An anonymous reader quotes a report from Ars Technica: The practice of "swatting," or calling in fake threats to activate an aggressive police response to an unwitting home or business, has unfortunately lingered for the past few years. Starting this week, one police department in the United States is rolling out a system targeted directly at this illegal hoax practice. On its official "swatting" resource site, the Seattle Police Department acknowledges how swatting works, along with the fact that citizens have requested a way to submit their own concerns or worries about being a potential victim. "To our knowledge, no solution to this problem existed, so we engineered one," SPD's site reads. The site claims that swatting victims are "typically associated with the tech industry, video game industry, and/or the online broadcasting community."

SPD's process asks citizens to create a profile on a third-party data-management service called Rave Facility (run by the company Smart911). Though this service is advertised for public locations and businesses, it supports private residences as well, and SPD offers steps to input data and add a "swatting concerns" tab to your profile. With that information in hand, SPD says that any police or 911 operator who receives a particularly troubling emergency report and matches it to a location that has already been flagged with a "swatting concerns" notice, will share that information "with first responders to inform and improve their police response to the incident." The report notes that "all calls" will still receive standard police response, whether or not any swatting concerns are filed. "Nothing about this solution is designed to minimize or slow emergency services," the site reads. "At the same time, if information is available, it is more useful for responding officers to have it than to not."

An anonymous reader quotes a report from Ars Technica: A lone engineer has succeeded in doing what Uber's top lawyers and expert witnesses could not -- overturning most of a foundational patent covering arch-rival Waymo's lidar laser ranging devices. Following a surprise left-field complaint by Eric Swildens, the US Patent and Trademark Office (USPTO) has rejected all but three of 56 claims in Waymo's 936 patent, named for the last three digits of its serial number. The USPTO found that some claims replicated technology described in an earlier patent from lidar vendor Velodyne, while another claim was simply "impossible" and "magic." The 936 patent played a key role in last year's epic intellectual property lawsuit with Uber. In December 2016, a Waymo engineer was inadvertently copied on an email from one of its suppliers to Uber, showing a lidar circuit design that looked almost identical to one shown in the 936 patent.

The patent describes how a laser diode can be configured to emit pulses of laser light using a circuit that includes an inductor and a gallium nitride transistor. That chance discovery helped spark a lawsuit in which Waymo accused Uber of patent infringement and of using lidar secrets supposedly stolen by engineer Anthony Levandowski. In August 2017, Uber agreed to redesign its Fuji lidar not to infringe the 936 patent. Then, in February 2018, Waymo settled the remaining trade secret theft allegations in exchange for Uber equity worth around $245 million and a commitment from Uber not to copy its technology. "This includes an agreement to ensure that any Waymo confidential information is not being incorporated in Uber hardware and software," said a Waymo spokesperson at the time. That redesign now seems to have been unnecessary, says Swildens, the engineer who asked the USPTO to take a closer look at 936. "Waymo's claim that Uber infringed the 936 patent was spurious, as all the claims in the patent that existed at the time of the lawsuit have been found to be invalid," he said. Uber told Ars that despite the ruling, it would not be redesigning its lidars yet again. Swildensj, an employee at a small cloud computing startup, reportedly "spent $6,000 of his own money to launch a formal challenge to 936," reports Ars. "In March, an examiner noted that a re-drawn diagram of Waymo's lidar firing circuit showed current passing along a wire between the circuit and the ground in two directions -- something generally deemed impossible. 'Patent owner's expert testimony is not convincing to show that the path even goes to ground in view of the magic ground wire, which shows current moving in two directions along a single wire,' noted the examiners dryly."

"As I investigated the 936 patent, it became clear it was invalid due to prior art for multiple reasons," Swildens told Ars. "I only filed the reexamination because I was absolutely sure the patent was invalid."

Google is finally turning its attention to Chrome Web Store. On Monday, the company announced a range of big changes that would make the online store more secure for customers. From a report: The first two are happening now: Developers are being subjected to a more rigorous review process, and the Chrome Web Store no longer accepts obfuscated JavaScript files. In a couple of weeks, Chrome users will get the option to restrict host access for their extensions. And in 2019, two more changes will take effect: Chrome Web Store developer accounts will require 2-step verification, and Google will introduce manifest version 3 of the extensions platform.

[...] Effective today, extensions that request powerful permissions will be subject to additional compliance review. Google doesn't offer much detail here, but it does say your extension's permissions should be as narrowly scoped as possible and all your code should be included directly in the extension package to minimize review time. If your extension uses remotely hosted code, Google will also be taking a closer look (and will monitor on an ongoing basis).

