How Anthropic's Claude Helped Mozilla to Improve Firefox's Security | | "It took Anthropic's most advanced artificial-intelligence model about 20 minutes to find its first Firefox browser bug during an internal test of its hacking prowess," reports the Wall Street Journal.
The Anthropic team submitted it, and Firefox's developers quickly wrote back: This bug was serious. Could they get on a call? "What else do you have? Send us more," said Brian Grinstead, an engineer with Mozilla, Firefox's parent organization.
Anthropic did. Over a two-week period in January, Claude Opus 4.6 found more high-severity bugs in Firefox than the rest of the world typically reports in two months, Mozilla said... In the two weeks it was scanning, Claude discovered more than 100 bugs in total, 14 of which were considered "high severity..." Last year, Firefox patched 73 bugs that it rated as either high severity or critical.
A Mozilla blog post calls Firefox "one of the most scrutinized and security-hardened codebases on the web. Open source means our code is visible, reviewable, and continuously stress-tested by a global community." So they're impressed — and also thankful Anthropic provided test cases "that allowed our security team to quickly verify and reproduce each issue."
Within hours, our platform engineers began landing fixes, and we kicked off a tight collaboration with Anthropic to apply the same technique across the rest of the browser codebase... . A number of the lower-severity findings were assertion failures, which overlapped with issues traditionally found through fuzzing, an automated testing technique that feeds software huge numbers of unexpected inputs to trigger crashes and bugs. However, the model also identified distinct classes of logic errors that fuzzers had not previously uncovered...
We view this as clear evidence that large-scale, AI-assisted analysis is a powerful new addition in security engineers' toolbox. Firefox has undergone some of the most extensive fuzzing, static analysis, and regular security review over decades. Despite this, the model was able to reveal many previously unknown bugs. This is analogous to the early days of fuzzing; there is likely a substantial backlog of now-discoverable bugs across widely deployed software.
"In the time it took us to validate and submit this first vulnerability to Firefox, Claude had already discovered fifty more unique crashing inputs" in 6,000 C++ files, Anthropic says in a blog post (which points out they've also used Claude Opus 4.6 to discover vulnerabilities in the Linux kernel).
"Anthropic "also rolled out Claude Code Security, an automated code security testing tool, last month," reports Axios, noting the move briefly rattled cybersecurity stocks... Read more of this story at Slashdot. |
Military GPS Jamming is Interfering with the Navigation Systems of Commercial Ships | | "Within 24 hours of the first US-Israeli strikes on Iran, ships in the region's waters found their navigation systems had gone haywire," reports CNN, "erroneously indicating that the vessels were at airports, a nuclear power plant and on Iranian land.
"The location confusion was a result of widespread jamming and spoofing of signals from global positioning satellite systems."
Used by all sides in conflict zones to disrupt the paths of drones and missiles, the process involves militaries and affiliated groups intentionally broadcasting high-intensity radio signals in the same frequency bands used by navigation tools. Jamming results in the disruption of a vehicle's satellite-based positioning while spoofing leads to navigation systems reporting a false location. Though commercial vessels are not the target, the electronic interference disrupted the navigation systems of more than 1,100 commercial ships in UAE, Qatari, Omani and Iranian waters on February 28, according to a report from Windward, a shipping intelligence firm. Jamming and spoofing also slowed marine traffic moving through the Strait of Hormuz, a congested shipping lane that handles roughly 20% of the world's oil and gas exports and where precise navigation is essential, Windward's data showed.... Daily incidents have more than doubled, rising from 350 when the conflict began to 672 by March 2, the firm reported.
As use of this warfare tactic grows, experts worry the impacts could reach far beyond battlespaces.... In June 2025, electronic interference with navigation systems was thought to be a factor in the collision between two oil tankers, Adalynn and Front Eagle, off the coast of the UAE... The number of global positioning system signal loss events affecting aircraft increased by 220% between 2021 and 2024, according to data from the International Air Transport Association. Last year, IATA said that the aviation industry must act to stay ahead of the threat.
