An anonymous reader quotes a report from Ars Technica: Hacking is hard. Well, sometimes. Other times, you just call up a company's IT service desk and pretend to be an employee who needs a password reset, an Okta multifactor authentication reset, and a Microsoft multifactor authentication reset... and it's done. Without even verifying your identity. So you use that information to log in to the target network and discover a more trusted user who works in IT security. You call the IT service desk back, acting like you are now this second person, and you request the same thing: a password reset, an Okta multifactor authentication reset, and a Microsoft multifactor authentication reset. Again, the desk provides it, no identity verification needed. So you log in to the network with these new credentials and set about planting ransomware or exfiltrating data in the target network, eventually doing an estimated $380 million in damage. Easy, right?

According to The Clorox Company, which makes everything from lip balm to cat litter to charcoal to bleach, this is exactly what happened to it in 2023. But Clorox says that the "debilitating" breach was not its fault. It had outsourced the "service desk" part of its IT security operations to the massive services company Cognizant -- and Clorox says that Cognizant failed to follow even the most basic agreed-upon procedures for running the service desk. In the words of a new Clorox lawsuit, Cognizant's behavior was "all a devastating lie," it "failed to show even scant care," and it was "aware that its employees were not adequately trained."

"Cognizant was not duped by any elaborate ploy or sophisticated hacking techniques," says the lawsuit, using italics to indicate outrage emphasis. "The cybercriminal just called the Cognizant Service Desk, asked for credentials to access Clorox's network, and Cognizant handed the credentials right over. Cognizant is on tape handing over the keys to Clorox's corporate network to the cybercriminal -- no authentication questions asked." [...] The new lawsuit, filed in California state courts, wants Cognizant to cough up millions of dollars to cover the damage Clorox says it suffered after weeks of disruption to its factories and ordering systems. (You can read a brief timeline of the disruption here.)

A landmark decision by a top UN court has cleared the way for countries to sue each other over climate change, including over historic emissions of planet-warming gases. BBC: But the judge at the International Court of Justice in the Hague, Netherlands on Wednesday said that untangling who caused which part of climate change could be difficult. The ruling is non-binding but legal experts say it could have wide-ranging consequences. It will be seen as a victory for countries that are very vulnerable to climate change, who came to court after feeling frustrated about lack of global progress in tackling the problem.

Olof Kyros Gustafsson, former CEO of Escobar, pleaded guilty to fraud and money laundering charges related to the company's phone scam operation. The Department of Justice says Gustafsson took orders for phones branded with Pablo Escobar's likeness but failed to deliver products, instead transferring customer money for personal use.

When customers sought refunds, Gustafsson fraudulently referred payment processors to certificates of ownership as proof of delivery. The phones were Samsung devices with gold stickers. Gustafsson faces up to 20 years in prison and $1.3 million in restitution at his December 5th sentencing.

The Brave Browser now blocks Microsoft Recall by default for Windows 11+ users, preventing the controversial screenshot-logging feature from capturing any Brave tabs -- regardless of whether users are in private mode. Brave cites persistent privacy concerns and potential abuse scenarios as justification. From a blog post: Microsoft has, to their credit, made several security and privacy-positive changes to Recall in response to concerns. Still, the feature is in preview, and Microsoft plans to roll it out more widely soon. What exactly the feature will look like when it's fully released to all Windows 11 users is still up in the air, but the initial tone-deaf announcement does not inspire confidence.

Given Brave's focus on privacy-maximizing defaults and what is at stake here (your entire browsing history), we have proactively disabled Recall for all Brave tabs. We think it's vital that your browsing activity on Brave does not accidentally end up in a persistent database, which is especially ripe for abuse in highly-privacy-sensitive cases such as intimate partner violence.

Microsoft has said that private browsing windows on browsers will not be saved as snapshots. We've extended that logic to apply to all Brave browser windows. We tell the operating system that every Brave tab is 'private', so Recall never captures it. This is yet another example of how Brave engineers are able to quickly tweak Chromium's privacy functionality to make Brave safer for our users (inexhaustive list here). For more technical details, see the pull request implementing this feature. Brave is the only major Web browser that disables Microsoft Recall by default in all tabs.

