Hanwang Technology, a Chinese firm specializing in facial recognition software, says it can now identify people that are wearing masks to protect against the coronavirus. The company says it used a sample database of around 6 million unmasked faces and a smaller database of masked faces to create the system. The Next Web reports: The Beijing-based firm, which also goes by the English name Hanvon, began to develop the tech in January, as people in China began donning face masks in their droves. The system was rolled out just one month later. Hanwang Vice President Huang Lei says the system's recognition rate reached about 95% when people wore a mask -- still some way below its regular success rate of 99.5%.

China's SenseTime, the world's most valuable AI startup, announced in February that it had also adapted its product to identify people wearing masks. Such developments have led critics to claim that the coronavirus is being used as an excuse to ramp up surveillance. In the case of Hanwang, there is still one way to hide from its system: wearing the fashionable combination of both a face mask and sunglasses.

Investors and clients of the facial recognition start-up freely used the app on dates and at parties -- and to spy on the public. From a report: One Tuesday night in October 2018, John Catsimatidis, the billionaire owner of the Gristedes grocery store chain, was having dinner at Cipriani, an upscale Italian restaurant in Manhattan's SoHo neighborhood, when his daughter, Andrea, walked in. She was on a date with a man Mr. Catsimatidis didn't recognize. After the couple sat down at another table, Mr. Catsimatidis asked a waiter to go over and take a photo. Mr. Catsimatidis then uploaded the picture to a facial recognition app, Clearview AI, on his phone. The start-up behind the app has a database of billions of photos, scraped from sites such as Facebook, Twitter and LinkedIn. Within seconds, Mr. Catsimatidis was viewing a collection of photos of the mystery man, along with the web addresses where they appeared: His daughter's date was a venture capitalist from San Francisco.. Ms. Catsimatidis said she and her date had no idea how her father had identified him so quickly.

Clearview was unknown to the general public until this January, when The New York Times reported that the secretive start-up had developed a breakthrough facial recognition system that was in use by hundreds of law enforcement agencies. The company quickly faced a backlash on multiple fronts. Facebook, Google and other tech giants sent cease-and-desist letters. Lawsuits were filed in Illinois and Virginia, and the attorney general of New Jersey issued a moratorium against the app in that state. [...] The Times, however, has identified multiple individuals with active access to Clearview's technology who are not law enforcement officials. And for more than a year before the company became the subject of public scrutiny, the app had been freely used in the wild by the company's investors, clients and friends.

Ampere has unveiled the industry's first 80-core ARM-based 64-bit server processor today in a bid to outdo Intel and Advanced Micro Devices in datacenter chips. From a report: Ampere announced today that it has begun providing samples of the Ampere Altra processor for modern cloud and edge computing datacenters. The Ampere Altra processor runs on 210 watts and is targeted at such server applications as data analytics, artificial intelligence, database, storage, telco stacks, edge computing, web hosting, and cloud-native applications. Intel dominates about 95.5% of the server chip market with its x86-based processors, and AMD has the rest. But Ampere is targeting power-efficient, high-performance, and high-memory capacity features. Renee James, former president of Intel and CEO of Ampere, said in an interview with VentureBeat that the chip is faster than a 64-core AMD Epyc processor and Intel's 28-core high-end Xeon "Cascade Lake" chip.

AmiMoJo writes: Freedb, the community-generated database of music CD metadata, is shutting down on March 31, 2020. The service was set up as a free alternative to CDDB. Many CD-ripping applications pull metadata from Freedb to save the user having to type it in manually, but the service has some major limitations and has now been superseded by MusicBrainz. This wouldn't be the first time Freedb shut down. In 2006, the site shut down due to a disagreement among its developers, only to be brought back to life a few months later.

It's unclear why Freedb is shutting down after all these years.