Cockpits are seeing their navigation displays "literally drift away from reality," said a commercial pilot, who didn't want to be identified because he was not permitted to speak publicly. He said that he and his colleagues have experienced map shifts, where the aircraft location appears to move up to 1 mile away from the actual flight path, false altitude information that leads to phantom "pull up" commands, and systems suggesting an aircraft was on a taxiway, a path that connects runways with various airport facilities, when taking off. These incidents force pilots to rely on manual actions that increase workload, often during the most exhausting points of long-haul flights, he said.
"Alternative navigational tools that don't rely on GPS, but instead harness quantum technology, are also in development," the article points out, "but remain a long way off operational use." Read more of this story at Slashdot. |
Seagate Just Unleashed 44TB Hard Drives | | "Seagate says it is now shipping its Mozaic 4+ HAMR-based hard drives at up to 44TB per drive," writes Slashdot reader BrianFagioli, "with production deployments already underway at two hyperscale cloud providers.
"The company claims the platform is the only heat-assisted magnetic recording [HAMR] implementation currently operating at scale, and it is targeting a path from today's 4+TB per disk toward 10TB per disk, eventually enabling 100TB-class drives."
In a one-exabyte deployment, Seagate estimates Mozaic could improve infrastructure efficiency by roughly 47% compared to standard 30TB drives, cutting both footprint and energy consumption... HAMR uses a tiny laser to heat the disk surface during writes, allowing higher recording density without sacrificing stability. With most major cloud storage providers reportedly qualified on the Mozaic platform, Seagate is positioning spinning disks, not flash, as the long-term answer for cost-effective AI-scale data growth. Read more of this story at Slashdot. |
First Solar Car Rolls Off Validation Assembly Line At Aptera | | "Reservation holders, it's finally time to get ready," writes long-time Slashdot reader AirHog. The EV news site Electrek reports:
Aptera Motors, "the little startup that could," announced another important milestone... completing the first example of its flagship solar EV on its validation assembly line in Southern California...
While the validation line at its headquarters remains a low-volume assembly process, its successful operation represents the startup's transition from hand-built validation SEVs to a more structured assembly line process that will be fine-tuned for mass production... With low-volume assembly now being validated, Aptera is starting to publicly utter encouraging terms like "EPA certification" and, better yet, that holy grail of "initial customer deliveries." Before then, however, the Aptera Solar EVs built on this low-volume validation line will be used for testing programs such as thermal validation, brake performance, and "some destructive testing." Aptera shared that its assembly and integration team has grown to become the largest at the startup, "reflecting the beginning of its transition from engineering development to testing and production execution"...
As of March 2026, Aptera says it has over 50,000 reservations totaling over $2 billion in sales if all were to solidify following the launch of a deliverable vehicle.
Clean Technica notes the vehicles' "generous cargo space that comes out to 60% more storage than a Honda Accord and 20% more storage than a Prius, according to the company."
"Built with recyclable materials, this eco-friendly vehicle features a lightweight carbon fiber structure and no-welding assembly for maximum cost and production efficiency," Aptera adds. The emphasis on lightweighting supports the goal of engineering a car that can travel on the electricity provided by its onboard solar panels.
The company currently advertises that the vehicle can travel 40 miles on solar power alone, with the battery providing extra juice as needed. Ideally, the car can keep recharging itself with sunlight, further elongating the time between charging sessions... [Its range is up to 1,000 miles with plug-in charging.] The new autocycle could also appeal to drivers who enjoy the challenge of hypermiling, which involves deploying a suite of driving techniques to minimize fuel consumption. Hypermiling can apply to gas-powered cars, but the magic really kicks in with the regenerative braking capability of EVs. Aptera's onboard solar panels add another dimension to the fun. Read more of this story at Slashdot. |
Prediction Market 'Kalshi' Sued for Not Paying $54 Million for Bets on Khamenei's Death | | An anonymous reader shared this report from the Independent:
A popular predictions market app will not pay out the $54 million some of its users believed they were owed after correctly forecasting the death of Ayatollah Ali Khamenei, according to a report.
