danielstenberg_hackerone-curl-activity-7324820893862363136-glb1/?rcm=ACoAABvgIC0Bx1xUu-E97QUzl6wtDuTtUHlFX7g

[2] https://arstechnica.com/gadgets/2025/05/open-source-project-curl-is-sick-of-users-submitting-ai-slop-vulnerabilities/

Data storage firm Seagate is [1]working to develop a 100-terabyte hard drive by 2030 , touting blistering demand from data centers for the 70-year-old technology in the artificial intelligence boom. From a report:

> BS Teh, Seagate's chief commercial officer, told CNBC that the company is aiming to launch such a drive -- which would have about three times the capacity of the firm's top-of-the-line hard drives -- by 2030. The largest hard disk drive Seagate currently produces is the 36-terabyte Exos M model, which it launched in January.

>

> "You may be thinking, 'Who would need it?'" Teh said, referring to the idea of a 100-terabyte hard drive. "Well, plenty." He added: "I think there's definitely strong demand. This is a key enabler for the industry to be able to deliver the storage capacity that the market needs, because there's no other technology that's able to produce this capacity of storage technology to meet the growth that the market needs."



[1] https://www.cnbc.com/2025/05/07/seagate-to-triple-hard-drive-capacity-by-2030-to-meet-ai-demand.html

Apple is "actively looking at" revamping the Safari web browser on its devices to [1]focus on AI-powered search engines , a seismic shift for the industry hastened by the potential end of a longtime partnership with Google. From a report:

> Eddy Cue, Apple's senior vice president of services, made the disclosure Wednesday during his testimony in the US Justice Department's lawsuit against Alphabet. The heart of the dispute is the two companies' estimated $20 billion-a-year deal that makes Google the default offering for queries in Apple's browser. The case could force the tech giants to unwind the pact, upending how the iPhone and other devices have long operated.

>

> Cue noted that searches on Safari dipped for the first time last month, which he attributed to people using AI. Cue said he believes that AI search providers, including OpenAI, Perplexity and Anthropic, will eventually replace standard search engines like Alphabet's Google. He said he believes Apple will bring those options to Safari in the future. "We will add them to the list -- they probably won't be the default," he said, indicating that they still need to improve.



[1] https://www.bloomberg.com/news/articles/2025-05-07/apple-working-to-move-to-ai-search-in-browser-amid-google-fallout

The Drug Enforcement Administration has [1]quietly ended its body camera program barely four years after it began, ProPublica reports, citing an internal email. From the report:

> On April 2, DEA headquarters emailed employees announcing that the program had been terminated effective the day before. The DEA has not publicly announced the policy change, but by early April, links to pages about body camera policies on the DEA's website were broken.

>

> The email said the agency made the change to be "consistent" with a Trump executive order rescinding the 2022 requirement that all federal law enforcement agents use body cameras. But at least two other federal law enforcement agencies within the Justice Department -- the U.S. Marshals Service and the Bureau of Alcohol, Tobacco, Firearms and Explosives -- are still requiring body cameras, according to their spokespeople.



[1] https://www.propublica.org/article/drug-enforcement-administration-ends-body-camera-program-trump

Instagram co-founder Kevin Systrom says AI companies are [1]trying too hard to "juice engagement" by pestering their users with follow-up questions, instead of providing actually useful insights. From a report:

> Systrom said the tactics represent "a force that's hurting us," comparing them to those used by social media companies to expand aggressively.

>

> "You can see some of these companies going down the rabbit hole that all the consumer companies have gone down in trying to juice engagement," he said at StartupGrind this week. "Every time I ask a question, at the end it asks another little question to see if it can get yet another question out of me."



[1] https://techcrunch.com/2025/05/02/ai-chatbots-are-juicing-engagement-instead-of-being-useful-instagram-co-founder-warns/

Waymo's autonomous vehicles operating on Uber's platform in Austin are completing more trips per day than over 99% of human drivers in the market, according to [1]Uber's Q1 2025 earnings report [PDF] released Wednesday. The fleet of approximately 100 autonomous Waymo vehicles, launched exclusively on Uber in March, has "exceeded expectations," CEO Dara Khosrowshahi stated in the report.