An anonymous reader quotes a report from Ars Technica: A California lawmaker halted an effort to pass a law that would force Internet service providers to offer $15 monthly plans to people with low incomes. Assemblymember Tasha Boerner proposed the state law a few months ago, modeling the bill on a law enforced by New York. It seemed that other states were free to impose cheap-broadband mandates because the Supreme Court rejected broadband industry challenges to the New York law twice.

Boerner, a Democrat who is chair of the Communications and Conveyance Committee, faced pressure from Internet service providers to change or drop the bill. She made some changes, for example lowering the $15 plan's required download speeds from 100Mbps to 50Mbps and the required upload speeds from 20Mbps to 10Mbps. But the bill was still working its way through the legislature when, according to Boerner, Trump administration officials told her office that California could lose access to $1.86 billion in Broadband Equity, Access, and Deployment (BEAD) funds if it forces ISPs to offer low-cost service to people with low incomes.

That amount is California's share of a $42.45 billion fund created by Congress to expand access to broadband service. The Trump administration has overhauled program rules, delaying the grants. One change is that states can't tell ISPs what to charge for a low-cost plan. The US law that created BEAD requires Internet providers receiving federal funds to offer at least one "low-cost broadband service option for eligible subscribers." But in new guidance from the National Telecommunications and Information Administration (NTIA), the agency said it prohibits states "from explicitly or implicitly setting the LCSO [low-cost service option] rate a subgrantee must offer." "All they would have to do to get exempted from AB 353 [the $15 broadband bill] would be to apply to the BEAD program," said Boerner. "Doesn't matter if their application was valid, appropriate, granted, or they got public money at the end of the day and built the projects -- the mere application for the BEAD program would exempt them from 353, if it didn't jeopardize from $1.86 billion to begin with. And that was a tradeoff I was unwilling to make."

Another California bill in the Senate would encourage, not require, ISPs to offer cheap broadband by making them eligible for Lifeline subsidies if they sell 100/20Mbps service for $30 or less.

The estate of Mike Lynch, who died a year ago when his superyacht sank off the coast of Sicily, and his business partner owe Hewlett-Packard more than $944 million, a court has ruled. From a report: The US technology company has been seeking damages of up to $4.55 billion from the estate of the late tycoon, once hailed as the UK's answer to Microsoft founder Bill Gates, over its disastrous takeover of his British software company Autonomy.

Lynch's estate has been estimated to be worth about $674 million and paying its share of the $944 million damages could leave it bankrupt. He and six others, including his 18-year-old daughter Hannah, died last August on a trip celebrating his acquittal on US fraud charges relating to HP's $11 billion takeover of Autonomy in 2011. However, HP won a separate six-year civil fraud case against Lynch and his former finance director Sushovan Hussain in the English high court in 2022, with Mr Justice Hildyard ruling that the US company had been induced into overpaying for the business.

FCC Chairman Brendan Carr is proposing (PDF) to roll back key Biden-era broadband policies, scrapping the long-term gigabit speed goal, halting analysis of broadband affordability, and reinterpreting deployment standards in a way that favors industry metrics over consumer access. The proposal, which is scheduled for a vote on August 7, narrows the scope of Section 706 evaluations to focus on whether broadband is being deployed rather than whether it's affordable or universally accessible. Ars Technica reports: The changes will make it easier for the FCC to give the broadband industry a passing grade in an annual progress report. FCC Chairman Brendan Carr's proposal would give the industry a thumbs-up even if it falls short of 100 percent deployment, eliminate a long-term goal of gigabit broadband speeds, and abandon a new effort to track the affordability of broadband.

Section 706 of the Telecommunications Act requires the FCC to determine whether broadband is being deployed "on a reasonable and timely basis" to all Americans. If the answer is no, the US law says the FCC must "take immediate action to accelerate deployment of such capability by removing barriers to infrastructure investment and by promoting competition in the telecommunications market."

