1. Forum
  2. Usenet
  3. COMP.RISKS

  • Risks Digest 34.58 (2/2)

    From RISKS List Owner@21:1/5 to All on Sat Mar 15 21:00:33 2025
    [continued from previous message]

    Bensaid said. Plotting out a trip like that yourself could take some time — but you'll soon be able to ask AI to do it for you.

    Here's another, more practical example: An in-car AI might be able toq wanticipate potential problems because it detects “weird patterns” from certain components, and can suggest you book a service appointment. Even better, Bensaid says, AI can chew on your calendar, find an open day and
    book the appointment for you.

    https://s2.washingtonpost.com/camp-rw/?trackId=596b22969bbc0f403f8bcc25&s=67d06e931c627735a7170c9e

    The truth about DOGE's AI plans: The tech can't do that. Identify “mission-critical” jobs? Spot dead people on Social Security rolls? Government needs AI — but what DOGE appears to be doing doesn't add up.

    https://www.washingtonpost.com/technology/2025/03/03/doge-ai-government-automation/

    [The DOGE's bite is definitely worse than its bark.]

    ------------------------------

    Date: Thu, 13 Mar 2025 9:53:48 PDT
    From: Peter Neumann <neumann@csl.sri.com>
    Subject: Agentic AI Issues (Meredith Whittaker)

    Signal President Meredith Whittaker calls out agentic AI as having
    ‘profound' security and privacy issues

    https://techcrunch.com/2025/03/07/signal-president-meredith-whittaker-calls-out-agentic-ai-as-having-profound-security-and-privacy-issues/?utm_source=flipboard&utm_content=topic/artificialintelligence

    ------------------------------

    Date: Thu, 13 Mar 2025 07:06:21 -0700
    From: "Jim" <jgeissman@socal.rr.com>
    Subject: Signal no longer cooperating with Ukraine on Russian cyberthreats,
    official says (The Record from Recorded Future News)

    KYIV, Ukraine -- The encrypted messaging app Signal has stopped responding
    to requests from Ukrainian law enforcement regarding Russian cyberthreats, a Ukrainian official claimed, warning that the shift is aiding Moscow's intelligence efforts.

    According to Ser˜qhii Demediuk, deputy secretary of Ukraine's National Security and Defense Council, Signal remains one of the most exploited messaging apps for Russian espionage operations targeting Ukrainian military personnel and government officials.

    With its inaction, Signal is helping Russians gather information, target our soldiers and compromise government officials, Demediuk said at the Kyiv International Cyber-Resilience Forum on Tuesday.

    Signal, a U.S.-based nonprofit platform known for its commitment to privacy, has not publicly commented on Demediuk's claims and did not respond to a request for comment. Demediuk suggested that the shift in Signal's policy be linked to political instability in the U.S., adding that cooperation could resume soon.

    https://therecord.media/signal-no-longer-cooperating-with-ukraine

    ------------------------------

    Date: Fri, 7 Mar 2025 21:04:56 -0800
    From: Steve Bacher <sebmb1@verizon.net>
    Subject: Did AI really defend the KKK at the end of his column? (LA Times)

    Journalism schools teach that writers should report the news, not be the
    news. But what happens when one of your articles goes viral —- not for its content but rather for how an AI doohickey swallowed up what you wrote and upchucked a controversial summation?

    https://www.latimes.com/california/story/2025-03-07/la-times-insights-ai-controversy

    (Spoiler: AI got it right, but readers got it wrong.  The RISK here is not
    AI per se, but human reactions to it when they jump the gun.)

    ------------------------------

    Date: Mon, 10 Mar 2025 11:25:14 -0700
    From: "Jim" <jgeissman@socal.rr.com>
    Subject: Germany May Refuse F-35 Purchase over Emergency Switch, Consider
    Eurofighter Instead (Defense Mirror)

    According to reports, a software back-door switch will turn the aircraft off
    if the client state does not follow Washington's diktat in the use of the
    F-35.

    https://www.defensemirror.com/news/39017=20

    [This is like law enforcement turning an automobile off on the automated
    highway, although maybe even worse. PGN]

    ------------------------------

    Date: Fri, 7 Mar 2025 20:27:50 -0800
    From: Steve Bacher <sebmb1@verizon.net>
    Subject: Tesla makes step toward robotaxi services in California. What to
    know (LA Times)

    As robotaxis become a more familiar sight on the streets of Los Angeles,
    Tesla has taken a step that could bring it closer to building its own fleet
    of self-driving electric vehicles, the California Public Utilities
    Commission confirmed last week.

