Security researcher Dirk-jan Mollema discovered two vulnerabilities in Microsoft's Entra ID identity platform that could have granted attackers administrative access to virtually all Azure customer accounts worldwide. The flaws involved legacy authentication systems -- Actor Tokens issued by Azure's Access Control Service and a validation failure in the retiring Azure Active Directory Graph API.

Mollema reported the vulnerabilities to Microsoft on July 14. Microsoft released a global fix three days later and found no evidence of exploitation. The vulnerabilities would have allowed attackers to impersonate any user across any Azure tenant and access all Microsoft services using Entra ID authentication. Microsoft confirmed the fixes were fully implemented by July 23 and added additional security measures in August as part of its Secure Future Initiative. The company issued a CVE on September 4.

An anonymous reader shares a report: Microsoft is adding a whole load of AI agents to Teams today, promising Copilot assistants for every channel, meeting, and community. The new agents will also work across SharePoint and Viva Engage, and are rolling out for Microsoft 365 Copilot users.

Facilitator agents will now sit in on Teams meetings, creating agendas, taking notes, and answering questions. Agents can also suggest time allotments for different meeting topics -- letting participants know if they're running over -- and create documents and tasks. A mobile version is designed to be activated "with a single tap" so you can make sure the agent doesn't miss out on "a quick hallway chat or a spontaneous in-person sync." Channel agents are designed to answer questions based on a channel's previous conversations and meetings and can also generate status reports for a project the same way.

China's economy increasingly relies on 200 million "flexible workers" who lack formal employment contracts, pensions and urban residency permits despite comprising 25% of the national workforce and 40% of urban workers. The demographic includes 40 million day-wage factory workers and 84 million platform economy workers performing deliveries and ride-share driving. Factory gig workers average 26 years old, are 80% male, and 75-80% single and childless. These workers face systemic exclusions from urban benefits including healthcare, schooling and property ownership due to lacking urban hukou residency permits.

China's Supreme Court ruled in August that workers can claim compensation from employers denying benefits, though enforcement mechanisms remain unclear. Economic data shows retail sales growth at yearly lows, continuing property price declines, and rising urban unemployment. Analysts project GDP growth potentially falling to 3% in the third quarter. Manufacturing hubs report increasing numbers of young workers sleeping in parks and under overpasses between temporary jobs.

If you're wondering what effect Intel's blockbuster deal with Nvidia will have on its existing product roadmaps, Intel has one message for you: it won't. PCWorld: "We're not discussing specific roadmaps at this time, but the collaboration is complementary to Intel's roadmap and Intel will continue to have GPU product offerings," an Intel spokesman told my colleague, Brad Chacos, earlier today. I heard similar messaging from other Intel representatives.

Nvidia's $5 billion investment in Intel, as well as Nvidia's plans to supply RTX graphics chiplets to Intel for use in Intel's CPUs, have two major potential effects: first, it could rewrite Intel's mobile roadmap for laptop chips, because of the additional capabilities provided by those RTX chiplets. Second, the move threatens Intel's ongoing development of its Arc graphics cores, including standalone discrete GPUs as well as integrated chips. We're still not convinced that Arc's future will be left unscathed, in part because Intel's claim that it will "continue" to have GPU product offerings sounds a bit wishy-washy. But Intel sounds much more definitive on the former point, in that the mobile roadmap that you're familiar with will remain in place.

Google has added Gemini features to Chrome for all desktop users in the US browsing in English following a limited release to paying subscribers in May. The update introduces a Gemini button in the browser that launches a chatbot capable of answering questions about page content and synthesizing information from multiple tabs. Users can remove the Gemini sparkle icon from Chrome's interface.

Google will add its AI Mode search feature to Chrome's address bar before September ends. The feature will suggest prompts based on webpage content but won't replace standard search functionality. Chrome on Android already includes Gemini features. The company plans to add agentic capabilities in coming months that would allow Gemini to perform tasks like adding items to online shopping carts by controlling the browser cursor.