He cited the performance to "Waymo's safety record and rider experience coupled with Uber's scale and reliability." Uber has rapidly expanded its autonomous vehicle operations, reaching an annual run-rate of 1.5 million mobility and delivery AV trips across its network. The company plans to scale to hundreds of vehicles in Austin in the coming months, while preparing for a launch in Atlanta by early summer. Khosrowshahi said that autonomous vehicle technology represents "the single greatest opportunity ahead for Uber."



[1] https://s23.q4cdn.com/407969754/files/doc_earnings/2025/q1/transcript/Uber-Q1-25-Prepared-Remarks.pdf

IBM CEO Arvind Krishna said the tech giant has used AI, and specifically AI agents, to [1]replace the work of a couple hundred human resources workers . As a result, it has hired more programmers and salespeople, he said. From a report:

> Krishna's comments on Monday come as businesses sort through the workforce impacts of AI and AI agents, the independent bots that can autonomously perform tasks like analyze spreadsheets, conduct research and draft emails.

>

> While there haven't yet been widespread layoffs or downsizing as a result of AI across the economy, some business leaders have said they are holding down head count as they investigate the use of the technology.

>

> Meanwhile, the information-technology workforce has continued to shrink as AI weighs on hiring and some workers leave the field. For IBM, which this week hosts its annual Think conference in Boston, AI adoption has led it to boost hiring in some functions.



[1] https://www.wsj.com/articles/ibm-ceo-says-ai-has-replaced-hundreds-of-workers-but-created-new-programming-sales-jobs-54ea6b58

An anonymous reader quotes a report from TechCrunch:

> The U.S. Federal Trade Commission (FTC) on Monday [1]released new documentation detailing its new "Rule on Unfair or Deceptive Fees." The rule, set to take effect on May 12, [2]prohibits hidden fees for live events, hotels, and short-term rentals . It also bans practices such as "bait-and-switch pricing" and any actions that conceal or misrepresent total prices and fees.

>

> In a newly published FAQ, the FTC offers a guide for these types of businesses, providing detailed information about pricing transparency. The rule will impact businesses, including live-event ticket sellers and short-term lodging providers, like hotels, motels, Airbnb, or VRBO. Third-party platforms, resellers, and travel agents are also covered by the new regulation. (Airbnb already updated its service in advance of this new regulation to show users the total cost of their stay upfront.) [...]

>

> Also included in the FTC's new FAQ are the types of fees that can be excluded, such as taxes or government fees, shipping charges, and charges for optional goods or services people may select to buy as part of the same transaction. (Note that handling charges aren't on this list.) However, the FTC notes that businesses must disclose that it has excluded charges from the total price before asking for payment. For example, if a business excludes shipping charges from the advertised price, it's required to clearly state the amount and purpose of those charges.



[1] https://www.ftc.gov/news-events/news/press-releases/2025/05/ftc-rule-unfair-or-deceptive-fees-take-effect-may-12-2025

[2] https://techcrunch.com/2025/05/05/ftc-bans-hidden-fees-for-live-events-and-short-term-rentals-effective-may-12/

Researchers have discovered a mutation in the SIK3 gene that enables some people [1]to function normally on just three to six hours of sleep . The finding, published this week in PNAS, adds to a growing list of genetic variants linked to naturally short sleepers.

When University of California, San Francisco scientists introduced the mutation to mice, the animals required 31 minutes less sleep daily. The modified enzyme showed highest activity in brain synapses, suggesting it might support brain homeostasis -- the resetting process thought to occur during sleep.

"These people, all these functions our bodies are doing while we are sleeping, they can just perform at a higher level than we can," said Ying-Hui Fu, the study's co-author. This marks the fifth mutation across four genes identified in naturally short sleepers. Fu's team hopes these discoveries could eventually lead to treatments for sleep disorders by revealing how sleep regulation functions in humans.



[1] https://www.nature.com/articles/d41586-025-01402-7

The Department of Defense is [1]revamping its "outdated" software procurement systems through a new Software Fast Track initiative. The SWFT program aims to reform how software is acquired, tested, and authorized with security as the primary focus. "Widespread use of open source software, with contributions from developers worldwide, presents a significant and ongoing challenge," DoD CIO Katie Arrington wrote in the initiative memo.