The email addresses and travel details of about 10,000 people who used free wi-fi at UK railway stations have been exposed online. From a report: Network Rail and the service provider C3UK confirmed the incident three days after being contacted by BBC News about the matter. The database, found online by a security researcher, contained 146 million records, including personal contact details and dates of birth. It was not password protected. Named railway stations in screenshots seen by BBC News include Harlow Mill, Chelmsford, Colchester, Waltham Cross, Burnham, Norwich and London Bridge. C3UK said it had secured the exposed database - a back-up copy that included about 10,000 email addresses -- as soon as it had been drawn to their attention by researcher Jeremiah Fowler, from Security Discovery. "To the best of our knowledge, this database was only accessed by ourselves and the security firm and no information was made publicly available," it said. "Given the database did not contain any passwords or other critical data such as financial information, this was identified as a low-risk potential vulnerability."

An iPhone app built by controversial facial recognition startup Clearview AI has been blocked by Apple, effectively banning the app from use. From a report: Apple confirmed to TechCrunch that the startup "violated" the terms of its enterprise program. The app allows its users -- which the company claims it serves only law enforcement officers -- to use their phone camera or upload a photo to search its database of three billion photos. But BuzzFeed News revealed that the company -- which claims to only cater to law enforcement users -- also includes many private sector users, including Macy's, Walmart, and Wells Fargo. Clearview AI has been at the middle of a media -- and legal -- storm since its public debut in The New York Times last month. The company scrapes public photos from social media sites, drawing ire from the big tech giants which claim Clearview AI misused their services. But it's also gained attention from hackers. On Wednesday, Clearview AI confirmed a data breach, in which its client list was stolen.

Amazon is adding a new privacy-focused feature to its business transcription service, one that automatically redacts personally identifiable information (PII), such as names, social security numbers, and credit card credentials. From a report: Amazon Transcribe is part of Amazon's AWS cloud unit and was launched in general availability in 2018. An automatic speech recognition (ASR) service, Transcribe enables enterprise customers to convert speech into text, which can help make audio content searchable from a database, for example. Contact centers can also use the tool to mine call data for insights and sentiment analysis. However, privacy issues have cast a spotlight on how technology companies store and manage consumers' data.

Facial recognition company Clearview AI notified customers that an intruder had gained "unauthorized access" to its entire list of customers, The Daily Beast reports. From a report: Clearview gained widespread attention in recent weeks after a wave of media coverage, starting with The New York Times in January. The company stands out from others due to its use of a database of over 3 billion photos the firm constructed by scraping images from Facebook, Twitter, Instagram, and other social networks and websites. Clearview sells its product to law enforcement clients particularly in the U.S. The company's app allows a customer to point their phone's camera at a subject, or upload a photo into the system. Then, the system provides links to other photos and related social media profiles of the suspected person online.

An anonymous reader quotes a report from the Smithsonian: For the first time in its 174-year history, the Smithsonian has released 2.8 million high-resolution two- and three-dimensional images from across its collections onto an open access online platform for patrons to peruse and download free of charge. Featuring data and material from all 19 Smithsonian museums, nine research centers, libraries, archives and the National Zoo, the new digital depot encourages the public to not just view its contents, but use, reuse and transform them into just about anything they choose -- be it a postcard, a beer koozie or a pair of bootie shorts. And this gargantuan data dump is just the beginning. Throughout the rest of 2020, the Smithsonian will be rolling out another 200,000 or so images, with more to come as the Institution continues to digitize its collection of 155 million items and counting.

Two programmer-musicians wrote every possible MIDI melody in existence to a hard drive, copyrighted the whole thing, and then released it all to the public in an attempt to stop musicians from getting sued. From a report: Programmer, musician, and copyright attorney Damien Riehl, along with fellow musician/programmer Noah Rubin, sought to stop copyright lawsuits that they believe stifle the creative freedom of artists. Often in copyright cases for song melodies, if the artist being sued for infringement could have possibly had access to the music they're accused of copying -- even if it was something they listened to once -- they can be accused of "subconsciously" infringing on the original content. One of the most notorious examples of this is Tom Petty's claim that Sam Smith's "Stay With Me" sounded too close to Petty's "I Won't Back Down." Smith eventually had to give Petty co-writing credits on his own chart-topping song, which entitled Petty to royalties.