The Federal Trade Commission and attorneys general from seven states filed an 84-page lawsuit Thursday in federal court in California against Live Nation Entertainment and its Ticketmaster subsidiary. The suit alleges the companies knowingly allow ticket brokers to use multiple accounts to circumvent purchase limits and acquire thousands of tickets per event for resale at higher prices.

The FTC claims this practice violates the Better Online Ticket Sales Act and generates hundreds of millions in revenue through a "triple dip" fee structure -- collecting fees on initial broker purchases, then from both brokers and consumers on secondary market sales. FTC Chairman Andrew Ferguson cited President Trump's March executive order requiring federal protection against ticketing practices. The lawsuit arrives one month after the FTC sued Maryland broker Key Investment Group over Taylor Swift tour price-gouging and follows the Department of Justice's 2024 monopoly suit against Live Nation.

An anonymous reader shares a report: A software update rolling out to Samsung's Family Hub refrigerators in the US is putting ads on the fridges for the first time. The "promotions and curated advertisements" are coming despite Samsung insisting to The Verge in April that it had "no plans" to do so. Samsung is calling it a pilot program for now, which -- I kid you not -- is meant to "strengthen the value" of owning a Samsung smart fridge.

Chinese AI developer DeepSeek said it spent $294,000 on training its R1 model, much lower than figures reported for U.S. rivals, in a paper that is likely to reignite debate over Beijing's place in the race to develop artificial intelligence. Reuters: The rare update from the Hangzhou-based company -- the first estimate it has released of R1's training costs -- appeared in a peer-reviewed article in the academic journal Nature published on Wednesday.

DeepSeek's release of what it said were lower-cost AI systems in January prompted global investors to dump tech stocks as they worried the new models could threaten the dominance of AI leaders including Nvidia. Since then, the company and founder Liang Wenfeng have largely disappeared from public view, apart from pushing out a few new product updates.

[...] The Nature article, which listed Liang as one of the co-authors, said DeepSeek's reasoning-focused R1 model cost $294,000 to train and used 512 Nvidia H800 chips. Sam Altman, CEO of U.S. AI giant OpenAI, said in 2023 that what he called "foundational model training" had cost "much more" than $100 million - though his company has not given detailed figures for any of its releases.

Amazon violated consumer protection law by gathering Prime subscribers' billing information before disclosing the service's terms, a judge ruled on Wednesday, handing the U.S. Federal Trade Commission a partial win. From a report: The ruling by U.S. District Judge John Chun in the case accusing Amazon of deceptive practices to generate Prime subscriptions puts the company at a disadvantage at trial.

The FTC is poised to argue that the online retailer signed up tens of millions of customers for Prime without their consent, and thwarted tens of millions of cancellation bids through complex cancellation methods. The agency says those actions violated the Restore Online Shoppers Confidence Act (ROSCA).

An anonymous reader shares a report: Apple supply chain analyst Ming-Chi Kuo today reiterated that a more affordable MacBook powered by an iPhone processor is slated to enter mass production in the fourth quarter of 2025, which points towards a late 2025 or early 2026 launch.

Kuo was first to reveal that Apple is allegedly planning a more affordable MacBook. In late June, he said the laptop would have around a 13-inch display, and an A18 Pro chip. Kuo said potential color options include silver, blue, pink, and yellow, so the laptop could come in bright colors, like 2021-and-newer models of the 24-inch iMac.

This time around, he only mentioned the MacBook will have an unspecific iPhone processor. Apple recently introduced the A19 Pro chip, which has 12GB of RAM, so it will be interesting to see if the lower-cost MacBook uses that chip instead. The entire Mac lineup has started with at least 16GB of RAM since last year, with the only option with 8GB being the MacBook with an M1 chip, which is sold exclusively by Walmart for $599.

