BeauHD

According to the Wall Street Journal, UnitedHealth Group has 1,000 AI applications in production for use in its insurance, health delivery and pharmacy divisions. From a report: UnitedHealth's AI transcribes conversations from clinician visits, summarizes data, processes claims and controls customer-facing chatbots. In addition, roughly 20,000 of the company's engineers use AI to write software, according to the report. Half of these applications use generative AI and the other half employ a more traditional version of the technology, said Chief Digital and Technology Officer Sandeep Dadlani, per the report. "Like other AI-powered tools, medical chatbots are more likely to provide highly accurate answers when thoroughly trained on high-quality, diverse datasets and when user prompts are clear and simple," Julie McGuire, managing director of the BDO Center for Healthcare Excellence & Innovation, told PYMNTS in April 2024. "However, when questions are more complicated or unusual, a medical chatbot may provide insufficient or incorrect answers. In some cases, a generative AI-powered medical chatbot could make up a study to justify a medical answer it wants to give."

TeleMessage, a communications app used by former Trump national security adviser Mike Waltz, has suspended services after a reported hack exposed some user messages. The breach follows controversy over Waltz's use of the app to coordinate military updates, including accidentally adding a journalist to a sensitive Signal group chat. From the report: In an email, Portland, Oregon-based Smarsh, which runs the TeleMessage app, said it was "investigating a potential security incident" and was suspending all its services "out of an abundance of caution." A Reuters photograph showed Waltz using TeleMessage, an unofficial version of the popular encrypted messaging app Signal, on his phone during a cabinet meeting on Wednesday. A separate report from 404 Media says hackers have also targeted GlobalX Air -- one of the main airlines the Trump administration is using as part of its deportation efforts -- and claim to have stolen flight records and passenger manifests for all its flights, including those for deportation. From the report: The data, which the hackers contacted 404 Media and other journalists about unprompted, could provide granular insight into who exactly has been deported on GlobalX flights, when, and to where, with GlobalX being the charter company that facilitated the deportation of hundreds of Venezuelans to El Salvador. "Anonymous has decided to enforce the Judge's order since you and your sycophant staff ignore lawful orders that go against your fascist plans," a defacement message posted to GlobalX's website reads. Anonymous, well-known for its use of the Guy Fawkes mask, is an umbrella some hackers operate under when performing what they see as hacktivism.

An anonymous reader quotes a report from Ars Technica: Hundreds of e-commerce sites, at least one owned by a large multinational company, were backdoored by malware that executes malicious code inside the browsers of visitors, where it can steal payment card information and other sensitive data, security researchers said Monday. The infections are the result of a supply-chain attack that compromised at least three software providers with malware that remained dormant for six years and became active only in the last few weeks. At least 500 e-commerce sites that rely on the backdoored software were infected, and it's possible that the true number is double that, researchers from security firm Sansec said. Among the compromised customers was a $40 billion multinational company, which Sansec didn't name. In an email Monday, a Sansec representative said that "global remediation [on the infected customers] remains limited." "Since the backdoor allows uploading and executing arbitrary PHP code, the attackers have full remote code execution (RCE) and can do essentially anything they want," the representative wrote. "In nearly all Adobe Commerce/Magento breaches we observe, the backdoor is then used to inject skimming software that runs in the user's browser and steals payment information (Magecart)." The three software suppliers identified by Sansec were Tigren, Magesolution (MGS), and Meetanshi. All three supply software that's based on Magento, an open source e-commerce platform used by thousands of online stores. A software version sold by a fourth provider named Weltpixel has been infected with similar code on some of its customers' stores, but Sansec so far has been unable to confirm whether it was the stores or Weltpixel that were hacked. Adobe has owned Megento since 2018.