Kalshi, which allows players to gamble on real-world events, offered customers favorable odds on Khamenei, 86, being "out as Supreme Leader" in response to the announcement of joint U.S.-Israeli airstrikes on Tehran in the early hours of Saturday morning. The company promoted the trade on its homepage and app and tweeted [last] Saturday: "BREAKING: The odds Ali Khamenei is out as Supreme Leader have surged to 68 percent." It continued: "Reminder: Kalshi does not offer markets that settle on death. If Ali Khamenei dies, the market will resolve based on the last traded price prior to confirmed reporting of death." Khamenei was later confirmed dead in the airstrikes and the company clarified in a follow-up post: "Please note: A prior version of this clarification was grammatically ambiguous. As a customer service measure, Kalshi will reimburse lost value due to trades made between these clarifications...."
While the company has offered to reimburse any bets, fees or losses from the trade placed prior to its clarification message, it has nevertheless attracted a firestorm of complaints on social media.
A Kalshi spokesperson told Reuters they'd reimbursed "net losses" out of pocket "to the tune of millions of dollars". But a class action lawsuit was filed Thursday saying Kalshi had failed to pay $54 million:
Kalshi did not invoke a "death carveout" provision until after the Iranian leader was killed to avoid paying customers in Kalshi's "Khamenei Market" what they were owed, the lawsuit said... The language specifying that Khamenei's departure could be due to any cause, including death, was "clear, unambiguous and binary," the lawsuit said, describing Kalshi's actions as "deceptive" and "predatory."
"In a notice filed Monday, the company proposed standardizing the terms of all its markets that implicitly depend on a person surviving..." reports Business Insider. "The update comes after Kalshi paid $2.2 million to resolve complaints from users who were confused by the way it divided the $55 million wagered on Iran's Supreme Leader Ali Khamenei's ouster after his targeted killing by Israel and the US."
Their article cites a DePaul University law professor who says "There's now sort of this nascent, but bipartisan movement against prediction markets. I think Kalshi's feeling the heat." For example, U.S. Senator Chris Murphy told the Washington Post, "People shouldn't be rooting for people to die because they placed a bet." Read more of this story at Slashdot. |
Indonesia To Ban Social Media For Children Under 16 | | Indonesia will ban children under 16 from having accounts on major social media platforms as part of a government push to protect minors from harmful content, addiction, and online threats. The rule will roll out starting March 28 and makes Indonesia the first country in Southeast Asia to impose such a restriction. The Guardian reports: Meutya Hafid said in a statement to media said that she signed a government regulation that will mean children under the age of 16 can no longer have accounts on high-risk digital platforms, including YouTube, TikTok, Facebook, Instagram, Threads, X, Roblox and Bigo Live, a popular livestreaming site. With a population of about 285 million, the fourth-highest in the world, the south-east Asian nation represents a significant market for social networks.
The implementation will start gradually from 28 March, until all platforms fulfill their compliance obligations. "The basis is clear. Our children face increasingly real threats. From exposure to pornography, cyberbullying, online fraud, and most importantly addiction. The government is here so that parents no longer have to fight alone against the giant of algorithms," Hafid said.
She added that the government is taking this step as the best effort in the midst of a digital emergency to reclaim sovereignty over children's futures. "We realize that the implementation of this regulation may cause some discomfort at first. Children may complain and parents may be confused about how to respond to their children's complaints," Hafid said. Read more of this story at Slashdot. |
China Releases First Homegrown Quantum Computing OS | | The Global Times reports: China's first domestically developed quantum computer operating system, Origin Pilot, has been made available for online download, the Global Times learned from the Anhui Quantum Computing Engineering Research Center on Wednesday. A Chinese scientist said while several quantum computing operating system efforts are underway worldwide, this is the first developed in China where it is seen as part of China's broad effort to achieve technology independence and to achieve technology advance in quantum computing.