Generally, Democratic-led commissions have found that the industry isn't doing enough to make broadband universally available, while Republican-led commissions have found the opposite. Democratic-led commissions have also periodically increased the speeds used to determine whether advanced telecommunications capabilities are widely available, while Republican-led commissioners have kept the speed standards the same.

An anonymous reader quotes a report from the BBC: One password is believed to have been all it took for a ransomware gang to destroy a 158-year-old company and put 700 people out of work. KNP -- a Northamptonshire transport company -- is just one of tens of thousands of UK businesses that have been hit by such attacks. Big names such as M&S, Co-op and Harrods have all been attacked in recent months. The chief executive of Co-op confirmed last week that all 6.5 million of its members had had their data stolen. In KNP's case, it's thought the hackers managed to gain entry to the computer system by guessing an employee's password, after which they encrypted the company's data and locked its internal systems. KNP director Paul Abbott says he hasn't told the employee that their compromised password most likely led to the destruction of the company. "Would you want to know if it was you?" he asks. "We need organizations to take steps to secure their systems, to secure their businesses," says Richard Horne CEO of the National Cyber Security Centre (NCSC) -- where Panorama has been given exclusive access to the team battling international ransomware gangs. A gang of hackers, known as Akira, broke into the company's system and demanded a payment to restore the data. "The hackers didn't name a price, but a specialist ransomware negotiation firm estimated the sum could be as much as 5 million pounds," reports the BBC. "KNP didn't have that kind of money. In the end all the data was lost, and the company went under."

One in every 9 Americans lives in California. And right now its Congress is debating a bill that "would help establish a regional electricity market capable of tying together the American West's three dozen independent power grids," according to the Los Angeles Times' newsletter about climate change and energy issues.

But that bill "has bitterly divided environmentalists," with some seeing it "as a plot by greedy energy companies to enrich themselves." Supporters say it would smooth the flow of solar and wind power from the sunny, windy landscapes where they're produced most cheaply to the cities where they're most needed. It would help California keep the lights on without fossil fuels, and without driving up utility bills... [S]olar and wind power are still cheaper than planet-warming coal and fossil gas. Which is why Michael Wara, a Stanford energy and climate scholar, isn't worried that SB 540 will leave Californians drowning in dirty power. In a regional market, solar and wind will usually outcompete coal and gas. "Any energy source that requires fuel to operate is more expensive than an energy source that doesn't," he said.

California also needs to prove that a grid powered entirely by clean energy is affordable and reliable. The state's rising electric rates are already a big concern. And although the grid has been stable the last few years, thanks to batteries that store solar for after dark, keeping the lights on with more and more renewables might get harder. Regional market advocates make a strong case that interstate cooperation would help.

For instance, a market would help California more smoothly access Pacific Northwest hydropower, already a key energy source during heat waves. It would also give California easier access to low-cost winds from New Mexico and Wyoming. Best of all, that wind is often blowing strong just as the sun sets along the Pacific. Another benefit: Right now, California often generates more solar than it can use during certain hours of the day, forcing solar farms to shut down — or pay other states to take the extra power. With a regional market, California could sell excess solar to other states, keeping utility bills down. "This is about lowering costs," said Robin Everett, deputy director of the Sierra Club's Beyond Coal Campaign.
"Unlike with past regional market proposals, California would retain control of its grid operator, with only a few functions delegated to a regional entity," the article points out. But opponents still worry this would give new powers to an outside-of-California group to thwart clean energy progress (if not gouge customers). Amendments passed this week add a "Regional Energy Markets Oversight Council" to address that concern — but which lost support for the bill from some of its earlier supporters.

"The amendments would make it easier for the Golden State to bail," notes the climate newsletter, and "Out-of-state utilities don't want to waste time and money committing themselves to a California-led market only to lose California, and thus many of the economic benefits..."