Defending a case like that in court can cost millions of dollars in legal fees, and the outcome is never assured. Riehl and Rubin hope that by releasing the melodies publicly, they'll prevent a lot of these cases from standing a chance in court. In a recent talk about the project, Riehl explained that to get their melody database, they algorithmically determined every melody contained within a single octave. To determine the finite nature of melodies, Riehl and Rubin developed an algorithm that recorded every possible 8-note, 12-beat melody combo. This used the same basic tactic some hackers use to guess passwords: Churning through every possible combination of notes until none remained. Riehl says this algorithm works at a rate of 300,000 melodies per second. Once a work is committed to a tangible format, it's considered copyrighted. And in MIDI format, notes are just numbers.

We live in a world where billions of login credentials have been stolen, enabling the brute-force cyberattacks known as "credential stuffing", reports CSO Online. And it's being made easier by APIs: New data from security and content delivery company Akamai shows that one in every five attempts to gain unauthorized access to user accounts is now done through application programming interfaces (APIs) instead of user-facing login pages. According to a report released today, between December 2017 and November 2019, Akamai observed 85.4 billion credential abuse attacks against companies worldwide that use its services. Of those attacks, around 16.5 billion, or nearly 20%, targeted hostnames that were clearly identified as API endpoints.

However, in the financial industry, the percentage of attacks that targeted APIs rose sharply between May and September 2019, at times reaching 75%.

"API usage and widespread adoption have enabled criminals to automate their attacks," the company said in its report. "This is why the volume of credential stuffing incidents has continued to grow year over year, and why such attacks remain a steady and constant risk across all market segments."
APIs also make it easier to extract information automatically, the article notes, while security experts "have long expressed concerns that implementation errors in banking APIs and the lack of a common development standard could increase the risk of data breaches."

Yet the EU's "Payment Services Directive" included a push for third-party interoperability among financial institutions, so "most banks started implementing such APIs... Even if no similar regulatory requirements exist in non-EU countries, market forces are pushing financial institutions in the same direction since they need to innovate and keep up with the competition."

A powerful antibiotic that kills some of the most dangerous drug-resistant bacteria in the world has been discovered using artificial intelligence. The Guardian reports: To find new antibiotics, the researchers first trained a "deep learning" algorithm to identify the sorts of molecules that kill bacteria. To do this, they fed the program information on the atomic and molecular features of nearly 2,500 drugs and natural compounds, and how well or not the substance blocked the growth of the bug E coli. Once the algorithm had learned what molecular features made for good antibiotics, the scientists set it working on a library of more than 6,000 compounds under investigation for treating various human diseases. Rather than looking for any potential antimicrobials, the algorithm focused on compounds that looked effective but unlike existing antibiotics. This boosted the chances that the drugs would work in radical new ways that bugs had yet to develop resistance to.

Jonathan Stokes, the first author of the study, said it took a matter of hours for the algorithm to assess the compounds and come up with some promising antibiotics. One, which the researchers named "halicin" after Hal, the astronaut-bothering AI in the film 2001: A Space Odyssey, looked particularly potent. Writing in the journal Cell, the researchers describe how they treated numerous drug-resistant infections with halicin, a compound that was originally developed to treat diabetes, but which fell by the wayside before it reached the clinic. Tests on bacteria collected from patients showed that halicin killed Mycobacterium tuberculosis, the bug that causes TB, and strains of Enterobacteriaceae that are resistant to carbapenems, a group of antibiotics that are considered the last resort for such infections. Halicin also cleared C difficile and multidrug-resistant Acinetobacter baumannii infections in mice. Three days after being set loose on a database of about 1.5 billion compounds, the algorithm returned a shortlist of 23 potential antibiotics, of which two appear to be particularly potent.