The DoD currently "lacks visibility into the origins and security of software code," hampering security assurance efforts. The initiative will establish verification procedures for software products and expedite authorization processes. Multiple requests for information are running until late May seeking industry input, including how to leverage AI for software authorization and define effective supply chain risk management requirements.

The push comes amid recent DoD security incidents, from malware campaigns targeting procurement systems to sensitive information leaks.



[1] https://www.theregister.com/2025/05/06/us_dod_software_procurement/

Rep. Kat Cammack (R-FL) introduced the [1]App Store Freedom Act [PDF] on Tuesday, legislation that would compel "large app store operators" with over 100 million US users to [2]permit third-party app stores and allow them to be set as defaults. The bill directly challenges Apple's walled garden approach and Google's Play Store dominance by requiring both companies to allow developers to use alternative payment systems, bypassing the platforms' commission structures.

It would also mandate equal access to development tools and interfaces without discrimination, while giving users the ability to remove pre-installed apps. Violations would trigger FTC enforcement with penalties up to $1 million per infraction. The legislation mirrors recent European Union regulations that have already forced Apple to permit third-party app stores and allow users to change default apps.



[1] https://cammack.house.gov/sites/evo-subsites/cammack.house.gov/files/evo-media-document/app-store-freedom-119.pdf

[2] https://www.theverge.com/news/662180/app-store-freedom-act-apple-third-party-app-stores

Stratolaunch successfully flew its uncrewed Talon-A2 prototype to hypersonic speeds twice -- once in December and again in March. "We've now demonstrated hypersonic speed, added the complexity of a full runway landing with prompt payload recovery and proven reusability," Stratolaunch President and CEO Zachary Krevor said in [1]a statement on Monday. "Both flights were great achievements for our country, our company and our partners." Space.com reports:

> Microsoft co-founder Paul Allen established Stratolaunch in 2011, with the goal of air-launching satellites from a giant carrier plane called Roc, which has a wingspan of 385 feet (117 meters). That vision changed after Allen's 2018 death, however; the company is [2]now using Roc as a platform to test hypersonic technology.

>

> Hypersonic vehicles are highly maneuverable craft capable of flying at least five times the speed of sound. Their combination of speed and agility make them much more difficult to track and intercept than traditional ballistic missiles. The United States, China and other countries view hypersonic tech as vital for national security, and are therefore developing and testing such gear at an ever-increasing pace. Stratolaunch, Roc and the winged, rocket-powered Talon-2A are part of this evolving picture, as the two newly announced test flights show. They were both conducted for the U.S. military's Test Resource Management Center Multi-Service Advanced Capability Hypersonic Test Bed (MACH-TB) program, under a partnership with the Virginia-based company Leidos.

>

> On both occasions, Roc lifted off from California and dropped Talon-2A over the Pacific Ocean. The hypersonic vehicle then powered its way to a landing at Vandenberg Space Force Base, on California's Central Coast. "These flights were a huge success for our program and for the nation," Scott Wilson, MACH-TB program manager, said in the same statement. "The data collected from the experiments flown on the initial Talon-A flight has now been analyzed and the results are extremely positive," he added. "The opportunity for technology testing at a high rate is highly valuable as we push the pace of hypersonic testing. The MACH-TB program is pleased with the multiple flight successes while looking forward to future flight tests with Stratolaunch."



[1] https://www.stratolaunch.com/news/stratolaunch-successfully-completes-reusable-hypersonic-flight-and-recovery-with-talon-a2-vehicle/

[2] https://tech.slashdot.org/story/24/03/12/038255/worlds-largest-aircraft-goes-supersonic-in-first-powered-flight

Amazon's Zoox [1]said it has [2]issued a software recall for 270 of its robotaxis after a crash in Las Vegas last month. CNBC reports:

> The recall surrounds a defect with the vehicle's automated driving system that could cause it to inaccurately predict the movement of another car, increasing "the risk of a crash," according to a report submitted to the National Highway Traffic Safety Administration on May 1. Zoox submitted the recall after an April 8 incident in Las Vegas in which an unoccupied Zoox robotaxi collided with a passenger vehicle, the NHTSA report states. There were no injuries in the crash and only minor damage occurred to both vehicles.