The center said the release marks the world's first open-source quantum computer operating system available for public download, which is expected to lower development barriers and support the growth of China's quantum computing ecosystem. Developed by Hefei-based Origin Quantum Computing Technology Co, the company behind China's third-generation superconducting quantum computer, Origin Wukong, Origin Pilot was first launched in 2021 and has gone through multiple rounds of iteration and upgrade.
The developer describes it as an integrated quantum-classical-intelligent computing operating system compatible with major hardware approaches, including superconducting qubits, trapped ions and neutral atoms. It is now deployed on the company's Origin Wukong series and is available to external users, the company said. Guo Guoping, chief scientist of Origin Quantum and director at the Anhui Quantum Computing Engineering Research Center, told the Global Times that a quantum operating system is the "soft heart" of the quantum computing ecosystem. He said the decision to make Origin Pilot available globally marks a shift in China's quantum computing industry from closed-door tech innovation to broader open-source ecosystem development. Dou Menghan, head of the research team, said: "Users can quickly integrate with quantum chips of multiple physical types and, using autonomous programming frameworks such as QPanda, execute quantum computing jobs across different physical quantum chips to support both research and commercialization needs." Read more of this story at Slashdot. |
Asteroid 2024 YR4 Will Not Impact the Moon | | Ancient Slashdot reader alanw shares a report from the European Space Agency (ESA): Last year, an approximately 60 meter near-Earth object captured global attention. For a brief period, asteroid 2024 YR4 became the most dangerous asteroid discovered in the last 20 years. While an Earth impact was soon ruled out, the asteroid faded from view with a lingering 4% chance of striking the Moon on 22 December 2032. Now, that risk has been eliminated. Astronomers have confirmed that 2024 YR4 will not impact the Moon using new observations made by the Near-Infrared Camera (NIRCam) on the NASA/ESA/CSA James Webb Space Telescope. Instead, it will safely pass the Moon at a distance of more than 20 000 km. Read more of this story at Slashdot. |
Humanity Heating Planet Faster Than Ever Before, Study Finds | | An anonymous reader The Guardian: Humanity is heating the planet faster than ever before, a study has found. Climate breakdown is occurring more rapidly with the heating rate almost doubling, according to research that excludes the effect of natural factors behind the latest scorching temperatures. It found global heating accelerated from a steady rate of less than 0.2C per decade between 1970 and 2015 to about 0.35C per decade over the past 10 years. The rate is higher than scientists have seen since they started systematically taking the Earth's temperature in 1880.
"If the warming rate of the past 10 years continues, it would lead to a long-term exceedance of the 1.5C (2.7F) limit of the Paris agreement before 2030," said Stefan Rahmstorf, a scientist at the Potsdam Institute for Climate Impact Research and co-author of the study. [...] The researchers applied a noise-reduction method to filter out the estimated effect of nonhuman factors in five major datasets that scientists have compiled to gauge the Earth's temperature. In each of them, they found an acceleration in global heating emerged in 2013 or 2014. The findings have been published in the journal Geophysical Research Letters. Read more of this story at Slashdot. |
Trump Administration Says It Can't Process Tariff Refunds Because of Computer Problems | | U.S. Customs and Border Protection (CBP) said in a filing on Friday that it currently cannot process billions in tariff refunds because its import-processing system is "not well suited to a task of this scale." The Verge reports: The CBP's admission comes after the Supreme Court struck down the tariffs imposed by Trump under the International Emergency Economic Powers Act (IEEPA) last month. This week, the International Trade Court ruled that importers impacted by the tariffs are entitled to refunds with interest. The CBP estimates that it collected around $166 billion in IEEPA duties as of March 4th, 2026. [...]