"[The senior researcher] now wants to use the algorithm to find antibiotics that are more selective in the bacteria they kill," adds The Guardian. "This would mean that taking the antibiotic kills only the bugs causing an infection, and not all the healthy bacteria that live in the gut. More ambitiously, the scientists aim to use the algorithm to design potent new antibiotics from scratch."

Ahead of a national day of action led by digital rights group Fight for the Future, UCLA has abandoned its plans to become the first university in the United States to adopt facial recognition technology. From a report: In a statement shared with Fight for the Future's Deputy Director Evan Greer, UCLA's Administrative Vice Chancellor Michael Beck said the university "determined that the potential benefits are limited and are vastly outweighed by the concerns of the campus community." Since last year, UCLA has been considering using the university's security cameras to implement a facial recognition surveillance system.

These plans have been dogged by student criticism, culminating in an editorial in the Daily Bruin, UCLA's student newspaper, that argued the system would "present a major breach of students' privacy" while creating "a more hostile campus environment" by "collecting invasive amounts of data on [UCLA's] population of over 45,000 students and 50,000 employees." In an attempt to highlight the risks of using facial recognition on UCLA's campus, Fight for the Future used Amazon's facial recognition software, Rekognition, to scan public photos of UCLA's athletes and faculty, then compare the photos to a mugshot database. Over 400 photos were scanned, 58 of which were false positives for mugshot images -- the software often gave back matches with "100% confidence" for individuals "who had almost nothing in common beyond their race"

An anonymous reader quotes a report from ZDNet: WordPress site owners who use commercial themes provided by ThemeGrill are advised to update one of the plugins that come installed with these themes in order to patch a critical bug that can let attackers wipe their sites. The vulnerability resides in ThemeGrill Demo Importer, a plugin that ships with themes sold by ThemeGrill, a web development company that sells commercial WordPress themes. The plugin, which is installed on more than 200,000 sites, allows site owners to import demo content inside their ThemeGrill themes so they'll have examples and a starting point on which they can build their own sites.

However, in a report published yesterday, WordPress security firm WebARX says that older versions of the ThemeGrill Demo Importer are vulnerable to remote attacks from unauthenticated attackers. Remote hackers can send a specially crafted payload to vulnerable sites and trigger a function inside the plugin. The vulnerable function resets the site's content to zero, effectively wiping the content of all WordPress sites where a ThemeGrill theme is active, and the vulnerable plugin is installed. Furthermore, if the site's database contains a user named "admin," then the attacker is granted access to that user with full administrator rights over the site.

Thousands of images, videos and records pertaining to plastic surgery patients were left on an unsecured database where they could be viewed by anyone with the right IP address, researchers said Friday. From a report: The data included about 900,000 records, which researchers say could belong to thousands of different patients. The data was generated at clinics around the world using software made by French imaging company NextMotion. Images in the database included before-and-after photos of cosmetic procedures. Those photos often contained nudity, the researchers said. Other records included images of invoices that contained information that would identify a patient. The database is now secured. Researchers Noam Rotem and Ran Locar found the exposed database. They published their research with vpnMonitor, a security website. Rotem said he sees exposed health care databases all too often as part of his web-mapping project, which looks for exposed data. "The state of privacy protection, especially in health care, is really abysmal," Rotem said.

Experts are hailing a British Airways flight as the fastest subsonic New York to London journey. From a report: The Boeing 747-436 reached speeds of 825 mph (1,327 km/h) as it rode a jet stream accelerated by Storm Ciara. The four hours and 56 minutes flight arrived at Heathrow Airport 80 minutes ahead of schedule on Sunday morning. According to Flightradar24, an online flight tracking service, it beat a previous five hours 13 minutes record held by Norwegian. The BBC has been unable to independently verify the record as no complete database of flight times was available. Aviation consultant and former BA pilot Alastair Rosenschein said the aeroplane reached a "phenomenal speed." "The pilot will have sat their aircraft in the core of the jet stream and at this time of year it's quite strong. Turbulence in those jet streams can be quite severe, but you can also find it can be a very smooth journey."