Key takeaways from a new survey by Pew Research: 1. Americans are much more concerned than excited about the increased use of AI in daily life, with a majority saying they want more control over how AI is used in their lives.
2. Far larger shares say AI will erode than improve people's ability to think creatively and form meaningful relationships.
3. At the same time, a majority is open to letting AI assist them with day-to-day tasks and activities.
4. Most Americans don't support AI playing a role in personal matters such as religion or matchmaking. They're more open to AI for heavy data analysis, such as for weather forecasting and developing new medicines.
5. Americans feel strongly that it's important to be able to tell if pictures, videos or text were made by AI or by humans. Yet many don't trust their own ability to spot AI-generated content.

Nvidia has agreed to invest $5 billion in its struggling rival Intel [non-paywalled source] as part of a deal to develop new chips for PCs and data centres, the latest reordering of the tech industry spurred by AI. From a report: The deal comes a month after the US government agreed to take a 10 per cent stake in Intel, as Donald Trump's administration looks to secure the future of American chip manufacturing.

However, the pair's announcement makes no reference to Nvidia using Intel's foundry to produce its chips. Intel, which has struggled to gain a foothold in the booming AI server market, lost its crown as the world's most valuable chipmaker to Nvidia in 2020. On Thursday Jensen Huang, Nvidia's chief executive, hailed a "historic collaboration" and "a fusion of two world-class platforms," combining its graphics processing units, which dominate the market for AI infrastructure, with Intel's general-purpose chips. Further reading: Intel Weighed $20 Billion Nvidia Takeover in 2005.

An anonymous reader quotes a report from Bloomberg: Gen Z borrowers took the biggest hit of any age group this year, helping pull overall credit scores lower in the worst year for US consumer credit quality since the global financial crisis roiled the world's economy. The average FICO score slipped to 715 in April from 717 a year earlier, marking the second consecutive year-over-year drop, according to a report released Tuesday by Fair Isaac Corp. The average score dropped three points to 687 in 2009.

Gen Z borrowers saw the largest drop, not only this year, but of any age group since 2020, with their average score falling three points to 676, the Montana-based creator of the FICO credit score said. FICO scores are a measure of consumer credit risk and are frequently used by US banks to assess whether to provide loans. The scores typically range from 300 to 850. The credit scoring agency attributed the recent overall drop to higher rates of utilization and delinquency, including the resumption of reporting student loan delinquencies -- a category that hit a record high of 3.1% of the entire scorable population. [...] While the overall average score dropped, the median FICO score continued to rise to 745 from 744 a year ago, indicating that a large drop in scores at the low end dragged down the average.

LimeWire, once notorious for fueling online piracy, has acquired the rights to the infamously disastrous Fyre Festival brand. "LimeWire Acquires Fyre Festival Brand -- What Could Possibly Go Wrong?" the company titled its news release.

LimeWire said it would "unveil a reimagined vision for Fyre -- one that expands beyond the digital realm and taps into real-world experiences, community, and surprise." No additional details were announced about the relaunch.

"Fyre became a symbol of hype gone wrong, but it also made history," LimeWire CEO Julian Zehetmayr said. "We're not bringing the festival back -- we're bringing the brand and the meme back to life. This time with real experiences, and without the cheese sandwiches."

alternative_right shares a report from Phys.org: Scientists from Taiwan have developed a new material that can stretch up to 4,600% of its original length before breaking. Even if it does break, gently pressing the pieces together at room temperature allows it to heal, fully restoring its shape and stretchability within 10 minutes.

The sticky and stretchy polyurethane (PU) organogels were designed by combining covalently linked cellulose nanocrystals (CNCs) and modified mechanically interlocked molecules (MIMs) that act as artificial molecular muscles. The muscles make the gel sensitive to external forces such as stretching or heat, where its color changes from orange to blue based on whether the material is at rest or stimulated. Thanks to these unique properties, the gels hold great promise for next-generation technologies -- from flexible electronic skins and soft robots to anti-counterfeiting solutions. The findings have been published in the journal Advanced Functional Materials.