An anonymous reader quotes a report from the New York Times: Google plans to roll out its Gemini artificial intelligence chatbot next week for children under 13 (source paywalled; alternative source) who have parent-managed Google accounts, as tech companies vie to attract young users with A.I. products. "Gemini Apps will soon be available for your child," the company said in an email this week to the parent of an 8-year-old. "That means your child will be able to use Gemini" to ask questions, get homework help and make up stories. The chatbot will be available to children whose parents useFamily Link, a Google service that enables families to set up Gmail and opt into services like YouTube for their child. To sign up for a child account, parents provide the tech company with personal data like their child's name and birth date. Gemini has specific guardrails for younger users to hinder the chatbot from producing certain unsafe content, said Karl Ryan, a Google spokesman. When a child with a Family Link account uses Gemini, he added, the company will not use that data to train its A.I. Introducing Gemini for children could accelerate the use of chatbots among a vulnerable population as schools, colleges, companies and others grapple with the effects of popular generative A.I. technologies. Trained on huge amounts of data, these systems can produce humanlike text and realistic-looking images and videos. [...] Google acknowledged some risks in its email to families this week, alerting parents that "Gemini can make mistakes" and suggesting they "help your child think critically" about the chatbot. The email also recommended parents teach their child how to fact-check Gemini's answers. And the company suggested parents remind their child that "Gemini isn't human" and "not to enter sensitive or personal info in Gemini." Despite the company's efforts to filter inappropriate material, the email added, children "may encounter content you don't want them to see."

A 25-year-old from Santa Clarita has pleaded guilty to hacking a Disney employee's computer using malware disguised as an AI art tool, stealing over 1 terabyte of confidential Disney data and threatening to leak it under the guise of a fake Russian hacktivist group. Variety reports: Santa Clarita resident Ryan Mitchell Kramer, 25, pleaded guilty to two felony charges, including one count of accessing a computer and obtaining information and one count of threatening to damage a protected computer. Each charge carries a maximum sentence of five years in federal prison. According to the plea agreement, in early 2024 Kramer posted a computer program on various online platforms that appeared to be used to create AI-generated art, when it really contained a malicious file to gain access to victims' computers. Between April and May 2024, a Disney employee downloaded the program, and Kramer gained access to the victim's personal and work accounts, including a non-public Disney Slack channel. Kramer dowloaded approximately 1.1 terabytes of confidential data from thousands of Disney Slack channels. In July, Kramer contacted the victim by pretending to be a member of a fake Russian hacktivist group called "Nullbulge" and threatened to leak their personal information and Disney Slack data. On July 12, Kramer publicly released the data, including the victim's bank, medical, and personal information on multiple online platforms.