An anonymous reader shares an NPR report: Shiru Cafe looks like a regular coffee shop. Inside, machines whir, baristas dispense caffeine and customers hammer away on laptops. But all of the customers are students, and there's a reason for that. At Shiru Cafe, no college ID means no caffeine. "We definitely have some people that walk in off the street that are a little confused and a little taken aback when we can't sell them any coffee," said Sarah Ferris, assistant manager at the Shiru Cafe branch in Providence, R.I., located near Brown University. Ferris will turn away customers if they're not college students or faculty members. The cafe allows professors to pay, but students have something else the shop wants: their personal information.

To get the free coffee, university students must give away their names, phone numbers, email addresses and majors, or in Brown's lingo, concentrations. Students also provide dates of birth and professional interests, entering all of the information in an online form. By doing so, the students also open themselves up to receiving information from corporate sponsors who pay the cafe to reach its clientele through logos, apps, digital advertisements on screens in stores and on mobile devices, signs, surveys and even baristas. According to Shiru's website: "We have specially trained staff members who give students additional information about our sponsors while they enjoy their coffee." The source article additionally explores privacy aspects of the business. The cafe, which is owned by Japanese company Enrission, says it shares general, aggregate data such as student majors and expected graduation years.

Travelers in New Zealand who refuse to hand over their phone or laptop passwords to Customs officials can now be slapped with a $5000 fine. From a report: The Customs and Excise Act 2018 -- which comes into effect today -- sets guidelines around how Customs can carry out "digital strip-searches." Previously, Customs could stop anyone at the border and demand to see their electronic devices. However, the law did not specify that people had to also provide a password. The updated law makes clear that travelers must provide access -- whether that be a password, pin-code or fingerprint -- but officials would need to have a reasonable suspicion of wrongdoing. "It is a file-by-file [search] on your phone. We're not going into 'the cloud.' We'll examine your phone while it's on flight mode," Customs spokesperson Terry Brown said. If people refused to comply, they could be fined up to $5000 and their device would be seized and forensically searched. Mr Brown said the law struck the "delicate balance" between a person's right to privacy and Customs' law enforcement responsibilities. "I personally have an e-device and it maintains all my records -- banking data, et cetera, et cetera -- so we understand the importance and significance of it."

In what may be a world first, the FBI has forced a suspect to unlock his iPhone X using Apple's Face ID feature. From a report: Agents in Columbus, Ohio entered the home of 28-year-old Grant Michalski, who was suspected of child abuse, according to court documents spotted by Forbes. With a search warrant in hand, they forced him to put his face on front of the device to unlock it. They were then able to freely search for his photos, chats and any other potential evidence. The FBI started investigating Michalski after discovering his ad on Craigslist titled "taboo." Later, they discovered emails in which he discussed incest and sex with minors with another defendant, William Weekly.

The Trump administration has completed a detailed legal proposal to dramatically weaken a major environmental regulation covering mercury, a toxic chemical emitted from coal-burning power plants, The New York Times reports, citing a person familiar with the matter. From the report: The proposal would not eliminate the mercury regulation entirely, but it is designed to put in place the legal justification for the Trump administration to weaken it and several other pollution rules, while setting the stage for a possible full repeal of the rule. Andrew Wheeler, a former coal lobbyist who is now the acting administrator of the Environmental Protection Agency, is expected in the coming days to send the proposal to the White House for approval. The move is the latest, and one of the most significant, in the Trump administration's steady march of rollbacks of Obama-era health and environmental regulations on polluting industries, particularly coal. The weakening of the mercury rule -- which the E.P.A. considers the most expensive clean air regulation ever put forth in terms of annual cost to industry -- would represent a major victory for the coal industry. Mercury is known to damage the nervous systems of children and fetuses.

California Gov. Jerry Brown signed into law on Sunday a bill to restore net neutrality protections that President Donald Trump's Federal Communications Commission killed late last year. From a report: The new law prohibits internet service providers, or ISPs, from blocking or slowing access to legal online content, demanding special fees from websites to prioritize their traffic or charging customers for special exemptions to caps on their data use. Brown signed the measure without comment, setting up almost certain showdowns with both ISPs and the FCC, which barred states from setting their own rules in its repeal last December of protections instituted during the administration of President Barack Obama. The U.S. Justice Department quickly filed a federal action in U.S. District Court in Sacramento to block the new law Sunday night. In a statement, Attorney General Jeff Sessions said: "Under the Constitution, states do not regulate interstate commerce -- the federal government does. Once again the California legislature has enacted an extreme and illegal state law attempting to frustrate federal policy." Brown also signed A.B. 1999, which makes it easier for local governments to build community broadband and offer competitive high-speed fiber.