Long-time Slashdot reader wattersa is a lawyer in Redwood City, California, and a Slashdot reader since 1998. In 2022 he shared the remarkable story of a three-year missing person investigation that was ultimately solved with a subpoena to Google. A murder victim appeared to have sent an email at a time which would exonerate the chief suspect. But a closer inspection of that email's IP addresses revealed it was actually sent from a hotel where the suspect was staying. ("Although Google does not include the originating IP address in the email headers, it turns out that they retain the IP address for some unknown length of time...")

Today wattersa brings this update: The case finally went to trial in July 2025, where I testified about the investigation along with an expert witness on computer networking. The jury took three hours to return a verdict against the victim's husband for wrongful death in the amount of $23.2 million, with a special finding that he caused the death of his wife.

The defendant is a successful mechanical engineer at an energy company, but is walking as a free man because he is Canadian and no one can prosecute him in the U.S., since Taiwan and the U.S. don't have extradition with each other.

It was an interesting case and I look forward to using it as a model in other missing person cases.

"I vibe coded a little game called Coldplay Canoodlers," reads the X.com post by gaming enthusiast/songwriter Jonathan Mann. "You're the camera operator and you have to find the CEO and HR lady canoodling. 10 points every time you find them."

Mann's post includes a 30-second clip from the game, which is playable here.

Forbes notes that the TikTok video of the couple's reaction has drawn more than 100 million views — and that the married-to-someone-else CEO has now tendered his resignation from his dataops company Astronomer (which was accepted). The company is now searching for a new chief executive, according to a statement posted on LinkedIn. ("Comments have been turned off on this post...")

"Our leaders are expected to set the standard in both conduct and accountability, and recently, that standard was not met."

But songwriter Mann saw a chance to have some fun, writes Forbes: Mann used ChatGPT to make the "Coldplay Canoodlers" game, inputting such prompts as: "Can you generate an 8-bit pixel image of a stadium concert viewed from the stage" and "there should be a large jumbotron somewhere up in the stadium seats." He also entered rough drawings of the visual style he envisioned... The response to the game, Mann said in an interview, has been unexpected. "I have gone viral many times with my songs," he said. It's "very strange to have it happen with a game I made in four hours."
Songwriter Mann has been sharing an original song online every day for over 17 years. Last summer Slashdot also covered Mann's attempts to sell NFTs of his songs, and his concerns about SEC regulations. (This led him to file a real-world legal challenge — and to write a song titled "I'm Suing the SEC".) So with all the attention this weekend to his instant game, there was nothing to do but... write a new song about it.

And minutes ago on X.com, Mann also posted a new update about his game.

"I turned it into an NFT."

"Took some time," Mann explained later. "But I vibe coded my own ERC-721 contract and minted the game as a playable NFT. (Plays great on OpenSea)."

"Nearly 2 million people protected their privacy by deleting their DNA from 23andMe after it declared bankruptcy in March," writes a Washington Post technology columnist.

"Now it's back with the same person in charge — and I still don't trust it." As of this week, genetic data from the more than 10 million remaining 23andMe customers has been formally sold to an organization called TTAM Research Institute for $305 million. That nonprofit is run by the person who co-founded and ran 23andMe, Anne Wojcicki. In a recent email to customers, the new 23andMe said it "will be operating with the same employees and privacy protocols that have protected your data." Never mind that Wojcicki and her privacy protocols are what put your DNA at risk in the first place...

The company is legally obligated to maintain and honor 23andMe's existing privacy policies, user consents and data protection measures. And as part of a settlement with states, TTAM also agreed to provide annual privacy reports to state regulators and set up a privacy board. But it hasn't agreed to take the fundamental step of asking for permission to acquire existing customers' genetic information. And it's leaving the door open to selling people's genes to the highest bidder again in the future...