The CBP says it currently processes imports through its Automated Commercial Environment (ACE) system. In the filing, Lord says that using the department's existing technology, it would take more than 4.4 million hours to process refunds for the over 53.2 million entries with IEEPA duties. Despite these current limitations, the CBP says it's "confident" it can develop and launch new capabilities to "streamline and consolidate refunds and interest payments on an importer basis" -- but this could take 45 days. "The process will be simpler and more efficient than the existing functionalities, and CBP will provide guidance on how to file refund declarations in the new system," Lord says. Read more of this story at Slashdot. |
Oura Buys Gesture-Navigation Startup DoublePoint | | Smart ring maker Oura has acquired Doublepoint, a Finnish startup specializing in gesture recognition technology for wearables. Engadget reports: The Finnish startup uses smartwatches and wristbands as examples of products that benefit from its technology, but Oura will clearly be looking to incorporate it into its rings, in theory allowing you to control your connected devices with hand movements.
Oura said in a press release that the deal sees it inherit an "exceptional team of AI architects and builders from Doublepoint," including Doublepoint's four founders. The newly-acquired company will remain in its native Helsinki, where it will work with Oura's international teams.
It added that Doublepoint's expertise in helping devices register subtle hand movements will be key, as nobody wearing a smart ring is going to engage with gesture control if they have to thrash their hand around like a conductor. Read more of this story at Slashdot. |
Apple Blocks US Users From Downloading ByteDance's Chinese Apps | | An anonymous reader quotes a report from Wired: While TikTok operates in the United States under new ownership, Apple has deployed technical restrictions to block iOS users in the United States from downloading other apps made by the video platform's Chinese parent organization ByteDance. ByteDance owns a vast array of different apps spanning social media, entertainment, artificial intelligence, and other sectors. The leading one is Douyin, the Chinese version of TikTok, which has over 1 billion monthly active users. While most of those users reside in China, iPhone owners around the world have traditionally been able to download these apps from anywhere without using a VPN, as long as they have a valid App Store account registered in China.
That's not true anymore. Starting in late January, iPhone users in the U.S. with Chinese App Store accounts began reporting that they were encountering new obstacles when they tried to download apps developed by ByteDance. WIRED has confirmed that even with a valid Chinese App Store account, downloading or updating a ByteDance-owned Chinese app is blocked on Apple devices located in the United States. Instead, a pop-up window appears that says, "This app is unavailable in the country or region you're in." The restriction appears to apply only to ByteDance-owned apps and not those developed by other Chinese companies.
The timing and technical specifics suggest the restriction is related to the deal TikTok agreed to in January to divest Chinese ownership of its U.S. operations. The agreement was the result of the so-called TikTok ban law passed by Congress in 2024, which also barred companies like Apple and Google from distributing other apps majority-owned by ByteDance. The Protecting Americans from Foreign Adversary Controlled Applications Act states that no company can "distribute, maintain, or update" any app majority-controlled by ByteDance "within the land or maritime borders of the United States."
The law was primarily aimed at TikTok, which has more than 100 million users in the U.S. and had been the subject of years of debate in Washington over whether its Chinese ownership posed a national security risk. But ByteDance also has dozens of other apps that at some point were also removed from Apple's and Google's app stores in the U.S.. Now it seems like the scope of impact has reached even more apps that are not technically designed for U.S. audiences, such as Douyin, the AI chatbot Doubao, and the fiction reading platform Fanqie Novel. Read more of this story at Slashdot. |
System76 Comments On Recent Age Verification Laws | | In a blog post on Thursday, System76 CEO Carl Richell criticized new state laws in California, Colorado, and New York that would require operating systems to verify users' ages and expose that information to apps, arguing the rules are easy for kids to bypass and ultimately undermine privacy and freedom more than they protect minors.