>

> "After analysis and rigorous testing, Zoox identified the root cause," the company said in a blog post. "We issued a software update that was implemented across all Zoox vehicles. All Zoox vehicles on the road today, including our purpose-built robotaxi and test fleet, have the updated software." Zoox paused all driverless vehicle operations while it reviewed the incident. It has since resumed operations after rolling out the software update.



[1] https://zoox.com/journal/2025-april-safety-recall-report/

[2] https://www.cnbc.com/2025/05/06/amazon-zoox-recall.html

An anonymous reader quotes a report from TechCrunch:

> Spyware maker NSO Group will have to [1]pay more than $167 million in damages to WhatsApp for a [2]2019 hacking campaign against more than 1,400 users. On Tuesday, after a five-year legal battle, a jury ruled that NSO Group must pay $167,256,000 in punitive damages and around $444,719 in compensatory damages. This is a huge legal win for WhatsApp, which had asked for more than $400,000 in compensatory damages, based on the time its employees had to dedicate to remediate the attacks, investigate them, and push fixes to patch the vulnerability abused by NSO Group, as well as unspecified punitive damages.

>

> The trial, as well as the whole lawsuit, prompted a series of revelations, such as the location of the victims of the 2019 spyware campaign, as well as the names of some of NSO Group's customers. The ruling marks the end -- pending a potential appeal -- of a [3]legal battle that started in more than five years ago, when WhatsApp filed a lawsuit against the spyware maker. The Meta-owned company accused NSO Group of accessing WhatsApp servers and exploiting an audio-calling vulnerability in the chat app to target around 1,400 people, including dissidents, human rights activists, and journalists.

NSO Group's spokesperson Gil Lainer left the door open for an appeal. "We will carefully examine the verdict's details and pursue appropriate legal remedies, including further proceedings and an appeal," Lainer said in a statement.



[1] https://techcrunch.com/2025/05/06/nso-group-must-pay-more-than-167-million-in-damages-to-whatsapp-for-spyware-campaign/

[2] https://yro.slashdot.org/story/19/10/29/2032239/facebook-sues-israels-nso-group-over-alleged-whatsapp-hack

[3] https://yro.slashdot.org/story/24/12/23/1538200/whatsapp-scores-historic-victory-against-nso-group-in-long-running-spyware-hacking-case

An anonymous reader quotes a report from Ars Technica:

> Google's accelerated Android release cycle will soon deliver a new version of the software, and it might look quite different from what you'd expect. Amid rumors of a major UI overhaul, Google seems to have [1]accidentally published a blog post detailing "Material 3 Expressive ," which we expect to see revealed at I/O later this month. Google quickly removed the post from its design site, but not before the Internet Archive [2]saved it .

>

> It has been a few years since Google introduced any major changes to its Material theming, but the design team wasn't just sitting idly this whole time. According to the leaked blog post, Google has spent the past three years working on a more emotionally engaging vision for Android design. While the original Material Design did an admirable job of leveraging colors and consistent theming, it could make apps look too similar. The answer to that, apparently, is Material 3 Expressive.

>

> Google says this is "the most-researched update to Google's design system, ever." The effort reportedly included 46 separate studies with hundreds of sample designs. The team showed these designs to more than 18,000 study participants to understand how the user experience would work. In these studies, the design team used a variety of metrics, including the following:

> - Eye tracking: Analyzing where users focus their attention

> - Surveys and focus groups: Gauging emotional responses to different designs

> - Experiments: Gathering sentiment and preferences

> - Usability: Seeing how quickly participants could understand and use an interface

"The result of all this is an interface that appears much more varied than the [3]previous [4]Material [5]Design ," writes Ars.

You can check out [6]9to5Google's article , which preserved many of the blog post's visuals before they were removed.



[1] https://arstechnica.com/gadgets/2025/05/google-accidentally-reveals-androids-material-3-expressive-interface-ahead-of-i-o/

[2] https://web.archive.org/web/20250501004611/https://design.google/library/expressive-material-design-google-research

[3] https://9to5google.com/2025/05/05/material-3-expressive-leak/

[4] https://hardware.slashdot.org/story/17/10/12/2148254/google-is-really-good-at-design

[5] https://mobile.slashdot.org/story/23/05/11/2048218/android-14-will-add-more-customization-to-your-home-and-lock-screens

[6] https://9to5google.com/2025/05/05/material-3-expressive-leak/

According to the [1]Washington Post (paywalled), the Trump administration [2]plans to eliminate the Energy Star program -- a long-standing EPA initiative that has saved Americans over $500 billion in energy costs since 1992. "The organization states that the average American saves about $450 per year on energy bills by choosing appliances that have been Energy Star-certified," adds Engadget. From the report:

> The EPA hasn't said when this would go into effect and when consumers would stop seeing Energy Star certifications on home appliances. It's technically illegal for a presidential administration to end this program without Congress, but the same goes for many of Trump's pronouncements and executive orders.