Existing 23andMe customers have the right to delete their data or opt out of TTAM's research. But the new company is not asking for opt-in permission before it takes ownership of customers' DNA... Why does that matter? Because people who handed over the DNA 15 years ago, often to learn about their genetic ancestry, never imagined it might be used in this way now. Asking for new permission might significantly shrink the size (and value) of 23andMe's DNA database — but it would be the right thing to do given the rocky history. Neil M. Richards [the Washington University professor who served as privacy ombudsman for the bankruptcy court], pointed out that about a third of 23andMe customers haven't logged in for at least three years, so they may have no idea what is going on. Some 23andMe users never even clicked "agree" on a legal agreement that allowed their data to be sold like this; the word "bankruptcy" wasn't added to the company's privacy policy until 2022. And then there is an unknown number of deceased users who most certainly can't consent, but whose DNA still has an impact on their living genetic relatives...

[S]everal states have argued that their existing genetic privacy laws don't allow 23andMe to receive the information without getting permission from every single person. Virginia has an ongoing lawsuit over the issue, and the California attorney general's office told me it "will continue to fight to protect and vindicate the rights" of consumers....
Two more points of concern:

• "There is nothing in 23andMe's bankruptcy agreement or privacy statement to prevent TTAM from selling or transferring DNA to some other organization in the future."

• The article also notes a 2023 data breach affecting 6.9 million users, arguing "They haven't shown they can keep your data safe... 23andMe's financial struggles could make it hard to run a robust cybersecurity program."

Google has filed a lawsuit to dismantle the sprawling Badbox 2.0 botnet, which infected over 10 million Android devices with pre-installed malware. Badbox 2.0 "is already the largest known botnet of internet-connected TV devices, and it grows each day. It has harmed millions of victims in the United States and around the world and threatens many more," Google said in its complaint. SecurityWeek reports: The internet giant cautions that, while it has been used mainly for fraud, the botnet could be used for more harmful types of cybercrime, such as ransomware or distributed denial-of-service (DDoS) attacks. In addition to pre-installing the malware on devices, Badbox 2.0's operators also tricked users into installing infected applications that provided them with further access to their personal devices, Google says. As part of their operation, the individuals behind Badbox 2.0 sold access to the infected devices to be used as residential proxies, and conducted ad fraud schemes by abusing these devices to create fake ad views or to exploit pay-per-click compensation models, the company continues. The internet giant also points out that this is the second global botnet the perpetrators have built, after the initial Badbox botnet was disrupted by German law enforcement in 2023.

According to Google, Badbox 2.0 is operated by multiple cybercrime groups from China, each having a different role in maintaining the botnet, such as establishing infrastructure, developing and pre-installing the malware on devices, and conducting fraud. "The BadBox 2.0 Enterprise includes several connected threat actor groups that design and implement complex criminal schemes targeting internet-connected devices both before and after the consumer receives the device," Google says. "While each member of the Enterprise plays a distinct role, they all collaborate to execute the BadBox 2.0 Scheme. All of the threat actor groups are connected to one another through the BadBox 2.0 shared C2 infrastructure and historical and current business ties," the company continues.

Christine Hunsicker, founder of the failed "Clothing-as-a-Service" startup CaaStle, has been criminally charged with defrauding investors of over $300 million by falsifying financials and misrepresenting the company's health. CNBC reports: Authorities said Christine Hunsicker, 48, of Lafayette, New Jersey, promoted CaaStle to investors as a more than $1.4 billion "Clothing-as-a-Service" business that helped companies rent apparel to consumers with an option to buy, despite knowing it was financially distressed and short of cash. The alleged fraud spanned six years starting in 2019, three years after the Princeton University alumna was named one of Inc magazine's "Most Impressive Women Entrepreneurs" and Crain's New York Business' "40 Under 40."

Hunsicker was charged in a six-count indictment with wire fraud, securities fraud, money laundering, making false statements to a bank and aggravated identity theft. She turned herself in to authorities, and could face decades in prison if convicted. The Securities and Exchange Commission filed a related civil lawsuit. In a joint statement, Hunsicker's lawyers Michael Levy and Anna Skotko said the indictment presented "an incomplete and very distorted picture," despite their client being "fully cooperative and transparent" with prosecutors. "There is much more to this story, and we look forward to telling it," the lawyers added.