"System76's position is interesting given that they sell Linux-loaded desktops, workstations and laptops plus being an operating system vendor with their in-house Pop!_OS distribution and COSMIC desktop environment," adds Phoronix's Michael Larabel, noting that they're also based out of Colorado. Here's an excerpt from the post: "A parent that creates a non-admin account on a computer, sets the age for a child account they create, and hands the computer over is in no different state. The child can install a virtual machine, create an account on the virtual machine and set the age to 18 or over. It's a similar technique to installing a VPN to get around the Great Firewall of China (just consider that for a moment). Or the child can simply re-install the OS and not tell their parents. ... In the case of Colorado's and California's bills, effectiveness is lost. In the case of New York's bill, liberty is lost. In the case of centralized platforms, potential is lost. ... The challenges we face are neither technical nor legal. The only solution is to educate our children about life with digital abundance. Throwing them into the deep end when they're 16 or 18 is too late. It's a wonderful and weird world. Yes, there are dark corners. There always will be. We have to teach our children what to do when they encounter them and we have to trust them." "We are accustomed to adding operating system features to comply with laws," writes Richell, in closing. "Accessibility features for ADA, and power efficiency settings for Energy Star regulations are two examples. We are a part of this world and we believe in the rule of law. We still hope these laws will be recognized for the folly they are and removed from the books or found unconstitutional." Read more of this story at Slashdot. |
Mozilla Is Working On a Big Firefox Redesign | | darwinmac writes: Mozilla is working on a huge redesign for its Firefox browser, codenamed "Nova," which will bring pastel gradients, a refreshed new tab page, floating "island" UI elements, and more. "From the mockups, it appears Mozilla took some inspiration from Googles Material You (or at least, the dynamic color extraction part of it) because the browser color accent appears influenced by the wallpaper setting," reports Neowin. "Choosing a mint-green desktop background automatically shifts the top navigation bars to match that exact shade."
Mozilla has a habit of redesigning Firefox every few years. Before "Nova," there was the "Proton" redesign in 2021, the "Photon" redesign in 2017, and the "Australis" redesign in 2014. Nova is still in early development, so it might take a year or two before it appears in an official stable Firefox release. Neowin adds: "Not every redesign project ends well for Mozilla, though. You might remember 2012's Firefox Metro, an ambitious attempt to build a custom browser for Windows 8s touch-first interface. The team built it to operate both as a traditional desktop application and as a touch-optimized Metro app. The whole thing was scrapped in 2014 after two years in development due to a dismally low user adoption rate (a preview version of the software had been released a year earlier on the Aurora channel)." Read more of this story at Slashdot. |
Iran War Provides a Large-Scale Test For AI-Assisted Warfare | | An anonymous reader quotes a report from Bloomberg, written by Katrina Manson: The U.S. strikes on Iran ordered by President Donald Trump mark the arrival on a large scale of a new era of warfare assisted by artificial intelligence. Captain Timothy Hawkins, a Central Command spokesperson, told me last night that the AI tools the U.S. military is using in Iran operations don't make targeting decisions and don't replace humans. But they do help "make smarter decisions faster." That's been the driving ambition of the U.S. military, which has spent years looking at how to develop and deploy AI to the battlefield [...].
Critics, such as Stop Killer Robots, a coalition of 270 human-rights groups, argue that AI-enabled decision-support systems reduce the separation between recommending and executing a strike to a "dangerously thin" line. Hawkins said the military's use of AI assistance follows a rigorous process aligned with U.S. policy, military doctrine and the law. Artificial intelligence helps analysts whittle down what they need to focus on, generating so-called points of interest and helping personnel make "smart" decisions in the Iran operations, he told me. AI is also helping to pull data within systems and organize information to provide clarity.
Among the AI tech used in the Iran campaign is Maven Smart System, a digital mission control platform produced by Palantir [...]. That emerged from Project Maven, a project started in 2017 by the Pentagon to develop AI for the battlefield. Among the large language models installed on the system is Anthropic's Claude AI tool, according to the people, who said it has become central to U.S. operations against Iran and to accelerating Maven's development. Claude is also at the center of a row that pits Anthropic against the Department of Defense over limits on the software. Further reading: Hacked Tehran Traffic Cameras Fed Israeli Intelligence Before Strike On Khamenei Read more of this story at Slashdot. |
|
|