America's government "has reportedly acquired access to a commercial database that tracks the movements of millions of cellphones in the U.S.," reports CNET. "The data is being used for immigration and border enforcement, according to sources and documents reviewed by The Wall Street Journal."

Engadget's report on the news notes it's been going on "since at least 2017." The publication says the government bought the data from a company called Venntel, which in turn purchased it from a variety of marketing companies...

"This is a classic situation where creeping commercial surveillance in the private sector is now bleeding directly over into government," Alan Butler, the general counsel of the Electronic Privacy Information Center, told the WSJ.
The American Civil Liberties Union told TechCrunch that it plans the fight the newly-revealed practice, arguing that the government "should not be accessing our location information without a warrant."

CNET adds that the data "is reportedly collected from apps for gaming, weather and shopping that ask users to grant them location access."

v3rgEz writes: Every day government decisions from bus routes to policing used to be based on limited information and human judgment. Governments now use the ability to collect and analyze hundreds of data points everyday to automate many of their decisions.

The non-profit MuckRock, in partnership with Rutgers Institute for Information Policy and Law, has a database detailing how local governments across the U.S. are adopting algorithmic decision making, as well as an open collection of contracts, manuals, and other primary source documents detailing how these programs are implemented and overseen. "Automation and artificial intelligence could improve the notorious inefficiencies of government," argues one page at Muckrock, "and it could exacerbate existing errors in the data being used to power it..."

"Does handing government decisions over to algorithms save time and money? Can algorithms be fairer or less biased than human decision making? Do they make us safer?"

"Scientists have cultivated plants from date palm seeds that languished in ancient ruins and caves for 2,000 years," writes ScienceAlert. schwit1 shared their report: This remarkable feat confirms the long-term viability of the kernels once ensconced in succulent Judean dates, a fruit cultivar lost for centuries. The results make it an excellent candidate for studying the longevity of plant seeds. From those date palm saplings, the researchers have begun to unlock the secrets of the highly sophisticated cultivation practices that produced the dates praised by Herodotus, Galen, and Pliny the Elder.

First, they collected fragments of the seed shells still clinging to the roots of the plants. These were perfect for radiocarbon dating -- which confirmed the seeds date back to between 1,800 and 2,400 years ago. Then, the researchers could conduct genetic analyses of the plants themselves, comparing them to a genetic database of current data palms. This showed exchanges of genetic material from eastern date palms from the Middle East, and western date palms from North Africa.

Indeed, the researchers found that the ancient seeds were up to 30 percent larger than date seeds today, which probably meant the fruit was larger, too.

And, of course, there's the seemingly miraculous germination after so many centuries. As anyone who buys seeds for their garden knows, seeds deteriorate; the longer you have a packet of seeds sitting in storage, the fewer will germinate when you finally plant them. If scientists can discover how the date seeds retained their viability for so long, that could have important implications for agriculture.

Google, YouTube and Venmo have sent cease-and-desist letters to Clearview AI, a facial recognition app that scrapes images from websites and social media platforms, CBS News has learned. The tech companies join Twitter, which sent a similar letter in January, in trying to block the app from taking pictures from their platforms. From the report: Clearview AI can identify a person by comparing their picture to its database of three billion images from the internet, and the results are 99.6% accurate, CEO Hoan Ton-That told CBS News correspondent Errol Barnett. The app is only available to law enforcement to be used to identify criminals, Ton-That said. "You have to remember that this is only used for investigations after the fact. This is not a 24/7 surveillance system," he said. But YouTube, which is owned by Google, as well as Venmo and Twitter say the company is violating its policies. [...] In addition to demanding that Clearview AI stop scraping content from Twitter, the social media platform demanded that the app delete all data already collected from Twitter, according to an excerpt of the cease-and-desist letter given to CBS News. Update: LinkedIn is joining the party.