Authorities said Hunsicker falsified CaaStle's financial statements and bank records to raise capital. This included alleged representations that CaaStle earned $66.3 million on revenue of $439.9 million in 2023, when it actually lost $81 million on revenue of $15.7 million. Hunsicker was also accused of falsely telling investors their money would go toward buying discounted shares from existing shareholders who needed liquidity, including after the 2022 collapse of the FTX cryptocurrency exchange. Prosecutors said Hunsicker fraudulently raised more than $275 million for CaaStle and $30 million for a related venture, P180.

Brandon Vigliarolo writes via The Register: A tech executive's alleged affair exposed on a stadium jumbotron is ripe fodder for the gossip rags, but it exhibits something else: proof that we need not wait for an AI-fueled dystopian surveillance state to descend on us -- we're perfectly able and willing to surveil ourselves. The embracing couple caught at a Coldplay concert this week as the jumbotron camera panned around the audience would have been another unremarkable clip, if not for the pair panicking and rushing to hide, triggering attendees to publish the memorable moment on social media. "Either they're having an affair or they're very shy," Coldplay singer Chris Martin said of the pair's reaction.

As is always the case when viral moments of unknown people get uploaded to the internet, they didn't remain anonymous for long, with the internet quickly identifying them as the CEO of data infrastructure outfit Astronomer, Andy Byron, and its Chief People Officer, Kristin Cabot. We're not going to weigh in on Byron's, who internet sleuths have determined is married (for now), or Cabot's behavior - making someone pay for the moral transgression of an alleged extramarital affair may be enough reason for the internet to go on a witch hunt, but that's not our concern here.

What's worrying is what this moment says - yet again - about us as a society: We have cameras everywhere, our personal data has become one of the most valuable commodities in the world, and we're all perpetually ready to use that tech to make those we feel have violated the social contract pay publicly for their transgressions. This is hardly a new phenomenon. [...] There's really no reason to set up an expensive and oppressive surveillance state when we all have location tracking, internet-connected shaming machines in our pockets. Big tech gave us the tools of our own surveillance, and as "ColdplayGate" shows yet again, we'll keep using those tools if they'll make us feel better about ourselves - especially if someone else gets knocked down a peg in the process.

President Trump signed the GENIUS Act into law, marking the first major U.S. regulation of stablecoins by creating a legal framework for their issuance and consumer protections, while also championing crypto innovation as a major financial revolution. The bill passed the House on Thursday with the support of 206 Republicans and 102 Democrats. From a report: Members of Congress and top executives from Robinhood, Tether, Gemini and other crypto and financial firms were in attendance for the signing ceremony. The fate of the GENIUS Act was in question earlier this week when a dozen conservatives stymied a procedural vote. A compromise was ultimately reached, and the holdouts allowed the legislation to proceed. The president on Friday suggested that he spoke to the holdouts individually on the phone to persuade them, after House Speaker Mike Johnson told him there were a dozen Republicans opposing the bill.

"The good news is, I call up, 'Hello, Jim, how are you?' 'Sir, you have my vote.' Boom. 'Sir, you have my vote.' I really just, they just want a little love," he said. "Unfortunately, it's always the same 12 people." David Sacks, the venture capitalist-turned Mr. Trump's AI and crypto czar, said the president "stepped in and saved this bill." Mr. Trump also said Vice President JD Vance had been on the phone late at night, helping push the legislation through.

Ring has restored police access to user video footage and returned to its original crime-prevention mission under founder Jamie Siminoff, who rejoined Amazon in April after a two-year absence. The video doorbell company announced a partnership with law enforcement technology firm Axon that allows police to request footage through Axon's digital evidence management system, effectively reviving a controversial feature Ring discontinued last year.