    In November, Tesla applied for a permit that would allow the
    electric-vehicle manufacturing giant to deploy transportation services with company-owned vehicles and human drivers. The permit would beqq required for Tesla to advance to autonomous cabs.

    Chief Executive Elon Musk has long made clear his ambitions for a robotaxi service powered by Tesla vehicles, though his company has been criticized by the U.S. government's highway safety agency for making statements that its vehicles can drive themselves.

    To be sure, the automaker is still a long way off before it can launch a service.

    And it's still playing catch-up. Although Waymo has put driverless vehicles
    on the road in cities including Los Angeles and San Francisco, industry
    experts say Tesla is still far from offering a robotaxi service. [...]

    https://www.latimes.com/business/story/2025-03-06/tesla-robotaxi-explainer

    ------------------------------

    Date: Tue, 25 Feb 2025 12:09:06 +0200
    From: Amos Shapir <amos083@gmail.com>
    Subject: When Your Last Name Is Null, Nothing Works (WSJ)

    Yet another case of not sanitizing data.

    https://www.wsj.com/lifestyle/null-last-name-computer-scientists-forms-f0a43b08

    (IIRC the part about the license plate had already been posted on Risks in
    the past)

    [Yup! I wonder whether someone could ever choose "N/A" for a name. PGN]

    ------------------------------

    Date: Sat, 22 Feb 2025 00:58:22 -0500
    From: Gabe Goldberg <gabe@gabegold.com>
    Subject: XScreenSaver: Google Store Privacy Policy

    XScreenSaver for Android is... a set of screen savers and live
    wallpapers. That's it. It draws pretty pictures on your screen. And it's
    free. That's the whole deal.

    But in their wisdom, Google -- the most rapacious privacy violator on the planet -- have decreed that XScreenSaver cannot be made available on their "Play" [sic] store until I publish a "Privacy Policy".

    For a screen saver. A privacy policy. For a screen saver.

    This pantomime where Google pretends to care about your welfare would be hilarious if it wasn't so sad, but here we are anyway.

    OK, strap in!

    ------------------------------

    Date: Sat, 15 Mar 2025 10:03:28 -0400
    From: Monty Solomon <monty@roscom.com>
    Subject: Creators Insist Coupon Browser Extensions Are Stealing Their
    Money. Will the Courts Agree? (WSJ)

    A number of lawsuits accuse browser extensions like PayPal Honey of swiping affiliate marketers' commissions

    https://www.wsj.com/articles/creators-insist-coupon-browser-extensions-are-stealing-their-money-will-the-courts-agree-60079a1f

    ------------------------------

    Date: Sat, 28 Oct 2023 11:11:11 -0800
    From: RISKS-request@csl.sri.com
    Subject: Abridged info on RISKS (comp.risks)

    The ACM RISKS Forum is a MODERATED digest. Its Usenet manifestation is
    comp.risks, the feed for which is donated by panix.com as of June 2011.
    SUBSCRIPTIONS: The mailman Web interface can be used directly to
    subscribe and unsubscribe:
    http://mls.csl.sri.com/mailman/listinfo/risks

    SUBMISSIONS: to risks@CSL.sri.com with meaningful SUBJECT: line that
    includes the string `notsp'. Otherwise your message may not be read.
    *** This attention-string has never changed, but might if spammers use it.
    SPAM challenge-responses will not be honored. Instead, use an alternative
    address from which you never send mail where the address becomes public!
    The complete INFO file (submissions, default disclaimers, archive sites,
    copyright policy, etc.) has moved to the ftp.sri.com site:
    <risksinfo.html>.
    *** Contributors are assumed to have read the full info file for guidelines!

    OFFICIAL ARCHIVES: http://www.risks.org takes you to Lindsay Marshall's
    delightfully searchable html archive at newcastle:
    http://catless.ncl.ac.uk/Risks/VL.IS --> VoLume, ISsue.
    Also, ftp://ftp.sri.com/risks for the current volume/previous directories
    or ftp://ftp.sri.com/VL/risks-VL.IS for previous VoLume
    If none of those work for you, the most recent issue is always at
    http://www.csl.sri.com/users/risko/risks.txt, and index at /risks-34.00
    ALTERNATIVE ARCHIVES: http://seclists.org/risks/ (only since mid-2001)
    *** NOTE: If a cited URL fails, we do not try to update them. Try
    browsing on the keywords in the subject line or cited article leads.
    Apologies for what Office365 and SafeLinks may have done to URLs.
    Special Offer to Join ACM for readers of the ACM RISKS Forum:
    <http://www.acm.org/joinacm1>

    ------------------------------

    End of RISKS-FORUM Digest 34.58
    ************************

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)