Astronomers may have found the best candidate yet for the elusive Planet Nine: a mysterious object in infrared sky surveys taken 23 years apart that appears to be more massive than Neptune and about 700 times farther from the sun than Earth. Space.com reports: [A] team led by astronomer Terry Long Phan of the National Tsing Hua University in Taiwan has delved into the archives of two far-infrared all-sky surveys in search of Planet Nine -- and incredibly, they have found something that could possibly be Planet Nine. The Infrared Astronomy Satellite, IRAS, launched in 1983 and surveyed the universe for almost a year before being decommissioned. Then, in 2006, the Japanese Aerospace Exploration Agency (JAXA) launched AKARI, another infrared astronomy satellite that was active between 2006 and 2011. Phan's team were looking for objects that appeared in IRAS's database, then appeared to have moved by the time AKARI took a look. The amount of movement on the sky would be tiny -- about three arcminutes per year at a distance of approximately 700 astronomical units (AU). One arcminute is 1/60 of an angular degree. But there's an extra motion that Phan's team had to account for. As the Earth orbits the sun, our view of the position of very distant objects changes slightly in an effect called parallax. It is the same phenomenon as when you hold your index finger up to your face, close one eye and look at your finger, and then switch eyes -- your finger appears to move as a result of you looking at it from a slightly different position. Planet Nine would appear to move on the sky because of parallax as Earth moves around the sun. On any particular day, it might seem to be in one position, then six months later when Earth is on the other side of the sun, it would shift to another position, perhaps by 10 to 15 arcminutes -- then, six months after that, it would seem to shift back to its original position. To remove the effects of parallax, Phan's team searched for Planet Nine on the same date every year in the AKARI data, because on any given date it would appear in the same place, with zero parallax shift, every year. They then also scrutinized each candidate object that their search threw up on an hourly basis. If a candidate is a fast-moving, nearby object, then its motion would be detectable from hour to hour, and could therefore be ruled out. This careful search led Phan's team to a single object, a tiny dot in the infrared data. It appears in one position in IRAS's 1983 image, though it was not in that position when AKARI looked. However, there is an object seen by AKARI in a position 47.4 arcminutes away that isn't there in the IRAS imagery, and it is within the range that Planet Nine could have traveled in the intervening time. In other words, this object has moved a little further along its orbit around the sun in the 23 or more years between IRAS and AKARI. The knowledge of its motion in that intervening time is not sufficient to be able to extrapolate the object's full orbit, therefore it's not yet possible to say for certain whether this is Planet Nine. First, astronomers need to recover it in more up-to-date imagery. [...] Based on the candidate object's brightness in the IRAS and AKARI images, Phan estimates that the object, if it really is Planet Nine, must be more massive than Neptune. This came as a surprise, because he and his team were searching for a super-Earth-size body. Previous surveys by NASA's Wide-field Infrared Survey Explorer (WISE) have ruled out any Jupiter-size planets out to 256,000 AU, and any Saturn-size planets out to 10,000 AU, but a smaller Neptune or Uranus-size world could still have gone undetected. Phan told Space.com that he had searched for his candidate in the WISE data, "but no convincing counterpart was found because it has moved since the 2006 position," and without knowing its orbit more accurately, we can't say where it has moved to. "Once we know the position of the candidate, a longer exposure with the current large optical telescopes can detect it," Phan told Space.com. "However, the follow-up observations with optical telescopes still need to cover about three square degrees because Planet Nine would have moved from the position where AKARI detected it in 2006. This is doable with a camera that has a large field of view, such as the Dark Energy Camera, which has a field of view of three square degrees on the Blanco four-meter telescope [in Chile]."

An anonymous reader quotes a report from CNN: Driverless trucks are officially running their first regular long-haul routes, making roundtrips between Dallas and Houston. On Thursday, autonomous trucking firm Aurora announced it launched commercial service in Texas under its first customers, Uber Freight and Hirschbach Motor Lines, which delivers time- and temperature-sensitive freight. Both companies conducted test runs with Aurora, including safety drivers to monitor the self-driving technology dubbed "Aurora Driver." Aurora's new commercial service will no longer have safety drivers. "We founded Aurora to deliver the benefits of self-driving technology safely, quickly, and broadly, said Chris Urmson, CEO and co-founder of Aurora, in a release on Thursday. "Now, we are the first company to successfully and safely operate a commercial driverless trucking service on public roads." The trucks are equipped with computers and sensors that can see the length of over four football fields. In four years of practice hauls the trucks' technology has delivered over 10,000 customer loads. As of Thursday, the company's self-driving tech has completed over 1,200 miles without a human in the truck. Aurora is starting with a single self-driving truck and plans to add more by the end of 2025.