Siminoff scrapped Ring's socially-focused mission statement "Keep people close to what's important" that Amazon introduced in 2024 and reinstated the company's original mandate to "make neighborhoods safer." The company previously paid $5.8 million to settle Federal Trade Commission allegations of privacy violations in 2023, though Amazon denied wrongdoing.

Apple has filed a lawsuit against YouTuber Jon Prosser and Michael Ramacciotti for misappropriation of trade secrets related to iOS 26 leaks published earlier this year. The complaint alleges Prosser and Ramacciotti conspired to access a development iPhone belonging to Apple employee Ethan Lipnik, acquiring his passcode and using location-tracking to determine when he "would be gone for an extended period."

Apple claims Ramacciotti accessed Lipnik's device and made a FaceTime call to Prosser showing iOS 26 features, which Prosser recorded and used to create rendered mockups for his January, March, and April videos. Lipnik's employment was terminated, and Apple seeks an injunction against further disclosure plus damages.

The House passed a bipartisan bill regulating stablecoins which now heads to President Trump's desk as part of his push to make the U.S. the "crypto capital of the world." Two other crypto-related bills -- one defining digital asset market structure and another banning a U.S. central bank digital currency -- were also approved by the House but face uncertain futures in the Senate amid partisan tensions and concerns over Trump's personal financial ties to crypto ventures. CNBC reports: The stablecoin bill, passed on a 308-122 vote, sets initial guardrails and consumer protections for the cryptocurrency, which is tied to a stable asset, often the U.S. dollar, to reduce price volatility. It passed the Senate with bipartisan support in June. "Around the world, payment systems are undergoing a revolution," said House Financial Services Chair French Hill of Arkansas as lawmakers debated the stablecoin legislation Thursday morning. Hill said the bill will "ensure American competitiveness and strong guardrails for our consumers."

After Trump declared it "crypto week," the bills were stalled for more than a day amid disagreements among House Republicans about how to combine the legislation. In the end, GOP leaders put the three bills for a separate votes, leaving the fate of the other two bills unclear in the Senate. The internal dissent could foreshadow challenges ahead for the more sweeping crypto legislation that Trump has demanded and the industry has poured millions into advancing. The stablecoin measure is seen by lawmakers and the industry as a step toward adding legitimacy and consumer trust to a rapidly growing sector. Treasury Secretary Scott Bessent said in June that the legislation could help that currency "grow into a $3.7 trillion market by the end of the decade."

The bill outlines requirements for stablecoin issuers, including compliance with U.S. anti-money laundering and sanctions laws, and mandates that issuers hold reserves backing the cryptocurrency. Without such a framework, Republicans on the Senate Banking Committee in a statement warned, "consumers face risks like unstable reserves or unclear operations from stablecoin issuers." After the votes, House Republicans strongly urged the Senate to take up the second bill, which would create a new market structure for cryptocurrency.

Russian lawmakers passed sweeping new legislation allowing authorities to fine individuals simply for searching and accessing content labeled "extremist" via VPNs. The Washington Post reports: Russia defines "extremist materials" as content officially added by a court to a government-maintained registry, a running list of about 5,500 entries, or content produced by "extremist organizations" ranging from "the LGBT movement" to al-Qaeda. The new law also covers materials that promote alleged Nazi ideology or incite extremist actions. Until now, Russian law stopped short of punishing individuals for seeking information online; only creating or sharing such content is prohibited. The new amendments follow remarks by high-ranking officials that censorship is justified in wartime. Adoption of the measures would mark a significant tightening of Russia's already restrictive digital laws.

The fine for searching for banned content in Russia would be about a $65, while the penalty for advertising circumvention tools such as VPN services would be steeper -- $2,500 for individuals and up to $12,800 for companies. Previously, the most significant expansion of Russia's restrictions on internet use and freedom of speech occurred shortly after the February 2022 full-scale invasion of Ukraine, when sweeping laws criminalized the spread of "fake news" and "discrediting" the Russian military. The new amendment was introduced Tuesday and attached to a mundane bill on regulating freight companies, according to documents published by Russia's lower house of parliament, the State Duma.