"Eliminating the Energy Star program would directly contradict this administration's promise to reduce household energy costs," Paula Glover, president of the nonprofit coalition Alliance to Save Energy, [3]told CNN . "For just $32 million a year, Energy Star helps American families save over $40 billion in annual energy costs. That's a return of $350 for every federal dollar invested."



[1] https://www.washingtonpost.com/climate-environment/2025/05/06/energy-star-program-epa-trump/

[2] https://www.engadget.com/big-tech/trump-admin-announces-plans-to-shut-down-the-energy-star-program-184846271.html

[3] https://www.cnn.com/2025/05/06/climate/energy-star-trump

Longtime Slashdot reader [1]RoccamOccam shares a blog post from the Trifecta Tech Foundation, a nonprofit organization that creates secure, open source building blocks for infrastructure software. The foundation is also the developer behind Sudo-rs. From the report:

> Ubuntu 25.10 is [2]set to adopt sudo-rs by default . Sudo-rs is a memory-safe reimplementation of the widely-used sudo utility, written in the Rust programming language. This move is part of a broader effort by Canonical to improve the resilience and maintainability of core system components. [...]

>

> The decision to adopt sudo-rs is in line with Canonical's commitment to [3]Carefully But Purposefully increase the resilience of critical system software, by adopting Rust. Rust is a programming language with strong memory safety guarantees that eliminates many of the vulnerabilities that have historically plagued traditional C-based software. Sudo-rs is part of the Trifecta Tech Foundation's [4]Privilege Boundary initiative , which aims to handle privilege escalation with memory-safe alternatives.



[1] https://slashdot.org/~RoccamOccam

[2] https://trifectatech.org/blog/memory-safe-sudo-to-become-the-default-in-ubuntu/

[3] https://discourse.ubuntu.com/t/carefully-but-purposefully-oxidising-ubuntu/56995

[4] https://trifectatech.org/initiatives/privilege-boundary/

President Trump's proposed 2026 budget [1]seeks to cut nearly $500 million from CISA , accusing the agency of prioritizing censorship over cybersecurity and election protection. "The proposed cuts -- which are largely symbolic at this stage as they need to be approved by Congress -- are framed as a purge of the so-called 'censorship industrial complex,' a term the White House uses to describe CISA's work countering misinformation," reports The Register. From the report:

> In its fiscal 2024 budget request, the agency had [2]asked [PDF] for a total of just over $3 billion to safeguard the nation's online security across both government and private sectors. The enacted budget that year was about $34 million lower than the previous year's. Now, a deep cut [3]has been proposed [PDF], as the Trump administration decries the agency's past work tackling the spread of misinformation on the web by America's enemies, as well as the agency's efforts safeguarding election security. [...]

>

> "The budget eliminates programs focused on so-called misinformation and propaganda as well as external engagement offices such as international affairs," it [4]reads [PDF]. "These programs and offices were used as a hub in the censorship industrial complex to violate the First Amendment, target Americans for protected speech, and target the President. CISA was more focused on censorship than on protecting the nation's critical systems, and put them at risk due to poor management and inefficiency, as well as a focus on self-promotion."



[1] https://www.theregister.com/2025/05/06/cisa_budget_cuts/

[2] https://www.dhs.gov/sites/default/files/2023-03/CYBERSECURITY%20AND%20INFRASTRUCTURE%20SECURITY%20AGENCY_Remediated.pdf

[3] https://www.whitehouse.gov/wp-content/uploads/2025/05/Fiscal-Year-2026-Discretionary-Budget-Request.pdf

[4] https://www.whitehouse.gov/wp-content/uploads/2025/05/Fiscal-Year-2026-Discretionary-Budget-Request.pdf