Microsoft has appointed a Deputy CISO for Europe to address growing regulatory pressure and reassure EU leaders about its cybersecurity commitment. "The move also highlights strong fears from European IT execs and government officials that the Trump administration may exert significant influence on cybersecurity companies," reports CSO Online. From the report: Who that Deputy CISO will ultimately be is unclear. Wednesday's statement simply said that Microsoft CISO Igor Tsyganskiy is "appointing a new Deputy CISO for Europe as part of the Microsoft Cybersecurity Governance Council," but the phrasing made it unclear when that would happen. However, Tsyganskiy made a separate announcement on LinkedIn that he has given the role to current Deputy CISO Ann Johnson. But he then said that Johnson, who is based at Microsoft's head office in Redmond, Washington, will hold that post "temporarily." In his LinkedIn post, Tsyganskiy explained that the Cybersecurity Governance Council, which was created in 2024, consists of "our Global CISO and Deputy Chief Information Security Officers (Deputy CISOs) representing each of our technology services. This Council oversees the company's cyber risks, defenses, and compliance across regions and domains." "The Deputy CISO for Europe will be accountable for compliance with current and emerging cybersecurity regulations in Europe, including the Digital Operational Resilience Act (DORA), the NIS 2 Directive, and the Cyber Resilience Act (CRA)," Tsyganskiy wrote. "These laws will prove transformative not only in EU markets, but worldwide, and Microsoft is actively engaged in preparing for what lies ahead." Microsoft said in Wednesday's statement: "the appointment of a Deputy CISO for Europe reflects the importance and global influence of EU cybersecurity regulations and the company's commitment to meeting and exceeding those expectations to prioritize cybersecurity across the region. This new position will report directly to Microsoft's CISO." Michela Menting, France-based digital security research director at ABI Research, said when she heard on Wednesday that Microsoft was creating such a role, "I was mostly surprised that they don't already have one." "GDPR has been in place for quite some time now and the fact they are only now putting in a European deputy CISO is concerning," Menting added. "They are playing catch up."

The U.S. government is seeking to break up Google's advertising technology business after a judge ruled the company holds an illegal monopoly over ad tools for publishers, marking the second such antitrust case following a similar request to divest Chrome. The Guardian reports: "We have a defendant who has found ways to defy" the law, US government lawyer Julia Tarver Wood told a federal court in Virginia, as she urged the judge to dismiss Google's assurance that it would change its behavior. "Leaving a recidivist monopolist" intact was not appropriate to solve the issue, she added. [...] The US government specifically alleged that Google controls the market for publishing banner ads on websites, including those of many creators and small news providers. The hearing in a Virginia courtroom was scheduled to plan out the second phase of the trial, set for September, in which the parties will argue over how to fix the ad market to satisfy the judge's ruling. The plaintiffs argued in the first phase of the trial last year that the vast majority of websites use Google ad software products which, combined, leave no way for publishers to escape Google's advertising technology and pricing. The district court judge Leonie Brinkema agreed with most of that reasoning, ruling last month that Google built an illegal monopoly over ad software and tools used by publishers, but partially dismissed the argument related to tools used by advertisers. The US government said it would use the trial to recommend that Google should spin off its ad publisher and exchange operations, as Google could not be trusted to change its ways. "Behavioral remedies are not sufficient because you can't prevent Google from finding a new way to dominate," Tarver Wood said. Google countered that it would recommend that it agree to a binding commitment that it would share information with advertisers and publishers on its ad tech platforms. Google lawyer Karen Dunn did, however, acknowledge the "trust issues" raised in the case and said the company would accept monitoring to guarantee any commitments made to satisfy the judge. Google is also arguing that calls for divestment are not appropriate in this case, which Brinkema swiftly refused as an argument. The judge urged both sides to mediate, stressing that coming to a compromise solution would be cost-effective and more efficient than running a weeks-long trial.

An anonymous reader quotes a report from the BBC: Temu has said it will stop selling goods imported from China in the US directly to customers from its platform. The online marketplace said sales would now be handled by "locally based sellers," with orders fulfilled from within the country. The move comes as a duty-free rule for low-value packages is closed. Temu, and rival Chinese retail giant Shein, had previously relied on the so-called "de minimis" exemption to sell and ship low-value items directly to the US without having to pay duties or import taxes. Temu said it had been actively recruiting US firms to join the platform. "All sales in the US are now handled by locally based sellers, with orders fulfilled from within the country. "The move is designed to help local merchants reach more customers and grow their businesses," it added. Supporters of the de minimis loophole, which applied to parcels worth less than $800, argue it helped streamline the customs process. But both Trump and his predecessor, Joe Biden, said it damaged American businesses and was used to smuggle illegal goods, including drugs. In February, Trump briefly closed the loophole but the suspension was quickly paused as delivery services and customs agencies struggled to adjust. During the pause, the U.S. Postal Service even stopped accepting parcels from mainland China and Hong Kong.